
Debian GNU/Linux 11 syzkaller ttyS0

Warning: Permanently added '[localhost]:9158' (ECDSA) to the list of known hosts.
2022/09/17 06:33:26 fuzzer started
2022/09/17 06:33:26 dialing manager at localhost:36051
syzkaller login: [   39.184011] cgroup: Unknown subsys name 'net'
[   39.300272] cgroup: Unknown subsys name 'rlimit'
2022/09/17 06:33:40 syscalls: 2215
2022/09/17 06:33:40 code coverage: enabled
2022/09/17 06:33:40 comparison tracing: enabled
2022/09/17 06:33:40 extra coverage: enabled
2022/09/17 06:33:40 setuid sandbox: enabled
2022/09/17 06:33:40 namespace sandbox: enabled
2022/09/17 06:33:40 Android sandbox: enabled
2022/09/17 06:33:40 fault injection: enabled
2022/09/17 06:33:40 leak checking: enabled
2022/09/17 06:33:40 net packet injection: enabled
2022/09/17 06:33:40 net device setup: enabled
2022/09/17 06:33:40 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/17 06:33:40 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/17 06:33:40 USB emulation: enabled
2022/09/17 06:33:40 hci packet injection: enabled
2022/09/17 06:33:40 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220916                                          )
2022/09/17 06:33:40 802.15.4 emulation: enabled
2022/09/17 06:33:40 fetching corpus: 50, signal 27746/29543 (executing program)
2022/09/17 06:33:40 fetching corpus: 100, signal 47951/51253 (executing program)
2022/09/17 06:33:40 fetching corpus: 150, signal 55969/60715 (executing program)
2022/09/17 06:33:40 fetching corpus: 200, signal 62973/69094 (executing program)
2022/09/17 06:33:40 fetching corpus: 250, signal 69033/76438 (executing program)
2022/09/17 06:33:40 fetching corpus: 300, signal 75735/84351 (executing program)
2022/09/17 06:33:41 fetching corpus: 350, signal 79196/89090 (executing program)
2022/09/17 06:33:41 fetching corpus: 400, signal 84461/95401 (executing program)
2022/09/17 06:33:41 fetching corpus: 450, signal 87496/99537 (executing program)
2022/09/17 06:33:41 fetching corpus: 500, signal 90048/103234 (executing program)
2022/09/17 06:33:41 fetching corpus: 550, signal 94310/108486 (executing program)
2022/09/17 06:33:41 fetching corpus: 600, signal 96919/112143 (executing program)
2022/09/17 06:33:41 fetching corpus: 650, signal 100294/116455 (executing program)
2022/09/17 06:33:42 fetching corpus: 700, signal 103607/120683 (executing program)
2022/09/17 06:33:42 fetching corpus: 750, signal 105899/123944 (executing program)
2022/09/17 06:33:42 fetching corpus: 800, signal 108878/127715 (executing program)
2022/09/17 06:33:42 fetching corpus: 850, signal 111514/131154 (executing program)
2022/09/17 06:33:42 fetching corpus: 900, signal 115152/135410 (executing program)
2022/09/17 06:33:42 fetching corpus: 950, signal 116592/137790 (executing program)
2022/09/17 06:33:42 fetching corpus: 1000, signal 118967/140981 (executing program)
2022/09/17 06:33:42 fetching corpus: 1050, signal 121284/144025 (executing program)
2022/09/17 06:33:43 fetching corpus: 1100, signal 123602/147088 (executing program)
2022/09/17 06:33:43 fetching corpus: 1150, signal 124850/149173 (executing program)
2022/09/17 06:33:43 fetching corpus: 1200, signal 126593/151621 (executing program)
2022/09/17 06:33:43 fetching corpus: 1250, signal 129139/154741 (executing program)
2022/09/17 06:33:43 fetching corpus: 1300, signal 132042/158120 (executing program)
2022/09/17 06:33:43 fetching corpus: 1350, signal 133489/160277 (executing program)
2022/09/17 06:33:43 fetching corpus: 1400, signal 135114/162590 (executing program)
2022/09/17 06:33:43 fetching corpus: 1450, signal 138837/166426 (executing program)
2022/09/17 06:33:44 fetching corpus: 1500, signal 141284/169281 (executing program)
2022/09/17 06:33:44 fetching corpus: 1550, signal 143169/171668 (executing program)
2022/09/17 06:33:44 fetching corpus: 1600, signal 145047/173979 (executing program)
2022/09/17 06:33:44 fetching corpus: 1650, signal 146135/175698 (executing program)
2022/09/17 06:33:44 fetching corpus: 1700, signal 147265/177389 (executing program)
2022/09/17 06:33:44 fetching corpus: 1750, signal 148560/179213 (executing program)
2022/09/17 06:33:44 fetching corpus: 1800, signal 150397/181421 (executing program)
2022/09/17 06:33:44 fetching corpus: 1850, signal 151417/183019 (executing program)
2022/09/17 06:33:45 fetching corpus: 1900, signal 153183/185152 (executing program)
2022/09/17 06:33:45 fetching corpus: 1950, signal 154227/186657 (executing program)
2022/09/17 06:33:45 fetching corpus: 2000, signal 156156/188868 (executing program)
2022/09/17 06:33:45 fetching corpus: 2050, signal 157588/190678 (executing program)
2022/09/17 06:33:45 fetching corpus: 2100, signal 159026/192449 (executing program)
2022/09/17 06:33:45 fetching corpus: 2150, signal 160578/194301 (executing program)
2022/09/17 06:33:45 fetching corpus: 2200, signal 162004/195992 (executing program)
2022/09/17 06:33:46 fetching corpus: 2250, signal 163363/197648 (executing program)
2022/09/17 06:33:46 fetching corpus: 2300, signal 164124/198888 (executing program)
2022/09/17 06:33:46 fetching corpus: 2350, signal 166432/201107 (executing program)
2022/09/17 06:33:46 fetching corpus: 2400, signal 167392/202435 (executing program)
2022/09/17 06:33:46 fetching corpus: 2450, signal 168286/203774 (executing program)
2022/09/17 06:33:46 fetching corpus: 2500, signal 169736/205356 (executing program)
2022/09/17 06:33:46 fetching corpus: 2550, signal 170784/206717 (executing program)
2022/09/17 06:33:46 fetching corpus: 2600, signal 171783/208006 (executing program)
2022/09/17 06:33:47 fetching corpus: 2650, signal 172804/209320 (executing program)
2022/09/17 06:33:47 fetching corpus: 2700, signal 173827/210659 (executing program)
2022/09/17 06:33:47 fetching corpus: 2750, signal 175159/212099 (executing program)
2022/09/17 06:33:47 fetching corpus: 2800, signal 176229/213324 (executing program)
2022/09/17 06:33:47 fetching corpus: 2850, signal 177051/214461 (executing program)
2022/09/17 06:33:47 fetching corpus: 2900, signal 178010/215657 (executing program)
2022/09/17 06:33:47 fetching corpus: 2950, signal 179192/216998 (executing program)
2022/09/17 06:33:48 fetching corpus: 3000, signal 179946/218064 (executing program)
2022/09/17 06:33:48 fetching corpus: 3050, signal 181130/219384 (executing program)
2022/09/17 06:33:48 fetching corpus: 3100, signal 182746/220856 (executing program)
2022/09/17 06:33:48 fetching corpus: 3150, signal 184576/222454 (executing program)
2022/09/17 06:33:48 fetching corpus: 3200, signal 185419/223494 (executing program)
2022/09/17 06:33:48 fetching corpus: 3250, signal 186631/224840 (executing program)
2022/09/17 06:33:48 fetching corpus: 3300, signal 187627/225944 (executing program)
2022/09/17 06:33:49 fetching corpus: 3350, signal 189103/227236 (executing program)
2022/09/17 06:33:49 fetching corpus: 3400, signal 190520/228532 (executing program)
2022/09/17 06:33:49 fetching corpus: 3450, signal 191978/229772 (executing program)
2022/09/17 06:33:49 fetching corpus: 3500, signal 192630/230646 (executing program)
2022/09/17 06:33:49 fetching corpus: 3550, signal 194099/231849 (executing program)
2022/09/17 06:33:49 fetching corpus: 3600, signal 194785/232689 (executing program)
2022/09/17 06:33:49 fetching corpus: 3650, signal 195517/233527 (executing program)
2022/09/17 06:33:49 fetching corpus: 3700, signal 196361/234381 (executing program)
2022/09/17 06:33:50 fetching corpus: 3750, signal 196995/235158 (executing program)
2022/09/17 06:33:50 fetching corpus: 3800, signal 197859/236052 (executing program)
2022/09/17 06:33:50 fetching corpus: 3850, signal 198547/236859 (executing program)
2022/09/17 06:33:50 fetching corpus: 3900, signal 199408/237675 (executing program)
2022/09/17 06:33:50 fetching corpus: 3950, signal 200156/238523 (executing program)
2022/09/17 06:33:50 fetching corpus: 4000, signal 201268/239436 (executing program)
2022/09/17 06:33:50 fetching corpus: 4050, signal 202285/240303 (executing program)
2022/09/17 06:33:50 fetching corpus: 4100, signal 202935/240971 (executing program)
2022/09/17 06:33:51 fetching corpus: 4150, signal 203368/241568 (executing program)
2022/09/17 06:33:51 fetching corpus: 4200, signal 204465/242432 (executing program)
2022/09/17 06:33:51 fetching corpus: 4250, signal 204951/243044 (executing program)
2022/09/17 06:33:51 fetching corpus: 4300, signal 205677/243756 (executing program)
2022/09/17 06:33:51 fetching corpus: 4350, signal 206235/244427 (executing program)
2022/09/17 06:33:51 fetching corpus: 4400, signal 207066/245239 (executing program)
2022/09/17 06:33:51 fetching corpus: 4450, signal 208174/246006 (executing program)
2022/09/17 06:33:51 fetching corpus: 4500, signal 209244/246730 (executing program)
2022/09/17 06:33:52 fetching corpus: 4550, signal 209915/247323 (executing program)
2022/09/17 06:33:52 fetching corpus: 4600, signal 210760/248030 (executing program)
2022/09/17 06:33:52 fetching corpus: 4650, signal 211824/248837 (executing program)
2022/09/17 06:33:52 fetching corpus: 4700, signal 212604/249460 (executing program)
2022/09/17 06:33:52 fetching corpus: 4750, signal 213191/250001 (executing program)
2022/09/17 06:33:52 fetching corpus: 4800, signal 213755/250563 (executing program)
2022/09/17 06:33:52 fetching corpus: 4850, signal 214008/251017 (executing program)
2022/09/17 06:33:52 fetching corpus: 4900, signal 214353/251495 (executing program)
2022/09/17 06:33:53 fetching corpus: 4950, signal 215419/252159 (executing program)
2022/09/17 06:33:53 fetching corpus: 5000, signal 217060/252940 (executing program)
2022/09/17 06:33:53 fetching corpus: 5050, signal 217453/253367 (executing program)
2022/09/17 06:33:53 fetching corpus: 5100, signal 217911/253841 (executing program)
2022/09/17 06:33:53 fetching corpus: 5150, signal 218919/254361 (executing program)
2022/09/17 06:33:53 fetching corpus: 5200, signal 219621/254879 (executing program)
2022/09/17 06:33:54 fetching corpus: 5250, signal 220533/255419 (executing program)
2022/09/17 06:33:54 fetching corpus: 5300, signal 220867/255824 (executing program)
2022/09/17 06:33:54 fetching corpus: 5350, signal 221680/256264 (executing program)
2022/09/17 06:33:54 fetching corpus: 5400, signal 222431/256747 (executing program)
2022/09/17 06:33:54 fetching corpus: 5450, signal 223473/257213 (executing program)
2022/09/17 06:33:54 fetching corpus: 5500, signal 224081/257607 (executing program)
2022/09/17 06:33:54 fetching corpus: 5550, signal 224883/258040 (executing program)
2022/09/17 06:33:54 fetching corpus: 5600, signal 225916/258510 (executing program)
2022/09/17 06:33:55 fetching corpus: 5650, signal 226850/258913 (executing program)
2022/09/17 06:33:55 fetching corpus: 5700, signal 227743/259267 (executing program)
2022/09/17 06:33:55 fetching corpus: 5750, signal 228289/259625 (executing program)
2022/09/17 06:33:55 fetching corpus: 5800, signal 229012/259968 (executing program)
2022/09/17 06:33:55 fetching corpus: 5850, signal 229524/260317 (executing program)
2022/09/17 06:33:55 fetching corpus: 5900, signal 230189/260714 (executing program)
2022/09/17 06:33:55 fetching corpus: 5950, signal 230720/261052 (executing program)
2022/09/17 06:33:56 fetching corpus: 6000, signal 231641/261367 (executing program)
2022/09/17 06:33:56 fetching corpus: 6050, signal 232146/261632 (executing program)
2022/09/17 06:33:56 fetching corpus: 6100, signal 232947/261948 (executing program)
2022/09/17 06:33:56 fetching corpus: 6150, signal 233551/262212 (executing program)
2022/09/17 06:33:56 fetching corpus: 6200, signal 234027/262487 (executing program)
2022/09/17 06:33:56 fetching corpus: 6250, signal 235045/262757 (executing program)
2022/09/17 06:33:56 fetching corpus: 6300, signal 235659/262968 (executing program)
2022/09/17 06:33:57 fetching corpus: 6350, signal 236140/263214 (executing program)
2022/09/17 06:33:57 fetching corpus: 6400, signal 236787/263446 (executing program)
2022/09/17 06:33:57 fetching corpus: 6450, signal 237488/263618 (executing program)
2022/09/17 06:33:57 fetching corpus: 6500, signal 237918/263644 (executing program)
2022/09/17 06:33:57 fetching corpus: 6550, signal 238913/263776 (executing program)
2022/09/17 06:33:57 fetching corpus: 6600, signal 239179/263784 (executing program)
2022/09/17 06:33:57 fetching corpus: 6650, signal 239584/263796 (executing program)
2022/09/17 06:33:57 fetching corpus: 6700, signal 240114/263828 (executing program)
2022/09/17 06:33:58 fetching corpus: 6750, signal 240841/263831 (executing program)
2022/09/17 06:33:58 fetching corpus: 6800, signal 241357/263834 (executing program)
2022/09/17 06:33:58 fetching corpus: 6850, signal 241816/263857 (executing program)
2022/09/17 06:33:58 fetching corpus: 6900, signal 242251/263883 (executing program)
2022/09/17 06:33:58 fetching corpus: 6950, signal 242911/263904 (executing program)
2022/09/17 06:33:58 fetching corpus: 7000, signal 243184/263904 (executing program)
2022/09/17 06:33:58 fetching corpus: 7050, signal 243438/263912 (executing program)
2022/09/17 06:33:58 fetching corpus: 7071, signal 243692/263914 (executing program)
2022/09/17 06:33:58 fetching corpus: 7071, signal 243692/263914 (executing program)
2022/09/17 06:34:01 starting 8 fuzzer processes
06:34:01 executing program 1:
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x7ff)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xfffffff7}}, './file0\x00'})
ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f0000000080)={0x3, 0x8, 0x7b})
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, &(0x7f00000000c0)={0x6, 0xfa})
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f0000000100)={0x2, 0x40000000, 0x10000, 0x401, 0x6, 0x7fff})
ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000140)=0x9)
ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000000180)=0x5)
r3 = accept$unix(r1, 0x0, &(0x7f00000001c0))
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r4 = openat(r1, &(0x7f0000000200)='./file0\x00', 0x10000, 0x892c4aaf5bf6e8df)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r5=>r3, {0xa462}}, './file1\x00'})
ioctl$FITHAW(r1, 0xc0045878)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000280)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$KDGKBSENT(r2, 0x4b48, &(0x7f0000000680)={0x4, "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"})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f00000008c0)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff}, './file2\x00'})
r7 = accept$unix(r3, &(0x7f00000009c0), &(0x7f0000000a40)=0x6e)
sendfile(r6, r7, &(0x7f0000000a80)=0x8, 0xfa)

