Warning: Permanently added '[localhost]:14485' (ECDSA) to the list of known hosts.
2022/10/02 19:42:23 fuzzer started
2022/10/02 19:42:24 dialing manager at localhost:35095
syzkaller login: [   43.935883] cgroup: Unknown subsys name 'net'
[   44.029857] cgroup: Unknown subsys name 'rlimit'
2022/10/02 19:42:38 syscalls: 2215
2022/10/02 19:42:38 code coverage: enabled
2022/10/02 19:42:38 comparison tracing: enabled
2022/10/02 19:42:38 extra coverage: enabled
2022/10/02 19:42:38 setuid sandbox: enabled
2022/10/02 19:42:38 namespace sandbox: enabled
2022/10/02 19:42:38 Android sandbox: enabled
2022/10/02 19:42:38 fault injection: enabled
2022/10/02 19:42:38 leak checking: enabled
2022/10/02 19:42:38 net packet injection: enabled
2022/10/02 19:42:38 net device setup: enabled
2022/10/02 19:42:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/02 19:42:38 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/02 19:42:38 USB emulation: enabled
2022/10/02 19:42:38 hci packet injection: enabled
2022/10/02 19:42:38 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/02 19:42:38 802.15.4 emulation: enabled
2022/10/02 19:42:39 fetching corpus: 50, signal 37524/39257 (executing program)
2022/10/02 19:42:39 fetching corpus: 100, signal 45995/49345 (executing program)
2022/10/02 19:42:39 fetching corpus: 150, signal 54251/59106 (executing program)
2022/10/02 19:42:39 fetching corpus: 200, signal 59583/65887 (executing program)
2022/10/02 19:42:39 fetching corpus: 250, signal 66866/74503 (executing program)
2022/10/02 19:42:39 fetching corpus: 300, signal 71103/80116 (executing program)
2022/10/02 19:42:39 fetching corpus: 350, signal 74197/84535 (executing program)
2022/10/02 19:42:39 fetching corpus: 400, signal 76393/88072 (executing program)
2022/10/02 19:42:40 fetching corpus: 450, signal 80231/93157 (executing program)
2022/10/02 19:42:40 fetching corpus: 500, signal 82456/96673 (executing program)
2022/10/02 19:42:40 fetching corpus: 550, signal 85235/100632 (executing program)
2022/10/02 19:42:40 fetching corpus: 600, signal 87595/104198 (executing program)
2022/10/02 19:42:40 fetching corpus: 650, signal 90053/107798 (executing program)
2022/10/02 19:42:40 fetching corpus: 700, signal 92237/111138 (executing program)
2022/10/02 19:42:40 fetching corpus: 750, signal 95218/115173 (executing program)
2022/10/02 19:42:40 fetching corpus: 800, signal 98234/119164 (executing program)
2022/10/02 19:42:41 fetching corpus: 850, signal 100825/122764 (executing program)
2022/10/02 19:42:41 fetching corpus: 900, signal 103442/126384 (executing program)
2022/10/02 19:42:41 fetching corpus: 950, signal 106822/130575 (executing program)
2022/10/02 19:42:41 fetching corpus: 1000, signal 108892/133612 (executing program)
2022/10/02 19:42:41 fetching corpus: 1050, signal 110364/136126 (executing program)
2022/10/02 19:42:41 fetching corpus: 1100, signal 112338/139000 (executing program)
2022/10/02 19:42:41 fetching corpus: 1150, signal 114671/142207 (executing program)
2022/10/02 19:42:41 fetching corpus: 1200, signal 116570/145005 (executing program)
2022/10/02 19:42:42 fetching corpus: 1250, signal 121040/149883 (executing program)
2022/10/02 19:42:42 fetching corpus: 1300, signal 122381/152148 (executing program)
2022/10/02 19:42:42 fetching corpus: 1350, signal 123799/154422 (executing program)
2022/10/02 19:42:42 fetching corpus: 1400, signal 125748/157103 (executing program)
2022/10/02 19:42:42 fetching corpus: 1450, signal 127644/159761 (executing program)
2022/10/02 19:42:42 fetching corpus: 1500, signal 129303/162205 (executing program)
2022/10/02 19:42:42 fetching corpus: 1550, signal 131196/164782 (executing program)
2022/10/02 19:42:42 fetching corpus: 1600, signal 132439/166843 (executing program)
2022/10/02 19:42:43 fetching corpus: 1650, signal 134376/169414 (executing program)
2022/10/02 19:42:43 fetching corpus: 1700, signal 136040/171715 (executing program)
2022/10/02 19:42:43 fetching corpus: 1750, signal 137583/173929 (executing program)
2022/10/02 19:42:43 fetching corpus: 1800, signal 138935/175998 (executing program)
2022/10/02 19:42:43 fetching corpus: 1850, signal 140924/178477 (executing program)
2022/10/02 19:42:43 fetching corpus: 1900, signal 141819/180194 (executing program)
2022/10/02 19:42:43 fetching corpus: 1950, signal 143480/182423 (executing program)
2022/10/02 19:42:43 fetching corpus: 2000, signal 144065/183842 (executing program)
2022/10/02 19:42:44 fetching corpus: 2050, signal 145199/185611 (executing program)
2022/10/02 19:42:44 fetching corpus: 2100, signal 146634/187582 (executing program)
2022/10/02 19:42:44 fetching corpus: 2150, signal 147468/189164 (executing program)
2022/10/02 19:42:44 fetching corpus: 2200, signal 148858/191163 (executing program)
2022/10/02 19:42:44 fetching corpus: 2250, signal 149631/192644 (executing program)
2022/10/02 19:42:44 fetching corpus: 2300, signal 151931/195181 (executing program)
2022/10/02 19:42:44 fetching corpus: 2350, signal 153740/197326 (executing program)
2022/10/02 19:42:44 fetching corpus: 2400, signal 154904/199068 (executing program)
2022/10/02 19:42:45 fetching corpus: 2450, signal 155822/200591 (executing program)
2022/10/02 19:42:45 fetching corpus: 2500, signal 156575/201986 (executing program)
2022/10/02 19:42:45 fetching corpus: 2550, signal 157388/203433 (executing program)
2022/10/02 19:42:45 fetching corpus: 2600, signal 158148/204847 (executing program)
2022/10/02 19:42:45 fetching corpus: 2650, signal 158768/206156 (executing program)
2022/10/02 19:42:45 fetching corpus: 2700, signal 160152/207960 (executing program)
2022/10/02 19:42:45 fetching corpus: 2750, signal 161471/209618 (executing program)
2022/10/02 19:42:45 fetching corpus: 2800, signal 162338/211034 (executing program)
2022/10/02 19:42:45 fetching corpus: 2850, signal 163005/212274 (executing program)
2022/10/02 19:42:45 fetching corpus: 2900, signal 163768/213593 (executing program)
2022/10/02 19:42:46 fetching corpus: 2950, signal 164640/214919 (executing program)
2022/10/02 19:42:46 fetching corpus: 3000, signal 165983/216598 (executing program)
2022/10/02 19:42:46 fetching corpus: 3050, signal 166708/217851 (executing program)
2022/10/02 19:42:46 fetching corpus: 3100, signal 167518/219164 (executing program)
2022/10/02 19:42:46 fetching corpus: 3150, signal 168336/220481 (executing program)
2022/10/02 19:42:46 fetching corpus: 3200, signal 169514/221981 (executing program)
2022/10/02 19:42:46 fetching corpus: 3250, signal 170222/223213 (executing program)
2022/10/02 19:42:46 fetching corpus: 3300, signal 170939/224421 (executing program)
2022/10/02 19:42:47 fetching corpus: 3350, signal 171408/225448 (executing program)
2022/10/02 19:42:47 fetching corpus: 3400, signal 172496/226838 (executing program)
2022/10/02 19:42:47 fetching corpus: 3450, signal 173210/227972 (executing program)
2022/10/02 19:42:47 fetching corpus: 3500, signal 173583/228983 (executing program)
