Warning: Permanently added '[localhost]:45991' (ECDSA) to the list of known hosts.
2022/09/27 02:09:18 fuzzer started
2022/09/27 02:09:19 dialing manager at localhost:38881
syzkaller login: [   35.865191] cgroup: Unknown subsys name 'net'
[   35.968534] cgroup: Unknown subsys name 'rlimit'
2022/09/27 02:09:34 syscalls: 2215
2022/09/27 02:09:34 code coverage: enabled
2022/09/27 02:09:34 comparison tracing: enabled
2022/09/27 02:09:34 extra coverage: enabled
2022/09/27 02:09:34 setuid sandbox: enabled
2022/09/27 02:09:34 namespace sandbox: enabled
2022/09/27 02:09:34 Android sandbox: enabled
2022/09/27 02:09:34 fault injection: enabled
2022/09/27 02:09:34 leak checking: enabled
2022/09/27 02:09:34 net packet injection: enabled
2022/09/27 02:09:34 net device setup: enabled
2022/09/27 02:09:34 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/27 02:09:34 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/27 02:09:34 USB emulation: enabled
2022/09/27 02:09:34 hci packet injection: enabled
2022/09/27 02:09:34 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923                                          )
2022/09/27 02:09:34 802.15.4 emulation: enabled
2022/09/27 02:09:35 fetching corpus: 50, signal 24153/25972 (executing program)
2022/09/27 02:09:35 fetching corpus: 100, signal 32493/35997 (executing program)
2022/09/27 02:09:35 fetching corpus: 150, signal 41742/46815 (executing program)
2022/09/27 02:09:35 fetching corpus: 200, signal 52687/59124 (executing program)
2022/09/27 02:09:35 fetching corpus: 250, signal 57049/64926 (executing program)
2022/09/27 02:09:35 fetching corpus: 300, signal 60269/69590 (executing program)
2022/09/27 02:09:35 fetching corpus: 350, signal 67566/78074 (executing program)
2022/09/27 02:09:35 fetching corpus: 400, signal 70571/82380 (executing program)
2022/09/27 02:09:35 fetching corpus: 450, signal 74505/87581 (executing program)
2022/09/27 02:09:36 fetching corpus: 500, signal 78637/92842 (executing program)
2022/09/27 02:09:36 fetching corpus: 550, signal 79858/95409 (executing program)
2022/09/27 02:09:36 fetching corpus: 600, signal 83209/99882 (executing program)
2022/09/27 02:09:36 fetching corpus: 650, signal 85924/103698 (executing program)
2022/09/27 02:09:36 fetching corpus: 700, signal 88405/107304 (executing program)
2022/09/27 02:09:36 fetching corpus: 750, signal 90701/110733 (executing program)
2022/09/27 02:09:36 fetching corpus: 800, signal 93094/114106 (executing program)
2022/09/27 02:09:36 fetching corpus: 850, signal 94669/116828 (executing program)
2022/09/27 02:09:36 fetching corpus: 900, signal 96870/120046 (executing program)
2022/09/27 02:09:36 fetching corpus: 950, signal 98859/123029 (executing program)
2022/09/27 02:09:36 fetching corpus: 1000, signal 100111/125416 (executing program)
2022/09/27 02:09:37 fetching corpus: 1050, signal 102270/128453 (executing program)
2022/09/27 02:09:37 fetching corpus: 1100, signal 105586/132543 (executing program)
2022/09/27 02:09:37 fetching corpus: 1150, signal 107881/135698 (executing program)
2022/09/27 02:09:37 fetching corpus: 1200, signal 109046/137880 (executing program)
2022/09/27 02:09:37 fetching corpus: 1250, signal 110752/140496 (executing program)
2022/09/27 02:09:37 fetching corpus: 1300, signal 112663/143229 (executing program)
2022/09/27 02:09:37 fetching corpus: 1350, signal 115443/146648 (executing program)
2022/09/27 02:09:37 fetching corpus: 1400, signal 117137/149132 (executing program)
2022/09/27 02:09:38 fetching corpus: 1450, signal 118222/151141 (executing program)
2022/09/27 02:09:38 fetching corpus: 1500, signal 119022/152901 (executing program)
2022/09/27 02:09:38 fetching corpus: 1550, signal 120006/154767 (executing program)
2022/09/27 02:09:38 fetching corpus: 1600, signal 121654/157165 (executing program)
2022/09/27 02:09:38 fetching corpus: 1650, signal 123041/159314 (executing program)
2022/09/27 02:09:38 fetching corpus: 1700, signal 124130/161242 (executing program)
2022/09/27 02:09:38 fetching corpus: 1750, signal 125293/163209 (executing program)
2022/09/27 02:09:38 fetching corpus: 1800, signal 126831/165425 (executing program)
2022/09/27 02:09:38 fetching corpus: 1850, signal 128833/167988 (executing program)
2022/09/27 02:09:38 fetching corpus: 1900, signal 129613/169623 (executing program)
2022/09/27 02:09:39 fetching corpus: 1950, signal 130524/171314 (executing program)
2022/09/27 02:09:39 fetching corpus: 2000, signal 131511/173068 (executing program)
2022/09/27 02:09:39 fetching corpus: 2050, signal 132241/174639 (executing program)
2022/09/27 02:09:39 fetching corpus: 2100, signal 132913/176149 (executing program)
2022/09/27 02:09:39 fetching corpus: 2150, signal 133927/177840 (executing program)
2022/09/27 02:09:39 fetching corpus: 2200, signal 135478/179903 (executing program)
2022/09/27 02:09:39 fetching corpus: 2250, signal 136727/181786 (executing program)
2022/09/27 02:09:39 fetching corpus: 2300, signal 137435/183264 (executing program)
2022/09/27 02:09:39 fetching corpus: 2350, signal 138806/185160 (executing program)
2022/09/27 02:09:39 fetching corpus: 2400, signal 140058/187042 (executing program)
2022/09/27 02:09:40 fetching corpus: 2450, signal 140711/188442 (executing program)
2022/09/27 02:09:40 fetching corpus: 2500, signal 142230/190402 (executing program)
2022/09/27 02:09:40 fetching corpus: 2550, signal 143243/191988 (executing program)
2022/09/27 02:09:40 fetching corpus: 2600, signal 145514/194405 (executing program)
2022/09/27 02:09:40 fetching corpus: 2650, signal 146447/195873 (executing program)
2022/09/27 02:09:40 fetching corpus: 2700, signal 147694/197564 (executing program)
2022/09/27 02:09:40 fetching corpus: 2750, signal 148358/198936 (executing program)
2022/09/27 02:09:40 fetching corpus: 2800, signal 149111/200330 (executing program)
2022/09/27 02:09:41 fetching corpus: 2850, signal 149835/201692 (executing program)
2022/09/27 02:09:41 fetching corpus: 2900, signal 150898/203215 (executing program)
2022/09/27 02:09:41 fetching corpus: 2950, signal 151985/204745 (executing program)
2022/09/27 02:09:41 fetching corpus: 3000, signal 153559/206477 (executing program)
2022/09/27 02:09:41 fetching corpus: 3050, signal 154801/208038 (executing program)
2022/09/27 02:09:41 fetching corpus: 3100, signal 156078/209627 (executing program)
2022/09/27 02:09:41 fetching corpus: 3150, signal 157026/211004 (executing program)
2022/09/27 02:09:41 fetching corpus: 3200, signal 157880/212301 (executing program)
2022/09/27 02:09:42 fetching corpus: 3250, signal 159033/213764 (executing program)
2022/09/27 02:09:42 fetching corpus: 3300, signal 160207/215246 (executing program)
2022/09/27 02:09:42 fetching corpus: 3350, signal 161664/216765 (executing program)
2022/09/27 02:09:42 fetching corpus: 3400, signal 162740/218144 (executing program)
2022/09/27 02:09:42 fetching corpus: 3450, signal 163399/219263 (executing program)
2022/09/27 02:09:42 fetching corpus: 3500, signal 164214/220471 (executing program)
2022/09/27 02:09:42 fetching corpus: 3550, signal 165087/221687 (executing program)
2022/09/27 02:09:42 fetching corpus: 3600, signal 165647/222791 (executing program)
2022/09/27 02:09:43 fetching corpus: 3650, signal 167593/224493 (executing program)
2022/09/27 02:09:43 fetching corpus: 3700, signal 168990/225921 (executing program)
2022/09/27 02:09:43 fetching corpus: 3750, signal 169616/226984 (executing program)
2022/09/27 02:09:43 fetching corpus: 3800, signal 170476/228102 (executing program)
2022/09/27 02:09:43 fetching corpus: 3850, signal 171160/229212 (executing program)
2022/09/27 02:09:43 fetching corpus: 3900, signal 171763/230198 (executing program)
2022/09/27 02:09:43 fetching corpus: 3950, signal 172291/231222 (executing program)
2022/09/27 02:09:43 fetching corpus: 4000, signal 173484/232447 (executing program)
2022/09/27 02:09:44 fetching corpus: 4050, signal 174361/233579 (executing program)
2022/09/27 02:09:44 fetching corpus: 4100, signal 175071/234588 (executing program)
2022/09/27 02:09:44 fetching corpus: 4150, signal 175881/235608 (executing program)
2022/09/27 02:09:44 fetching corpus: 4200, signal 176174/236449 (executing program)
2022/09/27 02:09:44 fetching corpus: 4250, signal 176758/237426 (executing program)
2022/09/27 02:09:44 fetching corpus: 4300, signal 177273/238348 (executing program)
2022/09/27 02:09:44 fetching corpus: 4350, signal 178241/239432 (executing program)
2022/09/27 02:09:44 fetching corpus: 4400, signal 178673/240270 (executing program)
2022/09/27 02:09:45 fetching corpus: 4450, signal 179714/241315 (executing program)
2022/09/27 02:09:45 fetching corpus: 4500, signal 180042/242082 (executing program)
2022/09/27 02:09:45 fetching corpus: 4550, signal 180535/242963 (executing program)
2022/09/27 02:09:45 fetching corpus: 4600, signal 180993/243806 (executing program)
2022/09/27 02:09:45 fetching corpus: 4650, signal 182005/244883 (executing program)
2022/09/27 02:09:45 fetching corpus: 4700, signal 183042/245895 (executing program)
2022/09/27 02:09:45 fetching corpus: 4750, signal 183532/246711 (executing program)
2022/09/27 02:09:45 fetching corpus: 4800, signal 185660/248019 (executing program)
2022/09/27 02:09:45 fetching corpus: 4850, signal 186263/248832 (executing program)
2022/09/27 02:09:46 fetching corpus: 4900, signal 186920/249622 (executing program)
2022/09/27 02:09:46 fetching corpus: 4950, signal 187560/250470 (executing program)
2022/09/27 02:09:46 fetching corpus: 5000, signal 188140/251242 (executing program)
2022/09/27 02:09:46 fetching corpus: 5050, signal 189253/252161 (executing program)
2022/09/27 02:09:46 fetching corpus: 5100, signal 190235/252964 (executing program)
2022/09/27 02:09:46 fetching corpus: 5150, signal 190767/253746 (executing program)
2022/09/27 02:09:46 fetching corpus: 5200, signal 191645/254540 (executing program)
2022/09/27 02:09:46 fetching corpus: 5250, signal 192201/255252 (executing program)
2022/09/27 02:09:47 fetching corpus: 5300, signal 192798/256029 (executing program)
2022/09/27 02:09:47 fetching corpus: 5350, signal 193549/256790 (executing program)
2022/09/27 02:09:47 fetching corpus: 5400, signal 194225/257570 (executing program)
2022/09/27 02:09:47 fetching corpus: 5450, signal 194709/258224 (executing program)
2022/09/27 02:09:47 fetching corpus: 5500, signal 195227/258901 (executing program)
2022/09/27 02:09:47 fetching corpus: 5550, signal 196354/259672 (executing program)
2022/09/27 02:09:47 fetching corpus: 5600, signal 196867/260322 (executing program)
2022/09/27 02:09:47 fetching corpus: 5650, signal 197102/260904 (executing program)
2022/09/27 02:09:47 fetching corpus: 5700, signal 197698/261527 (executing program)
2022/09/27 02:09:48 fetching corpus: 5750, signal 198333/262154 (executing program)
2022/09/27 02:09:48 fetching corpus: 5800, signal 198840/262760 (executing program)
2022/09/27 02:09:48 fetching corpus: 5850, signal 199391/263415 (executing program)
2022/09/27 02:09:48 fetching corpus: 5900, signal 200002/264051 (executing program)
2022/09/27 02:09:48 fetching corpus: 5950, signal 201059/264744 (executing program)
2022/09/27 02:09:48 fetching corpus: 6000, signal 201477/265323 (executing program)
2022/09/27 02:09:48 fetching corpus: 6050, signal 202016/265904 (executing program)
2022/09/27 02:09:48 fetching corpus: 6100, signal 202662/266485 (executing program)
2022/09/27 02:09:49 fetching corpus: 6150, signal 203158/267072 (executing program)
2022/09/27 02:09:49 fetching corpus: 6200, signal 204364/267688 (executing program)
2022/09/27 02:09:49 fetching corpus: 6250, signal 204816/268266 (executing program)
2022/09/27 02:09:49 fetching corpus: 6300, signal 205457/268852 (executing program)
2022/09/27 02:09:49 fetching corpus: 6350, signal 205804/269370 (executing program)
2022/09/27 02:09:49 fetching corpus: 6400, signal 206679/269933 (executing program)
2022/09/27 02:09:49 fetching corpus: 6450, signal 207732/270523 (executing program)
2022/09/27 02:09:50 fetching corpus: 6500, signal 208808/271151 (executing program)
2022/09/27 02:09:50 fetching corpus: 6550, signal 209572/271641 (executing program)
2022/09/27 02:09:50 fetching corpus: 6600, signal 209991/272106 (executing program)
2022/09/27 02:09:50 fetching corpus: 6650, signal 210504/272609 (executing program)
2022/09/27 02:09:50 fetching corpus: 6700, signal 210753/273047 (executing program)
2022/09/27 02:09:50 fetching corpus: 6750, signal 211098/273511 (executing program)
2022/09/27 02:09:50 fetching corpus: 6800, signal 211372/273575 (executing program)
2022/09/27 02:09:50 fetching corpus: 6850, signal 211952/273578 (executing program)
2022/09/27 02:09:50 fetching corpus: 6900, signal 212311/273580 (executing program)
2022/09/27 02:09:51 fetching corpus: 6950, signal 212619/273580 (executing program)
2022/09/27 02:09:51 fetching corpus: 7000, signal 212941/273580 (executing program)
2022/09/27 02:09:51 fetching corpus: 7050, signal 213753/273588 (executing program)
2022/09/27 02:09:51 fetching corpus: 7100, signal 214017/273588 (executing program)
2022/09/27 02:09:51 fetching corpus: 7150, signal 214689/273610 (executing program)
2022/09/27 02:09:51 fetching corpus: 7200, signal 215065/273620 (executing program)
2022/09/27 02:09:51 fetching corpus: 7250, signal 215470/273622 (executing program)
2022/09/27 02:09:51 fetching corpus: 7300, signal 216009/273622 (executing program)
2022/09/27 02:09:51 fetching corpus: 7350, signal 216327/273626 (executing program)
2022/09/27 02:09:51 fetching corpus: 7400, signal 216557/273628 (executing program)
2022/09/27 02:09:51 fetching corpus: 7450, signal 217065/273629 (executing program)
2022/09/27 02:09:52 fetching corpus: 7500, signal 217232/273629 (executing program)
2022/09/27 02:09:52 fetching corpus: 7550, signal 217529/273631 (executing program)
2022/09/27 02:09:52 fetching corpus: 7580, signal 217651/273643 (executing program)
2022/09/27 02:09:52 fetching corpus: 7580, signal 217651/273643 (executing program)
2022/09/27 02:09:55 starting 8 fuzzer processes
02:09:55 executing program 0:
setsockopt$SO_TIMESTAMP(0xffffffffffffffff, 0x1, 0x3f, &(0x7f0000000000)=0x310, 0x4)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000003c0)={&(0x7f00000000c0)={0x2e4, r0, 0x400, 0xdd9, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x7fffffff, 0x41}}}}, [@NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0xf4}, @NL80211_ATTR_FRAME_MATCH={0x90, 0x5b, "4908c9c0a19d16926064f5059c8d38552b9f471de66ca6ae69d9ce3218cbef428d1ae8f5f256441553ccb8a998dd8a363797330dd591d0b02b280e4ef493f7b5976549101fccd12ac45843734bee006f545e72991015abde13b5c98e7d046a22bc2cde3c94e48f8c02ac826460e36d5cd98f76913814b73103f28ad3f5b63b160b88b1ef692635abcba3d092"}, @NL80211_ATTR_FRAME_MATCH={0xb7, 0x5b, "e8a3f8415609b507d3e9e9d2c01e8fef000511df72b5bb7e24abac23d5632af994d63cce8d51d5e309bab33ffd5eeef961b9cd5105f198d61693beb70187f3140f559f5b83e358eafaa43d8acb0d79e8f3076f84a7e79d52957846940e812e4f5b4864d740c136c8d0a72de62f5bedd1f57f9971cd06647e1933d7744d01876ac30b5c71ada13a4b85c2a9aa92c21837607bbce03dce7241f555c2f5a423e98addcc67468f0ae016d23df63ecaf50a26081f98"}, @NL80211_ATTR_FRAME_MATCH={0x82, 0x5b, "eed4f7ea738102078390ccf88822e8a21f7ef73bcad355d92eb1aa9013c4652231c9d9f7e76fe81c8fb725217c67d75f63dbe67aa2a8629fcd6a33d0b0167460622472502bdbb9c3a4ed818fb427376f20dc74b0ce9a61e3f32e7cbfb01642f6d7ebd73d10d54c5eaf6440a3afab79d8aead081d8fb1e4c9b41575086c7f"}, @NL80211_ATTR_FRAME_MATCH={0xee, 0x5b, "58abb905f767d9d02695a1c5f0783edbc938881558391dc6e005a77ae3273dda75f2bbd3eb4dfdbd50aab82743103ad7ac59ee375e4b408509859681263310801f87889157942e13ae9bba316fc9766ea418e8926ed64aa23cc1a6fb16ef829e04608edb1a6ce6668a74c03f880b5b8169e150c14a653644904d417ae0c38b6c80242812aa4953e949c41b5600b74183337c4ac3a920a65e58ed18ed3fadb64c676a1b73c09b5858f9ec92973afdb81b850257de0fe6fb3b75492080f840651db23adb6f755e3be3fbd924c354f61b28e79024cae371bfac530d6baaba0fdde4052d0dfaf308d95bd266"}]}, 0x2e4}, 0x1, 0x0, 0x0, 0x4000000}, 0x8)
r1 = accept(0xffffffffffffffff, 0x0, &(0x7f0000000440))
sendmsg$NL80211_CMD_RELOAD_REGDB(r1, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x14, r0, 0x300, 0x70bd2b, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000005c0), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000600)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r1, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x30, r2, 0x20, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "9e13ce04dc0938851c19ddb0b93d9925"}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
close_range(r1, r1, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000740)={0x60, 0x0, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4040}, 0x8000)
r4 = dup2(r1, r1)
sendmsg$TIPC_CMD_SHOW_PORTS(r4, &(0x7f0000000900)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x1c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfd, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20048000}, 0x20000000)
r5 = socket$netlink(0x10, 0x3, 0xb)
sendmsg$TIPC_NL_NET_GET(r5, &(0x7f0000000bc0)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000980)={0x1ec, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {}, [@TIPC_NLA_NODE={0x154, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "4e18a4e2a95cf330ad2d6abd0b0a3fa088ca198844d8f47ae4021607"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x2e, 0x3, "897b9905525c06fb2202a28b8050ebed445bc1f15a9c3f57cbd9cf140bf4ad42c8010ec134e62aef38df"}, @TIPC_NLA_NODE_KEY={0x3f, 0x4, {'gcm(aes)\x00', 0x17, "f691dab1d0c30e5268583fc1c0692a3b542aba55fdb3d1"}}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "1c199456e243146347eb7992a7798872569c005e187df495ee116966"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8001}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "785d716ba69141a41b96975cc26b456a77d28dfd45bd168a1b8202"}}]}, @TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0xf296}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xbf8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x80000001}]}, @TIPC_NLA_NODE={0x18, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}]}]}, 0x1ec}, 0x1, 0x0, 0x0, 0x40894}, 0x44051)
sendmsg$IPVS_CMD_DEL_DEST(r5, &(0x7f0000000cc0)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000c80)={&(0x7f0000000c40)={0x2c, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x401}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffff8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000080)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r4, &(0x7f0000000dc0)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x28, r2, 0x4, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7, 0x1}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x45}, 0x4040499)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$IP_VS_SO_GET_SERVICES(r6, 0x0, 0x482, &(0x7f0000000e00)=""/193, &(0x7f0000000f00)=0xc1)
sendmsg$NL80211_CMD_DEL_STATION(r1, &(0x7f0000001000)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f80)={0x40, r2, 0x8, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7fffffff, 0x5a}}}}, [@NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x1}, @NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x3}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x14e4}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
close_range(0xffffffffffffffff, r4, 0x2)

