
Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:18045' (ECDSA) to the list of known hosts.
2022/10/02 20:19:16 fuzzer started
2022/10/02 20:19:16 dialing manager at localhost:35095
syzkaller login: [   36.985071] cgroup: Unknown subsys name 'net'
[   37.070082] cgroup: Unknown subsys name 'rlimit'
2022/10/02 20:19:31 syscalls: 2215
2022/10/02 20:19:31 code coverage: enabled
2022/10/02 20:19:31 comparison tracing: enabled
2022/10/02 20:19:31 extra coverage: enabled
2022/10/02 20:19:31 setuid sandbox: enabled
2022/10/02 20:19:31 namespace sandbox: enabled
2022/10/02 20:19:31 Android sandbox: enabled
2022/10/02 20:19:31 fault injection: enabled
2022/10/02 20:19:31 leak checking: enabled
2022/10/02 20:19:31 net packet injection: enabled
2022/10/02 20:19:31 net device setup: enabled
2022/10/02 20:19:31 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/02 20:19:31 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/02 20:19:31 USB emulation: enabled
2022/10/02 20:19:31 hci packet injection: enabled
2022/10/02 20:19:31 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/02 20:19:31 802.15.4 emulation: enabled
2022/10/02 20:19:31 fetching corpus: 50, signal 22480/24330 (executing program)
2022/10/02 20:19:31 fetching corpus: 100, signal 31634/35206 (executing program)
2022/10/02 20:19:31 fetching corpus: 150, signal 43348/48446 (executing program)
2022/10/02 20:19:31 fetching corpus: 200, signal 50590/57214 (executing program)
2022/10/02 20:19:31 fetching corpus: 250, signal 53611/61794 (executing program)
2022/10/02 20:19:31 fetching corpus: 300, signal 57925/67522 (executing program)
2022/10/02 20:19:31 fetching corpus: 350, signal 62569/73545 (executing program)
2022/10/02 20:19:32 fetching corpus: 400, signal 65624/77997 (executing program)
2022/10/02 20:19:32 fetching corpus: 450, signal 71550/85097 (executing program)
2022/10/02 20:19:32 fetching corpus: 500, signal 75533/90228 (executing program)
2022/10/02 20:19:32 fetching corpus: 550, signal 80488/96293 (executing program)
2022/10/02 20:19:32 fetching corpus: 600, signal 84238/101176 (executing program)
2022/10/02 20:19:32 fetching corpus: 650, signal 90437/108238 (executing program)
2022/10/02 20:19:32 fetching corpus: 700, signal 93070/111994 (executing program)
2022/10/02 20:19:32 fetching corpus: 750, signal 94673/114818 (executing program)
2022/10/02 20:19:33 fetching corpus: 800, signal 96409/117716 (executing program)
2022/10/02 20:19:33 fetching corpus: 850, signal 98099/120572 (executing program)
2022/10/02 20:19:33 fetching corpus: 900, signal 101469/124821 (executing program)
2022/10/02 20:19:33 fetching corpus: 950, signal 103689/127993 (executing program)
2022/10/02 20:19:33 fetching corpus: 1000, signal 105401/130762 (executing program)
2022/10/02 20:19:33 fetching corpus: 1050, signal 107659/133929 (executing program)
2022/10/02 20:19:33 fetching corpus: 1100, signal 109848/137060 (executing program)
2022/10/02 20:19:33 fetching corpus: 1150, signal 111079/139271 (executing program)
2022/10/02 20:19:33 fetching corpus: 1200, signal 112649/141796 (executing program)
2022/10/02 20:19:34 fetching corpus: 1250, signal 114227/144335 (executing program)
2022/10/02 20:19:34 fetching corpus: 1300, signal 117412/148121 (executing program)
2022/10/02 20:19:34 fetching corpus: 1350, signal 118405/150114 (executing program)
2022/10/02 20:19:34 fetching corpus: 1400, signal 120934/153342 (executing program)
2022/10/02 20:19:34 fetching corpus: 1450, signal 123343/156457 (executing program)
2022/10/02 20:19:34 fetching corpus: 1500, signal 124926/158857 (executing program)
2022/10/02 20:19:34 fetching corpus: 1550, signal 126150/160944 (executing program)
2022/10/02 20:19:34 fetching corpus: 1600, signal 126809/162592 (executing program)
2022/10/02 20:19:34 fetching corpus: 1650, signal 128044/164693 (executing program)
2022/10/02 20:19:35 fetching corpus: 1700, signal 129526/166877 (executing program)
2022/10/02 20:19:35 fetching corpus: 1750, signal 131187/169280 (executing program)
2022/10/02 20:19:35 fetching corpus: 1800, signal 134608/172948 (executing program)
2022/10/02 20:19:35 fetching corpus: 1850, signal 136132/175121 (executing program)
2022/10/02 20:19:35 fetching corpus: 1900, signal 137404/177114 (executing program)
2022/10/02 20:19:35 fetching corpus: 1950, signal 139270/179507 (executing program)
2022/10/02 20:19:35 fetching corpus: 2000, signal 140215/181224 (executing program)
2022/10/02 20:19:36 fetching corpus: 2050, signal 141336/183006 (executing program)
2022/10/02 20:19:36 fetching corpus: 2100, signal 142059/184538 (executing program)
2022/10/02 20:19:36 fetching corpus: 2150, signal 142928/186170 (executing program)
2022/10/02 20:19:36 fetching corpus: 2200, signal 144014/187988 (executing program)
2022/10/02 20:19:36 fetching corpus: 2250, signal 144867/189584 (executing program)
2022/10/02 20:19:36 fetching corpus: 2300, signal 145938/191378 (executing program)
2022/10/02 20:19:36 fetching corpus: 2350, signal 146672/192901 (executing program)
2022/10/02 20:19:36 fetching corpus: 2400, signal 147534/194469 (executing program)
2022/10/02 20:19:36 fetching corpus: 2450, signal 148882/196306 (executing program)
2022/10/02 20:19:37 fetching corpus: 2500, signal 149885/197880 (executing program)
2022/10/02 20:19:37 fetching corpus: 2550, signal 151067/199595 (executing program)
2022/10/02 20:19:37 fetching corpus: 2600, signal 152720/201620 (executing program)
2022/10/02 20:19:37 fetching corpus: 2650, signal 153748/203187 (executing program)
2022/10/02 20:19:37 fetching corpus: 2700, signal 154987/204838 (executing program)
2022/10/02 20:19:37 fetching corpus: 2750, signal 156383/206626 (executing program)
2022/10/02 20:19:37 fetching corpus: 2800, signal 157016/207960 (executing program)
2022/10/02 20:19:37 fetching corpus: 2850, signal 158415/209663 (executing program)
2022/10/02 20:19:38 fetching corpus: 2900, signal 159792/211428 (executing program)
2022/10/02 20:19:38 fetching corpus: 2950, signal 160875/212976 (executing program)
2022/10/02 20:19:38 fetching corpus: 3000, signal 162534/214842 (executing program)
2022/10/02 20:19:38 fetching corpus: 3050, signal 163599/216331 (executing program)
2022/10/02 20:19:38 fetching corpus: 3100, signal 164184/217589 (executing program)
2022/10/02 20:19:38 fetching corpus: 3150, signal 165192/218982 (executing program)
2022/10/02 20:19:38 fetching corpus: 3200, signal 166736/220638 (executing program)
2022/10/02 20:19:38 fetching corpus: 3250, signal 168111/222293 (executing program)
2022/10/02 20:19:39 fetching corpus: 3300, signal 168655/223435 (executing program)
2022/10/02 20:19:39 fetching corpus: 3350, signal 169507/224738 (executing program)
2022/10/02 20:19:39 fetching corpus: 3400, signal 170639/226194 (executing program)
2022/10/02 20:19:39 fetching corpus: 3450, signal 171728/227630 (executing program)
2022/10/02 20:19:39 fetching corpus: 3500, signal 172606/228906 (executing program)
2022/10/02 20:19:39 fetching corpus: 3550, signal 173202/229995 (executing program)
2022/10/02 20:19:39 fetching corpus: 3600, signal 174497/231462 (executing program)
2022/10/02 20:19:39 fetching corpus: 3650, signal 175145/232535 (executing program)
2022/10/02 20:19:40 fetching corpus: 3700, signal 176195/233817 (executing program)
2022/10/02 20:19:40 fetching corpus: 3750, signal 176866/234916 (executing program)
2022/10/02 20:19:40 fetching corpus: 3800, signal 177376/235911 (executing program)
2022/10/02 20:19:40 fetching corpus: 3850, signal 178243/237086 (executing program)
2022/10/02 20:19:40 fetching corpus: 3900, signal 178960/238169 (executing program)
2022/10/02 20:19:40 fetching corpus: 3950, signal 179982/239337 (executing program)
2022/10/02 20:19:40 fetching corpus: 4000, signal 180563/240282 (executing program)
2022/10/02 20:19:40 fetching corpus: 4050, signal 181837/241585 (executing program)
2022/10/02 20:19:41 fetching corpus: 4100, signal 183389/242936 (executing program)
2022/10/02 20:19:41 fetching corpus: 4150, signal 183841/243874 (executing program)
2022/10/02 20:19:41 fetching corpus: 4200, signal 184496/244857 (executing program)
2022/10/02 20:19:41 fetching corpus: 4250, signal 185016/245723 (executing program)
2022/10/02 20:19:41 fetching corpus: 4300, signal 185619/246705 (executing program)
2022/10/02 20:19:41 fetching corpus: 4350, signal 186328/247719 (executing program)
2022/10/02 20:19:41 fetching corpus: 4400, signal 186896/248599 (executing program)
2022/10/02 20:19:41 fetching corpus: 4450, signal 187777/249707 (executing program)
2022/10/02 20:19:41 fetching corpus: 4500, signal 188693/250745 (executing program)
2022/10/02 20:19:42 fetching corpus: 4550, signal 189376/251656 (executing program)
2022/10/02 20:19:42 fetching corpus: 4600, signal 189799/252481 (executing program)