2022/10/02 19:42:47 fetching corpus: 3550, signal 174311/230173 (executing program)
2022/10/02 19:42:47 fetching corpus: 3600, signal 175268/231418 (executing program)
2022/10/02 19:42:47 fetching corpus: 3650, signal 175868/232474 (executing program)
2022/10/02 19:42:47 fetching corpus: 3700, signal 176325/233522 (executing program)
2022/10/02 19:42:47 fetching corpus: 3750, signal 177196/234738 (executing program)
2022/10/02 19:42:48 fetching corpus: 3800, signal 178418/236073 (executing program)
2022/10/02 19:42:48 fetching corpus: 3850, signal 179347/237231 (executing program)
2022/10/02 19:42:48 fetching corpus: 3900, signal 181277/238804 (executing program)
2022/10/02 19:42:48 fetching corpus: 3950, signal 181971/239864 (executing program)
2022/10/02 19:42:48 fetching corpus: 4000, signal 182475/240822 (executing program)
2022/10/02 19:42:48 fetching corpus: 4050, signal 182921/241682 (executing program)
2022/10/02 19:42:48 fetching corpus: 4100, signal 183457/242639 (executing program)
2022/10/02 19:42:49 fetching corpus: 4150, signal 184392/243748 (executing program)
2022/10/02 19:42:49 fetching corpus: 4200, signal 185022/244693 (executing program)
2022/10/02 19:42:49 fetching corpus: 4250, signal 185337/245521 (executing program)
2022/10/02 19:42:49 fetching corpus: 4300, signal 186036/246489 (executing program)
2022/10/02 19:42:49 fetching corpus: 4350, signal 186741/247475 (executing program)
2022/10/02 19:42:49 fetching corpus: 4400, signal 187141/248364 (executing program)
2022/10/02 19:42:49 fetching corpus: 4450, signal 187687/249248 (executing program)
2022/10/02 19:42:49 fetching corpus: 4500, signal 188147/250119 (executing program)
2022/10/02 19:42:49 fetching corpus: 4550, signal 189463/251338 (executing program)
2022/10/02 19:42:50 fetching corpus: 4600, signal 189927/252199 (executing program)
2022/10/02 19:42:50 fetching corpus: 4650, signal 191039/253261 (executing program)
2022/10/02 19:42:50 fetching corpus: 4700, signal 191499/254103 (executing program)
2022/10/02 19:42:50 fetching corpus: 4750, signal 191944/254932 (executing program)
2022/10/02 19:42:50 fetching corpus: 4800, signal 192650/255834 (executing program)
2022/10/02 19:42:50 fetching corpus: 4850, signal 192986/256560 (executing program)
2022/10/02 19:42:50 fetching corpus: 4900, signal 193414/257365 (executing program)
2022/10/02 19:42:50 fetching corpus: 4950, signal 194160/258201 (executing program)
2022/10/02 19:42:50 fetching corpus: 4997, signal 194783/259010 (executing program)
2022/10/02 19:42:50 fetching corpus: 4997, signal 194783/259682 (executing program)
2022/10/02 19:42:50 fetching corpus: 4997, signal 194783/260309 (executing program)
2022/10/02 19:42:50 fetching corpus: 4997, signal 194783/260940 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/261590 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/262229 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/262876 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/263529 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/264163 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/264826 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/265489 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/266123 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/266751 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/267373 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/268009 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/268637 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/269302 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/269953 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/270590 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/271214 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/271882 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/272538 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/273188 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/273830 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/274474 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/275150 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/275823 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/276450 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/277123 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/277747 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/278443 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/279106 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/279756 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/280420 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/281078 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/281722 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/282348 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/283008 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/283664 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/284321 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/284937 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/285575 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/285751 (executing program)
2022/10/02 19:42:51 fetching corpus: 4997, signal 194783/285751 (executing program)
2022/10/02 19:42:54 starting 8 fuzzer processes
19:42:54 executing program 0:
sendmsg$NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x4)
recvmmsg$unix(0xffffffffffffffff, &(0x7f00000024c0)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000100)=""/126, 0x7e}, {&(0x7f0000000180)=""/25, 0x19}, {&(0x7f00000001c0)=""/44, 0x2c}, {&(0x7f0000000200)}, {&(0x7f0000000240)=""/212, 0xd4}, {&(0x7f0000000340)}, {&(0x7f0000000380)=""/228, 0xe4}], 0x7, &(0x7f0000000500)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}}, {{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f00000017c0)=[{&(0x7f0000000640)=""/65, 0x41}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/90, 0x5a}, {&(0x7f0000001740)=""/66, 0x42}], 0x4, &(0x7f0000001800)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, <r0=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}, {{&(0x7f0000001840), 0x6e, &(0x7f0000001c00)=[{&(0x7f00000018c0)=""/11, 0xb}, {&(0x7f0000001900)=""/59, 0x3b}, {&(0x7f0000001940)=""/252, 0xfc}, {&(0x7f0000001a40)=""/130, 0x82}, {&(0x7f0000001b00)=""/171, 0xab}, {&(0x7f0000001bc0)=""/35, 0x23}], 0x6, &(0x7f0000001c80)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, <r1=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r2=>0xffffffffffffffff, 0xffffffffffffffff, <r3=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [<r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x118}}, {{&(0x7f0000001dc0)=@abs, 0x6e, &(0x7f0000002400)=[{&(0x7f0000001e40)=""/251, 0xfb}, {&(0x7f0000001f40)=""/136, 0x88}, {&(0x7f0000002000)=""/88, 0x58}, {&(0x7f0000002080)=""/174, 0xae}, {&(0x7f0000002140)=""/9, 0x9}, {&(0x7f0000002180)=""/116, 0x74}, {&(0x7f0000002200)=""/238, 0xee}, {&(0x7f0000002300)=""/142, 0x8e}, {&(0x7f00000023c0)=""/59, 0x3b}], 0x9}}], 0x4, 0x10000, &(0x7f00000025c0))
