Warning: Permanently added '[localhost]:8585' (ECDSA) to the list of known hosts.
2022/09/22 22:04:46 fuzzer started
2022/09/22 22:04:46 dialing manager at localhost:40289
syzkaller login: [   43.808794] cgroup: Unknown subsys name 'net'
[   43.894492] cgroup: Unknown subsys name 'rlimit'
2022/09/22 22:05:00 syscalls: 2215
2022/09/22 22:05:00 code coverage: enabled
2022/09/22 22:05:00 comparison tracing: enabled
2022/09/22 22:05:00 extra coverage: enabled
2022/09/22 22:05:00 setuid sandbox: enabled
2022/09/22 22:05:00 namespace sandbox: enabled
2022/09/22 22:05:00 Android sandbox: enabled
2022/09/22 22:05:00 fault injection: enabled
2022/09/22 22:05:00 leak checking: enabled
2022/09/22 22:05:00 net packet injection: enabled
2022/09/22 22:05:00 net device setup: enabled
2022/09/22 22:05:00 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/22 22:05:00 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/22 22:05:00 USB emulation: enabled
2022/09/22 22:05:00 hci packet injection: enabled
2022/09/22 22:05:00 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220921                                          )
2022/09/22 22:05:00 802.15.4 emulation: enabled
2022/09/22 22:05:00 fetching corpus: 50, signal 28774/30540 (executing program)
2022/09/22 22:05:00 fetching corpus: 100, signal 43075/46349 (executing program)
2022/09/22 22:05:00 fetching corpus: 150, signal 50616/55305 (executing program)
2022/09/22 22:05:00 fetching corpus: 200, signal 58121/64136 (executing program)
2022/09/22 22:05:00 fetching corpus: 250, signal 63374/70725 (executing program)
2022/09/22 22:05:00 fetching corpus: 300, signal 71511/79971 (executing program)
2022/09/22 22:05:00 fetching corpus: 350, signal 75016/84706 (executing program)
2022/09/22 22:05:00 fetching corpus: 400, signal 80426/91181 (executing program)
2022/09/22 22:05:01 fetching corpus: 450, signal 83725/95588 (executing program)
2022/09/22 22:05:01 fetching corpus: 500, signal 85569/98630 (executing program)
2022/09/22 22:05:01 fetching corpus: 550, signal 88653/102816 (executing program)
2022/09/22 22:05:01 fetching corpus: 600, signal 91394/106562 (executing program)
2022/09/22 22:05:01 fetching corpus: 650, signal 94948/111024 (executing program)
2022/09/22 22:05:01 fetching corpus: 700, signal 97948/114952 (executing program)
2022/09/22 22:05:01 fetching corpus: 750, signal 100394/118315 (executing program)
2022/09/22 22:05:01 fetching corpus: 800, signal 102019/120876 (executing program)
2022/09/22 22:05:01 fetching corpus: 850, signal 104213/123918 (executing program)
2022/09/22 22:05:02 fetching corpus: 900, signal 107110/127511 (executing program)
2022/09/22 22:05:02 fetching corpus: 950, signal 109316/130551 (executing program)
2022/09/22 22:05:02 fetching corpus: 1000, signal 111536/133533 (executing program)
2022/09/22 22:05:02 fetching corpus: 1050, signal 114122/136800 (executing program)
2022/09/22 22:05:02 fetching corpus: 1100, signal 116987/140229 (executing program)
2022/09/22 22:05:02 fetching corpus: 1150, signal 118055/142231 (executing program)
2022/09/22 22:05:02 fetching corpus: 1200, signal 119884/144763 (executing program)
2022/09/22 22:05:02 fetching corpus: 1250, signal 121192/146834 (executing program)
2022/09/22 22:05:02 fetching corpus: 1300, signal 122676/149086 (executing program)
2022/09/22 22:05:03 fetching corpus: 1350, signal 124764/151769 (executing program)
2022/09/22 22:05:03 fetching corpus: 1400, signal 126442/154000 (executing program)
2022/09/22 22:05:03 fetching corpus: 1450, signal 128253/156368 (executing program)
2022/09/22 22:05:03 fetching corpus: 1500, signal 130005/158652 (executing program)
2022/09/22 22:05:03 fetching corpus: 1550, signal 130973/160348 (executing program)
2022/09/22 22:05:03 fetching corpus: 1600, signal 132150/162218 (executing program)
2022/09/22 22:05:03 fetching corpus: 1650, signal 133361/164027 (executing program)
2022/09/22 22:05:03 fetching corpus: 1700, signal 134232/165604 (executing program)
2022/09/22 22:05:04 fetching corpus: 1750, signal 135236/167225 (executing program)
2022/09/22 22:05:04 fetching corpus: 1800, signal 137388/169711 (executing program)
2022/09/22 22:05:04 fetching corpus: 1850, signal 138768/171611 (executing program)
2022/09/22 22:05:04 fetching corpus: 1900, signal 140949/174043 (executing program)
2022/09/22 22:05:04 fetching corpus: 1950, signal 142503/176001 (executing program)
2022/09/22 22:05:04 fetching corpus: 2000, signal 143412/177448 (executing program)
2022/09/22 22:05:04 fetching corpus: 2050, signal 144858/179252 (executing program)
2022/09/22 22:05:04 fetching corpus: 2100, signal 147150/181615 (executing program)
2022/09/22 22:05:05 fetching corpus: 2150, signal 147828/182867 (executing program)
2022/09/22 22:05:05 fetching corpus: 2200, signal 148552/184164 (executing program)
2022/09/22 22:05:05 fetching corpus: 2250, signal 149314/185410 (executing program)
2022/09/22 22:05:05 fetching corpus: 2300, signal 151014/187211 (executing program)
2022/09/22 22:05:05 fetching corpus: 2350, signal 152561/189071 (executing program)
2022/09/22 22:05:05 fetching corpus: 2400, signal 153692/190504 (executing program)
2022/09/22 22:05:05 fetching corpus: 2450, signal 155021/192097 (executing program)
2022/09/22 22:05:05 fetching corpus: 2500, signal 156676/193811 (executing program)
2022/09/22 22:05:05 fetching corpus: 2550, signal 157900/195279 (executing program)
2022/09/22 22:05:06 fetching corpus: 2600, signal 159622/197080 (executing program)
2022/09/22 22:05:06 fetching corpus: 2650, signal 160521/198340 (executing program)
2022/09/22 22:05:06 fetching corpus: 2700, signal 161118/199411 (executing program)
2022/09/22 22:05:06 fetching corpus: 2750, signal 161618/200418 (executing program)
2022/09/22 22:05:06 fetching corpus: 2800, signal 162324/201496 (executing program)
2022/09/22 22:05:06 fetching corpus: 2850, signal 163240/202687 (executing program)
2022/09/22 22:05:06 fetching corpus: 2900, signal 164176/203887 (executing program)
2022/09/22 22:05:06 fetching corpus: 2950, signal 164587/204803 (executing program)
2022/09/22 22:05:06 fetching corpus: 3000, signal 165780/206077 (executing program)
2022/09/22 22:05:06 fetching corpus: 3050, signal 166349/207148 (executing program)
2022/09/22 22:05:07 fetching corpus: 3100, signal 167514/208364 (executing program)
2022/09/22 22:05:07 fetching corpus: 3150, signal 169247/209918 (executing program)
2022/09/22 22:05:07 fetching corpus: 3200, signal 169792/210841 (executing program)
2022/09/22 22:05:07 fetching corpus: 3250, signal 170850/211980 (executing program)
2022/09/22 22:05:07 fetching corpus: 3300, signal 171301/212862 (executing program)
2022/09/22 22:05:07 fetching corpus: 3350, signal 171949/213781 (executing program)
2022/09/22 22:05:07 fetching corpus: 3400, signal 173054/214948 (executing program)
2022/09/22 22:05:08 fetching corpus: 3450, signal 173828/215882 (executing program)
2022/09/22 22:05:08 fetching corpus: 3500, signal 174620/216791 (executing program)
2022/09/22 22:05:08 fetching corpus: 3550, signal 175484/217687 (executing program)
2022/09/22 22:05:08 fetching corpus: 3600, signal 176119/218584 (executing program)
2022/09/22 22:05:08 fetching corpus: 3650, signal 176667/219405 (executing program)
2022/09/22 22:05:08 fetching corpus: 3700, signal 177480/220357 (executing program)
2022/09/22 22:05:08 fetching corpus: 3750, signal 178000/221062 (executing program)
2022/09/22 22:05:08 fetching corpus: 3800, signal 179135/222074 (executing program)
2022/09/22 22:05:08 fetching corpus: 3850, signal 179809/222898 (executing program)
2022/09/22 22:05:09 fetching corpus: 3900, signal 180426/223677 (executing program)
2022/09/22 22:05:09 fetching corpus: 3950, signal 181067/224455 (executing program)
2022/09/22 22:05:09 fetching corpus: 4000, signal 181492/225143 (executing program)
2022/09/22 22:05:09 fetching corpus: 4050, signal 181947/225907 (executing program)
2022/09/22 22:05:09 fetching corpus: 4100, signal 182968/226809 (executing program)
2022/09/22 22:05:09 fetching corpus: 4150, signal 183838/227763 (executing program)
2022/09/22 22:05:09 fetching corpus: 4200, signal 184456/228472 (executing program)
2022/09/22 22:05:09 fetching corpus: 4250, signal 184925/229194 (executing program)
2022/09/22 22:05:10 fetching corpus: 4300, signal 186048/230182 (executing program)
2022/09/22 22:05:10 fetching corpus: 4350, signal 186934/230947 (executing program)
2022/09/22 22:05:10 fetching corpus: 4400, signal 187885/231719 (executing program)
2022/09/22 22:05:10 fetching corpus: 4450, signal 188266/232330 (executing program)
2022/09/22 22:05:10 fetching corpus: 4500, signal 189249/233109 (executing program)
2022/09/22 22:05:10 fetching corpus: 4550, signal 190637/234088 (executing program)
2022/09/22 22:05:10 fetching corpus: 4600, signal 191759/234824 (executing program)
2022/09/22 22:05:10 fetching corpus: 4650, signal 192639/235482 (executing program)
2022/09/22 22:05:11 fetching corpus: 4700, signal 193202/236051 (executing program)
2022/09/22 22:05:11 fetching corpus: 4750, signal 193582/236586 (executing program)
2022/09/22 22:05:11 fetching corpus: 4800, signal 194032/237076 (executing program)
2022/09/22 22:05:11 fetching corpus: 4850, signal 194769/237662 (executing program)
2022/09/22 22:05:11 fetching corpus: 4900, signal 195489/238530 (executing program)
2022/09/22 22:05:11 fetching corpus: 4950, signal 196164/239096 (executing program)
2022/09/22 22:05:11 fetching corpus: 5000, signal 196571/239573 (executing program)
2022/09/22 22:05:11 fetching corpus: 5050, signal 197160/240118 (executing program)
2022/09/22 22:05:11 fetching corpus: 5100, signal 197971/240684 (executing program)
2022/09/22 22:05:12 fetching corpus: 5150, signal 199135/241249 (executing program)
2022/09/22 22:05:12 fetching corpus: 5200, signal 199792/241761 (executing program)
2022/09/22 22:05:12 fetching corpus: 5250, signal 200451/242270 (executing program)
2022/09/22 22:05:12 fetching corpus: 5300, signal 201007/242702 (executing program)
2022/09/22 22:05:12 fetching corpus: 5350, signal 201573/243175 (executing program)
2022/09/22 22:05:12 fetching corpus: 5400, signal 202225/243637 (executing program)
2022/09/22 22:05:12 fetching corpus: 5450, signal 202803/244049 (executing program)
2022/09/22 22:05:12 fetching corpus: 5500, signal 203759/244536 (executing program)
2022/09/22 22:05:13 fetching corpus: 5550, signal 204622/244996 (executing program)
2022/09/22 22:05:13 fetching corpus: 5600, signal 204976/245393 (executing program)
2022/09/22 22:05:13 fetching corpus: 5650, signal 205519/245784 (executing program)
2022/09/22 22:05:13 fetching corpus: 5700, signal 206050/246205 (executing program)
2022/09/22 22:05:13 fetching corpus: 5750, signal 206845/246636 (executing program)
2022/09/22 22:05:13 fetching corpus: 5800, signal 207559/247019 (executing program)
2022/09/22 22:05:13 fetching corpus: 5850, signal 208301/247392 (executing program)
2022/09/22 22:05:13 fetching corpus: 5900, signal 208828/247748 (executing program)
2022/09/22 22:05:13 fetching corpus: 5950, signal 209428/248107 (executing program)
2022/09/22 22:05:14 fetching corpus: 6000, signal 210827/248386 (executing program)
2022/09/22 22:05:14 fetching corpus: 6050, signal 211673/248411 (executing program)
2022/09/22 22:05:14 fetching corpus: 6100, signal 212066/248473 (executing program)
2022/09/22 22:05:14 fetching corpus: 6150, signal 212431/248475 (executing program)
2022/09/22 22:05:14 fetching corpus: 6200, signal 212878/248626 (executing program)
2022/09/22 22:05:14 fetching corpus: 6250, signal 213365/248650 (executing program)
2022/09/22 22:05:14 fetching corpus: 6300, signal 214191/248659 (executing program)
2022/09/22 22:05:14 fetching corpus: 6350, signal 214686/248679 (executing program)
2022/09/22 22:05:15 fetching corpus: 6400, signal 215188/248715 (executing program)
2022/09/22 22:05:15 fetching corpus: 6450, signal 215765/248715 (executing program)
2022/09/22 22:05:15 fetching corpus: 6500, signal 216056/248719 (executing program)
2022/09/22 22:05:15 fetching corpus: 6550, signal 216909/248721 (executing program)
2022/09/22 22:05:15 fetching corpus: 6600, signal 217561/248796 (executing program)
2022/09/22 22:05:15 fetching corpus: 6650, signal 218133/248862 (executing program)
2022/09/22 22:05:15 fetching corpus: 6700, signal 218672/248862 (executing program)
2022/09/22 22:05:15 fetching corpus: 6741, signal 219159/248924 (executing program)
2022/09/22 22:05:15 fetching corpus: 6741, signal 219159/248924 (executing program)
2022/09/22 22:05:18 starting 8 fuzzer processes
22:05:18 executing program 0:
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)
prctl$PR_GET_KEEPCAPS(0x7)

