Warning: Permanently added '[localhost]:40211' (ECDSA) to the list of known hosts.
2022/09/21 15:02:47 fuzzer started
2022/09/21 15:02:47 dialing manager at localhost:40289
syzkaller login: [   36.553858] cgroup: Unknown subsys name 'net'
[   36.622015] cgroup: Unknown subsys name 'rlimit'
2022/09/21 15:03:01 syscalls: 2215
2022/09/21 15:03:01 code coverage: enabled
2022/09/21 15:03:01 comparison tracing: enabled
2022/09/21 15:03:01 extra coverage: enabled
2022/09/21 15:03:01 setuid sandbox: enabled
2022/09/21 15:03:01 namespace sandbox: enabled
2022/09/21 15:03:01 Android sandbox: enabled
2022/09/21 15:03:01 fault injection: enabled
2022/09/21 15:03:01 leak checking: enabled
2022/09/21 15:03:01 net packet injection: enabled
2022/09/21 15:03:01 net device setup: enabled
2022/09/21 15:03:01 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/21 15:03:01 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/21 15:03:01 USB emulation: enabled
2022/09/21 15:03:01 hci packet injection: enabled
2022/09/21 15:03:01 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220921                                          )
2022/09/21 15:03:01 802.15.4 emulation: enabled
2022/09/21 15:03:02 fetching corpus: 50, signal 35065/36740 (executing program)
2022/09/21 15:03:02 fetching corpus: 100, signal 46488/49661 (executing program)
2022/09/21 15:03:02 fetching corpus: 150, signal 53409/57966 (executing program)
2022/09/21 15:03:02 fetching corpus: 200, signal 62198/67938 (executing program)
2022/09/21 15:03:02 fetching corpus: 250, signal 66050/73010 (executing program)
2022/09/21 15:03:02 fetching corpus: 300, signal 72791/80811 (executing program)
2022/09/21 15:03:02 fetching corpus: 350, signal 77439/86531 (executing program)
2022/09/21 15:03:03 fetching corpus: 400, signal 81993/92055 (executing program)
2022/09/21 15:03:03 fetching corpus: 450, signal 84688/95772 (executing program)
2022/09/21 15:03:03 fetching corpus: 500, signal 87894/99890 (executing program)
2022/09/21 15:03:03 fetching corpus: 550, signal 91574/104407 (executing program)
2022/09/21 15:03:03 fetching corpus: 600, signal 93439/107250 (executing program)
2022/09/21 15:03:03 fetching corpus: 650, signal 98844/113205 (executing program)
2022/09/21 15:03:03 fetching corpus: 700, signal 102418/117400 (executing program)
2022/09/21 15:03:03 fetching corpus: 750, signal 104651/120414 (executing program)
2022/09/21 15:03:04 fetching corpus: 800, signal 107194/123648 (executing program)
2022/09/21 15:03:04 fetching corpus: 850, signal 108947/126220 (executing program)
2022/09/21 15:03:04 fetching corpus: 900, signal 110895/128892 (executing program)
2022/09/21 15:03:04 fetching corpus: 950, signal 112686/131387 (executing program)
2022/09/21 15:03:04 fetching corpus: 1000, signal 115275/134489 (executing program)
2022/09/21 15:03:04 fetching corpus: 1050, signal 117897/137667 (executing program)
2022/09/21 15:03:04 fetching corpus: 1100, signal 119571/139966 (executing program)
2022/09/21 15:03:04 fetching corpus: 1150, signal 121520/142407 (executing program)
2022/09/21 15:03:04 fetching corpus: 1200, signal 124248/145418 (executing program)
2022/09/21 15:03:05 fetching corpus: 1250, signal 125888/147607 (executing program)
2022/09/21 15:03:05 fetching corpus: 1300, signal 127110/149406 (executing program)
2022/09/21 15:03:05 fetching corpus: 1350, signal 128346/151230 (executing program)
2022/09/21 15:03:05 fetching corpus: 1400, signal 131207/154193 (executing program)
2022/09/21 15:03:05 fetching corpus: 1450, signal 133159/156488 (executing program)
2022/09/21 15:03:05 fetching corpus: 1500, signal 135614/159044 (executing program)
2022/09/21 15:03:05 fetching corpus: 1550, signal 137366/161083 (executing program)
2022/09/21 15:03:05 fetching corpus: 1600, signal 138745/162800 (executing program)
2022/09/21 15:03:06 fetching corpus: 1650, signal 139854/164325 (executing program)
2022/09/21 15:03:06 fetching corpus: 1700, signal 141002/165865 (executing program)
2022/09/21 15:03:06 fetching corpus: 1750, signal 142195/167432 (executing program)
2022/09/21 15:03:06 fetching corpus: 1800, signal 144077/169404 (executing program)
2022/09/21 15:03:06 fetching corpus: 1850, signal 145409/170941 (executing program)
2022/09/21 15:03:06 fetching corpus: 1900, signal 146364/172249 (executing program)
2022/09/21 15:03:06 fetching corpus: 1950, signal 148851/174534 (executing program)
2022/09/21 15:03:06 fetching corpus: 2000, signal 150351/176169 (executing program)
2022/09/21 15:03:07 fetching corpus: 2050, signal 151908/177855 (executing program)
2022/09/21 15:03:07 fetching corpus: 2100, signal 153274/179399 (executing program)
2022/09/21 15:03:07 fetching corpus: 2150, signal 154729/180862 (executing program)
2022/09/21 15:03:07 fetching corpus: 2200, signal 155876/182147 (executing program)
2022/09/21 15:03:07 fetching corpus: 2250, signal 157345/183632 (executing program)
2022/09/21 15:03:07 fetching corpus: 2300, signal 158554/184900 (executing program)
2022/09/21 15:03:07 fetching corpus: 2350, signal 159883/186213 (executing program)
2022/09/21 15:03:08 fetching corpus: 2400, signal 161426/187599 (executing program)
2022/09/21 15:03:08 fetching corpus: 2450, signal 162244/188615 (executing program)
2022/09/21 15:03:08 fetching corpus: 2500, signal 163190/189678 (executing program)
2022/09/21 15:03:08 fetching corpus: 2550, signal 164318/190792 (executing program)
2022/09/21 15:03:08 fetching corpus: 2600, signal 165763/192076 (executing program)
2022/09/21 15:03:08 fetching corpus: 2650, signal 166750/193101 (executing program)
2022/09/21 15:03:08 fetching corpus: 2700, signal 168052/194248 (executing program)
2022/09/21 15:03:08 fetching corpus: 2750, signal 169435/195527 (executing program)
2022/09/21 15:03:09 fetching corpus: 2800, signal 170297/196451 (executing program)
2022/09/21 15:03:09 fetching corpus: 2850, signal 171206/197388 (executing program)
2022/09/21 15:03:09 fetching corpus: 2900, signal 172227/198331 (executing program)
2022/09/21 15:03:09 fetching corpus: 2950, signal 173113/199199 (executing program)
2022/09/21 15:03:09 fetching corpus: 3000, signal 174058/200175 (executing program)
2022/09/21 15:03:09 fetching corpus: 3050, signal 175583/201253 (executing program)
2022/09/21 15:03:09 fetching corpus: 3100, signal 176844/202293 (executing program)
2022/09/21 15:03:09 fetching corpus: 3150, signal 177333/202943 (executing program)
2022/09/21 15:03:10 fetching corpus: 3200, signal 178012/203624 (executing program)
2022/09/21 15:03:10 fetching corpus: 3250, signal 179001/204446 (executing program)
2022/09/21 15:03:10 fetching corpus: 3300, signal 180191/205336 (executing program)
2022/09/21 15:03:10 fetching corpus: 3350, signal 180916/206008 (executing program)
2022/09/21 15:03:10 fetching corpus: 3400, signal 181887/206743 (executing program)
2022/09/21 15:03:10 fetching corpus: 3450, signal 182493/207339 (executing program)
2022/09/21 15:03:10 fetching corpus: 3500, signal 183322/208044 (executing program)
2022/09/21 15:03:11 fetching corpus: 3550, signal 184483/208793 (executing program)
2022/09/21 15:03:11 fetching corpus: 3600, signal 186194/209680 (executing program)
2022/09/21 15:03:11 fetching corpus: 3650, signal 186675/210150 (executing program)
2022/09/21 15:03:11 fetching corpus: 3700, signal 187696/210808 (executing program)
2022/09/21 15:03:11 fetching corpus: 3750, signal 188752/211550 (executing program)
2022/09/21 15:03:11 fetching corpus: 3800, signal 189481/212096 (executing program)
2022/09/21 15:03:11 fetching corpus: 3850, signal 189974/212532 (executing program)
2022/09/21 15:03:11 fetching corpus: 3900, signal 190464/212948 (executing program)
2022/09/21 15:03:11 fetching corpus: 3950, signal 191115/213453 (executing program)
2022/09/21 15:03:12 fetching corpus: 4000, signal 192526/214394 (executing program)
2022/09/21 15:03:12 fetching corpus: 4050, signal 193022/214797 (executing program)
2022/09/21 15:03:12 fetching corpus: 4100, signal 193899/215325 (executing program)
2022/09/21 15:03:12 fetching corpus: 4150, signal 195273/215876 (executing program)
2022/09/21 15:03:12 fetching corpus: 4200, signal 195823/216223 (executing program)
2022/09/21 15:03:12 fetching corpus: 4250, signal 196942/216846 (executing program)
2022/09/21 15:03:12 fetching corpus: 4300, signal 198463/217366 (executing program)
2022/09/21 15:03:13 fetching corpus: 4350, signal 199001/217690 (executing program)
2022/09/21 15:03:13 fetching corpus: 4400, signal 199709/218040 (executing program)
2022/09/21 15:03:13 fetching corpus: 4450, signal 200318/218340 (executing program)
2022/09/21 15:03:13 fetching corpus: 4500, signal 200780/218598 (executing program)
2022/09/21 15:03:13 fetching corpus: 4550, signal 201663/218901 (executing program)
2022/09/21 15:03:13 fetching corpus: 4600, signal 202502/219413 (executing program)
2022/09/21 15:03:13 fetching corpus: 4650, signal 203371/219682 (executing program)
2022/09/21 15:03:13 fetching corpus: 4700, signal 204213/219952 (executing program)
2022/09/21 15:03:14 fetching corpus: 4750, signal 205259/220245 (executing program)
2022/09/21 15:03:14 fetching corpus: 4800, signal 206025/220454 (executing program)
2022/09/21 15:03:14 fetching corpus: 4850, signal 207033/220724 (executing program)
2022/09/21 15:03:14 fetching corpus: 4900, signal 207685/220904 (executing program)
2022/09/21 15:03:14 fetching corpus: 4950, signal 207975/221079 (executing program)
2022/09/21 15:03:14 fetching corpus: 5000, signal 208644/221239 (executing program)
2022/09/21 15:03:14 fetching corpus: 5050, signal 209211/221387 (executing program)
2022/09/21 15:03:14 fetching corpus: 5100, signal 209981/221626 (executing program)
2022/09/21 15:03:15 fetching corpus: 5150, signal 210733/221897 (executing program)
2022/09/21 15:03:15 fetching corpus: 5200, signal 211131/222034 (executing program)
2022/09/21 15:03:15 fetching corpus: 5250, signal 211639/222149 (executing program)
2022/09/21 15:03:15 fetching corpus: 5300, signal 212868/222221 (executing program)
2022/09/21 15:03:15 fetching corpus: 5350, signal 213220/222222 (executing program)
2022/09/21 15:03:15 fetching corpus: 5400, signal 213823/222222 (executing program)
2022/09/21 15:03:15 fetching corpus: 5446, signal 214650/222248 (executing program)
2022/09/21 15:03:15 fetching corpus: 5446, signal 214650/222248 (executing program)
2022/09/21 15:03:18 starting 8 fuzzer processes
15:03:18 executing program 0:
r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r0, 0x200, 0x70bd2b, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004000}, 0x8000)
syz_genetlink_get_family_id$gtp(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x7ff, 0x8}}, './file0\x00'})
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r1, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000200)={0x11c, 0x0, 0x20, 0x70bd2c, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x3}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}}, {@pci={{0x8}, {0x11}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
fstat(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = syz_mount_image$msdos(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0x5, 0x1, &(0x7f0000000540)=[{&(0x7f0000000440)="629d9edc27535e673729106808ffbe495b883643f036bfab34c11cdf4496dd0b622fd77e7f40638f4c849e9af7d19ae2bacd56056a20ad03a2a44b1e61a7388bac2d3846fa53630d0b1356193ca4f6af2986e556f626ae94407151f1715a9e3d2ca78f6e06e44beb7982ada82e0edf38304d2ed39af86903e880c17c639a2254c8cd346a539a724ea16270679ae8278013c9b81aa6fcb0dfe5319a28a1a83bda08e9d91ca61d1f212d7d7ba5ee435028eeda1ab65e2500a12871bebb8030e0dc83934f92f1f22daa5480c7b0ceaadccea924d05b3245950f644d1ff33e7ecba3ba870fed3fc4691bf5d33e71553c", 0xee, 0x10001}], 0x2200012, &(0x7f0000000600)={[{@fat=@sys_immutable}, {@dots}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'netdevsim\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '0000:00:10.0\x00'}}, {@uid_eq}, {@fowner_gt={'fowner>', 0xee01}}, {@appraise}, {@smackfstransmute={'smackfstransmute', 0x3d, '0000:00:10.0\x00'}}, {@fowner_gt={'fowner>', r2}}]})
mkdirat(r1, &(0x7f0000000700)='./file0\x00', 0x0)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000780), 0xffffffffffffffff)
sendmsg$IEEE802154_ASSOCIATE_REQ(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x3c, r4, 0x2, 0x70bd25, 0x25dfdbfe, {}, [@IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x1f}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x9}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x8f}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x19}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x40091)
fremovexattr(r3, &(0x7f0000000880)=@known='com.apple.FinderInfo\x00')
r5 = syz_open_dev$vcsu(&(0x7f00000008c0), 0xfffffffffffffff9, 0x60100)
syz_genetlink_get_family_id$ipvs(0xfffffffffffffffe, r5)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000900)={0x2, 'ip_vti0\x00', 0x2}, 0x18)
r6 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000940), 0x400, 0x0)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r6)
ioctl$SNAPSHOT_CREATE_IMAGE(r6, 0x40043311, &(0x7f0000000980))
setxattr$trusted_overlay_origin(&(0x7f00000009c0)='./file0\x00', &(0x7f0000000a00), &(0x7f0000000a40), 0x2, 0x1)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000a80)={{0x1, 0x1, 0x18, <r7=>r6, {0x7}}, './file0\x00'})
ioctl$CDROM_DEBUG(r7, 0x5330, 0x0)