sendmsg$FOU_CMD_ADD(r3, &(0x7f00000026c0)={&(0x7f0000002600)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000002680)={&(0x7f0000002640)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@FOU_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x1)
r10 = fsmount(r9, 0x0, 0x8a)
sendmsg$IPVS_CMD_GET_CONFIG(r10, &(0x7f0000002840)={&(0x7f0000002700)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000002800)={&(0x7f0000002740)={0x98, 0x0, 0x20, 0x70bd2a, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DEST={0x60, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0xb84}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x700}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e23}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x5}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast1}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x101}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20004080}, 0x40000)
r11 = syz_genetlink_get_family_id$ethtool(&(0x7f00000028c0), r0)
getsockopt$inet6_mreq(r4, 0x29, 0x1b, &(0x7f0000002900)={@ipv4, <r12=>0x0}, &(0x7f0000002940)=0x14)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r6, &(0x7f0000002a80)={&(0x7f0000002880)={0x10, 0x0, 0x0, 0x8008010}, 0xc, &(0x7f0000002a40)={&(0x7f0000002980)={0xac, r11, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x24000040}, 0x40814)
r13 = eventfd2(0x9, 0x0)
fsetxattr$security_selinux(r13, &(0x7f0000002ac0), &(0x7f0000002b00)='system_u:object_r:restorecond_var_run_t:s0\x00', 0x2b, 0x2)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
io_cancel(0x0, &(0x7f0000002c40)={0x0, 0x0, 0x0, 0x7, 0x0, r2, &(0x7f0000002b40)="d3a6da705ed232df5a985a3c7b7f0c213c66c3baf95dd2b0dd93e10cba6a206e3c616422364d4c17438b07ccd22d7db1b2654fd0ecdb99b7192639898cdb88bbb022cbf10e1cd47a70fe135b853a4d6ef2572917e25af971a25f5a6037e1c773a206b791e877d44ec0c7344b8bf22f3f03ce8232d736820c48a0a86fd8af0bbcb16e8965980cbad840e28d335784afba3096564c38bd0e8d7631f783256e105b04198e547edb9a6803f44aea60432cab3926bb36800260da41c4b1cbab7222b1089cf616cb44f3337857ad8b", 0xcc, 0x3f, 0x0, 0x0, r5}, &(0x7f0000002c80))
getsockopt$inet6_opts(r9, 0x29, 0x2a, &(0x7f0000002cc0)=""/108, &(0x7f0000002d40)=0x6c)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000002dc0)={'ip_vti0\x00', &(0x7f0000002d80)={'tunl0\x00', r12, 0x700, 0x7800, 0xffff, 0x1, {{0x6, 0x4, 0x0, 0x9, 0x18, 0x64, 0x0, 0x4, 0x29, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}, @loopback, {[@ra={0x94, 0x4}]}}}}})
sendmsg$NL80211_CMD_START_NAN(r0, &(0x7f0000002ec0)={&(0x7f0000002e00)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000002e80)={&(0x7f0000002e40)={0x1c, 0x0, 0x400, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4800}, 0x800)
r14 = syz_open_dev$vcsu(&(0x7f0000002f00), 0xfffffffffffffffc, 0x20000)
ioctl$BTRFS_IOC_RM_DEV(r14, 0x5000940b, &(0x7f0000002f40)={{r8}, "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"})
socketpair(0x26, 0x80005, 0x20, &(0x7f0000003f40)={0xffffffffffffffff, <r15=>0xffffffffffffffff})
r16 = syz_genetlink_get_family_id$nl80211(&(0x7f0000003fc0), r6)
sendmsg$NL80211_CMD_GET_COALESCE(r15, &(0x7f0000004080)={&(0x7f0000003f80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000004040)={&(0x7f0000004000)={0x28, r16, 0x100, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x13}, @void, @val={0xc, 0x99, {0xc2, 0x4f}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x148a1}, 0x4000080)

19:42:54 executing program 1:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
write$selinux_attr(r0, &(0x7f0000000000)='system_u:object_r:tty_device_t:s0\x00', 0x22)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000040)={0x7, {{0xa, 0x4e24, 0x7, @loopback, 0xab}}, {{0xa, 0x4e24, 0x5, @remote, 0x4}}}, 0x108)
r1 = socket$inet6(0xa, 0x4, 0x200)
ioctl$SNAPSHOT_GET_IMAGE_SIZE(r0, 0x8008330e, &(0x7f0000000180))
r2 = syz_io_uring_complete(0x0)
getsockopt$inet6_int(r2, 0x29, 0x1, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
getsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000240), &(0x7f0000000280)=0x4)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/mdstat\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'veth0_virt_wifi\x00', <r4=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000340)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x14, r4})
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), r0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f00000004c0)={&(0x7f0000000380), 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x58, r5, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_TX={0x5}, @ETHTOOL_A_PAUSE_RX={0x5, 0x3, 0x1}, @ETHTOOL_A_PAUSE_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_TX={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x8004}, 0x20004000)
sendmsg$ETHTOOL_MSG_RINGS_SET(r2, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x4c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x2}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x5}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x2}, @ETHTOOL_A_RINGS_TX={0x8, 0x9, 0xd28}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x7}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x80000001}]}, 0x4c}, 0x1, 0x0, 0x0, 0x11}, 0x4000000)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r3, 0xc018937d, &(0x7f0000000640)={{0x1, 0x1, 0x18, <r6=>r0, {0xdb2f}}, './file0\x00'})
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f0000000680)='wg1\x00', 0x4)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f00000006c0)={{0x1, 0x1, 0x18, <r7=>r1, {0x2}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r7, 0xc0189375, &(0x7f0000000700)={{0x1, 0x1, 0x18, <r8=>r2}, './file0\x00'})
fchdir(r8)
socket$nl_generic(0x10, 0x3, 0x10)

19:42:54 executing program 2:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x1, 0x24)
io_submit(0x0, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7, 0x3, r1, &(0x7f0000000080)="1a7f53a2c4f65c3871267fea30648078d6b08d4c30f1cad9b56bcb1866", 0x1d, 0x2, 0x0, 0x3, r0}])
lgetxattr(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)=@known='user.incfs.size\x00', &(0x7f00000001c0)=""/8, 0x8)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff}, './file0\x00'})
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000240)=0x4)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000280), 0x501000, 0x0)
write(r3, &(0x7f00000002c0)="7e21d4e0ecd8ade459c92baffbae914894da", 0x12)
r4 = accept(0xffffffffffffffff, &(0x7f0000000300)=@pppol2tp, &(0x7f0000000380)=0x80)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r4, 0xf502, 0x0)
ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f00000003c0)="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")
r5 = open(&(0x7f00000004c0)='./file0\x00', 0x8000, 0x4)
mknodat$null(r5, &(0x7f0000000500)='./file0\x00', 0x8000, 0x103)
r6 = open(&(0x7f0000000540)='./file1\x00', 0x80, 0x20)
move_mount(r6, &(0x7f0000000580)='./file0\x00', 0xffffffffffffffff, &(0x7f00000005c0)='./file1\x00', 0x11)
