Warning: Permanently added '[localhost]:13954' (ECDSA) to the list of known hosts.
2022/10/31 12:47:23 fuzzer started
2022/10/31 12:47:23 dialing manager at localhost:40945
syzkaller login: [   43.687705] cgroup: Unknown subsys name 'net'
[   43.775713] cgroup: Unknown subsys name 'rlimit'
2022/10/31 12:47:37 syscalls: 2217
2022/10/31 12:47:37 code coverage: enabled
2022/10/31 12:47:37 comparison tracing: enabled
2022/10/31 12:47:37 extra coverage: enabled
2022/10/31 12:47:37 setuid sandbox: enabled
2022/10/31 12:47:37 namespace sandbox: enabled
2022/10/31 12:47:37 Android sandbox: enabled
2022/10/31 12:47:37 fault injection: enabled
2022/10/31 12:47:37 leak checking: enabled
2022/10/31 12:47:37 net packet injection: enabled
2022/10/31 12:47:37 net device setup: enabled
2022/10/31 12:47:37 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/31 12:47:37 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/31 12:47:37 USB emulation: enabled
2022/10/31 12:47:37 hci packet injection: enabled
2022/10/31 12:47:37 wifi device emulation: enabled
2022/10/31 12:47:37 802.15.4 emulation: enabled
2022/10/31 12:47:37 fetching corpus: 0, signal 0/2000 (executing program)
2022/10/31 12:47:37 fetching corpus: 46, signal 30608/34179 (executing program)
2022/10/31 12:47:37 fetching corpus: 96, signal 46882/51873 (executing program)
2022/10/31 12:47:37 fetching corpus: 146, signal 57047/63428 (executing program)
2022/10/31 12:47:37 fetching corpus: 196, signal 63385/71097 (executing program)
2022/10/31 12:47:37 fetching corpus: 246, signal 68939/77921 (executing program)
2022/10/31 12:47:37 fetching corpus: 296, signal 73532/83797 (executing program)
2022/10/31 12:47:37 fetching corpus: 346, signal 81985/93305 (executing program)
2022/10/31 12:47:38 fetching corpus: 396, signal 86438/98868 (executing program)
2022/10/31 12:47:38 fetching corpus: 446, signal 90867/104398 (executing program)
2022/10/31 12:47:38 fetching corpus: 496, signal 94160/108796 (executing program)
2022/10/31 12:47:38 fetching corpus: 546, signal 98562/114172 (executing program)
2022/10/31 12:47:38 fetching corpus: 596, signal 102688/119191 (executing program)
2022/10/31 12:47:38 fetching corpus: 646, signal 106619/123978 (executing program)
2022/10/31 12:47:38 fetching corpus: 696, signal 109306/127626 (executing program)
2022/10/31 12:47:39 fetching corpus: 746, signal 112263/131460 (executing program)
2022/10/31 12:47:39 fetching corpus: 796, signal 115110/135193 (executing program)
2022/10/31 12:47:39 fetching corpus: 846, signal 119190/139960 (executing program)
2022/10/31 12:47:39 fetching corpus: 896, signal 122233/143684 (executing program)
2022/10/31 12:47:39 fetching corpus: 946, signal 124587/146846 (executing program)
2022/10/31 12:47:39 fetching corpus: 996, signal 127572/150525 (executing program)
2022/10/31 12:47:39 fetching corpus: 1046, signal 130144/153770 (executing program)
2022/10/31 12:47:39 fetching corpus: 1096, signal 133115/157308 (executing program)
2022/10/31 12:47:39 fetching corpus: 1146, signal 135506/160359 (executing program)
2022/10/31 12:47:40 fetching corpus: 1196, signal 137569/163086 (executing program)
2022/10/31 12:47:40 fetching corpus: 1246, signal 138851/165139 (executing program)
2022/10/31 12:47:40 fetching corpus: 1296, signal 141028/167886 (executing program)
2022/10/31 12:47:40 fetching corpus: 1346, signal 143874/171253 (executing program)
2022/10/31 12:47:40 fetching corpus: 1396, signal 145858/173784 (executing program)
2022/10/31 12:47:40 fetching corpus: 1446, signal 147270/175909 (executing program)
2022/10/31 12:47:40 fetching corpus: 1496, signal 149472/178562 (executing program)
2022/10/31 12:47:41 fetching corpus: 1546, signal 151630/181207 (executing program)
2022/10/31 12:47:41 fetching corpus: 1596, signal 153237/183370 (executing program)
2022/10/31 12:47:41 fetching corpus: 1646, signal 154407/185150 (executing program)
2022/10/31 12:47:41 fetching corpus: 1696, signal 156000/187204 (executing program)
2022/10/31 12:47:41 fetching corpus: 1746, signal 157938/189589 (executing program)
2022/10/31 12:47:41 fetching corpus: 1796, signal 159902/191884 (executing program)
2022/10/31 12:47:41 fetching corpus: 1846, signal 160932/193495 (executing program)
2022/10/31 12:47:41 fetching corpus: 1896, signal 162443/195442 (executing program)
2022/10/31 12:47:42 fetching corpus: 1946, signal 164088/197499 (executing program)
2022/10/31 12:47:42 fetching corpus: 1996, signal 165479/199305 (executing program)
2022/10/31 12:47:42 fetching corpus: 2046, signal 166598/200947 (executing program)
2022/10/31 12:47:42 fetching corpus: 2096, signal 168219/202899 (executing program)
2022/10/31 12:47:42 fetching corpus: 2146, signal 169736/204803 (executing program)
2022/10/31 12:47:42 fetching corpus: 2196, signal 171263/206596 (executing program)
2022/10/31 12:47:42 fetching corpus: 2246, signal 172619/208309 (executing program)
2022/10/31 12:47:43 fetching corpus: 2296, signal 174163/210109 (executing program)
2022/10/31 12:47:43 fetching corpus: 2346, signal 175586/211813 (executing program)
2022/10/31 12:47:43 fetching corpus: 2395, signal 176841/213395 (executing program)
2022/10/31 12:47:43 fetching corpus: 2445, signal 177996/214867 (executing program)
2022/10/31 12:47:43 fetching corpus: 2495, signal 180110/216925 (executing program)
2022/10/31 12:47:43 fetching corpus: 2545, signal 181136/218323 (executing program)
2022/10/31 12:47:43 fetching corpus: 2595, signal 182432/219854 (executing program)
2022/10/31 12:47:44 fetching corpus: 2645, signal 183663/221308 (executing program)
2022/10/31 12:47:44 fetching corpus: 2695, signal 184377/222465 (executing program)
2022/10/31 12:47:44 fetching corpus: 2745, signal 185336/223749 (executing program)
2022/10/31 12:47:44 fetching corpus: 2795, signal 186183/224943 (executing program)
2022/10/31 12:47:44 fetching corpus: 2845, signal 186976/226090 (executing program)
2022/10/31 12:47:44 fetching corpus: 2895, signal 187742/227191 (executing program)
2022/10/31 12:47:44 fetching corpus: 2945, signal 188800/228532 (executing program)
2022/10/31 12:47:45 fetching corpus: 2995, signal 189731/229751 (executing program)
2022/10/31 12:47:45 fetching corpus: 3045, signal 190672/230935 (executing program)
2022/10/31 12:47:45 fetching corpus: 3095, signal 191374/231989 (executing program)
2022/10/31 12:47:45 fetching corpus: 3145, signal 192227/233098 (executing program)
2022/10/31 12:47:45 fetching corpus: 3195, signal 193056/234192 (executing program)
2022/10/31 12:47:45 fetching corpus: 3244, signal 193709/235154 (executing program)
2022/10/31 12:47:45 fetching corpus: 3294, signal 194837/236355 (executing program)
2022/10/31 12:47:45 fetching corpus: 3344, signal 195793/237475 (executing program)
2022/10/31 12:47:46 fetching corpus: 3394, signal 196717/238578 (executing program)
2022/10/31 12:47:46 fetching corpus: 3444, signal 197785/239708 (executing program)
2022/10/31 12:47:46 fetching corpus: 3494, signal 198565/240691 (executing program)
2022/10/31 12:47:46 fetching corpus: 3544, signal 199162/241534 (executing program)
2022/10/31 12:47:46 fetching corpus: 3594, signal 199863/242480 (executing program)
2022/10/31 12:47:46 fetching corpus: 3644, signal 200621/243466 (executing program)
2022/10/31 12:47:46 fetching corpus: 3694, signal 201558/244475 (executing program)
2022/10/31 12:47:47 fetching corpus: 3744, signal 202765/245611 (executing program)
2022/10/31 12:47:47 fetching corpus: 3794, signal 203529/246491 (executing program)
2022/10/31 12:47:47 fetching corpus: 3844, signal 204799/247626 (executing program)
2022/10/31 12:47:47 fetching corpus: 3894, signal 205418/248444 (executing program)
2022/10/31 12:47:47 fetching corpus: 3944, signal 206543/249471 (executing program)
2022/10/31 12:47:47 fetching corpus: 3994, signal 207307/250319 (executing program)
2022/10/31 12:47:47 fetching corpus: 4044, signal 208383/251322 (executing program)
2022/10/31 12:47:48 fetching corpus: 4094, signal 209035/252106 (executing program)
2022/10/31 12:47:48 fetching corpus: 4144, signal 209837/252949 (executing program)
2022/10/31 12:47:48 fetching corpus: 4194, signal 210613/253803 (executing program)
2022/10/31 12:47:48 fetching corpus: 4243, signal 211302/254561 (executing program)
2022/10/31 12:47:48 fetching corpus: 4293, signal 212080/255343 (executing program)
2022/10/31 12:47:48 fetching corpus: 4343, signal 213077/256237 (executing program)
2022/10/31 12:47:48 fetching corpus: 4393, signal 213774/256997 (executing program)
2022/10/31 12:47:48 fetching corpus: 4443, signal 214417/257700 (executing program)
2022/10/31 12:47:49 fetching corpus: 4493, signal 215105/258440 (executing program)
2022/10/31 12:47:49 fetching corpus: 4543, signal 215912/259179 (executing program)
2022/10/31 12:47:49 fetching corpus: 4592, signal 216568/259880 (executing program)
2022/10/31 12:47:49 fetching corpus: 4642, signal 217404/260598 (executing program)
2022/10/31 12:47:49 fetching corpus: 4692, signal 218006/261233 (executing program)
2022/10/31 12:47:49 fetching corpus: 4742, signal 218799/261966 (executing program)
2022/10/31 12:47:49 fetching corpus: 4792, signal 219574/262616 (executing program)
2022/10/31 12:47:49 fetching corpus: 4842, signal 220247/263257 (executing program)
2022/10/31 12:47:50 fetching corpus: 4892, signal 220776/263870 (executing program)
2022/10/31 12:47:50 fetching corpus: 4942, signal 221487/264521 (executing program)
2022/10/31 12:47:50 fetching corpus: 4992, signal 222666/265311 (executing program)
2022/10/31 12:47:50 fetching corpus: 5042, signal 223588/266009 (executing program)
