Warning: Permanently added '[localhost]:14746' (ECDSA) to the list of known hosts.
2022/10/02 08:59:02 fuzzer started
2022/10/02 08:59:02 dialing manager at localhost:35095
syzkaller login: [   39.388059] cgroup: Unknown subsys name 'net'
[   39.523888] cgroup: Unknown subsys name 'rlimit'
2022/10/02 08:59:16 syscalls: 2215
2022/10/02 08:59:16 code coverage: enabled
2022/10/02 08:59:16 comparison tracing: enabled
2022/10/02 08:59:16 extra coverage: enabled
2022/10/02 08:59:16 setuid sandbox: enabled
2022/10/02 08:59:16 namespace sandbox: enabled
2022/10/02 08:59:16 Android sandbox: enabled
2022/10/02 08:59:16 fault injection: enabled
2022/10/02 08:59:16 leak checking: enabled
2022/10/02 08:59:16 net packet injection: enabled
2022/10/02 08:59:16 net device setup: enabled
2022/10/02 08:59:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/02 08:59:16 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/02 08:59:16 USB emulation: enabled
2022/10/02 08:59:16 hci packet injection: enabled
2022/10/02 08:59:16 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/02 08:59:16 802.15.4 emulation: enabled
2022/10/02 08:59:16 fetching corpus: 50, signal 22392/24220 (executing program)
2022/10/02 08:59:16 fetching corpus: 100, signal 29833/33372 (executing program)
2022/10/02 08:59:16 fetching corpus: 150, signal 40750/45763 (executing program)
2022/10/02 08:59:16 fetching corpus: 200, signal 47209/53717 (executing program)
2022/10/02 08:59:16 fetching corpus: 250, signal 52047/59979 (executing program)
2022/10/02 08:59:16 fetching corpus: 300, signal 58531/67839 (executing program)
2022/10/02 08:59:17 fetching corpus: 350, signal 63087/73726 (executing program)
2022/10/02 08:59:17 fetching corpus: 400, signal 65498/77540 (executing program)
2022/10/02 08:59:17 fetching corpus: 450, signal 69365/82655 (executing program)
2022/10/02 08:59:17 fetching corpus: 500, signal 72620/87202 (executing program)
2022/10/02 08:59:17 fetching corpus: 550, signal 78532/94042 (executing program)
2022/10/02 08:59:17 fetching corpus: 600, signal 81937/98558 (executing program)
2022/10/02 08:59:17 fetching corpus: 650, signal 86604/104152 (executing program)
2022/10/02 08:59:17 fetching corpus: 700, signal 89159/107817 (executing program)
2022/10/02 08:59:18 fetching corpus: 750, signal 91620/111320 (executing program)
2022/10/02 08:59:18 fetching corpus: 800, signal 93393/114201 (executing program)
2022/10/02 08:59:18 fetching corpus: 850, signal 95433/117282 (executing program)
2022/10/02 08:59:18 fetching corpus: 900, signal 97229/120123 (executing program)
2022/10/02 08:59:18 fetching corpus: 950, signal 100634/124314 (executing program)
2022/10/02 08:59:18 fetching corpus: 1000, signal 104232/128657 (executing program)
2022/10/02 08:59:18 fetching corpus: 1050, signal 107501/132631 (executing program)
2022/10/02 08:59:18 fetching corpus: 1100, signal 111427/137102 (executing program)
2022/10/02 08:59:19 fetching corpus: 1150, signal 113130/139717 (executing program)
2022/10/02 08:59:19 fetching corpus: 1200, signal 116647/143762 (executing program)
2022/10/02 08:59:19 fetching corpus: 1250, signal 117543/145632 (executing program)
2022/10/02 08:59:19 fetching corpus: 1300, signal 119646/148427 (executing program)
2022/10/02 08:59:19 fetching corpus: 1350, signal 120641/150369 (executing program)
2022/10/02 08:59:19 fetching corpus: 1400, signal 122092/152606 (executing program)
2022/10/02 08:59:19 fetching corpus: 1450, signal 123229/154674 (executing program)
2022/10/02 08:59:19 fetching corpus: 1500, signal 124895/157144 (executing program)
2022/10/02 08:59:19 fetching corpus: 1550, signal 126255/159338 (executing program)
2022/10/02 08:59:20 fetching corpus: 1600, signal 127220/161173 (executing program)
2022/10/02 08:59:20 fetching corpus: 1650, signal 129042/163623 (executing program)
2022/10/02 08:59:20 fetching corpus: 1700, signal 130425/165731 (executing program)
2022/10/02 08:59:20 fetching corpus: 1750, signal 131966/167947 (executing program)
2022/10/02 08:59:20 fetching corpus: 1800, signal 133654/170271 (executing program)
2022/10/02 08:59:20 fetching corpus: 1850, signal 135332/172454 (executing program)
2022/10/02 08:59:20 fetching corpus: 1900, signal 137366/174925 (executing program)
2022/10/02 08:59:21 fetching corpus: 1950, signal 139190/177160 (executing program)
2022/10/02 08:59:21 fetching corpus: 2000, signal 139958/178668 (executing program)
2022/10/02 08:59:21 fetching corpus: 2050, signal 141594/180806 (executing program)
2022/10/02 08:59:21 fetching corpus: 2100, signal 143175/182904 (executing program)
2022/10/02 08:59:21 fetching corpus: 2150, signal 144713/184889 (executing program)
2022/10/02 08:59:21 fetching corpus: 2200, signal 146256/186891 (executing program)
2022/10/02 08:59:22 fetching corpus: 2250, signal 147467/188574 (executing program)
2022/10/02 08:59:22 fetching corpus: 2300, signal 148446/190124 (executing program)
2022/10/02 08:59:22 fetching corpus: 2350, signal 149606/191746 (executing program)
2022/10/02 08:59:22 fetching corpus: 2400, signal 151370/193806 (executing program)
2022/10/02 08:59:22 fetching corpus: 2450, signal 153116/195872 (executing program)
2022/10/02 08:59:22 fetching corpus: 2500, signal 154023/197337 (executing program)
2022/10/02 08:59:22 fetching corpus: 2550, signal 154864/198702 (executing program)
2022/10/02 08:59:22 fetching corpus: 2600, signal 156288/200464 (executing program)
2022/10/02 08:59:23 fetching corpus: 2650, signal 157619/202162 (executing program)
2022/10/02 08:59:23 fetching corpus: 2700, signal 158634/203618 (executing program)
2022/10/02 08:59:23 fetching corpus: 2750, signal 160131/205343 (executing program)
2022/10/02 08:59:23 fetching corpus: 2800, signal 161136/206719 (executing program)
2022/10/02 08:59:23 fetching corpus: 2850, signal 161790/207925 (executing program)
2022/10/02 08:59:23 fetching corpus: 2900, signal 162755/209307 (executing program)
2022/10/02 08:59:23 fetching corpus: 2950, signal 163726/210683 (executing program)
2022/10/02 08:59:23 fetching corpus: 3000, signal 164685/211980 (executing program)
2022/10/02 08:59:23 fetching corpus: 3050, signal 165320/213150 (executing program)
2022/10/02 08:59:24 fetching corpus: 3100, signal 166618/214673 (executing program)
2022/10/02 08:59:24 fetching corpus: 3150, signal 167394/215881 (executing program)
2022/10/02 08:59:24 fetching corpus: 3200, signal 168921/217497 (executing program)
2022/10/02 08:59:24 fetching corpus: 3250, signal 169656/218635 (executing program)
2022/10/02 08:59:24 fetching corpus: 3300, signal 171391/220237 (executing program)
2022/10/02 08:59:24 fetching corpus: 3350, signal 172268/221439 (executing program)
2022/10/02 08:59:24 fetching corpus: 3400, signal 172845/222498 (executing program)
2022/10/02 08:59:24 fetching corpus: 3450, signal 173549/223599 (executing program)
2022/10/02 08:59:24 fetching corpus: 3500, signal 174179/224639 (executing program)
2022/10/02 08:59:25 fetching corpus: 3550, signal 174767/225609 (executing program)
2022/10/02 08:59:25 fetching corpus: 3600, signal 175814/226871 (executing program)
2022/10/02 08:59:25 fetching corpus: 3650, signal 176994/228024 (executing program)
2022/10/02 08:59:25 fetching corpus: 3700, signal 177841/229120 (executing program)
2022/10/02 08:59:25 fetching corpus: 3750, signal 178265/229985 (executing program)
2022/10/02 08:59:25 fetching corpus: 3800, signal 178886/230943 (executing program)
2022/10/02 08:59:25 fetching corpus: 3850, signal 179784/232052 (executing program)
2022/10/02 08:59:25 fetching corpus: 3900, signal 180596/233080 (executing program)
2022/10/02 08:59:25 fetching corpus: 3950, signal 181233/234024 (executing program)
2022/10/02 08:59:26 fetching corpus: 4000, signal 181921/234987 (executing program)
2022/10/02 08:59:26 fetching corpus: 4050, signal 182769/236039 (executing program)
2022/10/02 08:59:26 fetching corpus: 4100, signal 183587/237037 (executing program)
2022/10/02 08:59:26 fetching corpus: 4150, signal 184117/237899 (executing program)
2022/10/02 08:59:26 fetching corpus: 4200, signal 184745/238783 (executing program)
2022/10/02 08:59:26 fetching corpus: 4250, signal 185576/239702 (executing program)
2022/10/02 08:59:26 fetching corpus: 4300, signal 185996/240497 (executing program)
2022/10/02 08:59:26 fetching corpus: 4350, signal 186589/241330 (executing program)
2022/10/02 08:59:26 fetching corpus: 4400, signal 186942/242094 (executing program)
2022/10/02 08:59:26 fetching corpus: 4450, signal 188097/243088 (executing program)
2022/10/02 08:59:26 fetching corpus: 4500, signal 188633/243868 (executing program)
2022/10/02 08:59:27 fetching corpus: 4550, signal 189061/244695 (executing program)
2022/10/02 08:59:27 fetching corpus: 4600, signal 189569/245530 (executing program)
2022/10/02 08:59:27 fetching corpus: 4650, signal 190470/246434 (executing program)
2022/10/02 08:59:27 fetching corpus: 4700, signal 191508/247377 (executing program)
2022/10/02 08:59:27 fetching corpus: 4750, signal 193023/248445 (executing program)
2022/10/02 08:59:27 fetching corpus: 4800, signal 194068/249298 (executing program)
2022/10/02 08:59:27 fetching corpus: 4850, signal 194403/249935 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/250575 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/251118 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/251687 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/252217 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/252801 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/253388 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/253956 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/254527 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/255149 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/255699 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/256220 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/256852 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/257435 (executing program)
2022/10/02 08:59:27 fetching corpus: 4876, signal 194680/258010 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/258589 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/259190 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/259747 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/260317 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/260872 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/261478 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/262034 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/262594 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/263154 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/263743 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/264322 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/264922 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/265479 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/266056 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/266646 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/267197 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/267791 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/268368 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/268970 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/269557 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/270112 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/270670 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/271270 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/271305 (executing program)
2022/10/02 08:59:28 fetching corpus: 4876, signal 194680/271305 (executing program)
2022/10/02 08:59:30 starting 8 fuzzer processes
08:59:30 executing program 0:
bind(0xffffffffffffffff, &(0x7f0000000000)=@sco={0x1f, @none}, 0x80)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f0000000100)={'syztnl2\x00', &(0x7f0000000080)={'ip6_vti0\x00', <r0=>0x0, 0x4, 0x4, 0x0, 0x4, 0x1, @mcast2, @mcast1, 0x10, 0x7, 0xca1, 0x2}})
ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000140)={@private0={0xfc, 0x0, '\x00', 0x1}, @private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x394b3be7, 0x101, 0x9, 0x100, 0x2, 0x40800000, r0})
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000006140)=[{{0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000000240)=""/168, 0xa8}, {&(0x7f0000000300)=""/112, 0x70}, {&(0x7f0000000380)=""/201, 0xc9}, {&(0x7f0000000480)=""/215, 0xd7}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/226, 0xe2}, {&(0x7f0000001680)=""/207, 0xcf}, {&(0x7f0000001780)=""/94, 0x5e}, {&(0x7f0000001800)=""/230, 0xe6}, {&(0x7f0000001900)=""/4096, 0x1000}], 0xa, &(0x7f00000029c0)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000002a40), 0x6e, &(0x7f0000003080)=[{&(0x7f0000002ac0)=""/146, 0x92}, {&(0x7f0000002b80)}, {&(0x7f0000002bc0)=""/131, 0x83}, {&(0x7f0000002c80)=""/218, 0xda}, {&(0x7f0000002d80)=""/67, 0x43}, {&(0x7f0000002e00)=""/132, 0x84}, {&(0x7f0000002ec0)=""/124, 0x7c}, {&(0x7f0000002f40)=""/36, 0x24}, {&(0x7f0000002f80)=""/243, 0xf3}], 0x9, &(0x7f0000003140)=[@cred={{0x1c, 0x1, 0x2, {<r1=>0x0}}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [<r2=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r3=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf8}}, {{&(0x7f0000003240)=@abs, 0x6e, &(0x7f0000003380)=[{&(0x7f00000032c0)=""/182, 0xb6}], 0x1, &(0x7f00000033c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd0}}, {{&(0x7f00000034c0), 0x6e, &(0x7f00000058c0)=[{&(0x7f0000003540)=""/4096, 0x1000}, {&(0x7f0000004540)=""/107, 0x6b}, {&(0x7f00000045c0)=""/13, 0xd}, {&(0x7f0000004600)=""/36, 0x24}, {&(0x7f0000004640)=""/51, 0x33}, {&(0x7f0000004680)=""/4096, 0x1000}, {&(0x7f0000005680)=""/186, 0xba}, {&(0x7f0000005740)=""/7, 0x7}, {&(0x7f0000005780)=""/3, 0x3}, {&(0x7f00000057c0)=""/234, 0xea}], 0xa, &(0x7f0000005980)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [<r8=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff]}}], 0x100}}, {{&(0x7f0000005a80), 0x6e, &(0x7f0000005f80)=[{&(0x7f0000005b00)=""/221, 0xdd}, {&(0x7f0000005c00)=""/129, 0x81}, {&(0x7f0000005cc0)=""/2, 0x2}, {&(0x7f0000005d00)=""/25, 0x19}, {&(0x7f0000005d40)=""/133, 0x85}, {&(0x7f0000005e00)=""/15, 0xf}, {&(0x7f0000005e40)=""/199, 0xc7}, {&(0x7f0000005f40)=""/64, 0x40}], 0x8, &(0x7f0000006000)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x118}}], 0x5, 0x101, &(0x7f0000006280)={0x77359400})
r10 = fsmount(0xffffffffffffffff, 0x0, 0xf8)
perf_event_open(&(0x7f00000001c0)={0x5, 0x80, 0x9, 0x75, 0x8, 0x3, 0x0, 0x7fff, 0x9100, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x800, 0x1, @perf_config_ext={0x7, 0x3}, 0x4100, 0x6, 0x9, 0x4, 0x8, 0x8, 0x2, 0x0, 0x800, 0x0, 0x7}, r1, 0x8, r10, 0x0)
r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
fsetxattr$security_ima(r11, &(0x7f00000062c0), &(0x7f0000006300)=@md5={0x1, "fef479f0417c4ee08730ba2cb28c4a2a"}, 0x11, 0x2)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r4, 0x89f8, &(0x7f00000063c0)={'syztnl1\x00', &(0x7f0000006340)={'ip6tnl0\x00', <r12=>r0, 0x4, 0x50, 0x8, 0x2, 0x60, @dev={0xfe, 0x80, '\x00', 0x18}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8000, 0x8, 0x81, 0x8000}})
ioctl$sock_inet6_SIOCDELRT(r8, 0x890c, &(0x7f0000006400)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @empty, @private0={0xfc, 0x0, '\x00', 0x1}, 0xb007, 0x7, 0x1, 0x500, 0x8, 0x81480124, r12})
io_getevents(0x0, 0xffffffffffffffff, 0x3, &(0x7f0000006480)=[{}, {}, {}], 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r9, 0xc0189376, &(0x7f0000006500)={{0x1, 0x1, 0x18, <r13=>r2}, './file0\x00'})
ioctl$sock_inet6_SIOCDELRT(r13, 0x890c, &(0x7f0000006540)={@remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4, 0x5b, 0x1ff, 0x500, 0x40, 0x5040018, r12})
getsockopt$inet6_mreq(r10, 0x29, 0x14, &(0x7f0000006600)={@private0, <r14=>0x0}, &(0x7f0000006640)=0x14)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r5, &(0x7f0000006780)={&(0x7f00000065c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000006740)={&(0x7f0000006680)={0x90, 0x0, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x440c5}, 0x8010)
r15 = dup2(0xffffffffffffffff, r3)
r16 = syz_genetlink_get_family_id$batadv(&(0x7f0000006800), r7)
getpeername$packet(r6, &(0x7f00000069c0)={0x11, 0x0, <r17=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000006a00)=0x14)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r15, &(0x7f0000006b00)={&(0x7f00000067c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000006ac0)={&(0x7f0000006a40)={0x44, r16, 0x300, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x3}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r17}]}, 0x44}, 0x1, 0x0, 0x0, 0x10080}, 0x40)
tee(0xffffffffffffffff, 0xffffffffffffffff, 0x200, 0x0)