22:05:18 executing program 1:
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x7ff, 0x6)
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040), 0x420900, 0x0)
ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff)
r1 = open(&(0x7f0000000080)='./file0\x00', 0x484002, 0x80)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c)
r2 = syz_open_dev$vcsn(&(0x7f00000000c0), 0x4, 0xc000)
getdents(r2, &(0x7f0000000100)=""/30, 0x1e)
pipe2(&(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$binfmt_script(r4, &(0x7f0000000180)={'#! ', './file0', [{0x20, '/dev/vcs#\x00'}, {0x20, '/dev/vcs#\x00'}, {0x20, '/dev/vga_arbiter\x00'}], 0xa, "ac524117ad88d0647fab23a64b17ed670edcf427ba4fea76a833adfb56373c694b11c169b46e124de4e5cd36f987f7f78de1ab9c29004da2aca9991fb6a4ebd9661f5541eff088e62b1c95f4b96233f398b96532e5c69113ee672cd844ba08193a60762e98d4371de75f09a377d9039d20d0a711b6aec71810f4c7238d6e3bd872e0f64d5c1528ed2451f0ca61a7ee2ecd8a502ea77045289a4104a4326614b787e9dd38"}, 0xd7)
ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r2, 0xf505, 0x0)
r5 = dup2(r4, r0)
ioctl$CDROMGETSPINDOWN(r3, 0x531d, &(0x7f0000000280))
write$vga_arbiter(r4, &(0x7f00000002c0), 0xf)
ioctl$EVIOCGABS20(r4, 0x80184560, &(0x7f0000000300))
mount_setattr(r5, &(0x7f0000000340)='./file0\x00', 0x1000, &(0x7f0000000380)={0xf0, 0x0, 0x20000, {r2}}, 0x20)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x4040, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r6, &(0x7f0000000400)={0x2000})
ioctl$AUTOFS_IOC_EXPIRE_MULTI(r6, 0x40049366, &(0x7f0000000440))
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000480), 0x200, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r7, 0x400c6615, &(0x7f00000004c0)={0x0, @aes128, 0x0, @desc3})

22:05:18 executing program 2:
r0 = msgget$private(0x0, 0x104)
msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000000)=""/101)
msgsnd(r0, &(0x7f0000000080)={0x0, "fd3b06663c05da44b6856bf502c071d109f94497b9b4b87233cd092e66454bfd47b26ef18f288189f42a6800524f149fc9247a0a79bdaa1f79b12969a1f3a523a6da6c05bf45705a2c13911c69d5f3b12707932474f8b79aa84f7bd391aeedc7b40397952010210c57c3ec0ea419b384"}, 0x78, 0x0)
r1 = msgget$private(0x0, 0x440)
msgctl$IPC_STAT(r1, 0x2, &(0x7f0000000100)=""/28)
r2 = msgget(0x3, 0x4c)
msgrcv(r2, &(0x7f0000000140)={0x0, ""/4096}, 0x1008, 0x3, 0x800)
msgrcv(r1, &(0x7f0000001180)={0x0, ""/181}, 0xbd, 0x1, 0x800)
r3 = msgget(0x0, 0x20)
msgsnd(r3, &(0x7f0000001240)={0x3, "c4b17dc1bf6e93652b7301d92c4d5ccbf35a98fc"}, 0x1c, 0x800)
r4 = msgget$private(0x0, 0x20)
msgctl$IPC_RMID(r4, 0x0)
r5 = msgget(0x0, 0x422)
msgsnd(r5, &(0x7f0000001280)={0x0, "276f7c758fba4005cfcb1cdd8cec485cc5d968ad796a83e9990cc44f2ef6e9484e3187715f9cd9862084a40ed4982fa42ddf343b6b14f512a16cfa7e416a4ad579a9668b602b0ede0a27882d25171050bcb74025a7bf99f66dbf8c856c8384ab86a457d9dbd8a6f70f4297bbf3c687545a9d16fb60a543014463411f9194a2177bc991a23e53c93db6a5dff1cd0f106aacc7ba8b3f72de638b8b8955bfea41e1a1ea1381b4cc25f45261653fc098e1b84045b5f589e0bf0ce216dd44390b3616f3677977e4de15d809b75b86da9a400a2cd40dfbe59051ec80bf666150063bc74028934a"}, 0xec, 0x0)
msgctl$IPC_RMID(r3, 0x0)
msgget$private(0x0, 0x10)
r6 = msgget$private(0x0, 0x10c)
msgctl$MSG_STAT(r6, 0xb, &(0x7f0000001380)=""/37)
msgctl$IPC_RMID(r4, 0x0)
msgctl$MSG_STAT_ANY(0x0, 0xd, &(0x7f00000013c0)=""/105)