2022/10/31 12:47:50 fetching corpus: 5092, signal 224297/266614 (executing program)
2022/10/31 12:47:50 fetching corpus: 5142, signal 224996/267189 (executing program)
2022/10/31 12:47:50 fetching corpus: 5192, signal 225612/267733 (executing program)
2022/10/31 12:47:51 fetching corpus: 5242, signal 226399/268330 (executing program)
2022/10/31 12:47:51 fetching corpus: 5291, signal 226871/268819 (executing program)
2022/10/31 12:47:51 fetching corpus: 5341, signal 227460/269358 (executing program)
2022/10/31 12:47:51 fetching corpus: 5391, signal 227953/269865 (executing program)
2022/10/31 12:47:51 fetching corpus: 5441, signal 228471/270348 (executing program)
2022/10/31 12:47:51 fetching corpus: 5491, signal 229317/270919 (executing program)
2022/10/31 12:47:51 fetching corpus: 5541, signal 229928/271406 (executing program)
2022/10/31 12:47:52 fetching corpus: 5591, signal 230785/272041 (executing program)
2022/10/31 12:47:52 fetching corpus: 5641, signal 231267/272499 (executing program)
2022/10/31 12:47:52 fetching corpus: 5691, signal 231917/272971 (executing program)
2022/10/31 12:47:52 fetching corpus: 5741, signal 232455/273405 (executing program)
2022/10/31 12:47:52 fetching corpus: 5791, signal 233133/273864 (executing program)
2022/10/31 12:47:52 fetching corpus: 5841, signal 233868/274330 (executing program)
2022/10/31 12:47:52 fetching corpus: 5891, signal 234798/274804 (executing program)
2022/10/31 12:47:53 fetching corpus: 5941, signal 236531/275390 (executing program)
2022/10/31 12:47:53 fetching corpus: 5991, signal 237032/275812 (executing program)
2022/10/31 12:47:53 fetching corpus: 6041, signal 237481/276212 (executing program)
2022/10/31 12:47:53 fetching corpus: 6091, signal 237966/276585 (executing program)
2022/10/31 12:47:53 fetching corpus: 6141, signal 238541/276939 (executing program)
2022/10/31 12:47:53 fetching corpus: 6191, signal 239209/277383 (executing program)
2022/10/31 12:47:53 fetching corpus: 6241, signal 239840/277855 (executing program)
2022/10/31 12:47:53 fetching corpus: 6291, signal 240338/278203 (executing program)
2022/10/31 12:47:53 fetching corpus: 6341, signal 240738/278531 (executing program)
2022/10/31 12:47:54 fetching corpus: 6391, signal 241184/278849 (executing program)
2022/10/31 12:47:54 fetching corpus: 6441, signal 241826/279200 (executing program)
2022/10/31 12:47:54 fetching corpus: 6491, signal 242467/279545 (executing program)
2022/10/31 12:47:54 fetching corpus: 6541, signal 242701/279826 (executing program)
2022/10/31 12:47:54 fetching corpus: 6591, signal 243151/280133 (executing program)
2022/10/31 12:47:54 fetching corpus: 6641, signal 243697/280435 (executing program)
2022/10/31 12:47:54 fetching corpus: 6691, signal 244269/280729 (executing program)
2022/10/31 12:47:55 fetching corpus: 6741, signal 244825/281007 (executing program)
2022/10/31 12:47:55 fetching corpus: 6791, signal 245295/281271 (executing program)
2022/10/31 12:47:55 fetching corpus: 6841, signal 245762/281585 (executing program)
2022/10/31 12:47:55 fetching corpus: 6891, signal 246219/281864 (executing program)
2022/10/31 12:47:55 fetching corpus: 6941, signal 246731/282115 (executing program)
2022/10/31 12:47:55 fetching corpus: 6991, signal 247314/282124 (executing program)
2022/10/31 12:47:56 fetching corpus: 7041, signal 248064/282124 (executing program)
2022/10/31 12:47:56 fetching corpus: 7090, signal 248443/282125 (executing program)
2022/10/31 12:47:56 fetching corpus: 7140, signal 248907/282125 (executing program)
2022/10/31 12:47:56 fetching corpus: 7190, signal 249379/282132 (executing program)
2022/10/31 12:47:56 fetching corpus: 7240, signal 249614/282134 (executing program)
2022/10/31 12:47:56 fetching corpus: 7290, signal 250130/282134 (executing program)
2022/10/31 12:47:56 fetching corpus: 7340, signal 250590/282139 (executing program)
2022/10/31 12:47:56 fetching corpus: 7390, signal 251095/282139 (executing program)
2022/10/31 12:47:57 fetching corpus: 7440, signal 251578/282140 (executing program)
2022/10/31 12:47:57 fetching corpus: 7490, signal 251971/282141 (executing program)
2022/10/31 12:47:57 fetching corpus: 7540, signal 252378/282144 (executing program)
2022/10/31 12:47:57 fetching corpus: 7590, signal 252663/282144 (executing program)
2022/10/31 12:47:57 fetching corpus: 7640, signal 252981/282144 (executing program)
2022/10/31 12:47:57 fetching corpus: 7690, signal 253381/282144 (executing program)
2022/10/31 12:47:57 fetching corpus: 7740, signal 254203/282144 (executing program)
2022/10/31 12:47:57 fetching corpus: 7790, signal 254714/282144 (executing program)
2022/10/31 12:47:57 fetching corpus: 7840, signal 255301/282145 (executing program)
2022/10/31 12:47:58 fetching corpus: 7890, signal 255778/282145 (executing program)
2022/10/31 12:47:58 fetching corpus: 7940, signal 256294/282145 (executing program)
2022/10/31 12:47:58 fetching corpus: 7990, signal 256672/282145 (executing program)
2022/10/31 12:47:58 fetching corpus: 8040, signal 257272/282145 (executing program)
2022/10/31 12:47:58 fetching corpus: 8090, signal 257733/282147 (executing program)
2022/10/31 12:47:58 fetching corpus: 8140, signal 258236/282147 (executing program)
2022/10/31 12:47:58 fetching corpus: 8190, signal 258626/282148 (executing program)
2022/10/31 12:47:58 fetching corpus: 8239, signal 259177/282148 (executing program)
2022/10/31 12:47:59 fetching corpus: 8289, signal 259669/282151 (executing program)
2022/10/31 12:47:59 fetching corpus: 8339, signal 260045/282151 (executing program)
2022/10/31 12:47:59 fetching corpus: 8389, signal 260439/282151 (executing program)
2022/10/31 12:47:59 fetching corpus: 8439, signal 260772/282151 (executing program)
2022/10/31 12:47:59 fetching corpus: 8489, signal 261131/282151 (executing program)
2022/10/31 12:47:59 fetching corpus: 8539, signal 261407/282151 (executing program)
2022/10/31 12:47:59 fetching corpus: 8589, signal 261742/282152 (executing program)
2022/10/31 12:47:59 fetching corpus: 8639, signal 262106/282218 (executing program)
2022/10/31 12:47:59 fetching corpus: 8689, signal 262319/282218 (executing program)
2022/10/31 12:47:59 fetching corpus: 8739, signal 263176/282223 (executing program)
2022/10/31 12:48:00 fetching corpus: 8789, signal 263555/282223 (executing program)
2022/10/31 12:48:00 fetching corpus: 8839, signal 263792/282224 (executing program)
2022/10/31 12:48:00 fetching corpus: 8889, signal 264233/282224 (executing program)
2022/10/31 12:48:00 fetching corpus: 8939, signal 264800/282231 (executing program)
2022/10/31 12:48:00 fetching corpus: 8989, signal 265348/282238 (executing program)
2022/10/31 12:48:00 fetching corpus: 9039, signal 265885/282238 (executing program)
2022/10/31 12:48:00 fetching corpus: 9089, signal 266341/282238 (executing program)
2022/10/31 12:48:00 fetching corpus: 9139, signal 266726/282238 (executing program)
2022/10/31 12:48:01 fetching corpus: 9188, signal 267123/282238 (executing program)
2022/10/31 12:48:01 fetching corpus: 9238, signal 267461/282240 (executing program)
2022/10/31 12:48:01 fetching corpus: 9288, signal 267960/282240 (executing program)
2022/10/31 12:48:01 fetching corpus: 9338, signal 268347/282242 (executing program)
2022/10/31 12:48:01 fetching corpus: 9388, signal 268745/282242 (executing program)
2022/10/31 12:48:01 fetching corpus: 9438, signal 269099/282242 (executing program)
2022/10/31 12:48:02 fetching corpus: 9488, signal 269645/282242 (executing program)
2022/10/31 12:48:02 fetching corpus: 9538, signal 270078/282242 (executing program)
2022/10/31 12:48:02 fetching corpus: 9588, signal 270406/282262 (executing program)
2022/10/31 12:48:02 fetching corpus: 9638, signal 270915/282262 (executing program)
2022/10/31 12:48:02 fetching corpus: 9688, signal 271226/282262 (executing program)
2022/10/31 12:48:02 fetching corpus: 9738, signal 271549/282262 (executing program)
2022/10/31 12:48:02 fetching corpus: 9788, signal 271855/282262 (executing program)
2022/10/31 12:48:03 fetching corpus: 9838, signal 272239/282262 (executing program)
2022/10/31 12:48:03 fetching corpus: 9888, signal 272475/282262 (executing program)
2022/10/31 12:48:03 fetching corpus: 9937, signal 272721/282262 (executing program)
2022/10/31 12:48:03 fetching corpus: 9987, signal 272969/282262 (executing program)
2022/10/31 12:48:03 fetching corpus: 10037, signal 273182/282262 (executing program)
2022/10/31 12:48:03 fetching corpus: 10087, signal 273509/282262 (executing program)
2022/10/31 12:48:03 fetching corpus: 10137, signal 273744/282262 (executing program)
2022/10/31 12:48:04 fetching corpus: 10187, signal 274188/282262 (executing program)
2022/10/31 12:48:04 fetching corpus: 10237, signal 274548/282262 (executing program)
2022/10/31 12:48:04 fetching corpus: 10287, signal 274875/282265 (executing program)
2022/10/31 12:48:04 fetching corpus: 10337, signal 275090/282265 (executing program)
2022/10/31 12:48:04 fetching corpus: 10387, signal 275389/282265 (executing program)
2022/10/31 12:48:04 fetching corpus: 10437, signal 275759/282266 (executing program)
2022/10/31 12:48:04 fetching corpus: 10487, signal 276328/282268 (executing program)
2022/10/31 12:48:04 fetching corpus: 10537, signal 276675/282269 (executing program)
2022/10/31 12:48:05 fetching corpus: 10553, signal 276783/282270 (executing program)
2022/10/31 12:48:05 fetching corpus: 10553, signal 276783/282270 (executing program)
2022/10/31 12:48:08 starting 8 fuzzer processes
12:48:08 executing program 0:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x80045400, 0x0)

