Warning: Permanently added '[localhost]:47026' (ECDSA) to the list of known hosts.
2022/09/30 18:06:01 fuzzer started
2022/09/30 18:06:01 dialing manager at localhost:40535
syzkaller login: [   40.492282] cgroup: Unknown subsys name 'net'
[   40.568287] cgroup: Unknown subsys name 'rlimit'
2022/09/30 18:06:15 syscalls: 2215
2022/09/30 18:06:15 code coverage: enabled
2022/09/30 18:06:15 comparison tracing: enabled
2022/09/30 18:06:15 extra coverage: enabled
2022/09/30 18:06:15 setuid sandbox: enabled
2022/09/30 18:06:15 namespace sandbox: enabled
2022/09/30 18:06:15 Android sandbox: enabled
2022/09/30 18:06:15 fault injection: enabled
2022/09/30 18:06:15 leak checking: enabled
2022/09/30 18:06:15 net packet injection: enabled
2022/09/30 18:06:15 net device setup: enabled
2022/09/30 18:06:15 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/30 18:06:15 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/30 18:06:15 USB emulation: enabled
2022/09/30 18:06:15 hci packet injection: enabled
2022/09/30 18:06:15 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929                                          )
2022/09/30 18:06:15 802.15.4 emulation: enabled
2022/09/30 18:06:15 fetching corpus: 50, signal 23942/25728 (executing program)
2022/09/30 18:06:15 fetching corpus: 100, signal 40862/44174 (executing program)
2022/09/30 18:06:15 fetching corpus: 150, signal 52757/57419 (executing program)
2022/09/30 18:06:16 fetching corpus: 200, signal 56239/62341 (executing program)
2022/09/30 18:06:16 fetching corpus: 250, signal 62102/69499 (executing program)
2022/09/30 18:06:16 fetching corpus: 300, signal 65350/74069 (executing program)
2022/09/30 18:06:16 fetching corpus: 350, signal 70379/80280 (executing program)
2022/09/30 18:06:16 fetching corpus: 400, signal 73841/84965 (executing program)
2022/09/30 18:06:16 fetching corpus: 450, signal 77675/89893 (executing program)
2022/09/30 18:06:16 fetching corpus: 500, signal 80671/94007 (executing program)
2022/09/30 18:06:16 fetching corpus: 550, signal 83925/98252 (executing program)
2022/09/30 18:06:16 fetching corpus: 600, signal 85632/101076 (executing program)
2022/09/30 18:06:17 fetching corpus: 650, signal 89620/105958 (executing program)
2022/09/30 18:06:17 fetching corpus: 700, signal 92236/109599 (executing program)
2022/09/30 18:06:17 fetching corpus: 750, signal 94772/113100 (executing program)
2022/09/30 18:06:17 fetching corpus: 800, signal 97161/116382 (executing program)
2022/09/30 18:06:17 fetching corpus: 850, signal 100757/120746 (executing program)
2022/09/30 18:06:17 fetching corpus: 900, signal 102633/123497 (executing program)
2022/09/30 18:06:17 fetching corpus: 950, signal 104870/126508 (executing program)
2022/09/30 18:06:17 fetching corpus: 1000, signal 107154/129440 (executing program)
2022/09/30 18:06:18 fetching corpus: 1050, signal 108927/132030 (executing program)
2022/09/30 18:06:18 fetching corpus: 1100, signal 110438/134403 (executing program)
2022/09/30 18:06:18 fetching corpus: 1150, signal 112200/136936 (executing program)
2022/09/30 18:06:18 fetching corpus: 1200, signal 113577/139092 (executing program)
2022/09/30 18:06:18 fetching corpus: 1250, signal 116677/142620 (executing program)
2022/09/30 18:06:18 fetching corpus: 1300, signal 119337/145745 (executing program)
2022/09/30 18:06:18 fetching corpus: 1350, signal 120651/147806 (executing program)
2022/09/30 18:06:18 fetching corpus: 1400, signal 122112/149940 (executing program)
2022/09/30 18:06:18 fetching corpus: 1450, signal 123203/151732 (executing program)
2022/09/30 18:06:19 fetching corpus: 1500, signal 124740/153923 (executing program)
2022/09/30 18:06:19 fetching corpus: 1550, signal 126455/156151 (executing program)
2022/09/30 18:06:19 fetching corpus: 1600, signal 128157/158347 (executing program)
2022/09/30 18:06:19 fetching corpus: 1650, signal 129061/159990 (executing program)
2022/09/30 18:06:19 fetching corpus: 1700, signal 129773/161416 (executing program)
2022/09/30 18:06:19 fetching corpus: 1750, signal 132406/164111 (executing program)
2022/09/30 18:06:19 fetching corpus: 1800, signal 134392/166560 (executing program)
2022/09/30 18:06:19 fetching corpus: 1850, signal 135662/168353 (executing program)
2022/09/30 18:06:20 fetching corpus: 1900, signal 136153/169518 (executing program)
2022/09/30 18:06:20 fetching corpus: 1950, signal 137920/171575 (executing program)
2022/09/30 18:06:20 fetching corpus: 2000, signal 139273/173340 (executing program)
2022/09/30 18:06:20 fetching corpus: 2050, signal 140264/174901 (executing program)
2022/09/30 18:06:20 fetching corpus: 2100, signal 141415/176517 (executing program)
2022/09/30 18:06:20 fetching corpus: 2150, signal 142705/178203 (executing program)
2022/09/30 18:06:20 fetching corpus: 2200, signal 143843/179713 (executing program)
2022/09/30 18:06:20 fetching corpus: 2250, signal 145256/181382 (executing program)
2022/09/30 18:06:21 fetching corpus: 2300, signal 146399/182907 (executing program)
2022/09/30 18:06:21 fetching corpus: 2350, signal 147302/184256 (executing program)
2022/09/30 18:06:21 fetching corpus: 2400, signal 148410/185720 (executing program)
2022/09/30 18:06:21 fetching corpus: 2450, signal 149359/187074 (executing program)
2022/09/30 18:06:21 fetching corpus: 2500, signal 150983/188966 (executing program)
2022/09/30 18:06:21 fetching corpus: 2550, signal 151555/190031 (executing program)
2022/09/30 18:06:21 fetching corpus: 2600, signal 154354/192484 (executing program)
2022/09/30 18:06:21 fetching corpus: 2650, signal 156159/194179 (executing program)
2022/09/30 18:06:21 fetching corpus: 2700, signal 157379/195596 (executing program)
2022/09/30 18:06:22 fetching corpus: 2750, signal 158277/196820 (executing program)
2022/09/30 18:06:22 fetching corpus: 2800, signal 159618/198283 (executing program)
2022/09/30 18:06:22 fetching corpus: 2850, signal 161005/199660 (executing program)
2022/09/30 18:06:22 fetching corpus: 2900, signal 161914/200802 (executing program)
2022/09/30 18:06:22 fetching corpus: 2950, signal 162885/201934 (executing program)
2022/09/30 18:06:22 fetching corpus: 3000, signal 163900/203113 (executing program)
2022/09/30 18:06:22 fetching corpus: 3050, signal 164550/204076 (executing program)
2022/09/30 18:06:22 fetching corpus: 3100, signal 165612/205233 (executing program)
2022/09/30 18:06:22 fetching corpus: 3150, signal 166124/206120 (executing program)
2022/09/30 18:06:23 fetching corpus: 3200, signal 167111/207218 (executing program)
2022/09/30 18:06:23 fetching corpus: 3250, signal 167999/208246 (executing program)
2022/09/30 18:06:23 fetching corpus: 3300, signal 168931/209305 (executing program)
2022/09/30 18:06:23 fetching corpus: 3350, signal 169654/210269 (executing program)
2022/09/30 18:06:23 fetching corpus: 3400, signal 170388/211172 (executing program)
2022/09/30 18:06:23 fetching corpus: 3450, signal 171481/212274 (executing program)
2022/09/30 18:06:23 fetching corpus: 3500, signal 171968/213056 (executing program)
2022/09/30 18:06:23 fetching corpus: 3550, signal 172677/213967 (executing program)
2022/09/30 18:06:24 fetching corpus: 3600, signal 173475/214862 (executing program)
2022/09/30 18:06:24 fetching corpus: 3650, signal 174429/215762 (executing program)
2022/09/30 18:06:24 fetching corpus: 3700, signal 175290/216641 (executing program)
2022/09/30 18:06:24 fetching corpus: 3750, signal 176501/217630 (executing program)
2022/09/30 18:06:24 fetching corpus: 3800, signal 177048/218423 (executing program)
2022/09/30 18:06:24 fetching corpus: 3850, signal 178099/219384 (executing program)
2022/09/30 18:06:24 fetching corpus: 3900, signal 178917/220213 (executing program)
2022/09/30 18:06:24 fetching corpus: 3950, signal 179761/221026 (executing program)
2022/09/30 18:06:24 fetching corpus: 4000, signal 180324/221721 (executing program)
2022/09/30 18:06:25 fetching corpus: 4050, signal 181060/222494 (executing program)
2022/09/30 18:06:25 fetching corpus: 4100, signal 181732/223216 (executing program)
2022/09/30 18:06:25 fetching corpus: 4150, signal 182130/223830 (executing program)
2022/09/30 18:06:25 fetching corpus: 4200, signal 182769/224513 (executing program)
2022/09/30 18:06:25 fetching corpus: 4250, signal 183120/225099 (executing program)
2022/09/30 18:06:25 fetching corpus: 4300, signal 183654/225745 (executing program)
2022/09/30 18:06:25 fetching corpus: 4350, signal 184543/226450 (executing program)
2022/09/30 18:06:25 fetching corpus: 4400, signal 184938/227050 (executing program)
2022/09/30 18:06:26 fetching corpus: 4450, signal 185521/227677 (executing program)
2022/09/30 18:06:26 fetching corpus: 4500, signal 186227/228332 (executing program)
2022/09/30 18:06:26 fetching corpus: 4550, signal 186989/228961 (executing program)
2022/09/30 18:06:26 fetching corpus: 4600, signal 187562/229577 (executing program)
2022/09/30 18:06:26 fetching corpus: 4650, signal 188257/230199 (executing program)
2022/09/30 18:06:26 fetching corpus: 4700, signal 188799/230788 (executing program)
2022/09/30 18:06:26 fetching corpus: 4750, signal 189432/231363 (executing program)
2022/09/30 18:06:26 fetching corpus: 4800, signal 189967/231906 (executing program)
2022/09/30 18:06:26 fetching corpus: 4850, signal 190516/232439 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/232945 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/233378 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/233833 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/234245 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/234665 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/235080 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/235563 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/235985 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/236421 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/236841 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/237291 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/237711 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/238154 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/238601 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/239024 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/239436 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/239883 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/240327 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/240737 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/241156 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/241558 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/241993 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/242089 (executing program)
2022/09/30 18:06:27 fetching corpus: 4873, signal 190746/242089 (executing program)
2022/09/30 18:06:29 starting 8 fuzzer processes
18:06:29 executing program 0:
r0 = syz_io_uring_setup(0x4797, &(0x7f0000000000)={0x0, 0x6bac, 0x4, 0x3, 0x213}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=<r1=>0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xa, 0x11, r0, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000180)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x8000, 0x1, &(0x7f0000000100)="334a962c87cf68eba36986a70a4c0e9e0e899e8d055cfea1a72e105d66005f7d47e5bf67bfd7c9f46ad6e3476e6f90ba403a34f25519a5b6469c7f64f49363e701f3e12642620881780f2015c0a723b045978961f14a3dfa5c7ddb5c04de7711f271cc75221c2a203406f959f194d0c8e28713a14a834ec4998d2e", 0x800, 0x0, 0x0, {0x2}}, 0x40)
syz_io_uring_setup(0x3252, &(0x7f00000001c0)={0x0, 0xbe84, 0x20, 0x1, 0xb2}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)=<r3=>0x0)
r4 = syz_io_uring_setup(0x1ba7, &(0x7f00000002c0)={0x0, 0x9636, 0x2, 0x0, 0x31, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000340), &(0x7f0000000380))
syz_io_uring_setup(0x4c12, &(0x7f00000003c0)={0x0, 0x3fe8, 0x8, 0x3, 0x20a, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000440)=<r5=>0x0, &(0x7f0000000480))
syz_io_uring_submit(r5, r3, &(0x7f00000004c0)=@IORING_OP_NOP={0x0, 0x3}, 0x0)
r6 = openat$sr(0xffffffffffffff9c, &(0x7f0000000500), 0x100, 0x0)
clock_gettime(0x0, &(0x7f0000000640)={<r7=>0x0, <r8=>0x0})
mq_timedreceive(r6, &(0x7f0000000540)=""/219, 0xdb, 0x8, &(0x7f0000000680)={r7, r8+10000000})
r9 = syz_io_uring_setup(0x13f9, &(0x7f00000006c0)={0x0, 0x964c, 0x0, 0x2, 0x10e}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000740)=<r10=>0x0, &(0x7f0000000780))
syz_io_uring_setup(0x25ad, &(0x7f00000007c0)={0x0, 0x9d63, 0x1, 0x2, 0x376, 0x0, r4}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff7000/0x3000)=nil, &(0x7f0000000840), &(0x7f0000000880)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f00000008c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x8, 0x2, 0x1, {0x0, 0x0, r6}}, 0x1000)
r12 = syz_io_uring_setup(0x461a, &(0x7f0000000900)={0x0, 0xb8f8, 0x1, 0x2, 0x193}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000980), &(0x7f00000009c0))
r13 = syz_io_uring_setup(0x3bda, &(0x7f0000000a00)={0x0, 0xb45e, 0x0, 0x1, 0x2c1, 0x0, r12}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000a80), &(0x7f0000000ac0)=<r14=>0x0)
syz_io_uring_setup(0x3c4a, &(0x7f0000000b00)={0x0, 0x67ac, 0x20, 0x1, 0x1c7, 0x0, r9}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000b80)=<r15=>0x0, &(0x7f0000000bc0))
syz_io_uring_submit(r15, r14, &(0x7f0000000c00)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0xa, 0x0, 0x0, 0x0, {0x50}}, 0x7a94)
io_uring_enter(r13, 0x708f, 0x39ff, 0x2, &(0x7f0000000c40)={[0x2]}, 0x8)
syz_io_uring_setup(0x73f2, &(0x7f0000000c80)={0x0, 0x311e, 0x10, 0x2, 0x285, 0x0, r12}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000000d00), &(0x7f0000000d40))
clock_gettime(0x5, &(0x7f0000000d80))

