Warning: Permanently added '[localhost]:30230' (ECDSA) to the list of known hosts.
2022/10/02 23:02:36 fuzzer started
2022/10/02 23:02:36 dialing manager at localhost:35095
syzkaller login: [   46.274548] cgroup: Unknown subsys name 'net'
[   46.373272] cgroup: Unknown subsys name 'rlimit'
2022/10/02 23:02:50 syscalls: 2215
2022/10/02 23:02:50 code coverage: enabled
2022/10/02 23:02:50 comparison tracing: enabled
2022/10/02 23:02:50 extra coverage: enabled
2022/10/02 23:02:50 setuid sandbox: enabled
2022/10/02 23:02:50 namespace sandbox: enabled
2022/10/02 23:02:50 Android sandbox: enabled
2022/10/02 23:02:50 fault injection: enabled
2022/10/02 23:02:50 leak checking: enabled
2022/10/02 23:02:50 net packet injection: enabled
2022/10/02 23:02:50 net device setup: enabled
2022/10/02 23:02:50 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/02 23:02:50 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/02 23:02:50 USB emulation: enabled
2022/10/02 23:02:50 hci packet injection: enabled
2022/10/02 23:02:50 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/02 23:02:50 802.15.4 emulation: enabled
2022/10/02 23:02:50 fetching corpus: 50, signal 20923/22794 (executing program)
2022/10/02 23:02:50 fetching corpus: 100, signal 33586/37136 (executing program)
2022/10/02 23:02:50 fetching corpus: 150, signal 42357/47474 (executing program)
2022/10/02 23:02:50 fetching corpus: 200, signal 49622/56198 (executing program)
2022/10/02 23:02:51 fetching corpus: 250, signal 61876/69693 (executing program)
2022/10/02 23:02:51 fetching corpus: 300, signal 66211/75389 (executing program)
2022/10/02 23:02:51 fetching corpus: 350, signal 70748/81245 (executing program)
2022/10/02 23:02:51 fetching corpus: 400, signal 75634/87380 (executing program)
2022/10/02 23:02:51 fetching corpus: 450, signal 78396/91447 (executing program)
2022/10/02 23:02:51 fetching corpus: 500, signal 82877/97121 (executing program)
2022/10/02 23:02:51 fetching corpus: 550, signal 84324/99903 (executing program)
2022/10/02 23:02:51 fetching corpus: 600, signal 86701/103534 (executing program)
2022/10/02 23:02:52 fetching corpus: 650, signal 89292/107297 (executing program)
2022/10/02 23:02:52 fetching corpus: 700, signal 91975/111113 (executing program)
2022/10/02 23:02:52 fetching corpus: 750, signal 94521/114787 (executing program)
2022/10/02 23:02:52 fetching corpus: 800, signal 96294/117741 (executing program)
2022/10/02 23:02:52 fetching corpus: 850, signal 98577/121062 (executing program)
2022/10/02 23:02:52 fetching corpus: 900, signal 100844/124380 (executing program)
2022/10/02 23:02:52 fetching corpus: 950, signal 102652/127235 (executing program)
2022/10/02 23:02:52 fetching corpus: 1000, signal 106539/131844 (executing program)
2022/10/02 23:02:53 fetching corpus: 1050, signal 108553/134829 (executing program)
2022/10/02 23:02:53 fetching corpus: 1100, signal 110985/138142 (executing program)
2022/10/02 23:02:53 fetching corpus: 1150, signal 113140/141178 (executing program)
2022/10/02 23:02:53 fetching corpus: 1200, signal 115580/144420 (executing program)
2022/10/02 23:02:53 fetching corpus: 1250, signal 116252/146213 (executing program)
2022/10/02 23:02:53 fetching corpus: 1300, signal 118533/149326 (executing program)
2022/10/02 23:02:53 fetching corpus: 1350, signal 120376/151992 (executing program)
2022/10/02 23:02:53 fetching corpus: 1400, signal 123940/156042 (executing program)
2022/10/02 23:02:53 fetching corpus: 1450, signal 126837/159482 (executing program)
2022/10/02 23:02:54 fetching corpus: 1500, signal 128278/161776 (executing program)
2022/10/02 23:02:54 fetching corpus: 1550, signal 129602/163962 (executing program)
2022/10/02 23:02:54 fetching corpus: 1600, signal 130945/166101 (executing program)
2022/10/02 23:02:54 fetching corpus: 1650, signal 133054/168804 (executing program)
2022/10/02 23:02:54 fetching corpus: 1700, signal 135020/171456 (executing program)
2022/10/02 23:02:54 fetching corpus: 1750, signal 136188/173420 (executing program)
2022/10/02 23:02:54 fetching corpus: 1800, signal 137342/175288 (executing program)
2022/10/02 23:02:54 fetching corpus: 1850, signal 138901/177528 (executing program)
2022/10/02 23:02:55 fetching corpus: 1900, signal 140596/179844 (executing program)
2022/10/02 23:02:55 fetching corpus: 1950, signal 141933/181847 (executing program)
2022/10/02 23:02:55 fetching corpus: 2000, signal 143858/184255 (executing program)
2022/10/02 23:02:55 fetching corpus: 2050, signal 145071/186109 (executing program)
2022/10/02 23:02:55 fetching corpus: 2100, signal 145814/187610 (executing program)
2022/10/02 23:02:55 fetching corpus: 2150, signal 147170/189568 (executing program)
2022/10/02 23:02:55 fetching corpus: 2200, signal 148155/191236 (executing program)
2022/10/02 23:02:55 fetching corpus: 2250, signal 149241/192943 (executing program)
2022/10/02 23:02:56 fetching corpus: 2300, signal 150088/194480 (executing program)
2022/10/02 23:02:56 fetching corpus: 2350, signal 151349/196294 (executing program)
2022/10/02 23:02:56 fetching corpus: 2400, signal 152508/198045 (executing program)
2022/10/02 23:02:56 fetching corpus: 2450, signal 153285/199516 (executing program)
2022/10/02 23:02:56 fetching corpus: 2500, signal 155350/201843 (executing program)
2022/10/02 23:02:56 fetching corpus: 2550, signal 157460/204155 (executing program)
2022/10/02 23:02:56 fetching corpus: 2600, signal 158162/205486 (executing program)
2022/10/02 23:02:56 fetching corpus: 2650, signal 159069/206985 (executing program)
2022/10/02 23:02:57 fetching corpus: 2700, signal 159831/208339 (executing program)
2022/10/02 23:02:57 fetching corpus: 2750, signal 160618/209725 (executing program)
2022/10/02 23:02:57 fetching corpus: 2800, signal 161398/211054 (executing program)
2022/10/02 23:02:57 fetching corpus: 2850, signal 162535/212720 (executing program)
2022/10/02 23:02:57 fetching corpus: 2900, signal 163541/214209 (executing program)
2022/10/02 23:02:57 fetching corpus: 2950, signal 165053/215994 (executing program)
2022/10/02 23:02:57 fetching corpus: 3000, signal 165466/217057 (executing program)
2022/10/02 23:02:57 fetching corpus: 3050, signal 166084/218299 (executing program)
2022/10/02 23:02:57 fetching corpus: 3100, signal 166765/219503 (executing program)
2022/10/02 23:02:58 fetching corpus: 3150, signal 167927/221054 (executing program)
2022/10/02 23:02:58 fetching corpus: 3200, signal 168954/222490 (executing program)
2022/10/02 23:02:58 fetching corpus: 3250, signal 169593/223685 (executing program)
2022/10/02 23:02:58 fetching corpus: 3300, signal 170415/224961 (executing program)
2022/10/02 23:02:58 fetching corpus: 3350, signal 171425/226366 (executing program)
2022/10/02 23:02:58 fetching corpus: 3400, signal 172340/227660 (executing program)
2022/10/02 23:02:58 fetching corpus: 3450, signal 173006/228831 (executing program)
2022/10/02 23:02:58 fetching corpus: 3500, signal 173681/229949 (executing program)
2022/10/02 23:02:58 fetching corpus: 3550, signal 174693/231272 (executing program)
2022/10/02 23:02:59 fetching corpus: 3600, signal 175191/232343 (executing program)
2022/10/02 23:02:59 fetching corpus: 3650, signal 175886/233488 (executing program)
2022/10/02 23:02:59 fetching corpus: 3700, signal 176275/234499 (executing program)
2022/10/02 23:02:59 fetching corpus: 3750, signal 177523/235925 (executing program)
2022/10/02 23:02:59 fetching corpus: 3800, signal 177992/236943 (executing program)
2022/10/02 23:02:59 fetching corpus: 3850, signal 178498/237969 (executing program)
2022/10/02 23:02:59 fetching corpus: 3900, signal 179133/239090 (executing program)
2022/10/02 23:02:59 fetching corpus: 3950, signal 179776/240169 (executing program)
2022/10/02 23:03:00 fetching corpus: 4000, signal 181048/241510 (executing program)
2022/10/02 23:03:00 fetching corpus: 4050, signal 182768/243027 (executing program)
2022/10/02 23:03:00 fetching corpus: 4100, signal 184024/244360 (executing program)
2022/10/02 23:03:00 fetching corpus: 4150, signal 184468/245272 (executing program)
2022/10/02 23:03:00 fetching corpus: 4200, signal 185001/246245 (executing program)
2022/10/02 23:03:00 fetching corpus: 4250, signal 185336/247094 (executing program)
2022/10/02 23:03:00 fetching corpus: 4300, signal 186069/248124 (executing program)
2022/10/02 23:03:00 fetching corpus: 4350, signal 186842/249144 (executing program)
2022/10/02 23:03:01 fetching corpus: 4400, signal 187418/250120 (executing program)
2022/10/02 23:03:01 fetching corpus: 4450, signal 187814/251008 (executing program)
2022/10/02 23:03:01 fetching corpus: 4500, signal 188550/252034 (executing program)
2022/10/02 23:03:01 fetching corpus: 4550, signal 189109/252981 (executing program)
2022/10/02 23:03:01 fetching corpus: 4600, signal 189519/253842 (executing program)
2022/10/02 23:03:01 fetching corpus: 4650, signal 189985/254699 (executing program)
2022/10/02 23:03:01 fetching corpus: 4700, signal 190487/255542 (executing program)
2022/10/02 23:03:01 fetching corpus: 4750, signal 191755/256628 (executing program)
2022/10/02 23:03:01 fetching corpus: 4800, signal 192298/257494 (executing program)
2022/10/02 23:03:01 fetching corpus: 4850, signal 193252/258525 (executing program)
2022/10/02 23:03:02 fetching corpus: 4900, signal 193800/259394 (executing program)
2022/10/02 23:03:02 fetching corpus: 4950, signal 194334/260230 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/261069 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/261695 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/262379 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/263040 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/263692 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/264337 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/265023 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/265666 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/266336 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/267001 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/267653 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/268282 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/268918 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/269588 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/270296 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/270950 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/271641 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/272273 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/272922 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/273588 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/274277 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/274940 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/275580 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/276262 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/276908 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/277559 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/278190 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/278887 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/279530 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/280198 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/280896 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/281506 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/282158 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/282816 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/283484 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/284154 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/284779 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/285478 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/286163 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/286816 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/287511 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/288181 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/288818 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/289493 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/289666 (executing program)
2022/10/02 23:03:02 fetching corpus: 4997, signal 194783/289666 (executing program)
2022/10/02 23:03:05 starting 8 fuzzer processes
23:03:05 executing program 1:
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000000)=""/4096, 0x1000)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000001000), 0x0)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000001040)=""/15, 0xf)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000001080)=""/99, 0x63)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000001100)=""/235, 0xeb)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000001200)=""/4096, 0x1000)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000002200)=""/4096, 0x1000)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000003200)=""/162, 0xa2)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f00000032c0)=""/4096, 0x1000)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f00000042c0)=""/199, 0xc7)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f00000043c0)=""/189, 0xbd)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000004480)=""/222, 0xde)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000004580)=""/149, 0x95)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000004640)=""/4096, 0x1000)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000005640)=""/43, 0x2b)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000005680)=""/234, 0xea)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000005780)=""/141, 0x8d)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000005840)=""/158, 0x9e)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000005900)=""/104, 0x68)
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000005980)=""/179, 0xb3)

