Warning: Permanently added '[localhost]:16570' (ECDSA) to the list of known hosts.
2022/10/06 09:17:49 fuzzer started
2022/10/06 09:17:49 dialing manager at localhost:37193
syzkaller login: [   43.304164] cgroup: Unknown subsys name 'net'
[   43.377170] cgroup: Unknown subsys name 'rlimit'
2022/10/06 09:18:03 syscalls: 2215
2022/10/06 09:18:03 code coverage: enabled
2022/10/06 09:18:03 comparison tracing: enabled
2022/10/06 09:18:03 extra coverage: enabled
2022/10/06 09:18:03 setuid sandbox: enabled
2022/10/06 09:18:03 namespace sandbox: enabled
2022/10/06 09:18:03 Android sandbox: enabled
2022/10/06 09:18:03 fault injection: enabled
2022/10/06 09:18:03 leak checking: enabled
2022/10/06 09:18:03 net packet injection: enabled
2022/10/06 09:18:03 net device setup: enabled
2022/10/06 09:18:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/06 09:18:03 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/06 09:18:03 USB emulation: enabled
2022/10/06 09:18:03 hci packet injection: enabled
2022/10/06 09:18:03 wifi device emulation: failed to parse kernel version (6.0.0-next-20221005                                              )
2022/10/06 09:18:03 802.15.4 emulation: enabled
2022/10/06 09:18:03 fetching corpus: 50, signal 21165/22964 (executing program)
2022/10/06 09:18:03 fetching corpus: 100, signal 35628/38947 (executing program)
2022/10/06 09:18:03 fetching corpus: 150, signal 40611/45477 (executing program)
2022/10/06 09:18:03 fetching corpus: 200, signal 49334/55536 (executing program)
2022/10/06 09:18:03 fetching corpus: 250, signal 56382/63797 (executing program)
2022/10/06 09:18:03 fetching corpus: 300, signal 62134/70740 (executing program)
2022/10/06 09:18:04 fetching corpus: 350, signal 66077/75861 (executing program)
2022/10/06 09:18:04 fetching corpus: 400, signal 70302/81138 (executing program)
2022/10/06 09:18:04 fetching corpus: 450, signal 73922/85811 (executing program)
2022/10/06 09:18:04 fetching corpus: 500, signal 76286/89245 (executing program)
2022/10/06 09:18:04 fetching corpus: 550, signal 78418/92482 (executing program)
2022/10/06 09:18:04 fetching corpus: 600, signal 80327/95445 (executing program)
2022/10/06 09:18:04 fetching corpus: 650, signal 83379/99385 (executing program)
2022/10/06 09:18:04 fetching corpus: 700, signal 86489/103285 (executing program)
2022/10/06 09:18:04 fetching corpus: 750, signal 89544/107170 (executing program)
2022/10/06 09:18:04 fetching corpus: 800, signal 92235/110681 (executing program)
2022/10/06 09:18:04 fetching corpus: 850, signal 94500/113758 (executing program)
2022/10/06 09:18:05 fetching corpus: 900, signal 97532/117458 (executing program)
2022/10/06 09:18:05 fetching corpus: 950, signal 98992/119732 (executing program)
2022/10/06 09:18:05 fetching corpus: 1000, signal 100710/122195 (executing program)
2022/10/06 09:18:05 fetching corpus: 1050, signal 103191/125321 (executing program)
2022/10/06 09:18:05 fetching corpus: 1100, signal 104287/127235 (executing program)
2022/10/06 09:18:05 fetching corpus: 1150, signal 105476/129199 (executing program)
2022/10/06 09:18:05 fetching corpus: 1200, signal 106331/130839 (executing program)
2022/10/06 09:18:05 fetching corpus: 1250, signal 108574/133561 (executing program)
2022/10/06 09:18:05 fetching corpus: 1300, signal 110504/136028 (executing program)
2022/10/06 09:18:05 fetching corpus: 1350, signal 114225/139832 (executing program)
2022/10/06 09:18:06 fetching corpus: 1400, signal 115996/142091 (executing program)
2022/10/06 09:18:06 fetching corpus: 1450, signal 117891/144382 (executing program)
2022/10/06 09:18:06 fetching corpus: 1500, signal 119119/146235 (executing program)
2022/10/06 09:18:06 fetching corpus: 1550, signal 120192/147879 (executing program)
2022/10/06 09:18:06 fetching corpus: 1600, signal 122158/150162 (executing program)
2022/10/06 09:18:06 fetching corpus: 1650, signal 123648/152089 (executing program)
2022/10/06 09:18:06 fetching corpus: 1700, signal 124974/153840 (executing program)
2022/10/06 09:18:06 fetching corpus: 1750, signal 126120/155482 (executing program)
2022/10/06 09:18:06 fetching corpus: 1800, signal 127276/157077 (executing program)
2022/10/06 09:18:07 fetching corpus: 1850, signal 128978/159056 (executing program)
2022/10/06 09:18:07 fetching corpus: 1900, signal 129873/160426 (executing program)
2022/10/06 09:18:07 fetching corpus: 1950, signal 130879/161836 (executing program)
2022/10/06 09:18:07 fetching corpus: 2000, signal 131496/163021 (executing program)
2022/10/06 09:18:07 fetching corpus: 2050, signal 132442/164418 (executing program)
2022/10/06 09:18:07 fetching corpus: 2100, signal 133239/165739 (executing program)
2022/10/06 09:18:07 fetching corpus: 2150, signal 133836/166886 (executing program)
2022/10/06 09:18:07 fetching corpus: 2200, signal 135254/168511 (executing program)
2022/10/06 09:18:07 fetching corpus: 2250, signal 135989/169750 (executing program)
2022/10/06 09:18:07 fetching corpus: 2300, signal 136935/171006 (executing program)
2022/10/06 09:18:07 fetching corpus: 2350, signal 138019/172387 (executing program)
2022/10/06 09:18:08 fetching corpus: 2400, signal 138921/173560 (executing program)
2022/10/06 09:18:08 fetching corpus: 2450, signal 139794/174758 (executing program)
2022/10/06 09:18:08 fetching corpus: 2500, signal 142205/176834 (executing program)
2022/10/06 09:18:08 fetching corpus: 2550, signal 144696/178833 (executing program)
2022/10/06 09:18:08 fetching corpus: 2600, signal 146245/180292 (executing program)
2022/10/06 09:18:08 fetching corpus: 2650, signal 147014/181377 (executing program)
2022/10/06 09:18:08 fetching corpus: 2700, signal 148069/182572 (executing program)
2022/10/06 09:18:08 fetching corpus: 2750, signal 149398/183848 (executing program)
2022/10/06 09:18:08 fetching corpus: 2800, signal 149832/184678 (executing program)
2022/10/06 09:18:08 fetching corpus: 2850, signal 150873/185790 (executing program)
2022/10/06 09:18:09 fetching corpus: 2900, signal 151563/186720 (executing program)
2022/10/06 09:18:09 fetching corpus: 2950, signal 151979/187543 (executing program)
2022/10/06 09:18:09 fetching corpus: 3000, signal 152651/188456 (executing program)
2022/10/06 09:18:09 fetching corpus: 3050, signal 153712/189509 (executing program)
2022/10/06 09:18:09 fetching corpus: 3100, signal 154166/190307 (executing program)
2022/10/06 09:18:09 fetching corpus: 3150, signal 154576/191071 (executing program)
2022/10/06 09:18:09 fetching corpus: 3200, signal 155490/192028 (executing program)
2022/10/06 09:18:09 fetching corpus: 3250, signal 155891/192756 (executing program)
2022/10/06 09:18:09 fetching corpus: 3300, signal 156473/193530 (executing program)
2022/10/06 09:18:09 fetching corpus: 3350, signal 158024/194720 (executing program)
2022/10/06 09:18:09 fetching corpus: 3400, signal 158870/195567 (executing program)
2022/10/06 09:18:10 fetching corpus: 3450, signal 159218/196216 (executing program)
2022/10/06 09:18:10 fetching corpus: 3500, signal 160001/197032 (executing program)
2022/10/06 09:18:10 fetching corpus: 3550, signal 160504/197725 (executing program)
2022/10/06 09:18:10 fetching corpus: 3600, signal 160978/198408 (executing program)
2022/10/06 09:18:10 fetching corpus: 3650, signal 161559/199142 (executing program)
2022/10/06 09:18:10 fetching corpus: 3700, signal 162280/199876 (executing program)
2022/10/06 09:18:10 fetching corpus: 3750, signal 162652/200499 (executing program)
2022/10/06 09:18:10 fetching corpus: 3800, signal 163015/201146 (executing program)
2022/10/06 09:18:10 fetching corpus: 3850, signal 163912/201999 (executing program)
2022/10/06 09:18:10 fetching corpus: 3900, signal 165201/202876 (executing program)
2022/10/06 09:18:10 fetching corpus: 3950, signal 165936/203595 (executing program)
2022/10/06 09:18:11 fetching corpus: 4000, signal 166617/204278 (executing program)
2022/10/06 09:18:11 fetching corpus: 4050, signal 167163/204904 (executing program)
2022/10/06 09:18:11 fetching corpus: 4100, signal 167889/205576 (executing program)
2022/10/06 09:18:11 fetching corpus: 4150, signal 168941/206286 (executing program)
2022/10/06 09:18:11 fetching corpus: 4200, signal 169624/206954 (executing program)
2022/10/06 09:18:11 fetching corpus: 4250, signal 169966/207433 (executing program)
2022/10/06 09:18:11 fetching corpus: 4300, signal 170291/207919 (executing program)
2022/10/06 09:18:11 fetching corpus: 4350, signal 171728/208639 (executing program)
2022/10/06 09:18:11 fetching corpus: 4400, signal 172125/209144 (executing program)
2022/10/06 09:18:11 fetching corpus: 4450, signal 172654/209642 (executing program)
2022/10/06 09:18:11 fetching corpus: 4500, signal 173038/210135 (executing program)
2022/10/06 09:18:12 fetching corpus: 4550, signal 173897/210672 (executing program)
2022/10/06 09:18:12 fetching corpus: 4600, signal 174564/211134 (executing program)
2022/10/06 09:18:12 fetching corpus: 4650, signal 175085/211619 (executing program)
2022/10/06 09:18:12 fetching corpus: 4700, signal 175756/212089 (executing program)
2022/10/06 09:18:12 fetching corpus: 4750, signal 176211/212517 (executing program)
2022/10/06 09:18:12 fetching corpus: 4800, signal 176596/212931 (executing program)
2022/10/06 09:18:12 fetching corpus: 4850, signal 177048/213364 (executing program)
2022/10/06 09:18:12 fetching corpus: 4900, signal 177554/213778 (executing program)
2022/10/06 09:18:12 fetching corpus: 4950, signal 178273/214324 (executing program)
2022/10/06 09:18:12 fetching corpus: 5000, signal 178931/214736 (executing program)
2022/10/06 09:18:12 fetching corpus: 5050, signal 179255/215119 (executing program)
2022/10/06 09:18:13 fetching corpus: 5100, signal 179851/215534 (executing program)
2022/10/06 09:18:13 fetching corpus: 5150, signal 180292/215891 (executing program)
2022/10/06 09:18:13 fetching corpus: 5200, signal 181356/216254 (executing program)
2022/10/06 09:18:13 fetching corpus: 5250, signal 182029/216660 (executing program)
2022/10/06 09:18:13 fetching corpus: 5300, signal 182741/217017 (executing program)
2022/10/06 09:18:13 fetching corpus: 5350, signal 183167/217325 (executing program)
2022/10/06 09:18:13 fetching corpus: 5400, signal 183442/217624 (executing program)
2022/10/06 09:18:13 fetching corpus: 5450, signal 183775/217693 (executing program)
2022/10/06 09:18:13 fetching corpus: 5500, signal 184342/217693 (executing program)
2022/10/06 09:18:13 fetching corpus: 5550, signal 185905/217756 (executing program)
2022/10/06 09:18:13 fetching corpus: 5600, signal 186223/217756 (executing program)
2022/10/06 09:18:14 fetching corpus: 5650, signal 187252/217758 (executing program)
2022/10/06 09:18:14 fetching corpus: 5700, signal 187632/217758 (executing program)
2022/10/06 09:18:14 fetching corpus: 5700, signal 187632/217758 (executing program)
2022/10/06 09:18:16 starting 8 fuzzer processes
09:18:16 executing program 0:
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)