12:48:08 executing program 1:
r0 = creat(&(0x7f0000000fc0)='./file0\x00', 0x0)
futimesat(r0, 0x0, &(0x7f0000001080)={{0x0, 0xea60}})

12:48:08 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

12:48:08 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
sigaltstack(&(0x7f0000ffc000/0x1000)=nil, 0x0)

12:48:08 executing program 3:
ioprio_set$uid(0x3, 0xffffffffffffffff, 0x6000)

[   88.008786] audit: type=1400 audit(1667220488.136:6): avc:  denied  { execmem } for  pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
12:48:08 executing program 5:
shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0)
shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x2000)
shmat(r1, &(0x7f0000ff0000/0x2000)=nil, 0x0)
mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)

12:48:08 executing program 6:
syz_mount_image$ext4(&(0x7f0000000200)='ext3\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x2c}}]})

12:48:08 executing program 7:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000100)=0xaa3)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4)

[   89.390065] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   89.390381] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   89.391364] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.394879] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   89.396132] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.398491] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   89.407878] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   89.410008] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.411331] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   89.442667] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   89.445269] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   89.446674] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   89.447852] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   89.450993] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   89.452881] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   89.454699] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   89.456654] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   89.458063] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   89.459208] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   89.464547] Bluetooth: hci4: HCI_REQ-0x0c1a
[   89.466018] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   89.468416] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   89.480043] Bluetooth: hci6: HCI_REQ-0x0c1a
[   89.490414] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   89.491821] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   89.493313] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   89.494743] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   89.496103] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   89.497124] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   89.498681] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   89.499814] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.501985] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   89.503202] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   89.507239] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.508369] Bluetooth: hci2: HCI_REQ-0x0c1a
[   89.509523] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   89.510693] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   89.513277] Bluetooth: hci0: HCI_REQ-0x0c1a
[   89.534016] Bluetooth: hci1: HCI_REQ-0x0c1a
[   89.544368] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   89.547441] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   89.554722] Bluetooth: hci7: HCI_REQ-0x0c1a
[   89.591851] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   89.594435] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   89.596561] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   89.600743] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   89.610453] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   89.615636] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   89.648247] Bluetooth: hci5: HCI_REQ-0x0c1a
[   91.464264] Bluetooth: hci3: Opcode 0x c03 failed: -110
[   91.528654] Bluetooth: hci0: command 0x0409 tx timeout
[   91.528678] Bluetooth: hci2: command 0x0409 tx timeout
[   91.529673] Bluetooth: hci6: command 0x0409 tx timeout
[   91.530014] Bluetooth: hci4: command 0x0409 tx timeout
[   91.593245] Bluetooth: hci7: command 0x0409 tx timeout
[   91.593275] Bluetooth: hci1: command 0x0409 tx timeout
[   91.721426] Bluetooth: hci5: command 0x0409 tx timeout
[   93.576321] Bluetooth: hci4: command 0x041b tx timeout
[   93.576349] Bluetooth: hci6: command 0x041b tx timeout
[   93.576756] Bluetooth: hci2: command 0x041b tx timeout
[   93.577285] Bluetooth: hci0: command 0x041b tx timeout
[   93.640220] Bluetooth: hci1: command 0x041b tx timeout
[   93.640785] Bluetooth: hci7: command 0x041b tx timeout
[   93.768256] Bluetooth: hci5: command 0x041b tx timeout
[   94.733459] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   94.736317] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   94.737959] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   94.741721] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   94.743926] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   94.745978] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   94.752570] Bluetooth: hci3: HCI_REQ-0x0c1a
[   95.624339] Bluetooth: hci2: command 0x040f tx timeout
[   95.624911] Bluetooth: hci0: command 0x040f tx timeout
[   95.625809] Bluetooth: hci6: command 0x040f tx timeout
[   95.626328] Bluetooth: hci4: command 0x040f tx timeout
[   95.688219] Bluetooth: hci7: command 0x040f tx timeout
[   95.688716] Bluetooth: hci1: command 0x040f tx timeout
[   95.816201] Bluetooth: hci5: command 0x040f tx timeout
[   96.776216] Bluetooth: hci3: command 0x0409 tx timeout
[   97.672284] Bluetooth: hci4: command 0x0419 tx timeout
[   97.673098] Bluetooth: hci6: command 0x0419 tx timeout
[   97.673885] Bluetooth: hci0: command 0x0419 tx timeout
[   97.674851] Bluetooth: hci2: command 0x0419 tx timeout
[   97.737240] Bluetooth: hci1: command 0x0419 tx timeout
[   97.737659] Bluetooth: hci7: command 0x0419 tx timeout
[   97.865236] Bluetooth: hci5: command 0x0419 tx timeout
[   98.824229] Bluetooth: hci3: command 0x041b tx timeout
[  100.872307] Bluetooth: hci3: command 0x040f tx timeout
[  102.920188] Bluetooth: hci3: command 0x0419 tx timeout
[  144.932796] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.933575] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.935068] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  145.150678] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.151867] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.153753] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  146.313923] audit: type=1400 audit(1667220546.441:7): avc:  denied  { open } for  pid=3735 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  146.315480] audit: type=1400 audit(1667220546.441:8): avc:  denied  { kernel } for  pid=3735 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  146.381155] hrtimer: interrupt took 19867 ns
[  146.988205] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.988845] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.990998] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  147.130702] syz-executor.2 (3737) used greatest stack depth: 23824 bytes left
[  147.150270] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.151462] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.153957] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
12:49:07 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

