Warning: Permanently added '[localhost]:29268' (ECDSA) to the list of known hosts.
2023/02/24 13:09:19 fuzzer started
2023/02/24 13:09:19 dialing manager at localhost:41417
syzkaller login: [   43.097472] cgroup: Unknown subsys name 'net'
[   43.160700] cgroup: Unknown subsys name 'rlimit'
2023/02/24 13:09:32 syscalls: 2217
2023/02/24 13:09:32 code coverage: enabled
2023/02/24 13:09:32 comparison tracing: enabled
2023/02/24 13:09:32 extra coverage: enabled
2023/02/24 13:09:32 setuid sandbox: enabled
2023/02/24 13:09:32 namespace sandbox: enabled
2023/02/24 13:09:32 Android sandbox: enabled
2023/02/24 13:09:32 fault injection: enabled
2023/02/24 13:09:32 leak checking: enabled
2023/02/24 13:09:32 net packet injection: enabled
2023/02/24 13:09:32 net device setup: enabled
2023/02/24 13:09:32 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2023/02/24 13:09:32 devlink PCI setup: PCI device 0000:00:10.0 is not available
2023/02/24 13:09:32 USB emulation: enabled
2023/02/24 13:09:32 hci packet injection: enabled
2023/02/24 13:09:32 wifi device emulation: enabled
2023/02/24 13:09:32 802.15.4 emulation: enabled
2023/02/24 13:09:32 fetching corpus: 50, signal 36272/38028 (executing program)
2023/02/24 13:09:32 fetching corpus: 100, signal 49513/52859 (executing program)
2023/02/24 13:09:33 fetching corpus: 150, signal 61359/66136 (executing program)
2023/02/24 13:09:33 fetching corpus: 200, signal 72233/78328 (executing program)
2023/02/24 13:09:33 fetching corpus: 250, signal 78146/85557 (executing program)
2023/02/24 13:09:33 fetching corpus: 300, signal 85785/94310 (executing program)
2023/02/24 13:09:33 fetching corpus: 350, signal 91333/100999 (executing program)
2023/02/24 13:09:33 fetching corpus: 400, signal 96361/107159 (executing program)
2023/02/24 13:09:33 fetching corpus: 450, signal 101007/112875 (executing program)
2023/02/24 13:09:34 fetching corpus: 500, signal 106631/119475 (executing program)
2023/02/24 13:09:34 fetching corpus: 550, signal 111350/125179 (executing program)
2023/02/24 13:09:34 fetching corpus: 600, signal 115450/130230 (executing program)
2023/02/24 13:09:34 fetching corpus: 650, signal 120293/135917 (executing program)
2023/02/24 13:09:34 fetching corpus: 700, signal 123170/139745 (executing program)
2023/02/24 13:09:34 fetching corpus: 750, signal 125872/143382 (executing program)
2023/02/24 13:09:34 fetching corpus: 800, signal 128031/146526 (executing program)
2023/02/24 13:09:35 fetching corpus: 850, signal 130591/149968 (executing program)
2023/02/24 13:09:35 fetching corpus: 900, signal 133476/153688 (executing program)
2023/02/24 13:09:35 fetching corpus: 950, signal 135971/157006 (executing program)
2023/02/24 13:09:35 fetching corpus: 1000, signal 137966/159831 (executing program)
2023/02/24 13:09:35 fetching corpus: 1050, signal 139700/162393 (executing program)
2023/02/24 13:09:35 fetching corpus: 1100, signal 141484/165000 (executing program)
2023/02/24 13:09:35 fetching corpus: 1150, signal 143686/167946 (executing program)
2023/02/24 13:09:35 fetching corpus: 1200, signal 145842/170785 (executing program)
2023/02/24 13:09:36 fetching corpus: 1250, signal 147713/173388 (executing program)
2023/02/24 13:09:36 fetching corpus: 1300, signal 149656/176019 (executing program)
2023/02/24 13:09:36 fetching corpus: 1350, signal 152448/179309 (executing program)
2023/02/24 13:09:36 fetching corpus: 1400, signal 154240/181776 (executing program)
2023/02/24 13:09:36 fetching corpus: 1450, signal 157225/185232 (executing program)
2023/02/24 13:09:36 fetching corpus: 1500, signal 158856/187520 (executing program)
2023/02/24 13:09:36 fetching corpus: 1550, signal 160606/189882 (executing program)
2023/02/24 13:09:37 fetching corpus: 1600, signal 162338/192214 (executing program)
2023/02/24 13:09:37 fetching corpus: 1650, signal 164136/194553 (executing program)
2023/02/24 13:09:37 fetching corpus: 1700, signal 165951/196868 (executing program)
2023/02/24 13:09:37 fetching corpus: 1750, signal 166961/198546 (executing program)
2023/02/24 13:09:37 fetching corpus: 1800, signal 168345/200512 (executing program)
2023/02/24 13:09:37 fetching corpus: 1850, signal 169741/202511 (executing program)
2023/02/24 13:09:37 fetching corpus: 1900, signal 171217/204478 (executing program)
2023/02/24 13:09:37 fetching corpus: 1950, signal 172367/206190 (executing program)
2023/02/24 13:09:38 fetching corpus: 2000, signal 173672/208009 (executing program)
2023/02/24 13:09:38 fetching corpus: 2050, signal 175491/210231 (executing program)
2023/02/24 13:09:38 fetching corpus: 2100, signal 177608/212593 (executing program)
2023/02/24 13:09:38 fetching corpus: 2150, signal 178549/214113 (executing program)
2023/02/24 13:09:38 fetching corpus: 2200, signal 180034/215986 (executing program)
2023/02/24 13:09:38 fetching corpus: 2250, signal 181025/217523 (executing program)
2023/02/24 13:09:38 fetching corpus: 2300, signal 182922/219653 (executing program)
2023/02/24 13:09:38 fetching corpus: 2350, signal 184268/221389 (executing program)
2023/02/24 13:09:39 fetching corpus: 2400, signal 185544/223015 (executing program)
2023/02/24 13:09:39 fetching corpus: 2450, signal 186549/224476 (executing program)
2023/02/24 13:09:39 fetching corpus: 2500, signal 188362/226488 (executing program)
2023/02/24 13:09:39 fetching corpus: 2550, signal 189780/228183 (executing program)
2023/02/24 13:09:39 fetching corpus: 2600, signal 191162/229860 (executing program)
2023/02/24 13:09:39 fetching corpus: 2650, signal 192660/231556 (executing program)
2023/02/24 13:09:39 fetching corpus: 2700, signal 194067/233184 (executing program)
2023/02/24 13:09:40 fetching corpus: 2750, signal 195119/234549 (executing program)
2023/02/24 13:09:40 fetching corpus: 2800, signal 196383/236123 (executing program)
2023/02/24 13:09:40 fetching corpus: 2850, signal 197484/237543 (executing program)
2023/02/24 13:09:40 fetching corpus: 2900, signal 198637/238951 (executing program)
2023/02/24 13:09:40 fetching corpus: 2950, signal 199650/240238 (executing program)
2023/02/24 13:09:40 fetching corpus: 3000, signal 200822/241656 (executing program)
2023/02/24 13:09:40 fetching corpus: 3050, signal 201800/242912 (executing program)
2023/02/24 13:09:40 fetching corpus: 3100, signal 202678/244140 (executing program)
2023/02/24 13:09:41 fetching corpus: 3150, signal 203398/245248 (executing program)
2023/02/24 13:09:41 fetching corpus: 3200, signal 204577/246582 (executing program)
2023/02/24 13:09:41 fetching corpus: 3250, signal 205537/247808 (executing program)
2023/02/24 13:09:41 fetching corpus: 3300, signal 206471/249035 (executing program)
2023/02/24 13:09:41 fetching corpus: 3350, signal 207600/250291 (executing program)
2023/02/24 13:09:41 fetching corpus: 3400, signal 208806/251613 (executing program)
2023/02/24 13:09:41 fetching corpus: 3450, signal 209621/252732 (executing program)
2023/02/24 13:09:41 fetching corpus: 3500, signal 210426/253764 (executing program)
2023/02/24 13:09:42 fetching corpus: 3550, signal 211248/254820 (executing program)
2023/02/24 13:09:42 fetching corpus: 3600, signal 212134/255866 (executing program)
2023/02/24 13:09:42 fetching corpus: 3650, signal 212914/256877 (executing program)
2023/02/24 13:09:42 fetching corpus: 3700, signal 213740/257935 (executing program)
2023/02/24 13:09:42 fetching corpus: 3750, signal 214766/259044 (executing program)
2023/02/24 13:09:42 fetching corpus: 3800, signal 215398/259933 (executing program)
2023/02/24 13:09:42 fetching corpus: 3850, signal 216205/260937 (executing program)
2023/02/24 13:09:43 fetching corpus: 3900, signal 217490/262108 (executing program)
2023/02/24 13:09:43 fetching corpus: 3950, signal 218642/263237 (executing program)
2023/02/24 13:09:43 fetching corpus: 4000, signal 219481/264199 (executing program)
2023/02/24 13:09:43 fetching corpus: 4050, signal 219995/264973 (executing program)
2023/02/24 13:09:43 fetching corpus: 4100, signal 221068/266066 (executing program)
2023/02/24 13:09:43 fetching corpus: 4150, signal 221737/266908 (executing program)
2023/02/24 13:09:43 fetching corpus: 4200, signal 222485/267791 (executing program)
2023/02/24 13:09:44 fetching corpus: 4250, signal 223479/268741 (executing program)
2023/02/24 13:09:44 fetching corpus: 4300, signal 224346/269617 (executing program)
2023/02/24 13:09:44 fetching corpus: 4350, signal 225144/270458 (executing program)
2023/02/24 13:09:44 fetching corpus: 4400, signal 226135/271366 (executing program)
2023/02/24 13:09:44 fetching corpus: 4450, signal 226976/272227 (executing program)
2023/02/24 13:09:44 fetching corpus: 4500, signal 227632/273030 (executing program)
2023/02/24 13:09:44 fetching corpus: 4550, signal 228409/273839 (executing program)
2023/02/24 13:09:45 fetching corpus: 4600, signal 229106/274598 (executing program)
2023/02/24 13:09:45 fetching corpus: 4650, signal 229631/275297 (executing program)