08:59:30 executing program 1:
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x8a)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc0300, 0x154)
renameat(r0, &(0x7f0000000040)='./file0\x00', r1, &(0x7f00000000c0)='./file0\x00')
recvmmsg$unix(r0, &(0x7f0000001540)=[{{&(0x7f0000000100), 0x6e, &(0x7f0000001440)=[{&(0x7f0000000180)=""/21, 0x15}, {&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/246, 0xf6}, {&(0x7f00000012c0)=""/99, 0x63}, {&(0x7f0000001340)=""/242, 0xf2}], 0x5, &(0x7f00000014c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [<r2=>0xffffffffffffffff, 0xffffffffffffffff, <r3=>0xffffffffffffffff, 0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0x60}}], 0x1, 0x20000000, 0x0)
r5 = creat(&(0x7f0000001580)='./file0\x00', 0x2)
pwrite64(r4, &(0x7f00000015c0)="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", 0x1000, 0x1)
fcntl$addseals(r5, 0x409, 0x5)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f00000025c0)={0x0, r2, 0x3, 0x2, 0x8001, 0x3})
setxattr$security_ima(&(0x7f0000002600)='./file0\x00', &(0x7f0000002640), &(0x7f0000002680)=@sha1={0x1, "5270bbb6c2488a3fd4a564d1972991ad1371f912"}, 0x15, 0x5)
setxattr$trusted_overlay_opaque(&(0x7f00000026c0)='./file0\x00', &(0x7f0000002700), &(0x7f0000002740), 0x2, 0x2)
r6 = accept$unix(r5, &(0x7f0000002780), &(0x7f0000002800)=0x6e)
fallocate(r4, 0x8, 0x3, 0xfffffffffffff001)
r7 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000002840)='./binderfs/binder-control\x00', 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r3, 0x2, r7)
mount$9p_rdma(&(0x7f0000002880), &(0x7f00000028c0)='./file0\x00', &(0x7f0000002900), 0x1000, &(0x7f0000002940)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@rq={'rq', 0x3d, 0x6}}, {@sq={'sq', 0x3d, 0x7a37}}, {@timeout={'timeout', 0x3d, 0xbdb}}, {@sq={'sq', 0x3d, 0x6}}, {@rq={'rq', 0x3d, 0x7}}], [{@fowner_lt={'fowner<', 0xee00}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfsroot}, {@smackfsroot={'smackfsroot', 0x3d, '\xa5#\'/\\{)\\'}}, {@dont_hash}]}})
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r4, 0xc0c89425, &(0x7f0000002a40)={"e7e4bae9d95253eb02de2c6c9643edf1", 0x0, <r9=>0x0, {0xfffffffffffffffc, 0x2c}, {0x8}, 0x18000000000000, [0x7cc6935, 0x651, 0x6, 0x2e80000000, 0x401, 0x0, 0x8, 0x3, 0x80000000, 0x7f, 0x6, 0x100000001, 0x9, 0x1, 0x4, 0x7]})
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r8, 0x50009417, &(0x7f0000002c00)={{r6}, r9, 0x4, @inherit={0x90, &(0x7f0000002b40)={0x0, 0x9, 0x200, 0x1, {0x22, 0x0, 0x80000000, 0x1f, 0x6}, [0x6, 0x2, 0x1ff, 0x9, 0x9, 0x6, 0xe4, 0xffff, 0x8]}}, @devid})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000003c00)={{0x1, 0x1, 0x18, <r10=>r8, @in_args={0x2}}, './file0\x00'})
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r10, 0xf502, 0x0)