2022/10/02 20:19:42 fetching corpus: 4650, signal 190319/253371 (executing program)
2022/10/02 20:19:42 fetching corpus: 4700, signal 191164/254344 (executing program)
2022/10/02 20:19:42 fetching corpus: 4750, signal 191723/255215 (executing program)
2022/10/02 20:19:42 fetching corpus: 4800, signal 192297/256081 (executing program)
2022/10/02 20:19:42 fetching corpus: 4850, signal 192919/256897 (executing program)
2022/10/02 20:19:42 fetching corpus: 4900, signal 193684/257840 (executing program)
2022/10/02 20:19:42 fetching corpus: 4950, signal 194331/258693 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/259515 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/260152 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/260792 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/261425 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/262085 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/262704 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/263361 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/264006 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/264656 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/265309 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/265960 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/266579 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/267238 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/267905 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/268532 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/269155 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/269787 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/270410 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/271060 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/271711 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/272374 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/273033 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/273684 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/274348 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/275020 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/275651 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/276290 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/276982 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/277607 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/278253 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/278890 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/279562 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/280182 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/280842 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/281503 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/282134 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/282761 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/283407 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/284042 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/284706 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/285337 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/285990 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/286426 (executing program)
2022/10/02 20:19:43 fetching corpus: 4997, signal 194783/286426 (executing program)
2022/10/02 20:19:46 starting 8 fuzzer processes
20:19:46 executing program 0:
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r1, 0x10, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x14}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xf0}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x21c}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1e0}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x14}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4004094)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r2, 0x8e6c98203a17770c, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_P2P_OPPPS={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x880}, 0x40)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r3)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r4, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x14, r5, 0x20, 0x70bd2d, 0x25dfdbff, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4000)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, &(0x7f0000000640)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000600)={&(0x7f0000000440)={0x184, 0x0, 0x2, 0x70bd2b, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1000}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x2}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfffffff7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xad9}}]}, 0x184}, 0x1, 0x0, 0x0, 0xc0}, 0x48000)
readv(r4, &(0x7f00000008c0)=[{&(0x7f0000000680)=""/242, 0xf2}, {&(0x7f0000000780)=""/56, 0x38}, {&(0x7f00000007c0)=""/198, 0xc6}], 0x3)
r6 = eventfd2(0x5, 0x1)
ioctl$F2FS_IOC_DEFRAGMENT(r6, 0xc010f508, &(0x7f0000000900)={0x3ff, 0x4})
r7 = getpgid(0x0)
sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000b00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000980)={0x11c, 0x0, 0x4, 0x70bd2d, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x4}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8, 0x8a, r4}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20008804)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000b40)=<r8=>0x0)
syz_open_procfs(r8, &(0x7f0000000b80)='mountinfo\x00')
sendmsg$NL80211_CMD_FLUSH_PMKSA(r3, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x20, r1, 0x300, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x6, 0x3f}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x20000840)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000d80)={'syztnl0\x00', &(0x7f0000000d00)={'ip6gre0\x00', <r9=>0x0, 0x2f, 0x54, 0x9, 0x397, 0x7b, @loopback, @empty, 0x7800, 0x700, 0x7f, 0x1}})
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r3, &(0x7f0000000fc0)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000e40)={0x10c, 0x0, 0x4, 0x70bd2d, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}]}, @MPTCP_PM_ATTR_ADDR={0x58, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @loopback}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r9}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}]}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @remote}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}]}, @MPTCP_PM_ATTR_ADDR={0xc, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x4}]}]}, 0x10c}}, 0x51)

20:19:46 executing program 1:
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000000)=0xff)
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f0000000040)=0xffffffc1)
ioctl$TIOCGPKT(0xffffffffffffffff, 0x80045438, &(0x7f0000000080))
ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f00000000c0)=0x9)
r0 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f0000000100), 0x40000)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x5)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0xffffffffffffffe1)
clock_gettime(0x0, &(0x7f0000000200)={<r2=>0x0, <r3=>0x0})
mq_timedsend(r1, &(0x7f0000000180)="8d0644e62b02eef3abce27ef7739f1b9bd1ba6bde7eb03552dc99b59eaf42113f05fc180c13276cf4f82977481cae1a902be5d2b391dc1eecb5a99bdd2032807ff4057f107d3106149f7de811a0608b016851e97262ac109a737105bab2faec5c0f08d0a7fb71768ed17fb25cac4dde784e2ae", 0x73, 0x400, &(0x7f0000000240)={r2, r3+60000000})
r4 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r5=>r4}, './file1\x00'})
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x1d7, 0x2, &(0x7f0000000440)=[{&(0x7f0000000340)="cca9f8b0cc3615e61b23dd9f0f146cca2050d83a3c0656be4513e46ca20e075c86d203287445175074ffabd52e3cec32730e7c9eec93d7e8a22153576a517dd731c0274f24e411", 0x47}, {&(0x7f00000003c0)="12a6114323b0e24ba56ddc42a4014c3b77bbe47ba66f801d740e0ce5cba6fb1236e1a87f6e4c3547114025325da37368e2edbd92afefbfa5c11ea466a08203afbf", 0x41, 0xef}], 0x800080, &(0x7f0000000480)={[{@utf8}, {@shortname_mixed}, {@uni_xlate}], [{@fsname}, {@fowner_gt}, {@uid_eq}]})
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/zoneinfo\x00', 0x0, 0x0)
r7 = dup(r1)
ioctl$GIO_FONT(r7, 0x4b60, &(0x7f0000000540)=""/115)
ioctl$sock_FIOGETOWN(r6, 0x8903, &(0x7f0000000640)=<r8=>0x0)
perf_event_open(&(0x7f00000005c0)={0x0, 0x80, 0x7, 0x6, 0x3, 0x7f, 0x0, 0x86e7, 0x90280, 0x4, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7113d03, 0x0, @perf_config_ext={0x6, 0x401}, 0x8, 0x4, 0x8, 0x9, 0xa6c, 0x101, 0x31a, 0x0, 0x20, 0x0, 0x3}, r8, 0xf, r5, 0x1)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000680)={{0x1, 0x1, 0x18, <r9=>r1, {0x1ff}}, './file1\x00'})
ioctl$BTRFS_IOC_SCRUB(r9, 0xc400941b, &(0x7f00000006c0)={0x0, 0x400, 0x1})

20:19:46 executing program 2:
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x3, 0x0)
r1 = fsmount(r0, 0x0, 0x70)
