Warning: Permanently added '[localhost]:30799' (ECDSA) to the list of known hosts.
2022/10/03 11:36:02 fuzzer started
2022/10/03 11:36:02 dialing manager at localhost:35095
syzkaller login: [   45.007618] cgroup: Unknown subsys name 'net'
[   45.147527] cgroup: Unknown subsys name 'rlimit'
2022/10/03 11:36:16 syscalls: 2215
2022/10/03 11:36:16 code coverage: enabled
2022/10/03 11:36:16 comparison tracing: enabled
2022/10/03 11:36:16 extra coverage: enabled
2022/10/03 11:36:16 setuid sandbox: enabled
2022/10/03 11:36:16 namespace sandbox: enabled
2022/10/03 11:36:16 Android sandbox: enabled
2022/10/03 11:36:16 fault injection: enabled
2022/10/03 11:36:16 leak checking: enabled
2022/10/03 11:36:16 net packet injection: enabled
2022/10/03 11:36:16 net device setup: enabled
2022/10/03 11:36:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/03 11:36:16 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/03 11:36:16 USB emulation: enabled
2022/10/03 11:36:16 hci packet injection: enabled
2022/10/03 11:36:16 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/03 11:36:16 802.15.4 emulation: enabled
2022/10/03 11:36:16 fetching corpus: 50, signal 29206/31015 (executing program)
2022/10/03 11:36:17 fetching corpus: 100, signal 39356/42824 (executing program)
2022/10/03 11:36:17 fetching corpus: 150, signal 45136/50216 (executing program)
2022/10/03 11:36:17 fetching corpus: 200, signal 52357/58958 (executing program)
2022/10/03 11:36:17 fetching corpus: 250, signal 57726/65783 (executing program)
2022/10/03 11:36:17 fetching corpus: 300, signal 63845/73251 (executing program)
2022/10/03 11:36:17 fetching corpus: 350, signal 70206/80865 (executing program)
2022/10/03 11:36:17 fetching corpus: 400, signal 77212/89037 (executing program)
2022/10/03 11:36:18 fetching corpus: 450, signal 82120/95175 (executing program)
2022/10/03 11:36:18 fetching corpus: 500, signal 85772/100065 (executing program)
2022/10/03 11:36:18 fetching corpus: 550, signal 87747/103314 (executing program)
2022/10/03 11:36:18 fetching corpus: 600, signal 90470/107232 (executing program)
2022/10/03 11:36:18 fetching corpus: 650, signal 93440/111293 (executing program)
2022/10/03 11:36:18 fetching corpus: 700, signal 96146/115130 (executing program)
2022/10/03 11:36:18 fetching corpus: 750, signal 98626/118770 (executing program)
2022/10/03 11:36:18 fetching corpus: 800, signal 101992/123142 (executing program)
2022/10/03 11:36:18 fetching corpus: 850, signal 103179/125502 (executing program)
2022/10/03 11:36:18 fetching corpus: 900, signal 104702/128218 (executing program)
2022/10/03 11:36:19 fetching corpus: 950, signal 106296/130919 (executing program)
2022/10/03 11:36:19 fetching corpus: 1000, signal 108623/134242 (executing program)
2022/10/03 11:36:19 fetching corpus: 1050, signal 111284/137844 (executing program)
2022/10/03 11:36:19 fetching corpus: 1100, signal 113040/140626 (executing program)
2022/10/03 11:36:19 fetching corpus: 1150, signal 114052/142738 (executing program)
2022/10/03 11:36:19 fetching corpus: 1200, signal 116525/146107 (executing program)
2022/10/03 11:36:19 fetching corpus: 1250, signal 118090/148627 (executing program)
2022/10/03 11:36:19 fetching corpus: 1300, signal 119598/151061 (executing program)
2022/10/03 11:36:20 fetching corpus: 1350, signal 121331/153686 (executing program)
2022/10/03 11:36:20 fetching corpus: 1400, signal 122829/156108 (executing program)
2022/10/03 11:36:20 fetching corpus: 1450, signal 124250/158452 (executing program)
2022/10/03 11:36:20 fetching corpus: 1500, signal 125721/160822 (executing program)
2022/10/03 11:36:20 fetching corpus: 1550, signal 126558/162670 (executing program)
2022/10/03 11:36:20 fetching corpus: 1600, signal 128629/165416 (executing program)
2022/10/03 11:36:20 fetching corpus: 1650, signal 129353/167132 (executing program)
2022/10/03 11:36:20 fetching corpus: 1700, signal 130380/169111 (executing program)
2022/10/03 11:36:20 fetching corpus: 1750, signal 131615/171175 (executing program)
2022/10/03 11:36:21 fetching corpus: 1800, signal 133508/173716 (executing program)
2022/10/03 11:36:21 fetching corpus: 1850, signal 135598/176381 (executing program)
2022/10/03 11:36:21 fetching corpus: 1900, signal 138219/179454 (executing program)
2022/10/03 11:36:21 fetching corpus: 1950, signal 140849/182540 (executing program)
2022/10/03 11:36:21 fetching corpus: 2000, signal 141540/184119 (executing program)
2022/10/03 11:36:21 fetching corpus: 2050, signal 142358/185776 (executing program)
2022/10/03 11:36:21 fetching corpus: 2100, signal 143053/187338 (executing program)
2022/10/03 11:36:21 fetching corpus: 2150, signal 144358/189360 (executing program)
2022/10/03 11:36:21 fetching corpus: 2200, signal 145648/191330 (executing program)
2022/10/03 11:36:22 fetching corpus: 2250, signal 146643/193053 (executing program)
2022/10/03 11:36:22 fetching corpus: 2300, signal 147302/194541 (executing program)
2022/10/03 11:36:22 fetching corpus: 2350, signal 148647/196500 (executing program)
2022/10/03 11:36:22 fetching corpus: 2400, signal 149633/198185 (executing program)
2022/10/03 11:36:22 fetching corpus: 2450, signal 150344/199654 (executing program)
2022/10/03 11:36:22 fetching corpus: 2500, signal 151095/201104 (executing program)
2022/10/03 11:36:22 fetching corpus: 2550, signal 152047/202746 (executing program)
2022/10/03 11:36:22 fetching corpus: 2600, signal 153988/204970 (executing program)
2022/10/03 11:36:22 fetching corpus: 2650, signal 154782/206484 (executing program)
2022/10/03 11:36:23 fetching corpus: 2700, signal 156204/208387 (executing program)
2022/10/03 11:36:23 fetching corpus: 2750, signal 157034/209912 (executing program)
2022/10/03 11:36:23 fetching corpus: 2800, signal 157881/211403 (executing program)
2022/10/03 11:36:23 fetching corpus: 2850, signal 158602/212831 (executing program)
2022/10/03 11:36:23 fetching corpus: 2900, signal 159131/214120 (executing program)
2022/10/03 11:36:23 fetching corpus: 2950, signal 159887/215538 (executing program)
2022/10/03 11:36:23 fetching corpus: 3000, signal 160886/217050 (executing program)
2022/10/03 11:36:23 fetching corpus: 3050, signal 161927/218571 (executing program)
2022/10/03 11:36:24 fetching corpus: 3100, signal 164491/220998 (executing program)
2022/10/03 11:36:24 fetching corpus: 3150, signal 165325/222369 (executing program)
2022/10/03 11:36:24 fetching corpus: 3200, signal 166088/223709 (executing program)
2022/10/03 11:36:24 fetching corpus: 3250, signal 167319/225304 (executing program)
2022/10/03 11:36:24 fetching corpus: 3300, signal 168013/226623 (executing program)
2022/10/03 11:36:24 fetching corpus: 3350, signal 168873/227980 (executing program)
2022/10/03 11:36:24 fetching corpus: 3400, signal 169315/229094 (executing program)
2022/10/03 11:36:24 fetching corpus: 3450, signal 169890/230342 (executing program)
2022/10/03 11:36:25 fetching corpus: 3500, signal 170686/231682 (executing program)
2022/10/03 11:36:25 fetching corpus: 3550, signal 171295/232890 (executing program)
2022/10/03 11:36:25 fetching corpus: 3600, signal 172229/234313 (executing program)
2022/10/03 11:36:25 fetching corpus: 3650, signal 172700/235476 (executing program)
2022/10/03 11:36:25 fetching corpus: 3700, signal 173558/236744 (executing program)
2022/10/03 11:36:25 fetching corpus: 3750, signal 174382/238000 (executing program)
2022/10/03 11:36:25 fetching corpus: 3800, signal 175159/239207 (executing program)
2022/10/03 11:36:26 fetching corpus: 3850, signal 176601/240779 (executing program)
2022/10/03 11:36:26 fetching corpus: 3900, signal 177223/241942 (executing program)
2022/10/03 11:36:26 fetching corpus: 3950, signal 178280/243320 (executing program)
2022/10/03 11:36:26 fetching corpus: 4000, signal 179173/244535 (executing program)
2022/10/03 11:36:26 fetching corpus: 4050, signal 180064/245830 (executing program)
2022/10/03 11:36:26 fetching corpus: 4100, signal 180389/246796 (executing program)
2022/10/03 11:36:26 fetching corpus: 4150, signal 181540/248112 (executing program)
2022/10/03 11:36:26 fetching corpus: 4200, signal 182307/249242 (executing program)
2022/10/03 11:36:26 fetching corpus: 4250, signal 183590/250566 (executing program)
2022/10/03 11:36:26 fetching corpus: 4300, signal 184645/251769 (executing program)
2022/10/03 11:36:27 fetching corpus: 4350, signal 185336/252791 (executing program)
2022/10/03 11:36:27 fetching corpus: 4400, signal 185873/253787 (executing program)
2022/10/03 11:36:27 fetching corpus: 4450, signal 186571/254803 (executing program)
2022/10/03 11:36:27 fetching corpus: 4500, signal 187496/255928 (executing program)
2022/10/03 11:36:27 fetching corpus: 4550, signal 188619/257190 (executing program)
2022/10/03 11:36:27 fetching corpus: 4600, signal 189229/258216 (executing program)
2022/10/03 11:36:27 fetching corpus: 4650, signal 189831/259216 (executing program)
2022/10/03 11:36:27 fetching corpus: 4700, signal 190574/260331 (executing program)
2022/10/03 11:36:28 fetching corpus: 4750, signal 191528/261463 (executing program)
2022/10/03 11:36:28 fetching corpus: 4800, signal 192098/262422 (executing program)
2022/10/03 11:36:28 fetching corpus: 4850, signal 192959/263467 (executing program)
2022/10/03 11:36:28 fetching corpus: 4900, signal 193520/264387 (executing program)
2022/10/03 11:36:28 fetching corpus: 4950, signal 193963/265269 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/266234 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/266950 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/267646 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/268374 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/269077 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/269777 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/270488 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/271183 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/271903 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/272643 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/273357 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/274084 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/274781 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/275516 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/276214 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/276962 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/277632 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/278356 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/279059 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/279776 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/280505 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/281211 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/281934 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/282646 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/283370 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/284074 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/284793 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/285501 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/286181 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/286873 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/287586 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/288287 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/289027 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/289746 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/290466 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/291176 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/291885 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/292606 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/293353 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/294060 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/294755 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/295458 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/296192 (executing program)
2022/10/03 11:36:28 fetching corpus: 5000, signal 194783/296895 (executing program)
2022/10/03 11:36:29 fetching corpus: 5000, signal 194783/297613 (executing program)
2022/10/03 11:36:29 fetching corpus: 5000, signal 194783/298312 (executing program)
2022/10/03 11:36:29 fetching corpus: 5000, signal 194783/299011 (executing program)
2022/10/03 11:36:29 fetching corpus: 5000, signal 194783/299725 (executing program)
2022/10/03 11:36:29 fetching corpus: 5000, signal 194783/300423 (executing program)
2022/10/03 11:36:29 fetching corpus: 5000, signal 194783/301169 (executing program)
2022/10/03 11:36:29 fetching corpus: 5000, signal 194783/301221 (executing program)
2022/10/03 11:36:29 fetching corpus: 5000, signal 194783/301221 (executing program)
2022/10/03 11:36:31 starting 8 fuzzer processes
11:36:31 executing program 0:
ioctl$EVIOCGPHYS(0xffffffffffffffff, 0x80404507, &(0x7f0000000000)=""/117)
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000080)={0xffffff00, 0x8})
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x200, 0x124)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r0, 0x8010671f, &(0x7f0000000140)={&(0x7f0000000100)=""/6, 0x6})
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/devices/cpu', 0x200, 0x8)
mknodat$null(r1, &(0x7f00000001c0)='./file0\x00', 0x1000, 0x103)
r2 = signalfd4(r1, &(0x7f0000000200)={[0x57a7]}, 0x8, 0x80000)
ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f0000000240)=""/248)
write$binfmt_aout(r2, &(0x7f0000000340)={{0x107, 0x1, 0x0, 0x394, 0x2b9, 0x0, 0x1df, 0x4000}, "b523aca5e6f7c3a050afd8f8b359496a8cc53d42bdc413aac32059bb74bafeabf62e406782f45e4cb13872492d0e57e10fd9903cd514d18628b366007b0d01bb42896d737a52f8f8e5a175a447bf5c1694422a0972505ff99848b8800f3541db715ae9ad180cbf27bc230ade332309f326dcc1d5122bc07669eec00b536df2c6f4acc8ba141503378eebf02d2fd8ea91b0eb6eba7510ca25484b92af325c49d7c8eeefcb754445952239811961ea454d2ec2", ['\x00', '\x00']}, 0x2d2)
r3 = signalfd(r2, &(0x7f0000000640)={[0xfffffffffffffc01]}, 0x8)
unlinkat(r3, &(0x7f0000000680)='./file0\x00', 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a00)={<r4=>0xffffffffffffffff})
ioctl$FS_IOC_GETFLAGS(r4, 0x80086601, &(0x7f0000000a40))
syz_open_dev$evdev(&(0x7f0000000a80), 0x6, 0x301)
r5 = openat(r1, &(0x7f0000000ac0)='./file0\x00', 0x58d680, 0x80)
sendmsg$802154_raw(r5, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f0000000b00)="ac8390096e5ca7a8e5a40deded4feb4fef1554c8d0f2e9d3384a78551e8f1893d4e25336e5e641928dfd1c7ee9bff87db4d254eb64c19c0d7998846b44480bf18adfe8130ae1779c", 0x48}, 0x1, 0x0, 0x0, 0x4040810}, 0x41)
r6 = dup(r4)
ioctl$EVIOCGNAME(r6, 0x80404506, &(0x7f0000000c00)=""/78)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, &(0x7f0000000c80)=0x6)

