Warning: Permanently added '[localhost]:46727' (ECDSA) to the list of known hosts.
2022/10/02 05:20:00 fuzzer started
2022/10/02 05:20:00 dialing manager at localhost:35095
syzkaller login: [   35.683456] cgroup: Unknown subsys name 'net'
[   35.782587] cgroup: Unknown subsys name 'rlimit'
2022/10/02 05:20:15 syscalls: 2215
2022/10/02 05:20:15 code coverage: enabled
2022/10/02 05:20:15 comparison tracing: enabled
2022/10/02 05:20:15 extra coverage: enabled
2022/10/02 05:20:15 setuid sandbox: enabled
2022/10/02 05:20:15 namespace sandbox: enabled
2022/10/02 05:20:15 Android sandbox: enabled
2022/10/02 05:20:15 fault injection: enabled
2022/10/02 05:20:15 leak checking: enabled
2022/10/02 05:20:15 net packet injection: enabled
2022/10/02 05:20:15 net device setup: enabled
2022/10/02 05:20:15 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/02 05:20:15 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/02 05:20:15 USB emulation: enabled
2022/10/02 05:20:15 hci packet injection: enabled
2022/10/02 05:20:15 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/02 05:20:15 802.15.4 emulation: enabled
2022/10/02 05:20:15 fetching corpus: 50, signal 24522/26326 (executing program)
2022/10/02 05:20:15 fetching corpus: 100, signal 35348/38802 (executing program)
2022/10/02 05:20:16 fetching corpus: 150, signal 46537/51507 (executing program)
2022/10/02 05:20:16 fetching corpus: 200, signal 54292/60702 (executing program)
2022/10/02 05:20:16 fetching corpus: 250, signal 59939/67730 (executing program)
2022/10/02 05:20:16 fetching corpus: 300, signal 66910/75891 (executing program)
2022/10/02 05:20:16 fetching corpus: 350, signal 70534/80806 (executing program)
2022/10/02 05:20:16 fetching corpus: 400, signal 73489/85057 (executing program)
2022/10/02 05:20:16 fetching corpus: 450, signal 76244/89050 (executing program)
2022/10/02 05:20:16 fetching corpus: 500, signal 79844/93772 (executing program)
2022/10/02 05:20:17 fetching corpus: 550, signal 83216/98248 (executing program)
2022/10/02 05:20:17 fetching corpus: 600, signal 84958/101141 (executing program)
2022/10/02 05:20:17 fetching corpus: 650, signal 88742/105937 (executing program)
2022/10/02 05:20:17 fetching corpus: 700, signal 91077/109340 (executing program)
2022/10/02 05:20:17 fetching corpus: 750, signal 96297/115310 (executing program)
2022/10/02 05:20:17 fetching corpus: 800, signal 99233/119170 (executing program)
2022/10/02 05:20:17 fetching corpus: 850, signal 103721/124315 (executing program)
2022/10/02 05:20:17 fetching corpus: 900, signal 107904/129160 (executing program)
2022/10/02 05:20:18 fetching corpus: 950, signal 109785/131995 (executing program)
2022/10/02 05:20:18 fetching corpus: 1000, signal 111668/134761 (executing program)
2022/10/02 05:20:18 fetching corpus: 1050, signal 113272/137321 (executing program)
2022/10/02 05:20:18 fetching corpus: 1100, signal 115173/140054 (executing program)
2022/10/02 05:20:18 fetching corpus: 1150, signal 117435/143083 (executing program)
2022/10/02 05:20:18 fetching corpus: 1200, signal 119671/146025 (executing program)
2022/10/02 05:20:18 fetching corpus: 1250, signal 121340/148467 (executing program)
2022/10/02 05:20:18 fetching corpus: 1300, signal 122372/150415 (executing program)
2022/10/02 05:20:18 fetching corpus: 1350, signal 123725/152537 (executing program)
2022/10/02 05:20:19 fetching corpus: 1400, signal 125043/154643 (executing program)
2022/10/02 05:20:19 fetching corpus: 1450, signal 127511/157742 (executing program)
2022/10/02 05:20:19 fetching corpus: 1500, signal 128824/159784 (executing program)
2022/10/02 05:20:19 fetching corpus: 1550, signal 130066/161766 (executing program)
2022/10/02 05:20:19 fetching corpus: 1600, signal 131235/163723 (executing program)
2022/10/02 05:20:19 fetching corpus: 1650, signal 133423/166381 (executing program)
2022/10/02 05:20:19 fetching corpus: 1700, signal 134783/168414 (executing program)
2022/10/02 05:20:19 fetching corpus: 1750, signal 135866/170219 (executing program)
2022/10/02 05:20:19 fetching corpus: 1800, signal 137275/172223 (executing program)
2022/10/02 05:20:20 fetching corpus: 1850, signal 138243/173934 (executing program)
2022/10/02 05:20:20 fetching corpus: 1900, signal 139387/175700 (executing program)
2022/10/02 05:20:20 fetching corpus: 1950, signal 140026/177111 (executing program)
2022/10/02 05:20:20 fetching corpus: 2000, signal 141715/179273 (executing program)
2022/10/02 05:20:20 fetching corpus: 2050, signal 142374/180662 (executing program)
2022/10/02 05:20:20 fetching corpus: 2100, signal 143284/182253 (executing program)
2022/10/02 05:20:20 fetching corpus: 2150, signal 144142/183749 (executing program)
2022/10/02 05:20:20 fetching corpus: 2200, signal 146050/185920 (executing program)
2022/10/02 05:20:21 fetching corpus: 2250, signal 148044/188121 (executing program)
2022/10/02 05:20:21 fetching corpus: 2300, signal 150106/190334 (executing program)
2022/10/02 05:20:21 fetching corpus: 2350, signal 152348/192626 (executing program)
2022/10/02 05:20:21 fetching corpus: 2400, signal 152929/193816 (executing program)
2022/10/02 05:20:21 fetching corpus: 2450, signal 153615/195119 (executing program)
2022/10/02 05:20:21 fetching corpus: 2500, signal 154238/196347 (executing program)
2022/10/02 05:20:21 fetching corpus: 2550, signal 155640/198042 (executing program)
2022/10/02 05:20:21 fetching corpus: 2600, signal 156702/199492 (executing program)
2022/10/02 05:20:21 fetching corpus: 2650, signal 157342/200680 (executing program)
2022/10/02 05:20:22 fetching corpus: 2700, signal 158082/201922 (executing program)
2022/10/02 05:20:22 fetching corpus: 2750, signal 159453/203545 (executing program)
2022/10/02 05:20:22 fetching corpus: 2800, signal 160158/204780 (executing program)
2022/10/02 05:20:22 fetching corpus: 2850, signal 160783/205966 (executing program)
2022/10/02 05:20:22 fetching corpus: 2900, signal 161549/207225 (executing program)
2022/10/02 05:20:22 fetching corpus: 2950, signal 163070/208858 (executing program)
2022/10/02 05:20:22 fetching corpus: 3000, signal 164101/210202 (executing program)
2022/10/02 05:20:22 fetching corpus: 3050, signal 165047/211453 (executing program)
2022/10/02 05:20:23 fetching corpus: 3100, signal 166360/212860 (executing program)
2022/10/02 05:20:23 fetching corpus: 3150, signal 166894/213893 (executing program)
2022/10/02 05:20:23 fetching corpus: 3200, signal 167834/215087 (executing program)
2022/10/02 05:20:23 fetching corpus: 3250, signal 168338/216073 (executing program)
2022/10/02 05:20:23 fetching corpus: 3300, signal 168793/217067 (executing program)
2022/10/02 05:20:23 fetching corpus: 3350, signal 169877/218349 (executing program)
2022/10/02 05:20:23 fetching corpus: 3400, signal 170818/219567 (executing program)
2022/10/02 05:20:24 fetching corpus: 3450, signal 172679/221202 (executing program)
2022/10/02 05:20:24 fetching corpus: 3500, signal 174054/222527 (executing program)
2022/10/02 05:20:24 fetching corpus: 3550, signal 174996/223622 (executing program)
2022/10/02 05:20:24 fetching corpus: 3600, signal 175832/224710 (executing program)
2022/10/02 05:20:24 fetching corpus: 3650, signal 176670/225745 (executing program)
2022/10/02 05:20:24 fetching corpus: 3700, signal 177313/226647 (executing program)
2022/10/02 05:20:24 fetching corpus: 3750, signal 177747/227488 (executing program)
2022/10/02 05:20:24 fetching corpus: 3800, signal 178218/228390 (executing program)
2022/10/02 05:20:25 fetching corpus: 3850, signal 178932/229491 (executing program)
2022/10/02 05:20:25 fetching corpus: 3900, signal 179561/230508 (executing program)
2022/10/02 05:20:25 fetching corpus: 3950, signal 180436/231626 (executing program)
2022/10/02 05:20:25 fetching corpus: 4000, signal 180878/232489 (executing program)
2022/10/02 05:20:25 fetching corpus: 4050, signal 181692/233431 (executing program)
2022/10/02 05:20:25 fetching corpus: 4100, signal 182546/234391 (executing program)
2022/10/02 05:20:25 fetching corpus: 4150, signal 183259/235314 (executing program)
2022/10/02 05:20:25 fetching corpus: 4200, signal 184496/236394 (executing program)
2022/10/02 05:20:26 fetching corpus: 4250, signal 185136/237191 (executing program)
2022/10/02 05:20:26 fetching corpus: 4300, signal 185929/238105 (executing program)
2022/10/02 05:20:26 fetching corpus: 4350, signal 186708/238952 (executing program)
2022/10/02 05:20:26 fetching corpus: 4400, signal 187557/239866 (executing program)
2022/10/02 05:20:26 fetching corpus: 4450, signal 188500/240740 (executing program)
2022/10/02 05:20:26 fetching corpus: 4500, signal 189094/241522 (executing program)
2022/10/02 05:20:26 fetching corpus: 4550, signal 189651/242275 (executing program)
2022/10/02 05:20:26 fetching corpus: 4600, signal 190413/243092 (executing program)
2022/10/02 05:20:26 fetching corpus: 4650, signal 191219/243946 (executing program)
2022/10/02 05:20:27 fetching corpus: 4700, signal 191847/244691 (executing program)
2022/10/02 05:20:27 fetching corpus: 4750, signal 192521/245448 (executing program)
2022/10/02 05:20:27 fetching corpus: 4800, signal 193333/246247 (executing program)
2022/10/02 05:20:27 fetching corpus: 4850, signal 193946/247008 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/247719 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/248276 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/248808 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/249340 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/249877 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/250430 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/250944 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/251503 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/252052 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/252600 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/253178 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/253710 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/254283 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/254819 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/255392 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/255929 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/256507 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/257062 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/257589 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/258112 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/258646 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/259214 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/259743 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/260266 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/260821 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/261399 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/261926 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/262480 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/263034 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/263588 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/264124 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/264679 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/265228 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/265768 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/265962 (executing program)
2022/10/02 05:20:27 fetching corpus: 4874, signal 194680/265962 (executing program)
2022/10/02 05:20:30 starting 8 fuzzer processes
05:20:30 executing program 0:
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)