06:34:01 executing program 0:
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000000)={0x6, 0x2})
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000040)={0x8, 0x0, 0x4, 0x1f, 0xff, 0x20, 0x134}, 0xc)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, 0x0, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0xffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x1867885874c5515f}, 0x24000000)
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2008088}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, 0x0, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r0 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NLBL_MGMT_C_LISTALL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x6c, r0, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, '@\\.\'/#\'\x00'}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4006}, 0x40000)
getsockopt$bt_BT_SECURITY(0xffffffffffffffff, 0x112, 0x4, &(0x7f0000000400), 0x2)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000440), 0x321802, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000004c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r1, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x24, 0x0, 0x11, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x21c}]}, 0x24}, 0x1, 0x0, 0x0, 0x20004801}, 0xc811)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000600)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000640), 0x2000, 0x0)
sendmsg$NLBL_UNLABEL_C_ACCEPT(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x64010100}]}, 0x1c}}, 0x4040010)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000007c0), 0xffffffffffffffff)
sendmsg$IEEE802154_ASSOCIATE_RESP(r5, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x3c, r6, 0x800, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa2}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa3}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xfffe}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa2}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20041000}, 0x40)
r7 = socket$netlink(0x10, 0x3, 0x10)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, 0xffffffffffffffff, 0x7, r4, &(0x7f00000008c0)={r1, r7, 0x92})
sendmsg$NLBL_CIPSOV4_C_ADD(r5, &(0x7f0000000c00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000940)={0x278, 0x0, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0x54, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x45f3dab7}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x66}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4b100cac}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x27d67513}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5c54ea2b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xef}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x43454e55}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1c}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x4}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_MLSCATLST={0x160, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x39f28b32}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x536bec0d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfe77}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x431656ed}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x48f2213f}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x63c8bbb0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd5b7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xda21}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4826ce50}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3691ecaf}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2ab05626}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e8a4dc9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x321eac29}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5ff36768}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa821}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x56b3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf1dc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x394c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5dbd29a8}]}, {0x44, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x51c1d78c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf698}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x39f3ab87}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xead3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x58ea6868}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x58bc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x71d74b9d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x72a408b}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb1c0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x25af}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x422d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfceb}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa213}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6e9fe834}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd7a2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6bb7}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1f96}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xee25}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x292623cf}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc722}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe644}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x90, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5a577cb7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x30e847b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4e3ae632}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x612adea1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5b8963e8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6d11}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3405a47f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1b31a219}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6d6e746f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1680}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2eb3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5dc45cb}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7252}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd5d4}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}]}, 0x278}, 0x1, 0x0, 0x0, 0x8000}, 0xc235c53ca6030b17)

06:34:01 executing program 3:
r0 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000000))
ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000040))
fallocate(r0, 0x24, 0x1, 0x80000001)
getpeername$unix(r0, &(0x7f0000000080), &(0x7f0000000100)=0x6e)
fallocate(r0, 0x0, 0x7, 0x200)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r1=>r0, {0x1}}, './file0\x00'})
r2 = syz_io_uring_complete(0x0)
ppoll(&(0x7f0000000180)=[{r0, 0x8002}, {r1, 0x5000}, {r2, 0x1000}], 0x3, &(0x7f00000001c0)={0x77359400}, &(0x7f0000000200)={[0x2]}, 0x8)
bind$bt_hci(r1, &(0x7f0000000240)={0x1f, 0x1}, 0x6)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000280)={0x1, @accept_phy_link={{0x436, 0x100}, {0xc9, 0x0, 0x40, "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"}}}, 0x104)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000, 0x40010, r2, 0x10000000)
syz_io_uring_submit(0x0, r3, &(0x7f0000000480)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, r2, &(0x7f00000003c0)=0x80, &(0x7f0000000400)=@xdp, 0x0, 0x80000}, 0x2)
shmget$private(0x0, 0x1000, 0xa555c186da168f1f, &(0x7f0000ffd000/0x1000)=nil)
signalfd4(r0, &(0x7f00000004c0), 0x8, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x100, &(0x7f0000000500)=0x1, 0x0, 0x4)
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, &(0x7f0000000540)={0x2, 0x5, 0x14})
io_setup(0xa6b3, &(0x7f0000000580)=<r4=>0x0)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
io_submit(r4, 0x4, &(0x7f0000001800)=[&(0x7f0000000600)={0x0, 0x0, 0x0, 0x3, 0x1, r5, &(0x7f00000005c0)="d78f61e1565b1b19d2f43243b6f8eb8f66f4deb8ac61489fd5fb96f1378b4465b08b1d6c913e28d3cd7f6948", 0x2c, 0x652, 0x0, 0x2}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x1, 0x401, 0xffffffffffffffff, &(0x7f0000000640)="20167bbc0f7389fe54be9a4a8c57472b21f67cf4a4ca39adc0501e40002dcc17eb7b2bca85dc910b987f13bcc6a4f4e7a4d86a5a8a4d6691573db7efc5c235711271d051d13860ea93c31666f188b84b4ca0e89110f98b1f278f537af945", 0x5e, 0x400, 0x0, 0x2, r1}, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0xa47, r0, &(0x7f0000000700)="c8eb8a4cc510cd84031d90faf0bec8948461d014916acc61330a523130ccda24abebd21d24e286ffbafe901ae984c2a38a64dd151c1626a421f4a20537e6cba1b2d5cd00f680b164d4b4141c11", 0x4d, 0x7ff, 0x0, 0x1, r2}, &(0x7f00000017c0)={0x0, 0x0, 0x0, 0x1, 0x80cb, r1, &(0x7f00000007c0)="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", 0x1000, 0x2d, 0x0, 0x1}])
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r5, 0x8010661b, &(0x7f0000001840))

