Warning: Permanently added '[localhost]:32509' (ECDSA) to the list of known hosts.
2022/09/24 13:50:09 fuzzer started
2022/09/24 13:50:09 dialing manager at localhost:38881
syzkaller login: [   42.943395] cgroup: Unknown subsys name 'net'
[   43.048138] cgroup: Unknown subsys name 'rlimit'
2022/09/24 13:50:26 syscalls: 2215
2022/09/24 13:50:26 code coverage: enabled
2022/09/24 13:50:26 comparison tracing: enabled
2022/09/24 13:50:26 extra coverage: enabled
2022/09/24 13:50:26 setuid sandbox: enabled
2022/09/24 13:50:26 namespace sandbox: enabled
2022/09/24 13:50:26 Android sandbox: enabled
2022/09/24 13:50:26 fault injection: enabled
2022/09/24 13:50:26 leak checking: enabled
2022/09/24 13:50:26 net packet injection: enabled
2022/09/24 13:50:26 net device setup: enabled
2022/09/24 13:50:26 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/24 13:50:26 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/24 13:50:26 USB emulation: enabled
2022/09/24 13:50:26 hci packet injection: enabled
2022/09/24 13:50:26 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923                                          )
2022/09/24 13:50:26 802.15.4 emulation: enabled
2022/09/24 13:50:26 fetching corpus: 50, signal 26682/28441 (executing program)
2022/09/24 13:50:26 fetching corpus: 100, signal 40111/43451 (executing program)
2022/09/24 13:50:26 fetching corpus: 150, signal 46673/51498 (executing program)
2022/09/24 13:50:26 fetching corpus: 200, signal 54191/60369 (executing program)
2022/09/24 13:50:26 fetching corpus: 250, signal 58074/65687 (executing program)
2022/09/24 13:50:26 fetching corpus: 300, signal 63440/72298 (executing program)
2022/09/24 13:50:26 fetching corpus: 350, signal 68592/78608 (executing program)
2022/09/24 13:50:27 fetching corpus: 400, signal 72331/83592 (executing program)
2022/09/24 13:50:27 fetching corpus: 450, signal 75872/88282 (executing program)
2022/09/24 13:50:27 fetching corpus: 500, signal 78558/92055 (executing program)
2022/09/24 13:50:27 fetching corpus: 550, signal 82565/97052 (executing program)
2022/09/24 13:50:27 fetching corpus: 600, signal 85330/100873 (executing program)
2022/09/24 13:50:27 fetching corpus: 650, signal 89193/105619 (executing program)
2022/09/24 13:50:27 fetching corpus: 700, signal 93794/110952 (executing program)
2022/09/24 13:50:27 fetching corpus: 750, signal 94952/113191 (executing program)
2022/09/24 13:50:27 fetching corpus: 800, signal 98811/117816 (executing program)
2022/09/24 13:50:28 fetching corpus: 850, signal 100078/120114 (executing program)
2022/09/24 13:50:28 fetching corpus: 900, signal 103146/123872 (executing program)
2022/09/24 13:50:28 fetching corpus: 950, signal 104601/126283 (executing program)
2022/09/24 13:50:28 fetching corpus: 1000, signal 106476/128942 (executing program)
2022/09/24 13:50:28 fetching corpus: 1050, signal 109040/132171 (executing program)
2022/09/24 13:50:28 fetching corpus: 1100, signal 112871/136448 (executing program)
2022/09/24 13:50:28 fetching corpus: 1150, signal 114639/138928 (executing program)
2022/09/24 13:50:28 fetching corpus: 1200, signal 117660/142416 (executing program)
2022/09/24 13:50:28 fetching corpus: 1250, signal 121169/146239 (executing program)
2022/09/24 13:50:29 fetching corpus: 1300, signal 122919/148598 (executing program)
2022/09/24 13:50:29 fetching corpus: 1350, signal 124868/151125 (executing program)
2022/09/24 13:50:29 fetching corpus: 1400, signal 126521/153347 (executing program)
2022/09/24 13:50:29 fetching corpus: 1450, signal 128003/155456 (executing program)
2022/09/24 13:50:29 fetching corpus: 1500, signal 129879/157818 (executing program)
2022/09/24 13:50:29 fetching corpus: 1550, signal 131224/159742 (executing program)
2022/09/24 13:50:29 fetching corpus: 1600, signal 132376/161551 (executing program)
2022/09/24 13:50:29 fetching corpus: 1650, signal 134032/163685 (executing program)
2022/09/24 13:50:30 fetching corpus: 1700, signal 135030/165349 (executing program)
2022/09/24 13:50:30 fetching corpus: 1750, signal 136974/167676 (executing program)
2022/09/24 13:50:30 fetching corpus: 1800, signal 138755/169834 (executing program)
2022/09/24 13:50:30 fetching corpus: 1850, signal 139984/171593 (executing program)
2022/09/24 13:50:30 fetching corpus: 1900, signal 141578/173535 (executing program)
2022/09/24 13:50:30 fetching corpus: 1950, signal 142146/174732 (executing program)
2022/09/24 13:50:30 fetching corpus: 2000, signal 143370/176382 (executing program)
2022/09/24 13:50:30 fetching corpus: 2050, signal 145199/178422 (executing program)
2022/09/24 13:50:30 fetching corpus: 2100, signal 146337/179954 (executing program)
2022/09/24 13:50:31 fetching corpus: 2150, signal 148391/182021 (executing program)
2022/09/24 13:50:31 fetching corpus: 2200, signal 150043/183865 (executing program)
2022/09/24 13:50:31 fetching corpus: 2250, signal 151146/185262 (executing program)
2022/09/24 13:50:31 fetching corpus: 2300, signal 151896/186479 (executing program)
2022/09/24 13:50:31 fetching corpus: 2350, signal 152607/187662 (executing program)
2022/09/24 13:50:31 fetching corpus: 2400, signal 154302/189445 (executing program)
2022/09/24 13:50:31 fetching corpus: 2450, signal 154848/190496 (executing program)
2022/09/24 13:50:31 fetching corpus: 2500, signal 156397/192106 (executing program)
2022/09/24 13:50:31 fetching corpus: 2550, signal 158175/193832 (executing program)
2022/09/24 13:50:31 fetching corpus: 2600, signal 158856/194868 (executing program)
2022/09/24 13:50:32 fetching corpus: 2650, signal 160120/196260 (executing program)
2022/09/24 13:50:32 fetching corpus: 2700, signal 161293/197596 (executing program)
2022/09/24 13:50:32 fetching corpus: 2750, signal 162519/198997 (executing program)
2022/09/24 13:50:32 fetching corpus: 2800, signal 164296/200646 (executing program)
2022/09/24 13:50:32 fetching corpus: 2850, signal 165737/202048 (executing program)
2022/09/24 13:50:32 fetching corpus: 2900, signal 166322/202957 (executing program)
2022/09/24 13:50:32 fetching corpus: 2950, signal 167071/203965 (executing program)
2022/09/24 13:50:32 fetching corpus: 3000, signal 168230/205193 (executing program)
2022/09/24 13:50:33 fetching corpus: 3050, signal 169093/206256 (executing program)
2022/09/24 13:50:33 fetching corpus: 3100, signal 169762/207190 (executing program)
2022/09/24 13:50:33 fetching corpus: 3150, signal 170748/208295 (executing program)
2022/09/24 13:50:33 fetching corpus: 3200, signal 171357/209176 (executing program)
2022/09/24 13:50:33 fetching corpus: 3250, signal 171875/210008 (executing program)
2022/09/24 13:50:33 fetching corpus: 3300, signal 173017/211119 (executing program)
2022/09/24 13:50:33 fetching corpus: 3350, signal 174384/212301 (executing program)
2022/09/24 13:50:33 fetching corpus: 3400, signal 174898/213075 (executing program)
2022/09/24 13:50:34 fetching corpus: 3450, signal 175462/213886 (executing program)
2022/09/24 13:50:34 fetching corpus: 3500, signal 176212/214759 (executing program)
2022/09/24 13:50:34 fetching corpus: 3550, signal 177400/215846 (executing program)
2022/09/24 13:50:34 fetching corpus: 3600, signal 178030/216638 (executing program)
2022/09/24 13:50:34 fetching corpus: 3650, signal 179115/217750 (executing program)
2022/09/24 13:50:34 fetching corpus: 3700, signal 179891/218620 (executing program)
2022/09/24 13:50:34 fetching corpus: 3750, signal 180335/219332 (executing program)
2022/09/24 13:50:34 fetching corpus: 3800, signal 180833/219999 (executing program)
2022/09/24 13:50:34 fetching corpus: 3850, signal 181660/220843 (executing program)
2022/09/24 13:50:35 fetching corpus: 3900, signal 182682/221706 (executing program)
2022/09/24 13:50:35 fetching corpus: 3950, signal 183640/222498 (executing program)
2022/09/24 13:50:35 fetching corpus: 4000, signal 184005/223107 (executing program)
2022/09/24 13:50:35 fetching corpus: 4050, signal 185410/224066 (executing program)
2022/09/24 13:50:35 fetching corpus: 4100, signal 186545/224909 (executing program)
2022/09/24 13:50:35 fetching corpus: 4150, signal 187335/225647 (executing program)
2022/09/24 13:50:35 fetching corpus: 4200, signal 187957/226313 (executing program)
2022/09/24 13:50:35 fetching corpus: 4250, signal 188751/226984 (executing program)
2022/09/24 13:50:36 fetching corpus: 4300, signal 189525/227724 (executing program)
2022/09/24 13:50:36 fetching corpus: 4350, signal 190035/228311 (executing program)
2022/09/24 13:50:36 fetching corpus: 4400, signal 190788/228971 (executing program)
2022/09/24 13:50:36 fetching corpus: 4450, signal 191515/229633 (executing program)
2022/09/24 13:50:36 fetching corpus: 4500, signal 192136/230267 (executing program)
2022/09/24 13:50:36 fetching corpus: 4550, signal 193682/231073 (executing program)
2022/09/24 13:50:36 fetching corpus: 4600, signal 194187/231579 (executing program)
2022/09/24 13:50:36 fetching corpus: 4650, signal 194797/232121 (executing program)
2022/09/24 13:50:37 fetching corpus: 4700, signal 195656/232766 (executing program)
2022/09/24 13:50:37 fetching corpus: 4750, signal 196239/233265 (executing program)
2022/09/24 13:50:37 fetching corpus: 4800, signal 196835/233803 (executing program)
2022/09/24 13:50:37 fetching corpus: 4850, signal 197642/234358 (executing program)
2022/09/24 13:50:37 fetching corpus: 4900, signal 198574/234895 (executing program)
2022/09/24 13:50:37 fetching corpus: 4950, signal 199109/235347 (executing program)
2022/09/24 13:50:37 fetching corpus: 5000, signal 199684/235819 (executing program)
2022/09/24 13:50:37 fetching corpus: 5050, signal 200187/236256 (executing program)
2022/09/24 13:50:37 fetching corpus: 5100, signal 200672/236752 (executing program)
2022/09/24 13:50:38 fetching corpus: 5150, signal 201525/237224 (executing program)
2022/09/24 13:50:38 fetching corpus: 5200, signal 202104/237640 (executing program)
2022/09/24 13:50:38 fetching corpus: 5250, signal 202614/238050 (executing program)
2022/09/24 13:50:38 fetching corpus: 5300, signal 203121/238489 (executing program)
2022/09/24 13:50:38 fetching corpus: 5350, signal 204161/238941 (executing program)
2022/09/24 13:50:38 fetching corpus: 5400, signal 204744/239354 (executing program)
2022/09/24 13:50:38 fetching corpus: 5450, signal 205367/239720 (executing program)
2022/09/24 13:50:38 fetching corpus: 5500, signal 205799/240068 (executing program)
2022/09/24 13:50:39 fetching corpus: 5550, signal 206449/240438 (executing program)
2022/09/24 13:50:39 fetching corpus: 5600, signal 207164/240800 (executing program)
2022/09/24 13:50:39 fetching corpus: 5650, signal 207563/241112 (executing program)
2022/09/24 13:50:39 fetching corpus: 5700, signal 208288/241476 (executing program)
2022/09/24 13:50:39 fetching corpus: 5750, signal 209096/241809 (executing program)
2022/09/24 13:50:39 fetching corpus: 5800, signal 209727/242117 (executing program)
2022/09/24 13:50:39 fetching corpus: 5850, signal 210288/242406 (executing program)
2022/09/24 13:50:39 fetching corpus: 5900, signal 210939/242685 (executing program)
2022/09/24 13:50:40 fetching corpus: 5950, signal 211250/242956 (executing program)
2022/09/24 13:50:40 fetching corpus: 6000, signal 212036/243136 (executing program)
2022/09/24 13:50:40 fetching corpus: 6050, signal 212660/243141 (executing program)
2022/09/24 13:50:40 fetching corpus: 6100, signal 213046/243146 (executing program)
2022/09/24 13:50:40 fetching corpus: 6150, signal 213570/243165 (executing program)
2022/09/24 13:50:40 fetching corpus: 6200, signal 214078/243182 (executing program)
2022/09/24 13:50:40 fetching corpus: 6250, signal 214304/243186 (executing program)
2022/09/24 13:50:40 fetching corpus: 6280, signal 214547/243189 (executing program)
2022/09/24 13:50:40 fetching corpus: 6280, signal 214547/243189 (executing program)
2022/09/24 13:50:43 starting 8 fuzzer processes
13:50:43 executing program 0:
r0 = accept$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0x6e)
ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r0, 0x8040942d, &(0x7f00000000c0))
poll(&(0x7f0000000100)=[{0xffffffffffffffff, 0x4}], 0x1, 0xbb)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e24, 0x76, @remote, 0x7}, 0x1c)
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f0000000180))
recvfrom$unix(r0, &(0x7f00000001c0)=""/4096, 0x1000, 0x40000100, &(0x7f00000011c0)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000001240)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
ioctl$PTP_SYS_OFFSET_PRECISE(0xffffffffffffffff, 0xc0403d08, &(0x7f0000001480))
sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000001580)={&(0x7f00000014c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001540)={&(0x7f0000001500)={0x38, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
r1 = syz_io_uring_complete(0x0)
ioctl$SG_SET_KEEP_ORPHAN(r1, 0x2287, &(0x7f00000015c0)=0x80000001)
setsockopt$inet_int(r1, 0x0, 0x21, &(0x7f0000001600)=0x3, 0x4)
recvfrom$unix(r1, &(0x7f0000001640)=""/189, 0xbd, 0x10003, 0x0, 0x0)
bind$inet(r1, &(0x7f0000001700)={0x2, 0x4e24, @rand_addr=0x64010102}, 0x10)
setxattr$trusted_overlay_opaque(&(0x7f0000001740)='./file0\x00', &(0x7f0000001780), &(0x7f00000017c0), 0x2, 0x1)
mount$bind(&(0x7f0000001800)='./file0\x00', &(0x7f0000001840)='./file0\x00', &(0x7f0000001880), 0x2881800, 0x0)
r2 = creat(&(0x7f00000018c0)='./file0\x00', 0x4)
ioctl$BTRFS_IOC_SPACE_INFO(r2, 0xc0109414, &(0x7f0000001900)={0x5d0, 0x520, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f000000a4c0)={0x0, r0, 0x3, 0xff, 0x20000000000, 0x9})
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f000000cbc0)={0x0, 0xffffffffffffffff, 0x2, 0x0, 0x1000, 0x1fa})