2023/02/24 13:09:45 fetching corpus: 4700, signal 230234/276003 (executing program)
2023/02/24 13:09:45 fetching corpus: 4750, signal 230975/276774 (executing program)
2023/02/24 13:09:45 fetching corpus: 4800, signal 231940/277628 (executing program)
2023/02/24 13:09:45 fetching corpus: 4850, signal 232529/278341 (executing program)
2023/02/24 13:09:45 fetching corpus: 4900, signal 233213/279055 (executing program)
2023/02/24 13:09:45 fetching corpus: 4950, signal 233727/279697 (executing program)
2023/02/24 13:09:46 fetching corpus: 5000, signal 234320/280360 (executing program)
2023/02/24 13:09:46 fetching corpus: 5050, signal 235022/281048 (executing program)
2023/02/24 13:09:46 fetching corpus: 5100, signal 235437/281675 (executing program)
2023/02/24 13:09:46 fetching corpus: 5150, signal 236141/282391 (executing program)
2023/02/24 13:09:46 fetching corpus: 5200, signal 236678/282994 (executing program)
2023/02/24 13:09:46 fetching corpus: 5250, signal 237290/283633 (executing program)
2023/02/24 13:09:46 fetching corpus: 5300, signal 237949/284267 (executing program)
2023/02/24 13:09:47 fetching corpus: 5350, signal 238698/284946 (executing program)
2023/02/24 13:09:47 fetching corpus: 5400, signal 239115/285502 (executing program)
2023/02/24 13:09:47 fetching corpus: 5450, signal 239646/286076 (executing program)
2023/02/24 13:09:47 fetching corpus: 5500, signal 240131/286660 (executing program)
2023/02/24 13:09:47 fetching corpus: 5550, signal 240573/287197 (executing program)
2023/02/24 13:09:47 fetching corpus: 5600, signal 241056/287731 (executing program)
2023/02/24 13:09:47 fetching corpus: 5650, signal 241448/288216 (executing program)
2023/02/24 13:09:47 fetching corpus: 5700, signal 241967/288749 (executing program)
2023/02/24 13:09:48 fetching corpus: 5750, signal 242623/289303 (executing program)
2023/02/24 13:09:48 fetching corpus: 5800, signal 243409/289897 (executing program)
2023/02/24 13:09:48 fetching corpus: 5850, signal 244087/290457 (executing program)
2023/02/24 13:09:48 fetching corpus: 5900, signal 244586/290946 (executing program)
2023/02/24 13:09:48 fetching corpus: 5950, signal 245178/291494 (executing program)
2023/02/24 13:09:48 fetching corpus: 6000, signal 245655/292006 (executing program)
2023/02/24 13:09:48 fetching corpus: 6050, signal 246143/292513 (executing program)
2023/02/24 13:09:49 fetching corpus: 6100, signal 246703/293019 (executing program)
2023/02/24 13:09:49 fetching corpus: 6150, signal 247261/293481 (executing program)
2023/02/24 13:09:49 fetching corpus: 6200, signal 247688/293941 (executing program)
2023/02/24 13:09:49 fetching corpus: 6250, signal 248259/294423 (executing program)
2023/02/24 13:09:49 fetching corpus: 6300, signal 248957/294916 (executing program)
2023/02/24 13:09:49 fetching corpus: 6350, signal 249369/295341 (executing program)
2023/02/24 13:09:49 fetching corpus: 6400, signal 249852/295830 (executing program)
2023/02/24 13:09:50 fetching corpus: 6450, signal 250405/296252 (executing program)
2023/02/24 13:09:50 fetching corpus: 6500, signal 251019/296692 (executing program)
2023/02/24 13:09:50 fetching corpus: 6550, signal 251437/297122 (executing program)
2023/02/24 13:09:50 fetching corpus: 6600, signal 251924/297522 (executing program)
2023/02/24 13:09:50 fetching corpus: 6650, signal 252640/297946 (executing program)
2023/02/24 13:09:50 fetching corpus: 6700, signal 253136/298348 (executing program)
2023/02/24 13:09:50 fetching corpus: 6750, signal 253642/298733 (executing program)
2023/02/24 13:09:50 fetching corpus: 6800, signal 254176/299132 (executing program)
2023/02/24 13:09:51 fetching corpus: 6850, signal 254833/299511 (executing program)
2023/02/24 13:09:51 fetching corpus: 6900, signal 255233/299866 (executing program)
2023/02/24 13:09:51 fetching corpus: 6950, signal 255844/300247 (executing program)
2023/02/24 13:09:51 fetching corpus: 7000, signal 256448/300608 (executing program)
2023/02/24 13:09:51 fetching corpus: 7050, signal 256888/300965 (executing program)
2023/02/24 13:09:51 fetching corpus: 7100, signal 257307/301283 (executing program)
2023/02/24 13:09:52 fetching corpus: 7150, signal 257709/301641 (executing program)
2023/02/24 13:09:52 fetching corpus: 7200, signal 258162/301965 (executing program)
2023/02/24 13:09:52 fetching corpus: 7250, signal 258554/302316 (executing program)
2023/02/24 13:09:52 fetching corpus: 7300, signal 258948/302623 (executing program)
2023/02/24 13:09:52 fetching corpus: 7350, signal 259428/302930 (executing program)
2023/02/24 13:09:52 fetching corpus: 7400, signal 259976/303266 (executing program)
2023/02/24 13:09:52 fetching corpus: 7450, signal 260714/303573 (executing program)
2023/02/24 13:09:53 fetching corpus: 7500, signal 261126/303836 (executing program)
2023/02/24 13:09:53 fetching corpus: 7550, signal 261486/304122 (executing program)
2023/02/24 13:09:53 fetching corpus: 7600, signal 262021/304387 (executing program)
2023/02/24 13:09:53 fetching corpus: 7650, signal 262383/304458 (executing program)
2023/02/24 13:09:53 fetching corpus: 7700, signal 262867/304458 (executing program)
2023/02/24 13:09:53 fetching corpus: 7750, signal 263257/304458 (executing program)
2023/02/24 13:09:53 fetching corpus: 7800, signal 263606/304458 (executing program)
2023/02/24 13:09:54 fetching corpus: 7850, signal 263925/304458 (executing program)
2023/02/24 13:09:54 fetching corpus: 7900, signal 264362/304458 (executing program)
2023/02/24 13:09:54 fetching corpus: 7950, signal 264741/304458 (executing program)
2023/02/24 13:09:54 fetching corpus: 8000, signal 265138/304458 (executing program)
2023/02/24 13:09:54 fetching corpus: 8050, signal 265685/304458 (executing program)
2023/02/24 13:09:54 fetching corpus: 8100, signal 266315/304458 (executing program)
2023/02/24 13:09:54 fetching corpus: 8150, signal 266712/304458 (executing program)
2023/02/24 13:09:54 fetching corpus: 8200, signal 266994/304458 (executing program)
2023/02/24 13:09:55 fetching corpus: 8250, signal 267202/304458 (executing program)
2023/02/24 13:09:55 fetching corpus: 8300, signal 267583/304458 (executing program)
2023/02/24 13:09:55 fetching corpus: 8350, signal 267860/304458 (executing program)
2023/02/24 13:09:55 fetching corpus: 8400, signal 268334/304458 (executing program)
2023/02/24 13:09:55 fetching corpus: 8450, signal 268686/304458 (executing program)
2023/02/24 13:09:55 fetching corpus: 8500, signal 269157/304458 (executing program)
2023/02/24 13:09:55 fetching corpus: 8550, signal 269653/304458 (executing program)
2023/02/24 13:09:56 fetching corpus: 8600, signal 270172/304458 (executing program)
2023/02/24 13:09:56 fetching corpus: 8650, signal 270478/304458 (executing program)
2023/02/24 13:09:56 fetching corpus: 8700, signal 270745/304458 (executing program)
2023/02/24 13:09:56 fetching corpus: 8750, signal 271066/304458 (executing program)
2023/02/24 13:09:56 fetching corpus: 8800, signal 271429/304458 (executing program)
2023/02/24 13:09:56 fetching corpus: 8850, signal 271971/304458 (executing program)
2023/02/24 13:09:56 fetching corpus: 8900, signal 272272/304458 (executing program)
2023/02/24 13:09:56 fetching corpus: 8950, signal 272702/304478 (executing program)
2023/02/24 13:09:57 fetching corpus: 9000, signal 272961/304478 (executing program)
2023/02/24 13:09:57 fetching corpus: 9050, signal 273409/304478 (executing program)
2023/02/24 13:09:57 fetching corpus: 9100, signal 273788/304478 (executing program)
2023/02/24 13:09:57 fetching corpus: 9150, signal 274315/304478 (executing program)
2023/02/24 13:09:57 fetching corpus: 9200, signal 274781/304478 (executing program)
2023/02/24 13:09:57 fetching corpus: 9250, signal 275006/304478 (executing program)
2023/02/24 13:09:58 fetching corpus: 9300, signal 275366/304478 (executing program)
2023/02/24 13:09:58 fetching corpus: 9350, signal 275737/304478 (executing program)
2023/02/24 13:09:58 fetching corpus: 9400, signal 276245/304478 (executing program)
2023/02/24 13:09:58 fetching corpus: 9450, signal 276564/304478 (executing program)
2023/02/24 13:09:58 fetching corpus: 9500, signal 276978/304478 (executing program)
2023/02/24 13:09:58 fetching corpus: 9550, signal 277279/304478 (executing program)
2023/02/24 13:09:58 fetching corpus: 9600, signal 277784/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 9650, signal 278201/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 9700, signal 278536/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 9750, signal 278792/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 9800, signal 279065/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 9850, signal 279613/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 9900, signal 279943/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 9950, signal 280287/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 10000, signal 280620/304480 (executing program)
