Warning: Permanently added '[localhost]:27624' (ECDSA) to the list of known hosts.
2023/02/27 10:18:05 fuzzer started
2023/02/27 10:18:06 dialing manager at localhost:41417
syzkaller login: [   45.946669] cgroup: Unknown subsys name 'net'
[   46.086005] cgroup: Unknown subsys name 'rlimit'
2023/02/27 10:18:20 syscalls: 2217
2023/02/27 10:18:20 code coverage: enabled
2023/02/27 10:18:20 comparison tracing: enabled
2023/02/27 10:18:20 extra coverage: enabled
2023/02/27 10:18:20 setuid sandbox: enabled
2023/02/27 10:18:20 namespace sandbox: enabled
2023/02/27 10:18:20 Android sandbox: enabled
2023/02/27 10:18:20 fault injection: enabled
2023/02/27 10:18:20 leak checking: enabled
2023/02/27 10:18:20 net packet injection: enabled
2023/02/27 10:18:20 net device setup: enabled
2023/02/27 10:18:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2023/02/27 10:18:20 devlink PCI setup: PCI device 0000:00:10.0 is not available
2023/02/27 10:18:20 USB emulation: enabled
2023/02/27 10:18:20 hci packet injection: enabled
2023/02/27 10:18:20 wifi device emulation: enabled
2023/02/27 10:18:20 802.15.4 emulation: enabled
2023/02/27 10:18:20 fetching corpus: 50, signal 34933/36754 (executing program)
2023/02/27 10:18:20 fetching corpus: 100, signal 49275/52802 (executing program)
2023/02/27 10:18:21 fetching corpus: 150, signal 62691/67810 (executing program)
2023/02/27 10:18:21 fetching corpus: 200, signal 71991/78652 (executing program)
2023/02/27 10:18:21 fetching corpus: 250, signal 80831/88966 (executing program)
2023/02/27 10:18:21 fetching corpus: 300, signal 87335/96921 (executing program)
2023/02/27 10:18:21 fetching corpus: 350, signal 92918/103900 (executing program)
2023/02/27 10:18:22 fetching corpus: 400, signal 97135/109539 (executing program)
2023/02/27 10:18:22 fetching corpus: 450, signal 100819/114622 (executing program)
2023/02/27 10:18:22 fetching corpus: 500, signal 104574/119682 (executing program)
2023/02/27 10:18:22 fetching corpus: 550, signal 109037/125417 (executing program)
2023/02/27 10:18:23 fetching corpus: 600, signal 112222/129969 (executing program)
2023/02/27 10:18:23 fetching corpus: 650, signal 116866/135731 (executing program)
2023/02/27 10:18:23 fetching corpus: 700, signal 120025/140108 (executing program)
2023/02/27 10:18:23 fetching corpus: 750, signal 123058/144349 (executing program)
2023/02/27 10:18:23 fetching corpus: 800, signal 125554/148064 (executing program)
2023/02/27 10:18:23 fetching corpus: 850, signal 128388/152063 (executing program)
2023/02/27 10:18:24 fetching corpus: 900, signal 131903/156721 (executing program)
2023/02/27 10:18:24 fetching corpus: 950, signal 134927/160867 (executing program)
2023/02/27 10:18:24 fetching corpus: 1000, signal 136661/163775 (executing program)
2023/02/27 10:18:24 fetching corpus: 1050, signal 139604/167785 (executing program)
2023/02/27 10:18:25 fetching corpus: 1100, signal 141945/171241 (executing program)
2023/02/27 10:18:25 fetching corpus: 1150, signal 144927/175236 (executing program)
2023/02/27 10:18:25 fetching corpus: 1200, signal 146477/177943 (executing program)
2023/02/27 10:18:26 fetching corpus: 1250, signal 148864/181316 (executing program)
2023/02/27 10:18:26 fetching corpus: 1300, signal 150593/184140 (executing program)
2023/02/27 10:18:26 fetching corpus: 1350, signal 152405/187075 (executing program)
2023/02/27 10:18:26 fetching corpus: 1400, signal 154211/189907 (executing program)
2023/02/27 10:18:27 fetching corpus: 1450, signal 156677/193311 (executing program)
2023/02/27 10:18:27 fetching corpus: 1500, signal 158272/195949 (executing program)
2023/02/27 10:18:27 fetching corpus: 1550, signal 160338/199032 (executing program)
2023/02/27 10:18:28 fetching corpus: 1600, signal 162828/202382 (executing program)
2023/02/27 10:18:28 fetching corpus: 1650, signal 164937/205350 (executing program)
2023/02/27 10:18:28 fetching corpus: 1700, signal 166508/207864 (executing program)
2023/02/27 10:18:29 fetching corpus: 1750, signal 168286/210580 (executing program)
2023/02/27 10:18:29 fetching corpus: 1800, signal 169655/212890 (executing program)
2023/02/27 10:18:30 fetching corpus: 1850, signal 171751/215807 (executing program)
2023/02/27 10:18:30 fetching corpus: 1900, signal 173113/218116 (executing program)
2023/02/27 10:18:30 fetching corpus: 1950, signal 175049/220917 (executing program)
2023/02/27 10:18:30 fetching corpus: 2000, signal 179443/225654 (executing program)
2023/02/27 10:18:31 fetching corpus: 2050, signal 180678/227778 (executing program)
2023/02/27 10:18:31 fetching corpus: 2100, signal 181683/229707 (executing program)
2023/02/27 10:18:31 fetching corpus: 2150, signal 182798/231755 (executing program)
2023/02/27 10:18:31 fetching corpus: 2200, signal 183780/233683 (executing program)
2023/02/27 10:18:31 fetching corpus: 2250, signal 185552/236273 (executing program)
2023/02/27 10:18:32 fetching corpus: 2300, signal 186617/238254 (executing program)
2023/02/27 10:18:32 fetching corpus: 2350, signal 187631/240147 (executing program)
2023/02/27 10:18:32 fetching corpus: 2400, signal 189014/242335 (executing program)
2023/02/27 10:18:33 fetching corpus: 2450, signal 190028/244174 (executing program)
2023/02/27 10:18:33 fetching corpus: 2500, signal 190871/245900 (executing program)
2023/02/27 10:18:33 fetching corpus: 2550, signal 191899/247785 (executing program)
2023/02/27 10:18:33 fetching corpus: 2600, signal 193201/249856 (executing program)
2023/02/27 10:18:34 fetching corpus: 2650, signal 194063/251607 (executing program)
2023/02/27 10:18:34 fetching corpus: 2700, signal 195125/253457 (executing program)
2023/02/27 10:18:34 fetching corpus: 2750, signal 196421/255523 (executing program)
2023/02/27 10:18:34 fetching corpus: 2800, signal 197383/257318 (executing program)
2023/02/27 10:18:34 fetching corpus: 2850, signal 198276/259033 (executing program)
2023/02/27 10:18:35 fetching corpus: 2900, signal 199729/261186 (executing program)
2023/02/27 10:18:35 fetching corpus: 2950, signal 200674/262924 (executing program)
2023/02/27 10:18:35 fetching corpus: 3000, signal 201354/264467 (executing program)
2023/02/27 10:18:35 fetching corpus: 3050, signal 203239/266828 (executing program)
2023/02/27 10:18:35 fetching corpus: 3100, signal 204187/268540 (executing program)
2023/02/27 10:18:35 fetching corpus: 3150, signal 205474/270468 (executing program)
2023/02/27 10:18:36 fetching corpus: 3200, signal 206453/272233 (executing program)
2023/02/27 10:18:36 fetching corpus: 3250, signal 207228/273795 (executing program)
2023/02/27 10:18:36 fetching corpus: 3300, signal 208047/275362 (executing program)
2023/02/27 10:18:37 fetching corpus: 3350, signal 209119/277140 (executing program)
2023/02/27 10:18:37 fetching corpus: 3400, signal 210006/278810 (executing program)
2023/02/27 10:18:37 fetching corpus: 3450, signal 211057/280536 (executing program)
2023/02/27 10:18:38 fetching corpus: 3500, signal 212011/282177 (executing program)
2023/02/27 10:18:38 fetching corpus: 3550, signal 212916/283704 (executing program)
2023/02/27 10:18:38 fetching corpus: 3600, signal 213806/285266 (executing program)
2023/02/27 10:18:39 fetching corpus: 3650, signal 214702/286872 (executing program)
2023/02/27 10:18:39 fetching corpus: 3700, signal 215426/288307 (executing program)
2023/02/27 10:18:39 fetching corpus: 3750, signal 216103/289754 (executing program)
2023/02/27 10:18:39 fetching corpus: 3800, signal 216830/291219 (executing program)
2023/02/27 10:18:40 fetching corpus: 3850, signal 217547/292716 (executing program)
2023/02/27 10:18:40 fetching corpus: 3900, signal 218740/294483 (executing program)
2023/02/27 10:18:40 fetching corpus: 3950, signal 219462/295907 (executing program)
2023/02/27 10:18:41 fetching corpus: 4000, signal 220421/297468 (executing program)
2023/02/27 10:18:41 fetching corpus: 4050, signal 221499/299067 (executing program)
2023/02/27 10:18:41 fetching corpus: 4100, signal 222478/300629 (executing program)
2023/02/27 10:18:42 fetching corpus: 4150, signal 223274/302097 (executing program)
2023/02/27 10:18:42 fetching corpus: 4200, signal 224281/303681 (executing program)
2023/02/27 10:18:42 fetching corpus: 4250, signal 225124/305073 (executing program)
2023/02/27 10:18:42 fetching corpus: 4300, signal 225863/306491 (executing program)
2023/02/27 10:18:42 fetching corpus: 4350, signal 226407/307704 (executing program)
2023/02/27 10:18:42 fetching corpus: 4400, signal 227352/309176 (executing program)
2023/02/27 10:18:43 fetching corpus: 4450, signal 228049/310534 (executing program)
2023/02/27 10:18:43 fetching corpus: 4500, signal 228872/311979 (executing program)
2023/02/27 10:18:43 fetching corpus: 4550, signal 229468/313254 (executing program)