[  147.358985] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.360212] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.365183] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  147.652561] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.653222] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.654612] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
12:49:07 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

[  147.901969] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.903128] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.905969] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
12:49:08 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

[  148.551881] syz-executor.2 (3820) used greatest stack depth: 23384 bytes left
12:49:09 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1ce3ffffa7fbf62de3d572f985484579bf673ee9d425e3bc1adf80e1db04da1e1321468bd68bd9576a80a67e3ddbc6cb37b6c753b9dcb68a540e3a0db59e26c11c694dd1825ddbcc347c33252a5d3c388ee86b6b1fd51f695575eb853b2cd14e992080df583097caa0699847ac64313d13546880da756fb0485e37f3e1b5903a9b5cb1f2dd3fa0eac0d0015a94dbaeabf474aff0db1c9ca83d3c63ddb959a902f7983623fe9796953792c555ec5f8591dea277b8218eef50ae6dca3b77554a40f1765eea2c726b3ffa164d17413a95856cc86f4dba559832397b763294594d955c7a51084edbf252a1eac2c712dacdc8a93e86c70059e3eef5606a5d7e9167b16ca7ff9a24a0491370bd", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

12:49:09 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

12:49:09 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

12:49:10 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

[  150.285000] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  150.285639] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  150.287332] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  150.372620] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  150.373296] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  150.375168] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
12:49:10 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

[  150.994823] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  151.000663] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  151.002892] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  151.008089] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  151.010217] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  151.011617] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  151.018389] Bluetooth: hci0: HCI_REQ-0x0c1a
[  151.524533] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  151.526631] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  151.528240] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  151.533127] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  151.534939] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  151.535719] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  151.540224] Bluetooth: hci1: HCI_REQ-0x0c1a
[  151.589450] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  151.590394] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  151.592350] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  151.593825] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  151.605825] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  151.608333] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  151.609562] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  151.612294] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  151.613337] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  151.614115] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  151.619270] Bluetooth: hci5: HCI_REQ-0x0c1a
[  151.650984] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  151.653544] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  151.654671] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  151.656657] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  151.660279] Bluetooth: hci7: HCI_REQ-0x0c1a
[  151.663084] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  151.670986] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  151.672127] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  151.674378] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  151.711613] Bluetooth: hci6: HCI_REQ-0x0c1a
[  153.032216] Bluetooth: hci0: command 0x0409 tx timeout
[  153.544259] Bluetooth: hci4: Opcode 0x c03 failed: -110
[  153.608230] Bluetooth: hci1: command 0x0409 tx timeout
[  153.672304] Bluetooth: hci7: command 0x0409 tx timeout
[  153.672331] Bluetooth: hci5: command 0x0409 tx timeout
[  153.737354] Bluetooth: hci6: command 0x0409 tx timeout
[  155.080243] Bluetooth: hci0: command 0x041b tx timeout
[  155.657197] Bluetooth: hci1: command 0x041b tx timeout
[  155.720202] Bluetooth: hci5: command 0x041b tx timeout
[  155.721394] Bluetooth: hci7: command 0x041b tx timeout
[  155.784208] Bluetooth: hci6: command 0x041b tx timeout
[  156.053590] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  156.057959] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  156.065863] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  156.069637] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  156.071431] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  156.072953] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  156.081223] Bluetooth: hci4: HCI_REQ-0x0c1a
[  157.128352] Bluetooth: hci0: command 0x040f tx timeout
[  157.704205] Bluetooth: hci1: command 0x040f tx timeout
[  157.768229] Bluetooth: hci7: command 0x040f tx timeout
[  157.768268] Bluetooth: hci5: command 0x040f tx timeout
[  157.832242] Bluetooth: hci6: command 0x040f tx timeout
[  158.152235] Bluetooth: hci4: command 0x0409 tx timeout
[  159.176233] Bluetooth: hci0: command 0x0419 tx timeout
[  159.752296] Bluetooth: hci1: command 0x0419 tx timeout
[  159.816201] Bluetooth: hci5: command 0x0419 tx timeout
[  159.816640] Bluetooth: hci7: command 0x0419 tx timeout
[  159.881180] Bluetooth: hci6: command 0x0419 tx timeout
[  160.201192] Bluetooth: hci4: command 0x041b tx timeout
[  162.248240] Bluetooth: hci4: command 0x040f tx timeout
[  164.297195] Bluetooth: hci4: command 0x0419 tx timeout
[  191.434494] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  191.435108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  191.437100] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  191.576792] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  191.577502] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  191.579332] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  192.221400] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.222002] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.223750] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  192.351471] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.352075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.353796] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  192.755473] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.756077] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.757908] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  192.826723] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.827363] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.828953] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  192.964452] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.965039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.966560] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  193.039118] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.039740] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.041939] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  193.479866] BUG: unable to handle page fault for address: ffffed100fffc000
[  193.480372] #PF: supervisor write access in kernel mode
[  193.480739] #PF: error_code(0x0002) - not-present page
[  193.481101] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0
[  193.481570] Oops: 0002 [#1] PREEMPT SMP KASAN NOPTI
[  193.483156] CPU: 0 PID: 6518 Comm: syz-executor.5 Not tainted 6.1.0-rc3-next-20221031 #1
[  193.485991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  193.486567] RIP: 0010:__memset+0x24/0x50
[  193.486873] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  193.488099] RSP: 0018:ffff8880343cfcc0 EFLAGS: 00010212
[  193.488468] RAX: 0000000000000000 RBX: ffff88800c0140c0 RCX: 1ffffe21fe601892
[  193.488955] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  193.489450] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed1001802818
[  193.489939] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  193.490455] R13: ffff88800c0140c0 R14: ffffffff815f27a0 R15: 1ffff1100112301f
[  193.490948] FS:  00007f4404209700(0000) GS:ffff88806d000000(0000) knlGS:0000000000000000
[  193.491576] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  193.492110] CR2: ffffed100fffc000 CR3: 000000000d3be000 CR4: 0000000000350ef0
[  193.492767] Call Trace:
[  193.493009]  <TASK>
[  193.493225]  kasan_unpoison+0x23/0x60
[  193.493590]  mempool_exit+0x1c2/0x330
[  193.493963]  bioset_exit+0x2c9/0x630
[  193.494333]  disk_release+0x143/0x490
[  193.494694]  ? disk_release+0x0/0x490
[  193.495059]  ? device_release+0x0/0x250
[  193.495437]  device_release+0xa2/0x250
[  193.495802]  ? device_release+0x0/0x250
[  193.496172]  kobject_put+0x173/0x280
[  193.496534]  put_device+0x1b/0x40
[  193.496867]  put_disk+0x41/0x60
[  193.497188]  loop_control_ioctl+0x4d1/0x630
[  193.497616]  ? loop_control_ioctl+0x0/0x630
[  193.498027]  ? selinux_file_ioctl+0xb1/0x270
[  193.498464]  ? loop_control_ioctl+0x0/0x630
[  193.498884]  __x64_sys_ioctl+0x19a/0x220
[  193.499276]  do_syscall_64+0x3b/0xa0
[  193.499634]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  193.500119] RIP: 0033:0x7f4406c93b19
[  193.500473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  193.502087] RSP: 002b:00007f4404209188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  193.502809] RAX: ffffffffffffffda RBX: 00007f4406da6f60 RCX: 00007f4406c93b19
[  193.503430] RDX: 0000000000000000 RSI: 0000000000004c81 RDI: 0000000000000005
[  193.503910] RBP: 00007f4406cedf6d R08: 0000000000000000 R09: 0000000000000000
[  193.504400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  193.504889] R13: 00007ffd51d7c9df R14: 00007f4404209300 R15: 0000000000022000
[  193.505376]  </TASK>
[  193.505538] Modules linked in:
[  193.505766] CR2: ffffed100fffc000
[  193.506008] ---[ end trace 0000000000000000 ]---
[  193.506337] RIP: 0010:__memset+0x24/0x50
[  193.506632] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  193.507863] RSP: 0018:ffff8880343cfcc0 EFLAGS: 00010212
[  193.508230] RAX: 0000000000000000 RBX: ffff88800c0140c0 RCX: 1ffffe21fe601892
[  193.508717] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  193.509201] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed1001802818
[  193.509681] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  193.510163] R13: ffff88800c0140c0 R14: ffffffff815f27a0 R15: 1ffff1100112301f
[  193.510674] FS:  00007f4404209700(0000) GS:ffff88806d000000(0000) knlGS:0000000000000000
[  193.511225] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  193.511621] CR2: ffffed100fffc000 CR3: 000000000d3be000 CR4: 0000000000350ef0
[  193.640580] ieee80211 phy20: Selected rate control algorithm 'minstrel_ht'
[  193.674210] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.674686] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.674749] ieee80211 phy21: Selected rate control algorithm 'minstrel_ht'
[  193.675694] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  193.706065] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  193.707143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  193.707992] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  193.813791] BUG: unable to handle page fault for address: ffffed100fffc000
[  193.814285] #PF: supervisor write access in kernel mode
[  193.814615] #PF: error_code(0x0002) - not-present page
[  193.814935] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0
[  193.815363] Oops: 0002 [#2] PREEMPT SMP KASAN NOPTI
[  193.815680] CPU: 1 PID: 6522 Comm: syz-executor.5 Tainted: G      D            6.1.0-rc3-next-20221031 #1
[  193.816272] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  193.816788] RIP: 0010:__memset+0x24/0x50
[  193.817067] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  193.818173] RSP: 0018:ffff88804197fcc0 EFLAGS: 00010212
[  193.818532] RAX: 0000000000000000 RBX: ffff88800c014240 RCX: 1ffffe21fe601898
[  193.818980] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  193.819427] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed1001802848
[  193.819874] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  193.820317] R13: ffff88800c014240 R14: ffffffff815f27a0 R15: 1ffff1100119941f
[  193.820766] FS:  00007f44041e8700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000
[  193.821268] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  193.821638] CR2: ffffed100fffc000 CR3: 000000000d3be000 CR4: 0000000000350ee0
[  193.822100] Call Trace:
[  193.822297]  <TASK>
[  193.822450]  kasan_unpoison+0x23/0x60
[  193.822704]  mempool_exit+0x1c2/0x330
[  193.822966]  bioset_exit+0x2c9/0x630
[  193.823220]  ? _raw_spin_unlock+0x24/0x50
[  193.823502]  ? blkg_destroy_all.isra.0+0x157/0x230
[  193.823833]  disk_release+0x143/0x490
[  193.824089]  ? disk_release+0x0/0x490
[  193.824350]  ? device_release+0x0/0x250
[  193.824616]  device_release+0xa2/0x250
[  193.824876]  ? device_release+0x0/0x250
[  193.825144]  kobject_put+0x173/0x280
[  193.825394]  put_device+0x1b/0x40
[  193.825627]  put_disk+0x41/0x60
[  193.825857]  loop_control_ioctl+0x4d1/0x630
[  193.826147]  ? loop_control_ioctl+0x0/0x630
[  193.826442]  ? selinux_file_ioctl+0xb1/0x270
[  193.826736]  ? loop_control_ioctl+0x0/0x630
[  193.827023]  __x64_sys_ioctl+0x19a/0x220
[  193.827297]  do_syscall_64+0x3b/0xa0
[  193.827554]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  193.827893] RIP: 0033:0x7f4406c93b19
[  193.828143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  193.829270] RSP: 002b:00007f44041e8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  193.829751] RAX: ffffffffffffffda RBX: 00007f4406da7020 RCX: 00007f4406c93b19
[  193.830199] RDX: 0000000000000001 RSI: 0000000000004c81 RDI: 0000000000000005
[  193.830663] RBP: 00007f4406cedf6d R08: 0000000000000000 R09: 0000000000000000
[  193.831106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  193.831551] R13: 00007ffd51d7c9df R14: 00007f44041e8300 R15: 0000000000022000
[  193.832002]  </TASK>
[  193.832162] Modules linked in:
[  193.832373] CR2: ffffed100fffc000
[  193.832600] ---[ end trace 0000000000000000 ]---
[  193.832896] RIP: 0010:__memset+0x24/0x50
[  193.833174] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  193.834290] RSP: 0018:ffff8880343cfcc0 EFLAGS: 00010212
[  193.834632] RAX: 0000000000000000 RBX: ffff88800c0140c0 RCX: 1ffffe21fe601892
[  193.835086] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  193.835539] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed1001802818
[  193.835987] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  193.836427] R13: ffff88800c0140c0 R14: ffffffff815f27a0 R15: 1ffff1100112301f
[  193.836872] FS:  00007f44041e8700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000
[  193.837375] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  193.837758] CR2: ffffed100fffc000 CR3: 000000000d3be000 CR4: 0000000000350ee0
[  193.971907] ext3: Bad value for 'debug_want_extra_isize'
[  193.973835] ext3: Bad value for 'debug_want_extra_isize'
[  195.418853] ieee80211 phy22: Selected rate control algorithm 'minstrel_ht'
[  195.438947] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.439879] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.440912] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  195.445082] ieee80211 phy23: Selected rate control algorithm 'minstrel_ht'
[  195.465976] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.467048] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  195.468003] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
12:49:55 executing program 5:
shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0)
shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x2000)
shmat(r1, &(0x7f0000ff0000/0x2000)=nil, 0x0)
mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)

