
Debian GNU/Linux 11 syzkaller ttyS0

syzkaller login: [   34.439094] sshd (242) used greatest stack depth: 23656 bytes left
Warning: Permanently added '[localhost]:44708' (ECDSA) to the list of known hosts.
2022/10/04 04:50:25 fuzzer started
2022/10/04 04:50:25 dialing manager at localhost:35095
[   36.640175] cgroup: Unknown subsys name 'net'
[   36.732238] cgroup: Unknown subsys name 'rlimit'
2022/10/04 04:50:42 syscalls: 2215
2022/10/04 04:50:42 code coverage: enabled
2022/10/04 04:50:42 comparison tracing: enabled
2022/10/04 04:50:42 extra coverage: enabled
2022/10/04 04:50:42 setuid sandbox: enabled
2022/10/04 04:50:42 namespace sandbox: enabled
2022/10/04 04:50:42 Android sandbox: enabled
2022/10/04 04:50:42 fault injection: enabled
2022/10/04 04:50:42 leak checking: enabled
2022/10/04 04:50:42 net packet injection: enabled
2022/10/04 04:50:42 net device setup: enabled
2022/10/04 04:50:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/04 04:50:42 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/04 04:50:42 USB emulation: enabled
2022/10/04 04:50:42 hci packet injection: enabled
2022/10/04 04:50:42 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/04 04:50:42 802.15.4 emulation: enabled
2022/10/04 04:50:42 fetching corpus: 50, signal 22645/24531 (executing program)
2022/10/04 04:50:42 fetching corpus: 100, signal 36541/40112 (executing program)
2022/10/04 04:50:42 fetching corpus: 150, signal 44337/49513 (executing program)
2022/10/04 04:50:42 fetching corpus: 200, signal 49174/55936 (executing program)
2022/10/04 04:50:42 fetching corpus: 250, signal 55294/63553 (executing program)
2022/10/04 04:50:42 fetching corpus: 300, signal 62747/72386 (executing program)
2022/10/04 04:50:43 fetching corpus: 350, signal 68728/79701 (executing program)
2022/10/04 04:50:43 fetching corpus: 400, signal 76472/88611 (executing program)
2022/10/04 04:50:43 fetching corpus: 450, signal 82969/96235 (executing program)
2022/10/04 04:50:43 fetching corpus: 500, signal 85421/99981 (executing program)
2022/10/04 04:50:43 fetching corpus: 550, signal 88498/104322 (executing program)
2022/10/04 04:50:43 fetching corpus: 600, signal 90808/107854 (executing program)
2022/10/04 04:50:43 fetching corpus: 650, signal 93309/111556 (executing program)
2022/10/04 04:50:43 fetching corpus: 700, signal 94539/114069 (executing program)
2022/10/04 04:50:44 fetching corpus: 750, signal 95712/116546 (executing program)
2022/10/04 04:50:44 fetching corpus: 800, signal 98118/120091 (executing program)
2022/10/04 04:50:44 fetching corpus: 850, signal 100557/123629 (executing program)
2022/10/04 04:50:44 fetching corpus: 900, signal 102326/126525 (executing program)
2022/10/04 04:50:44 fetching corpus: 950, signal 103932/129286 (executing program)
2022/10/04 04:50:44 fetching corpus: 1000, signal 106237/132651 (executing program)
2022/10/04 04:50:44 fetching corpus: 1050, signal 107940/135407 (executing program)
2022/10/04 04:50:44 fetching corpus: 1100, signal 109703/138236 (executing program)
2022/10/04 04:50:44 fetching corpus: 1150, signal 112620/141994 (executing program)
2022/10/04 04:50:45 fetching corpus: 1200, signal 114351/144757 (executing program)
2022/10/04 04:50:45 fetching corpus: 1250, signal 115446/146961 (executing program)
2022/10/04 04:50:45 fetching corpus: 1300, signal 116845/149417 (executing program)
2022/10/04 04:50:45 fetching corpus: 1350, signal 117959/151590 (executing program)
2022/10/04 04:50:45 fetching corpus: 1400, signal 119049/153717 (executing program)
2022/10/04 04:50:45 fetching corpus: 1450, signal 119960/155733 (executing program)
2022/10/04 04:50:45 fetching corpus: 1500, signal 121374/158140 (executing program)
2022/10/04 04:50:45 fetching corpus: 1550, signal 122763/160517 (executing program)
2022/10/04 04:50:45 fetching corpus: 1600, signal 124301/162930 (executing program)
2022/10/04 04:50:46 fetching corpus: 1650, signal 125761/165274 (executing program)
2022/10/04 04:50:46 fetching corpus: 1700, signal 126794/167277 (executing program)
2022/10/04 04:50:46 fetching corpus: 1750, signal 128472/169798 (executing program)
2022/10/04 04:50:46 fetching corpus: 1800, signal 129869/172064 (executing program)
2022/10/04 04:50:46 fetching corpus: 1850, signal 131008/174098 (executing program)
2022/10/04 04:50:46 fetching corpus: 1900, signal 132195/176178 (executing program)
2022/10/04 04:50:46 fetching corpus: 1950, signal 133344/178252 (executing program)
2022/10/04 04:50:46 fetching corpus: 2000, signal 135184/180752 (executing program)
2022/10/04 04:50:47 fetching corpus: 2050, signal 136946/183179 (executing program)
2022/10/04 04:50:47 fetching corpus: 2100, signal 137882/184974 (executing program)
2022/10/04 04:50:47 fetching corpus: 2150, signal 139079/186973 (executing program)
2022/10/04 04:50:47 fetching corpus: 2200, signal 141541/189839 (executing program)
2022/10/04 04:50:47 fetching corpus: 2250, signal 143145/192099 (executing program)
2022/10/04 04:50:47 fetching corpus: 2300, signal 144962/194456 (executing program)
2022/10/04 04:50:47 fetching corpus: 2350, signal 145704/196041 (executing program)
2022/10/04 04:50:47 fetching corpus: 2400, signal 147543/198389 (executing program)
2022/10/04 04:50:47 fetching corpus: 2450, signal 149378/200725 (executing program)
2022/10/04 04:50:48 fetching corpus: 2500, signal 150329/202422 (executing program)
2022/10/04 04:50:48 fetching corpus: 2550, signal 152283/204795 (executing program)
2022/10/04 04:50:48 fetching corpus: 2600, signal 153345/206591 (executing program)
2022/10/04 04:50:48 fetching corpus: 2650, signal 154991/208718 (executing program)
2022/10/04 04:50:48 fetching corpus: 2700, signal 156256/210561 (executing program)
2022/10/04 04:50:48 fetching corpus: 2750, signal 156736/211949 (executing program)
2022/10/04 04:50:48 fetching corpus: 2800, signal 157210/213257 (executing program)
2022/10/04 04:50:49 fetching corpus: 2850, signal 157663/214527 (executing program)
2022/10/04 04:50:49 fetching corpus: 2900, signal 159091/216450 (executing program)
2022/10/04 04:50:49 fetching corpus: 2950, signal 161368/218887 (executing program)
2022/10/04 04:50:49 fetching corpus: 3000, signal 162694/220723 (executing program)
2022/10/04 04:50:49 fetching corpus: 3050, signal 163780/222387 (executing program)
2022/10/04 04:50:49 fetching corpus: 3100, signal 165238/224290 (executing program)
2022/10/04 04:50:49 fetching corpus: 3150, signal 166720/226116 (executing program)
2022/10/04 04:50:49 fetching corpus: 3200, signal 168350/228029 (executing program)
2022/10/04 04:50:50 fetching corpus: 3250, signal 168967/229363 (executing program)
2022/10/04 04:50:50 fetching corpus: 3300, signal 169944/230838 (executing program)
2022/10/04 04:50:50 fetching corpus: 3350, signal 170594/232160 (executing program)
2022/10/04 04:50:50 fetching corpus: 3400, signal 171224/233451 (executing program)
2022/10/04 04:50:50 fetching corpus: 3450, signal 172323/234997 (executing program)
2022/10/04 04:50:50 fetching corpus: 3500, signal 172843/236170 (executing program)
2022/10/04 04:50:50 fetching corpus: 3550, signal 173492/237447 (executing program)
2022/10/04 04:50:50 fetching corpus: 3600, signal 174261/238717 (executing program)
2022/10/04 04:50:50 fetching corpus: 3650, signal 175064/240076 (executing program)
2022/10/04 04:50:51 fetching corpus: 3700, signal 176037/241559 (executing program)
2022/10/04 04:50:51 fetching corpus: 3750, signal 177034/242973 (executing program)
2022/10/04 04:50:51 fetching corpus: 3800, signal 178126/244382 (executing program)
2022/10/04 04:50:51 fetching corpus: 3850, signal 178593/245493 (executing program)
2022/10/04 04:50:51 fetching corpus: 3900, signal 179366/246811 (executing program)
2022/10/04 04:50:51 fetching corpus: 3950, signal 180216/248082 (executing program)
2022/10/04 04:50:51 fetching corpus: 4000, signal 180895/249307 (executing program)
2022/10/04 04:50:51 fetching corpus: 4050, signal 181631/250544 (executing program)
2022/10/04 04:50:52 fetching corpus: 4100, signal 182453/251861 (executing program)
2022/10/04 04:50:52 fetching corpus: 4150, signal 182982/252952 (executing program)
2022/10/04 04:50:52 fetching corpus: 4200, signal 183443/254010 (executing program)
2022/10/04 04:50:52 fetching corpus: 4250, signal 184786/255512 (executing program)
2022/10/04 04:50:52 fetching corpus: 4300, signal 185343/256620 (executing program)
2022/10/04 04:50:52 fetching corpus: 4350, signal 185944/257719 (executing program)
2022/10/04 04:50:52 fetching corpus: 4400, signal 186738/258857 (executing program)
2022/10/04 04:50:52 fetching corpus: 4450, signal 187403/259959 (executing program)
2022/10/04 04:50:52 fetching corpus: 4500, signal 188350/261170 (executing program)
2022/10/04 04:50:53 fetching corpus: 4550, signal 188820/262195 (executing program)
2022/10/04 04:50:53 fetching corpus: 4600, signal 189454/263224 (executing program)
2022/10/04 04:50:53 fetching corpus: 4650, signal 189903/264261 (executing program)
2022/10/04 04:50:53 fetching corpus: 4700, signal 190650/265391 (executing program)
2022/10/04 04:50:53 fetching corpus: 4750, signal 191797/266664 (executing program)
2022/10/04 04:50:53 fetching corpus: 4800, signal 192073/267545 (executing program)
2022/10/04 04:50:53 fetching corpus: 4850, signal 192561/268557 (executing program)
2022/10/04 04:50:53 fetching corpus: 4900, signal 193536/269672 (executing program)
2022/10/04 04:50:53 fetching corpus: 4950, signal 194218/270789 (executing program)
2022/10/04 04:50:54 fetching corpus: 5000, signal 194660/271723 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/272558 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/273320 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/274092 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/274864 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/275655 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/276405 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/277209 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/277969 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/278728 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/279469 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/280264 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/281036 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/281809 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/282606 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/283364 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/284145 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/284930 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/285668 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/286456 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/287266 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/288065 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/288830 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/289612 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/290360 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/291056 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/291831 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/292628 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/293407 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/294188 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/294932 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/295690 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/296453 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/297220 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/298003 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/298797 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/299583 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/300311 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/301096 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/301885 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/302624 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/303411 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/304208 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/304953 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/305705 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/306472 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/307210 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/307990 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/308729 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/309508 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/310258 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/311006 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/311782 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/312539 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/313327 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/314139 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/314908 (executing program)
2022/10/04 04:50:54 fetching corpus: 5012, signal 194825/314908 (executing program)
2022/10/04 04:50:57 starting 8 fuzzer processes
04:50:57 executing program 0:
unshare(0xa010080)
unshare(0x200)
unshare(0x700)
unshare(0x20040000)
unshare(0x10000c80)
unshare(0x40000080)
unshare(0x100)
unshare(0x80010e00)
unshare(0x12020680)
unshare(0x10000200)
unshare(0x28060500)
unshare(0x800)
unshare(0x80)
unshare(0x8000400)
unshare(0x40100)
unshare(0x40280)
unshare(0x50000000)
unshare(0x10800)
unshare(0x22020000)
unshare(0x2000000)