2023/02/24 13:09:59 fetching corpus: 10050, signal 281141/304480 (executing program)
2023/02/24 13:10:00 fetching corpus: 10100, signal 281430/304480 (executing program)
2023/02/24 13:10:00 fetching corpus: 10150, signal 281701/304480 (executing program)
2023/02/24 13:10:00 fetching corpus: 10200, signal 281985/304480 (executing program)
2023/02/24 13:10:00 fetching corpus: 10250, signal 282328/304480 (executing program)
2023/02/24 13:10:00 fetching corpus: 10300, signal 282502/304480 (executing program)
2023/02/24 13:10:00 fetching corpus: 10350, signal 282864/304480 (executing program)
2023/02/24 13:10:00 fetching corpus: 10400, signal 283353/304484 (executing program)
2023/02/24 13:10:01 fetching corpus: 10450, signal 283616/304484 (executing program)
2023/02/24 13:10:01 fetching corpus: 10500, signal 284119/304484 (executing program)
2023/02/24 13:10:01 fetching corpus: 10550, signal 284395/304484 (executing program)
2023/02/24 13:10:01 fetching corpus: 10600, signal 284913/304485 (executing program)
2023/02/24 13:10:01 fetching corpus: 10650, signal 285209/304485 (executing program)
2023/02/24 13:10:01 fetching corpus: 10700, signal 285461/304485 (executing program)
2023/02/24 13:10:01 fetching corpus: 10750, signal 285845/304485 (executing program)
2023/02/24 13:10:02 fetching corpus: 10800, signal 286085/304485 (executing program)
2023/02/24 13:10:02 fetching corpus: 10850, signal 286474/304485 (executing program)
2023/02/24 13:10:02 fetching corpus: 10900, signal 287012/304485 (executing program)
2023/02/24 13:10:02 fetching corpus: 10950, signal 287324/304485 (executing program)
2023/02/24 13:10:02 fetching corpus: 11000, signal 287866/304485 (executing program)
2023/02/24 13:10:02 fetching corpus: 11050, signal 288280/304485 (executing program)
2023/02/24 13:10:02 fetching corpus: 11100, signal 288612/304485 (executing program)
2023/02/24 13:10:03 fetching corpus: 11150, signal 289018/304485 (executing program)
2023/02/24 13:10:03 fetching corpus: 11200, signal 289471/304485 (executing program)
2023/02/24 13:10:03 fetching corpus: 11250, signal 289918/304485 (executing program)
2023/02/24 13:10:03 fetching corpus: 11300, signal 290228/304485 (executing program)
2023/02/24 13:10:03 fetching corpus: 11350, signal 290579/304485 (executing program)
2023/02/24 13:10:03 fetching corpus: 11400, signal 290909/304485 (executing program)
2023/02/24 13:10:03 fetching corpus: 11450, signal 291232/304485 (executing program)
2023/02/24 13:10:03 fetching corpus: 11500, signal 291403/304485 (executing program)
2023/02/24 13:10:04 fetching corpus: 11550, signal 291788/304485 (executing program)
2023/02/24 13:10:04 fetching corpus: 11600, signal 292037/304485 (executing program)
2023/02/24 13:10:04 fetching corpus: 11650, signal 292405/304485 (executing program)
2023/02/24 13:10:04 fetching corpus: 11700, signal 292779/304485 (executing program)
2023/02/24 13:10:04 fetching corpus: 11750, signal 293221/304485 (executing program)
2023/02/24 13:10:04 fetching corpus: 11800, signal 293590/304485 (executing program)
2023/02/24 13:10:04 fetching corpus: 11850, signal 293928/304485 (executing program)
2023/02/24 13:10:04 fetching corpus: 11900, signal 294261/304485 (executing program)
2023/02/24 13:10:05 fetching corpus: 11950, signal 294600/304485 (executing program)
2023/02/24 13:10:05 fetching corpus: 12000, signal 294919/304485 (executing program)
2023/02/24 13:10:05 fetching corpus: 12050, signal 295206/304485 (executing program)
2023/02/24 13:10:05 fetching corpus: 12100, signal 295491/304485 (executing program)
2023/02/24 13:10:05 fetching corpus: 12150, signal 295734/304485 (executing program)
2023/02/24 13:10:05 fetching corpus: 12200, signal 296119/304485 (executing program)
2023/02/24 13:10:06 fetching corpus: 12250, signal 296441/304485 (executing program)
2023/02/24 13:10:06 fetching corpus: 12300, signal 296643/304485 (executing program)
2023/02/24 13:10:06 fetching corpus: 12350, signal 296844/304485 (executing program)
2023/02/24 13:10:06 fetching corpus: 12400, signal 298012/304485 (executing program)
2023/02/24 13:10:06 fetching corpus: 12450, signal 298185/304485 (executing program)
2023/02/24 13:10:06 fetching corpus: 12500, signal 298420/304485 (executing program)
2023/02/24 13:10:06 fetching corpus: 12539, signal 298680/304485 (executing program)
2023/02/24 13:10:06 fetching corpus: 12539, signal 298680/304485 (executing program)
2023/02/24 13:10:09 starting 8 fuzzer processes
13:10:09 executing program 0:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = pidfd_getfd(r0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1, {0xffffffffffffffff, 0xee00}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r3=>0xffffffffffffffff}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r4=>r2, @out_args}, './file0\x00'})
ioctl$SG_EMULATED_HOST(r4, 0x2203, &(0x7f0000000100))
flistxattr(r4, &(0x7f0000000140)=""/122, 0x7a)
openat(r4, &(0x7f00000001c0)='./file0\x00', 0x800, 0x1e1)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000200)=[@window={0x3, 0x7}, @mss={0x2, 0x7}, @timestamp, @sack_perm, @window={0x3, 0x6, 0xf907}, @sack_perm, @window={0x3, 0x2, 0x762}], 0x7)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x90, r5, 0x20, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x46}}}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "88be16ddebf414117e0e868ee340120e"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "dc0636c7782f7205228277af0bdd0a52"}, @NL80211_ATTR_PMK={0x14, 0xfe, "596a8042066a11b84fc9a7d6a093b4b5"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "022507c9ace3ee59d0e38d77cccdd1ab"}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x90}, 0x1, 0x0, 0x0, 0x4000004}, 0x4000800)
r6 = accept$packet(r4, &(0x7f0000000400), &(0x7f0000000440)=0x14)
copy_file_range(r2, 0x0, r6, &(0x7f0000000480)=0x9, 0x0, 0x0)
r7 = pidfd_open(0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r7, 0x40286608, &(0x7f00000004c0)={0x6, 0x80000000, 0x6, 0x1, 0x1, 0x8001})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r8=>r0, {0x2}}, './file0\x00'})
syz_genetlink_get_family_id$fou(0xfffffffffffffffd, r8)
sendmsg$TIPC_CMD_GET_NODES(r3, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, 0x0, 0x300, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4024}, 0x8c1)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup(r9)

13:10:09 executing program 1:
sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x20, 0x70bd2d, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x18, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x81}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c100)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xf8, 0x3, 0x1, 0x801, 0x0, 0x0, {0x2}, [@CTA_NAT_DST={0x20, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @empty}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast1}]}, @CTA_TUPLE_MASTER={0x10, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x4}, @CTA_TUPLE_REPLY={0xac, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @local}}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @rand_addr=' \x01\x00'}}}]}]}, 0xf8}, 0x1, 0x0, 0x0, 0x4000890}, 0x40)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r0=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x114, 0x0, 0x200, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r0}, @void}}, [@NL80211_ATTR_KEYS={0xb4, 0x51, 0x0, 0x1, [{0x20, 0x0, 0x0, 0x1, [@NL80211_KEY_SEQ={0x12, 0x4, "e2a618970efb73036626ca8ac958"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_MODE={0x5, 0x9, 0x2}]}, {0x4}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_KEY_TYPE={0x8, 0x7, 0x2}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "ab0d8753ce0cab20fbf8573557"}, @NL80211_KEY_IDX={0x5}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "280ba2f64c"}, @NL80211_KEY_TYPE={0x8, 0x7, 0x2}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "6eb4399cf7"}, @NL80211_KEY_IDX={0x5, 0x2, 0x4}, @NL80211_KEY_DEFAULT_TYPES={0xc, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}]}]}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_BSS_BASIC_RATES={0x15, 0x24, [{0x3, 0x1}, {0x2, 0x1}, {0x6, 0x1}, {0x16}, {0x5}, {0x6c}, {0x22, 0x1}, {0x3}, {0xb}, {0x3}, {0x4}, {0x4, 0x1}, {0x6c}, {0x30, 0x1}, {0x6c}, {0x24, 0x1}, {0x2}]}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x37d}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x147}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfffffff9}], @NL80211_ATTR_FREQ_FIXED={0x4}]}, 0x114}, 0x1, 0x0, 0x0, 0x4008080}, 0x20004000)
r1 = accept(0xffffffffffffffff, &(0x7f0000000500)=@pppoe={0x18, 0x0, {0x0, @local}}, &(0x7f0000000580)=0x80)
ioctl$sock_ifreq(r1, 0x8915, &(0x7f0000000600)={'veth1_to_hsr\x00', @ifru_settings={0x0, 0x0, @fr=&(0x7f00000005c0)={0x6, 0xbc3, 0x7a7, 0xf7, 0x90, 0x1000, 0x8}}})
