Warning: Permanently added '[localhost]:38845' (ECDSA) to the list of known hosts.
2022/10/04 03:31:59 fuzzer started
2022/10/04 03:32:00 dialing manager at localhost:35095
syzkaller login: [   41.619171] cgroup: Unknown subsys name 'net'
[   41.720019] cgroup: Unknown subsys name 'rlimit'
2022/10/04 03:32:14 syscalls: 2215
2022/10/04 03:32:14 code coverage: enabled
2022/10/04 03:32:14 comparison tracing: enabled
2022/10/04 03:32:14 extra coverage: enabled
2022/10/04 03:32:14 setuid sandbox: enabled
2022/10/04 03:32:14 namespace sandbox: enabled
2022/10/04 03:32:14 Android sandbox: enabled
2022/10/04 03:32:14 fault injection: enabled
2022/10/04 03:32:14 leak checking: enabled
2022/10/04 03:32:14 net packet injection: enabled
2022/10/04 03:32:14 net device setup: enabled
2022/10/04 03:32:14 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/04 03:32:14 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/04 03:32:14 USB emulation: enabled
2022/10/04 03:32:14 hci packet injection: enabled
2022/10/04 03:32:14 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/04 03:32:14 802.15.4 emulation: enabled
2022/10/04 03:32:14 fetching corpus: 50, signal 23100/24966 (executing program)
2022/10/04 03:32:14 fetching corpus: 100, signal 39394/42890 (executing program)
2022/10/04 03:32:14 fetching corpus: 150, signal 45576/50689 (executing program)
2022/10/04 03:32:14 fetching corpus: 200, signal 50172/56836 (executing program)
2022/10/04 03:32:14 fetching corpus: 250, signal 56077/64259 (executing program)
2022/10/04 03:32:14 fetching corpus: 300, signal 61756/71385 (executing program)
2022/10/04 03:32:14 fetching corpus: 350, signal 65857/76911 (executing program)
2022/10/04 03:32:15 fetching corpus: 400, signal 71642/83990 (executing program)
2022/10/04 03:32:15 fetching corpus: 450, signal 75885/89516 (executing program)
2022/10/04 03:32:15 fetching corpus: 500, signal 78517/93514 (executing program)
2022/10/04 03:32:15 fetching corpus: 550, signal 82032/98264 (executing program)
2022/10/04 03:32:15 fetching corpus: 600, signal 85452/102874 (executing program)
2022/10/04 03:32:15 fetching corpus: 650, signal 88968/107578 (executing program)
2022/10/04 03:32:15 fetching corpus: 700, signal 91317/111142 (executing program)
2022/10/04 03:32:15 fetching corpus: 750, signal 94508/115474 (executing program)
2022/10/04 03:32:16 fetching corpus: 800, signal 96566/118736 (executing program)
2022/10/04 03:32:16 fetching corpus: 850, signal 98554/121910 (executing program)
2022/10/04 03:32:16 fetching corpus: 900, signal 101913/126338 (executing program)
2022/10/04 03:32:16 fetching corpus: 950, signal 104092/129600 (executing program)
2022/10/04 03:32:16 fetching corpus: 1000, signal 106054/132695 (executing program)
2022/10/04 03:32:16 fetching corpus: 1050, signal 107963/135701 (executing program)
2022/10/04 03:32:16 fetching corpus: 1100, signal 110569/139256 (executing program)
2022/10/04 03:32:16 fetching corpus: 1150, signal 112165/141914 (executing program)
2022/10/04 03:32:17 fetching corpus: 1200, signal 113817/144619 (executing program)
2022/10/04 03:32:17 fetching corpus: 1250, signal 116254/147975 (executing program)
2022/10/04 03:32:17 fetching corpus: 1300, signal 117569/150261 (executing program)
2022/10/04 03:32:17 fetching corpus: 1350, signal 119500/153088 (executing program)
2022/10/04 03:32:17 fetching corpus: 1400, signal 122231/156581 (executing program)
2022/10/04 03:32:17 fetching corpus: 1450, signal 123141/158559 (executing program)
2022/10/04 03:32:17 fetching corpus: 1500, signal 124602/160915 (executing program)
2022/10/04 03:32:17 fetching corpus: 1550, signal 126828/163918 (executing program)
2022/10/04 03:32:18 fetching corpus: 1600, signal 128579/166522 (executing program)
2022/10/04 03:32:18 fetching corpus: 1650, signal 129872/168754 (executing program)
2022/10/04 03:32:18 fetching corpus: 1700, signal 131598/171226 (executing program)
2022/10/04 03:32:18 fetching corpus: 1750, signal 133324/173688 (executing program)
2022/10/04 03:32:18 fetching corpus: 1800, signal 134128/175451 (executing program)
2022/10/04 03:32:18 fetching corpus: 1850, signal 135227/177456 (executing program)
2022/10/04 03:32:18 fetching corpus: 1900, signal 136609/179662 (executing program)
2022/10/04 03:32:18 fetching corpus: 1950, signal 138114/181886 (executing program)
2022/10/04 03:32:19 fetching corpus: 2000, signal 140664/184910 (executing program)
2022/10/04 03:32:19 fetching corpus: 2050, signal 142829/187637 (executing program)
2022/10/04 03:32:19 fetching corpus: 2100, signal 145029/190362 (executing program)
2022/10/04 03:32:19 fetching corpus: 2150, signal 146716/192698 (executing program)
2022/10/04 03:32:19 fetching corpus: 2200, signal 147798/194601 (executing program)
2022/10/04 03:32:19 fetching corpus: 2250, signal 148870/196431 (executing program)
2022/10/04 03:32:19 fetching corpus: 2300, signal 149595/198063 (executing program)
2022/10/04 03:32:19 fetching corpus: 2350, signal 150080/199444 (executing program)
2022/10/04 03:32:20 fetching corpus: 2400, signal 150622/200866 (executing program)
2022/10/04 03:32:20 fetching corpus: 2450, signal 151527/202527 (executing program)
2022/10/04 03:32:20 fetching corpus: 2500, signal 152153/203989 (executing program)
2022/10/04 03:32:20 fetching corpus: 2550, signal 153443/205961 (executing program)
2022/10/04 03:32:20 fetching corpus: 2600, signal 154071/207409 (executing program)
2022/10/04 03:32:20 fetching corpus: 2650, signal 155240/209228 (executing program)
2022/10/04 03:32:20 fetching corpus: 2700, signal 155803/210628 (executing program)
2022/10/04 03:32:20 fetching corpus: 2750, signal 156480/212059 (executing program)
2022/10/04 03:32:20 fetching corpus: 2800, signal 157790/213863 (executing program)
2022/10/04 03:32:21 fetching corpus: 2850, signal 158577/215412 (executing program)
2022/10/04 03:32:21 fetching corpus: 2900, signal 159212/216769 (executing program)
2022/10/04 03:32:21 fetching corpus: 2950, signal 159956/218250 (executing program)
2022/10/04 03:32:21 fetching corpus: 3000, signal 160667/219675 (executing program)
2022/10/04 03:32:21 fetching corpus: 3050, signal 161262/221052 (executing program)
2022/10/04 03:32:21 fetching corpus: 3100, signal 161770/222362 (executing program)
2022/10/04 03:32:21 fetching corpus: 3150, signal 162487/223777 (executing program)
2022/10/04 03:32:21 fetching corpus: 3200, signal 163319/225311 (executing program)
2022/10/04 03:32:21 fetching corpus: 3250, signal 164223/226825 (executing program)
2022/10/04 03:32:22 fetching corpus: 3300, signal 164969/228236 (executing program)
2022/10/04 03:32:22 fetching corpus: 3350, signal 165458/229460 (executing program)
2022/10/04 03:32:22 fetching corpus: 3400, signal 166519/231032 (executing program)
2022/10/04 03:32:22 fetching corpus: 3450, signal 167312/232429 (executing program)
2022/10/04 03:32:22 fetching corpus: 3500, signal 168145/233877 (executing program)
2022/10/04 03:32:22 fetching corpus: 3550, signal 169017/235278 (executing program)
2022/10/04 03:32:22 fetching corpus: 3600, signal 169765/236546 (executing program)
2022/10/04 03:32:22 fetching corpus: 3650, signal 170939/238069 (executing program)
2022/10/04 03:32:23 fetching corpus: 3700, signal 171986/239537 (executing program)
2022/10/04 03:32:23 fetching corpus: 3750, signal 172552/240740 (executing program)
2022/10/04 03:32:23 fetching corpus: 3800, signal 173405/242128 (executing program)
2022/10/04 03:32:23 fetching corpus: 3850, signal 175248/244001 (executing program)
2022/10/04 03:32:23 fetching corpus: 3900, signal 176175/245334 (executing program)
2022/10/04 03:32:23 fetching corpus: 3950, signal 177224/246717 (executing program)
2022/10/04 03:32:23 fetching corpus: 4000, signal 177778/247858 (executing program)
2022/10/04 03:32:23 fetching corpus: 4050, signal 179021/249327 (executing program)
2022/10/04 03:32:23 fetching corpus: 4100, signal 180260/250742 (executing program)
2022/10/04 03:32:24 fetching corpus: 4150, signal 181070/252015 (executing program)
2022/10/04 03:32:24 fetching corpus: 4200, signal 182353/253491 (executing program)
2022/10/04 03:32:24 fetching corpus: 4250, signal 183014/254626 (executing program)
2022/10/04 03:32:24 fetching corpus: 4300, signal 184138/256013 (executing program)
2022/10/04 03:32:24 fetching corpus: 4350, signal 184941/257227 (executing program)
2022/10/04 03:32:24 fetching corpus: 4400, signal 185346/258242 (executing program)
2022/10/04 03:32:24 fetching corpus: 4450, signal 185633/259193 (executing program)
2022/10/04 03:32:24 fetching corpus: 4500, signal 186037/260218 (executing program)
2022/10/04 03:32:25 fetching corpus: 4550, signal 186853/261327 (executing program)
2022/10/04 03:32:25 fetching corpus: 4600, signal 187768/262528 (executing program)
2022/10/04 03:32:25 fetching corpus: 4650, signal 189037/263899 (executing program)
2022/10/04 03:32:25 fetching corpus: 4700, signal 189622/264935 (executing program)
2022/10/04 03:32:25 fetching corpus: 4750, signal 190708/266194 (executing program)
2022/10/04 03:32:25 fetching corpus: 4800, signal 192047/267479 (executing program)
2022/10/04 03:32:25 fetching corpus: 4850, signal 193141/268667 (executing program)
2022/10/04 03:32:25 fetching corpus: 4900, signal 193601/269579 (executing program)
2022/10/04 03:32:25 fetching corpus: 4950, signal 194241/270578 (executing program)
2022/10/04 03:32:26 fetching corpus: 5000, signal 194763/271518 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/272273 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/273033 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/273790 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/274550 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/275317 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/276091 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/276863 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/277621 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/278358 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/279119 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/279886 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/280668 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/281447 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/282184 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/282919 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/283683 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/284424 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/285133 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/285906 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/286689 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/287441 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/288224 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/288975 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/289714 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/290507 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/291270 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/292009 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/292762 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/293520 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/294279 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/295042 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/295821 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/296618 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/297393 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/298143 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/298925 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/299689 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/300470 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/301242 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/302003 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/302751 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/303484 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/304252 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/305059 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/305835 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/306658 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/307438 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/308200 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/308964 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/309682 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/310473 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/311260 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/312039 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/312787 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/313544 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/313851 (executing program)
2022/10/04 03:32:26 fetching corpus: 5011, signal 194825/313851 (executing program)
2022/10/04 03:32:29 starting 8 fuzzer processes
03:32:29 executing program 0:
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, @in_args={0x1}}, './file0\x00'})
ioctl$TUNSETNOCSUM(r0, 0x400454c8, 0x0)
recvmsg$unix(r0, &(0x7f0000000580)={&(0x7f0000000040), 0x6e, &(0x7f0000000480)=[{&(0x7f00000000c0)=""/153, 0x99}, {&(0x7f0000000180)=""/193, 0xc1}, {&(0x7f0000000280)=""/128, 0x80}, {&(0x7f0000000300)=""/7, 0x7}, {&(0x7f0000000340)=""/220, 0xdc}, {&(0x7f0000000440)}], 0x6, &(0x7f0000000500)=[@rights={{0x2c, 0x1, 0x1, [<r1=>0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff, 0xffffffffffffffff, <r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff]}}], 0x70}, 0x2)
r8 = openat$cgroup_subtree(r0, &(0x7f0000000600), 0x2, 0x0)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f00000005c0)=',(\\\x00', 0x0, r8)
fcntl$getownex(r2, 0x10, &(0x7f0000000640))
r9 = openat2(0xffffffffffffff9c, &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)={0x478c00, 0x1a4, 0x9}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000000700)={{0x1, 0x1, 0x18, <r10=>r3, {0x4e45}}, './file0\x00'})
io_uring_register$IORING_UNREGISTER_EVENTFD(r10, 0x5, 0x0, 0x0)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r3, 0x8010671f, &(0x7f00000007c0)={&(0x7f0000000740)=""/86, 0x56})
ioctl$BINDER_THREAD_EXIT(r6, 0x40046208, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r9, 0x82307201, &(0x7f0000000800)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r11 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000a40)='cpu.pressure\x00', 0x2, 0x0)
r12 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000a80), 0x240843)
dup2(r11, r12)
fsetxattr$trusted_overlay_nlink(r10, &(0x7f0000000ac0), &(0x7f0000000b00)={'U-', 0x4}, 0x16, 0x0)
ioctl$FICLONE(r7, 0x40049409, r5)
sendmsg$NFT_MSG_GETFLOWTABLE(r6, &(0x7f0000000c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000b80)={0x4c, 0x17, 0xa, 0x3, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10000000)
fchdir(r0)
sendmsg$IPSET_CMD_GET_BYINDEX(0xffffffffffffffff, &(0x7f0000000d80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x64, 0xf, 0x6, 0x201, 0x0, 0x0, {0x3, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x1}, @IPSET_ATTR_INDEX={0x6, 0xb, 0x2}, @IPSET_ATTR_INDEX={0x6, 0xb, 0xffffffffffffffff}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x64}}, 0x10)