r7 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000600), 0x541800, 0x0)
write(r7, &(0x7f0000000640)="37de6de47e533f76b31e7848358247fa65117f022cdd", 0x16)
r8 = dup2(r4, r4)
ioctl$TIOCMGET(r8, 0x5415, &(0x7f0000000680))
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r8, 0xc0189379, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'})

19:42:54 executing program 4:
msgsnd(0x0, &(0x7f0000000000)={0x3, "65eb34f8a1b81385143a6272f7ebe7871106889183e8ea9a5bffc6bceaac75503047c2e5ae00a4f443d620c8da83db67b794fa1b9837377457bb7e06bfd1d8752004853bc4483fc8ed47c858be6e60071780e3a1f3366f384ea218bd3c6feb409330a5daa7774a3e96c0b8e08344de3a7ca2ae609cd9a101a369969e698f23e1c1e8eb9e131fb78a95f2e9a21a24751a526c3d9598601a6b66a1889a49e3f7f3ae08345bfe23adec0f5699cc2ab8ef4064f4ec091085d03a4634d6"}, 0xc3, 0x0)
msgsnd(0x0, &(0x7f0000000100)={0x1, "4907e827540c460296216b4f5b2e0616644fb9360f7c9a960125e5e601ec181dfbdced43abe1a24780e548663dbe20011d2eeb540985e875aa56fdcb2ac8af1cd1f6fbce8b16b4e59c48297a13d480993910aa99aa8727a5a37560e14e9378b544508db43f02c8a829e3e699aad458b1b02584"}, 0x7b, 0x800)
msgrcv(0xffffffffffffffff, &(0x7f0000000180)={0x0, ""/165}, 0xad, 0x0, 0x2800)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000240)=<r0=>0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000280)={<r1=>0x0}, &(0x7f00000002c0)=0xc)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000300)={{0x3, 0xee01, 0xffffffffffffffff, r0, 0xee01, 0x4, 0x52f}, 0x0, 0x0, 0x232, 0x1ff, 0x6, 0x3f, 0x2, 0x20, 0x2, 0x80, 0x0, r1})
ioctl$FITHAW(0xffffffffffffffff, 0xc0045878)
r2 = msgget(0x2, 0x41)
msgsnd(r2, &(0x7f0000000380)={0x2, "f627a3b6b29551b1457cb15016d6322b85101adebec536c59818c639723565e5c1a0d9463ce593f54893d577d8f9fca9e1ec2e8d10df5d148befb559516ed1cbd45ccb4f4cb50d51814999861ee0e83250d4c993f0f7214c87d5636635d39e30984a11bf12cd506b9c012b6d85374f08ddba08d0f259613a8f972247d744c1d436fa377c82cbdf2edb06aab6ee8862f5ba456bf64ea62386b6b82991be2975cb521ac486953ceabc4e40a6125a597e04"}, 0xb8, 0x800)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000440), 0x40001, 0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000000480))
r4 = syz_open_procfs$namespace(r1, &(0x7f00000004c0)='ns/time_for_children\x00')
ioctl$NS_GET_NSTYPE(r4, 0xb703, 0x0)
ioctl$NS_GET_USERNS(r3, 0xb701, 0x0)
r5 = shmget(0x1, 0x4000, 0x100, &(0x7f0000ffa000/0x4000)=nil)
shmat(r5, &(0x7f0000ffc000/0x2000)=nil, 0x5000)
msgctl$IPC_STAT(r2, 0x2, &(0x7f0000000500)=""/154)
signalfd4(r4, &(0x7f00000005c0)={[0x100000001]}, 0x8, 0x800)
shmat(r5, &(0x7f0000ffa000/0x3000)=nil, 0x4000)
ioctl$BTRFS_IOC_TREE_SEARCH(r3, 0xd0009411, &(0x7f0000000600)={{0x0, 0x0, 0x2, 0xc4, 0x93, 0x1, 0xff, 0xfffffffb, 0xff, 0xfff, 0x4, 0x9c, 0x3, 0x0, 0x1}})

19:42:54 executing program 5:
getsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, &(0x7f0000000000)=0x4, &(0x7f0000000040)=0x1)
r0 = socket$inet(0x2, 0x6, 0x6)
ioctl$sock_proto_private(r0, 0x89e0, &(0x7f0000000080)="d83a143820ac156791c8a8ec585a4431cab7e7a40b26962ebcf754bd0476c93dbe624ee53c")
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f00000000c0)=""/213, &(0x7f00000001c0)=0xd5)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r1=>r0, @in_args={0x4}}, './file0\x00'})
setsockopt$inet_buf(r1, 0x0, 0x2e, &(0x7f0000000240)="040744a2461e91465f7ab4c972601f77a99003d2f30715a0625c2ec0ffda833bc32c2b3d08f6d09375fd7f35985d7690fd14fecb5b4d1b379aab3906564916545339db42335fa9f944a4a033225b41d3c6a4828158910844e43d376e60e4", 0x5e)
setsockopt$IPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x41, &(0x7f00000002c0)={'filter\x00', 0x3, [{}, {}, {}]}, 0x58)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x83, &(0x7f0000000400)={'filter\x00', 0x0, 0x3, 0x14, [0x0, 0x2, 0x8, 0x4, 0x4, 0x6], 0x7, &(0x7f0000000340)=[{}, {}, {}, {}, {}, {}, {}], &(0x7f00000003c0)=""/20}, &(0x7f0000000480)=0x78)
getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f00000004c0), &(0x7f0000000500)=0xc)
setsockopt$sock_void(r1, 0x1, 0x3f, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, &(0x7f0000000540)={0x3a, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e20, 0x2, 'nq\x00', 0x0, 0x8, 0x26}, 0x2c)
ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000580)={{0x2, 0x4e20, @loopback}, {0x306, @link_local}, 0x0, {0x2, 0x4e20, @rand_addr=0x64010101}, 'xfrm0\x00'})
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000740)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0xffff4805}}, './file0\x00'})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), r1)
sendmsg$NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x1c, r3, 0x300, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8800}, 0x4000000)
r4 = memfd_secret(0x80000)
fgetxattr(r4, &(0x7f00000008c0)=@random={'os2.', 'filter\x00'}, &(0x7f0000000900)=""/213, 0xd5)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r5, &(0x7f0000000a00)={0x2, 0x4e20, @multicast2}, 0x10)
ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000a40)={{}, {@void, @max}})

[   73.965267] audit: type=1400 audit(1664739774.437:6): avc:  denied  { execmem } for  pid=287 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
19:42:54 executing program 3:
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000000)={@multicast1, @loopback}, 0xc)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000040)={@remote, @private=0xa010102}, 0xc)
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = dup2(0xffffffffffffffff, r0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r2=>r0, {0x6}}, './file0\x00'})
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000000c0)={{{@in=@loopback, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@initdev}, 0x0, @in6=@initdev}}, &(0x7f00000001c0)=0xe8)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), r2)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000300)={'syztnl0\x00', &(0x7f0000000280)={'gre0\x00', <r5=>r3, 0x8000, 0x20, 0x3f, 0x4, {{0x16, 0x4, 0x0, 0x2, 0x58, 0x65, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, {[@end, @generic={0x94, 0x4, "baef"}, @noop, @timestamp_addr={0x44, 0x3c, 0xf1, 0x1, 0x1, [{@private=0xa010101, 0xb6}, {@broadcast, 0x7fffffff}, {@multicast1}, {@loopback, 0x80}, {@broadcast}, {@local, 0x1}, {@multicast2, 0x2}]}]}}}}})
getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f0000000340)={{{@in=@broadcast, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@private2}, 0x0, @in=@remote}}, &(0x7f0000000440)=0xe8)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r1, 0x89f4, &(0x7f0000000500)={'syztnl1\x00', &(0x7f0000000480)={'syztnl0\x00', <r7=>r3, 0x3b, 0x0, 0x7, 0xfff, 0x42, @dev={0xfe, 0x80, '\x00', 0xf5}, @ipv4={'\x00', '\xff\xff', @remote}, 0x8, 0x40, 0x389}})