11:36:31 executing program 1:
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000000))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000040))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000080))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000000c0))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000100))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000140))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000180))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000001c0))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000200))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000240))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000280))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000002c0))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000300))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000340))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000380))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000003c0))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000400))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000440))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000480))
prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000004c0))

11:36:31 executing program 2:
r0 = memfd_secret(0x80000)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0x3, 0x1, 0x201, 0x0, 0x0, {0x5, 0x0, 0x2}, [@CTA_ZONE={0x6}, @CTA_NAT_SRC={0x3c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast1}, @CTA_NAT_V4_MINIP={0x8, 0x1, @loopback}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @remote}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x880}, 0x48000)
r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000140), 0x4000, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x602602, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
r4 = dup2(r2, r1)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r5=>r4, {0x1}}, './file0\x00'})
sendmsg$NFNL_MSG_CTHELPER_DEL(r5, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x2, 0x9, 0x201, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x7fffffff}}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x5ae9cf48d62b57a7}, 0x4000)
sendmsg$NL80211_CMD_GET_REG(r3, &(0x7f0000000540)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000380)={0x178, 0x0, 0x800, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xff}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_REG_RULES={0xd4, 0x22, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x10000}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x6}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xffffffff}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x10000}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x401}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x80}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfffffff7}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1bde}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x2}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x39b}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xffffffc1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x9}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x4}, @NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x400}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xffff}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x9}]}]}, @NL80211_ATTR_REG_RULES={0x54, 0x22, 0x0, 0x1, [{0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xfffffffe}, @NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5e}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x9}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1ff}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1}]}, {0x4}]}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0xff}]}, 0x178}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
r6 = signalfd(r4, &(0x7f0000000580)={[0x9]}, 0x8)
ioctl$EVIOCGSW(r6, 0x8040451b, &(0x7f00000005c0)=""/202)
sendfile(r0, r5, &(0x7f00000006c0)=0x8001, 0x8)
r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000000740), r1)
sendmsg$BATADV_CMD_TP_METER(r6, &(0x7f0000000840)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x54, r7, 0x400, 0x70bd29, 0x25dfdbfc, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x21bc}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xa3}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x65f}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x1)
sendmsg$NL80211_CMD_GET_POWER_SAVE(r5, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x20, 0x0, 0x8, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x211, 0x6e}}}}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x48011)
sendmsg$NFNL_MSG_CTHELPER_DEL(r6, &(0x7f0000000a80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000a40)={&(0x7f00000009c0)={0x78, 0x2, 0x9, 0x101, 0x0, 0x0, {0x5, 0x0, 0x9}, [@NFCTH_TUPLE={0x2c, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}]}, @NFCTH_STATUS={0x8}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x9}}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x14}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x9}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x3}}, @NFCTH_QUEUE_NUM={0x8}]}, 0x78}, 0x1, 0x0, 0x0, 0x8010}, 0x10)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_KEY(r8, &(0x7f0000000bc0)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b00)={0x58, 0x0, 0x300, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x58}}, 0x20000000)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r5, &(0x7f0000000e00)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000c40)={0x148, 0x0, 0x400, 0x70bd25, 0x25dfdbfc, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}]}, 0x148}, 0x1, 0x0, 0x0, 0x24000014}, 0x8000)
sendfile(r0, r2, &(0x7f0000000e40)=0x8, 0x1)