04:50:57 executing program 1:
prctl$PR_SET_FPEXC(0xc, 0x2)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IEEE802154_ASSOCIATE_RESP(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r1, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa3}]}, 0x28}, 0x1, 0x0, 0x0, 0x400}, 0x40080cc)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000140)={'wpan4\x00', <r3=>0x0})
sendmsg$NLBL_MGMT_C_PROTOCOLS(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x68, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_PROTOCOL={0x8}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x36}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x15}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x1}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @local}]}, 0x68}}, 0x4)
sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r2, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_ACKREQ_DEFAULT={0x5, 0x1a, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000400), r0)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x2c, r4, 0x300, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0xc0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x58, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x393}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x9cda}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x8}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x3}, @NL80211_ATTR_STA_TX_POWER={0x6}, @NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x81}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0xf0d7}]}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x8810)
sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x80029000}, 0xc, &(0x7f0000000980)={&(0x7f0000000680)={0x2fc, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x1}, @NL80211_ATTR_SCAN_SUPP_RATES={0xf0, 0x7d, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xa4, 0x0, "4073cd47c4358c04cd8cd52b5a0e6437c83520709800b54e7cbef06e4ba29dd5b986c88fb04da0deb0271a2085ebdadb02e443c4a22f54e0f9af7c937803e0632f01420e137c127f3f6da7ef9c12a0c033033f49d696ab2aec0d7bd874e0f06541fc8028e4955f43f62750725efe4e601105cd04c471f50d24688088034423ae84ec08f59e348b47b121700d47bf49a621dc84b01e7aa75539fd62b48f061a1f"}, @NL80211_BAND_60GHZ={0xe, 0x2, "98872295dab03cdd747d"}, @NL80211_BAND_60GHZ={0x37, 0x2, "eaebde5af0d8d56ae6e518db383279bd58c16dd12e3098c1283dc17439cceca7e821de9fae97baec3829353c87125c660d5024"}]}, @NL80211_ATTR_IE={0xeb, 0x2a, [@peer_mgmt={0x75, 0x16, {0x1, 0x1924, @void, @val=0x3d, @val="dfc33951b2eba2a4a53aa8a487003d81"}}, @prep={0x83, 0x25, @ext={{}, 0x7, 0x20, @broadcast, 0x7, @device_a, 0x8001, 0x8, @broadcast, 0x1}}, @erp={0x2a, 0x1}, @ext_channel_switch={0x3c, 0x4, {0x0, 0x1, 0x6c, 0x3}}, @mesh_chsw={0x76, 0x6, {0xc6, 0x1, 0x30, 0x8}}, @prep={0x83, 0x1f, @not_ext={{}, 0x80, 0x4, @device_b, 0x2, "", 0xffff, 0x100, @device_b, 0x8}}, @fast_bss_trans={0x37, 0x74, {0x4, 0x1, "589b44dc393607c409571bd159d0d675", "8a3867c4a98c0afd3111a6bc1d25eb9eebbf4d58c46e00dff0bee07711f7c996", "ef16b5b2c63e3d8547e6f677f12e9346099301dff95d8ed047c2656511b35038", [{0x3, 0x20, "e2802a589307d91b37cb63eed33a9cc1c194443e3e3c3444ce86de04c11381a6"}]}}]}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x5}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_SCAN_SUPP_RATES={0xf8, 0x7d, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x5, 0x3, "d7"}, @NL80211_BAND_6GHZ={0xe9, 0x3, "0d080051c85148c1a504173e093b848267404d340d9ae5b30db156d18ace15c680ef4591bdadec50b706a8b93826b90c880ad7472dc24518954532be6d0b73463e3adc9710974551b34942f4001c39f37b7d1d2f6aee0ee4615b96b940e85ca72966da676ba54638bc68bedf978d74c290edfb87d26086792208a57ce35e9ddb39b945acaea1e84dacd02dabb6feaeb2bc5977e59de1be650b2d4a86129b65272f7171eb28c7c6a4a6bccde6d15c44bdeb000f78502921bacfde5477f676736ebd9950fc92aa28bbe6f0c4904403f997377a36a3edfb87c49f9b43748cd8289f2744aae373"}]}]}, 0x2fc}, 0x1, 0x0, 0x0, 0x24004014}, 0x4040)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000000d00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000a40)={0x248, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x9da9, 0x6b}}}}, [@NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5, 0xe4, 0x1}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x10, 0xbd, [0x13e6, 0x400, 0x7ff, 0xfffc, 0x800, 0xb0]}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x5}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}, @NL80211_ATTR_STA_EXT_CAPABILITY={0xf4, 0xac, "d02d746cdc2eaf3ea247a29b65afbd6c84f74d92a6065b053a2fa26fed35556cf009b7880f4d7220125dda6b079c582fdd48af57ee2b11ebb0ad48cdebbbbf5c2389645754b4c5e322d53701201e82d566f6f146bff5c47f8c025504e91f69bd34744762faa388bc5fbb7d0301824a60164784fc2c4ca2304bce5cb54fab0834147b28ad5ef9cb45c9e2063cd7a2f657077824fd00574680219ae95c18b70a7d4e387714ee75652a37185acf1e56c8e6ae02662515e689920eef1f18056ba1d5d1b327ed6a12a0cebdcc0449f629157ca3a730793f826075901c4530be278500dfcac725a6ae642ccca7fdc45c523b7d"}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x9, 0x800}}, @NL80211_ATTR_STA_CAPABILITY={0x6, 0xab, 0x1ff}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x2}, @NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES={0xed, 0xbe, "63db8ee12dda9befe65b760861f1be7a18ff17169c30d35caffec0ccb53000aaeb4f2d988a54b7afa935d11033b667930ce5a825740408d22a4ca40185f38fd8d3e5b3dd78fabb04d7afaccb230f059e9dba2b1991daa95c3c0e07a06055a23117c2c0ec835ad96771a6b6fb2bf7a84245d0230c445930a625516845e98fd60de5ffd30e1d2dfbf573acc1a0f28af5ae7312fc40fbb461c11b65eae596e323f333e6a38e3e7c24a19ab0e74cd4ca1d7c7c64bb28cbccc69c009bda04b0591394e6ea626bb063490da0aea488d8977019fa5f787ae17939b67d074502609d82dbb3d2e65532fd06bf91"}]}, 0x248}, 0x1, 0x0, 0x0, 0x8080}, 0x40)
syz_mount_image$iso9660(&(0x7f0000000d40), &(0x7f0000000d80)='./file0\x00', 0x4, 0x9, &(0x7f0000001540)=[{&(0x7f0000000dc0)="2320428cea06dae1870d4c047e206d10e94a4e8345f937aac2a8036c9c8fd2bf50802691f5eb6b7b1a15a217a68313f9078d0a1644327d3e077b543f273a327339957049fdf208967eb607d05e3ea80d8bf0818581e460e54c5c79c173b37d9c1f5e191c60a288be5fd1c7e6dba5f00f308be26967e295fd79052d280b650d0f061e56e38423ec3b33a185207e8c4ab25d3165fd2f29a924160973a1f69ea1f63469eeee55c4a99ec6fc8a7d20997932cb0fc45de047ee4a5f95a64a793b19d1bd8d58c3b8db6e0aa105ea09fa325a76121683f82fb1b1ca6b7cab2d98b6dd", 0xdf, 0x200}, {&(0x7f0000000ec0)="a73ae4bb430e7b4815564cb06ea9acdf417e616466c4ec76e81d41a530684d339e25779072a7410f9d4ba6426cb5cdff88367278d0261d326d3c85cc80ac7087498b59eec5bb135de03fbcf7d28d44645f213aa5dc885b33a44170499e25f838fc98f34672ca9e0e021ac24be4ecd8640d8618f88fd857a725a28db158dd945fa61812aac21d9fccc9b7e86dd3104cbe9070057e4e6fb1d5b85600e7723a0de1a27a8b21b8e438f3c2e397509f88fb9be7fec594251d2a05de76c240a78c65b72bb76ac94427b563b721ec48c8bc364f54c227822563de4955d8541e8e866d40b2a47f36", 0xe4, 0x1f}, {&(0x7f0000000fc0)="ad4f1acb41f874fea9a66c725311375af0cd17b550138e508ceac44e5f682c60829a1cccf40fafd9c08ae0043d2118760baa48ba462ebb77fbabd6d953cea4ee3d09fbd726fd0f018ca1a088182c207c2232d5458a960ffbabd9f019c36e82d2403ec5e273c0784af5cafe08bcdbb37dc464b025f5cb328d097a505fcdcd326658839a4e187a7e4251a9c22e44a7ad51bece5f72598a9619fde941f27325d2ab8f885608a985ae3994dcf04df049dd593f8b67d43287ac016268b863c36c", 0xbe, 0x6cae}, {&(0x7f0000001080)="577288332c9442a81e7952eecf23d3ce2bb5f55ffb43250871b113a479dd7dc2c4d4c1d03d4deb517b95211ca9032716730ed53841bc012384e645e0cd8a9b2d962737faaf2ea9abe982bc51617701495b039dd85041600315e42029f20a2cf1831e2d3c4ebdf1092161195771304852f256f0c89a0260655509dd6090a8f791cc6864321786805c48aa01c230f8415b02b4b60b115cd12eed9d52f0b72fc6d956ab1ac9ff4f823e25e6ffc72f0387c53ddf54556c495d29a3a52e875a31f77980626ea172fd9bb48b21bfc6a9ec268360470ed58613621fbe5695e4d25bbd362f577d773fa67f1c17d2", 0xea, 0xe000000000000000}, {&(0x7f0000001180)="1b6b9ea3eb880fd763345d950df9d40d0b6a122875ad503c2c7dfaf8598c4b7e11801a0c2bff6ae75ffc2a76505782115421b96717ca254f3cfa1c8f8d8caa3e115d370f0b06279af773d9ec2c65d520b3f60e052661d001866ed421590bce4b4fb7a447d18181e687942b4e3a795f18f8cdc6ba409b8af23732e2543a401a8416792759752341d99794269c482e44e72888cda608ae5c97b13019aa71340fb7d534d07614ebfa372ea1e8c77507c8436b4d9f45a2ee667e07bbb09da40a83f55fd21c5bf2da0f7608c312a6411d766ee35408725eeb5d43d22da25059b63c45603ba4af6348bdd5", 0xe8, 0x7}, {&(0x7f0000001280)="f5033594f503e02cf4ce079627491aecfa11e6bde1fa46a2dae140344afb790abe65e0cf4ec9e15342656caeadf5dac7067363eeac768e27cf7f7e", 0x3b, 0x4}, {&(0x7f00000012c0)="d04e7a7f858a01005ce56b68c37c55bce4aa106fc14fd488d1d60cdd7ed5889750e99ee43d8ed39c59dc914fefd21a3ba46e24621d1b835d71c646a98d38628df7d51d99bf51a5ba56bfe0449a75a33e003f78cee514686ff9f6b6160b7e677067f5bc7b91cd4401ad083571817000e84c0db4ebe87ce732dfc640e16ce43d61801e5232664d713878fdeb654d580aa36f628366cbe070abf93ecfcbe15940e669f37d74494b40be5bb668970ab878ce49aa1250be7c053b63fa0bb58bcdc3c6bd844eb12579b517057c7cdaf47297c7", 0xd0, 0x967}, {&(0x7f00000013c0)="414212193b7c500ca3e1c275a562a77e149f50e6541b8f83757d503b8539deed111c974cc4a228ef0f6c3c3714f502df6fcbfd24475bef8ea4106358e5be378c3ce9e00323d4d8fc7cf2d1599a3dd5c3943ce766f1f336f4d527f315f1", 0x5d, 0xf361}, {&(0x7f0000001440)="e4d1b35a4801586920d3f50b49e3a804011d03a7b0a1e4cc0f38c7abc9c5f7675742f33450628c898443c14990c5a77700c3a22cc5b8da99349a47a124f7f7513416bcea02560700204cb0b733f505c7efd4b44cd40663c73764c56650d86a29a31ef1be18a38d4d7910e66570ba0dc369a1b623e2d5e5f8fe97dcf2e1019cefb2c0ad562d35540d6b3fc443a3f89634983aab5ca856ffcdf183a337dee56677c520ad739f176b45024cc507790e99abfe7df1397e69744ec03115becaa92401e260da940db3dc2f46c758dc", 0xcc, 0x5}], 0x4008, &(0x7f0000001640)={[{@utf8}, {@map_off}, {@hide}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@iocharset={'iocharset', 0x3d, 'cp950'}}, {@overriderock}, {@map_acorn}, {@map_off}, {@mode={'mode', 0x3d, 0x800}}, {@cruft}], [{@smackfsfloor={'smackfsfloor', 0x3d, '\xff\xff\xff\xff\xff\xff'}}, {@obj_role={'obj_role', 0x3d, '-'}}]})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000001740)={'wpan1\x00', <r6=>0x0})
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000001780)={'wpan3\x00', <r7=>0x0})
sendmsg$IEEE802154_LLSEC_GETPARAMS(r5, &(0x7f0000001880)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001840)={&(0x7f00000017c0)={0x74, r1, 0x0, 0x70bd26, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}]}, 0x74}, 0x1, 0x0, 0x0, 0x20000010}, 0x2000)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f00000018c0), r8)