08:59:30 executing program 4:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r1=>0x0})
sendmsg$NL80211_CMD_LEAVE_OCB(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r0, 0x300, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0xb6800000, 0x4f}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff, @in_args={0x4}}, './file0\x00'})
sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, 0x0, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x6e}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x59}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x7f}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x65}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x1c}]}, 0x54}, 0x1, 0x0, 0x0, 0x8040}, 0x21042)
r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000300), 0x100, 0x0)
ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f0000000340)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_DEAUTHENTICATE(r4, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x34, 0x0, 0x4, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x5, 0x8}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}]}, 0x34}, 0x1, 0x0, 0x0, 0x2008040}, 0x80)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), r2)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r4, &(0x7f0000000840)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000800)={&(0x7f0000000740)={0x98, r6, 0x100, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xa}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xd1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x291}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3e0}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x5}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1478}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x143c}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x45}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x98}, 0x1, 0x0, 0x0, 0x800}, 0x24000044)
sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x2c, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x9}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4801}, 0x8000)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000001c80)={'batadv_slave_0\x00', <r7=>0x0})
getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000001cc0)={<r8=>0x0, @local, @loopback}, &(0x7f0000001d00)=0xc)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r4, &(0x7f0000001e40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001e00)={&(0x7f0000001d40)={0xb8, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r7}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x4}]}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0={0xfc, 0x0, '\x00', 0x1}}, @MPTCP_PM_ADDR_ATTR_ID={0x5}]}, @MPTCP_PM_ATTR_ADDR={0x28, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
getsockname(r2, &(0x7f0000001e80)=@rc={0x1f, @fixed}, &(0x7f0000001f00)=0x80)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001f80), r2)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000002040)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000002000)={&(0x7f0000001fc0)={0x2c, r9, 0x300, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x3ae0}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x100}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x80}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000080}, 0x41)
sendmsg$NL80211_CMD_RADAR_DETECT(r4, &(0x7f0000002140)={&(0x7f0000002080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000002100)={&(0x7f00000020c0)={0x24, r6, 0x100, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x66}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x8040)

08:59:30 executing program 5:
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000000))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000040))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000080))
prctl$PR_GET_FPEXC(0xb, &(0x7f00000000c0))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000100))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000140))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000180))
prctl$PR_GET_FPEXC(0xb, &(0x7f00000001c0))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000200))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000240))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000280))
prctl$PR_GET_FPEXC(0xb, &(0x7f00000002c0))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000300))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000340))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000380))
prctl$PR_GET_FPEXC(0xb, &(0x7f00000003c0))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000400))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000440))
prctl$PR_GET_FPEXC(0xb, &(0x7f0000000480))
prctl$PR_GET_FPEXC(0xb, &(0x7f00000004c0))

08:59:30 executing program 2:
sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x20040000}, 0x40)
r0 = syz_open_dev$vcsa(&(0x7f0000000900), 0x73, 0x212882)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000980), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000009c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000a80)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x2c, r1, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x2, 0x35}}}}, [@NL80211_ATTR_USE_RRM={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x10)
ioctl$KDSKBLED(r0, 0x4b65, 0x2)
r3 = accept4$unix(r0, 0x0, &(0x7f0000000ac0), 0xc0000)
preadv2(r3, &(0x7f0000000d40)=[{&(0x7f0000000b00)=""/197, 0xc5}, {&(0x7f0000000c00)=""/72, 0x48}, {&(0x7f0000000c80)=""/9, 0x9}, {&(0x7f0000000cc0)=""/70, 0x46}], 0x4, 0x554, 0x7fff, 0x1)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x94, r1, 0x200, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1dd00000, 0x4b}}}}, [@NL80211_ATTR_MAC_HINT={0xa}, @NL80211_ATTR_SSID={0x24, 0x34, @random="60169881f9e2f7bb9d45d9045f6d3a495babf0bfd9fec09c411cc4a0dbcfa4cd"}, @crypto_settings=[@NL80211_ATTR_SAE_PASSWORD={0x3b, 0x115, "565c68f864f1e3df62110dc16088ee32da9df535aeec1acffec33e033c5fb21869872049c81ef945dd117acdd8573a6fd730a692908775"}], @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x20}]}, 0x94}, 0x1, 0x0, 0x0, 0x8000}, 0x20000800)
ioctl$sock_inet_SIOCSIFNETMASK(r0, 0x891c, &(0x7f0000000f00)={'veth0_to_team\x00', {0x2, 0x0, @multicast1}})
getsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000f40)={@empty, @empty}, &(0x7f0000000f80)=0xc)
sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f0000001080)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001040)={&(0x7f0000001000)={0x1c, 0x0, 0x100, 0x70bd26, 0x25dfdbfc, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000040)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000001180)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x2c, r1, 0x8, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0xf670, 0x79}}}}, [@NL80211_ATTR_WANT_1X_4WAY_HS={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000890}, 0x20008000)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f00000011c0)={{0x1, 0x1, 0x18, <r4=>r0, {0x281b}}, './file0\x00'})
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000001240), r0)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r4, &(0x7f0000001300)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000012c0)={&(0x7f0000001280)={0x1c, r5, 0x100, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000001400)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001380)={0x14, 0x7, 0x1, 0x201, 0x0, 0x0, {0x3}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x48080}, 0x800)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r4, &(0x7f0000001640)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001600)={&(0x7f0000001480)={0x14c, r1, 0x400, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x7, 0x3}}}}, [@NL80211_ATTR_REKEY_DATA={0x54, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="18a665a588cf2d32afa95c3530efa3b8"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "13680228bd3a21ab"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="4b377691f9c70e24862ea043115b42e3"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="4651b9d181b76b4ff5dcb5f07ad971055352b556887b0654"}]}, @NL80211_ATTR_REKEY_DATA={0x80, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "8a69b416cd80403e"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x3}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="365d0dbe8888069471d0c3889a8c5ad04887f2df3722de2a"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="24bb9bb12f27575f3088c0e9710f157684eac6931941cfd5ebb2b6c75a1f6005"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "3978d154c65ef7f2"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="7c54087aa48f52080411d984394923098cb88b501d2627ae"}]}, @NL80211_ATTR_REKEY_DATA={0x50, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x8001}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "1f7c769e25964918"}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="f7f2816853180cc7b99564b86c99b9aaadce9e0e82a10186a0c05e32c2e2761c"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xffff}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "a5a4bcb8a45e1a0e"}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x40}, 0x4000)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000001680)={{0x1, 0x1, 0x18, <r6=>r3, {0x2}}, './file0\x00'})
sendmsg$DEVLINK_CMD_TRAP_SET(r6, &(0x7f00000018c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001880)={&(0x7f0000001700)={0x160, 0x0, 0x20, 0x70bd25, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}]}, 0x160}, 0x1, 0x0, 0x0, 0x80}, 0x4040080)

08:59:30 executing program 3:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x501000, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x0, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {}, {0x20, 0x17, {0x7, 0x10000, @l2={'ib', 0x3a, 'veth0_macvtap\x00'}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x3c}, 0x1, 0x0, 0x0, 0x880}, 0x0)
r1 = fcntl$getown(0xffffffffffffffff, 0x9)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000140)={0x0, 0x3, 0x10000, 0x5a, r1})
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, 0x0, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_COALESCE_RX_MAX_FRAMES_IRQ={0x8, 0x5, 0x2}, @ETHTOOL_A_COALESCE_USE_ADAPTIVE_TX={0x5, 0xc, 0x1}, @ETHTOOL_A_COALESCE_RX_USECS_HIGH={0x8, 0x13, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000280))
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x1a030004}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, r2, 0x10, 0x70bd25, 0x25dfdbff, {}, [@NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xaaa1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200040c1}, 0x8040)
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000680)={{0x1, 0x1, 0x18, <r3=>r0, {0x7, 0x3ff}}, './file0\x00'})
sendmsg$NL80211_CMD_REGISTER_BEACONS(r3, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x28, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x7b}, @void, @val={0xc, 0x99, {0x1, 0x73}}}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x20000100)
r4 = syz_open_dev$mouse(&(0x7f00000007c0), 0x2, 0x200)
sendmsg$NL80211_CMD_NEW_INTERFACE(r4, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x2c, 0x0, 0x300, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void, @void}}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'veth1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2000c094}, 0x80)
recvmsg$unix(r3, &(0x7f0000001d80)={&(0x7f0000000900), 0x6e, &(0x7f0000001c80)=[{&(0x7f0000000980)=""/244, 0xf4}, {&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000001a80)=""/250, 0xfa}, {&(0x7f0000001b80)=""/236, 0xec}], 0x4, &(0x7f0000001cc0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x10100)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x1)
sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r5, &(0x7f0000001ec0)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e00)={0x68, 0x0, 0x8, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xff, 0x2d}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x1c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xd}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xd}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x69}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x69}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000008}, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001f40), 0xffffffffffffffff)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r6, &(0x7f0000002000)={&(0x7f0000001f00)={0x10, 0x0, 0x0, 0xc00001}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x1c, r7, 0x400, 0x70bd29, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000004}, 0x40004)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r6, &(0x7f0000002140)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000002100)={&(0x7f0000002080)={0x6c, 0x0, 0x100, 0x70bd2b, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x4}, @IEEE802154_ATTR_LLSEC_ENABLED={0x5, 0x29, 0x1}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x71}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa0}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x8000}, @IEEE802154_ATTR_SHORT_ADDR={0x6}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20004004)
ioctl$INCFS_IOC_CREATE_FILE(r4, 0xc058671e, &(0x7f0000002540)={{'\x00', 0x1}, {}, 0x140, 0x0, 0x0, &(0x7f0000002180)='./file0\x00', &(0x7f00000021c0)='./file0\x00', &(0x7f0000002200)="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", 0x123, 0x0, &(0x7f0000002340)={0x2, 0x120, {0x0, 0xc, 0xa2, "194b5d882373d114761855ceabff48d1ff8051d67580d849ee22c69736a38f2323b4e72b2cd10de0d8d027d3538f99e481f61ebce0556b4e75710b7e0420c3567cc77ea97289513ef5da3fc2332b03deaccb6a44dea756201349e20447cb5b9fdf69d45895ee6c223e1e1cb402ec9f8d2b2df2375e4a1ac3237e0cf046750934b2a07943a7a12f4f98d9458f1d08a8cf2e2cf038dd1656ad75219000d2978bf43ebc", 0x71, "fea4ee48048f336e99a5ed81f01b2bfdf26dfd71272fea72b74499986b342910adced650fe88431cc1e7263093a938bc8888fb31ba10c484189bd57d3750d2d2fe013fed0454df28f7c0a78e70260882ff5492cb640336e99d3640d1baee44e2966d84f29f61f00e484a5153e74f2fed44"}, 0x99, "6fad59a22c34f67f5bcc9fc8a37bdcf635740cc8d7d3fe7b43aba61f30cd2c5c9705545b88b82fca2af5e8a4b2f4d6649a8e497a7b93ad7ea87c60334dba686722929dda63aae7d5ec59cc268db6e280a9924645b1fd1f549f1261106bcc19297db81f4f919f51f30833d56c5ef5433ea2e91788db64842bc9559fb4b47ce3c8f6d597b17ce09915315f829155ccf0c6dfb6406e1fd61342aa"}, 0x1c5})