09:18:16 executing program 1:
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff}, './file0\x00'})
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000000040)={{0x2, 0x8, @private=0xa010102}, {0x6}, 0x66, {0x2, 0x4e20, @local}, 'wlan0\x00'})
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f00000000c0)={'veth0_to_batadv\x00', {0x2, 0x0, @empty}})
sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x100, 0x70bd28, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000800)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000200)={{0x87, @local, 0x4e20, 0x2, 'nq\x00', 0x30, 0x7ff, 0x5}, {@dev={0xac, 0x14, 0x14, 0x14}, 0x4e24, 0x10000, 0x2, 0x4, 0x1}}, 0x44)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000280)={0x0, 0x3, 0x649e, 0x9})
getsockopt$inet_buf(r0, 0x0, 0x2b, &(0x7f00000002c0)=""/4096, &(0x7f00000012c0)=0x1000)
sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f00000013c0)={&(0x7f0000001300), 0xc, &(0x7f0000001380)={&(0x7f0000001340)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000040}, 0x4)
getpeername$inet(r0, &(0x7f0000001400)={0x2, 0x0, @loopback}, &(0x7f0000001440)=0x10)
fsetxattr$security_selinux(r0, &(0x7f0000001480), &(0x7f00000014c0)='system_u:object_r:textrel_shlib_t:s0\x00', 0x25, 0x2)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000001540), r0)
sendmsg$TIPC_CMD_GET_MEDIA_NAMES(r0, &(0x7f0000001600)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001580)={0x1c, r1, 0x200, 0x70bd2a, 0x25dfdbfb, {}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4084}, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000001640)={{0x88, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e24, 0x0, 'sed\x00', 0x7, 0x6, 0x44}, {@rand_addr=0x64010101, 0x4e22, 0x3, 0x8, 0x20, 0xa8}}, 0x44)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612)
r2 = fsmount(r0, 0x1, 0x74)
getsockopt$inet_mreqsrc(r2, 0x0, 0x25, &(0x7f00000016c0)={@multicast1, @initdev, @loopback}, &(0x7f0000001700)=0xc)
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001740), 0x200300, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r3, &(0x7f0000001940)={&(0x7f0000001780)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001900)={&(0x7f00000017c0)={0x120, 0x0, 0x4, 0x70bd26, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x222d3fde}}, {0x8, 0xb, 0x91d}, {0x6, 0x11, 0x3}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x9}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x7fff}, {0x6}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x4fee}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8}, {0x6, 0x11, 0x5}}]}, 0x120}, 0x1, 0x0, 0x0, 0x8000}, 0x20008800)
getsockopt$ARPT_SO_GET_INFO(r3, 0x0, 0x60, &(0x7f0000001980)={'filter\x00', 0x0, [0x9, 0x3ff, 0x3]}, &(0x7f0000001a00)=0x44)
bind$inet(r2, &(0x7f0000001a40)={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

[   70.346682] audit: type=1400 audit(1665047896.490:6): avc:  denied  { execmem } for  pid=289 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
09:18:16 executing program 2:
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4000)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MPATH(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x58, r2, 0x0, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0x80}, 0x5)
r3 = fcntl$dupfd(r1, 0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000640)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000600)={&(0x7f0000000240)={0x3c0, r2, 0x400, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x1, 0x17}}}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x100b}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x1f1}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xe, 0xcd, [0x8001, 0x400, 0x3, 0x946d, 0x3ff]}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_FRAME={0x368, 0x33, @auth={@with_ht={{{0x0, 0x0, 0xb, 0x0, 0x0, 0x1, 0x1}, {0x4}, @broadcast, @broadcast, @from_mac=@device_b, {0x1, 0xd53}}, @ver_80211n={0x0, 0x6, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1}}, 0x1, 0x0, 0x42, @val={0x10, 0x1, 0x44}, [{0xdd, 0x7e, "12a6755373872237ae3c2bcf2755e5f674cd9abf1abbc3b2f25ded8ac26031e1eb3adfc072fea93d7008a2421d5a53726af86dda240c311a88c57ed01dbd094c1c387e3c48b15e16107a5a618d3a518ebeb32f3c67cf1284f0590c4255839bfb35d40f9bbb17c94c50219f8a00afc2a488258874cfaae6a36ce48775215c"}, {0xdd, 0x6c, "fd3263362caed8c1e2113dc684b4bdda9fb87fe76c6e5506d6c6efb13f3a8a257972f3e1c2058c0d8120cfdf8760f2a689e800147781e9079425bfc03f100f4a238aebb05898b4f5e69571f85f931923528e9b62157e99db67c52785628a5f925d8c2fa2dfd4a364d6abf531"}, {0xdd, 0xfd, "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"}, {0xdd, 0xfc, "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"}, {0xdd, 0x52, "b0968e7feafa1e03bc366738de643164dff44ae980125c3e85cfe02091586330abaa332a3a80bf37ddb8c4cd94a5a192a3e63a1db0443d89f78a264a01628841910709dfeb605530cfe0fff562a1fc4eaa04"}]}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xa, 0xcd, [0x1, 0x2, 0x6]}]}, 0x3c0}, 0x1, 0x0, 0x0, 0x80}, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x24, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x80000000}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0xbff}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000018}, 0x10000040)
sendmsg$NL80211_CMD_GET_REG(r0, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x1c, r2, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x50}]}, 0x1c}, 0x1, 0x0, 0x0, 0x81}, 0x20000000)
r5 = accept4(r1, &(0x7f0000000880)=@phonet, &(0x7f0000000900)=0x80, 0x80000)
sendmsg$ETHTOOL_MSG_RINGS_SET(r5, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x1c, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0xd4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
r6 = openat$zero(0xffffffffffffff9c, &(0x7f0000000a40), 0x8480, 0x0)
sendmsg$NL80211_CMD_SET_MPATH(r6, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x40, r2, 0x800, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xffff8000, 0x23}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000810)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000b80)={{0x1, 0x1, 0x18, <r7=>r3}, './file0\x00'})
sendmsg$NL80211_CMD_TDLS_MGMT(r3, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x3c, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x6}, @NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0x5}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x5d}, @NL80211_ATTR_TDLS_DIALOG_TOKEN={0x5, 0x89, 0x9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20044890}, 0x4004085)
sendmsg$IPCTNL_MSG_EXP_NEW(r5, &(0x7f0000000f40)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000d00)={0x1e0, 0x0, 0x2, 0x5, 0x0, 0x0, {0x7, 0x0, 0x5}, [@CTA_EXPECT_CLASS={0x8}, @CTA_EXPECT_MASTER={0x10, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_NAT={0x138, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x8c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @local}}}]}, @CTA_EXPECT_NAT_TUPLE={0xa8, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1}, {0x14, 0x4, @dev={0xfe, 0x80, '\x00', 0x3f}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @local}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}]}, @CTA_EXPECT_ZONE={0x6}, @CTA_EXPECT_MASK={0x64, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x1}, 0x14)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), r5)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000001000)={'wlan1\x00', <r9=>0x0})
sendmsg$NL80211_CMD_JOIN_OCB(r0, &(0x7f00000010c0)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001080)={&(0x7f0000001040)={0x2c, r8, 0x200, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x48}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40008d2}, 0x40)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001100), r7)
sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001240)={&(0x7f0000001200)={0x14, 0x0, 0x800, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x14}, 0x60000000)