r2 = accept4$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000080)=0x1c, 0x800)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r2, 0x8040942d, &(0x7f00000000c0))
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r3=>r2, {0x8}}, './file0\x00'})
ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, &(0x7f0000000140)={{0x4, 0x7}, 0x100, './file0\x00'})
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/module/rfkill', 0x121000, 0x80)
r5 = openat(r4, &(0x7f00000002c0)='./file1\x00', 0x4a1043, 0x47)
r6 = accept4(0xffffffffffffffff, &(0x7f0000000300)=@alg, &(0x7f0000000380)=0x80, 0x800)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000400)={0x6, 0x0, &(0x7f00000003c0)=[r1, r6]}, 0x2)
r7 = accept4$unix(r4, &(0x7f0000000440), &(0x7f00000004c0)=0x6e, 0x0)
recvmsg$unix(r7, &(0x7f0000001640)={&(0x7f0000000500)=@abs, 0x6e, &(0x7f0000001600)=[{&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)}, {&(0x7f00000015c0)=""/23, 0x17}], 0x3}, 0x143)
open_by_handle_at(r7, &(0x7f0000001680)=@orangefs_parent={0x28, 0x2, {{"206c35d4e9045a105f4eefd5e40ecd63", 0xffffffff}, {"7f8752ca4d7ac5ca80ff7b8093898600", 0x5}}}, 0x2)
ioctl$BTRFS_IOC_DEV_INFO(r5, 0xd000941e, &(0x7f00000016c0)={0x0, "ceb0240f176930868e35dcf9b1b740bb"})
ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611)
socket(0x23, 0x4, 0x2)
setxattr$incfs_metadata(&(0x7f00000026c0)='./file0\x00', &(0x7f0000002700), &(0x7f0000002740)="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", 0x1000, 0x3)
r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000003740)=@IORING_OP_CLOSE={0x13, 0x3, 0x0, r8, 0x0, 0x0, 0x0, 0x0, 0x1}, 0xf6)
sendto(0xffffffffffffffff, &(0x7f0000003900)="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", 0xfc, 0x4080084, &(0x7f0000003a00)=@qipcrtr={0x2a, 0x2, 0x2}, 0x80)

20:19:46 executing program 4:
r0 = syz_open_dev$hiddev(&(0x7f0000000000), 0x5f3a, 0x101881)
ftruncate(r0, 0x10001)
sendmsg$IPSET_CMD_PROTOCOL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x1, 0x6, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48000}, 0x20040800)
r1 = syz_open_dev$mouse(&(0x7f0000000140), 0x10040000000000, 0x1)
sendmsg$IPCTNL_MSG_EXP_GET(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, 0x1, 0x2, 0x201, 0x0, 0x0, {0x0, 0x0, 0x5}, [@CTA_EXPECT_FN={0x8, 0xb, 'sip\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x80)
r2 = open(&(0x7f0000000280)='./file0\x00', 0x44800, 0x84)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r1)
sendmsg$NL80211_CMD_SET_BEACON(r2, &(0x7f00000007c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000780)={&(0x7f0000000340)={0x41c, r3, 0x200, 0x70bd29, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1, 0x3c}}}}, [@NL80211_ATTR_BEACON_HEAD={0x265, 0xe, {@wo_ht={{0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x1}, {0x1}, @broadcast, @broadcast, @random="4d60bd739539", {0x8, 0xff}}, 0xfffffffffffffffc, @default, 0x0, @void, @val={0x1, 0x6, [{0x77}, {0x24, 0x1}, {0x24}, {0x7, 0x1}, {0x1b, 0x1}, {0x6, 0x1}]}, @void, @void, @val={0x6, 0x2, 0x8}, @void, @val={0x25, 0x3, {0x1, 0x9, 0x5}}, @void, @val={0x3c, 0x4, {0x0, 0x81, 0xb2, 0x3}}, @void, @void, @val={0x71, 0x7, {0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2, 0x1}}, @val={0x76, 0x6, {0x3, 0x7, 0x3b, 0x400}}, [{0xdd, 0x46, "4a67fba9972a3f9aee4f97898bdcc87ade0041fcd4f8bc84419bba0c15453c46811f50cf5958be959fe90ecbb2d283f50c4d53369ba67371185bc5396ade7a6b7e28a131a036"}, {0xdd, 0x64, "f55babd11cb23608408295925d2a78b6ef49dae53d16dbf4cc1ee8dc5bdd874ac278948f2ea400f39d6520f41d4fa5cf49adf1ca37a8d5aa75fe5740295c472e61d727b1746dd6b4518cec02dfe569273cdf7e78b597c1050083b2eb90c9930fbe7ca64a"}, {0xdd, 0x1a, "dcbbca0c0ae4a3036f492d59d87f496cc0d92672afe37835fc8b"}, {0xdd, 0x17, "d742380da440fa789f7713e43187ae8d21bdc6d750ba9f"}, {0xdd, 0xd5, "8a8e3090a398ee8d7d8b2cb7e7c6109580500937aa68f098c51143626a74db13b6cbaab7e5fa4ceda8ce357780107228e3715157a465b4f09832efb6673eedca651c12be9054a39c25bc0eec05ffee76fb70995b661a9ec1ba826e5b3bd2d8e41c2acaaa9a4780d885a1a079be3ec5775e7b9351edd2e4a4221056a14009289708349eeb842265aed8d93c8c9c751a8e7d6d3eb13526622e1456d5ae7efee3eaf5abb50c15d6e895d89c48882362d9ed3a7e81301f969e93e79344a75599494d5c3f14998eaf29972e32fef0427b7a3028b9fcec4a"}, {0xdd, 0x59, "b154d0393e78f22da964fc16633e9df43e7cb14df9d2525535719274fb3faa471f91844874fd534ca346a2fec810a3a348df754c4aeefc10bf02479126fdeb1d0a281dadc7d4c5bff51722827ef1a089c9ceb24d23dd86d8a1"}]}}, @NL80211_ATTR_IE_ASSOC_RESP={0xa, 0x80, [@peer_mgmt={0x75, 0x4, {0x0, 0x1, @void, @void, @void}}]}, @NL80211_ATTR_BEACON_TAIL={0x34, 0xf, [@ext_channel_switch={0x3c, 0x4, {0x1, 0xdf, 0x9, 0x3}}, @gcr_ga={0xbd, 0x6, @broadcast}, @channel_switch={0x25, 0x3, {0x1, 0x2, 0x2}}, @mic={0x8c, 0x10, {0x92b, "52537538c5ad", @short="00ca5eab30f8290b"}}, @mesh_id={0x72, 0x6}, @random={0x1, 0x1, 'X'}]}, @NL80211_ATTR_IE={0x151, 0x2a, [@gcr_ga={0xbd, 0x6, @broadcast}, @preq={0x82, 0x36, @ext={{0x0, 0x0, 0x1}, 0x7f, 0x1, 0x1195, @device_a, 0x0, @device_a, 0x2, 0x1, 0x2, [{{0x1}, @device_b, 0x347}, {{0x1}, @device_b, 0x6}]}}, @random_vendor={0xdd, 0xee, "74df2520767ea864a848632738dbb7901f7e7feedb1270e5fac5f22ab7ac78c82e3e457b5afe3b0c49a2f525fd0655bbd52dbe872d3083a9d2472e0c64b455ac7ab51c3a0264725e6b6128a9d08fa65bd180dbd744274b4b7abe2abe0d9c375d9c3b2a8904b1e6e28a7537789a1577b4b21c7c587591617d1959641e5a831061d1b706b78291ba339171d9ba9263032bc9eb637fffa36783683ee52e0bd46b3020c7c3e12402c964daa8bce5df22098f7fcdfb0a36f6cdd5f6b579fcb7efd1ea532d81c7ffe7e06be6f3ca55e3624accf7a1360d11e57b9eddc887ed5ce72cd66eba9c67b7dea7e001eafd38ef11"}, @dsss={0x3, 0x1, 0x8c}, @ssid={0x0, 0x12, @random="10e73d9e6b67106a1704c76750c403941341"}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x2, 0xb2}}]}]}, 0x41c}, 0x1, 0x0, 0x0, 0x200440d0}, 0x4005)
r4 = fspick(0xffffffffffffffff, &(0x7f0000000800)='./file0\x00', 0x0)
fsetxattr$security_ima(r4, &(0x7f0000000840), &(0x7f0000000880)=@v2={0x5, 0x0, 0x8, 0x9, 0xbd, "a97ba43ab0b13cc25a5520ee19da6643d49ae656056b2b4679fcf31993f65d2d496b1a25cca19b67bfb262a65376fe979b3dcc93f9f6408570d0e9209d23fe628430417bfa38e8cef64adc097b54f247407e0a41f0c293ff8ae4354f3799664a5f919a46638e38463f8ea90f2370e64d37d86f90ab9707d46de391975a3deac4006f6136e141abf7475d6166490eb3a1761c151d45bf4e6066f8f73fa99af032c9a39999a0bd291b5327ce55a58a8578f88095a4a1d1e78e0643fbb487"}, 0xc6, 0x1)
sync_file_range(r2, 0x3, 0x9, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000980)={{0x1, 0x1, 0x18, <r5=>r1, {0xfffffc01, 0x8}}, './file0\x00'})
getdents64(r5, &(0x7f00000009c0)=""/2, 0x2)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000a00), 0x105080, 0x0)
ioctl$TUNGETSNDBUF(r6, 0x800454d3, &(0x7f0000000a40))
r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000a80), 0x5a5001, 0x0)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r7, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x48885}, 0x20000010)
r8 = accept$unix(r1, 0x0, &(0x7f0000000bc0))
readahead(r8, 0x100000001, 0x9)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(0xffffffffffffffff, 0xf507, 0x0)

20:19:46 executing program 3:
shmctl$SHM_LOCK(0x0, 0xb)
shmat(0x0, &(0x7f0000ffc000/0x1000)=nil, 0x0)
shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000000)=""/15)
r0 = shmget$private(0x0, 0x4000, 0x78000000, &(0x7f0000ffc000/0x4000)=nil)
shmctl$IPC_INFO(r0, 0x3, &(0x7f0000000040)=""/240)
shmctl$IPC_INFO(r0, 0x3, &(0x7f0000000140)=""/225)
shmget$private(0x0, 0x2000, 0x78000000, &(0x7f0000ffc000/0x2000)=nil)
shmctl$IPC_INFO(r0, 0x3, &(0x7f0000000240)=""/52)
r1 = shmget(0x3, 0x3000, 0x1000, &(0x7f0000ffd000/0x3000)=nil)
shmctl$SHM_STAT_ANY(r1, 0xf, &(0x7f0000000280)=""/4096)
r2 = shmget$private(0x0, 0x2000, 0x2, &(0x7f0000ffb000/0x2000)=nil)
shmat(r1, &(0x7f0000ffb000/0x2000)=nil, 0x7000)
shmctl$SHM_STAT(r1, 0xd, &(0x7f0000001280)=""/7)
shmat(0xffffffffffffffff, &(0x7f0000ffa000/0x2000)=nil, 0x2000)
shmat(r2, &(0x7f0000ffc000/0x4000)=nil, 0x4000)
shmctl$IPC_INFO(r0, 0x3, &(0x7f00000012c0)=""/25)
shmctl$IPC_INFO(r2, 0x3, &(0x7f0000001300)=""/13)
shmctl$IPC_RMID(r0, 0x0)
shmat(r1, &(0x7f0000ffb000/0x2000)=nil, 0x3000)
shmctl$IPC_STAT(r0, 0x2, &(0x7f0000001340)=""/4096)

[   66.434237] audit: type=1400 audit(1664741986.544:6): avc:  denied  { execmem } for  pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
20:19:46 executing program 7:
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xfffffff8}}, './file0\x00'})
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$AUDIT_MAKE_EQUIV(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, 0x3f7, 0x1, 0x70bd2c, 0x25dfdbff, {0x7, 0x7, './file0', './file0'}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x84}, 0x4000)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000280)={<r2=>r0, 0x9, 0x7, 0x7fffffff})