18:06:29 executing program 1:
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000000)=""/193)
msgrcv(0xffffffffffffffff, &(0x7f0000000100)={0x0, ""/105}, 0x71, 0x1, 0x2800)
msgrcv(0x0, &(0x7f0000000180)={0x0, ""/213}, 0xdd, 0x2, 0x1000)
msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000280)=""/120)
msgsnd(0x0, &(0x7f0000000300)={0x2, "9938488db081b47b4b5370be0fec1621021d2af4e3a16e123c73f1b78e365f6b7930f2d6667665d6db79619d5e6a3051b52d9e2219feaa19ac672b1a980edf0a142b8ee5e67905ccbe7e04f60143b2f9d4193511486eb2aadf9ce6c01137992994b2d906adca7d5b141bd98289aea821a7f557e1ba392c1ea56882ad2c595c58526e532b5db35376cd9fd64f5d803a77707b1f431608b63086e42ad3169fe75fc6ea08440e1a85067cf6bbcb4aca3cba3ddc2784d647804e525122842faaac35ae8d6e4ef9732f8fce3d7d4103e938ce1af59a0eff34c9d12a20a77b24c6595f7eab849e0335ba"}, 0xef, 0x0)
r0 = msgget(0x1, 0x8a)
msgsnd(r0, &(0x7f0000000400)={0x2, "8a1c98ee4ec4b5830752e53bb3ced0aa44c504b81d8df335c22b0cc8d0f543b32e92c0f4040109d7f5209a7fd7f78b7ee58da424b26c738798a88860590714081a98ea51f3a17b06ec5372610ae5f312677b398f7b7923d8ad0d9f5053a8f93878d834b76412b1088d4eb4928512fb245e2ca03777cd"}, 0x7e, 0x800)
r1 = msgget$private(0x0, 0x30)
msgrcv(r1, &(0x7f0000000480)={0x0, ""/218}, 0xe2, 0x3, 0x1000)
r2 = msgget(0x3, 0x10)
msgrcv(r2, &(0x7f0000000580)={0x0, ""/223}, 0xe7, 0x0, 0x800)
r3 = msgget(0x2, 0x100)
msgsnd(r3, &(0x7f0000000680)={0x0, "74217144de80967aa15e4522c60c5cad32e57cdb6452350661162d0197c777d69927a22664acd484b63f4d1e8fbb9e8e395cc26e0686b60acbff73490076d8f85a1fff94c0579b05b80658ec4e5dd3843c86b231aa553df80702a2bd35e1a2c7d600e4f0826c953d97da0b75ddfdc1b5a7d409d27e7b2f75b2e5feddc9"}, 0x85, 0x0)
msgrcv(r3, &(0x7f0000000740), 0x8, 0x2, 0x0)
msgctl$IPC_STAT(r3, 0x2, &(0x7f0000000780)=""/145)
msgctl$IPC_INFO(r3, 0x3, &(0x7f0000000840)=""/198)
msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000940)=""/4)
msgctl$IPC_STAT(r1, 0x2, &(0x7f0000000980)=""/153)
msgrcv(r0, &(0x7f0000000a40)={0x0, ""/11}, 0x13, 0x3, 0x0)
msgrcv(0x0, &(0x7f0000000a80)={0x0, ""/136}, 0x90, 0x2, 0x2000)