13:50:43 executing program 1:
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x300, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x11aa}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040000}, 0x1)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x0, 0x20, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0xa}]}, 0x28}, 0x1, 0x0, 0x0, 0x80000}, 0x10)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000240)={{{@in=@dev, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}}, {{@in=@loopback}, 0x0, @in=@private}}, &(0x7f0000000340)=0xe8)
sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0xa8, 0x0, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x80000001}, @ETHTOOL_A_RINGS_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}]}, @ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x51582fb3}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x4}, @ETHTOOL_A_RINGS_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gre0\x00'}]}, @ETHTOOL_A_RINGS_RX={0x8}]}, 0xa8}, 0x1, 0x0, 0x0, 0x40000000}, 0x4040)
getpeername$inet6(0xffffffffffffffff, &(0x7f00000004c0)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000500)=0x1c)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x1c, r1, 0x800, 0x70bd2c, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008012}, 0x4000011)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_NOTIFY_RADAR(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x3c, r2, 0x300, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x15}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x2c3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8844}, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x14, r2, 0x4, 0x70bd29, 0x25dfdbfb, {{}, {@void, @void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000080}, 0x10)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000900)={0x190, r2, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x81, 0x78}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_IE={0x152, 0x2a, [@perr={0x84, 0x8f, {0xff, 0x9, [@not_ext={{}, @device_b, 0xfd6c, "", 0x39}, @not_ext={{}, @broadcast, 0x1, "", 0x1f}, @not_ext={{}, @device_a, 0x7, "", 0x1e}, @ext={{}, @device_a, 0x8, @device_b, 0x2}, @ext={{}, @broadcast, 0x4, @broadcast, 0x2d}, @not_ext={{}, @device_a, 0x0, "", 0x2d}, @not_ext={{}, @device_b, 0x48, "", 0x37}, @ext={{}, @device_a, 0x0, @broadcast, 0x7}, @ext={{}, @device_a, 0x401, @device_b, 0x3f}]}}, @mesh_id={0x72, 0x6}, @random={0x2, 0x78, "ae044f4817afcf4f2fe42e25aae0e0393c2ea6544f8477c3d61d076e81bb603244ce15b03753f66470b3cd44b21bf77b118338b6a7e9c2767364a00a04fafd9cdf32613a6acf45a1c595f4b8f379f456d19809dd844f10c17e8fad4ca899f3f10e289f7656ec3bfb1bc583bb803aa3ffa0a74fd97be0a821"}, @prep={0x83, 0x25, @ext={{}, 0x6, 0x4b, @broadcast, 0xc73, @broadcast, 0x200, 0x3, @broadcast, 0x800}}, @ssid={0x0, 0x8, @random="55ca2d0390f41d0f"}, @ibss={0x6, 0x2, 0x7fff}, @chsw_timing={0x68, 0x4, {0x200, 0x5}}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xb}]}, 0x190}, 0x1, 0x0, 0x0, 0x4081}, 0x4)
sendmsg$IPSET_CMD_PROTOCOL(0xffffffffffffffff, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x3c, 0x1, 0x6, 0x401, 0x0, 0x0, {0x5, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8014}, 0x840)
sendmsg$NL80211_CMD_SET_QOS_MAP(0xffffffffffffffff, &(0x7f0000000dc0)={&(0x7f0000000c40), 0xc, &(0x7f0000000d80)={&(0x7f0000000c80)={0xdc, r2, 0x100, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x5, 0x43}}}}, [@NL80211_ATTR_QOS_MAP={0x10, 0xc7, {[{0x3, 0x4}, {0x7f, 0x4}], "01051d83283731a5"}}, @NL80211_ATTR_QOS_MAP={0xc, 0xc7, {[], "cd60fb0a809c896b"}}, @NL80211_ATTR_QOS_MAP={0x24, 0xc7, {[{0xff, 0x2}, {0x3f, 0x4}, {0xc8, 0x5}, {0xf8, 0x4}, {0xbc}, {0x88, 0x2}, {0x6, 0x4}, {0x5, 0x6}, {0x9, 0x2}, {0xff, 0x3}, {0x1, 0x4}, {0x2, 0x1}], "511d431b3c9a7767"}}, @NL80211_ATTR_QOS_MAP={0x18, 0xc7, {[{0x6}, {0x0, 0x7}, {0xe0, 0x2}, {0x8, 0x1}, {0x0, 0x2}, {0x0, 0x5}], "06774766c402a9c2"}}, @NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x7, 0x1}, {0x1, 0x1}, {0x8, 0x6}], "ad5070b3bd5546ea"}}, @NL80211_ATTR_QOS_MAP={0x2c, 0xc7, {[{0x5, 0x3}, {0x81, 0x3}, {0x52, 0x1}, {0x40, 0x2}, {0x7, 0x2}, {0x5, 0x1}, {0x9, 0x1}, {0x9, 0x5}, {0x0, 0x1}, {0x9, 0x3}, {0x5, 0x6}, {0x34, 0x2}, {0x1, 0x2}, {0xe0, 0x6}, {0x4, 0x6}, {0xd0, 0x7}], "587345f33b2f62ab"}}, @NL80211_ATTR_QOS_MAP={0x10, 0xc7, {[{0xcc, 0x4}, {0x5}], "9e89160bc056e6ec"}}, @NL80211_ATTR_QOS_MAP={0x14, 0xc7, {[{0xcc, 0x2}, {0x0, 0x1}, {}, {0x0, 0x7}], "cb243cf4f9f68926"}}]}, 0xdc}, 0x1, 0x0, 0x0, 0x4040}, 0x20004000)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000e00), 0x8701, 0x0)
sendmsg$sock(r3, &(0x7f0000001400)={&(0x7f0000000e40)=@rxrpc=@in4={0x21, 0x4, 0x2, 0x10, {0x2, 0x4e22, @empty}}, 0x80, &(0x7f0000001340)=[{&(0x7f0000000ec0)="1c3d3d49a0687d23e868c4cd9dd93dfdc2c414a7e09251cd665beb5ed621aafb225fa43e3b23d25ed39907d8153a3d838077af40ab90907886ce50450293e65ca5c61e9af225e3a302736bb0b15288ba9c6f764f6a178819ecc322029681cfd04f657ac879596c4611028855518e2c7c1884cc8c48e38a05bcd59414006ebac9232e13692917a543ab610af237a148c1cde20e417ba731043f6a13e67fd9fe052609a34a7f", 0xa5}, {&(0x7f0000000f80)="94399bc37f6a3556d6d30aa816515de91fc51786c7e74a57b755cc4ee6415c63a5718cb17de80376a0882010f22e47db736da959e77ca0771371ab4446c17acc534a39750d872129ab4ce166ff6de7bd3b0cb96b93696cabebea90ad42886e6d1567d33eddc31d0e4736388ce84dce4f10420e0ae0bb7dd03c6d2c856505b5f2d5ff103d1aafa1c428c88b7088e2fbb9181b7bf7a8cd845c85c8ad10004e8ebcfbab700bc3e0bf2975c96fa41ae38d603c862a382cd2b940e90146e6c0e11a42c38e63967712b4f52800c2bd756c796c3671c0e21155bb3bc61d242574d5", 0xde}, {&(0x7f0000001080)="7e0cd6dd18f8454c47b8eef3934eaaf7306070c642907b194127017caa09dd22e14365b2abf722ffb09a90b844ce4735de8efd5c710cfbd25ee369ff3cefe7ff2a856e6db4feb25272c34fa32d34314051643e01b3d4ae052370c1caaf06eeecb02a5946ca03b01675ecf9b2f8aad875af3033d42229e6073cb741d183477a79b848848fcf5e65a27511245c55be2c3c719ed09ce164e7c6cf112e5cc2744dfa9811d1fdb377f4c99c6c33eccc170c09cd481b7ff26dd849d9af483261edd687e38f121de41c8c278827a44becdef3f4a4b828", 0xd3}, {&(0x7f0000001180)="dc67b212100d980675c80154c71269d07b05fea9267811af819daeec3ab7220dd654cc3efee148cb4c053e49d61d4ed83cb2765ed0b5044d2d5823c40f69c3759d0b6be1ab14d737501d63e012c24efc2cea9090921905c4f6a044e3d9e6827c47877a7914e9258adf4abe34df8c89ee257f9feb2b4c8a41abbc933f86dc287d22e065dced", 0x85}, {&(0x7f0000001240)="e0924a449be04a74a1901364eb69fcb346580096a93244cf2ab9babf6c34bbd73f111073b09e0979ffb912e4cd932f6c6640913f0f6cda2715bb6fc4f865b8b8649dc9221bb89f57046fe7df045da49de7baa4f1f84e9d2b8b6674e1b3f566996a57424256a3a01c18242a3fafb61a1e29", 0x71}, {&(0x7f00000012c0)="237b898f0776b7356a2dba59f35ac7e296ebd7a7cd129f3ffb5ddbe717b8d60c34828f390de831830e2c2e048481aeec06e959e6369fdf3dc6e0dc02e4688135f2a3a1ab5d0460865e1f43c149d9", 0x4e}], 0x6, &(0x7f00000013c0)=[@mark={{0x14, 0x1, 0x24, 0x322}}], 0x18}, 0xc004)
sendmsg$NL80211_CMD_GET_WIPHY(r3, &(0x7f0000001500)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000014c0)={&(0x7f0000001480)={0x20, r2, 0x400, 0x70bd29, 0x25dfdbff, {{}, {@void, @void, @val={0xc, 0x99, {0x51b9, 0x30}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x24000814}, 0x22004001)
sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000001880)={&(0x7f0000001540)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001840)={&(0x7f0000001580)={0x2a8, r2, 0x100, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4c, 0x4d}}}}, [@crypto_settings=[@NL80211_ATTR_CONTROL_PORT_NO_PREAUTH={0x4}, @NL80211_ATTR_AKM_SUITES={0x8, 0x4c, [0xfac02]}, @NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0xfac02}, @NL80211_ATTR_AKM_SUITES={0x8, 0x4c, [0x0]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}], @NL80211_ATTR_TX_RATES={0x254, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x20, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x3, 0xec, 0x9, 0x6, 0x48, 0x1b, 0x2, 0x1b, 0x6c, 0x9, 0x30, 0x3e, 0x1, 0x1b, 0x1, 0x3, 0xc, 0x30, 0x5, 0x48, 0x60, 0x30, 0x60, 0x1b]}]}, @NL80211_BAND_6GHZ={0x78, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x27, 0x2, [{0x4, 0x5}, {0x0, 0x5}, {0x4, 0x3}, {0x0, 0x2}, {0x6, 0x5}, {0x0, 0x6}, {0x1}, {0x1}, {0x5}, {0x6, 0x4}, {0x0, 0x7}, {0x5, 0x9}, {0x5, 0xa}, {0x1, 0x4}, {0x3, 0x1}, {0x2}, {0x1, 0x9}, {0x1, 0x3}, {0x3, 0x2}, {0x4, 0x7}, {0x0, 0x4}, {0x6, 0xa}, {0x1, 0x8}, {0x0, 0x6}, {0x6, 0x8}, {0x4}, {0x2, 0x9}, {0x4, 0x7}, {0x7, 0x5}, {0x7, 0x3}, {0x2, 0x5}, {0x7, 0x6}, {0x3, 0x3}, {0x7, 0x2}, {0x1, 0x7}]}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0x1, 0x1b, 0x2, 0xc, 0x34, 0x2, 0x60, 0x60, 0x12, 0x2, 0x6, 0x12]}, @NL80211_TXRATE_HT={0x1e, 0x2, [{0x1, 0x1}, {0x4, 0x6}, {0x0, 0x1}, {0x6, 0x9}, {0x0, 0x1}, {0x7, 0x2}, {0x6, 0x3}, {0x4, 0x6}, {0x6, 0x9}, {0x1, 0x8}, {0x4, 0x6}, {0x2, 0x4}, {0x3, 0x9}, {0x1, 0x4}, {0x7, 0x2}, {0x6, 0x3}, {0x2, 0x6}, {0x4, 0x8}, {0x6, 0x6}, {0x1, 0xa}, {0x0, 0x2}, {0x6, 0x9}, {0x4, 0x6}, {0x2, 0x1}, {0x0, 0xa}, {0x4, 0x5}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x8, 0x200, 0x7ff, 0x0, 0x7, 0x5, 0xf800]}}]}, @NL80211_BAND_6GHZ={0x44, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x3, 0x200, 0x4, 0x9, 0x8, 0x5ea, 0x9]}}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x35, 0x18, 0x36, 0x6, 0x6c, 0x2, 0x60, 0x6, 0x5, 0x18, 0x18, 0xc, 0x3a2ae95f52effaf4, 0x5, 0x24, 0x48, 0xb, 0x4, 0xb, 0x6, 0x1b, 0x30, 0x5a, 0x12, 0x2, 0x2, 0x6, 0x6, 0x18]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_6GHZ={0xe0, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x51, 0x2, [{0x1, 0x1}, {0x3, 0x5}, {0x5, 0xa}, {0x6, 0x8}, {0x3, 0x4}, {0x4, 0x4}, {0x3, 0x1}, {0x7, 0x6}, {0x4, 0xa}, {0x1, 0x9}, {0x5, 0x4}, {0x3, 0xa}, {0x0, 0x4}, {0x0, 0x4}, {0x7, 0x4}, {0x0, 0x5}, {}, {0x4, 0x4}, {0x7, 0x2}, {0x6, 0x7}, {0x3, 0x8}, {0x7, 0x8}, {0x4, 0x4}, {0x0, 0x6}, {0x0, 0xa}, {0x5}, {0x4, 0x3}, {0x2, 0x4}, {0x3, 0x5}, {0x4, 0x8}, {0x5, 0x9}, {0x1, 0x6}, {0x6}, {0x6, 0x2}, {0x4, 0x4}, {0x3, 0x5}, {0x1, 0x3}, {0x3, 0x1}, {0x3, 0x3}, {0x0, 0x4}, {0x2, 0x6}, {0x4, 0x5}, {0x6, 0x1}, {0x6}, {0x2}, {0x6, 0xa}, {0x0, 0x9}, {}, {0x0, 0xa}, {0x0, 0x4}, {0x2, 0x9}, {0x3, 0x2}, {0x6, 0x9}, {0x1, 0xa}, {0x2}, {0x1, 0x4}, {0x7, 0x8}, {0x6, 0x1}, {0x7, 0x2}, {0x6, 0x9}, {0x0, 0x1}, {0x1, 0x1}, {0x1, 0x7}, {0x0, 0x6}, {0x3, 0x9}, {0x1}, {0x6, 0x6}, {0x5}, {0x3, 0x6}, {0x5, 0x4}, {0x1, 0x6}, {0x4, 0x4}, {0x1}, {0x1, 0x5}, {0x4, 0x6}, {0x2, 0x5}, {0x3, 0x1}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x4f, 0x0, 0x3, 0x4, 0x0, 0x874a, 0x3]}}, @NL80211_TXRATE_HT={0x48, 0x2, [{0x1, 0x1d}, {0x6, 0x4}, {0x2, 0x2}, {0x2, 0x8}, {0x5, 0x5}, {0x0, 0xa}, {0x3, 0x4}, {0x0, 0x9}, {0x6, 0x9}, {0x0, 0x4}, {0x6, 0x9}, {0x6, 0x7}, {0x0, 0x4}, {0x1, 0x9}, {0x5, 0x9}, {0x0, 0x6}, {0x1, 0xa}, {0x0, 0x8}, {0x2, 0x4}, {0x1, 0xa}, {0x2, 0x2}, {0x3, 0x6}, {0x4, 0x1}, {0x5, 0x7}, {0x3, 0x4}, {0x7, 0xa}, {0x2, 0x9}, {0x3, 0x2}, {0x2, 0x9}, {0x1, 0x2}, {0x5, 0x5}, {0x6, 0xa}, {0x5, 0x1}, {0x3, 0x5}, {0x0, 0xa}, {0x2, 0x7}, {0x2, 0x6}, {0x1}, {0x5, 0x7}, {0x2, 0x6}, {0x1, 0x2}, {0x0, 0x3}, {0x0, 0x3}, {0x0, 0x7}, {0x3, 0x2}, {0x5, 0x8}, {0x6, 0x8}, {0x1, 0x9}, {0x0, 0x5}, {0x4, 0x9}, {0x1, 0x5}, {0x4, 0x3}, {0x7, 0xa}, {0x6, 0x5}, {0x1, 0xa}, {0x5, 0x8}, {0x5, 0x8}, {0x6, 0xa}, {0x1}, {0x7, 0x5}, {0x7, 0x7}, {0x1, 0xa}, {0x0, 0x8}, {0x4, 0x7}, {0x4, 0x4}, {0x1, 0x8}, {0x4, 0x1}, {0x7, 0x7}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x4, 0x2, 0x7, 0x40, 0x7b7, 0xdc, 0x1000]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_60GHZ={0x6c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x51, 0x2, [{0x0, 0x6}, {0x6, 0x4}, {0x5, 0x3}, {0x0, 0x2}, {0x0, 0x1}, {0x0, 0x6}, {0x4, 0xa}, {0x5, 0x6}, {0x2, 0x1}, {0x3, 0xa}, {0x1}, {0x6, 0x6}, {0x5, 0x8}, {0x7, 0x8}, {0x1, 0x6}, {0x3, 0x2}, {0x5, 0x5}, {0x3, 0x3}, {0x1, 0x9}, {0x6, 0x6}, {0x0, 0x7}, {0x1, 0x9}, {0x6, 0x3}, {0x3, 0x9}, {0x1}, {0x0, 0x5}, {0x2, 0x7}, {0x1, 0x3}, {0x3, 0xa}, {0x6, 0x9}, {0x1, 0x3}, {0x4, 0x7}, {0x0, 0x4}, {0x3, 0x8}, {0x7, 0x7}, {0x3, 0x6}, {0x4, 0x3}, {0x2, 0x6}, {}, {0x4, 0x9}, {0x5, 0x3}, {0x3, 0x2}, {0x5, 0x4}, {0x1, 0x5}, {0x0, 0x9}, {0x2, 0x5}, {0x0, 0xa}, {0x4, 0x4}, {0x1, 0x7}, {0x4, 0x4}, {0x7, 0x2}, {0x6, 0x9}, {0x5, 0x9}, {0x5, 0x8}, {0x7, 0x1}, {0x4, 0x3}, {0x3, 0x2}, {0x5, 0x6}, {0x1, 0x9}, {0x6, 0x9}, {0x6, 0x9}, {0x6, 0x5}, {0x5, 0x8}, {0x0, 0x7}, {0x3, 0x6}, {0x3, 0x1}, {0x4, 0x4}, {0x4, 0x8}, {0x7, 0x5}, {0x5, 0x6}, {0x4, 0x3}, {0x2, 0x7}, {0x0, 0x7}, {0x0, 0x6}, {0x5, 0x1}, {0x6, 0x1}, {}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x7, 0xf, 0x6, 0x6, 0x7, 0x9, 0x7ff]}}]}, @NL80211_BAND_2GHZ={0x28, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x41, 0x4, 0x3f, 0x0, 0x0, 0x0, 0x414]}}]}]}, @NL80211_ATTR_PBSS={0x4}]}, 0x2a8}, 0x1, 0x0, 0x0, 0x4008000}, 0x880)
r4 = syz_open_dev$vcsn(&(0x7f00000018c0), 0x0, 0x82)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001940), r3)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r4, &(0x7f0000001a40)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001a00)={&(0x7f0000001980)={0x58, r5, 0x200, 0x70bd29, 0x25dfdbff, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4040000}, 0x4889d)