02:09:55 executing program 1:
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x40083, 0x30)
setxattr$incfs_size(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000100)=0xfffffffffffff001, 0x8, 0x1)
openat(r0, &(0x7f0000000140)='./file1\x00', 0x4000, 0x80)
setxattr$incfs_size(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)=0x3, 0x8, 0x2)
r1 = openat(r0, &(0x7f0000000240)='./file0\x00', 0x40000, 0x20)
sendfile(r1, r0, &(0x7f0000000280)=0x80, 0x100000000)
r2 = syz_open_dev$vcsu(&(0x7f00000002c0), 0x0, 0x12b000)
recvmsg(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000300)=""/89, 0x59}], 0x1}, 0x0)
setxattr$trusted_overlay_opaque(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440), &(0x7f0000000480), 0x2, 0x2)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f00000004c0)={{0x1, 0x1, 0x18, <r3=>r2}, './file1\x00'})
fcntl$getown(r3, 0x9)
r4 = dup3(r1, 0xffffffffffffffff, 0x80000)
r5 = openat(r4, &(0x7f0000000500)='./file1\x00', 0x80, 0xa7)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r6=>r1, {0xee01, 0xee01}}, './file0\x00'})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r6, 0x89f3, &(0x7f00000006c0)={'ip6tnl0\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x2d, 0x0, 0x6, 0xad, 0x1b, @ipv4={'\x00', '\xff\xff', @remote}, @dev={0xfe, 0x80, '\x00', 0x33}, 0x700, 0x10, 0xb6, 0x3}})
r7 = open(&(0x7f0000000700)='./file1\x00', 0x341182, 0x1b0)
setxattr$trusted_overlay_opaque(&(0x7f0000000740)='./file1\x00', &(0x7f0000000780), &(0x7f00000007c0), 0x2, 0x2)
sendfile(r7, r3, &(0x7f0000000800)=0x800, 0x45)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000840)='./file1\x00', &(0x7f0000000880)={0x80, 0x34}, 0x18)