2023/02/27 10:18:43 fetching corpus: 4600, signal 230084/314516 (executing program)
2023/02/27 10:18:43 fetching corpus: 4650, signal 230553/315690 (executing program)
2023/02/27 10:18:44 fetching corpus: 4700, signal 231494/317181 (executing program)
2023/02/27 10:18:44 fetching corpus: 4750, signal 232219/318478 (executing program)
2023/02/27 10:18:44 fetching corpus: 4800, signal 232994/319807 (executing program)
2023/02/27 10:18:44 fetching corpus: 4850, signal 233552/321010 (executing program)
2023/02/27 10:18:45 fetching corpus: 4900, signal 234195/322285 (executing program)
2023/02/27 10:18:45 fetching corpus: 4950, signal 234740/323486 (executing program)
2023/02/27 10:18:45 fetching corpus: 5000, signal 235347/324718 (executing program)
2023/02/27 10:18:45 fetching corpus: 5050, signal 235917/325922 (executing program)
2023/02/27 10:18:46 fetching corpus: 5100, signal 236538/327200 (executing program)
2023/02/27 10:18:46 fetching corpus: 5150, signal 237275/328500 (executing program)
2023/02/27 10:18:46 fetching corpus: 5200, signal 238055/329778 (executing program)
2023/02/27 10:18:47 fetching corpus: 5250, signal 238621/330929 (executing program)
2023/02/27 10:18:47 fetching corpus: 5300, signal 239273/332133 (executing program)
2023/02/27 10:18:48 fetching corpus: 5350, signal 239964/333300 (executing program)
2023/02/27 10:18:48 fetching corpus: 5400, signal 240475/334444 (executing program)
2023/02/27 10:18:49 fetching corpus: 5450, signal 240990/335520 (executing program)
2023/02/27 10:18:49 fetching corpus: 5500, signal 241599/336631 (executing program)
2023/02/27 10:18:50 fetching corpus: 5550, signal 242126/337765 (executing program)
2023/02/27 10:18:50 fetching corpus: 5600, signal 242898/338973 (executing program)
2023/02/27 10:18:51 fetching corpus: 5650, signal 243571/340091 (executing program)
2023/02/27 10:18:51 fetching corpus: 5700, signal 244149/341263 (executing program)
2023/02/27 10:18:51 fetching corpus: 5750, signal 244777/342381 (executing program)
2023/02/27 10:18:52 fetching corpus: 5800, signal 245444/343536 (executing program)
2023/02/27 10:18:52 fetching corpus: 5850, signal 246170/344665 (executing program)
2023/02/27 10:18:52 fetching corpus: 5900, signal 246543/345695 (executing program)
2023/02/27 10:18:53 fetching corpus: 5950, signal 247024/346776 (executing program)
2023/02/27 10:18:53 fetching corpus: 6000, signal 247588/347869 (executing program)
2023/02/27 10:18:53 fetching corpus: 6050, signal 248181/348989 (executing program)
2023/02/27 10:18:54 fetching corpus: 6100, signal 248957/350206 (executing program)
2023/02/27 10:18:54 fetching corpus: 6150, signal 249463/351240 (executing program)
2023/02/27 10:18:54 fetching corpus: 6200, signal 250019/352271 (executing program)
2023/02/27 10:18:55 fetching corpus: 6250, signal 250527/353313 (executing program)
2023/02/27 10:18:55 fetching corpus: 6300, signal 251222/354448 (executing program)
2023/02/27 10:18:55 fetching corpus: 6350, signal 251698/355440 (executing program)
2023/02/27 10:18:56 fetching corpus: 6400, signal 252438/356522 (executing program)
2023/02/27 10:18:56 fetching corpus: 6450, signal 253025/357523 (executing program)
2023/02/27 10:18:56 fetching corpus: 6500, signal 253433/358483 (executing program)
2023/02/27 10:18:56 fetching corpus: 6550, signal 253955/359495 (executing program)
2023/02/27 10:18:57 fetching corpus: 6600, signal 254556/360551 (executing program)
2023/02/27 10:18:57 fetching corpus: 6650, signal 254975/361493 (executing program)
2023/02/27 10:18:57 fetching corpus: 6700, signal 255559/362474 (executing program)
2023/02/27 10:18:57 fetching corpus: 6750, signal 256031/363401 (executing program)
2023/02/27 10:18:58 fetching corpus: 6800, signal 256416/364371 (executing program)
2023/02/27 10:18:58 fetching corpus: 6850, signal 257074/365406 (executing program)
2023/02/27 10:18:58 fetching corpus: 6900, signal 257324/366319 (executing program)
2023/02/27 10:18:59 fetching corpus: 6950, signal 257902/367349 (executing program)
2023/02/27 10:18:59 fetching corpus: 7000, signal 258355/368358 (executing program)
2023/02/27 10:18:59 fetching corpus: 7050, signal 258684/369270 (executing program)
2023/02/27 10:18:59 fetching corpus: 7100, signal 259016/370168 (executing program)
2023/02/27 10:18:59 fetching corpus: 7150, signal 259455/371102 (executing program)
2023/02/27 10:19:00 fetching corpus: 7200, signal 259990/372037 (executing program)
2023/02/27 10:19:00 fetching corpus: 7250, signal 260492/372963 (executing program)
2023/02/27 10:19:00 fetching corpus: 7300, signal 260911/373880 (executing program)
2023/02/27 10:19:00 fetching corpus: 7350, signal 261351/374806 (executing program)
2023/02/27 10:19:01 fetching corpus: 7400, signal 261922/375734 (executing program)
2023/02/27 10:19:01 fetching corpus: 7450, signal 262418/376693 (executing program)
2023/02/27 10:19:01 fetching corpus: 7500, signal 262946/377654 (executing program)
2023/02/27 10:19:02 fetching corpus: 7550, signal 263422/378526 (executing program)
2023/02/27 10:19:02 fetching corpus: 7600, signal 263990/379439 (executing program)
2023/02/27 10:19:02 fetching corpus: 7650, signal 264641/380384 (executing program)
2023/02/27 10:19:02 fetching corpus: 7700, signal 265009/381220 (executing program)
2023/02/27 10:19:03 fetching corpus: 7750, signal 265364/382086 (executing program)
2023/02/27 10:19:03 fetching corpus: 7800, signal 265856/382949 (executing program)
2023/02/27 10:19:03 fetching corpus: 7850, signal 266148/383802 (executing program)
2023/02/27 10:19:03 fetching corpus: 7900, signal 266805/384737 (executing program)
2023/02/27 10:19:03 fetching corpus: 7950, signal 267052/385548 (executing program)
2023/02/27 10:19:03 fetching corpus: 8000, signal 267464/386357 (executing program)
2023/02/27 10:19:04 fetching corpus: 8050, signal 267748/387143 (executing program)
2023/02/27 10:19:04 fetching corpus: 8100, signal 268113/387968 (executing program)
2023/02/27 10:19:04 fetching corpus: 8150, signal 268517/388779 (executing program)
2023/02/27 10:19:04 fetching corpus: 8200, signal 268936/389612 (executing program)
2023/02/27 10:19:05 fetching corpus: 8250, signal 269302/390435 (executing program)
2023/02/27 10:19:05 fetching corpus: 8300, signal 269746/391298 (executing program)
2023/02/27 10:19:05 fetching corpus: 8350, signal 270142/392058 (executing program)
2023/02/27 10:19:06 fetching corpus: 8400, signal 270530/392872 (executing program)
2023/02/27 10:19:06 fetching corpus: 8450, signal 270927/393683 (executing program)
2023/02/27 10:19:06 fetching corpus: 8500, signal 271575/394559 (executing program)
2023/02/27 10:19:06 fetching corpus: 8550, signal 271977/395348 (executing program)
2023/02/27 10:19:07 fetching corpus: 8600, signal 272347/396176 (executing program)
2023/02/27 10:19:07 fetching corpus: 8650, signal 272856/397021 (executing program)
2023/02/27 10:19:07 fetching corpus: 8700, signal 273303/397856 (executing program)
2023/02/27 10:19:08 fetching corpus: 8750, signal 273611/398668 (executing program)
2023/02/27 10:19:08 fetching corpus: 8800, signal 273935/399444 (executing program)
2023/02/27 10:19:08 fetching corpus: 8850, signal 274396/400221 (executing program)
2023/02/27 10:19:08 fetching corpus: 8900, signal 274733/400989 (executing program)
2023/02/27 10:19:09 fetching corpus: 8950, signal 275104/401787 (executing program)
2023/02/27 10:19:09 fetching corpus: 9000, signal 275601/402578 (executing program)
2023/02/27 10:19:09 fetching corpus: 9050, signal 276035/403358 (executing program)
2023/02/27 10:19:10 fetching corpus: 9100, signal 276337/404108 (executing program)
2023/02/27 10:19:10 fetching corpus: 9150, signal 276627/404834 (executing program)
2023/02/27 10:19:10 fetching corpus: 9200, signal 277116/405570 (executing program)
2023/02/27 10:19:11 fetching corpus: 9250, signal 277394/406318 (executing program)
2023/02/27 10:19:11 fetching corpus: 9300, signal 277764/407063 (executing program)
2023/02/27 10:19:11 fetching corpus: 9350, signal 278125/407809 (executing program)
2023/02/27 10:19:11 fetching corpus: 9400, signal 278475/408551 (executing program)
2023/02/27 10:19:12 fetching corpus: 9450, signal 278877/409261 (executing program)
2023/02/27 10:19:12 fetching corpus: 9500, signal 279220/409973 (executing program)
2023/02/27 10:19:12 fetching corpus: 9550, signal 279519/410688 (executing program)
2023/02/27 10:19:13 fetching corpus: 9600, signal 279791/411387 (executing program)
2023/02/27 10:19:13 fetching corpus: 9650, signal 280314/412114 (executing program)
2023/02/27 10:19:14 fetching corpus: 9700, signal 280703/412822 (executing program)
2023/02/27 10:19:14 fetching corpus: 9750, signal 281172/413565 (executing program)