13:50:43 executing program 2:
r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x5, 0x50, 0xffffffffffffffff, 0x10000000)
r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x3, 0x4007, @fd_index=0x7, 0xbeaf, 0x3, 0xba, 0x10, 0x1, {0x1, r1}}, 0x4)
recvmmsg(0xffffffffffffffff, &(0x7f0000004ac0)=[{{&(0x7f0000000040)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f00000000c0)=""/69, 0x45}, {&(0x7f0000000140)=""/190, 0xbe}, {&(0x7f0000000200)=""/38, 0x26}, {&(0x7f0000000240)=""/70, 0x46}, {&(0x7f00000002c0)=""/193, 0xc1}, {&(0x7f00000003c0)=""/203, 0xcb}, {&(0x7f00000004c0)=""/147, 0x93}, {&(0x7f0000000580)=""/219, 0xdb}], 0x8, &(0x7f0000000700)=""/12, 0xc}, 0x6f284baf}, {{&(0x7f0000000740)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r2=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, 0x80, &(0x7f0000000940)=[{&(0x7f00000007c0)=""/184, 0xb8}, {&(0x7f0000000880)=""/148, 0x94}], 0x2}, 0x80}, {{&(0x7f0000000980)=@nfc, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000a00)=""/7, 0x7}, {&(0x7f0000000a40)=""/43, 0x2b}], 0x2, &(0x7f0000000ac0)=""/167, 0xa7}, 0x2}, {{&(0x7f0000000b80)=@xdp, 0x80, &(0x7f0000000cc0)=[{&(0x7f0000000c00)=""/182, 0xb6}], 0x1, &(0x7f0000000d00)=""/32, 0x20}, 0x6}, {{&(0x7f0000000d40)=@in6={0xa, 0x0, 0x0, @private1}, 0x80, &(0x7f0000000ec0)=[{&(0x7f0000000dc0)=""/245, 0xf5}], 0x1, &(0x7f0000000f00)=""/50, 0x32}, 0x3ff}, {{0x0, 0x0, &(0x7f0000002000)=[{&(0x7f0000000f40)=""/101, 0x65}, {&(0x7f0000000fc0)=""/26, 0x1a}, {&(0x7f0000001000)=""/4096, 0x1000}], 0x3, &(0x7f0000002040)=""/159, 0x9f}, 0x5}, {{&(0x7f0000002100)=@in={0x2, 0x0, @broadcast}, 0x80, &(0x7f0000002280)=[{&(0x7f0000002180)=""/245, 0xf5}], 0x1, &(0x7f00000022c0)=""/127, 0x7f}, 0x8}, {{&(0x7f0000002340)=@ethernet={0x0, @remote}, 0x80, &(0x7f00000034c0)=[{&(0x7f00000023c0)=""/193, 0xc1}, {&(0x7f00000024c0)=""/4096, 0x1000}], 0x2}, 0x9}, {{&(0x7f0000003500)=@l2tp={0x2, 0x0, @multicast1}, 0x80, &(0x7f00000046c0)=[{&(0x7f0000003580)=""/108, 0x6c}, {&(0x7f0000003600)=""/7, 0x7}, {&(0x7f0000003640)=""/65, 0x41}, {&(0x7f00000036c0)=""/4096, 0x1000}], 0x4, &(0x7f0000004700)=""/73, 0x49}, 0x5}, {{&(0x7f0000004780)=@pppoe={0x18, 0x0, {0x0, @multicast}}, 0x80, &(0x7f0000004a00)=[{&(0x7f0000004800)=""/14, 0xe}, {&(0x7f0000004840)=""/158, 0x9e}, {&(0x7f0000004900)=""/221, 0xdd}], 0x3, &(0x7f0000004a40)=""/120, 0x78}, 0x7}], 0xa, 0x0, &(0x7f0000004d40)={0x0, 0x3938700})
syz_io_uring_submit(0x0, r0, &(0x7f0000004ec0)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r2, 0x0, &(0x7f0000004e80)={&(0x7f0000004d80)=@xdp={0x2c, 0xc, 0x0, 0x15}, 0x80, &(0x7f0000004e40)=[{&(0x7f0000004e00)="55a35955b584e3da", 0x8}], 0x1}, 0x0, 0x4, 0x978813cb8e8ea08e}, 0xcf5e)
getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000004f40)={{{@in6=@private1, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0, <r4=>0x0}}, {{@in6=@empty}, 0x0, @in6=@local}}, &(0x7f0000005040)=0xe8)
recvfrom$packet(r2, &(0x7f0000004f00)=""/59, 0x3b, 0x100, &(0x7f0000005080)={0x11, 0x2, r3, 0x1, 0x8, 0x6, @broadcast}, 0x14)
r5 = syz_io_uring_setup(0x3be, &(0x7f00000050c0)={0x0, 0x3cc0, 0x4, 0x2, 0x32c}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000005140), &(0x7f0000005180))
r6 = dup2(r5, r5)
r7 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000051c0), 0x80, 0x0)
r8 = syz_mount_image$nfs4(&(0x7f0000005200), &(0x7f0000005240)='./file0\x00', 0xee8a, 0x2, &(0x7f0000005400)=[{&(0x7f0000005280)="9986a1ceea149ea1ed8d1ee074b962a13ef8b9b24c283e1c3156e444f4558f885e140241a0fd50c30c662d0f10ca138b308fe452817ed2c5d3ae7146a2327255a595c39cfce2008597d2de6b7089561973cd8c20fe078ca734872505f28938e9686bae9379010d7ae7a754621423048fdbf505157725a04a216b33d77b", 0x7d, 0xfffffffffffffc01}, {&(0x7f0000005300)="d30c660d5d264a2f8ee10dfd63221cd33b09b66f11d9f7280385ea1d0e843292dcc0785fa1225e291ae64b43ef476d43a9d4fd8314a76bac9ca0a7cc1b7244a3a3bb781acd5cf58c6fa19fe00420a31773042aa74be61ff63498d6b6d3676400b85727171f7c6b6d751b247e3a9fba92e9b8a7df0e178b5cbfdc8e8d47d48475b542f47b02bdfdb35befdaa19eb2fd0233eb1f3c1b872878174fc7668281f03d4c5a95f4718cd2288162d674dc59961efc07f453681312955a3ee4b81c0667ce2724f238885c8b9cb4f61d30917c5f5842c431c47973c62caf6f", 0xda, 0x8}], 0x2510021, &(0x7f0000005440)={[{}, {'\x00'}, {'\\{$'}, {}, {'\xff\xff\xff\xff\xff\xff'}, {'\xff\xff\xff\xff\xff\xff'}, {}], [{@obj_type={'obj_type', 0x3d, '(\\\\$..'}}, {@dont_measure}, {@subj_type={'subj_type', 0x3d, '%(#*'}}, {@uid_eq={'uid', 0x3d, r4}}, {@subj_user={'subj_user', 0x3d, '\x00'}}]})
io_uring_register$IORING_REGISTER_FILES(r5, 0x2, &(0x7f00000054c0)=[r2, r5, r6, r2, r7, r5, r8], 0x7)
waitid$P_PIDFD(0x3, r6, 0x0, 0x1, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
r9 = fcntl$dupfd(r2, 0x406, 0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000005500)='./file0\x00', &(0x7f0000005540), 0x3040000, &(0x7f0000005580)={'trans=fd,', {'rfdno', 0x3d, r9}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@aname={'aname', 0x3d, '\'$|\x04-'}}, {@privport}, {@access_uid={'access', 0x3d, r4}}, {@privport}, {@afid={'afid', 0x3d, 0x7}}], [{@fsuuid={'fsuuid', 0x3d, {[0x62, 0x31, 0x32, 0x61, 0x61, 0x66, 0x31, 0x33], 0x2d, [0x64, 0x34, 0x39], 0x2d, [0x66, 0x34, 0x61, 0x36], 0x2d, [0x37, 0x66, 0x66, 0xc], 0x2d, [0x61, 0x32, 0x34, 0x61, 0x65, 0x34, 0x32, 0x35]}}}]}})
r10 = accept4(r2, &(0x7f0000005640)=@rxrpc=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x0, 0x0, @mcast2}}, &(0x7f00000056c0)=0x80, 0x800)
ioctl$EXT4_IOC_GET_ES_CACHE(r10, 0xc020662a, &(0x7f0000005700)={0xca, 0x4a7, 0x5, 0x80000001, 0xa, [{0x75, 0x7f, 0x8, '\x00', 0x402}, {0xffffffffffffffff, 0x683, 0x3c}, {0x1ff, 0x20, 0x10000, '\x00', 0x400}, {0x6, 0x2, 0x3, '\x00', 0x2000}, {0xff80000000000000, 0x2, 0x800, '\x00', 0x200}, {0xfffffffffffffff7, 0x100000000, 0x5, '\x00', 0x120a}, {0x100000001, 0x7f, 0x1, '\x00', 0xc00}, {0x200, 0x4, 0x6, '\x00', 0x400}, {0x5, 0x1655, 0x8, '\x00', 0x9}, {0x100000000, 0x3, 0x2}]})
r11 = accept(r10, 0x0, &(0x7f0000005980))
ioctl$F2FS_IOC_RELEASE_COMPRESS_BLOCKS(r11, 0x8008f512, &(0x7f00000059c0))