11:36:31 executing program 3:
r0 = syz_open_dev$vcsn(&(0x7f00000000c0), 0x0, 0x4000)
r1 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x80, 0x7f, 0x1, 0x1, 0x0, 0x8, 0x81000, 0xc, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000000000), 0x9}, 0x1080, 0x804, 0x6f49120c, 0x7, 0xfffffffffffff10c, 0x950b, 0x5, 0x0, 0x2, 0x0, 0x8}, 0x0, 0xa, r0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000100)={0x4d0, 0x3, {0x3, 0x3, 0x6, 0x3, 0x3}, 0x3f})
r2 = gettid()
r3 = perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x0, 0x4c, 0xf2, 0x6, 0x0, 0x100, 0x4000, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x400000, 0x1, @perf_config_ext={0x1, 0x7f}, 0xa0008, 0x7, 0x6907, 0x2, 0x3, 0x9d, 0xc2, 0x0, 0x10000}, r2, 0x8, r1, 0x0)
r4 = perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0x8, 0x4, 0x7f, 0x4, 0x0, 0xed05, 0x83880, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000200), 0x9}, 0x40000, 0x762, 0x4, 0x7, 0x0, 0x9, 0x3, 0x0, 0x7, 0x0, 0xfffffffffffffffa}, r2, 0x4, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_SETFSLABEL(r3, 0x41009432, &(0x7f00000002c0)="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")
pipe2$9p(&(0x7f00000003c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x800)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r5, 0x941c, 0x0)
finit_module(r4, &(0x7f0000000400)='/dev/vcs#\x00', 0x1)
r7 = signalfd4(r3, &(0x7f0000000440)={[0x7fffffff]}, 0x8, 0x40000)
ioctl$BLKFLSBUF(r7, 0x1261, &(0x7f0000000480)=0x783)
perf_event_open(&(0x7f0000000500)={0x5, 0x80, 0x80, 0x2, 0x8, 0x1f, 0x0, 0x800, 0x1, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_bp={&(0x7f00000004c0), 0x2}, 0x40, 0x7, 0x6, 0x1, 0x51, 0x9, 0x6}, 0x0, 0x4, r7, 0x8)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r6, &(0x7f0000000580)={0x2})
recvmmsg$unix(r7, &(0x7f00000041c0)=[{{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f00000007c0)=[{&(0x7f0000000640)=""/19, 0x13}, {&(0x7f0000000680)=""/132, 0x84}, {&(0x7f0000000740)=""/126, 0x7e}], 0x3, &(0x7f0000000800)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x90}}, {{&(0x7f00000008c0), 0x6e, &(0x7f0000001b80)=[{&(0x7f0000000940)=""/254, 0xfe}, {&(0x7f0000000a40)=""/8, 0x8}, {&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000001a80)=""/248, 0xf8}], 0x4}}, {{0x0, 0x0, &(0x7f0000003ec0)=[{&(0x7f0000001bc0)=""/185, 0xb9}, {&(0x7f0000001c80)=""/4096, 0x1000}, {&(0x7f0000002c80)=""/245, 0xf5}, {&(0x7f0000002d80)=""/4096, 0x1000}, {&(0x7f0000003d80)=""/120, 0x78}, {&(0x7f0000003e00)=""/163, 0xa3}], 0x6, &(0x7f0000003f40)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r8=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98}}, {{&(0x7f0000004000)=@abs, 0x6e, &(0x7f0000004140)=[{&(0x7f0000004080)=""/93, 0x5d}, {&(0x7f0000004100)=""/46, 0x2e}], 0x2, &(0x7f0000004180)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}], 0x4, 0x100, &(0x7f00000042c0)={0x0, 0x989680})
fcntl$F_GET_RW_HINT(r8, 0x40b, &(0x7f0000004300))
r10 = gettid()
fcntl$setownex(r9, 0xf, &(0x7f0000004340)={0x2, r10})
r11 = openat2(r0, &(0x7f0000004380)='./file0\x00', &(0x7f00000043c0)={0x800, 0x1c0, 0x19}, 0x18)
openat(r11, &(0x7f0000004400)='./file0\x00', 0x2000, 0x18)

11:36:31 executing program 4:
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x40002010})
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x40000, 0x6c)
epoll_pwait(0xffffffffffffffff, &(0x7f0000000080)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0xa, 0xfff, &(0x7f0000000100)={[0xffff]}, 0x8)
epoll_pwait2(r0, &(0x7f0000000140)=[{}, {}, {}], 0x3, &(0x7f0000000180)={0x77359400}, &(0x7f00000001c0)={[0x6]}, 0x8)
r1 = dup(r0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, {0xbd}}, './file0\x00'})
r3 = memfd_secret(0x80000)
r4 = fsmount(r1, 0x1, 0x2)
r5 = accept(r0, &(0x7f00000005c0)=@in6={0xa, 0x0, 0x0, @dev}, &(0x7f0000000640)=0x80)
recvmmsg$unix(r0, &(0x7f0000001040)=[{{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000780)=""/135, 0x87}], 0x1, &(0x7f0000000880)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x120}}, {{&(0x7f00000009c0), 0x6e, &(0x7f0000000c00)=[{&(0x7f0000000a40)=""/218, 0xda}, {&(0x7f0000000b40)=""/146, 0x92}], 0x2, &(0x7f0000000c40)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe0}}, {{&(0x7f0000000d40)=@abs, 0x6e, &(0x7f0000000fc0)=[{&(0x7f0000000dc0)=""/242, 0xf2}, {&(0x7f0000000ec0)=""/225, 0xe1}], 0x2, &(0x7f0000001000)=[@rights={{0x10}}, @cred={{0x1c}}], 0x30}}], 0x3, 0x80, &(0x7f0000001100)={0x77359400})
r8 = socket$inet6(0xa, 0x5, 0x3f)
io_submit(0x0, 0x6, &(0x7f0000001240)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x2, 0x6a3, r0, &(0x7f0000000200)="bb2036cde5c6ed0c20e7b69994766062d504bfb3a1523d174ca7b4057aeec140e9d937f8d73bcccfabf0780a21bb5b9dfc28e662d5763e2eef816802b294bf83d237deaee77cb1", 0x47, 0x5, 0x0, 0x3}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x3, 0x5, r0, &(0x7f00000002c0)="37cf43a3ef7f8e281ac4ac296c87b88223b74630c3bfe4f61aecd417066451d03f859a9f46fb8ba66ea98c17c2a070864da96f711ae27c0fc5c19d7bc13290342d6241a3582083a66829628b5e6d459bd1ec10e1e684a67813225791b5bde395eb5368fb61d96d5ae89de3a262f3275c138e724a60257e2a858f23bd242830db862a735abdb6f9c98959cc936d6840eead35dc61f9328c98b59f1249f656a959ef2ca9fee09cc43cabd83e56c02cdc959450e82430348fcc95184a91763430f056232abdc4638a1f67b91e0ec2d037ba5ec9ae315d287f65efd0682548c416561004ff9111ba92", 0xe7, 0x7f, 0x0, 0x1, r2}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x2, 0xc5df, r0, &(0x7f0000000440)="abe5a99dbf864783f9d08ab7", 0xc, 0x2, 0x0, 0x1, r3}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x8, 0x1f, r4, &(0x7f00000004c0)="5a8040cf97ef7f425c5ed0fe9f04c79a439ac251c2fa31e2e65609af23aed1572d9c48f475d5e50242a88b27a80761f75d892936b7d031e4e56e3afbdb873862553dc9eb49d8ec7266eabd9f7f327b0fad5f7369c67411bb2b4bb189cec2fdff542ed1c6233311ed730b6a8ef1ef738dfa728d39c99531a200875976b3694b1608e61e2ea1a33746b3b27bbdc2ddfaed15c35c2d2e73bd7f629bee221c8024437e6e94a81588048e9163494fb6bcda0283e914981f2789fa17", 0xb9, 0x6, 0x0, 0x2, r1}, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x1, 0x2, r5, &(0x7f0000000680)="a36f8b681be581d4858071631e60320db5dbe6d768f5d4d5bebef9d4234f51303455190c65c8a4b9cbfa7cfbf1c61d415ef15d3fdbdfc461a2435c762bf77e253cd53a06d9b0174d115db59ae1e3c562e6c6e8c74f033bca5ff3ad1a6dbe210a382c45bedc95e4796adac5486526ffd84a36d38c68e8240e563833d58f4eeff0e76c79e2457a12288e916dbc6fbf73591073e7a59802449002bc83501be629f63e2f829c4c95228ca8a1d634c3b3c3f28c5b76e7414752da278c644af34d84529e7b44c5250e89d6", 0xc8, 0xe6, 0x0, 0x1, r6}, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, 0x20, r8, &(0x7f0000001180)="c02562f86dea8a6e52ecc394a937526f84fe4ae78238ede2becfc52c2c1858d7dd490768f4ecd3c632c55b0518fc157e1ba695a38b07ececa999d3f626524921d3cec283916829e47fbb2e", 0x4b, 0x7ff, 0x0, 0x3, r0}])
sendmmsg$unix(r0, &(0x7f0000001400)=[{{&(0x7f0000001280)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000013c0)=[{&(0x7f0000001300)="18cdaa415649d49eb2151f72d782ca00d9c527a26548fff025360ba0a5275813e155600da66a40f63173a828d089f7ce475a50f0810efc107acb877fe10bed346272300f652cacaf38b0651b7ab31f047074a768ffcd7e0dc7d82d065e3e8b2f7b0c46f65233181ede6f15c218b25caa6c5a1bac7b80922b3526ccc47b3b2bedfbbb4c", 0x83}], 0x1, 0x0, 0x0, 0x40801}}], 0x1, 0x800)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000001440)={0x99fc, 0x0, 0x5})
io_setup(0x7, &(0x7f0000001480)=<r9=>0x0)
io_pgetevents(r9, 0x100000001, 0x1, &(0x7f00000014c0)=[{}], &(0x7f0000001500)={0x0, 0x3938700}, &(0x7f0000001580)={&(0x7f0000001540)={[0x3f]}, 0x8})
r10 = syz_open_dev$vcsu(&(0x7f00000015c0), 0x3ff, 0x8002)
epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r1, &(0x7f0000001600)={0x48000008})
r11 = openat(r7, &(0x7f0000001640)='./file0\x00', 0x2000, 0x0)
read$hiddev(r11, &(0x7f0000001680)=""/89, 0x59)