05:20:30 executing program 1:
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f0000000040)={0x29c, 0x0, 0x710, 0x70bd2a, 0x25dfdbff, {}, [@WGDEVICE_A_PEERS={0x264, 0x8, 0x0, 0x1, [{0x260, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0xff}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ALLOWEDIPS={0x24c, 0x9, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x1}}]}, {0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x23}}, {0x5, 0x3, 0x1}}]}, {0xc4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}]}, {0xc4, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x37}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}]}]}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}]}, 0x29c}, 0x1, 0x0, 0x0, 0x801}, 0x8000)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wpan4\x00', <r0=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_KEY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x3c, 0x0, 0x10, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r0}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040800}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000580)={'syztnl1\x00', &(0x7f0000000500)={'sit0\x00', <r1=>0x0, 0x2f, 0xff, 0x4, 0xea3, 0x2, @dev={0xfe, 0x80, '\x00', 0xb}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x80, 0x29, 0x5, 0xc83d}})
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f0000000780)={'syztnl1\x00', &(0x7f0000000700)={'sit0\x00', <r2=>0x0, 0x2f, 0x6, 0x20, 0x4, 0x4, @private2, @mcast1, 0x8, 0x10, 0x101, 0x8}})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f00000004c0), 0xc, &(0x7f0000000980)={&(0x7f00000007c0)={0x1a8, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}]}, @HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}]}]}, 0x1a8}, 0x1, 0x0, 0x0, 0x4}, 0xb5680926593c1b7b)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000a40), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x54, r3, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1f}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x13}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x54}, 0x1, 0x0, 0x0, 0x8800}, 0x4000)
r4 = syz_open_dev$vcsa(&(0x7f0000000b80), 0x0, 0x301000)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000c00), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r4, &(0x7f0000000dc0)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000c40)={0x12c, r5, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x4}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}]}]}, 0x12c}, 0x1, 0x0, 0x0, 0x4000005}, 0x4080)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e40), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000f40)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x4100004}, 0xc, &(0x7f0000000f00)={&(0x7f0000000e80)={0x44, r6, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x14}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x1)
r7 = openat$full(0xffffffffffffff9c, &(0x7f0000000f80), 0x101500, 0x0)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r7, &(0x7f00000010c0)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001080)={&(0x7f0000001000)={0x74, 0x2, 0x7, 0x201, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x2}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_FLAGS={0x8}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}, @NFACCT_FILTER={0x14, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1ff}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x807}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x3800000}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x6}]}, 0x74}, 0x1, 0x0, 0x0, 0x4004800}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f0000001540)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001500)={&(0x7f0000001140)={0x3bc, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@WGDEVICE_A_PEERS={0x3a8, 0x8, 0x0, 0x1, [{0x2bc, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_FLAGS={0x8, 0x3, 0x5}, @WGPEER_A_FLAGS={0x8, 0x3, 0x6}, @WGPEER_A_ALLOWEDIPS={0x21c, 0x9, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}]}, {0x88, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x2}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x2}}]}, {0x100, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x28}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x1}}]}]}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @broadcast}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x3}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3e}}, 0x7}}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0xe8, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0xb0, 0x9, 0x0, 0x1, [{0xac, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}]}]}, @WGPEER_A_FLAGS={0x8, 0x3, 0x7b903fe6ebf36b0e}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "423d962acac2e0d6d03ca7b2a98e524412c671091516ac3f90101a8711d4aa0e"}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}]}]}, 0x3bc}, 0x1, 0x0, 0x0, 0x800}, 0x40008)
sendmsg$DEVLINK_CMD_GET(r4, &(0x7f0000001680)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001640)={&(0x7f00000015c0)={0x6c, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x10001}, 0x80)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001740)={&(0x7f0000001700)={0x14, 0x3, 0x2, 0x101, 0x0, 0x0, {0x2, 0x0, 0xa}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x40)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_CHANNEL(r8, &(0x7f0000001940)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001900)={&(0x7f0000001880)={0x44, r6, 0x1e42b5c12e82b757, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x16}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

05:20:30 executing program 2:
ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, &(0x7f0000000000)={0x0, 0x1ff, 0x3})
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f0000000200)={0x1, 0x1, 0x1000, 0xc3, &(0x7f0000000040)="8214625235ba2dc474d84f8ca657a56d5ddcd3063347c343ae10a42a917c00ae98cd074f767aadb27238ea38913222ac0b977822904c1e456948f0fd5877fd14d5514551e07bf3e687dd93939f224474dc0b0e69f9d0e22c0bdda6e126869213247af2640a2389ab5348143614ec5554ce755ac7d8a5b71e426a6f4a6c5ccb6dd88daeeb0c549eb528384dba20c6b0546e5b640edce24bf46ae731161fde671f13de2b453c5d3c71d6ed81558769d78b88fbbe004580b454a01cbb3009515afb8eaf8b", 0xad, 0x0, &(0x7f0000000140)="83a2a026840d9d212108b6eb953d808617f3490f0461892cf7cd7f0088f673c375b72919106817b466b8c57e7f412cab3c7bfcdef870fb0d1937ba74d37eec924e294f901e675de286ac3e4da725a5ac957ed69534da75607dec8f62bc661baaa2e8e9ce887e2809e58d28dcf4d817f20550cd15b875c323d1d193f385f18ee6e09df11c8941f2ac3f608ab0314e37c8feb01578aca1f5058dea8924bda0fdfeca7f654f618cb94d78bc6eeca2"})
r0 = openat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x0, 0x40)
setxattr$security_capability(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), &(0x7f0000000340)=@v2={0x2000000, [{0x2, 0x3}, {0x800, 0x7f}]}, 0x14, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000380)='/sys/module/usb_storage', 0x90101, 0x148)
openat(r1, &(0x7f00000003c0)='./file0\x00', 0x48040, 0x8a)
r2 = creat(&(0x7f0000000400)='./file0/file0\x00', 0x10)
r3 = getpgid(0xffffffffffffffff)
perf_event_open(&(0x7f0000000480)={0x4, 0x80, 0x81, 0x8, 0x9, 0x6, 0x0, 0x2, 0x40, 0x3, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x7, @perf_bp={&(0x7f0000000440), 0x6}, 0x40080, 0x1f, 0x3056db76, 0x4, 0x2, 0xf41, 0x6, 0x0, 0x4}, r3, 0xe, 0xffffffffffffffff, 0x3)
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r2, 0x8008f512, &(0x7f0000000500))
setxattr$trusted_overlay_redirect(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580), &(0x7f00000005c0)='./file0/file0\x00', 0xe, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r4=>r2}, './file0/file0\x00'})
faccessat2(r4, &(0x7f0000000640)='./file0\x00', 0x10, 0x1000)
recvmsg$unix(r1, &(0x7f0000000a40)={&(0x7f0000000680), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000700)=""/127, 0x7f}, {&(0x7f0000000780)=""/90, 0x5a}, {&(0x7f0000000800)=""/40, 0x28}, {&(0x7f0000000840)=""/140, 0x8c}], 0x4, &(0x7f0000000940)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff]}}], 0xe0}, 0x20010020)
getdents64(r6, &(0x7f0000000a80)=""/113, 0x71)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r7, 0xc018937e, &(0x7f0000000b00)={{0x1, 0x1, 0x18, <r8=>0xffffffffffffffff, @in_args={0x2}}, './file0/file0\x00'})
vmsplice(r8, &(0x7f0000000bc0)=[{&(0x7f0000000b40)="fcab5aa9410a83758be4e2e6ebf373a4906acbab38ac1e76d030209af82651f19670572640bbc083940378fbaf3ca609dc16fee86606cb610646dfaf72e5c1f6c76e3b9dd8f6aa2dd1a28503a756cd9c446924eb", 0x54}], 0x1, 0x2)
r9 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x100010, 0xffffffffffffffff, 0x8000000)
r10 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3000000, 0x4000010, r5, 0x10000000)
syz_io_uring_submit(r9, r10, &(0x7f0000000c40)=@IORING_OP_TIMEOUT={0xb, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000c00)={0x77359400}, 0x1, 0x1}, 0x2)

[   65.624056] audit: type=1400 audit(1664688030.969:6): avc:  denied  { execmem } for  pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
05:20:30 executing program 3:
r0 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000080)=0x80, 0x1000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r1=>0x0})
sendmsg$NL80211_CMD_DEL_PMKSA(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4900000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0xb0, 0x0, 0x822, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x5ce9289, 0x1d}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x4}, @NL80211_ATTR_PMKID={0x14, 0x55, "7cf6b273c32a5704135b19c315757991"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_PMK={0x14, 0xfe, "1c7639e1c78eac26495d916ca7238c5d"}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x8}, @NL80211_ATTR_PMK={0x14, 0xfe, "1393d2c5fc6fa53853f38403302b6ceb"}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x5}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x51}, @NL80211_ATTR_PMK={0x14, 0xfe, "96ae6d4efe18f72e7f79ad1f1e8ca44d"}]}, 0xb0}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r2, 0xf504, 0x0)
ioctl$F2FS_IOC_GET_FEATURES(r2, 0x8004f50c, &(0x7f0000000280))
fcntl$getownex(r2, 0x10, &(0x7f00000002c0))
r3 = socket(0x1, 0x800, 0x5)
getsockopt$SO_COOKIE(r3, 0x1, 0x39, &(0x7f0000000300), &(0x7f0000000340)=0x8)
read$hiddev(0xffffffffffffffff, &(0x7f0000000380)=""/14, 0xe)
ioctl$BTRFS_IOC_LOGICAL_INO(r0, 0xc0389424, &(0x7f0000000400)={0x400000000, 0x20, '\x00', 0x0, &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0]})
openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x44002, 0x0)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x34, r4, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x880}, 0x5)
syz_genetlink_get_family_id$devlink(&(0x7f00000005c0), 0xffffffffffffffff)
socketpair(0xb, 0x2, 0x3958, &(0x7f0000000600)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000680)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f00000006c0)={0xc0, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @void}}, [@mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "0c2d55e3a26d84e063301b662f01a565ea730716e3562dbe"}], @NL80211_ATTR_IFTYPE={0x8}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_MESH_ID={0xa}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x20, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}]]}, 0xc0}, 0x1, 0x0, 0x0, 0x48000}, 0x4401)
fcntl$getflags(r5, 0x3)