04:50:57 executing program 3:
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x1, &(0x7f0000000000)={0x0, 0x2710}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x4}}, './file0\x00'})
setsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000080)={0x1000, "5945be"}, 0x6)
r1 = openat$cgroup_procs(r0, &(0x7f00000000c0)='tasks\x00', 0x2, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000140)={0x4, 0x0, &(0x7f0000000100)=[r1, r0, r0, r0]}, 0x4)
ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f0000000180))
r2 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f00000001c0)={0x0, 0x4, 0x3554000000000})
perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x5, 0xf0, 0x5, 0x2, 0x0, 0x8, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x432, 0x0, @perf_bp={&(0x7f0000000200), 0x1}, 0x478, 0xfffffffffffffffb, 0x6, 0x9, 0x6, 0x80000000, 0x7a, 0x0, 0x9, 0x0, 0x5}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
r3 = open_tree(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x88000)
sendmsg$NL80211_CMD_GET_SCAN(r3, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x20, 0x0, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xacbe, 0x200}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4000804}, 0x40044054)
r4 = perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x7, 0x6, 0x8, 0x5, 0x0, 0x6, 0x200, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x101}, 0x0, 0x1, 0x3, 0x5, 0x9, 0x0, 0x2, 0x0, 0xffffff0b, 0x0, 0x20}, 0x0, 0xe, r3, 0x0)
r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000480), 0x1, 0x0)
ioctl$FS_IOC_GETFLAGS(r5, 0x80086601, &(0x7f00000004c0))
r6 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000500), 0x1, 0x0)
r7 = eventfd(0xf2b0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000dc0)={&(0x7f0000000540)=@kern={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000d40)=[{&(0x7f0000000580)={0xd0, 0x40, 0x100, 0x70bd27, 0x25dfdbfc, "", [@typed={0xc, 0x4e, 0x0, 0x0, @u64=0x9}, @typed={0x14, 0x77, 0x0, 0x0, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @generic="1db0910678050fb1cbcfd6de", @typed={0x8, 0x86, 0x0, 0x0, @pid}, @nested={0x8b, 0x36, 0x0, 0x1, [@generic="ef4958cfd5dd7d77bb78238530", @typed={0x8, 0x7c, 0x0, 0x0, @fd=r7}, @generic="1dd0afe5bf3ece442ee129dd09f7d8bc69edfd4027da1a551eaf0af24de24bcd4e7fcef2e6", @typed={0xb, 0x48, 0x0, 0x0, @binary="ecb5ea5e6159be"}, @generic="758dda317db06e42acd8309523a615c5fe2b845d40523acc07f3475e01c09a16f71ac49b1344ac2da5a6ec67c251f4772e", @typed={0x8, 0x53, 0x0, 0x0, @u32=0x7fff}, @typed={0x7, 0x71, 0x0, 0x0, @str='%-\x00'}]}]}, 0xd0}, {&(0x7f0000000680)={0x2a8, 0x3d, 0x100, 0x70bd29, 0x25dfdbff, "", [@generic="efc4458e3aeeb5135bada31676f5500cc09607f735619ba6bf96e1cae942bc1999e4aec6d2a5d9b4ade8143da44abb840e7d33af6b921b87dc41f8dd2d4e6824139f70448a8dc9d533d9380a76614df37d0280dd9c0fd7d796984098b4d96473713ad0b3a8c028a552cc549cc4748dd99e39a6ffdd80b4cb404b3756920592c42a1ed38a9c86d1159d4079fe4d9a778b048ab3216572b38a2bc5d31c4e90580cc980e9a517542b6a4fead473a9e48fcce2f193b3712eb78dcf1342b84c84491067a20b3a79c50cffa507d4584d6ace", @nested={0x169, 0x50, 0x0, 0x1, [@generic="a35ca80bf1edaf5451478991ae9197afb5718299584b54bcb5240c028605a3efc4606d4277fecc46fbf78eba5d506074527e918cad6060613fe9e8132a88d4f54f4a6474cc167febb4c02b34da465058ac94a0e9e6b38f9a3c016586e7f31691d49d794c290f29753456176b9668930bff1359e393fa1d20bd21d69105cee4e4a407e1543e324badfdc5a8ebae5627516c", @generic="9626231b6abb23c4ac71191855a6", @generic="7c22f6097bdc5af8704364d068905f1d74e693b3f0c0c4ace9cb9539e61ce85fe670c00adc704939d9a8fb75b9db8c5e9c3baaa9c6ae0f2de8d43de8159b84ffe5eb92fb8501547a84dc4ee2359fc70889a41403171f4122600791bcbfb7aec48cfb37027fd0c285e30e380e53caeab7ca1e4577f75d4e90d915f4ef07ac4ea14c93", @typed={0x4, 0xf}, @generic="084cec06e9de82494d10f7b2a674b1adf5cd7310cd3ae6fa6c434a58c1221e386d9b5d3d3541d8d3f7e1d12c7b4431557188c952", @typed={0x4, 0x78}, @typed={0x8, 0x58, 0x0, 0x0, @fd=r0}]}, @nested={0x2a, 0x15, 0x0, 0x1, [@generic="43926ded081c558964282f0ad2e23c61fd795a592e56faf1c8b691fa56a5740ef8e1d5b23c41"]}, @typed={0x14, 0x70, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x1a}}, @typed={0x14, 0x15, 0x0, 0x0, @ipv6=@mcast2}, @typed={0x8, 0x53, 0x0, 0x0, @fd=r1}]}, 0x2a8}, {&(0x7f0000000940)={0x3fc, 0x3e, 0x300, 0x70bd27, 0x25dfdbfd, "", [@nested={0x28f, 0x9, 0x0, 0x1, [@typed={0xc, 0x2a, 0x0, 0x0, @u64=0x1ff}, @typed={0x9, 0xb, 0x0, 0x0, @str='\'()+\x00'}, @generic="8212f9058ee557a19a7ac5dca0692e3486ddc944d3cc8956144e3b4571766f80f62d0bcecdf08d45797b2a78d000e77a7d8b50585abbe6a42525b04c435e57813417eb5ee9e46128aee2999413e4ff4c970c3a147856cbd25f8fca48e1ea7d13d067018ae2c6999dbd3f6f17b8c9", @typed={0x8, 0x8e, 0x0, 0x0, @fd=r6}, @generic="bddfa46175e0b14f9be14af3a151d278aecf84587ec4670b8104869d278ae6b646929a9e4822de2f3c38296723eb41c782163447cd980acfe7df0ca68094280d6e33ff25631fa07b34d358a671c55b6960634bda2356d966acf2b915aa88218bc8b02c5df6ac1e9c30e942bf322bf3cf999e79718d1dacff041dec21061638ac67841ffa8c189743961695df5064c40d8ec334590c1fa21659493f52d7d76cae054862ac520bdadd21ff0605", @generic="66dd45bde5e4c2e095f1c81d770c83be5d39a086f12298beeeb1c00dcf377867a46d3a01cae13331712061880d45c1daccc0a7d974fa73c30f1cb750ec66195719700d9d4262b6be7b6fe9bab3490e3bd09d997a1514d4a311041ebe333469ac8b3acc69146f1ffe073cce93cdb30400ca883a73e5d406c08109b36684667a2f19dc8925088b503f33b8a0615972f6ce7e287f8f8ea1fcee05c1b0959da0d63a9c1c6615d4d79f619e322d5789bbc89d99e7eafd2b9d26f689ae17cf97fe9c26c9780fd1fccedf40482f70ea12963e8a45576f52f926b6f8598a2d7a894097a811b21ca4daca9fbc0c7dc8a2c786", @generic="ac7f1bf5fa8dafab7188840769872fd3a089951355356037c144f687506ca17db266fe9da9ce2b78812de3a1b433eaee02af5050a6308f0d7b076b5d902de6e9b667408fb038d5ccece53e287774f560a989ebad4084cad85d58fdc162d5994e467bdb"]}, @generic="9a628bb33188b85beef2d5d0fa78c836b56b01918beae1a3262a53f9d147ace9d562a6b2b25197d6c24fec3b9fd81f11d3fc486ee38eff80de1308cf25eefc7327b81a22b9ca154172711f79cfc8be4cdc8776a4cf83f77cc1c88ab488effc807d21f9db8d404c686b427cef0432788e34b4f721e4526c5c12ae1a1fac0e7c8058d80efed8050d5c8bb720923186df3896d3fa1e68a51645b14207fa6b1af1dfd66f148de13163c7f7593e4bd4f35c9e2a9d2e908b12f884cce68cc073d19021040428b2443c3a1b2cd88bbb56ce2f966d4feab8eddf527221aadc683e73262411e6bcc2543b75adebc14dae524f2e162b371600e322fb", @nested={0x55, 0x15, 0x0, 0x1, [@generic="3c77930460bf2d1386ee0014116f0e728ec259e2e0156e8ee92a884484a27af82f581ca4f00c862b42670e72e3a7678d7e113eb037495fffaef5d761c06262c6fcfe0d1e2076bf8da05de62edb02285e89"]}, @typed={0xc, 0x33, 0x0, 0x0, @u64=0x8000000000000000}]}, 0x3fc}], 0x3, &(0x7f0000000d80)=[@rights={{0x18, 0x1, 0x1, [r4, r0]}}], 0x18, 0x24040002}, 0x20014804)
write(r1, &(0x7f0000000e00)="2a7b194dc523f765425ea2736ec19bcab6548b0856c9b56b01bb01010c179b663d8993a96e25fe42b3af585d10f78f8260ff926f16fb747b244af0efc6d86c84c5b8e8f4c8e0bcda5efec0b69a32a19d30b6c2843f208b731a53222fceebaecf19cfefde91a10a8e588c071ce4b5c5a2f9609072a9328745fd9c6531f4a214d061e2e6c05c34a0455bf82e4d4c9b5b1b5ded289b2a5e78ce2ad70c4ed5232238fc154379e8895467bbc597f848b98e33b117e556a19258806ce51882470ca047cb32ffe4ef38cf09f15f79012dbafe864f722f8bd5c88db55bcf971028", 0xdd)
r8 = openat$cgroup_type(r0, &(0x7f0000000f00), 0x2, 0x0)
ioctl$BTRFS_IOC_SCRUB(r8, 0xc400941b, &(0x7f0000000f40)={0x0, 0x32c3, 0x7fff})

04:50:57 executing program 2:
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x0, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0xd}}]}, 0x40}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wlan1\x00', <r0=>0x0})
sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x400, 0x70bd2d, 0x6b, {{}, {@val={0x8, 0x3, r0}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4008094}, 0x10)
sendmsg$SEG6_CMD_SET_TUNSRC(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x20, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x5}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x8004)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x9c, 0x0, 0x200, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x6, 0x3e}}}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x4b, 0x2a, [@peer_mgmt={0x75, 0x6, {0x0, 0x5, @val=0x200, @void, @void}}, @random={0x5, 0x3d, "b5f75be6ebbd0ac6e15304a0ca6136cc7c3d7c5f93c796b07c57b61542948edf20a5e5c43cc617c0d0c63b56e223e0e226cf289a78d47fa8d0b19831a7"}]}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20004000}, 0x8400)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x38, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}]}, 0x38}, 0x1, 0x0, 0x0, 0x24000000}, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x28000020}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x14, 0x0, 0x800, 0x70bd25, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x8040)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000740), 0x640, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), r2)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000007c0), r2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000800)={'vxcan0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_COALESCE_SET(r2, &(0x7f0000000940)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000900)={&(0x7f0000000840)={0xa4, r3, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0xfffff624}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES={0x8, 0x3, 0xa0}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0x3}, @ETHTOOL_A_COALESCE_HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x284507dbffb58339}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0x4}]}, 0xa4}, 0x1, 0x0, 0x0, 0xc0}, 0x1)
r5 = perf_event_open(&(0x7f0000000980)={0x2, 0x80, 0x4, 0x80, 0xf5, 0x80, 0x0, 0x8000, 0x80086, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x4, @perf_config_ext={0x3, 0x6}, 0xa0, 0x3, 0x6, 0x3, 0x80000000, 0x1, 0x60, 0x0, 0x9, 0x0, 0xffff}, 0xffffffffffffffff, 0x5, r2, 0x3)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000a00)={{0x1, 0x1, 0x18, <r6=>r5, {0x1f}}, './file0\x00'})
sendmsg$TIPC_NL_BEARER_ADD(r6, &(0x7f0000000b80)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000a80)={0x88, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x10, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}]}]}, @TIPC_NLA_MEDIA={0x58, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffc00}]}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x674}]}]}, 0x88}, 0x1, 0x0, 0x0, 0xc5}, 0x80)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000c00), r6)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000c40)={'team0\x00', <r8=>0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000d00)={'syztnl2\x00', &(0x7f0000000c80)={'erspan0\x00', <r9=>r4, 0x8000, 0x20, 0x1, 0x5, {{0x9, 0x4, 0x1, 0x24, 0x24, 0x66, 0x0, 0xa2, 0x4, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x3f}, {[@ra={0x94, 0x4, 0x1}, @lsrr={0x83, 0xb, 0xfb, [@multicast2, @rand_addr=0x64010101]}, @noop]}}}}})
sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000001180)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001140)={&(0x7f0000000f40)={0x1c4, r7, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@HEADER={0x84, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x4048840}, 0x4048040)

