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", 0x1000}, {&(0x7f0000002a80)="9bc5c38ee8adf9fa11a22290556d57fc83a492510e6647cee1743f3fc5f7fcd4c5f05ded3e8e71a56c6d0b813bd29eaed493e80c7f5f4a25f6286313b133217e880aad3d7b9322c3c37093a5f70d2f5d9eaf39f1f3fa9bc5585cf32cee953d94fe141ccff66e4fb60d5d0ea69d6ff96f3842b8c41d16a397c7e55a35aeec1b1f86bec2572658338a0f60718e146e144d7cd41f38598efe9597c9f906f46d9ab788484de90deb4ee36ac49020c32072a6ba74ddb05b73", 0xb6}, {&(0x7f0000002b40)="92777f7ae456", 0x6}, {&(0x7f0000002b80)="fc33b5bc94142aab7e4e167964606b8a9dc77ed906e2a8d1ca501bb8b304484d32815ba303f6ec46991266756bc1ca99ec57f8d0d81f497de61b1d1fbd53005c68e51ce7ce5f7fd69d40326b04446f50c7e55c4a3a74e58d0a5bb6944135907c7a70cd2d9996b829ecbacaf602efa76c7dacb1ad2a3e902ac78f1fbefd6d0a81c8a2996217922774b052542d0bae4b82f85f7fc5528277fcb151af185d84f3b97096c533b20dbbacf8f661928818ebd1adfb8772e0798d9040cd5bea0ac51241831a43a4da8b774a1d53b95d3c79973101b956381aa32258dfefbfb000f4ea3cc125342fe6b3fee067b5d774b55e0210152320e86af62e2b", 0xf8}, {&(0x7f0000002c80)="bce07342b3dc18bb36b00085ea5783a3b844e27a24f874f65ff5891ea49f1e69c4f18fad23435fbec3f01e3a934a6f80f0a54be929d3e46e7120447615b9cb4e1a91989797cbaf6b21", 0x49}, {&(0x7f0000002d00)="9d16911428e03aa7b6bdcbf640dd91e86595061629611af07ae1cddf33f626230ce5867fb10bb05d60422a9b7eba101ab9757c85604c7844364d915394c31503c60b3be72c05c733f4a1627607ceeb908b4892b277e3a7740f10e00c78bf63259a8d06be0614e128850b7efd0d029482faebbded5d664d0949bfeb89f9184de698117ca0f998df59fb4d027a8dcad0b4da5ecf87", 0x94}, {&(0x7f0000002dc0)}, {&(0x7f0000002e00)="7c4d79fbdd14b5fed7fcef0d9fa3232db520d0f43f10f20c554b1508b3721fdf0b916f9e78533cd1438a422b18b5fa78f92e5fcd78e5df200670bed8cba13d7b1fcd29e904ea9032b48c7e126e63cc5c9ceebd5888e8339a3edd1aa82e943613e0cfbc548b0907357cebc1c04c0d", 0x6e}], 0xa}, 0x8880)

14:28:36 executing program 1:
accept(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffff7fffffffff, 0xffffffffffffffff, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/uhid\x00', 0x802, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000e80)=ANY=[@ANYBLOB="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"/1368], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffe72}, 0x48)
r2 = socket$kcm(0x29, 0x1000000000002, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f000031aff8)={r0, r1})
sendmmsg$inet(r2, &(0x7f0000001bc0)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="b7", 0x18000}], 0x1, 0x0, 0x0, 0x3}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000540)='Z', 0x100000}], 0x1}}], 0x729, 0x0)

14:28:36 executing program 2:
r0 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="004942488c23492893efde8b98bd459e7e3a445a9d1887"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r6, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002980)=@newtfilter={0x4304, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xffe6}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x42d8, 0x2, [@TCA_U32_ACT={0x42d4, 0x7, [@m_skbedit={0xbc, 0x1b, 0x0, 0x0, {{0xc, 0x1, 'skbedit\x00'}, {0x7c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x10, 0x9}}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x7, 0x3c9e9e99, 0x1, 0x3ff, 0x1f}}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x2}, @TCA_SKBEDIT_PTYPE={0x6}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x5, 0x5f, 0x2, 0x8000, 0x86bd}}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x800, 0x6, 0x7, 0x3, 0x5}}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x9, 0xfff, 0x8, 0x7, 0x7f}}]}, {0x2d, 0x6, "9e6a9c41e4e429deeaa382346a0ff0f3f72d06e0e452cfee0a6d1d78bce8b7c3f0e29c55c996b2885d"}}}, @m_gact={0xec, 0x19, 0x0, 0x0, {{0x9, 0x1, 'gact\x00'}, {0x28, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x2, 0x1a11, 0x8}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x1d05, 0x8}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x1ad6, 0x7}}]}, {0xb2, 0x6, "5deecc8ffed44268257ff6f3791be906b4cffcc7b0d6d204dc56d5084816ae4391ea6c68e102fa29a5ca0e7b02208bf6d777cf929ef761e920e2ac63b1830ac45326027c867cf95e53dbb750d9ffd022acb80b50b964d19885fbe92ffbc0022aeedd6d7ebcba7a0fe2fb21bc9b6e38164683fd488e3fbcd3b32773c410b064baedbca0ad93ea4b05c0654e52a948c08b894680487bc4b401d0d5e1e3041e022db48ca8ff1174b5d987c279ba0ff6"}}}, @m_sample={0xdc, 0x1d, 0x0, 0x0, {{0xb, 0x1, 'sample\x00'}, {0x24, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x80}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x10000}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x9}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x4}]}, {0xa6, 0x6, "298420d3dcdd8051d7d8968c5c9ca488543ad2b4ea2564922ea64521a3e7289309d55531ac221bddc1852c61ed4f4f9d4265c9a93d9295542e4b338f93d673f374a99edc1af69d7dead3c48c3101691863e4f0ea40a8a0818b83edfdd8b28cc19d91120b0efae7a7fceca237ee832ed0904bf8739d89eb9d49b4446576a1703b6119d658d62a9b459f72ea9b3a24a19c65dcb06bf3453f5677ba1ca0e3ef464698fc"}}}, @m_bpf={0x1028, 0x1f, 0x0, 0x0, {{0x8, 0x1, 'bpf\x00'}, {0x18, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS={0x14, 0x4, [{0x1f, 0x80, 0x6, 0x7ff}, {0x0, 0x80, 0x2, 0x9}]}]}, {0x1004, 0x6, "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"}}}, @m_xt={0x10cc, 0xd, 0x0, 0x0, {{0x7, 0x1, 'xt\x00'}, {0x1080, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}, @TCA_IPT_TARG={0x102a, 0x6, {0x0, 'nat\x00', 0x4, 0x8001, "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"}}, @TCA_IPT_TABLE={0x24, 0x1, 'filter\x00'}, @TCA_IPT_HOOK={0x8, 0x2, 0x4}]}, {0x3d, 0x6, "e6234c3e45139e3750b1089dc69cf6e173f03b38627c91745698b1ea66e457a866478ab812d6ad4047a117ad5a0e68355b34bacbd2036b78b1"}}}, @m_pedit={0x1e9c, 0x3, 0x0, 0x0, {{0xa, 0x1, 'pedit\x00'}, {0x1e0c, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0xc0, 0x5, 0x0, 0x1, [{0x4c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x44, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}]}, @TCA_PEDIT_PARMS={0xe80, 0x2, {{{0x100, 0x39e5, 0x6, 0x16, 0xbe1}, 0x3f, 0x4, [{0x1000, 0xf71, 0x7f, 0x2, 0x7b, 0x200}, {0x2040000, 0x7, 0x40, 0x93, 0x80, 0x3ff}, {0x4, 0x7fffffff, 0x1, 0x6, 0xf6}, {0x8000, 0x5, 0x0, 0x2, 0x9, 0x512}]}, [{0x7fff, 0x20, 0x60000000, 0xfffffff9, 0x6, 0x7}, {0xfffffff7, 0x2c000, 0x6, 0x800, 0xfff, 0x85f}, {0x9, 0x47c1, 0x9, 0x7, 0xfffffff7, 0x7fffffff}, {0x0, 0x1, 0x4, 0x7, 0x5, 0x80000000}, {0x6, 0xfff, 0x5f, 0xfff, 0x4, 0x3ff}, {0x7ff, 0x3, 0x7, 0x4, 0x8, 0x6}, {0x7ff, 0x2, 0x5, 0x7, 0xffffffff}, {0xfffffff7, 0x5, 0x8000, 0x37e9, 0x2, 0x7}, {0x9, 0x4, 0x401, 0x9, 0xffff188a, 0x1000}, {0x5, 0x1f, 0x0, 0x800, 0x0, 0x41}, {0x3, 0x14, 0xfffffff9, 0x5, 0x8, 0xff}, {0x1f, 0xffff, 0x7, 0x9, 0x7, 0x80000000}, {0x4f, 0x8, 0x7fff, 0x800, 0x3}, {0x816, 0x10000, 0x3, 0xc000000, 0x3ff, 0xed01}, {0x9, 0x78, 0x8, 0x40, 0xc916, 0x9}, {0x194400, 0x3fc00000, 0xfffffd02, 0x100, 0x80000000, 0xfffffff7}, {0x1, 0x7f, 0x7, 0x1ff, 0x4f66f89d, 0xcf}, {0x0, 0x3, 0x7f, 0x0, 0x10001, 0x7f}, {0x3b6, 0x0, 0x7, 0x9229, 0x4a, 0xffc0}, {0x80000001, 0x2, 0x3, 0x8, 0x400, 0xff}, {0x2, 0x400, 0x80000000, 0x8, 0x31c, 0xac5d}, {0x83ece4dc, 0xff, 0x800, 0xfffffff8, 0x45a, 0x10000}, {0x7, 0x7ef, 0x1, 0x4, 0x8, 0x5}, {0x7fffffff, 0xe532, 0x1, 0x80, 0xffff, 0x8}, {0xe2, 0x2f, 0x6, 0x7fffffff, 0x5, 0x7}, {0x4, 0x9, 0xffff8001, 0x3, 0x8, 0x4}, {0x0, 0xfffffc01, 0x1, 0xd225, 0x5}, {0x10000, 0x68, 0xca, 0x7, 0x0, 0x80000000}, {0x80, 0x401, 0xffff, 0x1, 0x1, 0x6}, {0xa, 0x7, 0xff, 0x0, 0xfadb, 0x4}, {0x3, 0x6, 0x8, 0xd9e, 0x4, 0x8}, {0xff, 0xffff, 0x5, 0x1f, 0x5, 0x100000}, {0xe49a, 0x1000, 0x9, 0x3, 0x7f, 0x8}, {0x7, 0xff, 0x81, 0x5, 0x1, 0x6}, {0x46, 0x5, 0xfffffff8, 0xff0c, 0xc9, 0x8}, {0x9, 0x10000, 0x9, 0x5, 0x100, 0x9}, {0x1, 0x2, 0x5, 0x80000001, 0x1, 0x6b0}, {0x1, 0x34, 0x20, 0x4, 0x6, 0x8001}, {0x80000001, 0xf109, 0x64000000, 0x4, 0x298e093e, 0x7}, {0xfffff838, 0x2, 0x65, 0x2, 0x5, 0x1e0}, {0x3f, 0x0, 0x75, 0x8, 0x7}, {0xfff, 0xffff0001, 0x5, 0x9, 0x10000, 0x7}, {0x3, 0x7, 0x10000, 0x4, 0x2, 0x81}, {0x7fffffff, 0xf3, 0x9, 0x3ff, 0x7fffffff}, {0x8001, 0x6, 0x20, 0xa457, 0x8, 0xffb}, {0x2, 0xd7d, 0xfffff001, 0x5d, 0x400, 0x8}, {0x4, 0x4, 0x4, 0x1, 0x5, 0x401}, {0x0, 0x81, 0x5, 0x83, 0x8e8c, 0x3}, {0x715, 0x101, 0x7f, 0x4, 0xffffff81, 0xfffff358}, {0x7, 0xfffff109, 0x9, 0x2, 0x3, 0x95ab}, {0x7fff, 0x1, 0x1, 0xfffffc00, 0x9, 0x8}, {0x3, 0x4, 0x20000, 0x2, 0xfffff767, 0x4caff131}, {0x7fff, 0xda9, 0x17, 0x1f, 0x7, 0x38}, {0x1f, 0xe00000, 0x3, 0xffffffff, 0xffffffff, 0x7}, {0x40, 0x4, 0xc52, 0xffffff7f, 0xffffffb9, 0x7fffffff}, {0x6, 0xb3, 0x3, 0xa0000, 0x4, 0x9188}, {0x5c24, 0x6, 0x1000, 0xffffffe1, 0xffffffff, 0x8001}, {0x5, 0x2ea400, 0x57e, 0x901, 0x8, 0x7}, {0x2, 0x0, 0x6, 0x2, 0x6, 0x7}, {0x8, 0xffffffff, 0x20, 0x1, 0x9, 0x1a61}, {0xd6, 0xfffffff9, 0x4, 0x7, 0x5835, 0x7}, {0x80000000, 0x1, 0x1ff, 0x7f, 0xbd, 0x6}, {0x80000001, 0x80000001, 0xab3c, 0x8, 0x1f, 0x141}, {0x4, 0xffff, 0xdf, 0x1, 0xfe, 0x4}, {0x400, 0x400, 0x80000000, 0x6cd0, 0x4, 0x1}, {0x800, 0x8, 0xfff, 0x9, 0x9, 0x9}, {0x5, 0x1f, 0x8, 0x73, 0x9, 0xd75}, {0x4, 0x3, 0xfffffffa, 0x4, 0x9, 0x101}, {0x3, 0x1, 0x10000, 0x5, 0x2, 0x44f}, {0xfffff8e8, 0xfffffffe, 0x3, 0x40, 0x47, 0xb00}, {0x81, 0x9, 0x0, 0x2, 0x6, 0x72}, {0x5, 0x3, 0x81, 0xeb6, 0x4e, 0x6}, {0x5, 0x6, 0x4, 0xffff, 0xff, 0x200}, {0x4, 0xfffffffe, 0x1bc49a6d, 0x327521a0, 0x101, 0x10000}, {0xffffffbc, 0x7fffffff, 0x800, 0x401, 0x39, 0x1}, {0x3ff, 0x1f, 0x8000, 0x8, 0x8, 0x6}, {0x1f91, 0x0, 0x67, 0x401, 0x6, 0xc8}, {0x8, 0x1, 0x10000, 0x1, 0x6, 0x40}, {0xfffffffb, 0x4, 0x4, 0xb1, 0x1000, 0x391}, {0x2, 0x1c2e, 0xfff, 0x1f, 0x400, 0x200}, {0x1, 0x1000, 0x9, 0x2, 0x401}, {0x7, 0x200, 0x6f, 0x8, 0x2, 0x1}, {0x7, 0x8, 0x101, 0x2, 0x836f, 0x2}, {0x400, 0x0, 0x2, 0x5, 0x5, 0x8001}, {0x6, 0x10001, 0x1, 0xffffffaf, 0x80000000, 0x7bdb}, {0x10001, 0x3, 0xfff, 0x20, 0x4, 0x7}, {0x6, 0x2, 0x7f, 0x80, 0xffff8001, 0x81}, {0x8, 0x9, 0x5, 0xd67, 0x0, 0x5}, {0xb7, 0x5, 0x20, 0x5, 0x83d, 0x20}, {0x7, 0x2, 0xfffffffb, 0x210, 0x6, 0x7fffffff}, {0x8, 0x3f, 0x6c8, 0x200, 0x6, 0xb8c}, {0xffff8000, 0x1, 0x6, 0x80000000, 0x3b, 0x293}, {0x8, 0x3, 0x7, 0x100, 0x100}, {0x2, 0xfff, 0x5, 0x1ff, 0xb2f, 0x6}, {0x9, 0x1, 0x0, 0x0, 0x1, 0x800}, {0xffffffff, 0x87, 0x100, 0x9, 0x8, 0xffffffff}, {0x101, 0x8001, 0x3, 0x8, 0x3ff, 0x5c0}, {0x3, 0x5, 0xffff, 0x8001, 0x4}, {0x10000, 0x0, 0x800, 0x3, 0x7, 0x101}, {0x9000, 0x1, 0x56, 0x0, 0xc2e, 0x5}, {0x0, 0x4, 0x6, 0x7, 0x7ff, 0x2}, {0x2, 0x7f, 0x1000, 0x1, 0x6, 0xffff}, {0x40, 0x1f, 0x9, 0x8, 0x8000, 0x1}, {0x3f, 0x6, 0x4, 0x101, 0x80000000, 0xde}, {0x80000000, 0x0, 0x7, 0x1, 0x8001, 0x2}, {0x0, 0x0, 0x7fffffff, 0x9, 0x40, 0x8}, {0x80000001, 0x5f6, 0xca6e, 0xffffffff, 0x3, 0x6}, {0x0, 0x200, 0x1ff, 0x3, 0x3f, 0x2}, {0x1, 0x4, 0x9, 0x2, 0x0, 0x1f}, {0x1, 0x660, 0xdb, 0x7f, 0x9, 0x2}, {0xa31, 0x5, 0x1005, 0x5, 0x0, 0xffff}, {0x9, 0x1, 0xcc14, 0x18000, 0xff, 0x3ff}, {0x0, 0x7, 0x401, 0x1ff, 0x1ff, 0x8}, {0xfa06, 0x1, 0x5, 0x8, 0x154, 0x6920}, {0x9, 0x7, 0x7, 0x8, 0x20}, {0xfffffffa, 0x6000000, 0x7f, 0x4, 0x2b5, 0x7fffffff}, {0x5, 0xffffffff, 0x7fff, 0x6, 0x2, 0x200}, {0xfffffff7, 0x9b0b, 0x3, 0x3dc7f36a, 0x29, 0x80000000}, {0x4, 0x1, 0x7fffffff, 0x6df, 0x4, 0x78f8}, {0x1, 0x5, 0x4, 0x100, 0x9, 0x3}, {0x7, 0x3, 0x9, 0x8, 0x80000000, 0x8}, {0x2, 0x40, 0x9, 0x2f7, 0x7, 0x5}, {0x800, 0x3f, 0x56eb, 0x9, 0x8, 0x90d1a13}, {0x43, 0x4, 0x0, 0x80, 0x1}, {0x56, 0x0, 0xc8ec, 0x5, 0x6c77, 0x9f4a}, {0x10000, 0x800, 0x3, 0x6, 0x3, 0x7}, {0x7, 0x9, 0x8000, 0x7, 0x1f, 0x9}, {0x22f, 0x6, 0xffffffff, 0x4, 0x10001, 0x1}], [{0x5, 0x1}, {0x4}, {0x2}, {0x4, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x4}, {0x4}, {0x5, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x5}, {0x3, 0x1}, {0x4}, {0x4, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x3}, {0x1}, {0x5}, {0x5}, {0x1}, {0x1}, {0x5}, {0x0, 0x1}, {}, {0x4}, {0x1, 0x1}, {0x2, 0x1}, {0x4}, {0x2}, {0x0, 0x1}, {0x1}, {0x5}, {0x1, 0x2a98eba8d36aae2e}, {0x4, 0x1}, {}, {0x0, 0x1}, {0x3, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {}, {0x7, 0x1}, {0x4}, {0x4, 0x1}, {0x4, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x3, 0x16f86d38e10cc572}, {0x1}, {0x3}, {0x0, 0x1}, {}, {0x1}, {0x5}, {0x3, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x4}, {0x2, 0x1}, {0x4, 0x1}, {0x2}, {0x1}, {0x1, 0x1}, {0x1}, {0x2}, {0x4, 0x1}, {0x3, 0x1}, {0x4}, {0x3, 0xc69483881527fd3b}, {0x3}, {0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x2}, {0x2, 0x1}, {0x3}, {0x2}, {0x1, 0x1}, {0x5, 0x1}, {0x1}, {0x7}, {0x2, 0x1}, {0x4}, {0x2, 0x1}, {0x5, 0x1}, {0x5}, {0x1}, {0x3, 0x1}, {0x2}, {0x1, 0x1}, {0x4, 0x1}, {}, {0x3, 0x1}, {0x2, 0x1}, {0x2}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x3}, {0x0, 0x1}, {0x2}, {0x1, 0x1}, {0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x5}, {0x5}, {0x4}, {0x0, 0x1}]}}, @TCA_PEDIT_PARMS_EX={0xec8, 0x4, {{{0x5, 0x81, 0xa, 0x8, 0x2}, 0x22, 0x40, [{0x400000, 0xaffc, 0x9, 0x2, 0x7, 0x8001}, {0xffffffff, 0x1, 0x7, 0x0, 0x2, 0x8001}, {0x1ff, 0x64d30c2b, 0x1, 0x57, 0x200, 0x1}, {0x599, 0x7, 0x0, 0x2, 0x0, 0x8}, {0x5, 0x7, 0x6, 0x3, 0x4f, 0xff}, {0x3, 0x2, 0x1ec, 0x0, 0x1}, {0x1, 0x1f, 0x200, 0x12d8, 0x3, 0x8}]}, [{0xaaba, 0x3, 0x1f, 0xffff, 0xa83, 0x1}, {0x0, 0x81, 0x1e97, 0x8, 0x4, 0x7}, {0x5, 0x7, 0x4, 0x57, 0x8001, 0xfffffffa}, {0x7, 0x2, 0x1, 0x2, 0x4, 0x9}, {0x400, 0x4, 0x3, 0x6, 0x9, 0x665}, {0x6, 0x9, 0xab, 0x6}, {0x3, 0x8, 0xa5, 0x8, 0x5, 0x8}, {0x0, 0x9, 0x7, 0x9, 0x6}, {0x2, 0x7, 0xd5d, 0x10001, 0x800, 0x401}, {0x4, 0x8000, 0x9, 0x5, 0x2, 0x9}, {0xe20, 0x8, 0x6, 0x0, 0x5, 0xfffff001}, {0xfffffff9, 0x2834, 0x81, 0x6, 0x3ff}, {0xfff, 0x80, 0xffffff80, 0x0, 0xffff, 0x8}, {0x7, 0x0, 0x873, 0x4, 0xfffffbdd, 0x6}, {0xfffffa5f, 0xffffffff, 0x1000, 0x7ff, 0x9, 0xffff32b5}, {0x97a1, 0x5, 0x7, 0x3ff, 0x2b59db5b, 0x2d6d}, {0x8001, 0x1f, 0x5, 0x7, 0x0, 0xffff}, {0x2, 0x7, 0xffffff80, 0x2, 0x5e45, 0x3}, {0xe4, 0x3, 0x400, 0x2, 0x100, 0xfffffe01}, {0x1, 0x2, 0x5, 0x103, 0x1, 0x100}, {0x37, 0x800, 0xfffffffb, 0x80, 0x2, 0x6}, {0xfffffff9, 0x8, 0xffff, 0xfffffffb, 0x84}, {0x7, 0x7f, 0x0, 0x4, 0x7}, {0x3, 0xffffffe1, 0xfffffffe, 0x4, 0xec4, 0x4}, {0xfffffffa, 0x5, 0x3, 0x7fffffff, 0x5, 0x10000}, {0x0, 0x4, 0x7f, 0x3, 0x2, 0x9}, {0x6, 0x80000001, 0x80000001, 0x7, 0x400, 0x5}, {0x803c, 0xffffffff, 0x2, 0x3f, 0x101, 0x200}, {0x5, 0x2, 0x400, 0x7ff, 0x56, 0x9}, {0x101, 0x2, 0x400, 0x1f, 0x3f, 0xb05}, {0x6, 0x6, 0x7, 0x2}, {0x8, 0x1, 0x6, 0xffffffe1, 0x400, 0x8d7}, {0x6, 0x8, 0x1, 0x8001, 0x7, 0x40000}, {0x1f, 0x8001, 0x2, 0x7, 0x36d2, 0x5}, {0x265, 0x400, 0x3, 0x9, 0x7fff, 0x3}, {0x0, 0x1, 0x1, 0x8, 0x7ff, 0xfff}, {0x10001, 0xff, 0x80000000, 0x82a3, 0x5, 0x3}, {0x7, 0x9, 0x10001, 0x200, 0x1, 0x7}, {0x7, 0x9, 0x3, 0x8000, 0x8, 0x5}, {0x2, 0xff, 0x0, 0x7f, 0x40, 0x7}, {0x56, 0x6, 0x3, 0x8, 0x8000, 0x7}, {0x42b, 0x5, 0x1, 0x0, 0x80, 0x9}, {0x0, 0x1ff, 0xa7ce, 0x0, 0x1, 0x6}, {0xff, 0xfffff209, 0x1ff, 0x8, 0x0, 0x8}, {0x3ff, 0x8001, 0x7, 0x9, 0x1, 0x10000}, {0x7fff, 0x200, 0xc52f0702, 0x3, 0x6, 0x6}, {0x8, 0x0, 0x7, 0x401, 0x7fffffff}, {0x1, 0x0, 0xffffffff, 0x1, 0x7, 0x9}, {0xfff, 0x9, 0x7, 0x62b8, 0x8100, 0xfffeffff}, {0x8, 0x8, 0x400, 0x4, 0x8, 0x6}, {0x38e, 0x63b1, 0x7, 0xffffffff, 0xb37, 0x2}, {0x5, 0x0, 0x401, 0x2, 0x0, 0xffffb820}, {0x3, 0x0, 0x1ff, 0x1, 0x96, 0x7f}, {0x66363fd3, 0x9, 0x1, 0xe5c0802, 0x3}, {0x8, 0x5, 0x1, 0x0, 0x4, 0xffffff31}, {0x9, 0x4c2476f3, 0x0, 0x3, 0x4, 0x1}, {0x66, 0x30, 0x720e, 0x6, 0x6, 0x400}, {0x5, 0x6, 0xdd5, 0xf9e, 0x0, 0xa3}, {0x2, 0xffffffff, 0x10000000, 0x8, 0x6, 0x77}, {0x5, 0x8, 0x80, 0x7fff, 0x81, 0x401}, {0x101, 0x8, 0xdcc1, 0xffffffff, 0x8, 0x1f}, {0x1f, 0x90, 0x1, 0x8, 0xffff50a9, 0x401}, {0x101, 0x6, 0x25, 0x80000000, 0x3ff, 0x1a5d}, {0xffff8001, 0x9, 0x0, 0x1ff, 0x7ed, 0x6}, {0x1, 0x5, 0x9, 0x2, 0xfffffbff, 0x1}, {0x5024, 0x8000, 0x81, 0x0, 0x1, 0x800}, {0x1ff, 0x7, 0x9, 0xb3, 0x10000, 0x1}, {0x1ff, 0x3, 0x1, 0x8, 0x7ff, 0x1}, {0x8a, 0x5, 0x9, 0xfb9d, 0x1, 0x6}, {0x7fff, 0x542, 0x7aa, 0x100, 0x5, 0x9}, {0x4375, 0x7ff, 0x20, 0x8000, 0x8000, 0x101}, {0x7, 0x3, 0x400, 0x9, 0x88e, 0x8001}, {0x9, 0x3ff, 0x8, 0x1, 0x4, 0x5}, {0x5, 0x5, 0x9, 0x400, 0x7ff, 0x4}, {0x0, 0x6, 0x5, 0x7, 0xfffff3be, 0x1}, {0x2, 0x1, 0x2, 0x2, 0x2}, {0x5, 0x42a, 0x7ff800, 0x32, 0x6, 0x6}, {0x3, 0x80, 0x8, 0x2, 0x8, 0x9}, {0x5e0, 0x4cdc, 0x6, 0x7, 0x1, 0x1000}, {0x8, 0x8, 0x2, 0x9, 0x0, 0x540b}, {0x9, 0xff, 0xe07, 0x4, 0x0, 0x9b6}, {0x7fffffff, 0x1, 0xfffffffd, 0x4, 0x8, 0x9}, {0x1, 0xfffffff9, 0x80, 0x8, 0x8, 0x8}, {0x3, 0x0, 0x1, 0x58, 0x81, 0x7}, {0xe3c, 0x10001, 0x6, 0x163, 0x1, 0x80000001}, {0xadbf, 0x100, 0x8, 0x81f9, 0x8000, 0x2}, {0xff, 0x4, 0x3e99, 0x9a0, 0x0, 0x401}, {0x20, 0xdef, 0x5, 0x9, 0x3ff, 0x800}, {0xfffffff7, 0x3f, 0x8, 0x550f6b44, 0x6}, {0x1, 0x9, 0x100, 0x8, 0x0, 0x9}, {0xfff, 0x6a8e, 0x800, 0x8, 0xfc, 0x9}, {0x4, 0x6, 0xfffffffe, 0x5, 0x6}, {0x10000, 0x17, 0xffff, 0x1, 0x3, 0x1ff}, {0x200, 0x2, 0xffffff01, 0x3, 0x1, 0x800}, {0x71a, 0x1000, 0x8000, 0x9, 0x2, 0x8}, {0x100, 0xdd2, 0x5, 0x508, 0x0, 0x7fff}, {0x9, 0xfffffffd, 0x7fffffff, 0x8, 0x80000001, 0x1000}, {0x7, 0x1a7d, 0x1fc0000, 0x3f, 0x8, 0x24}, {0x9, 0xe5, 0x40, 0x1c00, 0xb9, 0x100}, {0xfff, 0xb294, 0x80, 0x7, 0x8000, 0x2}, {0x7, 0x2, 0xffff, 0x1, 0xffff, 0xdc0}, {0xd4e, 0x1f, 0x8, 0x2, 0x6e52, 0xfff}, {0x8, 0x6, 0xc1, 0x2, 0x1, 0x6e}, {0xffff0036, 0x5, 0x2, 0x8, 0x24, 0xa8}, {0x7, 0x47d, 0x3ff, 0x7, 0x10000, 0x80000000}, {0x0, 0x5b10, 0x5, 0x8001, 0x6, 0x7}, {0x3ff, 0x0, 0x2, 0x4, 0x6, 0x7e00}, {0x7, 0x23f, 0x7fff, 0x0, 0x3, 0x3}, {0x7ff, 0x81, 0xfffffffb, 0x2, 0x11, 0x1}, {0x5, 0x6, 0x0, 0x8001, 0x1, 0x3f}, {0x1, 0x100, 0x40, 0x0, 0x5}, {0xffff, 0x8, 0x7, 0x400, 0xcf, 0x7}, {0x1e46, 0x8, 0x1, 0x9, 0x7, 0x3}, {0x1b, 0xa030, 0x100, 0x0, 0x4}, {0x81, 0x2f, 0x8, 0x0, 0x0, 0x82b}, {0xffff8001, 0xf7, 0x8, 0x4, 0x20000000, 0x81}, {0x0, 0x6, 0x1, 0x5, 0x4, 0x6}, {0x90d, 0x7, 0x0, 0x6, 0xdd6, 0x7fff}, {0x2, 0xa75, 0x5, 0xffffff5a, 0x3}, {0x8, 0x10000, 0xa94, 0xea0, 0x5}, {0x0, 0x1, 0xfffffffe, 0x1000, 0x7, 0x4}, {0x1, 0x6, 0x401, 0x401, 0x6}, {0x8, 0x5, 0x7fff, 0x40, 0x9}, {0x1, 0x5, 0xff, 0x4, 0x0, 0x8eec}, {0x20, 0x1, 0x0, 0x7, 0x5, 0x1854}, {0x6, 0xc9c0, 0x7, 0x0, 0x400, 0x100}, {0x0, 0x3, 0x2, 0xfd, 0x400, 0x58}, {0x0, 0x0, 0x5, 0x5a, 0x9}], [{0x5}, {0x2, 0x1}, {0x1, 0x1}, {0x4}, {0x1, 0x1}, {0x4, 0x1}, {0x1}, {0x3, 0x1}, {0x7}, {0x5, 0x1}, {}, {0x5}, {0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x3, 0x1}, {0x5}, {0x0, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x4}, {0x4, 0x1}, {0x3, 0x1}, {0x5, 0x1}, {0x5}, {0x2, 0x1}, {0x5}, {0x4, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x4}, {0x4, 0x1}, {0x7}, {}, {0xfe4fe5525d91b3db}, {0x2}, {0x1, 0x1}, {0x1, 0x1}, {0x5}, {0x1, 0x1}, {0x1}, {0x2}, {0x1}, {0x4}, {0x1, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x2}, {0x3}, {0x1, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {}, {0x4}, {0x1, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x4}, {0x1}, {0x5, 0x1}, {}, {0x1, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x3}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x5}, {0x2}, {0x1, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x5}, {0x4}, {0x2, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {}, {0x3, 0x1}, {0x2, 0x1}, {}, {}, {0x4, 0x1}, {0x4, 0x1}, {0x2}, {0x1}, {0x7}, {0x4}, {0x4}, {0x5, 0x1}, {0x2, 0x1}, {0x4}, {0x2}, {0x3}, {0x4}, {0x2}, {0x5, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x2}, {0x3, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x4, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x2, 0x1}, {0x4, 0x1}, {0x4}, {0x7}, {0x4}, {0x2}, {0x5}], 0x1}}]}, {0x7d, 0x6, "fd745963500216ec0f2602c9fe092416baee23bb796d54ddd9091a96c8a242bf3f43206dad5a80c3d8d409802266372aca3527a87027d8ba5cf7bc65305c5a2a34a837c577b0f22033816b4baed93d6a91d750ca04a6f17ec4eae9618251d89e7ef2605ac3361e444f48eaa468dbbbc635caf9afebc3f5c9e2"}}}, @m_mirred={0xbc, 0x12, 0x0, 0x0, {{0xb, 0x1, 'mirred\x00'}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x7, 0x2, 0x8, 0x1, 0x2}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x60000, 0x9649, 0x6, 0x1ff, 0x42}, 0x4, r6}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x7fffffff, 0x10e, 0x4, 0x2, 0xbd5e}, 0x3}}]}, {0x47, 0x6, "cb0b26213dc3e9c1672607ab9d124ae2159bba9a5103d8d33b7481333c25d482f70418926223cd63ced22ffd830aed6655009d3af2478b5c36d89e587cc8e7f021c0bc"}}}]}]}}]}, 0x4304}}, 0x0)
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000002900)={0x0, @l2tp={0x2, 0x0, @multicast2, 0x1}, @xdp={0x2c, 0x0, <r7=>r6, 0x1c}, @l2tp={0x2, 0x0, @multicast2, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000028c0)='bridge_slave_1\x00', 0x0, 0xc538, 0x8})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xf, 0x200000000000008f, &(0x7f0000000400)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x20000000, 0x61, 0x11, 0x1a001000000}, [@ldst={0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x4}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xd2, &(0x7f00000000c0)=""/210, 0x0, 0xb, [], r7, 0x4, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0xfffffffc}, 0x10, 0x0, r2}, 0x78)

14:28:36 executing program 5:
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = fcntl$dupfd(r2, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r4, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r4, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r4, 0x0)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r5, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r5, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r6 = syz_open_pts(r5, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYPTR=&(0x7f0000000240)=ANY=[@ANYPTR64=&(0x7f0000000040)=ANY=[@ANYRES64, @ANYRES16=r3, @ANYRES16=r2, @ANYPTR], @ANYRESOCT, @ANYRES16=0x0, @ANYRESHEX=r4, @ANYRESHEX=r2, @ANYBLOB="1ddd5690e9b6768b1a69c521fa47eab52bc12e103ebf707e0d7a35990704a86fb4f73eb45134c3cb490273911ae7b7cfc901b1590b3f1d9d2af3739752bee862dcbd1ec09fa50fd590a03b4cc1cf9b94df9d8e1fa5ea5885ee4c516b6185c1ebf0dd3dc1719691189b50262885879b0e8db750b0167a246eaea57c3d1b7ef2adac6ca888e87f898aeb0c824aafcbc79f184e75a4d6a1ca811e414e220514fe0c3ed603106fa35229e9c203b78e0de21592bce1b4220dfb4b75c007b3ce7939a9537039bc2c6e74399ded7486e196013d6c6ca230587935909fe9ea20559e334775c19f82452126cba291df7edcd7", @ANYPTR=&(0x7f0000000380)=ANY=[@ANYBLOB="0ec4c2876f1d8d594533615fc1eac338d143985cdc9e95604c6ce266cc37dfe2fb6dcddd159192edd99badb07c32f32ecd9d5601a16f70677650f8e910c5d8b9628ee5c0846461ebf9b1d0881f4480fc54998d8ee1235c04d2f619e5ccc40672b7426544ec3d53813c8113c7195886ddb3a3ebfd092caaa08f2b34fab52ff726051b779b6f43acc9c9f1893db324abfd5ad4f5423e059203123f9f696b3d8ac8fbb694c6ba3570764ff6d9486ede0890f7b4b48f9c7c36fee98c33c88ba73d087f4ebc9181e779285bf6cd0a93885168526a29b0c6be4b0dd992dbecfb7c502345350116f0c74487e648", @ANYRESHEX=0x0, @ANYPTR64, @ANYRES16=r6, @ANYRESOCT]], @ANYRES32, @ANYBLOB="000000fbff000000280012800a00010076786c616e200000000002"], 0x3}}, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r7, 0x0, 0x4ffe2, 0x0)

[  508.137368] device veth14 entered promiscuous mode
14:28:37 executing program 4:
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vhost-vsock\x00', 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
r5 = socket(0x11, 0x800000003, 0x8)
getsockopt$sock_int(r5, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000700)="762f263f6c7506851e6fdd9b8b7c931d0acc0edb70bc19095bf6d913869b52a08fd35270f80caeb5c255b3a65456e4f0a8c050f76189ca246374313907799c3b494c0211a61fa8e518e68e3f78e3ee4bb45cad06b413b2b41e95b81ff4f50f1b1821e10fea2e761d3bd65c74", 0x6c)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f0000000480)=ANY=[@ANYBLOB="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", @ANYRES32=<r8=>0x0], &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r6, 0x84, 0x77, &(0x7f0000000000)={r8}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r5, 0x84, 0x11, &(0x7f0000000180)={r8, 0x9}, 0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f00000001c0)={r8, @in6={{0xa, 0x4e1e, 0x7f2, @rand_addr="d5f2151c5dd3ef7e09bd3cdb853b10f8", 0x1}}, 0x81, 0xa4}, 0x90)
r9 = dup2(r2, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000280)=ANY=[@ANYBLOB="020000000000000000000000000000004100000000000000710761e93f1faec4f6cd7d811856f0ec9d25e9043a8d8485096b0895be8b3c44cfa0b53db91b5f343524bcbcb638c0976b9998a256d1e51487e3d891", @ANYPTR=&(0x7f0000000400)=ANY=[@ANYBLOB="000000000000000000000000000000000000c86e1a89b900"/70], @ANYBLOB='\x00'/40])

[  508.260033] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.311787] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.395121] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.412303] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.431472] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.451367] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.467962] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.481098] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.498512] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
[  508.517168] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=17790 comm=syz-executor.5
14:28:37 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_emit_ethernet(0x74, &(0x7f0000000040)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @void, {@ipx={0x8137, {0xffff, 0x66, 0x40, 0x4, {@random=0x8, @random="737fcb466bb8", 0xff81}, {@broadcast, @random, 0x531d}, "cf177920a4fc0bff7c187f36cabe02f0c38883dad2c38015b8b2811e6d25302e542f6e570872b3a615abcc32d21d36fea3df81bccb2d43ab05c9ceb8d0112cf9874b56435f72dbbb"}}}}, 0x0)

14:28:37 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000600)={'bridge_slave_1\x00', <r1=>0x0})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="00c8788ab0f03db044e6c892", @ANYRES32=r1, @ANYBLOB="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"], 0x170}}, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000180)=[{0x2, 0x1000000000000, &(0x7f0000000080), 0x0, &(0x7f0000000280)=[@iv={0x80, 0x117, 0x2, 0x6b, "57a9789467212457ed0b5b7256d0660382fb5f16849918a284e62657b3547670bc94c0587a1661abb6c52af918d1cfb899b4ee5a6ef83e7ba3fe525bcaefe5cc8c5f129362fa0c32945b5dac946a8b7f6b5bffdeb50a4e53a6025e9459a58bb0a7191d22c5b2d0906a774e"}, @op={0x18, 0x117, 0x3, 0x1}, @iv={0xe0, 0x117, 0x2, 0xc8, "c1360e510e5389cee2676872dc870becf09a884ae2a692b4ef1a067a42705d5b7fe034746539bd34405994f5d8bcaab896a968f97017c5e06f39c7835a220ecba16fd62666a2f3804b8f7fa7ab5a19668ceef862f1b82b259f68dcae73082c2955d1511192b2ee30486e0a19de09ba525d5bbef9c48791313f059cbc660f3a1162ab3b4373c6356b82391007d58af48c5077c34156cc714369ed268a0c217f27801e522fe81a757b7800af169a65e2bd4adabc6a5c3be1c2c4ed14a0e2522361f8375c12ce7893da"}, @op={0x18}, @iv={0x48, 0x117, 0x2, 0x30, "204d9cc5dcd2a4a0c1cb316635c5756fd76b1b5d9b1754dfc20d7f633d50f37b435eb15fe8e134e482f05e7781c98ce5"}, @op={0x18, 0x117, 0x3, 0x1}, @op={0x18, 0x117, 0x3, 0x1}], 0x208}], 0x1, 0x2000c805)

14:28:37 executing program 2:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x8, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1, 0x54, 0x0, 0xfffffffffffffffe, 0x0, 0x1}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
r1 = socket(0x10, 0x0, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r1, 0x0, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000080)={r1})
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000001800)='NLBL_CALIPSO\x00')
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8983, &(0x7f0000000180))
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, &(0x7f0000000780)=ANY=[@ANYBLOB="ec7b42324bf6ff5751e2053b729e98e3c50f75891793dcf59ff85459c98c7b24bc4380ca8971211f89a15aafd935b3b696c0e9ce7003a9fc23151a6f982ef706ef99efe7f63fa00ba8160fda52db0674a3dee36bbcb70a0cd1f3e1ad9dded405387a2ec29dcfb2d28149f6181fdfcdefdb1cb8d2e284a09f04f2b9dbf6ad5efbf2345756862e1ed5dc7b83ef1fe12a1762", @ANYRESDEC, @ANYBLOB="295209db5b00569f7f231335118a4ae6d8e5cc1a86c43cefed3276e9db687c4ec0249f1080485fbcc5b50e4a33769b446e4dea9ed701009e6b1ad045728fd05b85b8ad46e4e2974b62d8e7fe08fafc86875f0326f05bb331e467682222ff701f4833226862ed5757883b74b35a3613448a4804344f01c5af2af2cafc0076ec28ad5f4a368a0ff85c7cf54dc999e21c833092c717ad618a", @ANYRESHEX, @ANYRESHEX=r2, @ANYRESOCT=r0, @ANYRESDEC], 0x7)
sendmsg$NLBL_CALIPSO_C_REMOVE(0xffffffffffffffff, &(0x7f0000002540)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4048000)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10)
getsockopt$inet_sctp_SCTP_STATUS(0xffffffffffffffff, 0x84, 0xe, &(0x7f0000000400)={0x0, 0x1, 0x2, 0x2, 0x800, 0x101, 0x3, 0x1, {0x0, @in={{0x2, 0x4e24, @loopback}}, 0x4, 0x8000, 0xebb, 0x2}}, &(0x7f00000004c0)=0xb0)
ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, &(0x7f0000000280)={0x0, 0x9, 0x10000000000, &(0x7f0000000240)=0x4})
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000380)="fe", 0x1a000}], 0x1}, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000140)={0x77359400}, &(0x7f00000003c0))

14:28:38 executing program 4:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mprotect(&(0x7f0000005000/0x3000)=nil, 0x3000, 0x0)
clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x2, 0x3, 0x300, 0x190, 0x0, 0x190, 0x190, 0x190, 0x268, 0x268, 0x268, 0x268, 0x268, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x0, 0x130, 0x190, 0x0, {}, [@common=@unspec=@string={{0xc0, 'string\x00'}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f}}]}, @common=@SET={0x60, 'SET\x00'}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast2, 0x0, 0x0, 'hsr0\x00', 'ip6gretap0\x00'}, 0x0, 0x98, 0xd8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x360)
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000f00)=ANY=[@ANYBLOB="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"/457], 0x1)
socket$inet_tcp(0x2, 0x1, 0x0)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, 0x0, 0x0)
ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000000040)={r2, 0xfffffffb, 0x8000, "fca62b15611207a224304c8665017490e607ff7f2b61aa61e98ff9c27115f5e971afd93cdb4b9befbee92b6baea6ba117567edf0f83fb348797c672ba0c9cec29d5aa73be2caabb68bdb37e812a621a3be8a015846d5a821bad60c2ed11d1a385b869e92f1fe172a96f8a3c51df68ae8ea3bad3f6882be799087cdfe90"})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)=@newlink={0x3c, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {}, [@IFLA_GROUP={0x8}, @IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_TRUST={0xc}]}]}]}, 0x3c}}, 0x0)
dup3(0xffffffffffffffff, r3, 0x80000)

14:28:38 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000240)='/dev/sg#\x00', 0x0, 0x0)
r1 = dup2(r0, r0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000080)={0x0, 0x1000})
connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000900)={0x23, 0xed, 0x81, 0x40}, 0x10)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
socket(0x1, 0x0, 0x0)
kcmp(0x0, 0x0, 0x7913709e57048ee5, 0xffffffffffffffff, 0xffffffffffffffff)
getsockname(0xffffffffffffffff, &(0x7f0000000040)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0x80)
pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4cc74502f987c2ced6504df6ead74ed8a60ab563e98b4b2a3d3aa7082dbb78abd501ba3da80b856445ab100621d623f543bef2d9f066eb6e1c22b00dd17118782728f0e286cd89e9b08e3f5972fe9ca162b123e19206009c9dd81c796f27f537cc5a3fb54aff8eaff4f6b59c41705b96a6711d4679079d0000000000000000000000c2beec93979184e4d709b275c3208f0a208aa34fafdb887631862b01b6084632295fb07277a2b99e55c21ec84cb873557f7c21e0c9adf876e8f63a3f64b426e61ea9d7a0aadb4a11"], 0xde)
r3 = dup(r2)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000500)={0x10}, 0x10)
sendmsg$IPCTNL_MSG_EXP_GET(r3, &(0x7f00000008c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000880)={&(0x7f0000000600)=ANY=[@ANYBLOB="74000000010201010000000000000000000000003c0003800c000280010001002100000006000340000000001400018008000100e000000108000200ac141438060003dc1948249cbb2e31a7a63008314000040000060003400001000006000740000200000a000b00512e3933310000000f000600746674702d32303030300000"], 0x74}, 0x1, 0x0, 0x0, 0x80}, 0x24021041)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x15)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6(0xa, 0x80003, 0x67)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$KVM_GET_REGS(0xffffffffffffffff, 0x8090ae81, &(0x7f0000000380))
sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x1f00, &(0x7f0000000100)={&(0x7f0000000940)=ANY=[@ANYBLOB="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"/741], 0x1c}, 0x1, 0xfdffffff00000000}, 0x0)

14:28:38 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e0000001c000503d25a80648c63940d0124fc60140002400af80200050582c137153e370400018003001700d1bd", 0x2e}], 0x1}, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
ioctl$SNDRV_TIMER_IOCTL_STOP(r1, 0x54a1)

14:28:38 executing program 3:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mmap(&(0x7f0000000000/0xef9000)=nil, 0xef9000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r2, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$FS_IOC_FSGETXATTR(0xffffffffffffffff, 0x801c581f, &(0x7f0000000180)={0xb500, 0xfffff1b2, 0xffff, 0x5, 0xf8})
recvfrom$unix(r2, &(0x7f0000000080)=""/119, 0x77, 0x141, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e23}, 0x6e)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000000000)=0x7, 0x4)
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r3, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r3, 0x40042409, 0x1)
r4 = socket$packet(0x11, 0x4, 0x300)
getsockopt$packet_int(r4, 0x107, 0x13, &(0x7f0000000040), &(0x7f0000001080)=0x4)