[   73.460248] audit: type=1400 audit(1664796991.543:6): avc:  denied  { execmem } for  pid=288 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
11:36:31 executing program 5:
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x400)
ioctl$BLKPG(r0, 0x1269, &(0x7f0000000100)={0x401, 0x4, 0xab, &(0x7f0000000040)="691744a4a6110041196b6232942c6d0036805eb41768ba8191d4f22bc9c167d7afe41c86b860843eb4885d940dd36b30be82e6c3432b4e5daa4317816286679859fbe76b8acf4c6d1068a9005752eb3ea8b881c4dc875e31515ffa03944dd7035b02544c0cf30a8349c575ddd1c7bc0a9156b3956133127448d19569a300afcf6e814ce053477211886a41898b5ea00d841d44b02383ed05db80c78ce6b5fc8d8040dcc17f562b288c21a6"})
ioctl$AUTOFS_IOC_READY(r1, 0x9360, 0xb77b)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x3000008, 0x80010, r0, 0x8000000)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f0000000140)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, {0x0, r3}}, 0x3)
ioctl$LOOP_SET_FD(r0, 0x4c00, r0)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x22000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x6c, 0x0, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x38, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xf93a}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10d2773b}]}, 0x6c}}, 0x4014)
r4 = fsmount(0xffffffffffffffff, 0x0, 0x70)
r5 = signalfd4(r4, &(0x7f00000002c0)={[0xa3]}, 0x8, 0x800)
symlinkat(&(0x7f0000000300)='./file0\x00', r5, &(0x7f0000000340)='./file0\x00')
r6 = fsopen(&(0x7f0000000380)='bfs\x00', 0x1)
splice(r6, &(0x7f00000003c0)=0x1, r5, &(0x7f0000000400)=0x9, 0xfff, 0x0)
ioctl$BTRFS_IOC_INO_PATHS(r6, 0xc0389423, &(0x7f0000000480)={0x7f, 0x10, [0x8d8, 0x6, 0x4, 0x8], &(0x7f0000000440)=[0x0, 0x0]})
statx(r1, &(0x7f00000004c0)='./file0\x00', 0x2000, 0xe40, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, <r7=>0x0, <r8=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r5, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x50, 0x0, 0xfce6d620ce1d28a4, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x41}, @val={0x8}, @val={0xc, 0x99, {0x0, 0x7f}}}}, [@mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}]}], @NL80211_ATTR_MESH_ID={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000005}, 0x40)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000000740)={{0x1, 0x1, 0x18, <r9=>r0, {0x6}}, './file0\x00'})
mount_setattr(r9, &(0x7f0000000780)='./file0\x00', 0x100, &(0x7f00000007c0)={0x100081, 0xf3, 0x100000, {r1}}, 0x20)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000800)={{0x1, 0x1, 0x18, <r10=>r1, {r7, r8}}, './file0\x00'})
sendmsg$TIPC_NL_BEARER_GET(r10, &(0x7f0000000a00)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000009c0)={&(0x7f00000008c0)={0xe4, 0x0, 0x4, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x8c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x42ae}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x20}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}, @TIPC_NLA_MEDIA={0x30, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}]}]}]}, 0xe4}, 0x1, 0x0, 0x0, 0x2004c8c1}, 0x0)

11:36:31 executing program 7:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x102, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r1, 0x200, 0x70bd26, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0xffffffff, 0x7}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x4858)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000180)={<r3=>0x0, 0x0, 0xff})
mq_getsetattr(r0, &(0x7f0000000580)={0x1000, 0xfffffffffffffffd, 0xffffffffffffff00, 0x5}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f00000005c0)={{0x1, 0x1, 0x18, <r4=>r2, {0xfa9}}, './file0\x00'})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x4100, 0x10)
open(&(0x7f0000000640)='./file0\x00', 0x454000, 0x20)
pwritev2(r0, &(0x7f0000000ac0)=[{&(0x7f0000000680)="2a084019009e912cf8cd649c6f5a0f61ea24a34205133733e2c6630a3f6c4670c8f2c9306c3eac808e49fdc98b9952102680b51c13e0040f585961aed7e7df58e952939133dedb94b3cd85fb09a3da156fbc3a84bc416b51d1e5", 0x5a}, {&(0x7f0000000700)="796cff3ff460c3ca0b6258b00fb4f848e4a47f44bb1c9ab4de463f468c8ff5eab1823be5b64f23f90d862232c31ed158e3dc56062a42c51176a5aa578003", 0x3e}, {&(0x7f0000000740)="d782a3483732d391df805f07b87cf378536722ec74056df301ccddbd3a2760c9ead2305b0e841fa26dc6bc65984c8652b0541c73bf4754751c21d670fc4a1caf2572778cb826fb713e6fdafe37effe4d29", 0x51}, {&(0x7f00000007c0)="7e0ee99144401ecf6f4801a71a63f96f550a7917675c6319b99515ba8b7216693fefffe217b6a7194dbaec6331faee4c7d79f0081ee88145601470f5e05831b1182554154469c733507d8ed7a30e65011f72b4e05ca7cabc", 0x58}, {&(0x7f0000000840)="75a3e3b52ee62af143053e4816342ec8262ebd8d31cb50", 0x17}, {&(0x7f0000000880)="dc30b59c42bac98224940535150baa20a8412a5e5c6ba0c9b30925938cbc9dd89c4efdbdd9d8d15ddeb7007b98d9e917c46bd01c098f10ac5c3b7b", 0x3b}, {&(0x7f00000008c0)="d36b86dbb31eec5bbd69381b4803a355e9ea063d7725c37e6c8d471c3e1ed41d26259fb5c5ace8b706695b943dd89c8ef63c99c2597b6b971aa3d2537c9392cac25dbf0313558610a6eef631020a4b146cf0c8b47b18408c311aae673b2ec0e0e831902186898901d18d91838e41e41f60db7ac847516c88125ced631cac9198499d9fbd9918cf72748240e4ad", 0x8d}, {&(0x7f0000000980)="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", 0xfc}, {&(0x7f0000000a80)="06", 0x1}], 0x9, 0xffffffff, 0x9, 0xf)
recvmmsg$unix(r0, &(0x7f0000001a00)=[{{&(0x7f0000000b80)=@abs, 0x6e, &(0x7f0000000f80)=[{&(0x7f0000000c00)=""/43, 0x2b}, {&(0x7f0000000c40)=""/201, 0xc9}, {&(0x7f0000000d40)=""/22, 0x16}, {&(0x7f0000000d80)=""/103, 0x67}, {&(0x7f0000000e00)=""/186, 0xba}, {&(0x7f0000000ec0)}, {&(0x7f0000000f00)=""/101, 0x65}], 0x7, &(0x7f0000001000)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe0}}, {{&(0x7f0000001100)=@abs, 0x6e, &(0x7f0000001380)=[{&(0x7f0000001180)=""/33, 0x21}, {&(0x7f00000011c0)=""/66, 0x42}, {&(0x7f0000001240)=""/193, 0xc1}, {&(0x7f0000001340)=""/22, 0x16}], 0x4, &(0x7f00000013c0)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f0000001480), 0x6e, &(0x7f0000001900)=[{&(0x7f0000001500)=""/118, 0x76}, {&(0x7f0000001580)=""/125, 0x7d}, {&(0x7f0000001600)=""/226, 0xe2}, {&(0x7f0000001700)=""/148, 0x94}, {&(0x7f00000017c0)=""/38, 0x26}, {&(0x7f0000001800)=""/229, 0xe5}], 0x6, &(0x7f0000001980)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r8=>0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff]}}], 0x68}}], 0x3, 0x40002022, 0x0)
lseek(r5, 0x1, 0x3)
ioctl$FS_IOC_GETFSMAP(r4, 0xc0c0583b, &(0x7f0000001ac0)={0x0, 0x0, 0x7, 0x0, '\x00', [{0x80000000, 0x4a40, 0x72, 0x7, 0x7, 0x800}, {0x3, 0x100, 0x334000000000, 0x1f, 0x17a2, 0xfffffffffffffff9}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000001d40)='/sys/module/snd', 0x4882, 0x0)
ioctl$BLKDISCARD(r10, 0x1277, &(0x7f0000001d80)=0xfffffffffffffffc)
r11 = syz_open_pts(r8, 0x20001)
ioctl$BTRFS_IOC_SCRUB(r7, 0xc400941b, &(0x7f0000001dc0)={<r12=>r3, 0x9, 0x5, 0x1})
ioctl$BTRFS_IOC_RESIZE(r9, 0x50009403, &(0x7f00000021c0)={{r11}, {@val={r12}, @actul_num={@val=0x2d, 0x8, 0x4b}}})
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r6, 0xf503, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

11:36:31 executing program 6:
ioctl$sock_SIOCGIFBR(0xffffffffffffffff, 0x8940, &(0x7f0000000000)=@generic={0x1, 0x2, 0x4})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r0=>0x0})
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x120, 0x0, 0x1, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x5f}, @val={0x8, 0x3, r0}, @val={0xc, 0x99, {0x7f, 0x7f}}}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x8}, @NL80211_ATTR_VENDOR_DATA={0xdf, 0xc5, "1c386e518a1cf04f4d8c3168a28da006a3751bf2909625e6ad296d1aadf62d92c8127e5aaa0e02d8e81c7e49d70e30e818d8c26c1cfc01cb4a78493e33e167018bdfb3bad27593a8129b9296b976b91e1ebe94b1efdc434e2c84afe3683fbc4bd7ca7f105e8737dd614773e6bfda5dc9ac8c015644200c21c92543ac815aa146be70f39d7a2c39f0dda7e47f464998d9d3e94a6e23c9806efe5695899512c025601cc13ae14a2e96f21df7a18af03c26dfdb08e99acce8b8e27a5948eef8ccde5f4f28068057e72ddab19f6593da55c2014533caf28a4d805f563a"}]}, 0x120}, 0x1, 0x0, 0x0, 0x8001}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
recvmsg(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f00000002c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @multicast2}}}}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000340)=""/222, 0xde}, {&(0x7f0000000440)=""/153, 0x99}, {&(0x7f0000000500)}, {&(0x7f0000000540)=""/248, 0xf8}], 0x4, &(0x7f0000000680)=""/4096, 0x1000}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001700), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001740)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000001a80)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001a40)={&(0x7f0000001780)={0x2b4, r2, 0x4, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x5, 0x8}}}}, [@NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x20000}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6}, @NL80211_ATTR_SCAN_SUPP_RATES={0x15c, 0x7d, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xe6, 0x0, "a31b175827a80372542988f9f4e66359b73fe5b2df0a6c47fcfcbcae5830669201bd779dc7924bec3c2193b4a5a84fa3a6924ff7b886c9e1f540fd4103eccd11c513d225f241bea03121424cac9b574ee849891c6b62a160e85c68de409cd0104895c82885c6fbd6f9ffcc648b761e91572dd6b9a8018ff31a254da53bbe7129b19fb786e458d3d265358ec4c0882f4c10e49a0fe774657623656b92bdf4b0f572aed9610bd3591a1737f4f48ccdbeb03e4b505efdea9160ca55cdd8fae6d4fbdb063428f5e2978d19c451783d59f406976136b99f2f020e58b1a115ace4bb804ff9"}, @NL80211_BAND_2GHZ={0x70, 0x0, "3a0d8034715457c5c9407c210233a8e00bbbf469b51bbccf0a3b8493685f9be6eb3fbe30a64b0848fb7bdd847423aacfbdcc73c62cd54e64e497f2a085559d1559978e5267cee985b1bf52288da4d59a19c1d0761ce5649b7a70115f553fbda6433cb3e301de4a96be521529"}]}, @NL80211_ATTR_SCAN_SUPP_RATES={0x120, 0x7d, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x41, 0x1, "9d0d583c2697989b923e8f41e8258a34a9e332df364b4e476ad44f9455fa9d3643f173ee119bf22f26e6371dee2f2cfb98098ca7a021b0408bb5e08ed7"}, @NL80211_BAND_60GHZ={0x63, 0x2, "0da1903e5c9350d505d125974972f7b8e1a4539520d9796d72eff380dbeb5a45a332e5495c156bf8c23e29feb72519855979b8a860d2d5b13e6b1940ce83b91d0314d85b8c55239d53101c270d526e74d7506cb4d935d22a5f7873bdd096ed"}, @NL80211_BAND_2GHZ={0x46, 0x0, "529270ba2d200a559b0d36b6ba9b5498e77383aaf0bb57c1b54202f7190593f2b4737dadf9ead1090fa81c28bd63a3411d632566540826f3b4e6e031eeab86016720"}, @NL80211_BAND_5GHZ={0x2b, 0x1, "8ea1b32e62f86342e0e6290bf0bb61c1edb1d6aa3cd16d85a209f25059d53060f5ddf30b1c3003"}]}]}, 0x2b4}, 0x1, 0x0, 0x0, 0x20000800}, 0x40001)
r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001ac0), 0x20800, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001b40), r1)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000001c40)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b80)={0x5c, r5, 0x4, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SCAN_SSIDS={0x40, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xb, 0x0, @random="de68542deb893d"}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20048800}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r4, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001c80), r4)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000001d00), r1)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r4, &(0x7f0000001dc0)={&(0x7f0000001cc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001d80)={&(0x7f0000001d40)={0x28, r6, 0x8, 0x70bd2b, 0x25dfdbfc, {{}, {}, {0xc, 0x14, 'syz1\x00'}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x4004c)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000001ec0)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e40)={0x34, 0x3, 0x8, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x800)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$IP_SET_OP_GET_FNAME(r7, 0x1, 0x53, &(0x7f0000002240)={0x8, 0x7, 0x0, 'syz0\x00'}, &(0x7f0000002280)=0x2c)
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000002380)={&(0x7f00000022c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000002340)={&(0x7f0000002300)={0x20, r5, 0x1, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x4e7867e3, 0x56}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x40001}, 0x4000091)
sendmsg$NL80211_CMD_DISCONNECT(r4, &(0x7f0000002480)={&(0x7f00000023c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000002440)={&(0x7f0000002400)={0x28, r5, 0x300, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x400, 0x41}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x14}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040090)