02:09:55 executing program 2:
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0x4800, 0xe5)
ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000080)={{r0}, 0x7, &(0x7f0000000040)=[0xffffffff, 0x7d, 0x1, 0x1, 0x4, 0x401, 0x70], 0x9, 0x4, [0xffffffffffffffff, 0x6, 0x2, 0x1]})
faccessat(r0, &(0x7f0000000100)='./file0\x00', 0x4)
setxattr$incfs_id(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)={'0000000000000000000000000000000', 0x33}, 0x20, 0x1)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200), 0x78000, 0x0)
faccessat(r1, &(0x7f0000000240)='./file0\x00', 0x2)
lsetxattr$security_ima(&(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), &(0x7f0000000300)=@v1={0x2, '\x00>'}, 0x3, 0x2)
open_by_handle_at(r1, &(0x7f0000000340)=@reiserfs_4={0x10, 0x4, {0x945, 0x4, 0x1f, 0x5d33}}, 0x10002)
setxattr$trusted_overlay_redirect(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000500)={{0x1, 0x1, 0x18, <r2=>r1, {0x1}}, '.\x00'})
accept4$unix(r2, 0x0, &(0x7f0000000540), 0x80000)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000580)={{0x1, 0x1, 0x18, <r3=>r2}, './file0\x00'})
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
bind$unix(r3, &(0x7f00000005c0)=@file={0x0, './file1\x00'}, 0x6e)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000640)='htcp\x00', 0x5)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000680)={{0x1, 0x1, 0x18, <r4=>r2, {0x4}}, './file0\x00'})
getsockopt$inet_tcp_buf(r4, 0x6, 0x1f, &(0x7f00000006c0)=""/4096, &(0x7f00000016c0)=0x1000)
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000001700)=""/17, &(0x7f0000001740)=0x11)
open(&(0x7f0000001780)='./file1\x00', 0x111000, 0x40)
fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f00000017c0)=0x5)

02:09:55 executing program 3:
write$P9_RGETLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x37, 0x1, {0x2, 0x5, 0xc80, 0xffffffffffffffff, 0x1, '-'}}, 0x1f)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
write$P9_RLOPEN(r0, &(0x7f0000000040)={0x18, 0xd, 0x2, {{0x8, 0x2}, 0x35}}, 0x18)
ioctl$DVD_READ_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f0000000080)=@manufact={0x4, 0x1, 0x800, "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"})
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000008c0), 0x2200, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000900)={{{@in6=@private1, @in=@private=0xa010100, 0x4e20, 0xb3a, 0x4e22, 0x200, 0xa, 0x40, 0xe0, 0x2, 0x0, 0xffffffffffffffff}, {0x1f, 0x4f4a, 0x3, 0x7fff, 0x745, 0x51d, 0x40, 0xdc5}, {0x200, 0xd2c3, 0x3d, 0x38f4}, 0x8, 0x6e6bc0, 0x2, 0x1, 0x3, 0x3}, {{@in=@multicast1, 0x4d4, 0x32}, 0x2, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x3505, 0x2, 0x2, 0x0, 0x8000, 0xffffffff, 0x800}}, 0xe8)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000a00)={@initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x3f}, 0x0, 0x5, [@multicast1, @empty, @local, @broadcast, @remote]}, 0x24)
r2 = syz_mount_image$tmpfs(&(0x7f0000000a40), &(0x7f0000000a80)='./file0\x00', 0x10000, 0x1, &(0x7f0000000b40)=[{&(0x7f0000000ac0)="db350ad4f512aada8445c59c80f3fa91a20e89c30d915b780bbda64e3cce55848d32aac872e839d287a24a28dc2e56434a6c6d1a6dba9b9fb2b7f451424024f692dbc4751300c276d765f46994a3102414a6689a9b73d834a7f593a706bdd682d23aad9f3c2117", 0x67}], 0x2000, &(0x7f0000000b80)={[{@nr_inodes={'nr_inodes', 0x3d, [0x67, 0x6b, 0x35, 0x31, 0x65, 0x37]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x34, 0x37]}}, {@huge_advise}, {@nr_inodes={'nr_inodes', 0x3d, [0x67, 0x32, 0x70, 0x67]}}, {@huge_within_size}, {@gid={'gid', 0x3d, 0xee00}}, {@nr_blocks={'nr_blocks', 0x3d, [0x74, 0x34, 0x65]}}], [{@appraise}, {@obj_type={'obj_type', 0x3d, '\x00'}}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}]})
ioctl$F2FS_IOC_SET_PIN_FILE(r2, 0x4004f50d, &(0x7f0000000c40))
ioctl$DVD_WRITE_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f0000000c80)=@bca={0x3, 0xbc, "7be8a75b2a81266a08161b84744ca2a670934c3bdca46e5039af19a8b77d82fd33709a30f9961864219f2491c6680f2a221fb2a28ddd681f629f892befa48f677ed73955c3cea7977402aecf31cca3844de38d9b8ee8f25ef30dc6fda6a5b0321fb54c7f9c3f42f0ab2da3d71e70052a284f6174ff1c65fcf0be584af808457c08ba18f24a89ce83a494ee1d694c864d2dc4e7de0b8cbd2383df29cc4a0fe11a8673cfdbfc29ce7fd8e6e64ee09bfacd386e1273243566e8c29f4d60"})
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001500), r1)
sendmsg$ETHTOOL_MSG_FEATURES_GET(r1, &(0x7f0000001600)={&(0x7f00000014c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001540)={0x78, r3, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000810)
ioctl$BTRFS_IOC_START_SYNC(r1, 0x80089418, &(0x7f0000001640)=<r4=>0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c89425, &(0x7f0000001680)={"4b2c4a1f1511ff99de3c79d3cd34445a", 0x0, r4, {0x3a89, 0x4}, {0x3ff, 0x12}, 0x4d31, [0x80000000, 0xffffffffffff0eba, 0x3, 0x5, 0x8, 0x9, 0xffffffffffff0000, 0x3ff, 0x71f, 0x3, 0x2, 0xa16b, 0x4, 0x1, 0x7fff, 0x3]})
sendmsg$NL80211_CMD_NEW_MPATH(r1, &(0x7f0000001880)={&(0x7f0000001780)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001840)={&(0x7f00000017c0)={0x70, 0x0, 0x20, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x70}, 0x1, 0x0, 0x0, 0xc005}, 0x10)
r5 = dup(r1)
write$P9_RGETLOCK(r5, &(0x7f00000018c0)={0x20, 0x37, 0x1, {0x1, 0x7, 0x2, 0x0, 0x2, '@]'}}, 0x20)
ioctl$DVD_WRITE_STRUCT(r0, 0x5390, &(0x7f0000001900)=@copyright={0x1, 0x0, 0xff, 0x3f})
ioctl$DVD_WRITE_STRUCT(r0, 0x5390, &(0x7f0000002140)=@bca={0x3, 0xbc, "c2c6123f173c48a598321880d74af1234693cd8abbc75131acfc0d96947771f9cfd6468d9bd2597e182778c6085e979c76d3a93a8419954c2e9f4a1abd15788eb16fc9db40431332bfd48901f30ad82219c1ebaa5dc069d50a66e1721d617bc08f471376b9ceafa7179bbde19c2b9d4f51ff996c6fd06dff802fd617e8f3f9ba29a8ecc78fe0ca2d117ab3a7aec050555f1a94f44d6a9af50498655adec5531a0d1ef30cf6217cd912567990d0dbbd8e10376b3fc227a0986e1bfc4e"})
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)