23:03:05 executing program 0:
sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0x0, 0x300, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller1\x00'}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x90}, 0x40)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000180)={0x1a4, 0x0, 0x100, 0x70bd29, 0x3, {{}, {@void, @val={0xc, 0x99, {0x7f, 0x75}}}}, [@NL80211_ATTR_MAC_ADDRS={0x10, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_MAC_ADDRS={0x64, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_MAC_ADDRS={0x28, 0xa6, 0x0, 0x1, [{0xa}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}]}, @NL80211_ATTR_MAC_ADDRS={0x40, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}]}, @NL80211_ATTR_MAC_ADDRS={0x28, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa}, {0xa}]}, @NL80211_ATTR_MAC_ADDRS={0x40, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}, {0xa}, {0xa}, {0xa}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_MAC_ADDRS={0x28, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}]}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x40}, 0x40040)
sendmsg$NL80211_CMD_TDLS_MGMT(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x28, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x28}, 0x1, 0x0, 0x0, 0x8012}, 0x40000)
clock_gettime(0x0, &(0x7f0000005e00)={<r0=>0x0, <r1=>0x0})
recvmmsg(0xffffffffffffffff, &(0x7f0000005cc0)=[{{&(0x7f00000004c0)=@vsock, 0x80, &(0x7f0000001740)=[{&(0x7f0000000540)=""/61, 0x3d}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/39, 0x27}, {&(0x7f00000015c0)=""/8, 0x8}, {&(0x7f0000001600)}, {&(0x7f0000001640)=""/254, 0xfe}], 0x6, &(0x7f00000017c0)=""/149, 0x95}, 0x8}, {{&(0x7f0000001880)=@l2tp={0x2, 0x0, @broadcast}, 0x80, &(0x7f0000001d80)=[{&(0x7f0000001900)=""/107, 0x6b}, {&(0x7f0000001980)=""/218, 0xda}, {&(0x7f0000001a80)=""/227, 0xe3}, {&(0x7f0000001b80)=""/236, 0xec}, {&(0x7f0000001c80)=""/232, 0xe8}], 0x5, &(0x7f0000001e00)=""/170, 0xaa}, 0x100}, {{&(0x7f0000001ec0)=@pppol2tpv3={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f00000032c0)=[{&(0x7f0000001f40)=""/237, 0xed}, {&(0x7f0000002040)=""/62, 0x3e}, {&(0x7f0000002080)=""/235, 0xeb}, {&(0x7f0000002180)=""/48, 0x30}, {&(0x7f00000021c0)=""/4096, 0x1000}, {&(0x7f00000031c0)=""/139, 0x8b}, {&(0x7f0000003280)=""/39, 0x27}], 0x7, &(0x7f0000003340)=""/4096, 0x1000}, 0x80}, {{&(0x7f0000004340)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f00000043c0), 0x0, &(0x7f0000004400)=""/144, 0x90}, 0x8}, {{&(0x7f00000044c0)=@pppol2tpin6={0x18, 0x1, {0x0, <r3=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @initdev}}}, 0x80, &(0x7f0000005b80)=[{&(0x7f0000004540)=""/83, 0x53}, {&(0x7f00000045c0)=""/136, 0x88}, {&(0x7f0000004680)=""/213, 0xd5}, {&(0x7f0000004780)=""/112, 0x70}, {&(0x7f0000004800)=""/59, 0x3b}, {&(0x7f0000004840)=""/217, 0xd9}, {&(0x7f0000004940)=""/191, 0xbf}, {&(0x7f0000004a00)=""/4096, 0x1000}, {&(0x7f0000005a00)=""/72, 0x48}, {&(0x7f0000005a80)=""/238, 0xee}], 0xa, &(0x7f0000005c40)=""/106, 0x6a}, 0x2}], 0x5, 0x40032041, &(0x7f0000005e40)={r0, r1+10000000})
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r3, &(0x7f0000006000)={&(0x7f0000005e80)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000005fc0)={&(0x7f0000005ec0)={0xcc, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x4}, {0x6, 0x11, 0x3}, {0x8, 0x15, 0x2}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x1f}, {0x6, 0x11, 0x1}, {0x8, 0x15, 0xa52}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x9}, {0x6, 0x11, 0x5}, {0x8, 0x15, 0x101}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x10008800}, 0x2008010)
r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000006040), 0x80100, 0x0)
mq_timedreceive(r4, &(0x7f0000006080)=""/30, 0x1e, 0xffffffff, &(0x7f00000060c0))
r5 = socket$inet_icmp(0x2, 0x2, 0x1)
writev(r5, &(0x7f00000074c0)=[{&(0x7f0000006100)="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", 0x1000}, {&(0x7f0000007100)="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", 0xfb}, {&(0x7f0000007200)="05f88a09f40adf62c7ef2dea4e18f5b617d0f7339a0baff1e215ec922db31a78c3a21e6986a489b9fd4a44f0f0abfd1b951b08db185dba77019052320006fa1b5daa7e3c49f892b521a1afadcfe4fc13f847e916970e7fe7d47463b4c41ab5c09c5e8c40bd8b7d7240bb9e910854f42a75f2ce938ff785a597484a84a516a9a337a43b9e3bf006efc696724d3f", 0x8d}, {&(0x7f00000072c0)="b4aa2d3ae5a8c91c82d12c45736c61a6f195bdead56b4ac2cf1d70302d12f8ac869e719835c1252f98c5a0e24eca25f03b9dde4545921c17eea1cdaeae26dc0f09b5f33d0233b4440865ab6b7f2aa1c09aeda91c8dac894db203b181f3b07104c8768ba178a6077d59baee0813d771ea04", 0x71}, {&(0x7f0000007340)="a61683a4519cb9b267a8be3cb73f5ef88536aa81d718cc87e2e9334fe0439e129a8983a2f4d310a6cb31", 0x2a}, {&(0x7f0000007380)="9ca0fbd35e998d7d2c81889c8037d96523b60d8b56c2d67298b9dfde42a56151f98a3e627f89b8d4d89067ce9e53bb0e11cd107ab3c723ea7f4f0909372ea965bb8df758f9405f796750df460ed815d8ead0", 0x52}, {&(0x7f0000007400)="c047cbb1ed9436d977ce1ff90fa07562f92e0cdb8ea962da6524318c50139e2b4185fa49b5e9ba1043207706e6800826766b7dcb1e6f3e7686e88588edf50634dfc119503f41863cbaac87d8f5cdc9e610cc7a7b8a49800757c17a39c94b92d8e5379c44877c4f8b48675c9608c952b6473f5d3dfeed599c41a3fd87e5d8329d14fb3b76d2436dfd5c917f9598df76f6355ead8faf57b9c8299cf644c5b3f73b94171246516acdb5531b9d68ee66", 0xae}], 0x7)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r4, &(0x7f0000007600)={&(0x7f0000007540)={0x10, 0x0, 0x0, 0x28571d6a05b81e8a}, 0xc, &(0x7f00000075c0)={&(0x7f0000007580)={0x14, 0x7, 0x1, 0x5, 0x0, 0x0, {0x1, 0x0, 0x4}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0xc0)
r6 = dup2(r2, r4)
sendmsg$TIPC_NL_BEARER_ADD(r6, &(0x7f0000007b40)={&(0x7f0000007640)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000007b00)={&(0x7f0000007680)={0x450, 0x0, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x174, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @private=0xa010102}}, {0x14, 0x2, @in={0x2, 0x4e22, @remote}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x81, @empty, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x3, @local, 0x4}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x8001, @loopback, 0x1}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0xc80, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xfffffffb}}}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}]}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x82}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x5}]}, @TIPC_NLA_LINK={0xc0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xa930}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffc01}]}]}, @TIPC_NLA_SOCK={0xb8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x80}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x4}, @TIPC_NLA_SOCK_CON={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7fff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xbd49}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x10001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xc0000000}]}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x81}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5c}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x400}]}]}, @TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xdf}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1ff}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x4}]}, @TIPC_NLA_MEDIA={0x4}, @TIPC_NLA_SOCK={0x38, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x303d}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}]}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1000}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xb7a}]}, @TIPC_NLA_BEARER={0xcc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e24, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_NAME={0xe, 0x1, @l2={'eth', 0x3a, 'vcan0\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x5, @loopback, 0x3ff}}, {0x14, 0x2, @in={0x2, 0x4e21, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}]}]}, 0x450}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000080)
r7 = syz_mount_image$msdos(&(0x7f0000007b80), &(0x7f0000007bc0)='./file0\x00', 0x7, 0x6, &(0x7f0000008fc0)=[{&(0x7f0000007c00)="63b506c8d3274478845b0d973f531ef2972eef6b1bc31f770a27e4b39cfbfec2ec49890ba3318f8bf872d614bcbb1f44fea094518f1d887d6d67ac9d4e4c9269963a9e815bedbb86ecd6e34b0c34ca667c42aa767a8582f96095c938a8a018195591d7296d30922400d71958e685dbc8ae98c694713f1c46052e1f8d7bf250b62294238ea92cce93e44d66e65bd3e9e13d299e9454", 0x95, 0x1000000000000000}, {&(0x7f0000007cc0)="c2d3bc82d320c8931e647a632345c642765e06aec5d43c1ad613bc11882aba7b44c2d2aa514945348cf26679686e8e93db4d6af5719aab0906d85d847c920a07537482c82525bc5793556bf6881323b3eaea84d2457ff571686ff091ba94679ff9633c6167ab0629212f95873000d945ad085b5ff80f33fcbf69664af79c91305ce2a1e1013ee433295172cd68c688b32430dfef8ccc7df6198797619a8f61179e35b931c86afb01d976c0dc24471eadfb2921b25d6cb20c0a61bfeeb0be840320100e9cf76d429a64dbdfcd294401611929cbb813376c53f214a9e8545901558344b67b2d376ddfd85131", 0xeb, 0x9}, {&(0x7f0000007dc0)="5c95768a52814ace3636f8022f940a621a9445d654c2769eee561e5d0c4cf19bd24250ec3b0d70c2a788a1ca38631560fd782cd18a46afd047f49b03a8706ee720232d35f5dde59743eab3c0241322d13ee696c5bef95a23459315fca78c11ac587f", 0x62, 0xffff}, {&(0x7f0000007e40)="e4349945ff55959af700bf459b1557505510ff010f8198c22f38d5de0a80302abfeae13df7084dfa5d9b255e80b613371ae79dcf8f448dcacb09992906ed8aa42e628a86b8636adfe7671bd63c12ca66ec1271dcbcb5dda43fffb8d18f9ce7bc48dc826202f1f5d9a2e4366718f9fe42ceb01c310f7b295f17e44dc2498e7bc92707edab", 0x84, 0xfb}, {&(0x7f0000007f00)="2965a4749efff517964599b5b4da4784ef7f12b09c7e7dade4b78331113e572e1a436ac269acd6b4d8941ac8cfb45840d796f6377762ddc9c53f72e3103be48a1a8e0d7d93e7fbdbf56eb848188f74cf5dc3e7ecbacb049175ca4ffbc8d92b4c7e9fbd9da2623dc16592924a5885498a8537dfc7e76960ce2e2b9f0e7a7d113d1ce2654b27abf84bae1b6ad612d6d302ac9e810ad155c2d3bad2e20764c5c84483e89fb953c62fa7ed79e8a567a1fdbb0432a542213b12515769b386229dee95fc759ec7e24d750b8ba9ead458cf8bc6cecd5fcd8b0bd4181d1d89aa6921e76617cce7958d898bbe62e9050c9fa49fcd63f09bd3ff0dffd3f17c68434a0e9e3517f64251da2c1e8b92c13b6799dceb5d2ac3f5058c3d34af495eb095b68d51076113c7315d97a79f604123353d1ba0161dca02eec589bce450d0025c633390380e01daf898918ba982d877de3602508e736fe80ed3172bb15722a52528f0e1a6957bf5cf30c92d6027ec54a27c12a7618277a1ec31acc55855ab68e60dcf2437e0a394ec13d90432107f18da1ceb40b8c5bdac9eae3c0bf5c4daecf51dc1a71af648a22a7b3f3ce2f7e707d7e44a5c0b2e37a9c3cc75986e8e833fa69fc2c5434f192e4ccf33e86ad09d511333e555acb5815ad261284ccba126a0ea939d6aa11e1f236fcd8d1b55b1df4dc180472b6897428cd277ca81930b5d47a031fd2455e19a0b8371cf9c4360bb4872dc74148bc0bc25a4dc61e582f571a8a3836f18fe2891af087768f9ea8ced9db04d881dedef1e5ca3b3bf99999439e3086ca53399155f99b20bf799380eafe8e7a9267d1eb3d728e1e64433c0186c7b3a43fccb79f418e4860dc92ec2f7f1d85a007075d026a72b914ead761117aa1d65e0d441c1a5ec390b9807619eec6f74389b650ffbcdd7db0c4ef1a3ca728262291500755a46d33a4085aa1800637c230585929004dede355cf57fd0b2ad46e2cfb00f96dbaaecd54b260a37fe0121ce982ce84c4a7a2ee116b62f01169670accc904423728e1acd817d5973fae60bfcb2c166a0173f9f2af4c48f61d52893e7b186488caf5036fbdf99a7726e0df402ae412fb9298886dc2dbe8320f4ad14426a0fcb0911015e8408f1526c702bdf4600720e35e7cc875f3b134c811707159707d135ee34bad7b4ea2d3f7dfc839a4582ac0b739689b13398c00aca8ab577f332f5485c9415f629030e04cfc58153d314162e5af63ce91d70c342787720a7868fe75178d6e4edd88829f64dd6533bdf5b8181eb5e8ca7dbff9455ecb16fefccd76b2b9d1efda8d0749dd99a25a2e961992c658ee8ca2ee10d57b15b6f2309a14bf56638267fd4ad652522e0f89e02e85fe2587119534cd806f8eb628ca96a08dc6750202dee0f1bf5f0bb621196ae4bc8b7d1fce8303bb97cbe894f37d4d301197468819760e1c9a534007258bc2f6bccfce354bbe7fafac755311501f24c9aa27107720843b7d2ab60a6edf192fe2776506577bf935c31e5303d1d0d96cccad99edcaf5406eff62cc82fa232f754d7174efc9d867746a92bb5aed28959cb3b7780d16154319534a4685c4d2a46fde9d0a70ad31c503b9b0564f387c5372af756842f2d8287ecf195d9bd2c0464be57d317053e67f440918c48c390e21036434c01b41a00bd255ae7f62d8efb6157d676fee84a51f6258ab6b8d199b2911e24a496f7df8200aeb5efd686735360fb63a1bb6b375fcdab65fb139c34f8a2bc68c933231916068c57710e598a4ffc1da2a342774cee04c91b69e79385d494f8d761c92c2b43bb6a7c3e26d689b2b3f7d886ab056d6075963ebf2505b3209f9fff1bdb93bffea7bc4521d18c2f1722c1e5c68bbd51ec3725ce89db62bd83623ecab8ba73d706d960deae3fa3370419937f8b403ff4eef330e4babc2a04cac6de065e60dbaceebc722543d3271ce07d5c7a7da639faeadb0ec2f3288951fa3f8968f89bb01cd57bd4438c57d064b2a47d2b6964ba16f909e62705e15bd4331afcc62808063af93fa82bbecbc5bf147c56b9f058754ba4b2f1be1af1c0b843725589ccbe5a7d60481f2898bb88971b0664333ad3f0ee1b6c1e1f78324ffe94fae78a4bf334411b4ca6338ef2617387338217e94a1f81a5bee18cebc7fb0af93ec8f50ecfe0964997d43db94281b928bef69204c75715f6719d78d3ef8246acbc5543ceece42bed3422fc64e105fd512287ffe1734dac124b80c33d0d3419d9812b9d4c17abea3ffc521bbe443e735332ad068189b75c074293dc9c378edb0cd71aacf4f4c2d655d0bdd518bb2f82c1f931ab0241b49693e8b73a7b74e9290f2d18feeb8419423ea2adba2299157ae3f966ffb85d136faf31acba73ca75defa7f6f57ca46140e1ce90013f034848ecb88f1141425a58cb13fe8d4e06d9e4f18dfb7cd3ac1baca7d39e69626773febfe415b2530d79276cd9be3248d8b424dce46fdbab769007276085eb3f9355e54635351baa250319b365cde327c51824384be77ce199e65203fcb18c9821955f66c50153ef3f619318c6e218bf68adc334a46e29b28fca6da15a4278d4f5963d5a7a820f7ff392443f998991e100116fd9f0e8b5133058d64b29fa2f2d196978315f723cee0c4639aef0817bc0252c913084c0a0ecfaeb5fb1772bed10272c1418f04b0a157f961224ceb0e7dfa1d6f502161f84d879501b33e502dd80c07a3004cd012df89a8d5057a63703796845799dd21c31eba2c3519490f0f5af9170279f78efffb98093a03024dcdbbd01a394e54aa8e4f75f0d1934923652ca7088a7ecc7459347474bba4a58cfbd9beafc83a2a87a954c0e1f367f2a1de707c5deff5f24b72661f7180f97c5c2f6395540a926e5f197ac3a88a2bdadf879cfd421196c0da7767268ee909d2318932ba43d19968c1dae1fd4e737a79ab97b9467e21f83aae791d6e19eac14734c49fbf9f57f8cf8e336bea337a3f909fcc281171749d312226749b52863322942b8ebacca190c1deec319ec05aac31c446d0ff830bf1d1ffde0ed527c3ab6db5eb91c185b96efde5477e8e3c254e566ee7725f001bc073a960dac1d44114febe136be540217c81776e5ff635931401cd7e2f7bd4f8abcc8b2845a872883d5bdcecab9287f30e51123af3ef5ae08fd3c022e676009cfb48865590912a86657c005de1a0903199ace47344b88db7f94653461e73d42aab33918762b2d351a2999e5b523af23bea7461a23cad34809ce27c701f9819e3d51b60742e9f68343c6bc3b3670a9c91297578a7b128e0586743b8c7afa9f92fd0dac4e60bb98fc541155dd0244588cbef3f376931866e8b60caa5e8bdd51ef3bb4b2149d5bc1ccfb19c6ed1487a93b5f95ba8f03f120072c6fe3b5daea810c30ee1d71ce028b8f1e61b52503c5bdbb75638b49a070a7c02d95094433beb255a60161ddc47b7b27f1ee7f08df77375febacefefa93df4e39f4b3a1b1e5027dc33773a5464e2459d0831d1989818145e701f7d699f8f45d6da0af1aaeee1e54c8831302b392ec517d2c7be23d1d04e550be5c41d4dc2693ddc4b6a9d969e943917e6abec4fded8e93315db78adca3cb6e07cdf7b0428ee7ed9bb2a8f8556a3d6c3378735d3b46e83782e9b038413ad2683780a9b0e91e71fc7e5fd1ef5b6f941b5d9ecfad1c26e485fef33f92865f72335a588418a7ecacf7b7e3f4cd4c82357dbe3bb19e89a3066808bdf9097e12dfb1611b649b0c7e4747aa90240bcf8a8c2a75d3d31016cefc0a44f8876d18f279a92ccfbbb9192e9c326b92b20c96ba7cd4f105b1d10920f53d4a0e143303da431d2aef4a89c77a32f20fbdb3199e68e8122fdcf47296e566815b89df306bb2a40d851560d6e40e7e06014864ea88048d36b901d6e56f20b808da559bab6f74d8c2c6685a8041ce12a0d49b62559c1e1fa6c468bc1b95b167a7dc83c915bfaa0ac012f5d81eba3380a395ffdce605b19b763a92f63d58b4162449789e548bdd5d4cbd45b3674d9527780b420c97ae41d6cdb0bed63a4213a4d7787fbdb290eca12dc742111366aadddecb51395d065b891d67ecdfe6ca7b3e4f90553f46073ebe20f220deee4bbd23a34b852d19a298f5b5ccc28f923b75b383b26d438b156b1bb5a0ed7b8538f727634dfdbf371712224984f0b6c672a9f3dd47c862d7521f866c13296ee35878ac5508eff6d20922cdfe684b381f46e349e48e7e8ffc94321de16ed8cd348597582c7f96e78ed87b75b2ee5c3240ff9c0065215498a04564bce36e6d9bdef0eb2391596e99d69795ce39d9e445a138f34e3087c5295ac9111cda75c26250fbe4ea5c5a7e34af183c6d4134b73c2742140304c1ae895d674a989d6d112cef31b622b6d463268d73e0a6e15fbff845549f1354f3ed7f2a9c94929529f192b260d5f1698d2258269bd47d1f9886060f00f43d0e3b82db1600d1c991eb5e9c2174b269d901394e94b145aaf198667d193533f4a68dfcbd6f5374002d36767279b1ad7231e3845d9ffba98679546f9a97ab1d7c25578d90469689467ca108085eb31ea0aac13b96ae5a879d44a7c5c7f8865fe0b51201f975e5e9d32f19cde7459d8d2bf374b2895e87205c93b541e9e40281a29c25070400805125a182aa154c6f9ccf6bf7d4612f5bc239ade8203fa5ffe5296da06da29cb1dab2f928236e0c1c6be55ded3bdfc8c2b2244cb76a35f936616546e63aaea061bc4af256948e2035c11b054d25991161f581519e44f69c0fe9bffc0c700f96014ba36c49b9403914663fe8f055431b48bc3b56fde60d2864c87cceed573818d1a5948f1570a4c1428197d20e1769e1c79c480424e29bf5d68bd7b2519f8dd9710e9168374bcdcbaf5dabffe89a936cb02a42b1ec0cb1b58d5685ebb0a036ed8b9dd74ebc6683014188fb487691ea96a120a7ad6881efd3daf16e30ff00829ded18a78f6585b413b5a9022c3a401b9c0ddb9fa0f1a96023ba5010de61b83e9ecaa3d6fd8130c722db29e5f09ae43e1c12a29ba991397187f5627a16345aacb34ee22e4dd65703981dab3a315d9740acbe7fd91b456143b4f0654f74db7d3873fbe0949225849fba918e8ee5ddcdc8861bd76f394f89d58ebd35273c59e5c6df761dd8f0bf3a22e688327b186ba547a62bd0857c518f5b792d6296c7ad19af0d2d6496b1196036080c4e25d74c220750553ee7c8475197e7d6468659819774d02b603ab51550d1cdabf841ac16782c01ba17eff0282f91226ac2b19eed68c42f0143c06ba37ebe128a7ebf130d09c7d1c108bc6fd4c37584f57f9737cb52a8eb686bb1930c05a3648543cb6f6a4e9433e3980a40f6e29fe946aa4f9028f8af6e100d08d517642211d12c82f362bf573a48511c2a6c1cc8723f584f3d7d2a2bd5a6581f3db29a9824a6960d3b52ca08063beb27d5129e4f89f7fe604c33560c259592aef3e82da6e1411c59c32665dbbf94577449d40e69a13c332ab3ede1cd48d84179f2e364d5442a8ca11f11bb1522a1afcbc111ffdf21cbb19f1b860e42f881ddc9ada0bf9c77e412c084028ce272bf51b14e1c4e5a6d6971940b11fbc2680d9f313e5dd672cda9f14bd37e1ba9d6c6adb2d8fa0cede0b66bf54e1c250e2e4d5d8439aa6969a688a9aba1f431840dec3c9abd52b0a623db074dad6b462198775698d2e07984b7068d51a64e34336f88b06fd575a8fa79ef5cf61d0ff72706427401418cc3ad4e46f2aa382abc64609952bff4e1c819b0685717329398ace3d71f9fd990f01d09fb3aa0c5ce67", 0x1000, 0x3}, {&(0x7f0000008f00)="a26d721614c60d3bd568f61fe37b8c5bc6b10533fa2a9b8d4ef219003433a09c4950613252faba7b6503a6626a55f5799b3044cb2123c4982cfee0eb74eb0b2c54eccaa7a4a3d679be6f6304cffda2191597fccd06e3fdb2c6ba01775af80e0fe3738cdd33869c013a00dd5354e3d6d3bb09ebfbf85772d9d981de407cd880c732642f03d02ea5b944fa20f49f9d71131df37513328360f463cc39fed2d9d5c806e296081f7058bba43eb17282eeb41e89b9b27101df9acf729676d65e1fe0", 0xbf}], 0x2d0048, &(0x7f0000009080)={[{@fat=@fmask={'fmask', 0x3d, 0x2}}, {@fat=@tz_utc}, {@nodots}, {@nodots}], [{@uid_eq={'uid', 0x3d, 0xee00}}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@permit_directio}, {@permit_directio}, {@pcr={'pcr', 0x3d, 0xb}}, {@fsmagic={'fsmagic', 0x3d, 0x7ff}}, {@uid_gt={'uid>', 0xee00}}]})
syncfs(r7)
perf_event_open(&(0x7f0000009180)={0x2, 0x80, 0x9, 0x3, 0xed, 0x1, 0x0, 0x8, 0x40, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0xc837, 0x0, @perf_config_ext={0xb7d9, 0x20}, 0x800, 0x7f, 0x6, 0x4, 0x80000001, 0x6, 0x400, 0x0, 0xfffffffb, 0x0, 0x1}, 0x0, 0xe, r4, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r3, 0x40089413, &(0x7f0000009200)=0x64b)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000009280)={'wpan3\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000092c0)={'wpan4\x00', <r9=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(0xffffffffffffffff, &(0x7f0000009380)={&(0x7f0000009240)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000009340)={&(0x7f0000009300)={0x2c, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_OUT_LEVEL={0x8, 0x1f, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x2c}}, 0x0)