[   74.338819] audit: type=1400 audit(1664027443.342:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
13:50:43 executing program 4:
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)
sysfs$3(0x3)

13:50:43 executing program 3:
r0 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan1\x00', <r1=>0x0})
sendmsg$IEEE802154_LLSEC_GETPARAMS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x900002}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r0, 0x0, 0x70bd27, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r1}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000800}, 0x4010)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$IEEE802154_ASSOCIATE_REQ(r2, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x6c, r3, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x14}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa0}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x4}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x2}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0xb}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x12}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0xb}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0002}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x48d1}, 0x24000040)
syz_genetlink_get_family_id$nbd(&(0x7f0000000300), r2)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000380), r2)
sendmsg$IEEE802154_LLSEC_GETPARAMS(r4, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x1c, r5, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x22000010)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DEST(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x50, r6, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x6}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}]}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fff}]}, 0x50}, 0x1, 0x0, 0x0, 0x40088d0}, 0x24000000)
sendmsg$NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600), 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x14, 0x0, 0x4, 0x70bd26, 0x25dfdbfe, {{}, {@void, @void}}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4040881}, 0x4)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x4002230a}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x18, 0x0, 0x8, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
sendmsg$NLBL_MGMT_C_VERSION(r4, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x5c, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @broadcast}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private0={0xfc, 0x0, '\x00', 0x1}}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @local}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x54}, 0x40000)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000980), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000a80)={&(0x7f00000009c0)={0x94, r7, 0xba1f45b4fddbc56, 0x70bd26, 0x25dfdbfe, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @handle=@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @handle=@pci={{0x8}, {0x11}}]}, 0x94}, 0x1, 0x0, 0x0, 0x4010}, 0x4000804)
sendmsg$IEEE802154_ADD_IFACE(r4, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x20, r3, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x8084}, 0x880)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000c00), r8)

13:50:43 executing program 6:
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x2, 0xc4}}, './file0\x00'})
fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000040)=0x5)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000080)={0x0, r0, 0xffffffffffffffff, 0x7fff, 0x7ff, 0x2})
r1 = openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000100)={0x0, 0xffffffffffffffff, 0x1, 0xe5, 0x2, 0x2})
r2 = pidfd_getfd(r0, r1, 0x0)
r3 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000140), 0x488001, 0x0)
r5 = ioctl$LOOP_CTL_GET_FREE(r2, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, r5)
r6 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r6)
r7 = dup3(0xffffffffffffffff, r1, 0x80000)
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, r3)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r6)
ioctl$int_in(r7, 0x73, &(0x7f0000000180)=0xff7)
fsetxattr(r1, &(0x7f00000001c0)=@known='user.incfs.metadata\x00', &(0x7f0000000200)='/dev/loop-control\x00', 0x12, 0x3)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000240))
ioctl$LOOP_CTL_REMOVE(r7, 0x4c81, r3)
fadvise64(0xffffffffffffffff, 0x4, 0x3, 0x5)

13:50:43 executing program 7:
ptrace$peek(0x2, 0xffffffffffffffff, &(0x7f0000000000))
timer_create(0x2, &(0x7f0000000100)={0x0, 0x3d, 0x1, @thr={&(0x7f0000000040)="169de50b782af2d27d781954c47c22778be0018c8e7738df8727ed3d563f140be4312762089c2564f2b4cc395a7fda2ee9ff27949129c8a9e2018e0539bd502f9cf3e6b463bb98b74f52aaa9f25ff37632e2d25d050b374bc46244b245505fe92aaacce2edc1362ea7c8a3be6c9335c180bf7e9d41f6b85ba3a9da97", &(0x7f00000000c0)="11ef6a634b98194ea6ba0ffaedc61e604672d060344491736c2d7f2c722c3048d213094220d984999fa17d84697630"}}, &(0x7f0000000140)=<r0=>0x0)
clock_gettime(0x0, &(0x7f0000000180)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x1, &(0x7f00000001c0)={{r1, r2+60000000}, {0x77359400}}, &(0x7f0000000200))
timer_settime(r0, 0x1, &(0x7f0000000240)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(r0, &(0x7f0000000280))
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000300))
clock_gettime(0x3, &(0x7f0000000340))
timer_settime(r0, 0x1, &(0x7f0000000380)={{}, {0x77359400}}, &(0x7f00000003c0))
timer_create(0x4, &(0x7f0000000400)={0x0, 0x6, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000440)=<r3=>0x0)
timer_gettime(r3, &(0x7f0000000480))
timer_delete(r0)
timer_getoverrun(0x0)
timer_getoverrun(0x0)
timer_delete(r3)
timer_create(0x3, &(0x7f00000004c0)={0x0, 0x28, 0x2}, &(0x7f0000000500)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000540)={<r5=>0x0, <r6=>0x0})
timer_settime(r4, 0x1, &(0x7f0000000580)={{r5, r6+60000000}}, &(0x7f00000005c0))
clock_gettime(0x0, &(0x7f0000000600)={<r7=>0x0, <r8=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000640)={{0x77359400}, {r7, r8+60000000}}, &(0x7f0000000680))