06:34:01 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_MGMT_C_LISTALL(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x7c, 0x0, 0x831, 0x70bd29, 0x25dfdbff, {}, [@NLBL_MGMT_A_DOMAIN={0x11, 0x1, '/@]-$$,![)[\xc7\x00'}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @broadcast}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private0}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast1}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000002}, 0x20004000)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r1, &(0x7f0000000440)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4080}, 0xc, &(0x7f0000000400)={&(0x7f0000000180)={0x24c, 0x0, 0x400, 0x70bd2b, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x3}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}]}, @NLBL_CIPSOV4_A_MLSCATLST={0xe8, 0xc, 0x0, 0x1, [{0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x25b6ee20}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5e4a9877}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x39cb4de1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x510d0b81}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x108ba93d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2982fd83}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf9a5}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8cfd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1a9c}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfc2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2271a803}]}, {0x4}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8c08}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xff281de}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7ae70e96}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x225c}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x89b7}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9563}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9b9c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x27c4}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x740a91a0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x261a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x305c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7f553604}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf2a8}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x54, 0x4, 0x0, 0x1, [{0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x6}]}, @NLBL_CIPSOV4_A_TAGLST={0x3c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x6}, {0x5}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x60, 0xc, 0x0, 0x1, [{0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdad6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6444152}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd778}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x70bbd660}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x702d8c69}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7086}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x43189229}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x42c5bae9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf96c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x724c3a4b}]}]}]}, 0x24c}, 0x1, 0x0, 0x0, 0x42004}, 0x40810)
r2 = syz_genetlink_get_family_id$nbd(&(0x7f00000004c0), r0)
sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x58, r2, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x47}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x8010}, 0x4080)
sendmsg$NLBL_CIPSOV4_C_LIST(r1, &(0x7f0000000740)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000700)={&(0x7f0000000640)={0x98, 0x0, 0x20, 0x70bd2d, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_TAGLST={0x3c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0x20, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x686cbb8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa7}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x98}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008800)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000780), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$net_dm(&(0x7f00000007c0), r4)
sendmsg$AUDIT_TTY_SET(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x18, 0x3f9, 0x300, 0x70bd2d, 0x25dfdbfb, {}, ["", "", "", "", "", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x4804}, 0x20000040)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000940)={'wpan3\x00', <r5=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_KEY(r4, &(0x7f0000000a40)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20100000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000980)={0x68, r3, 0x61f, 0x70bd2a, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r5}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x2}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x100}, @IEEE802154_ATTR_DEV_INDEX={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x8004}, 0x1)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r0)
sendmsg$IEEE802154_DISASSOCIATE_REQ(r6, &(0x7f0000000b80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x2c, r7, 0x0, 0x70bd2c, 0x25dfdbfd, {}, [@IEEE802154_ATTR_REASON={0x5, 0x12, 0x2}, @IEEE802154_ATTR_REASON={0x5, 0x12, 0x1}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x24000091)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000bc0)='./file0\x00', 0x800)
sendmsg$SMC_PNETID_FLUSH(r8, &(0x7f0000000cc0)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000c40)={0x28, 0x0, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'wg2\x00'}]}, 0x28}}, 0x4000)
sendmsg$IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f0000000e00)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000d40)={0x44, r7, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x801}, 0x1)
sendmsg$IEEE802154_LLSEC_ADD_KEY(0xffffffffffffffff, &(0x7f0000000f40)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000e80)={0x58, r7, 0x100, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x5}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_FRAME_TYPES={0x5, 0x31, 0x8}, @IEEE802154_ATTR_LLSEC_KEY_USAGE_COMMANDS={0x24, 0x32, "8969d6dc1cd3a2cd239ec6154cb36867921a791b68c6f3e3befbd1ac4d2366ae"}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x1}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x50}, 0x20004050)

[   73.650485] audit: type=1400 audit(1663396441.095:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
06:34:01 executing program 4:
ioctl$EVIOCGMASK(0xffffffffffffffff, 0x80104592, &(0x7f0000000080)={0x16, 0x50, &(0x7f0000000000)="782b2f219de42dc2a3e0e2808c8867014923a9c05b8cebcae610581db2a74dc3dbede084675d862e7411c5cce36643946b76c2a3245e30ec6f3ce43b7217aa5b5c3249f078af9ee6179f5b7699acde04"})
ioctl$EVIOCSABS2F(0xffffffffffffffff, 0x401845ef, &(0x7f00000000c0)={0x71b9, 0x100, 0xffff8001, 0x0, 0x800})
copy_file_range(0xffffffffffffffff, &(0x7f0000000100)=0x4, 0xffffffffffffffff, &(0x7f0000000140)=0x9, 0xffff, 0x0)
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x1a080, 0x0)
ioctl$EVIOCSABS20(r0, 0x401845e0, &(0x7f00000001c0)={0x3ff, 0x5, 0xffff, 0x6, 0xffffffff, 0x8})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r1, 0xf502, 0x0)
r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000200), 0x2000, 0x0)
ioctl$FS_IOC_GETVERSION(r2, 0x80087601, &(0x7f0000000240))
r3 = dup2(r2, r0)
r4 = fcntl$dupfd(r2, 0x406, r3)
socketpair(0x1f, 0xa, 0x4, &(0x7f0000000280)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_JOIN_OCB(r5, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x48, 0x0, 0x100, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x4, 0x51}}}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8001}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000080}, 0x4080)
ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000440)={0x6, 0x3, 0x6, 0x5, 0x6, [{0x5, 0x3800000000000000, 0x4, '\x00', 0x1000}, {0x2, 0x2, 0x8, '\x00', 0xb83}, {0x9, 0x6, 0x2, '\x00', 0x800}, {0x4db, 0x1ff, 0x0, '\x00', 0x2300}, {0x7fff, 0x0, 0x0, '\x00', 0x2000}, {0x811d, 0x80, 0x101}]})
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f00000005c0)={0x9, 0x8, 0x2, 0x6, 0xcf, 0x7fff})
ioctl$EVIOCSABS2F(r0, 0x401845ef, &(0x7f0000000600)={0xb30, 0x4, 0x3e5, 0x3, 0x6, 0x95})
fremovexattr(r6, &(0x7f0000000640)=@known='user.incfs.metadata\x00')
r8 = pidfd_open(0x0, 0x0)
ioctl$LOOP_CHANGE_FD(r4, 0x4c06, r8)