22:05:18 executing program 3:
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000000))
sendmsg$NFQNL_MSG_VERDICT(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)={0x150, 0x1, 0x3, 0x301, 0x0, 0x0, {0xc, 0x0, 0x4}, [@NFQA_EXP={0x13c, 0xf, 0x0, 0x1, [@CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x101}, @CTA_EXPECT_MASTER={0x38, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}, @CTA_EXPECT_TUPLE={0x58, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_EXPECT_NAT={0x14, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8}]}, @CTA_EXPECT_MASK={0x14, 0x3, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x5}, @CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_MASK={0x54, 0x3, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0xb2}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010102}, {0x8, 0x2, @broadcast}}}]}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0x3}]}]}, 0x150}, 0x1, 0x0, 0x0, 0x40440c0}, 0x80)
r1 = syz_io_uring_setup(0x779f, &(0x7f0000000280)={0x0, 0x2265, 0x1, 0x1, 0x1c3}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000340))
r3 = syz_io_uring_complete(r2)
r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000380), 0x40000, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f00000003c0)=0x52)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000400)={@mcast1, 0x3, 0x0, 0x0, 0x4, 0x3a12, 0x3}, &(0x7f0000000440)=0x20)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
fsync(r5)
ioctl$TCGETS(r4, 0x5401, &(0x7f0000000480))
ioctl$LOOP_SET_CAPACITY(r4, 0x4c07)
ioctl$TIOCMGET(r3, 0x5415, &(0x7f00000004c0))
mkdirat(r4, &(0x7f0000000500)='./file0\x00', 0x80)
setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0xcd, &(0x7f0000000540)={{0xa, 0x4e23, 0x1, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x33}}, 0x1ff}, {0xa, 0x4e22, 0x8, @mcast1, 0x8}, 0x0, [0x10001, 0x9, 0x4, 0x8000, 0x1, 0x2, 0x2, 0xf]}, 0x5c)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, 0x0, &(0x7f00000005c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x1, 0x0, r5, 0x0, 0x0, 0x0, 0x40000000, 0x1, {0x0, r6}}, 0x80)
io_setup(0xbbfd, &(0x7f0000000600)=<r7=>0x0)
io_submit(r7, 0x0, &(0x7f0000000640))
pwritev(0xffffffffffffffff, &(0x7f00000007c0)=[{&(0x7f00000006c0)="4ea2d0921aa4a375ab65a09967daf0b6ef0a3529c6a638710d94e72c79ad279f0a5b2fcf8f9f7ab2c2c5bc057a35d96ca8ea3e9ac59d4e970f0027acf19659af3624abe793f5183294aceac54bafd806fefc4ec1efb05e380a09ac89aa90b14467d42cc3c22c0a8978358fd28c4066fc7204afcd5db05dd694ca5489085b34d712ddf9f9aeee372eafa3cde845d3394350acac39a316b044d3ba9459c54b32ddd4b9f5930aa79f34af0c39ccbf51b675e6acc810151bc1138f6e2aefd27cd54fd47618ff6444ba9426ac4f86b4a921d747f201ca42bfb4bfeb831cefef2583b17dd902e0a039faee97e417991d3eee17dd472688", 0xf4}], 0x1, 0x9, 0x1)

[   76.029448] audit: type=1400 audit(1663884318.807:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
22:05:18 executing program 4:
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x7fff8)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x4)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x4)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x2)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x7fff8)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x4)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x7fff8)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x4)

22:05:18 executing program 5:
sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x6, 0x1, 0x301, 0x0, 0x0, {0x2, 0x0, 0x3}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x2000c845}, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, 0x2, 0x6, 0x3, 0x0, 0x0, {0xa, 0x0, 0x5}, [@IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x92}, 0x80)
recvmsg$unix(0xffffffffffffffff, &(0x7f00000037c0)={&(0x7f0000000200)=@abs, 0x6e, &(0x7f00000035c0)=[{&(0x7f0000000280)=""/21, 0x15}, {&(0x7f00000002c0)}, {&(0x7f0000000300)=""/71, 0x47}, {&(0x7f0000000380)=""/135, 0x87}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000001440)=""/199, 0xc7}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000002540)=""/4096, 0x1000}, {&(0x7f0000003540)=""/102, 0x66}], 0x9, &(0x7f0000003680)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, <r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff]}}], 0x110}, 0x2a000)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r5, &(0x7f00000038c0)={&(0x7f0000003800)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000003880)={&(0x7f0000003840)={0x34, 0x0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$BATADV_CMD_GET_GATEWAYS(r2, &(0x7f0000003a00)={&(0x7f0000003900)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000039c0)={&(0x7f0000003940)={0x44, 0x0, 0x4, 0x70bd28, 0x25dfdbfc, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xffffffff}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x3}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x6}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x24008040}, 0x24040090)
sendmsg$AUDIT_GET_FEATURE(r4, &(0x7f0000003b00)={&(0x7f0000003a40)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000003ac0)={&(0x7f0000003a80)={0x10, 0x3fb, 0x4, 0x70bd26, 0x25dfdbff, "", ["", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x24008840}, 0x24000844)
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f0000003c40)={&(0x7f0000003b40)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000003c00)={&(0x7f0000003b80)={0x74, 0x0, 0x400, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x38e, 0x44}}}}, [@NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x14, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_SEQ={0x14, 0xa, "776c850cc08b7a51b4f12b94c53c5837"}, @NL80211_ATTR_KEY_TYPE={0x8}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x14, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000003cc0)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_START_NAN(0xffffffffffffffff, &(0x7f0000003d80)={&(0x7f0000003c80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000003d40)={&(0x7f0000003d00)={0x2c, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x6e}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000044}, 0x1)
r7 = openat$sr(0xffffffffffffff9c, &(0x7f0000003dc0), 0x800, 0x0)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r7, &(0x7f0000003f00)={&(0x7f0000003e00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000003ec0)={&(0x7f0000003e40)={0x50, 0x0, 0x8, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x2e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x10}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x4f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1c}]}, 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x41)
sendmsg$TIPC_NL_MEDIA_SET(r3, 0xfffffffffffffffe, 0x81)
recvmmsg$unix(r5, &(0x7f00000071c0)=[{{&(0x7f0000003f40)=@abs, 0x6e, &(0x7f0000004480)=[{&(0x7f0000003fc0)=""/239, 0xef}, {&(0x7f00000040c0)=""/93, 0x5d}, {&(0x7f0000004140)=""/5, 0x5}, {&(0x7f0000004180)=""/127, 0x7f}, {&(0x7f0000004200)=""/225, 0xe1}, {&(0x7f0000004300)=""/29, 0x1d}, {&(0x7f0000004340)=""/153, 0x99}, {&(0x7f0000004400)=""/16, 0x10}, {&(0x7f0000004440)}, {0xfffffffffffffffc}], 0xa, &(0x7f0000004540)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r8=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [<r9=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x130}}, {{&(0x7f0000004680), 0x6e, &(0x7f00000058c0)=[{&(0x7f0000004700)=""/4096, 0x1000}, {&(0x7f0000005700)=""/119, 0x77}, {&(0x7f0000005780)=""/82, 0x52}, {&(0x7f0000005800)=""/24, 0x18}, {&(0x7f0000005840)}, {&(0x7f0000005880)=""/4, 0x4}], 0x6}}, {{&(0x7f0000005940), 0x6e, &(0x7f0000006d80)=[{&(0x7f00000059c0)=""/19, 0x13}, {&(0x7f0000005a00)=""/4096, 0x1000}, {&(0x7f0000006a00)=""/92, 0x5c}, {&(0x7f0000006a80)=""/150, 0x96}, {&(0x7f0000006b40)=""/109, 0x6d}, {&(0x7f0000006bc0)=""/10, 0xa}, {&(0x7f0000006c00)=""/169, 0xa9}, {&(0x7f0000006cc0)=""/143, 0x8f}], 0x8, &(0x7f0000006e00)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000006e40), 0x6e, &(0x7f0000006ec0), 0x0, &(0x7f0000006f00)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}}, {{0x0, 0x0, &(0x7f0000007080)=[{&(0x7f0000006f40)=""/81, 0x51}, {&(0x7f0000006fc0)=""/175, 0xaf}], 0x2, &(0x7f00000070c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [<r10=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}], 0x5, 0x10001, 0x0)
sendmsg$NL80211_CMD_START_AP(r9, &(0x7f0000007c00)={&(0x7f0000007300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000007bc0)={&(0x7f0000007340)={0x864, 0x0, 0x1, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_P2P_OPPPS={0x5}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x1}, @NL80211_ATTR_HE_OBSS_PD={0x34, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0xf}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0xe}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x14}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x4}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x12}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0xf}]}, @acl_policy=[@NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}], @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @beacon=[@NL80211_ATTR_IE_PROBE_RESP={0x52, 0x7f, [@challenge={0x10, 0x1, 0x1}, @prep={0x83, 0x25, @ext={{}, 0x9, 0xff, @device_a, 0xf5, @device_b, 0x3, 0x2, @broadcast, 0x7}}, @prep={0x83, 0x1f, @not_ext={{}, 0x3b, 0x1, @device_b, 0xfbb7, "", 0x2a64, 0x0, @device_a, 0x2}}, @sec_chan_ofs={0x3e, 0x1, 0x3}]}, @NL80211_ATTR_PROBE_RESP={0x557, 0x91, "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"}, @NL80211_ATTR_IE_ASSOC_RESP={0x27, 0x80, [@mic={0x8c, 0x18, {0x7dd, "01f94b09d4b2", @long="cb71b53134eace40575b6065a9d813d1"}}, @mesh_config={0x71, 0x7, {0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0, 0x3, 0x49}}]}, @NL80211_ATTR_FTM_RESPONDER={0x34, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0x2c, 0x2, "6fc04b88ded6654c643275aec7ed4dc615a7bf9697cba35b96ebb8fb80427ec900eff6fbd52e1dec"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}]}, @NL80211_ATTR_IE={0x12a, 0x2a, [@peer_mgmt={0x75, 0x8, {0x1, 0x6, @val, @val=0x10, @void}}, @mesh_id={0x72, 0x6}, @random_vendor={0xdd, 0x4c, "957a73e268ac6fe7f9c291b7ff754a22fb5af116424c180661f346dcbeb1126a75af5ceefc525c76311095946f8852935eb3435d31537fbfef424225c6d27747015c78621befc45694cf6689"}, @ht={0x2d, 0x1a, {0x8000, 0x1, 0x2, 0x0, {0x40, 0x6, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x300, 0x5, 0x9}}, @mic={0x8c, 0x18, {0xa0a, "5051466a7f1f", @long="df79b3680f6fadb55359f6e3896722df"}}, @tim={0x5, 0x86, {0x3, 0x3, 0x7, "d21895a15c75ff1b4a7423fd278735f4efedd865f961ef125482973ad65d52ce8e6a9258f4c6bc02ae810a61200e2179ba448ec81d7cdeec41609402304e29caba5c94ef9013adb323cb250ec53bc99cbc606e9334ebee2ca1de8915d6e939e2cf2c59c2cfed993d5991a7e3c1ca39b9f5b5bea47ecc5f881230078e9be809701e306b"}}, @mesh_chsw={0x76, 0x6, {0xbf, 0x20, 0x0, 0x179}}]}, @NL80211_ATTR_BEACON_TAIL={0x80, 0xf, [@measure_req={0x26, 0x71, {0x7, 0x0, 0x0, "992744ec843b505e336f32e63ed058872f49c11f479ba41ff874250d257b401c2b1c38316ef8e9f9af428e63c2e296a8fe745340b689f3a6aa1faa5244251e40a3988394b05244ef11fbf3d5a2bd2ed0cce0277bb67edd082e43f284970cb94c896853376dea63f588a09c1c5d02"}}, @mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x1, 0x1, 0xffffffffffffffff, 0x2, 0xff}}]}, @NL80211_ATTR_IE={0xd, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0xc0, 0x40, 0x7}}, @sec_chan_ofs={0x3e, 0x1, 0x1}]}, @NL80211_ATTR_IE_ASSOC_RESP={0x13, 0x80, [@ibss={0x6, 0x2, 0x7fff}, @mesh_chsw={0x76, 0x6, {0x1, 0x8, 0x1e, 0x5}}, @erp={0x2a, 0x1, {0x1, 0x0, 0x1}}]}], @NL80211_ATTR_SSID={0x14, 0x34, @random="9fca188ac05b5ecc5d649d9469ad0995"}]}, 0x864}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r8, 0xc0189377, &(0x7f0000007c40)={{0x1, 0x1, 0x18, <r11=>r10, {0x3, 0x8}}, './file0\x00'})
ioctl$F2FS_IOC_RESIZE_FS(r11, 0x4008f510, &(0x7f0000007c80)=0x9)
r12 = openat$bsg(0xffffffffffffff9c, &(0x7f0000007cc0), 0x218000, 0x0)
sendmsg$GTP_CMD_NEWPDP(r12, &(0x7f0000007dc0)={&(0x7f0000007d00), 0xc, &(0x7f0000007d80)={&(0x7f0000007d40)={0x24, 0x0, 0x8, 0x70bd2d, 0x25dfdbfc, {}, [@GTPA_LINK={0x8}, @GTPA_NET_NS_FD={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0xe47407a182e7dd8a}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000007e40)={'wpan3\x00', <r13=>0x0})
sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000007f00)={&(0x7f0000007e00)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000007ec0)={&(0x7f0000007e80)={0x24, 0x0, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r13}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x4040804)