r2 = creat(&(0x7f0000000640)='./file0\x00', 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r2, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x24, 0x0, 0x10, 0x70bd28, 0x25dfdbfc, {{}, {}, {0x8, 0x11, 0x7}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$TIPC_NL_LINK_SET(r2, &(0x7f0000000ac0)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000a80)={&(0x7f00000007c0)={0x2b0, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_NODE={0x1e4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x9c, 0x3, "a5a26df88ae500bba40ea935d9665311d4a5715545bf55a0b6817466a7631a20a4bba35157cd2c29869568375b25dd2577ea9b74c2103d09a7c4267d910ab1bfe1114018ad6be779d09272b3c1726c2f85297fdeab3d10707be9f0305063ba79bdf5787a6a0b4d034cba718550d57ca6c0b888525f7eecb9d58c2059cfb258b393c20419e79d540bd407af6c027917d2c197e2123fe9b708"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "fa51b8097461925c9629dfa3cca0f35e630491266a1857dd1242cb"}}, @TIPC_NLA_NODE_ID={0x5d, 0x3, "1afd6ad05a00acb29d411453e2c52e7fea09d985145a7d42f38f565248096abab380394f4ca718ff60c48489abcea3a4b16dcbb7fa1f80ddbb18e115ca0b894e059e41e4fc0f05be58640369bb9949c4296ca48ab0e4d500b2"}, @TIPC_NLA_NODE_KEY={0x3f, 0x4, {'gcm(aes)\x00', 0x17, "4d5e5d3dbc5d3427a1359590e4db72de729d1701023118"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "acd415eb239ec4f12934dbe8bcd3a87b49099df4625119c1ef"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xffffffff}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}, @TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e22, @loopback}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xb4}}}}]}, @TIPC_NLA_LINK={0x64, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc1}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}]}]}, 0x2b0}, 0x1, 0x0, 0x0, 0xc4}, 0x10000004)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000b40), 0xffffffffffffffff)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x28, r3, 0x14, 0x70bd2a, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x24048840}, 0xc890)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000c40), 0xffffffffffffffff)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r2, 0x10e, 0x8, &(0x7f0000000c80)=0x7, 0x4)
r4 = syz_open_dev$vcsa(&(0x7f0000000cc0), 0x4, 0x400)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r4, &(0x7f0000000e00)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000d40)={0x4c, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4085)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000e80), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_STATS(r2, &(0x7f0000000f40)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x2000010}, 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x1c, r5, 0x400, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x81)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000fc0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000001000)={'wpan3\x00', <r7=>0x0})
sendmsg$IEEE802154_LLSEC_GETPARAMS(0xffffffffffffffff, &(0x7f0000001100)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000010c0)={&(0x7f0000001040)={0x4c, r6, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24004010}, 0x0)

13:10:09 executing program 2:
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r0, 0x800, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000880}, 0x20008084)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r1)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x12002500}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x48, r2, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_SECCTX={0x29, 0x7, 'system_u:object_r:userio_device_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @local}]}, 0x48}, 0x1, 0x0, 0x0, 0x4004}, 0x20008044)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000300), r1)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000380), r1)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r3, &(0x7f0000000500)={&(0x7f0000000340), 0xc, &(0x7f00000004c0)={&(0x7f00000003c0)={0xc4, r4, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @local}}, @NLBL_UNLABEL_A_SECCTX={0x32, 0x7, 'system_u:object_r:systemd_passwd_var_run_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_SECCTX={0x13, 0x7, '/usr/sbin/ntpd\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'gre0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @remote}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth1_to_batadv\x00'}]}, 0xc4}}, 0x894)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r1, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)={0xa4, r2, 0x10, 0x70bd28, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'hsr0\x00'}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'ip6gre0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'batadv_slave_1\x00'}]}, 0xa4}, 0x1, 0x0, 0x0, 0x8000}, 0x80)
r5 = open(&(0x7f00000006c0)='./file0\x00', 0x200, 0x20)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r5, &(0x7f0000001000)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000780)={0x804, r6, 0x400, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x2e}}}}, [@NL80211_PMSR_ATTR_PEERS={0x250, 0x5, 0x0, 0x1, [{0x23c, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0xdc, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xd8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x1}]}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7ff}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xf}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xd02e}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_REQ={0x15c, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xb0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x83}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x48, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xc95}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x80}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x100}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x17}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x3}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x4}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}]}]}]}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}]}, @NL80211_PMSR_ATTR_PEERS={0x58c, 0x5, 0x0, 0x1, [{0x110, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_CHAN={0x44, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x80}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x80}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6534448b}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3b}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_CHAN={0x2c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xd}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x161c}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xf}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x24, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2e}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xdb}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x8}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x3c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1c0}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_CHAN={0xc, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ={0x8}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}]}, {0xfc, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0xec, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x84, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x3c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x12}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1000}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x101}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x60, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x40}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}]}, {0x198, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x148, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x50, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x400}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0xa0, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xffff}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1b}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x2}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1f}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x401}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}, @NL80211_PMSR_PEER_ATTR_CHAN={0x2c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x26}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16b}]}]}, {0x1e4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x1ac, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x8c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x24, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x10}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xaa8f}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x28, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xe}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x20}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x118, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x100}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x7f}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x8}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x44, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xff}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x93aa}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x8}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x17}]}]}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x12}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}]}]}]}]}, 0x804}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000001040)={{0x1, 0x1, 0x18, <r7=>0xffffffffffffffff, {0x4}}, './file0\x00'})