06:34:01 executing program 5:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x12200, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
sendmsg$NL80211_CMD_UPDATE_FT_IES(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, 0x0, 0x300, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x3, 0x36}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x4000081)
r2 = dup3(r0, r0, 0x80000)
sendmsg$NL80211_CMD_SET_PMK(r2, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x90, 0x0, 0x1, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "a81c0269e84a6e22dfd9e7d23faf29a7"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "10bf76e5bf0947bc95978e1cc5fcfc67"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "38438c71e8e327b4a050919a80365cc4"}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "fa064f993dba156875a9b16a008bb898"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "6b875cc8e396d9a8e14745a584ca3cca"}]}, 0x90}, 0x1, 0x0, 0x0, 0x40000c0}, 0x20008800)
sendmsg$TIPC_NL_KEY_FLUSH(r2, &(0x7f0000000740)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000700)={&(0x7f0000000340)={0x3b4, 0x0, 0x8, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xa1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x68f4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xd1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x10001}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}]}, @TIPC_NLA_NODE={0x344, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3f, 0x4, {'gcm(aes)\x00', 0x17, "c20ef04e2f7553c0693f2d1b4a5693b56c614bf5349dcd"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "52a3fb45b47313fe03eab0b55c494d9aa06ac8e88e8b2c4148221ff513ac6f"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x5b, 0x3, "9426f2083b8f4200bde644b28103f739a4713efa13902bd61f1fc6611344302edf1bec5b90a0b2377ae248346850415cb0eab87f9a2e6885bfd57b5cede37c60944003201bd6084dbf9dc076624b11624d32a8b4829fb6"}, @TIPC_NLA_NODE_ID={0xc5, 0x3, "f781da8c015158a7a4a566bcb28b106a3b5c7710a478750ac947fde153d90a24f6500557b06c2fde6afed72db969ecb030381e7ee1cc5b8f8181adc2285989fbfd24f38d70b124f8d7b16baaf569ecbbbf60ae2c981de7a7881be55502a5b72125990d4296f40462b85b8067bcfed2da31d0540daaf15e23233d780db69cc69e20540ce4902395f2d7ebbdef6585f00380bcd919c51a9bebb72de2293ccf42069da85a5a8d9d38a24fea1181249bc14a2d6f6e7e49c64299d60f795d818ad070c4"}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "7d26dc6fb8031c28aca5d89086ece749397790db0b6d0c0acc776d1a"}}, @TIPC_NLA_NODE_KEY={0x46, 0x4, {'gcm(aes)\x00', 0x1e, "7e5da43289012bd10afd9735baa8856db673746852f56f60dddec0213643"}}, @TIPC_NLA_NODE_ID={0xf9, 0x3, "dc68d2a198ce45f37263b543dbf58cb129274e03ca496286d8917b09130cf9737a55019c34409e0858739332d0c6d0a20b5379baf4e20cfdc38b1fd2e974477c3afe5078f92f2c17ba660a77a7d41ae120cbb131398cf3c74ed3e9c56b14f0d50c5d79f48a8165280f9d7cb55c4ed6016c107a395e4143954ae152b21ebc1e885f132b2e5c01aeffe49085db3258fb2e32083c0d0b6338a37a3cd2786c4595c607e88875d8f4cb57bb4b5d7759388e2c9012d0439931d242a87f9ccf778e2213c057afd2caed197e38338226bd52a486f0953363bdc7340a682e8a3d4a1af9a1685cada08e6c1f2d1dc0af9a563ae32f891e271dd9"}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}]}]}, 0x3b4}, 0x1, 0x0, 0x0, 0x10}, 0x400)
readv(r2, &(0x7f0000000900)=[{&(0x7f0000000780)=""/14, 0xe}, {&(0x7f00000007c0)=""/6, 0x6}, {&(0x7f0000000800)}, {&(0x7f0000000840)=""/151, 0x97}], 0x4)
dup(r2)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000b40)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
sendmsg$OSF_MSG_ADD(r3, &(0x7f0000001580)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x40001001}, 0xc, &(0x7f0000001540)={&(0x7f0000000bc0)={0x964, 0x0, 0x5, 0x301, 0x0, 0x0, {0x1, 0x0, 0x1}, [{{0x254, 0x1, {{0x1, 0x462}, 0x20, 0x9, 0x401, 0x6, 0x0, 'syz1\x00', "d4497e7d7a3bac27d823085b49336a5f819dbcc2a2bd5410bbb635399615af77", "d268bdc4053c27990816c0d36060095a4dffa87f62ec916b5a7f51b8a1fcc2ea", [{0x4, 0x8, {0x3, 0x6}}, {0xe55, 0x8, {0x1, 0x327}}, {0xff, 0x6, {0x0, 0x2dd5e811}}, {0x8, 0x5, {0x1, 0x7f}}, {0x59, 0x3}, {0xa7, 0x9, {0x1, 0x9}}, {0x8, 0x0, {0x2}}, {0x9, 0x5, {0x0, 0x84b1}}, {0x8, 0x5f, {0x2, 0x1}}, {0x1f, 0x7f, {0x1, 0x10001}}, {0x0, 0x5e6}, {0xfffe, 0xfffb, {0x2, 0x6}}, {0x2, 0x20, {0x1, 0x1ff}}, {0x7fff, 0x4, {0x0, 0x7fff}}, {0x2, 0xffd2, {0x2, 0x1}}, {0x3, 0x8001, {0x3, 0x7}}, {0x7, 0x8, {0x2, 0x1000}}, {0xfffb, 0x3ff, {0x2, 0x80000000}}, {0x100, 0x0, {0x3, 0x80}}, {0x4, 0x3f, {0x3, 0x1f}}, {0x6, 0xff, {0x3, 0x2}}, {0x6, 0x2, {0x2, 0x5}}, {0x2ac, 0x20, {0x0, 0x8}}, {0x0, 0x20, {0x2, 0xd56}}, {0x40, 0x3, {0x2, 0x400}}, {0x67ce, 0xff, {0x2, 0x80}}, {0x8, 0x3, {0x2, 0x5}}, {0x4, 0xbe, {0x3, 0xffff}}, {0x3f, 0x7fff, {0x3, 0xd84}}, {0x3, 0x6a, {0x1, 0x4}}, {0x101, 0xfc01, {0x3, 0x7}}, {0x1, 0x7fff, {0x0, 0x80}}, {0x8, 0x6, {0x2, 0x7}}, {0x2, 0x7, {0x1, 0xfffff800}}, {0x977, 0x200, {0x0, 0x6}}, {0x6, 0x4, {0x2, 0x401}}, {0x7ff, 0x5, {0x0, 0x7fff}}, {0xf972, 0x0, {0x3, 0x6}}, {0x1, 0x2, {0x0, 0x80000000}}, {0x618, 0x0, {0x0, 0x4}}]}}}, {{0x254, 0x1, {{0x1, 0x72}, 0x7, 0x5, 0x6, 0x1, 0x15, 'syz1\x00', "e4a41cae2565be0f360ebc52f3b0786bdc84fe233247a52213b8aa94fe4be29b", "8e7de38fa7b21c7a993b71a89230519409f680f1481301adb0e1c8466db4b49d", [{0x5, 0x6, {0x2, 0x895}}, {0x8, 0x8a6, {0x0, 0x10001}}, {0x5, 0xf1, {0x3, 0xffff}}, {0x5, 0x2, {0x0, 0x20}}, {0x200, 0x2, {0x2, 0x8c}}, {0x98c, 0x40, {0x0, 0x9}}, {0x81, 0xa4e9, {0x0, 0xee3c}}, {0xffc1, 0x1, {0x2, 0x2922286d}}, {0xfcba, 0x5, {0x3, 0x10000}}, {0x1, 0x11, {0x1, 0xfffffff8}}, {0xd3, 0xf49, {0x0, 0xfff}}, {0x81, 0xfffc, {0x0, 0xcb}}, {0x0, 0x2, {0x0, 0xfffffeff}}, {0x4f, 0xa21, {0x2, 0x50f}}, {0xcbf5, 0x901e, {0x0, 0x7}}, {0x5, 0x3, {0x2, 0x4}}, {0x6, 0x8, {0x2, 0x101}}, {0x1, 0x2, {0x1, 0x63d}}, {0x6, 0xb77, {0x1, 0x9}}, {0x40, 0x80, {0x3, 0x3}}, {0x9, 0x0, {0x3}}, {0x9, 0x54, {0x0, 0xff}}, {0x1f, 0x3f}, {0x5, 0x0, {0x0, 0xe2}}, {0x1ff, 0x3f, {0x1, 0xffffffd3}}, {0x4, 0x800, {0x1, 0x100}}, {0x7fff, 0x1, {0x3, 0x8d}}, {0x3, 0x81, {0x1, 0x7}}, {0x7c, 0x9, {0x3, 0xc6}}, {0xfffc, 0xfff, {0x3, 0x7}}, {0x6, 0x28, {0x3, 0x1f}}, {0x5, 0xb750, {0x3, 0x10000}}, {0x0, 0x400, {0x3, 0xc8}}, {0x74, 0x7fff, {0x2, 0x8df}}, {0x7, 0x6, {0x2, 0x7}}, {0x1000, 0x3, {0x1, 0x4}}, {0x9, 0x95, {0x0, 0x10}}, {0xff, 0x8, {0x2, 0x7}}, {0x80c7, 0x3, {0x3, 0x5}}, {0x1, 0x3, {0x2, 0x7925}}]}}}, {{0x254, 0x1, {{0x3}, 0x1, 0x0, 0x2, 0x6, 0xb, 'syz1\x00', "8ac27cc0888b1cb23188d2a5d2bebb9746453baec0407498bc49b45f5c946dbf", "184ae05ef08b834b1de9f7ade67d7e90746d523b539750a05f51a45ceea4859d", [{0xdc, 0x101, {0x1}}, {0x1f, 0x4080, {0x0, 0x6}}, {0xf516, 0xfff9, {0x0, 0x3ff}}, {0x8, 0x5, {0x0, 0x2}}, {0xfffa, 0x40, {0x3, 0x1}}, {0x1e7, 0x1, {0x0, 0x10000}}, {0x0, 0x5, {0x1, 0x3}}, {0x7, 0x8, {0x3, 0x81}}, {0xfff7, 0x0, {0x2, 0x800}}, {0x3, 0x5, {0x3, 0x7fffffff}}, {0x1, 0x8000, {0x1, 0x20}}, {0x8f4, 0x5eb0, {0x1, 0xfffffffd}}, {0x7, 0x5, {0x1, 0x9}}, {0x8000, 0x5, {0x3, 0x1}}, {0x5, 0x5dc, {0x3, 0x24d}}, {0x16f, 0x4, {0x3, 0x80000001}}, {0x1f, 0xcd64, {0x0, 0xffff}}, {0x4b4c, 0x401, {0x3, 0x4}}, {0x54, 0x101, {0x2, 0x427}}, {0x100, 0x1, {0x3, 0x3ff}}, {0x3, 0x2, {0x1, 0x1}}, {0x6, 0x7f, {0x0, 0xe599}}, {0xb7c8, 0x0, {0x0, 0x2}}, {0x7, 0xca58, {0x3, 0x200}}, {0x3, 0x6, {0x1, 0x9}}, {0x7ff, 0x9, {0x2, 0x9}}, {0x3, 0x8000, {0x2, 0x1}}, {0x4000, 0x7, {0x3}}, {0x8, 0x3}, {0x101, 0x3, {0x1, 0x8000}}, {0x88, 0x4, {0x2, 0x1000}}, {0x7, 0x7f, {0x3, 0x8}}, {0x401, 0x80, {0x2, 0x4}}, {0x5, 0xfff9, {0x1, 0x5}}, {0x9, 0x1, {0x2, 0x101}}, {0x0, 0x800, {0x1, 0x5}}, {0x7, 0x8, {0x1, 0x2}}, {0x0, 0xbe, {0x3, 0x4}}, {0x0, 0x1000, {0x0, 0x3}}, {0x0, 0x132, {0x1, 0x4}}]}}}, {{0x254, 0x1, {{0x3, 0xdb4}, 0x2, 0x1f, 0xff, 0x2, 0x10, 'syz1\x00', "de8258af752d9d99ba0a93703efdb7bbe0391d58240f4ea409c1f77bd7c34dab", "75c3ce98362c7d204da61ba812d6879879a2e8b13dc2dd1beb5c9383e4d23c92", [{0x1, 0x84ef, {0x0, 0x2}}, {0x1, 0x7, {0x2}}, {0x8, 0xf6a1, {0x3, 0x1}}, {0x1, 0x1, {0x2, 0x1ff}}, {0x0, 0x7ff, {0x1, 0x1000}}, {0x3f, 0x6677, {0x3, 0xb2}}, {0x9, 0x21d6, {0x3, 0x3}}, {0x9e2, 0x2, {0x2, 0x4a}}, {0x8, 0x7, {0x0, 0x4}}, {0x1, 0x9, {0x3, 0xfffffdba}}, {0x202f, 0xffe1, {0x1, 0x101}}, {0x4e06, 0xe1e, {0x3, 0x5}}, {0x1000, 0x8001, {0x1}}, {0x40d0, 0x5, {0x2, 0x8000}}, {0x3, 0xfffc, {0x2, 0x40}}, {0x80, 0x3, {0x1}}, {0x3, 0x200, {0x0, 0x7f}}, {0x4, 0x8, {0x1, 0x4}}, {0x4000, 0x3, {0x1, 0x5}}, {0x5, 0x6, {0x1, 0x9}}, {0x4, 0x2, {0x1, 0x57f7}}, {0xff, 0x2, {0x2, 0x309357b4}}, {0xe6b, 0x87c, {0x0, 0x5}}, {0x641b, 0x1, {0x2, 0x1}}, {0x0, 0xff, {0x0, 0x3}}, {0xe7, 0x0, {0x0, 0x8000}}, {0xffc1, 0x7b98, {0x0, 0x8001}}, {0x4f4e, 0x8001, {0x2, 0xffff}}, {0xfffd, 0x6, {0x3, 0x40}}, {0x8, 0x20, {0x1, 0x6}}, {0x8, 0xf014, {0x1, 0x6}}, {0xa48, 0x2, {0x0, 0xfffffffb}}, {0x3, 0x7, {0x0, 0x6}}, {0xfff, 0x1, {0x1, 0x99}}, {0x20, 0x7ff, {0x3, 0x200}}, {0x40, 0x0, {0x3, 0x6}}, {0x1, 0x8, {0x0, 0x9}}, {0x101, 0xc1, {0x3, 0x9}}, {0x1ff, 0x4, {0x2, 0x3ed3}}, {0x50d9, 0x4, {0x0, 0x80000001}}]}}}]}, 0x964}, 0x1, 0x0, 0x0, 0x80}, 0xc984)
clock_gettime(0x0, &(0x7f00000019c0)={<r4=>0x0, <r5=>0x0})
recvmmsg$unix(r3, &(0x7f0000001980)=[{{&(0x7f00000015c0), 0x6e, &(0x7f0000001880)=[{&(0x7f0000001640)=""/198, 0xc6}, {&(0x7f0000001740)=""/2, 0x2}, {&(0x7f0000001780)=""/130, 0x82}, {&(0x7f0000001840)=""/51, 0x33}], 0x4, &(0x7f00000018c0)=[@cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r8=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}}], 0x1, 0x2020, &(0x7f0000001a00)={r4, r5+60000000})
sendmsg$NFQNL_MSG_CONFIG(r8, &(0x7f0000001b00)={&(0x7f0000001a40)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001ac0)={&(0x7f0000001a80)={0x34, 0x2, 0x3, 0x201, 0x0, 0x0, {0x2, 0x0, 0x7}, [@NFQA_CFG_QUEUE_MAXLEN={0x8}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x8}, @NFQA_CFG_MASK={0x8}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x30dd}]}, 0x34}, 0x1, 0x0, 0x0, 0x2400c000}, 0xe4c02de75703a538)
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r6, &(0x7f0000001c00)={&(0x7f0000001b40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001bc0)={&(0x7f0000001b80)={0x3c, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc014}, 0x4000000)
sendmsg$NLBL_MGMT_C_REMOVEDEF(0xffffffffffffffff, &(0x7f0000001d00)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001cc0)={&(0x7f0000001c80)={0x3c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x10}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0xe}}, @NLBL_MGMT_A_DOMAIN={0x7, 0x1, ':^\x00'}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @private=0xa010100}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
write$binfmt_elf32(r2, &(0x7f0000001d40)={{0x7f, 0x45, 0x4c, 0x46, 0x9, 0x27, 0x8, 0x6, 0xffff, 0x2, 0x3, 0x20, 0x2b9, 0x38, 0x35c, 0x1ff, 0xffff, 0x20, 0x2, 0xaca, 0x9b7, 0x3ff}, [{0x7, 0x1, 0x3, 0x200, 0x6e80, 0xffff, 0x1ff, 0x5}], "26315d8ed6a6f52b91a7281ae324229b2b1dd70e4a0d2ffafa5d0d1475d25192a98aa6d77fa760d16f2e49f90f7b17ef4d71e56cd021f123518d43ce6868daa6e42374050b8d1948698e66050dd212c3ab0447b2714d3b7bb233ba99259204b9fe14bb4138b670e4d798b58148cb1e56c4bdd2231f44e3356df4820daf8391f4ea908fa919290afbbabec7de08ca88e27d9c5d00f920b4f928ad3b78bb5fca916862737a9b548595b36aeab28e4ab0db12b144939f1726079700fb93abf24c090409a6c9ed92e93414507bc126ba3130e199", ['\x00']}, 0x22a)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r9, &(0x7f0000002040)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0xae63b6cee0cfdb59}, 0xc, &(0x7f0000002000)={&(0x7f0000001fc0)={0x30, 0x0, 0x2, 0x70bd26, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
preadv(r7, &(0x7f0000002300)=[{&(0x7f0000002080)=""/232, 0xe8}, {&(0x7f0000002180)=""/121, 0x79}, {&(0x7f0000002200)=""/242, 0xf2}], 0x3, 0x6, 0x2)
sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f0000002400)={&(0x7f0000002340)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000023c0)={&(0x7f0000002380)={0x2c, 0x0, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40040)

