Warning: Permanently added '[localhost]:3103' (ECDSA) to the list of known hosts.
2023/12/02 16:27:00 fuzzer started
2023/12/02 16:27:00 dialing manager at localhost:35423
syzkaller login: [   27.671915] cgroup: Unknown subsys name 'net'
[   27.673722] cgroup: Unknown subsys name 'net_prio'
[   27.676276] cgroup: Unknown subsys name 'devices'
[   27.677565] cgroup: Unknown subsys name 'blkio'
[   27.722546] cgroup: Unknown subsys name 'hugetlb'
[   27.723795] cgroup: Unknown subsys name 'rlimit'
2023/12/02 16:27:13 syscalls: 2215
2023/12/02 16:27:13 code coverage: enabled
2023/12/02 16:27:13 comparison tracing: enabled
2023/12/02 16:27:13 extra coverage: enabled
2023/12/02 16:27:13 setuid sandbox: enabled
2023/12/02 16:27:13 namespace sandbox: enabled
2023/12/02 16:27:13 Android sandbox: enabled
2023/12/02 16:27:13 fault injection: enabled
2023/12/02 16:27:13 leak checking: enabled
2023/12/02 16:27:13 net packet injection: enabled
2023/12/02 16:27:13 net device setup: enabled
2023/12/02 16:27:13 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2023/12/02 16:27:13 devlink PCI setup: PCI device 0000:00:10.0 is not available
2023/12/02 16:27:13 USB emulation: enabled
2023/12/02 16:27:13 hci packet injection: enabled
2023/12/02 16:27:13 wifi device emulation: enabled
2023/12/02 16:27:13 802.15.4 emulation: enabled
2023/12/02 16:27:13 fetching corpus: 0, signal 0/2000 (executing program)
2023/12/02 16:27:13 fetching corpus: 42, signal 23877/27538 (executing program)
2023/12/02 16:27:13 fetching corpus: 73, signal 41230/46385 (executing program)
2023/12/02 16:27:13 fetching corpus: 118, signal 47818/54481 (executing program)
2023/12/02 16:27:13 fetching corpus: 168, signal 61490/69278 (executing program)
2023/12/02 16:27:14 fetching corpus: 215, signal 72433/81338 (executing program)
2023/12/02 16:27:14 fetching corpus: 265, signal 79595/89647 (executing program)
2023/12/02 16:27:14 fetching corpus: 315, signal 86828/97900 (executing program)
2023/12/02 16:27:14 fetching corpus: 364, signal 92000/104148 (executing program)
2023/12/02 16:27:14 fetching corpus: 414, signal 95831/109099 (executing program)
2023/12/02 16:27:14 fetching corpus: 463, signal 100356/114599 (executing program)
2023/12/02 16:27:14 fetching corpus: 513, signal 106239/121241 (executing program)
2023/12/02 16:27:15 fetching corpus: 560, signal 110034/125872 (executing program)
2023/12/02 16:27:15 fetching corpus: 609, signal 114580/131188 (executing program)
2023/12/02 16:27:15 fetching corpus: 658, signal 117177/134675 (executing program)
2023/12/02 16:27:15 fetching corpus: 708, signal 120395/138711 (executing program)
2023/12/02 16:27:15 fetching corpus: 757, signal 123902/142965 (executing program)
2023/12/02 16:27:15 fetching corpus: 807, signal 126412/146256 (executing program)
2023/12/02 16:27:15 fetching corpus: 857, signal 128807/149429 (executing program)
2023/12/02 16:27:15 fetching corpus: 907, signal 132650/153780 (executing program)
2023/12/02 16:27:16 fetching corpus: 954, signal 135310/157119 (executing program)
2023/12/02 16:27:16 fetching corpus: 1003, signal 137627/160128 (executing program)
2023/12/02 16:27:16 fetching corpus: 1053, signal 139447/162677 (executing program)
2023/12/02 16:27:16 fetching corpus: 1103, signal 141912/165731 (executing program)
2023/12/02 16:27:16 fetching corpus: 1153, signal 143467/168034 (executing program)
2023/12/02 16:27:16 fetching corpus: 1203, signal 145501/170610 (executing program)
2023/12/02 16:27:16 fetching corpus: 1253, signal 147831/173430 (executing program)
2023/12/02 16:27:17 fetching corpus: 1302, signal 149567/175755 (executing program)
2023/12/02 16:27:17 fetching corpus: 1352, signal 150809/177676 (executing program)
2023/12/02 16:27:17 fetching corpus: 1401, signal 152471/179910 (executing program)
2023/12/02 16:27:17 fetching corpus: 1451, signal 154301/182306 (executing program)
2023/12/02 16:27:17 fetching corpus: 1500, signal 155832/184364 (executing program)
2023/12/02 16:27:17 fetching corpus: 1550, signal 158321/187179 (executing program)
2023/12/02 16:27:17 fetching corpus: 1600, signal 160129/189417 (executing program)
2023/12/02 16:27:18 fetching corpus: 1650, signal 161996/191717 (executing program)
2023/12/02 16:27:18 fetching corpus: 1700, signal 163777/193882 (executing program)
2023/12/02 16:27:18 fetching corpus: 1750, signal 165528/196015 (executing program)
2023/12/02 16:27:18 fetching corpus: 1799, signal 168339/198870 (executing program)
2023/12/02 16:27:18 fetching corpus: 1849, signal 169870/200809 (executing program)
2023/12/02 16:27:18 fetching corpus: 1899, signal 171557/202763 (executing program)
2023/12/02 16:27:18 fetching corpus: 1949, signal 173133/204670 (executing program)
2023/12/02 16:27:18 fetching corpus: 1997, signal 174639/206573 (executing program)
2023/12/02 16:27:19 fetching corpus: 2047, signal 175895/208190 (executing program)
2023/12/02 16:27:19 fetching corpus: 2097, signal 177142/209821 (executing program)
2023/12/02 16:27:19 fetching corpus: 2147, signal 178456/211454 (executing program)
2023/12/02 16:27:19 fetching corpus: 2197, signal 180004/213234 (executing program)
2023/12/02 16:27:19 fetching corpus: 2246, signal 181188/214731 (executing program)