[   68.344713] audit: type=1400 audit(1664859057.618:6): avc:  denied  { execmem } for  pid=281 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
04:50:57 executing program 4:
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000))
ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f0000000040)=0x4)
r0 = openat(0xffffffffffffffff, &(0x7f0000000080)='\x00', 0x24040, 0x0)
ioctl$VT_GETSTATE(r0, 0x5603, &(0x7f00000000c0)={0x3, 0xff, 0x7fff})
ioctl$TIOCSBRK(0xffffffffffffffff, 0x5427)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0)
ioctl$KDDISABIO(r1, 0x4b37)
ioctl$TIOCMGET(r0, 0x5415, &(0x7f0000000140))
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$BTRFS_IOC_RESIZE(r0, 0x50009403, &(0x7f0000000180)={{r2}, {@val, @max}})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f00000001c0)={0x0, 0x3, r0, 0xfff})
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, &(0x7f0000000200)={0x6, 0x88})
r3 = fcntl$dupfd(r2, 0x0, r2)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
connect$inet(r4, &(0x7f0000000280)={0x2, 0x4e23, @private=0xa010101}, 0x10)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r3, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1220}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0xa0, 0x0, 0x800, 0x70bd2b, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x13}}}}, [@NL80211_ATTR_FRAME={0x14, 0x33, @ctrl_frame=@cf_end={{}, {0x58}, @device_b, @random="f59447c04b18"}}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_FRAME={0xe, 0x33, @ctrl_frame=@ack={{}, {0xac}}}, @NL80211_ATTR_FRAME={0x22, 0x33, @mgmt_frame=@deauth={@with_ht={{{0x0, 0x0, 0xc, 0x0, 0x0, 0x1, 0x1}, {0x54d0}, @broadcast, @device_b, @initial, {0x7, 0x20}}, @ver_80211n={0x0, 0x2, 0x1, 0x3, 0x0, 0x3, 0x0, 0x0, 0x1}}, 0x3, @void}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0xa0}, 0x1, 0x0, 0x0, 0x884}, 0x1)
r5 = open_tree(r3, &(0x7f0000000500)='./file0\x00', 0x801)
perf_event_open$cgroup(&(0x7f0000000480)={0x4, 0x80, 0x40, 0x4, 0x0, 0x6c, 0x0, 0x8, 0xc1000, 0x9, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0xfff, 0x0, @perf_bp={&(0x7f0000000440), 0x1}, 0x48350, 0x7fff, 0x1f, 0x0, 0x9, 0x5, 0x3ff, 0x0, 0x5, 0x0, 0x401}, r5, 0x1, 0xffffffffffffffff, 0x3)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000540)={0x0, 0xfffa, 0x6, 0x7, 0x15, "5fbca3e7aa7f89b3"})
ioctl$KDGKBTYPE(r5, 0x4b33, &(0x7f0000000580))

04:50:57 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x8000}}, './file0\x00'})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000040)={'\x00', 0x2, 0x7, 0x5, 0x3ff, 0x4156a264, 0xffffffffffffffff})
r1 = openat(r0, &(0x7f00000000c0)='./file0/file0\x00', 0x40000, 0x1)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000100)=[0xffffffffffffffff, r1, r0], 0x3)
openat(0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x8000, 0xea)
r2 = syz_open_dev$vcsa(&(0x7f0000000180), 0xffffffffffffffc1, 0x800)
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r3=>r0, @out_args}, './file1\x00'})
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FADVISE={0x18, 0x2, 0x0, @fd=r3, 0x6, 0x0, 0x6, 0x2}, 0x1)
pipe2$9p(&(0x7f00000002c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0/file0\x00', &(0x7f0000000280), 0x1000002, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@aname={'aname', 0x3d, '/dev/vcsa#\x00'}}, {@cache_none}, {@cache_none}, {@version_L}, {@msize={'msize', 0x3d, 0x80000000}}, {@access_any}, {@loose}, {@access_client}, {@afid={'afid', 0x3d, 0x9}}], [{@permit_directio}, {@smackfsfloor={'smackfsfloor', 0x3d, '&'}}]}})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff, {0xffffffffffffffff, 0xee01}}, './file0\x00'})
ioctl$BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000440)={'\x00', 0xfa91, 0x2, 0x80000001, 0x6, 0x3})
signalfd4(r2, &(0x7f00000004c0)={[0x8]}, 0x8, 0xc0800)
syz_open_procfs(0x0, &(0x7f0000000500)='io\x00')
signalfd4(r0, &(0x7f0000000540)={[0x6]}, 0x8, 0xc0800)
fchdir(r5)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/mdstat\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x80489439, &(0x7f00000005c0))
close(r5)

04:50:57 executing program 6:
ioctl$TIOCSIG(0xffffffffffffffff, 0x40045436, 0xb)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
ioctl$GIO_FONTX(r0, 0x4b6b, &(0x7f0000000440)={0x8a, 0x1f, &(0x7f0000000040)})
ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000480)=""/4096)
r1 = syz_open_dev$ttys(0xc, 0x2, 0x0)
io_submit(0x0, 0x1, &(0x7f0000001500)=[&(0x7f00000014c0)={0x0, 0x0, 0x0, 0x3, 0x0, r1, &(0x7f0000001480)="b8bbc20f0904c6b935ca3edc18b7144844cb691543", 0x15, 0x100000001, 0x0, 0x2}])
ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000001540)={0x2, 0x4, {0x1, @usage=0x3f, 0x0, 0x7, 0xfffffffffffffffd, 0x100000001, 0x1000, 0x9, 0x60, @usage, 0x9, 0xffffffff, [0x9, 0x0, 0x7fffffff, 0x101, 0x0, 0x8]}, {0x6, @usage=0x7f, <r2=>0x0, 0xefa5, 0x100, 0x8, 0xf9f4, 0x100, 0x4, @usage=0x380000000, 0x5, 0x28d7, [0x9, 0xffffffffffffffff, 0x8b, 0x2, 0x5, 0x9]}, {0x2ab6, @usage=0x1ff, 0x0, 0xffffffff, 0x101, 0x6, 0x9, 0x0, 0x6f, @struct={0xffe00000, 0x6}, 0x2, 0x20, [0x1ff, 0x4, 0x80, 0x7fff, 0x8000, 0x1ff]}, {0x3ff, 0xca4, 0xff}})
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000001940)={r2, 0x7, 0x0, [0x7, 0x0, 0x1f, 0x7, 0x6], [0x1d1, 0x10001, 0x80000001, 0x2d, 0x20, 0x5, 0xee49, 0x9, 0x1, 0x8, 0x6, 0x6, 0x81, 0x7a4, 0x4, 0x0, 0x7, 0x915, 0x8, 0xff, 0x400, 0x6a, 0x7f, 0x3, 0x81, 0x8, 0x2896, 0x7, 0x20, 0xc8, 0x130b, 0x8, 0x9, 0x7, 0x3f6, 0x7, 0x9, 0x1, 0x100000001, 0x4, 0x5, 0x9, 0x0, 0x5, 0x29, 0x9, 0x0, 0xfffffffffffffff7, 0x0, 0x200, 0x3812, 0x0, 0x8, 0xdc, 0x4, 0x0, 0x2, 0x9, 0x6, 0x6, 0x1, 0x5, 0x7, 0x5, 0x3, 0xfffffffffffffffb, 0x1, 0x3, 0x7, 0x0, 0x7, 0xfffffffffffffffd, 0x5, 0x1, 0x4, 0x6, 0xb95, 0x20, 0xcf, 0x7, 0x7, 0x8, 0xad, 0x6e, 0x3, 0xffff, 0x7fffffff, 0x6, 0x1ff, 0x10001, 0x9, 0xffff, 0x9, 0x800, 0xd03, 0x7, 0x16f0, 0x2, 0x9, 0x6, 0x40000000, 0x1e, 0x7, 0x95, 0xd8, 0x7279, 0x80000001, 0x345, 0xfffffffffffffc01, 0x2, 0x9, 0x8, 0x3, 0x7, 0x2000000, 0x10000, 0x9, 0x100000000, 0x7, 0x66, 0x3f]})
io_cancel(0x0, &(0x7f0000001dc0)={0x0, 0x0, 0x0, 0x0, 0x7fff, r1, &(0x7f0000001d80)="c590482ddbfe67b9d30c22", 0xb, 0xffff, 0x0, 0x1}, &(0x7f0000001e00))
fsetxattr$security_selinux(r0, &(0x7f0000001e40), &(0x7f0000001e80)='system_u:object_r:ppp_device_t:s0\x00', 0x22, 0x2)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000001f00)=<r4=>0x0)
fsetxattr$security_capability(r3, &(0x7f0000001ec0), &(0x7f0000001f40)=@v3={0x3000000, [{0x9, 0x5}, {0x8000, 0x1}], r4}, 0x18, 0x1)
getpeername(r3, &(0x7f0000001f80)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r5=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, &(0x7f0000002000)=0x80)
r6 = syz_genetlink_get_family_id$gtp(&(0x7f0000002080), 0xffffffffffffffff)
sendmsg$GTP_CMD_DELPDP(r5, &(0x7f0000002140)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x41030120}, 0xc, &(0x7f0000002100)={&(0x7f00000020c0)={0x34, r6, 0x0, 0x70bd2a, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8}, @GTPA_NET_NS_FD={0x8}, @GTPA_NET_NS_FD={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @remote}]}, 0x34}, 0x1, 0x0, 0x0, 0x880}, 0x40004840)
fsetxattr$trusted_overlay_upper(r0, &(0x7f0000002180), &(0x7f00000021c0)={0x0, 0xfb, 0x109, 0x3, 0x3, "b5fccc3b50a400a0d795147556a3839a", "46253b843e0149bc1e13d126500e0ddfc00d1c17a687ddb23554548db44b2138887f636892486970d342186d7bde875e3fb5dfa1bb530f0836d7b961caab7b2b11080c1cd886a30dacd4630c517ce763e646a99cbf8c3514b310527c3f946100dbaa64ec6e024c984aab15db8d2eca0ae90d26eec037cb940cb17729e38c14b76aba858570380df18541682b7a038d50db4d96d2bd17b46155a3381955487cb0f8e3f73feaa7988946430eb504f6afd6b353c5369e599b06379278bffdcc4fbbba6f4a6b6cc32599db579e126ddeb8c7d70a48f2778165d5f6891c0e1a4b7763b3f54066610c0c49218be0f6a0acd48733234f63"}, 0x109, 0x0)
ioctl$FICLONERANGE(r1, 0x4020940d, &(0x7f0000002300)={{r5}, 0x200, 0x670, 0xfffffffffffffff9})
ioctl$TIOCGWINSZ(r1, 0x5413, &(0x7f0000002340))
ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r3, 0x8982, &(0x7f0000002380))

04:50:57 executing program 7:
ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'gretap0\x00'})
clock_gettime(0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x14, &(0x7f0000000080)={r0, r1/1000+10000}, 0x10)
r2 = accept$unix(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000140)=0x6e)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000180)=0x8, 0x4)
getsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f00000001c0), &(0x7f0000000200)=0x10)
clock_gettime(0x1, &(0x7f0000000240))
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00'})
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f00000002c0)=0x3, 0x4)
clock_gettime(0x3, &(0x7f0000000300))
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, 0x0, 0x300, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x20040020}, 0x40000c01)
accept$packet(0xffffffffffffffff, 0x0, &(0x7f0000000440))
sendmsg$nl_xfrm(r3, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)=@getspdinfo={0x14, 0x25, 0x2, 0x70bd2b, 0x25dfdbfd, 0x1000, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)
getsockopt$IP_VS_SO_GET_DAEMON(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000580), &(0x7f00000005c0)=0x30)
recvmsg$unix(r2, &(0x7f0000000b40)={&(0x7f0000000600)=@abs, 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000680)=""/37, 0x25}, {&(0x7f00000006c0)=""/214, 0xd6}, {&(0x7f00000007c0)=""/47, 0x2f}, {&(0x7f0000000800)=""/138, 0x8a}, {&(0x7f00000008c0)=""/60, 0x3c}, {&(0x7f0000000900)=""/76, 0x4c}, {&(0x7f0000000980)=""/91, 0x5b}], 0x7, &(0x7f0000000a80)=[@cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xc0}, 0x30102)
r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000bc0), 0x800, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000f00)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000c00)={0x284, 0x3e, 0x100, 0x70bd27, 0x25dfdbfd, {0x7}, [@typed={0x8, 0x7d, 0x0, 0x0, @u32=0x6}, @nested={0x25d, 0x10, 0x0, 0x1, [@generic="2ead9419cb46dab2ee0c9e666c8821de1080d086182f946fc9efba65edc04a75e0088f8453928c3a8631c4dca0b1a88f63ab7d711a362fcbef603301", @generic="cbd16f43c5502fdbd450f7b574853dcc7d572cebfdb1d3380138ed0ad0d29ea3e20846428ddbff18e51872d53f5a4e66239e1eea50fe429bd7f30d63a9eb442b01fd9c6308b124fc97", @typed={0x31, 0x5d, 0x0, 0x0, @binary="94a2a6c82f000a66442706bc14189c5294fae5c41b83c660bc5bdb9b25c9609b715f253cdde10d4cfe5bd5d179"}, @typed={0x8, 0x23, 0x0, 0x0, @fd=r6}, @typed={0x14, 0x7f, 0x0, 0x0, @ipv6=@private0}, @generic="10a372ee08e990752a6224060b75146cbf862f6e3a42c2420d526df0949799123aac25bb13d9ba71f6116a6759fc3348641ea8098fd810f785f30a5cbc89486c11759d2469839ebfc6a13e701b32460d79bc2c8cffa8b2ba187055d53b8b58b58ddf9edbf9602586b0c20910c60c0d6f8cedf773c3d66963166501a6ed4006addc8bcd75a9a56c77774b83cc82bd9cc4f1c7db9941d011785ca0463fa67466c7b3c78dab8b0710691264cff70f0c85bd505696ecf519ef03baabcc9a6e83ae2eadb94537341d49753951994c7f99a2fb3502a2312d650d8e636aed72e899f37a9f213abe014db158f19fe6ef1a66f6a3", @typed={0x13, 0xb, 0x0, 0x0, @str='batadv_slave_1\x00'}, @generic="792f06d4e41c21c3bb26e103", @generic="50387220783ad218432d60855dc1ac9f0e813ac94b8050077f185b3d56abdbd2ca3ff64f208a13e31ec57607493e3e1f5827c1d0cffed966735bb51eb1e03b415f528e43328d83fc66ad4adfdb274402073eedb5502184f877b34c0b283ba60e324bc250dfeb9e825386a615", @typed={0x8, 0x34, 0x0, 0x0, @uid}]}, @typed={0x8, 0x1c, 0x0, 0x0, @fd=r2}]}, 0x284}, 0x1, 0x0, 0x0, 0x4000}, 0x50)
pivot_root(&(0x7f0000000f40)='./file0\x00', &(0x7f0000000f80)='./file0\x00')
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r4, &(0x7f0000001080)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001040)={&(0x7f0000001000)={0x30, 0x0, 0x210, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x66}}}}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x3d}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004000}, 0x4000)