23:03:05 executing program 2:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(r0, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f00000000c0)={0x224, r1, 0x20, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x20, 0x80}}}}, [@NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x322}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x2}, @NL80211_ATTR_STA_FLAGS={0x8, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_MFP={0x4}]}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xdf, 0xbe, "134351c72c950a513e2e94221979880ce5dd1206b58bb51facb960d3544799491010cf63c9cdfc36d3b9978d9b3ff3b2048de755892ecc20fcca9cf31d52b1d824e8e404e9222fa85d78ed9f2d2d62b6cc32d53d098f057442cd1827fb9c292cb659f91712b2eb09e0d4e011303a36a0e59c7eb89faa47802ff8754a02c3b4d8f57ddb23d33d7fb16914cf3ca7a4969e21c91bd1b390755ea18d39397ae654165897b3b4f924ff3aa5fa760c48599fc71cfce4e33166e6e29a752b29b71668c4d5a74ab01df5fd8a8ec84dfc4a530a3b73a37376981e95d2792611"}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x447}, @NL80211_ATTR_STA_EXT_CAPABILITY={0xe4, 0xac, "256ca068faebe91f306fc9eb2c7b56a10a2d091df718aa2bd971bda34e6d1939d61c2af889ebe7736466f2e0a44ab53ed868f7b4213ecb8d2cefd3fd5c45f17cd19e808a69f6104a0b6d48df184dd24403801cc1b8389a07eb77f90bfcac38b924b0929862fa4e857abcf1c96e6d08afe6b92d577b4e93788ead79f50b2d18d055e02a3d72d1789961ad5792a3898ddff23a188e420df990a91195ecb08979d2f7b0bd1cfeeab264fccf6399080cb4d609a0b4ff600f77cb27c5ccc286354ee5f07278d232833abe5106f316a4f87db412959d7cf432fedbe4b431b9e16d230c"}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x3}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x645}]}, 0x224}, 0x1, 0x0, 0x0, 0x40}, 0x8001)
readv(0xffffffffffffffff, &(0x7f0000000700)=[{&(0x7f0000000380)=""/12, 0xc}, {&(0x7f00000003c0)=""/143, 0x8f}, {&(0x7f0000000480)=""/114, 0x72}, {&(0x7f0000000500)=""/19, 0x13}, {&(0x7f0000000540)=""/212, 0xd4}, {&(0x7f0000000640)=""/166, 0xa6}], 0x6)
r2 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x80489439, &(0x7f0000000780))
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000800)={0x8f7, 0x5, 0x0, 'queue1\x00', 0x1})
ioctl$FITRIM(r2, 0xc0185879, &(0x7f00000008c0)={0x200, 0x1, 0x7})
close(0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_IBSS(r0, 0xfffffffffffffffc, 0x8040)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000940), r2)
sendmsg$NL80211_CMD_DEL_PMK(r3, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x38, r4, 0x400, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x38}, 0x1, 0x0, 0x0, 0x14}, 0x8084)
fsetxattr$security_selinux(r0, &(0x7f0000000a40), &(0x7f0000000a80)='system_u:object_r:crond_var_run_t:s0\x00', 0x25, 0x2)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x5db01042de521c81}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x1c, r1, 0x4, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, ["", "", ""]}, 0x1c}}, 0x2000000)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000bc0), 0x20000, 0x0)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000c40), r0)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r5, &(0x7f0000000d00)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x1c, r6, 0x300, 0x70bd2d, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040}, 0x4000000)
r7 = open_tree(0xffffffffffffffff, &(0x7f0000000d40)='./file0\x00', 0x80100)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000d80)={{0x1, 0x1, 0x18, r7, {0xbc, 0x1}}, './file0\x00'})