03:32:29 executing program 1:
shmdt(0x0)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x1000)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x1000)
r0 = shmget(0x1, 0x4000, 0x20, &(0x7f0000ffa000/0x4000)=nil)
shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x6000)
r1 = shmget(0x2, 0x2000, 0x100, &(0x7f0000ffa000/0x2000)=nil)
shmat(r1, &(0x7f0000ffc000/0x1000)=nil, 0x0)
shmctl$IPC_RMID(r1, 0x0)
shmctl$IPC_STAT(r1, 0x2, &(0x7f0000000000)=""/4096)
r2 = shmget(0x0, 0x2000, 0x10, &(0x7f0000ffa000/0x2000)=nil)
shmctl$IPC_STAT(r2, 0x2, &(0x7f0000001000)=""/37)
shmget(0x3, 0x3000, 0x54000100, &(0x7f0000ffd000/0x3000)=nil)
shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x4000)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001140)={&(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000001040)="f144b83ffc25625e51ba8c4a48b4414f8f37e5abce80ad2a8b0195842b5d7fd910cdd5786b424fe99282f10110063559f62ceb6f6120c0a45a9fde2b58096937b5b612374a754d7b888a715938cc45d6f01051ef1784f468a871d98cfd2bdb1f3a2b61171f37fb64895cd5f205f21fbf9db02e229ade6fee61b3749aa9919e547b98a33a4ad759ad2417583c56ae55d6c93f2852a1a23e7b247c7c2a2fdf460bf34ed9cdc3d69bf6c57ece85492579b0fe1333a4263bee2f118ac6276421882f53fa304a9c63f4", 0xc7}, 0x68)
r3 = shmget$private(0x0, 0x2000, 0x100, &(0x7f0000ffb000/0x2000)=nil)
shmctl$IPC_SET(r3, 0x1, &(0x7f00000011c0)={{0x3, 0xee00, 0xee01, 0xee01, 0xffffffffffffffff, 0x41, 0x100}, 0x0, 0x1, 0xfef0, 0x7, 0xffffffffffffffff, 0xffffffffffffffff})
fstat(0xffffffffffffffff, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000012c0)=<r5=>0x0)
shmctl$IPC_SET(r2, 0x1, &(0x7f0000001300)={{0x0, r4, 0xee00, 0xee00, 0xee00, 0x112, 0x6}, 0x2, 0x3, 0xfffffffffffffb3a, 0x9, 0x0, r5, 0x9})
shmctl$SHM_LOCK(r1, 0xb)