06:34:01 executing program 6:
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000000))
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000040)='#$\x1d.,\x00', 0x0, 0xffffffffffffffff)
ioctl$AUTOFS_IOC_READY(0xffffffffffffffff, 0x9360, 0xffffffff)
write$tun(0xffffffffffffffff, &(0x7f0000000080)={@void, @val={0x3, 0x3, 0x81, 0xfff, 0x401, 0xfffc}, @x25={0xf2f129603583b33d, 0x7, 0x17, "59632ce8e3a1e3db60202d5b41372b71dd39925e2cd6d25b4f3cebc524059baa0e4156fa0df4cd93ba4839fee01cf66c6d02b532136571835cd290f205910a598303e6ee08380535e9aa9182d99cd4"}}, 0x5c)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000100)={'veth0_to_batadv\x00'})
r0 = syz_open_dev$mouse(&(0x7f0000000140), 0x80000000, 0x200)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_STATION(r0, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x68, r1, 0x2, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x3, 0x6c}}}}, [@NL80211_ATTR_STA_VLAN={0x8}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x10, 0xbd, [0x8, 0xffff, 0x3ff, 0xeeb1, 0x6, 0x30]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x6}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x1d, 0x13, [{0x2, 0x1}, {0x24, 0x1}, {0x4, 0x1}, {0x36}, {0x3}, {0x18}, {0x4, 0x1}, {0x6a, 0x1}, {0x4, 0x1}, {0x16}, {0xc, 0x1}, {0x30}, {0x6c}, {0x18}, {0x9}, {0x3, 0x1}, {0x48}, {0x30, 0x1}, {0x6c, 0x1}, {0x36}, {0xb}, {0x60}, {0x36, 0x1}, {0xb, 0x1}, {0x30, 0x1}]}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5}]}, 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x20000090)
sendmsg$TIPC_NL_BEARER_GET(r0, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0xb4, 0x0, 0x800, 0x70bd26, 0x25dfdbfb, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8000}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x46}]}, @TIPC_NLA_NET={0x64, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x81}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x100}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x401}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x10}, 0x4044011)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000480), r0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000004c0), 0x14040, 0x0)
ioctl$TUNGETVNETHDRSZ(r2, 0x800454d7, &(0x7f0000000500))
r3 = dup(0xffffffffffffffff)
ioctl$TUNSETTXFILTER(r3, 0x400454d1, &(0x7f0000000540)={0x0, 0x3, [@random="dd994daf7db4", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1e}, @broadcast]})
read(r3, &(0x7f0000000580)=""/175, 0xaf)
write$binfmt_aout(r3, &(0x7f0000000640)={{0x108, 0x0, 0x1f, 0x338, 0x1ff, 0xa5, 0x362, 0x6}, "25b10733af4966592775f75aa74f31d29e2c44e9a97caa82617ce1d47b3c0bcf666c16d31ab17fa2392004f4bd82054810595013875be1d85e8462696a1ad4c18d950e7aa431fc4b0ba50eceb081c3ce91249a50667d5f3e26d791b35364e04ba6ce3ffb12c86c1f92eed65a149bd75e51b40fcdb40ab4d658e3d84f958490d7dae3a64b1259648a21ea02352c045558aedcfa01f754cd3ac277c6702d53b96cf994743191028dd2c3d7e8537ccb34194911e24458c22fd91a36de3c11a72a94975fb280431c3be3ec3b0009207e51e6f154fc0dda81aec37eadf6b2d22559ce12b48548109048a72563", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x80a)
syz_io_uring_setup(0xbcf, &(0x7f0000000e80)={0x0, 0x5c12, 0x20, 0x2, 0xc2, 0x0, r3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000f00), &(0x7f0000000f40))
r4 = openat$cgroup_ro(r2, &(0x7f0000000f80)='blkio.bfq.time_recursive\x00', 0x0, 0x0)
sendmsg$NL80211_CMD_DISASSOCIATE(r4, &(0x7f0000001280)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001240)={&(0x7f0000001000)={0x208, r1, 0x200, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="9ba3ff7cdff4"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x5d, 0x2a, [@supported_rates={0x1, 0x7, [{0x1}, {}, {0x1, 0x1}, {0x1, 0x1}, {0x16}, {0x24, 0x1}, {0x4}]}, @channel_switch={0x25, 0x3, {0x0, 0x7}}, @measure_req={0x26, 0x40, {0x4, 0x7, 0x1, "6a1a537d44acf5d46f15b1fc4aaf96a808fd4bf4d6a6df9d4d677b9310f04ab5b5e169078e8f31d9ccd979a9a7d8f3591d4f9bc8dc1bdb599eca10f9e0"}}, @challenge={0x10, 0x1, 0x52}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x3, 0x45, 0x1}}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x101}, @NL80211_ATTR_IE={0x15a, 0x2a, [@tim={0x5, 0xb2, {0x1, 0xb7, 0x2, "9f97bcffe53da63281bb5750a24f249b045866115d94da0d7ad301450676fe8207b2b26f75489b0432dd5d2495a4d126f97d00e904c94ba652c3f5d08afd279a2eec2d18ccfad2ca8aef995941a649e222b33983e8b03a4a0463735cdb4522fbe2ca513c2ec8e89bc242afeafccc8573f2b6ab33cac92d608cd92d23ed8e57bdce90e6e687978ebed819c8d7e1d665e674e519a475886d05911d9184b676fc2b4bbfd560baee7fe32de7a75a286c26"}}, @link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @random_vendor={0xdd, 0x7e, "a1ae5b58a005f10089844cabee474877a547d00b84f46741d478817f3f85e711812f4206ae1ec2e953c26213ca280ec2a505d6d022c7134e03bd635a948aa1220bf06cc316b32a441dde3916100d14794d63636a44003ce56eaf9f6600c20c197a4016be7997da62d7cc8340e22669d2d8dbd1c34946d5b7e275df296475"}, @ssid={0x0, 0x6, @default_ibss_ssid}, @erp={0x2a, 0x1, {0x0, 0x1, 0x1}}, @challenge={0x10, 0x1, 0xa4}]}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x208}, 0x1, 0x0, 0x0, 0x8000}, 0x2400c000)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x2)