[   74.974338] audit: type=1400 audit(1664751785.357:6): avc:  denied  { execmem } for  pid=290 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
23:03:05 executing program 3:
splice(0xffffffffffffffff, &(0x7f0000000000)=0x2d, 0xffffffffffffffff, &(0x7f0000000040)=0xae7b, 0x5, 0x9)
sendmsg$NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x4, 0x3f}}}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80000001}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x37a}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x980}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8}]}, 0x60}, 0x1, 0x0, 0x0, 0x8001}, 0x800)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x6)
socketpair(0x29, 0x800, 0x6, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$TIPC_NL_PEER_REMOVE(r1, &(0x7f0000000600)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2004820}, 0xc, &(0x7f00000005c0)={&(0x7f0000000240)={0x368, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x38f}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x10000}]}, @TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}]}, @TIPC_NLA_LINK={0x110, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe08}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa371}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6b7e}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x401}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffff7f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}]}, @TIPC_NLA_LINK={0xb4, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x415b}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1e8e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}]}, @TIPC_NLA_MEDIA={0x11c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000000}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffff48}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000000}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10001}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe44}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xda3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7ff}]}]}, 0x368}, 0x1, 0x0, 0x0, 0x90}, 0x40004)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000640), 0x8000, 0x0)
ioctl$TIOCL_SETVESABLANK(r2, 0x541c, &(0x7f0000000680))
sendmsg$TIPC_NL_BEARER_GET(r0, &(0x7f00000009c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000700)={0x25c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x68, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x200}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x710}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x100}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}]}, @TIPC_NLA_NODE={0xec, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "3d2574e34904aee47f613a8286f4f2668757f1fa4ab2971098a349bc"}}, @TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "047983bbbf577d1e078974e00ae05e9734ca76898457062238a77e56ef41789baf5b01"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xa377}, @TIPC_NLA_NODE_KEY={0x49, 0x4, {'gcm(aes)\x00', 0x21, "86443c437743b6997cb350079a310c5ea12f7f043e722949b86a6b7c33afcbb599"}}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x7b}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x10000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1f}]}, @TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x20}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}]}, @TIPC_NLA_BEARER={0x6c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1b7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffff9}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}]}]}]}, 0x25c}, 0x1, 0x0, 0x0, 0x80}, 0x4040)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000a00)={0x437, 0x6, 0x5, 0xeac3, 0x19, "b0ae430cbfcfcbd4"})
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000a40)='syz0\x00', 0x0, 0xffffffffffffffff)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000ac0), 0xffffffffffffffff)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b00)={0x58, r3, 0x200, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1f}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x78}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x101}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x101}]}, 0x58}}, 0x80)
recvmmsg$unix(r0, &(0x7f0000002700)=[{{&(0x7f0000000c00), 0x6e, &(0x7f0000002200)=[{&(0x7f0000000c80)=""/64, 0x40}, {&(0x7f0000000cc0)=""/209, 0xd1}, {&(0x7f0000000dc0)=""/233, 0xe9}, {&(0x7f0000000ec0)=""/194, 0xc2}, {&(0x7f0000000fc0)=""/97, 0x61}, {&(0x7f0000001040)=""/217, 0xd9}, {&(0x7f0000001140)=""/134, 0x86}, {&(0x7f0000001200)=""/4096, 0x1000}], 0x8}}, {{&(0x7f0000002280), 0x6e, &(0x7f0000002540)=[{&(0x7f0000002300)=""/39, 0x27}, {&(0x7f0000002340)=""/29, 0x1d}, {&(0x7f0000002380)=""/137, 0x89}, {&(0x7f0000002440)=""/123, 0x7b}, {&(0x7f00000024c0)=""/101, 0x65}], 0x5, &(0x7f00000025c0)=[@rights={{0x18, 0x1, 0x1, [<r4=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff]}}], 0x130}}], 0x2, 0x0, 0x0)
ioctl$GIO_CMAP(r5, 0x4b70, &(0x7f0000002780))
sendmsg$NFT_MSG_GETTABLE(r10, &(0x7f0000002880)={&(0x7f00000027c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002840)={&(0x7f0000002800)={0x40, 0x1, 0xa, 0x5, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x8880)
recvmsg$unix(r10, &(0x7f0000002d00)={&(0x7f0000002900)=@abs, 0x6e, &(0x7f0000002b40)=[{&(0x7f0000002980)=""/166, 0xa6}, {&(0x7f0000002a40)=""/8, 0x8}, {&(0x7f0000002a80)=""/95, 0x5f}, {&(0x7f0000002b00)=""/5, 0x5}], 0x4, &(0x7f0000002b80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r11=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x148}, 0x32141)
r12 = open_tree(r8, &(0x7f0000002d40)='./file0\x00', 0x1000)
r13 = dup(r7)
sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000002e40)={&(0x7f00000028c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002e00)={&(0x7f0000002d80)={0x78, 0x0, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [{0x8, 0x1, r9}, {0x8, 0x1, r11}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x10001}, @NBD_ATTR_SOCKETS={0x3c, 0x7, 0x0, 0x1, [{0x8, 0x1, r4}, {0x8, 0x1, r12}, {0x8, 0x1, r4}, {0x8, 0x1, r10}, {0x8, 0x1, r2}, {0x8, 0x1, r13}, {0x8, 0x1, r6}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4004010}, 0x200080c0)
ioctl$KDSETLED(0xffffffffffffffff, 0x4b32, 0x4)