05:20:31 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
write$binfmt_misc(r0, &(0x7f0000000040)={'syz0', "f8f162418f0ddef45ced50b61571c7efd5488e3821dda71c7065257887fc2ad2aaa5f2c4591eeebe04ed761f452c1dda732cefdbd8191328bab3bafcd0c1582e65b15103f85a9f556b103b545e391930547d92739bb2ad68a80611870a90b198522f357ecdaff4c422869d0e5c94f48864"}, 0x75)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0xb4, r1, 0x20, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x1, 0x15}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY={0x2c, 0x50, 0x0, 0x1, [@NL80211_KEY_CIPHER={0x8, 0x3, 0x4}, @NL80211_KEY_SEQ={0xd, 0x4, "9340f16dc91a982b31"}, @NL80211_KEY_IDX={0x5, 0x2, 0x4}, @NL80211_KEY_IDX={0x5, 0x2, 0x4}]}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "ab12e0427d52763d6ddd0ebcc8"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "c9bfc6e8b688c684eef51ab5d6"}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "0e2dc3da0f91da30756808b5dc"}]}, 0xb4}, 0x1, 0x0, 0x0, 0x80}, 0x44044)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
recvmmsg(r0, &(0x7f0000001880)=[{{&(0x7f00000002c0)=@nl, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000340)=""/62, 0x3e}, {&(0x7f0000000380)=""/16, 0x10}], 0x2, &(0x7f0000000400)=""/75, 0x4b}, 0xfffffffc}, {{&(0x7f0000000480)=@qipcrtr, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000500)=""/2, 0x2}, {&(0x7f0000000540)=""/158, 0x9e}, {&(0x7f0000000600)=""/107, 0x6b}, {&(0x7f0000000680)=""/165, 0xa5}, {&(0x7f0000000740)=""/79, 0x4f}], 0x5}, 0x7ff}, {{&(0x7f0000000840)=@l2, 0x80, &(0x7f0000000a80)=[{&(0x7f00000008c0)=""/140, 0x8c}, {&(0x7f0000000980)=""/232, 0xe8}], 0x2}, 0xfffffffb}, {{&(0x7f0000000ac0)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000010c0)=[{&(0x7f0000000b40)=""/227, 0xe3}, {&(0x7f0000000c40)}, {&(0x7f0000000c80)=""/96, 0x60}, {&(0x7f0000000d00)=""/220, 0xdc}, {&(0x7f0000000e00)=""/166, 0xa6}, {&(0x7f0000000ec0)=""/77, 0x4d}, {&(0x7f0000000f40)=""/82, 0x52}, {&(0x7f0000000fc0)=""/206, 0xce}], 0x8, &(0x7f0000001140)=""/27, 0x1b}, 0x6}, {{&(0x7f0000001180)=@pppol2tpv3={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f00000016c0)=[{&(0x7f0000001200)=""/148, 0x94}, {&(0x7f00000012c0)=""/37, 0x25}, {&(0x7f0000001300)=""/178, 0xb2}, {&(0x7f00000013c0)=""/141, 0x8d}, {&(0x7f0000001480)=""/42, 0x2a}, {&(0x7f00000014c0)=""/113, 0x71}, {&(0x7f0000001540)=""/222, 0xde}, {&(0x7f0000001640)=""/97, 0x61}], 0x8, &(0x7f0000001740)=""/72, 0x48}, 0xffff}, {{0x0, 0x0, &(0x7f0000001800)=[{&(0x7f00000017c0)=""/2, 0x2}], 0x1, &(0x7f0000001840)=""/46, 0x2e}, 0x6}], 0x6, 0x40000040, &(0x7f0000001a00)={0x0, 0x989680})
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r3, 0x6612)
r4 = creat(&(0x7f0000001a40)='./file0\x00', 0x108)
sendmsg$NL80211_CMD_GET_REG(r4, &(0x7f0000001b40)={&(0x7f0000001a80)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001b00)={&(0x7f0000001ac0)={0x38, r2, 0x0, 0x70bd25, 0x25dfdbfc, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x48}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x39}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}]}, 0x38}}, 0x8045)
r5 = socket(0x1a, 0x4, 0x1f)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000001bc0), r0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r5, &(0x7f0000001c80)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001c40)={&(0x7f0000001c00)={0x30, r6, 0x8, 0x70bd29, 0x25dfdbfc, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x24000000}, 0x40000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001d00)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r3, &(0x7f0000001e00)={&(0x7f0000001cc0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001dc0)={&(0x7f0000001d40)={0x64, r2, 0x4, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x4, 0x2d}}}}, [@NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "b65ef88edac70a65950e5ebc6ed3cf07"}, @NL80211_ATTR_PMK={0x14, 0xfe, "222455bf5f6e06af5ab394f08f057c4b"}, @NL80211_ATTR_PMK={0x14, 0xfe, "d6dcb31bf678c5cf2b11fda3a676bae7"}]}, 0x64}, 0x1, 0x0, 0x0, 0x4080}, 0x4)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001e80), r4)
sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000001f40)={&(0x7f0000001e40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001f00)={&(0x7f0000001ec0)={0x40, r8, 0x20, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x6, 0x57}}}}, [@NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x2}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x8}, @NL80211_ATTR_SCAN_SSIDS={0x10, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}]}]}, 0x40}, 0x1, 0x0, 0x0, 0xc800}, 0xc00c804)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000002100)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000020c0)={&(0x7f0000001fc0)={0xd4, r2, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_STA_EXT_CAPABILITY={0x7c, 0xac, "7dc71b678de9ae3eaac960ec14e16051d9de9c0611818dc979660c9b52934540c54975f2c9a31865d73060efc546b75d69e6ddb4a35f1ee04570bacf0a147cfb69c735f392b88a5a3265cef566db5a1642c4412e84fd2d779e7954a4c1e8993f1c3f7172ed6be115d81d58f426f13f0d5fe5b6cb4e5be68c"}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xc}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x3}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x78b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STA_FLAGS={0x20, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_MFP={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_WME={0x4}, @NL80211_STA_FLAG_AUTHENTICATED={0x4}]}]}, 0xd4}}, 0x4040)
clock_gettime(0x6, &(0x7f0000002140))
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r3, &(0x7f00000022c0)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000002280)={&(0x7f00000021c0)={0x8c, r2, 0x200, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x0, 0x9}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x41}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4b}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x11}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x44}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x33}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x19}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x18}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000800)

05:20:31 executing program 5:
capset(&(0x7f0000000000)={0x19980330, 0xffffffffffffffff}, &(0x7f0000000040)={0x9, 0x1, 0x6, 0x400, 0x5, 0xffffffff})
capset(&(0x7f0000000080)={0x20071026}, &(0x7f00000000c0)={0xc87, 0x80000000, 0x7, 0x5, 0x7fffffff, 0x80000000})
r0 = getpgid(0x0)
capset(&(0x7f0000000100)={0x20080522, r0}, &(0x7f0000000140)={0x6, 0x0, 0x5, 0xba99, 0x9, 0x1ff})
r1 = syz_open_procfs(r0, &(0x7f0000000180)='net/rfcomm\x00')
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f00000001c0)={0x0, <r2=>0x0})
ptrace$setopts(0x4206, r2, 0x58, 0x55)
capset(&(0x7f0000000240)={0x20071026, r2}, &(0x7f0000000280)={0x200, 0x4, 0x80000001, 0x1, 0x75f, 0x9})
recvmmsg$unix(r1, &(0x7f0000004ec0)=[{{&(0x7f00000002c0), 0x6e, &(0x7f0000000540)=[{&(0x7f0000000340)=""/68, 0x44}, {&(0x7f00000003c0)=""/235, 0xeb}, {&(0x7f00000004c0)=""/125, 0x7d}], 0x3, &(0x7f0000000580)=[@cred={{0x1c, 0x1, 0x2, {<r3=>0x0}}}, @cred={{0x1c, 0x1, 0x2, {<r4=>0x0}}}], 0x40}}, {{&(0x7f00000005c0), 0x6e, &(0x7f0000001cc0)=[{&(0x7f0000000640)=""/66, 0x42}, {&(0x7f00000006c0)=""/176, 0xb0}, {&(0x7f0000000780)=""/161, 0xa1}, {&(0x7f0000000840)=""/218, 0xda}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000001940)=""/15, 0xf}, {&(0x7f0000001980)=""/144, 0x90}, {&(0x7f0000001a40)=""/136, 0x88}, {&(0x7f0000001b00)=""/152, 0x98}, {&(0x7f0000001bc0)=""/204, 0xcc}], 0xa, &(0x7f0000001d80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000001e40)=""/141, 0x8d}], 0x1, &(0x7f0000001f40)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r5=>0x0}}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xa0}}, {{&(0x7f0000002000), 0x6e, &(0x7f0000002100)=[{&(0x7f0000002080)=""/78, 0x4e}], 0x1, &(0x7f0000002140)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [<r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}}, {{&(0x7f0000002240), 0x6e, &(0x7f0000003380)=[{&(0x7f00000022c0)=""/4096, 0x1000}, {&(0x7f00000032c0)=""/158, 0x9e}], 0x2}}, {{&(0x7f00000033c0), 0x6e, &(0x7f0000003680)=[{&(0x7f0000003440)=""/76, 0x4c}, {&(0x7f00000034c0)=""/210, 0xd2}, {&(0x7f00000035c0)=""/144, 0x90}], 0x3, &(0x7f00000036c0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000003740)=@abs, 0x6e, &(0x7f00000038c0)=[{&(0x7f00000037c0)=""/227, 0xe3}], 0x1, &(0x7f0000003900)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000003940)=@abs, 0x6e, &(0x7f0000003b00)=[{&(0x7f00000039c0)=""/192, 0xc0}, {&(0x7f0000003a80)=""/113, 0x71}], 0x2}}, {{&(0x7f0000003b40), 0x6e, &(0x7f0000004e00)=[{&(0x7f0000003bc0)=""/4096, 0x1000}, {&(0x7f0000004bc0)=""/184, 0xb8}, {&(0x7f0000004c80)=""/254, 0xfe}, {&(0x7f0000004d80)=""/72, 0x48}], 0x4, &(0x7f0000004e40)=[@cred={{0x1c, 0x1, 0x2, {<r7=>0x0}}}, @cred={{0x1c, 0x1, 0x2, {<r8=>0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0x80}}], 0x9, 0x40000020, &(0x7f0000005100)={0x77359400})
capset(&(0x7f0000005140)={0x19980330, r7}, &(0x7f0000005180)={0xffffff00, 0xfb0f, 0x9, 0x400, 0x2, 0x4})
tkill(r4, 0x34)
setsockopt$sock_int(r6, 0x1, 0x22, &(0x7f00000051c0)=0x10000, 0x4)
capset(&(0x7f0000005200)={0x20080522, r5}, &(0x7f0000005240)={0xe3ef, 0x8000, 0x4, 0x9, 0x0, 0x1})
capset(&(0x7f0000005280)={0xf1504, r2}, &(0x7f00000052c0)={0x10001, 0x1000, 0x100, 0x400, 0x80, 0xffffffff})
capset(&(0x7f0000005300)={0x19980330, r0}, &(0x7f0000005340)={0xfff, 0x100, 0x2, 0x2, 0x8, 0xeb7})
clone3(&(0x7f0000005640)={0x0, &(0x7f0000005380), &(0x7f00000053c0), &(0x7f0000005400)=<r10=>0x0, {0x30}, &(0x7f0000005440)=""/197, 0xc5, &(0x7f0000005540)=""/176, &(0x7f0000005600)=[r5, r8, r8, 0x0], 0x4, {r9}}, 0x58)
capset(&(0x7f00000056c0)={0x20080522, r10}, &(0x7f0000005700)={0x8, 0x0, 0x7, 0x100, 0x2, 0x12})
syz_open_dev$vcsu(&(0x7f0000005740), 0x40, 0x505080)
capset(&(0x7f0000005780)={0x20080522, r3}, &(0x7f00000057c0)={0x8, 0x7ff, 0x8, 0x828, 0x0, 0x8})
ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, &(0x7f0000005840)={{}, 0x0, 0x3ff, 0x8001})

