
Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:62516' (ECDSA) to the list of known hosts.
2022/10/04 06:19:47 fuzzer started
2022/10/04 06:19:47 dialing manager at localhost:35095
syzkaller login: [   37.434137] cgroup: Unknown subsys name 'net'
[   37.553291] cgroup: Unknown subsys name 'rlimit'
2022/10/04 06:20:01 syscalls: 2215
2022/10/04 06:20:01 code coverage: enabled
2022/10/04 06:20:01 comparison tracing: enabled
2022/10/04 06:20:01 extra coverage: enabled
2022/10/04 06:20:01 setuid sandbox: enabled
2022/10/04 06:20:01 namespace sandbox: enabled
2022/10/04 06:20:01 Android sandbox: enabled
2022/10/04 06:20:01 fault injection: enabled
2022/10/04 06:20:01 leak checking: enabled
2022/10/04 06:20:01 net packet injection: enabled
2022/10/04 06:20:01 net device setup: enabled
2022/10/04 06:20:01 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/04 06:20:01 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/04 06:20:01 USB emulation: enabled
2022/10/04 06:20:01 hci packet injection: enabled
2022/10/04 06:20:01 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/04 06:20:01 802.15.4 emulation: enabled
2022/10/04 06:20:01 fetching corpus: 50, signal 27387/29210 (executing program)
2022/10/04 06:20:01 fetching corpus: 100, signal 36368/39885 (executing program)
2022/10/04 06:20:02 fetching corpus: 150, signal 44382/49518 (executing program)
2022/10/04 06:20:02 fetching corpus: 200, signal 53687/60299 (executing program)
2022/10/04 06:20:02 fetching corpus: 250, signal 57076/65222 (executing program)
2022/10/04 06:20:02 fetching corpus: 300, signal 61611/71188 (executing program)
2022/10/04 06:20:02 fetching corpus: 350, signal 64775/75877 (executing program)
2022/10/04 06:20:02 fetching corpus: 400, signal 71049/83452 (executing program)
2022/10/04 06:20:02 fetching corpus: 450, signal 76758/90358 (executing program)
2022/10/04 06:20:02 fetching corpus: 500, signal 83015/97676 (executing program)
2022/10/04 06:20:03 fetching corpus: 550, signal 88856/104629 (executing program)
2022/10/04 06:20:03 fetching corpus: 600, signal 90892/107931 (executing program)
2022/10/04 06:20:03 fetching corpus: 650, signal 93866/112039 (executing program)
2022/10/04 06:20:03 fetching corpus: 700, signal 95909/115318 (executing program)
2022/10/04 06:20:03 fetching corpus: 750, signal 97934/118534 (executing program)
2022/10/04 06:20:03 fetching corpus: 800, signal 99119/120993 (executing program)
2022/10/04 06:20:03 fetching corpus: 850, signal 100184/123335 (executing program)
2022/10/04 06:20:03 fetching corpus: 900, signal 102693/126915 (executing program)
2022/10/04 06:20:03 fetching corpus: 950, signal 105055/130395 (executing program)
2022/10/04 06:20:04 fetching corpus: 1000, signal 106525/132996 (executing program)
2022/10/04 06:20:04 fetching corpus: 1050, signal 108336/135931 (executing program)
2022/10/04 06:20:04 fetching corpus: 1100, signal 110516/139116 (executing program)
2022/10/04 06:20:04 fetching corpus: 1150, signal 111991/141700 (executing program)
2022/10/04 06:20:04 fetching corpus: 1200, signal 113571/144329 (executing program)
2022/10/04 06:20:04 fetching corpus: 1250, signal 116243/147840 (executing program)
2022/10/04 06:20:04 fetching corpus: 1300, signal 117814/150450 (executing program)
2022/10/04 06:20:04 fetching corpus: 1350, signal 119103/152808 (executing program)
2022/10/04 06:20:04 fetching corpus: 1400, signal 120179/154954 (executing program)
2022/10/04 06:20:05 fetching corpus: 1450, signal 121337/157125 (executing program)
2022/10/04 06:20:05 fetching corpus: 1500, signal 122543/159320 (executing program)
2022/10/04 06:20:05 fetching corpus: 1550, signal 123147/161058 (executing program)
2022/10/04 06:20:05 fetching corpus: 1600, signal 124677/163506 (executing program)
2022/10/04 06:20:05 fetching corpus: 1650, signal 125884/165634 (executing program)
2022/10/04 06:20:05 fetching corpus: 1700, signal 127493/168107 (executing program)
2022/10/04 06:20:05 fetching corpus: 1750, signal 128765/170289 (executing program)
2022/10/04 06:20:05 fetching corpus: 1800, signal 129890/172340 (executing program)
2022/10/04 06:20:06 fetching corpus: 1850, signal 131332/174625 (executing program)
2022/10/04 06:20:06 fetching corpus: 1900, signal 132777/176916 (executing program)
2022/10/04 06:20:06 fetching corpus: 1950, signal 133784/178805 (executing program)
2022/10/04 06:20:06 fetching corpus: 2000, signal 135062/180928 (executing program)
2022/10/04 06:20:06 fetching corpus: 2050, signal 136056/182791 (executing program)
2022/10/04 06:20:06 fetching corpus: 2100, signal 138064/185384 (executing program)
2022/10/04 06:20:06 fetching corpus: 2150, signal 139396/187478 (executing program)
2022/10/04 06:20:06 fetching corpus: 2200, signal 140339/189297 (executing program)
2022/10/04 06:20:07 fetching corpus: 2250, signal 141737/191411 (executing program)
2022/10/04 06:20:07 fetching corpus: 2300, signal 144055/194189 (executing program)
2022/10/04 06:20:07 fetching corpus: 2350, signal 145470/196336 (executing program)
2022/10/04 06:20:07 fetching corpus: 2400, signal 147208/198640 (executing program)
2022/10/04 06:20:07 fetching corpus: 2450, signal 148164/200370 (executing program)
2022/10/04 06:20:07 fetching corpus: 2500, signal 149854/202594 (executing program)
2022/10/04 06:20:07 fetching corpus: 2550, signal 151668/204879 (executing program)
2022/10/04 06:20:07 fetching corpus: 2600, signal 152583/206538 (executing program)
2022/10/04 06:20:08 fetching corpus: 2650, signal 154484/208864 (executing program)
2022/10/04 06:20:08 fetching corpus: 2700, signal 155609/210651 (executing program)
2022/10/04 06:20:08 fetching corpus: 2750, signal 157251/212748 (executing program)
2022/10/04 06:20:08 fetching corpus: 2800, signal 158361/214422 (executing program)
2022/10/04 06:20:08 fetching corpus: 2850, signal 158805/215682 (executing program)
2022/10/04 06:20:08 fetching corpus: 2900, signal 159201/216884 (executing program)
2022/10/04 06:20:08 fetching corpus: 2950, signal 159838/218245 (executing program)
2022/10/04 06:20:08 fetching corpus: 3000, signal 161163/220040 (executing program)
2022/10/04 06:20:09 fetching corpus: 3050, signal 163319/222389 (executing program)
2022/10/04 06:20:09 fetching corpus: 3100, signal 164536/224101 (executing program)
2022/10/04 06:20:09 fetching corpus: 3150, signal 165750/225810 (executing program)
2022/10/04 06:20:09 fetching corpus: 3200, signal 167050/227539 (executing program)
2022/10/04 06:20:09 fetching corpus: 3250, signal 168706/229475 (executing program)
2022/10/04 06:20:09 fetching corpus: 3300, signal 170125/231203 (executing program)
2022/10/04 06:20:09 fetching corpus: 3350, signal 170710/232460 (executing program)
2022/10/04 06:20:09 fetching corpus: 3400, signal 171633/233916 (executing program)
2022/10/04 06:20:10 fetching corpus: 3450, signal 172263/235165 (executing program)
2022/10/04 06:20:10 fetching corpus: 3500, signal 172889/236454 (executing program)
2022/10/04 06:20:10 fetching corpus: 3550, signal 174079/238024 (executing program)
2022/10/04 06:20:10 fetching corpus: 3600, signal 174605/239204 (executing program)
2022/10/04 06:20:10 fetching corpus: 3650, signal 175167/240393 (executing program)
2022/10/04 06:20:10 fetching corpus: 3700, signal 175922/241726 (executing program)
2022/10/04 06:20:10 fetching corpus: 3750, signal 176912/243176 (executing program)
2022/10/04 06:20:10 fetching corpus: 3800, signal 177694/244505 (executing program)
2022/10/04 06:20:11 fetching corpus: 3850, signal 178787/245947 (executing program)
2022/10/04 06:20:11 fetching corpus: 3900, signal 179687/247254 (executing program)
2022/10/04 06:20:11 fetching corpus: 3950, signal 180183/248374 (executing program)
2022/10/04 06:20:11 fetching corpus: 4000, signal 180915/249661 (executing program)
2022/10/04 06:20:11 fetching corpus: 4050, signal 181887/250935 (executing program)
2022/10/04 06:20:11 fetching corpus: 4100, signal 182574/252168 (executing program)
2022/10/04 06:20:11 fetching corpus: 4150, signal 183296/253419 (executing program)
2022/10/04 06:20:12 fetching corpus: 4200, signal 184050/254624 (executing program)
2022/10/04 06:20:12 fetching corpus: 4250, signal 184561/255703 (executing program)
2022/10/04 06:20:12 fetching corpus: 4300, signal 185070/256789 (executing program)
2022/10/04 06:20:12 fetching corpus: 4350, signal 186389/258277 (executing program)
2022/10/04 06:20:12 fetching corpus: 4400, signal 186827/259330 (executing program)
2022/10/04 06:20:12 fetching corpus: 4450, signal 187435/260444 (executing program)
2022/10/04 06:20:12 fetching corpus: 4500, signal 188167/261613 (executing program)
2022/10/04 06:20:12 fetching corpus: 4550, signal 188816/262684 (executing program)
2022/10/04 06:20:12 fetching corpus: 4600, signal 189772/263877 (executing program)
2022/10/04 06:20:12 fetching corpus: 4650, signal 190317/264940 (executing program)
2022/10/04 06:20:12 fetching corpus: 4700, signal 190828/265993 (executing program)
2022/10/04 06:20:13 fetching corpus: 4750, signal 191265/267024 (executing program)
2022/10/04 06:20:13 fetching corpus: 4800, signal 191981/268127 (executing program)
2022/10/04 06:20:13 fetching corpus: 4850, signal 193090/269362 (executing program)
2022/10/04 06:20:13 fetching corpus: 4900, signal 193375/270285 (executing program)
2022/10/04 06:20:13 fetching corpus: 4950, signal 193903/271246 (executing program)
2022/10/04 06:20:13 fetching corpus: 5000, signal 194761/272344 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/273176 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/273916 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/274682 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/275447 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/276261 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/277036 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/277797 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/278554 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/279300 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/280070 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/280838 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/281596 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/282385 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/283163 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/283912 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/284683 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/285466 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/286234 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/287046 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/287811 (executing program)
2022/10/04 06:20:13 fetching corpus: 5013, signal 194825/288594 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/289369 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/290153 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/290899 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/291628 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/292422 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/293215 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/293981 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/294745 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/295545 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/296306 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/297084 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/297851 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/298616 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/299368 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/300178 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/300944 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/301719 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/302496 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/303258 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/304025 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/304808 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/305578 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/306368 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/307128 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/307950 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/308707 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/309458 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/310250 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/311033 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/311762 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/312498 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/313296 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/314088 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/314837 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/315590 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/315951 (executing program)
2022/10/04 06:20:14 fetching corpus: 5013, signal 194825/315951 (executing program)
2022/10/04 06:20:16 starting 8 fuzzer processes
06:20:16 executing program 0:
io_uring_enter(0xffffffffffffffff, 0x2e6c, 0x811, 0x3, &(0x7f0000000000)={[0x3ff]}, 0x8)
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
r0 = io_uring_setup(0x3ae0, &(0x7f0000000040)={0x0, 0x3ffb, 0x1, 0x1, 0x188})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0, @in_args={0x2}}, './file0\x00'})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x400004)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000180)={0x35, 0x0, &(0x7f0000000140)=[r0, r2, r0, r0]}, 0x4)
r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0), 0x100, 0x0)
pwritev(r3, &(0x7f0000000300)=[{&(0x7f0000000200)="f57d077a7bd60128cb7a9b80f36902da7faf4baf3f52ca92380bd7ab4489a0ca6e95578fbbaa587d2bf1bad2eed978c3ed192a23b525de3ce2a899332b6a4c64572361f6bb26420b7b6c574e", 0x4c}, {&(0x7f0000000280)="2da42d6bbe77d33204ee351af79911fd6dafca9c37a5a657e471077dba0c83287ff01c3ce98f56e19f3bd261df9c5b4760f6ad8c3093372c2406d96b66ad8cd9d301495f4b64c2be3a69e3d5752a7520f49d0b2e6f60c9c123b4f09731674e0635213abb1074af5eed89b6f241520b78fa5498379002c881eb52", 0x7a}], 0x2, 0xffffffff, 0x8001)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r4 = syz_mount_image$msdos(&(0x7f0000000340), &(0x7f0000000380)='./file0\x00', 0xff, 0x4, &(0x7f0000000540)=[{&(0x7f00000003c0)="0338ad60e349d284ec1c5a55701708fe11473a66b9c81e", 0x17, 0x2}, {&(0x7f0000000400)="efa98b1c74e52925f2c15b00e2bab983b4b901efbfe1285294e16e957af207d6a6aa8bd36e5aca4e81f1ea86dac39329efceac967d08967f0ff1f5fae27bcd8e09517d245a28dbbb6b7d8ea248c343623bb9f176a8da02641f34f43160b83419eba44493e3716bd196eacf304a7dddaba68cf55c836734ceaeea6f6b664d", 0x7e, 0xeb2}, {&(0x7f0000000480)="2a31b1af97343ec9f1d085518a19b47b75aa2c05b7abb60f7770ec77f2a1b7d7fdc633ffde3315142da0ea8e37b3bc1b2b2a70ccee063fabdb405ca8170a895ac24b9b58772aefa879f051408a6e17581b2d82d13b60871014ece715a68b24e637dd5971e97ca1ec1f3b3dd3fd501e744af69d63", 0x74, 0x9}, {&(0x7f0000000500)="fda9fc5f61c6d72ead6fc506766f69a9", 0x10, 0xfff}], 0x2000, &(0x7f00000005c0)={[{@fat=@check_strict}, {@dots}, {@nodots}, {@fat=@showexec}, {@nodots}], [{@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@fsuuid={'fsuuid', 0x3d, {[0x33, 0x66, 0x61, 0x33, 0x61, 0x62, 0x62, 0x37], 0x2d, [0x36, 0x62, 0x61, 0x31], 0x2d, [0x33, 0x63, 0x37, 0x30], 0x2d, [0x64, 0x30, 0x61, 0x62], 0x2d, [0x37, 0x67, 0x37, 0x64, 0x34, 0x30, 0x66, 0x65]}}}, {@euid_eq}]})
r5 = syz_open_dev$vcsa(&(0x7f0000000680), 0x7, 0x8000)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f00000006c0)=[r4, r5, r0], 0x3)
ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r2, 0x8010671f, &(0x7f0000000740)={&(0x7f0000000700)=""/25, 0x19})
ioctl$TIOCGPKT(r1, 0x80045438, &(0x7f0000000780))
r6 = openat$random(0xffffffffffffff9c, &(0x7f00000007c0), 0x20000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000800)={{0x1, 0x1, 0x18, <r7=>r3, {0x7, 0xfffffff7}}, './file0\x00'})
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000840)=[r6, r2, r2, r7], 0x4)
r8 = memfd_create(&(0x7f0000000880)='nodots', 0x0)
ioctl$BTRFS_IOC_SNAP_CREATE(r8, 0x50009401, &(0x7f00000008c0)={{r3}, "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"})
signalfd(0xffffffffffffffff, &(0x7f00000018c0)={[0x2]}, 0x8)