2023/02/27 10:19:15 fetching corpus: 9800, signal 281639/414292 (executing program)
2023/02/27 10:19:15 fetching corpus: 9850, signal 282031/415011 (executing program)
2023/02/27 10:19:16 fetching corpus: 9900, signal 282386/415705 (executing program)
2023/02/27 10:19:16 fetching corpus: 9950, signal 282758/416406 (executing program)
2023/02/27 10:19:16 fetching corpus: 10000, signal 283144/417111 (executing program)
2023/02/27 10:19:16 fetching corpus: 10050, signal 283493/417835 (executing program)
2023/02/27 10:19:17 fetching corpus: 10100, signal 283841/418492 (executing program)
2023/02/27 10:19:17 fetching corpus: 10150, signal 284117/419159 (executing program)
2023/02/27 10:19:17 fetching corpus: 10200, signal 284423/419844 (executing program)
2023/02/27 10:19:18 fetching corpus: 10250, signal 284789/420504 (executing program)
2023/02/27 10:19:18 fetching corpus: 10300, signal 285058/421173 (executing program)
2023/02/27 10:19:18 fetching corpus: 10350, signal 285451/421873 (executing program)
2023/02/27 10:19:18 fetching corpus: 10400, signal 285691/422545 (executing program)
2023/02/27 10:19:19 fetching corpus: 10450, signal 286019/423176 (executing program)
2023/02/27 10:19:19 fetching corpus: 10500, signal 286466/423887 (executing program)
2023/02/27 10:19:20 fetching corpus: 10550, signal 286757/424526 (executing program)
2023/02/27 10:19:20 fetching corpus: 10600, signal 287098/425166 (executing program)
2023/02/27 10:19:20 fetching corpus: 10650, signal 287424/425685 (executing program)
2023/02/27 10:19:21 fetching corpus: 10700, signal 287786/425685 (executing program)
2023/02/27 10:19:21 fetching corpus: 10750, signal 288173/425685 (executing program)
2023/02/27 10:19:22 fetching corpus: 10800, signal 288565/425685 (executing program)
2023/02/27 10:19:22 fetching corpus: 10850, signal 288984/425685 (executing program)
2023/02/27 10:19:23 fetching corpus: 10900, signal 289309/425685 (executing program)
2023/02/27 10:19:23 fetching corpus: 10950, signal 289576/425685 (executing program)
2023/02/27 10:19:23 fetching corpus: 11000, signal 289775/425685 (executing program)
2023/02/27 10:19:23 fetching corpus: 11050, signal 290291/425685 (executing program)
2023/02/27 10:19:24 fetching corpus: 11100, signal 290541/425685 (executing program)
2023/02/27 10:19:24 fetching corpus: 11150, signal 290905/425685 (executing program)
2023/02/27 10:19:25 fetching corpus: 11200, signal 291127/425685 (executing program)
2023/02/27 10:19:25 fetching corpus: 11250, signal 291410/425685 (executing program)
2023/02/27 10:19:25 fetching corpus: 11300, signal 291743/425685 (executing program)
2023/02/27 10:19:25 fetching corpus: 11350, signal 292073/425685 (executing program)
2023/02/27 10:19:25 fetching corpus: 11400, signal 292461/425685 (executing program)
2023/02/27 10:19:26 fetching corpus: 11450, signal 292778/425685 (executing program)
2023/02/27 10:19:26 fetching corpus: 11500, signal 293046/425685 (executing program)
2023/02/27 10:19:26 fetching corpus: 11550, signal 293356/425685 (executing program)
2023/02/27 10:19:27 fetching corpus: 11600, signal 293673/425685 (executing program)
2023/02/27 10:19:27 fetching corpus: 11650, signal 294086/425685 (executing program)
2023/02/27 10:19:28 fetching corpus: 11700, signal 294372/425685 (executing program)
2023/02/27 10:19:28 fetching corpus: 11750, signal 294685/425685 (executing program)
2023/02/27 10:19:28 fetching corpus: 11800, signal 294911/425685 (executing program)
2023/02/27 10:19:29 fetching corpus: 11850, signal 295219/425691 (executing program)
2023/02/27 10:19:29 fetching corpus: 11900, signal 295653/425691 (executing program)
2023/02/27 10:19:30 fetching corpus: 11950, signal 295957/425691 (executing program)
2023/02/27 10:19:30 fetching corpus: 12000, signal 296221/425691 (executing program)
2023/02/27 10:19:30 fetching corpus: 12050, signal 296458/425692 (executing program)
2023/02/27 10:19:30 fetching corpus: 12100, signal 296807/425692 (executing program)
2023/02/27 10:19:31 fetching corpus: 12150, signal 297122/425692 (executing program)
2023/02/27 10:19:31 fetching corpus: 12200, signal 297441/425692 (executing program)
2023/02/27 10:19:31 fetching corpus: 12250, signal 297696/425692 (executing program)
2023/02/27 10:19:32 fetching corpus: 12300, signal 298009/425692 (executing program)
2023/02/27 10:19:32 fetching corpus: 12350, signal 298221/425692 (executing program)
2023/02/27 10:19:32 fetching corpus: 12400, signal 298541/425692 (executing program)
2023/02/27 10:19:32 fetching corpus: 12450, signal 298832/425692 (executing program)
2023/02/27 10:19:32 fetching corpus: 12500, signal 299135/425692 (executing program)
2023/02/27 10:19:32 fetching corpus: 12550, signal 299371/425692 (executing program)
2023/02/27 10:19:33 fetching corpus: 12600, signal 299684/425692 (executing program)
2023/02/27 10:19:33 fetching corpus: 12650, signal 299947/425692 (executing program)
2023/02/27 10:19:33 fetching corpus: 12700, signal 300387/425692 (executing program)
2023/02/27 10:19:33 fetching corpus: 12750, signal 300788/425692 (executing program)
2023/02/27 10:19:33 fetching corpus: 12800, signal 301048/425692 (executing program)
2023/02/27 10:19:34 fetching corpus: 12850, signal 301366/425692 (executing program)
2023/02/27 10:19:34 fetching corpus: 12900, signal 301729/425692 (executing program)
2023/02/27 10:19:34 fetching corpus: 12950, signal 301971/425692 (executing program)
2023/02/27 10:19:35 fetching corpus: 13000, signal 302199/425692 (executing program)
2023/02/27 10:19:35 fetching corpus: 13050, signal 302344/425692 (executing program)
2023/02/27 10:19:35 fetching corpus: 13100, signal 302707/425692 (executing program)
2023/02/27 10:19:35 fetching corpus: 13150, signal 302983/425692 (executing program)
2023/02/27 10:19:35 fetching corpus: 13200, signal 303298/425692 (executing program)
2023/02/27 10:19:36 fetching corpus: 13250, signal 303582/425692 (executing program)
2023/02/27 10:19:36 fetching corpus: 13300, signal 303828/425692 (executing program)
2023/02/27 10:19:36 fetching corpus: 13350, signal 304112/425692 (executing program)
2023/02/27 10:19:36 fetching corpus: 13400, signal 304345/425692 (executing program)
2023/02/27 10:19:37 fetching corpus: 13450, signal 304674/425692 (executing program)
2023/02/27 10:19:37 fetching corpus: 13500, signal 304954/425692 (executing program)
2023/02/27 10:19:37 fetching corpus: 13550, signal 305175/425692 (executing program)
2023/02/27 10:19:37 fetching corpus: 13600, signal 305439/425692 (executing program)
2023/02/27 10:19:38 fetching corpus: 13650, signal 305694/425692 (executing program)
2023/02/27 10:19:38 fetching corpus: 13700, signal 306067/425692 (executing program)
2023/02/27 10:19:38 fetching corpus: 13750, signal 306418/425692 (executing program)
2023/02/27 10:19:39 fetching corpus: 13800, signal 306762/425692 (executing program)
2023/02/27 10:19:39 fetching corpus: 13850, signal 307157/425692 (executing program)
2023/02/27 10:19:39 fetching corpus: 13900, signal 307582/425692 (executing program)
2023/02/27 10:19:40 fetching corpus: 13950, signal 307950/425692 (executing program)
2023/02/27 10:19:40 fetching corpus: 14000, signal 308197/425692 (executing program)
2023/02/27 10:19:40 fetching corpus: 14050, signal 308411/425692 (executing program)
2023/02/27 10:19:40 fetching corpus: 14100, signal 308592/425692 (executing program)
2023/02/27 10:19:40 fetching corpus: 14150, signal 308960/425692 (executing program)
2023/02/27 10:19:41 fetching corpus: 14200, signal 309280/425692 (executing program)
2023/02/27 10:19:41 fetching corpus: 14250, signal 309590/425692 (executing program)
2023/02/27 10:19:41 fetching corpus: 14300, signal 309831/425692 (executing program)
2023/02/27 10:19:42 fetching corpus: 14350, signal 310127/425692 (executing program)
2023/02/27 10:19:42 fetching corpus: 14400, signal 310393/425692 (executing program)
2023/02/27 10:19:42 fetching corpus: 14450, signal 310724/425692 (executing program)
2023/02/27 10:19:42 fetching corpus: 14500, signal 310969/425696 (executing program)
2023/02/27 10:19:42 fetching corpus: 14550, signal 311335/425696 (executing program)
2023/02/27 10:19:43 fetching corpus: 14600, signal 312099/425696 (executing program)
2023/02/27 10:19:44 fetching corpus: 14650, signal 312337/425696 (executing program)
2023/02/27 10:19:44 fetching corpus: 14700, signal 312632/425696 (executing program)
2023/02/27 10:19:45 fetching corpus: 14750, signal 312872/425696 (executing program)
2023/02/27 10:19:45 fetching corpus: 14800, signal 313088/425696 (executing program)
2023/02/27 10:19:45 fetching corpus: 14850, signal 313435/425696 (executing program)
2023/02/27 10:19:45 fetching corpus: 14900, signal 313640/425696 (executing program)