23:03:05 executing program 4:
r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x184000, 0x0)
close_range(r0, r1, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r1, 0x54a2)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r2, &(0x7f0000000080)={0x20000004})
ioctl$BTRFS_IOC_WAIT_SYNC(r2, 0x40089416, &(0x7f00000000c0))
r3 = open(&(0x7f0000000100)='./file0\x00', 0x180, 0x41)
ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000140))
write$P9_RLCREATE(r3, &(0x7f0000000180)={0x18, 0xf, 0x2, {{0x8, 0x0, 0x7}, 0x8}}, 0x18)
ioctl$BTRFS_IOC_QGROUP_LIMIT(r2, 0x8030942b, &(0x7f00000001c0)={0x4, {0x33, 0x2, 0x4, 0x7ff, 0x9e05}})
ioctl$AUTOFS_IOC_FAIL(r3, 0x9361, 0xfffffffffffffe00)
fchdir(r3)
sendmsg$ETHTOOL_MSG_EEE_SET(r1, &(0x7f00000002c0)={&(0x7f0000000200), 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x24, 0x0, 0x700, 0x70bd2a, 0x25dfdbff, {}, [@ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}, @ETHTOOL_A_EEE_TX_LPI_TIMER={0x8, 0x7, 0x8000000}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000380)=<r4=>0x0)
perf_event_open(&(0x7f0000000300)={0x4, 0x80, 0x8, 0x3, 0x3, 0xc0, 0x0, 0x8001, 0x10, 0x6, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x5, 0x2, @perf_config_ext={0x17c7, 0x4}, 0x10400, 0xd2b, 0x9, 0x8, 0x3f, 0x3ff, 0x3, 0x0, 0x3f, 0x0, 0x2}, r4, 0x3ff, r3, 0x1)
ioctl$INCFS_IOC_CREATE_FILE(r2, 0xc058671e, &(0x7f00000007c0)={{'\x00', 0x1}, {0x380}, 0x20, 0x0, 0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)="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", 0x18b, 0x0, &(0x7f0000000600)={0x2, 0x148, {0x0, 0xc, 0x70, "a0ab24407fcca824925bda9edf5f256087ca88995e06fd85938e3939c3677734b9c65e4734a1bd2c1b9f5d489b2b376a30d5b15a6ff29293059e131c7f70c9f11acf7eca4738fb06a3f7dcc25bc12e2aef81d01022136ac4b9d7c1bd3cb6ed282f65e17d314ebf4722ef359137867d07", 0xcb, "bb6437d1a50a00160cd6dfb33239e25b1286533360f08cf25a79e821acc30d8fb9b0be7089f1dd6d2a8092f289af46f1dfcbb4110d2724f3340e82e3b5a7b1f83f0390a404e316c82a95ff5a309ac5c9120e8d6c98be592e7e8fe8e4034b8e2e7a299f3f7839b6b99492b2fdfd703e38d89578157be80e405ecac7e3bbafa68fd1e523a035f9396f0f036ecf26c57f41568508a5060e6771d76811f3ff1a8c6f645154f5c472f965d37074d1a38f49927bacda98dce59481f576d4858ee9fc454e94e0a9911759fdff1e66"}, 0x62, "048ab851bb69cd483f2238f1a8eb10a2247dbc6affc9ef68630bab82d08a094491108da2d1b677ae444692544d2844593cfafac6f82dcf504cfbff80502769d1f0d7f6c2d7007671f7c185d9fbe6ee0c2687e92e2d658c1c6a663d85a24f18ee0197"}, 0x1b6})
r5 = syz_open_dev$vcsn(&(0x7f0000000840), 0x9, 0x10d500)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(r5, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x1c, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000010}, 0x20040000)
ioctl$EXT4_IOC_GET_ES_CACHE(r3, 0xc020662a, &(0x7f0000000980)={0x9e, 0x7fffffff, 0x0, 0x3359, 0x1, [{0xfffffffeffffffff, 0x7fffffff, 0x29c, '\x00', 0x401}]})

23:03:05 executing program 5:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x50120409}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r0, 0x20, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x4}}}}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_BSS_BASIC_RATES={0xd, 0x24, [{0xb}, {0x5a, 0x1}, {0x4}, {0x33, 0x1}, {0x36, 0x1}, {0x3}, {0x5, 0x1}, {0x30}, {0x6, 0x1}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x4008001)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f0000000180)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
ioctl$AUTOFS_IOC_FAIL(0xffffffffffffffff, 0x9361, 0x5)
sendmsg$NL80211_CMD_SET_KEY(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, r0, 0x200, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x10000, 0xe}}}}, [@NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8084}, 0x4000)
r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000004c0), 0x400, 0x0)
close(r2)
sendmsg$NL80211_CMD_UNEXPECTED_FRAME(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x980000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x14, r1, 0x2, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4040000}, 0x8880)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x2, 0x0)
fallocate(r3, 0x64, 0x7f, 0x1)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000680)={{0x1, 0x1, 0x18, <r4=>r3, {0x8000}}, './file0\x00'})
sendmsg$NL80211_CMD_GET_REG(r4, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x28, 0x0, 0x4, 0x70bd26, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x6e}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0xd6aece0158e534c9}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040000}, 0x20000c0)
ioctl$RTC_SET_TIME(r4, 0x4024700a, &(0x7f00000007c0)={0x2e, 0x27, 0xa, 0x8, 0x6, 0x4, 0x6, 0xfb, 0x1})
r5 = open(&(0x7f0000000800)='./file0/file0\x00', 0x30100, 0x0)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000880), r4)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000a00)={'sit0\x00', &(0x7f0000000980)={'ip6gre0\x00', <r7=>0x0, 0x4, 0x32, 0x0, 0x8000, 0x8, @private1, @loopback, 0x20, 0x40, 0xfff, 0x3f}})
sendmsg$BATADV_CMD_GET_HARDIF(r5, &(0x7f0000000b00)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x58, r6, 0x2, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x8000}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x9}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @local}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0xb9}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x800}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x40}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r7}]}, 0x58}, 0x1, 0x0, 0x0, 0x5}, 0x4000090)
sendmsg$NL80211_CMD_SET_WOWLAN(r5, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x38, r1, 0x2, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x1, 0x8}}}}, [@NL80211_ATTR_WOWLAN_TRIGGERS={0x10, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_DISCONNECT={0x4}, @NL80211_WOWLAN_TRIG_DISCONNECT={0x4}, @NL80211_WOWLAN_TRIG_RFKILL_RELEASE={0x4}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40800}, 0x40000)