12:49:55 executing program 0:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x80045400, 0x0)

12:49:55 executing program 3:
ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x6, 0x0, 0x20, 0x81, 0x6, 0x89})
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000001280))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
epoll_create(0x4)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000001600), 0x400000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

12:49:55 executing program 6:
shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0)
shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x2000)
shmat(r1, &(0x7f0000ff0000/0x2000)=nil, 0x0)
mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)

12:49:55 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_io_uring_setup(0x51dc, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
ioctl$PTP_PIN_GETFUNC(0xffffffffffffffff, 0xc0603d06, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)

12:49:55 executing program 1:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005e2c0)={0x0, 0x0, "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", "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"})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x301c03, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000240)='\x00', &(0x7f0000000300)='./file2\x00', 0xffffffffffffffff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8001)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendfile(r1, r0, 0x0, 0xfffffdef)
syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f0000000c80)='./file2\x00', 0x6, 0x1, &(0x7f0000000d00)=[{&(0x7f0000000cc0)="7403ea043df365", 0x7, 0x2}], 0x10020, &(0x7f0000000e80)={[{@mode={'mode', 0x3d, 0x8}}, {}, {}], [{@appraise}]})
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000040), 0x4)
write$binfmt_aout(r2, &(0x7f0000000340)={{0x10b, 0x3, 0x8, 0xd9, 0x3dc, 0x1ff, 0x320, 0x7}, "1597e7a38685abc1b8e50129d8c3505f", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x930)

12:49:55 executing program 2:
syslog(0x3, 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r1, r2, 0x0, 0x10000027f)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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", @ANYRES16, @ANYBLOB="ff05002179043f5918d8d6000000000000ffff"], 0x1c}}, 0x0)
r3 = getpid()
r4 = signalfd(r0, &(0x7f00000001c0)={[0x2]}, 0x8)
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(r4, &(0x7f0000000700)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000440)={0x74, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x1)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000005c0)={{{@in6=@private2, @in=@multicast2}}, {{@in6=@local}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
kcmp(r3, 0x0, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000540)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, r3, 0xe, r1, 0x0)

12:49:55 executing program 7:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000100)=0xaa3)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4)

12:49:55 executing program 0:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x80045400, 0x0)

[  195.918622] audit: type=1400 audit(1667220596.046:9): avc:  denied  { write } for  pid=6653 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
12:49:56 executing program 7:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000100)=0xaa3)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4)

12:49:56 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x3ff, 0x4a009, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)

12:49:56 executing program 6:
shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0)
shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x2000)
shmat(r1, &(0x7f0000ff0000/0x2000)=nil, 0x0)
mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)

12:49:56 executing program 0:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x80045400, 0x0)