15:03:18 executing program 1:
ptrace$getsig(0x4202, 0xffffffffffffffff, 0x6290, &(0x7f0000000000))
r0 = getpgrp(0x0)
ptrace$getsig(0x4202, r0, 0x2, &(0x7f0000000080))
ptrace$getsig(0x4202, r0, 0x1, &(0x7f0000000100))
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f0000000600)=@abs, 0x6e, &(0x7f00000009c0)=[{&(0x7f0000000680)=""/75, 0x4b}, {&(0x7f0000000700)=""/177, 0xb1}, {&(0x7f00000007c0)=""/158, 0x9e}, {&(0x7f0000000880)=""/136, 0x88}, {&(0x7f0000000940)=""/82, 0x52}], 0x5, &(0x7f0000000a40)=[@rights={{0x14, 0x1, 0x1, [<r1=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {<r2=>0x0}}}, @rights={{0x18, 0x1, 0x1, [<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0x90}, 0x8b4cc79ef324e27d)
ptrace$getsig(0x4202, r2, 0x400, &(0x7f0000000b40))
r5 = getpid()
ptrace$getsig(0x4202, r5, 0xffffffff, &(0x7f0000000bc0))
move_pages(r5, 0x1, &(0x7f0000000c40)=[&(0x7f0000ffb000/0x4000)=nil], &(0x7f0000000c80)=[0x5], &(0x7f0000000cc0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6)
ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f0000000d00)=<r6=>0x0)
ptrace$getsig(0x4202, r6, 0x73e, &(0x7f0000000d40))
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000001fc0)={{0x1, 0x1, 0x18, <r7=>r1, {0x5}}, './file0\x00'})
r8 = clone3(&(0x7f0000002000)={0x800500, &(0x7f0000000dc0), &(0x7f0000000e00)=<r9=>0x0, &(0x7f0000000e40)=<r10=>0x0, {0xa}, &(0x7f0000000e80)=""/197, 0xc5, &(0x7f0000000f80)=""/4096, &(0x7f0000001f80)=[r5], 0x1, {r7}}, 0x58)
ptrace$getsig(0x4202, r2, 0x2, &(0x7f0000002080))
clone3(&(0x7f0000002340)={0x204080000, &(0x7f0000002100), 0xfffffffffffffffd, &(0x7f0000002140)=<r11=>0x0, {0x2e}, &(0x7f0000002180)=""/179, 0xb3, &(0x7f0000002240)=""/141, &(0x7f0000002300)=[r10, r8, r0, r9], 0x4, {r4}}, 0x58)
ptrace$getsig(0x4202, r11, 0xc43, &(0x7f00000023c0))
ptrace$getsig(0x4202, r9, 0x9, &(0x7f0000002440))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x50, r3, 0x0)
r12 = openat$ttyS3(0xffffffffffffff9c, 0xfffffffffffffffc, 0x2, 0x0)
ioctl$TIOCSTI(r12, 0x5412, &(0x7f00000024c0)=0x1f)

[   67.409316] audit: type=1400 audit(1663772598.852:6): avc:  denied  { execmem } for  pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
15:03:18 executing program 2:
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='smaps_rollup\x00')
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x8}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0xfffffffa}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1}]}, 0x34}}, 0x24000000)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r1, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10080000}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x194, 0x0, 0x400, 0x1, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x8001}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xffff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x101}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}}]}, 0x194}, 0x1, 0x0, 0x0, 0x4000}, 0x440c0)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000440), r0)
sendmsg$TIPC_CMD_SET_NETID(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, r2, 0x8, 0x70bd2d, 0x25dfdbfc, {{}, {}, {0x8, 0x2, 0x4}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x20000040)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r0, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x54, 0x0, 0x0, 0x70bd26, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x200}, {0x6, 0x16, 0x1f}, {0x5}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x240040d0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000680), r0)
r3 = dup(r1)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r3, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x6c, 0x4, 0x8, 0x3, 0x0, 0x0, {0x3, 0x0, 0x5}, [@CTA_TIMEOUT_DATA={0x44, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x101}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x35d}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x4}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x80000000}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x3f}]}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x8)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000880)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x30, r4, 0x0, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_WIPHY_FREQ_HINT={0x8}, @NL80211_ATTR_PREV_BSSID={0xa}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f00000009c0), r0)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f0000000b00)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x9c, r6, 0x100, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x18000}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7d7f1f1d}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x59c173e6}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}]}, @TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7f}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x200}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_PAN_ID(r7, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x1c, 0x0, 0x8, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000c80)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_INTERFACE(r1, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x1c, r4, 0x4, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4044081}, 0x0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff)