[   74.735157] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   74.737956] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   74.739336] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   74.743368] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   74.745746] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   74.747130] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   74.753383] Bluetooth: hci0: HCI_REQ-0x0c1a
[   74.781256] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   74.784436] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   74.788087] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   74.792885] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   74.796503] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   74.799314] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   74.806191] Bluetooth: hci1: HCI_REQ-0x0c1a
[   74.857140] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   74.858613] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   74.860236] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   74.861918] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   74.862900] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   74.864114] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   74.865974] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   74.866953] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   74.867936] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   74.872221] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   74.873748] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   74.875042] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   74.876384] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   74.878146] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   74.879190] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   74.880533] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   74.882207] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   74.883436] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   74.887460] Bluetooth: hci2: HCI_REQ-0x0c1a
[   74.892398] Bluetooth: hci4: HCI_REQ-0x0c1a
[   74.895568] Bluetooth: hci3: HCI_REQ-0x0c1a
[   74.979140] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   74.988423] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   74.990224] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   74.995228] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   74.998214] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   74.999934] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   75.001753] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   75.003860] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   75.005855] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   75.007537] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   75.012997] Bluetooth: hci5: HCI_REQ-0x0c1a
[   75.013761] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   75.014600] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   75.021498] Bluetooth: hci6: HCI_REQ-0x0c1a
[   76.817218] Bluetooth: hci0: command 0x0409 tx timeout
[   76.817243] Bluetooth: hci1: command 0x0409 tx timeout
[   76.944325] Bluetooth: hci4: command 0x0409 tx timeout
[   76.944364] Bluetooth: hci3: command 0x0409 tx timeout
[   76.945369] Bluetooth: hci2: command 0x0409 tx timeout
[   76.947002] Bluetooth: hci7: Opcode 0x c03 failed: -110
[   77.071884] Bluetooth: hci5: command 0x0409 tx timeout
[   77.073266] Bluetooth: hci6: command 0x0409 tx timeout
[   78.863837] Bluetooth: hci1: command 0x041b tx timeout
[   78.864857] Bluetooth: hci0: command 0x041b tx timeout
[   78.991833] Bluetooth: hci2: command 0x041b tx timeout
[   78.992258] Bluetooth: hci3: command 0x041b tx timeout
[   78.992646] Bluetooth: hci4: command 0x041b tx timeout
[   79.119887] Bluetooth: hci6: command 0x041b tx timeout
[   79.120315] Bluetooth: hci5: command 0x041b tx timeout
[   80.178090] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   80.184747] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   80.187565] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   80.196982] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   80.201948] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   80.202667] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   80.207102] Bluetooth: hci7: HCI_REQ-0x0c1a
[   80.911926] Bluetooth: hci0: command 0x040f tx timeout
[   80.912702] Bluetooth: hci1: command 0x040f tx timeout
[   81.039959] Bluetooth: hci4: command 0x040f tx timeout
[   81.040719] Bluetooth: hci3: command 0x040f tx timeout
[   81.042436] Bluetooth: hci2: command 0x040f tx timeout
[   81.167887] Bluetooth: hci5: command 0x040f tx timeout
[   81.168635] Bluetooth: hci6: command 0x040f tx timeout
[   82.255865] Bluetooth: hci7: command 0x0409 tx timeout
[   82.959872] Bluetooth: hci1: command 0x0419 tx timeout
[   82.960329] Bluetooth: hci0: command 0x0419 tx timeout
[   83.087895] Bluetooth: hci2: command 0x0419 tx timeout
[   83.088331] Bluetooth: hci3: command 0x0419 tx timeout
[   83.088724] Bluetooth: hci4: command 0x0419 tx timeout
[   83.215854] Bluetooth: hci6: command 0x0419 tx timeout
[   83.216277] Bluetooth: hci5: command 0x0419 tx timeout
[   84.303890] Bluetooth: hci7: command 0x041b tx timeout
[   86.351855] Bluetooth: hci7: command 0x040f tx timeout
[   88.399988] Bluetooth: hci7: command 0x0419 tx timeout
11:37:25 executing program 6:
ioctl$sock_SIOCGIFBR(0xffffffffffffffff, 0x8940, &(0x7f0000000000)=@generic={0x1, 0x2, 0x4})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r0=>0x0})
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x120, 0x0, 0x1, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x5f}, @val={0x8, 0x3, r0}, @val={0xc, 0x99, {0x7f, 0x7f}}}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x8}, @NL80211_ATTR_VENDOR_DATA={0xdf, 0xc5, "1c386e518a1cf04f4d8c3168a28da006a3751bf2909625e6ad296d1aadf62d92c8127e5aaa0e02d8e81c7e49d70e30e818d8c26c1cfc01cb4a78493e33e167018bdfb3bad27593a8129b9296b976b91e1ebe94b1efdc434e2c84afe3683fbc4bd7ca7f105e8737dd614773e6bfda5dc9ac8c015644200c21c92543ac815aa146be70f39d7a2c39f0dda7e47f464998d9d3e94a6e23c9806efe5695899512c025601cc13ae14a2e96f21df7a18af03c26dfdb08e99acce8b8e27a5948eef8ccde5f4f28068057e72ddab19f6593da55c2014533caf28a4d805f563a"}]}, 0x120}, 0x1, 0x0, 0x0, 0x8001}, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
recvmsg(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f00000002c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r1=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @multicast2}}}}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000340)=""/222, 0xde}, {&(0x7f0000000440)=""/153, 0x99}, {&(0x7f0000000500)}, {&(0x7f0000000540)=""/248, 0xf8}], 0x4, &(0x7f0000000680)=""/4096, 0x1000}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001700), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000001740)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000001a80)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001a40)={&(0x7f0000001780)={0x2b4, r2, 0x4, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x5, 0x8}}}}, [@NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x20000}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6}, @NL80211_ATTR_SCAN_SUPP_RATES={0x15c, 0x7d, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xe6, 0x0, "a31b175827a80372542988f9f4e66359b73fe5b2df0a6c47fcfcbcae5830669201bd779dc7924bec3c2193b4a5a84fa3a6924ff7b886c9e1f540fd4103eccd11c513d225f241bea03121424cac9b574ee849891c6b62a160e85c68de409cd0104895c82885c6fbd6f9ffcc648b761e91572dd6b9a8018ff31a254da53bbe7129b19fb786e458d3d265358ec4c0882f4c10e49a0fe774657623656b92bdf4b0f572aed9610bd3591a1737f4f48ccdbeb03e4b505efdea9160ca55cdd8fae6d4fbdb063428f5e2978d19c451783d59f406976136b99f2f020e58b1a115ace4bb804ff9"}, @NL80211_BAND_2GHZ={0x70, 0x0, "3a0d8034715457c5c9407c210233a8e00bbbf469b51bbccf0a3b8493685f9be6eb3fbe30a64b0848fb7bdd847423aacfbdcc73c62cd54e64e497f2a085559d1559978e5267cee985b1bf52288da4d59a19c1d0761ce5649b7a70115f553fbda6433cb3e301de4a96be521529"}]}, @NL80211_ATTR_SCAN_SUPP_RATES={0x120, 0x7d, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x41, 0x1, "9d0d583c2697989b923e8f41e8258a34a9e332df364b4e476ad44f9455fa9d3643f173ee119bf22f26e6371dee2f2cfb98098ca7a021b0408bb5e08ed7"}, @NL80211_BAND_60GHZ={0x63, 0x2, "0da1903e5c9350d505d125974972f7b8e1a4539520d9796d72eff380dbeb5a45a332e5495c156bf8c23e29feb72519855979b8a860d2d5b13e6b1940ce83b91d0314d85b8c55239d53101c270d526e74d7506cb4d935d22a5f7873bdd096ed"}, @NL80211_BAND_2GHZ={0x46, 0x0, "529270ba2d200a559b0d36b6ba9b5498e77383aaf0bb57c1b54202f7190593f2b4737dadf9ead1090fa81c28bd63a3411d632566540826f3b4e6e031eeab86016720"}, @NL80211_BAND_5GHZ={0x2b, 0x1, "8ea1b32e62f86342e0e6290bf0bb61c1edb1d6aa3cd16d85a209f25059d53060f5ddf30b1c3003"}]}]}, 0x2b4}, 0x1, 0x0, 0x0, 0x20000800}, 0x40001)
r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001ac0), 0x20800, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001b40), r1)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000001c40)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b80)={0x5c, r5, 0x4, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SCAN_SSIDS={0x40, 0x2d, 0x0, 0x1, [{0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ibss_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xa, 0x0, @default_ap_ssid}, {0xb, 0x0, @random="de68542deb893d"}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20048800}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r4, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001c80), r4)
r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000001d00), r1)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r4, &(0x7f0000001dc0)={&(0x7f0000001cc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001d80)={&(0x7f0000001d40)={0x28, r6, 0x8, 0x70bd2b, 0x25dfdbfc, {{}, {}, {0xc, 0x14, 'syz1\x00'}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x4004c)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r1, &(0x7f0000001ec0)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e40)={0x34, 0x3, 0x8, 0x401, 0x0, 0x0, {0x1, 0x0, 0x5}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x800)
r7 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$IP_SET_OP_GET_FNAME(r7, 0x1, 0x53, &(0x7f0000002240)={0x8, 0x7, 0x0, 'syz0\x00'}, &(0x7f0000002280)=0x2c)
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000002380)={&(0x7f00000022c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000002340)={&(0x7f0000002300)={0x20, r5, 0x1, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x4e7867e3, 0x56}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x40001}, 0x4000091)
sendmsg$NL80211_CMD_DISCONNECT(r4, &(0x7f0000002480)={&(0x7f00000023c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000002440)={&(0x7f0000002400)={0x28, r5, 0x300, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x400, 0x41}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x14}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040090)