13:50:43 executing program 5:
ioctl$HIDIOCGREPORT(0xffffffffffffffff, 0x400c4807, &(0x7f0000000000)={0x1, 0x100, 0x5})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000000c0)={&(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040)="9b890bf089026812dabc60252c58950e9b8c1edfebb6d47ede139ce201fb47b47efd57b395d5e117dfc5151eff75d0221515f43bd6cb255778598b23db4b9d1548fbbb03c91527cc1e77fc77cb4dd9d06eed99354cfb85fced09618d", 0x5c}, 0x68)
ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000140)={{0x7, 0x4}, 0x100, './file0\x00'})
ioctl$F2FS_IOC_START_VOLATILE_WRITE(0xffffffffffffffff, 0xf503, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000000280)={0x0, 0x2, [0x8, 0x6, 0x401, 0x0, 0xd, 0x3]})
ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f0000000380)={0x1, 0x1, 0x1000, 0x7d, &(0x7f00000002c0)="9c3671d0d9d245dbe1a11e58f240fbde3d4a71a266fae309b46f9cf273b4ce8ca5d8436bfef1a4143e3cb9dcfdf30926d1c5f0793a40022ba2f9576f67e78801ce736b0c5462f3a5629e3f31cf3f3d78aaf6d0ebc9e90adc42b5dcdfa9902351aed815d635158e356670d2b1ef5995431a61b18ac6b0ac1a69e937b9d3", 0x8, 0x0, &(0x7f0000000340)="a6a75a524b0d3686"})
clone3(&(0x7f00000005c0)={0x800080, &(0x7f0000000400)=<r0=>0xffffffffffffffff, &(0x7f0000000440), &(0x7f0000000480), {0x1d}, &(0x7f00000004c0)=""/25, 0x19, &(0x7f0000000500)=""/110, &(0x7f0000000580)=[0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff], 0x4}, 0x58)
ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r0, 0xf505, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000640)={0x8000, 0x10000, 0x643, 0x7ff, 0x2, 0x4})
ioctl$sock_inet_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000680))
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000006c0), 0x222000, 0x0)
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000700)={@remote, @rand_addr=0x64010100}, 0x8)
fcntl$getown(r0, 0x9)
r2 = syz_open_dev$vcsn(&(0x7f0000000740), 0x6, 0x12400)
setsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000000780)={@remote, @multicast1}, 0xc)
r3 = syz_mount_image$vfat(&(0x7f00000007c0), &(0x7f0000000800)='./file0\x00', 0x0, 0x4, &(0x7f0000000b00)=[{&(0x7f0000000840)="0527644ac027add177cf4d755289840418620e724943c04530b5ecce4222dc38216ade0f76f441c4e5b29bf6608cb43e0196f7ec3008656de8d62023ab4ef5dbf9b21c7c3184d59f79d81e2fbfc06d62f9af753d5948aa4c84bc211bd2d5642383b74427bb838da74324ca69cbf8", 0x6e, 0x7}, {&(0x7f00000008c0)="0aea1e05d35285ccf6b396cdac7d8f48340045b868eb8e9dafc39368ab2f5d4343e72559944593666215fb852c0f7154e38ca9ddb39ca50d94d1cfd330a269408a068f8b3ff8d323b6f00055931fbddbaeb09bae8d98d2e22767a9bd0b3645fab3ed69d06c2882bee8d5a6f5ede58ba7431d24f4dceaafca09cdf984edd5eae056d8", 0x82, 0x2a98d6f0}, {&(0x7f0000000980)="f94dfcd26bdca4e9ae7e40a9b2c53edef9a925a2c8cc296a0f495390d3f5a67e5cf17cfeb35d38a469ba5be8fb1fa41f5b8224b531fba0e3a5a51c3152a4b83bd7f918d201bcdd4fbea9257ac160e84d151021932315d148175ba76ab73d4ec2997f199cfe862c2e4d446d81ad7a", 0x6e, 0x2}, {&(0x7f0000000a00)="6058337d5face65a0a75a1805aacecf421d8d929e28d739d0de818bab416973ec1fdad890681afd96238496aeefc9f3da1de628d5e9765b975a99f4b05df1c3bfa9fc8a08161176da536af33affcabf90400f92c29719c8327aec3c63ec9e68f4d62e5b1ed0b51b3c73b05057e711c436d8898b4149c42a3b3dc96d3db7d1cd4d53b9dfc741f0cd23be8562f97f3e34ad41eb6e02a83e0a5723c2a8a02dbec3c7b5b878820c6fc85469579704ef6a4e1cd91ddb0e33588c4c6a85e9c9f5022920dfba567109443cea93bae03b710b01c62c7feb2210b70f044d6ec27bc4d52b3ce991012cb2578e8c6884d98d537cf659be41fbe", 0xf4, 0x7fffffff}], 0x1000000, &(0x7f0000000b80)={[{@uni_xlateno}, {@fat=@umask={'umask', 0x3d, 0xfffffffffffffffe}}], [{@pcr={'pcr', 0x3d, 0x13}}]})
ioctl$EXT4_IOC_MIGRATE(r3, 0x6609)
fcntl$getown(r1, 0x9)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f0000000c00)={{r1}, 0x0, 0x0, @unused=[0xc6, 0x4, 0x7fffffff, 0x5], @subvolid=0x2})
ioctl$FS_IOC_MEASURE_VERITY(0xffffffffffffffff, 0xc0046686, &(0x7f0000001c00)={0x3, 0xd3, "2b520f72c92b48b64d734e9ccfe51b736a6348c158419c01ce2b1b77b13d29dfeb0828be09c6b288d7430a08f1dba56b8ac07021fa72d514178904e074e1fa065be766b08b88ea08f35a6b482da54252cbbf6a02e30db23aba5f6fcc0a2ebab48de944e36d4786eae655311a613d53971098e30ee8eed821a24a90d48f0205b2cf39248fb82e57b8478f5374d83d27a581f6bd77ff9b8f05f46911fab921144efc4eb1e0763719d3a5d25878636a5fee3f5bedf9f99986bcb799460f3e05dd977866a68364ce372bb6a2224ef2e437e5d514b6"})

[   75.504145] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   75.513982] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   75.515953] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   75.521539] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   75.523784] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   75.525347] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   75.531854] Bluetooth: hci0: HCI_REQ-0x0c1a
[   75.554786] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   75.562955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   75.564961] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   75.572021] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   75.574353] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   75.575927] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   75.581201] Bluetooth: hci2: HCI_REQ-0x0c1a
[   75.581748] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   75.589247] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   75.590709] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   75.598708] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   75.600438] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   75.601996] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   75.609281] Bluetooth: hci1: HCI_REQ-0x0c1a
[   75.639473] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   75.644336] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   75.645759] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   75.649189] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   75.650383] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   75.652451] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   75.665971] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   75.700923] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   75.702152] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   75.708014] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   75.709408] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   75.711113] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   75.713881] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   75.719256] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   75.726743] Bluetooth: hci3: HCI_REQ-0x0c1a
[   75.730790] Bluetooth: hci4: HCI_REQ-0x0c1a
[   75.731051] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   75.732511] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   75.765909] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   75.767052] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   75.778898] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   75.779934] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   75.789892] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   75.792445] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   75.797944] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   75.798990] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   75.809329] Bluetooth: hci6: HCI_REQ-0x0c1a
[   75.820702] Bluetooth: hci7: HCI_REQ-0x0c1a
[   77.586923] Bluetooth: hci0: command 0x0409 tx timeout
[   77.651731] Bluetooth: hci1: command 0x0409 tx timeout
[   77.652476] Bluetooth: hci2: command 0x0409 tx timeout
[   77.714782] Bluetooth: hci5: Opcode 0x c03 failed: -110
[   77.779069] Bluetooth: hci4: command 0x0409 tx timeout
[   77.779840] Bluetooth: hci3: command 0x0409 tx timeout
[   77.842732] Bluetooth: hci7: command 0x0409 tx timeout
[   77.843602] Bluetooth: hci6: command 0x0409 tx timeout
[   79.634719] Bluetooth: hci0: command 0x041b tx timeout
[   79.698694] Bluetooth: hci2: command 0x041b tx timeout
[   79.699166] Bluetooth: hci1: command 0x041b tx timeout
[   79.826704] Bluetooth: hci3: command 0x041b tx timeout
[   79.827169] Bluetooth: hci4: command 0x041b tx timeout
[   79.890706] Bluetooth: hci6: command 0x041b tx timeout
[   79.891136] Bluetooth: hci7: command 0x041b tx timeout
[   80.620992] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   80.624600] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   80.630734] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   80.638167] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   80.642760] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   80.644321] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   80.651538] Bluetooth: hci5: HCI_REQ-0x0c1a
[   81.682663] Bluetooth: hci0: command 0x040f tx timeout
[   81.746681] Bluetooth: hci1: command 0x040f tx timeout
[   81.747113] Bluetooth: hci2: command 0x040f tx timeout
[   81.874741] Bluetooth: hci4: command 0x040f tx timeout
[   81.875200] Bluetooth: hci3: command 0x040f tx timeout
[   81.939499] Bluetooth: hci7: command 0x040f tx timeout
[   81.939981] Bluetooth: hci6: command 0x040f tx timeout
[   82.706734] Bluetooth: hci5: command 0x0409 tx timeout
[   83.730706] Bluetooth: hci0: command 0x0419 tx timeout
[   83.794730] Bluetooth: hci2: command 0x0419 tx timeout
[   83.795143] Bluetooth: hci1: command 0x0419 tx timeout
[   83.922685] Bluetooth: hci3: command 0x0419 tx timeout
[   83.923108] Bluetooth: hci4: command 0x0419 tx timeout
[   83.986666] Bluetooth: hci6: command 0x0419 tx timeout
[   83.987072] Bluetooth: hci7: command 0x0419 tx timeout
[   84.754779] Bluetooth: hci5: command 0x041b tx timeout
[   86.802698] Bluetooth: hci5: command 0x040f tx timeout
[   88.850674] Bluetooth: hci5: command 0x0419 tx timeout
[  125.956221] loop5: detected capacity change from 0 to 264192
[  125.960421] FAT-fs (loop5): Unrecognized mount option "pcr=00000000000000000019" or missing value
[  126.871373] loop2: detected capacity change from 0 to 16380
[  126.883280] loop2: detected capacity change from 0 to 16380
13:51:52 executing program 7:
ptrace$peek(0x2, 0xffffffffffffffff, &(0x7f0000000000))
timer_create(0x2, &(0x7f0000000100)={0x0, 0x3d, 0x1, @thr={&(0x7f0000000040)="169de50b782af2d27d781954c47c22778be0018c8e7738df8727ed3d563f140be4312762089c2564f2b4cc395a7fda2ee9ff27949129c8a9e2018e0539bd502f9cf3e6b463bb98b74f52aaa9f25ff37632e2d25d050b374bc46244b245505fe92aaacce2edc1362ea7c8a3be6c9335c180bf7e9d41f6b85ba3a9da97", &(0x7f00000000c0)="11ef6a634b98194ea6ba0ffaedc61e604672d060344491736c2d7f2c722c3048d213094220d984999fa17d84697630"}}, &(0x7f0000000140)=<r0=>0x0)
clock_gettime(0x0, &(0x7f0000000180)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x1, &(0x7f00000001c0)={{r1, r2+60000000}, {0x77359400}}, &(0x7f0000000200))
timer_settime(r0, 0x1, &(0x7f0000000240)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(r0, &(0x7f0000000280))
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000300))
clock_gettime(0x3, &(0x7f0000000340))
timer_settime(r0, 0x1, &(0x7f0000000380)={{}, {0x77359400}}, &(0x7f00000003c0))
timer_create(0x4, &(0x7f0000000400)={0x0, 0x6, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000440)=<r3=>0x0)
timer_gettime(r3, &(0x7f0000000480))
timer_delete(r0)
timer_getoverrun(0x0)
timer_getoverrun(0x0)
timer_delete(r3)
timer_create(0x3, &(0x7f00000004c0)={0x0, 0x28, 0x2}, &(0x7f0000000500)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000540)={<r5=>0x0, <r6=>0x0})
timer_settime(r4, 0x1, &(0x7f0000000580)={{r5, r6+60000000}}, &(0x7f00000005c0))
clock_gettime(0x0, &(0x7f0000000600)={<r7=>0x0, <r8=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000640)={{0x77359400}, {r7, r8+60000000}}, &(0x7f0000000680))

13:51:52 executing program 0:
pipe2$9p(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = socket$nl_sock_diag(0x10, 0x3, 0x4)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[r1, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x3)
sendmsg$DCCPDIAG_GETSOCK(r2, &(0x7f0000002b00)={0x0, 0x0, &(0x7f0000002ac0)={&(0x7f0000000100)=ANY=[@ANYBLOB="68000000130004000000000000000000000000054e22000003000000b0000000dbac3da70300000000000000000000000200000005000000", @ANYRES32=0x0, @ANYBLOB="0000000000fb0b963eae8638010000229a8466ccb9d6e6f97c665df5293fad37a60565d5fbf579cdc751038c0ff755282de415f61a9ef7b9850477fa9e221ce42f"], 0x68}}, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x110, r2, 0x10000000)
write$P9_RWALK(r1, &(0x7f0000000180)={0x71, 0x6f, 0x2, {0x8, [{0x4, 0x0, 0x8}, {0x1, 0x3}, {0x20, 0x0, 0x2}, {0x4, 0x2, 0x5}, {0x80, 0x3, 0x5}, {0x10}, {0x8, 0x1, 0x1}, {0x8, 0x4, 0x6}]}}, 0x71)
r3 = accept$unix(0xffffffffffffffff, &(0x7f0000002b40), &(0x7f0000002bc0)=0x6e)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000002c40)={{0x1, 0x1, 0x18, <r4=>r2, {0xee01, 0xee00}}, './file0\x00'})
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000002d00))
r5 = syz_io_uring_setup(0x3b65, &(0x7f0000002f80)={0x0, 0xb6e9, 0xa, 0x1, 0x0, 0x0, r4}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000003000), &(0x7f0000003040))
syz_io_uring_setup(0x0, &(0x7f00000030c0)={0x0, 0x3c96, 0x10, 0x0, 0x2b6, 0x0, r4}, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r5, 0x6, &(0x7f0000003200)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$inet6_icmp(0xa, 0x2, 0x3a)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, r6, {0xd553}}, './file0\x00'})