22:05:18 executing program 6:
getrlimit(0xe, &(0x7f0000000000))
prlimit64(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0xffff, 0x9}, &(0x7f0000000080))
prlimit64(0xffffffffffffffff, 0x9, &(0x7f00000000c0)={0x7fffffff, 0x3f}, &(0x7f0000000100))
prlimit64(0x0, 0xa, 0x0, &(0x7f0000000140))
prlimit64(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0xa990, 0x3}, 0x0)
getrlimit(0x0, &(0x7f00000001c0))
prlimit64(0x0, 0xa, &(0x7f0000000200)={0x3, 0x40}, &(0x7f0000000240))
getrlimit(0x3, &(0x7f0000000280))
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
prlimit64(0xffffffffffffffff, 0x9, &(0x7f00000002c0)={0xfffffffffffffff9, 0x5}, &(0x7f0000000300))
clone3(&(0x7f0000001480)={0x40000000, &(0x7f0000000340), &(0x7f0000000380)=<r1=>0x0, &(0x7f00000003c0)=<r2=>0x0, {0x3c}, &(0x7f0000000400)=""/4096, 0x1000, &(0x7f0000001400)=""/45, &(0x7f0000001440)=[0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x5}, 0x58)
prlimit64(r1, 0x2, &(0x7f0000001500)={0x5, 0x22e}, &(0x7f0000001540))
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000001580)=<r3=>0x0)
prlimit64(r3, 0x7, &(0x7f00000015c0)={0x8, 0x1}, &(0x7f0000001600))
prlimit64(r1, 0x6, &(0x7f0000001640)={0x2c925677, 0x6fa}, &(0x7f0000001680))
getrlimit(0xe, &(0x7f00000016c0))
prlimit64(r2, 0xa, &(0x7f0000001700)={0x3, 0x9}, &(0x7f0000001740))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001780)={<r4=>0x0}, &(0x7f00000017c0)=0xc)
prlimit64(r4, 0x5, &(0x7f0000001800)={0xe50c, 0x200}, &(0x7f0000001840))
prlimit64(0x0, 0x3, &(0x7f0000001900)={0xfffffffffffeffff, 0xffffffffffffff00}, &(0x7f0000001940))

22:05:18 executing program 7:
r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x208, 0x70bd27, 0x25dfdbfb, {}, [""]}, 0x1c}}, 0x44000)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x871010}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x58, r1, 0x200, 0x70bd25, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @loopback}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x48084}, 0x4000000)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x7c, r2, 0x8, 0x70bd2a, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x81}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@private=0xa010102}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x4e}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'dh\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xcc97}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4}, 0x4008804)
sendmsg$IPVS_CMD_GET_DAEMON(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x28, r2, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x26000011}, 0x44000)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f00000005c0)={0xe0, r3, 0x20, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @remote}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xff}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x2f}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x1, 0x34}}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}]}, @IPVS_CMD_ATTR_SERVICE={0x34, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffffff44}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20044010}, 0x11)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000780), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x24, r4, 0x400, 0x70bd25, 0x25dfdbfc, {{}, {}, {0x8, 0x11, 0x1000}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8004}, 0x0)
sendmsg$IPVS_CMD_NEW_SERVICE(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x1c, r3, 0x10, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}]}, 0x1c}}, 0x40000)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000980), 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000009c0)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff}, './file0\x00'})
sendmsg$ETHTOOL_MSG_WOL_GET(r5, &(0x7f0000000ac0)={&(0x7f0000000a00), 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x40, 0x0, 0x2, 0x70bd28, 0x25dfdbff, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000080}, 0x1)
r6 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000b40), 0x600000, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), r6)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r6, &(0x7f0000000d00)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000bc0)={0xd8, r7, 0x2, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x100}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x40}, @NL80211_ATTR_SSID={0xa, 0x34, @random="7c337dc337aa"}, @NL80211_ATTR_IE={0x26, 0x2a, [@challenge={0x10, 0x1, 0x77}, @cf={0x4, 0x6, {0x96, 0x4, 0x7, 0x7ff}}, @mesh_config={0x71, 0x7, {0x3, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x7}}, @channel_switch={0x25, 0x3, {0x0, 0xb1, 0x3}}, @mesh_config={0x71, 0x7, {0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x28}}]}, @NL80211_ATTR_IE={0x61, 0x2a, [@perr={0x84, 0x22, {0x4, 0x2, [@ext={{}, @broadcast, 0x8, @broadcast, 0x23}, @not_ext={{}, @broadcast, 0x80000000, "", 0x19}]}}, @mesh_chsw={0x76, 0x6, {0x2e, 0x3, 0x3b, 0x700}}, @ssid={0x0, 0x6, @default_ibss_ssid}, @link_id={0x65, 0x12, {@from_mac, @device_a, @device_b}}, @channel_switch={0x25, 0x3, {0x1, 0xb3, 0x65}}, @mesh_id={0x72, 0x6}, @mesh_chsw={0x76, 0x6, {0xa8, 0x9, 0x22, 0x1}}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000000)
r8 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000d80), r5)
sendmsg$IPVS_CMD_GET_DAEMON(r6, &(0x7f0000000e80)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x74, r8, 0x2, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x6c}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}]}, @IPVS_CMD_ATTR_SERVICE={0x44, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}]}, 0x74}, 0x1, 0x0, 0x0, 0x40000}, 0x8001)

[   77.299642] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.302905] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.305480] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.309228] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.312060] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   77.314447] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.320056] Bluetooth: hci0: HCI_REQ-0x0c1a
[   77.360286] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   77.362182] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   77.365838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   77.367190] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   77.370336] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   77.371535] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   77.388832] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   77.390910] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   77.391091] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   77.393630] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   77.394175] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   77.396232] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   77.416954] Bluetooth: hci2: HCI_REQ-0x0c1a
[   77.419657] Bluetooth: hci1: HCI_REQ-0x0c1a
[   77.420024] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   77.422136] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   77.423925] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   77.425510] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   77.427212] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   77.428301] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   77.429411] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   77.430630] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   77.431844] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   77.433748] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   77.435932] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   77.437290] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   77.446058] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   77.447459] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   77.449819] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   77.452504] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   77.452921] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   77.454985] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   77.456614] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   77.458138] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   77.459825] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   77.462674] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   77.465303] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   77.467411] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   77.472622] Bluetooth: hci5: HCI_REQ-0x0c1a
[   77.473472] Bluetooth: hci6: HCI_REQ-0x0c1a
[   77.478598] Bluetooth: hci3: HCI_REQ-0x0c1a
[   77.482232] Bluetooth: hci4: HCI_REQ-0x0c1a
[   79.383925] Bluetooth: hci0: command 0x0409 tx timeout
[   79.448077] Bluetooth: hci1: command 0x0409 tx timeout
[   79.511657] Bluetooth: hci6: command 0x0409 tx timeout
[   79.511705] Bluetooth: hci5: command 0x0409 tx timeout
[   79.512240] Bluetooth: hci3: command 0x0409 tx timeout
[   79.512982] Bluetooth: hci2: command 0x0409 tx timeout
[   79.513567] Bluetooth: hci4: command 0x0409 tx timeout
[   79.575617] Bluetooth: hci7: Opcode 0x c03 failed: -110
[   81.431637] Bluetooth: hci0: command 0x041b tx timeout
[   81.495691] Bluetooth: hci1: command 0x041b tx timeout
[   81.559734] Bluetooth: hci4: command 0x041b tx timeout
[   81.560766] Bluetooth: hci2: command 0x041b tx timeout
[   81.561658] Bluetooth: hci3: command 0x041b tx timeout
[   81.562384] Bluetooth: hci5: command 0x041b tx timeout
[   81.563135] Bluetooth: hci6: command 0x041b tx timeout
[   83.479652] Bluetooth: hci0: command 0x040f tx timeout
[   83.543602] Bluetooth: hci1: command 0x040f tx timeout
[   83.607691] Bluetooth: hci6: command 0x040f tx timeout
[   83.607724] Bluetooth: hci5: command 0x040f tx timeout
[   83.608144] Bluetooth: hci3: command 0x040f tx timeout
[   83.608581] Bluetooth: hci2: command 0x040f tx timeout
[   83.608982] Bluetooth: hci4: command 0x040f tx timeout
[   84.759610] Bluetooth: hci7: Opcode 0x c03 failed: -110
[   85.527648] Bluetooth: hci0: command 0x0419 tx timeout
[   85.591606] Bluetooth: hci1: command 0x0419 tx timeout
[   85.655661] Bluetooth: hci2: command 0x0419 tx timeout
[   85.656144] Bluetooth: hci4: command 0x0419 tx timeout
[   85.656583] Bluetooth: hci3: command 0x0419 tx timeout
[   85.657006] Bluetooth: hci5: command 0x0419 tx timeout
[   85.657421] Bluetooth: hci6: command 0x0419 tx timeout
[   87.370342] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   87.378821] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   87.379999] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   87.384135] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   87.387673] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   87.388980] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   87.394165] Bluetooth: hci7: HCI_REQ-0x0c1a
[   89.431756] Bluetooth: hci7: command 0x0409 tx timeout
[   91.479644] Bluetooth: hci7: command 0x041b tx timeout
[   93.527640] Bluetooth: hci7: command 0x040f tx timeout
[   95.575600] Bluetooth: hci7: command 0x0419 tx timeout
[  130.945842] mmap: syz-executor.6 (3781): VmData 37646336 exceed data ulimit 5. Update limits or use boot option ignore_rlimit_data.
22:06:31 executing program 0:
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x800000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2bca}, 0x0, 0xf, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
chmod(&(0x7f0000000580)='./file0\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_targets\x00')
write$P9_RWSTAT(r1, &(0x7f0000000080)={0x7, 0x7f, 0x1}, 0x7)