2023/12/02 16:27:19 fetching corpus: 2296, signal 182187/216129 (executing program)
2023/12/02 16:27:19 fetching corpus: 2346, signal 183464/217659 (executing program)
2023/12/02 16:27:19 fetching corpus: 2396, signal 185332/219547 (executing program)
2023/12/02 16:27:20 fetching corpus: 2446, signal 186435/220929 (executing program)
2023/12/02 16:27:20 fetching corpus: 2496, signal 187852/222466 (executing program)
2023/12/02 16:27:20 fetching corpus: 2545, signal 189032/223889 (executing program)
2023/12/02 16:27:20 fetching corpus: 2595, signal 190319/225335 (executing program)
2023/12/02 16:27:20 fetching corpus: 2644, signal 191047/226410 (executing program)
2023/12/02 16:27:20 fetching corpus: 2694, signal 192392/227869 (executing program)
2023/12/02 16:27:20 fetching corpus: 2744, signal 193477/229194 (executing program)
2023/12/02 16:27:20 fetching corpus: 2794, signal 194566/230466 (executing program)
2023/12/02 16:27:20 fetching corpus: 2844, signal 195469/231604 (executing program)
2023/12/02 16:27:21 fetching corpus: 2894, signal 196267/232656 (executing program)
2023/12/02 16:27:21 fetching corpus: 2943, signal 197011/233721 (executing program)
2023/12/02 16:27:21 fetching corpus: 2993, signal 197862/234810 (executing program)
2023/12/02 16:27:21 fetching corpus: 3043, signal 198852/235955 (executing program)
2023/12/02 16:27:21 fetching corpus: 3093, signal 199701/236989 (executing program)
2023/12/02 16:27:21 fetching corpus: 3143, signal 200552/237990 (executing program)
2023/12/02 16:27:21 fetching corpus: 3193, signal 201407/238989 (executing program)
2023/12/02 16:27:21 fetching corpus: 3242, signal 202264/240023 (executing program)
2023/12/02 16:27:21 fetching corpus: 3291, signal 203283/241155 (executing program)
2023/12/02 16:27:22 fetching corpus: 3341, signal 204153/242098 (executing program)
2023/12/02 16:27:22 fetching corpus: 3391, signal 205205/243221 (executing program)
2023/12/02 16:27:22 fetching corpus: 3440, signal 206250/244310 (executing program)
2023/12/02 16:27:22 fetching corpus: 3490, signal 207184/245324 (executing program)
2023/12/02 16:27:22 fetching corpus: 3539, signal 207957/246215 (executing program)
2023/12/02 16:27:22 fetching corpus: 3589, signal 209207/247371 (executing program)
2023/12/02 16:27:22 fetching corpus: 3639, signal 210369/248393 (executing program)
2023/12/02 16:27:22 fetching corpus: 3687, signal 211815/249554 (executing program)
2023/12/02 16:27:23 fetching corpus: 3737, signal 212549/250376 (executing program)
2023/12/02 16:27:23 fetching corpus: 3787, signal 213316/251179 (executing program)
2023/12/02 16:27:23 fetching corpus: 3835, signal 214163/252036 (executing program)
2023/12/02 16:27:23 fetching corpus: 3885, signal 215114/252923 (executing program)
2023/12/02 16:27:23 fetching corpus: 3935, signal 216077/253808 (executing program)
2023/12/02 16:27:23 fetching corpus: 3985, signal 216961/254695 (executing program)
2023/12/02 16:27:23 fetching corpus: 4035, signal 217763/255444 (executing program)
2023/12/02 16:27:24 fetching corpus: 4085, signal 218315/256100 (executing program)
2023/12/02 16:27:24 fetching corpus: 4134, signal 219201/256888 (executing program)
2023/12/02 16:27:24 fetching corpus: 4183, signal 220016/257665 (executing program)
2023/12/02 16:27:24 fetching corpus: 4233, signal 220849/258489 (executing program)
2023/12/02 16:27:24 fetching corpus: 4283, signal 221770/259228 (executing program)
2023/12/02 16:27:24 fetching corpus: 4332, signal 222514/259923 (executing program)
2023/12/02 16:27:24 fetching corpus: 4382, signal 223514/260732 (executing program)
2023/12/02 16:27:25 fetching corpus: 4432, signal 224144/261343 (executing program)
2023/12/02 16:27:25 fetching corpus: 4482, signal 224988/262053 (executing program)
2023/12/02 16:27:25 fetching corpus: 4532, signal 225688/262668 (executing program)
2023/12/02 16:27:25 fetching corpus: 4579, signal 226331/263299 (executing program)
2023/12/02 16:27:25 fetching corpus: 4629, signal 226959/263867 (executing program)
2023/12/02 16:27:25 fetching corpus: 4679, signal 227548/264479 (executing program)
2023/12/02 16:27:25 fetching corpus: 4729, signal 228002/264986 (executing program)
2023/12/02 16:27:26 fetching corpus: 4779, signal 228597/265561 (executing program)
2023/12/02 16:27:26 fetching corpus: 4829, signal 229239/266099 (executing program)
2023/12/02 16:27:26 fetching corpus: 4879, signal 229959/266661 (executing program)
2023/12/02 16:27:26 fetching corpus: 4929, signal 230572/267191 (executing program)
2023/12/02 16:27:26 fetching corpus: 4979, signal 231092/267701 (executing program)
2023/12/02 16:27:26 fetching corpus: 5029, signal 231813/268283 (executing program)
2023/12/02 16:27:26 fetching corpus: 5079, signal 232334/268744 (executing program)
2023/12/02 16:27:27 fetching corpus: 5129, signal 232928/269217 (executing program)
2023/12/02 16:27:27 fetching corpus: 5179, signal 233347/269679 (executing program)
2023/12/02 16:27:27 fetching corpus: 5229, signal 233936/270206 (executing program)
2023/12/02 16:27:27 fetching corpus: 5279, signal 234582/270695 (executing program)
2023/12/02 16:27:27 fetching corpus: 5329, signal 235117/271190 (executing program)