18:06:29 executing program 2:
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0xa000, 0x0)
sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x1c0, 0x13, 0x100, 0x70bd26, 0x25dfdbfd, {0x15, 0x0, 0x7f, 0x5, {0x4e20, 0x4e20, [0x2, 0x1, 0x401, 0x20], [0x3f, 0x101, 0x8000, 0x400], 0x0, [0x0, 0x517]}, 0x5}, [@INET_DIAG_REQ_BYTECODE={0x18, 0x1, "ee8a96d99106fcee10254b1a0e69b8d1e941f816"}, @INET_DIAG_REQ_BYTECODE={0xd7, 0x1, "bf31468304fc51c64148d463c98551a4b03565c5dcbe94647ccd05337a31fff72a7a3aafba8742b3b2fb9cccaf140330b6612dd542cba9594321d16f92d1616a4fe83c583c23eba32fce7610f515a3e019213f2b82a87b0e8a286f8899f4204469b6910fbb44342098b8d8b8525639d41e1ca15b7367d1303b53e27fd2e6d86ee2a5bb6728a295a19bb37d7e13a13d25a00de5805d58ceb7dfe0c1ba13fc5504ad943a271f9c0ae0996098267e43ccd01f0c8347161ece3cc555f361e943f3c9baa33748d50c9025cad1f01e8cbfbef2bc55ff"}, @INET_DIAG_REQ_BYTECODE={0x83, 0x1, "0b4992eda2f3aefc2b9f083c8d4a48d2258a795e2f59c4c5246e7c7ca2d326d0715123d45828a49191070205801c0acf508111a7e600ff7ca02bf25cfbc901c49ae7af5dc5f2b2511484815c13e514e028b78334d2c2834a78c1c81a9d5a38e5625cf7dfb4b8fc0cb9f478650ae52819f4aa5cab593c7b46899677771dc692"}]}, 0x1c0}, 0x1, 0x0, 0x0, 0x5014}, 0x1)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000002c0)='net/route\x00')
ioctl$KDSKBSENT(r1, 0x4b49, &(0x7f0000000300)={0xff, "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"})
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000540)={0x9, 0xc51, 0x3fe, 0x0, 0x11, "d1e4a09264acbbda8d086636778ac3b2d64f94"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000580)={0x0, ""/256, <r2=>0x0, <r3=>0x0})
r4 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCSPTLCK(r4, 0x40045431, &(0x7f0000000780)=0x1)
r5 = syz_open_dev$ptys(0xc, 0x3, 0x0)
close(r5)
r6 = syz_open_dev$vcsu(&(0x7f00000007c0), 0xaf7, 0x10000)
r7 = ioctl$TIOCGPTPEER(r6, 0x5441, 0x7ff)
ioctl$KDFONTOP_GET(r7, 0x4b72, &(0x7f0000000c00)={0x1, 0x1, 0x20, 0x11, 0xdc, &(0x7f0000000800)})
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000c40), 0x81, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r8, 0xd000943e, &(0x7f0000000c80)={r3, r2, "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", "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"})
ioctl$GIO_UNISCRNMAP(r6, 0x4b69, &(0x7f0000001c80)=""/216)
write(r4, &(0x7f0000001d80)="fbbaf57a35cd113c170eb24a50ae6e26238fd326c6b6beb19f389baef16f33e7354a89c0790d097883cf21b29d52ca5909d6", 0x32)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000001dc0)=0x7)
ioctl$TIOCGRS485(r1, 0x542e, &(0x7f0000001e00))
ioctl$TCGETA(0xffffffffffffffff, 0x5405, &(0x7f0000001ec0))

18:06:29 executing program 3:
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000000))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000040))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000080))
prctl$PR_GET_ENDIAN(0x13, &(0x7f00000000c0))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000100))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000140))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000180))
prctl$PR_GET_ENDIAN(0x13, &(0x7f00000001c0))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000200))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000240))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000280))
prctl$PR_GET_ENDIAN(0x13, &(0x7f00000002c0))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000300))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000340))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000380))
prctl$PR_GET_ENDIAN(0x13, &(0x7f00000003c0))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000400))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000440))
prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000480))
prctl$PR_GET_ENDIAN(0x13, &(0x7f00000004c0))

18:06:29 executing program 4:
lsetxattr$trusted_overlay_origin(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080), 0x2, 0x4)
setxattr$trusted_overlay_origin(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140), 0x2, 0x0)
listxattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=""/141, 0x8d)
accept$unix(0xffffffffffffffff, 0x0, &(0x7f0000000280))
stat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
r1 = memfd_secret(0x0)
write$P9_RREADDIR(r1, &(0x7f0000000380)={0x2a, 0x29, 0x2, {0x5, [{{0x20, 0x3, 0x8}, 0x80000000, 0x3, 0x7, './file1'}]}}, 0x2a)
symlink(&(0x7f00000003c0)='./file1\x00', &(0x7f0000000400)='./file1\x00')
execve(&(0x7f0000000440)='./file0\x00', &(0x7f00000004c0)=[&(0x7f0000000480)='trusted.overlay.origin\x00'], &(0x7f0000000700)=[&(0x7f0000000500)='y\x00', &(0x7f0000000540)='y\x00', &(0x7f0000000580)='y\x00', &(0x7f00000005c0)='\x00', &(0x7f0000000600)='trusted.overlay.origin\x00', &(0x7f0000000640)='\x00', &(0x7f0000000680)='trusted.overlay.origin\x00', &(0x7f00000006c0)='\'&5{{]\x00'])
utimes(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780)={{0x0, 0xea60}})
listxattr(&(0x7f00000007c0)='./file1/file0\x00', &(0x7f0000000800)=""/23, 0x17)
syz_io_uring_setup(0x13b, &(0x7f0000000840)={0x0, 0xac2c, 0x2, 0x0, 0x101, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000008c0), &(0x7f0000000900))
setxattr$trusted_overlay_origin(&(0x7f0000000940)='./file1/file0\x00', &(0x7f0000000980), &(0x7f00000009c0), 0x2, 0x2)
unlinkat(r1, &(0x7f0000000a00)='./file0\x00', 0x200)
r2 = syz_mount_image$nfs4(&(0x7f0000000a40), &(0x7f0000000a80)='./file1/file0\x00', 0xc, 0x3, &(0x7f0000000dc0)=[{&(0x7f0000000ac0)="95a3d2e6c5bfdb8687cd3990ed9f8a9de00251bba9a7557bcea21c897d932ef3f962dc3e27ef3f9e33971c47ca18c0cc30c964d76c39d41cc3976c6ff72624960687089cfb0e8ae394806a32a72ab71e413ec67e7f55f99782c7c376cf47efeb084d242b452da572091fd8cfe02a3243bd16e02d1983d2f0667cf0faef0d70445e4fe9575d8db5e58e7cdc00e63bbba1006a12c89d46407c683741e6c5114522ce430d3006c9e12e82b88d040546979950507b9549c18ca3f436193b83eaa2c440ebfe36b00caa3591365d0e1d62084e1e8bc28b53b1a6c765a29501cc6d6d436fbfd50dc85757b744c5", 0xea, 0x8}, {&(0x7f0000000bc0)="1bd92fd4173465bcc9fe11886aedd89f2685bd14d9d19c698e8e9b7f8de1443a1a95f9e59678da9d418fb463fe7ffdac942ae076466b61bf143daea21e57116cc7d7262d7c2b0e8b23f47508216b0b4dec81e84d390a7ad164b5faa0e1de60216aa7adc8c6520dc36fbe531b16e37c5b86592b25cb1632abea42525fb188a8d22a34d9799fe2663fac0670496b64133430d77cbc2dfc42da8af6a1852a20eff4a4f00400ff862567bfabe90a1197d1fb9a69c43df457bef47a4ed5a89e57c0528c2eb2737badf55d0165b51d", 0xcc, 0x7}, {&(0x7f0000000cc0)="84d6b66454aa6ba75c9e59181d53cb749a9e55e94a701b01ff8f57bd5fcbdcb435a071d20058c6ad1c7274d26dfec5b07894513ea0fb4812e7dc19713054f55db3c82109aad2ef8fae8c99a553657896480c0d6c3e11c400ba7679ca79ecdbc90b8bef3efcbcba9f6832ead1034515a72e23bda9c130456db7586ff93b91ad25c0ee3096cffd57eb6042f366c1e47aaa9b78e7481c42cd09d278cb7304f4506d6da44dd9dafdffabf2a6b4c47fac4202d37a47e4d4c774bfe58da4820bae695cc9b83d15fe5bf4d1880a3894dc980844b6914ac0d946faedc8a9c02776fc40ec138be21aa5d1f15314c230d90f", 0xed, 0x6}], 0x8, &(0x7f0000000e40)={[{'\'&5{{]\x00'}, {'\'&5{{]\x00'}, {'y\x00'}, {'$-+C+!$(-'}, {'trusted.overlay.origin\x00'}], [{@measure}, {@obj_type={'obj_type', 0x3d, '\\]]'}}]})
unlinkat(r2, &(0x7f0000000ec0)='./file1/file0\x00', 0x200)
r3 = syz_mount_image$ext4(&(0x7f0000000f00)='ext2\x00', &(0x7f0000000f40)='./file0/file0\x00', 0xa6, 0x1, &(0x7f0000000fc0)=[{&(0x7f0000000f80)="6c1640c40e727a5050da91529b29a3f2419ea39b1fe162c2c598563b782f7ab25255e192be860cd6765991d953ddfe86da026f688d43a8dcb53c1514c1813df4", 0x40, 0x8}], 0x802020, &(0x7f0000001000)={[{@test_dummy_encryption}, {@nobarrier}, {@sb={'sb', 0x3d, 0x8001}}, {@prjquota}, {@dioread_nolock}], [{@fowner_gt={'fowner>', r0}}, {@uid_gt={'uid>', r0}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@euid_lt={'euid<', r0}}]})
openat(r3, &(0x7f00000010c0)='./file1/file0\x00', 0x604940, 0x128)
setxattr$incfs_metadata(&(0x7f0000001100)='./file0\x00', &(0x7f0000001140), &(0x7f0000001180)="5b8a42503113c2802d631ca61ab14363f0744c261e6e6d98a0a7d7e62985d5bbd75b580bab288975eba310107b13d48b2bf39135d06e523411545818e82a1622e7", 0x41, 0x1)
listxattr(&(0x7f0000001200)='./file0/file0\x00', &(0x7f0000001240)=""/20, 0x14)