2023/02/27 10:19:46 fetching corpus: 14950, signal 313838/425696 (executing program)
2023/02/27 10:19:46 fetching corpus: 15000, signal 314233/425696 (executing program)
2023/02/27 10:19:46 fetching corpus: 15050, signal 314438/425696 (executing program)
2023/02/27 10:19:46 fetching corpus: 15100, signal 314679/425696 (executing program)
2023/02/27 10:19:47 fetching corpus: 15150, signal 314989/425703 (executing program)
2023/02/27 10:19:47 fetching corpus: 15200, signal 315232/425703 (executing program)
2023/02/27 10:19:47 fetching corpus: 15216, signal 315282/425703 (executing program)
2023/02/27 10:19:47 fetching corpus: 15216, signal 315282/425703 (executing program)
2023/02/27 10:19:50 starting 8 fuzzer processes
10:19:50 executing program 1:
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000000))
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r0, 0x800, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x14)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000240)={'sit0\x00', &(0x7f00000001c0)={'syztnl0\x00', <r1=>0x0, 0x4, 0xb6, 0x7, 0xaf, 0x56, @remote, @rand_addr=' \x01\x00', 0x20, 0x1, 0x9, 0x2}})
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0xa0, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x1}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0xfffff95e}, @ETHTOOL_A_CHANNELS_OTHER_COUNT={0x8, 0x8, 0x6}, @ETHTOOL_A_CHANNELS_HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0xe8de}]}, 0xa0}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
recvmsg(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f00000003c0)=@pppol2tpin6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @dev}}}}, 0x80, &(0x7f0000000540)=[{&(0x7f0000000440)=""/155, 0x9b}, {&(0x7f0000000500)=""/63, 0x3f}, {0xffffffffffffffff}], 0x3}, 0x4000a000)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000680)={'syztnl0\x00', &(0x7f0000000600)={'syztnl0\x00', <r3=>r1, 0x4, 0x0, 0xf7, 0x8000, 0xc, @mcast2, @remote, 0x10, 0x700, 0x4, 0x3f}})
sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f0000000780)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x64, 0x0, 0x200, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}]}, 0x64}, 0x1, 0x0, 0x0, 0x1}, 0x4000080)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000800)={@remote, @multicast1, <r4=>0x0}, &(0x7f0000000840)=0xc)
sendmsg$ETHTOOL_MSG_WOL_GET(r2, &(0x7f0000000a00)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000009c0)={&(0x7f0000000880)={0x110, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}]}, @HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x110}, 0x1, 0x0, 0x0, 0x4}, 0x40)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f0000000ac0)={'syztnl0\x00', &(0x7f0000000a40)={'ip6tnl0\x00', 0x0, 0x4, 0x9, 0x7f, 0x8, 0x42, @dev={0xfe, 0x80, '\x00', 0x15}, @dev={0xfe, 0x80, '\x00', 0x20}, 0x8000, 0x8000, 0x80000001, 0x2}})
sendmsg$BATADV_CMD_TP_METER_CANCEL(r2, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x1c, r0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040040)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000c00), 0x0, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r5, &(0x7f0000000d00)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x24, 0x0, 0x8, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008884}, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000d40)='wchan\x00')
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001e00)={{{@in6=@dev, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0}}, {{@in=@remote}, 0x0, @in6=@mcast1}}, &(0x7f0000001f00)=0xe8)
lstat(&(0x7f0000001fc0)='./file0\x00', &(0x7f0000002000)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
sendmsg$nl_xfrm(r6, &(0x7f0000002540)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x8002}, 0xc, &(0x7f0000002500)={&(0x7f0000002080)=@migrate={0x44c, 0x21, 0x6, 0x70bd2b, 0x25dfdbfd, {{@in=@multicast2, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x4e21, 0x0, 0x4e21, 0x0, 0x2, 0x0, 0x90, 0x4, r4, 0xee00}, 0x6e6bb2, 0x2}, [@XFRMA_SET_MARK_MASK={0x8, 0x1e, 0x40}, @XFRMA_SET_MARK={0x8, 0x1d, 0x9}, @sec_ctx={0x69, 0x8, {0x65, 0x8, 0x1, 0x5, 0x5d, "388857219a5e7e5d2cbb8baccf3890996ef5b7f1d8e6bf312d2a84b7704c841a42a0ccb080060c3f48ea4e6d2dbef126655651c22fcc1ed21c79e8ca86164b24b7a07a707bb26e7850ebd1a0ca915b93d6f731f91d56cf1ad17032b512"}}, @address_filter={0x28, 0x1a, {@in6=@mcast1, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2, 0x7, 0x2}}, @replay_val={0x10, 0xa, {0x70bd2c, 0x70bd28, 0x1f0}}, @policy_type={0xa, 0x10, {0x1}}, @policy_type={0xa}, @sa={0xe4, 0x6, {{@in=@multicast1, @in=@local, 0x4e21, 0x1, 0x4e22, 0x2, 0xa, 0x20, 0x80, 0x3a, r7, r8}, {@in=@loopback, 0x4d6, 0x6c}, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, {0x1, 0x3, 0x4, 0x7fff, 0x9, 0xb2a, 0x6000000, 0x81}, {0x4, 0x9, 0x4, 0x1a3}, {0x4, 0xad0, 0x6}, 0x70bd2c, 0x3504, 0xa, 0x0, 0x5}}, @algo_auth_trunc={0x108, 0x14, {{'sha1-asm\x00'}, 0x5e0, 0x0, "3133c9afea7bfbdefbb3b9162d7c0ef28e7f981cfd831100e0a75c44f1a8e733c14d026380f4e4cdc57ca0698db09314fa2d8aebeaefa0c90db4c0ff8b3f35573f5e8c4eecd3289892aede224ad39f8a143e952d4c86b12ee4db85bd69944975388a0d933791a7d3c9f31b8292b3b60d43e0d69df57389638e6bc9805bae406e43d204f43a1db54efe39487ae5fff1e8c9e3a388b19d2c5016c492dba6dcb718bb3f99fd4302c8451003eda6c1a2ead9e3d8c0ad439f3612f27f7f96"}}, @tmpl={0x144, 0x5, [{{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4d3, 0x2b}, 0x0, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x3505, 0x3, 0x0, 0x6, 0x400, 0x9, 0x7}, {{@in=@multicast1, 0x4d2, 0x6c}, 0xa, @in=@broadcast, 0x3503, 0x4, 0x2, 0xfe, 0xfff, 0x279, 0x5}, {{@in=@remote, 0x4d6, 0x3c}, 0x2, @in6=@empty, 0x3506, 0x3, 0x2, 0xff, 0xe26b, 0x40, 0x7}, {{@in6=@empty, 0x4d4, 0x32}, 0xa, @in6=@private2, 0x0, 0x3, 0x1, 0x0, 0x1, 0x9, 0x9119}, {{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4d5, 0xff}, 0xa, @in6=@mcast1, 0x0, 0x1, 0x2, 0xce, 0x4, 0x20, 0x400}]}]}, 0x44c}, 0x1, 0x0, 0x0, 0x8004}, 0x4000000)
sendmsg$NL80211_CMD_AUTHENTICATE(r2, &(0x7f0000002700)={&(0x7f0000002580)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000026c0)={&(0x7f0000002600)={0x8c, 0x0, 0x400, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@key_params=[@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x4}, @NL80211_ATTR_KEY={0x34, 0x50, 0x0, 0x1, [@NL80211_KEY_TYPE={0x8}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_SEQ={0x8, 0x4, "0d49e678"}, @NL80211_KEY_IDX={0x5, 0x2, 0x5}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "05fd3cf4296ff9473d9f0bb2e0"}]}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}], @NL80211_ATTR_MAC={0xa, 0x6, @random="f5f7ebe1e190"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}]}, 0x8c}, 0x1, 0x0, 0x0, 0xa9d92f0079878475}, 0x20000004)

10:19:50 executing program 2:
ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, &(0x7f0000000000)="d388a5885135765a8e93b73883095386249f3dd4c2c70260695647d9eb8e70ec0f259df4ebee7b8376f636f7ca4e2b8bc84e58ea8eca61b4d0c39e9dd67810a14aefb8a6d414673a1ce4867e42bf5a01e4dbdeb8eb342975e58d")
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000a00)=[{{&(0x7f0000000080), 0x6e, &(0x7f0000000280)=[{&(0x7f0000000100)=""/120, 0x78}, {&(0x7f0000000180)=""/108, 0x6c}, {&(0x7f0000000200)=""/103, 0x67}], 0x3}}, {{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000002c0)=""/146, 0x92}], 0x1, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r0=>0x0, <r1=>0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, <r2=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r3=>0x0, 0x0, <r4=>0x0}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0xf8}}, {{&(0x7f00000004c0)=@abs, 0x6e, &(0x7f0000000680)=[{&(0x7f0000000540)=""/242, 0xf2}, {&(0x7f0000000640)=""/36, 0x24}], 0x2, &(0x7f00000006c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000000740), 0x6e, &(0x7f00000007c0), 0x0, &(0x7f0000000800)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}}, {{&(0x7f0000000840), 0x6e, &(0x7f0000000940)=[{&(0x7f00000008c0)=""/57, 0x39}, {&(0x7f0000000900)=""/18, 0x12}], 0x2, &(0x7f0000000980)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, <r8=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r9=>0x0}}}], 0x68}}], 0x5, 0x20, 0x0)
r10 = fspick(0xffffffffffffff9c, &(0x7f0000000b40)='./file0\x00', 0x1)
kcmp$KCMP_EPOLL_TFD(r0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000b80)={0xffffffffffffffff, r10, 0x800})
r11 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000bc0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
ioctl$BTRFS_IOC_SEND(r6, 0x40489426, &(0x7f0000000c40)={{r11}, 0x8, &(0x7f0000000c00)=[0x7ff, 0x80000000, 0x8, 0x51, 0x3, 0x85f, 0x0, 0x0], 0x10001, 0x4, [0x80000000, 0x800, 0x100000000, 0x9]})