13:51:52 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x6}, 0x10050, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={0x0}, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0xb, &(0x7f0000000140)=<r0=>0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0)
io_submit(r0, 0x1, &(0x7f0000000180)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f00000003c0)="1b7a1666851945cd80a5a2ac0000000000000000b2122fbfdce63a77a865f0778bd425e749feed51f1439746599f0422a9d32dcef6b20d00ce737d913518a188cb9ad737a3f10ee2333baed5899c00ab0d1cce9ff265d634b3b2996ff3a5a91a9283b3b8cbfac984eccdb937f1d200bf96b5b75d5da9e818e348b4", 0x7b, 0x8, 0x0, 0x2}])
r2 = eventfd2(0x7, 0x0)
sendfile(r1, r2, &(0x7f0000000340)=0x5, 0x400)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/dev\x00')
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff})
close(r1)
openat(0xffffffffffffffff, &(0x7f0000000440)='./file2\x00', 0x600ac3, 0x20)
write(r4, &(0x7f0000000080)="01", 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
openat(0xffffffffffffffff, &(0x7f0000000200)='./file1\x00', 0x0, 0xb)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001640)={0x53, 0xffffffffffffffff, 0x57, 0x34, @scatter={0x2, 0x0, &(0x7f0000001500)=[{&(0x7f00000004c0)=""/1, 0x1}, {&(0x7f0000000500)=""/4096, 0x1000}]}, &(0x7f0000001540)="60bf599cf8326012dc7220f1f7ccc220ecc4ed0ba8a5b52059f401874114a4084028b8f9b28d128d428a07fa73261876c7dbe6de9f2ebc136375b4970e02e85d98638f63d7567169eb1c148271365cfb82f416d7520dea", &(0x7f00000015c0)=""/8, 0x400, 0x3, 0x2, &(0x7f0000001600)})
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan0\x00'})
socket$packet(0x11, 0x3, 0x300)
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000300)={0x7, 0x5})

13:51:52 executing program 2:
io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000040)={r0, 0xb58a, 0x100000001, 0x1})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r2, &(0x7f0000000140)=[{&(0x7f0000000000)='P', 0x1}], 0x1, 0x0, 0x0)
socket$unix(0x1, 0x5, 0x0)
ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r3, 0x0, 0x0, 0x87ffffc)
openat(r3, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102)
openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0)
r4 = memfd_create(&(0x7f0000000200)='-%@,/.(\x00', 0x6)
ftruncate(r0, 0x1)
dup(r4)

13:51:52 executing program 4:
ptrace$peek(0x2, 0xffffffffffffffff, &(0x7f0000000000))
timer_create(0x2, &(0x7f0000000100)={0x0, 0x3d, 0x1, @thr={&(0x7f0000000040)="169de50b782af2d27d781954c47c22778be0018c8e7738df8727ed3d563f140be4312762089c2564f2b4cc395a7fda2ee9ff27949129c8a9e2018e0539bd502f9cf3e6b463bb98b74f52aaa9f25ff37632e2d25d050b374bc46244b245505fe92aaacce2edc1362ea7c8a3be6c9335c180bf7e9d41f6b85ba3a9da97", &(0x7f00000000c0)="11ef6a634b98194ea6ba0ffaedc61e604672d060344491736c2d7f2c722c3048d213094220d984999fa17d84697630"}}, &(0x7f0000000140)=<r0=>0x0)
clock_gettime(0x0, &(0x7f0000000180)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x1, &(0x7f00000001c0)={{r1, r2+60000000}, {0x77359400}}, &(0x7f0000000200))
timer_settime(r0, 0x1, &(0x7f0000000240)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(r0, &(0x7f0000000280))
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000300))
clock_gettime(0x3, &(0x7f0000000340))
timer_settime(r0, 0x1, &(0x7f0000000380)={{}, {0x77359400}}, &(0x7f00000003c0))
timer_create(0x4, &(0x7f0000000400)={0x0, 0x6, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000440)=<r3=>0x0)
timer_gettime(r3, &(0x7f0000000480))
timer_delete(r0)
timer_getoverrun(0x0)
timer_getoverrun(0x0)
timer_delete(r3)
timer_create(0x3, &(0x7f00000004c0)={0x0, 0x28, 0x2}, &(0x7f0000000500)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000540)={<r5=>0x0, <r6=>0x0})
timer_settime(r4, 0x1, &(0x7f0000000580)={{r5, r6+60000000}}, &(0x7f00000005c0))
clock_gettime(0x0, &(0x7f0000000600)={<r7=>0x0, <r8=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000640)={{0x77359400}, {r7, r8+60000000}}, &(0x7f0000000680))

13:51:52 executing program 3:
r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000100)={'fscrypt:', @desc3}, &(0x7f0000000080)={0x0, "be52c58e23fffc8e3137f5652f08ad0fbc860ffdef5764ecc2babdf4532bd3481826cf6eef3eda8fb88f66cf58d882bd67f6b5830b6a36cb74fe0fd62f8aea60"}, 0x48, 0xfffffffffffffffd)
keyctl$chown(0x4, r0, 0xee00, 0x0)
r1 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000480)=ANY=[@ANYBLOB="010000000000000085baa174f0cb114200000000000000000000000000000000000000000000000021000000", @ANYRES32=r0, @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000006162636465666768696a6b6c7d6e6f707172737475767778797a3031fb333435369b9abda94b99bc5fbeb7a34587fd589c253c8d78a4af2a7e4bb29608a657ac938c8922c38d2880d59a07d3a30a0f9b5cf5de90254c1ce10d0a294dd806c5f41783d11f395cf84c515ce062a40f26dfb731"])
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0)
write$binfmt_aout(r2, &(0x7f0000000c40)=ANY=[], 0x820)
r3 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x0)
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000240)={r0, 0x70, 0x97}, &(0x7f0000000380)={'enc=', 'pkcs1', ' hash=', {'sha224-avx2\x00'}}, &(0x7f0000000400)="37441eb7d7053911c81e7e33205253e35f02a6370ffbd57284054940c863f3e820418dfbae502823f4badafd4ab3d07cd68f56686ad7e2fc709d2d5725fcd01ed1289750876846a6966cb6d5b0f0706f3e7b0a54c566fe3858ee98a21bc84216f5764332b21d77500e4e921e870c6eda", &(0x7f0000000580)=""/151)
perf_event_open$cgroup(&(0x7f0000000180)={0x4, 0x80, 0x0, 0x8, 0x5, 0x40, 0x0, 0x2000000000000, 0xa0600, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000140), 0x4}, 0x10a46, 0xe4, 0x7, 0x0, 0x7, 0xffff, 0x1, 0x0, 0x9, 0x0, 0x169}, r2, 0x3, 0xffffffffffffffff, 0xf)
r4 = getpid()
pidfd_open(r4, 0x0)
r5 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x0, @perf_bp={&(0x7f0000000200)}, 0x8, 0x0, 0x0, 0x0, 0x0, 0x5, 0x20, 0x0, 0x0, 0x0, 0x2}, r4, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000000))
ioctl$BTRFS_IOC_QUOTA_RESCAN(r5, 0x4040942c, &(0x7f0000000040)={0x0, 0xf, [0x2, 0x156280000000000, 0x8001, 0x1, 0x7a]})
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$EXT4_IOC_CHECKPOINT(r6, 0x4004662b, &(0x7f0000000340))

13:51:52 executing program 1:
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.procs\x00', &(0x7f0000000080)={0x40, 0x0, 0x10}, 0x18)
r0 = fsmount(0xffffffffffffffff, 0x1, 0x70)
statx(r0, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x100, 0x40, &(0x7f00000000c0))

13:51:52 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x23, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000290000000f000000000000000200000002000000008000000080000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000800000000800000052470000620100000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32383337383038363200"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000e883faa764e6453ab2efc3f3d55b247d010000000c00000000000000dff4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500080000000000000000000000040000006e00000000000000", 0x20, 0x560}, {&(0x7f0000010300)="030000000400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000120000002200000029000f0003000400"/32, 0x20, 0x1000}, {&(0x7f0000010500)="ff3f0c00fc010000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff81000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000000000000000", 0x1080, 0x2000}, {&(0x7f0000000600)="0b5c00000c0001022e00000002000000f40f02022e33000000001f00000000ed25a9c6a7", 0x24, 0x4000}, {&(0x7f0000011700)="00000000001000"/32, 0x20, 0x5000}, {&(0x7f0000011800)="0000000000ff0300"/32, 0x20, 0xfffffffffffff178}, {&(0x7f0000011900)="00000000001000"/32, 0x20, 0x7000}, {&(0x7f0000011a00)="504d4d00504d4dffe0f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x8000}, {&(0x7f0000011b00)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x9000}, {&(0x7f0000011c00)="0200"/32, 0x20, 0x9400}, {&(0x7f0000011d00)="0300"/32, 0x20, 0x9800}, {&(0x7f0000000580)="0400000000000000000000000000000000000000000000000000000000000000a2d800340c6cbd311b698de068a6b08b29f54053f5fe76311d64dd5960e7fffa20fe8e2cc3803127e7c82bf1e745f904667a2959a522759611559e39bd1b1bfe72cf4041faa0649c8fbecc99b14c40", 0x6f, 0x9c00}, {&(0x7f0000011f00)="0500"/32, 0x20, 0xa000}, {&(0x7f0000012000)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000d000"/96, 0x60, 0xa400}, {&(0x7f0000012100)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0xb000}, {&(0x7f0000012200)="0200"/32, 0x20, 0xb400}, {&(0x7f0000012300)="0300"/32, 0x20, 0xb800}, {&(0x7f0000012400)="0400"/32, 0x20, 0xbc00}, {&(0x7f0000012500)="0500"/32, 0x20, 0xc000}, {&(0x7f0000000040)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000d000"/96, 0x60, 0xc400}, {&(0x7f0000012700)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d80f050766696c14d95c25000000000000000000", 0x40, 0xd000}, {&(0x7f0000012800)="ffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff000002ea0100000001000000270f240c000000000000000000000000000000000601f80f0000000006000000779b539778617474723100000601f00f00000000060000007498539778617474723200"/4192, 0x1060, 0x12000}, {&(0x7f0000013900)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xattr2\x00\x00xattr1\x00\x00', 0x20, 0x13fe0}, {&(0x7f0000013a00)="0000000000000000dff4655fdff4655fdff4655f00"/32, 0x20, 0x22000}, {&(0x7f0000013b00)="ed41000000100000dff4655fe0f4655fe0f4655f00000000000004000800000000000800050000000af301000400000000000000000000000100000003000000", 0x40, 0x22080}, {&(0x7f0000013c00)="8081000000180000dff4655fdff4655fdff4655f00000000000001001000000010000800000000000af301000400000000000000000000000200000009000000", 0x40, 0x22100}, {&(0x7f0000013d00)="8081000000180000dff4655fdff4655fdff4655f00000000000001001000000010000800000000000af30100040000000000000000000000020000000b000000", 0x40, 0x22180}, {&(0x7f0000013e00)="c041000000400000dff4655fdff4655fdff4655f00000000000002002000000000000800000000000af301000400000000000000000000000400000004000000", 0x40, 0x22500}, {&(0x7f0000013f00)="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"/768, 0x300, 0x22580}, {&(0x7f0000014200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x22ffc}, {&(0x7f0000014700)='syzkallers\x00'/32, 0x20, 0x80000024000}, {&(0x7f0000000140)="73797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797ac578e96b616c6c657273797a6b616c6c65727300"/131, 0x83, 0x28000}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="e1e17683f6fa00"])