09:18:16 executing program 3:
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(0xffffffffffffffff, 0x942e, 0x0)
ioctl$FAT_IOCTL_SET_ATTRIBUTES(0xffffffffffffffff, 0x40047211, &(0x7f0000000000)=0x20)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, r0, 0x8, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x24000000)
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r2, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x8002)
r4 = dup2(0xffffffffffffffff, r1)
sendfile(r4, r1, &(0x7f0000000340)=0x5, 0x80000001)
write$cgroup_pid(r4, &(0x7f0000000380), 0x12)
r5 = perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x6, 0x81, 0x6, 0x3f, 0x0, 0xecd8, 0x448, 0x8, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x97, 0x40}, 0x4100, 0x8000, 0xffffffff, 0x9, 0x40, 0xff8, 0x1, 0x0, 0x1, 0x0, 0x1}, 0xffffffffffffffff, 0x9, r4, 0x8)
io_submit(0x0, 0x4, &(0x7f0000001680)=[&(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x1, r5, &(0x7f0000000440)="397f1c47168460cdcb95d1fd3a3715acb93c4312bf6bcbdd1fc810db7dc8c124f672b2c624d7c88e9ef97825b85202d82fdf7e59dba30edd20405288e4a336105d55f00c363760d5b109edb61f0d729f3845da34edb1278af789d2689009457ae68a25cc4e6917b172768f13cab5a395779d9d60f78d9806a7e9b23ffe2614bd40400a21e6a67d4ce082d884e7f6ac", 0x8f, 0x7fffffff, 0x0, 0x3, r4}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x1, r4, &(0x7f0000000540)="0d5354574884e7eba0904663914a2eca2108cd0d6c53009931a6eed5b3478272c3368446503f6cfcd8c518f07b90f1594756f9dccc823309", 0x38, 0x3, 0x0, 0x1}, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x7, 0x4, r4, &(0x7f00000005c0)="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", 0x1000, 0xbb97, 0x0, 0x3}, &(0x7f0000001640)={0x0, 0x0, 0x0, 0x1, 0x200, r1, &(0x7f0000001600)="312a5df017d14e859f6dc04cedf90bfa1ee1be97df5de125e5ac0b741930f211293d6d5f13d4c24cc21e16ca23", 0x2d, 0x1e20, 0x0, 0x2, r4}])
r6 = io_uring_setup(0x2a7b, &(0x7f00000016c0)={0x0, 0x6c95, 0x8, 0x0, 0x5d, 0x0, r1})
lseek(r6, 0x4, 0x0)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r7, 0x84009422, &(0x7f0000001740)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
syz_io_uring_setup(0x49d9, &(0x7f0000001b40)={0x0, 0xd1ab, 0x8, 0x0, 0x23d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001bc0), &(0x7f0000001c00))
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, 0x20010, r6, 0x8000000)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000001c40), 0x4)

09:18:16 executing program 4:
ioctl$FITHAW(0xffffffffffffffff, 0xc0045878)
r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x11ac42, 0x0)
r1 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder-control\x00', 0x6725c8b5a476f82b, 0x0)
sync_file_range(r1, 0x7, 0x7fffffff, 0x1)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f00000000c0)={&(0x7f0000000080)=""/55, 0x37, 0x80, 0x8})
getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000100), &(0x7f0000000140)=0x30)
kcmp(0x0, 0x0, 0x1, r0, 0xffffffffffffffff)
r2 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r2, 0x942e, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000180)=0x1b)
syz_io_uring_setup(0x5d98, &(0x7f00000001c0)={0x0, 0xbc8, 0x0, 0x2, 0x29e, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f00000002c0)={0x0, 0x0, {0x0, @struct, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_BALANCE_V2(r2, 0xc4009420, &(0x7f00000006c0)={0x2, 0x6, {0x731, @struct={0x0, 0x3}, r3, 0x7e8, 0x0, 0x0, 0x4, 0x2, 0x0, @usage, 0x9, 0x4, [0x4, 0x10000, 0x2, 0x80, 0x0, 0xfffffffffffffffe]}, {0x2, @struct={0x1, 0xba}, 0x0, 0x4, 0x1, 0x5, 0x8, 0x2, 0x403, @struct={0xada}, 0x0, 0x1, [0x3f, 0x5, 0x9, 0x200, 0x5, 0x1]}, {0xffffffffffffff69, @usage=0x7, 0x0, 0xfffffffffffffeff, 0x7, 0x0, 0xfffffffffffff801, 0x27, 0x84, @struct={0x2, 0x20}, 0x238f, 0x3, [0x7fff, 0xf86e, 0x7ff, 0xd0, 0xffff, 0xdf48]}, {0x9d, 0x0, 0x7f}})
shutdown(r0, 0x0)
accept4$bt_l2cap(r0, &(0x7f0000000ac0)={0x1f, 0x0, @none}, &(0x7f0000000b00)=0xe, 0x800)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000b40), 0x100000, 0x0)
ioctl$int_out(r4, 0x5460, &(0x7f0000000b80))
ioctl$TIOCSPGRP(r4, 0x5410, &(0x7f0000000bc0)=0xffffffffffffffff)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000c00), r0)
ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0)

09:18:16 executing program 6:
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x8002, &(0x7f0000000000)=0x101, 0x0, 0x0)
mlock(&(0x7f0000ffc000/0x3000)=nil, 0x3000)
mremap(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x4000, 0x4, &(0x7f0000ffc000/0x4000)=nil)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0x11, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x9)
r0 = pkey_alloc(0x0, 0x3)
pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x200000c, r0)
madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x65)
pkey_alloc(0x0, 0x1)
r1 = pkey_alloc(0x0, 0x2)
pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000000, r1)
shmat(0xffffffffffffffff, &(0x7f0000ffa000/0x3000)=nil, 0x1000)
pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, r0)
r2 = pkey_alloc(0x0, 0x1)
pkey_free(r2)
shmat(0x0, &(0x7f0000ffa000/0x3000)=nil, 0x2000)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000ff9000/0x1000)=nil)
mlock(&(0x7f0000fff000/0x1000)=nil, 0x1000)
r3 = pkey_alloc(0x0, 0x3)
pkey_mprotect(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, r3)