15:03:18 executing program 3:
ioctl$AUTOFS_IOC_PROTOVER(0xffffffffffffffff, 0x80049363, &(0x7f0000000000))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_EXTERNAL_AUTH(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0xac, r0, 0x200, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x3, 0x4c}}}}, [@NL80211_ATTR_PMKID={0x14, 0x55, "c2c86359a33e21446680dcd1157c63b9"}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x44}, @NL80211_ATTR_BSSID={0xa, 0xf5, @random="3aa319c74c32"}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x5f}, @NL80211_ATTR_PMKID={0x14, 0x55, "4a4ab3209f6e11c619e108743d0f5c29"}, @NL80211_ATTR_PMKID={0x14, 0x55, "13197638b642633c2ea7e0c35c84bf38"}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x48}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@broadcast}, @NL80211_ATTR_BSSID={0xa, 0xf5, @random="40ca9efe3e2d"}]}, 0xac}, 0x1, 0x0, 0x0, 0x1}, 0x40)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x80, r0, 0x300, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xfffffffd, 0x3}}}}, [@NL80211_ATTR_MAC_ADDRS={0x34, 0xa6, 0x0, 0x1, [{0xa}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}]}, @NL80211_ATTR_MAC_ADDRS={0x1c, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_ACL_POLICY={0x8}]}, 0x80}, 0x1, 0x0, 0x0, 0x40c0}, 0x804)
ioctl$KDSKBMETA(0xffffffffffffffff, 0x4b63, &(0x7f00000003c0)=0x3)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000400), 0x80, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(r3, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x28, r0, 0x400, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x4}, @void, @val={0xc, 0x99, {0x1000, 0x34}}}}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x40000)
r4 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000540), 0x200, 0x0)
ppoll(&(0x7f0000000580)=[{r4}, {r3, 0x3004}, {r3, 0x4004}], 0x3, &(0x7f00000005c0)={0x77359400}, &(0x7f0000000600)={[0x1000]}, 0x8)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000640)={'team0\x00', <r5=>0x0})
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r3, 0x89fb, &(0x7f0000000700)={'syztnl0\x00', &(0x7f0000000680)={'ip6_vti0\x00', r5, 0x29, 0x5, 0x1f, 0xfffffffb, 0x40, @loopback, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7, 0x7800, 0x4, 0x1}})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000740), r4)
ioctl$RTC_ALM_SET(r3, 0x40247007, &(0x7f0000000780)={0x15, 0xc, 0x6, 0x12, 0x7, 0x1, 0x3, 0xe1, 0xffffffffffffffff})
ioctl$BTRFS_IOC_QUOTA_RESCAN(r3, 0x4040942c, &(0x7f00000007c0)={0x0, 0x0, [0x1, 0x1000, 0x800, 0x7, 0x2, 0x56d]})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x30, r6, 0x400, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x100}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x4008000)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000940), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000000ac0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000a80)={&(0x7f0000000980)={0xf4, r7, 0x400, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x8000}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x2}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x7}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8}], @NL80211_ATTR_HE_OBSS_PD={0x1c, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x8}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x3}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0xc}]}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @crypto_settings=[@NL80211_ATTR_SAE_PASSWORD={0x39, 0x115, "bce5bf7f24321de432ae3542230c7a8d5a2679d4551e5f501c6cb24966f381f30c1933cf480fa153ecb7f3af2de4e106d8c746f180"}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88f5}, @NL80211_ATTR_CIPHER_SUITES_PAIRWISE={0x8, 0x49, [0xfac01]}], @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x2}, @chandef_params]}, 0xf4}, 0x1, 0x0, 0x0, 0x24000000}, 0x20000010)
dup(0xffffffffffffffff)

15:03:18 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xffffffff}}, './file0\x00'})
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x404081, 0x0)
getsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000080), &(0x7f00000000c0)=0x4)
ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000100)={0x4, 0x3, 0x2})
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000140)='/dev/sr0\x00', 0x0, r1)
r2 = openat$cgroup_ro(r0, &(0x7f0000000180)='devices.list\x00', 0x0, 0x0)
sendfile(r2, r0, &(0x7f00000001c0)=0x2, 0x3b4a)
r3 = open(&(0x7f0000000200)='./file0\x00', 0x40, 0x4)
sendmsg$nl_generic(r3, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f0000000280)={0xe0, 0x40, 0x400, 0x70bd28, 0x25dfdbff, {0x5}, [@nested={0x8, 0x41, 0x0, 0x1, [@typed={0x4, 0x79}]}, @nested={0x3c, 0x8b, 0x0, 0x1, [@generic="407145d1e0562d1366b6854c8c94794fc20cbf39addf97a4b8c17a1780b4b5a92e6e2ce8899a1362b3cdd2eea04c8e150ea6ceeab0f5375d"]}, @generic="09d08ad100f56fcbf447904389c33f9ba3678b5c33305b5ec6bcb7e926ab171aae48bf29a133962b1e62c18db178c078788b8d196861a2ee6411a7e8c58a35e3bc3ddd18896b1dbdfd55e32ffb16015755e888e292a32b697128d57860a5a097", @nested={0x26, 0x46, 0x0, 0x1, [@typed={0x4, 0x4c}, @generic="e4f7a9fc6eb6d033a86aaa2ad2703a22fa9fdd0b6b80067a5d52810f415b"]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x750d633bba897d90}, 0x20000004)
syz_genetlink_get_family_id$gtp(&(0x7f0000000400), r3)
ioctl$TIOCGSID(r3, 0x5429, &(0x7f0000001b40)=<r4=>0x0)
stat(&(0x7f0000001bc0)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000001c80)=<r6=>0x0)
pipe2$9p(&(0x7f0000001cc0)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x88000)
fstat(r1, &(0x7f0000001d00)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
sendmsg$netlink(r0, &(0x7f0000001e80)={&(0x7f0000000440)=@proc={0x10, 0x0, 0x25dfdbff, 0x40000000}, 0xc, &(0x7f0000001b00)=[{&(0x7f0000000480)={0x1158, 0x3b, 0x300, 0x70bd2a, 0x25dfdbfc, "", [@typed={0x8, 0x2c, 0x0, 0x0, @fd}, @nested={0x52, 0x7a, 0x0, 0x1, [@generic="e62126d6939e577401bf3e0567c01fe231279ea0eac369492d9709ff059246781a8de589517f0ee9bba529433638a9d103fa759adf2183ef011ab3f5f036a3eec83066ac6ef35a3c0e1cdc665d67"]}, @generic="4c6a121a643d8b5aac1884631fd5696050cb09af5a682c422f43b8e0a5989081f34ffacf888bfa", @generic="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", @generic="e522657cbd9a1c4d0339195a411bd58712a9d769d3908b867aa6e086993691e3870571c77c862daae5c5d7c77506bee3e7bbe2e3956bebfb307c816ccba9bc01a18cd3997e66caf8943acc9a53b0b631980bf89a54daed0d97df4fe970932b063504774f36eef6f0ffae8842b54dd710b08ec6a7f2de6926533bfc7544863cc3d22b15863fa03f50df5f012f2f72282e4ec4fae01378ea670cfe868741687ab8a4e608b30da7a1bedef9464a7c1d9cab0084e6e3a29cc976f97cec145096d9107575c3a837"]}, 0x1158}, {&(0x7f0000001600)={0xcc, 0x17, 0xc001b2cdbc080cba, 0x70bd28, 0x25dfdbfb, "", [@typed={0xb3, 0x32, 0x0, 0x0, @binary="21ec2b8de3887976869c3ac7ba76be9835f419acde3a5c38455c35f5f52c97ece436e4f86d335a5e8b8e62b0bfc963262f3aaf0a12866576fe6e82ea60baee59c06bb270408225f78632325afbe7b17267894729369db26de48b76b7677bfe11407c492daccd666fe7b46e279b5d36b8ef0d63161699c060abcbea5eb435f47e254a2929f30dc3217f204114f0ba624adf3d5f7d581bcda998cc7a05a4a50f405ffc26c2c17a9f0d8f5d715c7ed243"}, @generic="2fc53069dc"]}, 0xcc}, {&(0x7f0000001700)={0x3f4, 0x10, 0x300, 0x70bd2a, 0x25dfdbfd, "", [@nested={0x20b, 0xd, 0x0, 0x1, [@typed={0xc, 0x8a, 0x0, 0x0, @u64}, @generic="0d36f99fdc84a4d505f60f215e04c9bd887d746a1a4c5538c6385cc0ee09594c27fd52a23337d1c8f0c10d26cb57c7ff3a980c2c9c7b71d833fe204019eef6b56e45010df02fc5a8e43dc291ef0f2a1ce1204417547f3c39479e5fb6f891b77960454a184146069070364bb284d6ccca96abe8d725d6259eafaa6a6783bceaee8781dd790b3f02b73a80e9294be62571cae54e6c8661ad509af16f93f1cb65e518dc66c1202dc6f94260ed86b8a5c949fc716f4fcc410088fa5c3fe16a0524973ef6d283fa087f6292475909b23d00bb9d143a1f52d3e7013b2c5f40d32cad0982a1e14c7badf13c3f2f3ef83a0d030ca532fcbf", @typed={0x8, 0x11, 0x0, 0x0, @fd=r2}, @typed={0x98, 0x13, 0x0, 0x0, @binary="77621a95288bdeb904b6c31de2c304d3fa9107c64cd91faadaf88a6502d6383c4de87c43ad468c98f8db6e7977eb638efcda7f3236e1ab80d4c1a2d27ebf76006a3a0f48e50974a00acfc6225c193285f9f43940aaca1dcf18d53d95cc7e33d603e34e365fb36eab9283f8e00cc2bfc342d5bc5bba1d0ce305c9f3121e9bae51e404a846ef0cc9c1e56028ba680fd184d4a72cf2"}, @generic="1a23fec0e1ff8dd829aa75f02fdf135b6b431b80b177708090488b2e35c7c3afc81e744b339b2d8a72086b96792b08b9b57e285f70d309b8459cfc10f449f081c0f46dc2f93d032c2bb90d6e945afce891078809b04b413d1eee749916a29183b0c358eb1ac698"]}, @generic="82dd91a42555d29306ba4414185905b42f953f651e1742ef037797d2b53ed525397bc1a95b0ebf8e71f1d8eca556187d0dbe908bab6b9c967df102a2a88a6d2e6ede745b6ec68bf570a046bfb41eeaff83c269d390e0e596a6ef14408e797102799006df97e1f47b8679371b20ff4f757cd15edac0e0465acbefde512d34ed1b2c241eb7eac78ce1b05ed5336eeed44a8b52d46f52d74a30169c2827692c5abcf0d30ff9d19c5e062c18cf1f303ae6267a929731380eb22b994f9557b5e73ad8a02f476bb30dfccd101439ca74bfa616635553a0daf0f345bf3f9019f2ed970264dde14d26da859e60fe2459f2b24fcf82e1", @typed={0x14, 0x5, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @generic="96e2ed4a92b9f245600c4c8c90cea5e1f3e7ce250c17fb1995321370696c12279ae3d14ff345c3f17d046332b6cfad67b3f28b31e326c3f97d09f32e24771a475ff171097d37ba95dd858faa267c0237421f6dd2bbdbe840fca4", @nested={0x1c, 0x60, 0x0, 0x1, [@typed={0x8, 0x71, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0x72, 0x0, 0x0, @u32=0xfffff800}, @typed={0x8, 0x67, 0x0, 0x0, @u32=0x2}]}, @generic="18f7cc6c09cf2a0ad668d233492ad5c611a5c550d035090f66067ee3a991b9fe8a783efacd756e6f0bf111d3f31ddd6a22598a4fbb4db214bd7fba818868fcc37d0e09eac27819676c832d0f7db418cbf7054be6bc842b3827cecf"]}, 0x3f4}], 0x3, &(0x7f0000001d80)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @rights={{0x28, 0x1, 0x1, [r0, r2, r2, r0, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {r4, 0xee01, r5}}}, @cred={{0x1c, 0x1, 0x2, {r6, 0x0, 0xee01}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r7, r3, r3]}}, @rights={{0x1c, 0x1, 0x1, [r0, r2, r3]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r8, 0xffffffffffffffff}}}], 0xe8, 0x4000}, 0x40092)
recvfrom(r3, &(0x7f0000001ec0)=""/129, 0x81, 0x100, 0x0, 0x0)
sendmsg$netlink(r2, &(0x7f00000020c0)={&(0x7f0000001f80)=@proc={0x10, 0x0, 0x25dfdbfe, 0x10000}, 0xc, &(0x7f0000002040)=[{&(0x7f0000001fc0)={0x58, 0x10, 0x200, 0x70bd27, 0x25dfdbfd, "", [@nested={0x45, 0x8b, 0x0, 0x1, [@generic="67e850701cdc6fa4658bd5ecf3eff52dc5bc996ee6c8e2ecca20079ca3afb2cb37dc1337246dcd9e9667f0044d6dc8dc2e9386bc05c81e954eead8c8cb75fe32a2"]}]}, 0x58}], 0x1, &(0x7f0000002080)=[@rights={{0x14, 0x1, 0x1, [r3]}}], 0x18, 0x40004081}, 0x100)
sendmsg$DEVLINK_CMD_RATE_DEL(r3, &(0x7f00000021c0)={&(0x7f0000002100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000002180)={&(0x7f0000002140)={0x14, 0x0, 0x800, 0x70bd2c, 0x25dfdbff}, 0x14}}, 0x800)