[   69.704828] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   69.706365] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   69.709586] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   69.710708] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   69.714823] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   69.715853] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   69.727778] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   69.732628] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   69.771840] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   69.774029] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   69.775909] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   69.778189] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   69.779847] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   69.781124] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   69.782269] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   69.783384] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   69.784586] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   69.786116] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   69.787198] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   69.788384] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   69.789714] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   69.791040] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   69.793165] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   69.796961] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   69.798451] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   69.799531] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   69.800742] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   69.802232] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   69.805220] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   69.807246] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   69.811963] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   69.813352] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   69.815211] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   69.817023] Bluetooth: hci1: HCI_REQ-0x0c1a
[   69.818500] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   69.824379] Bluetooth: hci5: HCI_REQ-0x0c1a
[   69.825479] Bluetooth: hci3: HCI_REQ-0x0c1a
[   69.841406] Bluetooth: hci0: HCI_REQ-0x0c1a
[   69.844038] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   69.845899] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   69.860294] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   69.861879] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   69.864848] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   69.866614] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   69.868369] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   69.874685] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   69.879897] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   69.881159] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   69.882513] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   69.886584] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   69.888042] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   69.894003] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   69.899101] Bluetooth: hci7: HCI_REQ-0x0c1a
[   69.909086] Bluetooth: hci6: HCI_REQ-0x0c1a
[   69.911794] Bluetooth: hci4: HCI_REQ-0x0c1a
[   69.915265] Bluetooth: hci2: HCI_REQ-0x0c1a
[   71.851224] Bluetooth: hci5: command 0x0409 tx timeout
[   71.851237] Bluetooth: hci3: command 0x0409 tx timeout
[   71.915317] Bluetooth: hci1: command 0x0409 tx timeout
[   71.915730] Bluetooth: hci7: command 0x0409 tx timeout
[   71.916463] Bluetooth: hci0: command 0x0409 tx timeout
[   71.978804] Bluetooth: hci2: command 0x0409 tx timeout
[   71.980033] Bluetooth: hci6: command 0x0409 tx timeout
[   71.980907] Bluetooth: hci4: command 0x0409 tx timeout
[   73.898746] Bluetooth: hci5: command 0x041b tx timeout
[   73.899190] Bluetooth: hci3: command 0x041b tx timeout
[   73.962742] Bluetooth: hci0: command 0x041b tx timeout
[   73.963187] Bluetooth: hci7: command 0x041b tx timeout
[   73.963570] Bluetooth: hci1: command 0x041b tx timeout
[   74.026722] Bluetooth: hci4: command 0x041b tx timeout
[   74.027147] Bluetooth: hci6: command 0x041b tx timeout
[   74.027572] Bluetooth: hci2: command 0x041b tx timeout
[   75.946795] Bluetooth: hci3: command 0x040f tx timeout
[   75.947265] Bluetooth: hci5: command 0x040f tx timeout
[   76.010739] Bluetooth: hci1: command 0x040f tx timeout
[   76.011153] Bluetooth: hci7: command 0x040f tx timeout
[   76.011571] Bluetooth: hci0: command 0x040f tx timeout
[   76.074849] Bluetooth: hci2: command 0x040f tx timeout
[   76.075321] Bluetooth: hci6: command 0x040f tx timeout
[   76.075790] Bluetooth: hci4: command 0x040f tx timeout
[   77.994768] Bluetooth: hci5: command 0x0419 tx timeout
[   77.995580] Bluetooth: hci3: command 0x0419 tx timeout
[   78.059036] Bluetooth: hci0: command 0x0419 tx timeout
[   78.059961] Bluetooth: hci7: command 0x0419 tx timeout
[   78.060835] Bluetooth: hci1: command 0x0419 tx timeout
[   78.122756] Bluetooth: hci4: command 0x0419 tx timeout
[   78.123587] Bluetooth: hci6: command 0x0419 tx timeout
[   78.124429] Bluetooth: hci2: command 0x0419 tx timeout
[  126.173436] audit: type=1400 audit(1664859115.447:7): avc:  denied  { open } for  pid=3817 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  126.178222] audit: type=1400 audit(1664859115.452:8): avc:  denied  { kernel } for  pid=3817 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
04:51:55 executing program 3:
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, @perf_bp={0x0, 0x4}, 0x80, 0x3, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x40010, 0xffffffffffffffff, 0x8000000)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x110, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x10}}, 0xfa0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)=<r2=>0x0)
clone3(&(0x7f0000000440)={0x80000800, &(0x7f0000000000), 0x0, &(0x7f0000000100)=<r3=>0x0, {0x37}, &(0x7f0000000180)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000380)=[r2, 0x0, r2], 0x3}, 0x58)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x4c6182, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f00000000c0), 0x12)
fcntl$setsig(r5, 0xa, 0x40)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000000c0), 0x12)
syz_io_uring_setup(0x7c4, &(0x7f0000000200)={0x0, 0xf86c, 0x10, 0x0, 0xe7, 0x0, r6}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000340))
ioctl$FAT_IOCTL_GET_VOLUME_ID(r4, 0x80047213, &(0x7f00000004c0))
epoll_create(0x4)
kcmp$KCMP_EPOLL_TFD(0x0, r3, 0x7, 0xffffffffffffffff, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff, 0x1})
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  126.341511] ------------[ cut here ]------------
[  126.341535] 
[  126.341539] ======================================================
[  126.341542] WARNING: possible circular locking dependency detected
[  126.341546] 6.0.0-rc7-next-20220930 #1 Not tainted
[  126.341553] ------------------------------------------------------
[  126.341556] syz-executor.3/3830 is trying to acquire lock:
[  126.341563] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  126.341604] 
[  126.341604] but task is already holding lock:
[  126.341607] ffff88800ff00420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  126.341637] 
[  126.341637] which lock already depends on the new lock.
[  126.341637] 
[  126.341640] 
[  126.341640] the existing dependency chain (in reverse order) is:
[  126.341643] 
[  126.341643] -> #3 (&ctx->lock){....}-{2:2}:
[  126.341657]        _raw_spin_lock+0x2a/0x40
[  126.341669]        __perf_event_task_sched_out+0x53b/0x18d0
[  126.341680]        __schedule+0xedd/0x2470
[  126.341693]        schedule+0xda/0x1b0
[  126.341707]        exit_to_user_mode_prepare+0x114/0x1a0
[  126.341719]        syscall_exit_to_user_mode+0x19/0x40
[  126.341732]        do_syscall_64+0x48/0x90
[  126.341750]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.341762] 
[  126.341762] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  126.341776]        _raw_spin_lock_nested+0x30/0x40
[  126.341786]        raw_spin_rq_lock_nested+0x1e/0x30
[  126.341800]        task_fork_fair+0x63/0x4d0
[  126.341816]        sched_cgroup_fork+0x3d0/0x540
[  126.341830]        copy_process+0x4183/0x6e20
[  126.341841]        kernel_clone+0xe7/0x890
[  126.341851]        user_mode_thread+0xad/0xf0
[  126.341861]        rest_init+0x24/0x250
[  126.341872]        arch_call_rest_init+0xf/0x14
[  126.341890]        start_kernel+0x4c6/0x4eb
[  126.341905]        secondary_startup_64_no_verify+0xe0/0xeb
[  126.341919] 
[  126.341919] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  126.341933]        _raw_spin_lock_irqsave+0x39/0x60
[  126.341943]        try_to_wake_up+0xab/0x1930
[  126.341956]        up+0x75/0xb0
[  126.341970]        __up_console_sem+0x6e/0x80
[  126.341986]        console_unlock+0x46a/0x590
[  126.342002]        vt_ioctl+0x2822/0x2ca0
[  126.342014]        tty_ioctl+0x785/0x16b0
[  126.342025]        __x64_sys_ioctl+0x19a/0x210
[  126.342039]        do_syscall_64+0x3b/0x90
[  126.342055]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.342068] 
[  126.342068] -> #0 ((console_sem).lock){....}-{2:2}:
[  126.342081]        __lock_acquire+0x2a02/0x5e70
[  126.342098]        lock_acquire+0x1a2/0x530
[  126.342114]        _raw_spin_lock_irqsave+0x39/0x60
[  126.342124]        down_trylock+0xe/0x70
[  126.342139]        __down_trylock_console_sem+0x3b/0xd0
[  126.342155]        vprintk_emit+0x16b/0x560
[  126.342170]        vprintk+0x84/0xa0
[  126.342186]        _printk+0xba/0xf1
[  126.342197]        report_bug.cold+0x72/0xab
[  126.342213]        handle_bug+0x3c/0x70
[  126.342229]        exc_invalid_op+0x14/0x50
[  126.342246]        asm_exc_invalid_op+0x16/0x20
[  126.342258]        group_sched_out.part.0+0x2c7/0x460
[  126.342276]        ctx_sched_out+0x8f1/0xc10
[  126.342292]        __perf_event_task_sched_out+0x6d0/0x18d0
[  126.342303]        __schedule+0xedd/0x2470
[  126.342316]        schedule+0xda/0x1b0
[  126.342329]        exit_to_user_mode_prepare+0x114/0x1a0
[  126.342340]        syscall_exit_to_user_mode+0x19/0x40
[  126.342352]        do_syscall_64+0x48/0x90
[  126.342368]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.342381] 
[  126.342381] other info that might help us debug this:
[  126.342381] 
[  126.342383] Chain exists of:
[  126.342383]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  126.342383] 
[  126.342398]  Possible unsafe locking scenario:
[  126.342398] 
[  126.342400]        CPU0                    CPU1
[  126.342402]        ----                    ----
[  126.342405]   lock(&ctx->lock);
[  126.342410]                                lock(&rq->__lock);
[  126.342417]                                lock(&ctx->lock);
[  126.342423]   lock((console_sem).lock);
[  126.342428] 
[  126.342428]  *** DEADLOCK ***
[  126.342428] 
[  126.342430] 2 locks held by syz-executor.3/3830:
[  126.342437]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  126.342466]  #1: ffff88800ff00420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  126.342492] 
[  126.342492] stack backtrace:
[  126.342495] CPU: 0 PID: 3830 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1
[  126.342507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  126.342515] Call Trace:
[  126.342518]  <TASK>
[  126.342523]  dump_stack_lvl+0x8b/0xb3
[  126.342541]  check_noncircular+0x263/0x2e0
[  126.342557]  ? format_decode+0x26c/0xb50
[  126.342573]  ? print_circular_bug+0x450/0x450
[  126.342590]  ? simple_strtoul+0x30/0x30
[  126.342605]  ? __lockdep_reset_lock+0x180/0x180
[  126.342621]  ? format_decode+0x26c/0xb50
[  126.342638]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  126.342655]  __lock_acquire+0x2a02/0x5e70
[  126.342677]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  126.342699]  lock_acquire+0x1a2/0x530
[  126.342715]  ? down_trylock+0xe/0x70
[  126.342732]  ? lock_release+0x750/0x750
[  126.342749]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  126.342770]  ? vprintk+0x84/0xa0
[  126.342787]  _raw_spin_lock_irqsave+0x39/0x60
[  126.342798]  ? down_trylock+0xe/0x70
[  126.342814]  down_trylock+0xe/0x70
[  126.342830]  ? vprintk+0x84/0xa0
[  126.342846]  __down_trylock_console_sem+0x3b/0xd0
[  126.342864]  vprintk_emit+0x16b/0x560
[  126.342880]  ? lock_downgrade+0x6d0/0x6d0
[  126.342898]  vprintk+0x84/0xa0
[  126.342915]  _printk+0xba/0xf1
[  126.342926]  ? record_print_text.cold+0x16/0x16
[  126.342940]  ? hrtimer_try_to_cancel+0x163/0x2c0
[  126.342955]  ? lock_downgrade+0x6d0/0x6d0
[  126.342972]  ? report_bug.cold+0x66/0xab
[  126.342990]  ? group_sched_out.part.0+0x2c7/0x460
[  126.343008]  report_bug.cold+0x72/0xab
[  126.343026]  handle_bug+0x3c/0x70
[  126.343043]  exc_invalid_op+0x14/0x50
[  126.343061]  asm_exc_invalid_op+0x16/0x20
[  126.343074] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  126.343094] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  126.343106] RSP: 0018:ffff8880189c7c48 EFLAGS: 00010006
[  126.343115] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  126.343122] RDX: ffff888018481ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  126.343130] RBP: ffff888008660b90 R08: 0000000000000005 R09: 0000000000000001
[  126.343137] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800ff00400
[  126.343145] R13: ffff88806ce3d2c0 R14: ffffffff8547c960 R15: 0000000000000002
[  126.343155]  ? group_sched_out.part.0+0x2c7/0x460
[  126.343175]  ? group_sched_out.part.0+0x2c7/0x460
[  126.343195]  ctx_sched_out+0x8f1/0xc10
[  126.343214]  __perf_event_task_sched_out+0x6d0/0x18d0
[  126.343228]  ? lock_is_held_type+0xd7/0x130
[  126.343241]  ? __perf_cgroup_move+0x160/0x160
[  126.343252]  ? set_next_entity+0x304/0x550
[  126.343269]  ? update_curr+0x267/0x740
[  126.343287]  ? lock_is_held_type+0xd7/0x130
[  126.343301]  __schedule+0xedd/0x2470
[  126.343318]  ? io_schedule_timeout+0x150/0x150
[  126.343334]  ? __x64_sys_futex_time32+0x480/0x480
[  126.343349]  schedule+0xda/0x1b0
[  126.343364]  exit_to_user_mode_prepare+0x114/0x1a0
[  126.343376]  syscall_exit_to_user_mode+0x19/0x40
[  126.343389]  do_syscall_64+0x48/0x90
[  126.343407]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.343420] RIP: 0033:0x7f57bffceb19
[  126.343428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  126.343439] RSP: 002b:00007f57bd544218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  126.343449] RAX: 0000000000000001 RBX: 00007f57c00e1f68 RCX: 00007f57bffceb19
[  126.343456] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f57c00e1f6c
[  126.343464] RBP: 00007f57c00e1f60 R08: 000000000000000e R09: 0000000000000000
[  126.343471] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f57c00e1f6c
[  126.343478] R13: 00007ffd8ca444cf R14: 00007f57bd544300 R15: 0000000000022000
[  126.343490]  </TASK>
[  126.401268] WARNING: CPU: 0 PID: 3830 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  126.401962] Modules linked in:
[  126.402206] CPU: 0 PID: 3830 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1
[  126.402804] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  126.403632] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  126.404046] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  126.405397] RSP: 0018:ffff8880189c7c48 EFLAGS: 00010006
[  126.405798] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  126.406325] RDX: ffff888018481ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  126.406854] RBP: ffff888008660b90 R08: 0000000000000005 R09: 0000000000000001
[  126.407382] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800ff00400
[  126.407914] R13: ffff88806ce3d2c0 R14: ffffffff8547c960 R15: 0000000000000002
[  126.408455] FS:  00007f57bd544700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  126.409054] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  126.409491] CR2: 0000001b2da25000 CR3: 000000003d9bc000 CR4: 0000000000350ef0
[  126.410017] Call Trace:
[  126.410212]  <TASK>
[  126.410389]  ctx_sched_out+0x8f1/0xc10
[  126.410696]  __perf_event_task_sched_out+0x6d0/0x18d0
[  126.411084]  ? lock_is_held_type+0xd7/0x130
[  126.411411]  ? __perf_cgroup_move+0x160/0x160
[  126.411750]  ? set_next_entity+0x304/0x550
[  126.412071]  ? update_curr+0x267/0x740
[  126.412389]  ? lock_is_held_type+0xd7/0x130
[  126.412720]  __schedule+0xedd/0x2470
[  126.413007]  ? io_schedule_timeout+0x150/0x150
[  126.413362]  ? __x64_sys_futex_time32+0x480/0x480
[  126.413725]  schedule+0xda/0x1b0
[  126.413989]  exit_to_user_mode_prepare+0x114/0x1a0
[  126.414356]  syscall_exit_to_user_mode+0x19/0x40
[  126.414719]  do_syscall_64+0x48/0x90
[  126.415009]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  126.415392] RIP: 0033:0x7f57bffceb19
[  126.415676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  126.417005] RSP: 002b:00007f57bd544218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  126.417559] RAX: 0000000000000001 RBX: 00007f57c00e1f68 RCX: 00007f57bffceb19
[  126.418087] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f57c00e1f6c
[  126.418613] RBP: 00007f57c00e1f60 R08: 000000000000000e R09: 0000000000000000
[  126.419132] R10: 0000000000000007 R11: 0000000000000246 R12: 00007f57c00e1f6c
[  126.419652] R13: 00007ffd8ca444cf R14: 00007f57bd544300 R15: 0000000000022000
[  126.420188]  </TASK>
[  126.420368] irq event stamp: 2474
[  126.420632] hardirqs last  enabled at (2473): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  126.421312] hardirqs last disabled at (2474): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  126.421934] softirqs last  enabled at (1500): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  126.422569] softirqs last disabled at (1491): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  126.423212] ---[ end trace 0000000000000000 ]---
04:51:56 executing program 2:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x100000, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005e2c0)={0x0, 0x0, "d1f14792bb10750ea9e86f2109c85a306eac969c225abcf9542493077458dc50dd5546ef22c70a8bd6b5a45e86c81b77924f226ab6e09915cbe829241e71703056bc95c7386df10315c79284a94c638e15bb1a293b37fce9ccef990b6b10fb9c04f3786fecc4e7d36ad34a037174328cfbd507df8590cdb8df705efb63f6d543b899d97ca79e8c4414fd5da623d28f9252c13428af0998f63ad30f909619b043f0a7aa899a6d92a2a5e61460066587029f38eff5aeafc3e8b67b97ebf6c447380bd9fd03521069fdc0d128d6041c0c873b2d58b8881c4a4c74e260693309049d39b69a09df12caf88245f7f4dc058c0fb2295afbe717134ff663413f7d075e5e", "950b8bbc34bf9b44a5f783e82416e13437591aaea9e99d56d9fa2b62c996fb937ef8e5bb361a4eb72e3b338b3d456d93c2993fc14a84c9df4fca9a60ad24fe51c5a3fc272feb82e0053d62793dcbb53a9aac338c90f5cdae9589decd38f50a09d93770fe9fffa2570bae21a6c16607cb009087b6f6850ff959c7cde98a4e32896d4e19a961e665ed3624ef5c69dc0964b4e762a597e962c8f0c77006ae2c2e61c9d589d8075d51ad024b5e6af6d9ad992d0bf7c9b663e91485d32a9e7ee3febf65c5d7f7d8cf1d6ee7a1d12df1d9a056d2c44371e7d7376e0baa911ce2fb91f811506149e1b2bcf3dc0e9c94a294388d4636547a098e57bad5c0bf1ee2d21aabc22fc193ed1e85886abdeb6944ead2082984e3b7724633f58c76185a0e7814cf6745bb5ca89b88abdf102a0bcf9fb0c1b2eed6553ee3a0eab3b9bcebf70187adf95f5a2564a6d081679f6988f7e0fffda8c75027eec9fd9177d245704a2f1348f6aa2141357964efb85de30e3be48ba72b34f46a53c393aacb648b728316adf6edc89a128dac296e8022e3457cda709d3f4ee82e744910890ba79420b32572d19d21d965bb5f7be6713d2aff1c6a47589d00d173a4f7f75c191247fb6eea511c85f1f2ca3389aeec86fa05b79a53eadd44f6928fd6492e18d1de7614e68ab21dfd71508786e535de92de39236ea42fbaa81ae85784b5c24c89f6bee084493fc227b3c9f620efa3b7c13b48c1bd1bc20f5972f2a94a68b6717e2f0524741ee7d55a39eee078436f0af9a982a0953bd1cd57849007d08bfbf1dfe814c8448539baa1c5b8ced883da94c7b946cb9e205c83941172aa1bc8e710fe6efec7ef16639408348485e6890ea289fabb6a872c634aa21059ca2bd3cf3deae4bfada536780a9f11ef2a84a17bc2e5ffefc8b7f1aa708f2d89e496578b78381a82916a7a2b36413b76171af62915c76d20d2ec695f0d7dd0ae6a5a890e1070500a62f4267321900efe7073474e030a3ab8086275b552ac0ca8e94f438307b354e39005cddc582c5da0f3753b37643cc13bdff1efef66055f16e871e8ad26a502e5e7509d05f98f32f3f0b5d563c498e860b5b931e36ccd1e7d7f5a0904288aecd9c6a5bbda28d43169cb7967d69d124f5cf6fd1574ba9a9eabd5b8b0b27bb48ac5659c2734e21eb8cd71ba8c7fd8ff7b7cb65d7d127ff0f53fc25d2f3eb05586d7299eb8cb1eb255a460c9a05151ceead842b1c21e8c19ebecf6cb1a7f9a19a254c9e39bfbcb905d6d0265b37fae4d15ef8e4c56f82bf976662e0d258c2e7ba2ebe6ca3e9ea3d0ea52ee8b67d8f318a2a27a716977d4fe916264e11788a1e80dde6a0100b156b89f11e4e3bf78c66d535e46477fcd9f568578523406f21a6796ac3c1e0f6ba31a471f359579b103299799606a766a1ca7148c153d85c5420bd1e1ee0564c08c88dec5d248eccf1f63cf01015197f6a3fa61a598e8ad327cd6dfe3cf9f0b4e685dc0e9b10908f68b2290a3741a90991e1f67c04015a780a87c89644280b032722ceb2531bbed8e4459edad3409cbe1ddfd071052277cd908cebe5c00009c3f3a33b9ec60b200e700eb9d48954461c82591a5ffeec87f12d081d30e4c61999879c607cc653a3b2478439b42ea05b469534f20653d8d61a55e9761dd331386109af0b2453eb2e8ba54e7c16e890727c133b442956db67278d661166a9290d4fe8008821649eeefba119ba3776597654a546611693db7b3fc63aa2d01047dbf8a6db146b0fcf3afc8d819575f642dc87ffbd0a42bb68c20f1ea1dac2804db95adab571d2ca60c679a8db02ba3cd5765713e5c3748205b56fd3f6f6e32f628c5b986b1f9d218df36b03db78ee74544555dfa7506a939f48c10a9df0620a841f7e9c67cbf5b367c4c0bbd69b76956326f1737d143d49619691433473fd5fed20fc5710ff0f7c6288a4071f02f741532e3080d59b039466ab62972ecc563ee511e8a9d56fa7179569f1d2420ddc90c62d654331771dd8515ecb6d9030901de113996870c1d921fca0d39a5da13183ab12506008f3074a26ef1990fdabfea0d42d346748959a35e0e07c447c03a591c54ae61186cf579e2636e89d3b3f06c5a019330dbb2d313cff036624a789abb4d5a76ea83e31774be2280de447a053e29a2cb6c4fe62292b61e6513098cc0269a6d526aab3dba820ebe9408839a8f96a5cd09bb29dd6e1b2bdfd31d6b93ceb47976f6650f0c294b061fd25118d364cb0654b0f87741953c3fb2a590394179678b1fab1390db08d599bc418f168f4aa56ebbf3fc9f1597151c83e989770349402695c8b2bfd2b488e0735a071650d4fe1420804c66ce4261424f60424c0390397e7eea3ca904173b8620d74799ae84204abc9548801f3ca29973a33110c6b13d0aaaf316948e1d6fb99ca3150864361418d7f05f39ba7b9026a356f185ad23542e6f0af8d71989486bde21d7451acf86bab6ed27271f395ab31e88e6cd6ff6da710e6ae680fc1711a1319694f9ac56cdcfd46a10db35295627a7dcd4c605e98e455164ff21927b904929973b7520f752b76e6cd3732e540371fd78a5a42611f42d0b185d213a47abd2dfdc37c79894d3323900631655bc263fb5e8aa6b6f32c9f8ced4acc81c6d4bc95fa48faee5697d4221cc576bae07afe10057cf40423318fcd32c3158d65eb770728028f8e5354069ec4f4f63b9a4cd68172397bfa5371a43697e7bc26d777c55ce5f0a225324397a7567b0b969604db7d32c95b05017db53bad3cc1ac3f3d3bc0287d7794f9baf0f1a7064258586e39743dc150637d84c47fce0feb9e9f3c1fbddcdc9de4a1011a54cf9a74fd28b029f0bfb45f723e4dbe9910a203e98fdbe6fa0d562ead671d5ecaba5f2f29d8e37dcae6b3b6e0cc4917ef4da6b9f0baacbc51840ebaf85f0f7d11897d8887a35d99f50eedefcb07913a665d0843f68a73767df874c5995936bf5c03bf40ff54e179c094127af6254e22da82484472eca7a48bf932c2470ad5c6bc43b2392ebae24692e73ae1c6e0c03eb958b78952531156d7509da69cfd9d8e5068e560fc7f28a974490ecbbc79aafb65f525e5b8d04aaed3b683c6b23703d6ff361f5bd57a9b62ffa5e994b9bbaaf582688f78bc13ef909f9634324fbf6859646b673e2b1d80f56a58bffdac390c245d8cc3036da0e6656f24af365da36ec6cc74847ccfb4a36115c1f19cc6e848f909089a2ac660d1223765295f37c442f987ed98b3f7b3b963213d2e6289b147c80dfc239800f0d48d37fc4739fa521dd686f5413261a9cd06f1c09c598d3d91e66db106ef212c3a1b8c02834f9cc3634ca938df7a478c25b55f0c654bc4f70057a60a7bbf02706f048329d3ad3052f23b698b8ffb97085f121249359320efff2add0c35db60e7cf74e0169e9cf13c0c3725768fea6e928a213e61bae007bc307e4fe63b0905772c469747b5884509acce8b7c368b417b44460d6e5d3ab9dec690c43a029122ba37216d48a0d7eb519fcd0257df3a693711ffa60c8a3855713f359c3780f4a40694982d7ce84e40f03faaf942730e9daa8777d7a8909999df47955ea430bb443789f047066426df0a7fe04f741420b0db3c5e54f0b03e60b5897e96c4bf34f324ef899b9ea4b36c44b2496f043e7be07f3a58bb094caab78f168d9486d0dfd1adc97ae3ce5e710a9e47e6b5f8360417d1462acb4062057dda820c5d4b4cc90a13732fc2b52b12b2d255cb01f529a597e5ee29eb36e0c479896ae189103580a633c4a09621043df2205d00b45a84cd8ebe81c483cdf66994827672942dba7674e2090829a33744394e7b9c81ff273a5df6e0eceaa9b2abad932c8740d3b0b977e91fc03f4020a4459fa582d48673215c14f0da08a82a67b8bb804915c9d1218d7a9de94033a32725f30f9f9e81987d63cca018d12c3894b7fbeb95901f382bdee8595b2e6b7f42d0ada636db6e000625dfaa79a6309b2dd279fff258cefcc044a06bdbe489230ffdd90efdda0df2da52742a59e24b8c50ec68790fc62207ac2cd6d4997d6a4faa5e2645e30228f39094750eef3ce56b1569438750ff50130c64e8f37d8ff49fa9d9c0d409e9f60f347cb386946ce117b4c40a9a53c7359d3a966c7326263270eb16876ff1e6da42a73a634ac661327a916b8416bac1bb49a5e9b8da0dc7170d833d07df1fab73a7f202aaa768049efefc4b399611a6fdbe29aaccfb6416be56f30e9fce9602d0cf57c1c70b321974e3518434ca828f1a51d4191b99e0e0a7451ba3b4f2b5cf95b44fc417abcc5b0b13bae366614f75c98aade49013475086a48d9e64ba7701d6aa7997132e56b97b962921a73e7a70de0f32c06d0117b24708867f7247024a28096607669001e87ec188812d0eab256b0296e0f70c47c6ca89dd511c1362523930a546a44ebc421e03e979a5bba49732d437d82e7555e5a10c4a1fd933c6c50380d3d7a147586e4033005f533f7ade992af2696c4d122311a473f97644095805a18da9d0b52e2f72dd386a3d14f478c7ba144503ee2e94bfb3853fb37adca2f7bf51872fd3a54e392c8b6dbf142c6ae83ca21575ca6a1d3fa1b1de90f4a816d093561f88f6e6aaf782d08c798147a64851759b8667a1531da2d571e1457edd13d7d0929ae02daed710e9ae1a2796e38a1c2921dd2fd57f825f4cf95f02e34e9cf3e894d57cfde113224210caec0b4ab2901262b6e36d96ea1febc8c73a12f0e40f6b47b13709cfecbec1420fcb5cdc2b5986d0a54fe0459ba5f77b90bc9d2cbdd86663910fed740f6f41d94cb1b3818a550f8da00f6d17b150e4872fec8712a7490a1782a82b9680ceeeb41fdb8c95c1d3d574437d3bd1915020d96e411978c1738d7683b62f5dbf6280dc72860a2b6fa1de548e6a22987f1d3b5eb010172d7c684e9943e32b140fc51cd8c7046a2cc604244a7aad63a9edd2f64c31c8fe127a2cb965ac0a374b24e475bc78f4cbdda40b39b282af1d192bd2a967fc6b7811f8ef8be8d65cd8d3ddbf1e69989c073a16c9c1896ca8a734bc6a4df17d39d30a8b8c1ec3d93534747e8e9a769f60a9e10cc69ea5903993bc481630e1df50eedc1a1a51d96de8fcd27a3ba4108349c92d52b81886d19217b10508527634c58af2806b2dae8c71aaeb6946896decd03266a75bccf676d86064188d0da683b3b38a3c03fc22bbf6c8d8bdea829bc5aa5d5521da096718aa6a629f174e510b1215b49f27db3c145555baa329d15de80976748b68648482cb8cf9e79cc3acefe4d8436c04e882934abc30ac5886d10a54b759f1b4407d1ea9d8cc1049e4f60c9dc96dbda9dbc581d31bb3dcfe32598bac97974d6c8625a2be3d48ef98edfbf0725cc18f21b50a67b0de8ff6544cd67ce0d43fcc1d248"})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x301c03, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000400)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r2, @ANYBLOB="009ced950b3b562266696765320000ed375bda81d59a1b1feb1c88969c78164189ff20fe1396aab8914d051ab4deb3872946118b84c811f852d74cc81722c40aaa631d2bb6f0ea409de25dd7a7499d7f96ac7fc2ea84975787703584ed60f64dd7e771634a01efebda44c1578d2239b41ba16100000000000000803d7bd93f1a057fa1ae3e2df9bd982a022eb663af5e776b1ccc"])
openat(r3, &(0x7f0000000300)='./file0\x00', 0x200400, 0x100)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(0xffffffffffffffff, 0x0, 0x4)
symlinkat(&(0x7f0000000000)='./file0\x00', r4, &(0x7f00000001c0)='./file0\x00')
r5 = openat(r4, &(0x7f0000000340)='./file1\x00', 0x4400, 0x24)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r6, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x802c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x4}, 0x18843, 0x0, 0x0, 0x0, 0x2, 0x5}, 0x0, 0x10000000000, r5, 0xb)
sendfile(r6, r1, 0x0, 0xfffffdef)