11:37:25 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0)
pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xb2, 0x3, 0x1)
sendfile(r1, r2, 0x0, 0xffff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_mtu(r4, 0x29, 0x13, &(0x7f0000000000), 0x4)
ioctl$AUTOFS_IOC_EXPIRE(r4, 0x810c9365, &(0x7f0000000140)={{0x1f, 0x1ff}, 0x100, './file1\x00'})
utimensat(0xffffffffffffffff, &(0x7f0000000480)='./file1\x00', &(0x7f0000000500)={{0x77359400}}, 0x100)
ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000000340))

[  127.619830] audit: type=1400 audit(1664797045.703:7): avc:  denied  { open } for  pid=3629 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  127.626571] audit: type=1400 audit(1664797045.703:8): avc:  denied  { kernel } for  pid=3629 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  127.653993] ------------[ cut here ]------------
[  127.654019] 
[  127.654023] ======================================================
[  127.654027] WARNING: possible circular locking dependency detected
[  127.654031] 6.0.0-rc7-next-20220930 #1 Not tainted
[  127.654038] ------------------------------------------------------
[  127.654041] syz-executor.6/3632 is trying to acquire lock:
[  127.654047] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  127.654086] 
[  127.654086] but task is already holding lock:
[  127.654089] ffff88803f6b5020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  127.654116] 
[  127.654116] which lock already depends on the new lock.
[  127.654116] 
[  127.654119] 
[  127.654119] the existing dependency chain (in reverse order) is:
[  127.654130] 
[  127.654130] -> #3 (&ctx->lock){....}-{2:2}:
[  127.654144]        _raw_spin_lock+0x2a/0x40
[  127.654155]        __perf_event_task_sched_out+0x53b/0x18d0
[  127.654167]        __schedule+0xedd/0x2470
[  127.654181]        schedule+0xda/0x1b0
[  127.654194]        futex_wait_queue+0xf5/0x1e0
[  127.654206]        futex_wait+0x28e/0x690
[  127.654216]        do_futex+0x2ff/0x380
[  127.654226]        __x64_sys_futex+0x1c6/0x4d0
[  127.654236]        do_syscall_64+0x3b/0x90
[  127.654254]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.654267] 
[  127.654267] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  127.654281]        _raw_spin_lock_nested+0x30/0x40
[  127.654291]        raw_spin_rq_lock_nested+0x1e/0x30
[  127.654305]        task_fork_fair+0x63/0x4d0
[  127.654321]        sched_cgroup_fork+0x3d0/0x540
[  127.654335]        copy_process+0x4183/0x6e20
[  127.654346]        kernel_clone+0xe7/0x890
[  127.654355]        user_mode_thread+0xad/0xf0
[  127.654366]        rest_init+0x24/0x250
[  127.654377]        arch_call_rest_init+0xf/0x14
[  127.654395]        start_kernel+0x4c6/0x4eb
[  127.654410]        secondary_startup_64_no_verify+0xe0/0xeb
[  127.654425] 
[  127.654425] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  127.654438]        _raw_spin_lock_irqsave+0x39/0x60
[  127.654449]        try_to_wake_up+0xab/0x1930
[  127.654462]        up+0x75/0xb0
[  127.654476]        __up_console_sem+0x6e/0x80
[  127.654491]        console_unlock+0x46a/0x590
[  127.654507]        vt_ioctl+0x2822/0x2ca0
[  127.654519]        tty_ioctl+0x785/0x16b0
[  127.654530]        __x64_sys_ioctl+0x19a/0x210
[  127.654543]        do_syscall_64+0x3b/0x90
[  127.654560]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.654572] 
[  127.654572] -> #0 ((console_sem).lock){....}-{2:2}:
[  127.654585]        __lock_acquire+0x2a02/0x5e70
[  127.654602]        lock_acquire+0x1a2/0x530
[  127.654618]        _raw_spin_lock_irqsave+0x39/0x60
[  127.654629]        down_trylock+0xe/0x70
[  127.654643]        __down_trylock_console_sem+0x3b/0xd0
[  127.654659]        vprintk_emit+0x16b/0x560
[  127.654675]        vprintk+0x84/0xa0
[  127.654691]        _printk+0xba/0xf1
[  127.654702]        report_bug.cold+0x72/0xab
[  127.654718]        handle_bug+0x3c/0x70
[  127.654734]        exc_invalid_op+0x14/0x50
[  127.654751]        asm_exc_invalid_op+0x16/0x20
[  127.654763]        group_sched_out.part.0+0x2c7/0x460
[  127.654780]        ctx_sched_out+0x8f1/0xc10
[  127.654797]        __perf_event_task_sched_out+0x6d0/0x18d0
[  127.654808]        __schedule+0xedd/0x2470
[  127.654821]        schedule+0xda/0x1b0
[  127.654834]        futex_wait_queue+0xf5/0x1e0
[  127.654845]        futex_wait+0x28e/0x690
[  127.654854]        do_futex+0x2ff/0x380
[  127.654864]        __x64_sys_futex+0x1c6/0x4d0
[  127.654874]        do_syscall_64+0x3b/0x90
[  127.654890]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.654902] 
[  127.654902] other info that might help us debug this:
[  127.654902] 
[  127.654905] Chain exists of:
[  127.654905]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  127.654905] 
[  127.654920]  Possible unsafe locking scenario:
[  127.654920] 
[  127.654922]        CPU0                    CPU1
[  127.654924]        ----                    ----
[  127.654927]   lock(&ctx->lock);
[  127.654932]                                lock(&rq->__lock);
[  127.654939]                                lock(&ctx->lock);
[  127.654945]   lock((console_sem).lock);
[  127.654950] 
[  127.654950]  *** DEADLOCK ***
[  127.654950] 
[  127.654952] 2 locks held by syz-executor.6/3632:
[  127.654959]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  127.654988]  #1: ffff88803f6b5020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  127.655014] 
[  127.655014] stack backtrace:
[  127.655017] CPU: 0 PID: 3632 Comm: syz-executor.6 Not tainted 6.0.0-rc7-next-20220930 #1
[  127.655029] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  127.655038] Call Trace:
[  127.655041]  <TASK>
[  127.655045]  dump_stack_lvl+0x8b/0xb3
[  127.655063]  check_noncircular+0x263/0x2e0
[  127.655080]  ? format_decode+0x26c/0xb50
[  127.655096]  ? print_circular_bug+0x450/0x450
[  127.655113]  ? simple_strtoul+0x30/0x30
[  127.655128]  ? lock_chain_count+0x20/0x20
[  127.655144]  ? format_decode+0x26c/0xb50
[  127.655161]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  127.655179]  __lock_acquire+0x2a02/0x5e70
[  127.655200]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  127.655222]  lock_acquire+0x1a2/0x530
[  127.655239]  ? down_trylock+0xe/0x70
[  127.655256]  ? lock_release+0x750/0x750
[  127.655276]  ? vprintk+0x84/0xa0
[  127.655293]  _raw_spin_lock_irqsave+0x39/0x60
[  127.655305]  ? down_trylock+0xe/0x70
[  127.655321]  down_trylock+0xe/0x70
[  127.655336]  ? vprintk+0x84/0xa0
[  127.655353]  __down_trylock_console_sem+0x3b/0xd0
[  127.655370]  vprintk_emit+0x16b/0x560
[  127.655389]  vprintk+0x84/0xa0
[  127.655406]  _printk+0xba/0xf1
[  127.655417]  ? record_print_text.cold+0x16/0x16
[  127.655433]  ? report_bug.cold+0x66/0xab
[  127.655450]  ? group_sched_out.part.0+0x2c7/0x460
[  127.655469]  report_bug.cold+0x72/0xab
[  127.655487]  handle_bug+0x3c/0x70
[  127.655504]  exc_invalid_op+0x14/0x50
[  127.655522]  asm_exc_invalid_op+0x16/0x20
[  127.655535] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  127.655555] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  127.655567] RSP: 0018:ffff88803fbc78f8 EFLAGS: 00010006
[  127.655576] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  127.655583] RDX: ffff88800ed20000 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  127.655591] RBP: ffff888018ba0000 R08: 0000000000000005 R09: 0000000000000001
[  127.655598] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88803f6b5000
[  127.655606] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  127.655616]  ? group_sched_out.part.0+0x2c7/0x460