[  143.453185] loop5: detected capacity change from 0 to 264192
[  143.456715] ext4: Unknown parameter '��v���'
[  143.471301] loop5: detected capacity change from 0 to 264192
13:51:52 executing program 4:
ptrace$peek(0x2, 0xffffffffffffffff, &(0x7f0000000000))
timer_create(0x2, &(0x7f0000000100)={0x0, 0x3d, 0x1, @thr={&(0x7f0000000040)="169de50b782af2d27d781954c47c22778be0018c8e7738df8727ed3d563f140be4312762089c2564f2b4cc395a7fda2ee9ff27949129c8a9e2018e0539bd502f9cf3e6b463bb98b74f52aaa9f25ff37632e2d25d050b374bc46244b245505fe92aaacce2edc1362ea7c8a3be6c9335c180bf7e9d41f6b85ba3a9da97", &(0x7f00000000c0)="11ef6a634b98194ea6ba0ffaedc61e604672d060344491736c2d7f2c722c3048d213094220d984999fa17d84697630"}}, &(0x7f0000000140)=<r0=>0x0)
clock_gettime(0x0, &(0x7f0000000180)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x1, &(0x7f00000001c0)={{r1, r2+60000000}, {0x77359400}}, &(0x7f0000000200))
timer_settime(r0, 0x1, &(0x7f0000000240)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(r0, &(0x7f0000000280))
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000300))
clock_gettime(0x3, &(0x7f0000000340))
timer_settime(r0, 0x1, &(0x7f0000000380)={{}, {0x77359400}}, &(0x7f00000003c0))
timer_create(0x4, &(0x7f0000000400)={0x0, 0x6, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000440)=<r3=>0x0)
timer_gettime(r3, &(0x7f0000000480))
timer_delete(r0)
timer_getoverrun(0x0)
timer_getoverrun(0x0)
timer_delete(r3)
timer_create(0x3, &(0x7f00000004c0)={0x0, 0x28, 0x2}, &(0x7f0000000500)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000540)={<r5=>0x0, <r6=>0x0})
timer_settime(r4, 0x1, &(0x7f0000000580)={{r5, r6+60000000}}, &(0x7f00000005c0))
clock_gettime(0x0, &(0x7f0000000600)={<r7=>0x0, <r8=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000640)={{0x77359400}, {r7, r8+60000000}}, &(0x7f0000000680))

[  143.475035] audit: type=1400 audit(1664027512.478:7): avc:  denied  { open } for  pid=3978 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
13:51:52 executing program 0:
r0 = fsmount(0xffffffffffffffff, 0x0, 0x85)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000080)=[r0, 0xffffffffffffffff, 0xffffffffffffffff], 0x3)
keyctl$chown(0x4, 0x0, 0xee01, 0xee01)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './file0\x00'})
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, &(0x7f0000000100)={0x0, 0x6e, 0x4c}, &(0x7f0000000140)={'enc=', 'oaep', ' hash=', {'sha384-ssse3\x00'}}, &(0x7f00000001c0)="89153f6df23ca24b5228c1d0bedeedef7fcbd7bf8a29da41eb535a408a5b2ca0fe635a0ea8e0f912c94bdc436a0ee68e070c4fa6075a74c32ff0f3300ec398896af52bb697a273fd6302bc0eb4e17216a55e67a6c879f6e86888dcf30329aac246c05fd27bc8357db0d1540cd787", &(0x7f0000000240)=""/76)
fsopen(&(0x7f00000002c0)='befs\x00', 0x0)
clock_getres(0x5, &(0x7f0000000300))
clock_getres(0x6, &(0x7f0000000340))
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
clock_getres(0x2, &(0x7f0000000380))
add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, r1)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$link(0x8, r1, r2)
clock_getres(0x0, &(0x7f00000003c0))
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000000)='.dead\x00', &(0x7f0000000040))
syz_mount_image$msdos(&(0x7f0000000500), &(0x7f0000000540)='./file0\x00', 0x1, 0x2, &(0x7f0000000700)=[{&(0x7f0000000580)="0e3f3a5b02707be49f41f9e7392a612bf2fd106d4fed7e27728fda8d3b33f6233776cd78627ec2523c116d3f6d248d52841dc9c914f21f5f7ad6efc15f9832e1f2a1574a1f006faa34d21e985acc78a1648a4b78966951808836667d466df8b5fd", 0x61, 0x2}, {&(0x7f0000000600)="9879c56c0a2c53555cb1cbb06f8acac0f2901418e01e1c3763900cbcfcf34d56414befe02c92416218355836c38dce28892ae7b226d55989beabf5fdc35189f1df9e26008567994da57a3c814bfbaeb5a7676342e948a5e9b5bef6de8c34d2b0308c6af09633f67d0ffce59f5c8847018d6ac521323f67807056f0e2021d5163b9112778439722d06a981aba8198301bafb3d5ed72027e6bfc7567f1c616a98f3c55b515c86d067b0ae016fabc3a6718798992206ef475cf57f952fe38d8b70dc83a8e1cfb2eba1011889552cacb2f3dec95adc9b6c62cce655e25b6236763e2", 0xe0, 0x8001}], 0x800000, &(0x7f0000000400)={[{@nodots}, {@nodots}, {@fat=@allow_utime={'allow_utime', 0x3d, 0xbf}}, {@nodots}, {@nodots}, {@nodots}, {@dots}, {@dots}], [{@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@fowner_lt}, {@smackfshat={'smackfshat', 0x3d, '!\'$)'}}]})