[  126.793598] loop2: detected capacity change from 0 to 40
[  126.837208] syz-executor.2: attempt to access beyond end of device
[  126.837208] loop2: rw=2049, sector=40, nr_sectors = 4 limit=40
[  126.838250] Buffer I/O error on dev loop2, logical block 10, lost async page write
04:51:56 executing program 2:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x100000, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005e2c0)={0x0, 0x0, "d1f14792bb10750ea9e86f2109c85a306eac969c225abcf9542493077458dc50dd5546ef22c70a8bd6b5a45e86c81b77924f226ab6e09915cbe829241e71703056bc95c7386df10315c79284a94c638e15bb1a293b37fce9ccef990b6b10fb9c04f3786fecc4e7d36ad34a037174328cfbd507df8590cdb8df705efb63f6d543b899d97ca79e8c4414fd5da623d28f9252c13428af0998f63ad30f909619b043f0a7aa899a6d92a2a5e61460066587029f38eff5aeafc3e8b67b97ebf6c447380bd9fd03521069fdc0d128d6041c0c873b2d58b8881c4a4c74e260693309049d39b69a09df12caf88245f7f4dc058c0fb2295afbe717134ff663413f7d075e5e", "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"})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x301c03, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000400)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r2, @ANYBLOB="009ced950b3b562266696765320000ed375bda81d59a1b1feb1c88969c78164189ff20fe1396aab8914d051ab4deb3872946118b84c811f852d74cc81722c40aaa631d2bb6f0ea409de25dd7a7499d7f96ac7fc2ea84975787703584ed60f64dd7e771634a01efebda44c1578d2239b41ba16100000000000000803d7bd93f1a057fa1ae3e2df9bd982a022eb663af5e776b1ccc"])
openat(r3, &(0x7f0000000300)='./file0\x00', 0x200400, 0x100)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(0xffffffffffffffff, 0x0, 0x4)
symlinkat(&(0x7f0000000000)='./file0\x00', r4, &(0x7f00000001c0)='./file0\x00')
r5 = openat(r4, &(0x7f0000000340)='./file1\x00', 0x4400, 0x24)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r6, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x802c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x4}, 0x18843, 0x0, 0x0, 0x0, 0x2, 0x5}, 0x0, 0x10000000000, r5, 0xb)
sendfile(r6, r1, 0x0, 0xfffffdef)