02:09:55 executing program 4:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xfffffff7}}, './file0\x00'})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0xbc, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "bd66b278a27e68769c1f4c05adfb1b32b4d68d4334a8276e"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "7ffb7a2dba10ed23d39df2c8cc9b8b07c30d3629dec977cc"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}], @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x4}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}], @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}]}, 0xbc}, 0x1, 0x0, 0x0, 0x24000815}, 0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0xb4, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x4f, 0x64}}}}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "53de2c996a7ab858d6934a08fc2347b6c347b50572910cc1"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "23d0c45f203495a7394b2bfba8841a1b5a10336100b65dd6"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "d015897c8c873d221ef67c4c958082d7dcdd4a7c388f0463"}, @NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}]}], @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}, @NL80211_ATTR_MESH_ID={0xa}]}, 0xb4}, 0x1, 0x0, 0x0, 0x24040810}, 0x20000001)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r0)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f00000005c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000580)={&(0x7f0000000440)={0x124, r3, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_REG_RULES={0x110, 0x22, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x10000}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x101}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x900}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x8001}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x35bb}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x20000}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x10001}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x4}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x81}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x401}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x10001}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x7}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xa82}, @NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x4}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xe2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x100}]}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x40000}, 0x20004400)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), r0)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x20, r4, 0x2, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x1}, @NL80211_ATTR_PRIVACY={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x40004040}, 0x8000)
sendmsg$IPVS_CMD_NEW_DEST(r0, &(0x7f0000000880)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000840)={&(0x7f0000000780)={0x90, 0x0, 0x20, 0x70bd2b, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x38, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xca}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x40}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x6}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x4}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x10}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x8}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x4000000}, 0x20008010)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000900), r0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x2c, r5, 0x100, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x0, 0x35}}}}, [@NL80211_ATTR_SSID={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x38, 0x0, 0x4, 0x70bd2d, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_ADDR={0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x40000}, 0x60000c0)
r6 = accept4(r0, &(0x7f0000000b40)=@qipcrtr, &(0x7f0000000bc0)=0x80, 0x1800)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000b00), r6)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r6, &(0x7f0000001d80)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001d40)={&(0x7f0000000c40)={0x10c4, r4, 0x1, 0x70bd29, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x9, 0x67}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_FRAME={0x14, 0x33, @ctrl_frame=@cf_end={{}, {0x6}, @device_a, @from_mac=@broadcast}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_FRAME={0x14, 0x33, @ctrl_frame=@rts={{}, {0x3}, @device_b}}, @NL80211_ATTR_FRAME={0x14, 0x33, @ctrl_frame=@rts={{}, {0x4}}}, @NL80211_ATTR_FRAME={0x1044, 0x33, @data_frame={@no_qos=@type10={{0x0, 0x2, 0x7, 0x1, 0x0, 0x0, 0x1}, {0x7ffc}, @random="e9c081f60320", @broadcast, @broadcast, {0x2, 0x2}}, @a_msdu=[{@device_b, @device_b, 0x7, "b48a235ae8e421"}, {@device_b, @broadcast, 0x1000, "96650398842c2b18117ce331e8f407ac97497fba59cf352bc948860a122494e3dc2a407cf17743b0764581d76c86ab7db731db509a06413b192de17023638f98dd585fbfc19bc7470e5b4d5448942f49036025cca07e2d096d4fc40ed6a45df88b6915757dd6423430d6438d438373309ca4b268a34989ff32e0e21fde7348a7021bc17da0674fff762e851a566a035a39128bfcec413aaa37a1a3cb07581b6827dfce16321b1560875cdd5ca7349fa67111bd291f1069a38ab7ba98b37b07bc6b0adc9c48b9a111e24b63757c3fb0d27863a5a0bb3c6ca6a21ebe402f205cae46d154ea5a51b5dfd67d8f6ffc1f380d48c4edbad7217dd88c84e8aaa357cd1f6845440e8520a91ed78b9a8e11d9bbccae2d05a3839202d40b9fee9e45afe896d0e26222e6a41c75d8a260b6689e59fdf40bac845c5f0e353441c997ec36b1818e7dbc412fa8ebb020aad40c693f49048f0df10ba2daf2c09f32a709596675fdbe2c9c25b42f017f69969b62c5d60d808cf4714ab46f3cb8ed5ef7c5ec5dba9c4638637d9d0266aeade5310277dfbfb304b7f3ab459ed4758ba6c8fb7ae741c4cc92e3f085402f7753089c1868256f8a4b0de391795416aaee9b0dff1fb08dcdaa53ed5e2ed5ee4a8115d0ccbc6ec2805fcecae8146657b9daabb48b938f7d2658444c78cc3e3f74a5d75b967b359ac73a586e7d688d6004776f6f8d64aabf78e19d253231bbeb3f0cc18c77bc4d92393b8bc5fe8c9f7ab1bb6fb4ee6fce11dbf81d5c63aae764fa30d32ce9f1d859f1861b0a205bd0659e6cdbc39d64d3fbfca993db1fc9cea41ee54225223100243d2c788470cb5302d495423019e5fc7bdf6a92a67638cef2043c836490fd60130d473de7f6f5ea5bcbc8efa1ae8759bae9abcd7063c2f820b2fd6f36644b98da71cd2288fd83de3d80dc8e55556606789d0b6376b5470de5e2d1d8fb1090a9314424f25e836fb3499dc7181673bdc51efaf360826067bc8846813128508292e12a725cbb90a7b7d4202a6434ae3f0516c59c204c6b506366cde85fc50af597e9b738e44039b907e8771648a363ee979ec1a6096fa1987eeee76054cc17c2045130899fc744439b5f75f6c75a40f3c409fe4317280db72eb05cfc1fe5302e20a18a3f9ebe179f178d0619ee135b0a4d869fc2da06647111b03c1cfb4abfbc9ce044c0974eb24046a630a2cdedc97afe208c8370870a907571d95f2fd141f3a1c92a0d6f3529093aa2fea32b21a93fe6f6e3efa960ce9b1260336d28a5094ce156aef55751cdc2d12e55f4c706229afd1968ee8a64b8a56f8f5e2bb09bbf95af0b07abfd6f198f39ce851478e2547705a6ef71c01813b37032b234627adb4aca45aaef65ab37cfa47476a579f715ae3d2f2762d5da59920d6582055c66ac8effb91a7c8fcb920a24d9f174b05b3ff2375bb6491bd4c67ae97e3b7fb3610b885d21e9ce899ae8f5af28dd836e53ebc84fd1fc8376fdf51a31e6e08ac69316aeb64469cd0e003c740ee88a08b1aa78c0ac46face8c168a55df8c32de75858f91a414c1f831576ef2d21627ab8b89af6a7c15c2e2e6c97f6e2b85b3f22f45aa160c375b18486f13a90b272d49141d400f047dc24769d2e0116d35d3d1cf15138199d77dfff9cabc9f00b0cd0f31c60adc48dd0042d0771a9b66ef13971aea3822bf3b46e173fa300ba84324a05bca81bc108f759a5174a8e7813e0b097908e0b48b12ee2d59b70dfe0e3bfaa1d610023504b4f17760c86d30ef5772e5dbdd43ad89aefc4aebd25e37d08e42105bb2ccb3069dc47ef344129ff006aac96fc1ebe9247c7fa8a79f4379c486455396261ed0a658154951e902a47ef6a90eacbfd67ea97944583f07a4adef511145bf74d31cc47be0891979509fdadcd0eacebca00faa637fde0fc6cf923e57a27a81d874262f65bbca67d2f0ece1b9767c77a34bb3bbac9f62a92b0c1bcea17b7b4c6f386e200b7b72405626415967244c2e454c60b18ebc60068172f79e734fc2e42b1f6108399a57055e3bcd4f3dccc859f083a6bd8c9e979083b861429792e185e36436424cbeb7687d8ba67d81a253719cbd22853a9ce4cf7b7de38a7fe2362b2248c6ab6f01988e28521f5e41a92247df5ce38cb3a949c82d8b3e5e444b39ecfd7840c7f19d86aea378cdc72eb9f3ac1a477cbe0e48c2ee0cd34c6d751b23acc339f09014ee40c0bb52b4ab76bba7ce7270e81551487af589b9a619f49b2305c16d13add1db1933989ab21371576dab6b03d2d5dff87055ab837478cc5080450eaed86a60ac9ab3d540b9107ad755dc8c60d248183444644fc89f15be3ce4cf636b9a85b730165f9f463d01af2b420f631eefb389d989727dca3529e470d5f7a705f8a7ab5d497791d65283d152c44773bcc376c931cbaf74510de377e85851095bffbb7f6e856010f2e4e6f68ac1262ff9706e9e6406267c2696cdaacbb771b2acc29f478206b7b08cea185d51b14b3ea3e29d296efb624ac753d02b50dae952bca4c18cf57ac0e3c8f12e71dc65232420387c0dd31181deae2110ebcf14bd2dd6570b34a89a3696f4558b797f942c8c78c4037e4147f7ceb960f0a51891b7d1a7759d07c8a84263b9a8fd8bda7601486ff6c2aa1bc7ec91d06a415581b21f781e0a709a5eebb4684b737b2396c04230f7d354ea08543af74f043f56ce6d7cfa5c072b5d62852e66f44696bfcde8a4a6e21413c9106f1d044c358f12f4ebb7e27fe36a9312f203c31ca511f9cf3e9197b7af5b268a6c10472315a9254cd39cbc9aeb283193989e9f6132c75af360fb9dbc17ac5ae117b16d2bc0856271d7315e9e1a7ce911a55c4cbd80fef1f6fafcbd135d515ca888872aa72b5e671f36dc6b9fac1b378074599e1817909df4aacb6cf87a31602385fd79440b89c0526148875b63843ac53c8e0d842ba2b33f41b17a4f5c92a8187815b3797fd56db0aab7745224330417cf7049ee18a299c8607114b43429465091d5cda117ed49c4c774798937e86031c96a655e9799fb482ecc66f4dd18b85c4cf888b5b9e9974642847b2187e7422ac90f8cabfa7bfbfd9cdfede3725873d7570ee70d0d3b31e2d3aa11b990e6efe34308b7b75fa6e67f9f56bab555c26304689e87379571627a144c4070220f08c13d425000348f807b2860fd8ee2035d75f8e8673f76f1043fc3c4673741cedc7041b7f7ab2c6fb1a5803a4f4e51a3557284222781e6646ec7eda101b5bb09aea620195e7c2afcb02c67a9992e15754c0330e9aaabfc8e79f546b3266cb4f99fe68496f05d2b011382799142f8c901e840ebb8b5a352d56e6ab1f45e3defa314aed028a29e92dd261ffce95b57f04da200791a389dbe43f373b2b22eb976c11fc110749ebfd089caaee7eb94b10545bb71b3a719866f826810065ba3beff11c15293e3edde4032692c72cefc402405288a2297c9ed9ba0948db56e87638079211b1abac7900b9815a8e31c19087b3b01b6d0d5d821f8b528999f1875c425ef214eb8d0eafab2b80722bd454313c40c185dfb359155408a5eedf722bc05b94065e2a45fddadd535beede369a67b4b0bdf4c8e46032c3b3f649d5c63ba32b8e5b64875473fcc93e033ac598558b111e1931bb6673d7326504883c8234484574709e5a2cf4add735681d9f1e3703d180edbb797f2c1b0e38e72ebb3d82f5d74b2128e9c377535a244cc68676e07bc8e4c4c9d36facfcefcfafd5cfc6788077228ce165917324f2d5c389e3e1eaba8ead6e5a5bf8ab9a94990dc2bf76f46f835400af800c02c442923c2aac181abff51a72a3968475d6db3aee213e3e7202174291df8fa6c86e1903569f5feca23bb8cc7c9b2f1e85cdf7e545ddd1d5ca650f1db6dca2135346fbaf4fe5666060c53ddde4c6e474186a3e44aff49a63867cafa0637e26c87e18bd03b88fbcde4052f5d2c18bcf18b6cebe907189197f52237613bef235545fd63d321be03f316180ff51ce91ee7fc7ed43ef55b48f999f57bc119a2d15d06677103a6cb70e3c6b12788b4bd02ce0a0fc1ce7796449d581bb20cf57f1d6e8f9eee209533f32502268100ca2497b0c3b95c9a100bb90a6924c2c53df26cb69477facaac26640695959e7dbf2bfeff04c32edea7527e52658b5fa28abd693bafe8e4ab5d1255bc3a6710f91e80f5b0b5647e1a978e739e1fbe9ba36556fb620ae5ef4ad9cddffc3e3e106f162a96123209452584a81ba72c83997cab88da2690a82c69480245c8b10eab95ac4d20723abca3f2230404b209c50c649e30df51341fc7d64d767218a3798cd02391597a36757c2c65c93d69544785a97f483277b91c7884ffb0fbaeb1fe9e7263f2bff82d67f619fcba5e1c69da3eff166aa2efd1f7318d4618188e3cadb987d9769e07ee5ca8fb6194c393a0cb6b67ed976161acb8e5f78c6479ad44d466bdec420e6372bcd92d84328f56df34de66b7129adeef904c3dcdbd643f631a36a45958a8d3f3089d4b1330ef884a1aede687a5cece49e136845f804362c2a3a36e7d42545cfc60cc721e48c52dec97dcc20cad1d2d26eb06c3e600f5e2a6db4de7ef028cf532d9e1ea4736c9468546b1383d2c83ae448237a15d22e73a53d46e7061514764df3af1bd4573fab40faa44eca0a44de19f7fe5c7b5cec6855d0916b48fd89926aea2d375b9615a5938c5edb6ed1c8bc5001705b2965ac7088c10d44c72313a1ad3999acce1dccd585402ef7adf2d13f42c9d22ea1752206528bcb81c4b84b2e47675dc7c8c90bf51f607a8c0bfbbe326e87a2ce4835c61a798cf29987faa88edce97a1ed0f1efc6fd07b36a2ac0f975361d68ffbec8826a56fef29fa50d6f9975dc4cf429816b7fe34dedb50472bb6af3b650c43168414b53971a2a1a38973d8dd0bafae1ba41e9c7d75af99ee9bb1e4faea8062a5116dc8536d97a6e7a35de1e6828517cea00a5e0769a18ada5cb9216c2da38e10ac3c5edb24c370643c2c88727360def3dc744dc5b276f92dcb8cf74dc4e54fd09a30341c1fa3636c955503451e997d56286de643f8ac7c0a8a3ba40b9eecac42985e9898493403e0842fbece453c895ab102f48b258d80d54d58cac30002e2ce26a57f6700979cc700a04eb1d09046ee1b042a2a3520564d2bd5e7033d4c2af2fea863ca82d8cc511836199b64a791adc1c6b6ef1e79a8e1b1214209461ba09d0accad6d6eed99946c08c4bb57ef8bb54aa48f80adee4065f2c5cb8e8f51155ab0a5f4acee66b5c7e532a50ce4606dd8d917b480a5d98f3904eb1f90c3023c1295526270e4329bdbfcff23a0d418049534684dfc32d34eb981824d7133c053d433df6d793d0efbe3822fad290a78b7beff348778c90a4a16330a7569a9f8c05f373e37f06921f43b822888571936039795c81dcbf8e2b01089c27bee4ce1807e4b0b13c291df9c7f97806d7ded8833e20bdee3df4a8271306333744006e79aac42ec55c9fa96efd11db23804b4bd4756c9dbb429abec384015e13fcd97974514b5a1623340e9b02fe6518489d7b2058b4d58e128b838c6e9dddd3631a1173dec75c952c7c46becd91bccf5dba312fd7d6a6320af5ce9cdc7a8613462dd4206ded6afcd4b38ca39c418d63c406b0bdea51a019bfb55af2571ab0b1a2039c8e4ca3a81b084a93d583ac2f1b9b732b0125b0e0423dea786dfab724f60f930cf048cbbdad73c262d2425b218df124076586a8b32144b548e55269a326b12354e8f3bd2b46ef91a6aadd4890ce881195713647dd4bbac9f020f90ec66"}]}}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x10c4}, 0x1, 0x0, 0x0, 0x10}, 0x20081)
sendmsg$DEVLINK_CMD_SB_GET(r6, &(0x7f0000001e80)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001e40)={&(0x7f0000001e00)={0x3c, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x1}}]}, 0x3c}}, 0x880)
ioctl$TIOCL_UNBLANKSCREEN(r1, 0x541c, &(0x7f0000001ec0))
ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000001f00)=0xffffffffffffffff)