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000300), r0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f00000003c0)={'sit0\x00', &(0x7f0000000340)={'sit0\x00', <r4=>0x0, 0x29, 0x0, 0x7, 0x3, 0x8, @remote, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7, 0x20, 0x400, 0x80000000}})
sendmsg$BATADV_CMD_SET_MESH(r2, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, r3, 0x1, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0xff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r5 = open(&(0x7f00000004c0)='./file0\x00', 0x40000, 0x2)
sendmsg$BATADV_CMD_SET_VLAN(r5, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x3c, r3, 0x4, 0x70bd28, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x4}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x4}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x27e}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x24048051)
ioctl$RNDZAPENTCNT(r5, 0x5204, &(0x7f0000000600)=0x1)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x2c, r6, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x2}, @IEEE802154_ATTR_DEV_INDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4088004}, 0x4844)
setxattr$security_ima(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0), &(0x7f0000000800)=@sha1={0x1, "5bf651929118e271e9fbdedf2698373212b6516e"}, 0x15, 0x1)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000880), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000008c0)={'wpan1\x00', <r8=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_KEY(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x210004}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x54, r7, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x2}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_SHORT_ADDR={0x6}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000005}, 0x4044884)
mount$bind(&(0x7f0000000a00)='./file0\x00', &(0x7f0000000a40)='./file0\x00', &(0x7f0000000a80), 0x800041, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, 0x2, 0x3, 0x801, 0x0, 0x0, {0x3, 0x0, 0x6}, [@NFQA_CFG_CMD={0x8, 0x1, {0x2, 0x0, 0x2a}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4044804)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r2, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x30, 0x1, 0x8, 0x801, 0x0, 0x0, {0x3, 0x0, 0xa}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8847}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x24000001)

20:19:46 executing program 5:
fcntl$setsig(0xffffffffffffffff, 0xa, 0x34)
sendmsg$NL80211_CMD_SET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x20041000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r0=>0x0})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x48, 0x0, 0x8, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r0}, @val={0xc, 0x99, {0x3, 0x5c}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0xc0)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r1, 0x400, 0x70bd26, 0x25dfdbfb, {{}, {}, {0x8, 0x2, 0x4}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000010}, 0x40d0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000)
r2 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000540), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r2, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x5c, r3, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8b}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x7}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x40}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x2}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x5}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x1a7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4805}, 0x4000084)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000740)={'ip6gre0\x00', &(0x7f00000006c0)={'syztnl0\x00', <r4=>0x0, 0x75, 0x9, 0xf1, 0xfffffbff, 0x0, @remote, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8, 0x700, 0x3, 0x8}})
sendmsg$BATADV_CMD_TP_METER_CANCEL(r2, &(0x7f0000000840)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x50, r3, 0x41a, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @remote}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r4}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x2}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x4}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x10000}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xfffffe00}]}, 0x50}, 0x1, 0x0, 0x0, 0x24048080}, 0x0)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r2, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x1c, r1, 0x100, 0x70bd25, 0x25dfdbfd, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24004084}, 0x40010)
ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r2, 0x89fa, &(0x7f0000000a00)={'ip6_vti0\x00', &(0x7f0000000980)={'syztnl0\x00', 0x0, 0x4, 0x6, 0x2, 0x3, 0x49, @loopback, @loopback, 0x80, 0x8000, 0x9, 0xffffff6a}})
ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc008240a, &(0x7f0000000a40)={0x3, 0x0, [0x0, 0x0, 0x0]})
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000a80)='net/ip_mr_vif\x00')
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000b00), r2)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f0000001000)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000b40)={0x458, r6, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0x48, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x57b}, @TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xffffffff}]}]}, @TIPC_NLA_NODE={0x1ac, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_NODE_ID={0x49, 0x3, "65aa0538cc40236c43f6e085b39089f441a11bb0822a3094e0831a871cdafe58a618e1723d2cd9d1aab22c7a94211cbe5520a993544698d9ca22804bc01c1ca2b90267537e"}, @TIPC_NLA_NODE_ID={0xbe, 0x3, "2059a0cff9495ff65adf6311fddc85e645f956d2aeaef4d1ad5892c64cec4cf41b4a2bf75195f3b43dd4eaefac52aa87744f3f47a1ec379d25d484bb904972053eba9e39f73178ccfaa5bbd8572194b507796d6e2eb9e7d7c6c41e6b71fc545b4923bd0af00cb08d550031971aabcdf37e7059195d65a935e2b978096f1571fde31030114e962b1e9c2db6fdfdcbf7478396f4d3a18a3e8e2d37451b0cac757d0874aa13a0cdafc12200db27fae6e8bf3b1bf85a892f80d5d50d"}, @TIPC_NLA_NODE_KEY={0x4c, 0x4, {'gcm(aes)\x00', 0x24, "9b9e1e960cdcc5f856a58e096cb8780d1134d2e59e22187ed1dbd41d14fef52bdaf4cb21"}}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "403e8de120ca9fa612e63938565224de7a87cebcbf646ad13f"}}]}, @TIPC_NLA_MEDIA={0x9c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff5de0}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd40f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x200}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x200}]}, @TIPC_NLA_LINK={0x7c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x12000000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x220a47b5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffc01}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}]}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xe46}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7fffffff}]}, @TIPC_NLA_SOCK={0x8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MEDIA={0xd4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xf37d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6acb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4b}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_PUBL={0x4}]}, 0x458}, 0x1, 0x0, 0x0, 0x80}, 0x4040000)
sendmsg$TIPC_NL_MEDIA_SET(r2, &(0x7f0000001280)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001240)={&(0x7f0000001080)={0x188, r6, 0x8, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x90, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x47d7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7cb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x300}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x11f}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x401}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7b}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5ad}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2}, @TIPC_NLA_NET_NODEID={0xc}]}, @TIPC_NLA_MEDIA={0x60, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}]}]}, 0x188}, 0x1, 0x0, 0x0, 0x40080}, 0x4)
setsockopt$bt_hci_HCI_DATA_DIR(r5, 0x0, 0x1, &(0x7f00000012c0)=0x8, 0x4)

20:19:46 executing program 6:
r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r0, 0x100, 0x70bd27, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x401}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20044014)
sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000400)={&(0x7f0000000180)={0x25c, 0x0, 0x4, 0x70bd2b, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8}, @NLBL_CIPSOV4_A_MLSCATLST={0xc0, 0xc, 0x0, 0x1, [{0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3abf}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x524ae497}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf3d7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc57912}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5528dcd9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7660}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb464}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc9e5}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x59125bba}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x49e06e5b}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x782d52be}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7aa988f1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x300725cd}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x944265f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e9eaad}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5694}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x48b5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x568e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb870}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e987f24}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x479e9e3c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc066}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x2c, 0xc, 0x0, 0x1, [{0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6f22cce7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4dc6}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc10a3e9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7b3a8ceb}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_MLSCATLST={0xac, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7614d725}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x657b3b92}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2e77a43f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x25a8e0e6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2d87415}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x66901286}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5ebb98ca}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xddae}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7a3da55b}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x266016ec}]}, {0x4c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x33a45bd4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3376}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd579}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3c19bf1e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1133d3ed}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdea1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6639ebd9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x22f75e74}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xb9364f9}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_MLSLVLLST={0x38, 0x8, 0x0, 0x1, [{0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xed}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x26}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x60}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x57206f33}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x4c, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe29c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xacd6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4343f1c7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x40f93b75}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c38b710}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3b9f4422}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x52a610f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6a99165e}]}]}]}, 0x25c}, 0x1, 0x0, 0x0, 0x40000}, 0xb6558deb19087c3)
r1 = socket(0x9, 0x2, 0xb64a)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r1, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r0, 0x4, 0x70bd29, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4044800}, 0x20000040)
ioctl$sock_SIOCBRADDBR(r1, 0x89a0, &(0x7f0000000580)='netpci0\x00')
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r1, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x900200}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x28, r2, 0x400, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x5, 0x7a}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x4040800)
r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r3, 0x0, 0x487, &(0x7f0000000700), &(0x7f0000000740)=0x30)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r1, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x6c, 0x3, 0x3, 0x101, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFQA_VERDICT_HDR={0xc, 0x2, {0xffffffffffffffff, 0xfffffff8}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe, 0x7fff}}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x3c57}, @NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x3}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe, 0x68ed}}, @NFQA_VERDICT_HDR={0xc}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffb, 0xfff}}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffd, 0x5}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000900), r1)
sendmsg$NL80211_CMD_DEL_PMK(r1, &(0x7f0000000a00)={&(0x7f00000008c0), 0xc, &(0x7f00000009c0)={&(0x7f0000000940)={0x44, r4, 0x200, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x5, 0x8}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x44}}, 0x4004005)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000001c00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001bc0)={&(0x7f0000000a80)={0x112c, r2, 0x100, 0x70bd29, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x6}, @NL80211_ATTR_SCAN_SSIDS={0x20, 0x2d, 0x0, 0x1, [{0x1a, 0x0, @random="9825ccdcf6e6b411b272af9e2b541b3ee51fe2ec9c6b"}]}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x10}, @NL80211_ATTR_SCAN_SUPP_RATES={0x10d8, 0x7d, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x10, 0x2, "5d6abfab5db1db0a004f7811"}, @NL80211_BAND_2GHZ={0xbd, 0x0, "82f5cedb5782b9a06669786d0c34b057aaf14c3cb8c54fd0da8f12e53c8ecd3fee5b26ea8beb85e4afe35a200ea1d8d5d40a3d5fe900c60a9ee234559fd5742442a5adf2cfc9c4686b3919a9c175fef2907abbb97b451ce0c16b4ce7dae9a0fc11b87d3f875cdd8bfa0b4da86fcf2af0b4e721ce4088562b21a2e73ec1fa9fc64443771d19e64cb63c49300cc65d0e242752f0dbe71acd7b4f9ad31b3d4c08c058f8f9d70f885672401bf6974150aa89eee15334fee1bffdc7"}, @NL80211_BAND_5GHZ={0x1004, 0x1, "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"}]}, @NL80211_ATTR_BSSID={0xa}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}]}, 0x112c}, 0x1, 0x0, 0x0, 0x8804}, 0x4000000)
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f0000001d80)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001d40)={&(0x7f0000001c80)={0xa4, r4, 0x10, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0x2a}}}}, [@NL80211_ATTR_KEY={0x20, 0x50, 0x0, 0x1, [@NL80211_KEY_SEQ={0x12, 0x4, "ed75361492bf22a5e0e92223133a"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}]}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0xc, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x24, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x14, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_ATTR_KEY_DEFAULT={0x4}]}, 0xa4}}, 0x40010)
bind$802154_raw(r1, &(0x7f0000001dc0)={0x24, @short={0x2, 0x1, 0xaaa3}}, 0x14)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001e40), r1)
sendmsg$NL80211_CMD_UPDATE_CONNECT_PARAMS(r1, &(0x7f0000002140)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000002100)={&(0x7f0000001e80)={0x244, r5, 0x300, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x9, 0x6}}}}, [@fils_params=[@NL80211_ATTR_FILS_ERP_REALM={0xf1, 0xfa, "48db2835791eb2f02252e24d1594b7fee5d1d2e55b97c77595b94cf40c119e38e733252cdf64898cc19266bb2ec5776c6d64589bd1c8567a5a7f7632a2113bf5fad226fa1915985e033eabbadab3b541d8598db8e145b563e3f89cdc2b7c519a435e4debc0bc2b342fa29dd194d9b2b6d3e52efc2f388695b3b040166b2ea30dee296da8aeadd1db241358d68bbb5f089da9f7e41a412ebf7a3c70720df54f4c14d04aada17ba5b0cf0a328c1eac5b36d8e13e41f52c3963eeac71317e72c13be76c7bd0f866d6abace979a5dd18742262f500dd909d24991515d458aa23facb4d8e5e6f450c2276e974272840"}, @NL80211_ATTR_FILS_ERP_REALM={0x4}, @NL80211_ATTR_FILS_ERP_REALM={0xb0, 0xfa, "466c553073ace8fd55619ff43a09fc0b4f41f3ab0261c9d9451e366560241ffe33de66948aa11a7b63874224658dcba17b0863d41c8cce5a12f8613bcb4e0b400c1795b7fa4764e2a378eb5bf36d37637da3896cdbb1ffe6a18730aa718640ede530c9c642fcd6cb4c6cad37ed447b42986161f42cd50d111ec7e78db1fbcbf6c33ab5c3df345888325fc2b5267db8e385ef91c451b68c87a6f3c9d53dcd4a78d90b487127e99e94ebcc4755"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0xd1}, @NL80211_ATTR_FILS_ERP_RRK={0x66, 0xfc, "51d306d4bd375e56e4f01739eeb6f95b273d169b1ce0acec024fbbe4b0eac1a8139ce9062d2dafdfa5190614d3abadfc97fe7a958a1e63ca44bba1cc81bd8281d3c0536db306a4dea776cddd6bf37d3fdd13dc6bd2788d60b479754b7c1c5757b77c"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xa, 0xf9, "d058a149ba9f"}]]}, 0x244}, 0x1, 0x0, 0x0, 0x38}, 0x40042)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000002240)={&(0x7f00000021c0)={0x4c, r4, 0x200, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8001, 0xa}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x10, 0xcd, [0x5, 0x9, 0x4, 0xc98, 0x3f, 0xd1]}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x3]}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x3c4}]}, 0x4c}}, 0x4040081)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000022c0)=0x40000)