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r7, &(0x7f0000001140)={&(0x7f0000001080), 0xc, &(0x7f0000001100)={&(0x7f00000010c0)={0x2c, r6, 0x300, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x81f}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1b}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2b1}]]}, 0x2c}, 0x1, 0x0, 0x0, 0xc000}, 0x8010)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000001180), r3)
sendmsg$DEVLINK_CMD_PORT_SET(r7, &(0x7f00000012c0)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x44, 0x0, 0x1, 0x70bd25, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x6, 0x4, 0x3}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2000}, 0x40000)
r8 = openat$null(0xffffffffffffff9c, &(0x7f0000001300), 0x2040, 0x0)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r8, &(0x7f0000001400)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001380)={0x24, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x2000c084}, 0x24008081)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(0xffffffffffffffff, &(0x7f0000001500)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000014c0)={&(0x7f0000001480)={0x34, r4, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @loopback}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x64010101}, @NLBL_UNLABEL_A_ACPTFLG={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)

13:10:09 executing program 3:
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x1)
r0 = syz_io_uring_complete(0x0)
sendmsg$NFT_MSG_GETSET(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0xa, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040805}, 0x41083)
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000580)={{'\x00', 0x3}, {0x1}, 0xa0, 0x0, 0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)="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", 0x1ff, 0x0, &(0x7f0000000480)={0x2, 0x81, {0x0, 0xc, 0x65, "65065d6d9686f559195129adec29158555057d985b48708103fec91e336c97bbb64833c58e393633158404cabd098dc9d6fc95189ca67900ca3754690152395ba163606e2d4361d2e743c1aaceb3de6b123abf77a62c7649c799791b57ac4459bbb461c15c", 0xf, "403af81da6ffce6bde2d0c7e7b6e40"}, 0x51, "66b938a5e27b6cb6b9aa73c3d00ea146f5eebfcea782f7091712c817f6f3211a0c71428321fdd79ab96d350e5ea7e262163abe87430056898f4b36e21d5f11913c6f29fc2dc3c8ea06d2f1a6797050d180"}, 0xde})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendto$unix(r1, &(0x7f0000000640)="4809a7e052ecccb2793c2287d4e0113bfec25c16362a2e1dbf5672ac62c25885c8f01e9cd94b1706c8b7cd9d0ec4c7b1ad4187f9053b54377600b662611958a54ecb109cf09533d4ec5943e4d13a5f3b2dcad68f582aeee9190315c0d3dd21a8379d6851347ee3ced59e642d42d0e4e7e87d1d51a40e09e4da0d", 0x7a, 0x4000, &(0x7f00000006c0)=@file={0x1, './file0\x00'}, 0x6e)
close(0xffffffffffffffff)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000740), 0xa0002, 0x0)
ioctl$NS_GET_OWNER_UID(r2, 0xb704, &(0x7f0000000780)=<r3=>0x0)
fchown(r1, r3, 0xee00)
sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x30, 0x0, 0x1, 0x70bd2a, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_LLSEC_DEV_KEY_MODE={0x5, 0x37, 0x2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x4000010)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(r1, 0x40047211, &(0x7f00000008c0))
ioctl$TIOCMIWAIT(r2, 0x545c, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
stat(&(0x7f0000000900)='./file1\x00', &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
fchown(r4, r3, r5)
r6 = openat2$dir(0xffffffffffffff9c, &(0x7f00000009c0)='./file0\x00', &(0x7f0000000a00)={0x82200, 0x30, 0x1}, 0x18)
mknodat$loop(r6, &(0x7f0000000a40)='./file0\x00', 0x80, 0x1)
getsockname$unix(r1, &(0x7f0000000a80), &(0x7f0000000b00)=0x6e)
connect$unix(0xffffffffffffffff, &(0x7f0000000b80)=@file={0x0, './file0/file0\x00'}, 0x6e)

13:10:09 executing program 5:
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0xe0, 0x0, 0x9766503bc04bbc02, 0x70bd2c, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x3}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xfff80000}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8}]}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x17c0}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2018}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x20}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xbf56}]}, @TIPC_NLA_MEDIA={0x60, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xc008}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x4050801}, 0x20004810)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/printk', 0x200, 0x108)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)={0x130, 0x0, 0x8, 0x70bd2d, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_BEARER={0x118, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x7ff, @private1={0xfc, 0x1, '\x00', 0x1}, 0x3}}, {0x14, 0x2, @in={0x2, 0x4e21, @empty}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @private=0xa010100}}, {0x14, 0x2, @in={0x2, 0x4e24, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'ip6tnl0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x8}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @remote}}, {0x14, 0x2, @in={0x2, 0x4e22, @multicast2}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xe9}]}]}, 0x130}, 0x1, 0x0, 0x0, 0x8000}, 0x40800)
pipe(&(0x7f0000000400)={<r1=>0xffffffffffffffff})
ioctl$VT_GETMODE(r1, 0x5601, &(0x7f0000000440))
sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x6c, 0x15, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x8}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x5}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000080}, 0x24000084)
r2 = socket$netlink(0x10, 0x3, 0x9)
close_range(r2, 0xffffffffffffffff, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/cpuinfo\x00', 0x0, 0x0)
sendmsg$NFNL_MSG_CTHELPER_DEL(r3, &(0x7f0000000780)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000740)={&(0x7f0000000640)={0xe4, 0x2, 0x9, 0x801, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFCTH_TUPLE={0x60, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @rand_addr=0x64010102}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}]}, @NFCTH_TUPLE={0xc, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x40}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x5}}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x80}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x7}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0xb}]}, 0xe4}}, 0x400c840)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x78, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x78}, 0x1, 0x0, 0x0, 0x80}, 0x20000004)
sendmsg$IPCTNL_MSG_TIMEOUT_DELETE(r3, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x28, 0x2, 0x8, 0x401, 0x0, 0x0, {0x0, 0x0, 0x2}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xcaa914d7fe74d209}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4800)
inotify_init1(0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000a80)={'ip6_vti0\x00', &(0x7f0000000a00)={'sit0\x00', <r4=>0x0, 0x29, 0x0, 0x5, 0x3, 0x1, @rand_addr=' \x01\x00', @loopback, 0x8, 0x700, 0x0, 0x20}})
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000ac0)={@local, @private1, @local, 0x1, 0x3, 0x0, 0x100, 0x4, 0x40000008, r4})
r5 = syz_open_dev$vcsu(&(0x7f0000000b40), 0x2, 0x600c0)
ioctl$BTRFS_IOC_GET_FEATURES(r5, 0x80189439, &(0x7f0000000b80))
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000c00)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_BEACON(r3, &(0x7f0000000dc0)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000c40)={0x128, 0x0, 0x2, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_BEACON_HEAD={0xfb, 0xe, {@with_ht={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @broadcast, @broadcast, @initial, {0xc, 0x81}}, @ver_80211n={0x0, 0x2502, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}}, 0x0, @random, 0x8690, @void, @void, @void, @val={0x4, 0x6, {0x1, 0x1, 0x1ff, 0x8}}, @void, @void, @void, @void, @val={0x3c, 0x4, {0x0, 0x3, 0xb1, 0x20}}, @val={0x2d, 0x1a, {0x8, 0x1, 0x7, 0x0, {0x7, 0x5, 0x0, 0x81, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x1, 0x1ff, 0x9}}, @void, @val={0x71, 0x7, {0x0, 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x3, 0x8}}, @void, [{0xdd, 0x9a, "8ac527c60b49177219f66a56c17f607f2adbff8c65c0fde80d518c3f611e293309c44ae4bb840a074465a5d83ecd364bca8fedd1dba2f0d33bad0e701d78d77f2af8f0e6fc44c319098cc1f745ffbb5b211670164dcfbe240fa2ca652295ffbb845453e192add85f3740797e7e257c6ab141833e8ca0eac53eaf6eaf5b1eea9595199578817f7a05ac6a365830151c893a74d3e4ad2f33f17605"}]}}, @NL80211_ATTR_IE={0xf, 0x2a, [@mesh_chsw={0x76, 0x6, {0x6, 0x6, 0xe, 0x7}}, @challenge={0x10, 0x1, 0x6}]}]}, 0x128}, 0x1, 0x0, 0x0, 0x85}, 0x80)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r2, &(0x7f0000000ec0)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x2000004}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x24, 0x4, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0x7}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}]}, 0x24}, 0x1, 0x0, 0x0, 0x28005000}, 0x20008044)