04:51:56 executing program 3:
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, @perf_bp={0x0, 0x4}, 0x80, 0x3, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x40010, 0xffffffffffffffff, 0x8000000)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x110, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x10}}, 0xfa0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)=<r2=>0x0)
clone3(&(0x7f0000000440)={0x80000800, &(0x7f0000000000), 0x0, &(0x7f0000000100)=<r3=>0x0, {0x37}, &(0x7f0000000180)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000380)=[r2, 0x0, r2], 0x3}, 0x58)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x4c6182, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f00000000c0), 0x12)
fcntl$setsig(r5, 0xa, 0x40)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000000c0), 0x12)
syz_io_uring_setup(0x7c4, &(0x7f0000000200)={0x0, 0xf86c, 0x10, 0x0, 0xe7, 0x0, r6}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000340))
ioctl$FAT_IOCTL_GET_VOLUME_ID(r4, 0x80047213, &(0x7f00000004c0))
epoll_create(0x4)
kcmp$KCMP_EPOLL_TFD(0x0, r3, 0x7, 0xffffffffffffffff, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff, 0x1})
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  126.972619] loop2: detected capacity change from 0 to 40
04:51:56 executing program 6:
r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000", 0x15}, {0x0}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000000)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f00000000c0), 0x12)
openat(r1, &(0x7f0000000140)='./file1\x00', 0x458c00, 0x80)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1, 0x40}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x6, 0x0, 0x0, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r3, 0x4, &(0x7f00000001c0)='vfat\x00', &(0x7f0000000300)='./cgroup/cgroup.procs\x00', r0)