[   67.149808] audit: type=1400 audit(1664701170.476:6): avc:  denied  { execmem } for  pid=281 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:59:30 executing program 6:
mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x10001)
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ff9000/0x4000)=nil)
msync(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x1)
mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x100000a)
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f0000000000)={0x8, 0x1, 0x4, 0x0, 0x0, [{{}, 0xffffffff}, {{}, 0x4}, {{}, 0x5648}, {{}, 0x100}]})
r0 = syz_io_uring_setup(0x12a9, &(0x7f00000000c0)={0x0, 0x27a0, 0x0, 0x3, 0x1af}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180))
mlock(&(0x7f0000ffc000/0x1000)=nil, 0x1000)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000, 0x3, &(0x7f0000ffc000/0x1000)=nil)
ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f00000001c0)={{r0}, "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"})
ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f00000011c0)={0x5, 0x48, 0xfff, 0x81, 0x20})
mbind(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8000, &(0x7f0000001200)=0xa8, 0x10000, 0x2)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x5, 0x40010, r0, 0x10000000)
move_pages(0x0, 0x3, &(0x7f0000001240)=[&(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil], &(0x7f0000001280)=[0x0, 0x471, 0x5, 0x5d8], &(0x7f00000012c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5)
mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x0, 0x2810, r0, 0x10000000)
fsetxattr$security_ima(r0, &(0x7f0000001300), &(0x7f0000001340)=@v2={0x3, 0x0, 0xd, 0x7, 0xc3, "611ef22a0835b6714120400a658affd0434739ac82b8b92882e196f0ce8780161e43adc946020b94a8bc8d2529f1e6a5c143491edd66c1d4af56e76f127acff2f519a91010350404a6d7b3f12358b39a273a6d564cf931708e01c3876579b573d06694676c5e3923c16b7f87a7e2ca090a9e21bddb5ebc434c84c2f1602b08e3c4245f86106175afe93ced712f2a8258b1a2d52f6603f94b6ee952a09d338e5064f39b87caa10697623c1c5ab2105d9a19bf46cfadcaa464b2e0adbce5e232c44166f5"}, 0xcc, 0x1)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000001440)=<r1=>0x0)
move_pages(r1, 0x1, &(0x7f0000001480)=[&(0x7f0000ffa000/0x4000)=nil], &(0x7f00000014c0)=[0x7f, 0x5, 0xffffffff, 0xfffff801, 0x2], &(0x7f0000001500)=[0x0], 0x8)
move_pages(r1, 0x3, &(0x7f0000001540)=[&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff6000/0x4000)=nil], &(0x7f0000001580)=[0x5, 0x5, 0x3, 0x20, 0x2, 0x322], &(0x7f00000015c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1)
move_pages(r1, 0x7, &(0x7f0000001600)=[&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff3000/0x4000)=nil, &(0x7f0000ff3000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil], &(0x7f0000001640)=[0x7ff, 0xb2, 0x8396, 0x7], &(0x7f0000001680)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x2)

08:59:30 executing program 7:
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000000)={{{@in6=@private0, @in6=@dev={0xfe, 0x80, '\x00', 0x1a}, 0x4e23, 0x9, 0x4e21, 0x7, 0xa, 0xeb56680c5ddfc06a, 0x20, 0x3c, 0x0, 0xee01}, {0x732f63ba, 0x1, 0x2, 0x5, 0x7fff, 0x5, 0x7f, 0x3}, {0x4, 0x2, 0x3, 0x2}, 0x3, 0x6e6bb3, 0x0, 0x1, 0x1, 0x2}, {{@in=@loopback, 0x4d5, 0x3c}, 0xa, @in6=@mcast1, 0x3501, 0x4, 0x2, 0x7f, 0xffffffff, 0x6, 0x7ff}}, 0xe8)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x0, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@GTPA_TID={0xc}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004}, 0x45)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x30, 0x0, 0x300, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x9, 0x33}}}}, [@NL80211_ATTR_STA_AID={0x6, 0x10, 0x33f}, @NL80211_ATTR_MESH_PEER_AID={0x6, 0xed, 0x21c}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000100}, 0x8004)
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@local, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0}}, {{@in=@broadcast}, 0x0, @in6=@ipv4={""/10, ""/2, @dev}}}, &(0x7f0000000440)=0xe8)
sendmsg$nl_xfrm(r0, &(0x7f0000000600)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000480)=@report={0x130, 0x20, 0x400, 0x70bd29, 0x25dfdbfd, {0x32, {@in=@loopback, @in=@local, 0x4e22, 0x80, 0x4e23, 0x0, 0xa, 0x20, 0x0, 0xc3, 0x0, r2}}, [@srcaddr={0x14, 0xd, @in=@multicast2}, @policy={0xac, 0x7, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in=@private=0xa010101, 0x4e22, 0x6, 0x4e21, 0x7, 0x2, 0x0, 0x20, 0x3b}, {0x9, 0x20, 0x7ff, 0x7, 0x7fff, 0xa830, 0x1, 0x4}, {0x24a43bd0, 0x3, 0x9, 0x401}, 0x3, 0x6e6bb6, 0x2, 0x0, 0x1, 0x3}}, @replay_val={0x10, 0xa, {0x70bd26, 0x70bd25, 0x5}}, @mark={0xc, 0x15, {0x35075a}}, @tfcpad={0x8, 0x16, 0x10001}]}, 0x130}}, 0x40040)
r3 = syz_open_dev$vcsa(&(0x7f0000000640), 0x6, 0x40000)
sendmsg$NL80211_CMD_DEAUTHENTICATE(r3, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x34, 0x0, 0x4, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x100, 0x80}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x34}}, 0x8800)
socketpair(0x27, 0x1, 0xffffffff, &(0x7f0000000780)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000800), r0)
sendmsg$IPVS_CMD_GET_SERVICE(r4, &(0x7f0000000a00)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000840)={0x154, r6, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DEST={0x4c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x2}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x72}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x5}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x7}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x4}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x9}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e20}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffff}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x9}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x6}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x8}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x6f3a}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x2}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x7ff}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1000}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x9}]}, @IPVS_CMD_ATTR_SERVICE={0x3c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x3b}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e23}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x6a}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x100}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@empty}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x2}]}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_L_THRESH={0x8}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x40}]}]}, 0x154}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040040)
getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000ac0)={{{@in6=@loopback, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0, <r8=>0x0}}, {{@in6}, 0x0, @in=@multicast1}}, &(0x7f0000000bc0)=0xe8)
ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000000d00)={'syztnl0\x00', &(0x7f0000000c80)={'ip6gre0\x00', <r9=>0x0, 0x2f, 0xce, 0x7f, 0x3, 0x16, @remote, @mcast2, 0x20, 0x8, 0x9, 0x6}})
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r3, 0x89f9, &(0x7f0000000dc0)={'syztnl1\x00', &(0x7f0000000d40)={'sit0\x00', <r10=>r1, 0x4, 0x0, 0x2, 0x5, 0x41, @private0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x7, 0x40, 0x3, 0x81}})
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r3, 0x89f9, &(0x7f0000000e80)={'syztnl2\x00', &(0x7f0000000e00)={'ip6tnl0\x00', <r11=>r1, 0x4, 0x9, 0x40, 0x1, 0x1, @dev={0xfe, 0x80, '\x00', 0x38}, @mcast2, 0x1, 0x1, 0x2, 0xfc}})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r5, 0x8933, &(0x7f0000000ec0)={'wg1\x00', <r12=>0x0})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f0000000f80)={'ip_vti0\x00', &(0x7f0000000f00)={'gretap0\x00', <r13=>r1, 0x10, 0x80, 0x1ff, 0x2bcf0bc, {{0xb, 0x4, 0x3, 0x0, 0x2c, 0x67, 0x0, 0x6, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, {[@noop, @noop, @timestamp_addr={0x44, 0x14, 0xac, 0x1, 0xb, [{@broadcast, 0xe6}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x800}]}, @end]}}}}})
sendmsg$TEAM_CMD_NOOP(r0, &(0x7f0000001580)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001540)={&(0x7f0000000fc0)={0x56c, 0x0, 0x100, 0x70bd25, 0x25dfdbfe, {}, [{{0x8, 0x1, r7}, {0x140, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7f}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}]}}, {{0x8, 0x1, r1}, {0x12c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r1}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}]}}, {{0x8, 0x1, r9}, {0xb0, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r10}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}]}}, {{0x8, 0x1, r11}, {0x21c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x224}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r1}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r1}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x20}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r12}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r13}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x800}}, {0x8, 0x6, r1}}}]}}]}, 0x56c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)
r14 = accept(r4, &(0x7f00000015c0)=@ethernet={0x0, @broadcast}, &(0x7f0000001640)=0x80)
mount$9p_fd(0x0, &(0x7f0000001680)='./file0\x00', &(0x7f00000016c0), 0x800000, &(0x7f0000001740)={'trans=fd,', {'rfdno', 0x3d, r14}, 0x2c, {}, 0x2c, {[{@cache_mmap}, {@cache_fscache}, {@privport}, {@noextend}, {@cache_none}], [{@subj_user={'subj_user', 0x3d, 'Z)'}}, {@appraise_type}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@smackfsdef={'smackfsdef', 0x3d, 'ip6gre0\x00'}}, {@subj_type={'subj_type', 0x3d, '('}}, {@fowner_lt={'fowner<', r8}}, {@dont_appraise}, {@fsmagic={'fsmagic', 0x3d, 0x8}}, {@subj_role={'subj_role', 0x3d, '&:-'}}]}})