2023/12/02 16:27:27 fetching corpus: 5379, signal 235915/271742 (executing program)
2023/12/02 16:27:27 fetching corpus: 5429, signal 236245/272158 (executing program)
2023/12/02 16:27:28 fetching corpus: 5479, signal 236824/272591 (executing program)
2023/12/02 16:27:28 fetching corpus: 5529, signal 237376/272996 (executing program)
2023/12/02 16:27:28 fetching corpus: 5579, signal 237921/273436 (executing program)
2023/12/02 16:27:28 fetching corpus: 5628, signal 238429/273872 (executing program)
2023/12/02 16:27:28 fetching corpus: 5677, signal 239030/274314 (executing program)
2023/12/02 16:27:28 fetching corpus: 5727, signal 239697/274732 (executing program)
2023/12/02 16:27:28 fetching corpus: 5776, signal 240186/275112 (executing program)
2023/12/02 16:27:29 fetching corpus: 5826, signal 240633/275468 (executing program)
2023/12/02 16:27:29 fetching corpus: 5874, signal 241493/275950 (executing program)
2023/12/02 16:27:29 fetching corpus: 5924, signal 242053/276276 (executing program)
2023/12/02 16:27:29 fetching corpus: 5973, signal 242759/276681 (executing program)
2023/12/02 16:27:29 fetching corpus: 6023, signal 243258/276998 (executing program)
2023/12/02 16:27:29 fetching corpus: 6073, signal 243800/277328 (executing program)
2023/12/02 16:27:29 fetching corpus: 6123, signal 244285/277671 (executing program)
2023/12/02 16:27:29 fetching corpus: 6172, signal 244848/277983 (executing program)
2023/12/02 16:27:29 fetching corpus: 6222, signal 245694/278342 (executing program)
2023/12/02 16:27:30 fetching corpus: 6272, signal 246200/278634 (executing program)
2023/12/02 16:27:30 fetching corpus: 6322, signal 246718/278940 (executing program)
2023/12/02 16:27:30 fetching corpus: 6371, signal 247201/279254 (executing program)
2023/12/02 16:27:30 fetching corpus: 6420, signal 247625/279556 (executing program)
2023/12/02 16:27:30 fetching corpus: 6470, signal 248129/279852 (executing program)
2023/12/02 16:27:30 fetching corpus: 6520, signal 248841/280126 (executing program)
2023/12/02 16:27:30 fetching corpus: 6570, signal 249279/280422 (executing program)
2023/12/02 16:27:31 fetching corpus: 6619, signal 249570/280672 (executing program)
2023/12/02 16:27:31 fetching corpus: 6669, signal 249894/280918 (executing program)
2023/12/02 16:27:31 fetching corpus: 6718, signal 250440/281218 (executing program)
2023/12/02 16:27:31 fetching corpus: 6768, signal 250950/281475 (executing program)
2023/12/02 16:27:31 fetching corpus: 6816, signal 251284/281745 (executing program)
2023/12/02 16:27:31 fetching corpus: 6866, signal 251680/282010 (executing program)
2023/12/02 16:27:31 fetching corpus: 6916, signal 252099/282212 (executing program)
2023/12/02 16:27:31 fetching corpus: 6965, signal 252569/282256 (executing program)
2023/12/02 16:27:32 fetching corpus: 7014, signal 253183/282256 (executing program)
2023/12/02 16:27:32 fetching corpus: 7063, signal 253638/282256 (executing program)
2023/12/02 16:27:32 fetching corpus: 7113, signal 254044/282256 (executing program)
2023/12/02 16:27:32 fetching corpus: 7163, signal 254655/282256 (executing program)
2023/12/02 16:27:32 fetching corpus: 7212, signal 254979/282256 (executing program)
2023/12/02 16:27:32 fetching corpus: 7262, signal 255324/282256 (executing program)
2023/12/02 16:27:32 fetching corpus: 7312, signal 255827/282256 (executing program)
2023/12/02 16:27:33 fetching corpus: 7362, signal 256351/282256 (executing program)
2023/12/02 16:27:33 fetching corpus: 7412, signal 256820/282302 (executing program)
2023/12/02 16:27:33 fetching corpus: 7461, signal 257253/282302 (executing program)
2023/12/02 16:27:33 fetching corpus: 7511, signal 257573/282302 (executing program)
2023/12/02 16:27:33 fetching corpus: 7561, signal 258012/282367 (executing program)
2023/12/02 16:27:33 fetching corpus: 7611, signal 258417/282382 (executing program)
2023/12/02 16:27:33 fetching corpus: 7660, signal 258806/282382 (executing program)
2023/12/02 16:27:33 fetching corpus: 7709, signal 259097/282382 (executing program)
2023/12/02 16:27:33 fetching corpus: 7759, signal 259433/282382 (executing program)
2023/12/02 16:27:34 fetching corpus: 7808, signal 259872/282384 (executing program)
2023/12/02 16:27:34 fetching corpus: 7858, signal 260272/282384 (executing program)
2023/12/02 16:27:34 fetching corpus: 7907, signal 260760/282394 (executing program)
2023/12/02 16:27:34 fetching corpus: 7957, signal 261109/282394 (executing program)
2023/12/02 16:27:34 fetching corpus: 8007, signal 261446/282394 (executing program)
2023/12/02 16:27:34 fetching corpus: 8057, signal 261875/282402 (executing program)
2023/12/02 16:27:34 fetching corpus: 8107, signal 262160/282403 (executing program)
2023/12/02 16:27:35 fetching corpus: 8157, signal 262630/282403 (executing program)
2023/12/02 16:27:35 fetching corpus: 8207, signal 262973/282403 (executing program)
2023/12/02 16:27:35 fetching corpus: 8257, signal 263350/282404 (executing program)
2023/12/02 16:27:35 fetching corpus: 8307, signal 263700/282406 (executing program)
2023/12/02 16:27:35 fetching corpus: 8357, signal 264051/282411 (executing program)