14:28:39 executing program 4:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c)
setsockopt$PNPIPE_ENCAP(r1, 0x113, 0x1, 0x0, 0x0)
ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000000))
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r3 = syz_open_pts(r2, 0x0)
ioctl$TCSETSF(r3, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[]}}, 0x40)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r4, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r4, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r4, 0x0)
ioctl$TCSETSF(r4, 0x5404, &(0x7f0000000040)={0x0, 0xba02, 0xf1, 0x7, 0x1a, "85bb75c09ab2110cd30704dfa1c4b0c1aeff79"})

14:28:39 executing program 2:
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
r0 = open(&(0x7f0000000340)='./bus\x00', 0x0, 0x204)
sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x6)
getpid()
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
geteuid()
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
fgetxattr(0xffffffffffffffff, 0x0, &(0x7f0000000380)=""/171, 0xab)
ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f0000000000)={0x2, [0x80, 0x9]})
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r2, 0x0, &(0x7f0000000200))
getsockname$packet(r2, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8, 0x1, 'sit\x00'}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @multicast1}, @IFLA_IPTUN_6RD_RELAY_PREFIXLEN={0x6, 0xe, 0x7}]}}}]}, 0x48}}, 0x0)

14:28:39 executing program 5:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x5, @loopback}], 0x1c)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
r5 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r5)
r6 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r6, 0x200004)
sendfile(r5, r6, 0x0, 0x80001d00c0d0)
r7 = socket(0x11, 0x800000003, 0x8)
getsockopt$sock_int(r7, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={0x0, 0x5}, 0x8)
ftruncate(r4, 0x200004)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)
sendfile(r0, r4, 0x0, 0x80001d00c0d0)

14:28:39 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001540)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f00000017c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000600)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x4241000, 0x0)
read$FUSE(r0, &(0x7f0000001840), 0x1000)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="3f02000000000000000001"], 0x3}, 0x1, 0xfffffff0}, 0x0)
sendmsg$TIPC_CMD_SET_NETID(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x24, r3, 0x10, 0x70bd2c, 0x25dfdbff, {{}, {}, {0x8, 0x2, 0xe599}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8080}, 0x40)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0x0, 0x1}, 0x10)
read$FUSE(r0, &(0x7f0000003000), 0x1150)
write$FUSE_ENTRY(r0, &(0x7f0000000240)={0x90, 0x0, 0x2, {0x400000000004, 0x0, 0x0, 0x20000000000, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90)

14:28:39 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
getpid()
accept4$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev}, 0x0, 0x80000)
ptrace$poke(0x5, 0x0, 0x0, 0x8)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="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", @ANYRES32=0x0], 0x18}, 0x1, 0xf0ffffff}, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x200004)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)}, &(0x7f0000000180)=0x10)
socket$inet(0x2, 0x80001, 0x0)
r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x0, 0x0)
setsockopt$PNPIPE_ENCAP(0xffffffffffffffff, 0x113, 0x1, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(0xffffffffffffffff, 0x0, 0x480, &(0x7f00000001c0), &(0x7f0000000200)=0x40)
getsockopt$EBT_SO_GET_INIT_ENTRIES(r3, 0x0, 0x83, &(0x7f0000000380)={'nat\x00', 0x0, 0x4, 0xf1, [], 0x9, &(0x7f0000000400)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], &(0x7f0000000280)=""/241}, &(0x7f0000000140)=0x78)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)

14:28:39 executing program 1:
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001540)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f00000017c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000600)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
mount(&(0x7f0000000180)=@loop={'/dev/loop', 0x0}, &(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x4241000, 0x0)
read$FUSE(r0, &(0x7f0000001840), 0x1000)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="3f02000000000000000001"], 0x3}, 0x1, 0xfffffff0}, 0x0)
sendmsg$TIPC_CMD_SET_NETID(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x24, r3, 0x10, 0x70bd2c, 0x25dfdbff, {{}, {}, {0x8, 0x2, 0xe599}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8080}, 0x40)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0x0, 0x1}, 0x10)
read$FUSE(r0, &(0x7f0000003000), 0x1150)
write$FUSE_ENTRY(r0, &(0x7f0000000240)={0x90, 0x0, 0x2, {0x400000000004, 0x0, 0x0, 0x20000000000, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1bd4, 0x0, 0x0, 0x0, 0x0, 0x1}}}, 0x90)

14:28:39 executing program 2:
fcntl$getownex(0xffffffffffffffff, 0x10, 0x0)
r0 = open(&(0x7f0000000340)='./bus\x00', 0x0, 0x204)
sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x6)
getpid()
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
geteuid()
fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
fgetxattr(0xffffffffffffffff, 0x0, &(0x7f0000000380)=""/171, 0xab)
ioctl$KVM_GET_REG_LIST(r0, 0xc008aeb0, &(0x7f0000000000)={0x2, [0x80, 0x9]})
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
getsockname$packet(r2, 0x0, &(0x7f0000000200))
getsockname$packet(r2, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x48, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x3}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @sit={{0x8, 0x1, 'sit\x00'}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @multicast1}, @IFLA_IPTUN_6RD_RELAY_PREFIXLEN={0x6, 0xe, 0x7}]}}}]}, 0x48}}, 0x0)

14:28:39 executing program 3:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000000)=0x3)
r2 = socket$packet(0x11, 0x20000000000003, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'lo\x00', <r3=>0x0})
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000100)={r3, 0x1, 0x6, @remote}, 0x10)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = fcntl$dupfd(r4, 0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000200)={r3, 0x1, 0x6, @dev}, 0x10)

[  510.942541] device lo entered promiscuous mode
14:28:40 executing program 4:
bind$alg(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200))
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x4011)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200))
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)=ANY=[@ANYBLOB="2000000011000d04", @ANYRES32], 0x2}}, 0x0)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000040), 0x0)
write$UHID_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000740)='/dev/vcsa\x00', 0x80202, 0x0)
setsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1003a, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = openat$ocfs2_control(0xffffffffffffff9c, 0x0, 0x40440, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$IOC_PR_RELEASE(r3, 0x401070ca, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x8, &(0x7f0000000300)={&(0x7f0000000080)=@setlink={0x3c, 0x13, 0x41d, 0x0, 0x0, {0x8}, [@IFLA_OPERSTATE={0x8, 0xa, 0x10}, @IFLA_IFNAME={0x14, 0x3, 'ipvlan1\x00'}]}, 0x3c}, 0x1, 0x5e}, 0x0)

14:28:40 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='comm\x00')
sendfile(r0, r0, &(0x7f0000000080)=0x8, 0x9)
r1 = syz_open_procfs(0x0, &(0x7f0000000040)='status\x00')
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x33)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = syz_open_procfs(r3, &(0x7f00000000c0)='comm\x00')
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r5=>0xffffffffffffffff})
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
sendfile(r4, r1, 0x0, 0x9)

14:28:40 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ubi_ctrl\x00', 0x200, 0x0)
getsockopt$PNPIPE_IFINDEX(r3, 0x113, 0x2, &(0x7f00000001c0), &(0x7f0000000200)=0x4)
r4 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000040)="0f34", 0x2}], 0x1, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYRES64, @ANYBLOB="cf2aecc6ff25057d260efbe743f58a04f89ce6c35a270e22b5351907f8ab33a6e02273ee3e4caa49ab127d022c3128d6c3867209fcada5d9929c23ec9a30f5f349d4921a35", @ANYBLOB="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", @ANYRES64], 0x0, 0x16e}, 0x20)
ptrace$setopts(0x4206, r4, 0x0, 0x0)
process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/6, 0x6}], 0x3, 0x0, 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0xc0406618, &(0x7f0000000140)={{0x3, 0x0, @identifier="e2fa848f722fb3393bae25cfcd424bff"}})
tkill(r4, 0x33)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)

14:28:40 executing program 5:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r1, 0xc0884113, &(0x7f0000000040)={0x1, 0x1, 0x0, 0xea36, 0x80000000, 0x0, 0xd1, 0xf415, 0x989, 0x2, 0x68a7})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'bond0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MIIMON={0x8}]}}}]}, 0x3c}}, 0x0)

14:28:40 executing program 2:
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f0000000240)={0x10001, 0xa, 0x4, 0x400000, 0x10000, {0x77359400}, {0x2, 0x8, 0x4, 0x7, 0xc, 0x9, "5b0b5a01"}, 0x81, 0x4, @offset=0x9, 0x53db48c3, 0x0, <r0=>0xffffffffffffffff})
ioctl$SG_SET_DEBUG(r0, 0x227e, &(0x7f00000002c0)=0x1)
r1 = syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f00000001c0)='./bus\x00', 0x400141442, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x10, r2, 0x0)
write$FUSE_NOTIFY_STORE(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="2f0000000400000000009a5e7b336ce96ffd0000000000000209000000000000097740045da462b05bcc7af9000000006aebe987eeb755276371e367ce159eec5f15b5636150c875f7897ce697be78f0240ac28a17cb6ef3901fed47993d6a77320d89498dd89440d32ddff64a51841e2d0db075b4917d633628545514c8c6634d8a2b642c5baeb60b8a07a0fdb955d163e690e6951a64c5a59d826686d36de32206c7864738c21dcf77a39288c4fbeb47204a135e565bc2b7bf89fa00000000000000000000490d345e9597991146822731a78452e9df43b8"], 0x2e)
r3 = socket(0x2, 0x1, 0x0)
ioctl$sock_SIOCDELDLCI(0xffffffffffffffff, 0x8981, &(0x7f0000000180)={'bridge0\x00', 0x3a})
ioctl$NBD_SET_SOCK(r1, 0xab00, r3)
ioctl$NBD_DO_IT(r1, 0xab03)
ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f0000000100)={0x0, 0x0, 0x4, 0x255c68a3df8465b, 0x710c, {0x0, 0x7530}, {0x1, 0x0, 0x0, 0x0, 0xff, 0x52, "5cd57d63"}, 0xe4e, 0x0, @fd=r1, 0x8, 0x0, <r4=>0xffffffffffffffff})
ioctl$NBD_SET_SIZE_BLOCKS(r1, 0xab07, 0x437)
syz_genetlink_get_family_id$batadv(&(0x7f00000000c0)='batadv\x00')
socket(0x0, 0x0, 0x0)
getsockopt$IP_SET_OP_GET_FNAME(r4, 0x1, 0x53, &(0x7f0000000000)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f0000000040)=0x2c)
syz_open_dev$ndb(0x0, 0x0, 0x0)

[  511.293640] team0: Device ipvlan1 failed to register rx_handler
[  511.504374] block nbd2: Receive control failed (result -107)
[  511.537486] block nbd2: Attempted send on invalid socket
[  511.543081] block nbd2: shutting down sockets
[  511.547755] print_req_error: 194 callbacks suppressed
[  511.547763] print_req_error: I/O error, dev nbd2, sector 0
[  511.560892] buffer_io_error: 338 callbacks suppressed
[  511.560902] Buffer I/O error on dev nbd2, logical block 0, async page read
[  511.574869] print_req_error: I/O error, dev nbd2, sector 2
[  511.580728] Buffer I/O error on dev nbd2, logical block 1, async page read
[  511.589321] print_req_error: I/O error, dev nbd2, sector 4
[  511.595056] Buffer I/O error on dev nbd2, logical block 2, async page read
[  511.602858] print_req_error: I/O error, dev nbd2, sector 6
[  511.608731] Buffer I/O error on dev nbd2, logical block 3, async page read
[  511.617668] print_req_error: I/O error, dev nbd2, sector 0
[  511.623586] Buffer I/O error on dev nbd2, logical block 0, async page read
[  511.631470] print_req_error: I/O error, dev nbd2, sector 2
[  511.637654] Buffer I/O error on dev nbd2, logical block 1, async page read
[  511.645292] print_req_error: I/O error, dev nbd2, sector 4
[  511.651261] Buffer I/O error on dev nbd2, logical block 2, async page read
[  511.658874] print_req_error: I/O error, dev nbd2, sector 6
[  511.664859] Buffer I/O error on dev nbd2, logical block 3, async page read
[  511.672652] print_req_error: I/O error, dev nbd2, sector 0
[  511.678624] Buffer I/O error on dev nbd2, logical block 0, async page read
[  511.686360] print_req_error: I/O error, dev nbd2, sector 2
[  511.692354] Buffer I/O error on dev nbd2, logical block 1, async page read
[  511.714064] ldm_validate_partition_table(): Disk read failed.
[  511.761899] Dev nbd2: unable to read RDB block 0
[  511.782473]  nbd2: unable to read partition table
[  511.799313] ldm_validate_partition_table(): Disk read failed.
[  511.825903] Dev nbd2: unable to read RDB block 0
[  511.866179]  nbd2: unable to read partition table
[  511.908658] ldm_validate_partition_table(): Disk read failed.
[  511.934433] Dev nbd2: unable to read RDB block 0
[  511.996221]  nbd2: unable to read partition table
[  512.024584] ldm_validate_partition_table(): Disk read failed.
[  512.043387] Dev nbd2: unable to read RDB block 0
[  512.059505]  nbd2: unable to read partition table
[  512.086061] ldm_validate_partition_table(): Disk read failed.
[  512.111235] Dev nbd2: unable to read RDB block 0
[  512.128924]  nbd2: unable to read partition table
14:28:41 executing program 2:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$sock_x25_SIOCDELRT(r1, 0x890c, &(0x7f0000000000)={@null='               \x00', 0xe, 'bond_slave_0\x00'})
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
perf_event_open$cgroup(&(0x7f0000001340)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[  512.156678] ldm_validate_partition_table(): Disk read failed.
[  512.187001] Dev nbd2: unable to read RDB block 0
[  512.214969]  nbd2: unable to read partition table
[  512.288499] audit: type=1800 audit(1586615321.405:7193): pid=17950 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.5" name="bus" dev="sda1" ino=16605 res=0
[  512.554553] device lo left promiscuous mode
[  512.563426] team0: Device ipvlan1 failed to register rx_handler
14:28:41 executing program 5:
r0 = accept$ax25(0xffffffffffffffff, &(0x7f0000000000)={{0x3, @netrom}, [@netrom, @remote, @rose, @rose, @bcast, @netrom, @default, @default]}, &(0x7f0000000080)=0x48)
sendto$ax25(r0, &(0x7f00000000c0)="cfa26deb4fd0cb53f7264eba4ba8001503a39f4a3a2a10685e6604427ad42d8edd13d4db8f75daa671838eb340534d109bc63ffb1d1aa7195a1a2515ca9b271a7e436749e730a2bcfacfa293d1492d45de5623fe421b6bdbfb49c841a2a9583a647aa16c34cb3b113b8737559e4aaa9a9926b90de50c73ac7770ce6a17a6e0c29de6626f2b17e89baf411e4f9aa9e4ca1ffaa6899d636229bcf7cbf1b72c112236c0a799216575b15a1dae01a50fb1191216", 0xb2, 0x24040800, 0x0, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0205649, &(0x7f0000000200)={0x9f0000, 0x8a, 0xb35, <r1=>r0, 0x0, &(0x7f00000001c0)={0x9a091a, 0x0, [], @p_u8=&(0x7f0000000180)=0x8}})
connect$vsock_dgram(r1, &(0x7f0000000240)={0x28, 0x0, 0x2711, @host}, 0x10)
r2 = syz_open_dev$mouse(&(0x7f0000000280)='/dev/input/mouse#\x00', 0x9, 0x10000)
ioctl$KDSKBMODE(r2, 0x4b45, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$media(&(0x7f0000000300)='/dev/media#\x00', 0x800, 0x400000)
ioctl$VIDIOC_STREAMON(r3, 0x40045612, &(0x7f0000000340)=0x5)
ioctl$PERF_EVENT_IOC_RESET(0xffffffffffffffff, 0x2403, 0x40)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000380)={0x8, 0x0, [{0x0, 0x5, 0x2, 0x6, 0x1, 0x9, 0x9}, {0x0, 0x9, 0x4, 0xffff, 0xff, 0x9, 0x20}, {0x0, 0x6, 0x0, 0x7fffffff, 0x4, 0x10001, 0x7a000000}, {0x2, 0x1000, 0x4, 0x40, 0x4, 0x11bc5838, 0x4}, {0x80000008, 0x7, 0x2, 0xfffffff9, 0x9, 0x214, 0x800}, {0xc0000000, 0x7, 0x4, 0xb, 0x42, 0x8, 0x1}, {0xc0000001, 0x4413, 0x0, 0x80000001, 0x2, 0x7}, {0x80000019, 0xffffffe0, 0x5, 0x143a, 0x8, 0x5, 0x1}]})
ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f0000000500)={0x8, 0x1, 0x4, 0x0, 0x9c9b, {0x77359400}, {0x6, 0x2, 0x2, 0x9, 0x4d, 0x83, "aba73376"}, 0x4, 0x3, @userptr=0x40, 0x5, 0x0, <r4=>0xffffffffffffffff})
ioctl$TIOCMBIS(r4, 0x5416, &(0x7f0000000580)=0x9)
ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0205649, &(0x7f0000000600)={0xa10000, 0x82, 0xfffffff8, <r5=>r0, 0x0, &(0x7f00000005c0)={0x9909df, 0x5, [], @value64=0x1f}})
ioctl$KDSETKEYCODE(r5, 0x4b4d, &(0x7f0000000640)={0x401, 0x481d5b1f})
syz_open_dev$usbfs(&(0x7f0000000680)='/dev/bus/usb/00#/00#\x00', 0x7, 0x200880)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/autofs\x00', 0x210980, 0x0)
ioctl$KVM_TRANSLATE(r6, 0xc018ae85, &(0x7f0000000700)={0x2, 0x100000, 0xff, 0x8, 0x6})
syz_extract_tcp_res$synack(&(0x7f0000000740), 0x1, 0x0)
write$FUSE_GETXATTR(r5, &(0x7f0000000780)={0x18, 0x0, 0x2, {0x7fff}}, 0x18)
ioctl$VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f00000007c0)={0x4, 0xa, 0x1})

14:28:42 executing program 0:
r0 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x82140, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000500), 0x7}, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0x8480, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffdffffffffffffd, 0x0, 0x0, 0x4, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x200000000011, r1, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000240)='NLBL_MGMT\x00')
sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000480)={&(0x7f0000000280)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="000427bd7000fbdbdf250800000014000600ff02000000000000000000000000000114000500fe8000000000000000000000000000bb14000500fe88000000000000000000000000010108000c000300000006000b0001002f6465762f696e66696e6962616e642f72646d615f636d0008000c0001000000000000000000"], 0x84}}, 0x8000)
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000380)={<r7=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r6, &(0x7f00000003c0)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @dev}, r7}}, 0x48)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(0xffffffffffffffff, &(0x7f0000000080)={0x10, 0x30, 0xfa00, {&(0x7f0000000040)={<r8=>0xffffffffffffffff}, 0x2, {0xa, 0x4e22, 0x3f, @ipv4={[], [], @multicast1}, 0x1}, r7}}, 0x38)
write$RDMA_USER_CM_CMD_LEAVE_MCAST(r5, &(0x7f00000001c0)={0x11, 0x10, 0xfa00, {&(0x7f0000000000), r8}}, 0x18)
bind$inet(r2, &(0x7f00000000c0)={0x2, 0x4e23, @broadcast}, 0x10)
sendto$inet(r2, 0x0, 0xfea2, 0x20000802, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r2, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x240, 0x0, 0xffffffd8)

[  513.337067] audit: type=1800 audit(1586615322.445:7194): pid=17966 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.0" name="bus" dev="sda1" ino=16613 res=0
[  513.390146] device lo entered promiscuous mode
[  513.395020] device lo left promiscuous mode
14:28:42 executing program 0:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000001c0)={0x210, 0x0, 0x0, [{{}, {0x0, 0x0, 0x4, 0x0, 'bdev'}}, {{}, {0x0, 0x0, 0x4, 0x0, 'bfs\x00'}}, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}}, {0x0, 0x0, 0x24, 0x0, ':vmnet0systemmime_typeppp0ppp1vmnet1'}}]}, 0x210)
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ubi_ctrl\x00', 0x6a0000, 0x0)
ioctl$VIDIOC_SUBDEV_QUERY_DV_TIMINGS(r0, 0x80845663, &(0x7f0000000100)={0x0, @reserved})
syz_mount_image$bfs(&(0x7f0000000000)='bfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f0000000080), 0x0, 0x80ffff)

14:28:42 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000044c0)='/dev/vcsu\x00', 0x200400, 0x0)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00')
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ENABLE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)={0x28, r3, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'ip6gre0\x00'}}]}]}, 0x28}}, 0x0)
sendmsg$TIPC_NL_NET_GET(r2, &(0x7f00000046c0)={&(0x7f0000004500)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000004680)={&(0x7f0000004540)={0x108, r3, 0x800, 0x70bd25, 0x25dfdbfc, {}, [@TIPC_NLA_SOCK={0x58, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xffffffff}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x40}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x800}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x380}]}, @TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x100}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x33e}]}]}, @TIPC_NLA_BEARER={0x78, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xcfb}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfffffffc}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x800}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}]}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'ipvlan0\x00'}}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x80}, 0x60004902)
r5 = dup3(r1, r0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
r6 = socket(0x10, 0x803, 0x0)
readahead(r5, 0xadbb, 0x400)
openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ttyprintk\x00', 0x0, 0x0)
sendto(r6, &(0x7f0000000040)="120000001200e7ef007b0000f4afd7030a7c", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f00000020c0), 0x3a4, 0x0, &(0x7f0000000000)={0x77359400})
r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r7, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r7, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r7, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r7, 0x0)
ioctl$TCSBRKP(r7, 0x5425, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={'veth0\x00', {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x19}}})

14:28:42 executing program 4:
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@local, @dev, @val={@void, {0x8100, 0x7, 0x1, 0x1}}, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, {[@generic={0x7, 0x2}]}}, {{0x0, 0x4e24, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x8}}}}}}, 0x0)
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r0, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$inet_tcp_int(r0, 0x6, 0x10, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
accept4$bt_l2cap(r2, 0x0, &(0x7f00000000c0), 0x800)

14:28:42 executing program 2:
r0 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200)
select(0x40, &(0x7f0000000000)={0x9, 0x4, 0x90, 0x8000, 0x79, 0x2, 0x5, 0x8}, &(0x7f0000000040)={0x401, 0x12, 0xffffffffffffd756, 0x5, 0x7, 0x1, 0x9, 0x3}, &(0x7f00000000c0)={0x8001, 0x2, 0x1, 0x4, 0xfffffffffffffb01, 0x90a, 0x2, 0x7}, &(0x7f0000000140)={0x0, 0x2710})
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000003040)="02", 0x1}], 0x1, 0x0)
fallocate(r1, 0x20, 0x0, 0xfffffeff000)
fallocate(r1, 0x0, 0x0, 0x10000101)
r2 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x100000000)

[  513.583666] Failed to obtain node identity
[  513.609367] Enabling of bearer <ib:ip6gre0> rejected, failed to enable media
14:28:42 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$TUNSETVNETLE(r1, 0x400454dc, &(0x7f00000000c0)=0x1)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r0, 0x0)
ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f0000000300)="530835644eaf67cc4b0538df67443c959c6e63a07bf19cd3ae7d728187c6fa537dc28ce1889b86811da82f4250f11ef823edc9a69bffd798605b1d9d60a3123328d538d68c4e39c5f037cc05d6872adf4ecc76c970c89eebebfd0231b2a938b8616ec9f10f5c84f5c3b7c416fe2399cd82153099269f23aab7b3da08fb9c83584474bbeac1b59737d447c20524c57f525f091851a994a8723a82e4f0aec473dee0bbc0006bd3ee4d74f8596304e36cfbe864ee89e11be864a8d11d23b4495282acd97e17538e465f30ed61f4ed1d235fac0bb94a276ddb05ba020c36")
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = fcntl$dupfd(r2, 0x0, r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
syz_mount_image$vfat(&(0x7f0000000280)='vfat\x00', &(0x7f0000000240)='./file0\x00', 0x1000000, 0x2, &(0x7f0000000100)=[{&(0x7f0000000080)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}, {&(0x7f0000000040)="198b4b55b2b9866ae3d40b9620520800000001bee7cbae", 0x17, 0x21}], 0x6000810, 0x0)

[  513.671329] audit: type=1804 audit(1586615322.785:7195): pid=17983 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir266122625/syzkaller.VWrHBR/156/bus" dev="sda1" ino=16599 res=1
14:28:43 executing program 0:
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(0xffffffffffffffff, 0x8982, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x7, 0x4, 0x0, 0xfffffe01, 0x0, 0x0, 0x0, 0xffffa9ff}, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x40, 0x0, 0x0, 0x0, 0x50d, 0x128, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xd}, 0x0, 0x0, 0x3, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_setup(0x0, 0x0)
unshare(0x40000000)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r2, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="004942488c23492893efde8b98bd459e7e3a445a9d1887"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r2, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x68, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0xfff1}}, [@filter_kind_options=@f_rsvp6={{0xa, 0x1, 'rsvp6\x00'}, {0x38, 0x2, [@TCA_RSVP_DST={0x14, 0x2, @remote}, @TCA_RSVP_PINFO={0x20, 0x4, {{}, {}, 0x0, 0x0, 0x3}}]}}]}, 0x68}}, 0x0)
ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000180)={0x0, @ax25={0x3, @bcast, 0x1}, @can={0x1d, <r3=>r2}, @llc={0x1a, 0x339, 0xf8, 0x79, 0x1f, 0x7, @remote}, 0x1, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000040)='xfrm0\x00', 0xc973, 0x2, 0x2})
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000200)={@ipv4={[], [], @rand_addr=0x5908}, r3}, 0x14)
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r4, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
setsockopt$TIPC_CONN_TIMEOUT(r4, 0x10f, 0x82, &(0x7f0000000000)=0x1, 0x4)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[@ANYBLOB="2250673ea9c28383f9d0e2c8b938044568f273f1c3dd5dc8f74f561fccd058ae892f377ec33537d7b2449ada53155758a3ed006b56e39b852bf4fe7c07db3b38b8ea7df0ee0dc5adc6a0cf15cadecab0935adc89c8b60f401717e76ff70182433f3243ca4d95e291597ba8a5b7ab4b45013d7021a1256ed4e5ec1c493600c9e46f94cc9faa164d9fb7f2a45dd62619cca30d96c5"], 0x1)

[  513.906701] audit: type=1800 audit(1586615323.015:7196): pid=17982 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.4" name="bus" dev="sda1" ino=16180 res=0
[  513.961802] FAT-fs (loop3): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  513.995449] FAT-fs (loop3): count of clusters too big (1557736062)
[  514.023353] FAT-fs (loop3): Can't find a valid FAT filesystem
[  514.057147] IPVS: ftp: loaded support on port[0] = 21
[  514.135981] device veth12 entered promiscuous mode
14:28:43 executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'\x00', 0x1000})
ioctl$TUNATTACHFILTER(r0, 0x400454cb, &(0x7f0000000200)={0x0, 0x0})
ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0)

14:28:43 executing program 1:
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
write(r1, &(0x7f0000000600)="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", 0xe00)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000080006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
fallocate(r5, 0x18, 0x1, 0x1)
sendfile(r1, r2, 0x0, 0x12000)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$RNDADDENTROPY(0xffffffffffffffff, 0x40085203, &(0x7f00000001c0)={0x2, 0x74, "89ad6cba154b0132caafc654c0b039fff95ce7efb6b972268ad962e85342b2d51cf278615c5823b9598d2436a04aa72fac7e2eba1e9bcf839745459c309941d2f2471f0aea53bfc82fea63c57fc523678b80e933461fce9f58cfb132bde424982f81a70017e0eb1040fa3eddf125f7164a15dd52"})
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0)
socket(0x0, 0x0, 0x0)
getsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, &(0x7f00000000c0))

[  514.275295] IPVS: ftp: loaded support on port[0] = 21
[  514.335424] device veth0 entered promiscuous mode
[  514.427836] audit: type=1804 audit(1586615323.535:7197): pid=18056 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir266122625/syzkaller.VWrHBR/156/bus" dev="sda1" ino=16599 res=1
14:28:43 executing program 5:
r0 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup(r0, 0x0, 0x200002, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYRES16, @ANYRESHEX, @ANYRESHEX], 0x26)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpu.stat\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x20}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x9)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x13, 0x4, 0x42602, 0x0, 0x0, 0xffffffffffffffff, 0x0, [], 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x40)
ioctl$DRM_IOCTL_GET_SAREA_CTX(0xffffffffffffffff, 0xc010641d, &(0x7f0000000240)={0x0, &(0x7f0000000500)=""/180})
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000c40)={r1, 0x0, 0x0}, 0x20)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
flock(0xffffffffffffffff, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
r4 = dup(r3)
setsockopt$inet_sctp6_SCTP_NODELAY(r4, 0x112, 0x3, 0x0, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r4, 0x800c5012, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x7, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000090000000000000009000000019b000200010000181a0000", @ANYRES32, @ANYBLOB="00000000ff0f00001166010035560000"], &(0x7f0000000280)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41000, 0x4, [], 0x0, 0x16, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x5, 0x1}, 0x8, 0x10, &(0x7f0000000300)={0x5, 0xf, 0xe60, 0x8}, 0x10, 0x0, r4}, 0x78)
sendmsg$nl_generic(r2, &(0x7f0000000080)={&(0x7f0000000480)={0x10, 0xbb7f}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)={0x18, 0x22, 0x1, 0x0, 0x0, {0x4}, [@typed={0x4, 0x52}]}, 0x18}}, 0x0)
bind$llc(0xffffffffffffffff, &(0x7f0000000040)={0x1a, 0x301, 0x8, 0xfc, 0x22, 0xfa, @dev={[], 0xa}}, 0xf)

14:28:43 executing program 2:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="5000000010001fff000000000008000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012000900010076657468000000001800020014000100000000001d17a1d6a1705d887eac7267b70b7f46207f56a69b8bdfe7c34f92279f8a74f66ad1b067ee349e845b6d84c97250eacc373f54ae295be8af57609992103051ca023b377c3824770bc9b725d57bc287f289d2a77c9bd30e88e9cba265b93ee643638148177992f4fb11b513d70f18b5195f473a29131965ff85f5c6f52db05b1c0bcb91c8a7847274c27abb9028ca82c6c3f7af68e7643a8dffad5693981e9d7dd198d73ea54c7cb98353d6ef9cc1b6f090a3626afa74b4ec9942e0b319b3ad4d6c6ca3f809f2c0e41d", @ANYRES32, @ANYBLOB="200002000010000008000a00", @ANYRES32, @ANYBLOB="443c3d3c834cfa9d683826e7673405fcda4522e51baaeb8b90a6f914cd5531584c6e30a232ddb76060f23aa6833649ee78001c5099cde3fcae396148a1732a78976a8ddff959c2d04b95aa18a9ff5537acaa7ea13ce83f3964b5b70e9d3a46a9cf8b3a7629267d3ed0274121d8ba17167ee693e1d398c580675858e530505141970ec6a331380e269628ec85146542dad60a16fc2b7a2e474ea17ebf21fc17f9e347c13bcb155a6c9f90001922c28b2453e3d86bfa84ea85500f99819929ba7df447f2db66e30f6b5db42c"], 0x50}}, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r2, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
getpeername$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast2}, &(0x7f0000000080)=0x10)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
read$usbfs(r1, &(0x7f0000000000)=""/4, 0x4)

[  514.573598] audit: type=1800 audit(1586615323.595:7198): pid=18057 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.1" name="file0" dev="sda1" ino=16456 res=0
14:28:43 executing program 0:
r0 = accept4$llc(0xffffffffffffffff, &(0x7f0000000240)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000000280)=0x10, 0x800)
accept(r0, &(0x7f00000002c0)=@xdp, &(0x7f0000000340)=0x80)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x1, &(0x7f00000000c0), 0x8)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0x118a8, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x64149, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xf}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = dup(r1)
write$P9_RSTAT(r2, &(0x7f0000000140)=ANY=[@ANYBLOB="570000007d0100001050000000070000000000000000000000000000000000000007000000000100000000000000000a006d643573756d626465761300245b656d3021656d3024f7b7266d643573756d0000"], 0x57)
write$FUSE_INTERRUPT(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r3, 0x0, 0x487, &(0x7f00000001c0), &(0x7f0000000200)=0x30)

14:28:43 executing program 4:
r0 = creat(&(0x7f0000000280)='./file0\x00', 0x1)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r0, 0x0)
r1 = creat(&(0x7f0000000400)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100)='batadv\x00')
sendmsg$BATADV_CMD_TP_METER(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\a\x00', @ANYRES16=r2, @ANYBLOB="000225bd7000ffdbdf2502000000050035002f00000008003c0004000000050030000100000008002c0000010000"], 0x34}, 0x1, 0x0, 0x0, 0x8c0}, 0x10)
close(r0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
fstat(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setxattr$security_capability(&(0x7f0000000140)='./file1\x00', &(0x7f0000000380)='security.capability\x00', &(0x7f0000000000)=@v3={0x3000000, [], r5}, 0x18, 0x0)
ioctl$KVM_CREATE_PIT2(r0, 0x4040ae77, &(0x7f0000000340)={0x101})
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

[  514.673626] FAT-fs (loop3): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[  514.699059] FAT-fs (loop3): count of clusters too big (1557736062)
[  514.705857] audit: type=1804 audit(1586615323.595:7199): pid=18061 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir266122625/syzkaller.VWrHBR/156/bus" dev="sda1" ino=16599 res=1
[  514.759503] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  514.781720] FAT-fs (loop3): Can't find a valid FAT filesystem
[  514.804385] audit: type=1804 audit(1586615323.605:7200): pid=18062 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir266122625/syzkaller.VWrHBR/156/bus" dev="sda1" ino=16599 res=1
14:28:44 executing program 2:
syz_mount_image$iso9660(&(0x7f0000000200)='iso9660\x00', &(0x7f0000000340)='./file0\x00', 0xfffffffffffffffe, 0x3, &(0x7f0000000380)=[{&(0x7f0000000140)="01434430303101004c494e55060020202020202020202020202020202020202020202020202020204344524f4d20202020202020202020202020202020202020202020202020202000000000000000004f02000000000000000000000000000000000000000000000000000000000000000000010000010100000100080000000000", 0x82, 0x7ffd}, {&(0x7f0000000280)="82e802000000de36880900000000000000a7ed6e87fe67b594d2", 0x1a}, {&(0x7f0000000080)="28a906000000c3bb93a3ff24929d876bb32d49f7dd8c634fa9fdae2d808a765ca2ee93e01ecf27b46866", 0x2a, 0x800}], 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
getdents(r0, 0x0, 0x0)

14:28:44 executing program 3:
ioctl$EVIOCGABS2F(0xffffffffffffffff, 0x8018456f, 0x0)
syz_open_dev$vivid(&(0x7f00000000c0)='/dev/video#\x00', 0x3, 0x2)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(0x0, 0x0)
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_DBG_G_REGISTER(0xffffffffffffffff, 0xc0385650, &(0x7f0000000000)={{}, 0x8})
syz_init_net_socket$ax25(0x3, 0x0, 0xca)
shutdown(0xffffffffffffffff, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x0)
dup3(r1, 0xffffffffffffffff, 0x0)
finit_module(r1, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, 0x0, &(0x7f0000000180))
getpid()
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x7, @mcast2, 0x800}, @in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x13}}, @in={0x2, 0x4e23, @empty}], 0x3c)
connect$pptp(0xffffffffffffffff, 0x0, 0x0)
ioctl$PPPIOCGNPMODE(r0, 0xc008744c, &(0x7f0000000040)={0x0, 0x3})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
unshare(0x40000000)

14:28:44 executing program 4:
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000340)=0x40, 0x4)
r0 = syz_open_dev$radio(&(0x7f0000000000)='/dev/radio#\x00', 0x3, 0x2)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000000040)={0x1, 0x1})
ftruncate(0xffffffffffffffff, 0x200004)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0)='nl80211\x00')
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
getpeername$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000140)=0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x7)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r7, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="500000002c00270dffffffff0000000000000000", @ANYRES32=r7, @ANYBLOB="0000000000000000040000000a000100728000000000000000000000000000bb080c010008a20e000000000000000000e3ff004000000000"], 0x50}}, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="02082cbd7000fbdbdf2501000000080001000200000008000300", @ANYRES32=r4, @ANYBLOB="08000300", @ANYRES32=r7, @ANYBLOB="08000100000008000300b963fed1906d830f4abbf1f825134df6034d148868b8546f9a", @ANYRES32=0x0, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

14:28:44 executing program 5:
pipe(0x0)
open(&(0x7f00000000c0)='./file0\x00', 0x18d042, 0x0)
r0 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r1)
syz_mount_image$f2fs(&(0x7f0000000180)='f2fs\x00', &(0x7f00000001c0)='./file0\x00', 0x5f9, 0xa, &(0x7f0000000a00)=[{&(0x7f0000000240)="e9d7cb7a0426e6bd8489f1f041204355105891a9a882d5b1bbdbab6cffa4db3e8ee93618cc0217fc9b6bffbc1b4d2eb72bea6dea8d5c03fe81c269d6659ad3f2ecdba8b23d419309bf155489bfc804457b7c0bfbb671394cc9c2a37bcb18aa2b955d7ed9b3623617297cec3167d3bfd7f50d25ee3ad301229189bd73f5a60fbece10f071cec5", 0x86}, {&(0x7f0000000300)="fbc3920cea765051446e9825ba70d9038e82849e3d3f53334ec47d7095ab2a8e37acd786620b053801c0c258b41bfa2cd443e299e10f371f1d64fc7e25d4e5d05dfad6a5382846a95cb0beb5b93fe8fe2319668a4f7903ad26d033901d59bbbd7d5b7df3927f4e70b1a9947b6c387f18a38ea274f7cf459a8b64b502e08fdaf3829e5944e96ce22d8811cc8ba03b54c19937c8cda8378520b2e4f192efc7f7122a8bc93fc434806fdbb14cc86f17bef2a9c40bd9fb21a3d41e82efb515d5a0bed2a83ffc6ced11355cb99e9a2108317ffb897ecfaf", 0xd5, 0x3}, {&(0x7f0000000400)="497381e67c4aef1efe9d6b9ff57b4689eb2b1853eda3037ab1990a13e335c69c32c74327800d302c1af1154d1a7b395059ffee4ba472f14f691985eb590fcadd5f3adaf0118b67ff7d8a38eb3ea0ff5e6012bf9a4ab94b71e679c260520a30c26677bdffad2ec6dd704eb2229d63003f7e60fb96d41bc4524710aafcfaca1f63e34eff3796a2bd465f54dbbeff6a5d8510ecae85636b3b6b9e264f36215c8da40e53e8ceaa9e0f341ac03193ac6255f73aa6ae7e73416350cca036a75ecd0c4c16cafb375c0c6f60c6a511334e4e06632bcb44ddfbdff9aecd27e48da4046ffde33f732c44a9d929ca48919c90", 0xed, 0x1}, {&(0x7f0000000500), 0x0, 0x101}, {&(0x7f0000000540)="193d288c124952c25199d660583f801fb6f75198b67226c1bad9d8", 0x1b, 0xffffffffffffffff}, {&(0x7f0000000580)="89a7476682a5cfede79c276617e2b78805082dddfb72fa0cd5cc2e56e1243b4ea5e3bfb74feaee6e5b65d0f724a6d88d81db05f29b3d21c47d573d9b2255c97b4a917a925922af5897d4b49562749bb980d96d640f6cfdd6cde11c778f955f3321fa36f7596728aec89862ee6a92efdad4bd518db91a41fa86b3872a827ddbf2313b7ae5323bf29d76a45e50f6e3b442bf0980bd128d37f04452e04ff8a8e07bcb1f760c7849e79c78124993571d82c58cff", 0xb2, 0x1}, {&(0x7f0000000640)="ca53370381df23bce789c23879d38c2e1b989636387fdb36625716bbe71ed0f810e21c0146ae2dc72c235fcca59d7b82aa147b4ae8a4de63e0d4e38a8a1f410ee679f2651148e6198fc99db28bfa9d0cd586451f03ba87c94799f02a8d7ecb0f8b7045e90698cc5da6c600853b6f66fae7028a1080bf5d56d662bb40ceb99d055aafd4339a93220102c1823d8b5b1f62e9f7331768deb4a763e467365d9c61f2a1e798cb2811cd81c301ed72409917c7e32f37f3c9e5b9331046db694bb791c74e83bbfd35704f15aeae6319201abe85be9fc6ca82db3c05f0d6", 0xda, 0x4}, {&(0x7f0000000740)="04b15b26a61bb97d082eebd86aa83ef6747db2f8e75fdbc7b64b273c9b2ead220f435d778165148b365fc10d09f614b68853a26107f00f6a6c", 0x39, 0xa6dc}, {&(0x7f0000000780)="dd8e2f1f3001b5ca1c38912aa48f7f563de9d376aa97a130f66a1bb95173485635bba85f1830eff9ebe6e71f19c7406b7474b25e6cc57cab3ac7c5f1632b498e009dc63d74de9a03b74913a12801f2363eeafd3ad412581751374dec1f1ea44da84b6fa029240cd9a41af545dace8a2aec2cd97429833d1664b035cc57ae242e1a685beec9660d054b84fd1908ff7a82b017d6afa1fc5f6c4c6fe4f639105c2f178b9cf3c795c657b913f69745a862d6c2f22a1ba149a03ae49715c35ac11b94fd26cd80", 0xc4, 0x2}, {&(0x7f0000000940)="cbce6626f6e027f426e2179be8af37895b6e0413122c095a12be0fb34feb64c70f1079d64c5255226619ef7a03088fa99ce00bd07d54392b8a509e2720115b1611ce489ea7069c98afdc428eedbb618b717a9c375fd109084a8223e189cc6e7d654ca990ca1cc2bb717f69f286b9c5b03b571d491f8f315c3b20a53e4f3768e25e889963c96a37001d542fc6b8d4af59f6be2947a1630616209aa0b8f693d4e162676907482b0b2c4383b3af2b", 0xad, 0x8a0}], 0x8000, &(0x7f0000000b00)=ANY=[@ANYBLOB='jqfmt=vfsv1,audit,euid>', @ANYRESDEC=0x0, @ANYBLOB="2c726f6f74636f6e746578f93d756e636f6e66696e65645f752c6f626a5f747970653d6e6673002c7569643e", @ANYRESDEC=r1, @ANYBLOB=',subj_type=\'proc+trustedppp1{,\x00'])
prctl$PR_SET_FPEXC(0xc, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x180000105, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000040), &(0x7f0000000100)=0xe)
setsockopt$packet_drop_memb(r2, 0x107, 0x2, &(0x7f0000000900)={0x0, 0x1, 0x6, @remote}, 0x10)
perf_event_open(&(0x7f000000a000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x2}, 0x8000000200000402, 0x800007f, 0x0, 0xd}, 0x0, 0x4, 0xffffffffffffffff, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000))
r3 = open(&(0x7f0000000200)='./file0\x00', 0x22, 0x109)
write$P9_RATTACH(r3, &(0x7f0000000080)={0x14}, 0xfffffff4)
setsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xfd}, 0xc)
fcntl$setstatus(r3, 0x4, 0x800)

[  515.163648] ISOFS: Unable to identify CD-ROM format.
[  515.184348] audit: type=1800 audit(1586615324.295:7201): pid=18127 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.5" name="file0" dev="sda1" ino=16185 res=0
14:28:44 executing program 5:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$EXT4_IOC_GROUP_EXTEND(r1, 0x40086607, &(0x7f00000001c0)=0x5d)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040)='l2tp\x00')
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r1, 0xc01064c7, &(0x7f0000000180)={0x3, 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0]})
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sendmsg$L2TP_CMD_SESSION_DELETE(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x40, r2, 0x400, 0x70bd25, 0x21dfdbfe, {}, [@L2TP_ATTR_OFFSET={0x6, 0x3, 0xb5}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0xfb}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'netdevsim0\x00'}, @L2TP_ATTR_PEER_CONN_ID={0x8, 0xa, 0x3}]}, 0x40}, 0x1, 0x0, 0x0, 0x8080}, 0x84)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
ioctl$sock_ax25_SIOCADDRT(r4, 0x890b, &(0x7f0000000200)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, 0x8, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
keyctl$set_reqkey_keyring(0xe, 0x1)

[  515.317098] IPVS: ftp: loaded support on port[0] = 21
[  515.355638] ISOFS: Unable to identify CD-ROM format.
14:28:44 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup2(r1, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000440)=[@textreal={0x8, &(0x7f0000000340)="260f01b70000f20f1ee30f08440f20c0663507000000440f22c00f01c40f01df0f55250f3066b9660300000f320fc7bd0000", 0x32}], 0x1, 0x54, 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(0xffffffffffffffff, 0x40106614, &(0x7f0000000000))
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfb]})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_DEBUGREGS(r5, 0x4080aea2, &(0x7f0000000040)={[0x6000, 0x101002, 0x0, 0x2000], 0xe, 0x25, 0x80000000})

14:28:44 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = dup3(r1, r0, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket$inet6(0xa, 0x5, 0x0)
bind$inet6(r3, &(0x7f00002aafe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r3, 0xffffffffefffffff)
sendmsg$IPCTNL_MSG_EXP_NEW(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x28, 0x0, 0x2, 0x801, 0x0, 0x0, {0x0, 0x0, 0x1}, [@CTA_EXPECT_FN={0xa, 0xb, 'Q.931\x00'}, @CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x200}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000000}, 0x40)
getsockopt$inet6_opts(r2, 0x29, 0x3b, &(0x7f0000002080)=""/4105, &(0x7f0000000180)=0x37153353a0e27e41)
sendmmsg$inet6(r3, &(0x7f0000000540)=[{{&(0x7f0000000b80)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000001040)=[{&(0x7f00000000c0)="14", 0x1}], 0x1}}, {{&(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000240)='-', 0x1}], 0x1}}], 0x2, 0x0)
ioctl$KVM_GET_EMULATED_CPUID(r2, 0xc008ae09, &(0x7f0000000280)=""/192)

[  515.560845] audit: type=1804 audit(1586615324.665:7202): pid=18057 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir088111672/syzkaller.GPhLgI/242/file0" dev="sda1" ino=16456 res=1
[  515.959929] IPVS: ftp: loaded support on port[0] = 21
14:28:45 executing program 2:
perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x10, 0x80002, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00'})
ioctl$NS_GET_USERNS(0xffffffffffffffff, 0xb701, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000040)={0x3, 'ipvlan1\x00', {0xef0d}, 0x9})
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_TP_METER(r2, &(0x7f00000003c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000500)=ANY=[@ANYBLOB='<\a\x00\x00', @ANYRESOCT, @ANYBLOB="000227bd7000fedbdf25020000000500330000000000050035003f000005080034000000000005002d0000000000050035000a0000006ccb98ca3bcc670382d4a104cee57ebe1e5286a20c2fa90f290e2b863cf7bd975e8b0ee772aee2032fc7248001e3f8c2655694f4bb7a5d3f14aa8a1133fe0a2d09fc2916885700a6290c65843ade47de6ba85421f21ea16805444bc8497102cd2372fd30ed1f92eaa5ec704e6e0fa77083040f330393a909ef5590548b7c550720e53ea31f82873394768f9a76b12f04f96c5a7abc00317f40fae2527fc1ec0000000000"], 0x3}, 0x1, 0x0, 0x0, 0x24040004}, 0x10000004)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/net/pfkey\x00', 0x400, 0x0)
r4 = socket(0x11, 0x800000003, 0x8)
getsockopt$sock_int(r4, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
r6 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r7=>0x0]}, &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r5, 0x84, 0x77, &(0x7f0000000000)={r7}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r4, 0x84, 0x11, &(0x7f0000000180)={r7, 0x9}, 0x8)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f0000000240)={r7, 0x2}, &(0x7f0000000280)=0x8)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000b80)=@newlink={0x54, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb, 0x1, 'geneve\x00'}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_PORT={0x6}, @IFLA_GENEVE_UDP_ZERO_CSUM6_RX={0x5, 0xa, 0x1}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x54}}, 0x0)