[   67.777773] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   67.779889] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   67.782088] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   67.783436] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   67.785639] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   67.786918] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   67.791400] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   67.792859] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   67.795851] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   67.795975] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   67.802902] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   67.804505] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   67.809044] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   67.811766] Bluetooth: hci2: HCI_REQ-0x0c1a
[   67.814020] Bluetooth: hci1: HCI_REQ-0x0c1a
[   67.829865] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   67.832408] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   67.834089] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   67.837496] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   67.839729] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   67.841473] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   67.853072] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   67.854364] Bluetooth: hci0: HCI_REQ-0x0c1a
[   67.856062] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   67.859546] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   67.883899] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   67.885344] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   67.889979] Bluetooth: hci3: HCI_REQ-0x0c1a
[   67.890251] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   67.892601] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   67.912753] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   67.916907] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   67.918650] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   67.920262] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   67.921430] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   67.923299] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   67.930442] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   67.932879] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   67.934388] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   67.938910] Bluetooth: hci5: HCI_REQ-0x0c1a
[   67.939636] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   67.946466] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   67.949836] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   67.952901] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   67.958233] Bluetooth: hci4: HCI_REQ-0x0c1a
[   67.988891] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   68.002438] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   68.007409] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   68.018336] Bluetooth: hci7: HCI_REQ-0x0c1a
[   69.844520] Bluetooth: hci2: command 0x0409 tx timeout
[   69.845108] Bluetooth: hci1: command 0x0409 tx timeout
[   69.908225] Bluetooth: hci0: command 0x0409 tx timeout
[   69.908393] Bluetooth: hci3: command 0x0409 tx timeout
[   69.908987] Bluetooth: hci6: Opcode 0x c03 failed: -110
[   69.972568] Bluetooth: hci4: command 0x0409 tx timeout
[   69.973260] Bluetooth: hci5: command 0x0409 tx timeout
[   70.037180] Bluetooth: hci7: command 0x0409 tx timeout
[   71.892735] Bluetooth: hci2: command 0x041b tx timeout
[   71.893541] Bluetooth: hci1: command 0x041b tx timeout
[   71.956281] Bluetooth: hci0: command 0x041b tx timeout
[   71.957947] Bluetooth: hci3: command 0x041b tx timeout
[   72.020229] Bluetooth: hci5: command 0x041b tx timeout
[   72.020699] Bluetooth: hci4: command 0x041b tx timeout
[   72.084259] Bluetooth: hci7: command 0x041b tx timeout
[   72.599692] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   72.601199] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   72.602021] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   72.603855] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   72.604908] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   72.619995] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   72.626322] Bluetooth: hci6: HCI_REQ-0x0c1a
[   73.940216] Bluetooth: hci1: command 0x040f tx timeout
[   73.940748] Bluetooth: hci2: command 0x040f tx timeout
[   74.004162] Bluetooth: hci3: command 0x040f tx timeout
[   74.004172] Bluetooth: hci0: command 0x040f tx timeout
[   74.068496] Bluetooth: hci4: command 0x040f tx timeout
[   74.068944] Bluetooth: hci5: command 0x040f tx timeout
[   74.132163] Bluetooth: hci7: command 0x040f tx timeout
[   74.644163] Bluetooth: hci6: command 0x0409 tx timeout
[   75.988158] Bluetooth: hci1: command 0x0419 tx timeout
[   75.988625] Bluetooth: hci2: command 0x0419 tx timeout
[   76.052193] Bluetooth: hci0: command 0x0419 tx timeout
[   76.052642] Bluetooth: hci3: command 0x0419 tx timeout
[   76.116169] Bluetooth: hci5: command 0x0419 tx timeout
[   76.116613] Bluetooth: hci4: command 0x0419 tx timeout
[   76.180293] Bluetooth: hci7: command 0x0419 tx timeout
[   76.692150] Bluetooth: hci6: command 0x041b tx timeout
[   78.740149] Bluetooth: hci6: command 0x040f tx timeout
[   80.788166] Bluetooth: hci6: command 0x0419 tx timeout
20:20:41 executing program 7:
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000b00), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = getpid()
r2 = perf_event_open(&(0x7f0000000a80)={0x2, 0x80, 0x0, 0x0, 0x6, 0x4, 0x0, 0x7fffffff, 0x80400, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x401, 0x2, @perf_config_ext={0x5, 0x7}, 0x4003, 0xb7, 0x6, 0x3, 0xb06, 0xfffffffe, 0xfffe, 0x0, 0x46, 0x0, 0x2}, r1, 0xd, r0, 0x9)
r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x48800, 0x0)
ioctl$SG_GET_KEEP_ORPHAN(r3, 0x5323, 0x0)
perf_event_open(&(0x7f0000000500)={0x4, 0x80, 0x7f, 0x86, 0x80, 0x0, 0x0, 0x5, 0x80000, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x7, @perf_bp, 0xc00, 0xe81f, 0x8, 0x4, 0x5, 0x0, 0xa9, 0x0, 0x401, 0x0, 0x8}, 0x0, 0xf, r3, 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r2, @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="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"])
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r6 = dup3(r0, r2, 0x80000)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x80010, r6, 0x10000000)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r5)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffbfffffffffff, 0xffffffffffffffff, 0x0)
r7 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x48800, 0x0)
ioctl$SG_GET_KEEP_ORPHAN(r7, 0x5323, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0)
r8 = syz_io_uring_setup(0x35c3, &(0x7f0000000180)={0x0, 0x39dd, 0x8, 0x3, 0x1f4}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000200))
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
mknodat$loop(r4, &(0x7f0000000100)='./file0\x00', 0x1, 0x0)
io_uring_register$IORING_REGISTER_FILES(r8, 0x2, &(0x7f0000000240)=[r10, r9, 0xffffffffffffffff, 0xffffffffffffffff], 0x4)

[  121.335134] audit: type=1400 audit(1664742041.444:7): avc:  denied  { open } for  pid=3785 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  121.341063] audit: type=1400 audit(1664742041.445:8): avc:  denied  { kernel } for  pid=3785 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  121.373938] ------------[ cut here ]------------
[  121.373969] 
[  121.373974] ======================================================
[  121.373980] WARNING: possible circular locking dependency detected
[  121.373987] 6.0.0-rc7-next-20220930 #1 Not tainted
[  121.373998] ------------------------------------------------------
[  121.374004] syz-executor.7/3788 is trying to acquire lock:
[  121.374015] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  121.374079] 
[  121.374079] but task is already holding lock:
[  121.374084] ffff88800d551020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  121.374136] 
[  121.374136] which lock already depends on the new lock.