15:03:18 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x7ff}}, './file0\x00'})
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r2=>r1, {0xffffffffffffffff, 0xee01}}, './file0\x00'})
r3 = accept4$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, &(0x7f00000000c0)=0x1c, 0x0)
fcntl$F_SET_FILE_RW_HINT(r3, 0x40e, &(0x7f0000000100)=0x5)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x4e21, 0x4b, @empty, 0x4}, 0x1c)
sendfile(r0, r0, &(0x7f0000000180)=0x1, 0x0)
pwritev(r0, &(0x7f0000000700)=[{&(0x7f00000001c0)="dcb68df9386483b5453d3ce030532c0cccbbea11e7ab1b5ce83061c281bc3c36822e1bbe687c4bade83e4ba81f2c8c070689", 0x32}, {&(0x7f0000000200)="155457d9b0ce38b23da4e9bc4f67d9c979c2ead17185c6f1415067162dfc7284ce69c0a208e19709e2c0fdbefe1bbd586f6b18151321b580837b01327bd9bdb993de14f8dbeda2d699e9d2049e3571dcc74fa85d0dd947d0993a19d87466d3f93ec13876f19aac3a27110334172c3bb44ef5d9021bad4a5d7a25de3ca50ee5af8860c9cf3b9d029a3d557bca27a0bb060ce639a0a1a1875c330a13cc56c7d2c5f2a0833d12110c7dddd9bd9ba65e5f1393ca39e3c6587a2820014fab6745ec9ed9b7f270", 0xc4}, {&(0x7f0000000300)="0665290c46730b490cc577ce28081fe456966ba44314219f9569601b6359073cac6aa35e4172565fbea1c206f24fe96d1a39695250ff4aca96ce2971f78a232f0099c3a9ef4522236c48831297827d23bb83c7776d2eeb171b41434e8c71e9de62475179ceff62e7740c90770c1253466189994fd44fa7ad4f79941996d06595c173a948882b12795bc4b40565de658463b1a702c7d4d15093a0f9132334893ded873bfedd72930683660e943fee4921faad4811539c345229757ab4e19bca6aa9a6465d2b79a4e65e9729", 0xcb}, {&(0x7f0000000400)="1f95c12cd95c59854ab48cfa8752ee1ae6981548cf4b420e46074799fff0092a7c049f5b575708498f31fc5a7373cacbcd5ec663a6a82ae3b6d0fbfd", 0x3c}, {&(0x7f0000000440)="ac2a0e6743d289dfd4928537a31ff0b84adfacba2be439a5982c1f0b4dcafdbd57eb120acbf45c3e41b424b911924b395b94c5b75ecaec5085847e923fbb5ab118dccb2a2dae4a3157f63f2936d621e99751a87191b5a42dfa27237b9ff7888cc95119318e531d35b8104a92906879a86ed4d5029dbf1c7def0d10299b277d58e27984c24d7aafd197c0d78fb01c8db6331718c1079b63512eae9aca568aca85a9fb7a7f3dee512bdae5", 0xaa}, {&(0x7f0000000500)="27b19c20865304bbab070f6f598cc2958d8fc703504bed24a779d905365d7a3dab22ed9bdff62fabfedefa8ff6267cdba3e45fc762b7314f62a8c0a9e13f4608d175e1a3d7b62bb05f8c6f34844380f233758e78162ad9eb42e34e39c965595bc6c0b847aec54bbcbe9db07f8f98921ddcbf925ad23be0c43eb08f6d6af112abd10710ce6469efe48990029ca0c7b7844a761292d5bce6b8ad7654967123574a312c6d9ce3e230533af5be3da10305a104fe29097ca73fdd35f9b94f99bd8ddcbb5ae29405fd83d4ed948f8b18cfec54965bc991dbee0f6cf0101cc8baa3de530d1e087c127a1d85f76af5f3", 0xec}, {&(0x7f0000000600)="12c3b3103356d29b897e08923c45cadc0da5163c6e885dc1d1b7bc518ec15a", 0x1f}, {&(0x7f0000000640)="33c3ef66e7dc9e0a7f56b71da80557af23602c9811be976c2fa4eb7e92222e421100522042a7d6aec6b2ccdf8ac776efc619e9054f3e6d4e401b54af65a5559d11642bc5d16374c2b228a387aeb8faa6151059e2bfd01f496d5df32027fd826d74fdd8dd", 0x64}, {&(0x7f00000006c0)="181822fb341c92196fcbda78f2e784b01081bfd575b28b129cda328cd303c4473c91d992", 0x24}], 0x9, 0x9, 0xfa1)
sendmsg$inet6(r2, &(0x7f0000000980)={&(0x7f00000007c0)={0xa, 0x4e23, 0xfffffffb, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c, &(0x7f0000000900)=[{&(0x7f0000000800)="da78b2cea60fc978312bd544afd2e07fa0d0b65d56924dd9584095a1464de39aadbe37e5473ca8ccd029c2eb33e563f534ac4b61dbc863512dac03ba60c169d39631df8e87baec15eeed7562d954ea8ddf0ca197c469849c", 0x58}, {&(0x7f0000000880)="64c746442dd40806dab05a5f38473ec765c30d433ebcf945186ae24a433afff46167aae1514074701463848d2cbf791a006c8451cc063931ea7eca8c0e7bd22282304944458a6d1861a4d0e47898227394519a64a9a55a10dcce0c1cf00313a71922b1f835fecf933c2f2437e659d1", 0x6f}], 0x2, &(0x7f0000000940)=[@dontfrag={{0x14, 0x29, 0x3e, 0xffff}}], 0x18}, 0x40004)
connect$inet6(r3, &(0x7f00000009c0)={0xa, 0x4e23, 0x2, @remote, 0xfff}, 0x1c)
ioctl$BTRFS_IOC_BALANCE_CTL(r1, 0x40049421, 0x2)
sendto$inet6(r0, &(0x7f0000000a00)="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", 0x1000, 0x8084, &(0x7f0000001a00)={0xa, 0x4e22, 0x20, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xfffffff9}, 0x1c)
r4 = openat$full(0xffffffffffffff9c, &(0x7f0000001a80), 0x90002, 0x0)
syz_genetlink_get_family_id$smc(&(0x7f0000001a40), r4)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000001ac0)={{0x1, 0x1, 0x18, <r5=>r1, {0x100}}, './file0\x00'})
getsockopt$bt_l2cap_L2CAP_OPTIONS(r5, 0x6, 0x1, &(0x7f0000001b00), &(0x7f0000001b40)=0xc)
poll(&(0x7f0000001b80)=[{r3, 0x2004}, {r0, 0x1009}, {0xffffffffffffffff, 0x9031}, {r2, 0x4480}, {r0, 0x20}], 0x5, 0x1)
ioctl$VFAT_IOCTL_READDIR_SHORT(r1, 0x82307202, &(0x7f0000001bc0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
sendmmsg$inet6(r0, &(0x7f0000002140)=[{{0x0, 0x0, &(0x7f0000001e80)=[{&(0x7f0000001e00)="62fdc841e81ee3fa716f770bd0bfdd8662521061bb4fb2eb284988e9dcb2ab1eef4cd56561d0cb641718bc31655c49a271b6528c33ffa30d07df8a036d24ac5faa61626012a1de8b4fbffc96fce6a1612151ff1247922c0b3ae20461feb53527dd4fb2a4", 0x64}], 0x1, &(0x7f0000001ec0)=[@rthdrdstopts={{0x60, 0x29, 0x37, {0x0, 0x8, '\x00', [@generic={0x6, 0x45, "15d96d023b9a2e2801194fa5837c8b9c410871f19a798536cd105ee9007bc9748c715d99ce4f2340ba564b31adbee2d60f2583160b4ae42d21da5b97392a0576f4b10731a9"}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x1d20}}, @flowinfo={{0x14, 0x29, 0xb, 0x1b58}}, @hopopts={{0xc0, 0x29, 0x36, {0x4, 0x14, '\x00', [@pad1, @hao={0xc9, 0x10, @mcast1}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @loopback}}, @jumbo={0xc2, 0x4, 0xff}, @generic={0x4, 0x30, "a2bc3c42e7aa91c28e6d2f4fd10d5a1e234c6eaec552fc1e8fa6b5c870d3f7d1068b019ce114f785967b26e4320a68eb"}, @calipso={0x7, 0x40, {0x3, 0xe, 0xff, 0xdfeb, [0x401, 0x7ff, 0x7, 0x5, 0xffffffffffffffc1, 0x1, 0xfffffffffffffc00]}}, @pad1]}}}, @pktinfo={{0x24, 0x29, 0x32, {@private1}}}, @rthdrdstopts={{0xa8, 0x29, 0x37, {0x33, 0x11, '\x00', [@enc_lim={0x4, 0x1, 0x4}, @enc_lim={0x4, 0x1, 0x5}, @hao={0xc9, 0x10, @local}, @generic={0x9, 0x36, "0b7b1f57f155477404eba9163580e8a924d8172637bcc2d4eb89d8a47ba1346ff131c0e5098fd68750f518c86ddbca5928c5d4d56b39"}, @pad1, @ra={0x5, 0x2, 0x40}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @calipso={0x7, 0x18, {0x1, 0x4, 0x9a, 0x400, [0xb9, 0x7]}}, @pad1, @ra={0x5, 0x2, 0x8}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0xffff}}, @hopopts_2292={{0x40, 0x29, 0x36, {0x67, 0x4, '\x00', [@padn={0x1, 0x2, [0x0, 0x0]}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0x7}, @padn={0x1, 0x2, [0x0, 0x0]}, @ra={0x5, 0x2, 0x8001}, @padn={0x1, 0x2, [0x0, 0x0]}, @ra={0x5, 0x2, 0x200}, @jumbo={0xc2, 0x4, 0x800}]}}}], 0x278}}], 0x1, 0x40000)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000002400)={&(0x7f0000002180)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002380)=[{&(0x7f0000002200)="3f792f15f9436c170d53393876ebf292abf8cb1c0968890c70005243126be51e1b98f9f0a501ac7a66cdee4b08a9faed651f1525bf012fc9010da43d0a2a3a2b9dfcd994d18474f63f1568e631145bfad825c3ab983b862f01f51ab7aa4f1802690a1f2d5ed1e04be2299808c197e249bbc6b6a375f7b858d0", 0x79}, {&(0x7f0000002280)="c6cca147b7845ecb1feb943886052b3fa5bc8d6eb6fed8435e527d1bbc15df3807ae6959fd2ba6532d5ce3adf42747231a08a5d86168aaeb23", 0x39}, {&(0x7f00000022c0)="6dd63a3307dee05be0b31ebaac277342aa147c3bc0af545358d2c846d49683478a446a3ed988cdbc0e82276661c4ea01ecc44f1821f279916dfd8a29cc46b34f5eef7d9a1cbaaa2a6491cb4ffc3f89063d1b125d59b5d116e1781528fe29e62954503be4ca387a60c2facad876278bd67b1ec6a54031fb8bd4e309cce87708377b03af03428e4075144951208dab76", 0x8f}], 0x3, &(0x7f00000023c0), 0x0, 0x20000810}, 0x20000003)