2023/12/02 16:27:35 fetching corpus: 8407, signal 264498/282424 (executing program)
2023/12/02 16:27:35 fetching corpus: 8457, signal 264800/282424 (executing program)
2023/12/02 16:27:35 fetching corpus: 8507, signal 265176/282428 (executing program)
2023/12/02 16:27:35 fetching corpus: 8557, signal 265563/282428 (executing program)
2023/12/02 16:27:36 fetching corpus: 8606, signal 266405/282428 (executing program)
2023/12/02 16:27:36 fetching corpus: 8655, signal 266669/282430 (executing program)
2023/12/02 16:27:36 fetching corpus: 8704, signal 267041/282431 (executing program)
2023/12/02 16:27:36 fetching corpus: 8753, signal 267347/282485 (executing program)
2023/12/02 16:27:36 fetching corpus: 8802, signal 267672/282485 (executing program)
2023/12/02 16:27:36 fetching corpus: 8851, signal 268036/282485 (executing program)
2023/12/02 16:27:36 fetching corpus: 8900, signal 268376/282485 (executing program)
2023/12/02 16:27:36 fetching corpus: 8950, signal 268667/282485 (executing program)
2023/12/02 16:27:36 fetching corpus: 8999, signal 269044/282485 (executing program)
2023/12/02 16:27:37 fetching corpus: 9048, signal 269359/282489 (executing program)
2023/12/02 16:27:37 fetching corpus: 9097, signal 269631/282494 (executing program)
2023/12/02 16:27:37 fetching corpus: 9147, signal 269906/282494 (executing program)
2023/12/02 16:27:37 fetching corpus: 9196, signal 270306/282519 (executing program)
2023/12/02 16:27:37 fetching corpus: 9243, signal 270587/282519 (executing program)
2023/12/02 16:27:37 fetching corpus: 9292, signal 270950/282519 (executing program)
2023/12/02 16:27:37 fetching corpus: 9342, signal 271327/282519 (executing program)
2023/12/02 16:27:37 fetching corpus: 9392, signal 271610/282519 (executing program)
2023/12/02 16:27:38 fetching corpus: 9442, signal 272001/282521 (executing program)
2023/12/02 16:27:38 fetching corpus: 9491, signal 272304/282521 (executing program)
2023/12/02 16:27:38 fetching corpus: 9541, signal 272548/282521 (executing program)
2023/12/02 16:27:38 fetching corpus: 9591, signal 272867/282521 (executing program)
2023/12/02 16:27:38 fetching corpus: 9640, signal 273305/282553 (executing program)
2023/12/02 16:27:38 fetching corpus: 9690, signal 273725/282553 (executing program)
2023/12/02 16:27:38 fetching corpus: 9739, signal 274055/282555 (executing program)
2023/12/02 16:27:38 fetching corpus: 9789, signal 274364/282557 (executing program)
2023/12/02 16:27:38 fetching corpus: 9839, signal 274870/282589 (executing program)
2023/12/02 16:27:39 fetching corpus: 9889, signal 275217/282614 (executing program)
2023/12/02 16:27:39 fetching corpus: 9939, signal 275487/282621 (executing program)
2023/12/02 16:27:39 fetching corpus: 9989, signal 275950/282621 (executing program)
2023/12/02 16:27:39 fetching corpus: 10039, signal 276483/282621 (executing program)
2023/12/02 16:27:39 fetching corpus: 10088, signal 276720/282637 (executing program)
2023/12/02 16:27:39 fetching corpus: 10138, signal 277189/282637 (executing program)
2023/12/02 16:27:39 fetching corpus: 10188, signal 277496/282637 (executing program)
2023/12/02 16:27:39 fetching corpus: 10238, signal 277831/282645 (executing program)
2023/12/02 16:27:40 fetching corpus: 10287, signal 278152/282652 (executing program)
2023/12/02 16:27:40 fetching corpus: 10336, signal 278593/282652 (executing program)
2023/12/02 16:27:40 fetching corpus: 10385, signal 278992/282677 (executing program)
2023/12/02 16:27:40 fetching corpus: 10435, signal 279237/282690 (executing program)
2023/12/02 16:27:40 fetching corpus: 10484, signal 279579/282690 (executing program)
2023/12/02 16:27:40 fetching corpus: 10534, signal 279959/282690 (executing program)
2023/12/02 16:27:40 fetching corpus: 10584, signal 280156/282690 (executing program)
2023/12/02 16:27:40 fetching corpus: 10601, signal 280235/282725 (executing program)
2023/12/02 16:27:40 fetching corpus: 10601, signal 280235/282725 (executing program)
2023/12/02 16:27:43 starting 8 fuzzer processes
16:27:43 executing program 0:
r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ftruncate(0xffffffffffffffff, 0x1000003)
r1 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000100)=ANY=[@ANYRES64, @ANYRES64, @ANYRES64=r1])
r2 = signalfd4(r0, &(0x7f0000000080)={[0x46ff]}, 0x8, 0x80000)
ioctl$sock_inet_SIOCDARP(r2, 0x8953, &(0x7f0000000180)={{0x2, 0x4e24, @local}, {0x6, @remote}, 0x20, {0x2, 0x4e22, @remote}, 'vxcan1\x00'})
connect$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10)
fcntl$notify(r0, 0x402, 0x80000045)
shutdown(r1, 0x1)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
fcntl$F_GET_FILE_RW_HINT(r3, 0x40d, &(0x7f00000003c0))
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)={0x800005, 0x0, 0x8000, 0x0, 0xfffffffb})
recvmmsg$unix(r2, &(0x7f0000000300)=[{{0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000240)=[@rights={{0x1c, 0x1, 0x1, [<r4=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x98}}], 0x1, 0x120, &(0x7f0000000340)={0x77359400})
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x509940, 0x11)
getsockopt$bt_BT_POWER(r4, 0x112, 0x9, &(0x7f0000000200)=0x4, &(0x7f0000000380)=0x1)
connect$inet(r5, &(0x7f0000000400)={0x2, 0x4e24, @empty}, 0x10)
unshare(0x48020200)