06:20:16 executing program 1:
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(0xffffffffffffffff, 0x4040534e, &(0x7f0000000000)={0x116, @time={0x5, 0xc78e}, 0x1f, {0x81, 0x6}, 0x5, 0x2, 0x81})
r0 = fsmount(0xffffffffffffffff, 0x1, 0x74)
fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000040), &(0x7f0000000080), 0x2, 0x1)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/mdstat\x00', 0x0, 0x0)
getsockname(r1, &(0x7f0000000100)=@l2tp={0x2, 0x0, @empty}, &(0x7f0000000180)=0x80)
r2 = dup(r1)
connect(r2, &(0x7f00000001c0)=@rxrpc=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e23, @multicast1}}, 0x80)
write$sndseq(r0, &(0x7f0000000300)=[{0x8, 0x8, 0x6, 0x40, @time={0xed9, 0x3}, {0x67, 0x8}, {0x7, 0xf}, @ext={0x5a, &(0x7f0000000240)="94e38ed01ebbc15f2da881a6fa2b14aa39dddff9e133ed457f5f1f64e763bc3739ca07ef74ea230d887205639a65e92f31afe3ca2acc9692a3b5e02a9b4ba9d76e21a8f16bb336e84a5cb817ea0d013e066e47ea03da3a080d40"}}, {0x5, 0xff, 0x3, 0xfc, @tick=0x4, {0xff, 0x7}, {0xfe, 0x1}, @control={0x1, 0x6, 0x9385}}, {0x2, 0x20, 0x8, 0x1, @time={0x6, 0x4}, {0xd6, 0xff}, {0x9, 0x9}, @queue={0x9, {0xfffffffc}}}, {0xc3, 0x70, 0x3f, 0x5, @time={0x587, 0x3}, {0x4, 0x6}, {0x0, 0x1}, @control={0x0, 0x400, 0x100}}, {0x1f, 0x2, 0x3f, 0x3a, @tick=0x10000, {0x4, 0x3}, {0x6, 0xe}, @control={0x2, 0x3, 0x1f}}, {0x3f, 0x6, 0x0, 0xc1, @tick=0xdb, {0x8, 0x7f}, {0x0, 0x1}, @ext={0x32, &(0x7f00000002c0)="a8f65f5c07761317e26f0ec4ae1a446122ba8f1be5cea5f9d81b3088f710fb1ea58cf22636c895e554f27e402223b01bf9cf"}}], 0xa8)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000003c0)={0x0, 0x0, 0x4, 0x1ff})
open_tree(r1, &(0x7f0000000400)='./file0\x00', 0x100)
r3 = inotify_init1(0x800)
pwritev2(r3, &(0x7f00000004c0)=[{&(0x7f0000000440)="d36bbe7d7b28253cc635251c203d17ab823ed064e88ee84912b66ab4a28c12c283ba388f42d63bfd10d8a5a92ed42409746ff9548209e2e89fbc95f1719cad2b75", 0x41}], 0x1, 0x400, 0x18573b60, 0x15)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000500)={{0x1, 0x1, 0x18, r3, {0xc9}}, './file0\x00'})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000540)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$FIOCLEX(r4, 0x5451)
ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, &(0x7f0000000580)={0x245, 0x0, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
chroot(&(0x7f0000003c40)='./file0\x00')
r5 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000003c80), 0x200, 0x0)
dup2(r2, r5)
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)