[  127.655636]  ? group_sched_out.part.0+0x2c7/0x460
[  127.655656]  ctx_sched_out+0x8f1/0xc10
[  127.655675]  __perf_event_task_sched_out+0x6d0/0x18d0
[  127.655689]  ? lock_is_held_type+0xd7/0x130
[  127.655703]  ? __perf_cgroup_move+0x160/0x160
[  127.655713]  ? set_next_entity+0x304/0x550
[  127.655731]  ? update_curr+0x267/0x740
[  127.655749]  ? lock_is_held_type+0xd7/0x130
[  127.655763]  __schedule+0xedd/0x2470
[  127.655780]  ? io_schedule_timeout+0x150/0x150
[  127.655795]  ? futex_wait_setup+0x166/0x230
[  127.655810]  schedule+0xda/0x1b0
[  127.655825]  futex_wait_queue+0xf5/0x1e0
[  127.655837]  futex_wait+0x28e/0x690
[  127.655849]  ? futex_wait_setup+0x230/0x230
[  127.655863]  ? wake_up_q+0x8b/0xf0
[  127.655876]  ? do_raw_spin_unlock+0x4f/0x220
[  127.655895]  ? futex_wake+0x158/0x490
[  127.655911]  ? fd_install+0x1f9/0x640
[  127.655926]  do_futex+0x2ff/0x380
[  127.655937]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  127.655953]  __x64_sys_futex+0x1c6/0x4d0
[  127.655966]  ? __x64_sys_futex_time32+0x480/0x480
[  127.655979]  ? syscall_enter_from_user_mode+0x1d/0x50
[  127.655993]  ? syscall_enter_from_user_mode+0x1d/0x50
[  127.656008]  do_syscall_64+0x3b/0x90
[  127.656026]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.656039] RIP: 0033:0x7f74d3b9cb19
[  127.656047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  127.656057] RSP: 002b:00007f74d1112218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  127.656068] RAX: ffffffffffffffda RBX: 00007f74d3caff68 RCX: 00007f74d3b9cb19
[  127.656076] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f74d3caff68
[  127.656083] RBP: 00007f74d3caff60 R08: 0000000000000000 R09: 0000000000000000
[  127.656090] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f74d3caff6c
[  127.656097] R13: 00007fffc9884cff R14: 00007f74d1112300 R15: 0000000000022000
[  127.656110]  </TASK>
[  127.721289] WARNING: CPU: 0 PID: 3632 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  127.721985] Modules linked in:
[  127.722247] CPU: 0 PID: 3632 Comm: syz-executor.6 Not tainted 6.0.0-rc7-next-20220930 #1
[  127.722880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  127.723725] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  127.724153] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  127.725537] RSP: 0018:ffff88803fbc78f8 EFLAGS: 00010006
[  127.726067] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  127.726781] RDX: ffff88800ed20000 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  127.727484] RBP: ffff888018ba0000 R08: 0000000000000005 R09: 0000000000000001
[  127.728193] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88803f6b5000
[  127.728899] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  127.729606] FS:  00007f74d1112700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  127.730424] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  127.730999] CR2: 00007f5a74eb8610 CR3: 0000000019d4e000 CR4: 0000000000350ef0
[  127.731701] Call Trace:
[  127.731962]  <TASK>
[  127.732188]  ctx_sched_out+0x8f1/0xc10
[  127.732588]  __perf_event_task_sched_out+0x6d0/0x18d0
[  127.733051]  ? lock_is_held_type+0xd7/0x130
[  127.733393]  ? __perf_cgroup_move+0x160/0x160
[  127.733773]  ? set_next_entity+0x304/0x550
[  127.734160]  ? update_curr+0x267/0x740
[  127.734519]  ? lock_is_held_type+0xd7/0x130
[  127.734882]  __schedule+0xedd/0x2470
[  127.735176]  ? io_schedule_timeout+0x150/0x150
[  127.735556]  ? futex_wait_setup+0x166/0x230
[  127.735932]  schedule+0xda/0x1b0
[  127.736202]  futex_wait_queue+0xf5/0x1e0
[  127.736549]  futex_wait+0x28e/0x690
[  127.736876]  ? futex_wait_setup+0x230/0x230
[  127.737207]  ? wake_up_q+0x8b/0xf0
[  127.737487]  ? do_raw_spin_unlock+0x4f/0x220
[  127.737834]  ? futex_wake+0x158/0x490
[  127.738154]  ? fd_install+0x1f9/0x640
[  127.738462]  do_futex+0x2ff/0x380
[  127.738737]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  127.739192]  __x64_sys_futex+0x1c6/0x4d0
[  127.739522]  ? __x64_sys_futex_time32+0x480/0x480
[  127.739892]  ? syscall_enter_from_user_mode+0x1d/0x50
[  127.740286]  ? syscall_enter_from_user_mode+0x1d/0x50
[  127.740692]  do_syscall_64+0x3b/0x90
[  127.740986]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  127.741383] RIP: 0033:0x7f74d3b9cb19
[  127.741675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  127.743021] RSP: 002b:00007f74d1112218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  127.743566] RAX: ffffffffffffffda RBX: 00007f74d3caff68 RCX: 00007f74d3b9cb19
[  127.744072] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f74d3caff68
[  127.744588] RBP: 00007f74d3caff60 R08: 0000000000000000 R09: 0000000000000000
[  127.745109] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f74d3caff6c
[  127.745615] R13: 00007fffc9884cff R14: 00007f74d1112300 R15: 0000000000022000
[  127.746148]  </TASK>
[  127.746317] irq event stamp: 768
[  127.746568] hardirqs last  enabled at (767): [<ffffffff8425379d>] syscall_enter_from_user_mode+0x1d/0x50
[  127.747245] hardirqs last disabled at (768): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  127.747829] softirqs last  enabled at (502): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  127.748437] softirqs last disabled at (417): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  127.749036] ---[ end trace 0000000000000000 ]---
11:37:26 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0)
pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xb2, 0x3, 0x1)
sendfile(r1, r2, 0x0, 0xffff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_mtu(r4, 0x29, 0x13, &(0x7f0000000000), 0x4)
ioctl$AUTOFS_IOC_EXPIRE(r4, 0x810c9365, &(0x7f0000000140)={{0x1f, 0x1ff}, 0x100, './file1\x00'})
utimensat(0xffffffffffffffff, &(0x7f0000000480)='./file1\x00', &(0x7f0000000500)={{0x77359400}}, 0x100)
ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000000340))

11:37:26 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0)
pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xb2, 0x3, 0x1)
sendfile(r1, r2, 0x0, 0xffff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_mtu(r4, 0x29, 0x13, &(0x7f0000000000), 0x4)
ioctl$AUTOFS_IOC_EXPIRE(r4, 0x810c9365, &(0x7f0000000140)={{0x1f, 0x1ff}, 0x100, './file1\x00'})
utimensat(0xffffffffffffffff, &(0x7f0000000480)='./file1\x00', &(0x7f0000000500)={{0x77359400}}, 0x100)
ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000000340))

11:37:26 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0)
pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xb2, 0x3, 0x1)
sendfile(r1, r2, 0x0, 0xffff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_mtu(r4, 0x29, 0x13, &(0x7f0000000000), 0x4)
ioctl$AUTOFS_IOC_EXPIRE(r4, 0x810c9365, &(0x7f0000000140)={{0x1f, 0x1ff}, 0x100, './file1\x00'})
utimensat(0xffffffffffffffff, &(0x7f0000000480)='./file1\x00', &(0x7f0000000500)={{0x77359400}}, 0x100)
ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000000340))

[  128.549789] hrtimer: interrupt took 15870 ns
11:37:27 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0)
pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xb2, 0x3, 0x1)
sendfile(r1, r2, 0x0, 0xffff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_mtu(r4, 0x29, 0x13, &(0x7f0000000000), 0x4)
ioctl$AUTOFS_IOC_EXPIRE(r4, 0x810c9365, &(0x7f0000000140)={{0x1f, 0x1ff}, 0x100, './file1\x00'})
utimensat(0xffffffffffffffff, &(0x7f0000000480)='./file1\x00', &(0x7f0000000500)={{0x77359400}}, 0x100)
ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000000340))