05:20:31 executing program 6:
fstat(0xffffffffffffffff, &(0x7f0000000000))
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, 0x0, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffff}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x5}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x2}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40080}, 0x20000)
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000180)={<r1=>0x0, 0x8, 0x1, [0x3, 0x5, 0x37, 0x100000001, 0x8000], [0x7, 0x5, 0x0, 0x1, 0x4, 0xfffffffffffffffb, 0x2, 0x6, 0x75a8, 0x1, 0x8, 0x3f, 0x9, 0x6, 0xffffffff00000000, 0xfffffffffffffe00, 0x9e1, 0x1ff, 0x401, 0x101, 0x3, 0x400, 0x81a, 0x833d, 0xffff, 0x100000000, 0x3, 0x100, 0x4, 0x3f, 0x80000001, 0xfffffffffffffffe, 0x1224, 0x2, 0x3, 0x2, 0x6, 0x9, 0x81, 0x5, 0x5, 0x7ff, 0x5, 0x401, 0xffff, 0x3, 0x1, 0x8, 0x4, 0x3ff, 0x3, 0xc0, 0xc9d6, 0x1ff, 0x6d5, 0x9, 0x200, 0x2, 0x40, 0x2, 0x3, 0x3, 0x7ff, 0x1f, 0x2, 0x4, 0x6, 0x4, 0x800, 0x1, 0x4, 0x1, 0x5888, 0x1, 0x10001, 0x5, 0xfffffffffffffe01, 0x744, 0x5, 0x2, 0x200, 0x912, 0x3, 0x81, 0x9, 0xffffffffffffffff, 0xffffffff, 0x5, 0x5, 0x2, 0x4f4, 0x97e7, 0x7, 0x3, 0x2, 0x7, 0x0, 0x3f, 0x1c, 0x80, 0x88, 0xffff, 0x5, 0x4, 0x7fff, 0x0, 0x800, 0x2, 0xfffffffffffffe00, 0x2, 0x3, 0x4, 0x7f, 0x6, 0x81, 0xec1, 0x2, 0x80000000, 0x3, 0x0, 0x6]})
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f00000005c0)={0x8, 0x2, {0xffffffff, @usage=0x2, r1, 0xffff, 0x10000, 0x4, 0x2, 0x220b, 0xf7374bf15cf882e8, @struct={0x2, 0x448000}, 0x8001, 0x5, [0x2948, 0xfffffffffffff000, 0x2, 0x6, 0x4, 0x5]}, {0x3, @usage=0x10000, 0x0, 0xb0b, 0x9, 0x3, 0x0, 0x3fc000000, 0x4, @usage=0xff, 0xfffff000, 0xc777, [0x2, 0xbae, 0x10001, 0xb457, 0x5c, 0x6d]}, {0x100, @usage=0x1, 0x0, 0x2, 0x10000, 0x0, 0x7ae4d9dc, 0x0, 0x0, @struct={0x7ff, 0x7}, 0x0, 0x211, [0x401, 0xb2, 0x7, 0x6, 0x8, 0x2]}, {0x2, 0x7, 0x10001}})
r2 = signalfd4(r0, &(0x7f00000009c0)={[0x12]}, 0x8, 0x800)
sendmsg$GTP_CMD_GETPDP(r2, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x34, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_VERSION={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @loopback}, @GTPA_FLOW={0x6, 0x6, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004010}, 0x4040001)
r3 = open(&(0x7f0000000b00)='./file0\x00', 0x240, 0x20)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000b80), r2)
sendmsg$IPVS_CMD_NEW_SERVICE(r3, &(0x7f0000000cc0)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x88, r4, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x401}, @IPVS_CMD_ATTR_DEST={0x30, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x400}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x8}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@private=0xa010101}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e21}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x3}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xec08}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}]}, 0x88}, 0x1, 0x0, 0x0, 0x40}, 0x4050)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r2, &(0x7f0000000dc0)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x38, 0x0, 0x200, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1f, 0x53}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x7c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2e}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)
sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e40)={0x1c, 0x0, 0x20, 0x70bd25, 0x25dfdbfd, {}, [@BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x1)
fcntl$setpipe(r3, 0x407, 0x3)
sendmsg$TIPC_NL_NAME_TABLE_GET(r3, &(0x7f0000000fc0)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000f80)={&(0x7f0000000f40)={0x20, 0x0, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000001100)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000010c0)={&(0x7f0000001040)={0x4c, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1f}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x5c6a}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8800}, 0x10)
getsockopt$WPAN_SECURITY(r3, 0x0, 0x1, &(0x7f0000001140), &(0x7f0000001180)=0x4)
sendmsg$NL80211_CMD_SET_MAC_ACL(r3, &(0x7f00000012c0)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x68, 0x0, 0x900, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC_ADDRS={0x4c, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}, {0xa}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x805}, 0x4000)
socketpair(0x26, 0x80000, 0x0, &(0x7f0000004180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000004200), r3)
sendmsg$NL80211_CMD_LEAVE_IBSS(r5, &(0x7f0000004300)={&(0x7f00000041c0)={0x10, 0x0, 0x0, 0x8000020}, 0xc, &(0x7f00000042c0)={&(0x7f0000004280)={0x1c, r6, 0x400, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x800)