[  198.608048] BUG: unable to handle page fault for address: ffffed100fffc000
[  198.609042] #PF: supervisor write access in kernel mode
[  198.609818] #PF: error_code(0x0002) - not-present page
[  198.610535] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0
[  198.611455] Oops: 0002 [#3] PREEMPT SMP KASAN NOPTI
[  198.612138] CPU: 0 PID: 6668 Comm: syz-executor.6 Tainted: G      D            6.1.0-rc3-next-20221031 #1
[  198.613396] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  198.614517] RIP: 0010:__memset+0x24/0x50
[  198.615104] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  198.617496] RSP: 0018:ffff8880418dfcc0 EFLAGS: 00010212
[  198.618236] RAX: 0000000000000000 RBX: ffff88800c0143c0 RCX: 1ffffe21fe60189e
[  198.619250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  198.620256] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed1001802878
[  198.621268] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  198.622268] R13: ffff88800c0143c0 R14: ffffffff815f27a0 R15: 1ffff110011ac81f
[  198.623293] FS:  00007f1cd7993700(0000) GS:ffff88806d000000(0000) knlGS:0000000000000000
[  198.624405] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  198.625213] CR2: ffffed100fffc000 CR3: 000000001bcd2000 CR4: 0000000000350ef0
[  198.626201] Call Trace:
[  198.626595]  <TASK>
[  198.626929]  kasan_unpoison+0x23/0x60
[  198.627487]  mempool_exit+0x1c2/0x330
[  198.628052]  bioset_exit+0x2c9/0x630
[  198.628612]  disk_release+0x143/0x490
[  198.629165]  ? disk_release+0x0/0x490
[  198.629715]  ? device_release+0x0/0x250
[  198.630280]  device_release+0xa2/0x250
[  198.630853]  ? device_release+0x0/0x250
[  198.631438]  kobject_put+0x173/0x280
[  198.631973]  put_device+0x1b/0x40
[  198.632477]  put_disk+0x41/0x60
[  198.632961]  loop_control_ioctl+0x4d1/0x630
[  198.633577]  ? loop_control_ioctl+0x0/0x630
[  198.634199]  ? selinux_file_ioctl+0xb1/0x270
[  198.634860]  ? selinux_file_ioctl+0x2/0x270
[  198.635497]  ? loop_control_ioctl+0x0/0x630
[  198.636119]  __x64_sys_ioctl+0x19a/0x220
[  198.636716]  do_syscall_64+0x3b/0xa0
[  198.637263]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  198.637991] RIP: 0033:0x7f1cda41db19
[  198.638507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  198.640863] RSP: 002b:00007f1cd7993188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  198.641855] RAX: ffffffffffffffda RBX: 00007f1cda530f60 RCX: 00007f1cda41db19
[  198.642804] RDX: 0000000000000002 RSI: 0000000000004c81 RDI: 0000000000000005
[  198.643735] RBP: 00007f1cda477f6d R08: 0000000000000000 R09: 0000000000000000
[  198.644662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  198.645588] R13: 00007ffc869460ef R14: 00007f1cd7993300 R15: 0000000000022000
[  198.646545]  </TASK>
[  198.646866] Modules linked in:
[  198.647302] CR2: ffffed100fffc000
[  198.647767] ---[ end trace 0000000000000000 ]---
[  198.648388] RIP: 0010:__memset+0x24/0x50
[  198.648961] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  198.651448] RSP: 0018:ffff8880343cfcc0 EFLAGS: 00010212
[  198.652189] RAX: 0000000000000000 RBX: ffff88800c0140c0 RCX: 1ffffe21fe601892
[  198.653167] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  198.654149] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed1001802818
[  198.655145] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  198.656123] R13: ffff88800c0140c0 R14: ffffffff815f27a0 R15: 1ffff1100112301f
[  198.657104] FS:  00007f1cd7993700(0000) GS:ffff88806d000000(0000) knlGS:0000000000000000
[  198.658205] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  198.659065] CR2: ffffed100fffc000 CR3: 000000001bcd2000 CR4: 0000000000350ef0
12:49:58 executing program 5:
shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0)
shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x2000)
shmat(r1, &(0x7f0000ff0000/0x2000)=nil, 0x0)
mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)

12:49:58 executing program 1:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005e2c0)={0x0, 0x0, "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", "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"})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x301c03, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000240)='\x00', &(0x7f0000000300)='./file2\x00', 0xffffffffffffffff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8001)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendfile(r1, r0, 0x0, 0xfffffdef)
syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f0000000c80)='./file2\x00', 0x6, 0x1, &(0x7f0000000d00)=[{&(0x7f0000000cc0)="7403ea043df365", 0x7, 0x2}], 0x10020, &(0x7f0000000e80)={[{@mode={'mode', 0x3d, 0x8}}, {}, {}], [{@appraise}]})
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000040), 0x4)
write$binfmt_aout(r2, &(0x7f0000000340)={{0x10b, 0x3, 0x8, 0xd9, 0x3dc, 0x1ff, 0x320, 0x7}, "1597e7a38685abc1b8e50129d8c3505f", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x930)

12:49:58 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x80010, 0xffffffffffffffff, 0xa015000)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0xa015000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x11, 0x0, 0x0)
write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220)
r4 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x15182, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpgid(0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0xff, 0x4, 0x5, 0x3f, 0x0, 0x100000001, 0x10c4, 0xe, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_config_ext={0x2, 0x13439f45}, 0x43441, 0x9, 0x400, 0x0, 0x6, 0x101, 0x3, 0x0, 0x6, 0x0, 0x8}, 0x0, 0xc, r4, 0x9)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)="05ff232ef592436bf2d9", 0xa}, {&(0x7f0000000100)="9f", 0x1}], 0x2, 0x0, 0x0, 0x0)
sendfile(r3, r0, 0x0, 0xfffffdef)

12:49:58 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000001440), 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f00000011c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x7}, 0x8200, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff)
migrate_pages(0x0, 0x9, &(0x7f0000000000)=0x23, &(0x7f0000000180)=0x10001)

12:49:58 executing program 3:
ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x6, 0x0, 0x20, 0x81, 0x6, 0x89})
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000001280))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
epoll_create(0x4)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000001600), 0x400000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

12:49:58 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x2000002, 0x13, r0, 0x0)
fallocate(r0, 0x0, 0x0, 0x8531)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
preadv2(r2, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/75, 0xfdef}], 0x1, 0x0, 0x0, 0x8)

12:49:58 executing program 7:
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000100)=0xaa3)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4)

12:49:58 executing program 6:
shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0)
shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x2000)
shmat(r1, &(0x7f0000ff0000/0x2000)=nil, 0x0)
mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)

12:49:59 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x2000002, 0x13, r0, 0x0)
fallocate(r0, 0x0, 0x0, 0x8531)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
preadv2(r2, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/75, 0xfdef}], 0x1, 0x0, 0x0, 0x8)

12:49:59 executing program 7:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89b1, &(0x7f00000000c0)={'sit0\x00', 0x0})

[  199.106827] BUG: unable to handle page fault for address: ffffed100fffc000
[  199.107416] #PF: supervisor write access in kernel mode
[  199.107843] #PF: error_code(0x0002) - not-present page
[  199.108247] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0
[  199.108776] Oops: 0002 [#4] PREEMPT SMP KASAN NOPTI
[  199.109170] CPU: 1 PID: 6692 Comm: syz-executor.5 Tainted: G      D            6.1.0-rc3-next-20221031 #1
[  199.109911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  199.110555] RIP: 0010:__memset+0x24/0x50
[  199.110904] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  199.112309] RSP: 0018:ffff88804205fcc0 EFLAGS: 00010212
[  199.112738] RAX: 0000000000000000 RBX: ffff88800c014540 RCX: 1ffffe21fe6018a4
[  199.113296] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  199.113865] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed10018028a8
[  199.114421] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  199.114984] R13: ffff88800c014540 R14: ffffffff815f27a0 R15: 1ffff110011ae81f
[  199.115547] FS:  00007f4404209700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000
[  199.116173] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  199.116632] CR2: ffffed100fffc000 CR3: 0000000019722000 CR4: 0000000000350ee0
[  199.117192] Call Trace:
[  199.117398]  <TASK>
[  199.117581]  kasan_unpoison+0x23/0x60
[  199.117899]  mempool_exit+0x1c2/0x330
[  199.118215]  bioset_exit+0x2c9/0x630
[  199.118532]  disk_release+0x143/0x490
[  199.118842]  ? disk_release+0x0/0x490
[  199.119153]  ? device_release+0x0/0x250
[  199.119471]  device_release+0xa2/0x250
[  199.119781]  ? device_release+0x0/0x250
[  199.120095]  kobject_put+0x173/0x280
[  199.120398]  put_device+0x1b/0x40
[  199.120683]  put_disk+0x41/0x60
[  199.120957]  loop_control_ioctl+0x4d1/0x630
[  199.121311]  ? loop_control_ioctl+0x0/0x630
[  199.121655]  ? selinux_file_ioctl+0xb1/0x270
[  199.122024]  ? loop_control_ioctl+0x0/0x630
[  199.122384]  __x64_sys_ioctl+0x19a/0x220
[  199.122720]  do_syscall_64+0x3b/0xa0
[  199.123037]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  199.123451] RIP: 0033:0x7f4406c93b19
[  199.123743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  199.125123] RSP: 002b:00007f4404209188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  199.125707] RAX: ffffffffffffffda RBX: 00007f4406da6f60 RCX: 00007f4406c93b19
[  199.126253] RDX: 0000000000000003 RSI: 0000000000004c81 RDI: 0000000000000005
[  199.126816] RBP: 00007f4406cedf6d R08: 0000000000000000 R09: 0000000000000000
[  199.127361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  199.127902] R13: 00007ffd51d7c9df R14: 00007f4404209300 R15: 0000000000022000
[  199.128457]  </TASK>
[  199.128651] Modules linked in:
[  199.128906] CR2: ffffed100fffc000
[  199.129177] ---[ end trace 0000000000000000 ]---
[  199.129538] RIP: 0010:__memset+0x24/0x50
[  199.129869] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  199.131263] RSP: 0018:ffff8880343cfcc0 EFLAGS: 00010212
[  199.131672] RAX: 0000000000000000 RBX: ffff88800c0140c0 RCX: 1ffffe21fe601892
[  199.132224] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  199.132770] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed1001802818
[  199.133320] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  199.133855] R13: ffff88800c0140c0 R14: ffffffff815f27a0 R15: 1ffff1100112301f
[  199.134389] FS:  00007f4404209700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000
[  199.135008] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  199.135450] CR2: ffffed100fffc000 CR3: 0000000019722000 CR4: 0000000000350ee0
12:49:59 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x2000002, 0x13, r0, 0x0)
fallocate(r0, 0x0, 0x0, 0x8531)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
preadv2(r2, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/75, 0xfdef}], 0x1, 0x0, 0x0, 0x8)