r12 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000cc0), 0x1, 0x0)
ioctl$AUTOFS_IOC_EXPIRE(r12, 0x810c9365, &(0x7f0000000d00)={{0x2, 0x6}, 0x100, './file0/file0\x00'})
getsockopt$inet_mreq(r8, 0x0, 0x24, &(0x7f0000000e40)={@empty, @initdev}, &(0x7f0000000e80)=0x8)
openat(r2, &(0x7f0000000ec0)='./file0/file0\x00', 0x2a4040, 0x80)
clone3(&(0x7f0000001280)={0x200000100, &(0x7f0000000f80), &(0x7f0000000fc0)=<r13=>0x0, &(0x7f0000001000), {0x32}, &(0x7f0000001040)=""/228, 0xe4, &(0x7f0000001140)=""/229, &(0x7f0000001240)=[r0, r9, r3, r0, r0, r0, r3, r3, r9], 0x9, {r7}}, 0x58)
perf_event_open(&(0x7f0000000f00)={0x5, 0x80, 0x1, 0xe4, 0x3f, 0x5, 0x0, 0x4, 0x10000, 0x9, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x85, 0x0, @perf_config_ext={0x0, 0x19b51170}, 0x2, 0x3, 0x1, 0x2, 0x7, 0x0, 0xa813, 0x0, 0x1, 0x0, 0x15}, r13, 0xa, 0xffffffffffffffff, 0x1)
pipe2$9p(&(0x7f0000001300)={0xffffffffffffffff, <r14=>0xffffffffffffffff}, 0x800)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r14, 0x80047213, &(0x7f0000001340))
r15 = syz_mount_image$tmpfs(&(0x7f0000001400), &(0x7f0000001440)='./file1\x00', 0xffffffffffff0001, 0x1, &(0x7f00000014c0)=[{&(0x7f0000001480)="bc2dc55d5f7171babc7881df0c84b40a53ddab5b00e6732e", 0x18, 0xfffffffffffffff9}], 0x10000, &(0x7f0000001500)={[{@uid={'uid', 0x3d, r1}}], [{@euid_eq={'euid', 0x3d, r1}}, {@smackfsroot={'smackfsroot', 0x3d, '/proc/sys/net/ipv4/tcp_rmem\x00'}}, {@dont_hash}, {@subj_type={'subj_type', 0x3d, '-^)'}}, {@dont_measure}]})
mount$9p_fd(0x0, &(0x7f0000001380)='./file0/file0\x00', &(0x7f00000013c0), 0x58000, &(0x7f0000001580)={'trans=fd,', {'rfdno', 0x3d, r7}, 0x2c, {'wfdno', 0x3d, r15}, 0x2c, {[{@aname={'aname', 0x3d, '.'}}, {@cache_none}, {@dfltgid={'dfltgid', 0x3d, r4}}, {@nodevmap}], [{@obj_role={'obj_role', 0x3d, '/proc/sys/net/ipv4/tcp_rmem\x00'}}, {@hash}, {@obj_user={'obj_user', 0x3d, '/proc/sys/net/ipv4/tcp_congestion_control\x00'}}, {@obj_role}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}]}})
r16 = openat$null(0xffffffffffffff9c, &(0x7f0000001680), 0x10940, 0x0)
ioctl$GIO_SCRNMAP(r16, 0x4b40, &(0x7f00000016c0)=""/213)
syz_io_uring_setup(0x5104, &(0x7f00000017c0)={0x0, 0xffe5, 0x2, 0x1, 0x280, 0x0, r5}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000001840), &(0x7f0000001880)=<r17=>0x0)
syz_io_uring_submit(0x0, r17, &(0x7f00000018c0)=@IORING_OP_POLL_REMOVE={0x7, 0x5, 0x0, 0x0, 0x0, 0x23456}, 0x0)

10:19:50 executing program 0:
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0xf, 0x2, {{0x8, 0x4, 0x8}, 0x7}}, 0x18)
write$P9_RRENAME(0xffffffffffffffff, &(0x7f0000000040)={0x7, 0x15, 0x2}, 0x7)
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000080)={0x8, 0x100, 0x0, 0x3, 0x5, [{0x7f, 0x7c3, 0x7, '\x00', 0xa}, {0x5d2, 0xfff00, 0x1ff, '\x00', 0x2c01}, {0x1, 0x1, 0x7, '\x00', 0x1}, {0x9, 0x6, 0x800, '\x00', 0x102}, {0xfffffffffffffff9, 0x3, 0xfffffffffffffff7, '\x00', 0x2081}]})
setsockopt$inet_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f00000001c0)=0x3, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
r2 = syz_mount_image$nfs4(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x4, 0x1, &(0x7f00000002c0)=[{&(0x7f0000000280)="1ad9f8afd22d731bf768fecba8b699cfc66e82ffdd753d150e37c11d56e916ad5523bb3310c0a5f6b0909d", 0x2b, 0x1c1}], 0x2010000, &(0x7f0000000300)={[{'\x00'}], [{@audit}]})
r3 = openat2(r2, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x140, 0x188, 0x24}, 0x18)
r4 = add_key$fscrypt_v1(&(0x7f00000003c0), &(0x7f0000000400)={'fscrypt:', @auto=[0x34, 0x63, 0x31, 0x62, 0x36, 0x36, 0x31, 0x38, 0x61, 0x63, 0x37, 0x63, 0x64, 0x39, 0x39, 0x35]}, &(0x7f0000000440)={0x0, "d8a60c5c1957c62fb9ee0a0bfa8a7f10c8ddbddc48656f4ee3e5be85c82dc475a392eb75f9e601ed17bfc648dbed62f053607342689765c217e7ffe60343a9db", 0x25}, 0x48, 0xfffffffffffffffb)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r3, 0xc0506617, &(0x7f00000004c0)={@desc={0x1, 0x0, @desc4}, 0x40, r4, '\x00', @a})
ioctl$RTC_EPOCH_SET(0xffffffffffffffff, 0x4008700e, 0x8311)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000680)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000580)="e7a473b97dccab373f4d886965f538cf30f43bbc71a667026927dc94b6a9181f374ed35e2ec7b6da18faf7243c4052bf90745ea5019d565a3e896376d668beeb02ed51246711eb7813c665a5b6dac0a03de5dc7dec0d1157a5bc055a7a151f381fdf4bf09f128397b34df3f1fdd223db2dfbbb332b07c732cf9221d35f2793432fef98796d275e9f3f647ad274b3ddbe4a2ee2a73adc956c8501fe231b243aea6ec53333cf321d8cd029e72e79baaa85a4d348cc87dad15d6fcd236e47c4244e987409a86608802856ad2a51ea52510b23edbc99505a00a6aa06b5e4e63e2beb51416b15d325a8b69368ab5c", 0x3, 0x0, 0x1, {0x1}}, 0x1)
r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000006c0), 0x1, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r3, 0xc0189378, &(0x7f0000000700)={{0x1, 0x1, 0x18, <r6=>r5, {r0}}, './file0\x00'})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000740)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3}}, 0x6)
openat(r6, &(0x7f0000000780)='./file0\x00', 0x100, 0x5)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
fallocate(r7, 0x4, 0xaf, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000800)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'})

10:19:50 executing program 3:
r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x7fffffff)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000000))
r1 = syz_open_dev$sg(&(0x7f0000000040), 0x7, 0x40)
r2 = dup2(r1, r0)
r3 = accept$inet(r2, 0x0, &(0x7f0000000080))
r4 = fcntl$dupfd(r3, 0x0, r1)
r5 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0x120)
r6 = dup(r3)
ioctl$SCSI_IOCTL_GET_IDLUN(r6, 0x5382, &(0x7f0000000100))
ioctl$KDGKBENT(0xffffffffffffffff, 0x4b46, &(0x7f0000000140)={0x9, 0x8, 0x1000})
openat(r4, &(0x7f0000000180)='./file0\x00', 0x400, 0x140)
r7 = open_tree(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x80000)
ioctl$SG_SET_RESERVED_SIZE(r1, 0x2275, &(0x7f0000000200))
socket$inet(0x2, 0x1, 0xc440)
r8 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
sendfile(r5, r8, &(0x7f0000000280)=0x101, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r8, 0xc020f509, &(0x7f00000002c0)={<r9=>r7, 0x8, 0x27, 0xf26f})
openat(r9, &(0x7f0000000300)='./file0\x00', 0x200800, 0x4)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r3, 0xf503, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000340)={0x2, 0x4e23, @multicast2}, 0x10)

[  149.673498] audit: type=1400 audit(1677493190.097:6): avc:  denied  { execmem } for  pid=262 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
10:19:50 executing program 5:
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_USE_ADAPTIVE_RX={0x5, 0xb, 0x1}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_LOW={0x8, 0xf, 0x5}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8}, @ETHTOOL_A_COALESCE_RX_USECS_LOW={0x8, 0xe, 0x401}, @ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0x29f}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0x7}]}, 0x44}}, 0x4000000)
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, 0x0, 0x800, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x20, 0x75}}}}, [@NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x48810}, 0x4840)
r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000240)='.log\x00', 0x100, 0x1)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x62000000}, 0xc, &(0x7f0000000480)={&(0x7f00000002c0)={0x1b4, 0x0, 0x1, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7ff, 0x6c}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x18}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98a}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}], @NL80211_ATTR_CSA_IES={0x168, 0xb9, 0x0, 0x1, [@NL80211_ATTR_CSA_C_OFF_BEACON={0xe, 0xba, [0x2, 0x1000, 0x7fff, 0x0, 0x7fff]}, @beacon_params=[@NL80211_ATTR_IE_PROBE_RESP={0xfa, 0x7f, [@ext_channel_switch={0x3c, 0x4, {0x1, 0x9, 0xe, 0x1}}, @perr={0x84, 0xee, {0x1, 0xe, [@not_ext={{}, @broadcast, 0x8, "", 0x19}, @not_ext={{}, @broadcast, 0x1, "", 0x36}, @ext={{}, @device_b, 0x3, @device_a, 0xc}, @not_ext={{}, @device_a, 0x7ff, "", 0xb}, @ext={{}, @broadcast, 0x1000, @device_a, 0x24}, @ext={{}, @device_a, 0x3, @broadcast, 0x22}, @ext={{}, @device_a, 0x8, @device_a, 0x7}, @not_ext={{}, @broadcast, 0x5823bb7c, "", 0x1e}, @ext={{}, @device_b, 0x10001, @device_a, 0x11}, @ext={{}, @device_b, 0x9, @device_a, 0x3}, @ext={{}, @broadcast, 0x16ff, @device_a, 0x23}, @ext={{}, @device_b, 0x3f, @broadcast, 0x2e}, @ext={{}, @device_a, 0x1ff, @device_a, 0x42}, @not_ext={{}, @device_a, 0x7, "", 0x5}]}}]}, @NL80211_ATTR_IE={0x4d, 0x2a, [@link_id={0x65, 0x12, {@initial, @broadcast}}, @ht={0x2d, 0x1a, {0x1, 0x1, 0x2, 0x0, {0x8001, 0x1, 0x0, 0x80, 0x0, 0x1, 0x1}, 0x1, 0x3ff}}, @mesh_chsw={0x76, 0x6, {0x5, 0xfe, 0x2f, 0x3}}, @mesh_id={0x72, 