[   71.825308] audit: type=1400 audit(1664244595.154:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
02:09:55 executing program 5:
setxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)={'U+', 0x1}, 0x16, 0x0)
execve(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000200)=[&(0x7f0000000100)='-}\x00', &(0x7f0000000140)='\x00', &(0x7f0000000180)='*-\x00', &(0x7f00000001c0)='trusted.overlay.nlink\x00'], &(0x7f0000000300)=[&(0x7f0000000240)='trusted.overlay.nlink\x00', &(0x7f0000000280)='\x00', &(0x7f00000002c0)=':#%(3[]\xea[-#$(\x00'])
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000340), 0x2900, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000380)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
sendfile(r0, r0, 0x0, 0x7fff)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$AUTOFS_IOC_FAIL(r1, 0x9361, 0x1)
r2 = open_tree(r0, &(0x7f00000005c0)='./file0\x00', 0x1000)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000600)={{0x1, 0x1, 0x18, <r3=>r1}, './file0/file0\x00'})
execve(&(0x7f0000000640)='./file0/file0\x00', &(0x7f0000000740)=[&(0x7f0000000680)='\x00', &(0x7f00000006c0)='\x00', &(0x7f0000000700)='trusted.overlay.nlink\x00'], &(0x7f0000000940)=[&(0x7f0000000780)=',].*-\x00', &(0x7f00000007c0)=',@),\\\xd4,\x00', &(0x7f0000000800)='+\x00', &(0x7f0000000840)='&{{\x00', &(0x7f0000000880)='/dev/bsg\x00', &(0x7f00000008c0)='U+', &(0x7f0000000900)='+\x00'])
ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, &(0x7f0000000980))
sendmsg$DEVLINK_CMD_PORT_SPLIT(r0, &(0x7f0000000ac0)={&(0x7f00000009c0), 0xc, &(0x7f0000000a80)={&(0x7f0000000a00)={0x70, 0x0, 0x300, 0x70bd27, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0x9, 0x7}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x7}}]}, 0x70}, 0x1, 0x0, 0x0, 0x80}, 0x4)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000000, 0x150, r1, 0x965c000)
r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000b00), 0x40540, 0x0)
getsockopt$WPAN_WANTACK(r4, 0x0, 0x0, &(0x7f0000000b40), &(0x7f0000000b80)=0x4)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f0000000bc0)={{0x1, 0x1, 0x18, <r5=>r2, @in_args={0x1}}, './file0\x00'})
sendmsg$NL80211_CMD_GET_INTERFACE(r5, &(0x7f0000000cc0)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000c80)={&(0x7f0000000c40)={0x14, 0x0, 0x2, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x0)
r6 = openat(r2, &(0x7f0000000d00)='./file0\x00', 0x1, 0x20)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000d40)={'raw\x00', 0x4, [{}, {}, {}, {}]}, 0x68)
fcntl$dupfd(r3, 0x406, r6)

02:09:55 executing program 6:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
r1 = add_key(&(0x7f0000000080)='encrypted\x00', &(0x7f00000000c0)={'syz', 0x0}, &(0x7f0000000100)="5cadb75c400dd27380f565e431cc3240ac2fc25310b956c955da6cb041fd2aa1035c140868fe9429f850a1b6ab5bcfa05b8ceeca592104aaba6e0396c0c164dcf4f6694509de9d1667f9c8a24972c219f4b117df858179bbd8387c876b50ae75563b0a89e94716ff4a6656e728813d11e15ecf9f57fbdab2d3473ee0dc2041502bc6dc0313ea13c173a3c5bb0becd60674e158603c961c479af1c9a5db0ed2d135572bda8048e5", 0xa7, r0)
r2 = add_key(&(0x7f00000001c0)='logon\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f0000000240)="27f58cee99bf9b8818b7d037627464", 0xf, r0)
r3 = add_key$user(&(0x7f0000000280), &(0x7f00000002c0)={'syz', 0x0}, &(0x7f0000000300)="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", 0x1000, r0)
keyctl$negate(0xd, r3, 0xbcd, r1)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000001300)={0x1f, 0x1, 0x2}, 0x6)
keyctl$get_keyring_id(0x0, r2, 0x400)
write$bt_hci(0xffffffffffffffff, &(0x7f0000001340)={0x1, @user_passkey_reply={{0x42e, 0xa}, {@any, 0x71dee805}}}, 0xe)
r4 = add_key$user(&(0x7f0000001380), &(0x7f00000013c0)={'syz', 0x0}, &(0x7f0000001400)="6aecc54b5b5d92a79b2bf3765a0eaab092d0facb18d9dd78f186bc5fb5f55854dc61baf4643f098b92c3e9de3eefe62aeec0609fba45e14e1307db618476d1350c5beb7f902834a7c86247ed56c712870ae1bab65130b97ecc8d58f9cb46b35deb0bd2bd20d3a264f1a2a6eb6a8d41e0bba12e488acf524169e3d0eb800393829ec0c11ab9f87b2dae57762ab3b666b4d52af1ab332dc3dad33c71127b608b4498ff8da0765a10c9df0fd19d911bf369c8c5b879e88855d2df8d24d4dfdf9d0c4af7a9c10bdfdae742e1df7ccbb932421d1f50d3b7d6e70ab58f2e317838f0da899eed21f43698a9a07cabe095", 0xed, r2)
keyctl$setperm(0x5, r4, 0x40c00)
r5 = add_key$fscrypt_provisioning(&(0x7f0000001500), &(0x7f0000001540)={'syz', 0x1}, &(0x7f0000001580)={0x3, 0x0, @d}, 0x18, r1)
keyctl$KEYCTL_MOVE(0x1e, r5, r0, r0, 0x0)
keyctl$update(0x2, r2, &(0x7f00000015c0)="f494c065741b7def33e391cd307e156f997103ea465bb807594cc2357f5e15149598d24e6b2666eef6f3b0a4e5a77d86c552a6887f0f92fdc811d42a8bf7007985cb0ccdd1b9b25ed8f5d9c13686791ef6b70d6338fa1cc4e2287be1cec5a31ab08b584e8dab29fb5e3723f808c7cb4d295c5d1bd251625f5ea4b5b106d9efad384cf3ab0e6e3fe59e2442447ae9e0256d909a99e09b4e977fa2d4c0f636bfd09a5e57b17603d272bd82bdb8eb7d5284198492e8828b07dbc0d799b149884e45a582c17e4568e82b171c2ba65ecf4ce3", 0xd0)
clock_gettime(0x0, &(0x7f00000016c0)={<r6=>0x0, <r7=>0x0})
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x42, &(0x7f0000001700)={r6, r7/1000+60000}, 0x10)
keyctl$instantiate(0xc, r2, &(0x7f0000001740)=@encrypted_update={'update ', 'ecryptfs', 0x20, 'user:', 'encrypted\x00'}, 0x20, 0xfffffffffffffffd)
openat$bsg(0xffffffffffffff9c, &(0x7f0000001780), 0x0, 0x0)
r8 = request_key(&(0x7f0000001840)='blacklist\x00', &(0x7f0000001880)={'syz', 0x3}, &(0x7f00000018c0)='!(\x00', 0xfffffffffffffffb)
keyctl$search(0xa, r5, &(0x7f00000017c0)='id_legacy\x00', &(0x7f0000001800)={'syz', 0x0}, r8)
add_key(&(0x7f0000001900)='asymmetric\x00', &(0x7f0000001940)={'syz', 0x0}, 0x0, 0x0, r8)