[  200.398390] BUG: unable to handle page fault for address: ffffed100fffc000
[  200.399319] #PF: supervisor write access in kernel mode
[  200.399988] #PF: error_code(0x0002) - not-present page
[  200.400646] PGD 7ffd3067 P4D 7ffd3067 PUD 7ffd2067 PMD 7ffd1067 PTE 0
[  200.401506] Oops: 0002 [#5] PREEMPT SMP KASAN NOPTI
[  200.402140] CPU: 1 PID: 6690 Comm: syz-executor.6 Tainted: G      D            6.1.0-rc3-next-20221031 #1
[  200.403333] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[  200.404361] RIP: 0010:__memset+0x24/0x50
[  200.404919] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  200.407177] RSP: 0018:ffff888042027cc0 EFLAGS: 00010212
[  200.407856] RAX: 0000000000000000 RBX: ffff88800c0146c0 RCX: 1ffffe21fe6018aa
[  200.408750] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  200.409639] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed10018028d8
[  200.410560] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  200.411451] R13: ffff88800c0146c0 R14: ffffffff815f27a0 R15: 1ffff110011ae01f
[  200.412479] FS:  00007f1cd7993700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000
[  200.413577] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  200.414308] CR2: ffffed100fffc000 CR3: 0000000036ef4000 CR4: 0000000000350ee0
[  200.415213] Call Trace:
[  200.415554]  <TASK>
[  200.415854]  kasan_unpoison+0x23/0x60
[  200.416361]  mempool_exit+0x1c2/0x330
[  200.416877]  bioset_exit+0x2c9/0x630
[  200.417366]  ? _raw_spin_unlock+0x24/0x50
[  200.417919]  ? blkg_destroy_all.isra.0+0x157/0x230
[  200.418588]  disk_release+0x143/0x490
[  200.419091]  ? disk_release+0x0/0x490
[  200.419593]  ? device_release+0x0/0x250
[  200.420106]  device_release+0xa2/0x250
[  200.420617]  ? device_release+0x0/0x250
[  200.421128]  kobject_put+0x173/0x280
[  200.421624]  put_device+0x1b/0x40
[  200.422084]  put_disk+0x41/0x60
[  200.422548]  loop_control_ioctl+0x4d1/0x630
[  200.423115]  ? loop_control_ioctl+0x0/0x630
[  200.423682]  ? selinux_file_ioctl+0xb1/0x270
[  200.424266]  ? selinux_file_ioctl+0x2/0x270
[  200.424850]  ? loop_control_ioctl+0x0/0x630
[  200.425409]  __x64_sys_ioctl+0x19a/0x220
[  200.425954]  do_syscall_64+0x3b/0xa0
[  200.426460]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[  200.427113] RIP: 0033:0x7f1cda41db19
[  200.427590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  200.429801] RSP: 002b:00007f1cd7993188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  200.430749] RAX: ffffffffffffffda RBX: 00007f1cda530f60 RCX: 00007f1cda41db19
[  200.431627] RDX: 0000000000000004 RSI: 0000000000004c81 RDI: 0000000000000005
[  200.432509] RBP: 00007f1cda477f6d R08: 0000000000000000 R09: 0000000000000000
[  200.433392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  200.434274] R13: 00007ffc869460ef R14: 00007f1cd7993300 R15: 0000000000022000
[  200.435188]  </TASK>
[  200.435492] Modules linked in:
[  200.435908] CR2: ffffed100fffc000
[  200.436350] ---[ end trace 0000000000000000 ]---
[  200.436935] RIP: 0010:__memset+0x24/0x50
[  200.437481] Code: 90 90 90 90 90 90 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 <f3> 48 ab 89 d1 f3 aa 4c 89 c8 e9 4d d4 12 00 66 66 2e 0f 1f 84 00
[  200.439702] RSP: 0018:ffff8880343cfcc0 EFLAGS: 00010212
[  200.440374] RAX: 0000000000000000 RBX: ffff88800c0140c0 RCX: 1ffffe21fe601892
[  200.441259] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffed100fffc000
[  200.442140] RBP: ffff88800c02e3c0 R08: 0000000000000005 R09: ffffed1001802818
[  200.443040] R10: 0000000000000001 R11: 0000000000000001 R12: ffff88800c02e3c0
[  200.443918] R13: ffff88800c0140c0 R14: ffffffff815f27a0 R15: 1ffff1100112301f
[  200.444804] FS:  00007f1cd7993700(0000) GS:ffff88806d100000(0000) knlGS:0000000000000000
[  200.445795] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  200.446528] CR2: ffffed100fffc000 CR3: 0000000036ef4000 CR4: 0000000000350ee0
12:50:00 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000001440), 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f00000011c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x7}, 0x8200, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff)
migrate_pages(0x0, 0x9, &(0x7f0000000000)=0x23, &(0x7f0000000180)=0x10001)

12:50:00 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x80010, 0xffffffffffffffff, 0xa015000)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0xa015000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x11, 0x0, 0x0)
write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220)
r4 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x15182, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpgid(0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0xff, 0x4, 0x5, 0x3f, 0x0, 0x100000001, 0x10c4, 0xe, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_config_ext={0x2, 0x13439f45}, 0x43441, 0x9, 0x400, 0x0, 0x6, 0x101, 0x3, 0x0, 0x6, 0x0, 0x8}, 0x0, 0xc, r4, 0x9)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)="05ff232ef592436bf2d9", 0xa}, {&(0x7f0000000100)="9f", 0x1}], 0x2, 0x0, 0x0, 0x0)
sendfile(r3, r0, 0x0, 0xfffffdef)

12:50:00 executing program 4:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x2000002, 0x13, r0, 0x0)
fallocate(r0, 0x0, 0x0, 0x8531)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_io_uring_submit(r1, 0x0, 0x0, 0x0)
preadv2(r2, &(0x7f00000003c0)=[{&(0x7f0000000140)=""/75, 0xfdef}], 0x1, 0x0, 0x0, 0x8)

12:50:00 executing program 7:
r0 = fork()
tkill(r0, 0x26)

12:50:00 executing program 5:
shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0)
shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r1 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil)
shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x2000)
shmat(r1, &(0x7f0000ff0000/0x2000)=nil, 0x0)
mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096)
r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
perf_event_open(&(0x7f0000000100)={0x3, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x6, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0)
ioctl$LOOP_CTL_REMOVE(r0, 0x4c81, r2)
mremap(&(0x7f0000ff7000/0x2000)=nil, 0x2000, 0x2000, 0x7, &(0x7f0000ffe000/0x2000)=nil)

12:50:00 executing program 3:
ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x6, 0x0, 0x20, 0x81, 0x6, 0x89})
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000001280))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
epoll_create(0x4)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000001600), 0x400000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