03:32:29 executing program 2:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x40)
ioctl$KDADDIO(r0, 0x4b34, 0x1)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0}, './file1\x00'})
r2 = openat$cgroup_int(r0, &(0x7f0000000080)='memory.high\x00', 0x2, 0x0)
ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f00000000c0)=0x400)
ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000100)=""/41)
r3 = open_tree(r1, &(0x7f0000000140)='./file1\x00', 0x8000)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000180)={0x0, r3, 0x9, 0x5, 0x2, 0x1})
r4 = syz_io_uring_complete(0x0)
ioctl$KDGKBTYPE(r4, 0x4b33, &(0x7f00000001c0))
ioctl$TIOCL_GETKMSGREDIRECT(r0, 0x541c, &(0x7f0000000200))
ioctl$TCSETSF(r3, 0x5404, &(0x7f0000000240)={0x2, 0x40, 0x1, 0x9, 0x18, "6bfe7f78a593ccc893a4de37fd711e899fa8d7"})
recvmsg$unix(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000280)=""/43, 0x2b}, {&(0x7f00000002c0)=""/227, 0xe3}], 0x2, &(0x7f0000000400)=[@rights={{0x14, 0x1, 0x1, [<r5=>0xffffffffffffffff]}}], 0x18}, 0x2042)
ioctl$FS_IOC_GETVERSION(r5, 0x80087601, &(0x7f0000000480))
ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f00000004c0)="eb2da4ad9acab18778f0361e829103d9ba81b158778250040002eb30756977b871d47f2b9faf8f77b3ae4290dc91bba2c68463bf4e1e483ab6638aea8f61391fb072c804708cf7477efb9efe99b3bcab79fec4440d63305d29e01986c006859991a2266cf366b2a5df814f7f")
mount_setattr(r0, &(0x7f0000000540)='./file0\x00', 0x8080, &(0x7f0000000580)={0x60, 0x100089, 0x1c0000, {r5}}, 0x20)
finit_module(r2, &(0x7f00000005c0)='memory.high\x00', 0x1)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000600))
r6 = pidfd_getfd(r1, r5, 0x0)
read$eventfd(r6, &(0x7f0000000640), 0x8)

03:32:29 executing program 4:
ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000000)={'sit0\x00', {0x2, 0x0, @broadcast}})
r0 = socket$netlink(0x10, 0x3, 0xc)
setsockopt$sock_timeval(r0, 0x1, 0x0, &(0x7f0000000040), 0x10)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @random="c12dc7beb423"}, 0x10)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='attr/prev\x00')
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000100)={0x0, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x10)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8983, &(0x7f0000000140)={0x2, 'veth1_virt_wifi\x00', {0xff}, 0x5})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @remote}, 0x10)
ioctl$F2FS_IOC_RESIZE_FS(r2, 0x4008f510, &(0x7f00000001c0)=0x7)
recvfrom$packet(r1, &(0x7f0000000200)=""/219, 0xdb, 0x2020, &(0x7f0000000300)={0x11, 0x7, 0x0, 0x1, 0x7, 0x6, @multicast}, 0x14)
ioctl$sock_inet_SIOCSIFFLAGS(r1, 0x8914, &(0x7f0000000340)={'team_slave_0\x00'})
setsockopt$inet_mreqn(r1, 0x0, 0x24, &(0x7f0000000380)={@remote, @dev={0xac, 0x14, 0x14, 0x33}}, 0xc)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r3=>r0, {0xd6}}, './file0\x00'})
sendmsg$BATADV_CMD_TP_METER_CANCEL(r3, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x3c, 0x0, 0x100, 0x1000, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x5d6}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x3}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48000}, 0x800)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x10008304}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x14, 0x7, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x9}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xc4}, 0x20000000)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000800)={{0x1, 0x1, 0x18, <r4=>r1, {0x4}}, './file1\x00'})
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r4, 0x89f6, &(0x7f00000008c0)={'ip6tnl0\x00', &(0x7f0000000840)={'syztnl1\x00', 0x0, 0x4, 0x7f, 0x9, 0x6, 0x53, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x10, 0x20, 0x1dfc, 0x800}})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000940)={0x5, &(0x7f0000000900)=[{0xfffd, 0x5, 0x80, 0x90}, {0x81, 0x3, 0x7, 0x4}, {0x80, 0x20, 0xc4, 0xff}, {0x0, 0x0, 0x40, 0x1}, {0x2, 0x4, 0x6, 0x5}]}, 0x10)
write$binfmt_aout(r3, &(0x7f0000000980)={{0x10b, 0xff, 0x80, 0x2fb, 0x37b, 0x3, 0x277}, "bfa5c9bf1b0517e546b31b04296c1b273df6048730035d370c5175f3b562f9453eddd1fa6f0165a90da8c02d70a713960e1cf05a28e1acc7861a1c7b90484231bd67a2d4687d3e01c493d584d4c9973dd7f369f3f2d6ad3db89cbb0881eec50762ff28d56ba0419e1422a1065aeccb1b2c36e78a33dbfd9cb19d039cf0438a74ee49931f5085c3a653c0c94ddf287796b3be4cd357353957dfe24f24ca8d397963fd19fbcf4d08aef3fa56797441cf50aca0809519040e09f346355f192573cc591241f2acd03cdd1539026ee029be8e67582260", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x8f4)

03:32:29 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x2}}, './file0\x00'})
inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0x40000000)
r1 = accept$packet(r0, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x14)
ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f0000000100)={0x0, 0x6})
getpeername(r0, &(0x7f0000000140)=@ll={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000001c0)=0x80)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000280)={'gre0\x00', &(0x7f0000000200)={'gretap0\x00', r2, 0x7800, 0x10, 0x4, 0x10000, {{0x14, 0x4, 0x3, 0x34, 0x50, 0x65, 0x0, 0x4, 0x2f, 0x0, @private=0xa010101, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@timestamp_prespec={0x44, 0x3c, 0x1c, 0x3, 0x2, [{@rand_addr=0x64010101, 0x4}, {@remote, 0x1ff}, {@loopback, 0xc0b}, {@loopback, 0xffffffff}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2c404b76}, {@remote}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x4}]}]}}}}})
syz_io_uring_setup(0x4356, &(0x7f00000002c0)={0x0, 0xd16, 0x20, 0x0, 0x154}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000340), &(0x7f0000000380))
getsockopt$sock_timeval(r1, 0x1, 0x42, &(0x7f00000003c0), &(0x7f0000000400)=0x10)
r3 = accept4$unix(r0, &(0x7f0000000440), &(0x7f00000004c0)=0x6e, 0x180000)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r4=>r1, {r3}}, './file0\x00'})
getsockopt$IP_VS_SO_GET_SERVICES(r4, 0x0, 0x482, &(0x7f0000000540)=""/62, &(0x7f0000000580)=0x3e)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = fcntl$dupfd(r5, 0x0, r0)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_ADDR(r3, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x1c, r7, 0x8, 0x70bd2d, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4040004)
r8 = open_tree(r6, &(0x7f0000000740)='./file0\x00', 0x1100)
setsockopt$inet6_IPV6_ADDRFORM(r8, 0x29, 0x1, &(0x7f0000000780), 0x4)
r9 = accept(r5, &(0x7f00000007c0)=@sco={0x1f, @fixed}, &(0x7f0000000840)=0x80)
ioctl$EXT4_IOC_GET_ES_CACHE(r9, 0xc020662a, &(0x7f0000000880)={0x9fab, 0x9, 0x3, 0x8, 0x2, [{0xffffffffffffff80, 0x9, 0x2}, {0x8, 0x9, 0xf93, '\x00', 0x2}]})
sendmsg$TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000980)={0x48, 0x0, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}]}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8001}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}]}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x90}, 0x4080)