[   92.749340] audit: type=1400 audit(1677244209.324:6): avc:  denied  { execmem } for  pid=261 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
13:10:09 executing program 4:
io_setup(0x1, &(0x7f0000000000)=<r0=>0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, @in_args={0x4}}, './file0\x00'})
io_cancel(r0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0xd6, r1, &(0x7f0000000080)="9546df9a1a9b4aa021fd4620cee6e1cce2d8baefe014d5580771774b5dd43ad9ac5e7f55d6cc102fa584e3a0a5ab9c017467584ac7c3a6630e8f336cea0b251b8adae454e3d19f1fd60e808ebd3229f5607916ce87482dd15dacf815edf286d082e0320d49f4f099977067684693125bfde55ed2135ed959660a9c8ad3f0e8ff3f8e4714309f8464ca147fdadaf239ae294344018292064e3dc75e004593ab453d630b33d67d056889e097eab9d94dfe7a598b2259782151b6c29918584f66460d57db1e24a39c2d2eb9b2c062c42eb4787ab7487c4583b0ec24791b5e18c9548058ba8b", 0xe4, 0xffffffff7fffffff, 0x0, 0x2}, &(0x7f00000001c0))
bind$unix(r1, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)
io_setup(0x1f, &(0x7f0000000280)=<r2=>0x0)
r3 = syz_open_dev$evdev(&(0x7f0000000380), 0x40, 0x349002)
r4 = dup3(r1, r1, 0x0)
r5 = mq_open(&(0x7f0000000500)=')\x00', 0x40, 0x0, &(0x7f0000000540)={0x1, 0x6, 0x7, 0x10001})
r6 = creat(&(0x7f0000001a80)='./file0/file0\x00', 0x82)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
io_submit(r2, 0xa, &(0x7f0000001b80)=[&(0x7f0000000340)={0x0, 0x0, 0x0, 0x6, 0x81, r1, &(0x7f00000002c0)="93cd3b692130857832398346eeac1fcaa81f2a6732d3b226162ab62b9515c187ab1337afd6205813be690f3b4fbdb96426d286ddecd88ceca93639c499ab9c4241127dfeb5b4c74799a446ded4f819faadc58415eccea022d6a6098684ed2b3bb6c505f8b03fa0c4d693e1f3", 0x6c, 0x10001, 0x0, 0x1, r1}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x5, 0x6, r3, &(0x7f00000003c0)="1d4c91e127d9a2c27bed0677a1cec0785a36d5f84f", 0x15, 0x2, 0x0, 0x2, r4}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000440)="6db764ed1073a099999c2ff6f133161a78f0194133af2b729c63725c9a5f76feaca011b488552053bf2acf3f15458aaee8a8409ac0dbf45ca1475ed8d1d46778e1a44adb1d2877a8453ba7dee45e4fd8497e701270f82af2180d22aca43a9867ec4440", 0x63, 0x8, 0x0, 0x1, r1}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x3, 0x64, r5, &(0x7f0000000580)="6ffff5066a74cc93a5138243a39ae11317a0de982f65a001c3c080b2bcde32cbac31b4da60d80d1a85d96be78bf9e1a3fc5e868756fa86f81e69b49d4fb49f46b4edf2b6b7714f559bfdc272af9356db1ca941d75e25427c85c18581b86d682d2bf00dbb0d12733bcfc3f94bc77529b9242e1e787ef116889f434f742393d08e2cfe6c78c751d049005d14ef31bda5126fe727ce4107d3fdbdf7eb3797e66dbe6e6c7e1fba976202691a794d187bbb65bdbf547743dd29b3caa0708a2ff37206f883ecd89ebad6a11837c30c6139d2e67d9357373b4526d27e9891430c940d1e911595c7d4", 0xe5, 0x9, 0x0, 0x3, r1}, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x7, 0xdbff, r1, &(0x7f00000006c0)="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", 0x1000, 0xec9, 0x0, 0x1}, &(0x7f0000001800)={0x0, 0x0, 0x0, 0x8, 0x8001, r1, &(0x7f0000001700)="4b0ab955575938056011f320425e8c2798c0984398b234dfc51c7338cbad554ed68548fce3cd2895882669ccaf217c5d334e8d2e90d644ac14a2035a7bbfa655e3622097479c26e0a9d026d784bd5026bf61a6fdea16058b5942e058f71b99914779323c6c199a8416d15ab89dde2ae625be1fa41f3ad0006a47204989aadb0e9203e7d3ce5f78fc7c00902d204f83435aa2e369dac878015016fdb979b98d94ecb8dfd78ba85b117798e39074afccd042d270a7656060d7cedf0443d592c267c844c2ae3d416a7439", 0xc9, 0x4, 0x0, 0x2, r1}, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x1, 0x2, 0xffffffffffffffff, &(0x7f0000001840)="1238c2f3c5a8bbc859bb05339cc436949258e6cae1f2d499b095d68d1cb1f6e5c47d2b7df165f979baec9f3fe36cd98e309490e0127b4beaded44c3c4df57de598e38878e70bb878b5b60123fc998df0194b0abe15a4e4eab5d0d548151839c0dbe26b1d8dfb0e06834b6f1b1eaf694151309da7437c", 0x76, 0x3d, 0x0, 0x1}, &(0x7f0000001980)={0x0, 0x0, 0x0, 0x5, 0x9, r1, &(0x7f0000001900)="4a7d5dedbbd5a5dd089058eb6756aae872399f0c5ed717c6662d376eb50f0c431d5234c1e4e412ac9cb10566e25130a480a5fd189eeb256b977d2d5bff867c2bf73310e24827082f1d3a9392a519fc9ebb30edaaa59221cabc7dd945fbb3388f24f65b1ab72e8589a42784c36b5bc1de1eb120afc748182abac1e8b69650fe", 0x7f, 0x79c, 0x0, 0x2, r1}, &(0x7f0000001ac0)={0x0, 0x0, 0x0, 0x8, 0x400, r1, &(0x7f00000019c0)="a3b9f901ed383eeff241d964388677e4eeefc3a7c2d081864c72463545fdef7fc3ec76d62c15319e32267af662af5a3400a7ff54265d8a26ec2573e454460be35c623c610df668e9f136eadb2f6dfede2fddccec88c611d32501edc1a364298d3d7c39da447d7f157696470f20c109015ed90058c836aecec97741300f607fb52ffeef4b247e5d2d16b60a2e3358c01b27c56ba3b74a97ae", 0x98, 0x7, 0x0, 0x3, r6}, &(0x7f0000001b40)={0x0, 0x0, 0x0, 0x5, 0x7f, r7, &(0x7f0000001b00)="025eb418b0233a9969c60c32275f2ca89e6a8db9f868c0a666c81f7d4222fb22393dd2d0e88ac044f77a68f17344b67fad821ca79c19f8c3c88e66675f8e6a", 0x3f, 0x9, 0x0, 0x0, r1}])
ioctl$BTRFS_IOC_DEFRAG_RANGE(r7, 0x40309410, &(0x7f0000001c00)={0x9, 0x101, 0x1, 0x10001, 0x2, [0x4, 0x2, 0x9, 0x3]})
openat(r6, &(0x7f0000001c40)='./file0\x00', 0x20000, 0x20)
r8 = signalfd4(r5, &(0x7f0000001c80)={[0x9]}, 0x8, 0x800)
pwritev(r8, &(0x7f0000002140)=[{&(0x7f0000001cc0)="8c75aefbd55a32434d4d6a2aaf48a0dc65b4ea4f9f395aa8a59f57959a9b68de2a57d01c9a3def9fa820bfe6f26d50e210b27ef9ce9173090b2707c13f6c897c227ab62cace1b3f49fae53417d7ac8f008c5966ae0c8ba3f", 0x58}, {&(0x7f0000001d40)="1d4ccbc426ccc58d3f7593b8da76aa68a54b51185dcdd078e9e4287c75e4250d83950e72fd87c8175ad4a91dba23a81d95e4180f0b0d797af1e373d93242ae63f6d5be22e395d46b58437b79daa771e2afd3170bc0168b046cad234c16ccca909cd00776b8c79cfcd3e9ad07cf9953a8d6651c41bd4f2e2e7c3ba468e9bc3df2313ade24951a53a7f60c924252a429d8df17271043dcfcfcfcb04e819cdc540b92864ac81897a2ca053f5f", 0xab}, {&(0x7f0000001e00)="427508520dafbb4ef45fa031bf3561b04c2b99077c3429a276880f508dfbfe0dcf2d9412d375ad5baa6d46b2e14d1060b1221dbff2c51918be81477010c1826a8bdc37bf2eb7adfa7fa8cce2b610e74d5fca7b06e91d803b9f73f1ee4dd9557fe90d1b6329d43acedf464be597deeade87f7f8ec9d0ae0746ff421e9b494971ece4cb3a6e4f97ffea368b5f176130a298013ebc1231b6e", 0x97}, {&(0x7f0000001ec0)="9e2b7cdca03e74d5c3227e5d8c704fcdd418eae241f924b404aaf6514992e7738f2df21ac67ebd3ed4", 0x29}, {&(0x7f0000001f00)="f8d56f3816ccac76963500b2364149a5f6cce54fc238bcc6678669fa86985c8b426a23972108279340f15d1e8a3ec8d47b024a14650fc99e11af2184cdafe040020471586ee4cacc99d7caed984821249ffad9ee29a3e2f5fb6ff3964716dac7064a4c10d41d5d33355729fbdecd289a400b253441d1ec0d46e7f2906c90b12dddbd31d86d9ee360f814167aad856d874322a97a7d2614f95d34b78a7ac3a7c5833425ef122b49f67ff4d67ea7b6cc07ff919ffce0", 0xb5}, {&(0x7f0000001fc0)="870a9d6de9663d7f1b93f268c3b35cbea0be268f8b1f2f611bf9b4cf1596a56bb2b97dc191658913233357900a66e6bb437fea92228e", 0x36}, {&(0x7f0000002000)="52fe8f4368d0c458eb62c90056c3531e190bd058b7aa67ffeb8c41d3e2c54d3cc1edca0dbfe9669a3e", 0x29}, {&(0x7f0000002040)="4e5054b27047d7323512ee0816ea5fd044ba3f2017d67bdb9d81013bb2d30cf2a24a89eb0607b7c2885cdf6adb3fbd54d42598089f0044411cec9966ed7fa053b58adf73ce295629cd0ccbb2386124d1253b70e259f2431d675fafd75f30081305dd6c763d0721e4905389e99af28516b759c9c480883617ccdaabf83a8a1eccbb3529d6388149ac3d5c76aaa9605191f6f8d167fabd35", 0x97}, {&(0x7f0000002100)="47044e226b907b2c7963a9ffe6aec1d6e597382cba2ddc2b5698da143ad9d375df292b9b5d4e", 0x26}], 0x9, 0x5ed, 0x5)
r9 = openat(r5, &(0x7f0000002200)='./file0\x00', 0x440900, 0x82)
ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000002240)={0x5, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0]})
r10 = accept4$inet(r9, &(0x7f0000002280)={0x2, 0x0, @local}, &(0x7f00000022c0)=0x10, 0x80000)
io_cancel(r0, &(0x7f0000002380)={0x0, 0x0, 0x0, 0x7, 0x6, r10, &(0x7f0000002300)="d8b7e8f3931cd27a96e4b4a3225e281a1410a48a1e6d77d81610ee9282cf67a0b5e19c5a80ac581eeb8fe59374521b33e7bc2db07ddb05f1144b44faa0a1347dbb47dbda596ec1516d31ae2e64390b1fbf34f6f75ccd35d8f61be1997482c2282367eedfd523af", 0x67, 0x8, 0x0, 0x1}, &(0x7f00000023c0))