14:28:45 executing program 5:
openat$sndseq(0xffffffffffffff9c, 0x0, 0x2600)
r0 = creat(0x0, 0x0)
r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r3=>0x0]}, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f00000000c0)={0x8, 0x0, 0xee18, 0x0, r3}, 0x10)
fchdir(r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x15, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x18}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x8}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x0, 0xf8, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x3, 0x10, 0x0}, 0x15)
setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(0xffffffffffffffff, 0x84, 0x23, 0x0, 0x0)
sendmmsg(r2, 0x0, 0x0, 0x0)
ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, 0x0)
close(r1)
ioctl$DRM_IOCTL_MARK_BUFS(0xffffffffffffffff, 0x40206417, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

14:28:45 executing program 4:
syz_mount_image$jfs(&(0x7f00000000c0)='jfs\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={[{@integrity='integrity'}]})
r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x8102, 0x0)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000080)={&(0x7f0000000000)='./file0\x00', r0}, 0x10)

14:28:45 executing program 0:
perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff7fffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x11, 0x800000003, 0x8)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)
r1 = syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0)='SEG6\x00')
sendmsg$SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0x48, r1, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x9}, @SEG6_ATTR_SECRET={0x10, 0x4, [0x4, 0x3f, 0x2]}, @SEG6_ATTR_DST={0x14, 0x1, @loopback}, @SEG6_ATTR_SECRET={0x8, 0x4, [0x0]}]}, 0x48}, 0x1, 0x0, 0x0, 0xc0}, 0x24004800)
bind(r0, &(0x7f0000000280)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x58)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f0000000040)=0x76, 0x4)
setsockopt$CAIFSO_REQ_PARAM(0xffffffffffffffff, 0x116, 0x80, &(0x7f0000000000)="9ce67cde226a1f22", 0x8)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e23, @broadcast}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0xeb}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f00000007c0)='bbr\x00', 0x4)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0xa5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendto$inet(r2, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860ac5cf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf93a1a7511bf746bec66ba", 0xfe6a, 0x20c49a, 0x0, 0x27)
perf_event_open(0x0, 0x0, 0xfffbffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0xc000010}, 0x0)

14:28:45 executing program 3:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mkdir(&(0x7f00000009c0)='./file1\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040), 0xd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setxattr$system_posix_acl(&(0x7f0000000580)='./file1\x00', &(0x7f00000005c0)='system.posix_acl_default\x00', &(0x7f0000000c40)={{}, {}, [{}, {}], {}, [{0x8, 0x4}, {}, {0x8, 0x1}, {}, {}]}, 0x5c, 0x0)
mount$overlay(0x40000a, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './file1'}, 0x5c}], [], 0xf603000000000000})
dup(0xffffffffffffffff)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080))
sendto$l2tp6(0xffffffffffffffff, &(0x7f0000000140)="d2eea107e2684478aa721ceee5", 0xd, 0x24040011, &(0x7f0000000200)={0xa, 0x0, 0x0, @remote, 0xef, 0x3}, 0x20)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000600)=ANY=[], 0x0)
r0 = dup(0xffffffffffffffff)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, 0x0, &(0x7f00000001c0)='9p\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="0000000000002f1866b3a919ba0000"])
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='cgroup2\x00', 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)

14:28:45 executing program 1:
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
lseek(r0, 0x800002, 0x0)
ioctl$EXT4_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0))
write$binfmt_elf64(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x1)
fallocate(r0, 0x3, 0x0, 0x8020003)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r1 = syz_open_dev$audion(&(0x7f0000000000)='/dev/audio#\x00', 0x9, 0x4700)
r2 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r3)
ioctl$TUNSETOWNER(r1, 0x400454cc, r3)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)

[  516.746923] device geneve2 entered promiscuous mode
14:28:46 executing program 4:
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3}, 0x0, 0x0, 0x83}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000080)='./bus\x00', 0x0, &(0x7f0000000100)={'L-', 0x8080000000}, 0x16, 0x0)
accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x80800)
perf_event_open(&(0x7f0000000700)={0x1, 0xfffffffffffffd37, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8001, 0x11c19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={0x0, 0x9}, 0x5b991ddc9cdf5b8a, 0x8000, 0x0, 0x0, 0x0, 0x4, 0x3}, 0x0, 0xd, 0xffffffffffffffff, 0x1)
gettid()
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000002340)=[{&(0x7f0000001280)=""/4096, 0x1000}], 0x1, 0x0)
timer_create(0x8, &(0x7f00000001c0)={0x0, 0x3e, 0x4}, &(0x7f0000000040))
write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000780)=ANY=[@ANYBLOB="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"/893], 0x247)
r0 = open(&(0x7f00000000c0)='./file1\x00', 0x141042, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000200)={0x0, r0, 0xd7, 0x1f, 0x80000002, 0x4})
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000200))
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fallocate(r1, 0x10, 0x8003, 0x8020001)
r2 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
write$P9_RREMOVE(r3, &(0x7f0000000280), 0x1033b)
fdatasync(r3)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000200)={0x0, r3, 0x8028})
creat(&(0x7f0000000300)='./file0\x00', 0x0)
creat(&(0x7f0000000180)='./bus\x00', 0x80)

14:28:46 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
write$cgroup_int(r0, &(0x7f0000000200), 0x400086)
bind(0xffffffffffffffff, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
close(0xffffffffffffffff)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x9, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events\x00', 0x7a05, 0x1700)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r1, 0x113, 0x1, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(0xffffffffffffffff, r4, 0x0, 0x80001d00c0d0)
setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f0000000280)=0x8, 0x4)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
syz_kvm_setup_cpu$x86(r0, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000140)=[@textreal={0x8, &(0x7f0000000100)="f2aff30f2282f77f0a0f06f2660f017a002e0f01de660f388047000f20e06635000004000f22e00fc7bec0a9baf80c66b8cad4e38566efbafc0ced", 0x3b}], 0x1, 0x4, &(0x7f0000000240), 0x0)
bind(r1, &(0x7f0000000040)=@alg={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-serpent-avx2\x00'}, 0x80)

[  517.083542] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
14:28:46 executing program 1:
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0xf8, 0x1, 0x0, 0x0, 0x207, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40140, 0x0, 0x0, 0x0, 0x8001, 0x6}, 0x0, 0xfffffffffffff7ff, 0xffffffffffffffff, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000140)={0x0, <r1=>0x0})
r2 = gettid()
syz_open_procfs$namespace(r2, &(0x7f0000000080)='ns/pid_for_children\x00')
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
perf_event_open(&(0x7f000025c000)={0x0, 0x70, 0x35, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x5, 0x4d50}, 0x48040, 0x0, 0x5, 0x0, 0x0, 0xffffffff, 0xfffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000015c0)={0x4, 0x70, 0x8, 0x73, 0x1, 0x1, 0x0, 0x492, 0x40004, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xafa4, 0x0, @perf_config_ext={0xfffffffffffffffa, 0x20}, 0x9018, 0xc31, 0xffffffff, 0x9, 0x1f, 0x6, 0x5a6e}, r2, 0x6, 0xffffffffffffffff, 0x1a)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380), 0x0, &(0x7f00000002c0)=""/77, 0x4d}, 0x40002022)
recvmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000003c0)=@ax25, 0xca, &(0x7f0000000000)=[{&(0x7f0000000080)=""/135, 0x87}], 0x1, &(0x7f00000001c0)=""/4, 0x4, 0x7301}, 0x3f00)
sendmsg(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), 0x47, &(0x7f0000000000)}, 0x0)
ioctl$PERF_EVENT_IOC_REFRESH(r0, 0x2402, 0xe43)
r3 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_int(r3, &(0x7f0000000040)='cpuset.memory_spread_page\x00', 0x2, 0x0)
write$cgroup_int(r5, &(0x7f0000001580)=0x401, 0x12)
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x4030582a, 0x0)
write$cgroup_type(r4, &(0x7f0000000140)='threaded\x00', 0xffffff1f)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000340)={{0x4, @empty, 0x4e22, 0x0, 'fo\x00', 0x13, 0x3ff, 0x43}, {@multicast2, 0x4e22, 0x0, 0x10001, 0x8, 0x9}}, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x32600)

[  517.215946] overlayfs: filesystem on './file0' not supported as upperdir
14:28:46 executing program 3:
clone(0x2000000024000300, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = accept4$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @multicast2}, &(0x7f0000000100)=0x10, 0x80800)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x8000000000000, 0x40, &(0x7f0000000380)=ANY=[], 0x0)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = memfd_create(&(0x7f0000000180)='\x00\x00\x00\x00\x00\x00\xaa\x91\x9fl`\x88\xea\a\xfe@\xf0h-]\xfa\x90\x03\xa9kEU\xc7k\xbcO\xe7\xe1\xfb\xd3\xed\xc8\xd7\xf2\xf0\xe3\x82\xe2\x19\'\xf5k\xaa5\xecU\xcc\x95\xad\x8f\xe6u\x85`\xdf\x9bE7\x10\xab\xbfI\xc0j\x99v\xd6E\xc4\x10F\x9d2\xcb\xea\xf2\x8dU\xc0\xf3\x82\xfe\x04\xe2\x9f$\xf9 hk\xc5\x92\xd1\xdc\xc9.\x11T\xdbb\xce\xc9\x12_h\xb5\x927\xdb{,\xe9\xcf\x89 \xc0v\xce\xcaQ\xa7^\\ \xa6T\xc7\xfcm\x10z\x90c!Z\xd83\xf5wQ\x16W\xcb\x83\x91\xc8\x85\x1a\xce\x1a\x1e:\x0e\xf3\xc8\xb5c\x1b{\xe1\xb06%\xa84a&\xd5;\x81D|\xc7O\xe7\xaen)8\xfdGW/\xdc\x12~\x15p\xc2\xa4Y\f\x93]\xa7', 0x0)
mmap(&(0x7f0000000000/0xaa2000)=nil, 0xaa2000, 0x5, 0x11, r4, 0x0)
rt_sigaction(0x7, &(0x7f0000b4a000)={0xfffffffffffffffd, 0x80000002, 0x0}, 0x0, 0x8, &(0x7f0000000000))
syz_open_procfs(0x0, &(0x7f0000000040)='stack\x00')
prctl$PR_SET_DUMPABLE(0x4, 0x0)
r5 = gettid()
ptrace$setopts(0x4206, r5, 0x0, 0x0)
tkill(r5, 0x33)
ptrace$setregs(0xd, r5, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r5, 0x0, 0x0)
syz_open_procfs(r5, &(0x7f0000000080)='net/dev_snmp6\x00')

14:28:46 executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000591dedd785d00001800010000000000000000000a00000000000006000000008a5316800400008006001500040000000207d3c70c2115e7020ee8bbcb63cd5c"], 0x2c}}, 0x0)

[  517.795040] selinux_nlmsg_perm: 72 callbacks suppressed
[  517.795059] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=56798 sclass=netlink_route_socket pig=18261 comm=syz-executor.0
[  517.868942] kauditd_printk_skb: 1 callbacks suppressed
[  517.868957] audit: type=1800 audit(1586615326.986:7204): pid=18240 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.5" name="bus" dev="sda1" ino=16620 res=0
14:28:47 executing program 5:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = fcntl$dupfd(r2, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r4, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
recvfrom$netrom(r3, &(0x7f0000000280)=""/212, 0xd4, 0x40000000, &(0x7f0000000100)={{0x3, @null, 0x7}, [@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f00000000c0)={0x3, r4})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040)='devlink\x00')
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)={0x3c, r7, 0x536ae464467e3e0b, 0x0, 0x0, {0xb}, [{@nsim={{0xe, 0x1, 'netdevsim\x00'}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8}}]}, 0x3c}}, 0x0)
sendfile(r6, r5, 0x0, 0x100000001)

[  517.990302] audit: type=1800 audit(1586615327.016:7205): pid=18242 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.5" name="bus" dev="sda1" ino=16620 res=0
[  518.265336] audit: type=1804 audit(1586615327.376:7206): pid=18271 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.5" name="/root/syzkaller-testdir088543764/syzkaller.csadmZ/211/cgroup.controllers" dev="sda1" ino=15905 res=1
14:28:47 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
setsockopt$inet_sctp6_SCTP_CONTEXT(r2, 0x84, 0x11, &(0x7f0000000000)={0x0, 0x7}, 0x8)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0xa732})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x102})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, &(0x7f0000000200)={0x1, &(0x7f0000000100)=[{0x6}]})

14:28:47 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r0, 0x0, 0xffffffffffffffff)
getsockopt$sock_timeval(r0, 0x1, 0x0, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f00000003c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x7fff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
semget$private(0x0, 0x6, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KDFONTOP_COPY(0xffffffffffffffff, 0x4b72, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
getpid()
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x4)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84470080ffe0064e2300001f0000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x48}], 0x1)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$sock_inet6_SIOCADDRT(r1, 0x89a0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28031, 0xffffffffffffffff, 0x0)

14:28:47 executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r1, 0x113, 0x1, 0x0, 0x0)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x400000, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x1, @loopback}})
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$DRM_IOCTL_MODE_GETENCODER(r2, 0xc01464a6, &(0x7f0000000100)={0xfffffff8})
setsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, &(0x7f0000000000)=0x5, 0x4)
write$tun(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00000000deff0000004500001c00000000946aa32f3ad1dc38ffffffff95ec547f06564ab51ac5bb1600a929e250d3f41a0ecb7ac62453c87e914b7427d697fbfeb5012ea7cde418269faef3f47b9fbbda95faae69da949bb7c0f87bc442d05596338ec2870939a4ef29100b5f04649c9b8c106b9ebf31d5001a036f2d7e769dbe751efb3cff2ff1bcd5c8b6771fdd42d87cd6820800771fa9193d71971a719e"], 0xfdef)

14:28:47 executing program 3:
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ubi_ctrl\x00', 0x0, 0x0)
ioctl$ASHMEM_GET_SIZE(r0, 0x40046f41, 0x76006e)
r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x109200, 0x0)
ioctl$ASHMEM_GET_SIZE(r1, 0x40186f40, 0x76006e)
socket$inet_udplite(0x2, 0x2, 0x88)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r2, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)

[  518.537066] ubi0: attaching mtd0
[  518.557624] ubi0: scanning is finished
14:28:48 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x1, 0x2)
ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000080)={0x81, 0x5, 0x2})
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r2 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r3)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000640)='/dev/uhid\x00', 0x802, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x12e)
r5 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r6 = socket(0x10, 0x0, 0x0)
stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0})
sendmsg$netlink(r6, &(0x7f0000002100)={&(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfb, 0x2}, 0xc, 0x0, 0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYBLOB="00000000180000000000", @ANYRES32=r6, @ANYRES32=r4, @ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r5, @ANYRES32, @ANYBLOB="000000001c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYRES32=r7, @ANYBLOB='\x00\x00\x00\x00'], 0xd2}, 0x4)
r8 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r9=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r9)
write$P9_RSTATu(0xffffffffffffffff, &(0x7f00000000c0)={0x53, 0x7d, 0x2, {{0x0, 0x3d, 0x7, 0xfffffffc, {0x1, 0x2, 0x4}, 0x20000000, 0x80, 0xfffffff7, 0x4, 0xa, '/dev/vbi#\x00'}, 0x1, '\x87', r3, r7, r9}}, 0x53)
ioctl$VIDIOC_QBUF(r1, 0xc058565d, &(0x7f0000000140)={0x0, 0x5, 0x4, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "bc4c74c7"}, 0x0, 0x2, @planes, 0x10ff00})
dup3(r0, r1, 0x0)

[  518.899162] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  518.931074] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  518.950315] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
14:28:48 executing program 5:
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff0180000008003950323030302e4cc74502f987c2ceb3504df6ead72dbb78ab0200ba3da8b7f56445ab100621d6234555c00004fd1b3786cd89e9b08e3f5972fe9ca1e87dcbe5c08150da9bc58cdb6a979d6323e19268c89ca5d81c796f27f537cc5a3fb54aff8eaff4f61e9c0df8765b1d4679075ad74b49d9feb5d59d000000000000000000000083e37f932a6b342390e27b6276676b659bdba8afe51cf610691e711b8e34b1cd3e381a3acaecbbbe3a934c39d1d30db0c99468448ed600000000e2ffb27d2e58cf2dbe4d05a51f7b2ad48d0d94e9c1cb29bd7672157fe7dc16b746312c9bfc"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
ioctl$VIDIOC_G_MODULATOR(r5, 0xc0445636, &(0x7f0000000140)={0xffffffff, "267dc8738382318ac60efab72c4563efcd8633875eec0a650507a32ce7d98699", 0x20, 0xa8, 0x10001, 0x2, 0x2})
close(r3)
r6 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r6, 0x200004)
sendfile(r3, r6, 0x0, 0x80001d00c0d0)
ioctl$IMCLEAR_L2(r6, 0x80044946, &(0x7f0000000080)=0x2)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@msize={'msize', 0x3d, 0x7fffffff}}]}})

[  519.037657] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  519.064798] audit: type=1800 audit(1586615328.176:7207): pid=18293 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.2" name="bus" dev="sda1" ino=16098 res=0
14:28:48 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$md(0xffffffffffffff9c, &(0x7f0000000080)='/dev/md0\x00', 0x0, 0x0)
r1 = socket(0x10, 0x0, 0x0)
stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
sendmsg$netlink(r1, &(0x7f0000002100)={&(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfb, 0x2}, 0xc, 0x0, 0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="00000000180000000000", @ANYRES32=r1, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00'], 0xd2}, 0x4)
r3 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r4)
mount$fuse(0x0, &(0x7f0000000500)='./bus\x00', &(0x7f0000000540)='fuse\x00', 0x200016, &(0x7f00000006c0)={{'fd'}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id'}, 0x2c, {'group_id', 0x3d, r2}, 0x2c, {[{@blksize={'blksize', 0x3d, 0x1600}}, {@default_permissions='default_permissions'}, {@allow_other='allow_other'}, {@allow_other='allow_other'}, {@allow_other='allow_other'}, {@default_permissions='default_permissions'}, {@allow_other='allow_other'}, {@blksize={'blksize', 0x3d, 0x3800}}, {@allow_other='allow_other'}, {@max_read={'max_read', 0x3d, 0x200}}], [{@fowner_gt={'fowner>', r4}}, {@dont_measure='dont_measure'}, {@obj_role={'obj_role', 0x3d, '/dev/md0\x00'}}, {@dont_measure='dont_measure'}, {@func={'func', 0x3d, 'FILE_MMAP'}}, {@dont_measure='dont_measure'}]}})
ioctl$BLKPG(r0, 0x40140921, &(0x7f0000001200)={0x0, 0x0, 0x3, 0x0})
ioctl$KVM_GET_FPU(0xffffffffffffffff, 0x81a0ae8c, &(0x7f00000000c0))
ioctl$BLKBSZSET(0xffffffffffffffff, 0x40081271, &(0x7f0000000000)=0xc000000000000000)
r5 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r5)
r6 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r6, 0x200004)
sendfile(r5, r6, 0x0, 0x80001d00c0d0)
ioctl$SG_SET_FORCE_PACK_ID(r6, 0x227b, &(0x7f0000000040)=0x1)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000004c0)={&(0x7f0000000280)="e8b980b9b643023a8bd471c7b8b2d914bf59c8e35198938d97275ca6ebe0b5bc991b0b57a20e9e97635b652d942a0bb1d516b0555a5367de4b0e06727058a1616e45e6b29e9fd5b7ade45ba23ebbf1e5f291f1b0669b140e6bade401e84e938a0b6daec2eb4ee4fba5d3612869eb25b79c8e1c8973f872b66e333cf51ce182a00c4b08835c7dc9a3d77b827e8e4462a60532668c86c2a0746889343066", &(0x7f0000000340)=""/194, &(0x7f0000000440)="7720e1026b8807c5b945d703ca9ae6c7b6518c0b21cf48fdbecf60f6a4c517e261dddcec6f06115bfb772c82c6584d3738c694d7db00ca0447b73466136203bb1e249a01e49ff6d3d3", &(0x7f0000001240)="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", 0x5, r6, 0x4}, 0x38)

[  519.098222] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  519.130257] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
14:28:48 executing program 2:
socket$inet_udp(0x2, 0x2, 0x0)
r0 = creat(&(0x7f0000002440)='./file0\x00', 0x0)
r1 = creat(&(0x7f0000002440)='./file0\x00', 0x0)
write$cgroup_type(r1, &(0x7f0000000240)='threaded\x00', 0xfb3f)
fallocate(0xffffffffffffffff, 0x0, 0x7fff, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fallocate(r0, 0x8, 0x0, 0x8000)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000d40)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="faa2aeeb4bff8d91cfd7c80bc30f7e935335cb11072e7771fd785e9ced2df80761b0aa2873d54c7f3493c335a2338688874dc625cf072c0c32125c44d7d4a42039f6ca32f6414f12961411418caad720", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB="81f4"])
socket$inet6(0xa, 0x80f, 0x1)
pipe(&(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$bt_BT_SNDMTU(r2, 0x112, 0xc, &(0x7f0000000100)=0x6, 0x2)
write$binfmt_misc(r0, &(0x7f0000000000)={'syz1', "26230dea718a562137c7b897177b5a4f834a8b906c55284317869ac596419b309bfcb31f34db5cbd97f3f51b1e2ed3b1b645e8139ae63dfb41ae00b48dc9cf493063b941cd42dadb2c798efb7cdf0ffe6f7cc2af807b77692166f2af1e8b9cf84500e87e4bd3399f3d3a6b0c2d43e36391589593e5548dd49309713dd89df4fc163d23702c50f2465208dfe1d4fa67170d2022166ce72ac78ac490e7b63f7d782a4b66c82b6a33e99d0e867ad9f28dfbba761ccfc65824220c26ba1d3ea2ed45ea24824524995963"}, 0xcc)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x80000001, 0x0)

[  519.181298] ubi0: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 1007768758
[  519.228551] hid-generic 0000:0000:0000.000B: ignoring exceeding usage max
[  519.284690] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  519.285137] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on %�z5
[  519.371715] ubi0: background thread "ubi_bgt0d" started, PID 18312
[  519.371734] ubi0: detaching mtd0
[  519.395184] md: could not open unknown-block(0,3).
[  519.400562] md: md_import_device returned -6
[  519.405942] ubi0: mtd0 is detached
[  519.477743] ubi0: attaching mtd0
[  519.482165] ubi0: scanning is finished
14:28:48 executing program 1:
creat(&(0x7f0000000280)='./file0\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x40, 0x1e7)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r0, 0x2)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r3, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r3, 0x6, 0x12, &(0x7f0000000180)=0xfffffffd, 0x4)
ioctl$NBD_DISCONNECT(r3, 0xab08)
write$P9_RLERRORu(r2, &(0x7f0000000200)=ANY=[@ANYBLOB="1c00000007ffff0f00e1840d13"], 0xd)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x0, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_u='version=9p2000.u'}]}})

14:28:48 executing program 2:
perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xe2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0)='batadv\x00')
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
write$P9_RXATTRCREATE(0xffffffffffffffff, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r3=>0x0})
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r4, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
write$vhost_msg_v2(r4, &(0x7f00000002c0)={0x2, 0x0, {&(0x7f0000000100)=""/70, 0x46, &(0x7f0000000180)=""/179, 0x2, 0x2}}, 0x48)
sendmsg$BATADV_CMD_GET_GATEWAYS(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x1c, r1, 0x711, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
syz_genetlink_get_family_id$netlbl_unlabel(0x0)
sendmsg$NLBL_UNLABEL_C_STATICLIST(0xffffffffffffffff, 0x0, 0x0)

[  519.761132] audit: type=1804 audit(1586615328.876:7208): pid=18369 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir088111672/syzkaller.GPhLgI/247/file1" dev="sda1" ino=16102 res=1
[  519.762494] 9pnet: p9_errstr2errno: server reported unknown error á„

[  519.802100] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[  519.841071] audit: type=1804 audit(1586615328.936:7209): pid=18376 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir088111672/syzkaller.GPhLgI/247/file1" dev="sda1" ino=16102 res=1
14:28:49 executing program 3:
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x8400, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
setreuid(0x0, r6)
r7 = dup(r4)
syz_kvm_setup_cpu$x86(r7, r3, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

14:28:49 executing program 2:
pipe(&(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x1000}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
fcntl$setpipe(r1, 0x407, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
bind$inet(r3, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x31}}, 0x10)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
pipe(&(0x7f0000000200))
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
prctl$PR_GET_TIMERSLACK(0x1e)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r5, 0xc08c5336, &(0x7f0000000240)={0x7fff, 0x80000001, 0x1, 'queue1\x00', 0x81})
ioctl$sock_inet_SIOCGIFDSTADDR(0xffffffffffffffff, 0x8917, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}, 0xd68, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
splice(r0, 0x0, r3, 0x0, 0x30009, 0x0)

14:28:49 executing program 0:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r2, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205648, &(0x7f00000004c0)={0x9d0000, 0x6, 0x73, <r3=>0xffffffffffffffff, 0x0, &(0x7f0000000400)={0x9909dd, 0x7, [], @value=0x7}})
ftruncate(r3, 0x66)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
prctl$PR_SET_NAME(0xf, &(0x7f0000000040)='(trusted-$\\\x00')
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$DRM_IOCTL_ADD_CTX(r4, 0xc0086420, &(0x7f0000000440)={<r5=>0x0})
ioctl$DRM_IOCTL_LOCK(0xffffffffffffffff, 0x4008642a, &(0x7f0000000480)={r5, 0x2})
ioctl$DRM_IOCTL_NEW_CTX(r1, 0x40086425, &(0x7f0000000000)={r5, 0x2})
syz_emit_ethernet(0x82, &(0x7f0000000140)={@local, @link_local, @val={@void}, {@ipv4={0x800, @gre={{0xb, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x14, 0x5, 0x1, 0x0, [{@multicast1}, {@empty}]}, @timestamp={0x7, 0x4}]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6558}}}}}}, 0x0)

14:28:49 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
select(0x40, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1524}, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_emit_ethernet(0x1, &(0x7f0000000580)=ANY=[@ANYBLOB="c60df0a9511f8ead37c57a0c138fdcbd45253533176796170e102f34827a2f804f84cd21aa73136b2109ca94c3af8ba0eea9df54647f289399b9d9e0959821fe6486963ff1497c4e23d7a08462522ab4621354402a2cf5f3cd6726"], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x2, 0x11c000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = accept4$x25(0xffffffffffffffff, &(0x7f0000000080)={0x9, @remote}, &(0x7f00000000c0)=0x12, 0x800)
pwritev(r3, &(0x7f0000000500)=[{&(0x7f0000000100)="52a74ad68786935e76edccdb592dbf85cdb7511043bc024e3bda2c044f5fcbbe1fd92dd0fa2579cf5b3b80ae80d13297da5c383004546c86a3fea3faebafcdc3d441a6d4142bdc1bc22e00ac5a01b73f27380dae249a8d4013769974f20f12", 0x5f}, {&(0x7f0000000180)}, {&(0x7f0000000240)="c99288414b64d1", 0x7}, {&(0x7f0000000280)="c41e45f3df0622fe1956929bd4dacd1b70a0dff9f4cdaf0a67183089bdade0bc89e4d4826ce23c16007a556bea45f7ed8b13bdefc590ca0aa2a34dae600260a2b3b4b0bcc21eea37c5d2a70ad0b82adb08e698e08055de9e2b7dac46f8c12f8e786e29307d0c72a0692637e05d62c5683c07f90095eb44663f0f2d885f52e1b8868151d94c0e965e2702668fcd57a2b1338d51e12b9f41467d0deb680f4be007ad200b64b325038184f75b9359ca86fb61b687e8228b597f7650f7eefd9f1a76da8423d2c4c64c58d1c33742feb09918d97c16e9be6e24764079b5a2c8db65bbc848ac72db3c0f", 0xe7}, {&(0x7f0000000440)="356c9ef1c0ee0beef1d9c223b6d6f6eaaa122985696d64db937193c97eee5170655cae3a2b5f6c6a4230acca6a06537b93c288f7b737d2e908a81a491a70e866e9bc0c58ef0c496d805cb5f68c0e33d99f7912f6eb21f07ed79924175713191a57404ad214c14fa541f741887de95faea87455bb30e4825835e6b208ec27f9a23845ecab9dd05ca2e705fa29e5e66836eacac80d", 0x94}, {&(0x7f0000000380)="3b224bbcfa94711fd4c457b4b5ae48d8313bc9d1dde762a93e1ca86b7bd2d6605086f9f33a83187a0e4ed7b82e61f9e3db048d09f82db513189663bc3ecb5a9199095c0375a4ee4402686d6cb3b73482408c1014785987be20a4eb81591dff187da6ca9d0b533408121eae56708cc50d709382fa62d0", 0x76}], 0x6, 0x0)
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x1000)

14:28:49 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
socket$inet6(0xa, 0x400000000001, 0x0)
r2 = timerfd_create(0x2, 0x0)
dup(r2)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip_vti0\x00', 0x10)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @rand_addr=0x7fffffff}, 0x10)
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmmsg(r0, &(0x7f0000007fc0), 0x400000000000030, 0x0)

14:28:50 executing program 5:
mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
mount(0x0, &(0x7f0000000480)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f0000000500)='sysfs\x00', 0x0, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
sendmsg$TIPC_CMD_SET_LINK_PRI(r1, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x68, 0x0, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x4c, 0x18, {0x400, @media='eth\x00'}}}, ["", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x4048004}, 0x40040)
symlink(&(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0\x00', &(0x7f00000002c0)='./file0\x00')
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x38432, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xc9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000680)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0\x00', 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, "2bf3f4238ca4d5eeef491d762bdcb55a2820976a77fb45c04d83499bd3a986f5e44fe39c018875582361a1659f52d66a1db34d7ea02b2d37a503588a68ddfb65", "75f25eef0fe4bfd74e40c3239ee8cb8c6a442038fdd2abd4b3449e577b7bcc7bbcc6e6e19d0cc28b644ff92b4891ecd3471f85bd3ab8da5be1277591a52c848b", "540b4d4900b2aeff066aa615f6c6f31485d78d7cf3162d74360d0b0423b2bbfe", [0x3]})
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYRES16, @ANYRES32=0x0, @ANYPTR=&(0x7f0000002080)=ANY=[@ANYBLOB, @ANYRESOCT, @ANYRES16, @ANYPTR64]], 0x3)
unlink(&(0x7f0000000040)='./file0\x00')

[  520.967167] audit: type=1800 audit(1586615330.086:7210): pid=18418 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.2" name="bus" dev="sda1" ino=15782 res=0
14:28:50 executing program 1:
getpid()
sched_setscheduler(0x0, 0x0, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x4, 0x70, 0x0, 0x0, 0xf8, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x4}, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
add_key$keyring(0x0, &(0x7f0000000280)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key$keyring(&(0x7f00000001c0)='keyring\x00', &(0x7f0000000200)={'syz', 0x0}, 0x0, 0x0, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000340)=ANY=[], 0x0, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0), 0xc, 0x0}, 0x0)
ioctl$KVM_IRQ_LINE_STATUS(0xffffffffffffffff, 0xc008ae67, &(0x7f0000000000)={0xffffff81, 0x800})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0)='TIPC\x00')
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x34, r1, 0xc0d58860b4c77945, 0x0, 0x0, {{}, {0x0, 0x2}, {0x18, 0x17, {0x0, 0x0, @l2={'ib', 0x3a, 'ipvlan1\x00'}}}}}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x4008085)
sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)={0x24, r1, 0x2, 0x70bd29, 0x0, {{}, {}, {0x8, 0x11, 0x7fffffff}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x401}, 0x20004843)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0x8004ae98, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="2e00000052000500d25a80648c63940d0a00fc000e0002", 0x12}], 0x1}, 0x0)
r4 = fcntl$dupfd(r2, 0x406, r3)
bind$rose(r4, 0x0, 0x0)

14:28:50 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000340)='/dev/sg#\x00', 0x0, 0x5)
set_mempolicy(0x2, &(0x7f00000000c0)=0x5, 0x8)
arch_prctl$ARCH_SET_GS(0x1001, &(0x7f0000000100))
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000300)={&(0x7f0000000180)="b83e2ee6cc6a35dbd9a2182bba991e37d024860245cccc8d73fc9772b86d90c6bfac4103b1da46de7bda0dfc2406fdb53d19280b6c1ee96c4f57fc239bf980c3b5ded5d84cad31227887aa847ed02f40662a2786da423933404a44692d049080a56a43de6a802145b1cd7159b9a9414dd321eac6da343c1e63449adcab593ccf21a526c87aa4fd3e52827a4a9c16e22821a405f874735cc877f62a2d76c0cd195143520fde9aa44b", &(0x7f0000000240)=""/51, &(0x7f0000000280)="4a5846562d807c5b4a177945e38b53c13224d13c9da97a413b37bcd88721c524bc0deb728f373adac70629af57d4dc5289de96fef3a549f70f1cea0cb55c4d44f296a418c00c55ba253598c4c5b134f498a233f3fb7dc6b8c3", &(0x7f00000005c0)="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", 0x800, r1}, 0x38)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x12, &(0x7f0000000140)=0x8000, 0x4)
ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000040)={0x74, 0x0, [0x81, 0x60dd, 0x100000001]})
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000500)="ae88bff8a8f400005a90f57f07703aeff0f64ebbee07962c22772e11b44e69d90cf41bdd2ac8bb8c43b460e46292", 0x2e}, {&(0x7f0000000540)="53000000fcffdfff770003000900000000000000000000000000400000000000000000003914a4e3f29879dec51f675b97ec1ae7a5fa6927b3712b6213aa91387e84ac694bf0b687c19364cbb26cefd16a4478e18b4c70a1", 0x58}], 0x2)

14:28:50 executing program 0:
perf_event_open(&(0x7f0000000100)={0x0, 0x70, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
r1 = socket$kcm(0x11, 0x2, 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000700), 0x0, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x4000, 0x800, &(0x7f0000000380))
recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x10000000, &(0x7f000000b600)=[{&(0x7f000000b500)=""/153, 0xfcec}], 0x1}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-des3_ede-asm\x00'}, 0x58)
accept(r2, 0x0, 0x0)
r3 = dup2(0xffffffffffffffff, r2)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-des3_ede-asm\x00'}, 0x58)
accept(r4, 0x0, 0x0)
ioctl$LOOP_CHANGE_FD(r3, 0x4c06, r4)
setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f00000000c0)=r1, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000480)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000fefffe7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d64050000000000650404000100c31c2e63000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000c9be17044171e1d3d7b196d079c4d4758fa35d17c668a4b63e069efb29797573b8530e31ec24925095a163b9d4e76be266e31a80212240baa44e080addde36e5fdc6c42a7b3f912f6906a6e2313091dd61258a1fda45991fbdce6793c8a4785ee8b60092659b941bbd694d1f8898b3e6"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0x2d1, 0x0, &(0x7f00000000c0)="b9ff0300000d698cb89e40f008001fffffff00004000632f77", 0x0, 0x100, 0x6000000000000000}, 0x28)

14:28:50 executing program 2:
clone(0x20986100, 0x0, 0x0, 0x0, &(0x7f0000000040)="d353ff072d68b2e4dc14aa5f7e25908384")

14:28:50 executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000040)={0x0, 0x11d000})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x9a, 0x7, &(0x7f0000001700)=[{&(0x7f00000001c0)="db860436156c822459155762fd89eefee8bc15ad345149ec609557dabdf930064ed2d9ae9627554698e8bcda680d0c81997c9997dc4bf9f3c681a707618a9a9e4848dce4fd728bc8bf4d6b3eb5d419d81fabd7818a25af7243240a518d695ed26ade52d142f37b2dfa367839e519d446a8fde354652fbebadb4bc713fc43ab628d76fd9c5609bf144e7dff2bacb010cd2bb911131181cff0c47699464051b161e15978786a5ff4e76a13f28ec3b8866b19cca363c968830588d7fd1b1d255b3c5337267ab7ccbc9d98d58f6da6283542541fdcfb50bac02e63bef9264323c545ec686ada12d3b3", 0xe7, 0x6}, {&(0x7f00000002c0)="0a6c73ced2fbba2ae7384ee3d9b193358cdb4a744473bf0036b4cafbe1eb6cc1cd4fff339a1d506cacccf76ed6a7073e812f8665a5745bdcc59ea89179da33f2dfe30f3bf9d251ce6d42f135b8187d4f1306aa7f6302cdc615c20127571d4284d55799dcb9fbb8c2c9407d6e95446ff09eeab6060d80bfa7cd1bed16fa6ba11363520deef7cce090ca345b5b30", 0x8d, 0x7}, {&(0x7f0000000440)="b3f76dfb927bf8a7a558ad05a0aed83164429fbf762bc706b1826b38c124458441d033b66d5149e275b1c3e71b4f6c358e808b880e4a58f6d800fe573b80cee93a778f2a7a48d1391db9de5d2778bb793d394bcf7b1e26e9fd1caaaf8ca1fb976e268841ce9daed08234efe696fb472359142c316161093a8066bd196ac7b29904051221c0fe465e130d340d650d2bce41651e3314a2d5d4c676ae1b4d6e3ea913ef82d0954066b048b73c9f6080930dfce466a45813c28031fe3c851c944522903afc7dc4600f595c6d49a3a3fb3dea65c4c06e9b", 0xd5, 0xfffffffffffffbff}, {&(0x7f0000000540)="9e12cf683ae72355d4d093ce5def86a7cbb341d109932eb045f1b764d21ab124e69d8df335d7621d18369969216a405bd96c8f4367ef58fda0ae07e347a4e8f6b41561b42a873679334466568511e1d01c06ccf5e328b1755433031a22b9862ebf06d07307b60881d030be19d39ee37eb13e9fa64ee55694984c19fd89bfb5eeb81693420be3ca9b2514aacdbb7cb75b0dab80a8573193134717c285a1477854bf9cc4732018cc75fcc8441e4385839356fccd6e962749d643793133904ab8455149f931dbd0ad7865416c9ee35ea28e1ba463a942fef9fe60d68cda02", 0xdd, 0x10001}, {&(0x7f0000000640)="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", 0x1000, 0x800}, {&(0x7f0000000380)="f995462c9dff1b5dfebc578309556d025d5ac957b1607ce60117483781ab3fa541125562df96f3302b874a56", 0x2c, 0x800}, {&(0x7f0000001640)="795037752b3f05500793264df037223c52e70bb3a16a3b9161106dcae048d3484a908916e1d3d133b290f4153765ee58680ca40b8f89ede40d5856f21645f91782e25f4dd160de2106e28634e31896643557f1443731381bfa5b6c88ed4bc5f2ff6ed0f36e158101411964c717832eccd9d3736b03b458e57dd7451c52426bb1fc34ec22cdeca0272b2246", 0x8b, 0x81}])
ioctl$BLKPG(0xffffffffffffffff, 0x1269, &(0x7f0000000000)={0x0, 0x0, 0xd9, &(0x7f0000000080)="12d3bc1c7eaced1ab5c6a9515d21232f19abb1cb687077dfee32f3c6bfbaece8a9e7bcb61b319b258fdb0eed02f7a0def259b7864bf76330d53cd31e0cc3fa0329a22dc9eed8d37dfc9d58edee7fd6afd9af629abdacf076e2a0351cbfbb020dd61732a22e6e2042dc68860e3c83a2670626f5526a46ad8da77e30a86801079e3f99c8011200fb23223074667ae22c9d2f2f1fc3819fdc606ff4a018b11730389050896f678f5e805ba4a50b4bed9875e265d8caebbba65dabed8ca7783f7e91289562bf4d1615cbf61b3404a8130214c73308e89be4ebf263"})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0)

14:28:50 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000180)='dctcp-reno\x00', 0x2f)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f0000000200), 0x0, 0x240480c4, &(0x7f0000000100)={0x2, 0x4e20, @multicast1}, 0x10)
recvfrom(r0, &(0x7f0000000000)=""/94, 0xffab, 0x0, 0x0, 0x0)

14:28:50 executing program 0:
open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = creat(&(0x7f0000000680)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6900)
pipe(&(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0)
splice(r3, 0x0, r2, 0x0, 0x20000038, 0x0)
setsockopt$TIPC_MCAST_BROADCAST(r2, 0x10f, 0x85)
ioctl$SOUND_MIXER_READ_DEVMASK(r2, 0x80044dfe, &(0x7f0000000080))
syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x40, 0x40400)
ftruncate(r0, 0x800)
lseek(r0, 0x0, 0x2)
open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f00000001c0)={0x0, @bt={0x0, 0x3, 0x1, 0x1, 0x5, 0x0, 0x8, 0x8, 0xffffffff, 0x80000001, 0x2, 0xffff, 0x6, 0x0, 0x1, 0x1, {0x100}, 0x40, 0x80}})
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)

[  522.040288] audit: type=1804 audit(1586615331.146:7211): pid=18479 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir946654358/syzkaller.lCVT7n/222/bus" dev="sda1" ino=15843 res=1
14:28:51 executing program 1:
r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b00)=ANY=[@ANYBLOB="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"/933], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0x2b, 0xfffffffffffffe7f, &(0x7f0000000500)="b9ff0300600d698cb89e14f065581fffffff00004000630677fbac14140ee934a0a662079f4b4d2f87e5feca6aab845013f2325f1a39010108038da1924425181aa5", 0x0, 0x102, 0x60000000, 0x0, 0xfffffffffffffe48, &(0x7f0000000000), &(0x7f00000000c0)="61ae793cb58796e98bec67538e015077de7e272f4c58590e0a49abbb02864ce87f29c55242edc400de0f90b385e2f9c937fd3b232ab7c99460628f97e6d6f935e88684d642fd966756e2d8b5af7a9002d71c203c4dd9b55ae6eb91e77d823ca1a2de2496a532933552dfb5907808176243ef5971c1a9c84ebfbd113d1a233ed5490f124afc9b88bc97d734a20b1e"}, 0x28)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
r2 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
socket$alg(0x26, 0x5, 0x0)
ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x3, 0x8, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
sendmsg$unix(r2, &(0x7f0000000ac0)={&(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000040)=[{&(0x7f0000000940)="8ac1910c5caceed913058eaed82f8395ccbbf833c6bd9f60fa96cf7b170d6413b78fbb913c52132926cd9b7dc2b575db4a1c20961433f789a3a4e01475c8ff266ab45a1d980cf61860b0c66593ed053a1713196abc9a09304798fc972d44e329e17dea0d06c308e54c0f78adc4654665cee7b2a26bfe100e76dc45147eb9d87b14c936cb762d5be7eaf997af2f4fe6c8214c8027ec17a0d4c5fd9a7a43feb6c30ae9f2a106e29290820659e21865f6aa7747ae5b86f78a9d385e988ca56b363551d3fca0366278b307f23bc840732c30d1ae35538f3dcbff2cded5cdc60edb1bd28d583d4304c52c747afdc209305e3e6587fd8b894f0d", 0xf7}], 0x1, &(0x7f00000005c0)=ANY=[@ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYBLOB="28000000000000000100000000000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r4, @ANYRES32, @ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32=r4], 0x78, 0x40000800}, 0x40000)
getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000380)={{{@in=@multicast2, @in6=@ipv4={[], [], @dev}}}, {{@in6=@empty}}}, &(0x7f0000000300)=0xe8)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'ipvlan0\x00'})
bind$packet(0xffffffffffffffff, 0x0, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)

[  522.127075] audit: type=1804 audit(1586615331.206:7212): pid=18479 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir946654358/syzkaller.lCVT7n/222/bus" dev="sda1" ino=15843 res=1
14:28:51 executing program 0:
open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = creat(&(0x7f0000000680)='./bus\x00', 0x0)
fcntl$setstatus(r0, 0x4, 0x6900)
pipe(&(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x2, 0x0)
splice(r3, 0x0, r2, 0x0, 0x20000038, 0x0)
setsockopt$TIPC_MCAST_BROADCAST(r2, 0x10f, 0x85)
ioctl$SOUND_MIXER_READ_DEVMASK(r2, 0x80044dfe, &(0x7f0000000080))
syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x40, 0x40400)
ftruncate(r0, 0x800)
lseek(r0, 0x0, 0x2)
open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r1, 0xc0845657, &(0x7f00000001c0)={0x0, @bt={0x0, 0x3, 0x1, 0x1, 0x5, 0x0, 0x8, 0x8, 0xffffffff, 0x80000001, 0x2, 0xffff, 0x6, 0x0, 0x1, 0x1, {0x100}, 0x40, 0x80}})
open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)

14:28:51 executing program 3:
perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x81, 0x0, 0x41c1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x2000000000000074, 0x25d)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x4000, &(0x7f0000e68000)={0x2, 0x4e26, @broadcast}, 0x10)
recvmmsg(r0, &(0x7f0000005540)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000001340)=""/4066, 0xfe2}], 0x1, 0x0, 0xf80a}}], 0x1, 0x100, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860f46ef65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95c25a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x170)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(0xffffffffffffffff, 0x0)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x33)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
r2 = syz_open_procfs$namespace(r1, &(0x7f0000000000)='ns/net\x00')
dup3(0xffffffffffffffff, r2, 0x80000)
socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000002340)=ANY=[], 0x0)

[  522.227227] audit: type=1804 audit(1586615331.216:7213): pid=18482 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir946654358/syzkaller.lCVT7n/222/bus" dev="sda1" ino=15843 res=1
14:28:51 executing program 3:
openat$ipvs(0xffffffffffffff9c, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
r0 = syz_open_dev$mouse(0x0, 0x2, 0x0)
syz_genetlink_get_family_id$batadv(0x0)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0x1)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000240)={0x0, 0x280, 0x0, 0x0, 0x9, 0x4, 0x8, 0x0, {0x7fffffff, 0x4}, {0x1}, {0x0, 0x3f, 0x1}, {0x20, 0x0, 0x1}, 0x0, 0x10, 0x3, 0xfffffffa, 0x0, 0x0, 0x0, 0x1000, 0x7fc, 0x5, 0x7fffffff, 0x3, 0xc, 0x7, 0x3})
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_read_part_table(0x0, 0x1, &(0x7f0000000140)=[{&(0x7f0000000040)="026368006c0ffffffff60005000000e08128b14700000000d59863d20000000002000f2020cc00000000ff0700690000030000000000000000000000000000000000000000000000000000000000000000000000000000008a6e94c0000055aa", 0x60, 0x1a0}])
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)

14:28:51 executing program 5:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r6, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="002ea9d2ff20f50ca6c2b9dfb732a239e4cd33593f011f02101a6e2ae8"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB='8\x00', @ANYRES32=r6, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB='P\x00\x00\x00(\x00\'\r\x00'/20, @ANYRES32=r6, @ANYBLOB="04000000000000000000000006000500000000000a00010072737670360000001800020014000200fe880000000000000000000000000001"], 0x50}}, 0x0)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r8 = dup(r7)
ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200)
r9 = socket(0x1000000010, 0x80002, 0x0)
sendmmsg$alg(r9, &(0x7f0000000200), 0x10efe10675dec16, 0x0)

14:28:51 executing program 2:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
sendmsg$TIPC_CMD_SET_LINK_PRI(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="000800f0dd1b922e9570731e00", @ANYRES16=0x0, @ANYBLOB="00012abd7000fedbdf25010000000000000008410000000c00180000000069623a00"], 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x40)
syz_mount_image$msdos(&(0x7f0000000180)='msdos\x00', &(0x7f0000000300)='./file0\x00', 0xe800, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000000)="eb3c906d6b66732e5d610000000001", 0xf}], 0x8004, 0x0)
clock_gettime(0x0, &(0x7f0000000140)={<r2=>0x0, <r3=>0x0})
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r6, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r6, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r6, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r6, 0x0)
ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f0000000240)={0x3, 0xa, 0x4, 0x40, 0x8, {r2, r3/1000+30000}, {0x1, 0xc, 0x2f, 0x7f, 0x4, 0xa8, "b6c5c52f"}, 0x8, 0x4, @planes=&(0x7f0000000200)={0x6, 0x1, @fd=r5, 0x8}, 0x2, 0x0, <r7=>r6})
ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r7, 0x40045730, &(0x7f00000002c0)=0x20)