[   71.056773] audit: type=1400 audit(1664854349.629:6): avc:  denied  { execmem } for  pid=282 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
03:32:29 executing program 5:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_START_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x6040a01}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r0, 0x1, 0x70bd28, 0x5, {{}, {@val={0x8, 0x3, r1}, @void}}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, r0, 0x4, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x7ee, 0x62}}}}, [@NL80211_ATTR_4ADDR={0x5}]}, 0x30}}, 0x8000)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000300)={0x564, r3, 0x300, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x9, 0x57}}}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0xc19}, @NL80211_ATTR_FRAME={0x23, 0x33, @action={@with_ht={{{0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, {0xff}, @broadcast, @device_b, @initial, {0x1, 0x80}}, @ver_80211n={0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}}, @vht_op_mode_ntf={0x15, 0x2, {0x0, 0x1, 0x1, 0x1, 0x1}}}}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xbdc}, @NL80211_ATTR_FRAME={0x12d, 0x33, @assoc_resp={@wo_ht={{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x4}, @device_a, @device_a, @from_mac=@broadcast, {0x7, 0x5}}, 0x0, 0x65, @random=0x4, @void, @val={0x2d, 0x1a, {0x40, 0x2, 0x7, 0x0, {0x6, 0x3, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2}, 0x1}}, [{0xdd, 0xed, "574fbb2368f34dce875b64ebac90507d239502205e449f4e0ad09d03f49d3b522652c5b92ea2462dfbeaa910f720cecf488e6488ef6d58b389d005f4c66583a5790d3a89638a1952cc0ecfea32570386cd777a928e8ff1255c1685dc4cfd4b822cd2086756768aaf173180bc54f47106a32cdf4a1135dab80620d7fd90f4b2012a69f56f512893503adf006fb477a3a6fd9eae70a72ca491934dba9e5044c40dbd1b08a83cb2f0c718c0473e510f3a7a8da951376e9d3d4569325cd51bcc6f7d69a761e79999e54d7e39cab6726887cf3ecc523425f6358c88628861648823bb0fc854f7408df8f5baeef95288"}]}}, @NL80211_ATTR_FRAME={0x39e, 0x33, @reassoc_req={@wo_ht={{0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x9}, @device_b, @broadcast, @initial, {0x1, 0xffe}}, 0x2002, 0xc7a, @device_b, {0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x1, [{0x60, 0x1}]}, @void, [{0xdd, 0x57, "eff3b3ea04cc91941c5620f0b54d1b281f44f976d784121970e2b0bbe65d6de35fa8f9397d77ee1c62d5653fa2f7bba43d78b0ba2c2352813e550f61033b69addb3164d4c12e12383fe2180c7f4fced11d4740885b8230"}, {0xdd, 0x72, "84ccd6a4fccff3e2494879f62f696777e6db3e1b3a6e57e3197b31fc604f09b9818ffb2f2e5f49be3dc22a8aaee7d363f396abcba084c894c42c358670bfab0a784f95c35d7c610a2d3cc863233fc57025b3ded9ba68611faecab68fd1018b36c9d1fa46245809ffc8b783b8c85cd6974d0d"}, {0xdd, 0x62, "0ae56a07c5414970b5ec6940fde04ce08092f9315f1c87e41a25aa45a020de748afb7002cbf51d914373c056bd4eec4e290e238c21c4c9686b63d3af06b762414fdf45bfc7ee4f24d3ebde0016a30d9cd64b883846455edf76041c7300380af27004"}, {0xdd, 0x7b, "8787478b1f5672a192c949805d6b1af6e7280dfc923675dd314cc9ce35cb9ebc884aff182c05479bb1f85c085b81d259db279000d078488852a31b776182713b6dd50db546b374315d6aee43d5ae59a42b492ee00c5dadf3959e5b0da95af4177a31aa86e56357a698d63595f31abc577d7065712e5f821cf69262"}, {0xdd, 0xb5, "36d1ce5bb0ddde16b5eac09bf4c2119ed19f92ce4f193fdc45034b87f0758f779c06fdeceb2532f263bd8afcd252f17e03ed13c0823a6c5fd2c7cd1e1932b4b7f067eca4e96d7c8a33695b2fa6c9813cfdfbc1b00b8a96fb88db305772617bbbddb9c321fc261090d753d8e4856fb88c7011687a5f5bff8ad7ee2ac6a756e76d680c4ac5aca932ffad86bee6bfc31a212a031c52773c5a7102c7ed8ff4bc1797eace9b31aa8a9bede337ce453fb8c2e8b5a38919df"}, {0xdd, 0xad, "f6fde9cc207c4d55f7a9deed4100e281342ee5c0877b205abbeeb25bf16f8aabf31728190f2bbb856886c77dcb6d351bbfb12eff4c373e0d2fb5458c69ea68fd70d7f567a853dd34a318d9ad56ac61b32c58c0f26155ee3651afc8fdc51854c4f1f406fa0a4ca52b19029bf21e58d2c06b41327ae63933cc39c690abd4be8926880f892a809ae7b6ab3973837f2d45e5af678b2a9b7a3de2f4b8ca0fe4afdda13e1142169807e83006b38a92b1"}, {0xdd, 0x33, "cd832154af7b60447360728c7ed3bd5d9d697ec9ef6adac052b25ad92f4bc53f87b73b0a46395019cc84932fdfd254789fcd64"}, {0xdd, 0x22, "331cec2021ad96eafdb12e50b33bb902dfa4b9ae97049c0e5e4af39a9a10951efd82"}]}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x8, 0xcd, [0x5, 0xff]}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x522}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_FRAME={0x22, 0x33, @disassoc={@with_ht={{{0x0, 0x0, 0xa, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x4}, @broadcast, @device_a, @from_mac=@device_b, {0x6, 0x61f}}, @ver_80211n={0x0, 0x1a3f, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1}}, 0x42, @void}}]}, 0x564}, 0x1, 0x0, 0x0, 0x80}, 0x4040854)
ioctl$sock_SIOCGIFBR(r2, 0x8940, &(0x7f0000000900)=@generic={0x2, 0x2d})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_GET(r4, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x34, 0x0, 0x20, 0x70bd2d, 0x25dfdbfb, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x32}, @FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e24}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_AF={0x5, 0x2, 0xa}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000}, 0x30)
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000004400), 0x2000, 0x0)
sendmsg$NL80211_CMD_GET_MPP(r5, &(0x7f0000004500)={&(0x7f0000004440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000044c0)={&(0x7f0000004480)={0x20, r0, 0x100, 0x70bd26, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x9, 0x20}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x880)
r6 = socket(0x5, 0x6, 0x101)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000004580), r2)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000045c0)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r6, &(0x7f0000004680)={&(0x7f0000004540)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000004640)={&(0x7f0000004600)={0x3c, r7, 0x800, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x197780b9447b5390}, 0x24000810)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000004700)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, &(0x7f00000047c0)={&(0x7f00000046c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000004780)={&(0x7f0000004740)={0x2c, r7, 0x200, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x40}, @NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x7d7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x60000}, 0x4004001)
sendmsg$NFQNL_MSG_CONFIG(r5, &(0x7f00000048c0)={&(0x7f0000004800)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000004880)={&(0x7f0000004840)={0x2c, 0x2, 0x3, 0x401, 0x0, 0x0, {0x5, 0x0, 0xa}, [@NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x9}, @NFQA_CFG_CMD={0x8, 0x1, {0x4, 0x0, 0xa}}, @NFQA_CFG_CMD={0x8, 0x1, {0x4, 0x0, 0x25}}]}, 0x2c}}, 0x20000000)
bind$packet(r4, &(0x7f0000004a80)={0x11, 0xf8, 0x0, 0x1, 0x4, 0x6, @random="e88243503731"}, 0x14)