06:20:16 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_START_REQ(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x5c, 0x0, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x15}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x1f}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x89}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x19}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0xe}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0xff}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x1}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x2}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0xff}]}, 0x5c}, 0x1, 0x0, 0x0, 0x84}, 0x4000800)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xfc, 0x1, 0x1, 0xc00, 0x0, 0x0, {0x7, 0x0, 0x2}, [@CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0xffffffff}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x2}]}, @CTA_HELP={0xc, 0x5, 0x0, 0x1, {0x5, 0x1, '\x00'}}, @CTA_NAT_SRC={0x60, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @private0}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V4_MINIP={0x8, 0x1, @broadcast}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @multicast1}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private2}]}, @CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0xd70e}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x8000}]}, @CTA_SYNPROXY={0x24, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x200}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0xb89}]}, @CTA_LABELS={0xc, 0x16, 0x1, 0x0, [0x8, 0x8]}, @CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000400)={&(0x7f0000000300), 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x44, 0x0, 0x20, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x4048054}, 0x4000)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000440), r0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x4008000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x24, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {{}, {}, {0x8, 0x11, 0x7b00}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0xd0}, 0x200480c0)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000600)={0x168, r1, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}]}, @TIPC_NLA_NODE={0x58, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x46, 0x4, {'gcm(aes)\x00', 0x1e, "a877261936f0b500752c27f1603171d9ecaba1c50d66d44e8b4bce5e827a"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1000}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x2}]}, @TIPC_NLA_BEARER={0xac, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @empty}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x40, @private1, 0x101}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e20, @local}}, {0x14, 0x2, @in={0x2, 0x4e22, @private=0xa010101}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x2, @empty, 0x1}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0x80000001, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7fffffff}}}}]}]}, 0x168}, 0x1, 0x0, 0x0, 0x24040031}, 0x80)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_SET(0xffffffffffffffff, &(0x7f0000000b80)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000b40)={&(0x7f0000000880)={0x2ac, r2, 0x300, 0x70bd29, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5, 0x83, 0x1}}]}, 0x2ac}, 0x1, 0x0, 0x0, 0x4000000}, 0x40080d0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000001cc0)={&(0x7f0000000bc0), 0x6e, &(0x7f0000001c40)=[{&(0x7f0000000c40)=""/4096, 0x1000}], 0x1, &(0x7f0000001c80)=[@rights={{0x1c, 0x1, 0x1, [<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}, 0x40)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000001d40), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(r4, &(0x7f0000001e00)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001dc0)={&(0x7f0000001d80)={0x24, r6, 0x400, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xfffffff7}]}, 0x24}, 0x1, 0x0, 0x0, 0x10000000}, 0x4000011)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001e80), r4)
sendmsg$NL80211_CMD_GET_STATION(r5, &(0x7f0000001f40)={&(0x7f0000001e40)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001f00)={&(0x7f0000001ec0)={0x1c, r7, 0x400, 0x70bd28, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x7f}]}, 0x1c}}, 0x2000c840)
sendmsg$TIPC_NL_PUBL_GET(r4, &(0x7f0000002280)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002240)={&(0x7f0000001fc0)={0x268, r1, 0x100, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x326}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xfff}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x15f5}]}, @TIPC_NLA_LINK={0xd0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xae7}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4a1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc4ec}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8eb1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfa0}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffe00}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x31}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_LINK={0xbc, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x101}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1753}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc266}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_LINK={0x8c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x98c}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}]}]}]}, 0x268}, 0x1, 0x0, 0x0, 0x80}, 0x25906631a7201986)
sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000002380)={&(0x7f00000022c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002340)={&(0x7f0000002300)={0x24, 0x0, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4014}, 0x20000800)
r8 = dup3(r3, r5, 0x0)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002400), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r8, &(0x7f0000002500)={&(0x7f00000023c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000024c0)={&(0x7f0000002440)={0x4c, r9, 0x800, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_CQM={0x30, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x907}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x1}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x184}, @NL80211_ATTR_CQM_RSSI_THOLD={0x14, 0x1, [0x81, 0x9, 0x6, 0x8]}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8c}, 0xc001)

06:20:16 executing program 3:
r0 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@l2tp={0x2, 0x0, @remote}, &(0x7f0000000080)=0x80, 0x80000)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000000c0)={0x7fff, {{0xa, 0x4e23, 0x0, @loopback, 0x6}}, 0x1, 0x5, [{{0xa, 0x4e21, 0x9, @empty, 0x2}}, {{0xa, 0x4e23, 0x80, @rand_addr=' \x01\x00', 0x4}}, {{0xa, 0x4e24, 0x4cc, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}}, {{0xa, 0x4e21, 0xa4f, @remote, 0x200}}, {{0xa, 0x4e24, 0x8, @private2, 0x700000}}]}, 0x310)
r1 = accept4(r0, &(0x7f0000000400)=@pppol2tp={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, {0x2, 0x0, @remote}}}, &(0x7f0000000480)=0x80, 0x800)
setsockopt$inet6_mtu(r2, 0x29, 0x17, &(0x7f00000004c0), 0x4)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f00000005c0)={'syztnl2\x00', &(0x7f0000000540)={'syztnl2\x00', <r3=>0x0, 0x29, 0x81, 0x9, 0x5, 0x48, @private0, @empty, 0x8, 0x60, 0xd545, 0xb3}})
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000600)={@mcast2, 0x41, r3})
recvmsg(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000640)=""/10, 0xa}, {&(0x7f0000000680)=""/201, 0xc9}, {&(0x7f0000000780)=""/166, 0xa6}, {&(0x7f0000000840)=""/255, 0xff}, {&(0x7f0000000940)=""/190, 0xbe}], 0x5, &(0x7f0000000a80)=""/93, 0x5d}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000b40))
r4 = memfd_secret(0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000d80), r1)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(r4, &(0x7f0000000e80)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x9100000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x44, r5, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x3}, @ETHTOOL_A_CHANNELS_RX_COUNT={0x8, 0x6, 0x3}, @ETHTOOL_A_CHANNELS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x8810}, 0x85)
ioctl$BTRFS_IOC_SNAP_CREATE(r2, 0x50009401, &(0x7f0000000ec0)={{r2}, "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"})
r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000004180), 0x1, 0x0)
setsockopt$inet6_opts(r6, 0x29, 0x37, &(0x7f00000041c0)=@srh={0x33, 0xe, 0x4, 0x7, 0xff, 0x68, 0x6, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty, @private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00', @dev={0xfe, 0x80, '\x00', 0x32}, @empty, @private2={0xfc, 0x2, '\x00', 0x1}]}, 0x78)
r7 = openat2(r6, &(0x7f0000004840)='./file0\x00', &(0x7f0000004880)={0xc02, 0x1}, 0x18)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f0000004900), r4)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r7, &(0x7f00000049c0)={&(0x7f00000048c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000004980)={&(0x7f0000004940)={0x20, r8, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)
getsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f0000004a00)={{{@in6=@dev, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in6=@dev}, 0x0, @in=@local}}, &(0x7f0000004b00)=0xe8)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000004b80), r7)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r7, &(0x7f00000051c0)={&(0x7f0000004b40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000005180)={&(0x7f0000005080)={0xcc, r10, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0xcc}, 0x1, 0x0, 0x0, 0x80}, 0x1)