[  522.682156]  loop3: p1 < > p4
[  522.695720] loop3: partition table partially beyond EOD, truncated
[  522.741045] loop3: p1 size 2 extends beyond EOD, truncated
14:28:52 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x1ff}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
r0 = gettid()
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x33)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x6, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000600), 0xa}, 0x202, 0x2, 0x8}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
r5 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$setperm(0x5, r5, 0x0)
r6 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000400)="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", 0xfc, r5)
keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000300)={r6, 0xe6, 0x5c}, 0x0, &(0x7f0000000500)="cec714ebb1226fd3d4b7204b36dcf85e0f86e3b244591b35fbe96497017bf8ee299bc4ddaedc94838338842054315e014e8325cb2dd1ac5fe06f13ba7052e3e694c597d3b25f3d7355efe90277f7647582a853f8acc2b8c188f4e0acb1e1ec01d46448c63dca2056ca5306fc4629f41f09a4a68ff4f537e5dafe7d532d23bba632fe8bbaa887bf63fa460e2906b401033a4d7e645628b729ed868065a318fb27b87cae34c8c0618171c812197c5244060fe2dd41218c963b7ea6b8ddc232d38836e3fc69e2aebef6dce3c3fd2a5451d1d04196d505ec7d1e3b7decbde6031b80c7f057038a1f", &(0x7f0000000340)=""/92)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f00000007c0)=ANY=[@ANYBLOB="480000000000000000c59c100000", @ANYRES32=r7, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="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"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r7, @ANYBLOB="00000000ffffffff006d65000904010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000009c0)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {}, {0x8}}, [@filter_kind_options=@f_flower={{0xb, 0x1, 'flower\x00'}, {0xc, 0x2, [@TCA_FLOWER_CLASSID={0x8}]}}]}, 0x3c}}, 0x0)
shmctl$IPC_SET(0x0, 0x1, 0x0)

[  522.854652] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=18515 comm=syz-executor.5
[  522.886532] loop3: p4 start 1854537728 is beyond EOD, truncated
[  522.902811] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=18511 comm=syz-executor.5
14:28:52 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58)
r1 = accept(r0, 0x0, 0x0)
sendmmsg$inet6(r1, &(0x7f0000006400)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="1100", 0x2}, {&(0x7f0000000500)="e0cd", 0x2}, {&(0x7f00000000c0)="9f269e9496f42e79e8b1eb3f23bd24dc05540ed086f920a857", 0x19}, {&(0x7f0000000200)="e3d76a8ecb6a6d851aad4708024ace6d4e96435b2427d1c81f9248f8eed0adfde920b7", 0x23}, {&(0x7f0000000000)="90e9eeeea314e6593f610567ea94ef1270479ebbb9d08d82d8effadeb6735d0408020b6e4728f3532d2c9b2f61d91c0beb1deb21367d51bd0487d50199ccf48ee5a7a1f0aab85dee9e0cba3b16ca8279593a642c8aeb824a58b6a9692238f8efe05c246eaad225463a539088416f8ae4098bae430634bb5cd1", 0x79}, {&(0x7f0000000240)="7ee763d441bafe170797e73a4067a1bac7467881e752804de1747a47a3501851f389013859f62b7365ad558bda1352cb96c9b56357f5eb9c675a75f32555c6a72cbe5c18dbdcd3bd8e6b4bda9c1c1e78e36a23a9149eacf69f9bf9ff3d1f90591836ea4def2f1163579dc2ec40452dd1efba83b2e8116ad77d511e4610ed2653fbe8f46d0e396f3a081ef7b9903823ee72a60a5ae9bf0c23007a26633ca712a70190fce46ef9802d6642318be3ae2f", 0xaf}], 0x6}}], 0x1, 0x440408c0)

14:28:52 executing program 3:
socket$netlink(0x10, 0x3, 0x0)
set_mempolicy(0x2, &(0x7f0000000140)=0x6, 0xa)
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r0, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newlink={0x34, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0x4}}}]}, 0x34}}, 0x0)
clock_gettime(0x0, &(0x7f0000000000)={<r1=>0x0, <r2=>0x0})
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r3, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
write$FUSE_POLL(r3, &(0x7f0000000180)={0x18, 0x0, 0x4, {0xffffffc1}}, 0x18)
clock_settime(0x4, &(0x7f00000000c0)={r1, r2+30000000})

14:28:52 executing program 1:
r0 = socket(0x10, 0x80802, 0x0)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r1, 0x113, 0x1, 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x0, &(0x7f0000000000)=0x2000, 0x4)
r2 = accept4$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @dev}, &(0x7f00000000c0)=0x1c, 0x80800)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(r4, 0x84, 0x16, &(0x7f0000008580)={0x5, [0x800, 0x8, 0x8, 0x5e1, 0x7]}, &(0x7f00000085c0)=0xe)
recvmmsg(r2, &(0x7f0000008300)=[{{&(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, <r5=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000001800)=[{&(0x7f0000000180)=""/16, 0x10}, {&(0x7f00000001c0)=""/175, 0xaf}, {&(0x7f0000000280)=""/69, 0x45}, {&(0x7f0000000300)=""/166, 0xa6}, {&(0x7f00000003c0)=""/111, 0x6f}, {&(0x7f0000000540)=""/207, 0xcf}, {&(0x7f0000000640)=""/242, 0xf2}, {&(0x7f0000000740)=""/4096, 0x1000}, {&(0x7f0000000440)=""/106, 0x6a}, {&(0x7f0000001740)=""/185, 0xb9}], 0xa, &(0x7f00000018c0)=""/238, 0xee}, 0xb1c}, {{&(0x7f00000019c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, &(0x7f0000002e00)=[{&(0x7f0000001a40)=""/151, 0x97}, {&(0x7f0000001b00)=""/146, 0x92}, {&(0x7f0000001bc0)=""/4096, 0x1000}, {&(0x7f0000002bc0)=""/191, 0xbf}, {&(0x7f00000004c0)=""/35, 0x23}, {&(0x7f0000002c80)=""/134, 0x86}, {&(0x7f0000002d40)=""/190, 0xbe}], 0x7}, 0x7}, {{&(0x7f0000002e80)=@pppoe={0x18, 0x0, {0x0, @local}}, 0x80, &(0x7f00000034c0)=[{&(0x7f0000002f00)=""/245, 0xf5}, {&(0x7f0000003000)=""/115, 0x73}, {&(0x7f0000003080)=""/157, 0x9d}, {&(0x7f0000003140)=""/31, 0x1f}, {&(0x7f0000003180)=""/112, 0x70}, {&(0x7f0000003200)=""/124, 0x7c}, {&(0x7f0000003280)=""/95, 0x5f}, {&(0x7f0000003300)=""/133, 0x85}, {&(0x7f00000033c0)=""/236, 0xec}], 0x9, &(0x7f0000003580)=""/4096, 0x1000}, 0x7f}, {{0x0, 0x0, &(0x7f0000006a00)=[{&(0x7f0000004580)=""/4, 0x4}, {&(0x7f00000045c0)=""/107, 0x6b}, {&(0x7f0000004640)=""/4096, 0x1000}, {&(0x7f0000005640)=""/4096, 0x1000}, {&(0x7f0000006640)=""/76, 0x4c}, {&(0x7f00000066c0)=""/64, 0x40}, {&(0x7f0000006700)=""/193, 0xc1}, {&(0x7f0000006800)=""/216, 0xd8}, {&(0x7f0000006900)=""/208, 0xd0}], 0x9, &(0x7f0000006ac0)=""/76, 0x4c}, 0x9}, {{&(0x7f0000006b40)=@pppoe={0x18, 0x0, {0x0, @link_local}}, 0x80, &(0x7f0000007d00)=[{&(0x7f0000006bc0)=""/4096, 0x1000}, {&(0x7f0000007bc0)=""/107, 0x6b}, {&(0x7f0000007c40)=""/61, 0x3d}, {&(0x7f0000007c80)=""/104, 0x68}], 0x4, &(0x7f0000007d40)=""/58, 0x3a}, 0x2}, {{&(0x7f0000007d80)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, &(0x7f0000007f00)=[{&(0x7f0000007e00)=""/235, 0xeb}], 0x1, &(0x7f0000007f40)=""/67, 0x43}, 0x7}, {{&(0x7f0000007fc0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000008280)=[{&(0x7f0000008040)=""/58, 0x3a}, {&(0x7f0000008080)=""/6, 0x6}, {&(0x7f00000080c0)=""/65, 0x41}, {&(0x7f0000008140)=""/234, 0xea}, {&(0x7f0000008240)=""/46, 0x2e}], 0x5}, 0x2}], 0x7, 0x12000, &(0x7f00000084c0)={0x77359400})
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000500)="390000001000090868fe07002b00180001000a0018000000000200070300001404001a00120002000e0001000a0000000000000068b620bde2", 0x39}], 0x1)
connect(r5, &(0x7f0000008500)=@llc={0x1a, 0x323, 0x7, 0x40, 0x8, 0x3f, @local}, 0x80)

14:28:52 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
creat(0x0, 0x0)
accept4$llc(0xffffffffffffffff, &(0x7f0000000200)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x0, 0x80000)
socket$tipc(0x1e, 0x5, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
io_setup(0x0, &(0x7f0000000000)=<r1=>0x0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/uhid\x00', 0x0, 0x0)
dup3(0xffffffffffffffff, r2, 0x0)
io_submit(r1, 0x0, 0x0)
r3 = open(0x0, 0x0, 0x0)
fchdir(r3)
r4 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0)
ioctl$VIDIOC_DBG_G_REGISTER(r4, 0xc0385650, &(0x7f0000000000)={{0x0, @addr=0xa2}, 0xfffffffffffffe9e, 0x200000000})
open(&(0x7f0000000040)='./file0\x00', 0x125000, 0x183)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, 0x0, 0x0)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r5, 0x0)
setsockopt$inet_sctp6_SCTP_RECVRCVINFO(0xffffffffffffffff, 0x84, 0x20, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, 0x0, &(0x7f0000000180))
getpid()
r6 = getpid()
sched_setscheduler(r6, 0x0, 0x0)
pipe(0x0)
connect$pptp(0xffffffffffffffff, 0x0, 0x0)
unshare(0x40000000)

[  523.410270] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=18506 comm=syz-executor.5
[  523.519122] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.1'.
[  523.634572] IPVS: ftp: loaded support on port[0] = 21
14:28:53 executing program 3:
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r0, 0x20, 0x10000, 0x100008000)
r1 = open(&(0x7f0000000300)='./file1\x00', 0x400000, 0x104)
futimesat(r1, &(0x7f0000000340)='./file1/file0\x00', &(0x7f00000003c0)={{0x0, 0x7530}})
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, 0x2, 0x6, 0x5, 0x0, 0x0, {0xa, 0x0, 0x3}, [@IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x20000000)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
sendto$rxrpc(r3, &(0x7f0000000180)="ed553c8a63e4d0ce011bf64d2ffde1964e7c2db6223f58f752054dfeddd534c4e0e915e0bb42ef2e66c243689fbd56c70a1d058398526f06623ee82c2dda1678fa60b4045a5af58d720ca8cd86fba560563cade5890b2ed864ec2b7f3c7ff8c50ac649e92d6ea3277c9b40b3d6210082f0d60d1a0d9ef2d19b97dca8d4f521c6e416cfac3ac696615f780faa5e99e8eda5925cbcf934bf207656fb09008297ef966140188441102cfc92f1f52b52b960eb144fe47e23dc783efaea77c79f5c07cb562cb67e281cb03e2d00d87ea85c28778499a3cb167d70d89cb776", 0xdc, 0x40010, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
ioctl$KVM_GET_PIT(r5, 0xc048ae65, &(0x7f0000000280))
setsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="14000000020601010000000000000000000000bc"], 0x14}}, 0x4005)

14:28:53 executing program 5:
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
read$FUSE(r0, 0x0, 0x0)
ppoll(&(0x7f0000000380)=[{r0}], 0x1, &(0x7f0000000540), 0x0, 0x0)
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, 0xffffffffffffffff, 0x0, 0x3)
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000000100)={0xcf, 0xfe0, 0x5, "8e7d0c66f74c6cad17fc4d3c9296e74fe4c72c8eecc905e3842efaf8284a0f6769ed3637fb804a99eefb74c4d87ae6f32be04b982ccca186b7bf52d948ad789a9761abfbf8186f18be2a858698a4826d70a3175a5b8ead43a79ef99fe7add0ebe3fa0c5bcd70a18432dc3bb5774173f305799aa3317badd093ffa0ebc54e27f96d83e2a785a803b25b4ed5f84e0b0936abf4f10d80b59b8d83e7848431d345658d5d3f5d396adddf1d3e1e64782aa8de4e929371aa6d47c7883b9a51b38e5411e992c61764a232d9f1c5be0a76c4ba"})
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="004942488c23492893efde8b98bd459e7e3a445a9d1887"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r6, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x68, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff1}}, [@filter_kind_options=@f_rsvp6={{0xa, 0x1, 'rsvp6\x00'}, {0x38, 0x2, [@TCA_RSVP_DST={0x14, 0x2, @remote}, @TCA_RSVP_PINFO={0x20, 0x4, {{}, {}, 0x0, 0x0, 0x3}}]}}]}, 0x68}}, 0x0)
recvfrom$packet(0xffffffffffffffff, &(0x7f0000000000)=""/61, 0x3d, 0x40, &(0x7f0000000040)={0x11, 0x9, r6, 0x1, 0x67, 0x6, @local}, 0x14)

14:28:53 executing program 2:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff})
r2 = dup(r1)
setsockopt$CAN_RAW_ERR_FILTER(r2, 0x65, 0x2, &(0x7f0000000000)=0x1000, 0x4)
ioctl$SNDRV_CTL_IOCTL_ELEM_LIST(r2, 0xc0505510, &(0x7f0000000180)={0x6, 0x6, 0xffff, 0x3014, &(0x7f0000000300)=[{}, {}, {}, {}, {}, {}]})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
fallocate(0xffffffffffffffff, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x22, &(0x7f0000000000)=0xb3b, 0x4)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(0xffffffffffffffff, 0x10e, 0x8, &(0x7f0000000240)=0x100, 0x4)
ioctl$FBIOGET_VSCREENINFO(0xffffffffffffffff, 0x4600, &(0x7f00000005c0))
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$TIOCMSET(r4, 0x5418, &(0x7f0000000200)=0x4)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00', 0x420000015001})
r5 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r5, 0x8914, &(0x7f0000000140)={'syzkaller1\x00', {0x7, 0x0, @empty}})
write$tun(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x102a)

[  524.360254] IPVS: ftp: loaded support on port[0] = 21
14:28:53 executing program 3:
syz_open_dev$loop(&(0x7f0000000380)='/dev/loop#\x00', 0x34e1, 0x0)
mlockall(0x1)
syz_open_procfs(0x0, 0x0)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = gettid()
process_vm_writev(r0, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0)
write$FUSE_OPEN(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="3c0000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b00010062086964676d00000c0002800800020000000000"], 0x3c}}, 0x0)
pipe(0x0)

[  524.905019] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.1'.
[  524.954274] kauditd_printk_skb: 4 callbacks suppressed
[  524.954288] audit: type=1800 audit(1586615334.067:7218): pid=18564 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.5" name="bus" dev="sda1" ino=16358 res=0
14:28:54 executing program 5:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
socket$nl_audit(0x10, 0x3, 0x9)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r3, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="004942488c23492893efde8b98bd459e7e3a445a9d1887"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r3, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x68, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff1}}, [@filter_kind_options=@f_rsvp6={{0xa, 0x1, 'rsvp6\x00'}, {0x38, 0x2, [@TCA_RSVP_DST={0x14, 0x2, @remote}, @TCA_RSVP_PINFO={0x20, 0x4, {{}, {}, 0x0, 0x0, 0x3}}]}}]}, 0x68}}, 0x0)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f00000000c0)={@initdev={0xfe, 0x88, [], 0x1, 0x0}, r3}, 0x14)
r4 = open(&(0x7f0000002000)='./bus\x00', 0xc4042, 0x0)
creat(&(0x7f0000000000)='./bus\x00', 0xfc)
r5 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
lseek(r5, 0x800002, 0x0)
write$binfmt_aout(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="cf52d33abfd26732"], 0x8)
sendfile(r0, r4, 0x0, 0x200004)

[  525.252443] audit: type=1800 audit(1586615334.367:7219): pid=18592 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15955 res=0
[  525.282980] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pig=18592 comm=syz-executor.5
[  525.353653] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pig=18592 comm=syz-executor.5
[  525.417027] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pig=18592 comm=syz-executor.5
[  525.500483] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pig=18592 comm=syz-executor.5
[  525.580635] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pig=18592 comm=syz-executor.5
[  525.649124] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pig=18592 comm=syz-executor.5
14:28:54 executing program 1:
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x11, 0x800000003, 0x0)
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x33)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000180)={0xffffffffffffffff, 0xc0, &(0x7f0000000400)={0x0, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000017c0)={r3}, 0xb)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={<r4=>r2, r0, 0x0, 0x1, &(0x7f0000000000)='\x00', r3}, 0x30)
tkill(0x0, 0x33)
ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, 0x0, 0x0, 0x0)
ptrace$setregs(0xf, 0x0, 0x20, &(0x7f0000000100)="25ef767d9d19d3fb49de68b72aaf73")
ioprio_set$pid(0x2, r4, 0x4)
bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80)
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000003c0)=0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x6000000, &(0x7f00000002c0)={&(0x7f0000001ec0)=ANY=[@ANYBLOB="d00800202400ffffff7f00000410ffffa6fffff76ae0c9d578c2230210c80464a849d2533a4418bbfe8203030f71e8d4142f498fb033c19f8ddcf2c1cbe8f230d435aef43fd603e7c48420a92a60602bbb444e609f601e290287063fe5efed7042f8dac855a5fa0a12743cd098b1167fe368454cc8028397df9a1411f98d395834f8d42107eb52e15e4287a4e1d5f3d3a34ade74dfdad02551c9a8fe79651c686650e96d76afb07ceb37a23958babd01e2318815ff3ccfe58f83b3e72cded4768ab8cfadb7e7e09a77c8301dd64d9a05b2d65bbdbe59034bd009100bcd30ddb0b7e320a27268f013", @ANYRES32=r5, @ANYBLOB="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"], 0x8d0}}, 0x0)

[  525.722650] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pig=18592 comm=syz-executor.5
[  526.035661] audit: type=1800 audit(1586615335.147:7220): pid=18600 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.5" name="bus" dev="sda1" ino=15955 res=0
14:28:55 executing program 1:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x3a3dd4008400af01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x80, 0x8, 0x4, 0x5, 0x0, 0xffffffffffffff43, 0x42100, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0xcb43, 0x9}, 0xa98b, 0x400, 0x7, 0x7, 0x1, 0xe7c2, 0x7}, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0x8)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f00000000c0)='./file0\x00', 0x5, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="f511482e8926375e3d96543c7f9653820055a529ad228241c08ef03aec92de593541005fe15483d4880741e8b57388089d9ab0d5b130ad7ebe327e7b7a934785a2c2a11b87917306d9f82f367a48fd59b460a88e9d19901750c184376cfd8641c5526fa14d9ed4a0318324979ba712885d39c227f83c6dda10aa0141d06dea452f6ff1b4cf923a401b168f9ea244133146ea28b00571e2ba753ab7da33b054308c999b8968ab799f491e45e40cd45b3b5c8e", 0xb2}, {&(0x7f00000001c0)="50c500ed6eefe739b7a676170669e74b0fed1be608907b7de377c56ce5376414dc3143e1e52acef51f3f2f2127a7d73227908234e88098c31d15b9bfdb198c9b9a15b40631a7ee080082e4f081c898416cabdcfe307796f1f6a56a813e59ccddc302c747c1d589d80b747a58cd7c91cb4955845b01be87dea1ccecb43b818aa6c3f73de5335c66b8ff1bf02a426082e766abb562a10851b06bc90f6c1f1dc5ff12a6f780d72a21d56f3aa4dc28136962", 0xb0, 0x2}], 0x700c, &(0x7f00000002c0)={[{@mblk_io_submit='mblk_io_submit'}, {@min_batch_time={'min_batch_time'}}, {@dioread_nolock='dioread_nolock'}, {@nombcache='nombcache'}, {@noauto_da_alloc='noauto_da_alloc'}, {@bsdgroups='bsdgroups'}], [{@dont_hash='dont_hash'}, {@smackfsfloor={'smackfsfloor'}}, {@hash='hash'}, {@dont_appraise='dont_appraise'}]})
setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[], 0x0)
prctl$PR_SET_DUMPABLE(0x4, 0x0)
syz_open_procfs(0x0, 0x0)

[  526.224163] device veth22 entered promiscuous mode
14:28:55 executing program 5:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xffffffffffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="3a258211f674a7724bdef64346bc14816593c04768abf9d1a51c4b0fe1e77551a8bd676825f508300200000040847bc2fdffe8cd918b03fe412915d8a5c51817c3ff01a1f62a471e85445d8f244f6be479ffffffffff8756ea7d486588272169d8b90f1d7106f5776f7894ee03053a6a05995f5ed199fcf8722be75fbd2309dd4339155d0e97193002a42c08fc673ba7859ec50601d48e7081161161a2793d1429196b4d9182f7c46359a074285b251aca"], 0xb1)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x509, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)

14:28:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0)
syz_open_pts(r0, 0x6080)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
msgget$private(0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100)='nl80211\x00')
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup(r3)
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x12)
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000240)={@dev, @mcast1, @dev={0xfe, 0x80, [], 0x2a}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x380, r5})
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000140)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, 0xc, r5})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80020000}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="080026bd70000000000002000000080069000800000008000300", @ANYRES32=r5, @ANYBLOB="b73100005cff75e28930059571a0bad70d01cf9739ebe188236e12fbb23981c9f510afdd90cea8594c57f0816efa84d01f8b841581a0b7e60db05d5dde0654af2a3b65229090408ff0faecb6dae53cdc3c3f164963f0ef83ee34e825d81e6cbfc2ad0d8978c10377610be77b15aab208652e54ead2de5d0eca94bbb5a4104724935c43b543ee6b5c876bede8c866ee1239c4c92c729805dbce2ab0d5c6d0d31eafe3d0d1ca96c94e4240db8576b27eab146f33e21f8ceaa0a7b3e1ecf07133348d146b90ede632fc9f81cb9594ee10a5e6e676a3eace1b5cc0a8ec4d3785403d3543cea2926a0732118e20e7dc15c769349146d1f719a56d9fdfa12f41f9b7eb744e4a316e4a4a938315b533173546c506d871b9999d633fff31246379c3219268916a288e18c87dc84595c15ee8"], 0x34}}, 0x8044000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = dup(r6)
ioctl$sock_inet_udp_SIOCINQ(r7, 0x541b, &(0x7f0000000080))
r8 = dup(r7)
fgetxattr(r8, &(0x7f0000000000)=@known='system.sockprotoname\x00', 0x0, 0x0)
getsockopt$inet_pktinfo(r8, 0x0, 0x8, &(0x7f00000000c0)={0x0, @loopback, @multicast1}, &(0x7f0000000100)=0xc)

14:28:55 executing program 1:
prctl$PR_GET_SECCOMP(0x15)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r4, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
accept$unix(r4, &(0x7f0000000440)=@abs, &(0x7f0000000380)=0x6e)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r5, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="004942488c23492893efde8b98bd459e7e3a445a9d1887"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r5, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x68, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0xfff1}}, [@filter_kind_options=@f_rsvp6={{0xa, 0x1, 'rsvp6\x00'}, {0x38, 0x2, [@TCA_RSVP_DST={0x14, 0x2, @remote}, @TCA_RSVP_PINFO={0x20, 0x4, {{}, {}, 0x0, 0x0, 0x3}}]}}]}, 0x68}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)=@bridge_newneigh={0x50, 0x1c, 0x2, 0x70bd2b, 0x25dfdbfb, {0xa, 0x0, 0x0, r5, 0x2, 0x21, 0x2}, [@NDA_PROBES={0x8, 0x4, 0x7}, @NDA_LINK_NETNSID={0x8, 0xa, 0xe3}, @NDA_MASTER={0x8, 0x9, 0x2}, @NDA_MASTER={0x8, 0x9, 0xfffffff9}, @NDA_SRC_VNI={0x8, 0xb, 0x7f}, @NDA_DST_MAC={0xa, 0x1, @dev={[], 0x2a}}]}, 0x50}}, 0x800)

[  526.702798] device veth18 entered promiscuous mode
14:28:56 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0)
syz_open_pts(r0, 0x6080)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
msgget$private(0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100)='nl80211\x00')
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup(r3)
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x12)
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000240)={@dev, @mcast1, @dev={0xfe, 0x80, [], 0x2a}, 0x1, 0x0, 0x0, 0x0, 0x0, 0x380, r5})
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000140)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, 0xc, r5})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80020000}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="080026bd70000000000002000000080069000800000008000300", @ANYRES32=r5, @ANYBLOB="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"], 0x34}}, 0x8044000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = dup(r6)
ioctl$sock_inet_udp_SIOCINQ(r7, 0x541b, &(0x7f0000000080))
r8 = dup(r7)
fgetxattr(r8, &(0x7f0000000000)=@known='system.sockprotoname\x00', 0x0, 0x0)
getsockopt$inet_pktinfo(r8, 0x0, 0x8, &(0x7f00000000c0)={0x0, @loopback, @multicast1}, &(0x7f0000000100)=0xc)

14:28:58 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x87f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='erspan0\x00', 0xff89)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$KDGKBENT(r4, 0x4b46, &(0x7f00000000c0)={0x1, 0x0, 0x6})
ioctl$FBIO_WAITFORVSYNC(0xffffffffffffffff, 0x40044620, 0x0)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r2, r5, 0x0, 0x80001d00c0d0)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000040)=r5, 0x4)
connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @rand_addr=0x7fffffff}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x400000000000030, 0x0)

14:28:58 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl(r0, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071")
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
syz_open_pts(r1, 0x41)
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newlink={0x3c, 0x10, 0x705, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9, 0x1, 'bond\x00'}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_LP_INTERVAL={0x8, 0x13, 0xffffffff}]}}}]}, 0x3c}}, 0x0)

14:28:58 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
syslog(0x3, &(0x7f00000000c0)=""/147, 0x6558a7e3409167e0)
open(&(0x7f0000000e00)='./file0\x00', 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x803, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='mounts\x00')
r1 = socket$inet_udp(0x2, 0x2, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
sendfile(r1, r0, &(0x7f0000000180)=0x15a8, 0xfffffffe)
semctl$IPC_RMID(0x0, 0x0, 0x0)
semctl$IPC_STAT(0x0, 0x0, 0x2, 0x0)

14:28:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x200002, 0x0)
r3 = openat$cgroup_procs(r2, &(0x7f0000000440)='tasks\x00', 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r4, 0xc0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x2, &(0x7f0000000500)=ANY=[@ANYRESHEX=r3], &(0x7f0000000000)='GPL\x00', 0x0, 0xc0, &(0x7f000000cf3d)=""/192, 0x0, 0x2, [], 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000400)={0x3, 0x4, 0x401}, 0x10, r5}, 0x78)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x1, &(0x7f0000000040)=ANY=[@ANYRES64=r1], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x1}, 0x10, r5}, 0x78)

14:28:58 executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(des-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)='\b\x00\x00\x00\x00\x00\x00\x00', 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = dup2(r2, r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendmmsg$unix(r1, &(0x7f0000002d80)=[{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000000)="a6a67dab440f6e6b", 0x8}, {&(0x7f00000004c0)="ae", 0x1}], 0x2, 0x0, 0x0, 0x4}], 0x1, 0x0)
ioctl$VIDIOC_QUERYBUF(r3, 0xc0585609, &(0x7f00000000c0)={0x0, 0x3, 0x4, 0x800, 0x7, {0x77359400}, {0x1, 0x0, 0x4, 0x1, 0x20, 0x5, "d620d4f5"}, 0xc904, 0x76e0155c008d85b0, @userptr=0xf17a, 0x3, 0x0, <r4=>r2})
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000480)='NLBL_CIPSOv4\x00')
sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001340)=ANY=[@ANYBLOB="f1c7cf71b69a7deebf6f3593daf146db0b7cc25b6f59efe8b3994c482ffef7d921e5f15caed8d3159d50722fd2d0cbe7610568ac33cf4ca8dab42973f0b22b1d16c41105d62a5d28a68606a97f1469533d8b30280132d798451169d7ff8592b901007859b8197c8367979f94d29be957d6f9c130a0cecc628632ea1a11a11e6c686e7d01f8ffff71aad01a24edac5c5dd08ebb47ee5ecdb96ef021bfdf93166b2fb37210b800000000000000000000ad374611ffd10d54cf8d4498b21019237e71c8", @ANYRES16=r5, @ANYBLOB="080027bd7000fedbdf2504000000da1f6c132e00327a0f62823c0004800500030000000000050003000700000005008fa90368000005000300070000000500030002000000050003000500000005000300070000001c0089620cb403000500000005000300006a6197fe07"], 0x3}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000540)='IPVS\x00')
sendmsg$NLBL_CIPSOV4_C_LIST(r4, &(0x7f0000000500)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x48}, 0xc, &(0x7f0000000480)={&(0x7f00000001c0)={0x274, r5, 0x20, 0x70bd25, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MLSLVLLST={0x64, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6c051f21}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x522fac6c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1fc706cd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x331dbd42}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xdd}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x218e39ba}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2dfb13d6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4f}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4c, 0x8, 0x0, 0x1, [{0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x75}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xdf}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xec}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x32}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb1}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1e91bbb6}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x144, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x400bd4ed}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3edc}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xae80}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8c77}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd508}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9e0b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf848}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xce2d}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc5a8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4aea3a52}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd1cc}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2fbe8121}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x63a1fa5a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xfda1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5bbeade9}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcc74}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa73c}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3499a415}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7b846d30}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xde35}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xaeb9}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x61d3d8c9}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xb73bf32}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x727b96fd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdbe6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x61129d1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x322d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe17b}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3607ad0e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8182}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb979}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x61a2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x68a9ea73}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5db3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2d003a50}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdcd7}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x44, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0xc8453458e8be5387}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}]}, 0x274}, 0x1, 0x0, 0x0, 0x40000}, 0x24004840)

14:28:59 executing program 0:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = dup3(r0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x10003)
write$binfmt_script(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB='#! ./file0 {em1Euser vboxnet0\\selinux(# eth0vboxnet1\' \n'], 0x37)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000380)={<r6=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f00000003c0)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @dev}, r6}}, 0x48)
write$RDMA_USER_CM_CMD_BIND_IP(r4, &(0x7f0000000000)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0x18, @remote, 0x7fffffff}, r6}}, 0x30)
close(r2)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

14:28:59 executing program 1:
unshare(0x400)
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000340)=0x1, 0x4)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x407, @initdev={0xfe, 0x88, [], 0x1, 0x0}}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071")
getpeername$inet6(r0, 0x0, &(0x7f00000001c0))
sendmsg$sock(0xffffffffffffffff, &(0x7f0000001400)={0x0, 0x0, &(0x7f0000001380)=[{&(0x7f00000000c0)="f0651851beb51bad02776ca3eba5b70a32dd39d188a663ba894b860af91666184961", 0x22}], 0x1}, 0x0)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
setsockopt$IP_VS_SO_SET_ZERO(r3, 0x0, 0x48f, &(0x7f0000000180)={0x84, @dev={0xac, 0x14, 0x14, 0x23}, 0x4e23, 0x1, 'wrr\x00', 0x20, 0x83e, 0x6e}, 0x2c)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0205647, &(0x7f0000000140)={0xa10000, 0xa97, 0x5, <r4=>0xffffffffffffffff, 0x0, &(0x7f0000000100)={0x980906, 0x8, [], @p_u16=&(0x7f0000000040)=0x200}})
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x19, 0x92, &(0x7f0000001f00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, r4, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x3}, 0x10}, 0x78)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0xe80, 0x0, &(0x7f00000000c0)="b9ff03c6630d698cb89e0bf088ca1fffffff0e000000630677fbac14140ce0", 0x0, 0x2f, 0x0, 0x0, 0xfffffffffffffe2a}, 0x28)
r6 = socket$kcm(0x2b, 0x1, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)

[  530.270865] audit: type=1800 audit(1586615339.387:7221): pid=18677 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.2" name="bus" dev="sda1" ino=16629 res=0
14:28:59 executing program 2:
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x1012, r1, 0x0)
write$P9_RWALK(r1, &(0x7f0000000300)=ANY=[], 0x6)
r2 = perf_event_open(&(0x7f0000000180)={0x6, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup2(0xffffffffffffffff, r2)
r3 = open(&(0x7f0000000100)='./file0\x00', 0x630243, 0x0)
write$P9_RWALK(r3, 0x0, 0x0)
open(&(0x7f00000000c0)='./bus\x00', 0x800000141042, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
r4 = perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
dup2(0xffffffffffffffff, r4)
r5 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r5, &(0x7f0000000080)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1e}}}, 0x24)
recvmmsg(r5, &(0x7f00000031c0), 0x0, 0x0, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000140)='/dev/cachefiles\x00', 0x644001, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000031c0)=[{{0x0, 0xf000000, 0x0, 0x0, 0x0, 0x78}}], 0x371, 0x0, 0x0)
connect$rxrpc(0xffffffffffffffff, &(0x7f0000000080)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e24, @dev}}, 0x24)
sendmmsg(0xffffffffffffffff, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]}}], 0x1, 0x0)

14:28:59 executing program 3:
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f00000000c0)=0xffffffff, 0x4)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080)={<r3=>0xffffffffffffffff}, 0x111, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_MCAST(0xffffffffffffffff, &(0x7f0000000140)={0x16, 0x98, 0xfa00, {&(0x7f0000000040), 0x4, r3, 0x10, 0x1, @in={0x2, 0x4e20, @loopback}}}, 0xa0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x404e20}, 0x1c)
listen(r0, 0x400000001ffffffd)
socket$inet6(0xa, 0x6, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r4 = socket$unix(0x1, 0x2, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = dup2(r5, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
r7 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r7, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}}], 0x4000000000000d0, 0x0)

14:28:59 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/net/tun\x00', 0x0, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
syz_mount_image$nfs4(&(0x7f0000000000)='nfs4\x00', &(0x7f0000000040)='./file0\x00', 0x4, 0x0, 0x0, 0x0, &(0x7f0000000140)='vmnet1systemtrusted,selinux\x00')
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
sendfile(r1, r4, &(0x7f0000000080)=0x5, 0x9)

[  530.514979] audit: type=1800 audit(1586615339.627:7222): pid=18674 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.0" name="bus" dev="sda1" ino=16631 res=0
14:28:59 executing program 0:
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xe}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x100000001)

14:28:59 executing program 5:
r0 = accept4(0xffffffffffffffff, &(0x7f0000000000)=@ethernet={0x0, @remote}, &(0x7f0000000080)=0x80, 0x80000)
r1 = socket(0x11, 0x800000003, 0x8)
getsockopt$sock_int(r1, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x77, &(0x7f0000000000)={r4}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000180)={r4, 0x9}, 0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f00000000c0)={0xfe00, 0x2, 0x1, 0x7, 0x0, 0x4, 0x537, 0x1ff, r4}, 0x20)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x400}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r5 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e23}, 0x1c)
listen(r5, 0xfff)
r6 = socket$inet6_sctp(0xa, 0x800000000000001, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r6, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0xfe80, @loopback}], 0x1c)
fchdir(0xffffffffffffffff)
ioctl$VIDIOC_DBG_G_REGISTER(0xffffffffffffffff, 0xc0385650, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/cgroups\x00', 0x0, 0x0)

[  530.801224] audit: type=1800 audit(1586615339.917:7223): pid=18694 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=16625 res=0
14:29:00 executing program 3:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000340)=ANY=[], 0x0)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200)='9p\x00', 0x0, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_user='access=user'}]}})
ioctl$SOUND_MIXER_INFO(r2, 0x805c4d65, &(0x7f0000000240))
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
sendfile(r5, r6, 0x0, 0x800000080004103)

14:29:00 executing program 5:
perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xff, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000140)='/dev/sequencer\x00', 0x200880, 0x0)
utimensat(r2, &(0x7f00000001c0)='./bus\x00', &(0x7f0000000200)={{0x0, 0x7530}, {0x77359400}}, 0x100)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
write$FUSE_IOCTL(r3, &(0x7f0000000180)={0x20}, 0x20)
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
ioctl$SIOCRSGCAUSE(r5, 0x89e0, &(0x7f0000000080))

14:29:00 executing program 0:
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r0, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r0, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00')
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_BEARER_ENABLE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000002c0)={0x28, r1, 0xc573de0d27bdfe6f, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'ip6gre0\x00'}}]}]}, 0x28}}, 0x0)
sendmsg$TIPC_NL_NODE_GET(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="a4000000", @ANYRES16=r1, @ANYBLOB="200025bd7000fbdbdf250d0000009000018044000400200001000a004e2200000f0300000000000000000000fffa0000000100000000200002000a004e210000004700000000000000000000000000000000200000002c00008008000300040000000800030003000000080001000f0000000800030001000000080003000400000008000300010000001400028001010000000000000800020089000000"], 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x4000040)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, 0x0, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000280)={<r4=>0x0}, &(0x7f0000000300)=0xc)
ptrace$getregs(0xc, r4, 0x4, &(0x7f0000000340)=""/171)
mkdir(&(0x7f0000001340)='./file0\x00', 0x0)
mount(&(0x7f0000000440)=ANY=[@ANYBLOB="59643a3a5d3a8c8edc8e5ccd8a2abf86215506d43afe23b74a5e728fcfe80ef23df40832d63df32f6480372155aa70c61bbddf17a31b7e514cd0ee7e40029b2158a03f0ddaa156ba01601622120cb666422f236ece15"], &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='ceph\x00', 0x6000000, 0x0)

[  531.767275] Failed to obtain node identity
[  531.767440] Enabling of bearer <ib:ip6gre0> rejected, failed to enable media
[  531.782676] ceph: device name is missing path (no : separator in Yd::]:ŒŽÜŽ\ÍŠ*¿†!UÔ:þ#·J^r�Ïèò=ô2Ö=ó/d€7!Uªpƽߣ~QLÐî~@›!X ?
Ú¡Vº
`"¶fB/#nÎ)
[  531.831273] Failed to obtain node identity
[  531.831297] Enabling of bearer <ib:ip6gre0> rejected, failed to enable media
[  531.836174] ceph: device name is missing path (no : separator in Yd::]:ŒŽÜŽ\ÍŠ*¿†!UÔ:þ#·J^r�Ïèò=ô2Ö=ó/d€7!Uªpƽߣ~QLÐî~@›!X ?
Ú¡Vº
`"¶fB/#nÎ)
14:29:01 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
ioctl$SG_SET_COMMAND_Q(r3, 0x2271, &(0x7f0000000000)=0x1)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040), 0x0, 0x0, 0xfffffffffffffe93}, 0x20000000)

14:29:01 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000680)=@raw={'raw\x00', 0x2, 0x3, 0x240, 0xf0, 0x0, 0x1a8, 0x0, 0x0, 0x1a8, 0x1a8, 0x1a8, 0x1a8, 0x1a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@unspec=@connbytes={{0x38, 'connbytes\x00'}, {[], 0x0, 0x3}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@uncond, 0x0, 0x98, 0xb8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @unspec=@TRACE={0x20, 'TRACE\x00'}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2a0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x140f, 0x400, 0x70bd25, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_CHARDEV_TYPE={0xd, 0x45, 'opa_vnic\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x5}, 0x880)

[  532.333782] audit: type=1800 audit(1586615341.447:7224): pid=18732 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.0" name="bus" dev="sda1" ino=16633 res=0
14:29:01 executing program 0:
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}], "ed856da2a2dea9f2ebcd6970da49603931304afbfab9c0cd8a465aaf3f43a80000b3db95eb93ecff32c20bb1f80d828b018029942d8100"/64}, 0xb8)
sendmsg$AUDIT_SIGNAL_INFO(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000140)='./file1\x00', 0x0)
perf_event_open(&(0x7f00000004c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200007, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8001}, 0x0, 0x0, 0x80000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
creat(0x0, 0x0)
r0 = creat(&(0x7f0000000540)='./file0\x00', 0x104)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
lsetxattr(&(0x7f0000000180)='./file1\x00', &(0x7f0000000440)=@random={'security.', 'overlay\x00'}, 0xfffffffffffffffd, 0x0, 0x1)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x20000000003, 0x0)
ioctl$INOTIFY_IOC_SETNEXTWD(0xffffffffffffffff, 0x40044900, 0x0)
syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)='9p\x00', 0x212820, &(0x7f00000002c0)=ANY=[@ANYRESHEX, @ANYBLOB="2c63616368657461673d2f64e282f429411631e83db99d3c3392067670c65933e43e5aee2782321d083b6d4b8ecfbdd5442ca3e76da54546ed643bc87751b903f6de7012b5419f716a9cbea0d0c06443b4d95e6c32f2b504999b5aaef980fee3db162382e71462fd777fd72602454fe2915e92c3df49842e76942d8237d600f7585093f0c66db9f852a8842505847b7525b7b310fc24ee1bddebd9b4ebafe11238eaf84d9308ed497f5d2adf48c2ecdcc7283c5d5668ebbfc47bcb3953ba7f84ac9d66429bba07ca63730e31eaee365e20fdf215a3579f10", @ANYRES64, @ANYRES32=r1, @ANYRESHEX=0x0, @ANYBLOB=',md\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYBLOB="f0aa0b35d2260476f662e572cc640a8dd6991dadf192d3e9d96891161eeee16dc73161a031ba406c1c2376f5c4061e6f330d54a1802771b68fb35429f4cf3a422ddaa5c284e39c5e8009c5474be819880cfa0532f7"])
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c4600000000000000000000000026960af8395b3f96297b7b9293b2bd1200000000000000000000000000000000400000000000000000000000000000000000000000003800000000000000000000000000000000000000000000000000000000000000000000000000000000000300000000000000"], 0x78)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x541c, &(0x7f0000000280))
mount$overlay(0x40000a, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="75707065726469723d2e2f66696c65302c6c6f77657264690900000000000000302c776f726b6469723d2e2f66696c65315c93"])
ioctl$DRM_IOCTL_MODE_CURSOR(0xffffffffffffffff, 0xc01c64a3, &(0x7f0000000480)={0x0, 0x370a, 0x0, 0x4, 0x8, 0x548e, 0x3f})
connect$l2tp6(r0, &(0x7f0000000580)={0xa, 0x0, 0x1, @ipv4={[], [], @remote}, 0x7}, 0x20)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='tmpfs\x00', 0x0, 0x0)

[  532.540853] overlayfs: unrecognized mount option "lowerdi	" or missing value
14:29:01 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x10000100004001fd)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r5 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r5, 0x20, 0x6, 0x1)
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r6)
r7 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r7, 0x200004)
sendfile(r6, r7, 0x0, 0x80001d00c0d0)
setsockopt$inet_tcp_int(r7, 0x6, 0x1, &(0x7f0000000100), 0x4)
ioctl$SNDCTL_DSP_GETTRIGGER(r5, 0x80045010, &(0x7f0000000040))
r8 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0)
r9 = dup(r8)
syz_kvm_setup_cpu$x86(r9, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

[  532.681784] overlayfs: unrecognized mount option "lowerdi	" or missing value
[  532.969874] audit: type=1804 audit(1586615342.087:7225): pid=18685 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir266122625/syzkaller.VWrHBR/172/bus" dev="sda1" ino=15784 res=1
[  533.880541] audit: type=1804 audit(1586615342.998:7226): pid=18685 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir266122625/syzkaller.VWrHBR/172/bus" dev="sda1" ino=15784 res=1
14:29:03 executing program 0:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffffff, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
setxattr$security_selinux(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='security.selinux\x00', &(0x7f0000000340)='system_u:object_r:dhcpc_state_t:s0\x00', 0x23, 0x5)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
ioctl$VIDIOC_QUERYSTD(0xffffffffffffffff, 0x8008563f, &(0x7f0000000140))
r1 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r1, &(0x7f0000000200)={0xa, 0x404e20}, 0x1c)
listen(r1, 0x400000001ffffffd)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x1a1100, 0x0)
r3 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x2, 0x5})
sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo\x00')
getdents(r4, &(0x7f0000000000)=""/62, 0xd6147cbb6f273a13)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r4, 0x0, 0x0}, 0x10)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r3, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_netfilter(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f00000013c0)=ANY=[@ANYBLOB="58020000050b010e25bd7000fbdbdf250c0000043cf511efc6d5eda75b3728b47f540d6449aa379c83c68a18891d16c3728521afea89fad3c724aa36bc8b85889761116def8caa0a81195e261ddc022d376f623543e6478ac185eb39549a05f47e8f1f0cd0a2fc23a7be2b0e2ca97bb24d730ab5d6500c416222124b3e36bcbde0e2fd6889a45fbb0cc725cfcbbc", @ANYRES32=r3, @ANYBLOB], 0x3}}, 0x44)
r5 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r6 = accept4(r1, 0x0, 0x0, 0x0)
ioctl$VIDIOC_S_STD(0xffffffffffffffff, 0x40085618, 0x0)
sendmmsg(r6, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0x7000000}}], 0x4000000000000d0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc)
execve(&(0x7f0000000240)='./file0\x00', &(0x7f0000001640)=[&(0x7f0000001480)=',vboxnet1em0self,\x00', &(0x7f00000014c0)='security.capability\x00', &(0x7f0000001500)='\x00', &(0x7f0000001540)='/em0em0\x00', &(0x7f0000001580)='GPLproc^\xaa^vmnet0-system\x00', &(0x7f00000015c0)='{\x00', &(0x7f0000001600)='*user[selinux!%lo\x00'], &(0x7f0000001780)=[&(0x7f0000001680)='NLBL_\x86\x8a\xc8\x9eMB\x80V', &(0x7f00000016c0)='lo\x00', &(0x7f0000001700)=']\x00', &(0x7f0000001740)='/dev/vcs\x00'])
ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, &(0x7f0000000040)=@buf={0xdbc, &(0x7f00000003c0)="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"})

14:29:03 executing program 5:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
ioctl$KVM_ASSIGN_DEV_IRQ(r3, 0x4040ae70, &(0x7f0000000040)={0x1, 0x9, 0x1, 0x104})
bind$netlink(r1, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfd, 0x10}, 0xc)

14:29:03 executing program 3:
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001540)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)='fuse\x00', 0x0, &(0x7f00000017c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000001840), 0x1000)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r2, 0x84, 0x6e, &(0x7f0000000240)=[@in6={0xa, 0x4e23, 0x8000, @loopback, 0xfff}, @in={0x2, 0x4e22, @multicast1}, @in6={0xa, 0x4e21, 0x4452, @ipv4={[], [], @rand_addr=0x7f}, 0x1}, @in6={0xa, 0x4e20, 0x7, @mcast1, 0x67e713ab}, @in={0x2, 0x4e22, @multicast2}, @in6={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, [], 0x19}, 0x1ff}], 0x90)
write$FUSE_INTERRUPT(r0, &(0x7f0000000000)={0x10, 0x0, 0x1}, 0x10)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
faccessat(r4, &(0x7f0000000040)='./file0\x00', 0xa, 0x300)
r5 = syz_open_procfs(0x0, &(0x7f0000000200)='mounts\x00')
r6 = socket$inet_udp(0x2, 0x2, 0x0)
sendfile(r6, r5, &(0x7f0000000180)=0x15a8, 0xfffffffe)