06:34:01 executing program 7:
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x80040, 0x0)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x541c, &(0x7f0000000040))
r1 = syz_open_procfs(0x0, &(0x7f0000000080)='status\x00')
ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f00000000c0)={0xa8, 0x5, 0xa09, 0x8, 0x8e, "ac9170e09ffa95f914e8dab41bb28910a1da33", 0xffffffff, 0xf45e})
r2 = signalfd4(r0, &(0x7f0000000100)={[0x20]}, 0x8, 0x80800)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x7, 0x1, 0x801, 0x0, 0x0, {0x7, 0x0, 0xa}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x24040001}, 0x2400c040)
sendmsg$SMC_PNETID_FLUSH(r2, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x34, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6gretap0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x10002004)
r3 = open(&(0x7f0000000340)='./file0\x00', 0x10b200, 0x106)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2)
r4 = openat$cgroup_ro(r2, &(0x7f00000003c0)='memory.swap.current\x00', 0x0, 0x0)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000440)={<r5=>0x0, @loopback, @loopback}, &(0x7f0000000480)=0xc)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r1, 0x89f9, &(0x7f0000000540)={'ip6gre0\x00', &(0x7f00000004c0)={'sit0\x00', <r6=>0x0, 0x4, 0x8, 0x9, 0x100, 0x18, @loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x80, 0x10, 0x5, 0x7f}})
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r2, 0x89f9, &(0x7f00000006c0)={'ip6_vti0\x00', &(0x7f0000000640)={'ip6_vti0\x00', <r7=>0x0, 0x4, 0x2, 0xb0, 0x81, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x700, 0x1, 0x49, 0x3}})
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000a40)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000700)={0x2cc, 0x0, 0x20, 0x70bd25, 0x25dfdbfd, {}, [{{0x8, 0x1, r5}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x24ff}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3c}}, {0x8}}}]}}, {{0x8}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r6}}}]}}, {{0x8, 0x1, r7}, {0x174, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x80000001}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}]}}]}, 0x2cc}, 0x1, 0x0, 0x0, 0x4008001}, 0x40001)
ioctl$TUNGETVNETHDRSZ(r3, 0x800454d7, &(0x7f0000000a80))
ioctl$FICLONE(r0, 0x40049409, r4)
ioctl$KDFONTOP_GET(r3, 0x4b72, &(0x7f0000000ec0)={0x1, 0x1, 0x17, 0x14, 0x63, &(0x7f0000000ac0)})
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000f00), 0x115880)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000f40)={'veth0_to_bridge\x00'})

[   74.923572] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   74.925597] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   74.929336] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   74.932106] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   74.938385] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   74.939491] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   74.941981] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   74.945833] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   74.947301] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   74.951059] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   74.955279] Bluetooth: hci1: HCI_REQ-0x0c1a
[   74.961264] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   74.987862] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   74.999576] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   75.001291] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   75.003281] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   75.006059] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   75.007108] Bluetooth: hci0: HCI_REQ-0x0c1a
[   75.009726] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   75.012296] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   75.018040] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   75.018489] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   75.019321] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   75.026250] Bluetooth: hci4: HCI_REQ-0x0c1a
[   75.033775] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   75.036565] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   75.038068] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   75.040303] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   75.043433] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   75.045016] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   75.047028] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   75.048304] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   75.049205] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   75.049428] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   75.051928] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   75.056582] Bluetooth: hci7: HCI_REQ-0x0c1a
[   75.057334] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   75.057556] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   75.068095] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   75.072605] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   75.074093] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   75.080576] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   75.082314] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   75.083544] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   75.087784] Bluetooth: hci6: HCI_REQ-0x0c1a
[   75.088624] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   75.089063] Bluetooth: hci2: HCI_REQ-0x0c1a
[   75.092620] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   75.094115] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   75.095472] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   75.108113] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   75.111239] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   75.113196] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   75.114997] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   75.119761] Bluetooth: hci5: HCI_REQ-0x0c1a
[   75.120245] Bluetooth: hci3: HCI_REQ-0x0c1a
[   77.006207] Bluetooth: hci1: command 0x0409 tx timeout
[   77.068685] Bluetooth: hci0: command 0x0409 tx timeout
[   77.068734] Bluetooth: hci7: command 0x0409 tx timeout
[   77.069739] Bluetooth: hci4: command 0x0409 tx timeout
[   77.132681] Bluetooth: hci5: command 0x0409 tx timeout
[   77.132756] Bluetooth: hci3: command 0x0409 tx timeout
[   77.135522] Bluetooth: hci6: command 0x0409 tx timeout
[   77.136128] Bluetooth: hci2: command 0x0409 tx timeout
[   79.053759] Bluetooth: hci1: command 0x041b tx timeout
[   79.116790] Bluetooth: hci4: command 0x041b tx timeout
[   79.117394] Bluetooth: hci7: command 0x041b tx timeout
[   79.119775] Bluetooth: hci0: command 0x041b tx timeout
[   79.181787] Bluetooth: hci2: command 0x041b tx timeout
[   79.182269] Bluetooth: hci6: command 0x041b tx timeout
[   79.183365] Bluetooth: hci3: command 0x041b tx timeout
[   79.183841] Bluetooth: hci5: command 0x041b tx timeout
[   81.100737] Bluetooth: hci1: command 0x040f tx timeout
[   81.165794] Bluetooth: hci0: command 0x040f tx timeout
[   81.166316] Bluetooth: hci7: command 0x040f tx timeout
[   81.166791] Bluetooth: hci4: command 0x040f tx timeout
[   81.229872] Bluetooth: hci5: command 0x040f tx timeout
[   81.230359] Bluetooth: hci3: command 0x040f tx timeout
[   81.230823] Bluetooth: hci6: command 0x040f tx timeout
[   81.231258] Bluetooth: hci2: command 0x040f tx timeout
[   83.148787] Bluetooth: hci1: command 0x0419 tx timeout
[   83.213722] Bluetooth: hci4: command 0x0419 tx timeout
[   83.214206] Bluetooth: hci7: command 0x0419 tx timeout
[   83.214621] Bluetooth: hci0: command 0x0419 tx timeout
[   83.276813] Bluetooth: hci2: command 0x0419 tx timeout
[   83.277304] Bluetooth: hci6: command 0x0419 tx timeout
[   83.277760] Bluetooth: hci3: command 0x0419 tx timeout
[   83.278171] Bluetooth: hci5: command 0x0419 tx timeout
[  137.064153] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  137.065315] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  137.067581] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  137.070541] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  137.071884] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  137.072793] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  137.077082] Bluetooth: hci4: HCI_REQ-0x0c1a
[  137.128939] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  137.130512] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  137.131307] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  137.133035] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  137.134411] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  137.135177] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  137.137892] Bluetooth: hci5: HCI_REQ-0x0c1a
[  139.084714] Bluetooth: hci2: Opcode 0x c03 failed: -110
[  139.084730] Bluetooth: hci4: command 0x0409 tx timeout
[  139.086115] Bluetooth: hci0: Opcode 0x c03 failed: -110
[  139.148738] Bluetooth: hci5: command 0x0409 tx timeout
[  139.148807] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  141.135721] Bluetooth: hci4: command 0x041b tx timeout
[  141.196952] Bluetooth: hci5: command 0x041b tx timeout
[  141.590095] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  141.591007] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  141.592284] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  141.601107] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  141.611383] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  141.612220] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  141.616746] Bluetooth: hci0: HCI_REQ-0x0c1a
[  141.720822] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  141.722760] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  141.723529] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  141.725282] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  141.726471] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  141.727191] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  141.733708] Bluetooth: hci2: HCI_REQ-0x0c1a
[  141.792978] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  141.794400] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  141.799868] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  141.802398] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  141.803573] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  141.805376] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  141.816338] Bluetooth: hci6: HCI_REQ-0x0c1a
[  143.181682] Bluetooth: hci4: command 0x040f tx timeout
[  143.244789] Bluetooth: hci5: command 0x040f tx timeout
[  143.629709] Bluetooth: hci0: command 0x0409 tx timeout
[  143.757679] Bluetooth: hci2: command 0x0409 tx timeout
[  143.821007] Bluetooth: hci6: command 0x0409 tx timeout
[  145.228743] Bluetooth: hci4: command 0x0419 tx timeout
[  145.293419] Bluetooth: hci5: command 0x0419 tx timeout
[  145.676709] Bluetooth: hci0: command 0x041b tx timeout
[  145.804680] Bluetooth: hci2: command 0x041b tx timeout
[  145.868771] Bluetooth: hci6: command 0x041b tx timeout
[  147.724695] Bluetooth: hci0: command 0x040f tx timeout
[  147.852723] Bluetooth: hci2: command 0x040f tx timeout
[  147.916833] Bluetooth: hci6: command 0x040f tx timeout
[  149.772722] Bluetooth: hci0: command 0x0419 tx timeout
[  149.900967] Bluetooth: hci2: command 0x0419 tx timeout
[  149.964831] Bluetooth: hci6: command 0x0419 tx timeout
06:35:54 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x2100, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0)
r0 = clone3(0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x4c6182, 0x0)
ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, 0x0)
epoll_create(0x4)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x5, 0x80, 0x10, 0xe, 0x0, 0xff, 0x208, 0x11, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x101, 0x2, @perf_config_ext={0x200, 0x6}, 0x1, 0xfffffffffffffffd, 0x0, 0x0, 0x8, 0x7, 0x101, 0x0, 0x4, 0x0, 0xffffffffffff5107}, r0, 0x6, r2, 0x0)
r4 = fcntl$dupfd(r1, 0x0, r3)
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x1, 0x1f, 0x6, 0x0, 0x0, 0x2, 0x30, 0x8, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x4, @perf_bp={&(0x7f0000000100), 0xe}, 0x100, 0x1, 0x8, 0x8, 0x4, 0x3, 0x5f0a, 0x0, 0x8, 0x0, 0x9}, r0, 0x4, r4, 0x0)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

06:35:54 executing program 1:
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x7ff)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xfffffff7}}, './file0\x00'})
ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f0000000080)={0x3, 0x8, 0x7b})
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, &(0x7f00000000c0)={0x6, 0xfa})
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f0000000100)={0x2, 0x40000000, 0x10000, 0x401, 0x6, 0x7fff})
ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000140)=0x9)
ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000000180)=0x5)
r3 = accept$unix(r1, 0x0, &(0x7f00000001c0))
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r4 = openat(r1, &(0x7f0000000200)='./file0\x00', 0x10000, 0x892c4aaf5bf6e8df)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r5=>r3, {0xa462}}, './file1\x00'})
ioctl$FITHAW(r1, 0xc0045878)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000280)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$KDGKBSENT(r2, 0x4b48, &(0x7f0000000680)={0x4, "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"})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f00000008c0)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff}, './file2\x00'})
r7 = accept$unix(r3, &(0x7f00000009c0), &(0x7f0000000a40)=0x6e)
sendfile(r6, r7, &(0x7f0000000a80)=0x8, 0xfa)