[  143.479067] audit: type=1400 audit(1664027512.479:8): avc:  denied  { kernel } for  pid=3978 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  143.480002] ext4: Unknown parameter '��v���'
[  143.497927] ------------[ cut here ]------------
[  143.497951] 
[  143.497954] ======================================================
[  143.497957] WARNING: possible circular locking dependency detected
[  143.497961] 6.0.0-rc6-next-20220923 #1 Not tainted
[  143.497967] ------------------------------------------------------
[  143.497970] syz-executor.6/3990 is trying to acquire lock:
[  143.497977] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  143.498018] 
[  143.498018] but task is already holding lock:
[  143.498021] ffff88800e828020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  143.498049] 
[  143.498049] which lock already depends on the new lock.
[  143.498049] 
[  143.498052] 
[  143.498052] the existing dependency chain (in reverse order) is:
[  143.498055] 
[  143.498055] -> #3 (&ctx->lock){....}-{2:2}:
[  143.498069]        _raw_spin_lock+0x2a/0x40
[  143.498088]        __perf_event_task_sched_out+0x53b/0x18d0
[  143.498100]        __schedule+0xedd/0x2470
[  143.498113]        schedule+0xda/0x1b0
[  143.498126]        exit_to_user_mode_prepare+0x114/0x1a0
[  143.498138]        syscall_exit_to_user_mode+0x19/0x40
[  143.498150]        do_syscall_64+0x48/0x90
[  143.498166]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  143.498178] 
[  143.498178] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  143.498192]        _raw_spin_lock_nested+0x30/0x40
[  143.498209]        raw_spin_rq_lock_nested+0x1e/0x30
[  143.498224]        task_fork_fair+0x63/0x4d0
[  143.498240]        sched_cgroup_fork+0x3d0/0x540
[  143.498254]        copy_process+0x4183/0x6e20
[  143.498265]        kernel_clone+0xe7/0x890
[  143.498274]        user_mode_thread+0xad/0xf0
[  143.498284]        rest_init+0x24/0x250
[  143.498295]        arch_call_rest_init+0xf/0x14
[  143.498313]        start_kernel+0x4c1/0x4e6
[  143.498328]        secondary_startup_64_no_verify+0xe0/0xeb
[  143.498342] 
[  143.498342] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  143.498355]        _raw_spin_lock_irqsave+0x39/0x60
[  143.498373]        try_to_wake_up+0xab/0x1930
[  143.498386]        up+0x75/0xb0
[  143.498400]        __up_console_sem+0x6e/0x80
[  143.498416]        console_unlock+0x46a/0x590
[  143.498431]        vprintk_emit+0x1bd/0x560
[  143.498447]        vprintk+0x84/0xa0
[  143.498462]        _printk+0xba/0xf1
[  143.498474]        kauditd_hold_skb.cold+0x3f/0x4e
[  143.498490]        kauditd_send_queue+0x233/0x290
[  143.498505]        kauditd_thread+0x5da/0x9a0
[  143.498518]        kthread+0x2ed/0x3a0
[  143.498533]        ret_from_fork+0x22/0x30
[  143.498545] 
[  143.498545] -> #0 ((console_sem).lock){....}-{2:2}:
[  143.498558]        __lock_acquire+0x2a02/0x5e70
[  143.498575]        lock_acquire+0x1a2/0x530
[  143.498590]        _raw_spin_lock_irqsave+0x39/0x60
[  143.498608]        down_trylock+0xe/0x70
[  143.498623]        __down_trylock_console_sem+0x3b/0xd0
[  143.498638]        vprintk_emit+0x16b/0x560
[  143.498654]        vprintk+0x84/0xa0
[  143.498669]        _printk+0xba/0xf1
[  143.498679]        report_bug.cold+0x72/0xab
[  143.498694]        handle_bug+0x3c/0x70
[  143.498710]        exc_invalid_op+0x14/0x50
[  143.498726]        asm_exc_invalid_op+0x16/0x20
[  143.498738]        group_sched_out.part.0+0x2c7/0x460
[  143.498748]        ctx_sched_out+0x8f1/0xc10
[  143.498758]        __perf_event_task_sched_out+0x6d0/0x18d0
[  143.498771]        __schedule+0xedd/0x2470
[  143.498783]        schedule+0xda/0x1b0
[  143.498796]        futex_wait_queue+0xf5/0x1e0
[  143.498807]        futex_wait+0x28e/0x690
[  143.498817]        do_futex+0x2ff/0x380
[  143.498826]        __x64_sys_futex+0x1c6/0x4d0
[  143.498836]        do_syscall_64+0x3b/0x90
[  143.498852]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  143.498863] 
[  143.498863] other info that might help us debug this:
[  143.498863] 
[  143.498866] Chain exists of:
[  143.498866]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  143.498866] 
[  143.498881]  Possible unsafe locking scenario:
[  143.498881] 
[  143.498883]        CPU0                    CPU1
[  143.498885]        ----                    ----
[  143.498888]   lock(&ctx->lock);
[  143.498893]                                lock(&rq->__lock);
[  143.498899]                                lock(&ctx->lock);
[  143.498905]   lock((console_sem).lock);
[  143.498911] 
[  143.498911]  *** DEADLOCK ***
[  143.498911] 
[  143.498913] 2 locks held by syz-executor.6/3990:
[  143.498919]  #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  143.498948]  #1: ffff88800e828020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  143.498975] 
[  143.498975] stack backtrace:
[  143.498977] CPU: 0 PID: 3990 Comm: syz-executor.6 Not tainted 6.0.0-rc6-next-20220923 #1
[  143.498990] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  143.498998] Call Trace:
[  143.499001]  <TASK>
[  143.499005]  dump_stack_lvl+0x8b/0xb3
[  143.499023]  check_noncircular+0x263/0x2e0
[  143.499039]  ? format_decode+0x26c/0xb50
[  143.499055]  ? print_circular_bug+0x450/0x450
[  143.499071]  ? enable_ptr_key_workfn+0x20/0x20
[  143.499088]  ? format_decode+0x26c/0xb50
[  143.499104]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  143.499121]  __lock_acquire+0x2a02/0x5e70
[  143.499142]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  143.499164]  lock_acquire+0x1a2/0x530
[  143.499180]  ? down_trylock+0xe/0x70
[  143.499197]  ? lock_release+0x750/0x750
[  143.499215]  ? mark_lock.part.0+0xef/0x2f70
[  143.499233]  ? vprintk+0x84/0xa0
[  143.499250]  _raw_spin_lock_irqsave+0x39/0x60
[  143.499269]  ? down_trylock+0xe/0x70
[  143.499284]  down_trylock+0xe/0x70
[  143.499299]  ? vprintk+0x84/0xa0
[  143.499315]  __down_trylock_console_sem+0x3b/0xd0
[  143.499332]  vprintk_emit+0x16b/0x560
[  143.499351]  vprintk+0x84/0xa0
[  143.499368]  _printk+0xba/0xf1
[  143.499379]  ? record_print_text.cold+0x16/0x16
[  143.499394]  ? report_bug.cold+0x66/0xab
[  143.499411]  ? group_sched_out.part.0+0x2c7/0x460
[  143.499423]  report_bug.cold+0x72/0xab
[  143.499441]  handle_bug+0x3c/0x70
[  143.499457]  exc_invalid_op+0x14/0x50
[  143.499475]  asm_exc_invalid_op+0x16/0x20
[  143.499487] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  143.499501] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  143.499512] RSP: 0018:ffff8880418878f8 EFLAGS: 00010006
[  143.499521] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  143.499529] RDX: ffff888041771ac0 RSI: ffffffff81564fb7 RDI: 0000000000000005
[  143.499536] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001
[  143.499544] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800e828000
[  143.499551] R13: ffff88806ce3d140 R14: ffffffff8547d040 R15: 0000000000000002
[  143.499562]  ? group_sched_out.part.0+0x2c7/0x460
[  143.499575]  ? group_sched_out.part.0+0x2c7/0x460
[  143.499588]  ctx_sched_out+0x8f1/0xc10
[  143.499601]  __perf_event_task_sched_out+0x6d0/0x18d0
[  143.499617]  ? lock_is_held_type+0xd7/0x130
[  143.499630]  ? __perf_cgroup_move+0x160/0x160
[  143.499642]  ? set_next_entity+0x304/0x550
[  143.499661]  ? lock_is_held_type+0xd7/0x130
[  143.499674]  __schedule+0xedd/0x2470
[  143.499691]  ? io_schedule_timeout+0x150/0x150
[  143.499705]  ? futex_wait_setup+0x166/0x230
[  143.499720]  schedule+0xda/0x1b0
[  143.499734]  futex_wait_queue+0xf5/0x1e0
[  143.499746]  futex_wait+0x28e/0x690
[  143.499758]  ? futex_wait_setup+0x230/0x230
[  143.499772]  ? wake_up_q+0x8b/0xf0
[  143.499784]  ? do_raw_spin_unlock+0x4f/0x220
[  143.499803]  ? futex_wake+0x158/0x490
[  143.499819]  ? fd_install+0x1f9/0x640
[  143.499836]  do_futex+0x2ff/0x380
[  143.499847]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  143.499863]  __x64_sys_futex+0x1c6/0x4d0
[  143.499876]  ? __x64_sys_futex_time32+0x480/0x480
[  143.499887]  ? trace_rcu_dyntick+0x1a7/0x250
[  143.499907]  ? syscall_enter_from_user_mode+0x1d/0x50
[  143.499920]  ? syscall_enter_from_user_mode+0x1d/0x50
[  143.499935]  do_syscall_64+0x3b/0x90
[  143.499952]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  143.499965] RIP: 0033:0x7fb37d241b19
[  143.499973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  143.499984] RSP: 002b:00007fb37a7b7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  143.499994] RAX: ffffffffffffffda RBX: 00007fb37d354f68 RCX: 00007fb37d241b19
[  143.500003] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb37d354f68
[  143.500010] RBP: 00007fb37d354f60 R08: 0000000000000000 R09: 0000000000000000
[  143.500017] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb37d354f6c
[  143.500024] R13: 00007fffc5d7b86f R14: 00007fb37a7b7300 R15: 0000000000022000
[  143.500037]  </TASK>
[  143.562465] WARNING: CPU: 0 PID: 3990 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  143.563067] Modules linked in:
[  143.563286] CPU: 0 PID: 3990 Comm: syz-executor.6 Not tainted 6.0.0-rc6-next-20220923 #1
[  143.563823] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  143.564563] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  143.564929] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  143.566105] RSP: 0018:ffff8880418878f8 EFLAGS: 00010006
[  143.566464] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  143.566934] RDX: ffff888041771ac0 RSI: ffffffff81564fb7 RDI: 0000000000000005
[  143.567404] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001
[  143.567872] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800e828000
[  143.568341] R13: ffff88806ce3d140 R14: ffffffff8547d040 R15: 0000000000000002
[  143.568842] FS:  00007fb37a7b7700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  143.569368] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  143.569752] CR2: 00007f6bbecbc3a4 CR3: 0000000020508000 CR4: 0000000000350ef0
[  143.570226] Call Trace:
[  143.570403]  <TASK>
[  143.570563]  ctx_sched_out+0x8f1/0xc10
[  143.570834]  __perf_event_task_sched_out+0x6d0/0x18d0
[  143.571183]  ? lock_is_held_type+0xd7/0x130
[  143.571476]  ? __perf_cgroup_move+0x160/0x160
[  143.571783]  ? set_next_entity+0x304/0x550
[  143.572085]  ? lock_is_held_type+0xd7/0x130
[  143.572388]  __schedule+0xedd/0x2470
[  143.572652]  ? io_schedule_timeout+0x150/0x150
[  143.572967]  ? futex_wait_setup+0x166/0x230
[  143.573262]  schedule+0xda/0x1b0
[  143.573500]  futex_wait_queue+0xf5/0x1e0
[  143.573776]  futex_wait+0x28e/0x690
[  143.574029]  ? futex_wait_setup+0x230/0x230
[  143.574322]  ? wake_up_q+0x8b/0xf0
[  143.574568]  ? do_raw_spin_unlock+0x4f/0x220
[  143.574873]  ? futex_wake+0x158/0x490
[  143.575139]  ? fd_install+0x1f9/0x640
[  143.575404]  do_futex+0x2ff/0x380
[  143.575648]  ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0
[  143.576035]  __x64_sys_futex+0x1c6/0x4d0
[  143.576311]  ? __x64_sys_futex_time32+0x480/0x480
[  143.576649]  ? trace_rcu_dyntick+0x1a7/0x250
[  143.576957]  ? syscall_enter_from_user_mode+0x1d/0x50
[  143.577305]  ? syscall_enter_from_user_mode+0x1d/0x50
[  143.577656]  do_syscall_64+0x3b/0x90
[  143.577917]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  143.578261] RIP: 0033:0x7fb37d241b19
[  143.578511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  143.579684] RSP: 002b:00007fb37a7b7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  143.580182] RAX: ffffffffffffffda RBX: 00007fb37d354f68 RCX: 00007fb37d241b19
[  143.580666] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb37d354f68
[  143.581140] RBP: 00007fb37d354f60 R08: 0000000000000000 R09: 0000000000000000
[  143.581612] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fb37d354f6c
[  143.582079] R13: 00007fffc5d7b86f R14: 00007fb37a7b7300 R15: 0000000000022000
[  143.582557]  </TASK>
[  143.582721] irq event stamp: 804
[  143.582949] hardirqs last  enabled at (803): [<ffffffff8425030d>] syscall_enter_from_user_mode+0x1d/0x50
[  143.583568] hardirqs last disabled at (804): [<ffffffff84259645>] __schedule+0x1225/0x2470
[  143.584111] softirqs last  enabled at (586): [<ffffffff8116fa8b>] __irq_exit_rcu+0x11b/0x180
[  143.584681] softirqs last disabled at (41): [<ffffffff8116fa8b>] __irq_exit_rcu+0x11b/0x180
[  143.585232] ---[ end trace 0000000000000000 ]---
13:51:52 executing program 7:
ptrace$peek(0x2, 0xffffffffffffffff, &(0x7f0000000000))
timer_create(0x2, &(0x7f0000000100)={0x0, 0x3d, 0x1, @thr={&(0x7f0000000040)="169de50b782af2d27d781954c47c22778be0018c8e7738df8727ed3d563f140be4312762089c2564f2b4cc395a7fda2ee9ff27949129c8a9e2018e0539bd502f9cf3e6b463bb98b74f52aaa9f25ff37632e2d25d050b374bc46244b245505fe92aaacce2edc1362ea7c8a3be6c9335c180bf7e9d41f6b85ba3a9da97", &(0x7f00000000c0)="11ef6a634b98194ea6ba0ffaedc61e604672d060344491736c2d7f2c722c3048d213094220d984999fa17d84697630"}}, &(0x7f0000000140)=<r0=>0x0)
clock_gettime(0x0, &(0x7f0000000180)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x1, &(0x7f00000001c0)={{r1, r2+60000000}, {0x77359400}}, &(0x7f0000000200))
timer_settime(r0, 0x1, &(0x7f0000000240)={{0x0, 0x3938700}, {0x77359400}}, 0x0)
timer_gettime(r0, &(0x7f0000000280))
timer_settime(0x0, 0x1, &(0x7f00000002c0)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000300))
clock_gettime(0x3, &(0x7f0000000340))
timer_settime(r0, 0x1, &(0x7f0000000380)={{}, {0x77359400}}, &(0x7f00000003c0))
timer_create(0x4, &(0x7f0000000400)={0x0, 0x6, 0x4, @tid=0xffffffffffffffff}, &(0x7f0000000440)=<r3=>0x0)
timer_gettime(r3, &(0x7f0000000480))
timer_delete(r0)
timer_getoverrun(0x0)
timer_getoverrun(0x0)
timer_delete(r3)
timer_create(0x3, &(0x7f00000004c0)={0x0, 0x28, 0x2}, &(0x7f0000000500)=<r4=>0x0)
clock_gettime(0x0, &(0x7f0000000540)={<r5=>0x0, <r6=>0x0})
timer_settime(r4, 0x1, &(0x7f0000000580)={{r5, r6+60000000}}, &(0x7f00000005c0))
clock_gettime(0x0, &(0x7f0000000600)={<r7=>0x0, <r8=>0x0})
timer_settime(r3, 0x0, &(0x7f0000000640)={{0x77359400}, {r7, r8+60000000}}, &(0x7f0000000680))

13:51:52 executing program 1:
r0 = syz_mount_image$vfat(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup2(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000100), 0x0, 0x0)
chroot(&(0x7f0000000000)='./file0/../file0\x00')
chdir(&(0x7f00000001c0)='./file0/../file0/../file0\x00')
r1 = creat(&(0x7f0000000040)='./file0/../file0\x00', 0x40)
openat(r1, &(0x7f00000002c0)='./file0\x00', 0x680080, 0x0)
mount$9p_unix(0xffffffffffffffff, &(0x7f00000000c0)='./file0/../file0/../file0\x00', &(0x7f0000000140), 0x18880ac, &(0x7f0000000200)={'trans=unix,', {[{@version_u}], [{@smackfstransmute={'smackfstransmute', 0x3d, '!'}}, {@seclabel}, {@context={'context', 0x3d, 'root'}}, {@subj_user={'subj_user', 0x3d, '-+'}}]}})
dup2(r0, 0xffffffffffffffff)
rmdir(&(0x7f0000000280)='./file0/../file0/../file0\x00')

13:51:52 executing program 5:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000080)=[{&(0x7f0000000140)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b00000000002b0230e6", 0x5e, 0x400}], 0x10040, &(0x7f0000012f00))

[  143.665631] hrtimer: interrupt took 15660 ns
[  143.785488] loop0: detected capacity change from 0 to 128
[  143.794061] loop5: detected capacity change from 0 to 4
[  143.795115] =======================================================
[  143.795115] WARNING: The mand mount option has been deprecated and
[  143.795115]          and is ignored by this kernel. Remove the mand
[  143.795115]          option from the mount to silence this warning.
[  143.795115] =======================================================
[  143.795339] FAT-fs (loop0): Unrecognized mount option "mask=^MAY_EXEC" or missing value
[  143.802581] EXT4-fs (loop5): unsupported inode size: 0
[  143.803157] EXT4-fs (loop5): blocksize: 2048
[  143.804084] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[  143.805043] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[  143.805719] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[  143.806357] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 08 00
[  143.807109] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 2
[  143.808350] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  143.809459] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.810674] Buffer I/O error on dev sr0, logical block 0, async page read
[  143.811860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  143.812722] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.814057] Buffer I/O error on dev sr0, logical block 1, async page read
[  143.815175] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  143.815968] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.817330] Buffer I/O error on dev sr0, logical block 2, async page read
[  143.818491] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  143.819282] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.819693] loop5: detected capacity change from 0 to 4
[  143.820433] Buffer I/O error on dev sr0, logical block 3, async page read
[  143.821901] EXT4-fs (loop5): unsupported inode size: 0
[  143.821982] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  143.822273] EXT4-fs (loop5): blocksize: 2048
[  143.823099] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.824678] Buffer I/O error on dev sr0, logical block 4, async page read
[  143.827250] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  143.828111] I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.829372] Buffer I/O error on dev sr0, logical block 5, async page read
[  143.830561] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  143.831408] I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.832690] Buffer I/O error on dev sr0, logical block 6, async page read
[  143.833766] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[  143.834573] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  143.835793] Buffer I/O error on dev sr0, logical block 7, async page read
[  143.894300] syz-executor.6 (3990) used greatest stack depth: 24624 bytes left

VM DIAGNOSIS:
13:51:52  Registers:
info registers vcpu 0
RAX=0000000000000039 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff888041887348
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000039 R11=0000000000000001
R12=0000000000000039 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0
RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fb37a7b7700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6bbecbc3a4 CR3=0000000020508000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007fb37d3287c0 00007fb37d3287c8
YMM02=0000000000000000 0000000000000000 00007fb37d3287e0 00007fb37d3287c0
YMM03=0000000000000000 0000000000000000 00007fb37d3287c8 00007fb37d3287c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=ffff88806ce3eee0 RCX=0000000000000000 RDX=ffff888019d60000
RSI=ffffffff813bbc04 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880204bf948
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffffed100d9c7ddd R13=0000000000000001 R14=ffff88806ce3eee8 R15=dffffc0000000000
RIP=ffffffff813bbc06 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 000055555648e400 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fb37d34e55c CR3=0000000020508000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007fb37d3287c0 00007fb37d3287c8
YMM02=0000000000000000 0000000000000000 00007fb37d3287e0 00007fb37d3287c0
YMM03=0000000000000000 0000000000000000 00007fb37d3287c8 00007fb37d3287c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000