05:20:31 executing program 7:
ioctl$SNDRV_TIMER_IOCTL_STATUS32(0xffffffffffffffff, 0x80585414, &(0x7f0000000000))
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_PAUSE(r0, 0x54a3)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x6, 0x10, r0, 0xf83ae000)
r1 = getpgid(0x0)
r2 = getpgid(r1)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r3=>r0, {0x7ff}}, './file0/file0\x00'})
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x19, 0xbf, 0x3f, 0x0, 0x9eb7, 0x83, 0x7, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x10001, 0x0, @perf_bp={&(0x7f00000000c0), 0x4}, 0x40007, 0x7fff, 0x1, 0x4, 0x5, 0x8, 0xb7, 0x0, 0x0, 0x0, 0x2bd}, r2, 0x3, r3, 0x8)
ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0)
setxattr$incfs_size(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f0000000200), &(0x7f0000000240)=0xffff, 0x8, 0x4)
r4 = syz_io_uring_complete(0x0)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r4, 0x29, 0x45, &(0x7f0000000280)={'ah\x00'}, &(0x7f00000002c0)=0x1e)
r5 = dup3(r4, r3, 0x0)
ioctl$SNDRV_TIMER_IOCTL_INFO(r5, 0x80e85411, &(0x7f0000000300)=""/14)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
r7 = open_tree(r4, &(0x7f0000000340)='./file1\x00', 0x9101)
mmap$perf(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, 0x80010, r7, 0x5)
fallocate(r6, 0x19, 0x5, 0x4)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000003c0)={{0x108, 0x4d, 0x8, 0x90, 0x3e5, 0x40, 0x3b1, 0x10001}, "fdc4227beea40963f8d7a7698c82da43c7b456f5b11610cf21a22f3a71c5a095f2b09ce10906c05797cc1df01f84fbebb8946d4adf3cf08c538f71b8de086197f59e296d6cbe888807f48db04fe8856d8e21cf7005fb0341356c8e4d9ad18e989ced4de7633b90634663794150345285583545d2a3ac8ed7ad883b8f0a45a51990f2a825695eadde53a6839e82d0f1e5300269de9adce85fdf435a27b4b166855d42db7760bb59f889d4ddbd0b913b1c83c9168d465bbd14a59f12936948a040b6f1c8f14d80ac0fe1e2549d135b12455f0ee9ac95f0cb39836b39d9117468e1d50641c003d38cb97e26085ee900033b6d901aae362d582a4ef02bba0b5f4d06619c3937d795bd076e27a959d2e1c4cdfedbb6827c5e2200290b02aed197f3fb31b8d1c1c63dccb2467183823c3e57f1aa4ccbf3ec685cccad7a2e7ab323645960dd9b2171adb1ff3e45c3f676c10715c6b435b92953aec0a5a9b7bbf22987dc1d113eabbaac4469026d9b419a4ec3ee0124284893ffbcfe41b1c43f20eb09735518757e4060f1d73c852a4085ea1339ed4afa6aaee6f386de65ae64d52337edb672ebfd38db1cfc42320a729275dffbff8c950fb368c9a3c8b1754cd0eb92f237deae0050de3ea26a5df82e81b8de1fb1c1911d176308f6b4e0e26a15ab9b735e19b624c278ad82d78cdb5575008142e8a125b2ed8ce56e504936c9e5ba60bbb79e636cb6045a04b82defb831e7a74710bcfec73210b44fec7559439a6b852973e0aa6fe43eb7a4217ff12e91649a57ebaff346c2833bed3e0dc1481af09081ff21fd17c023792b0fe32625fa8c09aaeed896cc03e87eff85d15c4d1a9a4a04d9e830235d33b7a7974c12433ecc6d4e907407f0c2cb7b650b31a70c073ae4b69f9e06314f535753ca5fa1e4c31cd7c108c26354bb30ec4467ad3e0949e68108d717b76728366ffa7b6c16fe4d5a91c60f86e2f1f93b1c5169d080a544210e7be94d73f84a43cc0f0741f3c6802371ea287cb051acdeb6eb2aa6ec037427d26e125ae7fa7bc5425c9d377e653b0791cc76c8f85001aad88cc632b38f06dc85de85c319856d47856e422e07415b21d6e385cd2baac8731900a3cac15800d1285d38d8ae4c47de1f953240126c9fadb0e4375d8d4060af783b0f5b5802a2fa45705d2d6ff6194e3dba13466cab481e2bfe1219d03345194ec81c3a9d328548926b4727106e61c1efec272e2b2e2fdf6849e08f6aad828033e0b299fae4db31c89e076236cd2d8e7ec2d78eb3e44a5e2b8f026a91f39aac2005cef9da54082776379ea4e4d5016c302b892aa3b5ca50fb47bd0cd0e1bbd7f714a432280928d437aed74e329d9d3da51fbe04111af4080f10a0119506f807410dc0cc8014b18997c6039dfbf0b19db6f37154e671ed8760bfb80dc595e16e4c21c24c9c548972f5483e62c5302b1ea61bbfd1a44504e5d8856b1ad3ccee36eb4d20b87ad82ded130dc233cd7b890615835d9bf94311dff1d91ecaf5c5b050d4d47614ab28183b200ffeed814fb90d324fc7ebb0ce03243c2d1282df5d83ffbd8e044a105166a8d9e29c75858638a01d07f60bf3cf1a2c8fa22845ef427e1610db618072c69ab408db298bff4fec3925545fa4c88c487589b44efaa8f851697cbcd098d7cdd4dbe02bb00082521614d82fe8f41ed5e111d1650f3570e7bd806cb5fde678be501555d530ed2f2d14727e8f61b77566d69623c823df3ef46919a2b05066111855d8beafaea643e5594f5a0c6d62b04431894b9f8967f2b6219ee21da1b05d30586e9038d77074edcb5169c78dd94be9ae1b3804ce2153be6c486f0feb4076e9661260c1d2de121d0fba46f28f137efbfb9fd83c8a73857a5a40f2402a499f6d6ae44d033405c4718bf2ad710bf47ae72faa0797d7f63e83f9919af8827a7bb7ab8903c1f12b084da5086effbc0b8c6c723c8c5fb0c8204dfa51a1c0d1b764f4a0428ac87bd69136209eab421c74ed11734b993f38b7cb5ffe647434b0b8a76b868ee6e6e1bef1c2468e248f033c441febffd9f2448134c86b65ddf56a8627a41d737c188d20a3d2a9ac6c93e32815a79eb85f36659b9ab2ae475331285b9b50989e352a2a59ac6c82e7dc7a3f034a5b778167c11a3f99de917954290647b7b86ba7c0e9436d3cf42351c96c484565288054b64d44a7512fc5c3660df9b5e273bee6c9105300bef0fc11672e14fd5a6bf1762201d368e40a2551c807bf102730859266dbda856437181033649411bb8cf4cba40611f99ba6e0d7136fbea848045924f246f99d276aa1a0ad5ac927c0809d830f6edcc4f7f68390568eb837e4ba59864a4f927d44aa5410d5fe5ccafa76d3911ca992719c4287f5722157c89d064c945b972dba06856d30b33b206086aa90c3bcf868c11c75c1041c28da148eaac8c5e27568ca086d68886cd3005d5541d1ad16a45e7c6222e8b987ce1455eeb05ca69389c164ea86ebd39cb3d5f1e8e4c621528325d352fdd6fea3ac1216d11e3657ac18c29c91b0f26aa93d1e241d98ca3d0dd01fb455fa748f06c652c003b63dd629e73b74d566a24352c7c46f1bb809e1aeedef92f5270a9fc2b8952516b044af25d1a7164d3d5a7f5e36696f5459b9d032ef42cc3c85d5fa2ed414f24114fb85037b7685e767f8499ea1480991f71f9229c1674c5c94b311b0989a40102693fe45e14ceee207b1ca83e6a23732df5a31c2d5c218f89eea4750ff48fb38655a219550af57e2273434677e16d2afccb0542b338e6c3dff16072936b69b1731349385ae23710ec17d2f04d834678000e75424923d891802bf0a493e8a6551f6835b75917bf0b283c093fca443016662fbf5e6cc408dc4e9eb60084c6b7c5d6e73ad0733421795998cfa8ea7e95736bd1e104af199f765fd15cf5f13c345c93a0c46559af0c386fea6e122e9ef6768a16e9c0c8e83d62683adf5747b235fc0b4563f0cd9469cfe780fe61902bcdf818e32ab71401040f4dfb7afa8647e2128c0007aba755d7fc15fd69f6776197a1ac268b1d24822c8b5ac2a5e5697562b7c4fdde9a27cc2263d58a61b3fc496f5ac019db5ff184a30f9075979d142f6ca68b872c00d9c5a264f10af1eabe51004882d30fe27a64a4afec2fe48a425265fd608f1a29a24d0b6d7de9fc461f25d761bb5b5430261721b679252d4bebc101821d98732a3b71081336d139408a50885dc25889f05070217323a7833b5536ce008b3f6578d1486461231199f9c28adf227ed312fa570f55e8c579da82369bb7702fe830185b3bca164ce8582a2607019869ae722ebb31653e56eb82eaf363fdd17c4480225cef36d5d12574aa84a6c0b4387d5a9c232ac989ad476b2932c188efeb8e6dec434dda2f1e74960edc7899bbaf2fd0d4ad929b27936eedd66ba361d30589891990ebdf82e58f07c251b0772e386318cd6920eb74d47f868d3d5eaada5f0b1c386a62f986e5487b7b03bb24b232188a4b0506996ab250bddf3c0d7521883b234799e2c32b1f60c9ce9ed2eb856f69b1a6401702d4a8aef505cfb336e9daeb3fa254e4f5522195cd5ba60f343f87b0b4a0765cf08201db4639451a140ea36461df0b45fe53e666fe0b1cb251bacb807218a1c80c346293942d553c4c4235b80b6ddc8e1031f0a87a18157d03b78e953a793c33cd5a423d8cec02dc5c20f09f55db466a3c9d6a501b4d2f238a64013ba2ece655bb75748735f9614c6c979b734dddd044a423126ce055a7c834f4b1cc830d05e2b429f06b7a873b10c52d5c63853a83b9cafb1201710c655229fbf9ff5a5201ce5e47cdc4e65f7487ac7263ac53d651d2e0d2f5d2e116a8fb46b3bd79b220397e724772604301c2e5dda0c249b421a0dd02bf682c572540c3bf2148034857d9c67e2dfdc5462343f18ab0834e03d972628ae86f0a62f14f3f1df6f3b64b2136f7f495c7c932e17b12b5bfb6a3c19e7628c1f19cf3b6049a455296e1b356ec43aff5da83daf1306d82afc249d5ba2465ad357a2e5ed9b3533cadf7ad89f821850e4499671de465d9170f215ff1cf65fa4456f42b7b8e174c9b2a1e797a9fb65b77dd6034fd8b6073ed24059366a484255ac6de970e70f874306eeb6abe6d94dd263d799cfcff26f15f3854dce1d4de38dff8f1024885a08e4ca92ecbde92407be8e811d694fc64706323a6408a11b73138a42f6d327f7af6453be4efbe4887012b6c9e1a60fc13d831eb22322b66056e039d80bc086f1f7a5c917cc0932e61c44bf4961e45f2b2c8b2a6c4aad12cd933a95963ad058797d3bb2fc3239c1b6d0a6dd76f57e597904fea196cf20feeb584308ee9ee434436acafd4e7d830fec6a51f8384524ad2e2121f76eac2050af0df16db054b4da9800349081f3bfb8bfa4b7881ee292354a9768a1678e2dd3c4d168a50662f24799a651d4696e214a235c2fad658cf71b4c3215099dd82eb499afc49dbc3c72308a822d5a7ff96158f465c318f29722b3bd634b0829493762c4a22fd582e12170514a40516c6fa076b1112062a4b3e9f34887cea6d99ce21a9e8aaa8765271f1d21b97fac734d1f366f81cecbe18b6a32bd0b762dcd7582d8c18dba54e8f0b0ac6a3ec1d269cfec5387be8123d9dfc269faa203f89fde045cda21b9f4706a78f526804e2aea0b405232ea781e1173893550c2f803d837f87727d4ffb30dd32490c409b96adc6e6b43028340677f14a2145071c7a4097219c62af93a7cefba0b96013b5c140beee1a5cd4b74d34c8ca8170ed819e099b6d3fc50e6cc650e0e88c14a3e884810a3f3dfe73451b10283f6215f4ad2add0d4aa3b3185e84ec634c75765f1883f78b90d9c79d4ae2245f9ec863662ac2a7e1d55039e4f381bbbd884bee8f02d2b8202e8ba7a1586796bf4c067cde2ba32676b8b97d555568fa45c6bca68123a6f8e7045dd7f5608818bb500d625608bc006a9b86879c52d3cb551727aba011164e4795c5c2693f091eeb7bfa21b8032472038ed3a3714be1134fe681c71de6d96e55dc7296398b03b12dab93f3c2cb3898ef2ac5bc54674bb15e59a80e5b415b751d31b81e7398ac895b4e3e6cd47276c8efe25cb9ae3bd1873409b940bf63bde7012a4ffe36eb984ddd31936c38c66c85eb901af3908e10a0e1ce522954a8a1512d3778acdf6c4425a8c6802c649df1e1731a1de382b3c3f4fe6b7398b2948202b53e396a5827e2094eae2f67886e8f6ec9809bca96a415f76fad384876bf32d1e3dd615a756d756fe4d0ece55519195b9b0d6ad8be2ba8ddc5e3b5a0e1fb723a089b6aff30502bb1b9c77b7fc7e1bd848bc25df8d44f3c5bdfee68a5853bb0bba6702adcd3cdd1fd4d8052fdd060a3bae1bdb21fe556973720f2710ed5bd29eb6c0af9e4b577762c51df1b1a43f854632c77866b40e20166231f7dbf9bcd926d6ae291cdc941155467f17588b5ce1e32cd4acdc0fa18e72b846604d248f1a913b7a51ac891c0696f836a996370fefdbbc756f7e219c622aee56c93fb712b650d49f0b3399b127f27e975235e48e4d624c0b4a9e5eccaad2157f1d2c0c7fb3bb8d8374a4627892bc54f2fa08ab52cd5193441a0d90dffe6ddb9f81e331d59af4e5ce3dd6081e3e8eec1e12e25da04b8ce3f13a26fb74bbe565860f580cdd9aa138ad8fbee2dc94bd10d27f9aa5e0cc88f84bc4e735dc54c8f0e3f3dda984bd949155599fb33b6639bfaa851cec057d39280f6ba1fc065799f75896ee200a318d3e97d5563684ced5683377f5f3a78e390a425785f4a1e6", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1a20)