15:03:18 executing program 6:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SURVEY(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r0, 0x0, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000004)
sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x40, 0x0, 0x10, 0x70bd29, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x6, 0x4, 0x3}}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000240), 0x40c480, 0x0)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000005c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000580)={&(0x7f00000002c0)={0x2a4, r0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@NL80211_ATTR_REG_RULES={0xf4, 0x22, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x38}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x800}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xfffffff8}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x9}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7f}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xf423}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x9a}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x200}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x432}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xf4}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_FREQ_RANGE_START={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3ff}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xfff}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xc0000}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x51}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x178, 0x22, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x2}, @NL80211_ATTR_FREQ_RANGE_START={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xb373}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1ff}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x80000000}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1000}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x6b3a}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x212}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x20}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x9}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xfffffffd}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x23}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x26116e6c}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x9b69}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x6}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x4}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xe89}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffffe}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x658a}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xec06}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x9c3}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x8}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x1ff}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1000}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x2}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x9}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x10000}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x2a4}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000c0)
recvmmsg$unix(r1, &(0x7f0000003dc0)=[{{&(0x7f0000000600)=@abs, 0x6e, &(0x7f0000001cc0)=[{&(0x7f0000000680)=""/95, 0x5f}, {&(0x7f0000000700)=""/189, 0xbd}, {&(0x7f00000007c0)=""/11, 0xb}, {&(0x7f0000000800)=""/219, 0xdb}, {&(0x7f0000000900)=""/87, 0x57}, {&(0x7f0000000980)=""/215, 0xd7}, {&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000001a80)=""/204, 0xcc}, {&(0x7f0000001b80)=""/67, 0x43}, {&(0x7f0000001c00)=""/129, 0x81}], 0xa, &(0x7f0000001d80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xc0}}, {{&(0x7f0000001e40), 0x6e, &(0x7f00000031c0)=[{&(0x7f0000001ec0)=""/19, 0x13}, {&(0x7f0000001f00)=""/4096, 0x1000}, {&(0x7f0000002f00)=""/246, 0xf6}, {&(0x7f0000003000)=""/243, 0xf3}, {&(0x7f0000003100)=""/182, 0xb6}], 0x5, &(0x7f0000003240)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0xd8}}, {{&(0x7f0000003340)=@abs, 0x6e, &(0x7f0000003840)=[{&(0x7f00000033c0)=""/248, 0xf8}, {&(0x7f00000034c0)=""/136, 0x88}, {&(0x7f0000003580)=""/7, 0x7}, {&(0x7f00000035c0)=""/218, 0xda}, {&(0x7f00000036c0)=""/3, 0x3}, {&(0x7f0000003700)=""/142, 0x8e}, {&(0x7f00000037c0)=""/72, 0x48}], 0x7, &(0x7f00000038c0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, <r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa8}}, {{&(0x7f0000003980)=@abs, 0x6e, &(0x7f0000003a80)=[{&(0x7f0000003a00)=""/115, 0x73}], 0x1}}, {{&(0x7f0000003ac0), 0x6e, &(0x7f0000003c40)=[{&(0x7f0000003b40)=""/107, 0x6b}, {&(0x7f0000003bc0)=""/3, 0x3}, {&(0x7f0000003c00)}], 0x3, &(0x7f0000003c80)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [<r8=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff, <r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff, 0xffffffffffffffff, <r12=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x108}}], 0x5, 0x23, &(0x7f0000003f00))
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000004000)={&(0x7f0000003f40)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000003fc0)={&(0x7f0000003f80)={0x24, r0, 0x1, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}]}, 0x24}}, 0x4)
sendmsg$IPSET_CMD_DEL(r7, &(0x7f0000004100)={&(0x7f0000004040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000040c0)={&(0x7f0000004080)={0x20, 0xa, 0x6, 0x201, 0x0, 0x0, {0xc, 0x0, 0xa}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x10)
r13 = fsmount(r5, 0x1, 0x1)
r14 = syz_genetlink_get_family_id$nl80211(&(0x7f0000004180), r11)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f00000041c0)={'wlan0\x00', <r15=>0x0})
sendmsg$NL80211_CMD_RADAR_DETECT(r13, &(0x7f00000042c0)={&(0x7f0000004140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000004280)={&(0x7f0000004200)={0x54, r14, 0x1, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r15}, @void}}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xffff}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x8000)
sendmsg$BATADV_CMD_GET_MESH(r10, &(0x7f0000004400)={&(0x7f0000004300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000043c0)={&(0x7f0000004340)={0x4c, 0x0, 0x800, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xfff}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x15f}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x4a}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20040841}, 0x0)
r16 = syz_genetlink_get_family_id$tipc(&(0x7f0000004480), r3)
sendmsg$TIPC_CMD_GET_LINKS(r2, &(0x7f0000004540)={&(0x7f0000004440)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000004500)={&(0x7f00000044c0)={0x24, r16, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0x8001}}, ["", "", "", "", "", ""]}, 0x24}}, 0x4000000)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f00000045c0)={{0x1, 0x1, 0x18, <r17=>r9}, './file0\x00'})
r18 = syz_genetlink_get_family_id$nl80211(&(0x7f0000004580), r17)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000004600), 0x719000, 0x0)
sendmsg$NL80211_CMD_START_SCHED_SCAN(r6, &(0x7f0000004700)={&(0x7f0000004640)={0x10, 0x0, 0x0, 0x8080000}, 0xc, &(0x7f00000046c0)={&(0x7f0000004680)={0x28, r18, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r15}, @val={0xc, 0x99, {0x1d9, 0x1a}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x7f4b37b28130dd41}, 0x20000010)
sendmsg$NL80211_CMD_NEW_INTERFACE(r12, &(0x7f0000004900)={&(0x7f0000004740)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000048c0)={&(0x7f00000047c0)={0xf4, r18, 0x20, 0x70bd25, 0x25dfdbff, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x80, 0x19}}}}, [@NL80211_ATTR_MESH_ID={0xa}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "8a452df606c938dc4efcf6990317918ea4b5a04dc161e7ae"}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "a72f6fc583e5086e35a84a1e2855eba951e24625f7fbbee5"}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "9b96218f61d97d3bdd3a6b67cd237b28221f12fd1d3a4b80"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "f992b0f7b04dad2952ad002b1777a42026e5fad43e72b616"}], @NL80211_ATTR_IFNAME={0x14, 0x4, 'macvlan0\x00'}, @NL80211_ATTR_MESH_ID={0xa}]}, 0xf4}}, 0x8c1)