22:06:31 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000180)={0xffffffffffffffff, 0xfffffffffffffff8, 0x2, 0xfffffffffffffff7})
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
writev(r2, &(0x7f0000001880)=[{&(0x7f0000000480)="9b3e", 0x2}], 0x1)
syz_open_dev$tty1(0xc, 0x4, 0x1)
fallocate(r1, 0x0, 0x0, 0x87ffffc)
ioctl$VT_SETMODE(r1, 0x5602, &(0x7f00000001c0)={0xff, 0x3, 0xb08, 0x1f, 0x81})
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
openat(r1, &(0x7f0000000000)='./file1\x00', 0x200002, 0x1e1)
ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f0000000200)={0x1f3, 0x17, &(0x7f0000000780)})
open(&(0x7f0000000240)='./file1\x00', 0x6200c0, 0x0)
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
socket$netlink(0x10, 0x3, 0x10)
r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000580))

22:06:31 executing program 7:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000440)={0x38, r0, 0xe10, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x647, 0x54}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x400}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x8008000}, 0x804)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000014a00))

22:06:31 executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f00000002c0))
ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000040)=0x4)
r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x5fc, 0x480080)
ioctl$KIOCSOUND(r1, 0x4b2f, 0xff)

22:06:31 executing program 5:
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x200000, 0xd, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736616e0ca00088020000400000004f80000200040000300000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60}, {&(0x7f0000010100)='RRaA\x00'/32, 0x20, 0x800}, {&(0x7f0000010200)="00000000727241610100000007000000000000000000000000000000000055aa", 0x20, 0x9e0}, {&(0x7f0000010300)="601c6d6b646f736616e0ca00088020000400000004f80000200040000300000000000000010000000000000002000000010006000000000000000000000000008000"/96, 0x60, 0x3000}, {&(0x7f0000010400)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10000}, {&(0x7f0000010500)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x10800}, {&(0x7f0000010600)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x11000}, {&(0x7f0000010700)="f8ffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0fffffff0f", 0x20, 0x11800}, {&(0x7f0000010800)="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", 0x120, 0x12000}, {&(0x7f0000010a00)="2e20202020202020202020100061ec70325132510000ec7032510300000000002e2e202020202020202020100061ec70325132510000ec70325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200061ec70325132510000ec70325104001a040000", 0x80, 0x52000}, {&(0x7f0000010b00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x92000}, {&(0x7f0000011000)='syzkallers\x00'/32, 0x20, 0xd2000}, {&(0x7f0000011100)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x152000}], 0x0, &(0x7f0000011200))
r1 = signalfd4(r0, &(0x7f00000000c0)={[0x4]}, 0x8, 0x80800)
openat(r1, &(0x7f0000000140)='./file0\x00', 0x10000, 0x6)
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
openat(r2, &(0x7f0000000080)='./file0\x00', 0x400000, 0x8)

22:06:31 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7e7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x9, &(0x7f0000000140)=<r1=>0x0)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0)
io_submit(r1, 0x1, &(0x7f00000005c0)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0xfffe, r2, &(0x7f00000001c0)=')', 0x1}])
openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(0xffffffffffffffff, 0x6628)
r3 = eventfd2(0x7, 0x0)
io_submit(0x0, 0x3, &(0x7f0000000680)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x2, 0x0, r0, &(0x7f0000000800)="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", 0x19f, 0x0, 0x0, 0x2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x9, 0xffffffffffffffff, &(0x7f00000004c0)="5f09eda9d8ec8a64bcaf4599383b0ef005af8cb27aa7129f04d58bce0200945d6bd69667173af06e0abbae0c7010d8a68277ff3ffb40743f9c5d0441b04d1797d1fa06693da25b3ac7a148150b34dc6e86f2a8f0d89e62df33b10230166aad9aebfc89c7bb354bf3cb6939f2900841c466933afad7fb87ce2ba5e9ca52efdaec7d41689986caf365d4928c69d29c0a11f906986074aaf940da7a979ff413d07e23f0bbd6a2aa9ba3b19df6154c9c78b1cb2940112c3d202beed36a1b7740cd38ee", 0xc1, 0x8, 0x0, 0x2, r3}, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x5, 0x2, r2, &(0x7f0000000600), 0x0, 0x8}])
clock_gettime(0x0, &(0x7f0000000600)={<r4=>0x0, <r5=>0x0})
io_pgetevents(0x0, 0x10000, 0x3, &(0x7f0000000780)=[{}, {}, {}], &(0x7f0000000740)={r4, r5+60000000}, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={<r7=>0xffffffffffffffff})
close(r7)
write(0xffffffffffffffff, &(0x7f0000000080)="01", 0x41030)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'syz_tun\x00'})
read$hiddev(r6, &(0x7f0000000040)=""/169, 0x200000e9)
syz_open_procfs(0x0, &(0x7f0000000000)='net/softnet_stat\x00')