[   68.369670] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   68.372252] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   68.374384] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   68.378030] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   68.382674] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   68.385076] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   68.390243] Bluetooth: hci0: HCI_REQ-0x0c1a
[   68.454556] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   68.457586] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   68.461657] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   68.464538] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   68.466439] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   68.470164] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   68.487924] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   68.489051] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   68.490624] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   68.491809] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   68.493067] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   68.495084] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   68.496255] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   68.497672] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   68.500560] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   68.502282] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   68.503739] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   68.505323] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   68.508330] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   68.510706] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   68.513201] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   68.514951] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   68.516545] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   68.519133] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   68.522604] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   68.523610] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   68.526453] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   68.527669] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   68.529126] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   68.530539] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   68.535590] Bluetooth: hci5: HCI_REQ-0x0c1a
[   68.536581] Bluetooth: hci3: HCI_REQ-0x0c1a
[   68.537698] Bluetooth: hci1: HCI_REQ-0x0c1a
[   68.542678] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   68.552836] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   68.554549] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   68.555495] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   68.557091] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   68.558233] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   68.560711] Bluetooth: hci4: HCI_REQ-0x0c1a
[   68.562166] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   68.563286] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   68.564650] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   68.566400] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   68.572303] Bluetooth: hci2: HCI_REQ-0x0c1a
[   68.572332] Bluetooth: hci7: HCI_REQ-0x0c1a
[   68.602610] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   68.605115] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   68.619842] Bluetooth: hci6: HCI_REQ-0x0c1a
[   70.456845] Bluetooth: hci0: command 0x0409 tx timeout
[   70.583611] Bluetooth: hci4: command 0x0409 tx timeout
[   70.583648] Bluetooth: hci3: command 0x0409 tx timeout
[   70.585842] Bluetooth: hci2: command 0x0409 tx timeout
[   70.586370] Bluetooth: hci1: command 0x0409 tx timeout
[   70.586856] Bluetooth: hci5: command 0x0409 tx timeout
[   70.647489] Bluetooth: hci6: command 0x0409 tx timeout
[   70.649505] Bluetooth: hci7: command 0x0409 tx timeout
[   72.503428] Bluetooth: hci0: command 0x041b tx timeout
[   72.631931] Bluetooth: hci4: command 0x041b tx timeout
[   72.632723] Bluetooth: hci5: command 0x041b tx timeout
[   72.633487] Bluetooth: hci1: command 0x041b tx timeout
[   72.634165] Bluetooth: hci2: command 0x041b tx timeout
[   72.634861] Bluetooth: hci3: command 0x041b tx timeout
[   72.695460] Bluetooth: hci7: command 0x041b tx timeout
[   72.696184] Bluetooth: hci6: command 0x041b tx timeout
[   74.551415] Bluetooth: hci0: command 0x040f tx timeout
[   74.680522] Bluetooth: hci3: command 0x040f tx timeout
[   74.680949] Bluetooth: hci2: command 0x040f tx timeout
[   74.681335] Bluetooth: hci1: command 0x040f tx timeout
[   74.681774] Bluetooth: hci5: command 0x040f tx timeout
[   74.682149] Bluetooth: hci4: command 0x040f tx timeout
[   74.744422] Bluetooth: hci6: command 0x040f tx timeout
[   74.744838] Bluetooth: hci7: command 0x040f tx timeout
[   76.599577] Bluetooth: hci0: command 0x0419 tx timeout
[   76.728598] Bluetooth: hci4: command 0x0419 tx timeout
[   76.729433] Bluetooth: hci5: command 0x0419 tx timeout
[   76.730179] Bluetooth: hci1: command 0x0419 tx timeout
[   76.731029] Bluetooth: hci2: command 0x0419 tx timeout
[   76.731799] Bluetooth: hci3: command 0x0419 tx timeout
[   76.791616] Bluetooth: hci7: command 0x0419 tx timeout
[   76.792412] Bluetooth: hci6: command 0x0419 tx timeout
[  130.977890] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  130.980666] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  130.982290] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  130.984821] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  130.986173] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  130.987641] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  130.990770] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  130.990787] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  130.992906] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  130.996592] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  130.998026] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  130.999080] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  131.011530] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  131.012096] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  131.012745] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  131.017240] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  131.018849] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  131.020578] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  131.021888] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  131.023782] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  131.025572] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  131.026622] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  131.027268] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  131.027921] Bluetooth: hci1: HCI_REQ-0x0c1a
[  131.030661] Bluetooth: hci2: HCI_REQ-0x0c1a
[  131.031180] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  131.033974] Bluetooth: hci3: HCI_REQ-0x0c1a
[  131.055191] Bluetooth: hci0: HCI_REQ-0x0c1a
[  131.055280] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  131.056806] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  131.057623] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  131.058809] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  131.060090] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  131.060669] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  131.061245] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  131.061886] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  131.062705] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  131.064243] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  131.065195] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  131.066193] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  131.068432] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  131.068971] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  131.070043] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  131.070869] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  131.071537] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  131.073066] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  131.074477] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  131.076757] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  131.076827] Bluetooth: hci7: HCI_REQ-0x0c1a
[  131.077710] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  131.081279] Bluetooth: hci6: HCI_REQ-0x0c1a
[  131.089060] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  131.095149] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  131.096254] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  131.101694] Bluetooth: hci4: HCI_REQ-0x0c1a
[  131.141624] Bluetooth: hci5: HCI_REQ-0x0c1a
[  133.047645] Bluetooth: hci3: command 0x0409 tx timeout
[  133.047728] Bluetooth: hci2: command 0x0409 tx timeout
[  133.048442] Bluetooth: hci1: command 0x0409 tx timeout
[  133.111491] Bluetooth: hci0: command 0x0409 tx timeout
[  133.112158] Bluetooth: hci4: command 0x0409 tx timeout
[  133.113001] Bluetooth: hci7: command 0x0409 tx timeout
[  133.175665] Bluetooth: hci5: command 0x0409 tx timeout
[  133.176331] Bluetooth: hci6: command 0x0409 tx timeout
[  135.095499] Bluetooth: hci1: command 0x041b tx timeout
[  135.095988] Bluetooth: hci2: command 0x041b tx timeout
[  135.096444] Bluetooth: hci3: command 0x041b tx timeout
[  135.159489] Bluetooth: hci7: command 0x041b tx timeout
[  135.159970] Bluetooth: hci4: command 0x041b tx timeout
[  135.160408] Bluetooth: hci0: command 0x041b tx timeout
[  135.223561] Bluetooth: hci6: command 0x041b tx timeout
[  135.224048] Bluetooth: hci5: command 0x041b tx timeout
[  137.143489] Bluetooth: hci3: command 0x040f tx timeout
[  137.143944] Bluetooth: hci2: command 0x040f tx timeout
[  137.144387] Bluetooth: hci1: command 0x040f tx timeout
[  137.207431] Bluetooth: hci0: command 0x040f tx timeout
[  137.207906] Bluetooth: hci4: command 0x040f tx timeout
[  137.208307] Bluetooth: hci7: command 0x040f tx timeout
[  137.271514] Bluetooth: hci5: command 0x040f tx timeout
[  137.271997] Bluetooth: hci6: command 0x040f tx timeout
[  139.192034] Bluetooth: hci1: command 0x0419 tx timeout
[  139.192701] Bluetooth: hci2: command 0x0419 tx timeout
[  139.193099] Bluetooth: hci3: command 0x0419 tx timeout
[  139.255420] Bluetooth: hci7: command 0x0419 tx timeout
[  139.255902] Bluetooth: hci4: command 0x0419 tx timeout
[  139.256295] Bluetooth: hci0: command 0x0419 tx timeout
[  139.319452] Bluetooth: hci6: command 0x0419 tx timeout
[  139.319941] Bluetooth: hci5: command 0x0419 tx timeout
[  182.711971] INFO: task rcu_gp:3 blocked for more than 143 seconds.
[  182.712592]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.712980] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.713565] task:rcu_gp          state:I stack:30328 pid:3     ppid:2      flags:0x00004000
[  182.714186] Call Trace:
[  182.714402]  <TASK>
[  182.714591]  __schedule+0x893/0x2470
[  182.715118]  ? io_schedule_timeout+0x150/0x150
[  182.715486]  ? do_raw_spin_lock+0x121/0x260
[  182.716277]  ? rwlock_bug.part.0+0x90/0x90
[  182.716620]  schedule+0xda/0x1b0
[  182.717326]  rescuer_thread+0x851/0xdb0