02:09:55 executing program 7:
r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x2000, 0x0)
syncfs(r0)
write$binfmt_aout(r0, &(0x7f0000000040)={{0x10b, 0x1, 0x5, 0x298, 0x89, 0x1, 0x1f9, 0x5b}, "", ['\x00']}, 0x120)
ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f0000000180))
r1 = getpgrp(0xffffffffffffffff)
migrate_pages(r1, 0x7, &(0x7f00000001c0)=0x100000000, &(0x7f0000000200)=0x9)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)={0x2, 0x4e23, @broadcast}, 0x10, &(0x7f0000000280)}, 0x8010)
gettid()
pipe2(&(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x84000)
write(r3, &(0x7f0000000340)="a7853fc035189b94853ad785d94b88033520330dc5f7d4fc131264c281242e97d071f41b14187cb052822247afc0400d52e69ab32c9464c305efa74cd4b6ecca2fd3fb753ab2c6a24e03e03d12b5e6c22f1c5279abe67f1af2f1454d0f4527eeb75f6f38babf8a40b06629addfb3843bc4a07ea8a11fdc7232d75c950e0b8ef8f2e06218afba5b6fa81f5429e34a020638ddb167775ae2373b4b8f6e1f318dcb290db15497775412c760fa6664ee3ae207189caf59bbfd38b324f793506d5b213fdb0c8d9911416bfe04ce7ef9990ef76ecc668e", 0xd4)
r4 = syz_open_dev$hidraw(&(0x7f0000000440), 0x1, 0x8802)
ioctl$BTRFS_IOC_START_SYNC(r4, 0x80089418, &(0x7f0000000480)=<r5=>0x0)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f00000004c0)={"866eb4974a825ca72c40d50bca946bb9", r5, r5, {0x3, 0xffffffff}, {0x2, 0x25a8}, 0xff, [0x1, 0x8, 0x800, 0x1, 0x83, 0x7f, 0x12, 0x0, 0x370f0ec4, 0xffffffff, 0x3, 0xb51d, 0x3, 0x40, 0x6, 0xffffffff]})
sync_file_range(r3, 0x0, 0x5, 0x5)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000005c0)={0xfffffffffffffbff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r6=>0x0}], 0x0, "2efe12ed6eb3df"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r3, 0xd000943d, &(0x7f00000015c0)={0xa97, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r7=>0x0}], 0x7f, "c6d5b8ea366b8c"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f00000025c0)={<r8=>0x0, 0x0, "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", "26397aa0d4964deafa619e58674136bfc8ea166cf614494a47e7ce1d60054dc5bdda8eb48ae8debe338031ca188a13e743337539a53a42168801edec956a152dd442fc859dffa144416b1ee30f02eb1c8fa7c7707a2bb411c72dd5fdd7d72d5e98b9bfc6a040528ea80420466c9ee582f6ded6bd9fd1bca9e003baf5ebb85782e3ee848719516766e57691b0bf931f083ca73aeeac5d284d47cf8ddf2826239a2fa469104a8b509f0b4991e77cba7acf9caf483030a3778d79c148abb431784060e057eb6f136cb474b9df010eaedb3419130937e84c7e5b7eb7f471f3d403ae8be1858f5f81840f71ae68be606a72700184c7ca77ccbe1df7e167b7512615c41d12ccf53e6f5ae548f95b0a010c94dfdcf7d5edfde7f205b3775685b253c6f981e0e533f9b5a8ee6f9c606ae336be37fc2966c1737755f489d968ae372f962804bf7aab18681da944763f2abd6f6591c4dfcba75ae8812b3d804c26b88352003759a8e95d278d2809b3e1303da7147a37300b4c29dd473846c22d3de357ae4fba9ed335ad4233ca2c26851ec5706c4c83d459832a9a4a3c2e36371c584e2f774cf601d0b31afaf59c6ee8d3b3041ace6599121703700ba3fb71483514928a8e8e94a145b932ecafc901833806b5db2204622ff24fc9f80e02ce72074c00fe9c9d66ce46350c40f98fa653afc152260e6fb0629dc1c0b41f87b904291a283482375480a83749958177282ccf901b4a6c61f0ca9a54fd3b51ebbee76f0aea951331e5443ab8cc2725a6eb170ede919939a2fb9794af6fcaaf47b180179be1fe9f85d448e03f43e6b45a259b7f2bf7eff40e942257a51d1eff539e04c76c43b88bcb3e7f9f3ea7d37c8cdcd8b367ee421aea4dc59efea772d40fd8d041368b6dd155c6e59634089b7bb9788c46c7f73ff2832fd7796ff058bbcc19131a89db9e408f7f59f682ccde8ca84d19461e446abf1e14677bfb672cc123716cbfabe162b388255fb35855ffb4a71bb8b5d4fa14816d6452401775dcccb284f76ef05e38be1188ea4943b630de84937f329a6b083b44d8557aa35d5987c81c867bd5e5ed55b3d9c0ac281260bf6918a081e394f8d1318084b04cafd70f42c0d3e000095cab4db8dc39aec1b1b00bcac0f51ee61eaf273a1d2c873627a6dd9a5c0ae2e13f251a288bf616337e3c5eb06fe0820d51ff244d9ebfacfe61dd95c1dceca540bb0c06da8a61c6000366f8afa805d400229582a02b7c8731ad86f3e3628b072ee8c4fad080be54a796e1707042b477f4c269fabc87590e89fd25552127c4755e1f44b1fddaefe18d999d310b44d08aee6c621f5a27b4df04f81c0cf473d2ca7145a118c7fec5a2898f357404a2aa66bf5c9ae393718990a08e4676d5599c0c8349ce1f409aff834a3f08f338a3bcdf5daabb936a0b15e38ef35e14bcb0d880cae3553145a808959e53f5f6b0f0397fefb452efc5f1c31d34b55b31b24eb5136e228666d2c63de3385ea110c5f8da96db2b600d7cab2b02a7cfb47e7dd20cf51c82bc15f5805238c730b64d30491e5d09f0afd67dc54db7ca5305f662d98a08b78f8954a5f5d609427fd805c2906d08f0ad1dfdd175de5e0151ee25e01eb3f06a14547ac6dbe349ae5753710af1401da1678bc09165302d1e57de92f187dd957694483e439cc79cf43e574af0a152bb65522dd8d455800d008cec3b35d3b014437937a09ef9665bb28084f8e5a8dbc10d8b30efdd66fc6c145e9f0d4546d835d491b161c82aa6922c1c47be031b21934b75ccfdf7ba0aefdc050b2206532c977d9d3a3bed618ee1c11a9bab2e02cf1ceb89026a98c0a46fc25f766762709b1ae2a23c784f7849191de85c77e96722b027ef90ebb813ddb3c00510250733e938cf9a3ce9f7c5efe233855447feaf6c77fe57c6946a7024b0924ff8d3d3ac1f044a5ea388962aee5f188abc1e97e4bd1e0088c009d9564185e051c198d8a39076649cfad6da0a249f10b25db9e6d53c990f193b8f97f3631a715534eecd15d4225cc682b44c887c63ac5bb58e02d109ebe776b995dc0349c5fed1d41827dd46937772580862351b801167859be33ba7b137d8fbd8cc1b8097093973685b71af09aad285006f9cbaa302f6ce0f50f9bdcdf83d8c6de92138308f517169e5c7917fb38f27cad8e79c98887a371766d7dd1a04dfbd9462a14093d9dd27901f01cd40618ca1c9685d632dfff7d47b090cd65b767d86d0e9d909e9a7635e31d18574a6f9f60fd086b79728f3c8f948c8c41246e38b2da7f50ca97dd5919a10f8d630375b54890c3d7206c2038745a9c30c2b0fb89d4e68795a47221473bb6f6c4df72c4187ee93cf17397ae382628691b3396ba2c5aa7681050dcb6fc430da8bf2cb581ccb2f3110e92c2a4b28a26537ec72dd120c9cff799a4046b7b25118678cd9c07a70cb5e8bb30d8b44d6d696a895e6374094702a7e41931dd2008c65ba972c11c58c52c2b4b0652fef5caa7e5a9b8e517135931766a0cad9fae088c0962e8f3461407ccf0ab0be2c6ee79c620a3883f6d1e068fb2059f59c2475b56dea17ec20943c805c8ec8fdf3135ed60d38fac2dbcb917b7f3064ca788b9e0519c1e241abec27de4ffa906b3505ef21614df219c01bc6f3068b91a6732effebff9cf55c90e41dc61b0884ee6b98713dc913c7f21bc05dbe22cce1e2c8227aeea7195f270db1f5159de1c274640b71eba5d78ffd1f1bd173a7a6adcbf97ff4a769ba7beb0905deaea13c70e74050c40c2f8af86acab0e36099a13599be7943fb761157f0bc3cb594332968f958d174d0e8fc25abda493b79a4b4cc38eedd056faf39390c4ad33a6b4a34a2e1a4cf2fb9733bf6303b2b011beab517cbd685234a78932fbeeb17f3eadfa0e2047634af6e8b91a01976aa1bd659d35476bcfd42ffc43f51cbfa692ae9ca313bd90603aa1199a992c823f990154d770e60062c87c7317ee8046dad5192eb1cea08cd6e5aad56137fb039e87895c87133c0fb8777580729de71cc504391ccee27292fee651752d7790f6070a1b129bd4917c748c0015ccae10754a862262780300ee1c0f6f5f8b4f0ba9d8b38c5fe76eaac1bc869a2bd2a4c35f6152ba2f95e3dd5bec2783d702ecdc1ce943385a3aee6eebdd2ebd40405bb2fc51e3aef9d0ca7f79d45beedbf833c66a85a8a1e0e8e718b0ecc8de33d35f351ed6138cf49bcee471c703f8c016273a4ae0f7db1ec50426d5068000a4565064f4c075a322cd4e14216fe28888264050dd0f7b4f26479e029bb2986c7d6176a6194e77679620ce0dfbb93d4d9a85925880b8fd954680cc559ab079010cb30d5a38eaf4b52c9fedd3e5063d70521cd0d3975a34168f98be6c403aef71a4484a2b3127a6548a0792f5f2fe223d9633facd543acb83eb125e3c34ea4a3d30169c39aa49df1fd3ff2bb3c2b261fcd3a578dbcd3e624e2568c4aa89a80c50fb6dbf59ba7c56a87c08fe220b20be9cbf0af430c51bd09312d8a05b104beae78d9658a5ea6ec5a4f8e289d51872e0fb4e8cbf8d7f022dd5cbc7eef7019173466061faa4a189d6f28ffd102d6967fb832bbcc32136dbfd4df75f787e8c71018a9477c4d7caa8dbe1fee5d3882be15742f953ecfd0002f67f4d3616d9fbb5afa9e9ad954c249868ce81bcc7339fb2ff96fc4fcc345abd0611a2e2e44cebdc1038312e166705c46fa23890aed6929dac0034bc16111cf8fcb3607e1c9b3c373ad5099508cf951688d2008dc8f5df9b21d82abe59d195e2d51be1cf4efec5d72e2e719b40aa73f6d968370edffeac7f8b53d7c9432e79334b23e754e52c169b2ed514c235cfa6a24790ffe41941817f52d1b22368b2f841f5b32f8f34fdda72964f0f5cf210f5d944fd62054b4349f6ad501505275ebce479d830cd73f6599472f6c7fc9d34c7f524904dcec8dd130100c2d1af6da47d650636d9eea7d1e9e0022755d070229289862ce3db3cc45ab404e88d7153e1c11dd1362ced44cf554aae97835506e95ef3a1e05017b590ae57a47ba21d73ffd1cd4a49a778d588206881336a5b84db1a6e39faad61c76603ffc4d04e686861480d9f8e773cb783ed22ae506695211ad1829c1f70ae823dfb2ebfc30b59e5e5cf0065bf19ae9054b867f7af39a16473100d4a7b3cafdd4aa80314b8a413e3c163618c2fe8f3547abf15809816d5237c097df867c3c528da22541b80e1f595dd19dab8d729be50597c60e0f729fc5e99da9e968fbab28537fc0cb02c730a2a565bc15d301fb031802d8433dd76b14ed1988bf45dd75c7136a8bb9146ac30d86a633a335a09027952751f51fc3091092810d40d724fd800a302a88cc1325a11353e731ca8f594264d10459b927ee6273e4086b2ca18a6b25d323645ed2442d275fb8cc96db83f0eb73221ae14dd9cb22589b8bfda46b7a63ee02bebace03d8cbbb707bc314a15d053d7157a69580330330a23ef9e644ab4d3753465a7a45392311dd801e95597788de39ad8a97090a61a7e37def77bd0e23017b80ee3ef05e5cf20161efd5e20ecc916b83b55e6ca7af995d313c4b097d9e7185b25c5543ce63074f63158e5d06065016d292515fab53ae3a2acc954e2b42fe4ae391bb573dde48cafba784ef9b15b0f2a2b21b7b3a49e4d2539943effbeee0fb8e80ba6b9dfc804e3bfeba2cc8897d1d780a618d2007f1cbacb333e1243fac1d7f1142f9944016a16872d0174d5eb1598e79c2e247b071e83607eae40d77043bd95a097a634d412ca6ef3979c9d0bf1a53d0de9c177aa6b201d073c711c11b832e47fc44b313f8a8fff99c8ee99802ef243418d60502f354d24901c76ea3b07dbfe07eaabe50140eb6a0c7bb91a1a2e13dbf8fcab3ce124bfc851f10b2826d598168ab6e49077e7c87186604159029898eb794f63d0f02d6a00cc6f2586f0b8eb9879be5f3bc2f725518af1681bb709b6bb9c5a7547c7b30115b1f7780e5b83c130347f0bd0844b5961b677f5477c97ec4d72bd29e6ede1d72ae7182c34595e23d2cf45ab8517ffc9551287836a6df38040fee0ca35e9360d5b73b0cb96baebfd5862abbeaf1a59d581f4f18e7bc06bb2cf1b107e332ea0009631df96acc1e7c5c55a96487ac6d86bc3703eefd0f4f4779b0c51e677dd501718365008d345b782fbd94eb23bead4ae7a1619a5c391211a3f1500cd63520388023f71d9919c38abc3759b9ea59e9251e62a2442c40a70936e6cee01ea358803b582a33e064c406400f03bcf21386dee2d7090ffc25a5873bce427790a1a30a7a2c84e0680492e8445dba6cc2f9807d99b5ae23f795e062344f08cfe8235f6d6c3c5d5b63b90eb7f5e5feffcb6659fb4fa6b497ff5f1f66c6aa0c525165ebc1a40dd975a255f2496d03c7892e9170400c4790"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, &(0x7f00000035c0)={0x0, [{}, {}, {}, {0x0, <r9=>0x0}], 0x1, "2fe5a850b174f2"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, &(0x7f0000072840)={0x80000000, [{}, {}, {r6}, {}, {}, {r7}, {0x0, r8}, {0x0, r9}], 0x1f, "33fada1c48ea8a"})