14:29:03 executing program 1:
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r0=>0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000640)='/dev/uhid\x00', 0x802, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000680)=ANY=[@ANYBLOB="0b00000073797a31000000000000000000000000000000000000000000000000000000ecdf40e65cc780220000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000100258d7a3500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a310000000000000000000000000000000000030000cf0a000000000000000000000900000000000000000000000000000000000000000000000000000016000000000000000000000000000000000000003b38e967ac8206eaba86b97eec0b2bed1ee23364b10d6aad51020000e2a1db3c6a31e30dee4a2805400039389a804c41c2993fc67e8a146045e14e8a0800550e6a25975bc171f1ff7fa373c0ef65f6ec71f0084254d140187fafa4a1ee6ece53c67385b8838aa36ad24a7dce0973c362bd726a8ab11b0a0b00e77e6c16503cf47ce47302bdd311378eaab7372dab5eef84c31b3cad46a7a0beda0686d2ae4d394286e5c81eae45e3a25ba62b8da11edb578b453acab1d57f25833d4d4c13eef0e0e62be2015eedef3c32984c6c4b2b9c33d8a624cea9f3f167faa13a3f01967f021d6e375c3b3cfffbffffffffffff000000000000000031bd6b1dc352e97b246b346574f3c06415f6cf685cdaa932d48033f2747bb0b8fbec73c462039eceeb261c512c6fefa4f52ecc1faa469f63abb29e6c6154218ab71305b9afe978e20ae45e5bc11469a638d0386de492b48613dda432217b9fdb16bcad7a609969306078ec0c5b6ac963af3fa174fb99eb4e5cf897339cd54b04e441cbbc9afd69d9dffe3d2e585cfbd29e01bed3e6acc64d980bf1dbe805c47ed513219b5de85825711f26b3aad5737d98f5f54e4c10e29cbc9af294be1939202b51b1459c788a25f58aa80e336632252e254c35f0fca0ad3079cfe79572464c22134587932f4572486990628cad05db00dd6aa918b868e6435882318d3c034688fd58aa13db33c63ac6cdd75becaebaaa91f62853954185a19160dc8d"], 0x12e)
r3 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r4 = socket(0x10, 0x0, 0x0)
stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0})
r7 = gettid()
ptrace$setopts(0x4206, r7, 0x0, 0x0)
tkill(r7, 0x33)
ptrace$setregs(0xd, r7, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r7, 0x0, 0x0)
r8 = gettid()
ptrace$setopts(0x4206, r8, 0x0, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000b00)=ANY=[@ANYBLOB="a4000000", @ANYRES16=0x0, @ANYPTR=&(0x7f0000000040)=ANY=[@ANYPTR, @ANYRES16, @ANYPTR=&(0x7f00000009c0)=ANY=[@ANYRES32, @ANYPTR, @ANYBLOB="3acab817fbcd472ae84e13425e1fb2158e4bde767a565292eb9d0bb5ded3c9851006b0c197e6f0dbde7c38a58da24e479d43314982200c9f8c5c10f32e41c99f3483cf53a28bd23bc9587d1ec83af9ac331713fcc4b9e910f0ae4d45dee7c31bc55a771d5e9de9240584b1728f22318a9809292af34dc79c8f2e429f0edad945f717fe82587d014f896b3be856a25833f4eedcd4fc8610b85d97ccdccf4182a20b49e77cc6b2f8a2fed3bb0209b83b8da302151964e12378dcd9e8ba7c9a"]], @ANYPTR64=&(0x7f0000000080)=ANY=[@ANYRESDEC, @ANYBLOB="c4b0442baf577c4f9186da1bc73607a4", @ANYRES32=0x0], @ANYBLOB="09000500c2a85faba2292f35a56c23246a431c3ebef236007b78a13827b48c9e572e6350d54bafbbd4815ebbdae77c6eac8720dde747d3b4419772a0c5f551d75436ea971f4b708304e0d7d59a8cee6279fcbfb674bb398ca94a563e75fb340f", @ANYRES64=0x0, @ANYPTR, @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYPTR=&(0x7f0000000100)=ANY=[@ANYRESOCT=r6, @ANYRESDEC, @ANYPTR64=&(0x7f0000000380)=ANY=[@ANYRES64, @ANYRESHEX=r3, @ANYRES32=0x0, @ANYPTR64=&(0x7f00000001c0)=ANY=[@ANYPTR, @ANYRESOCT=r6, @ANYRES16=r8, @ANYRES64, @ANYRES64, @ANYRES32=r1], @ANYRES16=0x0]], @ANYRES32, @ANYBLOB="3400078008000100", @ANYRES32=r3, @ANYRES16=r2, @ANYPTR=&(0x7f0000000c40)=ANY=[@ANYRESDEC, @ANYRESOCT=r6, @ANYPTR64=&(0x7f0000000580)=ANY=[@ANYBLOB="8fdc4c30ef", @ANYPTR, @ANYRESDEC, @ANYRESDEC=0x0, @ANYRES32=0x0], @ANYPTR=&(0x7f00000004c0)=ANY=[@ANYPTR64, @ANYRES16=r4, @ANYRES32=0x0, @ANYBLOB="8952973855b76e3dcbbb37eb373cb4bb5916f5a88973ab856eb9324502ec658ae145a789c84ad3d43fcc7a45ce109eb3f4282180a6896ee2a3da0d7ee4b60ac8ff1b00f5f6f0d7082e6fd958d8aa290d2abf5b3546e4657b19245e717ec46693be36e7525e4adcbd9741234b73f4258cca9bf8ce5528216b2b3825a7af8039d44f9b7ef2e94f653ac0cc57e3c69c170630f1c821d88cc8c07792e4b4"], @ANYRES32, @ANYBLOB="fd67c70c5f34314ed4562b8bd5159a82b954d48f192509199b49cf0d7eca1dcc0b46f6175e1b7de386a830fc1eb6e24a327bdbb843cb5bd7d6ebbb1678a047b5d44e7d178461721d7ef82c6075fec96205e31f4cdd195db1808d0a596560b7ab5130f7f4cac5911900eb4801f9b00f9eb890d2f03097b5b4d7f1aa3514853fdf2b"], @ANYBLOB="080001002dfe6f8689f32a1ac15bbe4c1723176f", @ANYRES16=r5, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="0c00060002000000000000000c00080006000000000000000c0008000300000000000000"], 0x19}, 0x1, 0x0, 0x0, 0x40001}, 0x40044)
ptrace$setregs(0xd, r8, 0x0, &(0x7f0000000080))
ioctl$VIDIOC_SUBDEV_G_SELECTION(0xffffffffffffffff, 0xc040563d, &(0x7f0000000600)={0x1, 0x0, 0x2, 0x5, {0x4, 0xb63, 0x3ff, 0x7fff}})
ptrace$cont(0x7, r8, 0x0, 0x0)
msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000140)={{0x3, 0x0, 0x0, r0, r6, 0x0, 0x6}, 0x0, 0x0, 0xa, 0x4, 0x43, 0x1000000000, 0xdf0, 0x2, 0x6, 0x1, r7, r8})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="9feb01001800000000000000240000002400f8ff010000000000000001000015000004000000000002000000020000000000000000000005040000000000"], &(0x7f0000000280)=""/223, 0x3e, 0xdf, 0x8}, 0x20)

14:29:03 executing program 4:
syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x7ff, 0x8000)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x4000, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
sendmsg$NFT_MSG_GETSET(r4, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x58, 0xa, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x66}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x6}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x9}]}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x9}, @NFTA_SET_FLAGS={0x8}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x10}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000000}, 0x20000000)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
ioctl$DRM_IOCTL_AGP_ALLOC(r2, 0xc0206434, &(0x7f0000000180)={0x7, 0x0, 0x10001, 0x1})
setsockopt$inet_tcp_buf(r0, 0x6, 0x3e, &(0x7f0000000080)="a85b63a989bb15225afa66a34f43431ea2fe2bba90949bc1819740f9d7fd5c68e8457b6597513fcfaa7f9dea28838741d6bff30399db955e77a62152a79db883857bf0b9ad2401d655833d9554e16eca2f82e1b00be5e1f5570050fe9e9b7c3029c6b18a2dc36bedfc72d15e5362d2d311d78759e0d5425fd49b97313b7ff6c9c6d237fb15b7f908f29cbaf3d364c3317ae2083990de1107af224cd668ada2163462604e06a9859c598f4ce8dd0225671cc39b59a63ad857ac0e0a71a5efe07fdfa653700a503d152e962884fbfc263de5fb6f5a81546a28aa234ec063eb92fb6f6b4b7d165458dde88cc452a4db9f41", 0xf0)

[  534.922001] hid-generic 0000:0000:0000.000C: ignoring exceeding usage max
[  534.988665] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on %�z5
14:29:04 executing program 1:
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0xb4, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x84, 0x12, 0x0, 0x1, @vlan={{0x9, 0x1, 'vlan\x00'}, {0x74, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}, @IFLA_VLAN_EGRESS_QOS={0x4}, @IFLA_VLAN_EGRESS_QOS={0x64, 0x3, 0x0, 0x1, [@IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0xff}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x5, 0x800}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x200, 0xfffff001}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0xa5, 0x1}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x4, 0x7}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x400}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x100, 0x6}}, @IFLA_VLAN_QOS_MAPPING={0xc, 0x1, {0x10000, 0x9f}}]}]}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0xb4}}, 0x0)
ioctl$EVIOCGABS3F(r0, 0x8018457f, &(0x7f0000000000)=""/152)

[  535.338010] audit: type=1800 audit(1586615344.458:7227): pid=18771 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.5" name="bus" dev="sda1" ino=16648 res=0
14:29:04 executing program 5:
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff)
clone(0x802102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
wait4(0x0, 0x0, 0x80000000, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x11, 0x800, 0x0)
socket$rxrpc(0x21, 0x2, 0x2)
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x38)
ptrace$cont(0x18, r0, 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000000c0)={[], 0x0, 0x0, 0x0, 0x4, 0x34})
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x9, r0, 0x4000000000000, 0x800000000044a)

14:29:04 executing program 4:
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, 0x0)
chdir(&(0x7f0000000000)='./file0\x00')
r0 = creat(&(0x7f0000000080)='./bus\x00', 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
ftruncate(r0, 0x208200)
r1 = getpid()
sched_setscheduler(r1, 0x5, &(0x7f0000000380))
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x315c, 0x0, 0x16dc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r2 = open(&(0x7f0000000400)='./bus\x00', 0x14103e, 0x0)
r3 = syz_open_dev$vivid(&(0x7f00000000c0)='/dev/video#\x00', 0x0, 0x2)
mmap(&(0x7f00004fb000/0x4000)=nil, 0x4000, 0x7ffffc, 0x11, r3, 0x843f6000)
read(r2, &(0x7f0000000180)=""/19, 0xfffffe47)
futimesat(0xffffffffffffffff, 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_RUN(r4, 0x4004ae8b, 0x0)
syz_open_dev$audion(&(0x7f0000000140)='/dev/audio#\x00', 0x2, 0xa102)

14:29:04 executing program 2:
r0 = add_key$keyring(&(0x7f0000000080)='keyring\x00', &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r2 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f00000007c0)="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", 0x234, r1)
r3 = add_key$user(&(0x7f0000000300)='user\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000000)="03", 0x1, 0xfffffffffffffffd)
r4 = add_key$user(&(0x7f0000000280)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000380)='X', 0x1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r3, r2, r4}, &(0x7f0000000440)=""/241, 0xf1, &(0x7f0000000240)={&(0x7f0000000080)={'crc32c-generic\x00'}})
add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000340)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce003d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0x2b2, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000400)='logon\x00', &(0x7f00000001c0)=@secondary='builtin_and_secondary_trusted\x00')
add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000001280)={'syz', 0x3}, &(0x7f00000012c0)="ce", 0x1, r0)
keyctl$dh_compute(0x17, &(0x7f0000000200), &(0x7f0000000440)=""/241, 0xf1, &(0x7f0000000240)={&(0x7f0000000080)={'crc32c-generic\x00'}})
add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000340)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce003d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0x2b2, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f0000000300)='user\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000000)="03", 0x1, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r5}, &(0x7f0000000440)=""/241, 0xf1, &(0x7f0000000240)={&(0x7f0000000080)={'crc32c-generic\x00'}})
keyctl$dh_compute(0x17, &(0x7f00000002c0)={r4, 0x0, r5}, &(0x7f0000000540)=""/167, 0xa7, 0x0)
r6 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x610e94d08eeea5fd, 0x0)
r7 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(0xffffffffffffffff, 0x20, 0x10000010000, 0x100008000)
setsockopt$inet_tcp_int(r7, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f0000000040)={<r8=>0x0, 0x6}, &(0x7f0000000100)=0x8)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(r6, 0x84, 0x79, &(0x7f0000000140)={r8, 0x5, 0x4}, 0x8)

14:29:04 executing program 3:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x1012, 0xffffffffffffffff, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/config\x00')
preadv(r1, &(0x7f0000000480), 0x10000000000001e2, 0x7)
r2 = fcntl$dupfd(r0, 0x0, r1)
ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, &(0x7f00000002c0)={0x81, 0x0, [0x100000001, 0x0, 0x10000, 0xfffffffffffffff9]})
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/config\x00')
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/config\x00')
preadv(r4, &(0x7f0000000480), 0x10000000000001e2, 0x7)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000280)='/dev/ptmx\x00', 0x43040, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x6)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x10)
ioctl$GIO_FONT(r6, 0x4b60, &(0x7f0000000340)=""/130)
fstatfs(r0, 0x0)
openat$mice(0xffffffffffffff9c, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000140)={0x73622a85, 0xb, 0x2})
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES32=<r7=>0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x0)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000200)={r7, 0x3}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f0000000180)={r7, 0x5}, &(0x7f00000001c0)=0x8)

14:29:04 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x1c}}, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x381082, 0x0)
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x2000})

[  535.413219] audit: type=1800 audit(1586615344.478:7228): pid=18776 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.5" name="bus" dev="sda1" ino=16648 res=0
[  535.509256] audit: type=1800 audit(1586615344.518:7229): pid=18778 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=15788 res=0
[  535.568339] audit: type=1800 audit(1586615344.518:7230): pid=18785 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=15788 res=0
14:29:04 executing program 2:
clone(0x1902500, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000200)={0x7, 0x0, [{0xa14, 0x0, 0x2}, {0x827, 0x0, 0xfffffffffffffffa}, {0x23e, 0x0, 0x7}, {0x391, 0x0, 0x3}, {0x94f, 0x0, 0x8}, {0xb2a, 0x0, 0x20969536}, {0x40e, 0x0, 0x5}]})
ioctl$VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f0000000180)={0x10001, 0x9, 0x4, 0xe000, 0x6, {}, {0x0, 0xc, 0xad, 0x2, 0x62, 0x20, "7fc9b4c0"}, 0x6, 0x1, @userptr=0x7ff, 0x3})
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$DRM_IOCTL_CONTROL(r1, 0x40086414, &(0x7f00000000c0)={0x2, 0x400})
close(r0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r0, r2, 0x0, 0x80001d00c0d0)
getsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000), &(0x7f0000000080)=0x4)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000040))
r3 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_GET_FP_MODE(0x2e)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000380)=ANY=[@ANYBLOB="7261770000000000000000000000000000000000000000000000000000000000c1030000030000002003000068010000680100006801000000000000000000005002000050020000500200005002000050020000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006000000000000000000000028016801000000000000000000000000000000000000000000000000280064736370000000000000000000000000000000000000000000000000000000000000000000005800686173686c696d6974000000000000000000000000000000000000000001726f7365300000000000000000000000000000000000000000000000000000000000000005000000a600000000000000000000000000000040004c4f470000000000000000000000000000000000000000000000000000000000489e1c5140111982c047409b7ac3d722edd3fb24545886bbd1be494201b40000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000a800e80000000000000000000000000000000000000000000000000040005443504f505453545249500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff00000000"], 0x380)

[  535.618135] audit: type=1804 audit(1586615344.738:7231): pid=18819 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir728011538/syzkaller.093z3K/214/bus" dev="sda1" ino=16650 res=1
[  535.683520] audit: type=1804 audit(1586615344.788:7232): pid=18819 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir728011538/syzkaller.093z3K/214/bus" dev="sda1" ino=16650 res=1
[  535.788748] xt_hashlimit: overflow, try lower: 0/0
[  536.032812] audit: type=1804 audit(1586615345.148:7233): pid=18819 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir728011538/syzkaller.093z3K/214/bus" dev="sda1" ino=16650 res=1
[  536.155694] audit: type=1804 audit(1586615345.158:7234): pid=18819 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir728011538/syzkaller.093z3K/214/bus" dev="sda1" ino=16650 res=1
[  536.235377] audit: type=1800 audit(1586615345.198:7235): pid=18828 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.2" name="bus" dev="sda1" ino=16289 res=0
14:29:05 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000cffff0)={&(0x7f0000000840)=ANY=[@ANYBLOB="f800000016000900000000000000000000000000000000000000000000000000ffffffff00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ff02000000000000000000000000000100000000330000000000000000000000000000000000000100000000984eddd42ef7b54cd8cd040adb4fb395000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000461e124dabd600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000007f0000"], 0xf8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@flushsa={0x14, 0x1c, 0x301, 0x0, 0x0, {0x33}}, 0x14}}, 0x0)

14:29:05 executing program 3:
mkdir(&(0x7f00000000c0)='./file1\x00', 0x0)
mkdir(&(0x7f0000000180)='./bus\x00', 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
r1 = dup2(r0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
symlink(&(0x7f0000000040)='./bus\x00', &(0x7f00000003c0)='./bus/file0\x00')
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
mount$overlay(0x400000, &(0x7f0000000200)='./bus\x00', &(0x7f0000000100)='overlay\x00', 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0'])
rename(&(0x7f0000000080)='./bus/file0\x00', &(0x7f0000000140)='./bus/file1\x00')
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
getsockopt$bt_sco_SCO_CONNINFO(r3, 0x11, 0x2, &(0x7f0000000000), &(0x7f00000001c0))
creat(&(0x7f00000002c0)='./bus/file1\x00', 0x0)

14:29:05 executing program 1:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket(0x1, 0x1, 0x0)
close(r3)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
r5 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/lblc_expiration\x00', 0x2, 0x0)
sendmsg$nl_crypto(r5, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)=@alg={0xf8, 0x10, 0x8, 0x70bd2c, 0x25dfdbfd, {{'pcrypt(rfc4543(aegis128l-generic))\x00'}, [], [], 0x2400, 0x200}, [{0x8, 0x1, 0x2ed76e89}, {0x8, 0x1, 0x6}, {0x8, 0x1, 0x5}]}, 0xf8}, 0x1, 0x0, 0x0, 0x80c1}, 0x5)
socket$inet(0x2, 0x3, 0x2a)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x44080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x200, 0x0, 0x0, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r4, 0x84, 0x1e, &(0x7f0000000180)=0x3, 0x4)
bind$inet(r3, &(0x7f00000000c0)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x34}}, 0x10)
connect$inet(r3, &(0x7f0000000100)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r3, 0x0, 0x19404, 0x0)

14:29:05 executing program 2:
ftruncate(0xffffffffffffffff, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$sock_buf(r0, 0x1, 0x31, 0x0, &(0x7f0000000000))

14:29:05 executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x32, &(0x7f00000002c0), 0x4)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xa)
sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000140), 0xc, &(0x7f0000000180), 0x1, 0x0, 0x0, 0x40}, 0x40000844)
ioctl$sock_inet6_SIOCSIFADDR(r4, 0x89a1, &(0x7f00000000c0)={@local={0xfe, 0x80, [0x600, 0x3ef, 0x0, 0x3f00000000000000, 0x100000000000000, 0x0, 0x1103, 0x0, 0x0, 0x0, 0x0, 0x6]}})
ioctl$sock_inet6_SIOCADDRT(r4, 0x89a0, &(0x7f00000005c0)={@local={0xfe, 0x80, [0x0, 0xfeff0000]}, @ipv4={[], [], @loopback}, @ipv4={[], [], @loopback}, 0x2, 0x0, 0x0, 0x400})
sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x1c, 0x0, 0x0, 0x0, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x1c}}, 0x4000114)
sendmsg$TIPC_CMD_SET_LINK_TOL(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000240), 0xc, &(0x7f0000000380)={0x0}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

14:29:05 executing program 2:
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uhid\x00', 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000000200)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f0000000400)=""/1, 0x1}}, 0x120)

[  536.651981] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  536.923132] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  536.933569] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
14:29:07 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040)='l2tp\x00')
sendmsg$L2TP_CMD_SESSION_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x1c, r1, 0x1, 0x0, 0x0, {0x4}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}]}, 0x1c}}, 0x0)

14:29:07 executing program 0:
ftruncate(0xffffffffffffffff, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_int(r0, 0x6, 0x23, 0x0, &(0x7f0000000100))

14:29:07 executing program 3:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x4000000, 0x2000402)
fallocate(r0, 0x0, 0x0, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1})

14:29:07 executing program 2:
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, @perf_config_ext={0x0, 0x14e000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000280), 0x0, 0x0)
pipe2$9p(0x0, 0x0)
creat(0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
keyctl$KEYCTL_PKEY_DECRYPT(0x1a, 0x0, &(0x7f0000000100)={'enc=', 'oaep', ' hash=', {'sha512-ce\x00'}}, 0x0, 0x0)
fallocate(r1, 0x0, 0x4000000, 0x2000402)
fallocate(r0, 0x0, 0x0, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1})

14:29:07 executing program 1:
perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r0, 0xc1205531, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, [], [], [], 0x0, 0x0, 0x0, 0x0, "f8f0728d5e871854fbaa059a50f7512e"})

14:29:07 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  538.586845] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
14:29:07 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x70, 0xd5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0)='TIPCv2\x00')
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x18, r1, 0x1707, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}}, 0x0)

14:29:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:07 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  538.760584] audit: type=1800 audit(1586615347.878:7236): pid=18900 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.2" name="cgroup.controllers" dev="sda1" ino=16099 res=0
14:29:07 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(des3_ede)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendto$unix(r1, &(0x7f0000000140)="24c8385939070000008bad2beba5005cf47d12e27903d3f8168b9f62f35cc5f4ec", 0xd635455c3de76378, 0xffffffffffffffee, 0x0, 0xfffffffffffffec0)
recvfrom(r1, &(0x7f0000001240)=""/4096, 0xb71b829b6f5560a, 0x0, 0x0, 0xfffffffffffffff1)

14:29:07 executing program 1:

[  538.887728] Bluetooth: Invalid esc byte 0x00
14:29:08 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:08 executing program 0:

14:29:08 executing program 1:

[  539.016716] Bluetooth: Invalid esc byte 0x00
14:29:08 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:08 executing program 2:

14:29:08 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:08 executing program 1:

14:29:08 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x20, 0x31, 0x119, 0x0, 0x0, {0x2}, [@typed={0x4}, @nested={0x8, 0x1, 0x0, 0x1, [@typed={0x4}]}]}, 0x20}}, 0x0)

14:29:08 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:08 executing program 2:

14:29:08 executing program 1:

[  539.323407] Bluetooth: Invalid esc byte 0x00
14:29:08 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  539.370474] Bluetooth: Invalid esc byte 0x00
14:29:08 executing program 2:

14:29:08 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:08 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:08 executing program 1:

14:29:08 executing program 2:

[  539.528527] Bluetooth: Invalid esc byte 0x00
14:29:08 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  539.561730] Bluetooth: Invalid esc byte 0x00
14:29:08 executing program 1:

14:29:09 executing program 0:

14:29:09 executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_ADD_MAP(r0, 0xc0286415, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil})

14:29:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:09 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:09 executing program 1:

14:29:09 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:09 executing program 1:

[  540.133666] Bluetooth: Invalid esc byte 0x00
14:29:09 executing program 0:

[  540.166374] Bluetooth: Invalid esc byte 0x00
14:29:09 executing program 2:

14:29:09 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB="6d616e676c6500000000000000000000000000000000000000000000000000006400000006000000a8050000d804000010010000c802000000000000c8020000d8040000d8040000d8040000d8040000d804000006000000000000000000000000000000000000000000000000000001ff010000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000073797a6b616c6c65723100000000000076657468305f746f5f627269646765000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d00010010000000000000000000000000000000000000000000000002800727066696c74657200000000000000000000000000000000000000000000000000000000000040004552524f5200000000000000000000000000000000000000000000000000d2f9e1ff8f24a22cc77c80bcfccd00d06f06a91c77cffd4fed5d712121a60000fe800000000000000000000000000000fe8000000000000000000000000000aa000000000000000000000000000000000000000000000000000000000000000076657468310000000000000000000000697036746e6c300000000000000000000000000000000000000000000000000000000000000000000000000000000000110000004200000000000000a800e80000000000000000000000000000000000000000000000000040005450524f58590000000000000000000000000000000000000000000000010000000000000000ff01000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800434845434b53554d0000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800f0000000000000000000000000000000000000000000000000004800534e50540000000000000000000000000000000000000000000000000000fe80000000000000000000000000000000000000000000000000ffffffffffff0000000000000000fe880000000000000000000000000001fe8000000000000000000000000000bb000000000000000000000000000000000000000000000000000000000000000074756e6c3000000025504a8e00000000697036677265300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f80020010000000000000000000000000000000000000000000000002800727066696c7465720000000000000000000000000000000000000000000000000000000000002800727066696c7465720000000000000000000000000000000000000000000000000000000000002800434845434b53554d0000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a800d0000000000000000000000000000000000000000000000000002800000000000000000000000000000000000000000000000000000000000000feffffff"], 0x1)

14:29:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:09 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r0, &(0x7f0000009cc0)=[{{0x0, 0x0, &(0x7f0000000500)}}, {{0x0, 0x0, &(0x7f0000009c00)}}], 0x2, 0x20, &(0x7f0000009ec0)={0x0, 0x989680})
pipe(&(0x7f0000000940)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3, 0x0, 0x0, 0x2}, 0x0)
r3 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x90)
write$UHID_INPUT(r3, &(0x7f0000000980), 0x10a9)
r4 = creat(&(0x7f0000000040)='./bus\x00', 0xa)
fcntl$setstatus(r4, 0x4, 0x46000)
r5 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
io_setup(0x1ff, &(0x7f00000004c0)=<r6=>0x0)
r7 = open(&(0x7f0000000140)='./bus\x00', 0x143042, 0x0)
ioctl$FS_IOC_RESVSP(r7, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x7ff, 0x8000001})
io_submit(r6, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r5, &(0x7f0000000000), 0x10000}])
r8 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
sendfile(r4, r8, 0x0, 0x8400fffffffb)
sendfile(r3, r3, &(0x7f0000000180), 0x8080fffffffe)

14:29:09 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:09 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:09 executing program 2:
r0 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
readv(r0, &(0x7f0000000080)=[{&(0x7f00000038c0)=""/180, 0xb4}], 0x1)

[  540.336360] xt_TPROXY: Can be used only with -p tcp or -p udp
14:29:09 executing program 1:
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
futex(&(0x7f000000cffc), 0x800000000006, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x800000000006, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001147042, 0x0)
ftruncate(r0, 0x2008000)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)

14:29:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:09 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:09 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  540.486810] kauditd_printk_skb: 1 callbacks suppressed
[  540.486822] audit: type=1800 audit(1586615349.608:7238): pid=19020 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=15841 res=0
14:29:09 executing program 2:

[  540.580705] audit: type=1804 audit(1586615349.658:7239): pid=19026 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir946654358/syzkaller.lCVT7n/241/bus" dev="sda1" ino=16449 res=1
14:29:09 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:09 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:09 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:10 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:10 executing program 2:

14:29:10 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:10 executing program 0:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_buf(r0, 0x0, 0x30, &(0x7f00000000c0)=""/192, &(0x7f0000000400)=0xfffffffffffffdfb)

14:29:10 executing program 1:
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
clock_getres(0x8, &(0x7f00000000c0))

14:29:10 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:10 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000000)=@polexpire={0xcc, 0x1b, 0x705, 0x0, 0x0, {{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}}, [@policy_type={0xa, 0x10, {0x2}}]}, 0xcc}}, 0x0)

14:29:10 executing program 0:
pipe(&(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000000401"], 0x1}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
splice(r0, 0x0, r2, 0x0, 0x4ffe0, 0x0)

14:29:10 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:10 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:10 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00')
preadv(r0, &(0x7f00000003c0)=[{&(0x7f00000000c0)=""/165, 0xa5}], 0x1, 0x0)
ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "cc76cd00000100"})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000340))
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x23, &(0x7f0000000240)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000200000002000000004000007a40000080000000000000006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4810, 0x0)

[  541.752011] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  541.780354] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
14:29:10 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:10 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  541.822795] EXT4-fs (loop2): filesystem is read-only
14:29:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  541.871355] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  541.928330] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  541.952650] Bluetooth: Invalid esc byte 0x00
[  541.956161] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps superblock
14:29:11 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  541.979325] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (24389!=0)
[  542.011629] EXT4-fs error (device loop2): ext4_fill_super:4435: inode #2: comm syz-executor.2: iget: bogus i_mode (30060)
14:29:11 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:11 executing program 1:
sched_setattr(0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000400)=[{{&(0x7f00000000c0)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000140)=""/89, 0x59}, {&(0x7f00000002c0)=""/144, 0x90}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000000240)=""/15, 0xf}, {0x0}], 0x5, &(0x7f0000002500)=""/234, 0xea}}], 0x1, 0x0, 0x0)
fcntl$setpipe(r0, 0x407, 0x0)
pipe(&(0x7f00000004c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
r4 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r4, &(0x7f0000007900), 0x4000099, 0x101d0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x8c)

[  542.032921] EXT4-fs (loop2): get root inode failed
[  542.046691] EXT4-fs (loop2): mount failed
14:29:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:11 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  542.123090] EXT4-fs (loop2): unsupported inode size: 12336
[  542.145897] EXT4-fs (loop2): blocksize: 4096
[  542.181110] Bluetooth: Invalid esc byte 0x00
14:29:11 executing program 0:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f0000000380)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000000)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001)
fchdir(r0)
syz_genetlink_get_family_id$ipvs(0x0)
sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x4, &(0x7f0000000600)={r0, &(0x7f0000000080), &(0x7f00000003c0)=""/149}, 0x20)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000100)={&(0x7f0000000040)='./file0\x00'}, 0x10)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x2}, 0x0, 0x3, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000740)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = getpid()
sched_setattr(r1, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x7}, 0x0)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r1, 0x10, &(0x7f0000000140)={0x699})
r2 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0)
pwritev(r2, &(0x7f0000001380)=[{&(0x7f0000003040)="02", 0xffff0000}], 0x1, 0xffff)
r3 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(r3, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000001900)={0x0, 0x0, 0x0, 0x401})

14:29:11 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:11 executing program 2:
getpid()
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write(r0, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
socket(0x1e, 0x2, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x100}, 0x10)

14:29:11 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  542.615132] Bluetooth: Invalid esc byte 0x00
14:29:11 executing program 2:
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000540)=ANY=[@ANYBLOB="e0000001ac"], 0x1)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000540)=""/197, &(0x7f0000000400)=0xffc4)

14:29:11 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:11 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  542.840560] Bluetooth: Invalid esc byte 0x00
14:29:12 executing program 1:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
r2 = gettid()
rt_sigqueueinfo(r2, 0x11, &(0x7f0000000140)={0x0, 0x0, 0x6})

14:29:12 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:12 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="940000001700010100000000000000000100000080001880021f932d8c7e195063bafc465b0eb1d58ef34ed9527bcf437004ed64e08b7146f0404220148800c0fec6935f238cb46f9d04dced6d87333b5f29a86662550c8765076a354f71ab33bdd8ae96f8c50d119870a331bcb314a590b163ce18002ffd7fbee85f61543e92c69e94d412201f3c50e5e1aa9638afb595d2763b"], 0x94}}, 0x0)

14:29:12 executing program 0:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000000)=@polexpire={0xcc, 0x1b, 0x705, 0x0, 0x0, {{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {}, {}, 0x0, 0x0, 0x3}}, [@policy_type={0xa}]}, 0xcc}}, 0x0)

14:29:12 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:12 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:12 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:12 executing program 0:
sched_setattr(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
pipe(&(0x7f00000004c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x101, 0x514, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r2 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x100}, 0x10)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r3, &(0x7f0000007900), 0x4000099, 0x101d0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x8c)

[  543.227155] Bluetooth: Invalid esc byte 0x00
14:29:12 executing program 2:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4000000000000000, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x22, 0x0, 0x3}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x1110c5, 0x11)
r1 = open$dir(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
write$9p(r0, &(0x7f0000001400)="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", 0x300)
sendfile(r0, r1, 0x0, 0x1c5bc)

14:29:12 executing program 1:
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x800000000006, 0x0, 0x0, 0x0, 0x0)

14:29:12 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:12 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
tkill(0x0, 0xb)
ptrace(0x4206, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:12 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  543.418986] audit: type=1804 audit(1586615352.539:7240): pid=19203 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir266122625/syzkaller.VWrHBR/193/file0" dev="sda1" ino=16660 res=1
14:29:12 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
tkill(0x0, 0xb)
ptrace(0x4206, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  543.505985] Bluetooth: Invalid esc byte 0x00
14:29:12 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:12 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:12 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
tkill(0x0, 0xb)
ptrace(0x4206, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  543.765324] Bluetooth: Invalid esc byte 0x00
14:29:12 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:13 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  544.209069] audit: type=1804 audit(1586615353.329:7241): pid=19246 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir266122625/syzkaller.VWrHBR/193/file0" dev="sda1" ino=16660 res=1
14:29:13 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
getpid()
recvmmsg(0xffffffffffffffff, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0)
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f00000000c0)={@loopback, r2}, 0x14)
r3 = inotify_init()
inotify_add_watch(r3, &(0x7f0000000300)='.\x00', 0xfe)
r4 = open(&(0x7f0000000040)='./file0\x00', 0x200c2, 0x0)
write$nbd(r4, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x1)
sendfile(r4, r4, &(0x7f0000000200), 0xa198)

14:29:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:13 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:13 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:13 executing program 1:
r0 = getpid()
sched_setattr(r0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x101, 0x514}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
r2 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r2, &(0x7f0000007900), 0x4000099, 0x0)

14:29:13 executing program 2:
futex(&(0x7f000000cffc)=0x40000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001147042, 0x0)
ftruncate(r0, 0x2008000)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
clock_gettime(0x0, &(0x7f0000000040)={0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, r2+10000000}, {0x0, 0x9}}, 0x0)
r3 = gettid()
tkill(r3, 0x1004000000016)

14:29:13 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  544.390713] Bluetooth: Invalid esc byte 0x00
14:29:13 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  544.461193] audit: type=1800 audit(1586615353.579:7242): pid=19265 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=16369 res=0
14:29:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:13 executing program 4:
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:13 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:14 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
fcntl$setpipe(r1, 0x407, 0x0)
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3, 0x7}, 0x0)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x100}, 0x10)
r4 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r4, &(0x7f0000007900), 0x4000099, 0x101d0)

14:29:14 executing program 4:
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:14 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:14 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:14 executing program 1:
open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', &(0x7f0000000200), 0x0)

14:29:14 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
r1 = socket(0x400000000000010, 0x3, 0x0)
write(r1, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f196be0", 0x24)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = socket$unix(0x1, 0x1, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r5, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0)

14:29:14 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:14 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:15 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00')
preadv(r0, &(0x7f00000003c0)=[{&(0x7f00000000c0)=""/165, 0xa5}], 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x23, &(0x7f0000000240)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000200000002000000004000007a40000080000000000000006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4810, 0x0)

14:29:15 executing program 4:
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:15 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000000400)=[{{&(0x7f00000000c0)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000140)=""/89, 0x59}, {&(0x7f00000002c0)=""/144, 0x90}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000000240)=""/15, 0xf}, {0x0}], 0x5, &(0x7f0000002500)=""/234, 0xea}}], 0x1, 0x0, 0x0)
fcntl$setpipe(r1, 0x407, 0x0)
pipe(&(0x7f00000004c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3, 0x7}, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x101, 0x514, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r4 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x100}, 0x10)
r5 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r5, &(0x7f0000007900), 0x4000099, 0x101d0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x8c)

14:29:15 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:15 executing program 1:
sched_setattr(0x0, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
pipe(&(0x7f00000004c0)={<r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f0000000000), 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x100}, 0x10)
r2 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r2, &(0x7f0000007900), 0x4000099, 0x101d0)
mkdir(0x0, 0x8c)

14:29:15 executing program 4:
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:15 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:15 executing program 3:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:15 executing program 1:
keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000080)=""/68, 0x1)

14:29:15 executing program 3:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:15 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:15 executing program 4:
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:15 executing program 1:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000100)=@polexpire={0xd8, 0x1b, 0x705, 0x0, 0x0, {{{@in6=@dev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}}}, [@mark={0xc}, @policy_type={0xa, 0x10, {0x1}}]}, 0xd8}}, 0x0)

14:29:15 executing program 2:
syz_mount_image$f2fs(&(0x7f0000000140)='f2fs\x00', &(0x7f0000000340)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000040)="1020f5f29008070009000000030000000c00000009000000010000000200000000000000000a0000000000000e00000016", 0x31, 0x1400}], 0x0, 0x0)

[  546.674004] f2fs_msg: 6 callbacks suppressed
[  546.674025] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  546.701698] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  546.710108] F2FS-fs (loop2): Wrong segment_count / block_count (22 > 2560)
[  546.725614] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  546.738398] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  546.749143] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  546.761062] F2FS-fs (loop2): Wrong segment_count / block_count (22 > 2560)
[  546.768764] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
14:29:15 executing program 0:
pipe(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r1, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2}, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f00000002c0))
r2 = inotify_init()
inotify_add_watch(r2, &(0x7f0000000300)='.\x00', 0xfe)
r3 = open(&(0x7f0000000040)='./file0\x00', 0x200c2, 0x0)
write$nbd(r3, &(0x7f0000000340)=ANY=[@ANYBLOB], 0x1)
sendfile(r3, r3, &(0x7f0000000200), 0xa198)

14:29:15 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup2(r0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
clone(0x20002004ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
exit_group(0x0)
clock_getres(0x8, 0x0)

14:29:15 executing program 3:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:15 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:15 executing program 4:
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  546.834158] F2FS-fs (loop2): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  546.848793] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
14:29:16 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000340)={{{@in=@empty, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}, {}, {}, 0x0, 0x0, 0x0, 0x2}, {{@in6=@rand_addr="c3fb7ac357dfd6105166c07072fe812e"}, 0x0, @in=@loopback}}, 0xe8)

14:29:16 executing program 1:
syz_mount_image$vfat(&(0x7f0000000080)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffff57a, 0x1, &(0x7f0000000140)=[{&(0x7f0000000040)="eb3c906d6b66732e66617400020401ed01000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6})

14:29:16 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:16 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:16 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:16 executing program 2:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="28010000170001000000000000000000e0000001000000000000000000000000000000000000000000000000000000000000ffffac1414007f0000010000000000000000000000007f00000100"/104, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="e0000002000000000000000000000018e000000100000002000000000000000000000000000000000200009217fea440", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003000000000000000000000000000000000000000000000059e3edd83708c5d3ccecdbcc69b87a0033986f7207b769926ab2e1b4d4d104d34762a3285dcb114414753b7d0bd6cc642c6f6666c4e2b25ed7f067deaab44ac4a2e69852be908761421444c4b4c20ca06792bf52c6595266a2d7566e7b2480ca49fc9ca23436f235d9d70f2f763b610f628ad7d4b4e93536a376f4f3512707d90a1dd4a049e97ad156bd9c3e46808e837c58323901fc79d9e0c20309fce10f10693a231107d3f1097ccca0713aea88925f390f6ae289aaa178774189969a3a6745"], 0x128}}, 0x0)

14:29:16 executing program 1:
getpid()
socket$inet6(0xa, 0x0, 0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
pipe(&(0x7f00000004c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setattr(0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x514, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
r1 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x100}, 0x10)
r2 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r2, &(0x7f0000007900), 0x4000099, 0x101d0)
mkdir(0x0, 0x8c)

14:29:16 executing program 0:
futex(&(0x7f000000cffc)=0x40000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x8001147042, 0x0)
ftruncate(r0, 0x2008000)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
timer_create(0x0, &(0x7f0000044000)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000044000))
clock_gettime(0x0, &(0x7f0000000040)={0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, r2+10000000}, {0x0, 0x9}}, 0x0)
r3 = gettid()
tkill(r3, 0x1004000000016)
getpid()
sched_setattr(0x0, 0x0, 0x0)

14:29:16 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:16 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:16 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00')
preadv(r0, &(0x7f00000003c0)=[{&(0x7f00000000c0)=""/165, 0xa5}], 0x1, 0x0)
ioctl$TCSETSF(0xffffffffffffffff, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "cc76cd00000100"})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000340))
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000140)='NLBL_CALIPSO\x00')
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x23, &(0x7f0000000240)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c000000000000000200000002000000004000007a40000080000000000000006d5ebe5a0000ffff53ef", 0x4db, 0x400}], 0x4810, 0x0)

14:29:16 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:16 executing program 1:
r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ion\x00', 0x0, 0x0)
ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f00000001c0)={0xa927, 0x2d, 0x0, <r1=>0xffffffffffffffff})
lseek(r1, 0x0, 0x4)

14:29:17 executing program 5:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

[  547.918762] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
14:29:17 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:17 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  547.976753] EXT4-fs (loop2): filesystem is read-only
14:29:17 executing program 1:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
r1 = socket(0x400000000000010, 0x3, 0x0)
write(r1, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f196be0", 0x24)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000340)={{{@in=@empty, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x4}, {{@in=@loopback}, 0x0, @in=@loopback}}, 0xe8)

[  548.005278] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  548.026128] audit: type=1800 audit(1586615357.139:7243): pid=19444 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=16691 res=0
[  548.037917] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
14:29:17 executing program 5:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

14:29:17 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  548.136138] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps superblock
[  548.198827] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (24389!=0)
[  548.271550] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  548.792417] audit: type=1800 audit(1586615357.899:7244): pid=19448 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=16691 res=0
14:29:18 executing program 0:
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
ftruncate(r0, 0x8200)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
sendfile(r1, r1, 0x0, 0x8080fffffffe)
r2 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
sendfile(r2, r2, 0x0, 0x8080fffffffe)
r3 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
sendfile(r3, r3, 0x0, 0x8080fffffffe)
ftruncate(r0, 0x1200)

14:29:18 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(0x0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:18 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280), 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
socket$inet6(0xa, 0x2, 0x0)
pipe(&(0x7f00000004c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$setpipe(r2, 0x407, 0x0)
write(r2, &(0x7f0000000340), 0x41395527)
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0x0, 0x3, 0x7}, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x101, 0x514, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r3 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x100}, 0x10)
r4 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r4, &(0x7f0000007900), 0x4000099, 0x0)

14:29:18 executing program 5:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

14:29:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:18 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
r1 = socket(0x400000000000010, 0x3, 0x0)
write(r1, &(0x7f00000000c0)="24000000200099f0003be90000ed190e020008160000100000ba1080080002007f196be0", 0x24)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000340)={{{@in=@empty, @in=@initdev={0xac, 0x1e, 0x0, 0x0}}}, {{@in6=@rand_addr="c3fb7ac357dfd6105166c07072fe812e"}, 0x0, @in=@loopback}}, 0x20000428)

14:29:18 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r1, &(0x7f0000000400)=[{{&(0x7f00000000c0)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000140)=""/89, 0x59}, {&(0x7f00000002c0)=""/144, 0x90}, {&(0x7f0000000500)=""/4096, 0x1000}, {0x0}], 0x4, &(0x7f0000002500)=""/234, 0xea}}], 0x1, 0x0, 0x0)
fcntl$setpipe(r1, 0x407, 0x0)
pipe(&(0x7f00000004c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
fcntl$setpipe(r3, 0x407, 0x0)
write(r3, &(0x7f0000000340), 0x41395527)
vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3, 0x7}, 0x0)
perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x101, 0x514, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
r4 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x100}, 0x10)
r5 = socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc}, 0x10)
sendmmsg(r5, &(0x7f0000007900), 0x4000099, 0x101d0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x8c)

14:29:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:19 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(0x0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:19 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(0x0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:19 executing program 0:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
close(r1)
socket$nl_route(0x10, 0x3, 0x0)
writev(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000180)="290000002100190000003fffffffda260200000000e80001040000040d0014", 0x1f}], 0x1)
splice(r0, 0x0, r1, 0x0, 0x100000000, 0x0)

14:29:19 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0x0)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:19 executing program 1:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup/syz0\x00', 0x200002, 0x0)
fchdir(r0)
r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
write$cgroup_type(r1, &(0x7f0000000080)='threaded\x00', 0xfffffe58)
fallocate(r1, 0x3, 0x10001, 0x8003)
fallocate(r1, 0x10, 0x0, 0xfff9)
close(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/zoneinfo\x00', 0x0, 0x0)

14:29:19 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:19 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0x0)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  550.796516] selinux_nlmsg_perm: 121 callbacks suppressed
[  550.796530] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
[  550.901314] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
14:29:20 executing program 2:
syz_emit_ethernet(0x4e, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaae455aaaaaaaaaaaabb86dd6099bc21001800000000000000000000000000000000002f00000000000000000000ffffffffffff1f0100000000000005020000040100010100000000000000"], 0x0)

14:29:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:20 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0x0)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  550.951577] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
[  550.969206] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
[  551.031910] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
14:29:20 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0xffffffffffffffff, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:20 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x4c, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x0)

[  551.073369] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
[  551.154333] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
[  551.207918] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
[  551.223545] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
[  551.237734] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pig=19530 comm=syz-executor.0
14:29:20 executing program 0:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000140)='bridge0\x00', 0xf6)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendmmsg(r1, &(0x7f0000007fc0), 0x400000000000030, 0x0)

14:29:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  551.358527] x_tables: duplicate underflow at hook 2
[  551.367030] x_tables: duplicate underflow at hook 2
14:29:20 executing program 1:

14:29:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:20 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0xffffffffffffffff, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:20 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup/syz0\x00', 0x200002, 0x0)
fchdir(r0)
r1 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
write$cgroup_type(r1, &(0x7f0000000080)='threaded\x00', 0xfffffe58)
fallocate(r1, 0x3, 0x10001, 0x8003)
fallocate(r1, 0x10, 0x0, 0xfff9)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)

14:29:20 executing program 0:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x4c, 0x2, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x0)

14:29:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:20 executing program 1:

14:29:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:20 executing program 0:

14:29:20 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0xffffffffffffffff, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:21 executing program 0:

14:29:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:21 executing program 1:

14:29:21 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:21 executing program 1:

14:29:21 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:21 executing program 0:

14:29:21 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:21 executing program 2:

14:29:21 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:21 executing program 0:

14:29:21 executing program 1:

14:29:21 executing program 2:

14:29:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:21 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:21 executing program 1:

14:29:21 executing program 0:

14:29:21 executing program 2:

14:29:21 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:21 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:21 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:21 executing program 0:

14:29:21 executing program 1:

14:29:21 executing program 2:

14:29:22 executing program 0:

14:29:22 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:22 executing program 2:

14:29:22 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:22 executing program 1:

14:29:22 executing program 0:

14:29:22 executing program 2:

14:29:22 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:22 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:22 executing program 1:

14:29:22 executing program 0:

14:29:22 executing program 2:
creat(0x0, 0x1a4)
r0 = perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x80}}, 0x0, 0xfbffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e24, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x39}}}, 0x1c)
sendmmsg(r1, &(0x7f00000092c0), 0x800010b, 0x18)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0xa, 0x0, 0x0)
ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0xc028ae92, &(0x7f0000000000)={0x0, 0x4})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x1000)=nil, 0x0)
pipe(&(0x7f0000000040))
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x687a, 0xa)
perf_event_open(&(0x7f0000000300)={0x2, 0x70, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x6fe1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_DISABLE(r0, 0x2401, 0x0)

14:29:22 executing program 1:
r0 = creat(&(0x7f0000000240)='./bus\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x402c5828, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x41275301, 0x0, 0x8000000, [0x0, 0x0, 0x20800]})
r1 = open(&(0x7f0000002000)='./bus\x00', 0x0, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000000)={0x30}, 0x30)
lseek(r1, 0x0, 0x4)