io_submit(r2, 0x4, &(0x7f0000002780)=[&(0x7f0000002440)={0x0, 0x0, 0x0, 0x2, 0x101, 0xffffffffffffffff, &(0x7f0000002400)="1fa7c6c504c2709cfebc7040063e74b2b974c84ebe31", 0x16, 0x7ff, 0x0, 0x2}, &(0x7f0000002580)={0x0, 0x0, 0x0, 0x8, 0xe7, r9, &(0x7f0000002480)="e4a4e2ce8df26c68a34bea6b5632170e0e3c6af2cb9aaeff27126489d8ae5e29672f7b3b11ac27a3d34e8f1ca30eeb69edf7d5f2c6df5a42e5d5fa552dc122fd370432f10df0f3305121a1d39b8a3c7b032c776cd194b180ccb1cd4636537541705d9164c660757813f68d8e994078c97494598f00fbcd7a1a13087bff6201637bd9f1ce52a34c065078fa5ae59047c211cda3dca0580ef828f9b24dabbacf365d0616258caa8daac2d10b25b9b8be0fe050a4a7cd899c00ca4eb3682ca87f5d720517e41753824fc25d043d70ae23c12ef5b442a800fca9f2599a10", 0xdc, 0x5, 0x0, 0x1, r1}, &(0x7f0000002640)={0x0, 0x0, 0x0, 0x6, 0x2, 0xffffffffffffffff, &(0x7f0000002600)="e0efa9983206a55f27ec", 0xa, 0x3, 0x0, 0x3}, &(0x7f0000002740)={0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffffff, &(0x7f0000002680)="1f03a0ba545ee09bd1a271462a52a6d31a3da708fcfe6aa8efe547136255f26ef106e58ad933003354011876eafe51cebf1c41795b1491308f4296ba4ef85850248198da0c5dc899b0ecc15a8dd9191e78fc78d3e48a08a68a4b6602b7451833727aabc23895350c6eac00c42f7f3e7e20b7a54922446df452eee0388a7d38e170944efbfadb70006f5ec4d87d44d748", 0x90, 0x8000, 0x0, 0x2}])

13:10:09 executing program 6:
r0 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGETD(r0, 0x5424, &(0x7f0000000000))
ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000040))
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x30000, 0x0)
ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f00000000c0)={0x70, "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"})
r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000300), 0x14180, 0x0)
ioctl$VT_ACTIVATE(r2, 0x5606, 0x34f)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000340), 0x40, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000380)={{0x1, 0x1, 0x18, <r4=>r3, {0x1}}, './file0\x00'})
ioctl$FIBMAP(r2, 0x1, &(0x7f00000003c0)=0xfffffffc)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000440)={'veth0_to_bond\x00', &(0x7f0000000400)=@ethtool_ringparam={0x11, 0x40, 0x8, 0xff, 0x5, 0x7, 0x200, 0x4}})
setsockopt$inet_icmp_ICMP_FILTER(r3, 0x1, 0x1, &(0x7f0000000480)={0x9}, 0x4)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getpeername(r5, &(0x7f00000004c0)=@isdn, &(0x7f0000000540)=0x80)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
ioctl$KDFONTOP_GET(r4, 0x4b72, &(0x7f0000000980)={0x1, 0x0, 0x1, 0x5, 0x11f, &(0x7f0000000580)})
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000a80)={&(0x7f00000009c0)=""/174, 0xae})
fcntl$getown(0xffffffffffffffff, 0x9)
ioctl$VT_DISALLOCATE(r1, 0x5608)
fallocate(r0, 0x28, 0x7ff, 0x2)

13:10:09 executing program 7:
ioctl$BLKZEROOUT(0xffffffffffffffff, 0x127f, &(0x7f0000000000)={0x0, 0x3})
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
copy_file_range(0xffffffffffffffff, &(0x7f0000000040)=0x7fff, r0, &(0x7f0000000080)=0x100000001, 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x8000, 0x0)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000000100)={{0x46, 0xf6}, 'port0\x00', 0x0, 0x1020, 0x0, 0x0, 0x2ee, 0xff, 0x7, 0x0, 0x2, 0x9})
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, &(0x7f00000001c0))
r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = gettid()
fcntl$setown(r2, 0x8, r3)
mknodat(r1, &(0x7f0000000240)='./file0\x00', 0xc000, 0xfffffff9)
r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x20010, r1, 0x8000000)
syz_io_uring_submit(r4, 0x0, &(0x7f0000000340)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r2, &(0x7f0000000280)=0x80, &(0x7f00000002c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x0, 0x80800, 0x1}, 0x5)
r5 = perf_event_open(&(0x7f0000000380)={0x3, 0x80, 0x8b, 0x3f, 0x81, 0x7, 0x0, 0x1, 0x2004, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0x3, 0xfffffffffffffff9}, 0x0, 0x9, 0x8, 0x4, 0x0, 0xded, 0x3, 0x0, 0x5, 0x0, 0x100}, r3, 0x7, r1, 0x9)
r6 = openat$full(0xffffffffffffff9c, &(0x7f0000000400), 0x200000, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(r6, 0x0, &(0x7f0000000680)=[{&(0x7f0000000440)=""/19, 0x13}, {&(0x7f0000000480)=""/31, 0x1f}, {&(0x7f00000004c0)=""/216, 0xd8}, {&(0x7f00000005c0)=""/158, 0x9e}], 0x4)
r7 = pidfd_getfd(r6, r6, 0x0)
r8 = syz_open_dev$ttys(0xc, 0x2, 0x0)
r9 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r10 = openat$incfs(r6, &(0x7f0000000980)='.log\x00', 0x4040, 0xf0)
io_submit(0x0, 0x4, &(0x7f0000000a00)=[&(0x7f0000000740)={0x0, 0x0, 0x0, 0x6, 0x5, r5, &(0x7f00000006c0)="cc3db12e4b07bea26e79fee8516baaed4fa5708d689eea0c0a8e0a80c47465f7f1c05830f55cd203754747e8a087ba08b828b5718bb9e889ab045890994e7cbd6c356ea17518efccf95c20a4f1861a29cb99eb494bfb44987e6a9219199ddaad29f009417277738958c47dc4415c51e3297ddd0e9a", 0x75, 0xffff, 0x0, 0x2, r2}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x6, 0x1, 0xffffffffffffffff, &(0x7f0000000780)="7a2a4f419fe1bf14a97ee44bf75c0d6c63f23a2c66f339654d", 0x19, 0x0, 0x0, 0x0, r7}, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x1, 0x0, r8, &(0x7f0000000800)="dfd21775934dc6bbd508fac1f18917b44c9ea82d06c4b6a4cca4c3f2a562c1f46e2f12417625c1936f5af066e1f5eeb4ecc9ff067d99aa55f9dac6f619cd7d04e568911c504eb238320beb6e64776e7e3051d88b6b", 0x55, 0x2101, 0x0, 0x0, r2}, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x6, 0xfffa, r9, &(0x7f00000008c0)="37547379a68fd75efc5ff8e261f689dad9e7d37ca43c7a3c02de72cff3fdac1b9445e751961dc1773e455e6f712e4717f42cd22d45854af298138a31a2c6cecaceb30735a4c8515e023d53df7e157f58a62ce05b09f04dd78430031a0c85a913e390366dcaf270d629509aca688ffb90b318bef6eee51240dc548cb2e741181755d8b452d83d0a5866c0be5ab10fb5", 0x8f, 0x101, 0x0, 0x0, r10}])

[   93.940923] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   93.942797] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   93.953341] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   93.954359] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   93.960335] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   93.961330] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   93.969130] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   93.970329] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   93.999774] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   94.002019] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   94.005164] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   94.006360] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   94.007318] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   94.008525] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   94.011099] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   94.012146] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   94.013257] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   94.016341] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   94.018268] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   94.020189] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   94.024313] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   94.025552] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   94.029338] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   94.031213] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   94.032377] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   94.087722] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   94.103813] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   94.107018] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   94.108769] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   94.114617] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   94.165221] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   94.166935] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   94.172140] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   94.176083] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   94.177248] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   94.189694] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   94.190906] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   94.199663] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   94.203384] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   94.206315] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   94.210777] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   94.215607] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   96.087921] Bluetooth: hci5: Opcode 0x c03 failed: -110
[   96.088835] Bluetooth: hci0: command 0x0409 tx timeout
[   96.089052] 
[   96.089379] Bluetooth: hci3: command 0x0409 tx timeout
[   96.089595] ======================================================
[   96.089602] WARNING: possible circular locking dependency detected
[   96.089611] 6.2.0-next-20230224 #1 Not tainted
[   96.089981] Bluetooth: hci1: command 0x0409 tx timeout
[   96.090471] ------------------------------------------------------
[   96.090478] syz-executor.5/276 is trying to acquire lock:
[   96.090487] ffff888019fa4880 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xd80
[   96.096898] 
[   96.096898] but task is already holding lock:
[   96.097464] ffff888019fa4920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250
[   96.098401] 
[   96.098401] which lock already depends on the new lock.