03:32:29 executing program 6:
syz_extract_tcp_res(&(0x7f0000000000), 0xf1e, 0x3)
syz_extract_tcp_res(&(0x7f0000000040), 0x2, 0x0)
syz_extract_tcp_res(&(0x7f0000000080), 0x1, 0x800)
syz_extract_tcp_res(&(0x7f00000000c0), 0x8001, 0x7)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
write$tun(r0, &(0x7f0000000100)={@val={0x0, 0xca18}, @val={0x0, 0x80, 0x4000, 0x40, 0xdc7b, 0x1}, @mpls={[], @ipv6=@icmpv6={0xa, 0x6, "d158cb", 0x233, 0x3a, 0x1, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, @remote, {[@routing={0x11, 0x6, 0x0, 0xf8, 0x0, [@mcast2, @private0, @empty]}, @fragment={0x11, 0x0, 0x0, 0x0, 0x0, 0x1b, 0x65}, @fragment={0x38, 0x0, 0x3, 0x0, 0x0, 0x4, 0x66}, @routing={0x3c, 0x2, 0x1, 0x1b, 0x0, [@remote]}, @srh={0x1d, 0x8, 0x4, 0x4, 0xe8, 0x40, 0x5, [@private2, @empty, @empty, @dev={0xfe, 0x80, '\x00', 0x34}]}, @fragment={0x0, 0x0, 0x9, 0x1, 0x0, 0x7, 0x64}], @dest_unreach={0x1, 0x5, 0x0, 0x5b, '\x00', {0x8, 0x6, "eda9f8", 0x800, 0x84, 0xff, @mcast1, @empty, [@fragment={0x73, 0x0, 0x1, 0x0, 0x0, 0x4, 0x65}, @fragment={0x6, 0x0, 0xc1, 0x0, 0x0, 0x2, 0x65}, @srh={0x3b, 0x6, 0x4, 0x3, 0x9, 0x0, 0xfff7, [@remote, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, @loopback]}, @routing={0x88, 0x14, 0x2, 0x5d, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, @mcast2, @remote, @dev={0xfe, 0x80, '\x00', 0x10}, @ipv4={'\x00', '\xff\xff', @broadcast}, @empty, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, @local]}], "2acb35e5925e812cb45fa26bd01f7a3ae41fd8b2b47bf8f625c4577fc6abd32d1b78744b6ddcd1b1da759974399af17a72e5ab2d5e53fc71ed07ede51990a214fb9edd6045a2849178a4b31b2685651ede3e6e6a1a63ead4a52e05b3664624a280a777"}}}}}}, 0x269)
r1 = fcntl$getown(0xffffffffffffffff, 0x9)
r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000380), 0x80200, 0x0)
kcmp(r1, 0xffffffffffffffff, 0x1, r2, r0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000003c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r3=>0x0})
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f00000005c0)={"6646be783d5a19881de040bf430659b3", r3, 0x0, {0x8000000, 0x7}, {0x2, 0x2}, 0x7000000, [0xfffffffffffffffc, 0x5, 0xffff, 0x8, 0x80000000, 0x4, 0x100000001, 0x7, 0x1, 0x0, 0x925c, 0x2, 0x6589, 0x4, 0x59e6, 0x3]})
write$tun(r0, &(0x7f00000006c0)={@void, @val={0x2, 0xccf8ada8d2a0c3, 0x2, 0x94b, 0x0, 0x9}, @ipv6=@udp={0x3, 0x6, "911e6b", 0x15c, 0x11, 0x0, @local, @empty, {[@dstopts={0x5e, 0x11, '\x00', [@calipso={0x7, 0x28, {0x0, 0x8, 0xc9, 0x3ff, [0x200, 0x1, 0x7fff, 0x6]}}, @pad1, @calipso={0x7, 0x38, {0x2, 0xc, 0x7, 0x5, [0x9, 0xffffffff, 0xffffffffffffffff, 0x6, 0x8, 0x7]}}, @pad1, @enc_lim={0x4, 0x1, 0x9}, @pad1, @hao={0xc9, 0x10, @mcast1}, @jumbo={0xc2, 0x4, 0x8}, @enc_lim={0x4, 0x1, 0x6}, @pad1]}, @hopopts={0x0, 0x4, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @hao={0xc9, 0x10, @mcast1}, @ra={0x5, 0x2, 0xfff9}, @ra={0x5, 0x2, 0x20}, @enc_lim={0x4, 0x1, 0x4}]}], {0x4e24, 0x4e23, 0x9c, 0x0, @wg=@initiation={0x1, 0x1, "4b173cdb9befa37d9f163218492bf4a553eeed239e8a39cc4aabf3546000295c", "2fc147a172b90b26f27e0f679cc8999163ca7e2a142311d4c9e44296b7e7c86ab3990bbf7b7f89da3fe0e06fc2b4fc52", "8ee48f56ac97df7a3135c4fae378c7bd7785e0673f74f8bbecb5ca6e", {"8f3c91f96af17b12f92f844bc6c73761", "f265df168a436676e04bea88e2a19e33"}}}}}}, 0x18e)
syz_open_dev$sg(&(0x7f0000000880), 0x7, 0x1)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f00000008c0), 0x80a00, 0x0)
ioctl$TUNSETPERSIST(r4, 0x400454cb, 0x1)
write$vga_arbiter(r0, &(0x7f0000000900)=@unlock_all, 0xb)
syz_extract_tcp_res(&(0x7f0000000940), 0x10001, 0x0)
r5 = syz_mount_image$nfs4(&(0x7f0000000980), &(0x7f00000009c0)='./file0\x00', 0xae, 0x3, &(0x7f0000000b80)=[{&(0x7f0000000a00)="70bb12f91dbff9eee2eb7f0d8bcd83189f573723d2cc09a125f982aac4d23b293404c011d9345bb6dee465754417d330d4dbea898a5119d4aec894", 0x3b, 0x3}, {&(0x7f0000000a40)="1ae19f26af8ad0fa889cd13af3d622c671f58b7a131fac3eae2e1f472e09c75fb7048960a8985a2343bf47b4cc4a652991a8058132ee2723662a0fcb83778a2fa1822a1ee3e060118073ec44ea3bf71a4d7f6b5ecb399ebe6726bee4117e126d0d", 0x61}, {&(0x7f0000000ac0)="2b501c5dc6c4c55b05b6411a80b8f325a87f0997e77773576e927a2977cebfd03ebf10f042e6f48320f88722bffa8623175206b5a0ddbbf37862acf7f930f1e52abc5f142933aeae0b55177b24e2d9406388572ce9fca178050b609f085b7ba4141230f781aa887af5528c044ea857b9937f928eec96f527b9341ffc6dff681f4e026d9ff153a6e3e36efe1b6896067d45b910784123ebf909d98711a5ba34", 0x9f, 0xfffffffffffffff8}], 0x804000, &(0x7f0000000c00)={[{'/dev/sg#\x00'}, {}, {'unlock all\x00'}, {'\xd3.\x00'}, {'-['}], [{@fsname={'fsname', 0x3d, ']{.'}}, {@mask={'mask', 0x3d, 'MAY_WRITE'}}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffff9}}]})
openat(r5, &(0x7f0000000c80)='./file0\x00', 0x820, 0xc3)
ioctl$PTP_EXTTS_REQUEST2(r2, 0x40103d0b, &(0x7f0000000cc0)={0x4, 0x7})

03:32:29 executing program 7:
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0x100, 0x0, 0x1, 0x301, 0x0, 0x0, {0xa, 0x0, 0x3}, [@CTA_SYNPROXY={0x2c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x8000}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x1ff}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x7}, @CTA_SYNPROXY_TSOFF={0x8}]}, @CTA_TUPLE_ORIG={0x70, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x1e}}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}, @CTA_PROTOINFO={0x10, 0x4, 0x0, 0x1, @CTA_PROTOINFO_DCCP={0xc, 0x2, 0x0, 0x1, [@CTA_PROTOINFO_DCCP_STATE={0x5, 0x1, 0x5}]}}, @CTA_NAT_SRC={0x40, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private2}, @CTA_NAT_PROTO={0x14, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}]}]}]}, 0x100}, 0x1, 0x0, 0x0, 0x44000}, 0x40108d5)
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x10000, 0x84)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x5c, r1, 0x400, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "7a8ea78e6a"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x18, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x2005)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000003c0), 0x400000, 0x0)
sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r3, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x20, r1, 0x400, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x5079, 0x4f}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4004000}, 0x20044015)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r3)
sendmsg$NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0xa4200000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x2c, r4, 0x800, 0x70bd2b, 0x25dfdbff, {}, [@NL80211_ATTR_WIPHY_RETRY_LONG={0x5, 0x3e, 0x4}, @NL80211_ATTR_WIPHY_TX_POWER_LEVEL={0x8, 0x62, 0x7}, @NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x44044)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000640)={{0x1, 0x1, 0x18, <r5=>r3, {0x93}}, './file1\x00'})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r3)
sendmsg$NL80211_CMD_REGISTER_FRAME(r5, &(0x7f0000001780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001740)={&(0x7f0000000700)={0x102c, r6, 0x4, 0x3, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x1f, 0x27}}}}, [@NL80211_ATTR_FRAME_MATCH={0x1004, 0x5b, "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"}]}, 0x102c}, 0x1, 0x0, 0x0, 0x4000010}, 0x0)
r7 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000017c0), 0x8200, 0x0)
r8 = dup(r7)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r5, &(0x7f0000001900)={&(0x7f0000001800)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000018c0)={&(0x7f0000001840)={0x50, 0x0, 0x20, 0x70bd2c, 0x25dfdbfc, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8}, {0x6, 0x11, 0x6}, {0x8, 0x15, 0x7}}]}, 0x50}, 0x1, 0x0, 0x0, 0x8841}, 0x8040)
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000001940)={<r9=>r8, 0x9, 0x6, 0x2})
ioctl$SNAPSHOT_FREE(r9, 0x3305)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_INTERFACE(r10, &(0x7f0000001a40)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001a00)={&(0x7f00000019c0)={0x1c, 0x0, 0x8, 0x9, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x51}, 0x4000000)
sendmsg$NL80211_CMD_SET_STATION(r5, &(0x7f0000001c00)={&(0x7f0000001a80)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001bc0)={&(0x7f0000001b00)={0xa8, 0x0, 0x300, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0xc7f, 0x9}}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x3}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x2}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x4}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x23, 0x13, [{0x24, 0x1}, {0x48}, {0x16}, {0x6c, 0x1}, {0x0, 0x1}, {0x12, 0x1}, {0x3}, {0x9}, {0x18}, {0x30}, {0x0, 0x1}, {0xb}, {0x2, 0x1}, {0x5}, {0x16}, {0x2}, {0x2, 0x1}, {0xc}, {0x1b}, {0x30, 0x1}, {0x30}, {0x1b}, {0x60}, {0x1, 0x1}, {0x6c}, {0x48}, {0x6, 0x1}, {0x30}, {0x24}, {0x4, 0x1}, {0x16}]}, @NL80211_ATTR_STA_EXT_CAPABILITY={0x3c, 0xac, "0f73d5646bd1057dedb253756142de204310f29ebe43db68dbe761b261c6c41ad0142cc517228b42fd9a0610ecd513d3dad23e06d10fe67a"}]}, 0xa8}, 0x1, 0x0, 0x0, 0x8000}, 0x84)