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r1, 0x89f7, &(0x7f0000003d80)={'ip6gre0\x00', &(0x7f0000003d00)={'ip6_vti0\x00', <r8=>r3, 0x87b1be83791469a3, 0x81, 0x7, 0x3ff, 0x40, @private2, @dev={0xfe, 0x80, '\x00', 0x2f}, 0x7, 0x1, 0x7, 0x7fff}})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000003dc0)={'team_slave_1\x00', <r9=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r2, &(0x7f0000004100)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000040c0)={&(0x7f0000003e00)={0x294, r4, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x294}, 0x1, 0x0, 0x0, 0x4000091}, 0x4000)
r10 = socket(0x2a, 0x5, 0x20)
getpeername(r1, &(0x7f00000041c0)=@ll={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000004240)=0x80)
sendmsg$ETHTOOL_MSG_STRSET_GET(r10, &(0x7f0000004440)={&(0x7f0000004140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000004400)={&(0x7f0000004280)={0x178, r4, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x128, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}]}, @ETHTOOL_A_STRSET_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}]}, 0x178}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
ioctl$sock_SIOCGIFCONF(r1, 0x8912, &(0x7f0000004540)=@buf={0xb4, &(0x7f0000004480)="c99ba507bea0ac95b9205eb0459c128d42ba1dd8a5311949f29841e8ac3939786b093984ea8df8f1cf78febda54aa80e4903fe0ef2c1139f8ef18f6bfc10812a5aec1c6ac8aed1de9058793a70c7680c61a638a20004ef0574b65bb65c626a46792d30093dd7dd724248338707657535fec7d270f18f0b19b682c8024bc0566e7481b94a51ef52b92d4e95cbe26dae103706f55007412a5b9ffd9af79da7eba912fd0c7a0b7c9d7883bb60f5f6ce8cc2c4243a88"})
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f00000045c0), r1)
sendmsg$NL80211_CMD_SET_MPATH(r1, &(0x7f0000004680)={&(0x7f0000004580)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000004640)={&(0x7f0000004600)={0x2c, r12, 0x200, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0xfffffffd, 0x4}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x2c}}, 0x20000000)
getsockopt$inet_mreqn(r10, 0x0, 0x24, &(0x7f00000046c0)={@broadcast, @loopback}, &(0x7f0000004700)=0xc)

19:42:54 executing program 6:
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x420000, 0x0)
close_range(r0, r1, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/shm\x00', 0x0, 0x0)
getsockopt$SO_COOKIE(r1, 0x1, 0x39, &(0x7f00000000c0), &(0x7f0000000100)=0x8)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r1, 0x40189429, &(0x7f0000000140)={0x0, 0x98, 0x3ff})
r3 = syz_genetlink_get_family_id$fou(&(0x7f00000001c0), r2)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r3, 0x100, 0x70bd29, 0x25dfdbff, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4048001}, 0x24000842)
r4 = syz_open_dev$usbmon(&(0x7f00000002c0), 0x9, 0x44c2)
fcntl$setownex(r4, 0xf, &(0x7f0000000300)={0x0, 0xffffffffffffffff})
fcntl$dupfd(r1, 0x0, r1)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x28, 0x0, 0x8, 0x70bd26, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_ADDR={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x40010}, 0x4000)
getsockname(r0, &(0x7f0000000440)=@pppol2tpv3={0x18, 0x1, {0x0, <r5=>0xffffffffffffffff, {0x2, 0x0, @empty}}}, &(0x7f00000004c0)=0x80)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r2)
sendmsg$NL80211_CMD_SET_PMK(r5, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x34, r6, 0x300, 0x70bd29, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x6b}}}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "d0c2cdb01c52bab042bb0a0aaf3bd9a4"}]}, 0x34}, 0x1, 0x0, 0x0, 0x4840}, 0x4)
r7 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r8 = fork()
ioctl$sock_SIOCSPGRP(r7, 0x8902, &(0x7f0000000640)=r8)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r1)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r5, &(0x7f0000000800)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000740)={0x70, r9, 0x2, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x21}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x7f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x13}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x45}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x42}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x19}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x80}]}, 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x240400c0)

19:42:54 executing program 7:
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000000)={0x0, 0x6}, 0x8)
setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4)
pipe2(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4000)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_MGMT(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, r2, 0x200, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8, 0x75}}}}, [@NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_TDLS_INITIATOR={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4800)
ioctl$KDGETKEYCODE(r0, 0x4b4c, 0xfffffffffffffffd)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r3=>r1, {0x8}}, './file0\x00'})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r3, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r2, 0x200, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x811}, 0x80)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000400), 0x80000)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000440))
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r1)
sendmsg$NL80211_CMD_SET_PMKSA(r3, &(0x7f0000000780)={&(0x7f0000000640), 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x80, r5, 0x10c, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_PMKID={0x14, 0x55, "5c3cb560bd92068a7d5dd62eeb9adfad"}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0xffffffff}, @NL80211_ATTR_FILS_CACHE_ID={0x6}, @NL80211_ATTR_PMKID={0x14, 0x55, "3254febd13015b444a2967f01a8dc372"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="a78ab741dd06"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x4b}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x3b}, @NL80211_ATTR_MAC={0xa, 0x6, @random="e25b64d1bce1"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x80}, 0x1, 0x0, 0x0, 0xd911600f43a30d60}, 0x1)
pipe2(&(0x7f00000007c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x800)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r6, 0xc0189372, &(0x7f0000000800)={{0x1, 0x1, 0x18, r3, {0x7}}, './file0\x00'})
r8 = openat2(r3, &(0x7f0000000840)='./file1\x00', &(0x7f0000000880)={0x81040, 0x100}, 0x18)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r8, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x1c, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x454}, 0x4001)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r8, 0xc0189374, &(0x7f00000009c0)={{0x1, 0x1, 0x18, <r9=>r0, {0x9}}, './file1\x00'})
sendmsg$NL80211_CMD_GET_MPATH(r9, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x28, r2, 0x20, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}]}, 0x28}}, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f0000000b00), 0x4)
mmap(&(0x7f0000ff8000/0x5000)=nil, 0x5000, 0x2000005, 0x1010, r0, 0x471a9000)