[   66.926402] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   66.929862] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   66.931327] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   66.934214] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   66.943545] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   66.952894] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   66.963762] Bluetooth: hci0: HCI_REQ-0x0c1a
[   67.141946] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   67.144774] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   67.147724] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   67.149302] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   67.151104] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   67.152501] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   67.154334] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   67.155429] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   67.156465] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   67.157413] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   67.158598] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   67.159834] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   67.161242] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   67.162404] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   67.163416] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   67.165856] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   67.166923] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   67.168438] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   67.178286] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   67.179427] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   67.179808] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   67.181590] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   67.183644] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   67.184767] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   67.187011] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   67.188466] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   67.189879] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   67.190925] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   67.192065] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   67.193438] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   67.194747] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   67.195872] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   67.201148] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   67.202795] Bluetooth: hci5: HCI_REQ-0x0c1a
[   67.204988] Bluetooth: hci4: HCI_REQ-0x0c1a
[   67.206001] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   67.206005] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   67.209173] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   67.214856] Bluetooth: hci6: HCI_REQ-0x0c1a
[   67.221566] Bluetooth: hci3: HCI_REQ-0x0c1a
[   67.230986] Bluetooth: hci7: HCI_REQ-0x0c1a
[   67.233281] Bluetooth: hci2: HCI_REQ-0x0c1a
[   69.016162] Bluetooth: hci0: command 0x0409 tx timeout
[   69.080684] Bluetooth: hci1: Opcode 0x c03 failed: -110
[   69.271815] Bluetooth: hci2: command 0x0409 tx timeout
[   69.272810] Bluetooth: hci3: command 0x0409 tx timeout
[   69.274090] Bluetooth: hci4: command 0x0409 tx timeout
[   69.274993] Bluetooth: hci7: command 0x0409 tx timeout
[   69.275881] Bluetooth: hci6: command 0x0409 tx timeout
[   69.276762] Bluetooth: hci5: command 0x0409 tx timeout
[   71.064662] Bluetooth: hci0: command 0x041b tx timeout
[   71.320745] Bluetooth: hci5: command 0x041b tx timeout
[   71.321204] Bluetooth: hci6: command 0x041b tx timeout
[   71.321645] Bluetooth: hci7: command 0x041b tx timeout
[   71.322052] Bluetooth: hci4: command 0x041b tx timeout
[   71.322469] Bluetooth: hci3: command 0x041b tx timeout
[   71.322896] Bluetooth: hci2: command 0x041b tx timeout
[   73.111737] Bluetooth: hci0: command 0x040f tx timeout
[   73.368869] Bluetooth: hci2: command 0x040f tx timeout
[   73.369789] Bluetooth: hci3: command 0x040f tx timeout
[   73.370680] Bluetooth: hci4: command 0x040f tx timeout
[   73.371500] Bluetooth: hci7: command 0x040f tx timeout
[   73.372371] Bluetooth: hci6: command 0x040f tx timeout
[   73.373224] Bluetooth: hci5: command 0x040f tx timeout
[   74.647784] Bluetooth: hci1: Opcode 0x c03 failed: -110
[   75.159831] Bluetooth: hci0: command 0x0419 tx timeout
[   75.415843] Bluetooth: hci5: command 0x0419 tx timeout
[   75.416594] Bluetooth: hci6: command 0x0419 tx timeout
[   75.417709] Bluetooth: hci7: command 0x0419 tx timeout
[   75.418399] Bluetooth: hci4: command 0x0419 tx timeout
[   75.419172] Bluetooth: hci3: command 0x0419 tx timeout
[   75.419876] Bluetooth: hci2: command 0x0419 tx timeout
[   77.378487] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   77.380556] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   77.388360] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   77.409867] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   77.415867] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   77.417818] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   77.422783] Bluetooth: hci1: HCI_REQ-0x0c1a
[   79.448688] Bluetooth: hci1: command 0x0409 tx timeout
[   81.495750] Bluetooth: hci1: command 0x041b tx timeout
[   83.543761] Bluetooth: hci1: command 0x040f tx timeout
[   85.592663] Bluetooth: hci1: command 0x0419 tx timeout
[  128.750857] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  128.753287] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  128.755551] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  128.760996] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  128.763315] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  128.764345] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  128.767674] Bluetooth: hci0: HCI_REQ-0x0c1a
[  128.869357] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  128.881816] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  128.886090] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  128.889417] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  128.890730] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  128.891557] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  128.894562] Bluetooth: hci2: HCI_REQ-0x0c1a
[  129.136798] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  129.137843] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  129.146750] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  129.148785] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  129.149858] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  129.151464] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  129.158750] Bluetooth: hci7: HCI_REQ-0x0c1a
[  129.162070] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  129.163775] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  129.165788] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  129.171898] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  129.173937] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  129.174768] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  129.182340] Bluetooth: hci6: HCI_REQ-0x0c1a
[  129.220153] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  129.221215] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  129.223305] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  129.241843] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  129.247742] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  129.249599] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  129.259238] Bluetooth: hci5: HCI_REQ-0x0c1a
[  130.662998] audit: type=1400 audit(1664688096.008:7): avc:  denied  { open } for  pid=3861 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  130.664586] audit: type=1400 audit(1664688096.008:8): avc:  denied  { kernel } for  pid=3861 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
05:21:36 executing program 2:
perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x76, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100000001, 0x38}, 0x1d0d}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='numa_maps\x00')
perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x0, 0x9, 0x5, 0x1, 0x0, 0x6, 0x8202, 0x5, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7, 0x4, @perf_bp={&(0x7f0000000000), 0x2}, 0x2, 0x1000, 0x0, 0x6, 0xa0000000000000, 0x8, 0x1, 0x0, 0x9, 0x0, 0x7}, 0xffffffffffffffff, 0x2, r1, 0x0)
r2 = syz_open_dev$vcsu(&(0x7f0000000180), 0x6, 0x0)
sendfile(r2, r2, &(0x7f0000000200), 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x4e21, 0x6, @dev={0xfe, 0x80, '\x00', 0x38}, 0xe2b7}}, 0x0, 0x0, 0x28, 0x0, "3cb1bf7bc6d6aeea06c82b9301f1f82cc9a2694cb3db3478bd3230e44403797b01727b69ba32f24b78b791872c1217752507ca36042acca97f2cda2f39cac6f5ca1337d4baa98656d1ab12272474e749"}, 0xd8)
fcntl$lock(r0, 0x24, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

[  130.776048] Bluetooth: hci0: command 0x0409 tx timeout
05:21:36 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc2}, 0x0, 0x7, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
dup(r0)
eventfd2(0x0, 0x80000)
pidfd_send_signal(0xffffffffffffffff, 0x57aa, 0x0, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000001300)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000000040)=ANY=[])
r2 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x101042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x1)
lremovexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)=ANY=[@ANYBLOB])
ioctl$PIO_FONTX(r3, 0x4b6c, &(0x7f0000000000)={0xa2, 0xc, &(0x7f0000000400)="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"})
write(r2, &(0x7f0000000080)="01", 0xffff8000)