18:06:29 executing program 6:
ioctl$PTP_PIN_GETFUNC2(0xffffffffffffffff, 0xc0603d0f, &(0x7f0000000000)={'\x00', 0x0, 0x0, 0x7})
r0 = syz_open_dev$vcsa(&(0x7f0000000080), 0x200000, 0x101000)
ioctl$PTP_PIN_GETFUNC2(r0, 0xc0603d0f, &(0x7f00000000c0)={'\x00', 0x1, 0x0, 0x7})
write(0xffffffffffffffff, &(0x7f0000000140)="61153f48cc7fe69ef0bcf37c64b40d6872a76956f3c481ec25764ad4fc0c6baed41a44cbc6c9c382429699a5da50ef45dcae312d635ba312e737c37e4a3cf0d85cc318b2a96aefc63acff92c3781faba323adbbd765e03fae4617b9e0b5d2c18634aace30e1537cde7ba20be8a30d5be6b4f9332795f9265ec1a35b69ededb8e7bed25506ab1db1a2a352058739cad96b580dbcc93a807d2", 0x98)
r1 = openat$cgroup(r0, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/tty/ldiscs\x00', 0x0, 0x0)
r3 = fcntl$dupfd(r1, 0x406, r2)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000280)={0x8, 'syzkaller1\x00', {'batadv_slave_0\x00'}, 0x5})
ioctl$PTP_PEROUT_REQUEST2(r0, 0x40383d0c, &(0x7f00000002c0)={{0x8, 0x101}, {0x8, 0x5}, 0x6, 0x1})
fchown(r0, 0xffffffffffffffff, 0xffffffffffffffff)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x902, 0x20c)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r6 = openat$cgroup_pressure(r2, &(0x7f0000000340)='cpu.pressure\x00', 0x2, 0x0)
r7 = ioctl$NS_GET_PARENT(r4, 0xb702, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f00000003c0)={0x1ff, 0x0, &(0x7f0000000380)=[r0, r5, r6, r7, r0, 0xffffffffffffffff]}, 0x6)
clone3(&(0x7f0000000600)={0x3000, &(0x7f0000000400), &(0x7f0000000440), &(0x7f0000000480), {0x14}, &(0x7f00000004c0)=""/171, 0xab, &(0x7f0000000580)=""/52, &(0x7f00000005c0)=[0xffffffffffffffff], 0x1, {r3}}, 0x58)
r8 = signalfd(r4, &(0x7f0000000680), 0x8)
r9 = pidfd_getfd(r2, r4, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r9}, './file0\x00'})
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)