[   72.467643] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   72.469451] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   72.471840] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   72.473384] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   72.474505] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   72.478056] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   72.480838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   72.482888] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   72.484765] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   72.486439] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   72.490842] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   72.500699] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   72.506402] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   72.507445] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   72.508759] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   72.517912] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   72.519848] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   72.521091] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   72.522457] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   72.523841] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   72.526152] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   72.527469] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   72.529239] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   72.530427] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   72.531604] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   72.533805] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   72.535062] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   72.536332] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   72.537477] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   72.538585] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   72.546480] Bluetooth: hci1: HCI_REQ-0x0c1a
[   72.548274] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   72.549958] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   72.555318] Bluetooth: hci2: HCI_REQ-0x0c1a
[   72.567871] Bluetooth: hci0: HCI_REQ-0x0c1a
[   72.569480] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   72.572539] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   72.573919] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   72.580577] Bluetooth: hci3: HCI_REQ-0x0c1a
[   72.587612] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   72.590628] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   72.592125] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   72.597279] Bluetooth: hci4: HCI_REQ-0x0c1a
[   72.600760] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   72.608097] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   72.614780] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   72.618395] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   72.637188] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   72.638970] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   72.640730] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   72.642449] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   72.644517] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   72.646421] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   72.654197] Bluetooth: hci7: HCI_REQ-0x0c1a
[   72.659115] Bluetooth: hci6: HCI_REQ-0x0c1a
[   72.665474] Bluetooth: hci5: HCI_REQ-0x0c1a
[   74.598356] Bluetooth: hci0: command 0x0409 tx timeout
[   74.598387] Bluetooth: hci2: command 0x0409 tx timeout
[   74.599439] Bluetooth: hci3: command 0x0409 tx timeout
[   74.600083] Bluetooth: hci1: command 0x0409 tx timeout
[   74.662149] Bluetooth: hci4: command 0x0409 tx timeout
[   74.727165] Bluetooth: hci5: command 0x0409 tx timeout
[   74.727588] Bluetooth: hci6: command 0x0409 tx timeout
[   74.728260] Bluetooth: hci7: command 0x0409 tx timeout
[   76.646134] Bluetooth: hci3: command 0x041b tx timeout
[   76.646628] Bluetooth: hci1: command 0x041b tx timeout
[   76.647066] Bluetooth: hci2: command 0x041b tx timeout
[   76.647470] Bluetooth: hci0: command 0x041b tx timeout
[   76.710054] Bluetooth: hci4: command 0x041b tx timeout
[   76.774127] Bluetooth: hci6: command 0x041b tx timeout
[   76.774615] Bluetooth: hci5: command 0x041b tx timeout
[   76.775293] Bluetooth: hci7: command 0x041b tx timeout
[   78.694128] Bluetooth: hci0: command 0x040f tx timeout
[   78.694610] Bluetooth: hci2: command 0x040f tx timeout
[   78.695060] Bluetooth: hci1: command 0x040f tx timeout
[   78.695453] Bluetooth: hci3: command 0x040f tx timeout
[   78.759047] Bluetooth: hci4: command 0x040f tx timeout
[   78.823109] Bluetooth: hci7: command 0x040f tx timeout
[   78.823587] Bluetooth: hci5: command 0x040f tx timeout
[   78.824038] Bluetooth: hci6: command 0x040f tx timeout
[   80.742123] Bluetooth: hci3: command 0x0419 tx timeout
[   80.742967] Bluetooth: hci1: command 0x0419 tx timeout
[   80.743882] Bluetooth: hci2: command 0x0419 tx timeout
[   80.744699] Bluetooth: hci0: command 0x0419 tx timeout
[   80.806085] Bluetooth: hci4: command 0x0419 tx timeout
[   80.870178] Bluetooth: hci6: command 0x0419 tx timeout
[   80.871282] Bluetooth: hci5: command 0x0419 tx timeout
[   80.872121] Bluetooth: hci7: command 0x0419 tx timeout
03:33:22 executing program 3:
r0 = syz_open_dev$vcsu(&(0x7f0000001380), 0x1, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>r0}, './file0\x00'})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x200180, 0x0)
fcntl$addseals(r3, 0x409, 0x0)
write$P9_RGETATTR(r2, &(0x7f0000000000)={0xa0, 0x19, 0x2, {0x18, {0x0, 0x0, 0x8}, 0xbb8bbf799a3e1471, 0xee00, 0xffffffffffffffff, 0x200000000000, 0x9, 0x94, 0x8, 0xb5, 0x5, 0x7fffffff, 0x3, 0x4, 0x1, 0x26, 0x100, 0x2, 0xfffffffffffffff7, 0x200}}, 0xa0)
r4 = fcntl$dupfd(r1, 0x406, r0)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r2}, './file0\x00'})

03:33:22 executing program 3:
mlock2(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x0)
shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x6000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2080000001}, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
mmap$perf(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x4)
ioctl$EXT4_IOC_CHECKPOINT(0xffffffffffffffff, 0x4004662b, &(0x7f0000000040))
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/route\x00')
shmat(0xffffffffffffffff, &(0x7f0000ffc000/0x4000)=nil, 0x3000)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x44, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x620, 0x2, 0x8, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x1, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
finit_module(0xffffffffffffffff, &(0x7f00000004c0)='/dev/loop-control\x00', 0x3)
accept$packet(r0, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000440)=0x14)
r1 = perf_event_open(&(0x7f0000000340)={0x2, 0x80, 0xe0, 0x7f, 0x8, 0x1f, 0x0, 0x7d, 0x10800, 0xf, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={&(0x7f0000000200)}, 0x1000, 0x80000000000084, 0x901, 0x8, 0xffffffffffff0001, 0x8004, 0x84d4, 0x0, 0x1000, 0x0, 0x5}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x3)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f00000001c0)=0x3690dc48)
r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r3 = openat2(0xffffffffffffffff, &(0x7f0000000300)='./file1\x00', &(0x7f0000000100)={0x4200, 0x40, 0x19}, 0x3a)
ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0xb)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r1, 0x40089413, &(0x7f0000000240)=0x20)
r4 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000480)={0xffff, 0x0, &(0x7f0000000180)=[0xffffffffffffffff]}, 0x1)
ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r4)
copy_file_range(0xffffffffffffffff, 0x0, r2, &(0x7f00000003c0)=0x3e, 0xfffffffffffffffd, 0x0)