[  130.885928] ------------[ cut here ]------------
[  130.885953] 
[  130.885957] ======================================================
[  130.885961] WARNING: possible circular locking dependency detected
[  130.885966] 6.0.0-rc7-next-20220930 #1 Not tainted
[  130.885973] ------------------------------------------------------
[  130.885976] syz-executor.2/3879 is trying to acquire lock:
[  130.885983] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  130.886026] 
[  130.886026] but task is already holding lock:
[  130.886029] ffff88803a71f420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  130.886056] 
[  130.886056] which lock already depends on the new lock.
[  130.886056] 
[  130.886059] 
[  130.886059] the existing dependency chain (in reverse order) is:
[  130.886062] 
[  130.886062] -> #3 (&ctx->lock){....}-{2:2}:
[  130.886076]        _raw_spin_lock+0x2a/0x40
[  130.886088]        __perf_event_task_sched_out+0x53b/0x18d0
[  130.886099]        __schedule+0xedd/0x2470
[  130.886113]        schedule+0xda/0x1b0
[  130.886126]        futex_wait_queue+0xf5/0x1e0
[  130.886139]        futex_wait+0x28e/0x690
[  130.886149]        do_futex+0x2ff/0x380
[  130.886158]        __x64_sys_futex+0x1c6/0x4d0
[  130.886169]        do_syscall_64+0x3b/0x90
[  130.886186]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.886199] 
[  130.886199] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  130.886212]        _raw_spin_lock_nested+0x30/0x40
[  130.886223]        raw_spin_rq_lock_nested+0x1e/0x30
[  130.886237]        task_fork_fair+0x63/0x4d0
[  130.886253]        sched_cgroup_fork+0x3d0/0x540
[  130.886268]        copy_process+0x4183/0x6e20
[  130.886279]        kernel_clone+0xe7/0x890
[  130.886288]        user_mode_thread+0xad/0xf0
[  130.886298]        rest_init+0x24/0x250
[  130.886310]        arch_call_rest_init+0xf/0x14
[  130.886328]        start_kernel+0x4c6/0x4eb
[  130.886343]        secondary_startup_64_no_verify+0xe0/0xeb
[  130.886358] 
[  130.886358] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  130.886371]        _raw_spin_lock_irqsave+0x39/0x60
[  130.886382]        try_to_wake_up+0xab/0x1930
[  130.886394]        up+0x75/0xb0
[  130.886408]        __up_console_sem+0x6e/0x80
[  130.886424]        console_unlock+0x46a/0x590
[  130.886440]        do_con_write+0xc05/0x1d50
[  130.886455]        con_write+0x21/0x40
[  130.886464]        n_tty_write+0x4d4/0xfe0
[  130.886476]        file_tty_write.constprop.0+0x455/0x8a0
[  130.886488]        vfs_write+0x9c3/0xd90
[  130.886505]        ksys_write+0x127/0x250
[  130.886520]        do_syscall_64+0x3b/0x90
[  130.886536]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.886549] 
[  130.886549] -> #0 ((console_sem).lock){....}-{2:2}:
[  130.886562]        __lock_acquire+0x2a02/0x5e70
[  130.886579]        lock_acquire+0x1a2/0x530
[  130.886595]        _raw_spin_lock_irqsave+0x39/0x60
[  130.886606]        down_trylock+0xe/0x70
[  130.886620]        __down_trylock_console_sem+0x3b/0xd0
[  130.886637]        vprintk_emit+0x16b/0x560
[  130.886652]        vprintk+0x84/0xa0
[  130.886668]        _printk+0xba/0xf1
[  130.886679]        report_bug.cold+0x72/0xab
[  130.886695]        handle_bug+0x3c/0x70
[  130.886711]        exc_invalid_op+0x14/0x50
[  130.886728]        asm_exc_invalid_op+0x16/0x20
[  130.886740]        group_sched_out.part.0+0x2c7/0x460
[  130.886758]        ctx_sched_out+0x8f1/0xc10
[  130.886775]        __perf_event_task_sched_out+0x6d0/0x18d0
[  130.886786]        __schedule+0xedd/0x2470
[  130.886799]        schedule+0xda/0x1b0
[  130.886812]        futex_wait_queue+0xf5/0x1e0
[  130.886823]        futex_wait+0x28e/0x690
[  130.886833]        do_futex+0x2ff/0x380
[  130.886842]        __x64_sys_futex+0x1c6/0x4d0
[  130.886852]        do_syscall_64+0x3b/0x90
[  130.886868]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.886881] 
[  130.886881] other info that might help us debug this:
[  130.886881] 
[  130.886883] Chain exists of:
[  130.886883]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  130.886883] 
[  130.886898]  Possible unsafe locking scenario:
[  130.886898] 
[  130.886901]        CPU0                    CPU1
[  130.886903]        ----                    ----
[  130.886905]   lock(&ctx->lock);
[  130.886911]                                lock(&rq->__lock);
[  130.886917]                                lock(&ctx->lock);
[  130.886923]   lock((console_sem).lock);
[  130.886929] 
[  130.886929]  *** DEADLOCK ***
[  130.886929] 
[  130.886931] 2 locks held by syz-executor.2/3879:
[  130.886938]  #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  130.886967]  #1: ffff88803a71f420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  130.886993] 
[  130.886993] stack backtrace:
[  130.886996] CPU: 1 PID: 3879 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1
[  130.887008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  130.887016] Call Trace:
[  130.887020]  <TASK>
[  130.887024]  dump_stack_lvl+0x8b/0xb3
[  130.887043]  check_noncircular+0x263/0x2e0
[  130.887067]  ? format_decode+0x26c/0xb50
[  130.887083]  ? print_circular_bug+0x450/0x450
[  130.887100]  ? simple_strtoul+0x30/0x30
[  130.887115]  ? format_decode+0x26c/0xb50
[  130.887132]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  130.887150]  __lock_acquire+0x2a02/0x5e70
[  130.887171]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  130.887193]  lock_acquire+0x1a2/0x530
[  130.887209]  ? down_trylock+0xe/0x70
[  130.887226]  ? lock_release+0x750/0x750
[  130.887246]  ? vprintk+0x84/0xa0
[  130.887264]  _raw_spin_lock_irqsave+0x39/0x60
[  130.887275]  ? down_trylock+0xe/0x70
[  130.887291]  down_trylock+0xe/0x70
[  130.887307]  ? vprintk+0x84/0xa0
[  130.887323]  __down_trylock_console_sem+0x3b/0xd0
[  130.887340]  vprintk_emit+0x16b/0x560
[  130.887359]  vprintk+0x84/0xa0
[  130.887376]  _printk+0xba/0xf1
[  130.887387]  ? record_print_text.cold+0x16/0x16
[  130.887403]  ? report_bug.cold+0x66/0xab
[  130.887420]  ? group_sched_out.part.0+0x2c7/0x460
[  130.887439]  report_bug.cold+0x72/0xab
[  130.887457]  handle_bug+0x3c/0x70
[  130.887474]  exc_invalid_op+0x14/0x50
[  130.887492]  asm_exc_invalid_op+0x16/0x20
[  130.887505] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  130.887526] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  130.887537] RSP: 0018:ffff888036e878f8 EFLAGS: 00010006
[  130.887546] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  130.887554] RDX: ffff88803f503580 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  130.887561] RBP: ffff88803a7f0000 R08: 0000000000000005 R09: 0000000000000001
[  130.887569] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88803a71f400
[  130.887576] R13: ffff88806cf3d2c0 R14: ffffffff8547d160 R15: 0000000000000002
[  130.887587]  ? group_sched_out.part.0+0x2c7/0x460
[  130.887607]  ? group_sched_out.part.0+0x2c7/0x460
[  130.887626]  ctx_sched_out+0x8f1/0xc10
[  130.887646]  __perf_event_task_sched_out+0x6d0/0x18d0
[  130.887660]  ? lock_is_held_type+0xd7/0x130
[  130.887674]  ? __perf_cgroup_move+0x160/0x160
[  130.887684]  ? set_next_entity+0x304/0x550
[  130.887704]  ? lock_is_held_type+0xd7/0x130
[  130.887718]  __schedule+0xedd/0x2470
[  130.887735]  ? io_schedule_timeout+0x150/0x150
[  130.887750]  ? futex_wait_setup+0x166/0x230
[  130.887764]  schedule+0xda/0x1b0
[  130.887779]  futex_wait_queue+0xf5/0x1e0
[  130.887791]  futex_wait+0x28e/0x690
[  130.887804]  ? futex_wait_setup+0x230/0x230
[  130.887817]  ? wake_up_q+0x8b/0xf0
[  130.887830]  ? do_raw_spin_unlock+0x4f/0x220
[  130.887849]  ? futex_wake+0x158/0x490
[  130.887865]  ? fd_install+0x1f9/0x640
[  130.887881]  do_futex+0x2ff/0x380
[  130.887892]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  130.887908]  __x64_sys_futex+0x1c6/0x4d0
[  130.887920]  ? __x64_sys_futex_time32+0x480/0x480
[  130.887933]  ? syscall_enter_from_user_mode+0x1d/0x50
[  130.887947]  ? syscall_enter_from_user_mode+0x1d/0x50
[  130.887963]  do_syscall_64+0x3b/0x90
[  130.887980]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.887993] RIP: 0033:0x7f504ac4bb19
[  130.888002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.888012] RSP: 002b:00007f50481c1218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.888023] RAX: ffffffffffffffda RBX: 00007f504ad5ef68 RCX: 00007f504ac4bb19
[  130.888030] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f504ad5ef68
[  130.888038] RBP: 00007f504ad5ef60 R08: 0000000000000000 R09: 0000000000000000
[  130.888045] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f504ad5ef6c
[  130.888052] R13: 00007ffe44c0c3cf R14: 00007f50481c1300 R15: 0000000000022000
[  130.888064]  </TASK>
[  130.948423] WARNING: CPU: 1 PID: 3879 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  130.949120] Modules linked in:
[  130.949361] CPU: 1 PID: 3879 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1
[  130.949948] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  130.950777] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  130.951194] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  130.952514] RSP: 0018:ffff888036e878f8 EFLAGS: 00010006
[  130.952897] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  130.953401] RDX: ffff88803f503580 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  130.953899] RBP: ffff88803a7f0000 R08: 0000000000000005 R09: 0000000000000001
[  130.954405] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88803a71f400
[  130.954903] R13: ffff88806cf3d2c0 R14: ffffffff8547d160 R15: 0000000000000002
[  130.955416] FS:  00007f50481c1700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  130.955980] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.956396] CR2: 00007f322d6866f4 CR3: 0000000031d1e000 CR4: 0000000000350ee0
[  130.956900] Call Trace:
[  130.957093]  <TASK>
[  130.957270]  ctx_sched_out+0x8f1/0xc10
[  130.957570]  __perf_event_task_sched_out+0x6d0/0x18d0
[  130.957956]  ? lock_is_held_type+0xd7/0x130
[  130.958285]  ? __perf_cgroup_move+0x160/0x160
[  130.958625]  ? set_next_entity+0x304/0x550
[  130.958950]  ? lock_is_held_type+0xd7/0x130
[  130.959302]  __schedule+0xedd/0x2470
[  130.959592]  ? io_schedule_timeout+0x150/0x150
[  130.959954]  ? futex_wait_setup+0x166/0x230
[  130.960288]  schedule+0xda/0x1b0
[  130.960561]  futex_wait_queue+0xf5/0x1e0
[  130.960875]  futex_wait+0x28e/0x690
[  130.961163]  ? futex_wait_setup+0x230/0x230
[  130.961498]  ? wake_up_q+0x8b/0xf0
[  130.961774]  ? do_raw_spin_unlock+0x4f/0x220
[  130.962123]  ? futex_wake+0x158/0x490
[  130.962424]  ? fd_install+0x1f9/0x640
[  130.962722]  do_futex+0x2ff/0x380
[  130.962992]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  130.963449]  __x64_sys_futex+0x1c6/0x4d0
[  130.963758]  ? __x64_sys_futex_time32+0x480/0x480
[  130.964133]  ? syscall_enter_from_user_mode+0x1d/0x50
[  130.964522]  ? syscall_enter_from_user_mode+0x1d/0x50
[  130.964910]  do_syscall_64+0x3b/0x90
[  130.965204]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.965598] RIP: 0033:0x7f504ac4bb19
[  130.965883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.967229] RSP: 002b:00007f50481c1218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.967792] RAX: ffffffffffffffda RBX: 00007f504ad5ef68 RCX: 00007f504ac4bb19
[  130.968321] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f504ad5ef68
[  130.968844] RBP: 00007f504ad5ef60 R08: 0000000000000000 R09: 0000000000000000
[  130.969369] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f504ad5ef6c
[  130.969895] R13: 00007ffe44c0c3cf R14: 00007f50481c1300 R15: 0000000000022000
[  130.970426]  </TASK>
[  130.970605] irq event stamp: 1548
[  130.970857] hardirqs last  enabled at (1547): [<ffffffff8425379d>] syscall_enter_from_user_mode+0x1d/0x50
[  130.971557] hardirqs last disabled at (1548): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  130.972174] softirqs last  enabled at (1420): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  130.972807] softirqs last disabled at (1411): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  130.973443] ---[ end trace 0000000000000000 ]---
[  130.973822] Bluetooth: hci2: command 0x0409 tx timeout
[  131.027066] loop2: detected capacity change from 0 to 256
[  131.057014] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  131.096645] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  131.097169] Bluetooth: hci3: Opcode 0x c03 failed: -110
[  131.223677] Bluetooth: hci6: command 0x0409 tx timeout
[  131.224847] Bluetooth: hci7: command 0x0409 tx timeout
[  131.287656] Bluetooth: hci5: command 0x0409 tx timeout
[  131.288625] hrtimer: interrupt took 18885 ns
[  131.326295] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
05:21:36 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc2}, 0x0, 0x7, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
dup(r0)
eventfd2(0x0, 0x80000)
pidfd_send_signal(0xffffffffffffffff, 0x57aa, 0x0, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000001300)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000000040)=ANY=[])
r2 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x101042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x1)
lremovexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)=ANY=[@ANYBLOB])
ioctl$PIO_FONTX(r3, 0x4b6c, &(0x7f0000000000)={0xa2, 0xc, &(0x7f0000000400)="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"})
write(r2, &(0x7f0000000080)="01", 0xffff8000)