[   75.290654] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   75.292743] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   75.294188] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   75.295767] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   75.296864] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   75.298140] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   75.301116] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   75.303011] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   75.304436] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   75.305917] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   75.308555] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   75.309959] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   75.314619] Bluetooth: hci1: HCI_REQ-0x0c1a
[   75.314901] Bluetooth: hci0: HCI_REQ-0x0c1a
[   75.334728] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   75.350297] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   75.352205] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   75.353657] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   75.354812] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   75.356552] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   75.358989] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   75.360753] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   75.370544] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   75.371903] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   75.373992] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   75.375413] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   75.382297] Bluetooth: hci3: HCI_REQ-0x0c1a
[   75.387328] Bluetooth: hci6: HCI_REQ-0x0c1a
[   75.428007] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   75.429561] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   75.430937] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   75.434497] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   75.435543] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   75.436541] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   75.437791] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   75.438888] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   75.440072] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   75.445863] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   75.446951] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   75.447900] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   75.449051] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   75.453003] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   75.453959] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   75.455098] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   75.456197] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   75.457853] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   75.458841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   75.459879] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   75.461014] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   75.471541] Bluetooth: hci4: HCI_REQ-0x0c1a
[   75.472816] Bluetooth: hci2: HCI_REQ-0x0c1a
[   75.473952] Bluetooth: hci5: HCI_REQ-0x0c1a
[   75.510322] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   75.512592] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   75.513888] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   75.518202] Bluetooth: hci7: HCI_REQ-0x0c1a
[   77.367497] Bluetooth: hci1: command 0x0409 tx timeout
[   77.367514] Bluetooth: hci0: command 0x0409 tx timeout
[   77.432287] Bluetooth: hci6: command 0x0409 tx timeout
[   77.432958] Bluetooth: hci3: command 0x0409 tx timeout
[   77.495788] Bluetooth: hci5: command 0x0409 tx timeout
[   77.496360] Bluetooth: hci4: command 0x0409 tx timeout
[   77.496847] Bluetooth: hci2: command 0x0409 tx timeout
[   77.560314] Bluetooth: hci7: command 0x0409 tx timeout
[   79.415404] Bluetooth: hci0: command 0x041b tx timeout
[   79.416738] Bluetooth: hci1: command 0x041b tx timeout
[   79.479477] Bluetooth: hci3: command 0x041b tx timeout
[   79.480342] Bluetooth: hci6: command 0x041b tx timeout
[   79.543395] Bluetooth: hci2: command 0x041b tx timeout
[   79.544191] Bluetooth: hci4: command 0x041b tx timeout
[   79.544972] Bluetooth: hci5: command 0x041b tx timeout
[   79.607291] Bluetooth: hci7: command 0x041b tx timeout
[   81.463307] Bluetooth: hci1: command 0x040f tx timeout
[   81.463803] Bluetooth: hci0: command 0x040f tx timeout
[   81.527367] Bluetooth: hci6: command 0x040f tx timeout
[   81.527859] Bluetooth: hci3: command 0x040f tx timeout
[   81.591335] Bluetooth: hci5: command 0x040f tx timeout
[   81.591833] Bluetooth: hci4: command 0x040f tx timeout
[   81.592287] Bluetooth: hci2: command 0x040f tx timeout
[   81.655281] Bluetooth: hci7: command 0x040f tx timeout
[   83.511342] Bluetooth: hci0: command 0x0419 tx timeout
[   83.511829] Bluetooth: hci1: command 0x0419 tx timeout
[   83.575415] Bluetooth: hci3: command 0x0419 tx timeout
[   83.575909] Bluetooth: hci6: command 0x0419 tx timeout
[   83.639589] Bluetooth: hci2: command 0x0419 tx timeout
[   83.640075] Bluetooth: hci4: command 0x0419 tx timeout
[   83.640506] Bluetooth: hci5: command 0x0419 tx timeout
[   83.703359] Bluetooth: hci7: command 0x0419 tx timeout
[  128.518164] audit: type=1400 audit(1664739828.990:7): avc:  denied  { map } for  pid=3820 comm="syz-executor.7" path="pipe:[13664]" dev="pipefs" ino=13664 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1
[  128.522996] audit: type=1400 audit(1664739828.990:8): avc:  denied  { execute } for  pid=3820 comm="syz-executor.7" path="pipe:[13664]" dev="pipefs" ino=13664 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1
19:43:49 executing program 7:
syz_io_uring_setup(0x460c, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
syz_io_uring_setup(0x266e, &(0x7f0000000000)={0x0, 0x53d8, 0x20, 0x1, 0x3b0}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000180)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x4007, @fd_index=0x6, 0x7c2, 0x0, 0x0, 0x8, 0x0, {0x2}}, 0x0)
remap_file_pages(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x0, 0xc1, 0x0)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000001c0), 0x2000, 0x0)
syz_io_uring_setup(0x6e90, &(0x7f0000000200)={0x0, 0x871, 0x10, 0x1, 0x302, 0x0, r1}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000280), &(0x7f00000002c0))

[  128.729551] mmap: syz-executor.7 (3839) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
19:43:49 executing program 7:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r1=>r0, {0x4}}, './file0\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x25, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x450202}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x20, r3, 0x1, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x1, 0x5}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4000000}, 0x6000854)

[  128.909180] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.7'.
[  128.917475] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.7'.