23:03:05 executing program 6:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$BINDER_GET_FROZEN_INFO(r0, 0xc00c620f, &(0x7f0000000000))
ioctl$FIONCLEX(r0, 0x5450)
r1 = fsmount(r0, 0x0, 0x8)
ioctl$SNAPSHOT_CREATE_IMAGE(r1, 0x40043311, &(0x7f0000000040))
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r1, 0xc038943b, &(0x7f00000000c0)={0x8, 0x8, '\x00', 0x0, &(0x7f0000000080)=[0x0]})
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000100), 0x7fff)
ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r1, 0x40082102, &(0x7f0000000140))
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff}, './file0\x00'})
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r2, 0xf504, 0x0)
getsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f00000001c0), 0xfffffffffffffffe)
r3 = syz_open_dev$vcsn(&(0x7f0000000200), 0x9, 0x100)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r3, 0xc0105303, &(0x7f0000000240)={0x9, 0x1, 0x3})
pread64(r1, &(0x7f0000000280)=""/143, 0x8f, 0x7)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0x20, 0x0, &(0x7f0000000340)=[@acquire_done={0x40106309, 0x2}, @free_buffer], 0xf8, 0x0, &(0x7f0000000380)="e0166620d28beae5659b38406ed9f1e0002c133ff0db4ee363929e8b249adf97680dd25fff9fd79fcfc4583fa3580df430e302f7344f57abff9b8c8435d8aec974e15fe0ccd16741767a7b8b7489b0855fae89af4c77bf32719eb2b1c3c25e9080997cbf0e29b9dfa224139e9c2a8d8d921eddfcc84f2fa5921227a3958ceb0145a82084ddee2d7b8f2cbe57846cdcfc6192ddf5548c00e0bc3334857ea4904fb833b4e65f093749100b45aa3ac5802e7e37b00a948b3e6991a398610cf33eb0306f9b2d2d50d6c9b9ba625a1d5d6fed8347712b7acd8a1a6d0cec2243d29a0efd0fe05d853b5e1a6c1f86c12e18ea039b03fb77553ec1a2"})
recvmmsg$unix(r3, &(0x7f00000047c0)=[{{&(0x7f00000004c0)=@abs, 0x6e, &(0x7f0000000640)=[{&(0x7f0000000540)=""/3, 0x3}, {&(0x7f0000000580)=""/171, 0xab}], 0x2, &(0x7f0000000680)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{&(0x7f0000000740), 0x6e, &(0x7f00000018c0)=[{&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/214, 0xd6}], 0x2, &(0x7f0000001900)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xc8}}, {{&(0x7f0000001a00)=@abs, 0x6e, &(0x7f0000001b80)=[{&(0x7f0000001a80)=""/197, 0xc5}], 0x1, &(0x7f0000001bc0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc8}}, {{&(0x7f0000001cc0)=@abs, 0x6e, &(0x7f0000003240)=[{&(0x7f0000001d40)=""/251, 0xfb}, {&(0x7f0000001e40)=""/4096, 0x1000}, {&(0x7f0000002e40)=""/164, 0xa4}, {&(0x7f0000002f00)=""/196, 0xc4}, {&(0x7f0000003000)=""/179, 0xb3}, {&(0x7f00000030c0)=""/70, 0x46}, {&(0x7f0000003140)=""/198, 0xc6}], 0x7, &(0x7f00000032c0)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x98}}, {{0x0, 0x0, &(0x7f00000046c0)=[{&(0x7f0000003380)=""/4096, 0x1000}, {&(0x7f0000004380)=""/125, 0x7d}, {&(0x7f0000004400)=""/244, 0xf4}, {&(0x7f0000004500)=""/151, 0x97}, {&(0x7f00000045c0)=""/249, 0xf9}], 0x5, &(0x7f0000004740)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x60}}], 0x5, 0x102, &(0x7f0000004900))
ioctl$FIONCLEX(r5, 0x5450)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r4, 0x3304)
r7 = openat$vcs(0xffffffffffffff9c, &(0x7f0000004940), 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES(r7, 0x2, &(0x7f0000004ac0)=[r6, 0xffffffffffffffff], 0x2)

23:03:05 executing program 7:
r0 = shmget$private(0x0, 0x4000, 0x40, &(0x7f0000ffb000/0x4000)=nil)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x6000)
shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x2000)
r1 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffc000/0x3000)=nil)
shmctl$SHM_STAT_ANY(r1, 0xf, &(0x7f0000000000)=""/229)
shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x0)
mbind(&(0x7f0000ffa000/0x5000)=nil, 0x5000, 0x0, &(0x7f0000000100)=0x2, 0x8001, 0x0)
shmat(r1, &(0x7f0000ffb000/0x4000)=nil, 0x0)
mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x3, &(0x7f0000000140)=0x100, 0x9, 0x3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000000, 0x30, 0xffffffffffffffff, 0x0)
shmat(r1, &(0x7f0000ff9000/0x2000)=nil, 0x1000)
shmat(r1, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
r2 = shmget$private(0x0, 0x3000, 0x10, &(0x7f0000ffa000/0x3000)=nil)
shmat(r2, &(0x7f0000ffd000/0x1000)=nil, 0x1000)
shmctl$IPC_RMID(r2, 0x0)
r3 = shmget(0x2, 0x1000, 0x1000, &(0x7f0000ffd000/0x1000)=nil)
shmat(r3, &(0x7f0000ffd000/0x2000)=nil, 0x1000)
shmat(r0, &(0x7f0000ff9000/0x3000)=nil, 0x4000)
shmat(r3, &(0x7f0000ffd000/0x3000)=nil, 0x3800)
shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x0)

[   76.240932] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   76.242872] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   76.250846] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   76.252146] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   76.261031] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   76.262278] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   76.267726] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   76.274176] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   76.279306] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   76.308001] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   76.310139] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   76.312040] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   76.314134] Bluetooth: hci0: HCI_REQ-0x0c1a
[   76.315410] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   76.325242] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   76.331127] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   76.335838] Bluetooth: hci1: HCI_REQ-0x0c1a
[   76.336040] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   76.348180] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   76.349290] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   76.350518] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   76.352231] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   76.352436] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   76.353377] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   76.356731] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   76.360289] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   76.362582] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   76.366187] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   76.367839] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   76.370253] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   76.371673] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   76.374075] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   76.375436] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   76.375503] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   76.379182] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   76.380564] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   76.383518] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   76.386202] Bluetooth: hci3: HCI_REQ-0x0c1a
[   76.389096] Bluetooth: hci6: HCI_REQ-0x0c1a
[   76.403240] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   76.404702] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   76.406679] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   76.408293] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   76.412636] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   76.413743] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   76.415422] Bluetooth: hci4: HCI_REQ-0x0c1a
[   76.418454] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   76.420351] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   76.421419] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   76.422547] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   76.424161] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   76.426253] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   76.430311] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   76.431354] Bluetooth: hci2: HCI_REQ-0x0c1a
[   76.432953] Bluetooth: hci5: HCI_REQ-0x0c1a
[   76.442727] Bluetooth: hci7: HCI_REQ-0x0c1a
[   78.323177] Bluetooth: hci0: command 0x0409 tx timeout
[   78.387106] Bluetooth: hci1: command 0x0409 tx timeout
[   78.450857] Bluetooth: hci6: command 0x0409 tx timeout
[   78.451537] Bluetooth: hci3: command 0x0409 tx timeout
[   78.452121] Bluetooth: hci5: command 0x0409 tx timeout
[   78.452593] Bluetooth: hci2: command 0x0409 tx timeout
[   78.515932] Bluetooth: hci4: command 0x0409 tx timeout
[   78.516590] Bluetooth: hci7: command 0x0409 tx timeout
[   80.371091] Bluetooth: hci0: command 0x041b tx timeout
[   80.435811] Bluetooth: hci1: command 0x041b tx timeout
[   80.499869] Bluetooth: hci2: command 0x041b tx timeout
[   80.500285] Bluetooth: hci5: command 0x041b tx timeout
[   80.500679] Bluetooth: hci3: command 0x041b tx timeout
[   80.501102] Bluetooth: hci6: command 0x041b tx timeout
[   80.562816] Bluetooth: hci7: command 0x041b tx timeout
[   80.563231] Bluetooth: hci4: command 0x041b tx timeout
[   82.418799] Bluetooth: hci0: command 0x040f tx timeout
[   82.482844] Bluetooth: hci1: command 0x040f tx timeout
[   82.547826] Bluetooth: hci6: command 0x040f tx timeout
[   82.548267] Bluetooth: hci3: command 0x040f tx timeout
[   82.548674] Bluetooth: hci5: command 0x040f tx timeout
[   82.549122] Bluetooth: hci2: command 0x040f tx timeout
[   82.610811] Bluetooth: hci4: command 0x040f tx timeout
[   82.611214] Bluetooth: hci7: command 0x040f tx timeout
[   84.466805] Bluetooth: hci0: command 0x0419 tx timeout
[   84.531811] Bluetooth: hci1: command 0x0419 tx timeout
[   84.595834] Bluetooth: hci2: command 0x0419 tx timeout
[   84.596245] Bluetooth: hci5: command 0x0419 tx timeout
[   84.596631] Bluetooth: hci3: command 0x0419 tx timeout
[   84.597342] Bluetooth: hci6: command 0x0419 tx timeout
[   84.659818] Bluetooth: hci7: command 0x0419 tx timeout
[   84.660239] Bluetooth: hci4: command 0x0419 tx timeout
23:03:56 executing program 6:
syz_io_uring_setup(0x7969, 0x0, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000140)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
chroot(&(0x7f0000000340)='./file0\x00')