[  149.085207] audit: type=1400 audit(1663884391.863:7): avc:  denied  { open } for  pid=3976 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  149.087997] audit: type=1400 audit(1663884391.863:8): avc:  denied  { kernel } for  pid=3976 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  149.100160] loop5: detected capacity change from 0 to 5408
[  149.107691] ------------[ cut here ]------------
[  149.107725] 
[  149.107730] ======================================================
[  149.107737] WARNING: possible circular locking dependency detected
[  149.107744] 6.0.0-rc6-next-20220921 #1 Not tainted
[  149.107756] ------------------------------------------------------
[  149.107762] syz-executor.4/3984 is trying to acquire lock:
[  149.107774] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  149.107844] 
[  149.107844] but task is already holding lock:
[  149.107851] ffff88800eaa1c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  149.107928] 
[  149.107928] which lock already depends on the new lock.
[  149.107928] 
[  149.107935] 
[  149.107935] the existing dependency chain (in reverse order) is:
[  149.107941] 
[  149.107941] -> #3 (&ctx->lock){....}-{2:2}:
[  149.107968]        _raw_spin_lock+0x2a/0x40
[  149.108005]        __perf_event_task_sched_out+0x53b/0x18d0
[  149.108030]        __schedule+0xedd/0x2470
[  149.108055]        schedule+0xda/0x1b0
[  149.108080]        futex_wait_queue+0xf5/0x1e0
[  149.108102]        futex_wait+0x28e/0x690
[  149.108121]        do_futex+0x2ff/0x380
[  149.108139]        __x64_sys_futex+0x1c6/0x4d0
[  149.108158]        do_syscall_64+0x3b/0x90
[  149.108191]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.108213] 
[  149.108213] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  149.108239]        _raw_spin_lock_nested+0x30/0x40
[  149.108276]        raw_spin_rq_lock_nested+0x1e/0x30
[  149.108300]        task_fork_fair+0x63/0x4d0
[  149.108335]        sched_cgroup_fork+0x3d0/0x540
[  149.108363]        copy_process+0x4183/0x6e20
[  149.108382]        kernel_clone+0xe7/0x890
[  149.108401]        user_mode_thread+0xad/0xf0
[  149.108421]        rest_init+0x24/0x250
[  149.108441]        arch_call_rest_init+0xf/0x14
[  149.108472]        start_kernel+0x4c1/0x4e6
[  149.108499]        secondary_startup_64_no_verify+0xe0/0xeb
[  149.108526] 
[  149.108526] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  149.108553]        _raw_spin_lock_irqsave+0x39/0x60
[  149.108590]        try_to_wake_up+0xab/0x1930
[  149.108616]        up+0x75/0xb0
[  149.108643]        __up_console_sem+0x6e/0x80
[  149.108675]        console_unlock+0x46a/0x590
[  149.108707]        do_con_write+0xc05/0x1d50
[  149.108729]        con_write+0x21/0x40
[  149.108748]        n_tty_write+0x4d4/0xfe0
[  149.108774]        file_tty_write.constprop.0+0x49c/0x8f0
[  149.108798]        vfs_write+0x9c3/0xd90
[  149.108835]        ksys_write+0x127/0x250
[  149.108880]        do_syscall_64+0x3b/0x90
[  149.108916]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.108938] 
[  149.108938] -> #0 ((console_sem).lock){....}-{2:2}:
[  149.108966]        __lock_acquire+0x2a02/0x5e70
[  149.109000]        lock_acquire+0x1a2/0x530
[  149.109032]        _raw_spin_lock_irqsave+0x39/0x60
[  149.109069]        down_trylock+0xe/0x70
[  149.109097]        __down_trylock_console_sem+0x3b/0xd0
[  149.109129]        vprintk_emit+0x16b/0x560
[  149.109163]        vprintk+0x84/0xa0
[  149.109196]        _printk+0xba/0xf1
[  149.109215]        report_bug.cold+0x72/0xab
[  149.109247]        handle_bug+0x3c/0x70
[  149.109279]        exc_invalid_op+0x14/0x50
[  149.109311]        asm_exc_invalid_op+0x16/0x20
[  149.109332]        group_sched_out.part.0+0x2c7/0x460
[  149.109353]        ctx_sched_out+0x8f1/0xc10
[  149.109373]        __perf_event_task_sched_out+0x6d0/0x18d0
[  149.109397]        __schedule+0xedd/0x2470
[  149.109422]        schedule+0xda/0x1b0
[  149.109447]        futex_wait_queue+0xf5/0x1e0
[  149.109467]        futex_wait+0x28e/0x690
[  149.109486]        do_futex+0x2ff/0x380
[  149.109504]        __x64_sys_futex+0x1c6/0x4d0
[  149.109523]        do_syscall_64+0x3b/0x90
[  149.109555]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.109577] 
[  149.109577] other info that might help us debug this:
[  149.109577] 
[  149.109582] Chain exists of:
[  149.109582]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  149.109582] 
[  149.109612]  Possible unsafe locking scenario:
[  149.109612] 
[  149.109616]        CPU0                    CPU1
[  149.109621]        ----                    ----
[  149.109625]   lock(&ctx->lock);
[  149.109636]                                lock(&rq->__lock);
[  149.109649]                                lock(&ctx->lock);
[  149.109661]   lock((console_sem).lock);
[  149.109673] 
[  149.109673]  *** DEADLOCK ***
[  149.109673] 
[  149.109677] 2 locks held by syz-executor.4/3984:
[  149.109690]  #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  149.109746]  #1: ffff88800eaa1c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  149.109801] 
[  149.109801] stack backtrace:
[  149.109806] CPU: 1 PID: 3984 Comm: syz-executor.4 Not tainted 6.0.0-rc6-next-20220921 #1
[  149.109830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  149.109846] Call Trace:
[  149.109854]  <TASK>
[  149.109865]  dump_stack_lvl+0x8b/0xb3
[  149.109907]  check_noncircular+0x263/0x2e0
[  149.109965]  ? format_decode+0x26c/0xb50
[  149.109996]  ? print_circular_bug+0x450/0x450
[  149.110031]  ? enable_ptr_key_workfn+0x20/0x20
[  149.110063]  ? format_decode+0x26c/0xb50
[  149.110096]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  149.110132]  __lock_acquire+0x2a02/0x5e70
[  149.110176]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  149.110221]  lock_acquire+0x1a2/0x530
[  149.110255]  ? down_trylock+0xe/0x70
[  149.110288]  ? lock_release+0x750/0x750
[  149.110330]  ? vprintk+0x84/0xa0
[  149.110366]  _raw_spin_lock_irqsave+0x39/0x60
[  149.110404]  ? down_trylock+0xe/0x70
[  149.110435]  down_trylock+0xe/0x70
[  149.110465]  ? vprintk+0x84/0xa0
[  149.110500]  __down_trylock_console_sem+0x3b/0xd0
[  149.110535]  vprintk_emit+0x16b/0x560
[  149.110574]  vprintk+0x84/0xa0
[  149.110610]  _printk+0xba/0xf1
[  149.110631]  ? record_print_text.cold+0x16/0x16
[  149.110660]  ? report_bug.cold+0x66/0xab
[  149.110695]  ? group_sched_out.part.0+0x2c7/0x460
[  149.110718]  report_bug.cold+0x72/0xab
[  149.110753]  handle_bug+0x3c/0x70
[  149.110787]  exc_invalid_op+0x14/0x50
[  149.110822]  asm_exc_invalid_op+0x16/0x20
[  149.110845] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  149.110883] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  149.110916] RSP: 0018:ffff888041b678f8 EFLAGS: 00010006
[  149.110941] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  149.110956] RDX: ffff888041498000 RSI: ffffffff815663a7 RDI: 0000000000000005
[  149.110971] RBP: ffff888020620000 R08: 0000000000000005 R09: 0000000000000001
[  149.110985] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff88800eaa1c00
[  149.111000] R13: ffff88806cf3d140 R14: ffffffff8547cf80 R15: 0000000000000002
[  149.111022]  ? group_sched_out.part.0+0x2c7/0x460
[  149.111049]  ? group_sched_out.part.0+0x2c7/0x460
[  149.111074]  ctx_sched_out+0x8f1/0xc10
[  149.111099]  __perf_event_task_sched_out+0x6d0/0x18d0
[  149.111130]  ? lock_is_held_type+0xd7/0x130
[  149.111155]  ? __perf_cgroup_move+0x160/0x160
[  149.111179]  ? set_next_entity+0x304/0x550
[  149.111219]  ? lock_is_held_type+0xd7/0x130
[  149.111244]  __schedule+0xedd/0x2470
[  149.111276]  ? io_schedule_timeout+0x150/0x150
[  149.111305]  ? futex_wait_setup+0x166/0x230
[  149.111333]  schedule+0xda/0x1b0
[  149.111361]  futex_wait_queue+0xf5/0x1e0
[  149.111385]  futex_wait+0x28e/0x690
[  149.111409]  ? futex_wait_setup+0x230/0x230
[  149.111435]  ? wake_up_q+0x8b/0xf0
[  149.111462]  ? do_raw_spin_unlock+0x4f/0x220
[  149.111501]  ? futex_wake+0x158/0x490
[  149.111533]  ? fd_install+0x1f9/0x640
[  149.111566]  do_futex+0x2ff/0x380
[  149.111587]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  149.111618]  __x64_sys_futex+0x1c6/0x4d0
[  149.111643]  ? __x64_sys_futex_time32+0x480/0x480
[  149.111668]  ? syscall_enter_from_user_mode+0x1d/0x50
[  149.111693]  ? syscall_enter_from_user_mode+0x1d/0x50
[  149.111721]  do_syscall_64+0x3b/0x90
[  149.111756]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.111779] RIP: 0033:0x7f1d39ee2b19
[  149.111795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  149.111816] RSP: 002b:00007f1d37458218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  149.111838] RAX: ffffffffffffffda RBX: 00007f1d39ff5f68 RCX: 00007f1d39ee2b19
[  149.111856] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1d39ff5f68
[  149.111877] RBP: 00007f1d39ff5f60 R08: 0000000000000000 R09: 0000000000000000
[  149.111898] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1d39ff5f6c
[  149.111913] R13: 00007fff4de16eff R14: 00007f1d37458300 R15: 0000000000022000
[  149.111938]  </TASK>
[  149.223380] WARNING: CPU: 1 PID: 3984 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  149.224638] Modules linked in:
[  149.225108] CPU: 1 PID: 3984 Comm: syz-executor.4 Not tainted 6.0.0-rc6-next-20220921 #1
[  149.226226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  149.227736] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  149.228501] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  149.230992] RSP: 0018:ffff888041b678f8 EFLAGS: 00010006
[  149.231718] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  149.232690] RDX: ffff888041498000 RSI: ffffffff815663a7 RDI: 0000000000000005
[  149.233690] RBP: ffff888020620000 R08: 0000000000000005 R09: 0000000000000001
[  149.234691] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff88800eaa1c00
[  149.235658] R13: ffff88806cf3d140 R14: ffffffff8547cf80 R15: 0000000000000002
[  149.236632] FS:  00007f1d37458700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  149.237749] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  149.238566] CR2: 00007f92235d8108 CR3: 000000001e458000 CR4: 0000000000350ee0
[  149.239547] Call Trace:
[  149.239922]  <TASK>
[  149.240242]  ctx_sched_out+0x8f1/0xc10
[  149.240785]  __perf_event_task_sched_out+0x6d0/0x18d0
[  149.241526]  ? lock_is_held_type+0xd7/0x130
[  149.242149]  ? __perf_cgroup_move+0x160/0x160
[  149.242772]  ? set_next_entity+0x304/0x550
[  149.243384]  ? lock_is_held_type+0xd7/0x130
[  149.243988]  __schedule+0xedd/0x2470
[  149.244513]  ? io_schedule_timeout+0x150/0x150
[  149.245174]  ? futex_wait_setup+0x166/0x230
[  149.245769]  schedule+0xda/0x1b0
[  149.246290]  futex_wait_queue+0xf5/0x1e0
[  149.246846]  futex_wait+0x28e/0x690
[  149.247364]  ? futex_wait_setup+0x230/0x230
[  149.247969]  ? wake_up_q+0x8b/0xf0
[  149.248467]  ? do_raw_spin_unlock+0x4f/0x220
[  149.249117]  ? futex_wake+0x158/0x490
[  149.249669]  ? fd_install+0x1f9/0x640
[  149.250241]  do_futex+0x2ff/0x380
[  149.250730]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  149.251534]  __x64_sys_futex+0x1c6/0x4d0