[   96.098401] 
[   96.099171] 
[   96.099171] the existing dependency chain (in reverse order) is:
[   96.099875] 
[   96.099875] -> #1 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}:
[   96.100589]        __mutex_lock+0x133/0x14a0
[   96.101058]        hci_cmd_sync_work+0x1e6/0x320
[   96.101554]        process_one_work+0xa0f/0x1790
[   96.102044]        worker_thread+0x63b/0x1260
[   96.102516]        kthread+0x2e9/0x3a0
[   96.102923]        ret_from_fork+0x2c/0x50
[   96.103358] 
[   96.103358] -> #0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}:
[   96.104194]        __lock_acquire+0x2d56/0x6380
[   96.104679]        lock_acquire.part.0+0xea/0x320
[   96.105183]        __flush_work+0x109/0xd80
[   96.105639]        __cancel_work_timer+0x39c/0x4e0
[   96.106135]        hci_cmd_sync_clear+0x52/0x250
[   96.106621]        hci_unregister_dev+0xf9/0x410
[   96.107111]        vhci_release+0x80/0x100
[   96.107552]        __fput+0x263/0xa40
[   96.107964]        task_work_run+0x174/0x280
[   96.108380]        do_exit+0xad8/0x2800
[   96.108717]        do_group_exit+0xd4/0x2a0
[   96.109077]        __x64_sys_exit_group+0x3e/0x50
[   96.109487]        do_syscall_64+0x3f/0x90
[   96.109842]        entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   96.110310] 
[   96.110310] other info that might help us debug this:
[   96.110310] 
[   96.110946]  Possible unsafe locking scenario:
[   96.110946] 
[   96.111431]        CPU0                    CPU1
[   96.111814]        ----                    ----
[   96.112207]   lock(&hdev->cmd_sync_work_lock);
[   96.112589]                                lock((work_completion)(&hdev->cmd_sync_work));
[   96.113276]                                lock(&hdev->cmd_sync_work_lock);
[   96.113852]   lock((work_completion)(&hdev->cmd_sync_work));
[   96.114331] 
[   96.114331]  *** DEADLOCK ***
[   96.114331] 
[   96.114825] 1 lock held by syz-executor.5/276:
[   96.115205]  #0: ffff888019fa4920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250
[   96.116058] 
[   96.116058] stack backtrace:
[   96.116435] CPU: 0 PID: 276 Comm: syz-executor.5 Not tainted 6.2.0-next-20230224 #1
[   96.117059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   96.117723] Call Trace:
[   96.117940]  <TASK>
[   96.118132]  dump_stack_lvl+0x91/0xf0
[   96.118463]  check_noncircular+0x263/0x2e0
[   96.118833]  ? __pfx_check_noncircular+0x10/0x10
[   96.119250]  ? queued_spin_lock_slowpath+0xd1/0xc50
[   96.119698]  __lock_acquire+0x2d56/0x6380
[   96.120082]  ? __pfx___lock_acquire+0x10/0x10
[   96.120469]  ? __pfx_queued_spin_lock_slowpath+0x10/0x10
[   96.120928]  ? __wait_for_common+0x394/0x550
[   96.121313]  ? __pfx_lock_release+0x10/0x10
[   96.121689]  lock_acquire.part.0+0xea/0x320
[   96.122063]  ? __flush_work+0xdd/0xd80
[   96.122409]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   96.122837]  ? __flush_work+0xdd/0xd80
[   96.123188]  ? rcu_read_lock_sched_held+0x42/0x80
[   96.123610]  ? trace_lock_acquire+0x170/0x1e0
[   96.124015]  ? __flush_work+0xdd/0xd80
[   96.124357]  ? lock_acquire+0x32/0xc0
[   96.124689]  ? __flush_work+0xdd/0xd80
[   96.125032]  __flush_work+0x109/0xd80
[   96.125364]  ? __flush_work+0xdd/0xd80
[   96.125708]  ? __pfx_mark_lock.part.0+0x10/0x10
[   96.126116]  ? __pfx___flush_work+0x10/0x10
[   96.126487]  ? lock_acquire.part.0+0xea/0x320
[   96.126881]  ? hci_cmd_sync_clear+0x45/0x250
[   96.127271]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   96.127704]  ? hci_cmd_sync_clear+0x45/0x250
[   96.128105]  ? rcu_read_lock_sched_held+0x42/0x80
[   96.128514]  ? trace_lock_acquire+0x170/0x1e0
[   96.128907]  ? lock_is_held_type+0x9f/0x120
[   96.129291]  ? mark_held_locks+0x9e/0xe0
[   96.129647]  __cancel_work_timer+0x39c/0x4e0
[   96.130020]  ? __pfx___cancel_work_timer+0x10/0x10
[   96.130433]  ? __cancel_work_timer+0x2aa/0x4e0
[   96.130831]  ? __pfx___cancel_work_timer+0x10/0x10
[   96.131238]  ? lock_release+0x1e3/0x710
[   96.131588]  ? __pfx_lock_release+0x10/0x10
[   96.131973]  ? do_raw_write_lock+0x11e/0x3b0
[   96.132351]  ? __pfx_vhci_release+0x10/0x10
[   96.132725]  hci_cmd_sync_clear+0x52/0x250
[   96.133090]  ? __pfx_vhci_release+0x10/0x10
[   96.133468]  hci_unregister_dev+0xf9/0x410
[   96.133843]  vhci_release+0x80/0x100
[   96.134169]  __fput+0x263/0xa40
[   96.134466]  task_work_run+0x174/0x280
[   96.134812]  ? __pfx_task_work_run+0x10/0x10
[   96.135204]  ? do_raw_spin_unlock+0x53/0x220
[   96.135590]  do_exit+0xad8/0x2800
[   96.135894]  ? lock_release+0x1e3/0x710
[   96.136250]  ? __pfx_lock_release+0x10/0x10
[   96.136628]  ? do_raw_spin_lock+0x125/0x270
[   96.136989]  ? __pfx_do_exit+0x10/0x10
[   96.137328]  do_group_exit+0xd4/0x2a0
[   96.137662]  __x64_sys_exit_group+0x3e/0x50
[   96.138039]  do_syscall_64+0x3f/0x90
[   96.138355]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[   96.138787] RIP: 0033:0x7fc7df18bb19
[   96.139104] Code: Unable to access opcode bytes at 0x7fc7df18baef.
[   96.139612] RSP: 002b:00007fff11578358 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   96.140253] RAX: ffffffffffffffda RBX: 00007fff11578b38 RCX: 00007fc7df18bb19
[   96.140854] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000043
[   96.141441] RBP: 0000000000000000 R08: 0000000000000026 R09: 00007fff11578b38
[   96.142027] R10: 0000000000000020 R11: 0000000000000246 R12: 00007fc7df1e5233
[   96.142619] R13: 0000000000000002 R14: 0000000000000000 R15: 00000000000000f8
[   96.143210]  </TASK>
[   96.151524] Bluetooth: hci4: command 0x0409 tx timeout
[   96.152372] Bluetooth: hci2: command 0x0409 tx timeout
[   96.279472] Bluetooth: hci7: command 0x0409 tx timeout
[   96.280456] Bluetooth: hci6: command 0x0409 tx timeout
[   98.135478] Bluetooth: hci1: command 0x041b tx timeout
[   98.135862] Bluetooth: hci3: command 0x041b tx timeout
[   98.136227] Bluetooth: hci0: command 0x041b tx timeout
[   98.199491] Bluetooth: hci2: command 0x041b tx timeout
[   98.199880] Bluetooth: hci4: command 0x041b tx timeout
[   98.327463] Bluetooth: hci6: command 0x041b tx timeout
[   98.327869] Bluetooth: hci7: command 0x041b tx timeout
[   99.290070] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   99.291521] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   99.293051] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   99.294918] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   99.296350] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   99.297205] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  100.183581] Bluetooth: hci0: command 0x040f tx timeout
[  100.183599] Bluetooth: hci3: command 0x040f tx timeout
[  100.183632] Bluetooth: hci1: command 0x040f tx timeout
[  100.247612] Bluetooth: hci4: command 0x040f tx timeout
[  100.248409] Bluetooth: hci2: command 0x040f tx timeout
[  100.375505] Bluetooth: hci7: command 0x040f tx timeout
[  100.376329] Bluetooth: hci6: command 0x040f tx timeout
[  101.335537] Bluetooth: hci5: command 0x0409 tx timeout
[  102.231497] Bluetooth: hci1: command 0x0419 tx timeout
[  102.231938] Bluetooth: hci3: command 0x0419 tx timeout
[  102.232318] Bluetooth: hci0: command 0x0419 tx timeout
[  102.295514] Bluetooth: hci2: command 0x0419 tx timeout
[  102.295926] Bluetooth: hci4: command 0x0419 tx timeout
[  102.423460] Bluetooth: hci6: command 0x0419 tx timeout
[  102.423882] Bluetooth: hci7: command 0x0419 tx timeout
[  103.383474] Bluetooth: hci5: command 0x041b tx timeout
[  105.431490] Bluetooth: hci5: command 0x040f tx timeout

VM DIAGNOSIS:
13:10:12  Registers:
info registers vcpu 0
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82502865 RDI=ffffffff87f10da0 RBP=ffffffff87f10d60 RSP=ffff888019b17100
R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001
R12=000000000000002e R13=ffffffff87f10d60 R14=0000000000000010 R15=ffffffff82502850
RIP=ffffffff825028bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe4203ecc000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe4203eca000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1e66edb59e CR3=00000000158ba000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=756e696c2d34365f3638782f62696c2f XMM01=322e6f732e6c6462696c2f756e672d78
XMM02=00322e6f732e6c6462696c2f756e672d XMM03=78756e696c2d34365f3638782f62696c
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000310d54fd07 RBX=00007fc1c9a05e50 RCX=00007fc1c99b7966 RDX=0000000000000072
RSI=00000621aa9fa0e0 RDI=00007fc1c99b7960 RBP=00007ffcfbe71580 RSP=00007ffcfbe713a0
R8 =00007fc1c97a3030 R9 =0000000000000004 R10=00007fc1c9c6f040 R11=00007fc1c9cae510
R12=00007fc1c99b7960 R13=00007ffcfbe71508 R14=00007fc1c99aa2a0 R15=00007fc1c9cae510
RIP=00007fc1c9cbec0b RFL=00000212 [----A--] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fc1c97a4540 00000000 00000000
GS =0000 0000000000000000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe099b926000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe099b924000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fc1c99b759e CR3=000000001c1aa000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00ff00000000000000000000000000ff XMM01=ff00ffffffffffffffffffffffffff00
XMM02=4c4700362e322e325f4342494c470035 XMM03=00000000000000000000000000470035
XMM04=4342494c4700362e322e325f4342494c XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000