09:18:16 executing program 5:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x74, r0, 0x100, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3f, 0x34}}}}, [@mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}], @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xa}, @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}]]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
r1 = socket$netlink(0x10, 0x3, 0x15)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f0000000700)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000300)={0x39c, r0, 0x300, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x101, 0x7c}}}}, [@NL80211_ATTR_TWT_RESPONDER={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x142}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}], @acl_policy=[@NL80211_ATTR_MAC_ADDRS={0x70, 0xa6, 0x0, 0x1, [{0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_ACL_POLICY={0x8}], @NL80211_ATTR_TX_RATES={0x2e0, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x3c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x6, 0x1, [0x16, 0x36]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x1d, 0x2, [{0x0, 0x3}, {0x1, 0x2}, {0x0, 0x9}, {0x7, 0x1}, {0x7, 0x6}, {0x7, 0x4}, {0x0, 0x9}, {0x4, 0x6}, {0x7, 0x9}, {0x0, 0xa}, {0x1, 0x4}, {0x1, 0x9}, {0x1, 0x8}, {0x4, 0x8}, {0x4, 0x7}, {0x2, 0x6}, {0x4, 0x5}, {0x1, 0x1}, {0x2, 0x4}, {0x3, 0x2}, {0x1, 0x4}, {0x2, 0x8}, {0x6, 0x3}, {0x5, 0x1}, {0x6, 0x6}]}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_6GHZ={0xcc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x22, 0x1, [0x17, 0x1, 0x48, 0x30, 0x3, 0x24, 0x60, 0x36, 0x24, 0x2, 0x237474e24a4b1378, 0x36, 0x0, 0x6c, 0x16, 0x1, 0x6, 0x3, 0x62, 0x30, 0x6, 0x955e4d6dcfd4647b, 0x60, 0x60, 0x0, 0x36, 0xc, 0x1, 0x60, 0x18]}, @NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x4, 0x16, 0x5, 0x16, 0x30, 0x4, 0x16, 0x60, 0x4, 0xb, 0xb, 0x2, 0x5, 0x1, 0x48, 0x5, 0xc, 0x4, 0x30, 0x30, 0x16, 0x48, 0x2, 0x6]}, @NL80211_TXRATE_HT={0x40, 0x2, [{0x1, 0x9}, {0x7, 0x4}, {0x3, 0x5}, {0x2, 0x7}, {0x5, 0x5}, {0x5, 0x6}, {0x5, 0x8}, {0x2, 0x9}, {0x7, 0x8}, {0x3, 0x3}, {0x1, 0x8}, {0x3, 0x9}, {0x3, 0x5}, {0x2, 0x7}, {0x7, 0x6}, {0x7, 0xa}, {0x0, 0x4}, {0x7, 0x2}, {0x2, 0x4}, {0x5, 0xa}, {0x5}, {0x7, 0x8}, {0x6, 0x5}, {0x5, 0xa}, {0x7, 0x3}, {0x1, 0x3}, {0x7, 0x6}, {0x6, 0x8}, {0x0, 0x6}, {0x2, 0x7}, {0x6, 0x7}, {0x5, 0x3}, {0x4, 0x7}, {0x0, 0x8}, {0x5, 0x8}, {0x7, 0x1}, {0x6, 0x7}, {0x0, 0x3}, {0x5, 0x6}, {0x4, 0x2}, {0x7, 0x1}, {0x5, 0x1}, {0x7}, {0x0, 0x8}, {0x4, 0x8}, {0x0, 0x5}, {0x1, 0x2}, {0x7, 0x1}, {0x4, 0x9}, {0x1, 0xa}, {0x5, 0xa}, {0x3}, {0x7, 0x7}, {0x1, 0xa}, {0x1, 0x8}, {0x1}, {0x5, 0x6}, {0x3, 0xa}, {0x2}, {0x6}]}, @NL80211_TXRATE_HT={0x3f, 0x2, [{0x3, 0x3}, {0x7, 0x6}, {0x0, 0x3}, {0x0, 0x1}, {0x0, 0x3}, {0x1, 0x4}, {0x4, 0x5}, {0x1, 0x5}, {0x1, 0x1}, {0x3, 0x8}, {0x2, 0x1}, {0x6, 0x4}, {0x6, 0x1}, {0x5, 0x9}, {0x2}, {0x1, 0x8}, {0x7}, {0x3, 0x4}, {0x4, 0x7}, {0x5, 0xa}, {0x5, 0x4}, {0x5, 0x6}, {0x0, 0x1}, {0x2, 0x3}, {0x3, 0x8}, {0x4, 0x8}, {0x7, 0x3}, {0x6, 0xa}, {0x4, 0x4}, {0x6, 0x3}, {0x0, 0x7}, {0x7, 0x7}, {0x5, 0x1}, {0x0, 0xa}, {0x0, 0x2}, {0x5, 0x3}, {0x5, 0xa}, {}, {0x0, 0x8}, {0x3}, {0x1, 0x5}, {0x7, 0x1}, {0x4, 0xa}, {0x3, 0x1}, {0x2}, {0x7, 0x8}, {0x4, 0x4}, {0x2, 0x7}, {0x0, 0x7}, {0x2, 0x4}, {0x3, 0x8}, {0x3, 0x1}, {0x0, 0x9}, {0x1, 0x5}, {0x0, 0x6}, {0x3, 0xa}, {0x0, 0x6}, {0x7, 0xa}, {0x5, 0x2}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_5GHZ={0xa8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2c, 0x2, [{0x4, 0x1}, {0x5, 0x3}, {0x4, 0x9}, {0x2, 0x1}, {0x0, 0x8}, {0x6, 0x6}, {0x7, 0x8}, {0x1, 0x7}, {0x1, 0x5}, {0x7}, {0x1, 0x6}, {0x3, 0x5}, {0x3, 0x4}, {0x2, 0x6}, {0x3}, {0x1, 0x4}, {0x4, 0xa}, {0x2, 0x2}, {0x2, 0x1}, {0x2, 0x4}, {0x1, 0x9}, {0x4, 0x4}, {0x7, 0x6}, {0x4}, {0x7, 0x6}, {0x3, 0x8}, {0x6, 0x6}, {0x4, 0xa}, {}, {0x4, 0x2}, {0x5, 0x5}, {0x4, 0x9}, {0x3}, {0x6, 0x9}, {0x4}, {0x7, 0x8}, {0x4, 0x1}, {0x5, 0x8}, {0x4, 0x1}, {0x1, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x3, 0xff, 0xc296, 0x5a, 0x8, 0x4, 0x7]}}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x5a, 0x5, 0x12, 0x18, 0x2, 0x18, 0x16, 0x2, 0x5, 0x6, 0x16, 0x2, 0x2]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3f, 0x9, 0x9, 0x40, 0x3, 0xfe01, 0x2, 0xd07]}}, @NL80211_TXRATE_HT={0x33, 0x2, [{0x0, 0x5}, {0x3, 0x6}, {0x5, 0x2}, {0x6, 0xa}, {0x6, 0x6}, {0x1, 0x1}, {0x4, 0x2}, {0x0, 0x1}, {0x1, 0x7}, {0x7, 0x6}, {0x7, 0x7}, {0x2, 0x2}, {0x5, 0x6}, {0x4, 0x1}, {0x3}, {0x0, 0x4}, {0x6, 0x8}, {0x5, 0x4}, {0x0, 0x2}, {0x4, 0x8}, {0x2, 0x1}, {0x4, 0x6}, {0x3, 0x9}, {0x1}, {0x1, 0x3}, {0x3, 0xa}, {0x7, 0x9}, {0x6, 0x7}, {}, {0x1, 0x1}, {0x6, 0x3}, {0x4, 0x9}, {0x3, 0x9}, {0x2, 0xa}, {0x7, 0xa}, {0x0, 0x9}, {0x4, 0x9}, {0x7, 0x7}, {0x6, 0x7}, {0x2, 0xa}, {0x7, 0x7}, {0x7, 0x6}, {0x7, 0x1}, {0x4, 0x8}, {0x7, 0xa}, {0x1, 0x1}, {0x1, 0x9}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_2GHZ={0x14, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_5GHZ={0x5c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x0, 0x3, 0x2, 0x0, 0x8, 0x1, 0x3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xf118, 0xca5, 0x2, 0x2000, 0x7, 0xc81, 0x4]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6d, 0x8, 0x4, 0x100, 0x2, 0xeb61, 0x7]}}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0xb, 0x30, 0x5, 0x60, 0x30, 0x2, 0x6, 0xc, 0x48, 0x3, 0x6, 0x4, 0x3]}, @NL80211_TXRATE_HT={0x7, 0x2, [{0x2, 0x6}, {0x4, 0x4}, {0x0, 0xa}]}]}, @NL80211_BAND_6GHZ={0x70, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x24, 0x1, [0x36, 0x4, 0x6, 0x2, 0x1, 0xc, 0x5, 0x1b, 0x60, 0x30, 0x24, 0x2, 0xb, 0x30, 0x48, 0x1, 0xb, 0x2, 0x9, 0x1b, 0xc, 0x1, 0x45, 0x5, 0x12, 0x16, 0x3, 0x12, 0x6c, 0x9, 0x12, 0x18]}, @NL80211_TXRATE_HT={0x2c, 0x2, [{0x1, 0x6}, {0x5, 0x8}, {0x0, 0x6}, {0x4, 0x4}, {0x1, 0x5}, {0x6, 0x3}, {0x6, 0x1}, {0x1, 0x2}, {0x4, 0x3}, {0x5, 0x2}, {0x3, 0x7}, {0x3}, {0x7, 0x2}, {0x6, 0x2}, {0x7, 0x6}, {0x6, 0x8}, {0x5, 0x5}, {0x5, 0x9}, {0x2}, {0x1, 0x2}, {0x5, 0x7}, {0x3, 0x1}, {0x0, 0x2}, {0x5, 0x5}, {0x4, 0x9}, {0x2, 0x8}, {}, {0x6, 0x6}, {0x2, 0x8}, {0x7}, {0x3, 0x4}, {0x5, 0x3}, {0x3, 0x3}, {0x1}, {0x6, 0x4}, {0x2, 0x4}, {0x5, 0x3}, {0x6, 0x6}, {0x1}, {0x0, 0x5}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x401, 0x81, 0x0, 0x81, 0x0, 0x4, 0x3]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_60GHZ={0x4c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2c, 0x2, [{0x4, 0x1}, {0x0, 0x9}, {0x4, 0x7}, {0x3, 0xa}, {0x4, 0x2}, {0x1, 0xa}, {0x1, 0x7}, {0x4, 0x4}, {0x0, 0x3}, {0x3, 0x7}, {0x1, 0x2}, {0x1, 0xa}, {0x3, 0x2}, {0x1, 0x3}, {0x0, 0x9}, {0x0, 0x5}, {0x5, 0x5}, {0x5, 0xa}, {}, {0x2, 0x9}, {0x1}, {0x0, 0x6}, {0x6, 0x2}, {0x3, 0x6}, {}, {0x1, 0x9}, {0x2, 0x9}, {0x4, 0x7}, {0x5, 0x4}, {0x1}, {0x2, 0x9}, {0x1, 0x8}, {0x3, 0x4}, {0x4, 0x4}, {0x1, 0x2}, {0x5, 0x5}, {0x4, 0x6}, {0x2, 0x2}, {0x7, 0x1}, {0x3, 0x8}]}, @NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x2, 0xc, 0x4, 0xd8b28f0363d8dae9, 0x12, 0x30, 0x0, 0x3, 0x6c, 0x3, 0x4, 0x36, 0x18, 0x38, 0x16, 0x5, 0x5, 0x5, 0x24, 0x30, 0xb, 0x0, 0x4, 0x2f]}]}]}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_PRIVACY={0x4}]}, 0x39c}, 0x1, 0x0, 0x0, 0x4000}, 0x4)
r3 = creat(&(0x7f0000000740)='./file0\x00', 0x12)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), r1)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r3, &(0x7f00000008c0)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x4c, r4, 0x4, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x38, 0x11d, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x5}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xb0}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x8040000)
r5 = syz_io_uring_setup(0x61d6, &(0x7f0000000900)={0x0, 0x843b, 0x8, 0x2, 0xd2, 0x0, r3}, &(0x7f0000ff2000/0xd000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000000980), &(0x7f00000009c0))
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000a00)={{0x1, 0x1, 0x18, <r6=>r3, {0x4}}, './file0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000a80)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_GET_MPP(r6, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x34, r0, 0x4, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x3f, 0x56}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x34}}, 0x4040040)
r8 = openat$cgroup_ro(r3, &(0x7f0000000b80)='blkio.throttle.io_serviced\x00', 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000c00)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_QOS_MAP(r8, &(0x7f0000000e00)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000c40)={0x16c, r0, 0x8, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x6, 0x80}}}}, [@NL80211_ATTR_QOS_MAP={0x22, 0xc7, {[{0x9, 0x6}, {0x80, 0x3}, {0x6, 0x5}, {0x8e, 0x3}, {0x9, 0x4}, {0x81, 0x5}, {0x40, 0x7}, {0xff, 0x3}, {0x1, 0x3}, {0xa1, 0x7}, {0x0, 0x2}], "d19e7a85d6ac28b9"}}, @NL80211_ATTR_QOS_MAP={0x36, 0xc7, {[{0x0, 0x3}, {0x7}, {0xb5, 0x7}, {0x7f, 0x3}, {0x7f}, {0xff}, {0x9, 0x5}, {0x0, 0x1}, {0xfb, 0x2}, {0x73, 0x3}, {0x40, 0x4}, {0x4, 0x1}, {0x7, 0x7}, {0x2, 0x1}, {0x8, 0x7}, {0x7c, 0x7}, {0x20, 0x2}, {0x7}, {0xd3, 0x7}, {0x1, 0x1}, {0x20}], "7f0e9d80ae812313"}}, @NL80211_ATTR_QOS_MAP={0x2c, 0xc7, {[{0xd7, 0x6}, {0x8, 0x4}, {0x1, 0x6}, {0x5, 0x6}, {0x3f, 0x3}, {0x7f, 0x1}, {0xfc, 0x4}, {0xac, 0x6}, {0x1f, 0x5}, {0x3, 0x7}, {0x20}, {0x8}, {0x5, 0x6}, {0x4, 0x3}, {0x7, 0x2}, {0x7b, 0x6}], "937842ef2d3bbf50"}}, @NL80211_ATTR_QOS_MAP={0x1e, 0xc7, {[{0x9}, {0xc7, 0x2}, {}, {0x9b, 0x3}, {0x0, 0x3}, {0x8, 0x7}, {0x5, 0x6}, {0x9}, {0x4, 0x6}], "c7ea1c295cb4458c"}}, @NL80211_ATTR_QOS_MAP={0x1e, 0xc7, {[{}, {0x1, 0x1}, {0x1, 0x1}, {0x0, 0x3}, {0x7, 0x1}, {0x2, 0x6}, {0x96, 0x5}, {0x2, 0x2}, {0x84, 0x5}], "ceeeef91fc060a13"}}, @NL80211_ATTR_QOS_MAP={0x2e, 0xc7, {[{0x9, 0x7}, {0xcb, 0x1}, {0x51, 0x2}, {0x7, 0x3}, {0x5, 0x6}, {0x3f, 0x2}, {0x0, 0x2}, {0x20, 0x6}, {0x1, 0x5}, {0x7, 0x1}, {0x7, 0x3}, {0x0, 0x6}, {0xc1, 0x5}, {0xe8}, {0x80, 0x2}, {0x6}, {0x5}], "09d7d4458473a219"}}, @NL80211_ATTR_QOS_MAP={0x2e, 0xc7, {[{0xef, 0x3}, {0x7, 0x6}, {0x3}, {0x2, 0x80}, {0x2, 0x4}, {0x8}, {0x0, 0x4}, {0x4, 0x4}, {0x3f, 0x4}, {0x3, 0x7}, {0x0, 0x5}, {0x4, 0x6}, {0x5, 0xff}, {0x20, 0x6}, {0x1, 0x6}, {0x4, 0x7}, {0x1, 0x6}], "6d1950b4456e3126"}}, @NL80211_ATTR_QOS_MAP={0x1c, 0xc7, {[{0x40}, {0x6, 0x2}, {0x7, 0x5}, {0x0, 0x5}, {0x5}, {0x80, 0x5}, {0x9, 0x7}, {0x1, 0x1}], "aab90d2be22423f2"}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x800}, 0x1804)
r10 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000e40), 0x400, 0x0)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r10, &(0x7f0000002040)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000002000)={&(0x7f0000000ec0)={0x111c, r0, 0x200, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x20, 0x6f}}}}, [@NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x8, 0x20}}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x5}, @NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0xdf}, @NL80211_ATTR_SCAN_FREQUENCIES={0xc, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x2}]}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x1}}, @NL80211_ATTR_BSSID={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_SCAN_SUPP_RATES={0x10b0, 0x7d, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xa6, 0x3, "48075bc9f1accf2506314ce26543a197bd5595dba2385a0dc9148b1211f2bcce078dffcbbec48f674ff28b4f2593af03a709577d51d92ed6998c046d17e9d1ecfbf837e53b4ac1a07925a4e71618f00887ce850a7d7af78a5f6c2d0fc6f7ac0bb27bed706e33cbf120f87bc134db53b8cc86276e704738278258e218b4f5aa669f599c0150ab808a82394ab7fe3c7ad10c151f505bcf62df65841d8aacf01d5399a1"}, @NL80211_BAND_60GHZ={0x1004, 0x2, "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"}]}]}, 0x111c}, 0x1, 0x0, 0x0, 0x810}, 0x4000000)
r11 = dup2(r6, r10)
sendmsg$IPVS_CMD_SET_INFO(r11, &(0x7f0000002140)={&(0x7f0000002080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000002100)={&(0x7f00000020c0)={0x40, 0x0, 0x300, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xab2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x7}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x985}]}, 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x0)