15:03:18 executing program 7:
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x20003, 0x80)
connect(r0, &(0x7f0000000040)=@nfc_llcp={0x27, 0x1, 0x1, 0x1, 0x1, 0x8, "70573e5f8494c6c7632b0dbafed9f45722008c6402378c0643243c17029d0ae8e2bdd69de417411b8be48c37d72fde1156d17f8c97f1e1c01aeaa7b28b2437", 0x20}, 0x80)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = signalfd4(r1, &(0x7f00000000c0)={[0x75]}, 0x8, 0x80000)
r3 = openat(r0, &(0x7f0000000100)='./file0\x00', 0x121e00, 0xa)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x40, 0x4, 0x8, 0x201, 0x0, 0x0, {0x2, 0x0, 0x6}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x888f}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x40}}, 0x400c045)
mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x1065802, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@mmap}], [{@fowner_lt}]}})
setsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000340)={{{@in=@dev={0xac, 0x14, 0x14, 0x38}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4e23, 0x0, 0x4e22, 0xcd, 0x2, 0x0, 0x0, 0x21, 0x0, 0xee01}, {0xd7, 0x7, 0x8, 0x608, 0x80000001, 0x6d0, 0x7, 0x80000001}, {0x7, 0x2, 0x2, 0x4}, 0xfe4, 0x6e6bb5, 0x0, 0x1, 0x2, 0x2}, {{@in6=@mcast2, 0x4d4, 0xd8}, 0x2, @in6=@empty, 0x0, 0x0, 0x3, 0x9, 0x7, 0xf59, 0x8}}, 0xe8)
r4 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r5 = signalfd4(r4, &(0x7f0000000480)={[0x80]}, 0x8, 0x80800)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0xb0002)
fallocate(r6, 0x1a, 0x401, 0x2)
r7 = syz_mount_image$tmpfs(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x800000000, 0x4, &(0x7f00000007c0)=[{&(0x7f0000000580)="783983a50af40665655ebef6f8233527760de59a7feb973854b9754e8388eb94ae8ff0ac89b897a8a5361e80c69fa54c291369133ecf36085eaaa628556e6c1f7c8cba8892c09f99d1d0b8ddeddca27f08d8495d58274418f4f0bfba3d3fc5256fa5a6765adbe6cc0b168618758eab1600d2aa6320295b51ba1cf9f2195d7947203746702ce949ce4d281251f916c7841422803611", 0x95, 0x5}, {&(0x7f0000000640)="a4a469f4d44022e90f38853c1a62615413e6aa6a88c0c1fe4cb29da8a563eb4667d14200a54f31d9702db00e79ad", 0x2e, 0x8}, {&(0x7f0000000680)="aed45cd0c0cb11a62cef45315039c097e80bf8cbb75d671d844effce81bc4f60a8af204c60d9e83c05b260c1c4211568848f2f6402581c5e3c8e6a21095ac8647c69c83cd1ecdb1e38958f374ec30726a11b006791137c90c7e9a128a8da5a4d9485474d724c6ce4703d17593867b33e64d9d60b614c9e8ab32022812c1008be0b", 0x81, 0x9}, {&(0x7f0000000740)="98eacabc43d423ceb17674daa6d44b021e3cee9be5b7a3f021f3bcbdeee2d84aa24b14f28a76c3b3a51992f4f9f08be9ca4d1bf6c4b31e3c7054ccffbe3202ae52f6a6b61bb9e1e03a53f7d83d7ffb8c9882b848714268945a5da69fb8a200b5beb4ad25e4889d8c6f8607d11505ae484abe97680fac34c73ae8c1f1ca1380bf", 0x80, 0x2}], 0x20000, &(0x7f0000000840)={[{@mpol={'mpol', 0x3d, {'default', '', @val={0x3a, [0x34, 0x3a, 0x39, 0x39, 0x35]}}}}, {@uid={'uid', 0x3d, 0xee00}}, {@mode={'mode', 0x3d, 0xff}}], [{@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@uid_eq}, {@obj_type}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]})
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000940)={<r8=>0x0, @dev, @multicast2}, &(0x7f0000000980)=0xc)
ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r3, 0x89fb, &(0x7f0000000a40)={'syztnl1\x00', &(0x7f00000009c0)={'syztnl2\x00', <r9=>0x0, 0x0, 0x8d, 0x3f, 0x81, 0x40, @dev={0xfe, 0x80, '\x00', 0x80}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x700, 0x700, 0x8, 0x8}})
getpeername$packet(r3, &(0x7f0000000a80)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000ac0)=0x14)
sendmsg$TEAM_CMD_PORT_LIST_GET(r5, &(0x7f0000001040)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001000)={&(0x7f0000000b00)={0x4f8, 0x0, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [{{0x8}, {0x1e8, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r8}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r9}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xfff}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7ff}}}]}}, {{0x8, 0x1, r10}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x6792}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x174, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7f}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}]}}, {{0x8}, {0xb8, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}]}, 0x4f8}}, 0x8000)
signalfd4(r7, &(0x7f0000001080)={[0xfed]}, 0x8, 0x800)
sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000001200)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000011c0)={&(0x7f0000001140)={0x60, 0x0, 0x100, 0x70bd26, 0x25dfdbff, {}, [@NL802154_ATTR_CHANNEL={0x5, 0x8, 0x11}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0xc}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1c}, @NL802154_ATTR_PAGE={0x5, 0x7, 0xe}]}, 0x60}, 0x1, 0x0, 0x0, 0x10000000}, 0x0)

[   68.696077] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   68.699861] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   68.703366] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   68.712427] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   68.718837] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   68.720474] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   68.725490] Bluetooth: hci0: HCI_REQ-0x0c1a
[   68.733330] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   68.737753] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   68.742143] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   68.750943] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   68.755284] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   68.758096] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   68.776699] Bluetooth: hci1: HCI_REQ-0x0c1a
[   68.805832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   68.809112] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   68.810487] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   68.811977] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   68.813807] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.815655] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.819805] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   68.831931] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   68.838247] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   68.839522] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   68.841766] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   68.845499] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   68.850123] Bluetooth: hci3: HCI_REQ-0x0c1a
[   68.872203] Bluetooth: hci2: HCI_REQ-0x0c1a
[   68.905374] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   68.907640] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   68.944222] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   68.946440] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   68.954800] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   68.956093] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   68.959716] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   68.961086] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   68.963791] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   68.965191] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   68.966784] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   68.977220] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   68.978214] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   68.979225] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   68.987867] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   68.990708] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   68.992667] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   68.994490] Bluetooth: hci5: HCI_REQ-0x0c1a
[   69.007286] Bluetooth: hci7: HCI_REQ-0x0c1a
[   69.067770] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   69.081373] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   69.082394] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   69.084090] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   69.084731] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   69.086136] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   69.087710] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   69.091820] Bluetooth: hci6: HCI_REQ-0x0c1a
[   69.108718] Bluetooth: hci4: HCI_REQ-0x0c1a
[   70.775131] Bluetooth: hci0: command 0x0409 tx timeout
[   70.838620] Bluetooth: hci1: command 0x0409 tx timeout
[   70.902759] Bluetooth: hci2: command 0x0409 tx timeout
[   70.903449] Bluetooth: hci3: command 0x0409 tx timeout
[   71.030772] Bluetooth: hci5: command 0x0409 tx timeout
[   71.094657] Bluetooth: hci7: command 0x0409 tx timeout
[   71.158798] Bluetooth: hci4: command 0x0409 tx timeout
[   71.158883] Bluetooth: hci6: command 0x0409 tx timeout
[   72.822599] Bluetooth: hci0: command 0x041b tx timeout
[   72.886774] Bluetooth: hci1: command 0x041b tx timeout
[   72.950623] Bluetooth: hci2: command 0x041b tx timeout
[   72.951612] Bluetooth: hci3: command 0x041b tx timeout
[   73.078633] Bluetooth: hci5: command 0x041b tx timeout
[   73.142679] Bluetooth: hci7: command 0x041b tx timeout
[   73.206611] Bluetooth: hci4: command 0x041b tx timeout
[   73.208080] Bluetooth: hci6: command 0x041b tx timeout
[   74.871647] Bluetooth: hci0: command 0x040f tx timeout
[   74.934707] Bluetooth: hci1: command 0x040f tx timeout
[   74.998596] Bluetooth: hci3: command 0x040f tx timeout
[   74.999677] Bluetooth: hci2: command 0x040f tx timeout
[   75.126642] Bluetooth: hci5: command 0x040f tx timeout
[   75.226659] Bluetooth: hci7: command 0x040f tx timeout
[   75.254605] Bluetooth: hci6: command 0x040f tx timeout
[   75.255039] Bluetooth: hci4: command 0x040f tx timeout
[   76.918751] Bluetooth: hci0: command 0x0419 tx timeout
[   76.982780] Bluetooth: hci1: command 0x0419 tx timeout
[   77.046652] Bluetooth: hci2: command 0x0419 tx timeout
[   77.047530] Bluetooth: hci3: command 0x0419 tx timeout
[   77.175297] Bluetooth: hci5: command 0x0419 tx timeout
[   77.239928] Bluetooth: hci7: command 0x0419 tx timeout
[   77.302861] Bluetooth: hci4: command 0x0419 tx timeout
[   77.303722] Bluetooth: hci6: command 0x0419 tx timeout
15:04:12 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r0 = epoll_create(0x4)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
io_setup(0x3ff, &(0x7f0000000140)=<r4=>0x0)
r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r6 = pidfd_getfd(0xffffffffffffffff, r5, 0x0)
r7 = io_uring_setup(0x454e, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x3e6, 0x0, r6})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0xb, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x3003, @fd=r7, 0x9, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/53, 0x35}, {&(0x7f0000000300)=""/64, 0x40}, {&(0x7f0000000340)=""/198, 0xc6}, {&(0x7f0000000440)=""/32, 0x20}, {&(0x7f00000004c0)=""/23, 0x17}, {&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f0000000580)=""/39, 0x27}], 0x7, 0x6}, 0x5)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
openat(r1, &(0x7f0000000180)='./file0\x00', 0x20000, 0x110)
r9 = dup3(r2, r3, 0x0)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r9, 0x2, r10)
io_submit(r4, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x200000}])