[  121.374136] 
[  121.374141] 
[  121.374141] the existing dependency chain (in reverse order) is:
[  121.374147] 
[  121.374147] -> #3 (&ctx->lock){....}-{2:2}:
[  121.374171]        _raw_spin_lock+0x2a/0x40
[  121.374191]        __perf_event_task_sched_out+0x53b/0x18d0
[  121.374212]        __schedule+0xedd/0x2470
[  121.374237]        preempt_schedule_common+0x45/0xc0
[  121.374264]        __cond_resched+0x17/0x30
[  121.374289]        __mutex_lock+0xa3/0x14d0
[  121.374316]        __do_sys_perf_event_open+0x1eec/0x32c0
[  121.374337]        do_syscall_64+0x3b/0x90
[  121.374368]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.374391] 
[  121.374391] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  121.374416]        _raw_spin_lock_nested+0x30/0x40
[  121.374435]        raw_spin_rq_lock_nested+0x1e/0x30
[  121.374458]        task_fork_fair+0x63/0x4d0
[  121.374489]        sched_cgroup_fork+0x3d0/0x540
[  121.374514]        copy_process+0x4183/0x6e20
[  121.374533]        kernel_clone+0xe7/0x890
[  121.374550]        user_mode_thread+0xad/0xf0
[  121.374569]        rest_init+0x24/0x250
[  121.374590]        arch_call_rest_init+0xf/0x14
[  121.374620]        start_kernel+0x4c6/0x4eb
[  121.374648]        secondary_startup_64_no_verify+0xe0/0xeb
[  121.374673] 
[  121.374673] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  121.374697]        _raw_spin_lock_irqsave+0x39/0x60
[  121.374717]        try_to_wake_up+0xab/0x1930
[  121.374741]        up+0x75/0xb0
[  121.374767]        __up_console_sem+0x6e/0x80
[  121.374795]        console_unlock+0x46a/0x590
[  121.374823]        vt_ioctl+0x2822/0x2ca0
[  121.374843]        tty_ioctl+0x785/0x16b0
[  121.374862]        __x64_sys_ioctl+0x19a/0x210
[  121.374886]        do_syscall_64+0x3b/0x90
[  121.374916]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.374939] 
[  121.374939] -> #0 ((console_sem).lock){....}-{2:2}:
[  121.374964]        __lock_acquire+0x2a02/0x5e70
[  121.374995]        lock_acquire+0x1a2/0x530
[  121.375023]        _raw_spin_lock_irqsave+0x39/0x60
[  121.375043]        down_trylock+0xe/0x70
[  121.375070]        __down_trylock_console_sem+0x3b/0xd0
[  121.375100]        vprintk_emit+0x16b/0x560
[  121.375129]        vprintk+0x84/0xa0
[  121.375158]        _printk+0xba/0xf1
[  121.375178]        report_bug.cold+0x72/0xab
[  121.375207]        handle_bug+0x3c/0x70
[  121.375237]        exc_invalid_op+0x14/0x50
[  121.375268]        asm_exc_invalid_op+0x16/0x20
[  121.375290]        group_sched_out.part.0+0x2c7/0x460
[  121.375322]        ctx_sched_out+0x8f1/0xc10
[  121.375352]        __perf_event_task_sched_out+0x6d0/0x18d0
[  121.375372]        __schedule+0xedd/0x2470
[  121.375397]        preempt_schedule_common+0x45/0xc0
[  121.375424]        __cond_resched+0x17/0x30
[  121.375450]        __mutex_lock+0xa3/0x14d0
[  121.375477]        __do_sys_perf_event_open+0x1eec/0x32c0
[  121.375498]        do_syscall_64+0x3b/0x90
[  121.375528]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.375551] 
[  121.375551] other info that might help us debug this:
[  121.375551] 
[  121.375556] Chain exists of:
[  121.375556]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  121.375556] 
[  121.375583]  Possible unsafe locking scenario:
[  121.375583] 
[  121.375587]        CPU0                    CPU1
[  121.375591]        ----                    ----
[  121.375595]   lock(&ctx->lock);
[  121.375605]                                lock(&rq->__lock);
[  121.375616]                                lock(&ctx->lock);
[  121.375628]   lock((console_sem).lock);
[  121.375638] 
[  121.375638]  *** DEADLOCK ***
[  121.375638] 
[  121.375642] 2 locks held by syz-executor.7/3788:
[  121.375654]  #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  121.375707]  #1: ffff88800d551020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  121.375756] 
[  121.375756] stack backtrace:
[  121.375760] CPU: 1 PID: 3788 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1
[  121.375783] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  121.375796] Call Trace:
[  121.375802]  <TASK>
[  121.375808]  dump_stack_lvl+0x8b/0xb3
[  121.375842]  check_noncircular+0x263/0x2e0
[  121.375872]  ? format_decode+0x26c/0xb50
[  121.375901]  ? print_circular_bug+0x450/0x450
[  121.375932]  ? simple_strtoul+0x30/0x30
[  121.375961]  ? lock_release+0x547/0x750
[  121.375991]  ? format_decode+0x26c/0xb50
[  121.376023]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  121.376055]  __lock_acquire+0x2a02/0x5e70
[  121.376095]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  121.376137]  lock_acquire+0x1a2/0x530
[  121.376168]  ? down_trylock+0xe/0x70
[  121.376199]  ? lock_release+0x750/0x750
[  121.376237]  ? vprintk+0x84/0xa0
[  121.376270]  _raw_spin_lock_irqsave+0x39/0x60
[  121.376291]  ? down_trylock+0xe/0x70
[  121.376320]  down_trylock+0xe/0x70
[  121.376349]  ? vprintk+0x84/0xa0
[  121.376380]  __down_trylock_console_sem+0x3b/0xd0
[  121.376412]  vprintk_emit+0x16b/0x560
[  121.376447]  vprintk+0x84/0xa0
[  121.376478]  _printk+0xba/0xf1
[  121.376499]  ? record_print_text.cold+0x16/0x16
[  121.376529]  ? report_bug.cold+0x66/0xab
[  121.376562]  ? group_sched_out.part.0+0x2c7/0x460
[  121.376596]  report_bug.cold+0x72/0xab
[  121.376630]  handle_bug+0x3c/0x70
[  121.376662]  exc_invalid_op+0x14/0x50
[  121.376696]  asm_exc_invalid_op+0x16/0x20
[  121.376719] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  121.376756] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  121.376777] RSP: 0018:ffff88801a16f978 EFLAGS: 00010006
[  121.376801] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  121.376815] RDX: ffff88800ffd1ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  121.376829] RBP: ffff88803ec40000 R08: 0000000000000005 R09: 0000000000000001
[  121.376842] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800d551000
[  121.376856] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  121.376876]  ? group_sched_out.part.0+0x2c7/0x460
[  121.376914]  ? group_sched_out.part.0+0x2c7/0x460
[  121.376950]  ctx_sched_out+0x8f1/0xc10
[  121.376986]  __perf_event_task_sched_out+0x6d0/0x18d0
[  121.377013]  ? lock_is_held_type+0xd7/0x130
[  121.377038]  ? __perf_cgroup_move+0x160/0x160
[  121.377058]  ? set_next_entity+0x304/0x550
[  121.377090]  ? update_curr+0x267/0x740
[  121.377124]  ? lock_is_held_type+0xd7/0x130
[  121.377150]  __schedule+0xedd/0x2470
[  121.377182]  ? io_schedule_timeout+0x150/0x150