16:27:43 executing program 1:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc)
getsockopt$netlink(r0, 0x10e, 0x9, &(0x7f0000000000)=""/6, &(0x7f0000000040)=0x6)

16:27:43 executing program 2:
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="b8000000130001000000000000000000ffffffff000000000000000000000000ff0200000000000000000000ffff000000000000000000000a"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=@flushpolicy={0x10, 0x1d, 0x1}, 0x10}}, 0x0)

16:27:43 executing program 3:
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x500}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
process_vm_readv(0x0, 0x0, 0x0, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000001bc0)=""/122, 0x7a}, {0x0}], 0x3, 0x0)
r0 = gettid()
process_vm_readv(r0, &(0x7f0000001a40)=[{&(0x7f00000018c0)=""/31, 0x1f}, {&(0x7f0000001b40)=""/124, 0x7a}, {&(0x7f0000001980)=""/161, 0xa1}], 0x3, &(0x7f0000001ec0)=[{&(0x7f0000001a80)=""/101, 0x65}, {&(0x7f0000002240)=""/183, 0xffffffbc}, {&(0x7f0000001bc0)=""/122, 0x7a}, {&(0x7f0000001c40)=""/163, 0xa3}, {&(0x7f0000001d00)=""/231, 0xe7}, {&(0x7f0000001e00)}, {&(0x7f0000001e40)=""/9, 0x9}, {&(0x7f0000001b00)=""/46, 0x2e}], 0x8, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
gettid()
madvise(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)