09:18:16 executing program 7:
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={<r0=>0xffffffffffffffff, 0x6, 0x4, 0x515})
read$eventfd(r0, &(0x7f0000000040), 0x8)
read$eventfd(r0, &(0x7f0000000080), 0x8)
write$binfmt_aout(r0, &(0x7f00000000c0)={{0x107, 0x20, 0x5, 0x257, 0x35a, 0x401, 0x11b, 0x3ff}, "b78f388a5fcfac12f3a78c5d0f49f496787cb39f9838583e9bebd25549b28ae017fd3ee996f80aa4793d8c2c25033411983800a34a8031b851c7d453099677d2a2b3056173b7cd88c927de22b6db563b01fb41d77011e379cf26d8fbd6b3d6695834d600f0cd781f45db986a5022b5358247702904c3c02804cc8529681403ec4a092e56e1230a7f70e5b75b31d9e33a2fe99dcea16ca537be2aa835018fb7abb20d4b49f7787d603536d0e2045bb02fab8b3649b44c7b5943f26414cbe1a9474783ae037c0eef083717c5eeddd3f692d0322e4f01faadc413ba502633108ae9", ['\x00', '\x00']}, 0x300)
r1 = perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x3, 0x9, 0x6, 0x3f, 0x0, 0x4, 0x900, 0xe, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8000, 0x4, @perf_bp={&(0x7f00000003c0), 0x5}, 0x128, 0x0, 0x6, 0x4, 0xffff, 0x3, 0x800, 0x0, 0x0, 0x0, 0xcbf0}, 0x0, 0x1, r0, 0x2)
fsetxattr$trusted_overlay_upper(r1, &(0x7f0000000480), &(0x7f00000004c0)={0x0, 0xfb, 0x8f, 0x2, 0x20, "0ddb5815228c45c9b46abac97105ec6e", "d8bd5483da1e1d05ac0b7184a37c191b13d537f3a34a0b3961bee465846582d983a12b4de12268b0fcf35d3b431826f8d6db799839d8b6609df92a1aeba257de8b3ae34654c11cc75e54546c30db015829fc9c53b80555cc3efe718f347caf441ef42f1d8f45a4ca0c8323daf5ff774036aefa3bb0b870f68e57"}, 0x8f, 0x3)
r2 = syz_io_uring_complete(0x0)
inotify_add_watch(r0, &(0x7f0000000580)='./file0\x00', 0x4000800)
write(r0, &(0x7f00000005c0)="b058b6596c9ec98aff45aa76d3ac918c97ffac172ab4888ec31635", 0x1b)
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000000600))
r3 = creat(&(0x7f0000000640)='./file0\x00', 0x2)
ioctl$FS_IOC_SETFSLABEL(r2, 0x41009432, &(0x7f0000000680)="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")
creat(&(0x7f0000000780)='./file0\x00', 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f00000007c0), &(0x7f0000000800)='./file0\x00', 0x8, 0x3)
ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, &(0x7f0000000840))
ftruncate(r3, 0x2)
r4 = openat$cgroup_freezer_state(r3, &(0x7f0000000880), 0x2, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO_V2(r4, 0xc038943b, &(0x7f0000000900)={0x8, 0x0, '\x00', 0x1, &(0x7f00000008c0)})
ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r1, 0xf505, 0x0)
sendfile(r4, r3, 0x0, 0x2638)