[  121.377209]  ? find_held_lock+0x2c/0x110
[  121.377240]  ? lock_is_held_type+0xd7/0x130
[  121.377264]  ? __cond_resched+0x17/0x30
[  121.377292]  preempt_schedule_common+0x45/0xc0
[  121.377322]  __cond_resched+0x17/0x30
[  121.377349]  __mutex_lock+0xa3/0x14d0
[  121.377380]  ? lock_is_held_type+0xd7/0x130
[  121.377404]  ? __do_sys_perf_event_open+0x1eec/0x32c0
[  121.377429]  ? mutex_lock_io_nested+0x1310/0x1310
[  121.377459]  ? lock_release+0x3b2/0x750
[  121.377491]  ? __up_read+0x192/0x730
[  121.377518]  ? up_write+0x520/0x520
[  121.377545]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  121.377571]  __do_sys_perf_event_open+0x1eec/0x32c0
[  121.377601]  ? perf_compat_ioctl+0x130/0x130
[  121.377621]  ? xfd_validate_state+0x59/0x180
[  121.377663]  ? syscall_enter_from_user_mode+0x1d/0x50
[  121.377688]  ? syscall_enter_from_user_mode+0x1d/0x50
[  121.377717]  do_syscall_64+0x3b/0x90
[  121.377750]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.377774] RIP: 0033:0x7f1d9f7c4b19
[  121.377790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.377810] RSP: 002b:00007f1d9cd3a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  121.377829] RAX: ffffffffffffffda RBX: 00007f1d9f8d7f60 RCX: 00007f1d9f7c4b19
[  121.377844] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080
[  121.377857] RBP: 00007f1d9f81ef6d R08: 0000000000000000 R09: 0000000000000000
[  121.377870] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  121.377884] R13: 00007ffc9682f4df R14: 00007f1d9cd3a300 R15: 0000000000022000
[  121.377908]  </TASK>
[  121.491446] WARNING: CPU: 1 PID: 3788 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  121.492767] Modules linked in:
[  121.493226] CPU: 1 PID: 3788 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1
[  121.494371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  121.495997] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  121.496815] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  121.499413] RSP: 0018:ffff88801a16f978 EFLAGS: 00010006
[  121.500171] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  121.501179] RDX: ffff88800ffd1ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  121.502189] RBP: ffff88803ec40000 R08: 0000000000000005 R09: 0000000000000001
[  121.503201] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800d551000
[  121.504196] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  121.505147] FS:  00007f1d9cd3a700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  121.506191] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.506949] CR2: 00007f3a6947b620 CR3: 000000001d7f8000 CR4: 0000000000350ee0
[  121.507875] Call Trace:
[  121.508216]  <TASK>
[  121.508530]  ctx_sched_out+0x8f1/0xc10
[  121.509072]  __perf_event_task_sched_out+0x6d0/0x18d0
[  121.509758]  ? lock_is_held_type+0xd7/0x130
[  121.510332]  ? __perf_cgroup_move+0x160/0x160
[  121.510935]  ? set_next_entity+0x304/0x550
[  121.511498]  ? update_curr+0x267/0x740
[  121.512036]  ? lock_is_held_type+0xd7/0x130
[  121.512617]  __schedule+0xedd/0x2470
[  121.513150]  ? io_schedule_timeout+0x150/0x150
[  121.513776]  ? find_held_lock+0x2c/0x110
[  121.514331]  ? lock_is_held_type+0xd7/0x130
[  121.514918]  ? __cond_resched+0x17/0x30
[  121.515464]  preempt_schedule_common+0x45/0xc0
[  121.516091]  __cond_resched+0x17/0x30
[  121.516613]  __mutex_lock+0xa3/0x14d0
[  121.517151]  ? lock_is_held_type+0xd7/0x130
[  121.517733]  ? __do_sys_perf_event_open+0x1eec/0x32c0
[  121.518422]  ? mutex_lock_io_nested+0x1310/0x1310
[  121.519076]  ? lock_release+0x3b2/0x750
[  121.519620]  ? __up_read+0x192/0x730
[  121.520130]  ? up_write+0x520/0x520
[  121.520637]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  121.521325]  __do_sys_perf_event_open+0x1eec/0x32c0
[  121.521998]  ? perf_compat_ioctl+0x130/0x130
[  121.522587]  ? xfd_validate_state+0x59/0x180
[  121.523196]  ? syscall_enter_from_user_mode+0x1d/0x50
[  121.523878]  ? syscall_enter_from_user_mode+0x1d/0x50
[  121.524573]  do_syscall_64+0x3b/0x90
[  121.525109]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.525799] RIP: 0033:0x7f1d9f7c4b19
[  121.526298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.528668] RSP: 002b:00007f1d9cd3a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  121.529677] RAX: ffffffffffffffda RBX: 00007f1d9f8d7f60 RCX: 00007f1d9f7c4b19
[  121.530611] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080
[  121.531540] RBP: 00007f1d9f81ef6d R08: 0000000000000000 R09: 0000000000000000
[  121.532469] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  121.533411] R13: 00007ffc9682f4df R14: 00007f1d9cd3a300 R15: 0000000000022000
[  121.534354]  </TASK>
[  121.534670] irq event stamp: 626
[  121.535117] hardirqs last  enabled at (625): [<ffffffff84273de8>] _raw_spin_unlock_irqrestore+0x28/0x60
[  121.536329] hardirqs last disabled at (626): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  121.537418] softirqs last  enabled at (0): [<ffffffff8114f175>] copy_process+0x1e15/0x6e20
[  121.538490] softirqs last disabled at (0): [<0000000000000000>] 0x0
[  121.539328] ---[ end trace 0000000000000000 ]---
[  123.079749] FAT-fs (loop1): Unrecognized mount option "fsname=" or missing value
[  123.119304] FAT-fs (loop1): Unrecognized mount option "fsname=" or missing value

VM DIAGNOSIS:
20:20:41  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff8880176d7d88 RCX=0000000000000000 RDX=0000000000000000
RSI=ffff88800e094680 RDI=ffffea00001e38c0 RBP=ffffea00001e38c0 RSP=ffff8880176d7b48
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffff88800e094680 R13=ffff88800e094680 R14=0000000000000000 R15=ffffea00001e38c0
RIP=ffffffff816e4068 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f3bc2fa0540 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3bc314e4a0 CR3=000000001b424000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 2d0065626f727064 6f6d2f6e6962732f
YMM02=0000000000000000 0000000000000000 00ff000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff
YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000035 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801a16f3c0
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000035 R11=0000000000000001
R12=0000000000000035 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f1d9cd3a700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3a6947b620 CR3=000000001d7f8000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000