[  126.618475] audit: type=1400 audit(1664751837.001:7): avc:  denied  { open } for  pid=3690 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  126.620365] audit: type=1400 audit(1664751837.001:8): avc:  denied  { kernel } for  pid=3690 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  126.641330] ------------[ cut here ]------------
[  126.641352] 
[  126.641356] ======================================================
[  126.641360] WARNING: possible circular locking dependency detected
[  126.641364] 6.0.0-rc7-next-20220930 #1 Not tainted
[  126.641370] ------------------------------------------------------
[  126.641374] syz-executor.6/3692 is trying to acquire lock:
[  126.641380] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  126.641422] 
[  126.641422] but task is already holding lock:
[  126.641425] ffff888040176820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  126.641452] 
[  126.641452] which lock already depends on the new lock.
[  126.641452] 
[  126.641455] 
[  126.641455] the existing dependency chain (in reverse order) is:
[  126.641459] 
[  126.641459] -> #3 (&ctx->lock){....}-{2:2}:
[  126.641472]        _raw_spin_lock+0x2a/0x40
[  126.641484]        __perf_event_task_sched_out+0x53b/0x18d0
[  126.641495]        __schedule+0xedd/0x2470
[  126.641509]        schedule+0xda/0x1b0
[  126.641522]        exit_to_user_mode_prepare+0x114/0x1a0
[  126.641535]        syscall_exit_to_user_mode+0x19/0x40
[  126.641548]        do_syscall_64+0x48/0x90
[  126.641566]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.641578] 
[  126.641578] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  126.641592]        _raw_spin_lock_nested+0x30/0x40
[  126.641602]        raw_spin_rq_lock_nested+0x1e/0x30
[  126.641616]        task_fork_fair+0x63/0x4d0
[  126.641633]        sched_cgroup_fork+0x3d0/0x540
[  126.641647]        copy_process+0x4183/0x6e20
[  126.641658]        kernel_clone+0xe7/0x890
[  126.641667]        user_mode_thread+0xad/0xf0
[  126.641677]        rest_init+0x24/0x250
[  126.641689]        arch_call_rest_init+0xf/0x14
[  126.641706]        start_kernel+0x4c6/0x4eb
[  126.641721]        secondary_startup_64_no_verify+0xe0/0xeb
[  126.641736] 
[  126.641736] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  126.641752]        _raw_spin_lock_irqsave+0x39/0x60
[  126.641762]        try_to_wake_up+0xab/0x1930
[  126.641775]        up+0x75/0xb0
[  126.641789]        __up_console_sem+0x6e/0x80
[  126.641805]        console_unlock+0x46a/0x590
[  126.641821]        vprintk_emit+0x1bd/0x560
[  126.641837]        vprintk+0x84/0xa0
[  126.641852]        _printk+0xba/0xf1
[  126.641864]        regdb_fw_cb.cold+0x6c/0xa7
[  126.641881]        request_firmware_work_func+0x12e/0x240
[  126.641901]        process_one_work+0xa17/0x16a0
[  126.641919]        worker_thread+0x637/0x1260
[  126.641935]        kthread+0x2ed/0x3a0
[  126.641949]        ret_from_fork+0x22/0x30
[  126.641961] 
[  126.641961] -> #0 ((console_sem).lock){....}-{2:2}:
[  126.641974]        __lock_acquire+0x2a02/0x5e70
[  126.641991]        lock_acquire+0x1a2/0x530
[  126.642007]        _raw_spin_lock_irqsave+0x39/0x60
[  126.642018]        down_trylock+0xe/0x70
[  126.642032]        __down_trylock_console_sem+0x3b/0xd0
[  126.642048]        vprintk_emit+0x16b/0x560
[  126.642064]        vprintk+0x84/0xa0
[  126.642080]        _printk+0xba/0xf1
[  126.642090]        report_bug.cold+0x72/0xab
[  126.642106]        handle_bug+0x3c/0x70
[  126.642122]        exc_invalid_op+0x14/0x50
[  126.642146]        asm_exc_invalid_op+0x16/0x20
[  126.642158]        group_sched_out.part.0+0x2c7/0x460
[  126.642176]        ctx_sched_out+0x8f1/0xc10
[  126.642192]        __perf_event_task_sched_out+0x6d0/0x18d0
[  126.642203]        __schedule+0xedd/0x2470
[  126.642217]        schedule+0xda/0x1b0
[  126.642230]        exit_to_user_mode_prepare+0x114/0x1a0
[  126.642240]        syscall_exit_to_user_mode+0x19/0x40
[  126.642253]        do_syscall_64+0x48/0x90
[  126.642269]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.642281] 
[  126.642281] other info that might help us debug this:
[  126.642281] 
[  126.642284] Chain exists of:
[  126.642284]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  126.642284] 
[  126.642299]  Possible unsafe locking scenario:
[  126.642299] 
[  126.642301]        CPU0                    CPU1
[  126.642303]        ----                    ----
[  126.642306]   lock(&ctx->lock);
[  126.642311]                                lock(&rq->__lock);
[  126.642318]                                lock(&ctx->lock);
[  126.642324]   lock((console_sem).lock);
[  126.642329] 
[  126.642329]  *** DEADLOCK ***
[  126.642329] 
[  126.642331] 2 locks held by syz-executor.6/3692:
[  126.642338]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  126.642367]  #1: ffff888040176820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  126.642393] 
[  126.642393] stack backtrace:
[  126.642396] CPU: 0 PID: 3692 Comm: syz-executor.6 Not tainted 6.0.0-rc7-next-20220930 #1
[  126.642408] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  126.642416] Call Trace:
[  126.642420]  <TASK>
[  126.642424]  dump_stack_lvl+0x8b/0xb3
[  126.642442]  check_noncircular+0x263/0x2e0
[  126.642459]  ? format_decode+0x26c/0xb50
[  126.642475]  ? print_circular_bug+0x450/0x450
[  126.642492]  ? simple_strtoul+0x30/0x30
[  126.642508]  ? format_decode+0x26c/0xb50
[  126.642525]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  126.642542]  __lock_acquire+0x2a02/0x5e70
[  126.642563]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  126.642586]  lock_acquire+0x1a2/0x530
[  126.642602]  ? down_trylock+0xe/0x70
[  126.642619]  ? lock_release+0x750/0x750
[  126.642639]  ? vprintk+0x84/0xa0
[  126.642657]  _raw_spin_lock_irqsave+0x39/0x60
[  126.642668]  ? down_trylock+0xe/0x70
[  126.642684]  down_trylock+0xe/0x70
[  126.642699]  ? vprintk+0x84/0xa0
[  126.642716]  __down_trylock_console_sem+0x3b/0xd0
[  126.642733]  vprintk_emit+0x16b/0x560
[  126.642752]  vprintk+0x84/0xa0
[  126.642769]  _printk+0xba/0xf1
[  126.642780]  ? record_print_text.cold+0x16/0x16
[  126.642796]  ? report_bug.cold+0x66/0xab
[  126.642813]  ? group_sched_out.part.0+0x2c7/0x460
[  126.642832]  report_bug.cold+0x72/0xab
[  126.642850]  handle_bug+0x3c/0x70
[  126.642868]  exc_invalid_op+0x14/0x50
[  126.642886]  asm_exc_invalid_op+0x16/0x20
[  126.642898] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  126.642919] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  126.642930] RSP: 0018:ffff88801758fc48 EFLAGS: 00010006
[  126.642939] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  126.642946] RDX: ffff888020741ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  126.642954] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  126.642961] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff888040176800
[  126.642969] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  126.642979]  ? group_sched_out.part.0+0x2c7/0x460
[  126.642999]  ? group_sched_out.part.0+0x2c7/0x460
[  126.643019]  ctx_sched_out+0x8f1/0xc10
[  126.643038]  __perf_event_task_sched_out+0x6d0/0x18d0
[  126.643052]  ? lock_is_held_type+0xd7/0x130
[  126.643066]  ? __perf_cgroup_move+0x160/0x160
[  126.643077]  ? set_next_entity+0x304/0x550
[  126.643094]  ? update_curr+0x267/0x740
[  126.643112]  ? lock_is_held_type+0xd7/0x130
[  126.643126]  __schedule+0xedd/0x2470
[  126.643143]  ? io_schedule_timeout+0x150/0x150
[  126.643160]  ? rcu_read_lock_sched_held+0x3e/0x80
[  126.643180]  schedule+0xda/0x1b0
[  126.643195]  exit_to_user_mode_prepare+0x114/0x1a0
[  126.643207]  syscall_exit_to_user_mode+0x19/0x40
[  126.643221]  do_syscall_64+0x48/0x90
[  126.643238]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.643251] RIP: 0033:0x7f35e2ea8b19
[  126.643260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  126.643270] RSP: 002b:00007f35e041e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  126.643281] RAX: 0000000000000001 RBX: 00007f35e2fbbf68 RCX: 00007f35e2ea8b19
[  126.643288] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f35e2fbbf6c
[  126.643295] RBP: 00007f35e2fbbf60 R08: 000000000000000e R09: 0000000000000000
[  126.643302] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f35e2fbbf6c
[  126.643309] R13: 00007ffe1ba5912f R14: 00007f35e041e300 R15: 0000000000022000
[  126.643322]  </TASK>
[  126.698079] WARNING: CPU: 0 PID: 3692 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  126.698772] Modules linked in:
[  126.699013] CPU: 0 PID: 3692 Comm: syz-executor.6 Not tainted 6.0.0-rc7-next-20220930 #1
[  126.699599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  126.700417] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  126.700822] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  126.702143] RSP: 0018:ffff88801758fc48 EFLAGS: 00010006
[  126.702531] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  126.703050] RDX: ffff888020741ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  126.703573] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  126.704087] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff888040176800
[  126.704609] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  126.705139] FS:  00007f35e041e700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  126.705725] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  126.706164] CR2: 00007ff2d4bca269 CR3: 000000001869a000 CR4: 0000000000350ef0
[  126.706688] Call Trace:
[  126.706885]  <TASK>
[  126.707055]  ctx_sched_out+0x8f1/0xc10
[  126.707357]  __perf_event_task_sched_out+0x6d0/0x18d0
[  126.707741]  ? lock_is_held_type+0xd7/0x130
[  126.708061]  ? __perf_cgroup_move+0x160/0x160
[  126.708398]  ? set_next_entity+0x304/0x550
[  126.708718]  ? update_curr+0x267/0x740
[  126.709021]  ? lock_is_held_type+0xd7/0x130
[  126.709344]  __schedule+0xedd/0x2470
[  126.709623]  ? io_schedule_timeout+0x150/0x150
[  126.709968]  ? rcu_read_lock_sched_held+0x3e/0x80
[  126.710338]  schedule+0xda/0x1b0
[  126.710601]  exit_to_user_mode_prepare+0x114/0x1a0
[  126.710965]  syscall_exit_to_user_mode+0x19/0x40
[  126.711315]  do_syscall_64+0x48/0x90
[  126.711603]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.711987] RIP: 0033:0x7f35e2ea8b19
[  126.712263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  126.713575] RSP: 002b:00007f35e041e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  126.714129] RAX: 0000000000000001 RBX: 00007f35e2fbbf68 RCX: 00007f35e2ea8b19
[  126.714662] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f35e2fbbf6c
[  126.715181] RBP: 00007f35e2fbbf60 R08: 000000000000000e R09: 0000000000000000
[  126.715701] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f35e2fbbf6c
[  126.716215] R13: 00007ffe1ba5912f R14: 00007f35e041e300 R15: 0000000000022000
[  126.716739]  </TASK>
[  126.716913] irq event stamp: 1166
[  126.717162] hardirqs last  enabled at (1165): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  126.717849] hardirqs last disabled at (1166): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  126.718478] softirqs last  enabled at (900): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  126.719099] softirqs last disabled at (647): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  126.719717] ---[ end trace 0000000000000000 ]---
23:03:57 executing program 6:
syz_io_uring_setup(0x7969, 0x0, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000140)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
chroot(&(0x7f0000000340)='./file0\x00')