[   71.580778] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   71.582039] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   71.585049] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   71.593932] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   71.596553] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   71.598776] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   71.602739] Bluetooth: hci0: HCI_REQ-0x0c1a
[   71.626814] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   71.628203] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   71.630883] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   71.634234] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   71.660881] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   71.670280] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   71.678798] Bluetooth: hci1: HCI_REQ-0x0c1a
[   71.707988] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   71.713073] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   71.714204] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   71.715061] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   71.719558] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   71.720559] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   71.727523] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   71.729738] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   71.734058] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   71.736065] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   71.736880] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   71.740100] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   71.741264] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   71.742853] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   71.743910] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   71.744650] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   71.750748] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   71.753930] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   71.764799] Bluetooth: hci4: HCI_REQ-0x0c1a
[   71.768033] Bluetooth: hci3: HCI_REQ-0x0c1a
[   71.787989] Bluetooth: hci2: HCI_REQ-0x0c1a
[   71.899174] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   71.902469] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   71.903204] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   71.914586] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   71.919084] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   71.920930] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   71.925922] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   71.938366] Bluetooth: hci5: HCI_REQ-0x0c1a
[   71.939172] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   71.983544] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   71.988976] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   71.990231] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   72.004575] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   72.016433] Bluetooth: hci7: HCI_REQ-0x0c1a
[   73.669823] Bluetooth: hci0: command 0x0409 tx timeout
[   73.733429] Bluetooth: hci1: command 0x0409 tx timeout
[   73.798006] Bluetooth: hci4: command 0x0409 tx timeout
[   73.798259] Bluetooth: hci3: command 0x0409 tx timeout
[   73.861469] Bluetooth: hci6: Opcode 0x c03 failed: -110
[   73.861523] Bluetooth: hci2: command 0x0409 tx timeout
[   73.989772] Bluetooth: hci5: command 0x0409 tx timeout
[   74.053507] Bluetooth: hci7: command 0x0409 tx timeout
[   75.717510] Bluetooth: hci0: command 0x041b tx timeout
[   75.781481] Bluetooth: hci1: command 0x041b tx timeout
[   75.845392] Bluetooth: hci4: command 0x041b tx timeout
[   75.847019] Bluetooth: hci3: command 0x041b tx timeout
[   75.909478] Bluetooth: hci2: command 0x041b tx timeout
[   76.037551] Bluetooth: hci5: command 0x041b tx timeout
[   76.102279] Bluetooth: hci7: command 0x041b tx timeout
[   77.257818] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   77.264978] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   77.289246] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   77.312694] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   77.324277] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   77.329932] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   77.346441] Bluetooth: hci6: HCI_REQ-0x0c1a
[   77.766381] Bluetooth: hci0: command 0x040f tx timeout
[   77.829402] Bluetooth: hci1: command 0x040f tx timeout
[   77.894467] Bluetooth: hci3: command 0x040f tx timeout
[   77.894518] Bluetooth: hci4: command 0x040f tx timeout
[   77.957459] Bluetooth: hci2: command 0x040f tx timeout
[   78.085490] Bluetooth: hci5: command 0x040f tx timeout
[   78.150547] Bluetooth: hci7: command 0x040f tx timeout
[   79.365461] Bluetooth: hci6: command 0x0409 tx timeout
[   79.813433] Bluetooth: hci0: command 0x0419 tx timeout
[   79.878017] Bluetooth: hci1: command 0x0419 tx timeout
[   79.941408] Bluetooth: hci3: command 0x0419 tx timeout
[   79.942995] Bluetooth: hci4: command 0x0419 tx timeout
[   80.005495] Bluetooth: hci2: command 0x0419 tx timeout
[   80.134442] Bluetooth: hci5: command 0x0419 tx timeout
[   80.197401] Bluetooth: hci7: command 0x0419 tx timeout
[   81.413380] Bluetooth: hci6: command 0x041b tx timeout
[   83.461496] Bluetooth: hci6: command 0x040f tx timeout
[   85.510455] Bluetooth: hci6: command 0x0419 tx timeout
[  134.090048] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  134.132638] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  134.135224] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  134.139502] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  134.143280] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  134.144977] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  134.149051] Bluetooth: hci1: HCI_REQ-0x0c1a
[  134.186929] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  134.187984] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  134.188892] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  134.190006] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  134.190720] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  134.191482] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  134.192436] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  134.193108] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  134.193760] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  134.199253] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  134.199972] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  134.200731] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  134.204654] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  134.205737] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  134.206531] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  134.207374] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  134.212445] Bluetooth: hci7: HCI_REQ-0x0c1a
[  134.213013] Bluetooth: hci4: HCI_REQ-0x0c1a
[  134.222699] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  134.223578] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  134.231446] Bluetooth: hci5: HCI_REQ-0x0c1a
[  135.813774] Bluetooth: hci0: Opcode 0x c03 failed: -110
[  136.133363] Bluetooth: hci3: Opcode 0x c03 failed: -110
[  136.134814] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  136.197401] Bluetooth: hci1: command 0x0409 tx timeout
[  136.261423] Bluetooth: hci5: command 0x0409 tx timeout
[  136.262259] Bluetooth: hci4: command 0x0409 tx timeout
[  136.262901] Bluetooth: hci7: command 0x0409 tx timeout
[  138.245424] Bluetooth: hci1: command 0x041b tx timeout
[  138.309426] Bluetooth: hci7: command 0x041b tx timeout
[  138.309993] Bluetooth: hci4: command 0x041b tx timeout
[  138.310914] Bluetooth: hci5: command 0x041b tx timeout
[  138.569993] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  138.571261] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  138.572367] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  138.574640] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  138.575760] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  138.576884] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  138.581647] Bluetooth: hci0: HCI_REQ-0x0c1a
[  138.895614] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  138.901978] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  138.907885] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  138.911134] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  138.913658] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  138.914877] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  138.918636] Bluetooth: hci2: HCI_REQ-0x0c1a
[  139.177111] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  139.186073] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  139.189680] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  139.196169] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  139.205587] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  139.211804] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  139.221096] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  139.228213] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  139.234415] Bluetooth: hci3: HCI_REQ-0x0c1a
[  139.234539] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  139.238546] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  139.242632] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  139.329562] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  139.361903] Bluetooth: hci6: HCI_REQ-0x0c1a
[  140.293393] Bluetooth: hci1: command 0x040f tx timeout
[  140.357464] Bluetooth: hci5: command 0x040f tx timeout
[  140.357507] Bluetooth: hci4: command 0x040f tx timeout
[  140.358058] Bluetooth: hci7: command 0x040f tx timeout
[  140.613432] Bluetooth: hci0: command 0x0409 tx timeout
[  140.933460] Bluetooth: hci2: command 0x0409 tx timeout
[  141.317426] Bluetooth: hci3: command 0x0409 tx timeout
[  141.382450] Bluetooth: hci6: command 0x0409 tx timeout
[  142.341375] Bluetooth: hci1: command 0x0419 tx timeout
[  142.405407] Bluetooth: hci7: command 0x0419 tx timeout
[  142.405467] Bluetooth: hci4: command 0x0419 tx timeout
[  142.406557] Bluetooth: hci5: command 0x0419 tx timeout
[  142.662426] Bluetooth: hci0: command 0x041b tx timeout
[  142.982432] Bluetooth: hci2: command 0x041b tx timeout
[  143.365456] Bluetooth: hci3: command 0x041b tx timeout
[  143.430380] Bluetooth: hci6: command 0x041b tx timeout
[  144.709424] Bluetooth: hci0: command 0x040f tx timeout
[  145.029438] Bluetooth: hci2: command 0x040f tx timeout
[  145.414052] Bluetooth: hci3: command 0x040f tx timeout
[  145.477410] Bluetooth: hci6: command 0x040f tx timeout
[  146.757408] Bluetooth: hci0: command 0x0419 tx timeout
[  147.077375] Bluetooth: hci2: command 0x0419 tx timeout
[  147.461412] Bluetooth: hci3: command 0x0419 tx timeout
[  147.525399] Bluetooth: hci6: command 0x0419 tx timeout
[  196.684556] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  196.686782] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  196.688078] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  196.691953] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  196.694754] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  196.706774] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  196.710745] Bluetooth: hci5: HCI_REQ-0x0c1a
[  196.847196] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  196.855927] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  196.872947] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  196.895967] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  196.905768] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  196.909585] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  196.921121] Bluetooth: hci7: HCI_REQ-0x0c1a
[  198.224847] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  198.533369] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  198.726383] Bluetooth: hci5: command 0x0409 tx timeout
[  198.981417] Bluetooth: hci7: command 0x0409 tx timeout
[  200.460999] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  200.464501] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  200.466584] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  200.470213] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  200.471273] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  200.473442] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  200.483473] Bluetooth: hci1: HCI_REQ-0x0c1a
[  200.775579] Bluetooth: hci5: command 0x041b tx timeout
[  200.792965] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  200.795647] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  200.796999] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  200.813182] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  200.815130] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  200.818974] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  200.825423] Bluetooth: hci3: HCI_REQ-0x0c1a
[  201.030384] Bluetooth: hci7: command 0x041b tx timeout
[  201.180151] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  201.183903] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  201.187212] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  201.201646] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  201.205986] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  201.219687] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  201.221043] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  201.254025] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  201.264459] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  201.273674] Bluetooth: hci4: HCI_REQ-0x0c1a
[  201.330809] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  201.374653] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  201.382146] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  201.399407] Bluetooth: hci6: HCI_REQ-0x0c1a
[  202.245389] Bluetooth: hci0: Opcode 0x c03 failed: -110
[  202.501532] Bluetooth: hci1: command 0x0409 tx timeout
[  202.693369] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  202.822356] Bluetooth: hci5: command 0x040f tx timeout
[  202.886404] Bluetooth: hci3: command 0x0409 tx timeout
[  203.077383] Bluetooth: hci7: command 0x040f tx timeout
[  203.335499] Bluetooth: hci4: command 0x0409 tx timeout
[  203.461386] Bluetooth: hci6: command 0x0409 tx timeout
[  204.549420] Bluetooth: hci1: command 0x041b tx timeout
[  204.870404] Bluetooth: hci5: command 0x0419 tx timeout
[  204.933371] Bluetooth: hci3: command 0x041b tx timeout
[  205.126388] Bluetooth: hci7: command 0x0419 tx timeout
[  205.382356] Bluetooth: hci4: command 0x041b tx timeout
[  205.509442] Bluetooth: hci6: command 0x041b tx timeout
[  206.597428] Bluetooth: hci1: command 0x040f tx timeout
[  206.982360] Bluetooth: hci3: command 0x040f tx timeout
[  207.045498] Bluetooth: hci0: Opcode 0x c03 failed: -110
[  207.429444] Bluetooth: hci4: command 0x040f tx timeout
[  207.429477] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  207.557374] Bluetooth: hci6: command 0x040f tx timeout
[  208.645353] Bluetooth: hci1: command 0x0419 tx timeout
[  209.029346] Bluetooth: hci3: command 0x0419 tx timeout
[  209.478358] Bluetooth: hci4: command 0x0419 tx timeout
[  209.605358] Bluetooth: hci6: command 0x0419 tx timeout
[  209.932807] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  209.936809] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  209.938034] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  209.942554] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  209.955522] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  209.959986] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  209.979383] Bluetooth: hci0: HCI_REQ-0x0c1a
[  210.465056] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  210.468090] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  210.477523] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  210.496521] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  210.507535] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  210.520804] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  210.534040] Bluetooth: hci2: HCI_REQ-0x0c1a
[  212.037453] Bluetooth: hci0: command 0x0409 tx timeout
[  212.549614] Bluetooth: hci2: command 0x0409 tx timeout
[  214.085745] Bluetooth: hci0: command 0x041b tx timeout
[  214.597464] Bluetooth: hci2: command 0x041b tx timeout
[  216.134434] Bluetooth: hci0: command 0x040f tx timeout
[  216.645415] Bluetooth: hci2: command 0x040f tx timeout
[  218.181350] Bluetooth: hci0: command 0x0419 tx timeout
[  218.693376] Bluetooth: hci2: command 0x0419 tx timeout
09:21:14 executing program 1:
statx(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x365a, &(0x7f0000000140), &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, 0x0, 0x50069e0)
mkdirat(0xffffffffffffffff, 0x0, 0x1)
syz_io_uring_setup(0x3661, &(0x7f0000000400)={0x0, 0x0, 0x2, 0x0, 0x37c}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000480), &(0x7f00000004c0))
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001700)={0x0, 0x0, "379e1669dea5b16bc8c5499ab99d91927903611af313f422f9560d145d84316e51607fbdf2678e975921c42b7a0dc835d7c0c60546d464a769747bfa5d206657e2ae4751c1cec9815251d9716c4a955fe0983c05b678536fbbacf4dd4469efbd5652d85979f67704739c5be0c08a4aaab4be960b9c74084cb2e63757b6be771a022cce2a57f238ac4a6fc27cabe84ffa47789cc261f73e00ae75c91588701b4bd26ca2022c799677c33659a0a06ed9dcfb62b588c9c5fdbbcc68299d94805e82e3b450de0565f5b90c66bf3b6b54c9cd478960b4baf69126b89f1ea4ae14b6fc8c55f218401985e5860ca3b0afb83ff458cf386e95fc9089d81f2d34c556dae2", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000003dc0))
r2 = epoll_create(0x3)
r3 = syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x8, 0x1, &(0x7f0000000300)=[{&(0x7f0000000240)="0c26eb64748203bc216891f22e84d724d7f03955435a6542397fa80dc517753a7a65ef0f703699b5dc00eb4abdf91da9c6142111ec56a7ebcd986c7f7374372b3c4d3ce39bf2770f8f4dbd4937200c7bfeff9284e095082290881ee745f050479a5539d515b8afef8c28f238c34c305bce343f7bb999f9eb09237a10304a14d2350985925f5ed6b6eaa0c2e26041d6614f27a3b5d50716bc921916bc98dea6544a030a9a93441bf65208d2b10d5150777173c8f5eb45dd9cd1cd8b335c9d", 0xbe}], 0x800084, &(0x7f0000000500)={[{@fat=@gid}], [{@uid_gt={'uid>', 0xee00}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@euid_lt={'euid<', 0xee00}}, {@fsmagic={'fsmagic', 0x3d, 0x100000000}}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@appraise_type}, {@hash}, {@fowner_lt}, {@smackfsdef={'smackfsdef', 0x3d, '\x00'}}, {@smackfsfloor}]})
write(r3, &(0x7f0000000340), 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000000)={0x20002006})
r5 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r2, &(0x7f0000000040))
r6 = accept$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev}, &(0x7f0000000040)=0x1c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x5, 0x0, r5, 0x0, r6, 0x2, 0x0, 0x1}, 0xffffffff)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)