[   73.103033] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   73.106138] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   73.108128] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   73.111690] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   73.114730] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   73.116222] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   73.121921] Bluetooth: hci0: HCI_REQ-0x0c1a
[   73.165510] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   73.167931] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   73.170192] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   73.173443] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   73.180294] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   73.181789] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   73.189004] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   73.194278] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   73.202059] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   73.205387] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   73.207184] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   73.226066] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   73.229568] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   73.230771] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   73.232531] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   73.235718] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   73.237885] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   73.239540] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   73.241434] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   73.245408] Bluetooth: hci6: HCI_REQ-0x0c1a
[   73.245707] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   73.247699] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   73.250098] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   73.257822] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   73.261810] Bluetooth: hci1: HCI_REQ-0x0c1a
[   73.271909] Bluetooth: hci3: HCI_REQ-0x0c1a
[   73.280744] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   73.304020] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   73.305309] Bluetooth: hci2: HCI_REQ-0x0c1a
[   73.308869] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   73.315164] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   73.320550] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   73.322282] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   73.329550] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   73.333706] Bluetooth: hci4: HCI_REQ-0x0c1a
[   73.360943] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   73.363068] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   73.364295] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   73.367481] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   73.369683] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   73.371035] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   73.380183] Bluetooth: hci7: HCI_REQ-0x0c1a
[   75.192683] Bluetooth: hci0: command 0x0409 tx timeout
[   75.255442] Bluetooth: hci5: Opcode 0x c03 failed: -110
[   75.256453] Bluetooth: hci6: command 0x0409 tx timeout
[   75.319439] Bluetooth: hci2: command 0x0409 tx timeout
[   75.320032] Bluetooth: hci3: command 0x0409 tx timeout
[   75.320568] Bluetooth: hci1: command 0x0409 tx timeout
[   75.383657] Bluetooth: hci4: command 0x0409 tx timeout
[   75.511442] Bluetooth: hci7: command 0x0409 tx timeout
[   77.239517] Bluetooth: hci0: command 0x041b tx timeout
[   77.303476] Bluetooth: hci6: command 0x041b tx timeout
[   77.367507] Bluetooth: hci1: command 0x041b tx timeout
[   77.368250] Bluetooth: hci3: command 0x041b tx timeout
[   77.368994] Bluetooth: hci2: command 0x041b tx timeout
[   77.431427] Bluetooth: hci4: command 0x041b tx timeout
[   77.559679] Bluetooth: hci7: command 0x041b tx timeout
[   78.331842] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   78.334027] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   78.336014] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   78.338563] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   78.340082] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   78.341539] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   78.345674] Bluetooth: hci5: HCI_REQ-0x0c1a
[   79.289353] Bluetooth: hci0: command 0x040f tx timeout
[   79.351631] Bluetooth: hci6: command 0x040f tx timeout
[   79.415479] Bluetooth: hci2: command 0x040f tx timeout
[   79.415882] Bluetooth: hci3: command 0x040f tx timeout
[   79.416286] Bluetooth: hci1: command 0x040f tx timeout
[   79.479371] Bluetooth: hci4: command 0x040f tx timeout
[   79.607503] Bluetooth: hci7: command 0x040f tx timeout
[   80.375490] Bluetooth: hci5: command 0x0409 tx timeout
[   81.335489] Bluetooth: hci0: command 0x0419 tx timeout
[   81.399494] Bluetooth: hci6: command 0x0419 tx timeout
[   81.463458] Bluetooth: hci1: command 0x0419 tx timeout
[   81.464222] Bluetooth: hci3: command 0x0419 tx timeout
[   81.465866] Bluetooth: hci2: command 0x0419 tx timeout
[   81.527471] Bluetooth: hci4: command 0x0419 tx timeout
[   81.655434] Bluetooth: hci7: command 0x0419 tx timeout
[   82.423471] Bluetooth: hci5: command 0x041b tx timeout
[   84.471424] Bluetooth: hci5: command 0x040f tx timeout
[   86.519535] Bluetooth: hci5: command 0x0419 tx timeout
02:10:50 executing program 2:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000000)='./file0\x00')
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/pcmcia_core', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000001580)='./file0\x00', 0x0, 0x1)
r1 = inotify_init()
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
chown(&(0x7f00000003c0)='./file1\x00', 0x0, 0x0)

[  127.097406] loop2: detected capacity change from 0 to 40
02:10:50 executing program 2:
socket$nl_generic(0x10, 0x3, 0x10)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$TIPC_NL_SOCK_GET(0xffffffffffffffff, 0x0, 0x4000800)
socketpair(0x1d, 0xa, 0x26d, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
syz_genetlink_get_family_id$batadv(&(0x7f0000000540), r0)
pipe2(&(0x7f0000000080), 0xc0000)
syz_genetlink_get_family_id$ethtool(&(0x7f00000006c0), r1)

02:10:51 executing program 2:
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xf, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write(r0, &(0x7f0000000080)="01", 0x41030)

[  127.774368] audit: type=1400 audit(1664244651.103:7): avc:  denied  { open } for  pid=3674 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  127.775887] audit: type=1400 audit(1664244651.103:8): avc:  denied  { kernel } for  pid=3674 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
02:10:51 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8000000000, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getpid()
ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300))
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000340))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="00010000", @ANYRES16=r0, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32, @ANYBLOB="e200330080800000080211000001080211000000505050505050"], 0x100}}, 0x0)
clone3(&(0x7f0000000440)={0x80202800, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000500), {0x3f}, &(0x7f0000000540)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000100)}, 0x58)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x88000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7)