[  182.717657]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.718037]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.718444]  ? lockdep_hardirqs_on+0x79/0x100
[  182.718799]  ? worker_thread+0x1260/0x1260
[  182.719144]  kthread+0x2ed/0x3a0
[  182.719436]  ? kthread_complete_and_exit+0x40/0x40
[  182.719814]  ret_from_fork+0x22/0x30
[  182.720124]  </TASK>
[  182.720311] INFO: task rcu_par_gp:4 blocked for more than 143 seconds.
[  182.720817]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.721212] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.721802] task:rcu_par_gp      state:I stack:30944 pid:4     ppid:2      flags:0x00004000
[  182.722452] Call Trace:
[  182.722648]  <TASK>
[  182.722837]  __schedule+0x893/0x2470
[  182.723146]  ? io_schedule_timeout+0x150/0x150
[  182.723512]  ? do_raw_spin_lock+0x121/0x260
[  182.723842]  ? rwlock_bug.part.0+0x90/0x90
[  182.724176]  schedule+0xda/0x1b0
[  182.724460]  rescuer_thread+0x851/0xdb0
[  182.724779]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.725166]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.725570]  ? lockdep_hardirqs_on+0x79/0x100
[  182.725915]  ? worker_thread+0x1260/0x1260
[  182.726249]  kthread+0x2ed/0x3a0
[  182.726528]  ? kthread_complete_and_exit+0x40/0x40
[  182.726922]  ret_from_fork+0x22/0x30
[  182.727219]  </TASK>
[  182.727420] INFO: task slub_flushwq:5 blocked for more than 143 seconds.
[  182.727913]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.728303] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.728876] task:slub_flushwq    state:I stack:30944 pid:5     ppid:2      flags:0x00004000
[  182.729537] Call Trace:
[  182.729742]  <TASK>
[  182.729933]  __schedule+0x893/0x2470
[  182.730240]  ? io_schedule_timeout+0x150/0x150
[  182.730624]  ? do_raw_spin_lock+0x121/0x260
[  182.730979]  ? rwlock_bug.part.0+0x90/0x90
[  182.731324]  schedule+0xda/0x1b0
[  182.731626]  rescuer_thread+0x851/0xdb0
[  182.731949]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.732363]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.732759]  ? lockdep_hardirqs_on+0x79/0x100
[  182.733119]  ? worker_thread+0x1260/0x1260
[  182.733483]  kthread+0x2ed/0x3a0
[  182.733754]  ? kthread_complete_and_exit+0x40/0x40
[  182.734140]  ret_from_fork+0x22/0x30
[  182.734467]  </TASK>
[  182.734655] INFO: task netns:6 blocked for more than 143 seconds.
[  182.735135]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.735558] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.736153] task:netns           state:I stack:30944 pid:6     ppid:2      flags:0x00004000
[  182.736820] Call Trace:
[  182.737031]  <TASK>
[  182.737220]  __schedule+0x893/0x2470
[  182.737545]  ? io_schedule_timeout+0x150/0x150
[  182.737914]  ? do_raw_spin_lock+0x121/0x260
[  182.738266]  ? rwlock_bug.part.0+0x90/0x90
[  182.738637]  schedule+0xda/0x1b0
[  182.738932]  rescuer_thread+0x851/0xdb0
[  182.739262]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.739677]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.740078]  ? lockdep_hardirqs_on+0x79/0x100
[  182.740456]  ? worker_thread+0x1260/0x1260
[  182.740796]  kthread+0x2ed/0x3a0
[  182.741073]  ? kthread_complete_and_exit+0x40/0x40
[  182.741490]  ret_from_fork+0x22/0x30
[  182.741803]  </TASK>
[  182.741999] INFO: task kworker/0:0H:8 blocked for more than 143 seconds.
[  182.742539]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.742973] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.743590] task:kworker/0:0H    state:I stack:28952 pid:8     ppid:2      flags:0x00004000
[  182.744243] Workqueue:  0x0 (kblockd)
[  182.744565] Call Trace:
[  182.744769]  <TASK>
[  182.744952]  __schedule+0x893/0x2470
[  182.745258]  ? io_schedule_timeout+0x150/0x150
[  182.745654]  schedule+0xda/0x1b0
[  182.745934]  worker_thread+0x15f/0x1260
[  182.746272]  ? process_one_work+0x16a0/0x16a0
[  182.746663]  kthread+0x2ed/0x3a0
[  182.746953]  ? kthread_complete_and_exit+0x40/0x40
[  182.747371]  ret_from_fork+0x22/0x30
[  182.747682]  </TASK>
[  182.747869] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds.
[  182.748407]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.748828] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.749441] task:mm_percpu_wq    state:I stack:30944 pid:10    ppid:2      flags:0x00004000
[  182.750104] Call Trace:
[  182.750311]  <TASK>
[  182.750528]  __schedule+0x893/0x2470
[  182.750834]  ? io_schedule_timeout+0x150/0x150
[  182.751208]  ? do_raw_spin_lock+0x121/0x260
[  182.751572]  ? rwlock_bug.part.0+0x90/0x90
[  182.751914]  schedule+0xda/0x1b0
[  182.752191]  rescuer_thread+0x851/0xdb0
[  182.752535]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.752940]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.753363]  ? lockdep_hardirqs_on+0x79/0x100
[  182.753730]  ? worker_thread+0x1260/0x1260
[  182.754076]  kthread+0x2ed/0x3a0
[  182.754371]  ? kthread_complete_and_exit+0x40/0x40
[  182.754766]  ret_from_fork+0x22/0x30
[  182.755096]  </TASK>
[  182.755290] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds.
[  182.755849]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.756261] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.756872] task:rcu_tasks_kthre state:I stack:29272 pid:11    ppid:2      flags:0x00004000
[  182.757531] Call Trace:
[  182.757734]  <TASK>
[  182.757923]  __schedule+0x893/0x2470
[  182.758233]  ? io_schedule_timeout+0x150/0x150
[  182.758619]  ? mark_held_locks+0x9e/0xe0
[  182.758969]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.759398]  schedule+0xda/0x1b0
[  182.759677]  rcu_tasks_one_gp+0x3db/0xc10
[  182.760031]  rcu_tasks_kthread+0x80/0xa0
[  182.760379]  ? rcu_tasks_postscan+0x10/0x10
[  182.760727]  kthread+0x2ed/0x3a0
[  182.761000]  ? kthread_complete_and_exit+0x40/0x40
[  182.761414]  ret_from_fork+0x22/0x30
[  182.761727]  </TASK>
[  182.761925] INFO: task kworker/1:0H:21 blocked for more than 143 seconds.
[  182.762468]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.762906] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.763524] task:kworker/1:0H    state:I stack:29760 pid:21    ppid:2      flags:0x00004000
[  182.764172] Workqueue:  0x0 (events_highpri)
[  182.764547] Call Trace:
[  182.764753]  <TASK>
[  182.764938]  __schedule+0x893/0x2470
[  182.765243]  ? io_schedule_timeout+0x150/0x150
[  182.765639]  schedule+0xda/0x1b0
[  182.765918]  worker_thread+0x15f/0x1260
[  182.766249]  ? process_one_work+0x16a0/0x16a0
[  182.766636]  kthread+0x2ed/0x3a0
[  182.766918]  ? kthread_complete_and_exit+0x40/0x40
[  182.767308]  ret_from_fork+0x22/0x30
[  182.767638]  </TASK>
[  182.767826] INFO: task inet_frag_wq:23 blocked for more than 143 seconds.
[  182.768361]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.768775] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.769379] task:inet_frag_wq    state:I stack:30704 pid:23    ppid:2      flags:0x00004000
[  182.770040] Call Trace:
[  182.770247]  <TASK>
[  182.770456]  __schedule+0x893/0x2470
[  182.770766]  ? io_schedule_timeout+0x150/0x150
[  182.771150]  ? do_raw_spin_lock+0x121/0x260
[  182.771524]  ? rwlock_bug.part.0+0x90/0x90
[  182.771868]  schedule+0xda/0x1b0
[  182.772144]  rescuer_thread+0x851/0xdb0
[  182.772479]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.772882]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.773279]  ? lockdep_hardirqs_on+0x79/0x100
[  182.773659]  ? worker_thread+0x1260/0x1260
[  182.773998]  kthread+0x2ed/0x3a0
[  182.774274]  ? kthread_complete_and_exit+0x40/0x40
[  182.774688]  ret_from_fork+0x22/0x30
[  182.775014]  </TASK>
[  182.775202] INFO: task kblockd:31 blocked for more than 143 seconds.
[  182.775701]       Not tainted 6.0.0-rc7-next-20220930 #1
[  182.776109] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  182.776713] task:kblockd         state:I stack:30176 pid:31    ppid:2      flags:0x00004000
[  182.777379] Call Trace:
[  182.777583]  <TASK>
[  182.777765]  __schedule+0x893/0x2470
[  182.778073]  ? io_schedule_timeout+0x150/0x150
[  182.778460]  ? do_raw_spin_lock+0x121/0x260
[  182.778803]  ? rwlock_bug.part.0+0x90/0x90
[  182.779162]  schedule+0xda/0x1b0
[  182.779468]  rescuer_thread+0x851/0xdb0
[  182.779792]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.780187]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  182.780604]  ? lockdep_hardirqs_on+0x79/0x100
[  182.780973]  ? worker_thread+0x1260/0x1260
[  182.781325]  kthread+0x2ed/0x3a0
[  182.781617]  ? kthread_complete_and_exit+0x40/0x40
[  182.782005]  ret_from_fork+0x22/0x30
[  182.782313]  </TASK>
[  182.782581] 
[  182.782581] Showing all locks held in the system:
[  182.783084] 2 locks held by kworker/u4:0/9:
[  182.783438]  #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[  182.784250]  #1: ffff88800861fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[  182.785097] 1 lock held by rcu_tasks_kthre/11:
[  182.785469]  #0: ffffffff85406850 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10
[  182.786245] 1 lock held by khungtaskd/25:
[  182.786587]  #0: ffffffff85407320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[  182.787311] 2 locks held by kworker/u4:1/26:
[  182.787682]  #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[  182.788503]  #1: ffff888009037db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[  182.789358] 2 locks held by kworker/u4:2/33:
[  182.789708]  #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[  182.790539]  #1: ffff8880092d7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[  182.791406] 2 locks held by kworker/u4:3/47:
[  182.791748]  #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[  182.792578]  #1: ffff88800f7ffdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[  182.793439] 1 lock held by kmemleak/54:
[  182.793752] 2 locks held by systemd-journal/111:
[  182.794120] 1 lock held by in:imklog/191:
[  182.794463] 2 locks held by kworker/u4:4/327:
[  182.794815]  #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[  182.795645]  #1: ffff88803f6dfdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[  182.796498] 2 locks held by kworker/u4:6/333:
[  182.796842]  #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[  182.797653]  #1: ffff88800e9e7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[  182.798502] 2 locks held by kworker/u4:8/342:
[  182.798849]  #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[  182.799676]  #1: ffff888017da7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[  182.800526] 2 locks held by kworker/u4:10/555:
[  182.800883]  #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[  182.801709]  #1: ffff88801db07db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[  182.802570] 1 lock held by modprobe/6764:
[  182.802917] 1 lock held by modprobe/6765:
[  182.803240] 1 lock held by modprobe/6766:
[  182.803590] 1 lock held by modprobe/6768:
[  182.803913] 1 lock held by modprobe/6769:
[  182.804244] 1 lock held by modprobe/6771:
[  182.804587] 
[  182.804725] =============================================
[  182.804725] 
09:01:32 executing program 7:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000006dc0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1}, {@in6=@loopback, 0x0, 0x3c}, @in=@loopback, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'nhpoly1305-generic\x00'}}}]}, 0x13c}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond_slave_0\x00'})
getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000001640), &(0x7f0000001680)=0x4)