06:35:54 executing program 6:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000440)={{0x1, 0x1, 0x18, r0}, './file1\x00'})
sendfile(r0, 0xffffffffffffffff, 0x0, 0x8)
r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r3)
r4 = fcntl$dupfd(r2, 0x406, 0xffffffffffffffff)
getsockname$packet(r3, &(0x7f0000000400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000200)=0x14)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000380)={<r5=>0x0, @private, @local}, &(0x7f00000003c0)=0xc)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
dup(r6)
setsockopt$inet6_IPV6_PKTINFO(r6, 0x29, 0x32, &(0x7f0000000300)={@private1={0xfc, 0x1, '\x00', 0x1}, r5}, 0x14)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0)
setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0xfd}}, 0x14)
sendmmsg$inet6(r7, &(0x7f00000006c0)=[{{&(0x7f0000000240)={0xa, 0x4e24, 0x0, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000001b00)=[@pktinfo={{0x24, 0x29, 0x32, {@dev}}}], 0x28}}], 0x1, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000000580)={&(0x7f0000000000), 0xc, &(0x7f0000000540)={&(0x7f0000000700)=ANY=[@ANYBLOB="18010000", @ANYRES16=0x0, @ANYBLOB="000428bd7000fddbdf25150000003000018008000100", @ANYBLOB="d15a977ba2c41d6b58a104e629b57519fc385063445d702f9490a768c19f1c4e2d0c02ef28ba8e", @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="140002007665f468315f766c616e0000000000000800030002000000752f07bf770215138dbce018000180140002006e6574706369300000000000000000000c00018008000100", @ANYRES32=0x0, @ANYBLOB="2000018008000100", @ANYRESOCT, @ANYBLOB="1400020073797a6b616c6c6572310000000000000c000180080003000300000038000180080003000200000008000300020000001400020076657468305f746f5f6272696467650008000100", @ANYRES32=0x0, @ANYBLOB="08000300030000004c0001801400020073697430000000000000000000000000080003000200000008000100", @ANYRES32=r5, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="14000200000000000000000000000000000000000800030003000000"], 0x118}, 0x1, 0x0, 0x0, 0x800}, 0x80)

06:35:54 executing program 5:
write$P9_RSTATu(0xffffffffffffffff, &(0x7f00000004c0)={0x59, 0x7d, 0x2, {{0x0, 0xfffffffffffffc73, 0x1, 0x1, {}, 0x4040000, 0x0, 0x10001, 0x1, 0x2, '-#', 0x6, '\x02\x02\x02\x02\x02\x02', 0x5, '%}%@:'}, 0x4, ':\'@*', 0xee01, 0xffffffffffffffff, 0xee00}}, 0x59)
r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r1 = syz_open_dev$mouse(&(0x7f0000000000), 0x101, 0x101000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
r3 = getpid()
perf_event_open(0x0, r3, 0xf, 0xffffffffffffffff, 0x0)
syncfs(r2)
write$P9_RFLUSH(r1, &(0x7f0000000100)={0x7, 0x6d, 0x2}, 0x7)

[  186.977781] audit: type=1400 audit(1663396554.422:7): avc:  denied  { open } for  pid=6208 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  186.980446] audit: type=1400 audit(1663396554.422:8): avc:  denied  { kernel } for  pid=6208 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
06:35:54 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0)
ioctl$FITRIM(r0, 0x541b, &(0x7f0000000000)={0x0, 0x40100004})
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
signalfd4(r1, &(0x7f0000000100)={[0x52]}, 0x8, 0x80800)
r2 = syz_open_dev$vcsa(&(0x7f00000004c0), 0x3, 0x0)
pidfd_send_signal(r2, 0x0, 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)

06:35:54 executing program 0:
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x2, &(0x7f0000001800)=[{&(0x7f0000000600)='*', 0x1}, {&(0x7f0000000700)="fc", 0x1}], 0x0, 0x0)
sendmsg$sock(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x8, @local, 0x9, 0x2}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000080)="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", 0xff}], 0x1, &(0x7f00000001c0)=[@txtime={{0x18, 0x1, 0x3d, 0x5}}, @mark={{0x14, 0x1, 0x24, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0x400}}, @timestamping={{0x14, 0x1, 0x25, 0x3f}}, @timestamping={{0x14, 0x1, 0x25, 0x3f}}, @txtime={{0x18, 0x1, 0x3d, 0xfffffffffffffffd}}, @timestamping={{0x14, 0x1, 0x25, 0x8001}}, @timestamping={{0x14, 0x1, 0x25, 0x6}}, @mark={{0x14, 0x1, 0x24, 0x8000}}], 0xd8}, 0x4000080)

06:35:54 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="2e2ff7696c6530"])
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x408000, 0x110)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = syz_open_dev$vcsa(&(0x7f00000004c0), 0x3, 0x0)
pidfd_send_signal(r2, 0x0, 0x0, 0x0)
close(r2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000300)={0x44, r1, 0x100, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1, 0x79}}}}, [@NL80211_ATTR_TX_RATES={0x1c, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0x0, 0x1]}}]}]}]}, 0x44}}, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
syncfs(r3)

06:35:54 executing program 7:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000180), 0x100000, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r1 = syz_open_dev$vcsa(&(0x7f00000004c0), 0x3, 0x0)
pidfd_send_signal(r1, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000240))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005e2c0)={0x0, 0x0, "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", "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"})
r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x301c03, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x8001)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r3, 0x4004f506, &(0x7f0000000300))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r4, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendfile(r4, r2, 0x0, 0xfffffdef)