06:20:16 executing program 5:
r0 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(r0, 0xc4089434, &(0x7f0000000040)={0x0, 0x72, 0x0, [0x2, 0x81, 0x9b0, 0x8001, 0x6], [0x8000, 0x429, 0x100, 0xffff, 0x401, 0x20, 0xa218, 0x1, 0x9, 0x8001, 0x40, 0xffff, 0x6ffb96b5, 0x9, 0x100000001, 0x8, 0xfffffffffffffff8, 0x3, 0x100000000, 0x13, 0x80000000, 0x3f800000, 0x2, 0x80, 0x8001, 0x9db, 0x0, 0x5, 0x6, 0x80000001, 0x40, 0x7fffffff, 0x10001, 0x3, 0x200, 0x3f, 0x0, 0x81, 0xaad, 0x8a, 0x4, 0x9, 0x2, 0x7, 0x7ff, 0x8, 0x400, 0x3f, 0x0, 0x1, 0x8000, 0xffffffffffffffff, 0xb92, 0x4, 0xffffffffffff2d74, 0x5, 0x20, 0x8, 0x1, 0xffff, 0x8, 0x2, 0xfffffffffffffffc, 0x80, 0x7, 0x5, 0x2, 0x7d, 0xbd6e, 0x401, 0x9, 0x1, 0x2f80, 0xc7d1, 0x7, 0x2c, 0xaee, 0x9, 0x1, 0x34, 0xa0000000000000, 0xf3, 0x0, 0x3daf9f40, 0x20, 0xfff, 0x0, 0x4, 0x3, 0x9, 0xfff, 0x0, 0x1, 0x0, 0x0, 0x8, 0x4, 0x1, 0x7, 0x7, 0xfc, 0x4, 0x6, 0xffffffff7fffffff, 0x7, 0x7, 0x9, 0x8001, 0x400, 0x7fff, 0xa07, 0xe74, 0x800000, 0xfffffffffffffff8, 0x3, 0xbd, 0xbe, 0x9, 0x7, 0x9]})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000480), 0x101000, 0x0)
r1 = memfd_secret(0x80000)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r2=>r0, {0x4}}, './file0\x00'})
fsetxattr$security_selinux(r2, &(0x7f0000000500), &(0x7f0000000540)='system_u:object_r:devicekit_var_run_t:s0\x00', 0x29, 0x0)
ioctl$TIOCL_SETVESABLANK(r2, 0x541c, &(0x7f0000000580))
sendfile(r0, 0xffffffffffffffff, &(0x7f00000005c0), 0x10000)
ioctl$sock_inet_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000600)={'syzkaller1\x00', {0x2, 0x0, @remote}})
mkdirat$cgroup(r1, &(0x7f0000000640)='syz0\x00', 0x1ff)
ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f0000000680)={0x6, 0x81})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000006c0)={0x80000010})
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f0000000700)=0x200)
r3 = creat(&(0x7f0000000800)='./file0\x00', 0x89)
r4 = perf_event_open$cgroup(&(0x7f0000000780)={0x2, 0x80, 0x7, 0x6b, 0x0, 0x6, 0x0, 0x9, 0x1010, 0xc, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2905, 0x1, @perf_bp={&(0x7f0000000740)}, 0x0, 0x10000, 0xfaf74112, 0x6, 0x81, 0x7, 0x401, 0x0, 0x0, 0x0, 0x9}, r3, 0x8, 0xffffffffffffffff, 0x5)
close_range(r0, r4, 0x2)
signalfd4(r1, &(0x7f0000000840)={[0xffffffff]}, 0x8, 0x80000)
r5 = openat(r2, &(0x7f0000000880)='./file0\x00', 0x80040, 0x100)
openat$cgroup_pressure(r5, &(0x7f00000008c0)='io.pressure\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000900))

[   66.334110] audit: type=1400 audit(1664864416.962:6): avc:  denied  { execmem } for  pid=282 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
06:20:16 executing program 4:
prctl$PR_GET_TSC(0x19, &(0x7f0000000000))
prctl$PR_GET_TSC(0x19, &(0x7f0000000040))
prctl$PR_GET_TSC(0x19, &(0x7f0000000080))
prctl$PR_GET_TSC(0x19, &(0x7f00000000c0))
prctl$PR_GET_TSC(0x19, &(0x7f0000000100))
prctl$PR_GET_TSC(0x19, &(0x7f0000000140))
prctl$PR_GET_TSC(0x19, &(0x7f0000000180))
prctl$PR_GET_TSC(0x19, &(0x7f00000001c0))
prctl$PR_GET_TSC(0x19, &(0x7f0000000200))
prctl$PR_GET_TSC(0x19, &(0x7f0000000240))
prctl$PR_GET_TSC(0x19, &(0x7f0000000280))
prctl$PR_GET_TSC(0x19, &(0x7f00000002c0))
prctl$PR_GET_TSC(0x19, &(0x7f0000000300))
prctl$PR_GET_TSC(0x19, &(0x7f0000000340))
prctl$PR_GET_TSC(0x19, &(0x7f0000000380))
prctl$PR_GET_TSC(0x19, &(0x7f00000003c0))
prctl$PR_GET_TSC(0x19, &(0x7f0000000400))
prctl$PR_GET_TSC(0x19, &(0x7f0000000440))
prctl$PR_GET_TSC(0x19, &(0x7f0000000480))
prctl$PR_GET_TSC(0x19, &(0x7f00000004c0))

06:20:16 executing program 6:
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000040)={0x1d8, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x72}, @void, @val={0xc, 0x99, {0x80000000, 0x1a}}}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffffff80}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x52d}, @NL80211_ATTR_VENDOR_DATA={0x63, 0xc5, "4bcd4f0dfb1785ef033277cf1b9c49133d34ba08f63714c16995f753f4ebec64b6d23e232d12ab06ae920f7ecbf15253a6c934622fdf05e22cd4442b4e1664f3dd89cc7f665235df873f620ea4e3cb3dc5fd393133c49e1a7ee659383c5ee5"}, @NL80211_ATTR_VENDOR_DATA={0x75, 0xc5, "2f27cfe3532e7b3285dc2bc1c69c26a4af9a6cdcdeccf51dbac5ebaa49a1488e0238c7425a255507baa04e84e774c576a31384dc05e6f1cc84dae938526ea9d55e1beeff2efbd3445d9e0f782f3f9816a31d9159bf143a1f2f21fe20c0feb66c6c3178633e4fbe9d41d0b347b6ed0c642d"}, @NL80211_ATTR_VENDOR_DATA={0x35, 0xc5, "e6382546b0ce99f48a700d081b60cc6bfaced9f3fcb377134b6b1e700125ef23b4d0539d8a81754915f1bb5d15a635dcd9"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0xffffffff}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x2}, @NL80211_ATTR_VENDOR_DATA={0x74, 0xc5, "569ed84b10170f066c128eb2da48ee2e5d47a04d5c7a242262443f30f7d5e0c80efece226c114344ae25afb1522cea3cc62654453a150d30bce28ed4eae89e52aa06ccd33d515fda1f34b49b33e38fa1a99b2be0daa4e24fb917c6e7d823c9cf668879009252bb24d9d48c44ce93e013"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x7}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x10}, 0x8c0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x0, 0x400, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8090}, 0x4080)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x20, 0x0, 0x400, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x5, 0x3c}}}}, ["", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_PMK(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x7c, r0, 0x8, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "b54d44bda0d288cdb215114efa3349dd"}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "6e45ae221ff11ddded2d373f3e8a3f43"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "71380f3f51f4661b61a8d7de510e0e2c"}, @NL80211_ATTR_PMK={0x14, 0xfe, "91cb13873f622862b272d2b969282efc"}]}, 0x7c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x68, r0, 0x300, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_USE_RRM={0x4}, @NL80211_ATTR_IE={0x36, 0x2a, [@challenge={0x10, 0x1, 0x10}, @prep={0x83, 0x25, @ext={{}, 0xa6, 0x20, @broadcast, 0x7, @broadcast, 0x7, 0x9}}, @mesh_chsw={0x76, 0x6, {0x9, 0xfc, 0x4, 0x80}}]}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x7}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x1}]}, 0x68}, 0x1, 0x0, 0x0, 0x8001}, 0x8040001)
sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x28, r0, 0x21, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x3}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000008c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000900)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x1c, r1, 0x100, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r2}, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000001)
r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000a00)='memory.numa_stat\x00', 0x0, 0x0)
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000b00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x38, r0, 0x8, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xec, 0x3b}}}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x7ff]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x4)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000b40)={{0x1, 0x1, 0x18, <r4=>r3, {0x7}}, './file0\x00'})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r4, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x28, r0, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x9}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x28}}, 0x20000800)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000000dc0)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000cc0)={0xa0, 0x0, 0x200, 0x70bd29, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_HE_OBSS_PD={0x34, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x6}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x2}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x7}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x10}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x9}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x9}]}, @NL80211_ATTR_P2P_OPPPS={0x5}, @NL80211_ATTR_P2P_CTWINDOW={0x5}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x51}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2a4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2e}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xef}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0xf8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}]]}, 0xa0}, 0x1, 0x0, 0x0, 0x4000000}, 0x80800)
sendmsg$TIPC_NL_NODE_GET(r3, &(0x7f0000000fc0)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000f80)={&(0x7f0000000e40)={0x124, 0x0, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK={0xc0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xda2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x92d}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}]}, @TIPC_NLA_MEDIA={0x34, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x800}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x24040004}, 0x18000)
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f00000010c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)={0x1c, r0, 0x2, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x6}, @void, @void}}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4040)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001100)='fd/4\x00')
sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000001300)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000012c0)={&(0x7f0000001180)={0x124, r0, 0x200, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x3, 0x1b}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_TX_RATES={0xf8, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x44, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0x24, 0x2, 0x1b, 0x6e, 0x9, 0x36, 0x6c, 0x16, 0xc, 0x48, 0x36, 0x1, 0x30, 0x48, 0x2, 0x4, 0x6, 0x1b]}, @NL80211_TXRATE_LEGACY={0x9, 0x1, [0x5, 0x3, 0x12, 0xb, 0x16]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x60, 0x3, 0x5f74, 0x10bc, 0xffff, 0x7, 0x3]}}]}, @NL80211_BAND_5GHZ={0x14, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x10, 0x1, [0x2, 0x60, 0x48, 0x4, 0x48, 0x16, 0x3, 0x2, 0x2, 0x24, 0x12, 0x9]}]}, @NL80211_BAND_60GHZ={0x48, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x44, 0x2, [{0x0, 0x8}, {0x7, 0x1}, {0x7, 0x4}, {0x0, 0x8}, {0x7, 0x9}, {0x7, 0x4}, {0x1, 0x8}, {0x4, 0x2}, {}, {0x0, 0x8}, {0x7, 0x6}, {0x2, 0x1}, {0x4, 0x4}, {0x4, 0x5}, {0x3, 0x2}, {0x1}, {0x1}, {0x4, 0x8}, {0x2, 0x4}, {0x3, 0x3}, {0x7, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x2, 0x7}, {0x7, 0x9}, {0x4, 0xa}, {0x0, 0x3}, {0x7, 0x1}, {0x1, 0x2}, {0x7, 0x9}, {0x7, 0x5}, {0x1}, {0x4}, {0x1, 0x8}, {0x4, 0x9}, {0x7}, {0x4, 0x6}, {0x0, 0x3}, {0x4, 0x6}, {0x4, 0x6}, {0x1, 0x3}, {0x3, 0x9}, {0x7, 0x6}, {0x0, 0xa}, {0x4, 0xa}, {0x3, 0x7}, {0x0, 0x6}, {0x5, 0x8}, {0x0, 0x8}, {0x3, 0x4}, {0x7, 0x9}, {0x7}, {0x5, 0xa}, {0x7, 0x5}, {0x4, 0x2}, {0x4, 0x4}, {0x0, 0xa}, {0x1, 0x4}, {0x0, 0x3}, {0x0, 0x6}, {0x3, 0xa}, {0x2}, {0x3, 0x7}, {0x2, 0x9}]}]}, @NL80211_BAND_2GHZ={0x54, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4e, 0x2, [{0x0, 0x2}, {0x4, 0xa}, {0x0, 0x5}, {0x2, 0x5}, {0x1, 0x7}, {0x3, 0x5}, {0x0, 0x2}, {0x2, 0x6}, {0x4, 0x8}, {0x5, 0x3}, {0x1, 0xa}, {0x0, 0x7}, {0x5, 0x3}, {0x2, 0x9}, {0x5, 0x5}, {0x6, 0x8}, {0x3, 0x9}, {0x1, 0x7}, {0x7, 0x9}, {0x0, 0x6}, {}, {0x4, 0x4}, {0x3, 0x2}, {0x0, 0x3}, {0x3, 0xa}, {0x4, 0x6}, {0x0, 0x6}, {0x1, 0x8}, {0x6, 0x1}, {0x5, 0x4}, {0x7, 0x5}, {0x1, 0x5}, {}, {0x7, 0x6}, {0x0, 0x8}, {0x2, 0x3}, {0x2, 0x3}, {0x0, 0x3}, {0x0, 0x7}, {0x7, 0x4}, {0x2, 0x5}, {0x3, 0x4}, {0x5, 0x5}, {0x6, 0x9}, {0x0, 0x5}, {0x5, 0x9}, {}, {0x7, 0x8}, {0x2, 0x4}, {0x2}, {0x4, 0x4}, {0x4}, {0x0, 0x9}, {0x0, 0x5}, {0x6, 0x1}, {0x6, 0x1}, {0x3, 0x5}, {0x4}, {0x6, 0x8}, {0x6}, {0x1, 0x9}, {0x1, 0x6}, {0x0, 0x5}, {0x4, 0x4}, {0x6, 0x9}, {0x7, 0x1}, {0x5}, {0x5, 0x3}, {0x4, 0x3}, {0x7, 0x6}, {0x5}, {0x4}, {0x1, 0x7}, {0x5}]}]}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000)
sendmsg$NL80211_CMD_SET_COALESCE(r4, &(0x7f0000001400)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x4002}, 0xc, &(0x7f00000013c0)={&(0x7f0000001380)={0x30, r1, 0x100, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x7fff, 0x3b}}}}, [@NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x10)