12:50:00 executing program 1:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005e2c0)={0x0, 0x0, "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", "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"})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x301c03, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000240)='\x00', &(0x7f0000000300)='./file2\x00', 0xffffffffffffffff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8001)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendfile(r1, r0, 0x0, 0xfffffdef)
syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f0000000c80)='./file2\x00', 0x6, 0x1, &(0x7f0000000d00)=[{&(0x7f0000000cc0)="7403ea043df365", 0x7, 0x2}], 0x10020, &(0x7f0000000e80)={[{@mode={'mode', 0x3d, 0x8}}, {}, {}], [{@appraise}]})
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000040), 0x4)
write$binfmt_aout(r2, &(0x7f0000000340)={{0x10b, 0x3, 0x8, 0xd9, 0x3dc, 0x1ff, 0x320, 0x7}, "1597e7a38685abc1b8e50129d8c3505f", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x930)

12:50:00 executing program 6:
inotify_add_watch(0xffffffffffffffff, 0x0, 0xca0285f67e8223d3)

12:50:00 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x20}}, 0x0)

12:50:00 executing program 7:
r0 = fork()
tkill(r0, 0x26)

12:50:00 executing program 4:
r0 = fork()
tkill(r0, 0x26)

12:50:01 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x20}}, 0x0)

12:50:01 executing program 5:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_DISCONNECT(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x14}, 0x14}}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_STATUS(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000500)={0x14}, 0x14}}, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000600), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_STATICADD(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000800)={0x14}, 0x14}}, 0x0)
io_setup(0x800, &(0x7f0000000a80)=<r3=>0x0)
io_getevents(r3, 0x1, 0x1, &(0x7f0000000ac0)=[{}], 0x0)

12:50:01 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x80010, 0xffffffffffffffff, 0xa015000)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0xa015000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x11, 0x0, 0x0)
write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220)
r4 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x15182, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpgid(0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0xff, 0x4, 0x5, 0x3f, 0x0, 0x100000001, 0x10c4, 0xe, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_config_ext={0x2, 0x13439f45}, 0x43441, 0x9, 0x400, 0x0, 0x6, 0x101, 0x3, 0x0, 0x6, 0x0, 0x8}, 0x0, 0xc, r4, 0x9)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)="05ff232ef592436bf2d9", 0xa}, {&(0x7f0000000100)="9f", 0x1}], 0x2, 0x0, 0x0, 0x0)
sendfile(r3, r0, 0x0, 0xfffffdef)

12:50:01 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000001440), 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f00000011c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x7}, 0x8200, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff)
migrate_pages(0x0, 0x9, &(0x7f0000000000)=0x23, &(0x7f0000000180)=0x10001)

12:50:01 executing program 7:
r0 = fork()
tkill(r0, 0x26)

12:50:01 executing program 3:
ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x6, 0x0, 0x20, 0x81, 0x6, 0x89})
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000001280))
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
epoll_create(0x4)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000001600), 0x400000, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

12:50:01 executing program 1:
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x2, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f000005e2c0)={0x0, 0x0, "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", "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"})
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000001c0), 0x301c03, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000240)='\x00', &(0x7f0000000300)='./file2\x00', 0xffffffffffffffff)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x8001)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb)
sendfile(r1, r0, 0x0, 0xfffffdef)
syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f0000000c80)='./file2\x00', 0x6, 0x1, &(0x7f0000000d00)=[{&(0x7f0000000cc0)="7403ea043df365", 0x7, 0x2}], 0x10020, &(0x7f0000000e80)={[{@mode={'mode', 0x3d, 0x8}}, {}, {}], [{@appraise}]})
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000040), 0x4)
write$binfmt_aout(r2, &(0x7f0000000340)={{0x10b, 0x3, 0x8, 0xd9, 0x3dc, 0x1ff, 0x320, 0x7}, "1597e7a38685abc1b8e50129d8c3505f", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x930)

12:50:01 executing program 4:
r0 = fork()
tkill(r0, 0x26)

12:50:01 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x20}}, 0x0)

12:50:01 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000001700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x4}]}, 0x20}}, 0x0)

12:50:01 executing program 7:
r0 = fork()
tkill(r0, 0x26)

12:50:01 executing program 4:
r0 = fork()
tkill(r0, 0x26)

12:50:01 executing program 6:
setpgid(0x0, 0x0)

12:50:02 executing program 6:
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f00000000c0)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0xfdef, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa7700c24d06a7080045"], 0x0)

12:50:02 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(&(0x7f00000001c0)={0x123363500, &(0x7f0000000180), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_timeval(r0, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10)

12:50:02 executing program 2:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000001440), 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f00000011c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7, 0x7}, 0x8200, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff)
migrate_pages(0x0, 0x9, &(0x7f0000000000)=0x23, &(0x7f0000000180)=0x10001)

12:50:02 executing program 3:
perf_event_open(&(0x7f00000015c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x401a012, r0, 0x0)

12:50:02 executing program 5:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r0=>0xffffffffffffffff, @ANYBLOB="0900001780000008"])
r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$getflags(0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000001580)=0x6)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
openat(r1, &(0x7f0000000100)='./file0\x00', 0x40000, 0x41)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'rose0\x00'})
close_range(r2, 0xffffffffffffffff, 0x0)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, &(0x7f0000000080)={0x0, 0x3, [@dev={'\xaa\xaa\xaa\xaa\xaa', 0x28}, @broadcast, @link_local]})

12:50:02 executing program 7:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r0, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff13, 0x33fe0)
connect$unix(r0, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)

12:50:02 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000a80), 0x4)

12:50:02 executing program 0:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x80010, 0xffffffffffffffff, 0xa015000)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, 0x0)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, r1, 0xa015000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x11, 0x0, 0x0)
write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220)
r4 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x15182, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpgid(0x0)
perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0xff, 0x4, 0x5, 0x3f, 0x0, 0x100000001, 0x10c4, 0xe, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_config_ext={0x2, 0x13439f45}, 0x43441, 0x9, 0x400, 0x0, 0x6, 0x101, 0x3, 0x0, 0x6, 0x0, 0x8}, 0x0, 0xc, r4, 0x9)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pwritev2(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)="05ff232ef592436bf2d9", 0xa}, {&(0x7f0000000100)="9f", 0x1}], 0x2, 0x0, 0x0, 0x0)
sendfile(r3, r0, 0x0, 0xfffffdef)

12:50:02 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x428, 0x1, 0x0, 0x0, 0x6, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x28}}, 0x0)
socket$inet6(0xa, 0x1, 0x0)

12:50:02 executing program 1:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x428, 0x1, 0x0, 0x0, 0x6, 0xfffffffb}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x28}}, 0x0)
socket$inet6(0xa, 0x1, 0x0)

12:50:02 executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, &(0x7f00000000c0)={0x0, 0x0, 0xffffffffffffffff, 0x9})

12:50:02 executing program 4:
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}}}, 0x7)

12:50:02 executing program 7:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r0, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff13, 0x33fe0)
connect$unix(r0, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)

12:50:02 executing program 3:
perf_event_open(&(0x7f00000015c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x401a012, r0, 0x0)

12:50:03 executing program 4:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r0, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff13, 0x33fe0)
connect$unix(r0, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)

12:50:03 executing program 7:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r0, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff13, 0x33fe0)
connect$unix(r0, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)

12:50:03 executing program 3:
perf_event_open(&(0x7f00000015c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x401a012, r0, 0x0)


VM DIAGNOSIS:
12:49:53  Registers:
info registers vcpu 0
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff82451091 RDI=ffffffff879a19e0 RBP=ffffffff879a19a0 RSP=ffff8880343cf508
R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001
R12=000000000000002e R13=ffffffff879a19a0 R14=0000000000000010 R15=ffffffff82451080
RIP=ffffffff824510e9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f4404209700 00000000 00000000
GS =0000 ffff88806d000000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe69e5001000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe69e4fff000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=ffffed100fffc000 CR3=000000000d3be000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=756e696c2d34365f3638782f62696c2f XMM01=00362e6f732e6362696c2f756e672d78
XMM02=ffff0000000000ffffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffffff815dba3e RDX=1ffffd400003d758
RSI=0000000000000001 RDI=0000000000000000 RBP=ffffea00001ebac0 RSP=ffff8880417f7ba0
R8 =0000000000000000 R9 =ffffea00001ebac7 R10=fffff9400003d758 R11=0000000000000001
R12=ffffea00001ebac0 R13=0000000000000001 R14=000000000000003d R15=dffffc0000000000
RIP=ffffffff81482694 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 00000000 00000000
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f41273d9540 00000000 00000000
GS =0000 ffff88806d100000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe1a31410000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe1a3140e000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f412743fb90 CR3=00000000357c8000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=2d0065626f7270646f6d2f6e6962732f
XMM02=00ff0000000000000000000000000000 XMM03=00000000000000000000ff00000000ff
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000