[  121.068114] audit: type=1400 audit(1663772652.510:7): avc:  denied  { open } for  pid=3805 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  121.069699] audit: type=1400 audit(1663772652.511:8): avc:  denied  { kernel } for  pid=3805 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  121.091513] ------------[ cut here ]------------
[  121.091533] 
[  121.091536] ======================================================
[  121.091542] WARNING: possible circular locking dependency detected
[  121.091547] 6.0.0-rc6-next-20220921 #1 Not tainted
[  121.091554] ------------------------------------------------------
[  121.091557] syz-executor.2/3806 is trying to acquire lock:
[  121.091564] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  121.091606] 
[  121.091606] but task is already holding lock:
[  121.091609] ffff888040d2a420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  121.091640] 
[  121.091640] which lock already depends on the new lock.
[  121.091640] 
[  121.091643] 
[  121.091643] the existing dependency chain (in reverse order) is:
[  121.091647] 
[  121.091647] -> #3 (&ctx->lock){....}-{2:2}:
[  121.091662]        _raw_spin_lock+0x2a/0x40
[  121.091682]        __perf_event_task_sched_out+0x53b/0x18d0
[  121.091696]        __schedule+0xedd/0x2470
[  121.091710]        schedule+0xda/0x1b0
[  121.091723]        exit_to_user_mode_prepare+0x114/0x1a0
[  121.091736]        syscall_exit_to_user_mode+0x19/0x40
[  121.091749]        do_syscall_64+0x48/0x90
[  121.091767]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.091779] 
[  121.091779] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  121.091793]        _raw_spin_lock_nested+0x30/0x40
[  121.091813]        raw_spin_rq_lock_nested+0x1e/0x30
[  121.091827]        task_fork_fair+0x63/0x4d0
[  121.091846]        sched_cgroup_fork+0x3d0/0x540
[  121.091861]        copy_process+0x4183/0x6e20
[  121.091873]        kernel_clone+0xe7/0x890
[  121.091882]        user_mode_thread+0xad/0xf0
[  121.091894]        rest_init+0x24/0x250
[  121.091905]        arch_call_rest_init+0xf/0x14
[  121.091923]        start_kernel+0x4c1/0x4e6
[  121.091938]        secondary_startup_64_no_verify+0xe0/0xeb
[  121.091953] 
[  121.091953] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  121.091967]        _raw_spin_lock_irqsave+0x39/0x60
[  121.091998]        try_to_wake_up+0xab/0x1930
[  121.092013]        up+0x75/0xb0
[  121.092027]        __up_console_sem+0x6e/0x80
[  121.092045]        console_unlock+0x46a/0x590
[  121.092063]        vprintk_emit+0x1bd/0x560
[  121.092081]        vprintk+0x84/0xa0
[  121.092099]        _printk+0xba/0xf1
[  121.092110]        kauditd_hold_skb.cold+0x3f/0x4e
[  121.092128]        kauditd_send_queue+0x233/0x290
[  121.092144]        kauditd_thread+0x5da/0x9a0
[  121.092160]        kthread+0x2ed/0x3a0
[  121.092176]        ret_from_fork+0x22/0x30
[  121.092189] 
[  121.092189] -> #0 ((console_sem).lock){....}-{2:2}:
[  121.092204]        __lock_acquire+0x2a02/0x5e70
[  121.092223]        lock_acquire+0x1a2/0x530
[  121.092240]        _raw_spin_lock_irqsave+0x39/0x60
[  121.092260]        down_trylock+0xe/0x70
[  121.092275]        __down_trylock_console_sem+0x3b/0xd0
[  121.092293]        vprintk_emit+0x16b/0x560
[  121.092311]        vprintk+0x84/0xa0
[  121.092328]        _printk+0xba/0xf1
[  121.092338]        report_bug.cold+0x72/0xab
[  121.092355]        handle_bug+0x3c/0x70
[  121.092373]        exc_invalid_op+0x14/0x50
[  121.092390]        asm_exc_invalid_op+0x16/0x20
[  121.092402]        group_sched_out.part.0+0x2c7/0x460
[  121.092413]        ctx_sched_out+0x8f1/0xc10
[  121.092424]        __perf_event_task_sched_out+0x6d0/0x18d0
[  121.092437]        __schedule+0xedd/0x2470
[  121.092450]        schedule+0xda/0x1b0
[  121.092464]        exit_to_user_mode_prepare+0x114/0x1a0
[  121.092475]        syscall_exit_to_user_mode+0x19/0x40
[  121.092486]        do_syscall_64+0x48/0x90
[  121.092504]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.092515] 
[  121.092515] other info that might help us debug this:
[  121.092515] 
[  121.092518] Chain exists of:
[  121.092518]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  121.092518] 
[  121.092535]  Possible unsafe locking scenario:
[  121.092535] 
[  121.092537]        CPU0                    CPU1
[  121.092540]        ----                    ----
[  121.092542]   lock(&ctx->lock);
[  121.092548]                                lock(&rq->__lock);
[  121.092555]                                lock(&ctx->lock);
[  121.092565]   lock((console_sem).lock);
[  121.092572] 
[  121.092572]  *** DEADLOCK ***
[  121.092572] 
[  121.092574] 2 locks held by syz-executor.2/3806:
[  121.092581]  #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  121.092611]  #1: ffff888040d2a420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  121.092641] 
[  121.092641] stack backtrace:
[  121.092644] CPU: 1 PID: 3806 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220921 #1
[  121.092657] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  121.092666] Call Trace:
[  121.092670]  <TASK>
[  121.092674]  dump_stack_lvl+0x8b/0xb3
[  121.092693]  check_noncircular+0x263/0x2e0
[  121.092711]  ? format_decode+0x26c/0xb50
[  121.092728]  ? print_circular_bug+0x450/0x450
[  121.092747]  ? enable_ptr_key_workfn+0x20/0x20
[  121.092764]  ? format_decode+0x26c/0xb50
[  121.092781]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  121.092801]  __lock_acquire+0x2a02/0x5e70
[  121.092824]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  121.092849]  lock_acquire+0x1a2/0x530
[  121.092867]  ? down_trylock+0xe/0x70
[  121.092884]  ? lock_release+0x750/0x750
[  121.092907]  ? vprintk+0x84/0xa0
[  121.092926]  _raw_spin_lock_irqsave+0x39/0x60
[  121.092947]  ? down_trylock+0xe/0x70
[  121.092963]  down_trylock+0xe/0x70
[  121.092979]  ? vprintk+0x84/0xa0
[  121.092998]  __down_trylock_console_sem+0x3b/0xd0
[  121.093017]  vprintk_emit+0x16b/0x560
[  121.093037]  vprintk+0x84/0xa0
[  121.093056]  _printk+0xba/0xf1
[  121.093067]  ? record_print_text.cold+0x16/0x16
[  121.093083]  ? report_bug.cold+0x66/0xab
[  121.093102]  ? group_sched_out.part.0+0x2c7/0x460
[  121.093114]  report_bug.cold+0x72/0xab
[  121.093133]  handle_bug+0x3c/0x70
[  121.093151]  exc_invalid_op+0x14/0x50
[  121.093170]  asm_exc_invalid_op+0x16/0x20
[  121.093182] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  121.093196] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  121.093209] RSP: 0018:ffff888019ea7c48 EFLAGS: 00010006
[  121.093218] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  121.093226] RDX: ffff888040ce3580 RSI: ffffffff815663a7 RDI: 0000000000000005
[  121.093235] RBP: ffff88801bc40000 R08: 0000000000000005 R09: 0000000000000001
[  121.093243] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff888040d2a400
[  121.093251] R13: ffff88806cf3d140 R14: ffffffff8547cf80 R15: 0000000000000002
[  121.093263]  ? group_sched_out.part.0+0x2c7/0x460
[  121.093276]  ? group_sched_out.part.0+0x2c7/0x460
[  121.093290]  ctx_sched_out+0x8f1/0xc10
[  121.093303]  __perf_event_task_sched_out+0x6d0/0x18d0
[  121.093320]  ? lock_is_held_type+0xd7/0x130
[  121.093333]  ? __perf_cgroup_move+0x160/0x160
[  121.093346]  ? set_next_entity+0x304/0x550
[  121.093365]  ? update_curr+0x267/0x740
[  121.093385]  ? lock_is_held_type+0xd7/0x130
[  121.093399]  __schedule+0xedd/0x2470
[  121.093416]  ? io_schedule_timeout+0x150/0x150
[  121.093433]  ? rcu_read_lock_sched_held+0x3e/0x80
[  121.093455]  schedule+0xda/0x1b0
[  121.093470]  exit_to_user_mode_prepare+0x114/0x1a0
[  121.093483]  syscall_exit_to_user_mode+0x19/0x40
[  121.093496]  do_syscall_64+0x48/0x90
[  121.093517]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.093531] RIP: 0033:0x7fbc177bfb19
[  121.093540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.093552] RSP: 002b:00007fbc14d35218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.093564] RAX: 0000000000000001 RBX: 00007fbc178d2f68 RCX: 00007fbc177bfb19
[  121.093572] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbc178d2f6c
[  121.093580] RBP: 00007fbc178d2f60 R08: 000000000000000e R09: 0000000000000000
[  121.093587] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fbc178d2f6c
[  121.093595] R13: 00007fff0d0b570f R14: 00007fbc14d35300 R15: 0000000000022000
[  121.093608]  </TASK>
[  121.150319] WARNING: CPU: 1 PID: 3806 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  121.151018] Modules linked in:
[  121.151270] CPU: 1 PID: 3806 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220921 #1
[  121.151872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  121.152735] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  121.153145] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  121.154513] RSP: 0018:ffff888019ea7c48 EFLAGS: 00010006
[  121.154914] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  121.155451] RDX: ffff888040ce3580 RSI: ffffffff815663a7 RDI: 0000000000000005
[  121.155997] RBP: ffff88801bc40000 R08: 0000000000000005 R09: 0000000000000001
[  121.156536] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff888040d2a400
[  121.157075] R13: ffff88806cf3d140 R14: ffffffff8547cf80 R15: 0000000000000002
[  121.157625] FS:  00007fbc14d35700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  121.158229] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  121.158672] CR2: 00007f83ec8c1580 CR3: 0000000040dee000 CR4: 0000000000350ee0
[  121.159215] Call Trace:
[  121.159417]  <TASK>
[  121.159593]  ctx_sched_out+0x8f1/0xc10
[  121.159896]  __perf_event_task_sched_out+0x6d0/0x18d0
[  121.160302]  ? lock_is_held_type+0xd7/0x130
[  121.160633]  ? __perf_cgroup_move+0x160/0x160
[  121.160974]  ? set_next_entity+0x304/0x550
[  121.161305]  ? update_curr+0x267/0x740
[  121.161611]  ? lock_is_held_type+0xd7/0x130
[  121.161938]  __schedule+0xedd/0x2470
[  121.162228]  ? io_schedule_timeout+0x150/0x150
[  121.162581]  ? rcu_read_lock_sched_held+0x3e/0x80
[  121.162957]  schedule+0xda/0x1b0
[  121.163223]  exit_to_user_mode_prepare+0x114/0x1a0
[  121.163596]  syscall_exit_to_user_mode+0x19/0x40
[  121.163953]  do_syscall_64+0x48/0x90
[  121.164261]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  121.164648] RIP: 0033:0x7fbc177bfb19
[  121.164935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  121.166293] RSP: 002b:00007fbc14d35218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  121.166869] RAX: 0000000000000001 RBX: 00007fbc178d2f68 RCX: 00007fbc177bfb19
[  121.167403] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbc178d2f6c
[  121.167938] RBP: 00007fbc178d2f60 R08: 000000000000000e R09: 0000000000000000
[  121.168475] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fbc178d2f6c
[  121.169008] R13: 00007fff0d0b570f R14: 00007fbc14d35300 R15: 0000000000022000
[  121.169551]  </TASK>
[  121.169731] irq event stamp: 740
[  121.169984] hardirqs last  enabled at (739): [<ffffffff8133f9d9>] exit_to_user_mode_prepare+0x109/0x1a0
[  121.170681] hardirqs last disabled at (740): [<ffffffff84259305>] __schedule+0x1225/0x2470
[  121.171307] softirqs last  enabled at (488): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  121.171947] softirqs last disabled at (419): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  121.172594] ---[ end trace 0000000000000000 ]---
[  121.394915] audit: type=1400 audit(1663772652.837:9): avc:  denied  { block_suspend } for  pid=3805 comm="syz-executor.2" capability=36  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
15:04:12 executing program 6:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000009c0)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000055040)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x3, "bc386eff17b8c9"})
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000001ec0)=0x80000000, 0x5)
write$binfmt_aout(r5, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendfile(r5, r0, 0x0, 0xfffffdef)