[  553.244056] Bluetooth: hci0: Frame reassembly failed (-84)
[  553.247292] Bluetooth: hci0: Frame reassembly failed (-84)
[  553.281487] Bluetooth: hci0: Frame reassembly failed (-84)
14:29:22 executing program 0:
creat(&(0x7f0000000180)='./file0\x00', 0x0)
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/fuse\x00', 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000640)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000120000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuse(0x0, &(0x7f0000000640)='./file0\x00', &(0x7f0000000080)='fuse\x00', 0x0, &(0x7f0000000200)=ANY=[])

14:29:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:22 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  553.410580] audit: type=1804 audit(1586615362.520:7245): pid=19703 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir088111672/syzkaller.GPhLgI/298/bus" dev="sda1" ino=16731 res=1
14:29:22 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x8, 0x3, 0x234, 0x0, 0x0, 0x0, 0xa0, 0x0, 0x1a0, 0x194, 0x194, 0x1a0, 0x194, 0x3, 0x0, {[{{@ip={@broadcast, @local, 0x0, 0x0, 'ip6erspan0\x00', 'veth0_virt_wifi\x00'}, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30, 'CONNMARK\x00'}}, {{@ip={@rand_addr, @dev, 0x0, 0x0, '\x00', 'bridge_slave_0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@ttl={{0x24, 'ttl\x00'}}, @common=@ttl={{0x24, 'ttl\x00'}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}], {{[], 0x0, 0x70, 0x94}, {0x24}}}}, 0x290)

14:29:22 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  553.559034] audit: type=1804 audit(1586615362.570:7246): pid=19707 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir088111672/syzkaller.GPhLgI/298/bus" dev="sda1" ino=16731 res=1
[  553.971213] NOHZ: local_softirq_pending 08
[  555.322163] Bluetooth: hci0: command 0x1003 tx timeout
[  555.328457] Bluetooth: hci0: sending frame failed (-49)
[  557.402000] Bluetooth: hci0: command 0x1001 tx timeout
[  557.407585] Bluetooth: hci0: sending frame failed (-49)
[  559.481747] Bluetooth: hci0: command 0x1009 tx timeout
14:29:32 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:32 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:32 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = memfd_create(&(0x7f0000000340), 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
getpgid(0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
splice(0xffffffffffffffff, 0x0, r1, 0x0, 0x0, 0x0)
ftruncate(r0, 0x800799c)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xa601, 0x2012, r0, 0x0)
geteuid()
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2)
syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x2, 0x40001)
ioctl$SG_GET_RESERVED_SIZE(r2, 0x2272, &(0x7f0000000040))
syz_open_dev$vcsa(0x0, 0x0, 0x40)
ioctl$TIOCSERGETLSR(r2, 0x5459, 0x0)

14:29:32 executing program 0:
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0)
open(0x0, 0x0, 0x0)
remap_file_pages(&(0x7f00003c6000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0)
mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00007, 0x4, 0x0, 0x0, 0x0)

14:29:32 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:32 executing program 2:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x2)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000100)={0x0, 0x0, 0x0, 'queue1\x00'})
rt_sigaction(0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)="3e47d9f8c4e3ed691d1d075ca66536670fdc85000000202ea8018f28088e8e0000008000c4210dee719a42dbe4262667427600f2490f2a34b8c4e205baabae330000", 0x0, 0x0}, 0x0, 0x0)
write$sndseq(r0, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"a357b6b140cbb6215dd33459"}}], 0xfffffee4)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000000)={0x122})

14:29:32 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000780)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="240000001f000000000000000004000000000000d30319d4cdf38d93c39b9fffa0a82ae1fc9ae70c7d85dfb695b09add05a4e6dc7e6013f0b4df1b5870a9d3ff7429fdefe21ae588eb2a1bfcc1ce59c36f0b720bedf571a9dfea8583e4744c042d4564db9cb7a5fea379edf6fa78a44c8f19391806127ae497cbf24e7a701844f4c4fa86ad494a425e291a173458d3f7e02da5c31e93ad9f6f570d7e8e9ffb9986c7f84790643514fee8d84e17d7a1468a7e01a48338c05955bf81d679ca62f06b9791a66da655578efcfee9394f72b8199d9290f7f8027080cba148f9746bb7d58243381bf8efe7e83cc3d838fb"], 0x24}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000ab9ff0)={0x2, &(0x7f000039a000)=[{0x20}, {0x6}]}, 0x10)
sendmmsg(r0, &(0x7f0000000040), 0x324fad809d5a9cf, 0x0)

14:29:32 executing program 2:
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12}, &(0x7f00000000c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
r1 = gettid()
recvmmsg(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
write$P9_RRENAMEAT(0xffffffffffffffff, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
tkill(r1, 0x1004000000013)

14:29:32 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:32 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  563.780022] Bluetooth: hci0: Frame reassembly failed (-84)
[  563.798088] Bluetooth: hci0: Frame reassembly failed (-84)
[  563.819661] Bluetooth: hci0: Frame reassembly failed (-84)
[  563.874481] Bluetooth: hci1: Frame reassembly failed (-84)
[  563.887557] Bluetooth: hci1: Frame reassembly failed (-84)
[  563.925367] Bluetooth: hci1: Frame reassembly failed (-84)
[  563.958654] Bluetooth: hci1: Frame reassembly failed (-84)
14:29:33 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:33 executing program 0:
syz_open_procfs(0x0, &(0x7f0000000100)='fdinfo/3\x00')
setsockopt$inet6_MCAST_LEAVE_GROUP(0xffffffffffffffff, 0x29, 0x2d, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x19)
fallocate(r0, 0x0, 0x0, 0x1000100)
lseek(r0, 0x0, 0x3)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x14103e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r1, 0x0)
r2 = creat(&(0x7f0000000100)='./file0\x00', 0x0)
fallocate(r2, 0x0, 0x0, 0x84003ff)
ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000000)={0x16, 0x1, 0x200})
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0xe75b, 0x0, 0x1b, "00410000ec8ae7bc6c4bb1af00"})
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)

[  565.801153] Bluetooth: hci0: command 0x1003 tx timeout
[  565.807585] Bluetooth: hci0: sending frame failed (-49)
[  565.961389] Bluetooth: hci1: command 0x1003 tx timeout
[  565.966815] Bluetooth: hci1: sending frame failed (-49)
[  567.880919] Bluetooth: hci0: command 0x1001 tx timeout
[  567.886341] Bluetooth: hci0: sending frame failed (-49)
[  568.040957] Bluetooth: hci1: command 0x1001 tx timeout
[  568.046374] Bluetooth: hci1: sending frame failed (-49)
[  569.960673] Bluetooth: hci0: command 0x1009 tx timeout
[  570.120699] Bluetooth: hci1: command 0x1009 tx timeout
[  573.161562] NOHZ: local_softirq_pending 08
14:29:42 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:42 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:29:42 executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
getpid()
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9, 0x0, 0x7}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
pipe(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(r1, &(0x7f0000000340), 0x41395527)
openat(0xffffffffffffffff, &(0x7f0000000100)='./file0/file0\x00', 0x101802, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x1, 0x0, 0x1}, 0x0)
r2 = gettid()
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x1)
write$binfmt_script(r3, &(0x7f00000002c0)=ANY=[@ANYBLOB="230228efb4a24fe8892bc04b26c0d8d21d5d6fe0eb92552fba478405a907000000db0400905d14e28d090000000000d1ede6d50a7b9c352ef858000143c2adcf359a30a74dc68c37cfbef5c16f3e648860fa0200000000000000002a74e3e6017fe7121882c601f2b49e326c87fdc4c7234ce9fe065d74f23c995de235d54eff81c92986a1aba827995c4ea9172e23931c9f9abb4a2956cfba8227afd19e0a738f003e80efbe0b10d442ddd93cbf7bc22e152bc74e1436c9cbafacbe4b03ba4b656f902907200000004aa86c8dc50de431490d108579af5e9ccd3c36c416e6ba34d31a05faff923b"], 0xe8)
prctl$PR_SET_PTRACER(0x59616d61, r2)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x802, 0x4}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xefffffffffffffff, 0xffffffffffffffff, 0x0)
close(r3)
clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
ptrace$setopts(0x4206, r2, 0x0, 0x0)

14:29:42 executing program 1:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x0)
r1 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10811, r1, 0x0)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f0000000000))

14:29:42 executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r0 = getpid()
socketpair$unix(0x1, 0x400000000003, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x492492492492565, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x7, &(0x7f00005feffc), 0x6)
r2 = dup3(0xffffffffffffffff, r1, 0x0)
write$P9_RLCREATE(r2, &(0x7f0000000300)={0x1c, 0xf, 0x2, {{0x20, 0x0, 0x2}, 0x3}}, 0x18)
sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r3, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0)
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
fcntl$setpipe(r5, 0x407, 0x0)
write(r5, &(0x7f0000000340), 0x41395527)
vmsplice(r4, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f00000001c0)={0x38, 0x1, 0x0, 0x0, 0x3}, 0x0)
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
r6 = open(&(0x7f0000000240)='./file0\x00', 0x0, 0x0)
syz_open_procfs(0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x6a, 0x1, 0x0, 0x0, 0x0, 0x9, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x5}, 0x0, 0x0, 0x20203, 0x0, 0x0, 0x0, 0xfff7}, 0x0, 0x0, 0xffffffffffffffff, 0x3)
shutdown(0xffffffffffffffff, 0x1)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0)
pread64(r7, 0x0, 0x7700, 0x7a00000000000000)
ioctl$sock_inet_tcp_SIOCATMARK(r7, 0x8905, &(0x7f0000000400))
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000180)='./cgroup/syz1\x00', 0x200002, 0x0)
fchdir(r6)
r8 = creat(&(0x7f0000000680)='./bus\x00', 0x0)
ftruncate(r8, 0x800)
lseek(r8, 0x0, 0x2)
r9 = open(&(0x7f0000001840)='./bus\x00', 0x400, 0x0)
sendfile(r8, r9, 0x0, 0x8400fffffffa)
creat(&(0x7f0000000100)='./bus\x00', 0x108)

14:29:43 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x0, &(0x7f0000000000))

[  574.015181] Bluetooth: hci0: Frame reassembly failed (-84)
[  574.061872] Bluetooth: hci0: Frame reassembly failed (-84)
[  574.069239] Bluetooth: hci0: Frame reassembly failed (-84)
[  574.080907] audit: type=1804 audit(1586615383.192:7247): pid=19834 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir946654358/syzkaller.lCVT7n/269/bus" dev="sda1" ino=15837 res=1
[  574.187839] Bluetooth: hci0: Frame reassembly failed (-84)
14:29:43 executing program 1:
syz_mount_image$vfat(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0, 0x281008, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x13, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00')
sendfile(0xffffffffffffffff, r1, 0x0, 0x0)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x100000000)
ioctl$TCGETS2(r2, 0x802c542a, &(0x7f0000000440))
r3 = creat(&(0x7f0000000300)='./bus\x00', 0x48)
write$binfmt_elf64(r3, &(0x7f0000000000)=ANY=[], 0xffdbc4c3)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x6}, 0x0)
accept(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
r5 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r5, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000140)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$setpipe(r7, 0x407, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
write(r7, &(0x7f0000000340), 0x41395527)
vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x69, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540)='nl80211\x00')
clone(0xd48d24434713bd52, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[  574.283725] ptrace attach of "/root/syz-executor.2"[19837] was attempted by "/root/syz-executor.2"[19839]
[  574.290322] audit: type=1804 audit(1586615383.272:7248): pid=19840 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir946654358/syzkaller.lCVT7n/269/bus" dev="sda1" ino=15837 res=1
14:29:43 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:43 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x0, &(0x7f0000000000))

[  574.799518] Bluetooth: hci1: Frame reassembly failed (-84)
[  574.811172] Bluetooth: hci1: Frame reassembly failed (-84)
[  575.090701] IPVS: ftp: loaded support on port[0] = 21
14:29:44 executing program 2:
syz_emit_ethernet(0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaa6896aa7289b75c472509000100000000000000000080004a0100000000000204000000fe8000000000000000000000000000aa"], 0x0)
syz_emit_ethernet(0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="efffffe5ffa8e2ef76c1011b8ecd60a4f00808063a"], 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0xffff, 0x1022, &(0x7f00000012c0), &(0x7f0000001300)=0xc)
syz_emit_ethernet(0x400e, &(0x7f0000000000), 0x0)

[  575.247627] Bluetooth: hci1: Frame reassembly failed (-84)
[  575.257052] Bluetooth: hci1: Frame reassembly failed (-84)
14:29:44 executing program 1:
syz_mount_image$vfat(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0, 0x281008, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x13, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00')
sendfile(0xffffffffffffffff, r1, 0x0, 0x0)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x100000000)
ioctl$TCGETS2(r2, 0x802c542a, &(0x7f0000000440))
r3 = creat(&(0x7f0000000300)='./bus\x00', 0x48)
write$binfmt_elf64(r3, &(0x7f0000000000)=ANY=[], 0xffdbc4c3)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x6}, 0x0)
accept(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
r5 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r5, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000140)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$setpipe(r7, 0x407, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
write(r7, &(0x7f0000000340), 0x41395527)
vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x69, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540)='nl80211\x00')
clone(0xd48d24434713bd52, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

14:29:44 executing program 0:
syz_mount_image$vfat(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0, 0x281008, 0x0)
r0 = socket$inet6(0xa, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x13, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000440)='pagemap\x00')
sendfile(0xffffffffffffffff, r1, 0x0, 0x0)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x100000000)
ioctl$TCGETS2(r2, 0x802c542a, &(0x7f0000000440))
r3 = creat(&(0x7f0000000300)='./bus\x00', 0x48)
write$binfmt_elf64(r3, &(0x7f0000000000)=ANY=[], 0xffdbc4c3)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
r4 = getpid()
sched_setattr(r4, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x6}, 0x0)
accept(0xffffffffffffffff, 0x0, &(0x7f00000001c0))
r5 = socket$inet6(0xa, 0x2, 0x0)
recvmmsg(r5, &(0x7f0000000100)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
pipe(&(0x7f0000000140)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$setpipe(r7, 0x407, 0x1)
socket$inet6_udp(0xa, 0x2, 0x0)
write(r7, &(0x7f0000000340), 0x41395527)
vmsplice(r6, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x1, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x69, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000540)='nl80211\x00')
clone(0xd48d24434713bd52, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)

[  575.826298] IPVS: ftp: loaded support on port[0] = 21
[  576.042171] Bluetooth: hci0: command 0x1003 tx timeout
[  576.049237] Bluetooth: hci0: sending frame failed (-49)
[  576.143632] IPVS: ftp: loaded support on port[0] = 21
[  576.840281] Bluetooth: hci1: command 0x1003 tx timeout
[  576.845774] Bluetooth: hci1: sending frame failed (-49)
[  578.119976] Bluetooth: hci0: command 0x1001 tx timeout
[  578.125500] Bluetooth: hci0: sending frame failed (-49)
[  578.920127] Bluetooth: hci1: command 0x1001 tx timeout
[  578.925535] Bluetooth: hci1: sending frame failed (-49)
[  580.199921] Bluetooth: hci0: command 0x1009 tx timeout
[  581.009860] Bluetooth: hci1: command 0x1009 tx timeout
14:29:53 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:53 executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x5, 0xc, 0x4000000000000800, 0x1}, 0x3c)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000000c0)={r0, 0x0}, 0x20)

14:29:53 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x0, &(0x7f0000000000))

14:29:53 executing program 0:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="3a258211f663a714b7b0f781659f8056d1d3abf9d1a54bfce1e77551a8bd678625bb3c7960cefa9eb25140847bc2fdffff01a1ffffff8756ea7d486588272169d8b90f442374ff77f45a92ec94fcff382b881176669c6e3203053a5005995f5ed199fcf8722be75fa42c080601d48e7081161161a2793d1429217b4da45e39b04a790514285b251aca195af3b2887cc79d0cedcc0b7e7f95c7d70472f7d3d81f50048f804ef3f1a7075b93b214fec1a03e4be5854fb9a60fce173d32cb63d6da8368a07f5a81681723b0263d1905cb35d9"], 0xd1)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x20060, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)
fchdir(0xffffffffffffffff)

14:29:53 executing program 1:
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x1, &(0x7f00000004c0)=[{&(0x7f0000000040)="800000003804000019000300e60100006c00fec9000000000100000001000000000700000040000080000000101308006d5ebe5a0000ffff53ef", 0x3a, 0x400}], 0x0, 0x0)

14:29:53 executing program 1:

14:29:53 executing program 2:

14:29:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:29:54 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, 0x0)

14:29:54 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:29:54 executing program 1:

14:29:54 executing program 2:

14:29:54 executing program 0:

14:29:54 executing program 1:

14:29:54 executing program 0:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000040)="900000001c001f4d154a817393278bff0a808f78020000006c36710014000100ac1414bb0542d6401051a2d708f37ac8da1a29760099c5ac0000c5b068d0bf47d3234565778d8757006113ffaf6c3efed495a46215be0000766426c0c80cef41d7891664969270b6507022d28581d158ba86c9d2896c342a033a0000000b001500de1df32c1739d7fbee9aa2417318e9", 0x90, 0x0, 0x0, 0x0)
r1 = accept4$unix(0xffffffffffffffff, &(0x7f00000001c0)=@abs, &(0x7f0000000000)=0x6e, 0x800)
signalfd(r1, &(0x7f0000000240)={[0xb83]}, 0x8)
dup(0xffffffffffffffff)

14:29:54 executing program 2:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x4)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="3a258211f663a714b7b0f781659f8056d1d3abf9d1a54bfce1e77551a8bd678625bb3c7960cefa9eb25140847bc2fdffff01a1ffffff8756ea7d486588272169d8b90f442374ff77f45a92ec94fcff382b881176669c6e3203053a5005995f5ed199fcf8722be75fa42c080601d48e7081161161a2793d1429217b4da45e39b04a790514285b251aca195af3b2887cc79d0cedcc0b7e7f95c7d70472f7d3d81f50048f804ef3f1a7075b93b214fec1a03e4be5854fb9a60fce173d32cb63d6da8368a07f5a81681723b0"], 0xca)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x20060, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)
r2 = open(0x0, 0x0, 0x0)
fchdir(r2)
r3 = syz_open_procfs(0x0, &(0x7f0000000140)='cmdline\x00')
syz_genetlink_get_family_id$tipc(0x0)
ioctl$FS_IOC_MEASURE_VERITY(r1, 0xc0046686, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, 0x0, 0x800)
lremovexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.metacopy\x00')
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

14:29:54 executing program 1:
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$binfmt_elf64(r0, &(0x7f00000000c0)=ANY=[], 0x10132)
recvmmsg(r1, &(0x7f0000001140)=[{{0x0, 0x0, 0x0}}], 0x700, 0x2, 0x0)

14:29:54 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, 0x0)

[  585.434569] Bluetooth: hci0: Frame reassembly failed (-84)
[  585.441711] Bluetooth: hci0: Frame reassembly failed (-84)
14:29:54 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  585.497763] Bluetooth: hci0: Frame reassembly failed (-84)
[  585.520810] Bluetooth: hci0: Frame reassembly failed (-84)
[  585.524132] netlink: 96 bytes leftover after parsing attributes in process `syz-executor.0'.
[  585.602324] netlink: 96 bytes leftover after parsing attributes in process `syz-executor.0'.
[  585.921413] FAT-fs (loop2): error, invalid access to FAT (entry 0x000064ff)
[  585.929377] FAT-fs (loop2): Filesystem has been set read-only
[  585.936802] FAT-fs (loop2): error, invalid access to FAT (entry 0x000064ff)
[  587.478966] Bluetooth: hci0: command 0x1003 tx timeout
[  587.484432] Bluetooth: hci0: sending frame failed (-49)
[  589.558769] Bluetooth: hci0: command 0x1001 tx timeout
[  589.564973] Bluetooth: hci0: sending frame failed (-49)
[  591.638790] Bluetooth: hci0: command 0x1009 tx timeout
[  592.999182] NOHZ: local_softirq_pending 08
[  593.639594] NOHZ: local_softirq_pending 08
14:30:04 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:04 executing program 4:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, 0x0)

14:30:04 executing program 1:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x4)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="3a258211f663a714b7b0f781659f8056d1d3abf9d1a54bfce1e77551a8bd678625bb3c7960cefa9eb25140847bc2fdffff01a1ffffff8756ea7d486588272169d8b90f442374ff77f45a92ec94fcff382b881176669c6e3203053a5005995f5ed199fcf8722be75fa42c080601d48e7081161161a2793d1429217b4da45e39b04a790514285b251aca195af3b2887cc79d0cedcc0b7e7f95c7d70472f7d3d81f50048f804ef3f1a7075b93b214fec1a03e4be5854fb9a60fce173d32cb63d6da8368a07f5a81681723b0263d1905cb35d98884ab3989a068"], 0xd8)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x20060, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)
open(0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000140)='cmdline\x00')
syz_genetlink_get_family_id$tipc(&(0x7f00000003c0)='TIPC\x00')
ioctl$FS_IOC_MEASURE_VERITY(r1, 0xc0046686, &(0x7f0000000680)=ANY=[@ANYBLOB="00002e0003efcc66accc7b4b3788d5986881a506ceca5ae2c51f8d898e879aae4d0cbd1ab3142c05dbb0c151e683ef7a03f7"])
sendmsg$TIPC_CMD_SET_NODE_ADDR(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x1}, 0x800)
lremovexattr(0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

14:30:04 executing program 0:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
mlockall(0x0)

14:30:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:04 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
r1 = dup2(r0, r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
syslog(0x2, &(0x7f0000000340)=""/238, 0xee)
openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x0, 0x0)

14:30:04 executing program 0:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x4)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="3a258211f663a714b7b0f781659f8056d1d3abf9d1a54bfce1e77551a8bd678625bb3c7960cefa9eb25140847bc2fdffff01a1ffffff8756ea7d486588272169d8b90f442374ff77f45a92ec94fcff382b881176669c6e3203053a5005995f5ed199fcf8722be75fa42c080601d48e7081161161a2793d1429217b4da45e39b04a790514285b251aca195af3b2887cc79d0cedcc0b7e7f95c7d70472f7d3d81f50048f804ef3f1a7075b93b214fec1a03e4be5854fb9a60fce173d32cb63d6da8368a07f5a81681723b0"], 0xca)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50a, 0x20060, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)
r2 = open(0x0, 0x0, 0x0)
fchdir(r2)
r3 = syz_open_procfs(0x0, &(0x7f0000000140)='cmdline\x00')
r4 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0)='TIPC\x00')
ioctl$FS_IOC_MEASURE_VERITY(r1, 0xc0046686, &(0x7f0000000680)=ANY=[@ANYBLOB="00002e0003efcc66accc7b4b3788d5986881a506ceca5ae2c51f8d898e879aae4d0cbd1ab3142c05dbb0c151e683ef7a03f7"])
sendmsg$TIPC_CMD_SET_NODE_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x24, r4, 0x200, 0x0, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0xa277}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x800)
lremovexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.metacopy\x00')
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

14:30:04 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:04 executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0xfffffffe}]})
mlock(&(0x7f0000ffc000/0x1000)=nil, 0x1000)

14:30:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  595.916457] audit: type=1326 audit(1586615405.034:7249): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20080 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45f6ca code=0xffff0000
14:30:05 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:05 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
prctl$PR_SET_THP_DISABLE(0x29, 0x1)

14:30:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:05 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0xfffffffc}]})
clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
semop(0x0, &(0x7f0000000080)=[{}], 0x1)

[  596.386225] audit: type=1326 audit(1586615405.504:7250): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20099 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45f6ca code=0xffff0000
14:30:05 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0xfffffffe}]})
r0 = epoll_create1(0x0)
epoll_wait(r0, &(0x7f0000000000)=[{}], 0x1, 0x0)

14:30:05 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  596.569083] audit: type=1326 audit(1586615405.694:7251): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20114 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45f6ca code=0xffff0000
14:30:05 executing program 0:
getdents(0xffffffffffffffff, 0x0, 0x0)
accept4$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x2, @perf_config_ext={0x0, 0x14e000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000280), 0x0, 0x0)
perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fstatfs(0xffffffffffffffff, &(0x7f0000000280)=""/12)
creat(&(0x7f0000000200)='./bus\x00', 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x100, 0x0)
r1 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x4000000, 0x2000402)
fallocate(r0, 0x0, 0x0, 0x110001)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1})

14:30:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  596.675799] audit: type=1326 audit(1586615405.794:7252): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20080 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45f6ca code=0xffff0000
14:30:05 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:05 executing program 4:

14:30:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:06 executing program 4:
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
fcntl$lock(r0, 0x26, &(0x7f0000000180)={0x1})
fcntl$lock(r0, 0x26, &(0x7f0000000180)={0x2, 0x0, 0x0, 0x6})

14:30:06 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  597.134688] audit: type=1326 audit(1586615406.254:7253): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20099 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45f6ca code=0xffff0000
14:30:06 executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$sock_buf(r0, 0x1, 0x30, 0x0, &(0x7f0000000000))

[  597.370121] audit: type=1326 audit(1586615406.494:7254): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=20114 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=228 compat=0 ip=0x45f6ca code=0xffff0000
14:30:06 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:06 executing program 4:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
fchdir(r0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
write$P9_RREADLINK(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="3a258211"], 0x4)
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)

14:30:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:06 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:06 executing program 2:
r0 = add_key$keyring(&(0x7f0000000240)='keyring\x00', &(0x7f00000004c0)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$setperm(0x5, r0, 0x0)
keyctl$revoke(0x3, r0)

14:30:06 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  597.457613] audit: type=1800 audit(1586615406.554:7255): pid=20152 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.0" name="cgroup.controllers" dev="sda1" ino=15881 res=0
[  597.565421] Bluetooth: hci0: Frame reassembly failed (-84)
[  597.569497] Bluetooth: hci0: Frame reassembly failed (-84)
14:30:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  597.615065] Bluetooth: hci1: sending frame failed (-49)
[  597.633209] Bluetooth: hci0: Frame reassembly failed (-84)
14:30:06 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  597.676860] Bluetooth: hci0: Frame reassembly failed (-84)
[  597.761298] Bluetooth: Invalid esc byte 0x00
14:30:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:07 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  597.994898] Bluetooth: Invalid esc byte 0x00
[  598.003711] Bluetooth: Invalid esc byte 0x00
[  599.637839] Bluetooth: hci0: command 0x1003 tx timeout
[  599.643277] Bluetooth: hci0: sending frame failed (-49)
[  599.649094] Bluetooth: hci1: command 0x1003 tx timeout
[  599.654477] Bluetooth: hci1: sending frame failed (-49)
[  601.717779] Bluetooth: hci1: command 0x1001 tx timeout
[  601.723180] Bluetooth: hci0: command 0x1001 tx timeout
[  601.723246] Bluetooth: hci1: sending frame failed (-49)
[  601.735294] Bluetooth: hci0: sending frame failed (-49)
[  603.797554] Bluetooth: hci0: command 0x1009 tx timeout
[  603.802920] Bluetooth: hci1: command 0x1009 tx timeout
14:30:16 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:16 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:16 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:16 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:16 executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xc, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000003d0301000000000095000000000000006926000000000000bf67000000000000570600000fff07006706000002000000070600000ee60000bf250000000000002d350000000000006507000002000000070700004c0000001f75000000000000bf54000000000000070400000400f9ffad53010000000000950000000000000005000000000000009500000000000000", @ANYRES64, @ANYRES16], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1}, 0x43)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r0, 0x0)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f0000000040)={0x9, 0x200, 0x5c18, 0x86c4, 0x4, "c50eb4cbfff8ac21d8e8f8aeb54df85efa6cb6", 0x9, 0xa7})

14:30:16 executing program 0 (fault-call:8 fault-nth:0):
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  607.842265] Bluetooth: Invalid esc byte 0x00
[  607.881468] Bluetooth: Invalid esc byte 0x00
[  607.889385] FAULT_INJECTION: forcing a failure.
[  607.889385] name failslab, interval 1, probability 0, space 0, times 1
[  607.916324] CPU: 1 PID: 20241 Comm: syz-executor.0 Not tainted 4.19.114-syzkaller #0
[  607.924274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  607.933668] Call Trace:
[  607.936424]  dump_stack+0x188/0x20d
[  607.939468] Bluetooth: Invalid header checksum
[  607.940145]  should_fail.cold+0xa/0x1b
[  607.945144] Bluetooth: Invalid header checksum
[  607.948656]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  607.948675]  ? __lock_is_held+0xad/0x140
[  607.948705]  __should_failslab+0x115/0x180
[  607.948720]  should_failslab+0x5/0xf
[  607.948732]  kmem_cache_alloc+0x29f/0x710
[  607.948758]  __anon_vma_prepare+0x59/0x3a0
[  607.948779]  do_huge_pmd_anonymous_page+0xe68/0x13e0
[  607.948800]  ? prep_transhuge_page+0xa0/0xa0
[  607.948815]  ? pud_val+0x7c/0xf0
[  607.948829]  ? __pmd+0x60/0x60
[  607.948846]  ? perf_trace_lock_acquire+0xf5/0x530
[  607.948862]  __handle_mm_fault+0x2a04/0x3b60
[  607.948881]  ? copy_page_range+0x1e70/0x1e70
[  608.008757]  ? count_memcg_event_mm+0x279/0x4c0
[  608.013491]  handle_mm_fault+0x1a5/0x670
[  608.017562]  __do_page_fault+0x5ed/0xdd0
[  608.021629]  ? trace_hardirqs_off_caller+0x55/0x210
[  608.026646]  ? vmalloc_fault+0x730/0x730
[  608.030711]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  608.035704]  page_fault+0x1e/0x30
[  608.039188] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[  608.045069] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83
[  608.047385] Bluetooth: Invalid header checksum
[  608.063961] RSP: 0018:ffff88802288fd90 EFLAGS: 00010206
[  608.063975] RAX: ffffed1004511fd2 RBX: 0000000000000090 RCX: 0000000000000090
[  608.063984] RDX: 0000000000000090 RSI: ffff88802288fe00 RDI: 0000000020000000
[  608.063993] RBP: ffff88802288fe00 R08: ffffed1004511fd2 R09: 0000000000000002
[  608.064002] R10: ffffed1004511fd1 R11: ffff88802288fe8f R12: 0000000020000000
[  608.064012] R13: 0000000020000090 R14: 00007ffffffff000 R15: 0000000000000000
[  608.064136]  _copy_to_user+0xe2/0x100
[  608.064158]  __do_sys_wait4+0x115/0x160
[  608.064173]  ? kernel_wait4+0x260/0x260
[  608.064195]  ? wait_for_completion+0x3c0/0x3c0
[  608.126762]  ? __ia32_sys_read+0xb0/0xb0
[  608.130833]  ? __ia32_sys_clock_settime+0x260/0x260
[  608.135866]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  608.140632]  ? trace_hardirqs_off_caller+0x55/0x210
[  608.145649]  ? do_syscall_64+0x21/0x620
[  608.149629]  do_syscall_64+0xf9/0x620
[  608.153449]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  608.157651] Bluetooth: Invalid header checksum
[  608.158640] RIP: 0033:0x45c889
14:30:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  608.158658] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  608.158667] RSP: 002b:00007f8a75fcfc78 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[  608.158682] RAX: ffffffffffffffda RBX: 00007f8a75fd06d4 RCX: 000000000045c889
[  608.158691] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  608.158699] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  608.158712] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000005
[  608.222068] R13: 0000000000000c48 R14: 00000000004ce6d1 R15: 0000000000000000
14:30:17 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:17 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:17 executing program 0 (fault-call:8 fault-nth:1):
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:17 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:17 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  608.431158] FAULT_INJECTION: forcing a failure.
[  608.431158] name failslab, interval 1, probability 0, space 0, times 0
[  608.460090] Bluetooth: Invalid esc byte 0x00
[  608.463974] CPU: 1 PID: 20261 Comm: syz-executor.0 Not tainted 4.19.114-syzkaller #0
[  608.472427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  608.481789] Call Trace:
[  608.484401]  dump_stack+0x188/0x20d
[  608.488060]  should_fail.cold+0xa/0x1b
[  608.491975]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  608.497100]  ? __lock_is_held+0xad/0x140
[  608.501298]  __should_failslab+0x115/0x180
[  608.505564]  should_failslab+0x5/0xf
[  608.509300]  kmem_cache_alloc+0x29f/0x710
[  608.513471]  ? anon_vma_compatible+0x6b/0x2c0
[  608.517995]  __anon_vma_prepare+0x19b/0x3a0
[  608.522335]  do_huge_pmd_anonymous_page+0xe68/0x13e0
[  608.527469]  ? prep_transhuge_page+0xa0/0xa0
[  608.531896]  ? pud_val+0x7c/0xf0
[  608.535274]  ? __pmd+0x60/0x60
[  608.538482]  ? perf_trace_lock_acquire+0xf5/0x530
[  608.543340]  __handle_mm_fault+0x2a04/0x3b60
[  608.547779]  ? copy_page_range+0x1e70/0x1e70
[  608.552206]  ? count_memcg_event_mm+0x279/0x4c0
[  608.556913]  handle_mm_fault+0x1a5/0x670
[  608.560994]  __do_page_fault+0x5ed/0xdd0
[  608.565074]  ? trace_hardirqs_off_caller+0x55/0x210
[  608.570104]  ? vmalloc_fault+0x730/0x730
[  608.574185]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  608.579048]  page_fault+0x1e/0x30
[  608.582536] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[  608.588426] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83
[  608.607481] RSP: 0018:ffff8880229cfd90 EFLAGS: 00010206
[  608.612841] RAX: ffffed1004539fd2 RBX: 0000000000000090 RCX: 0000000000000090
[  608.620110] RDX: 0000000000000090 RSI: ffff8880229cfe00 RDI: 0000000020000000
[  608.627375] RBP: ffff8880229cfe00 R08: ffffed1004539fd2 R09: 0000000000000002
[  608.634644] R10: ffffed1004539fd1 R11: ffff8880229cfe8f R12: 0000000020000000
[  608.641907] R13: 0000000020000090 R14: 00007ffffffff000 R15: 0000000000000000
[  608.649199]  _copy_to_user+0xe2/0x100
[  608.652994]  __do_sys_wait4+0x115/0x160
[  608.656963]  ? kernel_wait4+0x260/0x260
[  608.660951]  ? wait_for_completion+0x3c0/0x3c0
[  608.665541]  ? __ia32_sys_read+0xb0/0xb0
[  608.669589]  ? __ia32_sys_clock_settime+0x260/0x260
[  608.674591]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  608.679356]  ? trace_hardirqs_off_caller+0x55/0x210
[  608.684381]  ? do_syscall_64+0x21/0x620
[  608.688378]  do_syscall_64+0xf9/0x620
[  608.692171]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  608.697363] RIP: 0033:0x45c889
[  608.700551] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  608.719483] RSP: 002b:00007f8a75fcfc78 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
14:30:17 executing program 0 (fault-call:8 fault-nth:2):
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  608.727185] RAX: ffffffffffffffda RBX: 00007f8a75fd06d4 RCX: 000000000045c889
[  608.734444] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  608.741701] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  608.748959] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000005
[  608.756216] R13: 0000000000000c48 R14: 00000000004ce6d1 R15: 0000000000000001
14:30:17 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:17 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = socket$inet(0x2, 0x200000002, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8, 0x1, 'gtp\x00'}, {0x14, 0x2, 0x0, 0x1, {{0x8, 0x1, r5}, {0x8}}}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x48}, 0x1, 0x0, 0x0, 0x44000}, 0x0)

14:30:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  608.866529] FAULT_INJECTION: forcing a failure.
[  608.866529] name failslab, interval 1, probability 0, space 0, times 0
14:30:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:18 executing program 1:
socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
socket$inet_udp(0x2, 0x2, 0x0)
mmap(&(0x7f00009ff000/0x600000)=nil, 0x600000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000}, &(0x7f0000000080)=0x10)
mmap(&(0x7f00009ff000/0x600000)=nil, 0x600000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000000}, &(0x7f0000000080)=0x10)
ioctl$sock_inet_SIOCSIFBRDADDR(0xffffffffffffffff, 0x891a, 0x0)
sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3ff, 0xb1}, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
keyctl$KEYCTL_PKEY_VERIFY(0x1c, 0x0, 0x0, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000000)={0x0, @multicast2, 0x0, 0x0, 'sh\x00'}, 0x2c)
pipe(&(0x7f0000000340)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f00000001c0)="773e000000be1fbb66ec499dcbeba2669351182a25f6dc7c9f55648682feadecf499c9656baf4f11f898588da670fedc7d9d02a65a92641d59e7641d8d2df94e195d9312ef2ca98401a42b8f7ce01bec3a88b50a694601b869d1f85c784a3c01cf5b69fcc6b5818467e19efe6d3d1fc550307f88e1a75eae40be91df1a1b35fecc7df7a6da1c1f9b4750498827dcd25c76defd146126b4f11268295442896ecbe5f80df13a8f841bdbd42cae08", 0xa}], 0x10000000000002f8, 0x1)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000000c0))
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$vimc2(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/video2\x00', 0x2, 0x0)
close(r1)
r2 = socket$inet6(0xa, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev, 0x6}, 0x1c)
splice(r0, 0x0, r1, 0x0, 0x100000002, 0x0)

[  608.955527] CPU: 0 PID: 20284 Comm: syz-executor.0 Not tainted 4.19.114-syzkaller #0
[  608.963465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  608.972837] Call Trace:
[  608.975446]  dump_stack+0x188/0x20d
[  608.979106]  should_fail.cold+0xa/0x1b
[  608.983016]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  608.988131]  ? __lock_is_held+0xad/0x140
[  608.992224]  __should_failslab+0x115/0x180
[  608.996475]  should_failslab+0x5/0xf
[  609.000203]  kmem_cache_alloc+0x29f/0x710
14:30:18 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={[], [], @empty}}, 0x1c)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
setsockopt$inet_MCAST_LEAVE_GROUP(r1, 0x0, 0x2d, &(0x7f0000000080)={0xfffffff9, {{0x2, 0x4e21, @broadcast}}}, 0x88)
listen(r0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000280)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0100", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

[  609.004375]  __khugepaged_enter+0x34/0x380
[  609.008627]  do_huge_pmd_anonymous_page+0xf86/0x13e0
[  609.013755]  ? prep_transhuge_page+0xa0/0xa0
[  609.018187]  ? pud_val+0x7c/0xf0
[  609.021570]  ? __pmd+0x60/0x60
[  609.024780]  ? perf_trace_lock_acquire+0xf5/0x530
[  609.029652]  __handle_mm_fault+0x2a04/0x3b60
[  609.034086]  ? copy_page_range+0x1e70/0x1e70
[  609.038507]  ? count_memcg_event_mm+0x279/0x4c0
[  609.043211]  handle_mm_fault+0x1a5/0x670
[  609.047287]  __do_page_fault+0x5ed/0xdd0
[  609.051370]  ? trace_hardirqs_off_caller+0x55/0x210
[  609.056400]  ? vmalloc_fault+0x730/0x730
[  609.060476]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  609.065338]  page_fault+0x1e/0x30
[  609.068805] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[  609.074701] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83
[  609.093618] RSP: 0018:ffff88804e157d90 EFLAGS: 00010206
[  609.099000] RAX: ffffed1009c2afd2 RBX: 0000000000000090 RCX: 0000000000000090
[  609.106285] RDX: 0000000000000090 RSI: ffff88804e157e00 RDI: 0000000020000000
[  609.113569] RBP: ffff88804e157e00 R08: ffffed1009c2afd2 R09: 0000000000000002
[  609.120851] R10: ffffed1009c2afd1 R11: ffff88804e157e8f R12: 0000000020000000
[  609.128133] R13: 0000000020000090 R14: 00007ffffffff000 R15: 0000000000000000
[  609.135457]  _copy_to_user+0xe2/0x100
[  609.139284]  __do_sys_wait4+0x115/0x160
[  609.143271]  ? kernel_wait4+0x260/0x260
[  609.147264]  ? wait_for_completion+0x3c0/0x3c0
[  609.151872]  ? __ia32_sys_read+0xb0/0xb0
[  609.155970]  ? __ia32_sys_clock_settime+0x260/0x260
[  609.161349]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  609.166119]  ? trace_hardirqs_off_caller+0x55/0x210
[  609.171151]  ? do_syscall_64+0x21/0x620
[  609.175133] Bluetooth: Invalid esc byte 0x00
[  609.175147]  do_syscall_64+0xf9/0x620
[  609.175167]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  609.188529] RIP: 0033:0x45c889
14:30:18 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:18 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  609.191730] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  609.210641] RSP: 002b:00007f8a75fcfc78 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[  609.218361] RAX: ffffffffffffffda RBX: 00007f8a75fd06d4 RCX: 000000000045c889
[  609.225623] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  609.232896] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  609.240209] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000005
[  609.247475] R13: 0000000000000c48 R14: 00000000004ce6d1 R15: 0000000000000002
[  609.312443] Bluetooth: Invalid esc byte 0x00
14:30:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:18 executing program 0 (fault-call:8 fault-nth:3):
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:18 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x10, "00000000f1ffffffffffffff00ddc1517600"})
r1 = syz_open_pts(r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r5, 0x113, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000600)={'veth0_virt_wifi\x00', <r6=>0x0})
ioctl$sock_inet6_SIOCADDRT(r3, 0x890b, &(0x7f0000000640)={@ipv4={[], [], @multicast2}, @local, @initdev={0xfe, 0x88, [], 0x1, 0x0}, 0xdef3, 0x6, 0x9, 0x400, 0xcc, 0x910002, r6})
r7 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x8a100, 0x0)
ioctl$SNDRV_PCM_IOCTL_READN_FRAMES(r7, 0x80184153, &(0x7f0000000340)={0x0, &(0x7f0000000200)=[&(0x7f0000000100)="6d56b3f4e0afc13b20abf86e40bca44134b465a0efd4bad739161dbd37eada1b48b7f106d9b474b7147c86", &(0x7f0000000140)="0f6f1318df2a4be0dd2ceaf356fcefb09abc8ae49c5637e3ac33bc9d3362e518dc08824376e56eb2d663678dd6e599864a95c43b1e0ed307e90178008cbcfde2366549569de6e9d19fab11c799429e04c990f8e7c2330c46dbe15701238ab36d8c4e338c3b67902e403b30da11a07ee571f0b8ea25790dac3509a806c64a979a55dae1d80b63ba274474f671708ed8c401cf7ef8896c00a9d5fea830549f", &(0x7f0000000280)="a2cc807befca52d71c49761ba6ce17d078b8ec838b85aa086fce8a6abd697b1a843763c3c580a8d3fe1923d961073debcd15dfbf49b9b1fccd5bbe418fee48428bbad728c053d195675911b570d490c2126f8c82224f5cac5cb49ee60023eb82f8a9b40055e81e3f8c272877d6eaf6c23a086cc9c496adcfe348133392f826e79189df0b48a56644e6d514b7c96880e82a26d50ff6731fc28dab"]})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x0)
dup3(r1, r0, 0x0)

14:30:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:18 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:18 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  609.451987] Bluetooth: Invalid esc byte 0x00
[  609.458660] FAULT_INJECTION: forcing a failure.
[  609.458660] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  609.500807] CPU: 1 PID: 20328 Comm: syz-executor.0 Not tainted 4.19.114-syzkaller #0
[  609.503620] Bluetooth: Invalid esc byte 0x00
[  609.508721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  609.508728] Call Trace:
[  609.508757]  dump_stack+0x188/0x20d
[  609.508787]  should_fail.cold+0xa/0x1b
[  609.508813]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  609.508835]  ? perf_trace_lock_acquire+0xf5/0x530
[  609.508852]  ? find_held_lock+0x2d/0x110
[  609.508879]  __alloc_pages_nodemask+0x1c7/0x6a0
[  609.508894]  ? find_held_lock+0x2d/0x110
[  609.508912]  ? __khugepaged_enter+0x27e/0x380
[  609.508931]  ? __alloc_pages_slowpath+0x26a0/0x26a0
[  609.508961]  alloc_pages_vma+0x3a7/0x580
[  609.569057]  do_huge_pmd_anonymous_page+0x4ca/0x13e0
[  609.574191]  ? prep_transhuge_page+0xa0/0xa0
[  609.578615]  ? pud_val+0x7c/0xf0
[  609.581998]  ? __pmd+0x60/0x60
[  609.585215]  ? perf_trace_lock_acquire+0xf5/0x530
[  609.590079]  __handle_mm_fault+0x2a04/0x3b60
[  609.594505]  ? copy_page_range+0x1e70/0x1e70
[  609.598938]  ? count_memcg_event_mm+0x279/0x4c0
[  609.603641]  handle_mm_fault+0x1a5/0x670
[  609.607723]  __do_page_fault+0x5ed/0xdd0
[  609.611803]  ? trace_hardirqs_off_caller+0x55/0x210
[  609.616836]  ? vmalloc_fault+0x730/0x730
[  609.620916]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  609.625785]  page_fault+0x1e/0x30
[  609.629267] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[  609.635166] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83
[  609.654077] RSP: 0018:ffff88802cbffd90 EFLAGS: 00010206
[  609.659453] RAX: ffffed100597ffd2 RBX: 0000000000000090 RCX: 0000000000000090
[  609.666731] RDX: 0000000000000090 RSI: ffff88802cbffe00 RDI: 0000000020000000
[  609.674012] RBP: ffff88802cbffe00 R08: ffffed100597ffd2 R09: 0000000000000002
[  609.681291] R10: ffffed100597ffd1 R11: ffff88802cbffe8f R12: 0000000020000000
[  609.688568] R13: 0000000020000090 R14: 00007ffffffff000 R15: 0000000000000000
[  609.695874]  _copy_to_user+0xe2/0x100
[  609.699702]  __do_sys_wait4+0x115/0x160
[  609.703695]  ? kernel_wait4+0x260/0x260
[  609.707689]  ? wait_for_completion+0x3c0/0x3c0
[  609.712304]  ? __ia32_sys_read+0xb0/0xb0
[  609.716381]  ? __ia32_sys_clock_settime+0x260/0x260
[  609.721412]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  609.726182]  ? trace_hardirqs_off_caller+0x55/0x210
[  609.731221]  ? do_syscall_64+0x21/0x620
[  609.735220]  do_syscall_64+0xf9/0x620
[  609.739045]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  609.744252] RIP: 0033:0x45c889
[  609.747466] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  609.766380] RSP: 002b:00007f8a75fcfc78 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[  609.774108] RAX: ffffffffffffffda RBX: 00007f8a75fd06d4 RCX: 000000000045c889
[  609.781396] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  609.788685] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
14:30:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  609.795967] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000005
[  609.803257] R13: 0000000000000c48 R14: 00000000004ce6d1 R15: 0000000000000003
14:30:19 executing program 0 (fault-call:8 fault-nth:4):
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:19 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:19 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:19 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  609.948014] FAULT_INJECTION: forcing a failure.
[  609.948014] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  609.961630] audit: type=1800 audit(1586615419.085:7256): pid=20343 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=15869 res=0
[  609.988882] CPU: 1 PID: 20354 Comm: syz-executor.0 Not tainted 4.19.114-syzkaller #0
[  609.996798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  610.006167] Call Trace:
[  610.008788]  dump_stack+0x188/0x20d
[  610.012385] Bluetooth: Invalid esc byte 0x00
[  610.012438]  should_fail.cold+0xa/0x1b
[  610.020744]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  610.025879]  __alloc_pages_nodemask+0x1c7/0x6a0
[  610.030576]  ? __alloc_pages_slowpath+0x26a0/0x26a0
[  610.035617]  ? do_huge_pmd_anonymous_page+0x3ec/0x13e0
[  610.040927]  alloc_pages_current+0xff/0x200
[  610.045269]  pte_alloc_one+0x16/0x190
[  610.049083]  __pte_alloc+0x25/0x350
[  610.052735]  __handle_mm_fault+0x3104/0x3b60
[  610.057161]  ? copy_page_range+0x1e70/0x1e70
[  610.061579]  ? count_memcg_event_mm+0x279/0x4c0
[  610.066288]  handle_mm_fault+0x1a5/0x670
[  610.070369]  __do_page_fault+0x5ed/0xdd0
[  610.074452]  ? trace_hardirqs_off_caller+0x55/0x210
[  610.079487]  ? vmalloc_fault+0x730/0x730
[  610.083638]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  610.088496]  page_fault+0x1e/0x30
[  610.091961] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[  610.097843] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83
[  610.116793] RSP: 0018:ffff88804e6e7d90 EFLAGS: 00010206
[  610.122178] RAX: ffffed1009cdcfd2 RBX: 0000000000000090 RCX: 0000000000000090
[  610.129457] RDX: 0000000000000090 RSI: ffff88804e6e7e00 RDI: 0000000020000000
[  610.136727] RBP: ffff88804e6e7e00 R08: ffffed1009cdcfd2 R09: 0000000000000002
[  610.143981] R10: ffffed1009cdcfd1 R11: ffff88804e6e7e8f R12: 0000000020000000
[  610.151254] R13: 0000000020000090 R14: 00007ffffffff000 R15: 0000000000000000
[  610.158533]  _copy_to_user+0xe2/0x100
[  610.162333]  __do_sys_wait4+0x115/0x160
[  610.166306]  ? kernel_wait4+0x260/0x260
[  610.170281]  ? wait_for_completion+0x3c0/0x3c0
[  610.174868]  ? __ia32_sys_read+0xb0/0xb0
[  610.178920]  ? __ia32_sys_clock_settime+0x260/0x260
[  610.183924]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  610.188675]  ? trace_hardirqs_off_caller+0x55/0x210
[  610.193688]  ? do_syscall_64+0x21/0x620
[  610.197668]  do_syscall_64+0xf9/0x620
[  610.201483]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  610.206658] RIP: 0033:0x45c889
[  610.209852] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  610.228764] RSP: 002b:00007f8a75fcfc78 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[  610.236486] RAX: ffffffffffffffda RBX: 00007f8a75fd06d4 RCX: 000000000045c889
14:30:19 executing program 0 (fault-call:8 fault-nth:5):
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  610.243755] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  610.251025] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  610.258291] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000005
[  610.265556] R13: 0000000000000c48 R14: 00000000004ce6d1 R15: 0000000000000004
14:30:19 executing program 1:
syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x800000000e004, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0)
r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
fchdir(r0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x141042, 0x0)
getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r4=>0x0]}, &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x77, &(0x7f0000000000)={r4}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000180)={r4, 0x9}, 0x8)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000400)={r4, @in={{0x2, 0x4e22, @local}}, 0xe64, 0xe9}, &(0x7f0000000100)=0x90)
write$P9_RREADLINK(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="3a258211f68ca7724bdef64346bc14816593c04768abf9d1a51c4b0fe1e77551a8bd676825f508300200000040847bc2fdffe8cd918b03fe412915d8a5c51817c3ff01a1f62a471e85445d8f244f6be479ffffffffff8756ea7d486588272169d8b90f1d7106f5776f7894ee03053a6a05d95f5ed199fcf8722be75fbd2309dd4339155d0e97193002a42c08fc673ba7859ec50601d48e7081161161a2793d1429196b4d9182f7c46359a074285b251aca095af3b2887cc79d0cedcc0b7e7f95c7d70472f7d3981e50042390a546375c8c1f1734a24583e1f8066319e93802eda50f3fb22ab0d6dc3d2afd102b71b6c5"], 0xf0)
perf_event_open(&(0x7f0000000800)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x509, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xfffffffffffffffb, 0xffffffffffffffff, 0x0)
sendfile(r1, r1, &(0x7f0000000000), 0x8080fffffffe)
r5 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
ioctl$KVM_SET_DEBUGREGS(0xffffffffffffffff, 0x4080aea2, &(0x7f0000000080)={[0x1000, 0x4, 0xd000, 0x5000], 0x8, 0x2c, 0x42f3ad25})
fallocate(r5, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r5, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$SIOCGIFMTU(r5, 0x8921, &(0x7f0000000040))