[  149.252115]  ? __x64_sys_futex_time32+0x480/0x480
[  149.252779]  ? syscall_enter_from_user_mode+0x1d/0x50
[  149.253513]  ? syscall_enter_from_user_mode+0x1d/0x50
[  149.254257]  do_syscall_64+0x3b/0x90
[  149.254787]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  149.255499] RIP: 0033:0x7f1d39ee2b19
[  149.256025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  149.258501] RSP: 002b:00007f1d37458218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  149.259541] RAX: ffffffffffffffda RBX: 00007f1d39ff5f68 RCX: 00007f1d39ee2b19
[  149.260512] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f1d39ff5f68
[  149.261503] RBP: 00007f1d39ff5f60 R08: 0000000000000000 R09: 0000000000000000
[  149.262518] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1d39ff5f6c
[  149.263488] R13: 00007fff4de16eff R14: 00007f1d37458300 R15: 0000000000022000
[  149.264466]  </TASK>
[  149.264792] irq event stamp: 454
[  149.265284] hardirqs last  enabled at (453): [<ffffffff8424ffad>] syscall_enter_from_user_mode+0x1d/0x50
[  149.266583] hardirqs last disabled at (454): [<ffffffff84259305>] __schedule+0x1225/0x2470
[  149.267717] softirqs last  enabled at (324): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  149.268885] softirqs last disabled at (289): [<ffffffff811709ab>] __irq_exit_rcu+0x11b/0x180
[  149.270092] ---[ end trace 0000000000000000 ]---
[  149.284068] loop7: detected capacity change from 0 to 4096
[  149.302193] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[  149.315483] loop7: detected capacity change from 0 to 4096
[  149.322448] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
22:06:32 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x9d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000000040)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, 0x0)
sendfile(0xffffffffffffffff, r1, 0x0, 0xfffffdef)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001500)=ANY=[@ANYBLOB="25000000b99687247b92d21fc5eea6cadce4b21c80390c962a749dc66788d2a0f8122b06a6d0b452282bf159b83478b803bc1801850fce89d09cd48b245f5a2b2a75be6a5256c0f6ea8b4ae1587f867f55e75c4c21bb41d111918e944c114a8efa1d34b46f1d994fdde3f50457ba36804ef5b157c50ba760b8d1518c44a6358a7b2a927cc1012fb6eb6ca7f20b25314e631cba80957b26daa3676f12247d2e7dbdbb6014b1cc09815fcae4410c91f94c86399346bf0cd3eb1af35485248949e6f415b9546cc39a2c1b7b564be1016fbc9be71a20b48744127d64c1c257cce5f14648538586242fc0eda780ca", @ANYRES16=0x0, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=0x0, @ANYBLOB='\b\x00\f\x00d\x00\x00\x00\b\x00\r\x00\x00\x00\x00\x00'], 0x2c}}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000300)={<r4=>0x0, ""/256, 0x0, <r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000005c0)={<r6=>0x0})
fsetxattr(0xffffffffffffffff, &(0x7f0000000240)=@random={'osx.', 'vfat\x00'}, &(0x7f0000001640)='*\x00', 0x2, 0x2)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000050500)={<r7=>0x0, 0x0, "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", "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"})
r8 = perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000001800), 0xd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r8, 0xd000943d, &(0x7f0000070280)={0x0, [{}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}], 0x5, "af2f1a9317bc6f"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r3, 0xd000943e, &(0x7f0000000500)={r5, r6, "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", "fd50a70ad273da568f2d3156767ad6ea697adc2b28f091bc721198a5082ad92c1ebbcacdd0ac79f97f8a5e2b04dc9068e02ad15cef8a5df25616cdbadeebbb8e3dbe5c25d82d9a8f898e45ba244302200db41fa9a247e36f91d4eb549dbeabf0d10baf8afed73e42d49b9980291c1acf3417cc1d089dd3d9d7e514c9f1ce1b33fd41dcba48a918bd99765a5c8c30a8705c3053e518dd275e6c437ac9a65e09469636160fae9bddafe01fe6599977c4f495710e9a080a08e992ede79e3eb48cec57ef1745eaee0f3babf8ad7a5c631cb0eed5aace15592947c78435882e47daf310b4790eadfd34e623042d9faa4683313a70a3ce2ce8e854f96326fb375a5cc65c068e4bcc3d4ca95786e8babce89feeb2f0ef04848aa49e083cca1b0d82e990e4a170387bcab66b87cb81aff4e4efb369bc94eb30db633775f7332646190c6d9e46afb9d480cf5fcb77725eff3d1c17239744a629c57a2e793fae44f21b027e7baf084ff6e19cd33f6b17dea0af7f103da8ec13791883976340498a2b0286499eb3e2e2d217e0b3687fa12e067e67dcd9831881380972921e9b09e857ac5e67ccd1500f4c332837f1b9a58ef91931cf83f4ac33154afbc498e035400e49f0949e54a7197eed697a5e6a7a4b51f0af93c8994ebf0cda0e50a6e34f0c9988c32f153918e0c5dc0aff9a47c89725b05896a918c36dacd1094310a7ebf18567abac554e256e7e6d2ec1ef33f5be6265c6481279e91044af70dfc82aa655c4fd2682571df84cb0b06fc4c231e215424dc9818a7d4d8ca977c010e9bd2df077755437be63b2c536cf2daebb2f1c397d807570dd5efd1139dd72658f0c2b17d79d331a68caa11719031b095caa9625bec8056bf857da313f879d0fe4d81020087adb9dcb0875bcbff2110322c26c4d66bc6a66737010d16d2f0937ca35398019c10da49a36a8f1afd398fb2163552d2b5acc6b1beb7af3562fa3ba0cdd0e424ca50a02da327eab0a538ccf6032615f5c281825ac6a71afb752c7415f73346b1a6c24acd4a45497692598a7c6003fdb3c41f8205f681f30bded3b774315116ff52ff7eeccbf2871088980e963f70085694a5b401e64e82e788656c0afd6d23372ee521e382abfd4ff54eb1cd875a503b8e0ae145701eb0ea6daf73649f7b9105d1c40da36048bfb8add5ee414165cd836fba68fa76132deae1e232611e12b5394d946d2766caac94f8687c9ec77c6e700778ce50b58cf25a1bda2244627c5a3a7a859ea0d689056fbf6f324da66870505f82e445a60f3a698232a87fb56e8b367722a08ac222ae5523c8fd5ae3d9438bd36d9303bdfdcd1b62901113bcfa848492ed8481a243a71d4f303e22624bbaef1cbb547aac745f8c38eebf010a9bd8c61e372b7d98e4d43c798062fc001a13bea8148fe30ed258ca0dbb7b643cfe997889ba9c5f2b0776b64e6252d31e8a30a8927fe7ae278f23dbc034e19c999380ece59def994c67d671ce100b52a2a22232422811ab786eacbae0da591ff27813e8c7c10c34e6fe2b1eab0d9917e128fdfc0b5b3e9f2f97138cc93216f8c0008e23fe2a8fcddcdcfb04bdcdf125a069f8db95a22594b607def79bf6650f493cd8be526f9e30303a57fd510826555283d08f0712ae3675af43acdbc06dce20856ff7a592feca80c262975c5d1e6b6178f6633dce30867aa3464c3c4a21ee1da546cd6f05142fbdcf6f5d5d2335ebcd1f466104e9ad19ff5567af87102e7ba3645c428cd69814f208405ebd5910eb27cf72349cc49e528e960ba73d1cfd065f982bbfcf725e335d8dfd56038d6d81999fd15f25506c4b06da3ce9b07a1320a3f2aefaf9329d9ac6124fd9148d3ae4c2af89437e77f8b64067535b9e32260285e963c8f49cf56bf0b1d53f146b56b923e03be80849d702c6ea0a09e26281da68f81840fb8a47fa81a6b7ac14d7c84668c85712c9b22c660c5fb4837a29c8fe82c3a127b0b785a830a347c4464db3ec59997866c943b51e5ee114b5acd47cb5d0f389a25314b60e7f3557e172ca11af23ee08dfb21e8d74ddaebd44799ece3c7e16b233f79ae5974127483eb4a8d8f96a8c155e362d65c9bca0297b378f7798682759c0f6939a7392f4b5270ec96dd4e423c4abc5712c3e143c71d28165c8d649b2f5e9673d5f60852cfb2f703a77e0ef9323ff1d62760c211aa96fe614a11a8c1e14643cb9d21e9ebde77c19ee9c756c6ee1cbb65dbd4a1f25ae78b7d39e35709b75a77aa9e5819b14a3dcec012e262c99a80bdd847ff44e598bd2fa8fdf93b7bd68c5929498f20a4d90487c35459054a9a0aab0e3287f89b58277e0f67451d9e9b54cb0b95b78dde2c17293857c7b90b505f35fc252fe16ed6e38ae9f6da6647d823027c588ac1c89ffcfc335ec5ddeceff950d81a3e5a592b2212399b2d1afb20206fa31ec6a41d8b37b127ab47e9676e247d62d3f9baf101ed43519a82236433a77bdd46d960404ad8a836dd4ca1c38a660d394ca0012e69190f76c878e5a442b6a4eb43bbd0076d3de3fafc12a5f301633b7a7c3da03cb792779a228858636609304319233db907806931c006e39c28f195dd9c3d163f65d7e9c386a4fe9c8a17e924e62bf526f745bd1d8beb5f4f2d0027c190c741796cbd0e9e9078dce4859677e3bc7cd823baf8f6058117933991c8e160eefafcc473750b28f55f98303a4a9ed5e8dfe91c98ea7051bdb3701633d33b4a96f9be0213e6fb4c9980265047e0a80453e43bffc2c72a405588196a0658a8a0ec85f861683e23245105545f71feb1f458c358c5d3ed6f8ebd02baa06c4dbb926a7e8ca065c2d94eb79474247ae92ff6bd5704ef6e46521e90601bbaea9f3bb72e2cc8718ca4a6ef013a5cda5daf97599a349457ad8145b091bbb7c5323dd88dc39095bbdcb5d6cfddc3f3101741dde9d4f04f14c0a2dc052ab9311ab8496b079fb4ed4051bbf860ab46885939385bce84d66d6291d5c380a1d4e63ae7466efce8c76ebc43205b19aaf0878faec474fcb7981a102c63c1b51c9f720e24776d9f447f8e82bab85a401729d9757fd4947f82d7e5db3c3414f5ef4c25864cf5af79a989d143042467a93415bd2770ab7edaa2b0ab0840e2a60e2efb4ac0d005b9f00397c9d3bdf16f273a9104f0f66082f22f0d2ad265ef01777d564fee6a1d0ce47c505fb1ed51fcd6d4daa156f43858504af75cb8b78efa3115719fc483afe655269ec5dad2f92f48f9f6a8f4dded1c9441eff4686e89d805b4df274bd4ae87b297f58dbf7abfbae1deabb6d8e5a1e1f65467ad21f28ddd8116c72b623495a4b0e38ee2510203f477874d1d65c13427b2e1fff53719f9f1d6ac4d0912bf4672a86e8604d77ba04c8bf9867929f18c32b1b7b8cfdcfa261a582b4fe389f2e93ef03958d5d1a3a3fee33e7502d81755ba86c28138960323ea1a46fac6026614b130bc99174bb226f89a99ede9b09e361a95a49eafc989c241f3959364ea28976d0ea1e42a18c64e8037860be0cf5748e8756cdcba84cbb3f6f13ecdca95b8d8c070ec2cd29d477117f7d71687893908f2f4c3656df79b5ea3ba8a44f0d42a2f82ef4a08fa709fb2da93b13cc1e6a52bb3393a619e87a1fd3984d11361ae4c868d09193a505ca691ad290a093e984986a2df75f0ba61ade94d78e3984c2325a1344b75e00712e4cbdb94158beba54c648b6107e87d5197542284d8a3080705fdeb55dea97181dcbfe9f311082767c2579f0ddc03deb258c151dd46b04cab66c91af6424d73ab91d0f6f71b1f60fbcad0d312e1886c967380a8289d7090ba22835c593bb0c28a51fb839561cf53ff3ac2e3360729fba92175a6996f8027d1f60c32035c135bf3eae5dbece31d2312af9d9424a7bbf5567b87049cd6f81a0446c5e72df5fb5f743c25f40e1a174249694d574348d2070ed15c660744fc9dd37fe8819c7e95a8721c0308d7cf476c6180a809259ff6103b5245c0098ffcfc92ec5e1bb7d104355b7911247315d503570ecf78bc17430cb64ca8092b805af8a8b5566a1e30d4a1a8b3a9c0225284ee405b7ef17e43d199bfa1defdf105b44f6e5433bab200cdc2504ac79d1b7a8097e6f521912d45d312df0ab4c49ed33854fb16490937026ac2587213a22f89fd88324d47c06e5ef06e66396f520dbe468295906e80b7a1c4da6e9968f73076bad552ee49363e5930e7db8443d230e36be11346ac6a52bd0c0077496d00a020e9a9185d29bee9bb2cef551a043d073bc7a616fced8ecd7d7c8c98fa7a6b4312d9d03259014baaae2e91629827403a08e019a95e1b7e13dc601db935caf700f42dac3b09997d263b2e5f32345df69e6b343294f9edb6ab0aca0ed689d27d46146fcb53dad5d488938b88000e70026341e06bbc30cf4064e9e9e05427649fe04107e431b1a84a2e849ecc3d0656644b6643591870de6d3c863e4238727c72af2dc79bf49a086df4149e55634d844b6e2edc2ee46c822bab679530b871b8ddcea711d09d81b8297f27bdcc6f42bf8b86c7d520aed38293364e6603523215036898aaeccefa1cd0879f1f1571c3bbecd0d37ec2da4fda9e15e8cbb2c49a6d36e3390ad3a36ae6b946559bbe59389b4b47506d9510e2771f00362fd8812610fc59279cc270e6cf007056e9120018a3a208b3a394f2b6b65b875a70b8e35e1bbda10a5cdf546b4252853dd8093e2edc6366801cfea3473c9cda39972149171049d9bb8e47e2328d125d66ff218a5e8e6f543f2f741219c202c984f300c526027e1c7b8329d50987128836f0f8b2b08d6be4dddeda63193244c8c42c10e8400f2e3393d2a4d9c17a040d329679947e328502ab29598853b6c03ef949face7572f8614431333db3e43f42ee734c7c607ae35d299fba86f3ecd75a54c9657f1903e2de0ab6167c2cc500d707e725a4312f06091de8194102b4ced154616f603861d767506b64b7fce107e3e8faaabc785e0b091c8d06e9ed741dbbb118f4306ddbcad445d99fe358a3e57df0a59511f0781ebba0a93152df6686a2343058ac6910d319c388f5823becf4b4b7424c3c26304ca00ceb702601d5940f913d4f52ac2f7c84502a345ccd0526580629ed3b4e551785a161a543d0c05a8fdaf3981b04c9d1822d0f61ce13646db1f8155598ec663d86fd952d88f0879beee854aa2d7ca78d60118919e4fd965980f6245f454637ad9968c5679dc677250ed7406d0367fb799a72767d345d273e54ca824a083e77d63941afed640cf349282bcfc773e1005a24640dd06c2e3e1b5bf820066cd67d4e482163cf865a990286164a209721a4de34d1b8dcb4496fa9e270a9c5bde484d005437f4fd03a278c6f7918b21c74562db31bec2b88a217f344797d8836f0f96192aa66887365ecd933e4f3"})
fallocate(r2, 0x0, 0x0, 0x8800000)