23:03:57 executing program 6:
syz_io_uring_setup(0x7969, 0x0, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0)
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$cgroup_ro(r0, &(0x7f0000000140)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
chroot(&(0x7f0000000340)='./file0\x00')

[  127.335773] hrtimer: interrupt took 18555 ns
23:03:57 executing program 6:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r1 = dup(r0)
setsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f0000000000)=0x3, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000), 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f00000001c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0xe20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "0cb0fae138cd1f2e03243f93be39f2c6d2a536c1f5f8d74a43b4c0bc27497234", "c04746ec5b12cf97d11a8bb546b56bcb9d3d359d9d4acaff8add614d1e90e4eab444f4e0c00eae0446225ae1436cfdf0", "ea96db76c1999c1a572451cf464ab9976bb3f922008ab90918dd869e", {"fba05ec01197a4559adff2fa54ac3691", "c0244d2350165cdb4de9cebb63137649"}}}}}}}, 0x0)
r3 = getpid()
r4 = pidfd_open(r3, 0x0)
pidfd_send_signal(r4, 0x0, &(0x7f0000000100)={0x0, 0x0, 0xfffffffa}, 0x0)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f0000000080)='+-^))[#\x85#}#[@\x00', 0x0, r4)
write$tun(0xffffffffffffffff, &(0x7f0000000280)={@void, @val={0x2, 0x0, 0xffff, 0x1, 0xe84, 0x5}, @ipv6=@udp={0x5, 0x6, "85a13b", 0x17f, 0x11, 0xff, @empty, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[@fragment={0x0, 0x0, 0x80, 0x0, 0x0, 0xd, 0x66}, @routing={0xed, 0x8, 0x0, 0x1a, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @private2={0xfc, 0x2, '\x00', 0x1}, @private0, @mcast2]}, @routing={0x2c, 0x8, 0x2, 0x1, 0x0, [@local, @ipv4={'\x00', '\xff\xff', @empty}, @private0={0xfc, 0x0, '\x00', 0x1}, @private2]}, @dstopts={0x84, 0x17, '\x00', [@generic={0xe8, 0xb5, "e59688f4b7d8f9e4a5fc71ce19301e2797f16c4da9eceec628bb69650fc4358847d165fdd8c9f0ccbc757e711f8b2798c4ecc8ba663cca451db98887054d4eb037d1d82505302f722c67962c03d46d04c9fb98708959745c6e02831585992e9257823b268bd8558ac86aee6dc465301d8c8ae949b0e953534c440782a4abb3427a2a487ab7e68dcae3eea5cab640fe04d9574440b103430d96b1d4bbff203b05414650dcb944945ee7497d37bdf1f4d92d93271140"}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}], {0x4e24, 0x4e22, 0x1f, 0x0, @gue={{0x2, 0x1, 0x0, 0x0, 0x100}, "bc37a6e9bca9bdabec5b11d083ef1f"}}}}}, 0x1b1)

23:03:58 executing program 6:
mknod(&(0x7f0000008d80)='./file0\x00', 0x0, 0x0)
mount$9p_unix(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1a901e, 0x0)
getsockname$unix(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000100)=0x6e)
mount$9p_unix(0x0, &(0x7f0000000400)='./file0\x00', 0x0, 0x100000, 0x0)
umount2(&(0x7f0000000140)='./file0\x00', 0x8)
r0 = syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x7, 0x1, &(0x7f0000000440)=[{&(0x7f0000000300)="d56bc214b498ece184f854076dd38d1d32a760d0108fdc460c333e64e3bbd59d8b239f3d9d5e1fe0114e98a037a00e6346baed45a64f4ac4dc39c9e92e4fa530e9b1ab647ed571f86d92b571b0f1b123ee26b7b242a392c308a6df1d35346e7f893b4cc0c273627afa744e06dec17fe48c31b368e3e53670d1d85bff1c9cf888aa926ea0d1256d648fb1147d77f9c50476c000151eaabf24be05087dfdd96440a4dcd9ae57aa762af658eb8af366363096028b62a7b5fd5e5b2cb824bbdbf0a92fe0ae0bef2abb3be18de267a0b3fb408da04be03d9378c0e399b50d63785639d77eefddf0ab15ea4883809aef838cd62e55dc1a0173", 0xf6, 0x100}], 0x5000, &(0x7f0000000480)={[{@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@gid={'gid', 0x3d, 0xffffffffffffffff}}, {@gid={'gid', 0x3d, 0xffffffffffffffff}}, {@gid={'gid', 0x3d, 0xee01}}, {@nr_inodes={'nr_inodes', 0x3d, [0x65, 0x39, 0x32]}}, {@huge_never}], [{@smackfsfloor={'smackfsfloor', 0x3d, '*,'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/-%'}}, {@appraise}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@euid_lt={'euid<', 0xee01}}, {@subj_role={'subj_role', 0x3d, '$.][{\'*{'}}]})
openat(r0, &(0x7f0000000580)='./file0\x00', 0xda202, 0x0)
lsetxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000180)=@v2={0x3, 0x0, 0xf, 0x4, 0x53, "45c9b36390ed5d4fb0ddb60a6dbef51ad57c34177ce6d159d7689f850d61c29ab7ed78993f39515e3087c4c0373e3654cd79b0cb73bfb86dbd367df47ce31eb335ac1d7f3d32a5061f2dd83f298f74d9584400"}, 0x5c, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000005c0)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ff4000/0xa000)=nil, 0xa000, 0x68, 0x1}, 0x0)

[  127.731383] loop6: detected capacity change from 0 to 1
[  127.752694] loop6: detected capacity change from 0 to 1
23:03:58 executing program 6:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x3, 0xfb, 0x3, 0xf9, 0x0, 0x100000000, 0x40, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000080)}, 0x5560, 0x6, 0x1, 0x1, 0x7, 0x0, 0x1f, 0x0, 0x2de3, 0x0, 0x5b716e32}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x8)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00))
r1 = open_tree(r0, &(0x7f00000001c0)='./file0\x00', 0x0)
perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r0, 0xa, r1, 0x2)

[  127.918671] loop6: detected capacity change from 0 to 2048
[  127.998636] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  128.010681] ext4 filesystem being mounted at /syzkaller-testdir501740030/syzkaller.sMcbMy/6/file0 supports timestamps until 2038 (0x7fffffff)
[  128.067702] EXT4-fs (loop6): unmounting filesystem.
23:03:58 executing program 6:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x3, 0xfb, 0x3, 0xf9, 0x0, 0x100000000, 0x40, 0x4, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000080)}, 0x5560, 0x6, 0x1, 0x1, 0x7, 0x0, 0x1f, 0x0, 0x2de3, 0x0, 0x5b716e32}, 0xffffffffffffffff, 0x6, 0xffffffffffffffff, 0x8)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00))
r1 = open_tree(r0, &(0x7f00000001c0)='./file0\x00', 0x0)
perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r0, 0xa, r1, 0x2)

[  128.137225] loop6: detected capacity change from 0 to 2048
[  128.787165] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  128.794444] ext4 filesystem being mounted at /syzkaller-testdir501740030/syzkaller.sMcbMy/7/file0 supports timestamps until 2038 (0x7fffffff)
23:03:59 executing program 4:
fcntl$setsig(0xffffffffffffffff, 0xa, 0x12)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000040)=""/22, 0x16}, {&(0x7f00000001c0)=""/16, 0x10}, {&(0x7f0000000200)=""/7, 0x7}, {&(0x7f0000000300)=""/127, 0x7f}, {&(0x7f0000000240)=""/34, 0x22}, {&(0x7f0000000380)=""/190, 0xbe}], 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="100000000000000001000000010000001c000000000100000002000000", @ANYRES32=<r0=>0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x000\x00\x00\x00\x00\x00\x00\x00_\x00\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x98}, 0x12001)
syz_open_procfs(r0, &(0x7f0000000600)='attr/fscreate\x00')
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$trusted_overlay_opaque(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700), &(0x7f0000000740), 0x2, 0x0)
ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x535081, 0x0)
r2 = epoll_create(0x7fffffff)
r3 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000040))
r4 = syz_open_dev$rtc(&(0x7f00000007c0), 0x0, 0x0)
ioctl$RTC_ALM_SET(r4, 0x40247007, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000040)={0x8})
ioctl$RNDADDTOENTCNT(0xffffffffffffffff, 0x40045201, &(0x7f0000000780)=0xffff)
fsetxattr$security_capability(r4, &(0x7f0000000640), &(0x7f0000000680)=@v2={0x2000000, [{0x0, 0x100}, {0x9, 0x200}]}, 0x14, 0x2)
r5 = inotify_init1(0x0)
dup2(r5, r1)

[  128.883576] EXT4-fs (loop6): unmounting filesystem.
[  129.581272] loop0: detected capacity change from 0 to 264192
[  129.582941] =======================================================
[  129.582941] WARNING: The mand mount option has been deprecated and
[  129.582941]          and is ignored by this kernel. Remove the mand
[  129.582941]          option from the mount to silence this warning.
[  129.582941] =======================================================
[  129.599878] loop0: detected capacity change from 0 to 264192

VM DIAGNOSIS:
23:03:57  Registers:
info registers vcpu 0
RAX=0000000000000079 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801758f690
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000079 R11=0000000000000001
R12=0000000000000079 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f35e041e700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff2d4bca269 CR3=000000001869a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 ff000000000000ff
YMM01=0000000000000000 0000000000000000 2525252525252525 2525252525252525
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000000 RBX=ffff88803f25fe00 RCX=0000000000000001 RDX=1ffff11007e4befc
RSI=ffff88803f25fdd0 RDI=ffff88803f25f7e0 RBP=0000000000000000 RSP=ffff88803f25f758
R8 =ffffffff85ed0d2a R9 =ffffffff85ed0d2e R10=ffffed1007e4bf08 R11=ffff88803f25f818
R12=ffff88803f25f819 R13=ffff88803f25f838 R14=ffff88803f25f7d8 R15=0000000000000007
RIP=ffffffff8111b765 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f331df2f610 CR3=000000003ef5a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff
YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000