[  248.581008] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
[  248.593934] audit: type=1400 audit(1665048074.738:7): avc:  denied  { block_suspend } for  pid=9621 comm="syz-executor.1" capability=36  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
[  248.678090] SELinux: security_context_str_to_sid (system_u) failed with errno=-22
09:21:14 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$F2FS_IOC_PRECACHE_EXTENTS(r0, 0xf50f, 0x0)
pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x7fffffe, 0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = eventfd(0x849e)
r3 = perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0xf9, 0x20, 0x9, 0x7f, 0x0, 0x8, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, 0x4, @perf_config_ext={0x24bf, 0x4}, 0x0, 0x7, 0x3, 0x6, 0x8, 0xfffffc00, 0x4, 0x0, 0xfffffff7}, 0xffffffffffffffff, 0x9, r0, 0x3)
dup2(r2, r3)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x0, 0xffffffffffffffff, r1, 0x0)
sendfile(r0, r0, 0x0, 0x40000005f1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000540)={0x0, <r4=>0x0})
openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x3a9900, 0x0)
fcntl$setown(r1, 0x8, r4)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='environ\x00')
read$hiddev(r5, 0x0, 0x0)

[  248.897059] audit: type=1400 audit(1665048075.041:8): avc:  denied  { open } for  pid=9647 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  248.898528] audit: type=1400 audit(1665048075.041:9): avc:  denied  { kernel } for  pid=9647 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  248.922341] ------------[ cut here ]------------
[  248.922364] 
[  248.922368] ======================================================
[  248.922372] WARNING: possible circular locking dependency detected
[  248.922376] 6.0.0-next-20221005 #1 Not tainted
[  248.922382] ------------------------------------------------------
[  248.922386] syz-executor.1/9648 is trying to acquire lock:
[  248.922392] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  248.922434] 
[  248.922434] but task is already holding lock:
[  248.922437] ffff888017620020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  248.922464] 
[  248.922464] which lock already depends on the new lock.
[  248.922464] 
[  248.922467] 
[  248.922467] the existing dependency chain (in reverse order) is:
[  248.922470] 
[  248.922470] -> #3 (&ctx->lock){....}-{2:2}:
[  248.922484]        _raw_spin_lock+0x2a/0x40
[  248.922496]        __perf_event_task_sched_out+0x53b/0x18d0
[  248.922507]        __schedule+0xedd/0x2470
[  248.922522]        schedule+0xda/0x1b0
[  248.922537]        futex_wait_queue+0xf5/0x1e0
[  248.922550]        futex_wait+0x28e/0x690
[  248.922560]        do_futex+0x2ff/0x380
[  248.922569]        __x64_sys_futex+0x1c6/0x4d0
[  248.922579]        do_syscall_64+0x3b/0x90
[  248.922589]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  248.922603] 
[  248.922603] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  248.922616]        _raw_spin_lock_nested+0x30/0x40
[  248.922628]        raw_spin_rq_lock_nested+0x1e/0x30
[  248.922641]        task_fork_fair+0x63/0x4d0
[  248.922658]        sched_cgroup_fork+0x3d0/0x540
[  248.922673]        copy_process+0x4183/0x6e20
[  248.922684]        kernel_clone+0xe7/0x890
[  248.922694]        user_mode_thread+0xad/0xf0
[  248.922704]        rest_init+0x24/0x250
[  248.922717]        arch_call_rest_init+0xf/0x14
[  248.922736]        start_kernel+0x4c6/0x4eb
[  248.922756]        secondary_startup_64_no_verify+0xe0/0xeb
[  248.922770] 
[  248.922770] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  248.922784]        _raw_spin_lock_irqsave+0x39/0x60
[  248.922795]        try_to_wake_up+0xab/0x1930
[  248.922808]        up+0x75/0xb0
[  248.922823]        __up_console_sem+0x6e/0x80
[  248.922839]        console_unlock+0x46a/0x590
[  248.922855]        do_con_write+0xc05/0x1d50
[  248.922866]        con_write+0x21/0x40
[  248.922876]        n_tty_write+0x4d4/0xfe0
[  248.922889]        file_tty_write.constprop.0+0x455/0x8a0
[  248.922901]        vfs_write+0x9c3/0xd90
[  248.922917]        ksys_write+0x127/0x250
[  248.922933]        do_syscall_64+0x3b/0x90
[  248.922942]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  248.922955] 
[  248.922955] -> #0 ((console_sem).lock){....}-{2:2}:
[  248.922969]        __lock_acquire+0x2a02/0x5e70
[  248.922986]        lock_acquire+0x1a2/0x530
[  248.923002]        _raw_spin_lock_irqsave+0x39/0x60
[  248.923013]        down_trylock+0xe/0x70
[  248.923029]        __down_trylock_console_sem+0x3b/0xd0
[  248.923045]        vprintk_emit+0x16b/0x560
[  248.923061]        vprintk+0x84/0xa0
[  248.923077]        _printk+0xba/0xf1
[  248.923090]        report_bug.cold+0x72/0xab
[  248.923107]        handle_bug+0x3c/0x70
[  248.923116]        exc_invalid_op+0x14/0x50
[  248.923125]        asm_exc_invalid_op+0x16/0x20
[  248.923138]        group_sched_out.part.0+0x2c7/0x460
[  248.923156]        ctx_sched_out+0x8f1/0xc10
[  248.923172]        __perf_event_task_sched_out+0x6d0/0x18d0
[  248.923183]        __schedule+0xedd/0x2470
[  248.923198]        schedule+0xda/0x1b0
[  248.923211]        futex_wait_queue+0xf5/0x1e0
[  248.923222]        futex_wait+0x28e/0x690
[  248.923232]        do_futex+0x2ff/0x380
[  248.923241]        __x64_sys_futex+0x1c6/0x4d0
[  248.923252]        do_syscall_64+0x3b/0x90
[  248.923261]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  248.923274] 
[  248.923274] other info that might help us debug this:
[  248.923274] 
[  248.923277] Chain exists of:
[  248.923277]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  248.923277] 
[  248.923291]  Possible unsafe locking scenario:
[  248.923291] 
[  248.923294]        CPU0                    CPU1
[  248.923296]        ----                    ----
[  248.923298]   lock(&ctx->lock);
[  248.923304]                                lock(&rq->__lock);
[  248.923310]                                lock(&ctx->lock);
[  248.923316]   lock((console_sem).lock);
[  248.923322] 
[  248.923322]  *** DEADLOCK ***
[  248.923322] 
[  248.923324] 2 locks held by syz-executor.1/9648:
[  248.923331]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  248.923361]  #1: ffff888017620020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  248.923387] 
[  248.923387] stack backtrace:
[  248.923390] CPU: 0 PID: 9648 Comm: syz-executor.1 Not tainted 6.0.0-next-20221005 #1
[  248.923403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  248.923410] Call Trace:
[  248.923413]  <TASK>
[  248.923418]  dump_stack_lvl+0x8b/0xb3
[  248.923437]  check_noncircular+0x263/0x2e0
[  248.923454]  ? format_decode+0x26c/0xb50
[  248.923472]  ? print_circular_bug+0x450/0x450
[  248.923489]  ? simple_strtoul+0x30/0x30
[  248.923506]  ? format_decode+0x26c/0xb50
[  248.923524]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  248.923547]  __lock_acquire+0x2a02/0x5e70
[  248.923569]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  248.923592]  lock_acquire+0x1a2/0x530
[  248.923609]  ? down_trylock+0xe/0x70
[  248.923627]  ? lock_release+0x750/0x750
[  248.923648]  ? vprintk+0x84/0xa0
[  248.923666]  _raw_spin_lock_irqsave+0x39/0x60
[  248.923678]  ? down_trylock+0xe/0x70
[  248.923696]  down_trylock+0xe/0x70
[  248.923713]  ? vprintk+0x84/0xa0
[  248.923730]  __down_trylock_console_sem+0x3b/0xd0
[  248.923747]  vprintk_emit+0x16b/0x560
[  248.923767]  vprintk+0x84/0xa0
[  248.923784]  _printk+0xba/0xf1
[  248.923797]  ? record_print_text.cold+0x16/0x16
[  248.923813]  ? report_bug.cold+0x66/0xab
[  248.923832]  ? group_sched_out.part.0+0x2c7/0x460
[  248.923851]  report_bug.cold+0x72/0xab
[  248.923871]  handle_bug+0x3c/0x70
[  248.923881]  exc_invalid_op+0x14/0x50
[  248.923892]  asm_exc_invalid_op+0x16/0x20
[  248.923906] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  248.923927] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  248.923939] RSP: 0018:ffff8880410bf8f8 EFLAGS: 00010006
[  248.923948] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  248.923955] RDX: ffff888017f9b580 RSI: ffffffff81566da7 RDI: 0000000000000005
[  248.923963] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  248.923971] R10: 0000000000000000 R11: ffffffff865b601b R12: ffff888017620000
[  248.923978] R13: ffff88806ce3d2c0 R14: ffffffff8547d040 R15: 0000000000000002
[  248.923989]  ? group_sched_out.part.0+0x2c7/0x460
[  248.924009]  ? group_sched_out.part.0+0x2c7/0x460
[  248.924029]  ctx_sched_out+0x8f1/0xc10
[  248.924049]  __perf_event_task_sched_out+0x6d0/0x18d0
[  248.924063]  ? lock_is_held_type+0xd7/0x130
[  248.924078]  ? __perf_cgroup_move+0x160/0x160
[  248.924089]  ? set_next_entity+0x304/0x550
[  248.924109]  ? lock_is_held_type+0xd7/0x130
[  248.924124]  __schedule+0xedd/0x2470
[  248.924142]  ? io_schedule_timeout+0x150/0x150
[  248.924159]  ? futex_wait_setup+0x166/0x230
[  248.924173]  schedule+0xda/0x1b0
[  248.924189]  futex_wait_queue+0xf5/0x1e0
[  248.924202]  futex_wait+0x28e/0x690
[  248.924214]  ? futex_wait_setup+0x230/0x230
[  248.924228]  ? wake_up_q+0x8b/0xf0
[  248.924241]  ? do_raw_spin_unlock+0x4f/0x220
[  248.924261]  ? futex_wake+0x158/0x490
[  248.924277]  ? fd_install+0x1f9/0x640
[  248.924293]  do_futex+0x2ff/0x380
[  248.924304]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  248.924320]  __x64_sys_futex+0x1c6/0x4d0
[  248.924333]  ? __x64_sys_futex_time32+0x480/0x480
[  248.924344]  ? trace_rcu_dyntick+0x1a7/0x250
[  248.924363]  ? syscall_enter_from_user_mode+0x1d/0x50
[  248.924378]  ? syscall_enter_from_user_mode+0x1d/0x50
[  248.924395]  do_syscall_64+0x3b/0x90
[  248.924405]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  248.924419] RIP: 0033:0x7f61c93bfb19
[  248.924427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  248.924438] RSP: 002b:00007f61c6935218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  248.924449] RAX: ffffffffffffffda RBX: 00007f61c94d2f68 RCX: 00007f61c93bfb19
[  248.924457] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f61c94d2f68
[  248.924464] RBP: 00007f61c94d2f60 R08: 0000000000000000 R09: 0000000000000000
[  248.924471] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f61c94d2f6c
[  248.924478] R13: 00007ffeaab37d4f R14: 00007f61c6935300 R15: 0000000000022000
[  248.924491]  </TASK>
[  248.984321] WARNING: CPU: 0 PID: 9648 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  248.984976] Modules linked in:
[  248.985208] CPU: 0 PID: 9648 Comm: syz-executor.1 Not tainted 6.0.0-next-20221005 #1
[  248.985749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  248.986321] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  248.986709] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  248.987962] RSP: 0018:ffff8880410bf8f8 EFLAGS: 00010006
[  248.988334] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  248.988832] RDX: ffff888017f9b580 RSI: ffffffff81566da7 RDI: 0000000000000005
[  248.989327] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  248.989822] R10: 0000000000000000 R11: ffffffff865b601b R12: ffff888017620000
[  248.990319] R13: ffff88806ce3d2c0 R14: ffffffff8547d040 R15: 0000000000000002
[  248.990817] FS:  00007f61c6935700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  248.991372] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  248.991789] CR2: 00007ffccfce7dd8 CR3: 0000000040192000 CR4: 0000000000350ef0
[  248.992287] Call Trace:
[  248.992473]  <TASK>
[  248.992640]  ctx_sched_out+0x8f1/0xc10
[  248.992925]  __perf_event_task_sched_out+0x6d0/0x18d0
[  248.993289]  ? lock_is_held_type+0xd7/0x130
[  248.993602]  ? __perf_cgroup_move+0x160/0x160
[  248.993923]  ? set_next_entity+0x304/0x550
[  248.994236]  ? lock_is_held_type+0xd7/0x130
[  248.994542]  __schedule+0xedd/0x2470
[  248.994818]  ? io_schedule_timeout+0x150/0x150
[  248.995148]  ? futex_wait_setup+0x166/0x230
[  248.995455]  schedule+0xda/0x1b0
[  248.995712]  futex_wait_queue+0xf5/0x1e0
[  248.996004]  futex_wait+0x28e/0x690
[  248.996271]  ? futex_wait_setup+0x230/0x230
[  248.996577]  ? wake_up_q+0x8b/0xf0
[  248.996837]  ? do_raw_spin_unlock+0x4f/0x220
[  248.997158]  ? futex_wake+0x158/0x490
[  248.997439]  ? fd_install+0x1f9/0x640
[  248.997719]  do_futex+0x2ff/0x380
[  248.997970]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  248.998372]  __x64_sys_futex+0x1c6/0x4d0
[  248.998666]  ? __x64_sys_futex_time32+0x480/0x480
[  248.999006]  ? trace_rcu_dyntick+0x1a7/0x250
[  248.999327]  ? syscall_enter_from_user_mode+0x1d/0x50
[  248.999698]  ? syscall_enter_from_user_mode+0x1d/0x50
[  249.000074]  do_syscall_64+0x3b/0x90
[  249.000344]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  249.000709] RIP: 0033:0x7f61c93bfb19
[  249.000975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  249.002215] RSP: 002b:00007f61c6935218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  249.002746] RAX: ffffffffffffffda RBX: 00007f61c94d2f68 RCX: 00007f61c93bfb19
[  249.003242] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f61c94d2f68
[  249.003750] RBP: 00007f61c94d2f60 R08: 0000000000000000 R09: 0000000000000000
[  249.004244] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f61c94d2f6c
[  249.004740] R13: 00007ffeaab37d4f R14: 00007f61c6935300 R15: 0000000000022000
[  249.005241]  </TASK>
[  249.005409] irq event stamp: 1644
[  249.005648] hardirqs last  enabled at (1643): [<ffffffff842578bd>] syscall_enter_from_user_mode+0x1d/0x50
[  249.006305] hardirqs last disabled at (1644): [<ffffffff84260bc5>] __schedule+0x1225/0x2470
[  249.006885] softirqs last  enabled at (1326): [<ffffffff81170a0b>] __irq_exit_rcu+0x11b/0x180
[  249.007483] softirqs last disabled at (1181): [<ffffffff81170a0b>] __irq_exit_rcu+0x11b/0x180
[  249.008079] ---[ end trace 0000000000000000 ]---
09:21:15 executing program 5:
syz_io_uring_complete(0x0)
syz_io_uring_setup(0x659a, &(0x7f0000000080)={0x0, 0x113c, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpeername(r0, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'veth1_to_hsr\x00', {0x2, 0x0, @initdev}})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000240)={0x0, 0x80, 0x0, 0x4, 0x7, "b39e927a53e2b364e9fa09d7c1fb086c38945d", 0x80})
syz_io_uring_setup(0x70c9, &(0x7f00000003c0)={0x0, 0x4, 0x10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000480))