[  124.431576] audit: type=1400 audit(1664854403.003:7): avc:  denied  { open } for  pid=3746 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  124.434827] audit: type=1400 audit(1664854403.004:8): avc:  denied  { kernel } for  pid=3746 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  124.446474] ------------[ cut here ]------------
[  124.446497] 
[  124.446501] ======================================================
[  124.446504] WARNING: possible circular locking dependency detected
[  124.446509] 6.0.0-rc7-next-20220930 #1 Not tainted
[  124.446515] ------------------------------------------------------
[  124.446518] syz-executor.3/3747 is trying to acquire lock:
[  124.446524] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  124.446564] 
[  124.446564] but task is already holding lock:
[  124.446566] ffff888008adec20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  124.446592] 
[  124.446592] which lock already depends on the new lock.
[  124.446592] 
[  124.446595] 
[  124.446595] the existing dependency chain (in reverse order) is:
[  124.446598] 
[  124.446598] -> #3 (&ctx->lock){....}-{2:2}:
[  124.446612]        _raw_spin_lock+0x2a/0x40
[  124.446623]        __perf_event_task_sched_out+0x53b/0x18d0
[  124.446634]        __schedule+0xedd/0x2470
[  124.446647]        schedule+0xda/0x1b0
[  124.446660]        exit_to_user_mode_prepare+0x114/0x1a0
[  124.446673]        syscall_exit_to_user_mode+0x19/0x40
[  124.446685]        do_syscall_64+0x48/0x90
[  124.446702]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  124.446714] 
[  124.446714] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  124.446728]        _raw_spin_lock_nested+0x30/0x40
[  124.446738]        raw_spin_rq_lock_nested+0x1e/0x30
[  124.446751]        task_fork_fair+0x63/0x4d0
[  124.446767]        sched_cgroup_fork+0x3d0/0x540
[  124.446781]        copy_process+0x4183/0x6e20
[  124.446792]        kernel_clone+0xe7/0x890
[  124.446801]        user_mode_thread+0xad/0xf0
[  124.446811]        rest_init+0x24/0x250
[  124.446823]        arch_call_rest_init+0xf/0x14
[  124.446840]        start_kernel+0x4c6/0x4eb
[  124.446855]        secondary_startup_64_no_verify+0xe0/0xeb
[  124.446868] 
[  124.446868] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  124.446882]        _raw_spin_lock_irqsave+0x39/0x60
[  124.446893]        try_to_wake_up+0xab/0x1930
[  124.446906]        up+0x75/0xb0
[  124.446919]        __up_console_sem+0x6e/0x80
[  124.446935]        console_unlock+0x46a/0x590
[  124.446950]        vt_ioctl+0x2822/0x2ca0
[  124.446962]        tty_ioctl+0x785/0x16b0
[  124.446972]        __x64_sys_ioctl+0x19a/0x210
[  124.446988]        do_syscall_64+0x3b/0x90
[  124.447005]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  124.447017] 
[  124.447017] -> #0 ((console_sem).lock){....}-{2:2}:
[  124.447031]        __lock_acquire+0x2a02/0x5e70
[  124.447047]        lock_acquire+0x1a2/0x530
[  124.447063]        _raw_spin_lock_irqsave+0x39/0x60
[  124.447073]        down_trylock+0xe/0x70
[  124.447088]        __down_trylock_console_sem+0x3b/0xd0
[  124.447104]        vprintk_emit+0x16b/0x560
[  124.447120]        vprintk+0x84/0xa0
[  124.447135]        _printk+0xba/0xf1
[  124.447147]        report_bug.cold+0x72/0xab
[  124.447163]        handle_bug+0x3c/0x70
[  124.447179]        exc_invalid_op+0x14/0x50
[  124.447195]        asm_exc_invalid_op+0x16/0x20
[  124.447207]        group_sched_out.part.0+0x2c7/0x460
[  124.447224]        ctx_sched_out+0x8f1/0xc10
[  124.447241]        __perf_event_task_sched_out+0x6d0/0x18d0
[  124.447251]        __schedule+0xedd/0x2470
[  124.447265]        schedule+0xda/0x1b0
[  124.447278]        exit_to_user_mode_prepare+0x114/0x1a0
[  124.447288]        syscall_exit_to_user_mode+0x19/0x40
[  124.447301]        do_syscall_64+0x48/0x90
[  124.447317]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  124.447329] 
[  124.447329] other info that might help us debug this:
[  124.447329] 
[  124.447332] Chain exists of:
[  124.447332]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  124.447332] 
[  124.447347]  Possible unsafe locking scenario:
[  124.447347] 
[  124.447349]        CPU0                    CPU1
[  124.447351]        ----                    ----
[  124.447353]   lock(&ctx->lock);
[  124.447358]                                lock(&rq->__lock);
[  124.447365]                                lock(&ctx->lock);
[  124.447371]   lock((console_sem).lock);
[  124.447376] 
[  124.447376]  *** DEADLOCK ***
[  124.447376] 
[  124.447378] 2 locks held by syz-executor.3/3747:
[  124.447385]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  124.447414]  #1: ffff888008adec20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  124.447440] 
[  124.447440] stack backtrace:
[  124.447443] CPU: 0 PID: 3747 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1
[  124.447455] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  124.447463] Call Trace:
[  124.447467]  <TASK>
[  124.447471]  dump_stack_lvl+0x8b/0xb3
[  124.447489]  check_noncircular+0x263/0x2e0
[  124.447505]  ? format_decode+0x26c/0xb50
[  124.447521]  ? print_circular_bug+0x450/0x450
[  124.447538]  ? simple_strtoul+0x30/0x30
[  124.447554]  ? format_decode+0x26c/0xb50
[  124.447571]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  124.447589]  __lock_acquire+0x2a02/0x5e70
[  124.447610]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  124.447632]  lock_acquire+0x1a2/0x530
[  124.447649]  ? down_trylock+0xe/0x70
[  124.447666]  ? lock_release+0x750/0x750
[  124.447686]  ? vprintk+0x84/0xa0
[  124.447704]  _raw_spin_lock_irqsave+0x39/0x60
[  124.447715]  ? down_trylock+0xe/0x70
[  124.447731]  down_trylock+0xe/0x70
[  124.447747]  ? vprintk+0x84/0xa0
[  124.447763]  __down_trylock_console_sem+0x3b/0xd0
[  124.447780]  vprintk_emit+0x16b/0x560
[  124.447799]  vprintk+0x84/0xa0
[  124.447816]  _printk+0xba/0xf1
[  124.447827]  ? record_print_text.cold+0x16/0x16
[  124.447843]  ? report_bug.cold+0x66/0xab
[  124.447861]  ? group_sched_out.part.0+0x2c7/0x460
[  124.447879]  report_bug.cold+0x72/0xab
[  124.447898]  handle_bug+0x3c/0x70
[  124.447915]  exc_invalid_op+0x14/0x50
[  124.447933]  asm_exc_invalid_op+0x16/0x20
[  124.447945] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  124.447966] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  124.447977] RSP: 0018:ffff88801f3c7c48 EFLAGS: 00010006
[  124.447986] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  124.447993] RDX: ffff88803e9d8000 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  124.448001] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  124.448008] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff888008adec00
[  124.448015] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  124.448026]  ? group_sched_out.part.0+0x2c7/0x460
[  124.448046]  ? group_sched_out.part.0+0x2c7/0x460
[  124.448066]  ctx_sched_out+0x8f1/0xc10
[  124.448085]  __perf_event_task_sched_out+0x6d0/0x18d0
[  124.448099]  ? lock_is_held_type+0xd7/0x130
[  124.448113]  ? __perf_cgroup_move+0x160/0x160
[  124.448123]  ? set_next_entity+0x304/0x550
[  124.448141]  ? update_curr+0x267/0x740
[  124.448159]  ? lock_is_held_type+0xd7/0x130
[  124.448173]  __schedule+0xedd/0x2470
[  124.448190]  ? io_schedule_timeout+0x150/0x150
[  124.448207]  ? rcu_read_lock_sched_held+0x3e/0x80
[  124.448227]  schedule+0xda/0x1b0
[  124.448242]  exit_to_user_mode_prepare+0x114/0x1a0
[  124.448254]  syscall_exit_to_user_mode+0x19/0x40
[  124.448267]  do_syscall_64+0x48/0x90
[  124.448285]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  124.448298] RIP: 0033:0x7fd8dfd92b19
[  124.448306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  124.448317] RSP: 002b:00007fd8dd308218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  124.448328] RAX: 0000000000000001 RBX: 00007fd8dfea5f68 RCX: 00007fd8dfd92b19
[  124.448335] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd8dfea5f6c
[  124.448342] RBP: 00007fd8dfea5f60 R08: 000000000000000e R09: 0000000000000000
[  124.448349] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fd8dfea5f6c
[  124.448356] R13: 00007fffde47bc8f R14: 00007fd8dd308300 R15: 0000000000022000
[  124.448369]  </TASK>
[  124.505045] WARNING: CPU: 0 PID: 3747 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  124.505735] Modules linked in:
[  124.505977] CPU: 0 PID: 3747 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1
[  124.506563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  124.507381] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  124.507785] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  124.509129] RSP: 0018:ffff88801f3c7c48 EFLAGS: 00010006
[  124.509520] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  124.510038] RDX: ffff88803e9d8000 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  124.510571] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  124.511095] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff888008adec00
[  124.511612] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  124.512139] FS:  00007fd8dd308700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  124.512732] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  124.513161] CR2: 00007fe585fd7310 CR3: 000000000e6e0000 CR4: 0000000000350ef0
[  124.513682] Call Trace:
[  124.513876]  <TASK>
[  124.514052]  ctx_sched_out+0x8f1/0xc10
[  124.514353]  __perf_event_task_sched_out+0x6d0/0x18d0
[  124.514735]  ? lock_is_held_type+0xd7/0x130
[  124.515062]  ? __perf_cgroup_move+0x160/0x160
[  124.515393]  ? set_next_entity+0x304/0x550
[  124.515711]  ? update_curr+0x267/0x740
[  124.516012]  ? lock_is_held_type+0xd7/0x130
[  124.516333]  __schedule+0xedd/0x2470
[  124.516653]  ? io_schedule_timeout+0x150/0x150
[  124.517003]  ? rcu_read_lock_sched_held+0x3e/0x80
[  124.517368]  schedule+0xda/0x1b0
[  124.517624]  exit_to_user_mode_prepare+0x114/0x1a0
[  124.517988]  syscall_exit_to_user_mode+0x19/0x40
[  124.518340]  do_syscall_64+0x48/0x90
[  124.518627]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  124.519007] RIP: 0033:0x7fd8dfd92b19
[  124.519290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  124.520622] RSP: 002b:00007fd8dd308218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  124.521175] RAX: 0000000000000001 RBX: 00007fd8dfea5f68 RCX: 00007fd8dfd92b19
[  124.521694] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fd8dfea5f6c
[  124.522221] RBP: 00007fd8dfea5f60 R08: 000000000000000e R09: 0000000000000000
[  124.522731] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fd8dfea5f6c
[  124.523251] R13: 00007fffde47bc8f R14: 00007fd8dd308300 R15: 0000000000022000
[  124.523775]  </TASK>
[  124.523952] irq event stamp: 1160
[  124.524206] hardirqs last  enabled at (1159): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  124.524895] hardirqs last disabled at (1160): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  124.525512] softirqs last  enabled at (1058): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  124.526152] softirqs last disabled at (959): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  124.526768] ---[ end trace 0000000000000000 ]---
03:33:23 executing program 3:
syz_io_uring_setup(0x659e, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, 0x0)
poll(0xfffffffffffffffe, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000003780), 0xffffffffffffffff)
sendmsg$NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000003980), &(0x7f00000039c0)='./file0\x00', 0x8000, 0x1, &(0x7f0000003a80)=[{&(0x7f0000000080)='P', 0x1, 0x5}], 0x1006021, &(0x7f0000001780)={[], [{@defcontext={'defcontext', 0x3d, 'root'}}, {@dont_measure}]})
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xfffffffffffffff7, 0x8, &(0x7f0000001640)=[{&(0x7f0000000140)="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", 0x1000, 0x800}, {&(0x7f0000001140)="dd591628450270652b84cb2289c4309199393d02ad0bd9b96915c0a7ce2ae596e56efabea7e591c831b1354d4c8109041fec4b3c13aa68fa4461849a01800c63fd5cbbb35354a296d20b3e45a46223e01d578bcab4c827d9ba513297ea025acfeadf423e6faea756890b63420c44b51a2539aecd411452145657adac49c55fbd39983657db8676ef4d2874cdedf25feb348daf2450e2a7085719f481700d342403ed0d9aa9c5c1103de603539b02f2ca2e996d367847b4629e13fb34c45d0d5043b1d872c02d599cf5e06c3bc00d65c4cb789c104c5278d716555fe5", 0xdc, 0x3fb}, {&(0x7f0000001240)="f60a8fd51967de2c80dea4b79c19efc9bfe6d2047e1d5d916691ddd120ad95fc85bfcdfc70a81d00464e3c108b2a47c1549e5eaf5587e5e17d1f1e51ce3d65656219251ad556833a920298fc82c28b2987ec80d5cfeb5e74aa4a060f825017df3a3289bbf83f6ced55dfbba5397d37cf9e1a062619c27995ad73b0bf5cc1648729f440ea966a", 0x86, 0x7a58dfaa}, {&(0x7f0000001300)="46f238142918fbb47eb97676008c1d41a2be12eb05ea0b368225f8a168899e7c58687460660f4158ab4e5c3493fd6d071803780a693651242193f0b1ef759f79e399f621b89cf2ea401a9a3ea53d398dc66aea86c873f35c8467be42a7fcedba9ed9ca4e0b2d3ae28250cf50bc9fcb9115efc53eb56dbc719de68023206a22d81698e9b1072da942aac787080937b4a27ac46af1eedc4417fdf17954ed07fc262ce4cfcf62711bcce4f73757ff119d7265b9cc135a705371f076868e4dbbbae013068961ee8009e8aeea7f730875662224dfc16de71a406bd27d", 0xda, 0x80c6}, {&(0x7f0000001400)="a309c93338d1cd7e7fa734ca9ed249a386a92647aceec209cd3d40930a01916494a049722aa78076da495f0bf7288560aa2100d36b05b289abf518860442acec85f76f33dee1acf4bc2c344e63a7b904c932227502d926e85c2546c1693610f46b91210e00d52f209e1df6", 0x6b, 0x4}, {&(0x7f0000000080), 0x0, 0x8}, {&(0x7f0000001480)="904de41e1797cf8dd2b1961c9e161e2e73dd08c64e983bfe8c25161000f4a19e47d3e82ee447afc2a2e1758bf31bcce62c3216fd9b3c4d0a2073704335bd8150ec17408dc09fb54cea955aaecaec141b60991b0c510b9070d6df975d9347a4528a7489ba18b2dd29d32b27602fec2cd4b1c56fe91ff13f1a01e78d65869862d1344cf4285edfcb7980d148a49edf83fb479dff460579176ce9570643c4fc1540d3459379f45a2e8504c845987b2c286f305666addf58159e27a2", 0xba, 0x727}, {&(0x7f0000001540)="c713e4d5556c07e2ed56c969e627a141fd8219d9dad72ad9185ee3c45b463b747d69339976a5d2355e9b8b70861987acffa0cba7f84dced0cfcae7b77863e83b03265029b1d0c686efc9f59efb330cf6091d81dbc354d78ebe069fbdaacb457d26b4a77d563774734494f20ea65fd761394d7d01e6c474663ce3906c600fcc0c1e54d83ff5608e0b82dbfbbadeb3812b148812a9a86efc19f171e802d5ff72e65a5d38ca52593067ae4fe76fe39f634ff9cd209a9b7112a78350574eacc85d589a271fe95dabaf146e8fd01774ae115f194cbc10907ec2c2f98be67f217382cf15", 0xe1, 0x100}], 0x800000, &(0x7f0000001700)={[{@huge_advise}, {@nr_inodes={'nr_inodes', 0x3d, [0x35, 0x78]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x30, 0x34, 0x65, 0x0, 0x34, 0x1e, 0x32, 0x67]}}, {@size={'size', 0x3d, [0x65, 0x37, 0x31]}}, {@huge_never}, {@size={'size', 0x3d, [0x67, 0x74, 0x0, 0x32, 0x30, 0x6b, 0x6d, 0x30, 0x65, 0x74]}}, {@size={'size', 0x3d, [0x6d]}}], [{@audit}, {@dont_appraise}, {@hash}]})