[  187.003307] loop7: detected capacity change from 0 to 40
[  187.007097] ------------[ cut here ]------------
[  187.007117] 
[  187.007120] ======================================================
[  187.007124] WARNING: possible circular locking dependency detected
[  187.007128] 6.0.0-rc5-next-20220916 #1 Not tainted
[  187.007135] ------------------------------------------------------
[  187.007138] syz-executor.6/6212 is trying to acquire lock:
[  187.007144] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  187.007181] 
[  187.007181] but task is already holding lock:
[  187.007183] ffff88800ae80c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  187.007211] 
[  187.007211] which lock already depends on the new lock.
[  187.007211] 
[  187.007214] 
[  187.007214] the existing dependency chain (in reverse order) is:
[  187.007217] 
[  187.007217] -> #3 (&ctx->lock){....}-{2:2}:
[  187.007231]        _raw_spin_lock+0x2a/0x40
[  187.007248]        __perf_event_task_sched_out+0x53b/0x18d0
[  187.007261]        __schedule+0xedd/0x2470
[  187.007271]        schedule+0xda/0x1b0
[  187.007281]        exit_to_user_mode_prepare+0x114/0x1a0
[  187.007302]        syscall_exit_to_user_mode+0x19/0x40
[  187.007320]        do_syscall_64+0x48/0x90
[  187.007334]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.007351] 
[  187.007351] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  187.007364]        _raw_spin_lock_nested+0x30/0x40
[  187.007379]        raw_spin_rq_lock_nested+0x1e/0x30
[  187.007393]        task_fork_fair+0x63/0x4d0
[  187.007409]        sched_cgroup_fork+0x3d0/0x540
[  187.007422]        copy_process+0x4183/0x6e20
[  187.007433]        kernel_clone+0xe7/0x890
[  187.007443]        user_mode_thread+0xad/0xf0
[  187.007453]        rest_init+0x24/0x250
[  187.007469]        arch_call_rest_init+0xf/0x14
[  187.007482]        start_kernel+0x4c1/0x4e6
[  187.007491]        secondary_startup_64_no_verify+0xe0/0xeb
[  187.007506] 
[  187.007506] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  187.007519]        _raw_spin_lock_irqsave+0x39/0x60
[  187.007534]        try_to_wake_up+0xab/0x1920
[  187.007547]        up+0x75/0xb0
[  187.007558]        __up_console_sem+0x6e/0x80
[  187.007573]        console_unlock+0x46a/0x590
[  187.007589]        vt_ioctl+0x2822/0x2ca0
[  187.007602]        tty_ioctl+0x7c4/0x1700
[  187.007615]        __x64_sys_ioctl+0x19a/0x210
[  187.007636]        do_syscall_64+0x3b/0x90
[  187.007650]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.007667] 
[  187.007667] -> #0 ((console_sem).lock){....}-{2:2}:
[  187.007681]        __lock_acquire+0x2a02/0x5e70
[  187.007697]        lock_acquire+0x1a2/0x530
[  187.007712]        _raw_spin_lock_irqsave+0x39/0x60
[  187.007727]        down_trylock+0xe/0x70
[  187.007739]        __down_trylock_console_sem+0x3b/0xd0
[  187.007754]        vprintk_emit+0x16b/0x560
[  187.007770]        vprintk+0x84/0xa0
[  187.007785]        _printk+0xba/0xf1
[  187.007804]        report_bug.cold+0x72/0xab
[  187.007816]        handle_bug+0x3c/0x70
[  187.007829]        exc_invalid_op+0x14/0x50
[  187.007842]        asm_exc_invalid_op+0x16/0x20
[  187.007858]        group_sched_out.part.0+0x2c7/0x460
[  187.007868]        ctx_sched_out+0x8f1/0xc10
[  187.007878]        __perf_event_task_sched_out+0x6d0/0x18d0
[  187.007890]        __schedule+0xedd/0x2470
[  187.007900]        schedule+0xda/0x1b0
[  187.007909]        exit_to_user_mode_prepare+0x114/0x1a0
[  187.007927]        syscall_exit_to_user_mode+0x19/0x40
[  187.007944]        do_syscall_64+0x48/0x90
[  187.007957]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.007974] 
[  187.007974] other info that might help us debug this:
[  187.007974] 
[  187.007977] Chain exists of:
[  187.007977]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  187.007977] 
[  187.007991]  Possible unsafe locking scenario:
[  187.007991] 
[  187.007994]        CPU0                    CPU1
[  187.007996]        ----                    ----
[  187.007998]   lock(&ctx->lock);
[  187.008004]                                lock(&rq->__lock);
[  187.008010]                                lock(&ctx->lock);
[  187.008016]   lock((console_sem).lock);
[  187.008022] 
[  187.008022]  *** DEADLOCK ***
[  187.008022] 
[  187.008023] 2 locks held by syz-executor.6/6212:
[  187.008030]  #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  187.008056]  #1: ffff88800ae80c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  187.008083] 
[  187.008083] stack backtrace:
[  187.008086] CPU: 1 PID: 6212 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220916 #1
[  187.008098] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  187.008107] Call Trace:
[  187.008110]  <TASK>
[  187.008114]  dump_stack_lvl+0x8b/0xb3
[  187.008129]  check_noncircular+0x263/0x2e0
[  187.008145]  ? format_decode+0x26c/0xb50
[  187.008161]  ? print_circular_bug+0x450/0x450
[  187.008178]  ? enable_ptr_key_workfn+0x20/0x20
[  187.008193]  ? format_decode+0x26c/0xb50
[  187.008210]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  187.008228]  __lock_acquire+0x2a02/0x5e70
[  187.008251]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  187.008274]  lock_acquire+0x1a2/0x530
[  187.008291]  ? down_trylock+0xe/0x70
[  187.008306]  ? rcu_read_unlock+0x40/0x40
[  187.008325]  ? __lock_acquire+0x164d/0x5e70
[  187.008343]  ? vprintk+0x84/0xa0
[  187.008361]  _raw_spin_lock_irqsave+0x39/0x60
[  187.008377]  ? down_trylock+0xe/0x70
[  187.008391]  down_trylock+0xe/0x70
[  187.008404]  ? vprintk+0x84/0xa0
[  187.008420]  __down_trylock_console_sem+0x3b/0xd0
[  187.008437]  vprintk_emit+0x16b/0x560
[  187.008456]  vprintk+0x84/0xa0
[  187.008474]  _printk+0xba/0xf1
[  187.008491]  ? record_print_text.cold+0x16/0x16
[  187.008515]  ? report_bug.cold+0x66/0xab
[  187.008529]  ? group_sched_out.part.0+0x2c7/0x460
[  187.008541]  report_bug.cold+0x72/0xab
[  187.008557]  handle_bug+0x3c/0x70
[  187.008571]  exc_invalid_op+0x14/0x50
[  187.008585]  asm_exc_invalid_op+0x16/0x20
[  187.008603] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  187.008616] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  187.008627] RSP: 0018:ffff88803bbb7c48 EFLAGS: 00010006
[  187.008636] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  187.008644] RDX: ffff888041421ac0 RSI: ffffffff81566027 RDI: 0000000000000005
[  187.008652] RBP: ffff88803f1e85c8 R08: 0000000000000005 R09: 0000000000000001
[  187.008659] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800ae80c00
[  187.008667] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  187.008679]  ? group_sched_out.part.0+0x2c7/0x460
[  187.008693]  ? group_sched_out.part.0+0x2c7/0x460
[  187.008706]  ctx_sched_out+0x8f1/0xc10
[  187.008719]  __perf_event_task_sched_out+0x6d0/0x18d0
[  187.008735]  ? lock_is_held_type+0xd7/0x130
[  187.008754]  ? __perf_cgroup_move+0x160/0x160
[  187.008766]  ? set_next_entity+0x304/0x550
[  187.008783]  ? update_curr+0x267/0x740
[  187.008802]  ? lock_is_held_type+0xd7/0x130
[  187.008821]  __schedule+0xedd/0x2470
[  187.008838]  ? io_schedule_timeout+0x150/0x150
[  187.008852]  ? rcu_read_lock_sched_held+0x3e/0x80
[  187.008873]  schedule+0xda/0x1b0
[  187.008885]  exit_to_user_mode_prepare+0x114/0x1a0
[  187.008905]  syscall_exit_to_user_mode+0x19/0x40
[  187.008923]  do_syscall_64+0x48/0x90
[  187.008937]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.008955] RIP: 0033:0x7f1017399b19
[  187.008963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  187.008974] RSP: 002b:00007f101490f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  187.008985] RAX: 0000000000000001 RBX: 00007f10174acf68 RCX: 00007f1017399b19
[  187.008993] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f10174acf6c
[  187.009000] RBP: 00007f10174acf60 R08: 000000000000000e R09: 0000000000000000
[  187.009007] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f10174acf6c
[  187.009014] R13: 00007ffd44c1ac0f R14: 00007f101490f300 R15: 0000000000022000
[  187.009029]  </TASK>
[  187.020651] hrtimer: interrupt took 18064 ns
[  187.020844] WARNING: CPU: 1 PID: 6212 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  187.067656] Modules linked in:
[  187.067663] CPU: 1 PID: 6212 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220916 #1
[  187.067676] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  187.067684] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  187.067698] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  187.067709] RSP: 0018:ffff88803bbb7c48 EFLAGS: 00010006
[  187.067719] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  187.067727] RDX: ffff888041421ac0 RSI: ffffffff81566027 RDI: 0000000000000005
[  187.067735] RBP: ffff88803f1e85c8 R08: 0000000000000005 R09: 0000000000000001
[  187.067743] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800ae80c00
[  187.067751] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002
[  187.067761] FS:  00007f101490f700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  187.067773] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  187.067782] CR2: 0000001b2dc21000 CR3: 0000000040ed4000 CR4: 0000000000350ee0
[  187.067790] Call Trace:
[  187.067793]  <TASK>
[  187.067800]  ctx_sched_out+0x8f1/0xc10
[  187.067814]  __perf_event_task_sched_out+0x6d0/0x18d0
[  187.067831]  ? lock_is_held_type+0xd7/0x130
[  187.067851]  ? __perf_cgroup_move+0x160/0x160
[  187.067863]  ? set_next_entity+0x304/0x550
[  187.067882]  ? update_curr+0x267/0x740
[  187.067902]  ? lock_is_held_type+0xd7/0x130
[  187.067922]  __schedule+0xedd/0x2470
[  187.067938]  ? io_schedule_timeout+0x150/0x150
[  187.067952]  ? rcu_read_lock_sched_held+0x3e/0x80
[  187.067974]  schedule+0xda/0x1b0
[  187.067986]  exit_to_user_mode_prepare+0x114/0x1a0
[  187.068008]  syscall_exit_to_user_mode+0x19/0x40
[  187.068027]  do_syscall_64+0x48/0x90
[  187.068042]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.068061] RIP: 0033:0x7f1017399b19
[  187.068070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
06:35:54 executing program 1:
r0 = syz_open_dev$ttys(0xc, 0x2, 0x0)
ioctl$KDADDIO(r0, 0x4b34, 0x7ff)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0xfffffff7}}, './file0\x00'})
ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f0000000080)={0x3, 0x8, 0x7b})
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, &(0x7f00000000c0)={0x6, 0xfa})
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$EXT4_IOC_GROUP_ADD(r2, 0x40286608, &(0x7f0000000100)={0x2, 0x40000000, 0x10000, 0x401, 0x6, 0x7fff})
ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000140)=0x9)
ioctl$TIOCMBIS(r0, 0x5416, &(0x7f0000000180)=0x5)
r3 = accept$unix(r1, 0x0, &(0x7f00000001c0))
ioctl$VT_WAITACTIVE(0xffffffffffffffff, 0x5607)
r4 = openat(r1, &(0x7f0000000200)='./file0\x00', 0x10000, 0x892c4aaf5bf6e8df)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r5=>r3, {0xa462}}, './file1\x00'})
ioctl$FITHAW(r1, 0xc0045878)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000280)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$KDGKBSENT(r2, 0x4b48, &(0x7f0000000680)={0x4, "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"})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f00000008c0)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff}, './file2\x00'})
r7 = accept$unix(r3, &(0x7f00000009c0), &(0x7f0000000a40)=0x6e)
sendfile(r6, r7, &(0x7f0000000a80)=0x8, 0xfa)

06:35:54 executing program 0:
r0 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x6, 0x0, 0x0, 0x0)
r2 = syz_open_dev$vcsa(&(0x7f00000004c0), 0x3, 0x0)
pidfd_send_signal(r2, 0x0, 0x0, 0x0)
r3 = syz_open_dev$vcsa(&(0x7f00000004c0), 0x3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r4=>r2}, './file0\x00'})
r5 = syz_open_dev$vcsa(&(0x7f00000004c0), 0x3, 0x0)
pidfd_send_signal(r5, 0x0, 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r3, &(0x7f0000000080)={r4, r5, 0x3})
pidfd_send_signal(r3, 0x0, 0x0, 0x0)
dup2(r3, r2)

[  187.068082] RSP: 002b:00007f101490f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  187.068094] RAX: 0000000000000001 RBX: 00007f10174acf68 RCX: 00007f1017399b19
[  187.068102] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f10174acf6c
[  187.068109] RBP: 00007f10174acf60 R08: 000000000000000e R09: 0000000000000000
[  187.068117] R10: 0000000000000005 R11: 0000000000000246 R12: 00007f10174acf6c
[  187.068125] R13: 00007ffd44c1ac0f R14: 00007f101490f300 R15: 0000000000022000
[  187.068140]  </TASK>
[  187.068145] irq event stamp: 692
[  187.068148] hardirqs last  enabled at (691): [<ffffffff8133ffc9>] exit_to_user_mode_prepare+0x109/0x1a0
[  187.068173] hardirqs last disabled at (692): [<ffffffff8424c965>] __schedule+0x1225/0x2470
[  187.068188] softirqs last  enabled at (472): [<ffffffff8117063b>] __irq_exit_rcu+0x11b/0x180
[  187.068209] softirqs last disabled at (425): [<ffffffff8117063b>] __irq_exit_rcu+0x11b/0x180
[  187.068229] ---[ end trace 0000000000000000 ]---
[  187.145239] audit: type=1400 audit(1663396554.584:9): avc:  denied  { write } for  pid=6218 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  187.221975] syz-executor.7: attempt to access beyond end of device
[  187.221975] loop7: rw=2049, sector=40, nr_sectors = 4 limit=40
[  187.222035] Buffer I/O error on dev loop7, logical block 10, lost async page write
06:35:54 executing program 2:
r0 = syz_open_dev$vcsa(&(0x7f00000004c0), 0x3, 0x0)
r1 = pidfd_open(0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000001100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})
pidfd_send_signal(r1, 0x26, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001080)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000f16000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00005c7000/0x1000)=nil, &(0x7f0000f2a000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000080)="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", 0x1000, r0}, 0x68)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='gid_map\x00')
pread64(r2, &(0x7f0000000000)=""/13, 0xd, 0xff)


VM DIAGNOSIS:
06:35:54  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffffffff854527a0 RCX=0000000000000000 RDX=ffff8880206d0000
RSI=0000000000000000 RDI=ffffffff854527a0 RBP=0000000000000000 RSP=ffff88803bb77bb0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=ffffffff817a7c41 R13=0000000000000ee8 R14=ffff888018072054 R15=0000000000000001
RIP=ffffffff8130d84e RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555668400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f8a92aa1718 CR3=000000003a78a000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 0100ff0000000000 0000000000000000
YMM02=0000000000000000 0000000000000000 7463656a6e695f31 313230385f7a7973
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff822b31cc RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff88803bbb7640
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000002710 R13=0000000000000020 R14=fffffbfff0ec83c3 R15=dffffc0000000000
RIP=ffffffff822b3221 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f101490f700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2dc21000 CR3=0000000040ed4000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f10174807c0 00007f10174807c8
YMM02=0000000000000000 0000000000000000 00007f10174807e0 00007f10174807c0
YMM03=0000000000000000 0000000000000000 00007f10174807c8 00007f10174807c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000