0x6}, @challenge={0x10, 0x1, 0x50}, @challenge={0x10, 0x1, 0x94}, @challenge={0x10, 0x1, 0xc1}]}], @NL80211_ATTR_CSA_C_OFF_PRESP={0x6, 0xbb, [0x0]}]}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x44000}, 0x2004c8d0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000680)={'erspan0\x00', &(0x7f0000000600)={'tunl0\x00', <r1=>0x0, 0x7800, 0x60, 0x80000001, 0x3, {{0x11, 0x4, 0x1, 0x9, 0x44, 0x64, 0x0, 0x8, 0x2f, 0x0, @loopback, @empty, {[@noop, @timestamp_prespec={0x44, 0x2c, 0x16, 0x3, 0x0, [{@multicast1, 0xcb5}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x1}, {@broadcast, 0xc87}, {@multicast1, 0x4}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0xfff}]}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x89f6, &(0x7f0000000740)={'ip6_vti0\x00', &(0x7f00000006c0)={'sit0\x00', <r2=>0x0, 0x2f, 0xff, 0x1, 0x1000, 0x72, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, 0x7800, 0x7800, 0x1f, 0xd1}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000900)={'ip_vti0\x00', &(0x7f00000007c0)={'syztnl1\x00', <r3=>0x0, 0x8000, 0x1, 0x1, 0x6ed0, {{0x3b, 0x4, 0x2, 0x1, 0xec, 0x64, 0x0, 0x80, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x3a}, @private=0xa010102, {[@cipso={0x86, 0x45, 0x3, [{0x7, 0x4, "c9b5"}, {0x0, 0x4, "7cc0"}, {0x7, 0xd, "d05cd4a241f0d127f605da"}, {0x7, 0x3, "8e"}, {0x6, 0xa, "cd14b9ab691ceed0"}, {0x1, 0xd, "5bfd42c4418cd311c81108"}, {0x5, 0x10, "8f1426ddaf05212cc3aa55a7182e"}]}, @timestamp_addr={0x44, 0x34, 0xb3, 0x1, 0x0, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x8}, {@dev={0xac, 0x14, 0x14, 0x1e}, 0x3ff}, {@local, 0xeb5}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x6}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x880}, {@empty}]}, @noop, @ssrr={0x89, 0x23, 0x9a, [@loopback, @private=0xa010102, @multicast1, @remote, @multicast2, @broadcast, @multicast2, @empty]}, @rr={0x7, 0xb, 0x8d, [@rand_addr=0x64010102, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @cipso={0x86, 0x2d, 0x0, [{0x0, 0x6, "78cbbfab"}, {0x6, 0x7, "0f6a972554"}, {0x7, 0x9, "cc06336477a431"}, {0x5, 0xd, "00651eb7e86f14e49da2dd"}, {0x7, 0x4, "6383"}]}]}}}}})
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000940)={{{@in=@broadcast, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@loopback}, 0x0, @in6=@private1}}, &(0x7f0000000a40)=0xe8)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r0, 0x89f4, &(0x7f0000000c80)={'syztnl0\x00', &(0x7f0000000c00)={'syztnl0\x00', <r5=>0x0, 0x2f, 0x0, 0x0, 0x41f, 0xa, @mcast2, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x8000, 0x48, 0x0, 0x4}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000cc0)={'wg1\x00', <r6=>0x0})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f00000024c0)={'batadv0\x00', <r7=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000002780)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002740)={&(0x7f0000002500)={0x230, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@HEADER={0x9c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}]}, 0x230}, 0x1, 0x0, 0x0, 0x2845}, 0x4000000)
r8 = openat$full(0xffffffffffffff9c, &(0x7f00000027c0), 0x0, 0x0)
fcntl$getownex(r8, 0x10, &(0x7f0000002800))
sendmsg$NL80211_CMD_SET_POWER_SAVE(r0, &(0x7f0000002900)={&(0x7f0000002840)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000028c0)={&(0x7f0000002880)={0x34, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000044}, 0x24000811)
r9 = open(&(0x7f0000002940)='./file0\x00', 0x111a40, 0x80)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000029c0)={'batadv0\x00', <r10=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r9, &(0x7f0000002b00)={&(0x7f0000002980)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002ac0)={&(0x7f0000002a00)={0x90, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x80c8}, 0x880)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002b80), r0)
sendmsg$NL80211_CMD_SET_MESH_CONFIG(r9, &(0x7f0000002c40)={&(0x7f0000002b40)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002c00)={&(0x7f0000002bc0)={0x30, r11, 0x1, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0xfffffffa, 0x17}}}}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x37}]}, 0x30}, 0x1, 0x0, 0x0, 0x81}, 0xc005)

10:19:50 executing program 4:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x38, r0, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008000}, 0x4028041)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x94, r0, 0x200, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY={0x40, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "67b0eda7d7"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "2ed588d022bf58e29807f8c4de"}]}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x4}, @NL80211_ATTR_KEY={0x10, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "a1099879a0"}]}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "7529ce709b"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_DEFAULT={0x4}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x808)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x5c, r1, 0x4, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x5c}, 0x1, 0x0, 0x0, 0x60}, 0x20004090)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000440)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff}, './file0\x00'})
r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_GET(r2, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x8c, r3, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xffff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x400}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000000}, 0x90)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r2)
sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000900)={&(0x7f00000006c0)={0x20c, r4, 0x200, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x0, 0x2f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x53d}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_IE={0x1cc, 0x2a, [@prep={0x83, 0x25, @ext={{}, 0x1, 0xff, @broadcast, 0x8, @broadcast, 0x2ed9eb72, 0x10000, @device_a, 0xfffffffc}}, @dsss={0x3, 0x1, 0x2}, @prep={0x83, 0x25, @ext={{}, 0x3, 0x8, @broadcast, 0xfffffff8, @device_a, 0xd40, 0x4, @broadcast, 0x1}}, @random_vendor={0xdd, 0x37, "7f148c6452d4786f53e48a33f3647bf862df07ce0c7056ce01e4432f032b30a0ab291ee82eed8a55b041b4f26bdffa080fe08082d99f82"}, @fast_bss_trans={0x37, 0xae, {0x85, 0x6, "04b30b2edc14c1a2312209bfd6106417", "39645ecded4babde9688179a8e9bbc352c0d03b4afbc5b79748a9ef9c52b254b", "f693c3a649b57c46438893d254d7342b50b31f21e1d4f635965a864a4bbeba2d", [{0x3, 0x2, "6cb2"}, {0x3, 0x13, "9ce0f2d4d481e1153aa617e7b44f14df8f6b63"}, {0x3, 0x1a, "fd4f9eda92fd6e8cbbeaa7c566393d3fd44e9d69061a59ee04ac"}, {0x2, 0x6, "3abb5c62944e"}, {0x4, 0x14, "3808040e25a5fb475694a53bea1b6e33048965a9"}, {0x4, 0x7, "d5e96a7542c913"}]}}, @tim={0x5, 0x53, {0x8, 0xd0, 0x3f, "75addc2957e8748f9102eed8051b21fa75068d8304269baff21135b3791ffd32873b4462c1bedb67617c1726189085f423d41c67c56c001c173dc07863318274df030ccdacd7a2ca12d8a865fc63dc99"}}, @mic={0x8c, 0x18, {0xc14, "45e75627cf78", @long="c8eaccc494f11b76a677fb1bfda57d03"}}, @challenge={0x10, 0x1, 0xe}, @ht={0x2d, 0x1a, {0x8000, 0x3, 0x6, 0x0, {0x81, 0x6, 0x0, 0x4, 0x0, 0x1, 0x1, 0x2}, 0x8, 0xfb6}}]}]}, 0x20c}}, 0x8000)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000009c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_TESTMODE(r2, &(0x7f0000000b40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x18000001}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a00)={0xd4, r0, 0x400, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x9, 0x4b}}}}, [@NL80211_ATTR_TESTDATA={0x3f, 0x45, "281345e6ae22cc0488657a9fc05a239ee2356ded6df51a74c82427ff4c0770961e05452b4bcd147337664be207d6bbb7234dec772b4c06b1ac7b25"}, @NL80211_ATTR_TESTDATA={0x6a, 0x45, "f9409c4bc5fcdb67f116fde0dccc2c2a80014f2b92813dc6553d0013b68c40393836bbda5e1bd707f2aba12c1820893c8a3d9eba836b1feb11d80c47f104932a7c959c6c33f1e975224c9bc72ffe30f0af5e472cd3763111d62552017a26ad697b3bf7f590bd"}]}, 0xd4}}, 0x800)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000bc0), r2)
sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f0000000d00)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x140000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c00)={0x8c, r6, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NL80211_ATTR_REG_RULES={0x20, 0x22, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x5}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x4c, 0x22, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7fff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4000}]}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4}, 0x4004805)