09:01:32 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x56ad, &(0x7f0000000140)={0x0, 0x10ae, 0x0, 0x2, 0x212}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000300))
r1 = socket$inet(0x2, 0x80000, 0x3f)
dup3(r0, r1, 0x80000)
pipe2(&(0x7f0000000240), 0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
pidfd_open(0x0, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x0, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000004c0))
r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r3, 0x0)
mq_notify(0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80000, 0x1, {0x0, r2}}, 0x7f)
syz_io_uring_setup(0x43da, &(0x7f00000003c0)={0x0, 0x0, 0x10, 0x2, 0x375}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))

[  189.478640] audit: type=1400 audit(1664701292.805:7): avc:  denied  { open } for  pid=7172 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  189.480214] audit: type=1400 audit(1664701292.806:8): avc:  denied  { kernel } for  pid=7172 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  189.503266] ------------[ cut here ]------------
[  189.503285] 
[  189.503287] ======================================================
[  189.503290] WARNING: possible circular locking dependency detected
[  189.503294] 6.0.0-rc7-next-20220930 #1 Not tainted
[  189.503300] ------------------------------------------------------
[  189.503303] syz-executor.3/7173 is trying to acquire lock:
[  189.503310] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  189.503351] 
[  189.503351] but task is already holding lock:
[  189.503354] ffff888017d0a820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  189.503379] 
[  189.503379] which lock already depends on the new lock.
[  189.503379] 
[  189.503382] 
[  189.503382] the existing dependency chain (in reverse order) is:
[  189.503385] 
[  189.503385] -> #3 (&ctx->lock){....}-{2:2}:
[  189.503399]        _raw_spin_lock+0x2a/0x40
[  189.503409]        __perf_event_task_sched_out+0x53b/0x18d0
[  189.503420]        __schedule+0xedd/0x2470
[  189.503434]        schedule+0xda/0x1b0
[  189.503447]        exit_to_user_mode_prepare+0x114/0x1a0
[  189.503460]        syscall_exit_to_user_mode+0x19/0x40
[  189.503475]        do_syscall_64+0x48/0x90
[  189.503494]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  189.503507] 
[  189.503507] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  189.503520]        _raw_spin_lock_nested+0x30/0x40
[  189.503531]        raw_spin_rq_lock_nested+0x1e/0x30
[  189.503543]        task_fork_fair+0x63/0x4d0
[  189.503560]        sched_cgroup_fork+0x3d0/0x540
[  189.503573]        copy_process+0x4183/0x6e20
[  189.503584]        kernel_clone+0xe7/0x890
[  189.503593]        user_mode_thread+0xad/0xf0
[  189.503603]        rest_init+0x24/0x250
[  189.503615]        arch_call_rest_init+0xf/0x14
[  189.503631]        start_kernel+0x4c6/0x4eb
[  189.503646]        secondary_startup_64_no_verify+0xe0/0xeb
[  189.503660] 
[  189.503660] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  189.503673]        _raw_spin_lock_irqsave+0x39/0x60
[  189.503684]        try_to_wake_up+0xab/0x1930
[  189.503697]        up+0x75/0xb0
[  189.503710]        __up_console_sem+0x6e/0x80
[  189.503726]        console_unlock+0x46a/0x590
[  189.503741]        do_con_write+0xc05/0x1d50
[  189.503752]        con_write+0x21/0x40
[  189.503761]        n_tty_write+0x4d4/0xfe0
[  189.503772]        file_tty_write.constprop.0+0x455/0x8a0
[  189.503783]        vfs_write+0x9c3/0xd90
[  189.503799]        ksys_write+0x127/0x250
[  189.503815]        do_syscall_64+0x3b/0x90
[  189.503831]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  189.503843] 
[  189.503843] -> #0 ((console_sem).lock){....}-{2:2}:
[  189.503857]        __lock_acquire+0x2a02/0x5e70
[  189.503873]        lock_acquire+0x1a2/0x530
[  189.503889]        _raw_spin_lock_irqsave+0x39/0x60
[  189.503899]        down_trylock+0xe/0x70
[  189.503914]        __down_trylock_console_sem+0x3b/0xd0
[  189.503930]        vprintk_emit+0x16b/0x560
[  189.503946]        vprintk+0x84/0xa0
[  189.503961]        _printk+0xba/0xf1
[  189.503973]        report_bug.cold+0x72/0xab
[  189.503989]        handle_bug+0x3c/0x70
[  189.504005]        exc_invalid_op+0x14/0x50
[  189.504021]        asm_exc_invalid_op+0x16/0x20
[  189.504033]        group_sched_out.part.0+0x2c7/0x460
[  189.504051]        ctx_sched_out+0x8f1/0xc10
[  189.504067]        __perf_event_task_sched_out+0x6d0/0x18d0
[  189.504078]        __schedule+0xedd/0x2470
[  189.504091]        schedule+0xda/0x1b0
[  189.504104]        exit_to_user_mode_prepare+0x114/0x1a0
[  189.504115]        syscall_exit_to_user_mode+0x19/0x40
[  189.504127]        do_syscall_64+0x48/0x90
[  189.504144]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  189.504156] 
[  189.504156] other info that might help us debug this:
[  189.504156] 
[  189.504159] Chain exists of:
[  189.504159]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  189.504159] 
[  189.504173]  Possible unsafe locking scenario:
[  189.504173] 
[  189.504175]        CPU0                    CPU1
[  189.504178]        ----                    ----
[  189.504180]   lock(&ctx->lock);
[  189.504185]                                lock(&rq->__lock);
[  189.504192]                                lock(&ctx->lock);
[  189.504198]   lock((console_sem).lock);
[  189.504203] 
[  189.504203]  *** DEADLOCK ***
[  189.504203] 
[  189.504205] 2 locks held by syz-executor.3/7173:
[  189.504212]  #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  189.504240]  #1: ffff888017d0a820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  189.504266] 
[  189.504266] stack backtrace:
[  189.504269] CPU: 1 PID: 7173 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1
[  189.504282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  189.504289] Call Trace:
[  189.504292]  <TASK>
[  189.504296]  dump_stack_lvl+0x8b/0xb3
[  189.504315]  check_noncircular+0x263/0x2e0
[  189.504331]  ? format_decode+0x26c/0xb50
[  189.504347]  ? print_circular_bug+0x450/0x450
[  189.504364]  ? simple_strtoul+0x30/0x30
[  189.504379]  ? format_decode+0x26c/0xb50
[  189.504397]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  189.504414]  __lock_acquire+0x2a02/0x5e70
[  189.504435]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  189.504458]  lock_acquire+0x1a2/0x530
[  189.504475]  ? down_trylock+0xe/0x70
[  189.504495]  ? lock_release+0x750/0x750
[  189.504517]  ? vprintk+0x84/0xa0
[  189.504534]  _raw_spin_lock_irqsave+0x39/0x60
[  189.504546]  ? down_trylock+0xe/0x70
[  189.504561]  down_trylock+0xe/0x70
[  189.504577]  ? vprintk+0x84/0xa0
[  189.504594]  __down_trylock_console_sem+0x3b/0xd0
[  189.504611]  vprintk_emit+0x16b/0x560
[  189.504629]  vprintk+0x84/0xa0
[  189.504647]  _printk+0xba/0xf1
[  189.504658]  ? record_print_text.cold+0x16/0x16
[  189.504674]  ? report_bug.cold+0x66/0xab
[  189.504692]  ? group_sched_out.part.0+0x2c7/0x460
[  189.504710]  report_bug.cold+0x72/0xab
[  189.504728]  handle_bug+0x3c/0x70
[  189.504746]  exc_invalid_op+0x14/0x50
[  189.504763]  asm_exc_invalid_op+0x16/0x20
[  189.504776] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  189.504796] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  189.504807] RSP: 0018:ffff88803c397c48 EFLAGS: 00010006
[  189.504816] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  189.504823] RDX: ffff8880334c9ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  189.504831] RBP: ffff88803c3a0000 R08: 0000000000000005 R09: 0000000000000001
[  189.504838] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff888017d0a800
[  189.504845] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  189.504856]  ? group_sched_out.part.0+0x2c7/0x460
[  189.504876]  ? group_sched_out.part.0+0x2c7/0x460
[  189.504896]  ctx_sched_out+0x8f1/0xc10
[  189.504915]  __perf_event_task_sched_out+0x6d0/0x18d0
[  189.504929]  ? lock_is_held_type+0xd7/0x130
[  189.504943]  ? __perf_cgroup_move+0x160/0x160
[  189.504953]  ? set_next_entity+0x304/0x550
[  189.504971]  ? update_curr+0x267/0x740
[  189.504989]  ? lock_is_held_type+0xd7/0x130
[  189.505003]  __schedule+0xedd/0x2470
[  189.505020]  ? io_schedule_timeout+0x150/0x150
[  189.505037]  ? rcu_read_lock_sched_held+0x3e/0x80
[  189.505056]  schedule+0xda/0x1b0
[  189.505071]  exit_to_user_mode_prepare+0x114/0x1a0
[  189.505083]  syscall_exit_to_user_mode+0x19/0x40
[  189.505097]  do_syscall_64+0x48/0x90
[  189.505115]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  189.505128] RIP: 0033:0x7fe082983b19
[  189.505136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  189.505146] RSP: 002b:00007fe07fef9218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  189.505157] RAX: 0000000000000001 RBX: 00007fe082a96f68 RCX: 00007fe082983b19
[  189.505164] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe082a96f6c
[  189.505171] RBP: 00007fe082a96f60 R08: 000000000000000e R09: 0000000000000000
[  189.505178] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fe082a96f6c
[  189.505185] R13: 00007ffc7fd530af R14: 00007fe07fef9300 R15: 0000000000022000
[  189.505198]  </TASK>
[  189.559617] WARNING: CPU: 1 PID: 7173 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  189.560299] Modules linked in:
[  189.560540] CPU: 1 PID: 7173 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1
[  189.561131] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  189.561954] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  189.562368] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  189.563706] RSP: 0018:ffff88803c397c48 EFLAGS: 00010006
[  189.564095] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  189.564625] RDX: ffff8880334c9ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  189.565149] RBP: ffff88803c3a0000 R08: 0000000000000005 R09: 0000000000000001
[  189.565674] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff888017d0a800
[  189.566195] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  189.566725] FS:  00007fe07fef9700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  189.567323] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  189.567751] CR2: 00007fe0ee44f6f4 CR3: 00000000334f8000 CR4: 0000000000350ee0
[  189.568272] Call Trace:
[  189.568463]  <TASK>
[  189.568632]  ctx_sched_out+0x8f1/0xc10
[  189.568937]  __perf_event_task_sched_out+0x6d0/0x18d0
[  189.569326]  ? lock_is_held_type+0xd7/0x130
[  189.569648]  ? __perf_cgroup_move+0x160/0x160
[  189.569987]  ? set_next_entity+0x304/0x550
[  189.570308]  ? update_curr+0x267/0x740
[  189.570609]  ? lock_is_held_type+0xd7/0x130
[  189.570931]  __schedule+0xedd/0x2470
[  189.571225]  ? io_schedule_timeout+0x150/0x150
[  189.571575]  ? rcu_read_lock_sched_held+0x3e/0x80
[  189.571941]  schedule+0xda/0x1b0
[  189.572206]  exit_to_user_mode_prepare+0x114/0x1a0
[  189.572570]  syscall_exit_to_user_mode+0x19/0x40
[  189.572925]  do_syscall_64+0x48/0x90
[  189.573209]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  189.573586] RIP: 0033:0x7fe082983b19
[  189.573864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  189.575194] RSP: 002b:00007fe07fef9218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  189.575760] RAX: 0000000000000001 RBX: 00007fe082a96f68 RCX: 00007fe082983b19
[  189.576286] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe082a96f6c
[  189.576816] RBP: 00007fe082a96f60 R08: 000000000000000e R09: 0000000000000000
[  189.577343] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fe082a96f6c
[  189.577868] R13: 00007ffc7fd530af R14: 00007fe07fef9300 R15: 0000000000022000
[  189.578405]  </TASK>
[  189.578582] irq event stamp: 664
[  189.578833] hardirqs last  enabled at (663): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  189.579529] hardirqs last disabled at (664): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  189.580132] softirqs last  enabled at (492): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  189.580757] softirqs last disabled at (487): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  189.581380] ---[ end trace 0000000000000000 ]---
09:01:33 executing program 7:
capset(&(0x7f0000000140)={0x19980330}, &(0x7f0000000080))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="000100000000000000001b000000d137ce6f44c93da8cb1e2d60e56f88347299875e9d942037d46bc8843e8f2b09edd6da7c7027813c9afde05d30bb0fd29b9307abb652f6a10269f6265739648291d05d31b9385920c53eaa7be52900b88c09b0d7e761868ab60452466dc6670ace4a3c37ac3f3799659dd4f0ebfb796537eea4cdc9e37a6951af465ca4fa1cde761b398ac090eb6532a4824e4460eaccda9cc80e6713acef4df00c883151eb380f08a51ae5de7fa06a8bfce830035b0c28b400ca30d23d211575e5f92084c520dc99040d7fbbdb19b91dc3d5ecd2cae25cf1a98876fdf48de4d5e4837508efd6cb89def140066558b6f98ead0d89c3aa92564679a33b3ecfa06accbd932c52f7e28a52aa7d9acbbb51e758d32c9409e63d48aa48"], 0x14}, 0x1, 0x0, 0x0, 0x44800}, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0xc0}, 0x20000010)
openat(r2, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000006dc0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {@in6=@loopback, 0x0, 0x3c}, @in=@loopback, {}, {0x0, 0x200000000}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'nhpoly1305-generic\x00'}}}]}, 0x13c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_TX_POWER(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000680)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x74, 0x0, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2b}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000580)=0x10000, 0x4)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x44, 0x0, 0x7, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xfff}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x14}, 0x80)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c010000", @ANYRES16=r6, @ANYBLOB="00012abd7000fcdbdfa567000000080001005400000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x13c}, 0x1, 0x0, 0x0, 0x40800}, 0x48)