11:37:27 executing program 7:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x2c, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000ddf4655fddf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000001000008000000d2420100120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e37343139313330323700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000e7e1fc40a6de4c28a2c3627f6ec42b47010040000c00000000000000daf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000040000004600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0300000004000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000030000000400000016000f000300040000000000000000000f00c5d7", 0x20, 0x800}, {&(0x7f0000010500)="ff030000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000daf4655fdaf4655fdaf4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011600)="ed41000000080000daf4655fddf4655fddf4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011700)="20000000541597055415970500000000daf4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011800)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000030000000", 0x40, 0x2200}, {&(0x7f0000011900)="20000000000000000000000000000000daf4655f00"/32, 0x20, 0x2280}, {&(0x7f0000011a00)="8081000000180000daf4655fdaf4655fdaf4655f00000000000001004000000010000800000000000af301000400000000000000000000000300000040000000", 0x40, 0x2300}, {&(0x7f0000011b00)="20000000000000000000000000000000daf4655f00"/32, 0x20, 0x2380}, {&(0x7f0000011c00)="c041000000400000daf4655fdaf4655fdaf4655f00000000000002004000000000000800000000000af301000400000000000000000000000800000020000000", 0x40, 0x2a00}, {&(0x7f0000011d00)="20000000000000000000000000000000daf4655f00"/32, 0x20, 0x2a80}, {&(0x7f0000011e00)="ed41000000080000ddf4655fddf4655fddf4655f00000000000002004000000000000800030000000af301000400000000000000000000000100000050000000000000000000000000000000000000000000000000000000000000000000000000000000eb7155bc00000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0xa0, 0x2b00}, {&(0x7f0000011f00)="ed8100001a040000ddf4655fddf4655fddf4655f00000000000001004000000000000800010000000af301000400000000000000000000000100000060000000000000000000000000000000000000000000000000000000000000000000000000000000af6989a500000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0xa0, 0x2c00}, {&(0x7f0000012000)="ffa1000026000000ddf4655fddf4655fddf4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3734313931333032372f66696c65302f66696c653000000000000000000000000000000000000000000000725ed7c600000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0xa0, 0x2d00}, {&(0x7f0000012100)="ed8100000a000000ddf4655fddf4655fddf4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000700000000000000000000000000000000000000000000000000000000000000000000000000000006bb7ad8500000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000000002ea06015400000000000600000000000000786174747231000006014c0000000000060000000000000078617474723200000000000000000000000000000000000000000000000000000000000078617474723200007861747472310000ed81000028230000ddf4655fddf4655fddf4655f00000000000002004000000000000800010000000af301000400000000000000000000000500000080000000000000000000000000000000000000000000000000000000000000000000000000000000b712b64f00000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0x1a0, 0x2e00}, {&(0x7f0000012300)="ed81000064000000ddf4655fddf4655fddf4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000900000000000000000000000000000000000000000000000000000000000000000000000000000003e5e55c600000000000000000000000000000000000000000000000020000000541597055415970554159705ddf4655f541597050000000000000000", 0xa0, 0x3000}, {&(0x7f0000012400)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012500)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x10000}, {&(0x7f0000000080)="000000000008000000000000000000000000000000000000000000000000000040fddb35fe96aa27a76a62f6f0894116ff117fa03be170f0e7ef431a555cf5936ec1c8b37966ac9b3d0917e9a2542eabe6f73ff82d268f67b2f83feb73c54790c4fbc44d6e3696309e3828c385b249fb5ef66e4b063689270506cfd41d", 0x7d, 0x10800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000000040)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x80000000011800}, {&(0x7f0000012900)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012a00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012b00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012c00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13800}, {&(0x7f0000012d00)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x18000}, {&(0x7f0000012e00)="0200"/32, 0x20, 0x18400}, {&(0x7f0000012f00)="0300"/32, 0x20, 0x18800}, {&(0x7f0000013000)="0400"/32, 0x20, 0x18c00}, {&(0x7f0000013100)="0500"/32, 0x20, 0x19000}, {&(0x7f0000013200)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000800300"/96, 0x60, 0x19400}, {&(0x7f0000013300)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x20000}, {&(0x7f0000013400)="0200000000000000000000000000000000000000000000000000000000000200", 0x20, 0x20400}, {&(0x7f0000013500)="0300"/32, 0x20, 0x20800}, {&(0x7f0000013600)="0400"/32, 0x20, 0x20c00}, {&(0x7f0000013700)="0500"/32, 0x20, 0x9000000000000000}, {&(0x7f0000013800)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000800300"/96, 0x60, 0x21400}, {&(0x7f0000013900)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x28000}, {&(0x7f0000000640)="73797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c000000000000182af0538b64c42945adaf8e92dd9f310b5a1b5b95d7b5703383ca1c2e1d9e630c0850379abd9e3118b57468f819dd04ffcc8131b5c5dce2f1d38d0bfa54e7ea42b4e87f3a68570732a553d19d760e319ad15cff6ee36f06cc77493542e6404867e5c332fbda90b09465a971f983c853f87b4fe3ce308a15c4238825335e932ea16f33f2c357b88857b3471c1253064be9c96b23e6d5c069b1b905c91e4178935bd93571623f4a59678e278fada7f5507b93e2b7eb7acc2f32346fbc7ef19361957d3d1fdb65d6545fe42ec7fbbe95abb2f3d88744e471b461ba662f72e3fe6e3095a0ec724bbd66cfe93f9f4a9df4a36c60efe19ab053008689a38b28846913724b705a0fc1b5e7fbf0c5ddae96ce20fad4b72b5be898964f988ef572fcb5d712196f0f328b380613319579811367a4485bfe49da0d8dbd7c8dd60db9c9be82739a0ea0bd6d99dffd41a74258524b9895101ad571d25f3b2820", 0x57a, 0x30000}, {&(0x7f0000013f00)='syzkallers\x00'/32, 0x20, 0x38000}, {&(0x7f0000014000)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x48000}], 0x0, &(0x7f0000014100))
mount(&(0x7f0000000140)=@sr0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='erofs\x00', 0x100400, &(0x7f0000000bc0)='ext4\x00')
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000c00), 0x8000, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r0, 0xc080661a, &(0x7f0000000c40)={@desc={0x1, 0x0, @desc3}})

[  129.602390] loop7: detected capacity change from 0 to 264192
11:37:27 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000380), 0x2}, 0x12354}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r1, 0x0, 0x0, 0x87ffffc)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x220000, 0x0)
openat(r2, &(0x7f00000003c0)='./file1\x00', 0x402, 0x1bb)
pwritev(r1, &(0x7f0000000000)=[{&(0x7f0000001340)="e4eb8e5355feefc9b3c48a57cf1602a197c4b0087f7e5812368dc3bab70e0418263fc620b190aa02558bcfb0e65cb7786074964845b33e3618af6ae487cb258242e1e8731eec366954e0c20a64f07e48", 0x50}], 0x1, 0x8d, 0x7bf6)
pwritev2(r0, &(0x7f0000000300)=[{&(0x7f0000000180)="3c05886344f6c1676463474261a3cd71268afe038e7d96f46fea5246194a21c0bca49aab4882c5e4b508f5caf019902800cc407c31ecca2126ec616e9ef51561c11fb6d5ad0dc0c03998e37daae333db1252ad0d6b210c26dc017bcd9eb7b3773f1ab930713c646093f3efac450fcd793d65bfca217cf1d1be3971f4b8bee2b4fd3876a9b065f04ff62603f3cffe0e3ead48226b756653faf696165c00c54890e8d4590f8c08e761926d1a367f7adaff0cd7a0a804aae86072e3866492eabdfbbf60d4a310dfda9cb5f679ca00946a01dd39236d72f2aa56bb3d9d47c042843926cfff2164e5df0e048b3a8d", 0xec}], 0x1, 0x6, 0x2, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4800)
ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0xb9)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000340), 0x8, 0x0)
signalfd4(r4, &(0x7f00000007c0)={[0xa62]}, 0x8, 0x80000)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000340), 0x8, 0x0)
ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000800))
perf_event_open(&(0x7f0000000540)={0x2, 0x80, 0x1, 0x1, 0x5, 0x20, 0x0, 0x1, 0x62000, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x9, 0x2, @perf_config_ext={0x100000000, 0x401}, 0x800, 0xffffffffffff20aa, 0x9, 0x8, 0x6, 0x9, 0x8, 0x0, 0x6, 0x0, 0x232}, 0x0, 0xf, 0xffffffffffffffff, 0x2)
signalfd4(r5, &(0x7f00000007c0)={[0xa62]}, 0x8, 0x80000)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f00000005c0)=ANY=[@ANYBLOB="0100000001000000180000000600ce2abe7dff9f57274b43f1353697b34407715cdeb34fc91d21b36b05ab8e6849a60addf84907fea1d83f32ea8c047c2c9fcf81c09ab68e7ca4440ac5a39613d2f427d25cd959487cd7dfcb465ea1cdf12da351f482ba4d373a590a168a483df324dfcbd87f059fd023fe84b20e4fbfedb5acfac1f42be332abe17c09562ec2956f74f4434131b4a6c07e3b1d629a89eea1554c9b375e9a2c11af06000000000000004b68bee4a8c73318c168fe2427b4eff26aab7cb35e5ce0fef0ad17", @ANYRES32=r3, @ANYBLOB="0100ee2da88e0fd124a200000200800000"])

[  129.689168] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  129.831586] EXT4-fs (loop7): unmounting filesystem.
[  129.982649] audit: type=1400 audit(1664797048.065:9): avc:  denied  { write } for  pid=3764 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1

VM DIAGNOSIS:
11:37:26  Registers:
info registers vcpu 0
RAX=0000000000000063 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88803fbc7340
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000063 R11=0000000000000001
R12=0000000000000063 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f74d1112700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f5a74eb8610 CR3=0000000019d4e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f74d3c837c0 00007f74d3c837c8
YMM02=0000000000000000 0000000000000000 00007f74d3c837e0 00007f74d3c837c0
YMM03=0000000000000000 0000000000000000 00007f74d3c837c8 00007f74d3c837c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff810acdae RDX=1ffffffff0bc6824
RSI=ffffffff85e34106 RDI=ffffffff85b49b9c RBP=ffff88801d90f818 RSP=ffff88801d90f6f0
R8 =ffffffff85e3411e R9 =ffffffff85e34122 R10=ffffed1003b21f05 R11=000000000003603d
R12=ffff88801d90f801 R13=ffff88801d90f820 R14=ffff88801d90f7c0 R15=ffffffff810acdae
RIP=ffffffff8111a50b RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007ff0505e4540 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff0506a18b0 CR3=000000003ef2e000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 000000ff00000000 00000000000000ff
YMM01=0000000000000000 0000000000000000 ffffff0000ff00ff ffffffffffffff00
YMM02=0000000000000000 0000000000000000 494c4700362e322e 325f4342494c4700
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000004700
YMM04=0000000000000000 0000000000000000 4342494c4700362e 322e325f4342494c
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000