19:43:49 executing program 7:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000340)={0x2, 0x4, 0x1, 0x8000, 0x5, [{0x7fff, 0xffff, 0x7f, '\x00', 0x800}, {0x1, 0xee16, 0x86, '\x00', 0x48a}, {0x8, 0x9, 0x9, '\x00', 0x3000}, {0x3, 0x10000, 0x7, '\x00', 0x3080}, {0x9, 0x8, 0x10000, '\x00', 0x3105}]})
sendmsg$nl_xfrm(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000240e0100000000000000000000000000060096fb3b040083000000"], 0x1c}}, 0x0)
io_submit(0x0, 0x2, &(0x7f0000000480)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x3, 0x8, 0xffffffffffffffff, &(0x7f0000000000)="aee60b9d3a16bf3a0d8f84f70adfb0d08dabbd09704165008be1315c6ce97074b640dda589f635ce9b68e9fb11261eb08eebe7583173caf4f348a65a57f974619ac98150491b3f637856cc6ba82696ed7f5e64b960518203f82de637e0a3d943372f48f716ae5f47a0d23a", 0x6b, 0x0, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x3, r0, &(0x7f0000000240)="35883ddb17a16d0a79de2b26aa8d9dea022651", 0x13, 0x7f}])
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000080)={@loopback}, &(0x7f00000001c0)=0x14)
fcntl$getown(0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'rose0\x00'})
fallocate(r2, 0x3f, 0x2, 0x2)

[  129.010304] audit: type=1400 audit(1664739829.482:9): avc:  denied  { open } for  pid=3858 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  129.012072] audit: type=1400 audit(1664739829.483:10): avc:  denied  { kernel } for  pid=3858 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  129.026231] ------------[ cut here ]------------
[  129.026258] 
[  129.026262] ======================================================
[  129.026265] WARNING: possible circular locking dependency detected
[  129.026270] 6.0.0-rc7-next-20220930 #1 Not tainted
[  129.026276] ------------------------------------------------------
[  129.026279] syz-executor.7/3859 is trying to acquire lock:
[  129.026286] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  129.026325] 
[  129.026325] but task is already holding lock:
[  129.026328] ffff88800a01b420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  129.026355] 
[  129.026355] which lock already depends on the new lock.
[  129.026355] 
[  129.026358] 
[  129.026358] the existing dependency chain (in reverse order) is:
[  129.026361] 
[  129.026361] -> #3 (&ctx->lock){....}-{2:2}:
[  129.026375]        _raw_spin_lock+0x2a/0x40
[  129.026387]        __perf_event_task_sched_out+0x53b/0x18d0
[  129.026398]        __schedule+0xedd/0x2470
[  129.026412]        schedule+0xda/0x1b0
[  129.026425]        exit_to_user_mode_prepare+0x114/0x1a0
[  129.026437]        syscall_exit_to_user_mode+0x19/0x40
[  129.026451]        do_syscall_64+0x48/0x90
[  129.026468]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  129.026481] 
[  129.026481] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  129.026494]        _raw_spin_lock_nested+0x30/0x40
[  129.026505]        raw_spin_rq_lock_nested+0x1e/0x30
[  129.026519]        task_fork_fair+0x63/0x4d0
[  129.026535]        sched_cgroup_fork+0x3d0/0x540
[  129.026549]        copy_process+0x4183/0x6e20
[  129.026560]        kernel_clone+0xe7/0x890
[  129.026570]        user_mode_thread+0xad/0xf0
[  129.026580]        rest_init+0x24/0x250
[  129.026592]        arch_call_rest_init+0xf/0x14
[  129.026610]        start_kernel+0x4c6/0x4eb
[  129.026626]        secondary_startup_64_no_verify+0xe0/0xeb
[  129.026640] 
[  129.026640] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  129.026653]        _raw_spin_lock_irqsave+0x39/0x60
[  129.026664]        try_to_wake_up+0xab/0x1930
[  129.026677]        up+0x75/0xb0
[  129.026691]        __up_console_sem+0x6e/0x80
[  129.026707]        console_unlock+0x46a/0x590
[  129.026723]        vt_ioctl+0x2822/0x2ca0
[  129.026735]        tty_ioctl+0x785/0x16b0
[  129.026746]        __x64_sys_ioctl+0x19a/0x210
[  129.026760]        do_syscall_64+0x3b/0x90
[  129.026777]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  129.026789] 
[  129.026789] -> #0 ((console_sem).lock){....}-{2:2}:
[  129.026803]        __lock_acquire+0x2a02/0x5e70
[  129.026820]        lock_acquire+0x1a2/0x530
[  129.026836]        _raw_spin_lock_irqsave+0x39/0x60
[  129.026846]        down_trylock+0xe/0x70
[  129.026861]        __down_trylock_console_sem+0x3b/0xd0
[  129.026876]        vprintk_emit+0x16b/0x560
[  129.026892]        vprintk+0x84/0xa0
[  129.026908]        _printk+0xba/0xf1
[  129.026919]        report_bug.cold+0x72/0xab
[  129.026935]        handle_bug+0x3c/0x70
[  129.026951]        exc_invalid_op+0x14/0x50
[  129.026968]        asm_exc_invalid_op+0x16/0x20
[  129.026980]        group_sched_out.part.0+0x2c7/0x460
[  129.026998]        ctx_sched_out+0x8f1/0xc10
[  129.027014]        __perf_event_task_sched_out+0x6d0/0x18d0
[  129.027025]        __schedule+0xedd/0x2470
[  129.027039]        schedule+0xda/0x1b0
[  129.027051]        exit_to_user_mode_prepare+0x114/0x1a0
[  129.027062]        syscall_exit_to_user_mode+0x19/0x40
[  129.027074]        do_syscall_64+0x48/0x90
[  129.027091]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  129.027103] 
[  129.027103] other info that might help us debug this:
[  129.027103] 
[  129.027106] Chain exists of:
[  129.027106]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  129.027106] 
[  129.027120]  Possible unsafe locking scenario:
[  129.027120] 
[  129.027123]        CPU0                    CPU1
[  129.027125]        ----                    ----
[  129.027127]   lock(&ctx->lock);
[  129.027133]                                lock(&rq->__lock);
[  129.027140]                                lock(&ctx->lock);
[  129.027146]   lock((console_sem).lock);
[  129.027151] 
[  129.027151]  *** DEADLOCK ***
[  129.027151] 
[  129.027153] 2 locks held by syz-executor.7/3859:
[  129.027160]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  129.027189]  #1: ffff88800a01b420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  129.027215] 
[  129.027215] stack backtrace:
[  129.027218] CPU: 0 PID: 3859 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1
[  129.027230] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  129.027238] Call Trace:
[  129.027242]  <TASK>
[  129.027246]  dump_stack_lvl+0x8b/0xb3
[  129.027264]  check_noncircular+0x263/0x2e0
[  129.027281]  ? format_decode+0x26c/0xb50
[  129.027297]  ? print_circular_bug+0x450/0x450
[  129.027314]  ? simple_strtoul+0x30/0x30
[  129.027330]  ? format_decode+0x26c/0xb50
[  129.027347]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  129.027364]  __lock_acquire+0x2a02/0x5e70
[  129.027385]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  129.027407]  lock_acquire+0x1a2/0x530
[  129.027424]  ? down_trylock+0xe/0x70
[  129.027441]  ? lock_release+0x750/0x750
[  129.027461]  ? vprintk+0x84/0xa0
[  129.027478]  _raw_spin_lock_irqsave+0x39/0x60
[  129.027490]  ? down_trylock+0xe/0x70
[  129.027505]  down_trylock+0xe/0x70
[  129.027521]  ? vprintk+0x84/0xa0
[  129.027538]  __down_trylock_console_sem+0x3b/0xd0