09:21:15 executing program 5:
syz_io_uring_complete(0x0)
syz_io_uring_setup(0x659a, &(0x7f0000000080)={0x0, 0x113c, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpeername(r0, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'veth1_to_hsr\x00', {0x2, 0x0, @initdev}})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000240)={0x0, 0x80, 0x0, 0x4, 0x7, "b39e927a53e2b364e9fa09d7c1fb086c38945d", 0x80})
syz_io_uring_setup(0x70c9, &(0x7f00000003c0)={0x0, 0x4, 0x10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000480))

[  249.847514] syz-executor.1 (9648) used greatest stack depth: 23256 bytes left
09:21:15 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$F2FS_IOC_PRECACHE_EXTENTS(r0, 0xf50f, 0x0)
pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x7fffffe, 0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = eventfd(0x849e)
r3 = perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0xf9, 0x20, 0x9, 0x7f, 0x0, 0x8, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, 0x4, @perf_config_ext={0x24bf, 0x4}, 0x0, 0x7, 0x3, 0x6, 0x8, 0xfffffc00, 0x4, 0x0, 0xfffffff7}, 0xffffffffffffffff, 0x9, r0, 0x3)
dup2(r2, r3)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x0, 0xffffffffffffffff, r1, 0x0)
sendfile(r0, r0, 0x0, 0x40000005f1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000540)={0x0, <r4=>0x0})
openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x3a9900, 0x0)
fcntl$setown(r1, 0x8, r4)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='environ\x00')
read$hiddev(r5, 0x0, 0x0)

09:21:16 executing program 5:
syz_io_uring_complete(0x0)
syz_io_uring_setup(0x659a, &(0x7f0000000080)={0x0, 0x113c, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpeername(r0, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'veth1_to_hsr\x00', {0x2, 0x0, @initdev}})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000240)={0x0, 0x80, 0x0, 0x4, 0x7, "b39e927a53e2b364e9fa09d7c1fb086c38945d", 0x80})
syz_io_uring_setup(0x70c9, &(0x7f00000003c0)={0x0, 0x4, 0x10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000480))

09:21:16 executing program 5:
syz_io_uring_complete(0x0)
syz_io_uring_setup(0x659a, &(0x7f0000000080)={0x0, 0x113c, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpeername(r0, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'veth1_to_hsr\x00', {0x2, 0x0, @initdev}})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000240)={0x0, 0x80, 0x0, 0x4, 0x7, "b39e927a53e2b364e9fa09d7c1fb086c38945d", 0x80})
syz_io_uring_setup(0x70c9, &(0x7f00000003c0)={0x0, 0x4, 0x10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000480))

[  250.458301] hrtimer: interrupt took 17923 ns
09:21:16 executing program 5:
syz_io_uring_complete(0x0)
syz_io_uring_setup(0x659a, &(0x7f0000000080)={0x0, 0x113c, 0x2}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpeername(r0, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'veth1_to_hsr\x00', {0x2, 0x0, @initdev}})
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000240)={0x0, 0x80, 0x0, 0x4, 0x7, "b39e927a53e2b364e9fa09d7c1fb086c38945d", 0x80})
syz_io_uring_setup(0x70c9, &(0x7f00000003c0)={0x0, 0x4, 0x10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000480))


VM DIAGNOSIS:
09:21:15  Registers:
info registers vcpu 0
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bda91 RDI=ffffffff8765c9a0 RBP=ffffffff8765c960 RSP=ffff8880410bf340
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000066 R11=0000000000000001
R12=0000000000000066 R13=ffffffff8765c960 R14=0000000000000010 R15=ffffffff823bda80
RIP=ffffffff823bdae9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f61c6935700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffccfce7dd8 CR3=0000000040192000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00007f61c94a67c000007f61c94a67c8
XMM02=00007f61c94a67e000007f61c94a67c0 XMM03=00007f61c94a67c800007f61c94a67c0
XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000556394d8cbd0 RCX=0000556396cf1010 RDX=00007f06d888abe0
RSI=0000000000000000 RDI=000055639755f090 RBP=00007f06d888ab80 RSP=00007ffd0cfeafb0
R8 =0000000000000007 R9 =0000000000000004 R10=0000000000000018 R11=0000000000000018
R12=000055639755f080 R13=000055639755f190 R14=0000000000000060 R15=0000556397564d10
RIP=00007f06d8752a69 RFL=00000202 [-------] CPL=3 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA]
SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f06d830b8c0 00000000 00000000
GS =0000 0000000000000000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000556397572760 CR3=0000000017f52000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffff000000020000556397558080
XMM02=00000000000000000000000000000100 XMM03=00000000000000000000556397560030
XMM04=ffffffff00000001000055639756d550 XMM05=00000000000000000000000000000000
XMM06=000055639756d4f00000000400000002 XMM07=00000000000000000000000000000000
XMM08=732f636f72702f006b63616d7300632e XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000