[  127.136456] syz-executor.2: attempt to access beyond end of device
[  127.136456] loop2: rw=2049, sector=40, nr_sectors = 4 limit=40
[  127.137506] Buffer I/O error on dev loop2, logical block 10, lost async page write
[  127.162028] FAT-fs (loop6): bogus number of reserved sectors
[  127.162550] FAT-fs (loop6): Can't find a valid FAT filesystem
04:51:56 executing program 2:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x100000, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005e2c0)={0x0, 0x0, "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", "950b8bbc34bf9b44a5f783e82416e13437591aaea9e99d56d9fa2b62c996fb937ef8e5bb361a4eb72e3b338b3d456d93c2993fc14a84c9df4fca9a60ad24fe51c5a3fc272feb82e0053d62793dcbb53a9aac338c90f5cdae9589decd38f50a09d93770fe9fffa2570bae21a6c16607cb009087b6f6850ff959c7cde98a4e32896d4e19a961e665ed3624ef5c69dc0964b4e762a597e962c8f0c77006ae2c2e61c9d589d8075d51ad024b5e6af6d9ad992d0bf7c9b663e91485d32a9e7ee3febf65c5d7f7d8cf1d6ee7a1d12df1d9a056d2c44371e7d7376e0baa911ce2fb91f811506149e1b2bcf3dc0e9c94a294388d4636547a098e57bad5c0bf1ee2d21aabc22fc193ed1e85886abdeb6944ead2082984e3b7724633f58c76185a0e7814cf6745bb5ca89b88abdf102a0bcf9fb0c1b2eed6553ee3a0eab3b9bcebf70187adf95f5a2564a6d081679f6988f7e0fffda8c75027eec9fd9177d245704a2f1348f6aa2141357964efb85de30e3be48ba72b34f46a53c393aacb648b728316adf6edc89a128dac296e8022e3457cda709d3f4ee82e744910890ba79420b32572d19d21d965bb5f7be6713d2aff1c6a47589d00d173a4f7f75c191247fb6eea511c85f1f2ca3389aeec86fa05b79a53eadd44f6928fd6492e18d1de7614e68ab21dfd71508786e535de92de39236ea42fbaa81ae85784b5c24c89f6bee084493fc227b3c9f620efa3b7c13b48c1bd1bc20f5972f2a94a68b6717e2f0524741ee7d55a39eee078436f0af9a982a0953bd1cd57849007d08bfbf1dfe814c8448539baa1c5b8ced883da94c7b946cb9e205c83941172aa1bc8e710fe6efec7ef16639408348485e6890ea289fabb6a872c634aa21059ca2bd3cf3deae4bfada536780a9f11ef2a84a17bc2e5ffefc8b7f1aa708f2d89e496578b78381a82916a7a2b36413b76171af62915c76d20d2ec695f0d7dd0ae6a5a890e1070500a62f4267321900efe7073474e030a3ab8086275b552ac0ca8e94f438307b354e39005cddc582c5da0f3753b37643cc13bdff1efef66055f16e871e8ad26a502e5e7509d05f98f32f3f0b5d563c498e860b5b931e36ccd1e7d7f5a0904288aecd9c6a5bbda28d43169cb7967d69d124f5cf6fd1574ba9a9eabd5b8b0b27bb48ac5659c2734e21eb8cd71ba8c7fd8ff7b7cb65d7d127ff0f53fc25d2f3eb05586d7299eb8cb1eb255a460c9a05151ceead842b1c21e8c19ebecf6cb1a7f9a19a254c9e39bfbcb905d6d0265b37fae4d15ef8e4c56f82bf976662e0d258c2e7ba2ebe6ca3e9ea3d0ea52ee8b67d8f318a2a27a716977d4fe916264e11788a1e80dde6a0100b156b89f11e4e3bf78c66d535e46477fcd9f568578523406f21a6796ac3c1e0f6ba31a471f359579b103299799606a766a1ca7148c153d85c5420bd1e1ee0564c08c88dec5d248eccf1f63cf01015197f6a3fa61a598e8ad327cd6dfe3cf9f0b4e685dc0e9b10908f68b2290a3741a90991e1f67c04015a780a87c89644280b032722ceb2531bbed8e4459edad3409cbe1ddfd071052277cd908cebe5c00009c3f3a33b9ec60b200e700eb9d48954461c82591a5ffeec87f12d081d30e4c61999879c607cc653a3b2478439b42ea05b469534f20653d8d61a55e9761dd331386109af0b2453eb2e8ba54e7c16e890727c133b442956db67278d661166a9290d4fe8008821649eeefba119ba3776597654a546611693db7b3fc63aa2d01047dbf8a6db146b0fcf3afc8d819575f642dc87ffbd0a42bb68c20f1ea1dac2804db95adab571d2ca60c679a8db02ba3cd5765713e5c3748205b56fd3f6f6e32f628c5b986b1f9d218df36b03db78ee74544555dfa7506a939f48c10a9df0620a841f7e9c67cbf5b367c4c0bbd69b76956326f1737d143d49619691433473fd5fed20fc5710ff0f7c6288a4071f02f741532e3080d59b039466ab62972ecc563ee511e8a9d56fa7179569f1d2420ddc90c62d654331771dd8515ecb6d9030901de113996870c1d921fca0d39a5da13183ab12506008f3074a26ef1990fdabfea0d42d346748959a35e0e07c447c03a591c54ae61186cf579e2636e89d3b3f06c5a019330dbb2d313cff036624a789abb4d5a76ea83e31774be2280de447a053e29a2cb6c4fe62292b61e6513098cc0269a6d526aab3dba820ebe9408839a8f96a5cd09bb29dd6e1b2bdfd31d6b93ceb47976f6650f0c294b061fd25118d364cb0654b0f87741953c3fb2a590394179678b1fab1390db08d599bc418f168f4aa56ebbf3fc9f1597151c83e989770349402695c8b2bfd2b488e0735a071650d4fe1420804c66ce4261424f60424c0390397e7eea3ca904173b8620d74799ae84204abc9548801f3ca29973a33110c6b13d0aaaf316948e1d6fb99ca3150864361418d7f05f39ba7b9026a356f185ad23542e6f0af8d71989486bde21d7451acf86bab6ed27271f395ab31e88e6cd6ff6da710e6ae680fc1711a1319694f9ac56cdcfd46a10db35295627a7dcd4c605e98e455164ff21927b904929973b7520f752b76e6cd3732e540371fd78a5a42611f42d0b185d213a47abd2dfdc37c79894d3323900631655bc263fb5e8aa6b6f32c9f8ced4acc81c6d4bc95fa48faee5697d4221cc576bae07afe10057cf40423318fcd32c3158d65eb770728028f8e5354069ec4f4f63b9a4cd68172397bfa5371a43697e7bc26d777c55ce5f0a225324397a7567b0b969604db7d32c95b05017db53bad3cc1ac3f3d3bc0287d7794f9baf0f1a7064258586e39743dc150637d84c47fce0feb9e9f3c1fbddcdc9de4a1011a54cf9a74fd28b029f0bfb45f723e4dbe9910a203e98fdbe6fa0d562ead671d5ecaba5f2f29d8e37dcae6b3b6e0cc4917ef4da6b9f0baacbc51840ebaf85f0f7d11897d8887a35d99f50eedefcb07913a665d0843f68a73767df874c5995936bf5c03bf40ff54e179c094127af6254e22da82484472eca7a48bf932c2470ad5c6bc43b2392ebae24692e73ae1c6e0c03eb958b78952531156d7509da69cfd9d8e5068e560fc7f28a974490ecbbc79aafb65f525e5b8d04aaed3b683c6b23703d6ff361f5bd57a9b62ffa5e994b9bbaaf582688f78bc13ef909f9634324fbf6859646b673e2b1d80f56a58bffdac390c245d8cc3036da0e6656f24af365da36ec6cc74847ccfb4a36115c1f19cc6e848f909089a2ac660d1223765295f37c442f987ed98b3f7b3b963213d2e6289b147c80dfc239800f0d48d37fc4739fa521dd686f5413261a9cd06f1c09c598d3d91e66db106ef212c3a1b8c02834f9cc3634ca938df7a478c25b55f0c654bc4f70057a60a7bbf02706f048329d3ad3052f23b698b8ffb97085f121249359320efff2add0c35db60e7cf74e0169e9cf13c0c3725768fea6e928a213e61bae007bc307e4fe63b0905772c469747b5884509acce8b7c368b417b44460d6e5d3ab9dec690c43a029122ba37216d48a0d7eb519fcd0257df3a693711ffa60c8a3855713f359c3780f4a40694982d7ce84e40f03faaf942730e9daa8777d7a8909999df47955ea430bb443789f047066426df0a7fe04f741420b0db3c5e54f0b03e60b5897e96c4bf34f324ef899b9ea4b36c44b2496f043e7be07f3a58bb094caab78f168d9486d0dfd1adc97ae3ce5e710a9e47e6b5f8360417d1462acb4062057dda820c5d4b4cc90a13732fc2b52b12b2d255cb01f529a597e5ee29eb36e0c479896ae189103580a633c4a09621043df2205d00b45a84cd8ebe81c483cdf66994827672942dba7674e2090829a33744394e7b9c81ff273a5df6e0eceaa9b2abad932c8740d3b0b977e91fc03f4020a4459fa582d48673215c14f0da08a82a67b8bb804915c9d1218d7a9de94033a32725f30f9f9e81987d63cca018d12c3894b7fbeb95901f382bdee8595b2e6b7f42d0ada636db6e000625dfaa79a6309b2dd279fff258cefcc044a06bdbe489230ffdd90efdda0df2da52742a59e24b8c50ec68790fc62207ac2cd6d4997d6a4faa5e2645e30228f39094750eef3ce56b1569438750ff50130c64e8f37d8ff49fa9d9c0d409e9f60f347cb386946ce117b4c40a9a53c7359d3a966c7326263270eb16876ff1e6da42a73a634ac661327a916b8416bac1bb49a5e9b8da0dc7170d833d07df1fab73a7f202aaa768049efefc4b399611a6fdbe29aaccfb6416be56f30e9fce9602d0cf57c1c70b321974e3518434ca828f1a51d4191b99e0e0a7451ba3b4f2b5cf95b44fc417abcc5b0b13bae366614f75c98aade49013475086a48d9e64ba7701d6aa7997132e56b97b962921a73e7a70de0f32c06d0117b24708867f7247024a28096607669001e87ec188812d0eab256b0296e0f70c47c6ca89dd511c1362523930a546a44ebc421e03e979a5bba49732d437d82e7555e5a10c4a1fd933c6c50380d3d7a147586e4033005f533f7ade992af2696c4d122311a473f97644095805a18da9d0b52e2f72dd386a3d14f478c7ba144503ee2e94bfb3853fb37adca2f7bf51872fd3a54e392c8b6dbf142c6ae83ca21575ca6a1d3fa1b1de90f4a816d093561f88f6e6aaf782d08c798147a64851759b8667a1531da2d571e1457edd13d7d0929ae02daed710e9ae1a2796e38a1c2921dd2fd57f825f4cf95f02e34e9cf3e894d57cfde113224210caec0b4ab2901262b6e36d96ea1febc8c73a12f0e40f6b47b13709cfecbec1420fcb5cdc2b5986d0a54fe0459ba5f77b90bc9d2cbdd86663910fed740f6f41d94cb1b3818a550f8da00f6d17b150e4872fec8712a7490a1782a82b9680ceeeb41fdb8c95c1d3d574437d3bd1915020d96e411978c1738d7683b62f5dbf6280dc72860a2b6fa1de548e6a22987f1d3b5eb010172d7c684e9943e32b140fc51cd8c7046a2cc604244a7aad63a9edd2f64c31c8fe127a2cb965ac0a374b24e475bc78f4cbdda40b39b282af1d192bd2a967fc6b7811f8ef8be8d65cd8d3ddbf1e69989c073a16c9c1896ca8a734bc6a4df17d39d30a8b8c1ec3d93534747e8e9a769f60a9e10cc69ea5903993bc481630e1df50eedc1a1a51d96de8fcd27a3ba4108349c92d52b81886d19217b10508527634c58af2806b2dae8c71aaeb6946896decd03266a75bccf676d86064188d0da683b3b38a3c03fc22bbf6c8d8bdea829bc5aa5d5521da096718aa6a629f174e510b1215b49f27db3c145555baa329d15de80976748b68648482cb8cf9e79cc3acefe4d8436c04e882934abc30ac5886d10a54b759f1b4407d1ea9d8cc1049e4f60c9dc96dbda9dbc581d31bb3dcfe32598bac97974d6c8625a2be3d48ef98edfbf0725cc18f21b50a67b0de8ff6544cd67ce0d43fcc1d248"})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x301c03, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000400)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r3=>r2, @ANYBLOB="009ced950b3b562266696765320000ed375bda81d59a1b1feb1c88969c78164189ff20fe1396aab8914d051ab4deb3872946118b84c811f852d74cc81722c40aaa631d2bb6f0ea409de25dd7a7499d7f96ac7fc2ea84975787703584ed60f64dd7e771634a01efebda44c1578d2239b41ba16100000000000000803d7bd93f1a057fa1ae3e2df9bd982a022eb663af5e776b1ccc"])
openat(r3, &(0x7f0000000300)='./file0\x00', 0x200400, 0x100)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(0xffffffffffffffff, 0x0, 0x4)
symlinkat(&(0x7f0000000000)='./file0\x00', r4, &(0x7f00000001c0)='./file0\x00')
r5 = openat(r4, &(0x7f0000000340)='./file1\x00', 0x4400, 0x24)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r6, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x802c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x4}, 0x18843, 0x0, 0x0, 0x0, 0x2, 0x5}, 0x0, 0x10000000000, r5, 0xb)
sendfile(r6, r1, 0x0, 0xfffffdef)

[  127.271213] loop2: detected capacity change from 0 to 40
[  127.277470] FAT-fs (loop6): Unrecognized mount option "./file1" or missing value
[  127.299130] loop1: detected capacity change from 0 to 264192
04:51:56 executing program 5:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000400)={'ip6_vti0\x00', &(0x7f0000000380)={'ip6_vti0\x00', <r1=>0x0, 0x29, 0x4, 0x6, 0x1, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x40, 0x20, 0x1000, 0xffffffff}})
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000440)={@dev={0xfe, 0x80, '\x00', 0x33}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x10001, 0x5, 0x200, 0x0, 0x9e, 0x1000000, r1})
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000000)={@remote, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x6395, 0x0, 0x0, 0x0, 0x5000004})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, @in_args={0x4}}, './file0\x00'})
ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000140)={@mcast1, @mcast1, @remote, 0x8, 0x2, 0x400, 0x100, 0x3, 0x100000})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x2100c, 0x0)

04:51:56 executing program 3:
perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x3, @perf_bp={0x0, 0x4}, 0x80, 0x3, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x40010, 0xffffffffffffffff, 0x8000000)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x110, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd_index=0x6, 0x0, 0x0, 0x0, {0x10}}, 0xfa0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)=<r2=>0x0)
clone3(&(0x7f0000000440)={0x80000800, &(0x7f0000000000), 0x0, &(0x7f0000000100)=<r3=>0x0, {0x37}, &(0x7f0000000180)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000380)=[r2, 0x0, r2], 0x3}, 0x58)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x4c6182, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r5, &(0x7f00000000c0), 0x12)
fcntl$setsig(r5, 0xa, 0x40)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000000c0), 0x12)
syz_io_uring_setup(0x7c4, &(0x7f0000000200)={0x0, 0xf86c, 0x10, 0x0, 0xe7, 0x0, r6}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000140), &(0x7f0000000340))
ioctl$FAT_IOCTL_GET_VOLUME_ID(r4, 0x80047213, &(0x7f00000004c0))
epoll_create(0x4)
kcmp$KCMP_EPOLL_TFD(0x0, r3, 0x7, 0xffffffffffffffff, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff, 0x1})
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  127.354461] syz-executor.2: attempt to access beyond end of device
[  127.354461] loop2: rw=2049, sector=40, nr_sectors = 4 limit=40
[  127.355407] Buffer I/O error on dev loop2, logical block 10, lost async page write
[  127.406276] loop5: detected capacity change from 0 to 256
[  127.440962] loop5: detected capacity change from 0 to 256
[  127.518326] loop1: detected capacity change from 0 to 264192

VM DIAGNOSIS:
04:51:55  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff8880189c7690
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f57bd544700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2da25000 CR3=000000003d9bc000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 667265700a3a3320 6d6172676f727020
YMM02=0000000000000000 0000000000000000 307b3d2930383030 3030303030306637
YMM03=0000000000000000 0000000000000000 30202c307830202c 307830202c307830
YMM04=0000000000000000 0000000000000000 2c307830202c3078 30202c307830202c
YMM05=0000000000000000 0000000000000000 7830202c30783020 2c307830202c3078
YMM06=0000000000000000 0000000000000000 202c307830202c30 7830202c30783020
YMM07=0000000000000000 0000000000000000 307830202c307830 202c307830202c30
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000001 RBX=ffff88801750fce0 RCX=0000000000000000 RDX=0000000080000000
RSI=ffff88801750fcb0 RDI=0000000000000001 RBP=ffff888017508000 RSP=ffff88801750f890
R8 =ffffffff85edf502 R9 =ffffffff85edf506 R10=ffffed1002ea1f2f R11=ffff88801750f950
R12=ffff88801750f951 R13=ffff88801750f970 R14=ffff88801750f910 R15=0000000000000007
RIP=ffffffff8111afd2 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f83f092f090 CR3=000000000f33a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 ff00ffffffffffff 0000000000000000
YMM01=0000000000000000 0000000000000000 0100010001000000 ffffffffffffffff
YMM02=0000000000000000 0000000000000000 0500050005000000 455441564952505f
YMM03=0000000000000000 0000000000000000 0000000000000000 000000564952505f
YMM04=0000000000000000 0000000000000000 0003000500050005 0005000000455441
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000