[  189.709596] capability: warning: `syz-executor.7' uses 32-bit capabilities (legacy support in use)
09:01:33 executing program 7:
capset(&(0x7f0000000140)={0x19980330}, &(0x7f0000000080))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x44800}, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0xc0}, 0x20000010)
openat(r2, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000006dc0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {@in6=@loopback, 0x0, 0x3c}, @in=@loopback, {}, {0x0, 0x200000000}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'nhpoly1305-generic\x00'}}}]}, 0x13c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_TX_POWER(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000680)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x74, 0x0, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2b}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000580)=0x10000, 0x4)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x44, 0x0, 0x7, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xfff}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x14}, 0x80)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c010000", @ANYRES16=r6, @ANYBLOB="00012abd7000fcdbdfa567000000080001005400000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x13c}, 0x1, 0x0, 0x0, 0x40800}, 0x48)

09:01:33 executing program 7:
capset(&(0x7f0000000140)={0x19980330}, &(0x7f0000000080))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x44800}, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0xc0}, 0x20000010)
openat(r2, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000006dc0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {@in6=@loopback, 0x0, 0x3c}, @in=@loopback, {}, {0x0, 0x200000000}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'nhpoly1305-generic\x00'}}}]}, 0x13c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_TX_POWER(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000680)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x74, 0x0, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2b}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000580)=0x10000, 0x4)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x44, 0x0, 0x7, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xfff}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x14}, 0x80)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c010000", @ANYRES16=r6, @ANYBLOB="00012abd7000fcdbdfa567000000080001005400000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900000001004a0000000800c30000800000f300c50058e3a8026d83e64c3b683075401163d878b9fe34f1f656ff9a7afa646bd97a1d47e02804c043d5c1223f9e0adf90333ecd57faf0377cd02755b3971eb47116a8496735c6b3d7f63d7d920ce74b495b14bd0ac831cc120899ec206f613601cae0e690200729a5a2146d374a62b2e7d08b533cf359b8d2e7f15c767508ab37b5eb06faa80b5365083dd4cf92bb3347cc9af743aad90f1c81f18264c6297166cc5b5d22e313e56578e694750476f18bbbbd7e2a1b2ecb1a5ebeae7d0f5af7131eca011c57bcb12c546ccffef198ad5e5f13b5025687e1e7697cfa3aa393a783f7b9c940b038aaa668f470f20ec1ac61c1000800c300010000000800c30008000000"], 0x13c}, 0x1, 0x0, 0x0, 0x40800}, 0x48)

09:01:33 executing program 7:
capset(&(0x7f0000000140)={0x19980330}, &(0x7f0000000080))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x44800}, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0xc0}, 0x20000010)
openat(r2, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000006dc0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {@in6=@loopback, 0x0, 0x3c}, @in=@loopback, {}, {0x0, 0x200000000}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'nhpoly1305-generic\x00'}}}]}, 0x13c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_TX_POWER(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000680)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x74, 0x0, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2b}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000580)=0x10000, 0x4)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x44, 0x0, 0x7, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xfff}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x14}, 0x80)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c010000", @ANYRES16=r6, @ANYBLOB="00012abd7000fcdbdfa567000000080001005400000008000300", @ANYRES32=0x0, @ANYBLOB="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"], 0x13c}, 0x1, 0x0, 0x0, 0x40800}, 0x48)

09:01:33 executing program 7:
capset(&(0x7f0000000140)={0x19980330}, &(0x7f0000000080))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x44800}, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0xc0}, 0x20000010)
openat(r2, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000006dc0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {@in6=@loopback, 0x0, 0x3c}, @in=@loopback, {}, {0x0, 0x200000000}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'nhpoly1305-generic\x00'}}}]}, 0x13c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_TX_POWER(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000680)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x74, 0x0, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2b}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000580)=0x10000, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
sendmsg$NFNL_MSG_ACCT_NEW(r2, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x44, 0x0, 0x7, 0x101, 0x0, 0x0, {0x0, 0x0, 0x3}, [@NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x3}]}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0xfff}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x14}, 0x80)

09:01:33 executing program 7:
capset(&(0x7f0000000140)={0x19980330}, &(0x7f0000000080))
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="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"], 0x14}, 0x1, 0x0, 0x0, 0x44800}, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00')
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x38, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x2}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0xffff}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0xc0}, 0x20000010)
openat(r2, &(0x7f0000000140)='./file0\x00', 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000006b80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000006dc0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, {@in6=@loopback, 0x0, 0x3c}, @in=@loopback, {}, {0x0, 0x200000000}, {}, 0x0, 0x0, 0xa}, [@algo_auth_trunc={0x4c, 0x14, {{'nhpoly1305-generic\x00'}}}]}, 0x13c}}, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_TX_POWER(r4, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000680)={0x1c, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x74, 0x0, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2b}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, 'nl80211\x00'}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @private1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000}, 0x1)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x3f, &(0x7f0000000580)=0x10000, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)


VM DIAGNOSIS:
09:01:26  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff85407320 RDI=ffff88800fd4d9b8 RBP=ffffffff85407320 RSP=ffff8880304afc80
R8 =0000000000000001 R9 =ffffffff86cd37c7 R10=fffffbfff0d9a6f8 R11=0000000000000001
R12=ffff88800fd4d040 R13=ffff88800fd4d9b8 R14=00000000ffffffff R15=ffff88800fd4d9b8
RIP=ffffffff842535a7 RFL=00000092 [--S-A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f8399fb127c CR3=000000003fe8e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 00ff000000000000 0000000000ff0000
YMM01=0000000000000000 0000000000000000 4700352e322e325f 4342494c4700362e
YMM02=0000000000000000 0000000000000000 ff00ffffffffffff ffffffffff000000
YMM03=0000000000000000 0000000000000000 0000000000000000 00312e325f434249
YMM04=0000000000000000 0000000000000000 494c470037312e32 5f4342494c470036
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff823bb06c RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88800902f800
R8 =0000000000000004 R9 =0000000000000010 R10=0000000000000005 R11=0000000000000001
R12=0000000000002710 R13=0000000000000060 R14=fffffbfff0ecb584 R15=dffffc0000000000
RIP=ffffffff823bb0c1 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa83d1c88e0 CR3=0000000031d20000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 0000000000000000 000000ff00000000
YMM02=0000000000000000 0000000000000000 0000000000000000 00000000ff000000
YMM03=0000000000000000 0000000000000000 0000000000ff0000 0000000000ff0000
YMM04=0000000000000000 0000000000000000 ff00000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000