sendmsg$NL80211_CMD_TESTMODE(r2, &(0x7f0000000f00)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000d80)={0x120, r4, 0x1, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TESTDATA={0x102, 0x45, "3452a3cfb7f183605b227f52101d0f29956595690b48070147a2c89821011c558e22ac25e9514891003b07aaa0ca018e979f98177681535e7fb1bde618e478e84e15b65a7db07d6215f9bc4643234d5567afbc565ffcacc335aedd573a8c5fc9342119cbf7e0529f79bfd1cff7011066b2a371c6bd63e36785d17da665aa363e8b0032116157633438fa5f17dbbd9314f25ede15e1704b95dd42f6d2e13d9b6afb94051d8230e19a879abdac3616d5ae9da3457c337f18f502ed064f09bbde38888b5eefa0cf0c8142f689bf67b60bece486ff5ef3f0dfca569ad3a21d33ee68fa2aa7b65d5bb4411589e4f7dce73162eed12c447fe7442962c9102d761c"}]}, 0x120}, 0x1, 0x0, 0x0, 0x800}, 0x40000)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), r2)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000f80)={{0x1, 0x1, 0x18, <r7=>r2, {0x6}}, './file0\x00'})
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r7, &(0x7f0000001080)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001040)={&(0x7f0000001000)={0x30, r4, 0x20, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1000, 0x33}}}}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x30}, 0x1, 0x0, 0x0, 0x20008041}, 0xcc)
r8 = pidfd_getfd(r7, r7, 0x0)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r8, &(0x7f0000001180)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x14, r6, 0x300, 0x70bd28, 0x8, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4004040}, 0x40000)

10:19:50 executing program 7:
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x5)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x5)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x7f)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0xffffffffffffffff)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x8001)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x1f)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0xfffffffffffffeff)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0xa7)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x2)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x8)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x1000)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x2)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x4)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0xfa)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x1)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x5426)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x8)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x9)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x6cfe9eae)
arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x7fff)

10:19:50 executing program 6:
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000000)={0x200, 0x4, 0x0, 'queue0\x00', 0x1})
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000140)=<r0=>0x0)
r1 = perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x40, 0x0, 0x0, 0x6, 0x0, 0x2, 0xa00, 0xc, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8, 0x1, @perf_config_ext={0x2, 0xfc97}, 0x144e, 0x7, 0x3, 0x2, 0x5, 0x0, 0xec89, 0x0, 0x4, 0x0, 0x4000000080000}, r0, 0x5, 0xffffffffffffffff, 0x8)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000180)={0x2, @tick=0x5, 0x3, {0x2, 0xff}, 0x3, 0x0, 0x8})
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0)
finit_module(r1, &(0x7f00000001c0)='\'T(#\x00', 0x0)
r2 = fcntl$getown(r1, 0x9)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000280), 0x14400, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3, 0x3f, 0xff, 0x8, 0x0, 0x0, 0x48864, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x10001, 0x2, @perf_config_ext={0x10000, 0x9}, 0x10, 0x1000, 0x0, 0x11, 0x4c, 0x20, 0xfe4, 0x0, 0xffff, 0x0, 0xf853}, r2, 0x1, r3, 0x8)
ioctl$AUTOFS_IOC_ASKUMOUNT(r1, 0x80049370, &(0x7f00000002c0))
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r1, 0x4008941a, &(0x7f0000000300)=0x2)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000340)={0x0, <r4=>0x0})
r5 = syz_open_procfs(r4, &(0x7f00000003c0)='fdinfo/4\x00')
r6 = getpgrp(r0)
r7 = perf_event_open(&(0x7f0000000400)={0x3, 0x80, 0x3, 0x5, 0x9, 0x1f, 0x0, 0x5, 0x20280, 0x5, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1f, 0x1, @perf_config_ext={0x8, 0xffff}, 0x1662, 0x7b9, 0x5c5c, 0x7, 0x200, 0x263, 0xf1, 0x0, 0x3, 0x0, 0x4}, r6, 0x8, r1, 0x8)
perf_event_open(&(0x7f00000004c0)={0x3, 0x80, 0x20, 0x8, 0x4, 0xec, 0x0, 0x8c, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2110b2ae, 0x2, @perf_bp={&(0x7f0000000480), 0x3}, 0x9a00, 0x8001, 0xfff, 0x1, 0x0, 0x7, 0xef, 0x0, 0xff, 0x0, 0x100}, 0xffffffffffffffff, 0x5, r7, 0x2)
ioctl$GIO_UNIMAP(r3, 0x4b66, &(0x7f0000000580)={0x1, &(0x7f0000000540)=[{}]})
r8 = gettid()
perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0xf8, 0x1, 0x7f, 0x3, 0x0, 0x100000001, 0x4350, 0xa, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x8001, 0x1, @perf_config_ext={0x7, 0x1}, 0x8008, 0x200, 0xfffffff8, 0x4, 0x80, 0x1, 0x6, 0x0, 0x2, 0x0, 0xffffffff}, r8, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
ioctl$TCSETS2(r5, 0x402c542b, &(0x7f0000000640)={0x6, 0x81, 0x7f, 0x1f, 0x1f, "84f7334cc5c4b59b795a30654dc98a2c459a23", 0x9, 0x1f})

[  150.866898] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  150.870068] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  150.871337] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  150.873866] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  150.875647] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  150.876532] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  151.055962] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  151.056650] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  151.059038] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  151.059108] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  151.059735] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  151.063575] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  151.064358] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  151.066368] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  151.069024] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  151.071092] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  151.073819] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  151.098855] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  151.099539] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  151.100412] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  151.104983] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  151.106645] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  151.108293] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  151.109155] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  151.112531] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  151.113776] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  151.120975] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  151.122288] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  151.123379] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  151.123398] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  151.125033] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  151.128936] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  151.129600] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  151.150355] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  151.151313] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  151.153109] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  151.167335] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  151.169503] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  151.170433] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  151.172087] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  151.173440] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  151.174306] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  152.931183] Bluetooth: hci0: command 0x0409 tx timeout
[  152.993883] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  152.996067] 
[  152.996483] ======================================================
[  152.997979] WARNING: possible circular locking dependency detected
[  152.999987] 6.2.0-next-20230224 #1 Not tainted
[  153.001037] ------------------------------------------------------
[  153.003600] syz-executor.3/273 is trying to acquire lock:
[  153.006205] ffff888016918880 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xd80
[  153.008827] 
[  153.008827] but task is already holding lock:
[  153.010318] ffff888016918920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250
[  153.012708] 
[  153.012708] which lock already depends on the new lock.