22:06:32 executing program 1:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f00000002c0))
ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000040)=0x4)
r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x5fc, 0x480080)
ioctl$KIOCSOUND(r1, 0x4b2f, 0xff)

22:06:32 executing program 0:
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x800000000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2bca}, 0x0, 0xf, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
chmod(&(0x7f0000000580)='./file0\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_targets\x00')
write$P9_RWSTAT(r1, &(0x7f0000000080)={0x7, 0x7f, 0x1}, 0x7)

22:06:32 executing program 6:
getrlimit(0xe, &(0x7f0000000000))
prlimit64(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0xffff, 0x9}, &(0x7f0000000080))
prlimit64(0xffffffffffffffff, 0x9, &(0x7f00000000c0)={0x7fffffff, 0x3f}, &(0x7f0000000100))
prlimit64(0x0, 0xa, 0x0, &(0x7f0000000140))
prlimit64(0xffffffffffffffff, 0xf, &(0x7f0000000180)={0xa990, 0x3}, 0x0)
getrlimit(0x0, &(0x7f00000001c0))
prlimit64(0x0, 0xa, &(0x7f0000000200)={0x3, 0x40}, &(0x7f0000000240))
getrlimit(0x3, &(0x7f0000000280))
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
prlimit64(0xffffffffffffffff, 0x9, &(0x7f00000002c0)={0xfffffffffffffff9, 0x5}, &(0x7f0000000300))
clone3(&(0x7f0000001480)={0x40000000, &(0x7f0000000340), &(0x7f0000000380)=<r1=>0x0, &(0x7f00000003c0)=<r2=>0x0, {0x3c}, &(0x7f0000000400)=""/4096, 0x1000, &(0x7f0000001400)=""/45, &(0x7f0000001440)=[0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x5}, 0x58)
prlimit64(r1, 0x2, &(0x7f0000001500)={0x5, 0x22e}, &(0x7f0000001540))
ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000001580)=<r3=>0x0)
prlimit64(r3, 0x7, &(0x7f00000015c0)={0x8, 0x1}, &(0x7f0000001600))
prlimit64(r1, 0x6, &(0x7f0000001640)={0x2c925677, 0x6fa}, &(0x7f0000001680))
getrlimit(0xe, &(0x7f00000016c0))
prlimit64(r2, 0xa, &(0x7f0000001700)={0x3, 0x9}, &(0x7f0000001740))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001780)={<r4=>0x0}, &(0x7f00000017c0)=0xc)
prlimit64(r4, 0x5, &(0x7f0000001800)={0xe50c, 0x200}, &(0x7f0000001840))
prlimit64(0x0, 0x3, &(0x7f0000001900)={0xfffffffffffeffff, 0xffffffffffffff00}, &(0x7f0000001940))

[  149.364195] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  149.365527] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  149.366489] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  149.367393] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 08 00
[  149.368471] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 2
[  149.370759] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  149.371197] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  149.371819] Buffer I/O error on dev sr0, logical block 0, async page read
[  149.372532] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  149.373450] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  149.374089] Buffer I/O error on dev sr0, logical block 1, async page read
[  149.374981] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  149.375382] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  149.376148] Buffer I/O error on dev sr0, logical block 2, async page read
[  149.376865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  149.377262] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  149.377913] Buffer I/O error on dev sr0, logical block 3, async page read
[  149.378631] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  149.379037] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  149.379653] Buffer I/O error on dev sr0, logical block 4, async page read
[  149.380374] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  149.380823] I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  149.381448] Buffer I/O error on dev sr0, logical block 5, async page read
[  149.382165] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  149.382609] I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  149.383228] Buffer I/O error on dev sr0, logical block 6, async page read
[  149.383970] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  149.384378] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  149.385014] Buffer I/O error on dev sr0, logical block 7, async page read
[  149.387208] loop3: detected capacity change from 0 to 256
[  149.412604] FAT-fs (loop3): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  149.428561] hrtimer: interrupt took 17022 ns
[  149.475807] audit: type=1400 audit(1663884392.218:9): avc:  denied  { write } for  pid=3996 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  149.626788] FAT-fs (loop3): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)

VM DIAGNOSIS:
22:06:32  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88806cf3d460 RCX=0000000000000000 RDX=ffff8880412dd040
RSI=ffffffff813bce37 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88801e7bf948
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffed100d9e7a8d R13=0000000000000001 R14=ffff88806cf3d468 R15=dffffc0000000000
RIP=ffffffff813bce39 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555580a400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1d39ff055c CR3=000000001e458000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f1d39fc97c0 00007f1d39fc97c8
YMM02=0000000000000000 0000000000000000 00007f1d39fc97e0 00007f1d39fc97c0
YMM03=0000000000000000 0000000000000000 00007f1d39fc97c8 00007f1d39fc97c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b1c91 RDI=ffffffff87645ba0 RBP=ffffffff87645b60 RSP=ffff888041b67348
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001
R12=0000000000000020 R13=ffffffff87645b60 R14=0000000000000010 R15=ffffffff822b1c80
RIP=ffffffff822b1ce9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f1d37458700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f92235d8108 CR3=000000001e458000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f1d39fc97c0 00007f1d39fc97c8
YMM02=0000000000000000 0000000000000000 00007f1d39fc97e0 00007f1d39fc97c0
YMM03=0000000000000000 0000000000000000 00007f1d39fc97c8 00007f1d39fc97c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000