18:06:29 executing program 5:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
ioctl$EVIOCGPHYS(r0, 0x80404507, &(0x7f0000000040)=""/4096)
sendmsg$nl_netfilter(r0, &(0x7f00000011c0)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001180)={&(0x7f0000001080)={0xf4, 0x14, 0x2, 0x101, 0x70bd2a, 0x25dfdbff, {0x2, 0x0, 0x4}, [@generic="02d828ef5acf3e8252b74d82521843e7da1d58fd591dea89f01d0ad2107c432f37bfa8ce78f1ad904e05920d1352ffc2b6b1938da7460c27e24bda027a2cd36beb57ce276685a9b164d607472139adcd23f4", @generic="7644118ff3cedcf54c3e37d2f69e0b0d47cab987cd3e6f71bf6b52b8c4f31c96054e1f12d9dc619ffb46475017d68d96eb6de92fe44935604c1bec776d855fba749a8700913b80cb9043cab91902790e665dac46ee45a8b90b1da9261f017e068f5ed9a69d4c38b3990d9ba76921f75d58423d5812fd20da59518fff8f35937e61b15b1fc7a7546e807c761ec8df"]}, 0xf4}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = open_tree(r0, &(0x7f0000001200)='./file0\x00', 0x1)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r1, 0xf507, 0x0)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000001280), r1)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r0, &(0x7f00000014c0)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001480)={&(0x7f00000012c0)={0x188, r2, 0x8, 0x70bd27, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x6}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0x9, 0x2}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x4}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0x9, 0x8}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0x9, 0x3}}]}, 0x188}, 0x1, 0x0, 0x0, 0x4010}, 0xc0)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f00000015c0)={'syztnl1\x00', &(0x7f0000001540)={'syztnl0\x00', <r3=>0x0, 0x2f, 0x4e, 0xff, 0x4, 0x2c, @empty, @local, 0x8, 0x700, 0x200, 0x400}})
recvmsg(r0, &(0x7f0000001840)={&(0x7f0000001600)=@ll={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @dev}, 0x80, &(0x7f0000001700)=[{&(0x7f0000001680)=""/63, 0x3f}, {&(0x7f00000016c0)=""/61, 0x3d}], 0x2, &(0x7f0000001740)=""/215, 0xd7}, 0x3050)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000001900)={'syztnl1\x00', &(0x7f0000001880)={'syztnl2\x00', <r5=>0x0, 0x29, 0x1f, 0x0, 0xfffffffb, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @ipv4={'\x00', '\xff\xff', @empty}, 0x1, 0x1, 0x4, 0x2a64}})
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000001940)={'team0\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000001980)={'virt_wifi0\x00', <r7=>0x0})
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000001a40)={'syztnl0\x00', &(0x7f00000019c0)={'ip6_vti0\x00', <r8=>0x0, 0x29, 0xbc, 0x3, 0x8, 0x4, @private1, @dev={0xfe, 0x80, '\x00', 0x21}, 0x10, 0x7800, 0x0, 0x1}})
getsockname$packet(r1, &(0x7f0000001a80)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001ac0)=0x14)
sendmsg$TEAM_CMD_PORT_LIST_GET(r1, &(0x7f0000002600)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000025c0)={&(0x7f0000001b00)={0xa98, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {}, [{{0x8}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0x224, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r3}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xffff}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff7}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x48}}}]}}, {{0x8}, {0x78, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1f}}}]}}, {{0x8}, {0x1e0, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xbb4}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r5}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x258}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffffd}}, {0x8}}}, {0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x2, 0x5, 0x7, 0x3f}]}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7fff}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfff}}}]}}, {{0x8}, {0x274, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x21}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3ff}}, {0x8, 0x6, r6}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r8}}}]}}, {{0x8}, {0x90, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r9}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8}, {0xb8, 0x2, 0x0, 0x1, [{0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x5, 0xff, 0x0, 0xffffff45}]}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}]}}, {{0x8}, {0x1c8, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xffffff80}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x6, 0x1, 0x0, 0xdb}, {0x8, 0x40, 0x0, 0x8001}, {0x81, 0x12, 0x0, 0x7}, {0x9, 0x1f, 0x4, 0x50d}]}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x200}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}]}}]}, 0xa98}, 0x1, 0x0, 0x0, 0x1}, 0x4000)
pipe2$9p(&(0x7f0000002640)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff}, 0x80800)
pwritev2(r11, &(0x7f0000002880)=[{&(0x7f0000002680)="71e06a98ccfa2e98c6edc74dc96235110f305bed791e5ce91bb35a5c284a12652e87349d1b5f391c57da36dbdb0a7820216227815a6409006c65bd677f9159f2276301b156cf79bc01606a6cb5c88f95334f11f2d5e0efc038e15c1895dba60a268c8a26c4bb2a591036fe9b6f3ab9fa94e75d5056d6ddc807ff4d11e37c425d622b5daafcc817811ec6b3e115c084090079ffe777f1ab546a14ad6bd7de777662b4647decea277e6dc547b6c2a4e16f0b04c44865ef2392f3741056ef84137c4d769153216dd15e8717f0ab0e1d9cdbe83960beb30098789d2c87ac0c0cb03c35988c031a2fe427740581cf65", 0xed}, {&(0x7f0000002780)="533d146417d0d2816d7a98fcf21e131bfb46cf2b69dd6761779120272ed8ddb07f391ab546946db4f72a5f76621217faf20ee4d135b668f73f17d0db2a5c29f7b9a3eb6326f7042af5db877f4d9046ab226ce5d2955c3afcc4df4e4fcd83cfbc281e1912671c8726d75333fb1d1ec616dde1d13c008776693aaa6979bfaef1634eee41c14a895f62445ec8f25bb02e4be215e8de7475ef6a25c6feb527bbe46e3b94d4b6189abd2ded337dfee9c4b5d4631cb12996c4294a42f44cbf19c299ef6d8e16cf9002271de3b61759874dab9b0e5b21d7fa141d0928f7794ddb", 0xdd}], 0x2, 0xfffffffa, 0x9, 0x9)
r12 = dup2(r10, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000002900)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r12, &(0x7f0000002cc0)={&(0x7f00000028c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002c80)={&(0x7f0000002940)={0x33c, 0x0, 0x400, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r13}, @void}}, [@NL80211_ATTR_IE={0x1b, 0x2a, [@rann={0x7e, 0x15, {{0x1, 0x9}, 0x5, 0x4, @broadcast, 0x1, 0x7e4}}]}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x6}, @NL80211_ATTR_IE={0x2ea, 0x2a, [@cf={0x4, 0x6, {0x5, 0x6, 0xff, 0x3}}, @measure_req={0x26, 0xd5, {0x0, 0x0, 0x3, "1420eb828b5d2183a6b63c7b39a3fdd3d04fad0a9642437e755bcfe32e7d4680ae0cd23c452b859257bf8d579f32c7795ae824740e860a8684612b9f0de29abfccc07cf7b4db8bba5b3854e2528693404740826bac77add7dc250975095dca1e1589b5b88deacc85724d8a1bbcad5c1d6b7aa97497839fd871ff14cf85b87c1f7d1bfe48eaf621e70a8f2f8d55d8c82fe564980465ec767c6ea7d74b32130beb05a6241eace7cdc78be3e85e1e85d1d90b3bef8972e076282d2e844caa66e0cee8d409452a8c34c0eb0b467221585236d34d"}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x8, 0x66, 0x3f}}, @mesh_id={0x72, 0x6}, @perr={0x84, 0x88, {0x15, 0x8, [@ext={{}, @device_b, 0xffff, @device_a, 0x3}, @ext={{}, @device_a, 0x7, @device_a, 0x14}, @ext={{}, @broadcast, 0x80000001, @device_b, 0x41}, @ext={{}, @device_b, 0xf9cb, @broadcast, 0x1}, @not_ext={{}, @device_b, 0x74b, "", 0x19}, @not_ext={{}, @device_b, 0x6c09ba90, "", 0x18}, @not_ext={{}, @device_a, 0x0, "", 0x1d}, @ext={{}, @device_a, 0x5, @device_b, 0x36}]}}, @challenge={0x10, 0x1, 0xf7}, @preq={0x82, 0x51, @not_ext={{0x0, 0x1}, 0xff, 0x20, 0x24064611, @device_b, 0xffffff88, "", 0x0, 0x0, 0x5, [{{0x0, 0x0, 0x1}, @broadcast}, {{0x1, 0x0, 0x1}, @device_a, 0x1ff}, {{}, @device_a, 0xcbd}, {{0x1}, @device_a, 0xb3}, {{0x1, 0x0, 0x1}, @device_a, 0xfffffffc}]}}, @random={0x40, 0xa2, "83d0ca428a3cd4b4a394a0db70fb682a071eac92a8a7577157db6ae0d15c42fd5bccceb3beb00f8063d76f99400d6c80120c551327de9fa4ac0e9d3a1adb820ca0591bcfc1d38107113935edad8d9f63f811e51b8472b2c6bb5f8d63b5f337dc4a3fb62039e11fccfa1644a4e1a9b5cc2a4d540043295e47d68be25ff0a335538059d198cd7a1d6db54d5e6d318938ddba900ca8ae632de1bc2b1817fdee9f494a14"}, @random_vendor={0xdd, 0x70, "d453c6b3f5837fd7776f0a3d1ece1d6672eab416152c099dd224e65abe01345e9eb2116318d0a82b6ad3cb4b06cc104dee33e528148153109640f8406a94174ab0c1f1f8bd1687a402df39565c553926029682f04a74e367a6b3a44bb824f43fa3fb34180f92bee7352e615b8af6e670"}, @dsss={0x3, 0x1, 0xd}]}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x3}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x2a6c}]}, 0x33c}, 0x1, 0x0, 0x0, 0x5}, 0x80)

[   68.387703] audit: type=1400 audit(1664561189.611:6): avc:  denied  { execmem } for  pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
18:06:29 executing program 7:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r1)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000040)=0x80000001)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x3)
ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000080)=0x4)
write(r1, &(0x7f00000000c0)="5aed1c94863fac0a1622593670ba5f9abf074629a7d2e44e4d7a4ea3318064eb4cc20e72cd34817ef25cdb9a4009b1fe4cf5fcdb8dc4cfba4720d6a3f314ae011d2c06c9902d7448682ee23fcdd507076f3e79d8b666c4ed02ebb4e2a5feb65fd53d6edf5d80cc2fb29b7f83b1ce928516e4ba2290074c86039cbdb77bd696d503376af5ddcf2f5ffb1d86e296271b6ca360567af819cb9ea69c6393719892b1ece6f3587b54426513877961d2e051975fe8815b29f9b408da6847125e7167923503856d825ab343076362389c538cbb2e19fcbc1f38c4d7210b6969", 0xdc)
r2 = syz_io_uring_setup(0x170a, &(0x7f00000001c0)={0x0, 0x63f5, 0x10, 0x1, 0x26d}, &(0x7f0000fea000/0x14000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280))
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r3=>r1, {<r4=>r2}}, './file0\x00'})
write$rfkill(r4, &(0x7f0000000300)={0xd10, 0x8, 0x1}, 0x8)
sendmsg$BATADV_CMD_SET_HARDIF(r3, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x5c, 0x0, 0x10, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @remote}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x7f}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xce20}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x3}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x86}]}, 0x5c}}, 0x4000000)
r5 = signalfd4(r2, &(0x7f0000000480)={[0x7]}, 0x8, 0x0)
ioctl$int_out(r4, 0xfca0, &(0x7f00000004c0))
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r4, 0xc0c89425, &(0x7f0000000500)={"07775dd4c11cfaeeb0a9460c93315b81", <r6=>0x0, 0x0, {0xffffffff, 0x2}, {0x6, 0x5}, 0x5, [0x5, 0x400, 0x1e18, 0x8001, 0x200, 0xfff, 0x4, 0x6, 0xfa4b, 0x2, 0x1, 0x7, 0x70c, 0x3, 0x1, 0x7]})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r2, 0x50009417, &(0x7f0000000680)={{r1}, r6, 0x0, @inherit={0x70, &(0x7f0000000600)={0x1, 0x5, 0x1d, 0x0, {0x3, 0x6, 0x0, 0x80000001, 0x2}, [0x7fff, 0x7a400000000, 0x5, 0x7, 0x3]}}, @name="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"})
syz_open_dev$vcsu(&(0x7f0000001680), 0x0, 0x1)
fcntl$setstatus(r3, 0x4, 0x40000)
signalfd(r2, &(0x7f00000016c0)={[0xb766]}, 0x8)
r7 = syz_open_dev$hidraw(&(0x7f0000001700), 0x0, 0x8c400)
close_range(r5, r7, 0x0)