06:20:17 executing program 7:
ioctl$sock_SIOCBRADDBR(0xffffffffffffffff, 0x89a0, &(0x7f0000000000)='team_slave_1\x00')
sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x48, 0x13, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000000}, 0x800)
r0 = dup(0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x7}, @BATADV_ATTR_MULTICAST_FANOUT={0x8}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x7f}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80c1}, 0x8001)
r1 = syz_open_dev$evdev(&(0x7f0000000280), 0x186a, 0x4c2200)
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r1, 0x8010661b, &(0x7f00000002c0))
ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000300)=0x1)
ioctl$LOOP_SET_FD(r0, 0x4c00, r1)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000340), 0x109080, 0x0)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r2, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, 0x0, 0x0, 0x70bd2b, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x14}}, 0x4000000)
r3 = open(&(0x7f0000000480)='./file0\x00', 0x10d100, 0x86)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_ABORT_SCAN(r3, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x28, 0x0, 0x318, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x6, 0x7a}}}}, ["", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40044}, 0x4)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r5=>r2}, './file0\x00'})
ioctl$EVIOCSABS0(r5, 0x401845c0, &(0x7f0000000640)={0x6, 0xfff, 0x10000, 0x10001, 0x0, 0x4})
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r5, 0x8983, &(0x7f0000000680)={0x8, 'veth1_virt_wifi\x00', {'veth0_to_bond\x00'}})
syz_genetlink_get_family_id$batadv(&(0x7f00000006c0), r2)
r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000700), 0x71400, 0x0)
write$P9_ROPEN(r6, &(0x7f0000000740)={0x18, 0x71, 0x1, {{0x40, 0x0, 0x4}, 0x8}}, 0x18)
sendmsg$IEEE802154_LIST_IFACE(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x14, 0x0, 0x2, 0x70bd2d, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x8040}, 0x84040)

[   67.607669] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   67.610045] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   67.611591] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   67.613445] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   67.614954] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   67.617059] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   67.619010] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   67.622024] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   67.624357] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   67.626742] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   67.630434] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   67.632049] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   67.636823] Bluetooth: hci0: HCI_REQ-0x0c1a
[   67.638379] Bluetooth: hci1: HCI_REQ-0x0c1a
[   67.680082] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   67.682219] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   67.684196] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   67.688835] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   67.690023] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   67.691498] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   67.692663] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   67.694255] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   67.699100] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   67.700782] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   67.702740] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   67.704888] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   67.706188] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   67.716545] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   67.719175] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   67.720805] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   67.721447] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   67.726109] Bluetooth: hci6: HCI_REQ-0x0c1a
[   67.726397] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   67.729132] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   67.729929] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   67.731573] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   67.733297] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   67.745835] Bluetooth: hci2: HCI_REQ-0x0c1a
[   67.759324] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   67.766747] Bluetooth: hci5: HCI_REQ-0x0c1a
[   67.773901] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   67.795631] Bluetooth: hci3: HCI_REQ-0x0c1a
[   69.687786] Bluetooth: hci4: Opcode 0x c03 failed: -110
[   69.687915] Bluetooth: hci1: command 0x0409 tx timeout
[   69.689185] Bluetooth: hci0: command 0x0409 tx timeout
[   69.753034] Bluetooth: hci6: command 0x0409 tx timeout
[   69.753739] Bluetooth: hci7: Opcode 0x c03 failed: -110
[   69.815544] Bluetooth: hci5: command 0x0409 tx timeout
[   69.816572] Bluetooth: hci3: command 0x0409 tx timeout
[   69.816599] Bluetooth: hci2: command 0x0409 tx timeout
[   71.735549] Bluetooth: hci1: command 0x041b tx timeout
[   71.735566] Bluetooth: hci0: command 0x041b tx timeout
[   71.800554] Bluetooth: hci6: command 0x041b tx timeout
[   71.863856] Bluetooth: hci2: command 0x041b tx timeout
[   71.864728] Bluetooth: hci3: command 0x041b tx timeout
[   71.865553] Bluetooth: hci5: command 0x041b tx timeout
[   72.893949] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   72.897636] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   72.899094] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   72.918211] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   72.929530] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   72.972712] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   73.006031] Bluetooth: hci7: HCI_REQ-0x0c1a
[   73.783569] Bluetooth: hci0: command 0x040f tx timeout
[   73.783640] Bluetooth: hci1: command 0x040f tx timeout
[   73.848648] Bluetooth: hci6: command 0x040f tx timeout
[   73.911639] Bluetooth: hci5: command 0x040f tx timeout
[   73.912203] Bluetooth: hci3: command 0x040f tx timeout
[   73.912770] Bluetooth: hci2: command 0x040f tx timeout
[   74.743513] Bluetooth: hci4: Opcode 0x c03 failed: -110
[   75.063549] Bluetooth: hci7: command 0x0409 tx timeout
[   75.831519] Bluetooth: hci1: command 0x0419 tx timeout
[   75.831998] Bluetooth: hci0: command 0x0419 tx timeout
[   75.895553] Bluetooth: hci6: command 0x0419 tx timeout
[   75.959546] Bluetooth: hci2: command 0x0419 tx timeout
[   75.960004] Bluetooth: hci3: command 0x0419 tx timeout
[   75.960407] Bluetooth: hci5: command 0x0419 tx timeout
[   77.111630] Bluetooth: hci7: command 0x041b tx timeout
[   77.306778] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   77.307831] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   77.309097] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   77.311076] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   77.312341] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   77.313103] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   77.316417] Bluetooth: hci4: HCI_REQ-0x0c1a
[   79.160507] Bluetooth: hci7: command 0x040f tx timeout
[   79.352578] Bluetooth: hci4: command 0x0409 tx timeout
[   81.207519] Bluetooth: hci7: command 0x0419 tx timeout
[   81.400947] Bluetooth: hci4: command 0x041b tx timeout
[   83.448565] Bluetooth: hci4: command 0x040f tx timeout
[   85.496508] Bluetooth: hci4: command 0x0419 tx timeout
[  119.947777] loop0: detected capacity change from 0 to 15
[  119.969164] loop0: detected capacity change from 0 to 15
[  126.355169] audit: type=1400 audit(1664864476.982:7): avc:  denied  { open } for  pid=3910 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
06:21:34 executing program 6:
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
vmsplice(r0, &(0x7f00000008c0)=[{&(0x7f0000000280)="7f", 0x1}, {0x0}], 0x2, 0x0)
write$selinux_attr(r0, &(0x7f0000000000)='system_u:object_r:devicekit_disk_exec_t:s0\x00', 0x2b)