[  121.527087] loop6: detected capacity change from 0 to 40
15:04:13 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r0 = epoll_create(0x4)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
io_setup(0x3ff, &(0x7f0000000140)=<r4=>0x0)
r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r6 = pidfd_getfd(0xffffffffffffffff, r5, 0x0)
r7 = io_uring_setup(0x454e, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x3e6, 0x0, r6})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0xb, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x3003, @fd=r7, 0x9, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/53, 0x35}, {&(0x7f0000000300)=""/64, 0x40}, {&(0x7f0000000340)=""/198, 0xc6}, {&(0x7f0000000440)=""/32, 0x20}, {&(0x7f00000004c0)=""/23, 0x17}, {&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f0000000580)=""/39, 0x27}], 0x7, 0x6}, 0x5)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
openat(r1, &(0x7f0000000180)='./file0\x00', 0x20000, 0x110)
r9 = dup3(r2, r3, 0x0)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r9, 0x2, r10)
io_submit(r4, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x200000}])

[  121.642261] syz-executor.6: attempt to access beyond end of device
[  121.642261] loop6: rw=2049, sector=40, nr_sectors = 4 limit=40
[  121.643498] Buffer I/O error on dev loop6, logical block 10, lost async page write
[  121.664442] syz-executor.6: attempt to access beyond end of device
[  121.664442] loop6: rw=2049, sector=40, nr_sectors = 4 limit=40
[  121.665409] Buffer I/O error on dev loop6, logical block 10, lost async page write
15:04:13 executing program 5:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r0 = epoll_create(0x4)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
io_setup(0x3ff, &(0x7f0000000140)=<r4=>0x0)
r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r6 = pidfd_getfd(0xffffffffffffffff, r5, 0x0)
r7 = io_uring_setup(0x454e, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x3e6, 0x0, r6})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0xb, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x3003, @fd=r7, 0x9, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/53, 0x35}, {&(0x7f0000000300)=""/64, 0x40}, {&(0x7f0000000340)=""/198, 0xc6}, {&(0x7f0000000440)=""/32, 0x20}, {&(0x7f00000004c0)=""/23, 0x17}, {&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f0000000580)=""/39, 0x27}], 0x7, 0x6}, 0x5)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
openat(r1, &(0x7f0000000180)='./file0\x00', 0x20000, 0x110)
r9 = dup3(r2, r3, 0x0)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r9, 0x2, r10)
io_submit(r4, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x200000}])

15:04:13 executing program 6:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
r1 = perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000009c0)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000055040)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x3, "bc386eff17b8c9"})
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000001ec0)=0x80000000, 0x5)
write$binfmt_aout(r5, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x5}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendfile(r5, r0, 0x0, 0xfffffdef)

[  121.795478] loop6: detected capacity change from 0 to 40
[  121.811338] loop7: detected capacity change from 0 to 264192
15:04:13 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r0 = epoll_create(0x4)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
io_setup(0x3ff, &(0x7f0000000140)=<r4=>0x0)
r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r6 = pidfd_getfd(0xffffffffffffffff, r5, 0x0)
r7 = io_uring_setup(0x454e, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x3e6, 0x0, r6})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0xb, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x3003, @fd=r7, 0x9, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/53, 0x35}, {&(0x7f0000000300)=""/64, 0x40}, {&(0x7f0000000340)=""/198, 0xc6}, {&(0x7f0000000440)=""/32, 0x20}, {&(0x7f00000004c0)=""/23, 0x17}, {&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f0000000580)=""/39, 0x27}], 0x7, 0x6}, 0x5)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
openat(r1, &(0x7f0000000180)='./file0\x00', 0x20000, 0x110)
r9 = dup3(r2, r3, 0x0)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r9, 0x2, r10)
io_submit(r4, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x200000}])

[  121.856043] syz-executor.6: attempt to access beyond end of device
[  121.856043] loop6: rw=2049, sector=40, nr_sectors = 4 limit=40
[  121.857042] Buffer I/O error on dev loop6, logical block 10, lost async page write
[  121.865108] loop7: detected capacity change from 0 to 264192
15:04:13 executing program 7:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r0 = epoll_create(0x4)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
io_setup(0x3ff, &(0x7f0000000140)=<r4=>0x0)
r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r6 = pidfd_getfd(0xffffffffffffffff, r5, 0x0)
r7 = io_uring_setup(0x454e, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x3e6, 0x0, r6})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0xb, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x3003, @fd=r7, 0x9, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/53, 0x35}, {&(0x7f0000000300)=""/64, 0x40}, {&(0x7f0000000340)=""/198, 0xc6}, {&(0x7f0000000440)=""/32, 0x20}, {&(0x7f00000004c0)=""/23, 0x17}, {&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f0000000580)=""/39, 0x27}], 0x7, 0x6}, 0x5)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
openat(r1, &(0x7f0000000180)='./file0\x00', 0x20000, 0x110)
r9 = dup3(r2, r3, 0x0)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r9, 0x2, r10)
io_submit(r4, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x200000}])

15:04:13 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r0 = epoll_create(0x4)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
io_setup(0x3ff, &(0x7f0000000140)=<r4=>0x0)
r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80000001}, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
r6 = pidfd_getfd(0xffffffffffffffff, r5, 0x0)
r7 = io_uring_setup(0x454e, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x3e6, 0x0, r6})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r7, 0xb, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x3003, @fd=r7, 0x9, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/53, 0x35}, {&(0x7f0000000300)=""/64, 0x40}, {&(0x7f0000000340)=""/198, 0xc6}, {&(0x7f0000000440)=""/32, 0x20}, {&(0x7f00000004c0)=""/23, 0x17}, {&(0x7f0000000500)=""/109, 0x6d}, {&(0x7f0000000580)=""/39, 0x27}], 0x7, 0x6}, 0x5)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00')
openat(r1, &(0x7f0000000180)='./file0\x00', 0x20000, 0x110)
r9 = dup3(r2, r3, 0x0)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r9, 0x2, r10)
io_submit(r4, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x200000}])

[  122.649701] loop0: detected capacity change from 0 to 256
[  122.651419] FAT-fs (loop0): Unrecognized mount option "smackfstransmute=netdevsim" or missing value
[  122.768402] loop0: detected capacity change from 0 to 256
[  122.769213] FAT-fs (loop0): Unrecognized mount option "smackfstransmute=netdevsim" or missing value
[  123.598972] audit: type=1400 audit(1663772655.042:10): avc:  denied  { checkpoint_restore } for  pid=3983 comm="syz-executor.1" capability=40  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1

VM DIAGNOSIS:
15:04:12  Registers:
info registers vcpu 0
RAX=0000000080000000 RBX=ffff8880184d7600 RCX=0000000000000000 RDX=1ffff11007eea6b4
RSI=ffffffff817c29ca RDI=ffff88803f7535a0 RBP=ffff8880184d6620 RSP=ffff88801b937c88
R8 =0000000000000007 R9 =0000000000000010 R10=ffff8880184d6620 R11=0000000000000001
R12=0000000000000000 R13=ffff8880184d7600 R14=ffff8880184d6620 R15=ffffffff85b05480
RIP=ffffffff81461d27 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fc91593a540 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fc9159ccc70 CR3=00000000407d4000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0070656474666f73 2e73656c75646f6d
YMM01=0000000000000000 0000000000000000 0070656474666f73 2e73656c75646f6d
YMM02=0000000000000000 0000000000000000 0000000000000000 0000ffffffffffff
YMM03=0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff
YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 676f6c206d6f7473 7563000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1c91 RDI=ffffffff87645ba0 RBP=ffffffff87645b60 RSP=ffff888019ea7698
R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001
R12=000000000000002e R13=ffffffff87645b60 R14=0000000000000010 R15=ffffffff822b1c80
RIP=ffffffff822b1ce9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fbc14d35700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f83ec8c1580 CR3=0000000040dee000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007fbc178a67c0 00007fbc178a67c8
YMM02=0000000000000000 0000000000000000 00007fbc178a67e0 00007fbc178a67c0
YMM03=0000000000000000 0000000000000000 00007fbc178a67c8 00007fbc178a67c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000