[   69.682736] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   69.685394] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   69.706048] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   69.713849] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   69.715993] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   69.717715] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   69.719931] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   69.721111] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   69.722030] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   69.723480] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   69.727699] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   69.728677] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   69.730625] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   69.731664] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   69.733355] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   69.735044] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   69.736047] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   69.741482] Bluetooth: hci1: HCI_REQ-0x0c1a
[   69.745098] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   69.746888] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   69.748296] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   69.748652] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   69.750144] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   69.751744] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   69.768225] Bluetooth: hci0: HCI_REQ-0x0c1a
[   69.769088] Bluetooth: hci3: HCI_REQ-0x0c1a
[   69.791400] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   69.798437] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   69.810809] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   69.812688] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   69.814040] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   69.815324] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   69.819106] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   69.821523] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   69.822684] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   69.827388] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   69.828771] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   69.829943] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   69.832750] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   69.835364] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   69.837066] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   69.838508] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   69.839546] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   69.845566] Bluetooth: hci2: HCI_REQ-0x0c1a
[   69.851395] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   69.852656] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   69.856839] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   69.861485] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   69.862719] Bluetooth: hci7: HCI_REQ-0x0c1a
[   69.863482] Bluetooth: hci5: HCI_REQ-0x0c1a
[   69.864471] Bluetooth: hci4: HCI_REQ-0x0c1a
[   69.865280] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   69.874470] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   69.886617] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   69.891952] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   69.899320] Bluetooth: hci6: HCI_REQ-0x0c1a
[   71.800579] Bluetooth: hci3: command 0x0409 tx timeout
[   71.800598] Bluetooth: hci1: command 0x0409 tx timeout
[   71.801344] Bluetooth: hci0: command 0x0409 tx timeout
[   71.863709] Bluetooth: hci2: command 0x0409 tx timeout
[   71.927288] Bluetooth: hci7: command 0x0409 tx timeout
[   71.927827] Bluetooth: hci6: command 0x0409 tx timeout
[   71.928646] Bluetooth: hci4: command 0x0409 tx timeout
[   71.929120] Bluetooth: hci5: command 0x0409 tx timeout
[   73.847323] Bluetooth: hci1: command 0x041b tx timeout
[   73.848005] Bluetooth: hci3: command 0x041b tx timeout
[   73.848879] Bluetooth: hci0: command 0x041b tx timeout
[   73.911347] Bluetooth: hci2: command 0x041b tx timeout
[   73.975373] Bluetooth: hci5: command 0x041b tx timeout
[   73.976048] Bluetooth: hci4: command 0x041b tx timeout
[   73.976674] Bluetooth: hci6: command 0x041b tx timeout
[   73.977277] Bluetooth: hci7: command 0x041b tx timeout
[   75.896329] Bluetooth: hci0: command 0x040f tx timeout
[   75.896772] Bluetooth: hci3: command 0x040f tx timeout
[   75.897176] Bluetooth: hci1: command 0x040f tx timeout
[   75.960563] Bluetooth: hci2: command 0x040f tx timeout
[   76.024321] Bluetooth: hci7: command 0x040f tx timeout
[   76.024768] Bluetooth: hci6: command 0x040f tx timeout
[   76.025172] Bluetooth: hci4: command 0x040f tx timeout
[   76.025599] Bluetooth: hci5: command 0x040f tx timeout
[   77.943342] Bluetooth: hci1: command 0x0419 tx timeout
[   77.944114] Bluetooth: hci3: command 0x0419 tx timeout
[   77.944931] Bluetooth: hci0: command 0x0419 tx timeout
[   78.007269] Bluetooth: hci2: command 0x0419 tx timeout
[   78.071399] Bluetooth: hci5: command 0x0419 tx timeout
[   78.072171] Bluetooth: hci4: command 0x0419 tx timeout
[   78.073278] Bluetooth: hci6: command 0x0419 tx timeout
[   78.073984] Bluetooth: hci7: command 0x0419 tx timeout
18:07:26 executing program 4:
preadv(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000200)=""/78, 0x4e}, {&(0x7f0000000100)=""/14, 0xe}], 0x2, 0x39d6d88e, 0x50ba6a7)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x891e, &(0x7f0000000440)={'wpan0\x00'})
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000280), r2)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, 0x0)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r1, &(0x7f0000000580)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000540)={&(0x7f00000001c0)={0x14}, 0x14}}, 0x40000)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000600), r1)
sendmsg$NLBL_CALIPSO_C_REMOVE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x8, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8010}, 0xbc4a0663d5f19a4c)

18:07:26 executing program 4:
r0 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22480, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8e8, 0x400}, 0x0, 0x43, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x4)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=<r1=>0x0)
perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x7f, 0x1f, 0xff, 0xcd, 0x0, 0x1, 0x10000, 0x5, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x35, 0x1, @perf_bp, 0x4, 0x9, 0x9, 0x4, 0x4, 0xffff, 0x7f, 0x0, 0x2}, r1, 0xb, r0, 0x2)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140), 0x8040, 0x0)
ioctl$KDSETLED(r2, 0x4b32, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, &(0x7f0000000100)={0x0, @aes128, 0x0, @desc4})

[  125.096569] audit: type=1400 audit(1664561246.320:7): avc:  denied  { open } for  pid=3843 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  125.098104] audit: type=1400 audit(1664561246.320:8): avc:  denied  { kernel } for  pid=3843 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
18:07:26 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x7fffffe, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
r2 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000080), 0x118c008, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="2cfbff646e6f3d", @ANYRESHEX=r2, @ANYBLOB=',seclabel,dont_appraise,uid>', @ANYRESDEC=0x0, @ANYBLOB=',\x00'])
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r2, 0xc018937d, &(0x7f0000000380)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00./file1\x00'])
r3 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$GTP_CMD_DELPDP(r2, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, r3, 0x800, 0x180000, 0x25dfdbfc, {}, [@GTPA_O_TEI={0x8, 0x9, 0x1}, @GTPA_LINK={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @private=0xa010100}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x200000, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
flock(r4, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup2(r5, r4)