[  153.012708] 
[  153.014752] 
[  153.014752] the existing dependency chain (in reverse order) is:
[  153.016617] 
[  153.016617] -> #1 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}:
[  153.018412]        __mutex_lock+0x133/0x14a0
[  153.019544]        hci_cmd_sync_work+0x1e6/0x320
[  153.020751]        process_one_work+0xa0f/0x1790
[  153.021959]        worker_thread+0x63b/0x1260
[  153.023073]        kthread+0x2e9/0x3a0
[  153.024065]        ret_from_fork+0x2c/0x50
[  153.025191] 
[  153.025191] -> #0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}:
[  153.027287]        __lock_acquire+0x2d56/0x6380
[  153.028500]        lock_acquire.part.0+0xea/0x320
[  153.029798]        __flush_work+0x109/0xd80
[  153.030945]        __cancel_work_timer+0x39c/0x4e0
[  153.032243]        hci_cmd_sync_clear+0x52/0x250
[  153.033459]        hci_unregister_dev+0xf9/0x410
[  153.034735]        vhci_release+0x80/0x100
[  153.035856]        __fput+0x263/0xa40
[  153.036860]        task_work_run+0x174/0x280
[  153.038021]        do_exit+0xad8/0x2800
[  153.039084]        do_group_exit+0xd4/0x2a0
[  153.040266]        __x64_sys_exit_group+0x3e/0x50
[  153.041526]        do_syscall_64+0x3f/0x90
[  153.042561]        entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  153.044029] 
[  153.044029] other info that might help us debug this:
[  153.044029] 
[  153.045938]  Possible unsafe locking scenario:
[  153.045938] 
[  153.047389]        CPU0                    CPU1
[  153.048677]        ----                    ----
[  153.049872]   lock(&hdev->cmd_sync_work_lock);
[  153.051094]                                lock((work_completion)(&hdev->cmd_sync_work));
[  153.053261]                                lock(&hdev->cmd_sync_work_lock);
[  153.055059]   lock((work_completion)(&hdev->cmd_sync_work));
[  153.056531] 
[  153.056531]  *** DEADLOCK ***
[  153.056531] 
[  153.058106] 1 lock held by syz-executor.3/273:
[  153.059288]  #0: ffff888016918920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250
[  153.061926] 
[  153.061926] stack backtrace:
[  153.063107] CPU: 1 PID: 273 Comm: syz-executor.3 Not tainted 6.2.0-next-20230224 #1
[  153.065137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  153.067272] Call Trace:
[  153.067964]  <TASK>
[  153.068554]  dump_stack_lvl+0x91/0xf0
[  153.069559]  check_noncircular+0x263/0x2e0
[  153.070675]  ? __pfx_check_noncircular+0x10/0x10
[  153.072065]  __lock_acquire+0x2d56/0x6380
[  153.073124]  ? lock_is_held_type+0x9f/0x120
[  153.074200]  ? __pfx___lock_acquire+0x10/0x10
[  153.075300]  ? __pfx_register_lock_class+0x10/0x10
[  153.076516]  ? __wait_for_common+0x394/0x550
[  153.077611]  ? __pfx_lock_release+0x10/0x10
[  153.078675]  lock_acquire.part.0+0xea/0x320
[  153.079740]  ? __flush_work+0xdd/0xd80
[  153.080713]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  153.081896]  ? __flush_work+0xdd/0xd80
[  153.082851]  ? rcu_read_lock_sched_held+0x42/0x80
[  153.084020]  ? trace_lock_acquire+0x170/0x1e0
[  153.085121]  ? __flush_work+0xdd/0xd80
[  153.086093]  ? lock_acquire+0x32/0xc0
[  153.087022]  ? __flush_work+0xdd/0xd80
[  153.087993]  __flush_work+0x109/0xd80
[  153.088951]  ? __flush_work+0xdd/0xd80
[  153.089949]  ? __pfx_mark_lock.part.0+0x10/0x10
[  153.091069]  ? __pfx___flush_work+0x10/0x10
[  153.092143]  ? lock_acquire.part.0+0xea/0x320
[  153.093263]  ? hci_cmd_sync_clear+0x45/0x250
[  153.094389]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  153.095596]  ? hci_cmd_sync_clear+0x45/0x250
[  153.096663]  ? rcu_read_lock_sched_held+0x42/0x80
[  153.097884]  ? trace_lock_acquire+0x170/0x1e0
[  153.098975]  ? lock_is_held_type+0x9f/0x120
[  153.100037]  ? mark_held_locks+0x9e/0xe0
[  153.101050]  __cancel_work_timer+0x39c/0x4e0
[  153.102139]  ? __pfx___cancel_work_timer+0x10/0x10
[  153.103322]  ? __cancel_work_timer+0x2aa/0x4e0
[  153.104426]  ? __pfx___cancel_work_timer+0x10/0x10
[  153.105678]  ? lock_release+0x1e3/0x710
[  153.106665]  ? __pfx_lock_release+0x10/0x10
[  153.107725]  ? do_raw_write_lock+0x11e/0x3b0
[  153.108809]  ? __pfx_vhci_release+0x10/0x10
[  153.109903]  hci_cmd_sync_clear+0x52/0x250
[  153.110998]  ? __pfx_vhci_release+0x10/0x10
[  153.112053]  hci_unregister_dev+0xf9/0x410
[  153.113085]  vhci_release+0x80/0x100
[  153.114023]  __fput+0x263/0xa40
[  153.114894]  task_work_run+0x174/0x280
[  153.115851]  ? __pfx_task_work_run+0x10/0x10
[  153.116951]  ? do_raw_spin_unlock+0x53/0x220
[  153.118071]  do_exit+0xad8/0x2800
[  153.118929]  ? lock_release+0x1e3/0x710
[  153.119898]  ? __pfx_lock_release+0x10/0x10
[  153.120965]  ? do_raw_spin_lock+0x125/0x270
[  153.122021]  ? __pfx_do_exit+0x10/0x10
[  153.122974]  do_group_exit+0xd4/0x2a0
[  153.123895]  __x64_sys_exit_group+0x3e/0x50
[  153.124973]  do_syscall_64+0x3f/0x90
[  153.125876]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  153.127139] RIP: 0033:0x7f0b17128b19
[  153.128038] Code: Unable to access opcode bytes at 0x7f0b17128aef.
[  153.129557] RSP: 002b:00007ffd6a5660b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  153.131431] RAX: ffffffffffffffda RBX: 00007ffd6a566898 RCX: 00007f0b17128b19
[  153.133163] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[  153.134911] RBP: 0000000000000000 R08: 0000000000000026 R09: 00007ffd6a566898
[  153.136641] R10: 0000000000000020 R11: 0000000000000246 R12: 00007f0b17182233
[  153.138363] R13: 0000000000000002 R14: 0000000000000000 R15: 00000000000000f8
[  153.140094]  </TASK>
[  153.141277] Bluetooth: hci3: command 0x0409 tx timeout
[  153.141302] Bluetooth: hci2: command 0x0409 tx timeout
[  153.142573] Bluetooth: hci4: command 0x0409 tx timeout
[  153.249909] Bluetooth: hci7: command 0x0409 tx timeout
[  153.249950] Bluetooth: hci6: command 0x0409 tx timeout
[  153.250376] Bluetooth: hci5: command 0x0409 tx timeout
[  154.977756] Bluetooth: hci0: command 0x041b tx timeout
[  155.169785] Bluetooth: hci4: command 0x041b tx timeout
[  155.170268] Bluetooth: hci2: command 0x041b tx timeout
[  155.170717] Bluetooth: hci3: command 0x041b tx timeout
[  155.297757] Bluetooth: hci6: command 0x041b tx timeout
[  155.298262] Bluetooth: hci7: command 0x041b tx timeout
[  155.298723] Bluetooth: hci5: command 0x041b tx timeout
[  157.025695] Bluetooth: hci0: command 0x040f tx timeout
[  157.176555] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  157.179491] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  157.184240] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  157.190424] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  157.191494] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  157.192843] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  157.217680] Bluetooth: hci3: command 0x040f tx timeout
[  157.218138] Bluetooth: hci2: command 0x040f tx timeout
[  157.218531] Bluetooth: hci4: command 0x040f tx timeout
[  157.345733] Bluetooth: hci5: command 0x040f tx timeout
[  157.346206] Bluetooth: hci7: command 0x040f tx timeout
[  157.346602] Bluetooth: hci6: command 0x040f tx timeout
[  159.073741] Bluetooth: hci0: command 0x0419 tx timeout
[  159.201690] Bluetooth: hci1: command 0x0409 tx timeout
[  159.265706] Bluetooth: hci4: command 0x0419 tx timeout
[  159.266211] Bluetooth: hci2: command 0x0419 tx timeout
[  159.267105] Bluetooth: hci3: command 0x0419 tx timeout
[  159.393690] Bluetooth: hci6: command 0x0419 tx timeout
[  159.394174] Bluetooth: hci7: command 0x0419 tx timeout
[  159.394576] Bluetooth: hci5: command 0x0419 tx timeout
[  161.249703] Bluetooth: hci1: command 0x041b tx timeout

VM DIAGNOSIS:
10:19:53  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88806ce39d88 RCX=0000000000000003 RDX=000000239fa92f3e
RSI=1ffff1100d9c73fd RDI=ffff88806ce39fe8 RBP=ffff8880147c77a0 RSP=ffff8880147c7690
R8 =ffff888042679f10 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88806ce39380 R13=ffff888042679ac0 R14=ffff88806ce39d60 R15=ffff88800fe31ac0
RIP=ffffffff8448f4ef RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe3c70599000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe3c70597000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff0653111f0 CR3=00000000431ac000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=756e696c2d34365f3638782f62696c2f XMM01=6461657268747062696c2f756e672d78
XMM02=00302e6f732e6461657268747062696c XMM03=2f756e672d78756e696c2d34365f3638
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82502865 RDI=ffffffff87f10da0 RBP=ffffffff87f10d60 RSP=ffff888019e0f190
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff87f10d60 R14=0000000000000010 R15=ffffffff82502850
RIP=ffffffff825028bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe6d22230000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe6d2222e000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa6d0734260 CR3=00000000427aa000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=2e6f747079726362696c2f756e672d78
XMM02=00312e312e6f732e6f74707972636269 XMM03=6c2f756e672d78756e696c2d34365f36
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000