[  131.378145] loop2: detected capacity change from 0 to 256
[  131.404880] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  131.683256] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
05:21:37 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc2}, 0x0, 0x7, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
dup(r0)
eventfd2(0x0, 0x80000)
pidfd_send_signal(0xffffffffffffffff, 0x57aa, 0x0, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000001300)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000000040)=ANY=[])
r2 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x101042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x1)
lremovexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)=ANY=[@ANYBLOB])
ioctl$PIO_FONTX(r3, 0x4b6c, &(0x7f0000000000)={0xa2, 0xc, &(0x7f0000000400)="bbd7cf3d98557fcc75cdc32fc35407fea2489f6652ca9a88480e342474394e9bcf69e9caa1b3c660dd6a3d56525f3850c9a5fe57c6169d1ebd10ac9930c3f7e55578703ca83e8699ae9a23b52323b5bb1b8f10b89fee60bcc9c6acf84cf05d3b259a06ecacf52c177b04aa9a6a7fed165b1e6fd86a8e78301b9010fb1a8983c97400954b75202b3e6d89645e34bc997ef2db523e9c5e94e9b5d10a7d332a3698ef4f0900cde03e6d75494d6f6eb45f3694b31e3f997bdb3a5542763cc78b30562f2efb22da371f29c61f227624ab3afbf16d8d8fac2ffdb9279dc339768548bd232ab205cd7c728b61cdbcd5a7f072583e0af6c7a2fed5ef1db9a3bd46c59eb290e8981c86d5d8d7fece7ab894f675346b9db1a7ef2d2a2fe8eb0057fb03f75d963b3aa201a466ea944aba2f7f97f4b1a60c296840ec886cfb3226f51d867fd87a04aa06b416b840b1e859bdfd4b01996700a13b7ef6c79aa7369ae0ca22bfb6c4a41f66d110444738ee61ab68d55143511a05e1f78700e3227c4d5baaebbe889f6b6f2332fa42be1f9c12575d3dffd0a7e35e633f163e65678fb7ae3d1efb3ea3c70347dbf5a74bce7a82868ed3476bb3f466dfb75ef432b5e9c089ce45a99bb6acacd2dfdcb40e31b2592191af7bffef6e59e74c0ea00ecc060fa1624f659afc760e474faa3d3556b842a8bdb3360838ea0060f0d3459e1f62beb5017092dca4f2e52b3f603105d361bd1c3847381a1b4a1b8a67ff8d6a5e2be1922ebafd3f6b6fc77d506f5a045e21b6c64dc6162f3250e5c1f9d2507812b9bfa17883199b327f02fdac889f78d00970abc3846244a8b3a511c88f22bf127ed903d4f4f4bd71373d3991fdc23c676a665d35d12161fe630b72306c998d566c12d6e5b77121ac3be4a695bde7dd4d60d29fbae33b882e9dc23639cf19ffcfcb35421a54235549171f07a1c6afed008a45dbd1f3da16cdb480a3363cb270127b72cf77ec0e6c06bae013d4e47570365f832a08bb5b04b926851760580dd09e41ad74aa1479f0ff84b9cf07784d0e973065445dfbce57754eb5aaa6e394f207613576d3f44b255741eace412f41bae76cd22d6a60a7278fc3317ea61b9a86484a9e84a8689e6848176cf5c28728538980a2053d68b5eeacf8fe74ad4e2981a2225b2d4b95833a5ae556b23d6c5eb145cf8e6692ebdb58a52946a5fc8178bd3273c6b6706236f22d41cf2be6a167218e8d376df94a295f5a22de2d67bb2daa2867c262602d2fb79d39060c1697572ed7109b926ed968172dd6a325931d29e3107355ef263abcb68dd8a4764cf20fcae82888328d1cee8a55ea539dfd696156239a6b0ffd90a99ebbed1a52b47a84ea5f7426daa4c82f60860c9cd79ad5c798ec84bb2e15c744fb702849b711a2172c6cb1990ab1aae520d35ee8f9e546ddb59e4fdea363583971"})
write(r2, &(0x7f0000000080)="01", 0xffff8000)

[  131.727847] loop2: detected capacity change from 0 to 256
[  131.758487] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  132.005927] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
05:21:37 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc2}, 0x0, 0x7, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
dup(r0)
eventfd2(0x0, 0x80000)
pidfd_send_signal(0xffffffffffffffff, 0x57aa, 0x0, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000001300)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000000040)=ANY=[])
r2 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x101042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x1)
lremovexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)=ANY=[@ANYBLOB])
ioctl$PIO_FONTX(r3, 0x4b6c, &(0x7f0000000000)={0xa2, 0xc, &(0x7f0000000400)="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"})
write(r2, &(0x7f0000000080)="01", 0xffff8000)

[  132.054928] loop2: detected capacity change from 0 to 256
[  132.096084] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
05:21:37 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc2}, 0x0, 0x7, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
dup(r0)
eventfd2(0x0, 0x80000)
pidfd_send_signal(0xffffffffffffffff, 0x57aa, 0x0, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000001300)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000000040)=ANY=[])
r2 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x101042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x1)
lremovexattr(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)=ANY=[@ANYBLOB])
write(r2, &(0x7f0000000080)="01", 0xffff8000)

[  132.325040] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  132.381802] loop2: detected capacity change from 0 to 256
[  132.409357] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
05:21:37 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc2}, 0x0, 0x7, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
dup(r0)
eventfd2(0x0, 0x80000)
pidfd_send_signal(0xffffffffffffffff, 0x57aa, 0x0, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000001300)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000000040)=ANY=[])
r2 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x101042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x1)
write(r2, &(0x7f0000000080)="01", 0xffff8000)

[  132.606693] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  132.647564] loop2: detected capacity change from 0 to 256
[  132.675834] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  132.824651] Bluetooth: hci0: command 0x041b tx timeout
[  132.876743] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
05:21:38 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc2}, 0x0, 0x7, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
dup(r0)
eventfd2(0x0, 0x80000)
pidfd_send_signal(0xffffffffffffffff, 0x57aa, 0x0, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000001300)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000000040)=ANY=[])
r2 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x101042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x1)
write(r2, &(0x7f0000000080)="01", 0xffff8000)

[  132.934718] loop2: detected capacity change from 0 to 256
[  132.974533] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  133.016650] Bluetooth: hci2: command 0x041b tx timeout
[  133.193135] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  133.271737] Bluetooth: hci7: command 0x041b tx timeout
[  133.272208] Bluetooth: hci6: command 0x041b tx timeout
[  133.335950] Bluetooth: hci5: command 0x041b tx timeout
[  134.871657] Bluetooth: hci0: command 0x040f tx timeout
[  135.063679] Bluetooth: hci2: command 0x040f tx timeout
[  135.319690] Bluetooth: hci6: command 0x040f tx timeout
[  135.319711] Bluetooth: hci7: command 0x040f tx timeout
[  135.383662] Bluetooth: hci5: command 0x040f tx timeout
[  135.895652] Bluetooth: hci3: Opcode 0x c03 failed: -110
[  136.151657] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  136.919742] Bluetooth: hci0: command 0x0419 tx timeout
[  137.111659] Bluetooth: hci2: command 0x0419 tx timeout
[  137.367704] Bluetooth: hci6: command 0x0419 tx timeout
[  137.368470] Bluetooth: hci7: command 0x0419 tx timeout
[  137.431922] Bluetooth: hci5: command 0x0419 tx timeout
[  138.416534] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  138.420215] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  138.422407] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  138.431811] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  138.435450] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  138.437419] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  138.439279] Bluetooth: hci3: HCI_REQ-0x0c1a
[  140.503724] Bluetooth: hci3: command 0x0409 tx timeout
[  140.695692] Bluetooth: hci4: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
05:21:36  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88806cf3d5e0 RCX=0000000000000000 RDX=ffff888010430000
RSI=ffffffff813bbaa7 RDI=0000000000000005 RBP=0000000000000001 RSP=ffff88803a737958
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=0000000000000003 R13=ffffed100d9e7abd R14=ffff88806cf3d5e8 R15=0000000000000001
RIP=ffffffff813bbaa9 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 00005555557e3400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f504ad53d5c CR3=0000000031d1e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f504ad327c0 00007f504ad327c8
YMM02=0000000000000000 0000000000000000 00007f504ad327e0 00007f504ad327c0
YMM03=0000000000000000 0000000000000000 00007f504ad327c8 00007f504ad327c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff888036e87340
R8 =0000000000000001 R9 =000000000000000a R10=000000000000006b R11=0000000000000001
R12=000000000000006b R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f50481c1700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f322d6866f4 CR3=0000000031d1e000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f504ad327c0 00007f504ad327c8
YMM02=0000000000000000 0000000000000000 00007f504ad327e0 00007f504ad327c0
YMM03=0000000000000000 0000000000000000 00007f504ad327c8 00007f504ad327c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000