[  128.135361] hrtimer: interrupt took 37319 ns
[  128.136729] ------------[ cut here ]------------
[  128.136763] 
[  128.136768] ======================================================
[  128.136774] WARNING: possible circular locking dependency detected
[  128.136781] 6.0.0-rc6-next-20220923 #1 Not tainted
[  128.136793] ------------------------------------------------------
[  128.136798] syz-executor.2/3695 is trying to acquire lock:
[  128.136810] ffffffff853faaf8 ((console_sem).lock){-...}-{2:2}, at: down_trylock+0xe/0x70
[  128.136877] 
[  128.136877] but task is already holding lock:
[  128.136882] ffff88803fec9020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  128.136933] 
[  128.136933] which lock already depends on the new lock.
[  128.136933] 
[  128.136938] 
[  128.136938] the existing dependency chain (in reverse order) is:
[  128.136944] 
[  128.136944] -> #3 (&ctx->lock){....}-{2:2}:
[  128.136969]        _raw_spin_lock+0x2a/0x40
[  128.137003]        __perf_event_task_sched_out+0x53b/0x18d0
[  128.137026]        __schedule+0xedd/0x2470
[  128.137051]        schedule+0xda/0x1b0
[  128.137074]        exit_to_user_mode_prepare+0x114/0x1a0
[  128.137095]        syscall_exit_to_user_mode+0x19/0x40
[  128.137118]        do_syscall_64+0x48/0x90
[  128.137148]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  128.137170] 
[  128.137170] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  128.137195]        _raw_spin_lock_nested+0x30/0x40
[  128.137228]        raw_spin_rq_lock_nested+0x1e/0x30
[  128.137252]        task_fork_fair+0x63/0x4d0
[  128.137282]        sched_cgroup_fork+0x3d0/0x540
[  128.137307]        copy_process+0x4183/0x6e20
[  128.137326]        kernel_clone+0xe7/0x890
[  128.137343]        user_mode_thread+0xad/0xf0
[  128.137362]        rest_init+0x24/0x250
[  128.137383]        arch_call_rest_init+0xf/0x14
[  128.137413]        start_kernel+0x4c1/0x4e6
[  128.137441]        secondary_startup_64_no_verify+0xe0/0xeb
[  128.137467] 
[  128.137467] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  128.137491]        _raw_spin_lock_irqsave+0x39/0x60
[  128.137525]        try_to_wake_up+0xab/0x1930
[  128.137549]        up+0x75/0xb0
[  128.137574]        __up_console_sem+0x6e/0x80
[  128.137602]        console_unlock+0x46a/0x590
[  128.137631]        vprintk_emit+0x1bd/0x560
[  128.137660]        devkmsg_emit.constprop.0+0xbb/0xf4
[  128.137683]        devkmsg_write.cold+0x83/0xd9
[  128.137704]        do_iter_readv_writev+0x211/0x3c0
[  128.137735]        do_iter_write+0x18b/0x700
[  128.137765]        vfs_writev+0x1ae/0x630
[  128.137794]        do_writev+0x133/0x300
[  128.137823]        do_syscall_64+0x3b/0x90
[  128.137853]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  128.137875] 
[  128.137875] -> #0 ((console_sem).lock){-...}-{2:2}:
[  128.137900]        __lock_acquire+0x2a02/0x5e70
[  128.137931]        lock_acquire+0x1a2/0x530
[  128.137959]        _raw_spin_lock_irqsave+0x39/0x60
[  128.137993]        down_trylock+0xe/0x70
[  128.138019]        __down_trylock_console_sem+0x3b/0xd0
[  128.138048]        vprintk_emit+0x16b/0x560
[  128.138077]        vprintk+0x84/0xa0
[  128.138106]        _printk+0xba/0xf1
[  128.138125]        report_bug.cold+0x72/0xab
[  128.138154]        handle_bug+0x3c/0x70
[  128.138183]        exc_invalid_op+0x14/0x50
[  128.138213]        asm_exc_invalid_op+0x16/0x20
[  128.138234]        group_sched_out.part.0+0x2c7/0x460
[  128.138254]        ctx_sched_out+0x8f1/0xc10
[  128.138272]        __perf_event_task_sched_out+0x6d0/0x18d0
[  128.138295]        __schedule+0xedd/0x2470
[  128.138319]        preempt_schedule_common+0x45/0xc0
[  128.138345]        __cond_resched+0x17/0x30
[  128.138370]        __mutex_lock+0xa3/0x14d0
[  128.138396]        __do_sys_perf_event_open+0x1eec/0x32c0
[  128.138420]        do_syscall_64+0x3b/0x90
[  128.138449]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  128.138471] 
[  128.138471] other info that might help us debug this:
[  128.138471] 
[  128.138476] Chain exists of:
[  128.138476]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  128.138476] 
[  128.138503]  Possible unsafe locking scenario:
[  128.138503] 
[  128.138508]        CPU0                    CPU1
[  128.138512]        ----                    ----
[  128.138516]   lock(&ctx->lock);
[  128.138526]                                lock(&rq->__lock);
[  128.138538]                                lock(&ctx->lock);
[  128.138550]   lock((console_sem).lock);
[  128.138560] 
[  128.138560]  *** DEADLOCK ***
[  128.138560] 
[  128.138564] 2 locks held by syz-executor.2/3695:
[  128.138576]  #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  128.138629]  #1: ffff88803fec9020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  128.138680] 
[  128.138680] stack backtrace:
[  128.138684] CPU: 1 PID: 3695 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1
[  128.138707] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  128.138722] Call Trace:
[  128.138727]  <TASK>
[  128.138734]  dump_stack_lvl+0x8b/0xb3
[  128.138767]  check_noncircular+0x263/0x2e0
[  128.138797]  ? format_decode+0x26c/0xb50
[  128.138826]  ? print_circular_bug+0x450/0x450
[  128.138857]  ? enable_ptr_key_workfn+0x20/0x20
[  128.138884]  ? __lockdep_reset_lock+0x180/0x180
[  128.138915]  ? format_decode+0x26c/0xb50
[  128.138946]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  128.138978]  __lock_acquire+0x2a02/0x5e70
[  128.139018]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  128.139059]  lock_acquire+0x1a2/0x530
[  128.139089]  ? down_trylock+0xe/0x70
[  128.139120]  ? lock_release+0x750/0x750
[  128.139154]  ? find_held_lock+0x2c/0x110
[  128.139184]  ? vprintk+0x84/0xa0
[  128.139216]  _raw_spin_lock_irqsave+0x39/0x60
[  128.139251]  ? down_trylock+0xe/0x70
[  128.139280]  down_trylock+0xe/0x70
[  128.139308]  ? vprintk+0x84/0xa0
[  128.139339]  __down_trylock_console_sem+0x3b/0xd0
[  128.139370]  vprintk_emit+0x16b/0x560
[  128.139405]  vprintk+0x84/0xa0
[  128.139436]  _printk+0xba/0xf1
[  128.139457]  ? record_print_text.cold+0x16/0x16
[  128.139482]  ? hrtimer_try_to_cancel+0x163/0x2c0
[  128.139530]  ? lock_downgrade+0x6d0/0x6d0
[  128.139562]  ? report_bug.cold+0x66/0xab
[  128.139595]  ? group_sched_out.part.0+0x2c7/0x460
[  128.139616]  report_bug.cold+0x72/0xab
[  128.139650]  handle_bug+0x3c/0x70
[  128.139681]  exc_invalid_op+0x14/0x50
[  128.139713]  asm_exc_invalid_op+0x16/0x20
[  128.139736] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  128.139761] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  128.139782] RSP: 0018:ffff888017687978 EFLAGS: 00010006
[  128.139798] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  128.139812] RDX: ffff8880410ab580 RSI: ffffffff81564fb7 RDI: 0000000000000005
[  128.139826] RBP: ffff888041d61158 R08: 0000000000000005 R09: 0000000000000001
[  128.139840] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803fec9000
[  128.139853] R13: ffff88806cf3d140 R14: ffffffff8547c9a0 R15: 0000000000000002
[  128.139873]  ? group_sched_out.part.0+0x2c7/0x460
[  128.139898]  ? group_sched_out.part.0+0x2c7/0x460
[  128.139922]  ctx_sched_out+0x8f1/0xc10
[  128.139946]  __perf_event_task_sched_out+0x6d0/0x18d0
[  128.139975]  ? lock_is_held_type+0xd7/0x130
[  128.139999]  ? __perf_cgroup_move+0x160/0x160
[  128.140022]  ? set_next_entity+0x304/0x550
[  128.140053]  ? update_curr+0x267/0x740
[  128.140087]  ? lock_is_held_type+0xd7/0x130
[  128.140112]  __schedule+0xedd/0x2470
[  128.140142]  ? io_schedule_timeout+0x150/0x150
[  128.140172]  ? lock_is_held_type+0xd7/0x130
[  128.140196]  ? __cond_resched+0x17/0x30
[  128.140223]  preempt_schedule_common+0x45/0xc0
[  128.140253]  __cond_resched+0x17/0x30
[  128.140278]  __mutex_lock+0xa3/0x14d0
[  128.140308]  ? lock_is_held_type+0xd7/0x130
[  128.140331]  ? __do_sys_perf_event_open+0x1eec/0x32c0
[  128.140359]  ? mutex_lock_io_nested+0x1310/0x1310
[  128.140388]  ? lock_release+0x3b2/0x750
[  128.140419]  ? __up_read+0x192/0x730
[  128.140446]  ? up_write+0x520/0x520
[  128.140477]  __do_sys_perf_event_open+0x1eec/0x32c0
[  128.140509]  ? perf_compat_ioctl+0x130/0x130
[  128.140532]  ? xfd_validate_state+0x59/0x180
[  128.140573]  ? syscall_enter_from_user_mode+0x1d/0x50
[  128.140598]  ? syscall_enter_from_user_mode+0x1d/0x50
[  128.140625]  do_syscall_64+0x3b/0x90
[  128.140657]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  128.140681] RIP: 0033:0x7f3a79c0eb19
[  128.140695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  128.140716] RSP: 002b:00007f3a77184188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  128.140736] RAX: ffffffffffffffda RBX: 00007f3a79d21f60 RCX: 00007f3a79c0eb19
[  128.140750] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280
[  128.140764] RBP: 00007f3a79c68f6d R08: 000000000000000b R09: 0000000000000000
[  128.140777] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  128.140790] R13: 00007fff70bc9f9f R14: 00007f3a77184300 R15: 0000000000022000
[  128.140814]  </TASK>
[  128.257741] WARNING: CPU: 1 PID: 3695 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  128.259037] Modules linked in:
[  128.259495] CPU: 1 PID: 3695 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1
[  128.260647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  128.262217] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  128.262971] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  128.265532] RSP: 0018:ffff888017687978 EFLAGS: 00010006
[  128.266276] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  128.267280] RDX: ffff8880410ab580 RSI: ffffffff81564fb7 RDI: 0000000000000005
[  128.268303] RBP: ffff888041d61158 R08: 0000000000000005 R09: 0000000000000001
[  128.269314] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803fec9000
[  128.270312] R13: ffff88806cf3d140 R14: ffffffff8547c9a0 R15: 0000000000000002
[  128.271255] FS:  00007f3a77184700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  128.272331] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  128.273097] CR2: 0000001b2d824000 CR3: 00000000101f0000 CR4: 0000000000350ee0
[  128.274035] Call Trace:
[  128.274386]  <TASK>
[  128.274697]  ctx_sched_out+0x8f1/0xc10
[  128.275223]  __perf_event_task_sched_out+0x6d0/0x18d0
[  128.275924]  ? lock_is_held_type+0xd7/0x130
[  128.276499]  ? __perf_cgroup_move+0x160/0x160
[  128.277104]  ? set_next_entity+0x304/0x550
[  128.277682]  ? update_curr+0x267/0x740
[  128.278214]  ? lock_is_held_type+0xd7/0x130
[  128.278802]  __schedule+0xedd/0x2470
[  128.279314]  ? io_schedule_timeout+0x150/0x150
[  128.279952]  ? lock_is_held_type+0xd7/0x130
[  128.280527]  ? __cond_resched+0x17/0x30
[  128.281068]  preempt_schedule_common+0x45/0xc0
[  128.281691]  __cond_resched+0x17/0x30
[  128.282208]  __mutex_lock+0xa3/0x14d0
[  128.282736]  ? lock_is_held_type+0xd7/0x130
[  128.283311]  ? __do_sys_perf_event_open+0x1eec/0x32c0
[  128.284009]  ? mutex_lock_io_nested+0x1310/0x1310
[  128.284662]  ? lock_release+0x3b2/0x750
[  128.285207]  ? __up_read+0x192/0x730
[  128.285717]  ? up_write+0x520/0x520
[  128.286220]  __do_sys_perf_event_open+0x1eec/0x32c0
[  128.286901]  ? perf_compat_ioctl+0x130/0x130
[  128.287498]  ? xfd_validate_state+0x59/0x180
[  128.288127]  ? syscall_enter_from_user_mode+0x1d/0x50
[  128.288816]  ? syscall_enter_from_user_mode+0x1d/0x50
[  128.289510]  do_syscall_64+0x3b/0x90
[  128.290025]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  128.290710] RIP: 0033:0x7f3a79c0eb19
[  128.291206] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  128.293546] RSP: 002b:00007f3a77184188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  128.294546] RAX: ffffffffffffffda RBX: 00007f3a79d21f60 RCX: 00007f3a79c0eb19
[  128.295507] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280
[  128.296540] RBP: 00007f3a79c68f6d R08: 000000000000000b R09: 0000000000000000
[  128.297543] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  128.298539] R13: 00007fff70bc9f9f R14: 00007f3a77184300 R15: 0000000000022000
[  128.299555]  </TASK>
[  128.299898] irq event stamp: 1754
[  128.300383] hardirqs last  enabled at (1753): [<ffffffff84400d06>] asm_sysvec_apic_timer_interrupt+0x16/0x20
[  128.301757] hardirqs last disabled at (1754): [<ffffffff84259645>] __schedule+0x1225/0x2470
[  128.302940] softirqs last  enabled at (1444): [<ffffffff8116fa8b>] __irq_exit_rcu+0x11b/0x180
[  128.304151] softirqs last disabled at (1243): [<ffffffff8116fa8b>] __irq_exit_rcu+0x11b/0x180
[  128.305349] ---[ end trace 0000000000000000 ]---
02:10:52 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8000000000, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
getpid()
ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300))
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000340))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="00010000", @ANYRES16=r0, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32, @ANYBLOB="e200330080800000080211000001080211000000505050505050"], 0x100}}, 0x0)
clone3(&(0x7f0000000440)={0x80202800, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000500), {0x3f}, &(0x7f0000000540)=""/79, 0x4f, &(0x7f0000004c80)=""/102400, &(0x7f0000000100)}, 0x58)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, 0x0, 0x0)
fcntl$notify(0xffffffffffffffff, 0x402, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x88000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7)

02:10:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="280000006900010000000000000000000c00000002000000000000000c0000800800000000000000"], 0x28}], 0x1}, 0x0)

[  129.268843] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
02:10:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="280000006900010000000000000000000c00000002000000000000000c0000800800000000000000"], 0x28}], 0x1}, 0x0)

[  129.407419] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
02:10:52 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="280000006900010000000000000000000c00000002000000000000000c0000800800000000000000"], 0x28}], 0x1}, 0x0)

[  129.496891] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[  136.311519] Bluetooth: hci1: Opcode 0x c03 failed: -110
[  136.312572] Bluetooth: hci0: Opcode 0x c03 failed: -110

VM DIAGNOSIS:
02:10:51  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=0000000000000001 RCX=0000000000000000 RDX=ffff8880205f0000
RSI=ffffffff816baadc RDI=0000000000000005 RBP=ffff8880187a7950 RSP=ffff8880187a7888
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=ffff88800ec139c0 R13=00007fdfa4f2d000 R14=0000000000000001 R15=0000000000000000
RIP=ffffffff816baadc RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fdfa540f1f0 CR3=0000000040e5e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 6461657268747062 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 00302e6f732e6461 657268747062696c
YMM03=0000000000000000 0000000000000000 2f756e672d78756e 696c2d34365f3638
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff822b175c RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff8880176873d0
R8 =0000000000000001 R9 =ffff88801768735b R10=ffffed1002ed0e6b R11=0000000000000001
R12=0000000000000041 R13=ffffffff87645ba0 R14=ffffffff87645bf0 R15=ffffffff87645e48
RIP=ffffffff822b17b1 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f3a77184700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2d824000 CR3=00000000101f0000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 ffffffffffffffff ff00000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000