16:27:43 executing program 5:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7ffc0000}]})
signalfd4(0xffffffffffffffff, &(0x7f0000000280), 0x8, 0x0)

16:27:43 executing program 4:
r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco}, 0x0)
io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0)

[   70.730243] audit: type=1400 audit(1701534463.489:6): avc:  denied  { execmem } for  pid=273 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
16:27:43 executing program 7:
bind$inet(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x0, 0x300)
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$rfkill(r0, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8)

16:27:43 executing program 6:
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000080)={{0x1}})
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SNDRV_TIMER_IOCTL_INFO(r0, 0x80e85411, &(0x7f0000000080))

[   74.033653] Bluetooth: hci2: command 0x0409 tx timeout
[   74.096121] Bluetooth: hci1: command 0x0409 tx timeout
[   74.097152] Bluetooth: hci0: command 0x0409 tx timeout
[   74.160057] Bluetooth: hci5: command 0x0409 tx timeout
[   74.160100] Bluetooth: hci6: command 0x0409 tx timeout
[   74.160888] Bluetooth: hci4: command 0x0409 tx timeout
[   74.224045] Bluetooth: hci3: command 0x0409 tx timeout
[   74.224068] Bluetooth: hci7: command 0x0409 tx timeout
[   76.080550] Bluetooth: hci2: command 0x041b tx timeout
[   76.144069] Bluetooth: hci0: command 0x041b tx timeout
[   76.144703] Bluetooth: hci1: command 0x041b tx timeout
[   76.208086] Bluetooth: hci6: command 0x041b tx timeout
[   76.208096] Bluetooth: hci4: command 0x041b tx timeout
[   76.209428] Bluetooth: hci5: command 0x041b tx timeout
[   76.272093] Bluetooth: hci7: command 0x041b tx timeout
[   76.272804] Bluetooth: hci3: command 0x041b tx timeout
[   78.128072] Bluetooth: hci2: command 0x040f tx timeout
[   78.192068] Bluetooth: hci1: command 0x040f tx timeout
[   78.192797] Bluetooth: hci0: command 0x040f tx timeout
[   78.256128] Bluetooth: hci5: command 0x040f tx timeout
[   78.256842] Bluetooth: hci6: command 0x040f tx timeout
[   78.257532] Bluetooth: hci4: command 0x040f tx timeout
[   78.320127] Bluetooth: hci3: command 0x040f tx timeout
[   78.320843] Bluetooth: hci7: command 0x040f tx timeout
[   80.176044] Bluetooth: hci2: command 0x0419 tx timeout
[   80.240119] Bluetooth: hci0: command 0x0419 tx timeout
[   80.240704] Bluetooth: hci1: command 0x0419 tx timeout
[   80.304075] Bluetooth: hci4: command 0x0419 tx timeout
[   80.304755] Bluetooth: hci6: command 0x0419 tx timeout
[   80.305717] Bluetooth: hci5: command 0x0419 tx timeout
[   80.368074] Bluetooth: hci7: command 0x0419 tx timeout
[   80.368678] Bluetooth: hci3: command 0x0419 tx timeout
[   87.731442] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.732313] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.733535] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   87.896764] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.898468] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.900083] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.901047] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.901369] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   87.904057] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   88.120792] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.122409] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.124894] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   88.215583] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.217426] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.219824] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   88.279471] audit: type=1400 audit(1701534481.038:7): avc:  denied  { open } for  pid=3858 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[   88.283861] audit: type=1400 audit(1701534481.039:8): avc:  denied  { kernel } for  pid=3858 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[   88.297057] hrtimer: interrupt took 33473 ns
[   88.326006] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.328061] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.330660] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   88.554142] 
[   88.554540] ======================================================
[   88.555800] WARNING: possible circular locking dependency detected
[   88.557087] 5.10.202 #1 Not tainted
[   88.561330] ------------------------------------------------------
[   88.562608] syz-executor.7/3859 is trying to acquire lock:
[   88.563738] ffff888017cb8ae8 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xa90
[   88.565722] 
[   88.565722] but task is already holding lock:
[   88.566918] ffff888017cb8f40 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0xef/0x1240
[   88.568678] 
[   88.568678] which lock already depends on the new lock.
[   88.568678] 
[   88.570338] 
[   88.570338] the existing dependency chain (in reverse order) is:
[   88.571838] 
[   88.571838] -> #3 (&hdev->req_lock){+.+.}-{3:3}:
[   88.573107]        __mutex_lock+0x13d/0x10b0
[   88.573997]        hci_dev_do_close+0xef/0x1240
[   88.574930]        hci_rfkill_set_block+0x166/0x1a0
[   88.575932]        rfkill_set_block+0x1fd/0x540
[   88.576864]        rfkill_fop_write+0x253/0x4b0
[   88.577819]        vfs_write+0x29a/0xa70
[   88.578631]        ksys_write+0x1f6/0x260
[   88.579469]        do_syscall_64+0x33/0x40
[   88.580321]        entry_SYSCALL_64_after_hwframe+0x62/0xc7
[   88.581450] 
[   88.581450] -> #2 (rfkill_global_mutex){+.+.}-{3:3}:
[   88.582797]        __mutex_lock+0x13d/0x10b0
[   88.583676]        rfkill_register+0x36/0xa10
[   88.584568]        hci_register_dev+0x42e/0xc00
[   88.585500]        __vhci_create_device+0x2c8/0x5c0
[   88.586520]        vhci_open_timeout+0x38/0x50
[   88.587431]        process_one_work+0x9a9/0x14b0
[   88.588372]        worker_thread+0x61d/0x1310
[   88.589269]        kthread+0x38f/0x470
[   88.590047]        ret_from_fork+0x22/0x30
[   88.590863] 
[   88.590863] -> #1 (&data->open_mutex){+.+.}-{3:3}:
[   88.592154]        __mutex_lock+0x13d/0x10b0
[   88.593031]        vhci_send_frame+0x63/0xa0
[   88.593916]        hci_send_frame+0x1b9/0x320
[   88.594813]        hci_tx_work+0x10af/0x1660
[   88.595688]        process_one_work+0x9a9/0x14b0
[   88.596632]        worker_thread+0x61d/0x1310
[   88.597526]        kthread+0x38f/0x470
[   88.598318]        ret_from_fork+0x22/0x30
[   88.599151] 
[   88.599151] -> #0 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}:
[   88.600724]        __lock_acquire+0x29e7/0x5b00
[   88.601664]        lock_acquire+0x197/0x470
[   88.602537]        __flush_work+0x105/0xa90
[   88.603397]        hci_dev_do_close+0x131/0x1240
[   88.604342]        hci_rfkill_set_block+0x166/0x1a0
[   88.605338]        rfkill_set_block+0x1fd/0x540
[   88.606283]        rfkill_fop_write+0x253/0x4b0
[   88.607215]        vfs_write+0x29a/0xa70
[   88.608032]        ksys_write+0x1f6/0x260
[   88.608860]        do_syscall_64+0x33/0x40
[   88.609718]        entry_SYSCALL_64_after_hwframe+0x62/0xc7
[   88.610840] 
[   88.610840] other info that might help us debug this:
[   88.610840] 
[   88.612454] Chain exists of:
[   88.612454]   (work_completion)(&hdev->tx_work) --> rfkill_global_mutex --> &hdev->req_lock
[   88.612454] 
[   88.615040]  Possible unsafe locking scenario:
[   88.615040] 
[   88.616230]        CPU0                    CPU1
[   88.617145]        ----                    ----
[   88.618077]   lock(&hdev->req_lock);
[   88.618820]                                lock(rfkill_global_mutex);
[   88.620138]                                lock(&hdev->req_lock);
[   88.621390]   lock((work_completion)(&hdev->tx_work));
[   88.622462] 
[   88.622462]  *** DEADLOCK ***
[   88.622462] 
[   88.623666] 2 locks held by syz-executor.7/3859:
[   88.624624]  #0: ffffffff856193e8 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0
[   88.626543]  #1: ffff888017cb8f40 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0xef/0x1240
[   88.628356] 
[   88.628356] stack backtrace:
[   88.629251] CPU: 1 PID: 3859 Comm: syz-executor.7 Not tainted 5.10.202 #1
[   88.630621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[   88.632296] Call Trace:
[   88.632825]  dump_stack+0x107/0x167
[   88.633556]  check_noncircular+0x263/0x2e0
[   88.634420]  ? register_lock_class+0xbb/0x17b0
[   88.635354]  ? print_circular_bug+0x470/0x470
[   88.636280]  ? alloc_chain_hlocks+0x1ec/0x5a0
[   88.637197]  __lock_acquire+0x29e7/0x5b00
[   88.638066]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[   88.639138]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[   88.640208]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[   88.641314]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[   88.642425]  lock_acquire+0x197/0x470
[   88.643200]  ? __flush_work+0xdd/0xa90
[   88.643991]  ? lock_release+0x680/0x680
[   88.644804]  ? lock_release+0x680/0x680
[   88.645631]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[   88.646704]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[   88.647802]  ? trace_hardirqs_on+0x5b/0x180
[   88.648680]  __flush_work+0x105/0xa90
[   88.649456]  ? __flush_work+0xdd/0xa90
[   88.650260]  ? queue_delayed_work_on+0xe0/0xe0
[   88.651200]  ? hci_dev_do_close+0xef/0x1240
[   88.652057]  ? mark_held_locks+0x9e/0xe0
[   88.652869]  ? mutex_lock_io_nested+0xf30/0xf30
[   88.653822]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[   88.654873]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[   88.655954]  ? trace_hardirqs_on+0x5b/0x180
[   88.656815]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[   88.657912]  ? hci_dev_do_close+0xef/0x1240
[   88.658775]  ? __cancel_work_timer+0x2a9/0x4c0
[   88.659694]  hci_dev_do_close+0x131/0x1240
[   88.660564]  ? rfkill_set_block+0x18f/0x540
[   88.661459]  ? hci_dev_open+0x350/0x350
[   88.662271]  ? mark_held_locks+0x9e/0xe0
[   88.663098]  ? trace_hardirqs_on+0x5b/0x180
[   88.663982]  hci_rfkill_set_block+0x166/0x1a0
[   88.664895]  ? hci_power_off+0x20/0x20
[   88.665699]  rfkill_set_block+0x1fd/0x540
[   88.666543]  rfkill_fop_write+0x253/0x4b0
[   88.667385]  ? rfkill_sync_work+0xa0/0xa0
[   88.668219]  ? rfkill_sync_work+0xa0/0xa0
[   88.669044]  vfs_write+0x29a/0xa70
[   88.669765]  ksys_write+0x1f6/0x260
[   88.670498]  ? __ia32_sys_read+0xb0/0xb0
[   88.671316]  ? lockdep_hardirqs_on_prepare+0x277/0x3e0
[   88.672361]  ? syscall_enter_from_user_mode+0x1d/0x50
[   88.673396]  do_syscall_64+0x33/0x40
[   88.674161]  entry_SYSCALL_64_after_hwframe+0x62/0xc7
[   88.675188] RIP: 0033:0x7fb4245e0b19
[   88.675937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[   88.679728] RSP: 002b:00007fb421b56188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   88.681289] RAX: ffffffffffffffda RBX: 00007fb4246f3f60 RCX: 00007fb4245e0b19
[   88.682758] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000004
[   88.684232] RBP: 00007fb42463af6d R08: 0000000000000000 R09: 0000000000000000
[   88.685703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   88.687160] R13: 00007fff2a6b90cf R14: 00007fb421b56300 R15: 0000000000022000
16:28:01 executing program 4:
r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco}, 0x0)
io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0)