[  124.821457] loop3: detected capacity change from 0 to 64
[  124.852187] loop3: detected capacity change from 0 to 264192
[  124.852824] tmpfs: Unsupported parameter 'huge'
03:33:23 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_netfilter(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x28, 0x18, 0x0, 0x101, 0x0, 0x0, {0x2}, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x43}}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x8c, 0x0, 0x8, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000}, 0x804)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f00000000c0), 0x12)
sendmsg$IPSET_CMD_SAVE(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, 0x8, 0x6, 0xf9e8ffa4d9a9a896, 0x0, 0x0, {0xb991296aa695abcc, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20008800)

[  125.154244] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  125.155694] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3810 comm=syz-executor.3
[  125.166412] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  125.166555] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3814 comm=syz-executor.3
03:33:23 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x7}, 0xc)

03:33:23 executing program 3:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x7}, 0xc)

03:33:23 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000006b40)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0100001a0001000000000000000000e0000001000000000000000000000000ff0100000000000000000000c76311fe00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x13c}}, 0x0)

03:33:23 executing program 3:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000080))
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000040))
seccomp$SECCOMP_GET_NOTIF_SIZES(0x3, 0x0, &(0x7f0000000000))

[  126.546547] loop6: detected capacity change from 0 to 16383
[  126.547688] nfs4: Unknown parameter '/dev/sg#'
[  126.565535] loop6: detected capacity change from 0 to 16383
[  126.573134] nfs4: Unknown parameter '/dev/sg#'

VM DIAGNOSIS:
03:33:23  Registers:
info registers vcpu 0
RAX=0000000000000036 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801f3c7690
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000036 R11=0000000000000001
R12=0000000000000036 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fd8dd308700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fe585fd7310 CR3=000000000e6e0000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007fd8dfe797c0 00007fd8dfe797c8
YMM02=0000000000000000 0000000000000000 00007fd8dfe797e0 00007fd8dfe797c0
YMM03=0000000000000000 0000000000000000 00007fd8dfe797c8 00007fd8dfe797c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88803e64ca10 RCX=0000000000000000 RDX=ffff88802182d040
RSI=ffffffff814ce432 RDI=0000000000000000 RBP=0000000000000000 RSP=ffff88803f60fa88
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffffffff81788611 R13=0000000000000200 R14=dffffc0000000000 R15=ffff888007c75000
RIP=ffffffff81460c67 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff37e26d1f0 CR3=0000000018b46000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 6461657268747062 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 00302e6f732e6461 657268747062696c
YMM03=0000000000000000 0000000000000000 2f756e672d78756e 696c2d34365f3638
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000