[  129.027555]  vprintk_emit+0x16b/0x560
[  129.027573]  vprintk+0x84/0xa0
[  129.027590]  _printk+0xba/0xf1
[  129.027602]  ? record_print_text.cold+0x16/0x16
[  129.027617]  ? report_bug.cold+0x66/0xab
[  129.027635]  ? group_sched_out.part.0+0x2c7/0x460
[  129.027653]  report_bug.cold+0x72/0xab
[  129.027672]  handle_bug+0x3c/0x70
[  129.027689]  exc_invalid_op+0x14/0x50
[  129.027707]  asm_exc_invalid_op+0x16/0x20
[  129.027719] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  129.027740] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  129.027751] RSP: 0018:ffff88801b417c48 EFLAGS: 00010006
[  129.027760] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  129.027767] RDX: ffff888017443580 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  129.027775] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  129.027782] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800a01b400
[  129.027790] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  129.027801]  ? group_sched_out.part.0+0x2c7/0x460
[  129.027820]  ? group_sched_out.part.0+0x2c7/0x460
[  129.027840]  ctx_sched_out+0x8f1/0xc10
[  129.027859]  __perf_event_task_sched_out+0x6d0/0x18d0
[  129.027873]  ? lock_is_held_type+0xd7/0x130
[  129.027887]  ? __perf_cgroup_move+0x160/0x160
[  129.027898]  ? set_next_entity+0x304/0x550
[  129.027915]  ? update_curr+0x267/0x740
[  129.027933]  ? lock_is_held_type+0xd7/0x130
[  129.027947]  __schedule+0xedd/0x2470
[  129.027964]  ? io_schedule_timeout+0x150/0x150
[  129.027980]  ? rcu_read_lock_sched_held+0x3e/0x80
[  129.028001]  schedule+0xda/0x1b0
[  129.028016]  exit_to_user_mode_prepare+0x114/0x1a0
[  129.028028]  syscall_exit_to_user_mode+0x19/0x40
[  129.028041]  do_syscall_64+0x48/0x90
[  129.028059]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  129.028072] RIP: 0033:0x7f0b07f38b19
[  129.028080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  129.028091] RSP: 002b:00007f0b054ae218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  129.028101] RAX: 0000000000000001 RBX: 00007f0b0804bf68 RCX: 00007f0b07f38b19
[  129.028108] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0b0804bf6c
[  129.028115] RBP: 00007f0b0804bf60 R08: 000000000000000e R09: 0000000000000000
[  129.028122] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f0b0804bf6c
[  129.028129] R13: 00007fffe9066d2f R14: 00007f0b054ae300 R15: 0000000000022000
[  129.028142]  </TASK>
[  129.083262] WARNING: CPU: 0 PID: 3859 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  129.083934] Modules linked in:
[  129.084173] CPU: 0 PID: 3859 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1
[  129.084755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  129.085569] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  129.085985] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  129.087320] RSP: 0018:ffff88801b417c48 EFLAGS: 00010006
[  129.087710] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  129.088248] RDX: ffff888017443580 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  129.088786] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  129.089304] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800a01b400
[  129.089832] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  129.090355] FS:  00007f0b054ae700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  129.090952] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  129.091384] CR2: 000055b46a36d080 CR3: 000000001d458000 CR4: 0000000000350ef0
[  129.091906] Call Trace:
[  129.092094]  <TASK>
[  129.092265]  ctx_sched_out+0x8f1/0xc10
[  129.092565]  __perf_event_task_sched_out+0x6d0/0x18d0
[  129.092950]  ? lock_is_held_type+0xd7/0x130
[  129.093282]  ? __perf_cgroup_move+0x160/0x160
[  129.093615]  ? set_next_entity+0x304/0x550
[  129.093934]  ? update_curr+0x267/0x740
[  129.094231]  ? lock_is_held_type+0xd7/0x130
[  129.094559]  __schedule+0xedd/0x2470
[  129.094850]  ? io_schedule_timeout+0x150/0x150
[  129.095207]  ? rcu_read_lock_sched_held+0x3e/0x80
[  129.095576]  schedule+0xda/0x1b0
[  129.095837]  exit_to_user_mode_prepare+0x114/0x1a0
[  129.096202]  syscall_exit_to_user_mode+0x19/0x40
[  129.096573]  do_syscall_64+0x48/0x90
[  129.096861]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  129.097254] RIP: 0033:0x7f0b07f38b19
[  129.097533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  129.098872] RSP: 002b:00007f0b054ae218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  129.099437] RAX: 0000000000000001 RBX: 00007f0b0804bf68 RCX: 00007f0b07f38b19
[  129.099965] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f0b0804bf6c
[  129.100489] RBP: 00007f0b0804bf60 R08: 000000000000000e R09: 0000000000000000
[  129.101006] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f0b0804bf6c
[  129.101537] R13: 00007fffe9066d2f R14: 00007f0b054ae300 R15: 0000000000022000
[  129.102067]  </TASK>
[  129.102242] irq event stamp: 614
[  129.102487] hardirqs last  enabled at (613): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  129.103170] hardirqs last disabled at (614): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  129.103772] softirqs last  enabled at (380): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  129.104390] softirqs last disabled at (375): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  129.105030] ---[ end trace 0000000000000000 ]---
[  129.295634] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=3620 sclass=netlink_xfrm_socket pid=3859 comm=syz-executor.7
[  129.352288] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=3620 sclass=netlink_xfrm_socket pid=3885 comm=syz-executor.7
[  129.556141] audit: type=1400 audit(1664739830.028:11): avc:  denied  { create } for  pid=3901 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1

VM DIAGNOSIS:
19:43:49  Registers:
info registers vcpu 0
RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801b417690
R8 =0000000000000001 R9 =000000000000000a R10=000000000000006b R11=0000000000000001
R12=000000000000006b R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f0b054ae700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055b46a36d080 CR3=000000001d458000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f0b0801f7c0 00007f0b0801f7c8
YMM02=0000000000000000 0000000000000000 00007f0b0801f7e0 00007f0b0801f7c0
YMM03=0000000000000000 0000000000000000 00007f0b0801f7c8 00007f0b0801f7c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff84274587 RDX=ffffed100d9c6fd1
RSI=0000000000000004 RDI=ffff88806ce37e80 RBP=ffff88806ce37e80 RSP=ffff888031effa98
R8 =0000000000000000 R9 =ffff88806ce37e83 R10=ffffed100d9c6fd0 R11=0000000000000001
R12=0000000000000003 R13=ffffed100d9c6fd0 R14=0000000000000001 R15=1ffff110063dff54
RIP=ffffffff84274604 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555556885400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f977ab66d30 CR3=0000000017d5c000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000