16:28:01 executing program 4:
r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco}, 0x0)
io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0)

16:28:01 executing program 4:
r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=<r1=>0x0, &(0x7f00000000c0)=<r2=>0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco}, 0x0)
io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0)

16:28:01 executing program 4:
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f00000000c0))
pipe(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x0, @loopback=0x7f00000b}, {0x2, 0x0, @local}, {0x2, 0x0, @broadcast}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
creat(&(0x7f0000000240)='./file0\x00', 0x49)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0xa}, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @remote}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4)
sendmmsg(0xffffffffffffffff, &(0x7f0000003bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="5ff3f45ce5b93497f360366518365e86357ea4a71590a39a5d67caa46d6b06f1cca2aca00dc8955085b1e48673f6fc495a688468fee90b3124eae758f925923418834dc9cc02b0163fd41b1949410c20faa142b1e449d4e927d6fc21790b"], 0x10}}], 0x2, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fchdir(0xffffffffffffffff)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000080)={0x1, 0x5, 0x2})
fstatfs(r1, &(0x7f0000002e00)=""/4102)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

16:28:01 executing program 4:
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f00000000c0))
pipe(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x0, @loopback=0x7f00000b}, {0x2, 0x0, @local}, {0x2, 0x0, @broadcast}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
creat(&(0x7f0000000240)='./file0\x00', 0x49)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0xa}, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @remote}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4)
sendmmsg(0xffffffffffffffff, &(0x7f0000003bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="5ff3f45ce5b93497f360366518365e86357ea4a71590a39a5d67caa46d6b06f1cca2aca00dc8955085b1e48673f6fc495a688468fee90b3124eae758f925923418834dc9cc02b0163fd41b1949410c20faa142b1e449d4e927d6fc21790b"], 0x10}}], 0x2, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fchdir(0xffffffffffffffff)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000080)={0x1, 0x5, 0x2})
fstatfs(r1, &(0x7f0000002e00)=""/4102)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

16:28:02 executing program 4:
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f00000000c0))
pipe(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x0, @loopback=0x7f00000b}, {0x2, 0x0, @local}, {0x2, 0x0, @broadcast}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
creat(&(0x7f0000000240)='./file0\x00', 0x49)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0xa}, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @remote}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4)
sendmmsg(0xffffffffffffffff, &(0x7f0000003bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="5ff3f45ce5b93497f360366518365e86357ea4a71590a39a5d67caa46d6b06f1cca2aca00dc8955085b1e48673f6fc495a688468fee90b3124eae758f925923418834dc9cc02b0163fd41b1949410c20faa142b1e449d4e927d6fc21790b"], 0x10}}], 0x2, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fchdir(0xffffffffffffffff)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000080)={0x1, 0x5, 0x2})
fstatfs(r1, &(0x7f0000002e00)=""/4102)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