[  125.331712] ------------[ cut here ]------------
[  125.331735] 
[  125.331738] ======================================================
[  125.331742] WARNING: possible circular locking dependency detected
[  125.331746] 6.0.0-rc7-next-20220929 #1 Not tainted
[  125.331752] ------------------------------------------------------
[  125.331756] syz-executor.4/3863 is trying to acquire lock:
[  125.331762] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  125.331803] 
[  125.331803] but task is already holding lock:
[  125.331806] ffff88800e118020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  125.331833] 
[  125.331833] which lock already depends on the new lock.
[  125.331833] 
[  125.331837] 
[  125.331837] the existing dependency chain (in reverse order) is:
[  125.331840] 
[  125.331840] -> #3 (&ctx->lock){....}-{2:2}:
[  125.331853]        _raw_spin_lock+0x2a/0x40
[  125.331865]        __perf_event_task_sched_out+0x53b/0x18d0
[  125.331876]        __schedule+0xedd/0x2470
[  125.331890]        schedule+0xda/0x1b0
[  125.331903]        exit_to_user_mode_prepare+0x114/0x1a0
[  125.331916]        syscall_exit_to_user_mode+0x19/0x40
[  125.331929]        do_syscall_64+0x48/0x90
[  125.331946]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  125.331959] 
[  125.331959] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  125.331973]        _raw_spin_lock_nested+0x30/0x40
[  125.331983]        raw_spin_rq_lock_nested+0x1e/0x30
[  125.331996]        task_fork_fair+0x63/0x4d0
[  125.332013]        sched_cgroup_fork+0x3d0/0x540
[  125.332027]        copy_process+0x4183/0x6e20
[  125.332038]        kernel_clone+0xe7/0x890
[  125.332047]        user_mode_thread+0xad/0xf0
[  125.332058]        rest_init+0x24/0x250
[  125.332069]        arch_call_rest_init+0xf/0x14
[  125.332086]        start_kernel+0x4c6/0x4eb
[  125.332100]        secondary_startup_64_no_verify+0xe0/0xeb
[  125.332115] 
[  125.332115] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  125.332128]        _raw_spin_lock_irqsave+0x39/0x60
[  125.332139]        try_to_wake_up+0xab/0x1930
[  125.332152]        up+0x75/0xb0
[  125.332172]        __up_console_sem+0x6e/0x80
[  125.332190]        console_unlock+0x46a/0x590
[  125.332206]        vprintk_emit+0x1bd/0x560
[  125.332222]        vprintk+0x84/0xa0
[  125.332238]        _printk+0xba/0xf1
[  125.332249]        regdb_fw_cb.cold+0x6c/0xa7
[  125.332266]        request_firmware_work_func+0x12e/0x240
[  125.332286]        process_one_work+0xa17/0x16a0
[  125.332303]        worker_thread+0x637/0x1260
[  125.332320]        kthread+0x2ed/0x3a0
[  125.332334]        ret_from_fork+0x22/0x30
[  125.332346] 
[  125.332346] -> #0 ((console_sem).lock){....}-{2:2}:
[  125.332360]        __lock_acquire+0x2a02/0x5e70
[  125.332376]        lock_acquire+0x1a2/0x530
[  125.332392]        _raw_spin_lock_irqsave+0x39/0x60
[  125.332402]        down_trylock+0xe/0x70
[  125.332417]        __down_trylock_console_sem+0x3b/0xd0
[  125.332433]        vprintk_emit+0x16b/0x560
[  125.332449]        vprintk+0x84/0xa0
[  125.332464]        _printk+0xba/0xf1
[  125.332474]        report_bug.cold+0x72/0xab
[  125.332490]        handle_bug+0x3c/0x70
[  125.332507]        exc_invalid_op+0x14/0x50
[  125.332523]        asm_exc_invalid_op+0x16/0x20
[  125.332535]        group_sched_out.part.0+0x2c7/0x460
[  125.332553]        ctx_sched_out+0x8f1/0xc10
[  125.332569]        __perf_event_task_sched_out+0x6d0/0x18d0
[  125.332580]        __schedule+0xedd/0x2470
[  125.332594]        schedule+0xda/0x1b0
[  125.332607]        exit_to_user_mode_prepare+0x114/0x1a0
[  125.332617]        syscall_exit_to_user_mode+0x19/0x40
[  125.332630]        do_syscall_64+0x48/0x90
[  125.332646]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  125.332659] 
[  125.332659] other info that might help us debug this:
[  125.332659] 
[  125.332661] Chain exists of:
[  125.332661]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  125.332661] 
[  125.332676]  Possible unsafe locking scenario:
[  125.332676] 
[  125.332679]        CPU0                    CPU1
[  125.332681]        ----                    ----
[  125.332683]   lock(&ctx->lock);
[  125.332689]                                lock(&rq->__lock);
[  125.332695]                                lock(&ctx->lock);
[  125.332702]   lock((console_sem).lock);
[  125.332708] 
[  125.332708]  *** DEADLOCK ***
[  125.332708] 
[  125.332710] 2 locks held by syz-executor.4/3863:
[  125.332716]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  125.332745]  #1: ffff88800e118020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  125.332772] 
[  125.332772] stack backtrace:
[  125.332775] CPU: 0 PID: 3863 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220929 #1
[  125.332787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  125.332795] Call Trace:
[  125.332799]  <TASK>
[  125.332803]  dump_stack_lvl+0x8b/0xb3
[  125.332821]  check_noncircular+0x263/0x2e0
[  125.332838]  ? format_decode+0x26c/0xb50
[  125.332854]  ? print_circular_bug+0x450/0x450
[  125.332871]  ? enable_ptr_key_workfn+0x20/0x20
[  125.332887]  ? format_decode+0x26c/0xb50
[  125.332905]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  125.332922]  __lock_acquire+0x2a02/0x5e70
[  125.332944]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  125.332966]  lock_acquire+0x1a2/0x530
[  125.332983]  ? down_trylock+0xe/0x70
[  125.333000]  ? lock_release+0x750/0x750
[  125.333020]  ? vprintk+0x84/0xa0
[  125.333038]  _raw_spin_lock_irqsave+0x39/0x60
[  125.333049]  ? down_trylock+0xe/0x70
[  125.333065]  down_trylock+0xe/0x70
[  125.333080]  ? vprintk+0x84/0xa0
[  125.333097]  __down_trylock_console_sem+0x3b/0xd0
[  125.333114]  vprintk_emit+0x16b/0x560
[  125.333133]  vprintk+0x84/0xa0
[  125.333150]  _printk+0xba/0xf1
[  125.333161]  ? record_print_text.cold+0x16/0x16
[  125.333177]  ? report_bug.cold+0x66/0xab
[  125.333195]  ? group_sched_out.part.0+0x2c7/0x460
[  125.333213]  report_bug.cold+0x72/0xab
[  125.333232]  handle_bug+0x3c/0x70
[  125.333249]  exc_invalid_op+0x14/0x50
[  125.333267]  asm_exc_invalid_op+0x16/0x20
[  125.333279] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  125.333299] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  125.333311] RSP: 0018:ffff88803ea8fc48 EFLAGS: 00010006
[  125.333320] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  125.333327] RDX: ffff888017d69ac0 RSI: ffffffff81565e67 RDI: 0000000000000005
[  125.333336] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  125.333343] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800e118000
[  125.333351] R13: ffff88806ce3d2c0 R14: ffffffff8547d040 R15: 0000000000000002
[  125.333362]  ? group_sched_out.part.0+0x2c7/0x460
[  125.333381]  ? group_sched_out.part.0+0x2c7/0x460
[  125.333401]  ctx_sched_out+0x8f1/0xc10
[  125.333421]  __perf_event_task_sched_out+0x6d0/0x18d0
[  125.333435]  ? lock_is_held_type+0xd7/0x130
[  125.333448]  ? __perf_cgroup_move+0x160/0x160
[  125.333459]  ? set_next_entity+0x304/0x550
[  125.333477]  ? update_curr+0x267/0x740
[  125.333495]  ? lock_is_held_type+0xd7/0x130
[  125.333509]  __schedule+0xedd/0x2470
[  125.333526]  ? io_schedule_timeout+0x150/0x150
[  125.333542]  ? rcu_read_lock_sched_held+0x3e/0x80
[  125.333562]  schedule+0xda/0x1b0
[  125.333577]  exit_to_user_mode_prepare+0x114/0x1a0
[  125.333590]  syscall_exit_to_user_mode+0x19/0x40
[  125.333603]  do_syscall_64+0x48/0x90
[  125.333620]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  125.333633] RIP: 0033:0x7f8a724afb19
[  125.333642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  125.333652] RSP: 002b:00007f8a6fa04218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  125.333663] RAX: 0000000000000001 RBX: 00007f8a725c3028 RCX: 00007f8a724afb19
[  125.333671] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8a725c302c
[  125.333678] RBP: 00007f8a725c3020 R08: 000000000000000e R09: 0000000000000000
[  125.333685] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f8a725c302c
[  125.333692] R13: 00007ffc95210ddf R14: 00007f8a6fa04300 R15: 0000000000022000
[  125.333705]  </TASK>
[  125.389988] WARNING: CPU: 0 PID: 3863 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  125.390640] Modules linked in:
[  125.390872] CPU: 0 PID: 3863 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220929 #1
[  125.391433] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  125.392225] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  125.392614] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  125.393890] RSP: 0018:ffff88803ea8fc48 EFLAGS: 00010006
[  125.394269] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  125.394773] RDX: ffff888017d69ac0 RSI: ffffffff81565e67 RDI: 0000000000000005
[  125.395274] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  125.395772] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800e118000
[  125.396285] R13: ffff88806ce3d2c0 R14: ffffffff8547d040 R15: 0000000000000002
[  125.396791] FS:  00007f8a6fa04700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  125.397356] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  125.397765] CR2: 00007f03978b7028 CR3: 000000000f2e0000 CR4: 0000000000350ef0
[  125.398262] Call Trace:
[  125.398448]  <TASK>
[  125.398615]  ctx_sched_out+0x8f1/0xc10
[  125.398906]  __perf_event_task_sched_out+0x6d0/0x18d0
[  125.399278]  ? lock_is_held_type+0xd7/0x130
[  125.399586]  ? __perf_cgroup_move+0x160/0x160
[  125.399907]  ? set_next_entity+0x304/0x550
[  125.400248]  ? update_curr+0x267/0x740
[  125.400549]  ? lock_is_held_type+0xd7/0x130
[  125.400872]  __schedule+0xedd/0x2470
[  125.401155]  ? io_schedule_timeout+0x150/0x150
[  125.401489]  ? rcu_read_lock_sched_held+0x3e/0x80
[  125.401843]  schedule+0xda/0x1b0
[  125.402095]  exit_to_user_mode_prepare+0x114/0x1a0
[  125.402448]  syscall_exit_to_user_mode+0x19/0x40
[  125.402791]  do_syscall_64+0x48/0x90
[  125.403067]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  125.403431] RIP: 0033:0x7f8a724afb19
[  125.403696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  125.404970] RSP: 002b:00007f8a6fa04218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  125.405511] RAX: 0000000000000001 RBX: 00007f8a725c3028 RCX: 00007f8a724afb19
[  125.406010] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f8a725c302c
[  125.406514] RBP: 00007f8a725c3020 R08: 000000000000000e R09: 0000000000000000
[  125.407014] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f8a725c302c
[  125.407515] R13: 00007ffc95210ddf R14: 00007f8a6fa04300 R15: 0000000000022000
[  125.408025]  </TASK>
[  125.408201] irq event stamp: 590
[  125.408449] hardirqs last  enabled at (589): [<ffffffff8133e8c9>] exit_to_user_mode_prepare+0x109/0x1a0
[  125.409103] hardirqs last disabled at (590): [<ffffffff8425a985>] __schedule+0x1225/0x2470
[  125.409684] softirqs last  enabled at (460): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  125.410287] softirqs last disabled at (247): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  125.410888] ---[ end trace 0000000000000000 ]---
18:07:26 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