06:21:34 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000900), 0x0, 0x0)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x3)
ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f0000000940))

06:21:34 executing program 5:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001180)='numa_maps\x00')
preadv(r1, &(0x7f0000001140)=[{&(0x7f0000000140)=""/4096, 0x1000}], 0x1, 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000001640)={0xffffffffffffffff, r0})
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = dup2(r2, r2)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0xfffffff9}, 0x1c)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
r5 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'sit0\x00', <r6=>0x0})
r7 = fcntl$dupfd(0xffffffffffffffff, 0x0, r3)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r7, 0x89f2, &(0x7f0000001380)={'sit0\x00', &(0x7f0000001300)={'sit0\x00', r6, 0x2f, 0x4, 0x0, 0x5, 0x9, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @remote, 0x80, 0x20, 0x5087, 0xffffffff}})
ioctl$sock_inet6_SIOCDELRT(r4, 0x890b, &(0x7f0000000380)={@private1, @private2, @mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6800086, r6})
ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={@local, 0x7a, r6})
syz_emit_ethernet(0x4e, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRESHEX=r6], 0x0)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x3c, 0x0, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x6}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x4}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r6}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x8}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24008080}, 0x4814)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r1, 0x89f6, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f00000011c0)={'ip6gre0\x00', <r8=>0x0, 0x29, 0x7, 0x65, 0x101, 0x0, @remote, @mcast2, 0x8, 0x7, 0x5, 0x1}})
sendmsg$BATADV_CMD_TP_METER_CANCEL(r1, &(0x7f00000012c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f0000001240)={0x54, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x7}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r6}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x44005}, 0x8000)

[  143.776607] audit: type=1400 audit(1664864494.404:8): avc:  denied  { kernel } for  pid=3970 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
06:21:34 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$inet(0x2, 0xa, 0x0)
r2 = openat2(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', &(0x7f0000000300)={0x10100, 0xc6, 0x10}, 0x18)
sendto$inet(r2, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
getpeername(r1, &(0x7f00000001c0)=@xdp, &(0x7f00000000c0)=0x80)
r3 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000140)={0x0, {0x2, 0x4e21, @broadcast}, {0x2, 0x4e23, @multicast2}, {0x2, 0x4e20, @multicast1}, 0x40, 0x0, 0x0, 0x0, 0x5, &(0x7f0000000080)='bond_slave_1\x00', 0x10000, 0x3, 0x66a4})
accept4(r2, 0x0, &(0x7f0000000340), 0xc0000)
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10, 0x0}, 0x4800)
r4 = socket$inet(0x2, 0xa, 0x0)
sendto$inet(r4, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
close(r4)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000000000)={&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=0x40)

06:21:34 executing program 7:
waitid$P_PIDFD(0x3, 0xffffffffffffffff, 0x0, 0x4, 0x0)
r0 = getpgrp(0x0)
waitid(0x2, r0, &(0x7f0000000080), 0x0, 0x0)
connect$bt_sco(0xffffffffffffffff, &(0x7f0000000100), 0x8)
syz_open_procfs$namespace(0x0, &(0x7f0000001480)='ns/pid_for_children\x00')
r1 = getpid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x8, 0x4, @tid=r1}, &(0x7f00000001c0))
clone3(&(0x7f0000001300)={0x2000, &(0x7f0000000140), &(0x7f0000000200), &(0x7f0000000240), {0x18}, &(0x7f0000000280)=""/4096, 0x1000, &(0x7f0000001280)=""/34, &(0x7f00000012c0)=[r1], 0x1}, 0x58)
timer_create(0xa04927840f9342d9, &(0x7f0000000000)={0x0, 0x13, 0x2, @tid=r1}, &(0x7f0000000040))
socket$inet6_tcp(0xa, 0x1, 0x0)
fork()
mlockall(0x5)
openat$procfs(0xffffffffffffff9c, &(0x7f0000001380)='/proc/tty/ldiscs\x00', 0x0, 0x0)
waitid(0x2, r1, 0x0, 0x2, &(0x7f00000013c0))
mlockall(0x2)

06:21:34 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_setup(0x7, &(0x7f0000000000)=<r2=>0x0)
r3 = syz_open_procfs(0x0, 0x0)
r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000600)=""/148, 0x94)
r5 = getpid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x8, 0x4, @tid=r5}, &(0x7f00000001c0))
r6 = syz_open_procfs(r5, &(0x7f0000000200)='net/ip_tables_targets\x00')
read$hiddev(r6, &(0x7f0000000040)=""/169, 0x200000e9)
sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x10000)
memfd_secret(0x80000)
ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000340)=ANY=[@ANYBLOB="55011a42cbf598", @ANYRES32=<r7=>r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file1\x00'])
r8 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETAW(r8, 0x5407, &(0x7f0000000000)={0x1000, 0x0, 0x0, 0x0, 0x10, "ddab93e1adcbd470"})
ioctl$VT_DISALLOCATE(r8, 0x5608)
io_submit(r2, 0x4, &(0x7f00000005c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x3, 0xffffffffffffffff, &(0x7f0000000300)="666fd6fb7c4c8e8bf4059397e83e5ca7e7a13e2dbc305703a2c6a90bba95bb649867b6deabc9", 0x26, 0x4, 0x0, 0x3, r7}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x1000, 0xffffffffffffffff, &(0x7f0000000400)="bcf3b4f072b97e9c8e5e4369e898ea7d3b9aaf8d0633f79e97d0826da4635d97340e117a758d18b9fe61c37ab2832aa388c707228965f582216544e3d9b9e1d50f2085b8b532a2d6b3c64fef32086daf609dede175371d47064c088a9ccda4c9", 0x60, 0x1, 0x0, 0x1, r0}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x3, r8, &(0x7f00000004c0)="457e9ecce6f0e6267ca821ea89e945294a9d2c204cfc7e6ab54c199887166c29b9dd581d3b99a5afd0", 0x29, 0xffff, 0x0, 0x1, r0}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x7, 0x1, 0xffffffffffffffff, &(0x7f00000006c0)="caab5ab60cec2af461a1c275cab0df2622d311b22d15515e3c4d26fe7dddedecf8b1d9938e233d24e9941337524c7aaaa1ee7e747d80fbc3cca3eeec", 0x3c, 0xffffffffffffffff, 0x0, 0x1, r3}])
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0x220)