14:30:19 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:19 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  610.377438] FAULT_INJECTION: forcing a failure.
[  610.377438] name failslab, interval 1, probability 0, space 0, times 0
[  610.408650] CPU: 0 PID: 20369 Comm: syz-executor.0 Not tainted 4.19.114-syzkaller #0
[  610.416569] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  610.425439] Bluetooth: Invalid esc byte 0x00
[  610.425931] Call Trace:
[  610.432933]  dump_stack+0x188/0x20d
[  610.436556]  should_fail.cold+0xa/0x1b
[  610.440451]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  610.445556]  ? __lock_is_held+0xad/0x140
[  610.449636]  __should_failslab+0x115/0x180
[  610.453895]  should_failslab+0x5/0xf
[  610.457714]  kmem_cache_alloc+0x29f/0x710
[  610.461880]  ? do_huge_pmd_anonymous_page+0x3ec/0x13e0
[  610.467180]  ptlock_alloc+0x1d/0x70
[  610.470828]  pte_alloc_one+0x68/0x190
[  610.474642]  __pte_alloc+0x25/0x350
[  610.478289]  __handle_mm_fault+0x3104/0x3b60
[  610.482713]  ? copy_page_range+0x1e70/0x1e70
[  610.487138]  ? count_memcg_event_mm+0x279/0x4c0
[  610.491839]  handle_mm_fault+0x1a5/0x670
[  610.495919]  __do_page_fault+0x5ed/0xdd0
[  610.500113]  ? trace_hardirqs_off_caller+0x55/0x210
[  610.505149]  ? vmalloc_fault+0x730/0x730
[  610.509255]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  610.514119]  page_fault+0x1e/0x30
[  610.517592] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[  610.523487] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83
[  610.542396] RSP: 0018:ffff88804e6e7d90 EFLAGS: 00010206
[  610.547773] RAX: ffffed1009cdcfd2 RBX: 0000000000000090 RCX: 0000000000000090
[  610.555067] RDX: 0000000000000090 RSI: ffff88804e6e7e00 RDI: 0000000020000000
[  610.562353] RBP: ffff88804e6e7e00 R08: ffffed1009cdcfd2 R09: 0000000000000002
[  610.569638] R10: ffffed1009cdcfd1 R11: ffff88804e6e7e8f R12: 0000000020000000
[  610.576925] R13: 0000000020000090 R14: 00007ffffffff000 R15: 0000000000000000
[  610.584239]  _copy_to_user+0xe2/0x100
[  610.588065]  __do_sys_wait4+0x115/0x160
[  610.592054]  ? kernel_wait4+0x260/0x260
[  610.596052]  ? wait_for_completion+0x3c0/0x3c0
[  610.600673]  ? __ia32_sys_read+0xb0/0xb0
[  610.604746]  ? __ia32_sys_clock_settime+0x260/0x260
[  610.609788]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  610.614554]  ? trace_hardirqs_off_caller+0x55/0x210
[  610.619589]  ? do_syscall_64+0x21/0x620
[  610.623584]  do_syscall_64+0xf9/0x620
[  610.627403]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  610.632711] RIP: 0033:0x45c889
[  610.635915] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  610.654816] RSP: 002b:00007f8a75fcfc78 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[  610.662528] RAX: ffffffffffffffda RBX: 00007f8a75fd06d4 RCX: 000000000045c889
[  610.669792] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
14:30:19 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  610.677084] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  610.684345] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000005
[  610.691648] R13: 0000000000000c48 R14: 00000000004ce6d1 R15: 0000000000000005
14:30:19 executing program 0 (fault-call:8 fault-nth:6):
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:19 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:19 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  610.800804] Bluetooth: Invalid esc byte 0x00
14:30:19 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:20 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  610.918055] FAULT_INJECTION: forcing a failure.
[  610.918055] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  610.946486] CPU: 0 PID: 20394 Comm: syz-executor.0 Not tainted 4.19.114-syzkaller #0
[  610.954413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  610.963786] Call Trace:
[  610.965770] Bluetooth: Invalid esc byte 0x00
[  610.966391]  dump_stack+0x188/0x20d
[  610.966422]  should_fail.cold+0xa/0x1b
[  610.978356]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  610.983497]  __alloc_pages_nodemask+0x1c7/0x6a0
[  610.988184]  ? __pte_alloc+0x1bb/0x350
[  610.992093]  ? __alloc_pages_slowpath+0x26a0/0x26a0
[  610.997156]  alloc_pages_vma+0xd9/0x580
[  611.001162]  __handle_mm_fault+0x1cb2/0x3b60
[  611.005588]  ? copy_page_range+0x1e70/0x1e70
[  611.010014]  ? count_memcg_event_mm+0x279/0x4c0
[  611.014722]  handle_mm_fault+0x1a5/0x670
[  611.018809]  __do_page_fault+0x5ed/0xdd0
[  611.022919]  ? trace_hardirqs_off_caller+0x55/0x210
[  611.027951]  ? vmalloc_fault+0x730/0x730
[  611.032031]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[  611.036901]  page_fault+0x1e/0x30
[  611.040375] RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20
[  611.046274] Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 <f3> a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83
[  611.065191] RSP: 0018:ffff8880487c7d90 EFLAGS: 00010206
[  611.070566] RAX: ffffed10090f8fd2 RBX: 0000000000000090 RCX: 0000000000000090
[  611.077840] RDX: 0000000000000090 RSI: ffff8880487c7e00 RDI: 0000000020000000
[  611.085157] RBP: ffff8880487c7e00 R08: ffffed10090f8fd2 R09: 0000000000000002
[  611.092424] R10: ffffed10090f8fd1 R11: ffff8880487c7e8f R12: 0000000020000000
[  611.099694] R13: 0000000020000090 R14: 00007ffffffff000 R15: 0000000000000000
[  611.106996]  _copy_to_user+0xe2/0x100
[  611.110797]  __do_sys_wait4+0x115/0x160
[  611.114774]  ? kernel_wait4+0x260/0x260
[  611.118755]  ? wait_for_completion+0x3c0/0x3c0
[  611.123350]  ? __ia32_sys_read+0xb0/0xb0
[  611.127418]  ? __ia32_sys_clock_settime+0x260/0x260
[  611.132426]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[  611.137172]  ? trace_hardirqs_off_caller+0x55/0x210
[  611.142196]  ? do_syscall_64+0x21/0x620
[  611.146175]  do_syscall_64+0xf9/0x620
[  611.149975]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  611.155158] RIP: 0033:0x45c889
[  611.158340] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  611.177230] RSP: 002b:00007f8a75fcfc78 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[  611.184932] RAX: ffffffffffffffda RBX: 00007f8a75fd06d4 RCX: 000000000045c889
[  611.192219] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[  611.199475] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  611.206733] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000005
[  611.214001] R13: 0000000000000c48 R14: 00000000004ce6d1 R15: 0000000000000006
14:30:20 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:20 executing program 1:
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mkdir(&(0x7f00000009c0)='./file1\x00', 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
setxattr$system_posix_acl(&(0x7f0000000580)='./file1\x00', &(0x7f00000005c0)='system.posix_acl_default\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010006000000000002000000", @ANYRES32=0x0, @ANYBLOB="b7ac2f2f2bb3f702b328cde5fbf3ab0d4e44794fdb672c943fd0171a81dc68da3da1b5c7d0939e1912168efe0d1bceb4fe43a14de16b7e5ea99a973c6a45", @ANYRES32=0x0, @ANYBLOB="040200000000000008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="10000000000000002000000000000000"], 0x54, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='cgroup2\x00', 0x0, 0x0)

14:30:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:20 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  611.421788] Bluetooth: Invalid esc byte 0x00
14:30:20 executing program 0 (fault-call:8 fault-nth:7):
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:20 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:20 executing program 1:
prlimit64(0x0, 0xe, 0x0, 0x0)
pipe(0x0)
fcntl$setpipe(0xffffffffffffffff, 0x407, 0x0)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCSETSF(r0, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, &(0x7f0000000000)={0x9b, 0x1, 0x4, 0x4000, 0x6, {0x0, 0x7530}, {0x2, 0x1, 0x6, 0x7, 0x3e, 0x7f, "528392ed"}, 0x3, 0x1, @fd, 0xfff, 0x0, <r1=>r0})
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000700)='/proc/self/net/pfkey\x00', 0x441, 0x0)
ioctl$NBD_SET_SOCK(r1, 0xab00, r2)
sched_setattr(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000200)={0x0, 0x70, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f000001d000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x80, 0x0, 0x7f, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
request_key(&(0x7f0000000180)='dns_resolver\x00', &(0x7f00000001c0)={'syz', 0x0}, &(0x7f0000000340)='[\'eth1-#\x00', 0xffffffffffffffff)
r3 = getpid()
r4 = getpid()
rt_tgsigqueueinfo(r4, r3, 0x16, &(0x7f0000000100))
ptrace(0x10, r3)
ptrace$pokeuser(0x5, r3, 0x400000, 0x0)
fchdir(0xffffffffffffffff)

14:30:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  611.642846] Bluetooth: Invalid esc byte 0x00
14:30:20 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:20 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:20 executing program 1:
perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0406618, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000040), 0x1f1}, 0x48)
io_destroy(0x0)
setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, 0x0, 0x0)
exit(0x0)

14:30:20 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:20 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:20 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  611.830414] Bluetooth: Invalid esc byte 0x00
14:30:21 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x400000, &(0x7f0000000000))

14:30:21 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:21 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:21 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:21 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x51a000, &(0x7f0000000000))

14:30:21 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:21 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  612.124922] Bluetooth: Invalid esc byte 0x00
14:30:21 executing program 1:
syz_open_dev$ndb(&(0x7f0000000080)='/dev/nbd#\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x81}, 0x0)
sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r2=>0x0]}, &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000000)={r2}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000180)={r2, 0x9}, 0x8)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f00000001c0)={r2, 0xffff}, 0x8)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000011000/0x18000)=nil, &(0x7f00000008c0)=[@text32={0x20, &(0x7f00000000c0)="b805000000b9510000000f01c10f46a78900000066ba2100b067ee66ba4100edb9800000c00f3266ba400066ed0f30c4c271de9d0000000066b808008ed0660f38806f000f011c2666b8bf008ee0", 0x4e}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in={{0x2, 0x0, @empty}}}, 0x9c)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000))
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4cb, 0x0, 0x0, 0x2]})
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f0000000140)={[{0x4, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, {}, {0x0, 0x0, 0x0, 0x0, 0x80}]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

14:30:21 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:21 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:21 executing program 4:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:21 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x719000, &(0x7f0000000000))

14:30:21 executing program 2:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

14:30:21 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x722000, &(0x7f0000000000))

[  612.699701] Bluetooth: Invalid esc byte 0x00
14:30:21 executing program 2:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

14:30:21 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0xb70000, &(0x7f0000000000))

14:30:21 executing program 4:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:22 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:22 executing program 1:
mmap(&(0x7f000092d000/0x400000)=nil, 0x400000, 0xfffffffffffffffc, 0x8972, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f0000000040)=0x2000000000000074, 0x4)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000380)='htcp\x00', 0x5)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
sendmmsg(r0, &(0x7f0000000a40)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000001340)="682faedcb50b697c164d38e215fbe4aeeaa9f9924ab7aec50856912de401faf856086bbf9fab2132331748bf17c030c16128303ad964542e2d3b2a30fba6db55bdb66f9abf58b85cbcc671729959d81d26322432e66cd7344c9288b24b14973270ef6d9829bc1f1689155cda9dbff68b61cedebbfcfcaf6ee4f695f797d43fb9ca0e97742197c85f8a9e3febe62875e63dc3586fea82555eaf66e87c85c869c3920fb3e6375f36ffba68c0bb83186316414f90408e62786ebed94c66fa795c57511036a9775665573c1ee1f54fa55fbcf4", 0xd1}], 0x1}}], 0x1, 0x4c040)
connect$inet(r0, &(0x7f00009322c4)={0x2, 0x3, @remote}, 0x10)

14:30:22 executing program 4:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:22 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x27f7000, &(0x7f0000000000))

14:30:22 executing program 2:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

14:30:22 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x10000000, &(0x7f0000000000))

[  613.027671] Bluetooth: Invalid esc byte 0x00
14:30:22 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:22 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:22 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:22 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000002, &(0x7f0000000000))

14:30:22 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:22 executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = dup(r0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r2, 0x0)
fsetxattr$trusted_overlay_upper(r2, &(0x7f0000000040)='trusted.overlay.upper\x00', &(0x7f00000001c0)={0x0, 0xfb, 0xf2, 0x4, 0xff, "d8a9e25d05acce7b4f5b3cf4a15a8d05", "306c922888ac35fa503590614228dc6b71ee7c9489dd6c5653c6b025982d722cbc475e7f67489aefc14ab22abedd0ad2999663f3e190acd12fe2e226b5b8491e73c896f818e7c3c006dc3afcd9c7d36f8f458fd9fb2cc975cabb876d8418eb1cc28acdcd76241884ac465d9a61ceaf7a48d6fc8aa35de039123e2ab10ebfcc3780eaf55c7fd866b86792cbe6de26c92d2daadeb1daccdaa2b76b13f33d8df82d2831767f0a459d4c6afe620e58520aa6aef9bd2993043c0976b8257f9f68c1cd42cef165c650bd8fa7dc028e86bfcd5361f1cf49498ed7b2f311ca980e"}, 0xf2, 0x2)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0xe, &(0x7f0000000140)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000000000012d6405000000000065040400010000000704000001000000b7050000000000006a0a00fe00000000850000001a000000b7000000000000009500000000000000"], &(0x7f0000000100)='GPL\x00'}, 0x48)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/vmstat\x00', 0x0, 0x0)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r3, 0x10e, 0x2, &(0x7f0000000300)=0xa, 0x4)

14:30:22 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:22 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000010, &(0x7f0000000000))

14:30:22 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:22 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:30:22 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:22 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:22 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:22 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000030, &(0x7f0000000000))

14:30:22 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:22 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:30:23 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:23 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000048, &(0x7f0000000000))

14:30:23 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:23 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:30:23 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:23 executing program 1:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
getsockopt$inet6_buf(r0, 0x29, 0x20, &(0x7f0000000100)=""/85, &(0x7f0000000180)=0x55)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c)
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x84)
fallocate(r3, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$VIDIOC_QUERYBUF(r3, 0xc0585609, &(0x7f0000000080)={0x5e3f, 0xb, 0x4, 0x20000000, 0x1, {0x0, 0x7530}, {0x5, 0xc, 0x4, 0x0, 0x1, 0x2, "2f388fa9"}, 0x7fffffff, 0x2, @userptr=0x800, 0x3, 0x0, <r4=>r2})
ioctl$DRM_IOCTL_GET_MAGIC(r4, 0x80046402, &(0x7f0000000000)=0x8)
listen(r2, 0x7f)
ioctl$TUNSETLINK(r3, 0x400454cd, 0x201)
syz_emit_ethernet(0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb0800450000280000000000069078ac141400ac1414aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50000001780000b6da25d2d153c51670bce4b2e216d6427b11695abe6858ce00dc92e88b8921d4813590750f8963a73383bd7ea739edb93e7d87cc5f4747078ec5d35bba31eb77739a547860db9b330681be5931a1f467beab0e766edc3fc0c37b873e21562e935050b498b10a1e480da3d23ce8923d850590d3044cc108ef328c7bfc3a22e263a8ce1a5a30f698c5b4c08834542bc8487b905ca869c7cc9fce859b35655f620b9147313388b0d0e8a6418136da907934431ab17a05e9cc440e26085b1d77b96749481d6c86444fc200"], 0x0)

14:30:23 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:23 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:23 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:23 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:23 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x2000004c, &(0x7f0000000000))

14:30:23 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:23 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:30:23 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:23 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:23 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000068, &(0x7f0000000000))

14:30:23 executing program 3 (fault-call:7 fault-nth:0):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:30:23 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:23 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:23 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x2000006c, &(0x7f0000000000))

14:30:23 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  614.599275] audit: type=1800 audit(1586615423.726:7257): pid=20668 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=15962 res=0
[  614.629228] FAULT_INJECTION: forcing a failure.
[  614.629228] name failslab, interval 1, probability 0, space 0, times 0
14:30:23 executing program 1:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f00000002c0)='./file1\x00', 0xf2802, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
r2 = add_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)="a117192cef2c398678d920e2d079158834507cd9cad184602bab63f8417fd58830b23a972567ce9d5f330e0b1196c8ad53c13cc60d1369b32b74c0e12840452514abe99de47c83", 0x47, 0xfffffffffffffff9)
r3 = add_key$keyring(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$setperm(0x5, r3, 0x0)
r4 = add_key(&(0x7f00000001c0)='syzkaller\x00', &(0x7f0000000200)={'syz', 0x0}, &(0x7f0000000240)="115677b939b843cd8e24045ff0735034f5e099709771e0211188039ccc09fc2cc9e0b4903dd7573e7b22c71595b3a3ea6c30a4e305289e697f6847b91816ad93d7dd3b4db641148a5d2a678dfadf01960d230378af17cacd", 0x58, r3)
keyctl$reject(0x13, r2, 0x9, 0xd9d0, r4)
ioctl$EVIOCSABS0(r1, 0x401845c0, &(0x7f0000000000)={0x1, 0x8, 0x8, 0x8, 0x2, 0x3})
syz_mount_image$xfs(&(0x7f0000000080)='xfs\x00', &(0x7f00000000c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)={[{@grpquota='grpquota'}, {@inode64='inode64'}]})

[  614.690650] CPU: 1 PID: 20717 Comm: syz-executor.3 Not tainted 4.19.114-syzkaller #0
[  614.698583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  614.707952] Call Trace:
[  614.710565]  dump_stack+0x188/0x20d
[  614.714227]  should_fail.cold+0xa/0x1b
[  614.718142]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  614.723271]  ? mark_held_locks+0xf0/0xf0
[  614.727347]  ? check_preemption_disabled+0x41/0x280
[  614.732383]  __should_failslab+0x115/0x180
[  614.736652]  should_failslab+0x5/0xf
[  614.740378]  kmem_cache_alloc_node+0x55/0x730
[  614.744888]  ? perf_trace_lock+0x4c0/0x4c0
[  614.749132]  ? avc_has_perm_noaudit+0x33d/0x520
[  614.753902]  __alloc_skb+0xba/0x5b0
[  614.757656]  ? skb_trim+0x180/0x180
[  614.761306]  ? perf_trace_lock_acquire+0xf5/0x530
[  614.766232]  h5_rx_pkt_start+0xcb/0x270
[  614.770198]  h5_recv+0x2d4/0x460
[  614.773558]  ? h5_slip_one_byte+0x1c0/0x1c0
[  614.777913]  ? __lock_is_held+0xad/0x140
[  614.781969]  hci_uart_tty_receive+0x21d/0x520
[  614.786455]  ? hci_uart_write_work+0x6f0/0x6f0
[  614.791097]  tty_ioctl+0xe0a/0x1420
[  614.794723]  ? tty_vhangup+0x30/0x30
[  614.798432]  ? mark_held_locks+0xf0/0xf0
[  614.802482]  ? perf_trace_lock_acquire+0xf5/0x530
[  614.807386]  ? tty_vhangup+0x30/0x30
[  614.811094]  do_vfs_ioctl+0xcda/0x12e0
[  614.814976]  ? selinux_file_ioctl+0x46c/0x5d0
[  614.819497]  ? selinux_file_ioctl+0x125/0x5d0
[  614.823980]  ? check_preemption_disabled+0x41/0x280
[  614.828985]  ? ioctl_preallocate+0x200/0x200
[  614.833381]  ? selinux_file_mprotect+0x600/0x600
[  614.838125]  ? __fget+0x340/0x510
[  614.841565]  ? iterate_fd+0x350/0x350
[  614.845377]  ? security_file_ioctl+0x6c/0xb0
[  614.849809]  ksys_ioctl+0x9b/0xc0
[  614.853262]  __x64_sys_ioctl+0x6f/0xb0
[  614.857151]  ? lockdep_hardirqs_on+0x40b/0x5d0
[  614.861746]  do_syscall_64+0xf9/0x620
[  614.865565]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  614.870766] RIP: 0033:0x45c889
14:30:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:24 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000074, &(0x7f0000000000))

[  614.873966] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  614.892870] RSP: 002b:00007f623eb3bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  614.900602] RAX: ffffffffffffffda RBX: 00007f623eb3c6d4 RCX: 000000000045c889
[  614.907875] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003
[  614.915162] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  614.922443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  614.929702] R13: 0000000000000582 R14: 00000000004c81b7 R15: 0000000000000000
[  614.952595] Bluetooth: Too short H5 packet
[  614.968311] Bluetooth: Invalid header checksum
14:30:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  615.001367] Bluetooth: Invalid header checksum
14:30:24 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file1\x00', 0x0, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000240)="25bca274769e620a2734fa0095e0612687ecb86a548802a902000000000000004e2f98b579a782d270146d0e0206e73ba8c63cd7dcc6760253ef", 0x3a, 0x400}], 0x20, &(0x7f0000000100)={[{@grpjquota='grpjquota='}]})

14:30:24 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x2000007a, &(0x7f0000000000))

[  615.057541] Bluetooth: Invalid header checksum
[  615.131344] Bluetooth: Can't allocate mem for new packet
14:30:24 executing program 3 (fault-call:7 fault-nth:1):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:30:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:24 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20002000, &(0x7f0000000000))

14:30:24 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(0xffffffffffffffff)
syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0xfffffffefffffffb, 0x173204)
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="11009ddf", @ANYRES32=<r2=>0x0], &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x77, &(0x7f00000001c0)={r2, 0x0, 0x80}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000180)={r2, 0x9}, 0x8)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x73, &(0x7f0000000100)={r2, 0x2, 0x20, 0x77d90dd, 0xfff}, &(0x7f0000000180)=0x18)
r3 = getpid()
sched_setscheduler(r3, 0x5, &(0x7f0000000380))
get_robust_list(0x0, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x1410c2, 0x0)
setsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000140)=@assoc_value={0x0, 0x839}, 0x8)
ftruncate(r4, 0x200004)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000280)={0xffffffffffffffff, 0xc0, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000880)={0x0, 0xf}, &(0x7f0000000040), 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
sendfile(r0, r4, 0x0, 0x80001d00c0d0)

14:30:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:24 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20003000, &(0x7f0000000000))

14:30:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  615.296168] FAULT_INJECTION: forcing a failure.
[  615.296168] name failslab, interval 1, probability 0, space 0, times 0
[  615.352170] CPU: 0 PID: 20781 Comm: syz-executor.3 Not tainted 4.19.114-syzkaller #0
[  615.360113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  615.369480] Call Trace:
[  615.372091]  dump_stack+0x188/0x20d
[  615.375744]  should_fail.cold+0xa/0x1b
[  615.379660]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  615.384803]  __should_failslab+0x115/0x180
[  615.389060]  should_failslab+0x5/0xf
[  615.392960]  kmem_cache_alloc_node_trace+0x59/0x750
[  615.398020]  __kmalloc_node_track_caller+0x38/0x70
[  615.402972]  __kmalloc_reserve.isra.0+0x39/0xe0
[  615.407661]  __alloc_skb+0xef/0x5b0
[  615.411306]  ? skb_trim+0x180/0x180
[  615.414956]  ? perf_trace_lock_acquire+0xf5/0x530
[  615.419829]  h5_rx_pkt_start+0xcb/0x270
[  615.423836]  h5_recv+0x2d4/0x460
[  615.427224]  ? h5_slip_one_byte+0x1c0/0x1c0
[  615.431557]  ? __lock_is_held+0xad/0x140
[  615.435643]  hci_uart_tty_receive+0x21d/0x520
[  615.440150]  ? hci_uart_write_work+0x6f0/0x6f0
[  615.444751]  tty_ioctl+0xe0a/0x1420
[  615.448394]  ? tty_vhangup+0x30/0x30
[  615.452126]  ? mark_held_locks+0xf0/0xf0
[  615.456200]  ? perf_trace_lock_acquire+0xf5/0x530
[  615.461079]  ? tty_vhangup+0x30/0x30
[  615.464810]  do_vfs_ioctl+0xcda/0x12e0
[  615.468734]  ? selinux_file_ioctl+0x46c/0x5d0
[  615.473251]  ? selinux_file_ioctl+0x125/0x5d0
[  615.477760]  ? check_preemption_disabled+0x41/0x280
[  615.482788]  ? ioctl_preallocate+0x200/0x200
[  615.487201]  ? selinux_file_mprotect+0x600/0x600
[  615.492023]  ? __fget+0x340/0x510
[  615.495470]  ? iterate_fd+0x350/0x350
[  615.499287]  ? security_file_ioctl+0x6c/0xb0
[  615.503716]  ksys_ioctl+0x9b/0xc0
[  615.507191]  __x64_sys_ioctl+0x6f/0xb0
[  615.511101]  ? lockdep_hardirqs_on+0x40b/0x5d0
[  615.515698]  do_syscall_64+0xf9/0x620
[  615.519525]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  615.524721] RIP: 0033:0x45c889
[  615.527928] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
14:30:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:24 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20003f00, &(0x7f0000000000))

14:30:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  615.546838] RSP: 002b:00007f623eb3bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  615.554558] RAX: ffffffffffffffda RBX: 00007f623eb3c6d4 RCX: 000000000045c889
[  615.561838] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003
[  615.569114] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  615.576391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  615.583671] R13: 0000000000000582 R14: 00000000004c81b7 R15: 0000000000000001
[  615.607900] Bluetooth: Too short H5 packet
[  615.612228] Bluetooth: Invalid header checksum
[  615.632048] Bluetooth: Invalid header checksum
[  615.676049] Bluetooth: Can't allocate mem for new packet
14:30:24 executing program 3 (fault-call:7 fault-nth:2):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:30:24 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:24 executing program 1:
lsetxattr$trusted_overlay_nlink(0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x973, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x82)
fallocate(r0, 0x0, 0x0, 0x8020001)
r1 = open(&(0x7f0000000140)='./bus\x00', 0x141042, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(0xffffffffffffffff, 0x0, 0x61, &(0x7f0000000080)={'filter\x00', 0x4}, 0x68)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r1, 0x40106614, &(0x7f0000000000))

14:30:24 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:24 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20004800, &(0x7f0000000000))

14:30:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  615.849549] FAULT_INJECTION: forcing a failure.
[  615.849549] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  615.861433] CPU: 0 PID: 20832 Comm: syz-executor.3 Not tainted 4.19.114-syzkaller #0
[  615.869332] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  615.878702] Call Trace:
[  615.881316]  dump_stack+0x188/0x20d
[  615.884970]  should_fail.cold+0xa/0x1b
[  615.888876]  ? save_stack+0x89/0xa0
[  615.892530]  ? fault_create_debugfs_attr+0x1e0/0x1e0
14:30:24 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:25 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  615.897651]  ? kasan_kmalloc+0xbf/0xe0
[  615.901551]  ? kmem_cache_alloc_node+0x148/0x730
[  615.906321]  ? __alloc_skb+0xba/0x5b0
[  615.910130]  ? h5_rx_pkt_start+0xcb/0x270
[  615.914288]  ? h5_recv+0x2d4/0x460
[  615.917838]  ? hci_uart_tty_receive+0x21d/0x520
[  615.922549]  ? tty_ioctl+0xe0a/0x1420
[  615.926360]  ? do_vfs_ioctl+0xcda/0x12e0
[  615.930446]  __alloc_pages_nodemask+0x1c7/0x6a0
[  615.935131]  ? __alloc_pages_slowpath+0x26a0/0x26a0
[  615.940162]  ? mark_held_locks+0xf0/0xf0
[  615.944240]  ? should_fail+0x142/0x7bc
[  615.948169]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  615.953461]  cache_grow_begin+0x8e/0x8a0
[  615.957533]  ? cache_alloc_pfmemalloc+0x1e/0x140
[  615.961548] Bluetooth: hci0: Frame reassembly failed (-84)
[  615.962293]  kmem_cache_alloc_node_trace+0x67d/0x750
[  615.962318]  __kmalloc_node_track_caller+0x38/0x70
[  615.969642] Bluetooth: hci0: Frame reassembly failed (-84)
[  615.973049]  __kmalloc_reserve.isra.0+0x39/0xe0
[  615.973071]  __alloc_skb+0xef/0x5b0
[  615.991437] Bluetooth: hci0: Frame reassembly failed (-84)
[  615.991902]  ? skb_trim+0x180/0x180
[  615.991926]  ? perf_trace_lock_acquire+0xf5/0x530
[  616.006009]  h5_rx_pkt_start+0xcb/0x270
[  616.009998]  h5_recv+0x2d4/0x460
[  616.013384]  ? h5_slip_one_byte+0x1c0/0x1c0
[  616.017718]  ? __lock_is_held+0xad/0x140
[  616.021807]  hci_uart_tty_receive+0x21d/0x520
[  616.026323]  ? hci_uart_write_work+0x6f0/0x6f0
[  616.030920]  tty_ioctl+0xe0a/0x1420
[  616.034561]  ? tty_vhangup+0x30/0x30
[  616.038291]  ? mark_held_locks+0xf0/0xf0
[  616.042371]  ? perf_trace_lock_acquire+0xf5/0x530
[  616.047245]  ? tty_vhangup+0x30/0x30
[  616.050976]  do_vfs_ioctl+0xcda/0x12e0
[  616.054879]  ? selinux_file_ioctl+0x46c/0x5d0
[  616.059387]  ? selinux_file_ioctl+0x125/0x5d0
[  616.063899]  ? check_preemption_disabled+0x41/0x280
[  616.068929]  ? ioctl_preallocate+0x200/0x200
[  616.073354]  ? selinux_file_mprotect+0x600/0x600
[  616.078125]  ? __fget+0x340/0x510
[  616.081607]  ? iterate_fd+0x350/0x350
[  616.085434]  ? security_file_ioctl+0x6c/0xb0
[  616.089861]  ksys_ioctl+0x9b/0xc0
[  616.093336]  __x64_sys_ioctl+0x6f/0xb0
[  616.097241]  ? lockdep_hardirqs_on+0x40b/0x5d0
[  616.101954]  do_syscall_64+0xf9/0x620
[  616.105775]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  616.110971] RIP: 0033:0x45c889
[  616.114176] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  616.133082] RSP: 002b:00007f623eb3bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  616.140801] RAX: ffffffffffffffda RBX: 00007f623eb3c6d4 RCX: 000000000045c889
14:30:25 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:25 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20004c00, &(0x7f0000000000))

[  616.148078] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003
[  616.155453] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  616.162729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  616.170007] R13: 0000000000000582 R14: 00000000004c81b7 R15: 0000000000000002
[  616.187365] Bluetooth: Too short H5 packet
[  616.195418] Bluetooth: Invalid header checksum
14:30:25 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20006800, &(0x7f0000000000))

14:30:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

[  616.256798] Bluetooth: Invalid header checksum
[  616.262357] Bluetooth: Invalid header checksum
14:30:25 executing program 3 (fault-call:7 fault-nth:3):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:30:25 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:25 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket(0x2, 0x3, 0x100000001)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10)
sendto(r0, &(0x7f0000000600)="0400", 0x2, 0x8002, 0x0, 0x0)
write$binfmt_elf32(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="7f454c4600000081880b00000000202f050098af13d83e141b0000000000000000000038000000000000000000000000002000000000000000000000000000a7f50dd36c1f36449ddc953734c1b5ba0eaffc6c956d6d7147b11cba953a517c6b1d82f180fa8a8d8874e4e0623853a847a85d1210ad61016fbc0eb06d8df529bcddeccadd493ebfeee138391a6b0880646972e74a2f2fd79cac69c0e7149f8dec1da8"], 0x38)

14:30:25 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20006c00, &(0x7f0000000000))

[  616.418550] Bluetooth: hci1: Frame reassembly failed (-84)
[  616.425900] Bluetooth: hci1: Frame reassembly failed (-84)
14:30:25 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

14:30:25 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:30:25 executing program 1:
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10)
r1 = perf_event_open(&(0x7f0000000000)={0x1000000000000001, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r2 = perf_event_open(&(0x7f000001d000)={0x4, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x60898, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000, 0x0, @perf_bp={&(0x7f0000000080), 0x1}}, 0x0, 0x7, 0xffffffffffffffff, 0x3)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xffffffffffffffff, 0x11, r2, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2)
sendto$inet(r0, 0x0, 0x10b, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10)
sendto$inet(r0, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x1f4, 0x0, 0xa)

[  616.465736] Bluetooth: hci1: Frame reassembly failed (-84)
[  616.493954] Bluetooth: hci1: Frame reassembly failed (-84)
[  616.690541] NOHZ: local_softirq_pending 08
[  618.036163] Bluetooth: hci0: command 0x1003 tx timeout
[  618.041624] Bluetooth: hci0: sending frame failed (-49)
[  618.436181] Bluetooth: hci1: command 0x1003 tx timeout
[  618.441671] Bluetooth: hci1: sending frame failed (-49)
[  620.119241] Bluetooth: hci0: command 0x1001 tx timeout
[  620.124680] Bluetooth: hci0: sending frame failed (-49)
[  620.516109] Bluetooth: hci1: command 0x1001 tx timeout
[  620.521557] Bluetooth: hci1: sending frame failed (-49)
[  622.195983] Bluetooth: hci0: command 0x1009 tx timeout
[  622.596240] Bluetooth: hci1: command 0x1009 tx timeout
14:30:35 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:35 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20007400, &(0x7f0000000000))

14:30:35 executing program 1:
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="3000000002070000000000fd00000000850000000000000018000179140002"], 0x1}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000002100ff03840030de17a608410a0012"], 0x1}}, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)='E', 0x1, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
socket(0x10, 0x2, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x3170, 0x0)

14:30:35 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

14:30:35 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x2, &(0x7f0000000100))

14:30:35 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20007a00, &(0x7f0000000000))

[  626.361910] Bluetooth: hci0: Frame reassembly failed (-84)
[  626.362829] Bluetooth: hci0: Frame reassembly failed (-84)
[  626.390791] Bluetooth: hci0: Frame reassembly failed (-84)
14:30:36 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:36 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x21000000, &(0x7f0000000000))

14:30:36 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:30:36 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x4b47, &(0x7f0000000100))

14:30:36 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x30000000, &(0x7f0000000000))

[  626.974742] Bluetooth: hci1: Frame reassembly failed (-84)
[  626.975063] Bluetooth: hci1: Frame reassembly failed (-84)
[  626.992678] Bluetooth: hci1: Frame reassembly failed (-84)
[  627.000252] Bluetooth: hci1: Frame reassembly failed (-84)
14:30:36 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x7fffffffefff, &(0x7f0000000000))

[  628.435360] Bluetooth: hci0: command 0x1003 tx timeout
[  628.440830] Bluetooth: hci0: sending frame failed (-49)
[  628.995505] Bluetooth: hci1: command 0x1003 tx timeout
[  629.000946] Bluetooth: hci1: sending frame failed (-49)
[  630.515273] Bluetooth: hci0: command 0x1001 tx timeout
[  630.520778] Bluetooth: hci0: sending frame failed (-49)
[  631.075467] Bluetooth: hci1: command 0x1001 tx timeout
[  631.080969] Bluetooth: hci1: sending frame failed (-49)
[  632.595006] Bluetooth: hci0: command 0x1009 tx timeout
[  633.155082] Bluetooth: hci1: command 0x1009 tx timeout
14:30:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:30:45 executing program 0:
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCSETSF(r0, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
r2 = dup2(r0, r1)
recvfrom$ax25(r2, &(0x7f0000000180)=""/59, 0x3b, 0x40000000, &(0x7f00000001c0)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x7}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @null, @default]}, 0x48)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = gettid()
tkill(r3, 0xb)
ptrace(0x4206, r3)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:45 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x4b49, &(0x7f0000000100))

14:30:45 executing program 1:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = socket(0x2000000000000021, 0x0, 0x10000000000002)
sendmmsg(r1, &(0x7f0000005c00), 0x0, 0x0)
setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f00000000c0)=[{{0x4, 0x0, 0x1}, {0x2, 0x0, 0x1}}, {{0x4, 0x1, 0x1, 0x1}, {0x3, 0x1, 0x0, 0x1}}, {{0x0, 0x1}}, {{0x0, 0x0, 0x1, 0x1}, {0x3, 0x1}}, {{0x0, 0x1, 0x1, 0x1}, {0x1, 0x0, 0x1}}, {{0x2, 0x1, 0x1}, {0x2, 0x0, 0x0, 0x1}}, {{0x1}, {0x3, 0x1, 0x1}}, {{0x4}, {0x0, 0x1, 0x0, 0x1}}], 0x40)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x1, 0x0, 0x0, 0x6, 0xfffffffffffffffc}, 0x0)
r2 = perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = dup(r3)
io_setup(0x0, 0x0)
unshare(0x40000000)
close(0xffffffffffffffff)
ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8922, &(0x7f0000000040)={'hsr0\x00', 0x7})
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f00000003c0)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @dev}}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(0xffffffffffffffff, &(0x7f0000000200)={0x4, 0x8, 0xfa00, {0xffffffffffffffff, 0x6}}, 0x10)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f0000000000)={0x8b6, 0xc000, 0x0, 0x3cb7, 0xbb4})
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000440)=ANY=[@ANYPTR64=&(0x7f0000000240)=ANY=[@ANYRESDEC, @ANYRES64=r4], @ANYPTR64=&(0x7f00000002c0)=ANY=[@ANYRESDEC=r2, @ANYRES32], @ANYPTR=&(0x7f0000000380)=ANY=[@ANYRES16=0x0, @ANYRESDEC=r2, @ANYPTR64=&(0x7f0000000780)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="d738124c6b80ab27984e4e53f89535337ba0ffa5cf8049951ebb1ff36423508234462d21e0be063f42a739fe57a3e2c6bbb8c029f997d4f0251b9e8de105604f0cba0bb3306e21a8eafa17e306834f2c7b2c60ac70f674c81e773da6ddda06ebc838ceeb486d87887868b6c871bf8b263f86217b9d2ef4a8f1311522fc5b8e1a4cde7f8ae6dfa2d3bb80ecda3dc7796780edf70ca92df311fc64e53528ee7c58fccdf17eb3a8566b853a", @ANYRES32, @ANYRESOCT=0x0, @ANYRESDEC, @ANYRESOCT, @ANYRES64, @ANYPTR64]], @ANYRES32, @ANYBLOB="0c6fe8f681010f9ff8cd1e8616a06577d8474d5567211066a55527a66bee90b64e59e2619ffdb27ddae6550ec45334658283764abbe5d49e986013c5e96641a01513e355ed97f0fa226a9a1d026dd14c08f94d4e4a888e46b2171cb44cf318c1e9c0b081cb636b4aacfdda961238b370dc4540f4d70c10d2c705f3e2c894ec727dea7400f8bf42c515113a7c", @ANYBLOB="dfb139d1ada67f2c3bd2ecfba50de5d76501abb9db0f6ba80367634002a231833ec713f15c75ab78c7a9edb7b570c6948a6ccd8e7c902dc5ef99a96a9168c12fd790b026bacc8df2def66ecca4ee470d5bbee5897aa0842ce15f99abba77616f5e3fe1340e9a04733d607ab2350445f3eef3b4647622b2c36952c5c84ed1404e14f1e534d66bf94d09559d1d69a0cc28a62fd40c01b2c1ca779b1ca9f21dbc0e89d678dd5f2d124339b87f2d03572591e65157ce43923cd5105cd4", @ANYBLOB="1bdd8a2fed84813f8d825e422559550f504630f05176b9f68422e2a745dc7ef7d22a0fd366d1c1d9a864a0cb6dd9dac0436fad9ed84176ba7cb47d6bc5fc796032a56d08855030896d5e835cefa6bf21c4f46b98e7de66ee114ab5d4ca67b43da99b7925ef6033f15ea86af4c8c34b3f53c6981ae38aa5c5c117800b96d9cd7386083efcc45c9711a83751d175539180481436a15feb379aad67497bdd176dacd09c4274a89c2979f0b41bb45426e2d00a65c0020c4a2221"], &(0x7f0000000100)=0x7)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000000), &(0x7f0000000040)=0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x4e23, @multicast2}}, 0x1ff, 0x6, 0x9, 0x1, 0x0, 0xffff, 0x2}, 0x9c)

[  636.628485] Bluetooth: hci0: Frame reassembly failed (-84)
[  636.635404] Bluetooth: hci0: Frame reassembly failed (-84)
14:30:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

[  636.672664] Bluetooth: hci0: Frame reassembly failed (-84)
[  636.822639] IPVS: ftp: loaded support on port[0] = 21
14:30:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:46 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5409, &(0x7f0000000100))

14:30:46 executing program 5 (fault-call:8 fault-nth:0):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  637.276325] Bluetooth: hci1: Frame reassembly failed (-84)
[  637.282962] Bluetooth: hci1: Frame reassembly failed (-84)
[  637.311642] Bluetooth: Invalid esc byte 0x00
[  637.320715] Bluetooth: hci1: Frame reassembly failed (-84)
[  637.350555] Bluetooth: hci1: Frame reassembly failed (-84)
14:30:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:46 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
r3 = socket(0x11, 0x800000003, 0x8)
getsockopt$sock_int(r3, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r6=>0x0]}, &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x77, &(0x7f0000000000)={r6}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000180)={r6, 0x9}, 0x8)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r2, 0x84, 0x79, &(0x7f00000000c0)={r6, 0x81, 0x4}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x78, 0x78, 0x9, [@fwd={0x9}, @struct={0xa, 0x5, 0x0, 0x4, 0x0, 0xffffffff, [{0x1, 0x5, 0x1}, {0xe, 0x5, 0x8a82}, {0xd, 0x4}, {0x8, 0x3}, {0x8, 0x3, 0x10000}]}, @ptr={0xd, 0x0, 0x0, 0x2, 0x2}, @volatile={0x7, 0x0, 0x0, 0x9, 0x1}, @volatile={0x6, 0x0, 0x0, 0x9, 0x2}]}, {0x0, [0x61, 0x5f, 0x2e, 0x2e, 0x61, 0x61, 0x0]}}, &(0x7f0000000100)=""/123, 0x99, 0x7b, 0x1}, 0x20)

14:30:46 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x540b, &(0x7f0000000100))

[  637.627183] Bluetooth: Invalid esc byte 0x00
[  637.716497] IPVS: ftp: loaded support on port[0] = 21
[  638.674536] Bluetooth: hci0: command 0x1003 tx timeout
[  638.680009] Bluetooth: hci0: sending frame failed (-49)
[  639.314503] Bluetooth: hci1: command 0x1003 tx timeout
[  639.322389] Bluetooth: hci1: sending frame failed (-49)
[  640.754340] Bluetooth: hci0: command 0x1001 tx timeout
[  640.759735] Bluetooth: hci0: sending frame failed (-49)
[  641.394399] Bluetooth: hci1: command 0x1001 tx timeout
[  641.399829] Bluetooth: hci1: sending frame failed (-49)
[  642.834220] Bluetooth: hci0: command 0x1009 tx timeout
[  643.484172] Bluetooth: hci1: command 0x1009 tx timeout
14:30:55 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:55 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xa)
ptrace(0x4206, r0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
getsockopt$bt_BT_VOICE(r2, 0x112, 0xb, &(0x7f00000000c0)=0x4, &(0x7f0000000100)=0x2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x1, &(0x7f0000000000))

14:30:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x2, &(0x7f0000000140))

14:30:55 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x540c, &(0x7f0000000100))

14:30:55 executing program 1:
r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x410402, 0x0)
sendmsg$IPSET_CMD_RENAME(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x5, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x4048001)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
r3 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r4)
setreuid(r2, r4)