16:28:02 executing program 4:
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f00000000c0))
pipe(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x0, @loopback=0x7f00000b}, {0x2, 0x0, @local}, {0x2, 0x0, @broadcast}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
creat(&(0x7f0000000240)='./file0\x00', 0x49)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0xa}, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @remote}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4)
sendmmsg(0xffffffffffffffff, &(0x7f0000003bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="5ff3f45ce5b93497f360366518365e86357ea4a71590a39a5d67caa46d6b06f1cca2aca00dc8955085b1e48673f6fc495a688468fee90b3124eae758f925923418834dc9cc02b0163fd41b1949410c20faa142b1e449d4e927d6fc21790b"], 0x10}}], 0x2, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fchdir(0xffffffffffffffff)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000080)={0x1, 0x5, 0x2})
fstatfs(r1, &(0x7f0000002e00)=""/4102)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[   90.146750] ieee80211 phy9: Selected rate control algorithm 'minstrel_ht'
16:28:02 executing program 4:
ioctl$sock_inet_tcp_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f00000000c0))
pipe(0x0)
perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x0, @loopback=0x7f00000b}, {0x2, 0x0, @local}, {0x2, 0x0, @broadcast}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
creat(&(0x7f0000000240)='./file0\x00', 0x49)
r2 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000200), 0xa}, 0x4, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in={{0x2, 0x0, @remote}}, 0x0, 0x0, 0x4f, 0x0, "3c1c2fd629c4af55a8680f7a892e0865c7fbba0cdfa184016bc00618cdb5732d900802764f98b1af0cd43f34e89ab87a13a460acbb4433cb8a7aaa5797c2f5b5cc15058fbbef4c13daa3094bf3e22ec6"}, 0xd8)
setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000040), 0x4)
sendmmsg(0xffffffffffffffff, &(0x7f0000003bc0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="5ff3f45ce5b93497f360366518365e86357ea4a71590a39a5d67caa46d6b06f1cca2aca00dc8955085b1e48673f6fc495a688468fee90b3124eae758f925923418834dc9cc02b0163fd41b1949410c20faa142b1e449d4e927d6fc21790b"], 0x10}}], 0x2, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x93, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fchdir(0xffffffffffffffff)
ioctl$BTRFS_IOC_QGROUP_ASSIGN(r2, 0x40189429, &(0x7f0000000080)={0x1, 0x5, 0x2})
fstatfs(r1, &(0x7f0000002e00)=""/4102)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

[   90.196510] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.196533] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.197969] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.199532] ieee80211 phy10: Selected rate control algorithm 'minstrel_ht'
[   90.199759] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.201119] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   90.205639] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.248204] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.249687] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.251141] ieee80211 phy11: Selected rate control algorithm 'minstrel_ht'
[   90.252721] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.309476] ieee80211 phy12: Selected rate control algorithm 'minstrel_ht'
[   90.326353] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.326672] ieee80211 phy13: Selected rate control algorithm 'minstrel_ht'
[   90.327866] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.332694] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   90.360320] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.361774] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.363674] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   90.365416] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.366903] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.368445] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   90.375480] ieee80211 phy14: Selected rate control algorithm 'minstrel_ht'
[   90.398777] ieee80211 phy15: Selected rate control algorithm 'minstrel_ht'
[   90.410616] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.412143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.413573] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.456847] ieee80211 phy16: Selected rate control algorithm 'minstrel_ht'
[   90.474816] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.476288] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.477806] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.539994] ieee80211 phy17: Selected rate control algorithm 'minstrel_ht'
[   90.554421] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.555835] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.557286] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.633384] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.634752] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.636450] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.745991] audit: type=1326 audit(1701534483.505:9): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3932 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58a6e18b19 code=0x7ffc0000
[   90.751472] audit: type=1326 audit(1701534483.510:10): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3932 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f58a6e18b19 code=0x7ffc0000
[   90.758425] audit: type=1326 audit(1701534483.510:11): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3932 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58a6e18b19 code=0x7ffc0000
[   90.766098] audit: type=1326 audit(1701534483.511:12): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3932 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58a6e18b19 code=0x7ffc0000
[   90.782098] audit: type=1326 audit(1701534483.539:13): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3932 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f58a6e18b19 code=0x7ffc0000
[   90.788001] audit: type=1326 audit(1701534483.540:14): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3932 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58a6e18b19 code=0x7ffc0000
[   90.796184] audit: type=1326 audit(1701534483.540:15): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=3932 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f58a6e18b19 code=0x7ffc0000

VM DIAGNOSIS:
16:28:01  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88800927cec0 RCX=ffffffff811c22ec RDX=0000000000200000
RSI=ffffffff811c22f5 RDI=0000000000000005 RBP=0000000000200000 RSP=ffff88800f9cfdc8
R8 =0000000000000000 R9 =ffff88800f5bd407 R10=0000000000000000 R11=0000000000000001
R12=ffff88800927cec0 R13=0000000000000000 R14=0000000000000286 R15=dffffc0000000000
RIP=ffffffff81408bf4 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fdf7daf8710 CR3=0000000042192000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff
XMM02=00524f52524500400000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff822ca59c RDI=ffffffff879e81e0 RBP=ffffffff879e81a0 RSP=ffff888019777290
R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001
R12=0000000000000020 R13=fffffbfff0f3d088 R14=fffffbfff0f3d03e R15=dffffc0000000000
RIP=ffffffff822ca5f0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fb421b56700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fe992dab000 CR3=000000000b3a0000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=000000ff000000000000000000000000 XMM01=00000001000000000000000000000000
XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007fb4246c77c800007fb4246c77c0
XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000