06:21:34 executing program 2:
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={<r0=>0xffffffffffffffff, 0x4, 0x5, 0x401})
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x8c, 0x3, 0x8, 0x201, 0x0, 0x0, {0xc, 0x0, 0x6}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_DATA={0x4c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_CLOSED={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_TIMEOUT_SCTP_SHUTDOWN_ACK_SENT={0x8, 0x7, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_SCTP_ESTABLISHED={0x8, 0x4, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8}, @CTA_TIMEOUT_SCTP_SHUTDOWN_SENT={0x8, 0x5, 0x1, 0x0, 0xb0}, @CTA_TIMEOUT_SCTP_COOKIE_ECHOED={0x8, 0x3, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_SCTP_CLOSED={0x8, 0x1, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_SCTP_COOKIE_ECHOED={0x8, 0x3, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8, 0x6, 0x1, 0x0, 0x48}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6558}, @CTA_TIMEOUT_L3PROTO={0x6}]}, 0x8c}, 0x1, 0x0, 0x0, 0x40004}, 0x40)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
read(r1, 0x0, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={<r2=>0x0}, &(0x7f0000000240)=0xc)
sendmsg$netlink(r0, &(0x7f0000000600)={&(0x7f00000001c0)=@proc={0x10, 0x0, 0x25dfdbfc, 0x8000000}, 0xc, &(0x7f0000000580)=[{&(0x7f0000000280)={0x300, 0x1b, 0x300, 0x70bd27, 0x25dfdbff, "", [@nested={0x158, 0x3a, 0x0, 0x1, [@generic="1deaa26f0fabff82788b97577547c37034eb723650b5066804ff06f159a48c7c135d7f11a2bdbdc30dad3276bd80d3b855c83d4e786eb5e47e8cb78490180bb69f4a46b149b03390a11a64ac8e965a88f27f717ec3d2dced2b8f4c257dffc061f6062368f7ec745fda2295c17f3dc42169a176b80f131fd2332a9751cfbd0f804e3a4440f0fd06402491983828f56f6a40883be671943f066179813fb4751599d8cc9152bd04b295d2c6dee8a6a7c3", @generic="d39f4a618187f286420d8e08b2c9a97a15138f3c5664ceb5815ec5c0203e82b59810e2849c113346d9bdd88eb97b3602521d74db23201ade0b69e5845d7bb8a4f8526f620893d9b1b1d9f24a7e5ff4b908853ca3039cea8b05bc4b81e2c0553f53a99d8f176eb309ecfd8d62adf2f85d21d7ac7596eb50a0711a7d73bf00d7d723f8d3d2f17890e4ad6fc9e331006b7fa593ee7d91e704d187", @typed={0x5, 0x67, 0x0, 0x0, @str='\x00'}, @typed={0x4, 0x89, 0x0, 0x0, @binary}]}, @generic="22b69d90199a92386f228ce57e23523678db523b0a18b0f86ad800f214c36aa46b26582649b7", @typed={0x8, 0x49, 0x0, 0x0, @u32=0x5}, @generic="25b161d98b34c0de6665a6677cd502a2423416f9cee6a0dfebd1f2dfac029f7a5be9ec31fb9153d7b065f0bb127e40d861a5f4ca58025c5a41a1c62077db8e561113bbd71f264907647c069d733fee5c3ce11de5d6dd3d88c35a844c320f3268f3e3a9e71729d4502fb816d929fe52c7bf2cbbaeb54e4652456194f5021c08856a4c0c14bf2704d18459c789d26b2404cfdfb8abeec81d7ad879a8e630d0f4171307e3531391633f718b729242f53d5b6bf7983648efadc0c6c4ffd8fa20f3e6948e3093d4978cbfb47dc7c3", @typed={0x4, 0x47}, @nested={0x68, 0x3, 0x0, 0x1, [@generic="3ba326eecea39089828766dce965b776a4db755b0a709ed892678c865809408c8d1742bb16d1ce0932cb08b95040adff083381405c6cc9d073c176011d56acbb4d23650155736997bc16be4c8f148383cb4e6358fea034fc027b4718", @typed={0x8, 0x4d, 0x0, 0x0, @pid=r2}]}, @generic="44a0f20ea8fccd7d8500754df458ec7c70b4f0e56aebf4a632861ad9332bedb83aa82b8de23c0c7b0f6791c8162c06e5a1"]}, 0x300}], 0x1, 0x0, 0x0, 0x40040c0}, 0x20040001)

06:21:34 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x7, 0x0, 0xf8, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x9}, 0x4, 0x3, 0x6, 0x3, 0x10000, 0x1, 0x8, 0x0, 0x3, 0x0, 0xfff}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x6)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x28}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000000))
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)