18:07:27 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

18:07:27 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

18:07:27 executing program 4:
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x3f, 0x3, &(0x7f0000000480)=[{&(0x7f0000000300)="f4ed7efa4f5d1dbf13871d905fbbd6e0759a31107dad1332f0cdbf269bf113ed3d06d6", 0x23, 0x7}, {&(0x7f0000000340)="71b945737c159b720c7729a2c23adef6c897404ffaee5b26bea234a42f51f573d1ff8507e2b8e0db893c8057c047dafaa1385c52f5a806dcf5ea0ab8e8afafd3ab0fb53fe5f43c5b0f75034e91256cbc7d34ffd25b5f62a4f25b9611ad649a3e912ffa32e63aab2b1ca57e8bd412eb929a92df35222751affdcdabfb8a13ad590f8ceb653a627a54b56cec51bcb3e2464f6d4bf142e5f59a8bac035af8f71422", 0xa0, 0x3}, {&(0x7f0000000400)="bf01f5da2731c824195749e81d849a718ee6c678e94889d331a51f011b5a9713308e508aa8432f22078bb56941c49c246e267919ee34f7176779edfd23ff535421aa14d11674a8a2164a6bbca8", 0x4d, 0x57c}], 0x808c0, &(0x7f0000000500)={[{@nodots}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@obj_type}, {@obj_role={'obj_role', 0x3d, '\'\xcb.['}}, {@context={'context', 0x3d, 'root'}}, {@uid_eq={'uid', 0x3d, 0xee00}}, {@smackfshat={'smackfshat', 0x3d, '*+)@'}}]})
acct(0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f00000001c0)='./file0\x00')
renameat(r1, &(0x7f0000000140)='./file0/file0\x00', r1, &(0x7f0000000180)='./file1\x00')
fspick(r1, &(0x7f0000000040)='./file1\x00', 0x0)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
r3 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000080), 0x118c008, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [{@seclabel}, {@dont_appraise}, {@uid_gt}]}})
clock_gettime(0x0, &(0x7f00000005c0)={<r4=>0x0, <r5=>0x0})
utimensat(r2, &(0x7f0000000580)='./file0\x00', &(0x7f0000000600)={{r4, r5/1000+10000}, {0x0, 0x2710}}, 0x0)
perf_event_open(&(0x7f0000000140)={0x6, 0x80, 0xff, 0x7f, 0x8, 0x8, 0x0, 0x5, 0x4410, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffff80, 0x4, @perf_bp={&(0x7f0000000040), 0xa}, 0x1200, 0x81, 0x20, 0x1, 0x9, 0xf5, 0x7, 0x0, 0x8}, 0x0, 0x6, r1, 0x2)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[  126.019526] loop4: detected capacity change from 0 to 5
[  126.029450] =======================================================
[  126.029450] WARNING: The mand mount option has been deprecated and
[  126.029450]          and is ignored by this kernel. Remove the mand
[  126.029450]          option from the mount to silence this warning.
[  126.029450] =======================================================
[  126.092957] loop4: detected capacity change from 0 to 5
18:07:27 executing program 4:
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x3f, 0x3, &(0x7f0000000480)=[{&(0x7f0000000300)="f4ed7efa4f5d1dbf13871d905fbbd6e0759a31107dad1332f0cdbf269bf113ed3d06d6", 0x23, 0x7}, {&(0x7f0000000340)="71b945737c159b720c7729a2c23adef6c897404ffaee5b26bea234a42f51f573d1ff8507e2b8e0db893c8057c047dafaa1385c52f5a806dcf5ea0ab8e8afafd3ab0fb53fe5f43c5b0f75034e91256cbc7d34ffd25b5f62a4f25b9611ad649a3e912ffa32e63aab2b1ca57e8bd412eb929a92df35222751affdcdabfb8a13ad590f8ceb653a627a54b56cec51bcb3e2464f6d4bf142e5f59a8bac035af8f71422", 0xa0, 0x3}, {&(0x7f0000000400)="bf01f5da2731c824195749e81d849a718ee6c678e94889d331a51f011b5a9713308e508aa8432f22078bb56941c49c246e267919ee34f7176779edfd23ff535421aa14d11674a8a2164a6bbca8", 0x4d, 0x57c}], 0x808c0, &(0x7f0000000500)={[{@nodots}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@obj_type}, {@obj_role={'obj_role', 0x3d, '\'\xcb.['}}, {@context={'context', 0x3d, 'root'}}, {@uid_eq={'uid', 0x3d, 0xee00}}, {@smackfshat={'smackfshat', 0x3d, '*+)@'}}]})
acct(0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f00000001c0)='./file0\x00')
renameat(r1, &(0x7f0000000140)='./file0/file0\x00', r1, &(0x7f0000000180)='./file1\x00')
fspick(r1, &(0x7f0000000040)='./file1\x00', 0x0)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
r3 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, 0x0, &(0x7f0000000080), 0x118c008, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [{@seclabel}, {@dont_appraise}, {@uid_gt}]}})
clock_gettime(0x0, &(0x7f00000005c0)={<r4=>0x0, <r5=>0x0})
utimensat(r2, &(0x7f0000000580)='./file0\x00', &(0x7f0000000600)={{r4, r5/1000+10000}, {0x0, 0x2710}}, 0x0)
perf_event_open(&(0x7f0000000140)={0x6, 0x80, 0xff, 0x7f, 0x8, 0x8, 0x0, 0x5, 0x4410, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffff80, 0x4, @perf_bp={&(0x7f0000000040), 0xa}, 0x1200, 0x81, 0x20, 0x1, 0x9, 0xf5, 0x7, 0x0, 0x8}, 0x0, 0x6, r1, 0x2)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

[  126.201248] loop4: detected capacity change from 0 to 5

VM DIAGNOSIS:
18:07:26  Registers:
info registers vcpu 0
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88803ea8f690
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000066 R11=0000000000000001
R12=0000000000000066 R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0
RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f8a6fa04700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f03978b7028 CR3=000000000f2e0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f8a725967c0 00007f8a725967c8
YMM02=0000000000000000 0000000000000000 00007f8a725967e0 00007f8a725967c0
YMM03=0000000000000000 0000000000000000 00007f8a725967c8 00007f8a725967c0
YMM04=0000000000000000 0000000000000000 da6fc37e00000018 0000000100000001
YMM05=0000000000000000 0000000000000000 24c973543e059f41 baba0721d4288548
YMM06=0000000000000000 0000000000000000 55611b5faea92e50 94f4eb99b4dfd423
YMM07=0000000000000000 0000000000000000 5da48fb9411f8930 452bedbd0f589ce7
YMM08=0000000000000000 0000000000000000 052f51594518d2ab b95d269c9f97ef93
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=4000000000000002 RCX=ffffffff815ac997 RDX=ffff88801bb88000
RSI=0000000000000000 RDI=0000000000000001 RBP=ffff88806cf33b60 RSP=ffff88803e9ffa90
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000044b4c R13=4000000000000000 R14=0000000000044b4c R15=0000000000000200
RIP=ffffffff815ac852 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f2ac12b5540 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055a0c8854c70 CR3=000000001bf6e000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ff00ffffffffffff ffffffffff0000ff
YMM02=0000000000000000 0000000000000000 00666e6f63737973 00657a696c616e69
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000616e69
YMM04=0000000000000000 0000000000000000 68637300666e6f63 73797300657a696c
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000