[  143.817329] ------------[ cut here ]------------
[  143.817367] 
[  143.817372] ======================================================
[  143.817379] WARNING: possible circular locking dependency detected
[  143.817385] 6.0.0-rc7-next-20220930 #1 Not tainted
[  143.817397] ------------------------------------------------------
[  143.817403] syz-executor.1/3976 is trying to acquire lock:
[  143.817415] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  143.817488] 
[  143.817488] but task is already holding lock:
[  143.817493] ffff88803fc68020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  143.817540] 
[  143.817540] which lock already depends on the new lock.
[  143.817540] 
[  143.817546] 
[  143.817546] the existing dependency chain (in reverse order) is:
[  143.817551] 
[  143.817551] -> #3 (&ctx->lock){....}-{2:2}:
[  143.817576]        _raw_spin_lock+0x2a/0x40
[  143.817597]        __perf_event_task_sched_out+0x53b/0x18d0
[  143.817617]        __schedule+0xedd/0x2470
[  143.817642]        schedule+0xda/0x1b0
[  143.817666]        futex_wait_queue+0xf5/0x1e0
[  143.817688]        futex_wait+0x28e/0x690
[  143.817706]        do_futex+0x2ff/0x380
[  143.817724]        __x64_sys_futex+0x1c6/0x4d0
[  143.817742]        do_syscall_64+0x3b/0x90
[  143.817773]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  143.817797] 
[  143.817797] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  143.817822]        _raw_spin_lock_nested+0x30/0x40
[  143.817841]        raw_spin_rq_lock_nested+0x1e/0x30
[  143.817864]        task_fork_fair+0x63/0x4d0
[  143.817895]        sched_cgroup_fork+0x3d0/0x540
[  143.817921]        copy_process+0x4183/0x6e20
[  143.817940]        kernel_clone+0xe7/0x890
[  143.817957]        user_mode_thread+0xad/0xf0
[  143.817977]        rest_init+0x24/0x250
[  143.818002]        arch_call_rest_init+0xf/0x14
[  143.818057]        start_kernel+0x4c6/0x4eb
[  143.818086]        secondary_startup_64_no_verify+0xe0/0xeb
[  143.818111] 
[  143.818111] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  143.818136]        _raw_spin_lock_irqsave+0x39/0x60
[  143.818155]        try_to_wake_up+0xab/0x1930
[  143.818179]        up+0x75/0xb0
[  143.818205]        __up_console_sem+0x6e/0x80
[  143.818233]        console_unlock+0x46a/0x590
[  143.818263]        vprintk_emit+0x1bd/0x560
[  143.818292]        vprintk+0x84/0xa0
[  143.818321]        _printk+0xba/0xf1
[  143.818341]        kauditd_hold_skb.cold+0x3f/0x4e
[  143.818372]        kauditd_send_queue+0x233/0x290
[  143.818399]        kauditd_thread+0x5f9/0x9c0
[  143.818424]        kthread+0x2ed/0x3a0
[  143.818450]        ret_from_fork+0x22/0x30
[  143.818472] 
[  143.818472] -> #0 ((console_sem).lock){....}-{2:2}:
[  143.818497]        __lock_acquire+0x2a02/0x5e70
[  143.818528]        lock_acquire+0x1a2/0x530
[  143.818557]        _raw_spin_lock_irqsave+0x39/0x60
[  143.818577]        down_trylock+0xe/0x70
[  143.818604]        __down_trylock_console_sem+0x3b/0xd0
[  143.818633]        vprintk_emit+0x16b/0x560
[  143.818663]        vprintk+0x84/0xa0
[  143.818692]        _printk+0xba/0xf1
[  143.818710]        report_bug.cold+0x72/0xab
[  143.818740]        handle_bug+0x3c/0x70
[  143.818770]        exc_invalid_op+0x14/0x50
[  143.818801]        asm_exc_invalid_op+0x16/0x20
[  143.818823]        group_sched_out.part.0+0x2c7/0x460
[  143.818856]        ctx_sched_out+0x8f1/0xc10
[  143.818886]        __perf_event_task_sched_out+0x6d0/0x18d0
[  143.818906]        __schedule+0xedd/0x2470
[  143.818931]        schedule+0xda/0x1b0
[  143.818955]        futex_wait_queue+0xf5/0x1e0
[  143.818975]        futex_wait+0x28e/0x690
[  143.818993]        do_futex+0x2ff/0x380
[  143.819010]        __x64_sys_futex+0x1c6/0x4d0
[  143.819029]        do_syscall_64+0x3b/0x90
[  143.819059]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  143.819082] 
[  143.819082] other info that might help us debug this:
[  143.819082] 
[  143.819087] Chain exists of:
[  143.819087]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  143.819087] 
[  143.819114]  Possible unsafe locking scenario:
[  143.819114] 
[  143.819118]        CPU0                    CPU1
[  143.819123]        ----                    ----
[  143.819127]   lock(&ctx->lock);
[  143.819137]                                lock(&rq->__lock);
[  143.819149]                                lock(&ctx->lock);
[  143.819160]   lock((console_sem).lock);
[  143.819171] 
[  143.819171]  *** DEADLOCK ***
[  143.819171] 
[  143.819174] 2 locks held by syz-executor.1/3976:
[  143.819186]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  143.819240]  #1: ffff88803fc68020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  143.819288] 
[  143.819288] stack backtrace:
[  143.819293] CPU: 0 PID: 3976 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1
[  143.819315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  143.819329] Call Trace:
[  143.819335]  <TASK>
[  143.819342]  dump_stack_lvl+0x8b/0xb3
[  143.819376]  check_noncircular+0x263/0x2e0
[  143.819406]  ? format_decode+0x26c/0xb50
[  143.819435]  ? print_circular_bug+0x450/0x450
[  143.819467]  ? simple_strtoul+0x30/0x30
[  143.819496]  ? format_decode+0x26c/0xb50
[  143.819528]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  143.819560]  __lock_acquire+0x2a02/0x5e70
[  143.819600]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  143.819641]  lock_acquire+0x1a2/0x530
[  143.819671]  ? down_trylock+0xe/0x70
[  143.819703]  ? lock_release+0x750/0x750
[  143.819740]  ? vprintk+0x84/0xa0
[  143.819773]  _raw_spin_lock_irqsave+0x39/0x60
[  143.819794]  ? down_trylock+0xe/0x70
[  143.819823]  down_trylock+0xe/0x70
[  143.819852]  ? vprintk+0x84/0xa0
[  143.819883]  __down_trylock_console_sem+0x3b/0xd0
[  143.819915]  vprintk_emit+0x16b/0x560
[  143.819949]  vprintk+0x84/0xa0
[  143.819981]  _printk+0xba/0xf1
[  143.820002]  ? record_print_text.cold+0x16/0x16
[  143.820032]  ? report_bug.cold+0x66/0xab
[  143.820064]  ? group_sched_out.part.0+0x2c7/0x460
[  143.820098]  report_bug.cold+0x72/0xab
[  143.820132]  handle_bug+0x3c/0x70
[  143.820165]  exc_invalid_op+0x14/0x50
[  143.820198]  asm_exc_invalid_op+0x16/0x20
[  143.820221] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  143.820259] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  143.820280] RSP: 0018:ffff88804090f8f8 EFLAGS: 00010006
[  143.820296] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  143.820310] RDX: ffff888017749ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  143.820324] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  143.820337] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88803fc68000
[  143.820351] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  143.820371]  ? group_sched_out.part.0+0x2c7/0x460
[  143.820408]  ? group_sched_out.part.0+0x2c7/0x460
[  143.820444]  ctx_sched_out+0x8f1/0xc10
[  143.820480]  __perf_event_task_sched_out+0x6d0/0x18d0
[  143.820506]  ? lock_is_held_type+0xd7/0x130
[  143.820532]  ? __perf_cgroup_move+0x160/0x160
[  143.820551]  ? set_next_entity+0x304/0x550
[  143.820588]  ? lock_is_held_type+0xd7/0x130
[  143.820613]  __schedule+0xedd/0x2470
[  143.820645]  ? io_schedule_timeout+0x150/0x150
[  143.820673]  ? futex_wait_setup+0x166/0x230
[  143.820700]  schedule+0xda/0x1b0
[  143.820727]  futex_wait_queue+0xf5/0x1e0
[  143.820750]  futex_wait+0x28e/0x690
[  143.820773]  ? futex_wait_setup+0x230/0x230
[  143.820798]  ? wake_up_q+0x8b/0xf0
[  143.820822]  ? do_raw_spin_unlock+0x4f/0x220
[  143.820857]  ? futex_wake+0x158/0x490
[  143.820888]  ? fd_install+0x1f9/0x640
[  143.820916]  do_futex+0x2ff/0x380
[  143.820936]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  143.820966]  __x64_sys_futex+0x1c6/0x4d0
[  143.820990]  ? __x64_sys_futex_time32+0x480/0x480
[  143.821014]  ? syscall_enter_from_user_mode+0x1d/0x50
[  143.821040]  ? syscall_enter_from_user_mode+0x1d/0x50
[  143.821068]  do_syscall_64+0x3b/0x90
[  143.821101]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  143.821125] RIP: 0033:0x7f2f0142fb19
[  143.821140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  143.821160] RSP: 002b:00007f2efe9a5218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  143.821180] RAX: ffffffffffffffda RBX: 00007f2f01542f68 RCX: 00007f2f0142fb19
[  143.821194] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2f01542f68
[  143.821207] RBP: 00007f2f01542f60 R08: 0000000000000000 R09: 0000000000000000
[  143.821220] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2f01542f6c
[  143.821233] R13: 00007ffcb474aa9f R14: 00007f2efe9a5300 R15: 0000000000022000
[  143.821257]  </TASK>
[  143.926630] WARNING: CPU: 0 PID: 3976 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  143.927873] Modules linked in:
[  143.928306] CPU: 0 PID: 3976 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1
[  143.929377] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  143.930854] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  143.931589] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  143.933949] RSP: 0018:ffff88804090f8f8 EFLAGS: 00010006
[  143.934659] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  143.935600] RDX: ffff888017749ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  143.936536] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  143.937470] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88803fc68000
[  143.938425] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  143.939350] FS:  00007f2efe9a5700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  143.940378] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  143.941130] CR2: 0000001b2d820000 CR3: 000000003bda4000 CR4: 0000000000350ef0
[  143.942081] Call Trace:
[  143.942423]  <TASK>
[  143.942747]  ctx_sched_out+0x8f1/0xc10
[  143.943305]  __perf_event_task_sched_out+0x6d0/0x18d0
[  143.944000]  ? lock_is_held_type+0xd7/0x130
[  143.944583]  ? __perf_cgroup_move+0x160/0x160
[  143.945183]  ? set_next_entity+0x304/0x550
[  143.945770]  ? lock_is_held_type+0xd7/0x130
[  143.946355]  __schedule+0xedd/0x2470
[  143.946864]  ? io_schedule_timeout+0x150/0x150
[  143.947494]  ? futex_wait_setup+0x166/0x230
[  143.948077]  schedule+0xda/0x1b0
[  143.948550]  futex_wait_queue+0xf5/0x1e0
[  143.949100]  futex_wait+0x28e/0x690
[  143.949606]  ? futex_wait_setup+0x230/0x230
[  143.950193]  ? wake_up_q+0x8b/0xf0
[  143.950679]  ? do_raw_spin_unlock+0x4f/0x220
[  143.951291]  ? futex_wake+0x158/0x490
[  143.951818]  ? fd_install+0x1f9/0x640
[  143.952336]  do_futex+0x2ff/0x380
[  143.952809]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  143.953584]  __x64_sys_futex+0x1c6/0x4d0
[  143.954133]  ? __x64_sys_futex_time32+0x480/0x480
[  143.954790]  ? syscall_enter_from_user_mode+0x1d/0x50
[  143.955477]  ? syscall_enter_from_user_mode+0x1d/0x50
[  143.956164]  do_syscall_64+0x3b/0x90
[  143.956679]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  143.957354] RIP: 0033:0x7f2f0142fb19
[  143.957850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  143.960221] RSP: 002b:00007f2efe9a5218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  143.961204] RAX: ffffffffffffffda RBX: 00007f2f01542f68 RCX: 00007f2f0142fb19
[  143.962090] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2f01542f68
[  143.962962] RBP: 00007f2f01542f60 R08: 0000000000000000 R09: 0000000000000000
[  143.963845] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2f01542f6c
[  143.964720] R13: 00007ffcb474aa9f R14: 00007f2efe9a5300 R15: 0000000000022000
[  143.965606]  </TASK>
[  143.965905] irq event stamp: 192
[  143.966349] hardirqs last  enabled at (191): [<ffffffff8425379d>] syscall_enter_from_user_mode+0x1d/0x50
[  143.967506] hardirqs last disabled at (192): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  143.968532] softirqs last  enabled at (66): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  143.969558] softirqs last disabled at (49): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  143.970653] ---[ end trace 0000000000000000 ]---
06:21:34 executing program 6:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
accept(r0, 0x0, &(0x7f0000000100))
sendmsg$inet6(r0, &(0x7f00000063c0)={&(0x7f0000006140)={0xa, 0x4e22, 0x0, @mcast2}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000370000000019fa302018383d62be076ea7fd000000000000004000000000"], 0x18}, 0x0)
ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast1, @private1={0xfc, 0x1, '\x00', 0x1}, 0x4, 0x101, 0x20, 0x400, 0x0, 0x100000016})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = dup(r1)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c)
accept$packet(r2, 0x0, &(0x7f0000000000))

[  143.997800] syz-executor.4 uses obsolete (PF_INET,SOCK_PACKET)
06:21:34 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = dup(r0)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000009380)=[{{&(0x7f0000000400)={0xa, 0x4e22, 0x0, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="140000000000000029952d937190801b03528297af0b5547"], 0x18}}], 0x1, 0x0)

[  144.028420] audit: type=1400 audit(1664864494.656:9): avc:  denied  { checkpoint_restore } for  pid=3972 comm="syz-executor.7" capability=40  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
06:21:34 executing program 0:
prctl$PR_SET_FP_MODE(0x2d, 0x1)
openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)

06:21:34 executing program 2:
r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0)
ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, 0x0)
r2 = dup(r0)
flistxattr(r2, &(0x7f0000000000)=""/159, 0x9f)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000980)='net/protocols\x00')
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
truncate(&(0x7f0000002b40)='./file0\x00', 0x0)

[  144.374372] audit: type=1400 audit(1664864495.002:10): avc:  denied  { write } for  pid=3975 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1

VM DIAGNOSIS:
06:21:34  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88804090f340
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f2efe9a5700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d820000 CR3=000000003bda4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f2f015167c0 00007f2f015167c8
YMM02=0000000000000000 0000000000000000 00007f2f015167e0 00007f2f015167c0
YMM03=0000000000000000 0000000000000000 00007f2f015167c8 00007f2f015167c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88806ce3f080 RCX=0000000000000000 RDX=ffff888017748000
RSI=ffffffff813bbaa7 RDI=0000000000000005 RBP=0000000000000000 RSP=ffff88804095f958
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=0000000000000003 R13=ffffed100d9c7e11 R14=ffff88806ce3f088 R15=0000000000000001
RIP=ffffffff813bbaa9 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555e5a400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f2f01537d5c CR3=000000003bda4000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f2f015167c0 00007f2f015167c8
YMM02=0000000000000000 0000000000000000 00007f2f015167e0 00007f2f015167c0
YMM03=0000000000000000 0000000000000000 00007f2f015167c8 00007f2f015167c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000