14:30:56 executing program 1:
perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x8001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffffff, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, 0x0, 0x0)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
fcntl$setown(0xffffffffffffffff, 0x8, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x5, &(0x7f0000000380))
socketpair(0x29, 0x800, 0x5, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f00000013c0)={0x4, 0x0, 0x0, 0xff, 0x100}, 0x14)
write(0xffffffffffffffff, &(0x7f0000000340), 0x41395527)
r3 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r3, &(0x7f0000000200)={0xa, 0x404e20}, 0x1c)
listen(r3, 0x400000001ffffffd)
openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x1a1100, 0x0)
r4 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x2, 0x5})
r5 = socket(0x27, 0x4, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000100)='NLBL_CIPSOv4\x00')
sendmsg$NLBL_CIPSOV4_C_ADD(r5, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
mq_timedsend(r4, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r4, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r4, &(0x7f0000000180)=""/204, 0xcc, 0x0, 0x0)
sendmsg$nl_netfilter(r1, &(0x7f00000002c0)={&(0x7f0000000080), 0xc, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="81c4a198e00f16cd6baa8457e929e0f9e5396c3f24210417c72f40bb9ffd4099495cc4d2c3a9cbcc8217dd0c3925bf4cda9500fd1a2e99aefb8185f978d901000000c01932fa4c8969531c12a8e60c8a3ce6e5bbc77f59f68a2ded7d3812e7373d684b5ad6be93c5837c5c5d207e357d7541041bd15766e3b51b84", @ANYRES32=r4, @ANYBLOB="7e008080891e698c9bc119e36ba90838cd5076d862ba955e1ac938a8c5c0d4e7bc6cea2a1d0200bfb1791d3f37b3356552b422beebcfd38afb54523e10540502c954ff9302c871016a834134c16750e5da0f85d19c3b1aa6aff87b6ea0d942af3444db1562410e52a0a5b91b4f61dbf43a9aed4586c32ed39936dd81f98336999bf9e20216000000008cd2e78ca02b940e4aea2eafee370b30"], 0x3}, 0x1, 0x0, 0x0, 0x4000000}, 0x44)
r6 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r6, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r7 = accept4(r3, 0x0, 0x0, 0x0)
ioctl$VIDIOC_S_STD(0xffffffffffffffff, 0x40085618, &(0x7f0000001380)=0x80000)
sendmmsg(r7, &(0x7f0000003d40)=[{{0x0, 0xffffffbf, 0x0, 0x0, 0x0, 0x0, 0x7000000}}], 0x4000000000000d0, 0x0)
ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, 0x0)

14:30:56 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:56 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x540d, &(0x7f0000000100))

14:30:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x4b47, &(0x7f0000000140))

14:30:56 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
getsockopt$inet6_tcp_buf(r3, 0x6, 0x21, &(0x7f00000000c0)=""/172, &(0x7f0000000180)=0xac)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(r0, 0x0, 0x20000000, &(0x7f00000001c0))

14:30:56 executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3}, 0x0)
sched_setattr(0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000002000)='./bus\x00', 0xc4042, 0x0)
r2 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0)
lseek(r2, 0x800002, 0x0)
ioctl$EXT4_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f00000001c0))
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$binfmt_aout(r2, &(0x7f0000000200)=ANY=[@ANYBLOB='\x00'], 0x1)
sendfile(r0, r1, 0x0, 0x200fff)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r1, 0xc0096616, &(0x7f0000000000)={0x1, [0x0]})

[  647.495473] audit: type=1800 audit(1586615456.618:7258): pid=21152 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16026 res=0
14:30:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:56 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x33)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x1f, r1, 0x0, 0x0)
ptrace(0x4207, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x4, &(0x7f00000000c0))

14:30:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x4b49, &(0x7f0000000140))

14:30:56 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:56 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5413, &(0x7f0000000100))

[  647.860227] audit: type=1800 audit(1586615456.988:7259): pid=21152 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=16026 res=0
14:30:57 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_mreqn(r1, 0x0, 0x24, &(0x7f00000000c0)={@loopback, @broadcast}, &(0x7f0000000100)=0xc)
socket$nl_rdma(0x10, 0x3, 0x14)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:57 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:57 executing program 1:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
ioctl$SG_SET_KEEP_ORPHAN(r1, 0x2287, &(0x7f0000000000)=0xfffffe01)
syslog(0x4, &(0x7f0000000100)=""/34, 0x22)

14:30:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:57 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5409, &(0x7f0000000140))

14:30:57 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5414, &(0x7f0000000100))

14:30:57 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:57 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xb01fbff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x33)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
r5 = gettid()
wait4(r5, 0x0, 0x8, &(0x7f00000000c0))

14:30:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:57 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0xffffffffffffffff, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:57 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:57 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5415, &(0x7f0000000100))

14:30:57 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x540b, &(0x7f0000000140))

14:30:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  648.387846] audit: type=1800 audit(1586615457.518:7260): pid=21201 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=16020 res=0
14:30:57 executing program 1:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000040)=ANY=[], 0x208e24b)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl(r1, 0x1000008912, &(0x7f0000001cc0)="080db5055e0bcfe847a071")
r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
accept(r2, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x54, 0x30, 0x5, 0x0, 0x0, {}, [{0x40, 0x1, [@m_ife={0x3c, 0x1, 0x0, 0x0, {{0x8, 0x1, 'ife\x00'}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x20000000}}}, @TCA_IFE_METALST={0xc, 0x6, [@IFE_META_PRIO={0x8}]}]}, {0x4}}}]}]}, 0x54}}, 0x0)
sendfile(r4, r3, 0x0, 0x100000001)
socket$bt_hidp(0x1f, 0x3, 0x6)

14:30:57 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, 0x0, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f00000000c0)=0x20, 0x4)
r3 = dup(r1)
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
connect$ax25(0xffffffffffffffff, &(0x7f0000000000)={{0x3, @default, 0x7}, [@null, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @default, @bcast]}, 0x48)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
ioctl$VIDIOC_S_EDID(r5, 0xc0285629, &(0x7f0000000140)={0x0, 0x1001, 0x2000003, [], &(0x7f0000000240)})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
iopl(0x9)
wait4(r0, 0x0, 0x20000000, &(0x7f0000000180))

14:30:57 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:57 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5416, &(0x7f0000000100))

14:30:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  648.656659] audit: type=1804 audit(1586615457.788:7261): pid=21250 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir088111672/syzkaller.GPhLgI/337/cgroup.controllers" dev="sda1" ino=16022 res=1
14:30:57 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:57 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x540c, &(0x7f0000000140))

14:30:57 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = dup(r2)
write$FUSE_DIRENT(0xffffffffffffffff, &(0x7f0000000100)={0x80, 0x0, 0x8, [{0x5, 0x9, 0x5, 0x3, 'syz1\x00'}, {0x2, 0x1, 0xe, 0xffffffe1, 'securityloproc'}, {0x6, 0xffffffffffffffff, 0x9, 0x4537, 'security('}]}, 0x80)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r4, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r4, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TCSETSF(r5, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
fdatasync(r5)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x4c, 0x2, 0x6, 0x1, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x801}, 0x0)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x1c, 0x3, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x1c}}, 0x0)

14:30:57 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5418, &(0x7f0000000100))

14:30:57 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
wait4(r3, 0x0, 0x1, &(0x7f00000000c0))

14:30:58 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:58 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
sendto$isdn(r1, &(0x7f0000000180)={0x5, 0x8f, "e8db16261fff8b28c83484dd6251da8e36b75c30165d170baab16233b325eed4af1e8b029507c3f850e279c4f913881f65393aad54bb0ca7e4d05706e2b37e0b945b9628e4a705c30927248bc4259d91119cae2f1bd057112566d4acd6383b774c8ad664ba97b1124b4e65adc9c7568b77d8b16fa6d2eccdb019a608fe0ea7ffc5d9c458f893bb8954d131d302de2963eb1a06efad8cbc4dd490200a7783"}, 0xa6, 0x40004, &(0x7f0000000240)={0x22, 0x3, 0x3, 0x1, 0xf9}, 0x6)
sendmsg$AUDIT_LIST_RULES(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x10, 0x3f5, 0x400, 0x70bd2a, 0x25dfdbfc, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x6004}, 0x20040804)
ptrace(0x4206, r0)
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x33)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r2, 0x7f, &(0x7f00000000c0)=""/178)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x540d, &(0x7f0000000140))

14:30:58 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x33)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x3, 0x70, 0x0, 0x81, 0x1, 0x0, 0x0, 0x300000000000000, 0x18d2d, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x400, 0x2, @perf_config_ext={0x7}, 0x480e0, 0x9, 0x9, 0x4, 0x7fffffff, 0x0, 0xffff}, r1, 0x5, 0xffffffffffffffff, 0x8)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:58 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:58 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x541b, &(0x7f0000000100))

14:30:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:58 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
prctl$PR_GET_SECCOMP(0x15)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:30:58 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
getsockopt$SO_COOKIE(r1, 0x1, 0x39, &(0x7f00000000c0), &(0x7f0000000100)=0x8)
wait4(r0, 0x0, 0x60000000, &(0x7f0000000000))
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r3 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCSETSF(r3, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r4, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r4, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r4, 0x0)
r5 = dup2(r3, r4)
ioctl$PERF_EVENT_IOC_DISABLE(r5, 0x2401, 0xffffffff)

14:30:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5413, &(0x7f0000000140))

14:30:58 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:58 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x541d, &(0x7f0000000100))

14:30:58 executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x230480, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000040)="6526d0293e36470f01f4460f235a2e400f79b0db8f000048b8e4000000000000000f23d00f21f8352000000b0f23f866baa00066ed4e0fc79800000000660f74b000000100f08056040ac42151eafa", 0x4f}], 0x1, 0x0, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0xffffffffffffff5d, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x11c000})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_NMI(r5, 0xae9a)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
dup(r6)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)

14:30:58 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:30:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5414, &(0x7f0000000140))

14:30:59 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x541e, &(0x7f0000000100))

[  649.954115] audit: type=1800 audit(1586615459.079:7262): pid=21337 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=16032 res=0
14:30:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:59 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:30:59 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x2, &(0x7f0000000000))

14:30:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:59 executing program 1:
syz_read_part_table(0x0, 0x1, &(0x7f0000001480)=[{&(0x7f0000000040)="0302056e49020100001400000000f7ff00000f000200000000bc015bd20000000000420000000000000000000000000000000000000000230000ffffdabe", 0x3e, 0x1c0}])
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
r2 = socket$inet6(0xa, 0x800, 0xfffff7fc)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000000)={<r4=>0xffffffffffffffff}, 0x13f, 0xa}}, 0x20)
write$RDMA_USER_CM_CMD_DISCONNECT(r1, &(0x7f00000000c0)={0xa, 0x4, 0xfa00, {r4}}, 0xc)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dlm_plock\x00', 0x88001, 0x0)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)

14:30:59 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5421, &(0x7f0000000100))

14:30:59 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:30:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5415, &(0x7f0000000140))

14:30:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:30:59 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x2, &(0x7f0000000000))

14:30:59 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:30:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5416, &(0x7f0000000140))

14:30:59 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:30:59 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
sync()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x33)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
wait4(r4, 0x0, 0x80000000, &(0x7f00000000c0))

14:30:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:00 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5418, &(0x7f0000000140))

[  650.935030] audit: type=1800 audit(1586615460.069:7263): pid=21387 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=16040 res=0
14:31:00 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5415, &(0x7f0000000140))

14:31:00 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
ptrace$setregs(0xd, r3, 0x5, &(0x7f00000000c0))
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
close(0xffffffffffffffff)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(0xffffffffffffffff, r4, 0x0, 0x80080001d00c0d0)
ioctl$sock_x25_SIOCADDRT(r4, 0x890b, &(0x7f00000000c0)={@null='               \x00', 0x9, 'ipvlan0\x00'})

14:31:00 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  651.015596] audit: type=1800 audit(1586615460.069:7264): pid=21413 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.1" name="bus" dev="sda1" ino=16040 res=0
14:31:00 executing program 0:
clone(0x21ea004dfc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000100)='/dev/video1\x00', 0x2, 0x0)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0xa)
tkill(r3, 0x32)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r3, 0x6)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
wait4(r4, 0x0, 0x20000000, &(0x7f0000000000))

14:31:00 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  651.171055] IPVS: ftp: loaded support on port[0] = 21
14:31:00 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5424, &(0x7f0000000100))

14:31:00 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:00 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x541b, &(0x7f0000000140))

14:31:00 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:00 executing program 4 (fault-call:4 fault-nth:0):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:00 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:00 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5425, &(0x7f0000000100))

14:31:00 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:00 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_MCAST_BROADCAST(r0, 0x10f, 0x85)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
tkill(r1, 0xb)
ptrace(0x4206, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x8, &(0x7f0000000000))
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x33)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
ptrace(0x4208, r4)

14:31:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x541d, &(0x7f0000000140))

[  651.604781] FAULT_INJECTION: forcing a failure.
[  651.604781] name failslab, interval 1, probability 0, space 0, times 0
[  651.638584] CPU: 0 PID: 21500 Comm: syz-executor.4 Not tainted 4.19.114-syzkaller #0
[  651.646545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  651.655924] Call Trace:
[  651.658559]  dump_stack+0x188/0x20d
[  651.662226]  should_fail.cold+0xa/0x1b
[  651.666153]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  651.671286]  ? mark_held_locks+0xf0/0xf0
[  651.675374]  ? check_preemption_disabled+0x41/0x280
[  651.680426]  __should_failslab+0x115/0x180
[  651.684698]  should_failslab+0x5/0xf
[  651.688429]  kmem_cache_alloc_node+0x55/0x730
[  651.692952]  ? perf_trace_lock+0x4c0/0x4c0
[  651.697204]  ? avc_has_perm_noaudit+0x33d/0x520
[  651.701903]  __alloc_skb+0xba/0x5b0
[  651.705549]  ? skb_trim+0x180/0x180
[  651.709200]  ? perf_trace_lock_acquire+0xf5/0x530
[  651.714067]  h5_rx_pkt_start+0xcb/0x270
[  651.718063]  h5_recv+0x2d4/0x460
[  651.721462]  ? h5_slip_one_byte+0x1c0/0x1c0
[  651.725807]  ? __lock_is_held+0xad/0x140
[  651.729898]  hci_uart_tty_receive+0x21d/0x520
[  651.734409]  ? hci_uart_write_work+0x6f0/0x6f0
[  651.739013]  tty_ioctl+0xe0a/0x1420
[  651.742665]  ? tty_vhangup+0x30/0x30
[  651.746405]  ? mark_held_locks+0xf0/0xf0
[  651.750499]  ? perf_trace_lock_acquire+0xf5/0x530
[  651.755393]  ? tty_vhangup+0x30/0x30
[  651.759134]  do_vfs_ioctl+0xcda/0x12e0
[  651.763053]  ? selinux_file_ioctl+0x46c/0x5d0
[  651.767578]  ? selinux_file_ioctl+0x125/0x5d0
[  651.772101]  ? check_preemption_disabled+0x41/0x280
[  651.777139]  ? ioctl_preallocate+0x200/0x200
[  651.781571]  ? selinux_file_mprotect+0x600/0x600
[  651.786355]  ? __fget+0x340/0x510
[  651.789836]  ? iterate_fd+0x350/0x350
[  651.793667]  ? security_file_ioctl+0x6c/0xb0
[  651.798083]  ksys_ioctl+0x9b/0xc0
[  651.801525]  __x64_sys_ioctl+0x6f/0xb0
[  651.805414]  ? lockdep_hardirqs_on+0x40b/0x5d0
[  651.810000]  do_syscall_64+0xf9/0x620
[  651.813808]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  651.819197] RIP: 0033:0x45c889
[  651.822395] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  651.841299] RSP: 002b:00007fc3cb81ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  651.849018] RAX: ffffffffffffffda RBX: 00007fc3cb81b6d4 RCX: 000000000045c889
[  651.856285] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003
[  651.863548] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  651.870911] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  651.878180] R13: 0000000000000582 R14: 00000000004c81b7 R15: 0000000000000000
[  651.894192] Bluetooth: Too short H5 packet
[  651.898615] Bluetooth: Invalid header checksum
14:31:01 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
r4 = syz_open_dev$mouse(&(0x7f00000000c0)='/dev/input/mouse#\x00', 0xc57, 0x800)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r4, &(0x7f0000000100)="8ab4b4ef08c3a69867997b3caceb3a1bd6de08b56495e9343ea7f6645de63b4808631171142c234a552bf1f6c94387b8d7869d834217f753aab76b11031f93691e0d587fdf999e7c91ed093309e74c670ee17dc9ac154d03b3acecebbed7d169428a29dd8d85feba28d0d0399ca46ed0f0ac254fef5050c44ef724f97ad934101e0e8fb234764d52809ce300f6049333145e973dfd03d64577b510d67ce9", &(0x7f00000001c0)=""/72}, 0x20)
ptrace$cont(0x7, r3, 0x0, 0x0)
wait4(r3, 0x0, 0x1000000, &(0x7f0000000000))

14:31:01 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  651.903265] Bluetooth: Invalid header checksum
[  651.923761] Bluetooth: Can't allocate mem for new packet
14:31:01 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:01 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
wait4(r3, 0x0, 0x2, &(0x7f00000000c0))
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x541e, &(0x7f0000000140))

14:31:01 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x8, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x33)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
wait4(r4, 0x0, 0x20000000, &(0x7f0000000000))

14:31:01 executing program 4 (fault-call:4 fault-nth:1):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:01 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:01 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5427, &(0x7f0000000100))

14:31:01 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

[  652.171789] FAULT_INJECTION: forcing a failure.
[  652.171789] name failslab, interval 1, probability 0, space 0, times 0
[  652.202582] CPU: 1 PID: 21533 Comm: syz-executor.4 Not tainted 4.19.114-syzkaller #0
[  652.210612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  652.219975] Call Trace:
[  652.222580]  dump_stack+0x188/0x20d
[  652.226579]  should_fail.cold+0xa/0x1b
[  652.230490]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  652.235669]  __should_failslab+0x115/0x180
[  652.240107]  should_failslab+0x5/0xf
[  652.243932]  kmem_cache_alloc_node_trace+0x59/0x750
[  652.248976]  __kmalloc_node_track_caller+0x38/0x70
[  652.253951]  __kmalloc_reserve.isra.0+0x39/0xe0
[  652.258647]  __alloc_skb+0xef/0x5b0
[  652.262299]  ? skb_trim+0x180/0x180
[  652.265979]  ? perf_trace_lock_acquire+0xf5/0x530
[  652.271656]  h5_rx_pkt_start+0xcb/0x270
[  652.275787]  h5_recv+0x2d4/0x460
[  652.279264]  ? h5_slip_one_byte+0x1c0/0x1c0
[  652.283626]  ? __lock_is_held+0xad/0x140
[  652.290001]  hci_uart_tty_receive+0x21d/0x520
[  652.296294]  ? hci_uart_write_work+0x6f0/0x6f0
[  652.301008]  tty_ioctl+0xe0a/0x1420
[  652.304666]  ? tty_vhangup+0x30/0x30
[  652.308488]  ? mark_held_locks+0xf0/0xf0
[  652.312579]  ? perf_trace_lock_acquire+0xf5/0x530
[  652.317456]  ? tty_vhangup+0x30/0x30
[  652.321226]  do_vfs_ioctl+0xcda/0x12e0
[  652.325148]  ? selinux_file_ioctl+0x46c/0x5d0
[  652.330534]  ? selinux_file_ioctl+0x125/0x5d0
[  652.335049]  ? check_preemption_disabled+0x41/0x280
[  652.340435]  ? ioctl_preallocate+0x200/0x200
[  652.344868]  ? selinux_file_mprotect+0x600/0x600
[  652.350020]  ? __fget+0x340/0x510
[  652.353631]  ? iterate_fd+0x350/0x350
[  652.357459]  ? security_file_ioctl+0x6c/0xb0
[  652.361923]  ksys_ioctl+0x9b/0xc0
[  652.365580]  __x64_sys_ioctl+0x6f/0xb0
14:31:01 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000000c0)={<r3=>0x0, 0x101, 0x30}, &(0x7f0000000100)=0xc)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x6, &(0x7f0000000140)={r3, @in6={{0xa, 0x4e20, 0xe06b, @dev={0xfe, 0x80, [], 0x2f}}}}, &(0x7f0000000200)=0x84)
ptrace(0x4206, r0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  652.369486]  ? lockdep_hardirqs_on+0x40b/0x5d0
[  652.374096]  do_syscall_64+0xf9/0x620
[  652.377927]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  652.383226] RIP: 0033:0x45c889
[  652.386432] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  652.405658] RSP: 002b:00007fc3cb81ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  652.413563] RAX: ffffffffffffffda RBX: 00007fc3cb81b6d4 RCX: 000000000045c889
14:31:01 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

[  652.421371] RDX: 0000000020000100 RSI: 0000000000005412 RDI: 0000000000000003
[  652.428678] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  652.436501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  652.443956] R13: 0000000000000582 R14: 00000000004c81b7 R15: 0000000000000001
[  652.458583] Bluetooth: Too short H5 packet
[  652.463057] Bluetooth: Invalid header checksum
14:31:01 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

[  652.484854] Bluetooth: Can't allocate mem for new packet
[  652.522308] Bluetooth: Invalid header checksum
14:31:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5421, &(0x7f0000000140))

14:31:01 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5428, &(0x7f0000000100))

14:31:01 executing program 4 (fault-call:4 fault-nth:2):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:01 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:01 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140))

14:31:01 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x33)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
sched_setparam(r1, &(0x7f00000000c0)=0xf8cc)
ptrace(0x4206, r0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r2 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0205649, &(0x7f00000001c0)={0xa00000, 0x7, 0xb4, <r3=>r2, 0x0, &(0x7f0000000180)={0x990a30, 0x3800, [], @p_u16=&(0x7f0000000100)=0x1f}})
ioctl$TCSETSF(r3, 0x5412, &(0x7f0000000140)={0xffffffff, 0x0, 0x0, 0x2, 0x12, "99000000000000000000002000724a00"})
ioctl$TCSBRKP(r2, 0x5425, 0x40)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140))

14:31:02 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:31:02 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:02 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:02 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$KVM_DEASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x4040ae72, &(0x7f00000000c0)={0x7, 0x15600, 0x1ff, 0x6, 0x3})
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:02 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5437, &(0x7f0000000100))

14:31:02 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x2, &(0x7f0000000100)=0xffffffdb)

14:31:02 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:31:02 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
close(0xffffffffffffffff)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0xc0, &(0x7f00000002c0)={0x0, <r3=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000017c0)={r3}, 0xb)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r3}, 0xc)
r4 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = creat(&(0x7f0000000280)='./file0\x00', 0x8)
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r5, 0x84, 0x7, &(0x7f0000000380), &(0x7f00000003c0)=0x4)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:02 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5424, &(0x7f0000000140))

14:31:02 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:02 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5441, &(0x7f0000000100))

14:31:02 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, 0x0)

14:31:02 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:02 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5425, &(0x7f0000000140))

14:31:02 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x4b47, &(0x7f0000000100)=0xffffffdb)

14:31:02 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x33)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x1ff, 0x7)
gettid()
wait4(0x0, 0x0, 0x1, &(0x7f00000000c0))

14:31:02 executing program 2 (fault-call:5 fault-nth:0):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:02 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r2, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r2, 0x84, 0x8, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
setsockopt$PNPIPE_ENCAP(r1, 0x113, 0x1, 0x0, 0x0)
getsockopt$sock_timeval(r1, 0x1, 0x14, &(0x7f0000000100), &(0x7f0000000140)=0x10)
ptrace(0x4206, r0)
r3 = gettid()
sched_setscheduler(r3, 0x0, &(0x7f00000000c0)=0xfffffff9)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:02 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5450, &(0x7f0000000100))

14:31:02 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

[  653.569935] Bluetooth: Invalid esc byte 0x00
14:31:02 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5427, &(0x7f0000000140))

14:31:02 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x4b49, &(0x7f0000000100)=0xffffffdb)

14:31:02 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000002c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x80, 0x80, 0x8, [@enum={0x0, 0x3, 0x0, 0x6, 0x4, [{0x3, 0xa8000000}, {0x6, 0x63}, {0x6, 0xdf6}]}, @func={0x10, 0x0, 0x0, 0xc, 0x4}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x4, 0x1, 0x8}}, @struct={0x8, 0x1, 0x0, 0x4, 0x1, 0xffffffff, [{0xe, 0x5, 0x7}]}, @typedef={0xd}, @enum={0xc, 0x1, 0x0, 0x6, 0x4, [{0x10, 0x1}]}]}, {0x0, [0x2e, 0x5f, 0x0, 0x61, 0x0, 0x2e]}}, &(0x7f0000000180)=""/254, 0xa0, 0xfe, 0x1}, 0x20)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:02 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:02 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:02 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5451, &(0x7f0000000100))

[  653.800451] Bluetooth: Invalid esc byte 0x00
14:31:03 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
getsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0xc)
close(0xffffffffffffffff)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(0xffffffffffffffff, r3, 0x0, 0x80001d00c0d0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000140)={@loopback, 0x7ff, 0x1, 0x0, 0x8, 0xfff, 0x8001}, 0x20)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:03 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x2, &(0x7f0000000140))

14:31:03 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5428, &(0x7f0000000140))

14:31:03 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:03 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5409, &(0x7f0000000100)=0xffffffdb)

14:31:03 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5452, &(0x7f0000000100))

14:31:03 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:03 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5430, &(0x7f0000000140))

14:31:03 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x4b47, &(0x7f0000000140))

14:31:03 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x540b, &(0x7f0000000100)=0xffffffdb)

14:31:03 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x545d, &(0x7f0000000100))

14:31:03 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:03 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5437, &(0x7f0000000140))

14:31:03 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x4b49, &(0x7f0000000140))

14:31:03 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:03 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x540c, &(0x7f0000000100)=0xffffffdb)

14:31:03 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5460, &(0x7f0000000100))

14:31:03 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5441, &(0x7f0000000140))

14:31:04 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:04 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x540d, &(0x7f0000000100)=0xffffffdb)

14:31:04 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5409, &(0x7f0000000140))

14:31:04 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x40049409, &(0x7f0000000100))

14:31:04 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5450, &(0x7f0000000140))

14:31:04 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5413, &(0x7f0000000100)=0xffffffdb)

14:31:04 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:04 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x540b, &(0x7f0000000140))

14:31:04 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x40086602, &(0x7f0000000100))

14:31:04 executing program 1:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100))

14:31:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5451, &(0x7f0000000140))

14:31:04 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r2, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$inet6_buf(r2, 0x29, 0x15, &(0x7f0000000140)=""/129, &(0x7f0000000200)=0x81)
r3 = dup(r1)
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r4, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$DRM_IOCTL_ADD_CTX(r5, 0xc0086420, &(0x7f0000000440)={<r6=>0x0})
ioctl$DRM_IOCTL_LOCK(0xffffffffffffffff, 0x4008642a, &(0x7f0000000100)={r6, 0x2})
ioctl$DRM_IOCTL_NEW_CTX(r4, 0x40086425, &(0x7f00000000c0)={r6})
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:04 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5414, &(0x7f0000000100)=0xffffffdb)

14:31:04 executing program 1:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100))

14:31:04 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x540c, &(0x7f0000000140))

14:31:04 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x40087602, &(0x7f0000000100))

14:31:04 executing program 1:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100))

14:31:04 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5452, &(0x7f0000000140))

14:31:04 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r1, 0x81785501, &(0x7f00000000c0)=""/100)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r2 = gettid()
tkill(r2, 0xb)
ptrace(0x4206, r2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:04 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:05 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5415, &(0x7f0000000100)=0xffffffdb)

14:31:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x540d, &(0x7f0000000140))

14:31:05 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x4020940d, &(0x7f0000000100))

14:31:05 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x545d, &(0x7f0000000140))

14:31:05 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r3 = syz_open_pts(r2, 0x0)
ioctl$TCSETSF(r3, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0205649, &(0x7f0000000100)={0x9b0000, 0x18, 0x8000, <r4=>r3, 0x0, &(0x7f00000000c0)={0x990a90, 0x9, [], @value=0x4d3}})
ioctl$SOUND_PCM_READ_CHANNELS(r4, 0x80045006, &(0x7f0000000140))
ptrace(0x4206, r0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:05 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:05 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5416, &(0x7f0000000100)=0xffffffdb)

14:31:05 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x80045432, &(0x7f0000000100))

14:31:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5413, &(0x7f0000000140))

14:31:05 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:05 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5460, &(0x7f0000000140))

14:31:05 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:05 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5418, &(0x7f0000000100)=0xffffffdb)

14:31:05 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:05 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5414, &(0x7f0000000140))

14:31:05 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x80045440, &(0x7f0000000100))

14:31:06 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
fallocate(0xffffffffffffffff, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x101804, 0x40)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
pwritev(r4, &(0x7f0000000180)=[{&(0x7f00000000c0)}, {&(0x7f0000000100)="836822", 0x3}, {&(0x7f0000000140)="e233cd5a6eee46c53b777b26dee5789fe3d910e7a6498d40e5da3e55d77927aa3873fe3396a8bb2cc6fad72ac91d46c2d6128885", 0x34}], 0x3, 0x1b)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x40049409, &(0x7f0000000140))

14:31:06 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5415, &(0x7f0000000140))

14:31:06 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x541b, &(0x7f0000000100)=0xffffffdb)

14:31:06 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x80086601, &(0x7f0000000100))

14:31:06 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x40086602, &(0x7f0000000140))

14:31:06 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5416, &(0x7f0000000140))

14:31:06 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x80087601, &(0x7f0000000100))

14:31:06 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x541d, &(0x7f0000000100)=0xffffffdb)

14:31:06 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
ioctl$USBDEVFS_GET_SPEED(0xffffffffffffffff, 0x551f)

14:31:06 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:06 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x40087602, &(0x7f0000000140))

14:31:06 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000100))

14:31:06 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x541e, &(0x7f0000000100)=0xffffffdb)

14:31:06 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5418, &(0x7f0000000140))

14:31:07 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:07 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
process_vm_writev(r0, &(0x7f0000001240)=[{&(0x7f00000000c0)=""/72, 0x48}, {&(0x7f0000000140)=""/4096, 0x1000}, {&(0x7f0000001140)=""/124, 0x7c}, {&(0x7f00000011c0)=""/100, 0x64}], 0x4, &(0x7f0000001740)=[{&(0x7f0000001280)=""/8, 0x8}, {&(0x7f00000012c0)=""/246, 0xf6}, {&(0x7f00000013c0)=""/131, 0x83}, {&(0x7f0000001480)=""/190, 0xbe}, {&(0x7f0000001540)=""/49, 0x31}, {&(0x7f0000001580)=""/6, 0x6}, {&(0x7f00000015c0)=""/252, 0xfc}, {&(0x7f00000016c0)=""/109, 0x6d}], 0x8, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:07 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:07 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = shmget(0x0, 0x1000, 0x1, &(0x7f0000ffc000/0x1000)=nil)
shmctl$IPC_INFO(r1, 0x3, &(0x7f00000000c0)=""/4096)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:07 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5421, &(0x7f0000000100)=0xffffffdb)

14:31:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x4020940d, &(0x7f0000000140))

14:31:07 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000100))

14:31:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x541b, &(0x7f0000000140))

14:31:07 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:07 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
fallocate(0xffffffffffffffff, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="004942488c23492893efde8b98bd459e7e3a445a9d1887"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r6, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x68, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff1}}, [@filter_kind_options=@f_rsvp6={{0xa, 0x1, 'rsvp6\x00'}, {0x38, 0x2, [@TCA_RSVP_DST={0x14, 0x2, @remote}, @TCA_RSVP_PINFO={0x20, 0x4, {{}, {}, 0x0, 0x0, 0x3}}]}}]}, 0x68}}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@initdev={0xfe, 0x88, [], 0x1, 0x0}, 0x56, r6})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:07 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

[  658.245922] device veth14 entered promiscuous mode
14:31:07 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ip6_mr_cache\x00')
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000100)=0x5)
r1 = gettid()
tkill(r1, 0xb)
ptrace(0x4206, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:07 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:07 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xffffffdb)

14:31:07 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0xc0189436, &(0x7f0000000100))

14:31:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x541d, &(0x7f0000000140))

14:31:07 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x80045432, &(0x7f0000000140))

14:31:07 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f0000000340)="585ccbe4ed83b836c1a6474914dc55e72206297b6895b66147b3c7218a9169a85ea0bdc9e1587a050000000000000042e33089754c8107c3cd3923dd4a71c2ff06007b6b4816122d2550829eaa9435c99926022b8753a188748c569f435fb3bae96efb74b50ec93c152f5e8e198a29e5c0d0c60000ce0637ce003d661ff5ff70e48884ca000018cea71fcfacf40d32e4b58a8d2725561f6110fd7b06f90b5274cc5c1e298a16324fe27da2a9d5ba9ff3c009d308bd73f4772539", 0x2b2, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f0000000300)='user\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000000)="03", 0x1, 0xfffffffffffffffd)
r5 = add_key$user(&(0x7f0000000280)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000380)='X', 0x1, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r4, r3, r5}, &(0x7f0000000440)=""/241, 0xf1, &(0x7f0000000240)={&(0x7f0000000080)={'crc32c-generic\x00'}})
keyctl$KEYCTL_PKEY_QUERY(0x18, r3, 0x0, &(0x7f00000000c0)='\x00', &(0x7f0000000100))
r6 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r6, 0x200004)
sendfile(r2, r6, 0x0, 0x80001d00c0d0)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0xfffffdfffffffc58)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:07 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5424, &(0x7f0000000100)=0xffffffdb)

[  658.571443] Bluetooth: hci0: Frame reassembly failed (-84)
14:31:07 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x541e, &(0x7f0000000140))

14:31:07 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x80045440, &(0x7f0000000140))

14:31:07 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5425, &(0x7f0000000100)=0xffffffdb)

14:31:07 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0xc020660b, &(0x7f0000000100))

14:31:08 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DEST(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, r4, 0xf01}, 0x14}}, 0x0)
sendmsg$IPVS_CMD_NEW_SERVICE(r2, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x154, r4, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x3c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x80000001}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x9}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x61f}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x20}, @IPVS_CMD_ATTR_DAEMON={0x70, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6erspan0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_team\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x800}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_vlan\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fffffff}, @IPVS_CMD_ATTR_DAEMON={0x60, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [], @broadcast}}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'gre0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1cb28}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1983}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}]}, 0x154}, 0x1, 0x0, 0x0, 0x8825}, 0x4004000)
ptrace(0x4206, r0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:08 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5427, &(0x7f0000000100)=0xffffffdb)

14:31:08 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:08 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x80086601, &(0x7f0000000140))

[  660.592862] Bluetooth: hci0: command 0x1003 tx timeout
[  660.599847] Bluetooth: hci0: sending frame failed (-49)
[  662.672749] Bluetooth: hci0: command 0x1001 tx timeout
[  662.678400] Bluetooth: hci0: sending frame failed (-49)
[  664.752655] Bluetooth: hci0: command 0x1009 tx timeout
14:31:18 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:18 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5421, &(0x7f0000000140))

14:31:18 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, &(0x7f00000000c0)={0x1, 0x0, [{0x40000000, 0x1da5, 0x644, 0xff, 0x7f}]})
r4 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x2, &(0x7f00000001c0))

14:31:18 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5428, &(0x7f0000000100)=0xffffffdb)

14:31:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0x1000000)

14:31:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x80087601, &(0x7f0000000140))

[  669.271426] Bluetooth: hci0: Frame reassembly failed (-84)
14:31:18 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5437, &(0x7f0000000100)=0xffffffdb)

14:31:18 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xc0ffffff)

14:31:18 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000140))

14:31:18 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140))

14:31:18 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000180)={r1, 0xc0, &(0x7f00000002c0)={0x0, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000017c0)={r2}, 0xb)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={<r3=>r0, 0xffffffffffffffff, 0x0, 0x6, &(0x7f00000000c0)='-self\x00', r2}, 0x30)
tkill(r3, 0x11)
ptrace(0x4206, r0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
socket$nl_xfrm(0x10, 0x3, 0x6)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:18 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5441, &(0x7f0000000100)=0xffffffdb)

[  671.322143] Bluetooth: hci0: command 0x1003 tx timeout
[  671.329061] Bluetooth: hci0: sending frame failed (-49)
[  673.392085] Bluetooth: hci0: command 0x1001 tx timeout
[  673.397612] Bluetooth: hci0: sending frame failed (-49)
[  675.471912] Bluetooth: hci0: command 0x1009 tx timeout
[  678.113030] NOHZ: local_softirq_pending 08
14:31:28 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:28 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xdbffffff)

14:31:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000140))

14:31:28 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5424, &(0x7f0000000140))

14:31:28 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5450, &(0x7f0000000100)=0xffffffdb)

14:31:28 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x1c, r1, 0x301, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000140)=0x14)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x44, r1, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r6}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000001}, 0x4004)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
r8 = dup(r7)
ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  679.481508] Bluetooth: hci0: Frame reassembly failed (-84)
14:31:28 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5451, &(0x7f0000000100)=0xffffffdb)

14:31:28 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5425, &(0x7f0000000140))

14:31:28 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0xc0189436, &(0x7f0000000140))

14:31:28 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xfdfdffff)

14:31:28 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x68, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0xfff1}}, [@filter_kind_options=@f_rsvp6={{0xa, 0x1, 'rsvp6\x00'}, {0x38, 0x2, [@TCA_RSVP_DST={0x14, 0x2, @remote}, @TCA_RSVP_PINFO={0x20, 0x4, {{}, {}, 0x0, 0x0, 0x3}}]}}]}, 0x68}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r6, @ANYBLOB="0000000000000000a4ff11983ff10b5c9dada90228001200092001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="004942488c23492893efde8b98bd459e7e3a445a9d1887"], 0x5}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32=r6, @ANYBLOB="0000e700ffffffff00000000090001006866736300000000f6ff020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x68, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff1}}, [@filter_kind_options=@f_rsvp6={{0xa, 0x1, 'rsvp6\x00'}, {0x38, 0x2, [@TCA_RSVP_DST={0x14, 0x2, @remote}, @TCA_RSVP_PINFO={0x20, 0x4, {{}, {}, 0x0, 0x0, 0x3}}]}}]}, 0x68}}, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000380)=[{{&(0x7f0000000180)={0x2, 0x4e21, @empty}, 0x10, &(0x7f00000002c0)=[{&(0x7f00000001c0)="5a2ad37ec8ce8a7870a8af686fd3684b59490e64ec8242314f15c9ae992b43be7330077cf705c740edcd5a640845b0a21eb7533ee79f314c43c563d017dc5c3f2e3ddebe49fb6ce29cde21e51f4be336670f4637e400b8b313e2822c4d83aeca1fc762c85e8423c0cd379efa18aefcaad1432cee6f0d444d67c0b6f3bb5463763cb1eaf213fb3143f42befb64735d8589627257a225b0ad4af12a2c0fd0989aeb0d47711d711cfe2dde58d91f745d6f2c1f2c87dfc6fd122fc3b6a2be0ba5de6ebc1a702baa5d4e985fa163795fd8c2b14446802068d52f2f39432b814d793ae", 0xe0}], 0x1, &(0x7f0000000300)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xb}, @dev={0xac, 0x14, 0x14, 0x35}}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @empty, @empty}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0xffffffff}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}], 0x70}}], 0x1, 0x4000880)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
recvfrom$rose(0xffffffffffffffff, &(0x7f00000000c0)=""/103, 0x67, 0x23, &(0x7f0000000140)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x1, @default}, 0x1c)

[  679.869348] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
14:31:29 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xfffffdfd)

[  681.551482] Bluetooth: hci0: command 0x1003 tx timeout
[  681.557358] Bluetooth: hci0: sending frame failed (-49)
[  683.631159] Bluetooth: hci0: command 0x1001 tx timeout
[  683.637566] Bluetooth: hci0: sending frame failed (-49)
[  685.711318] Bluetooth: hci0: command 0x1009 tx timeout
14:31:38 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:38 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5452, &(0x7f0000000100)=0xffffffdb)

14:31:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0xc020660b, &(0x7f0000000140))

14:31:38 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5427, &(0x7f0000000140))

14:31:38 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
ioctl$sock_rose_SIOCRSCLRRT(r4, 0x89e4)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x2, &(0x7f00000000c0))

14:31:38 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffc0)

14:31:38 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:39 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5428, &(0x7f0000000140))

14:31:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:39 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:39 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x545d, &(0x7f0000000100)=0xffffffdb)

[  689.917844] Bluetooth: Invalid esc byte 0x00
14:31:39 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nullb0\x00', 0x4000, 0x0)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
r3 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r4)
ioprio_set$uid(0x0, r4, 0x4)

[  690.006678] Bluetooth: Invalid esc byte 0x00
14:31:39 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5460, &(0x7f0000000100)=0xffffffdb)

14:31:39 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x0, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x2)

14:31:39 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5430, &(0x7f0000000140))

14:31:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r3, 0x0, 0x8000000000010000, 0x6fd)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r3, 0x6, 0x15, &(0x7f0000000000)=0x10000, 0x4)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  690.202655] Bluetooth: Invalid esc byte 0x02
14:31:39 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r3 = syz_open_pts(r2, 0x0)
ioctl$TCSETSF(r3, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f00000000c0)={0x7, 0x3a11, 0x20, 0x4, 0x6, 0xee3})
r4 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
r5 = gettid()
ptrace$setopts(0x4206, r5, 0x0, 0x0)
tkill(r5, 0x33)
ptrace$setregs(0xd, r5, 0x0, &(0x7f0000000080))
wait4(r5, 0x0, 0x8, &(0x7f0000000000))

14:31:39 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x40049409, &(0x7f0000000100)=0xffffffdb)

[  690.340868] Bluetooth: Invalid esc byte 0x02
14:31:39 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5437, &(0x7f0000000140))

14:31:39 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x3)

14:31:39 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x8000011)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r3, 0x0)
ioctl$PIO_UNISCRNMAP(r3, 0x4b6a, &(0x7f0000000000)="06e87b8012322719c775730b78b4d3425b6470b79f")
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:39 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
ioctl$NBD_CLEAR_QUE(0xffffffffffffffff, 0xab05)

[  690.547645] Bluetooth: Invalid esc byte 0x03
14:31:39 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x40086602, &(0x7f0000000100)=0xffffffdb)

14:31:39 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:39 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5441, &(0x7f0000000140))

[  690.661667] Bluetooth: Invalid esc byte 0x03
14:31:39 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
r1 = socket(0x11, 0x800000003, 0x8)
getsockopt$sock_int(r1, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB="010e0000", @ANYRES32=<r4=>0x0], &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r2, 0x84, 0x77, &(0x7f0000000000)={r4}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000180)={r4, 0x9}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={r4}, 0x8)
tkill(r0, 0xb)
ptrace(0x4206, r0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:39 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x4)

14:31:40 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5450, &(0x7f0000000140))

14:31:40 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x40087602, &(0x7f0000000100)=0xffffffdb)

14:31:40 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x0)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:40 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x4)
fallocate(r3, 0x20, 0x10000, 0x100008000)
get_robust_list(r0, &(0x7f0000000240)=&(0x7f0000000200)={&(0x7f0000000140)={&(0x7f0000000100)}, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)}}, &(0x7f0000000280)=0x18)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
setsockopt$netlink_NETLINK_RX_RING(r3, 0x10e, 0x6, &(0x7f00000000c0)={0x80000001, 0x1, 0x2, 0x1}, 0x10)

[  690.898323] Bluetooth: Invalid esc byte 0x04
[  690.987898] Bluetooth: Invalid esc byte 0x04
14:31:40 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r3, 0x8982, &(0x7f00000000c0)={0x6, 'batadv0\x00', {0x4}, 0x401})
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:40 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
ioctl$SNDRV_PCM_IOCTL_INFO(r2, 0x81204101, &(0x7f0000000180))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
dup3(0xffffffffffffffff, r1, 0x0)
r3 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x80, 0x80000)
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x1, 'wg1\x00', {}, 0x103f})
ioctl$EVIOCREVOKE(r3, 0x40044591, &(0x7f0000000140)=0x6)
r4 = socket$inet6(0xa, 0x803, 0x7f)
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r3, 0x84, 0x6b, &(0x7f00000002c0)=[@in={0x2, 0x4e22, @multicast2}, @in={0x2, 0x4e23, @local}, @in6={0xa, 0x4e20, 0x215, @remote, 0x4}], 0x3c)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x30, 0x0, 0x800, 0x70bd29, 0x25dfdbfe, {}, [@NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x1a}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x1}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x20040080)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:40 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x5)

14:31:40 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:40 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x4020940d, &(0x7f0000000100)=0xffffffdb)

14:31:40 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5451, &(0x7f0000000140))

14:31:40 executing program 0:
clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x8)
madvise(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0)
wait4(0x0, 0x0, 0x20000000, &(0x7f00000000c0))

[  691.440890] Bluetooth: Invalid esc byte 0x05
14:31:40 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
prctl$PR_GET_NO_NEW_PRIVS(0x27)
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:40 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:40 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x6)

14:31:40 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
connect$vsock_stream(r4, &(0x7f00000000c0)={0x28, 0x0, 0xffffffff, @my=0x0}, 0x10)
r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0)
setsockopt$RXRPC_SECURITY_KEY(r5, 0x110, 0x1, &(0x7f0000000140)='\f\\cpuset-&securitybdevGPL]:wlan0GPLbdev\x00', 0x28)

14:31:40 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x80045432, &(0x7f0000000100)=0xffffffdb)

14:31:40 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5452, &(0x7f0000000140))

[  691.641482] Bluetooth: Too short H5 packet
[  691.646198] Bluetooth: Invalid header checksum
[  691.653822] Bluetooth: Invalid header checksum
[  691.751009] Bluetooth: Invalid header checksum
14:31:41 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x62, 0x7, 0x2, 0x7fffffff, 0xb2, "b90a0bf9a92b0589c1170ee0e778e13c972b44"})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:41 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:41 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x80045440, &(0x7f0000000100)=0xffffffdb)

14:31:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x7)

14:31:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x545d, &(0x7f0000000140))

14:31:41 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
ioctl$UI_SET_PHYS(r2, 0x4008556c, &(0x7f00000000c0)='syz0\x00')
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  692.133851] Bluetooth: Invalid esc byte 0x07
14:31:41 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

[  692.253236] Bluetooth: Invalid esc byte 0x07
14:31:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5460, &(0x7f0000000140))

14:31:41 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x80086601, &(0x7f0000000100)=0xffffffdb)

14:31:41 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x4, 0x10000)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:41 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x10)

14:31:41 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r2, 0x0, 0x80001d00c0ce)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000)='batadv\x00')
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r7=>0x0})
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c100100", @ANYRES16=r5, @ANYBLOB="010300000000000000000e00000008000300", @ANYRES32=r7, @ANYBLOB], 0x1c}}, 0x0)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r5, 0x2, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x4000880)
r8 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  692.460080] Bluetooth: Invalid esc byte 0x10
14:31:41 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x40049409, &(0x7f0000000140))

[  692.556780] Bluetooth: Invalid esc byte 0x10
14:31:41 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:41 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x80087601, &(0x7f0000000100)=0xffffffdb)

14:31:41 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$TCSETS2(r2, 0x402c542b, &(0x7f0000000000)={0x0, 0xfffffff8, 0xfec, 0x9, 0x80, "b19fbbfd8b83770ea804df103707211d9e6fef", 0xe8, 0x263})
r3 = socket$inet6(0xa, 0x803, 0x7f)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:41 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x12)

14:31:41 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

[  692.808368] Bluetooth: Invalid esc byte 0x12
14:31:42 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r3, 0x0)
fcntl$notify(r3, 0x402, 0x38)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  692.893967] Bluetooth: Too short H5 packet
[  692.896993] Bluetooth: Invalid esc byte 0x12
[  692.898321] Bluetooth: Invalid header checksum
[  692.898370] Bluetooth: Invalid header checksum
14:31:42 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x40086602, &(0x7f0000000140))

14:31:42 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:42 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000100)=0xffffffdb)

14:31:42 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x60)

[  693.002548] Bluetooth: Invalid header checksum
14:31:42 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

[  693.095684] Bluetooth: Invalid esc byte 0x60
[  693.111298] Bluetooth: Invalid header checksum
[  693.178627] Bluetooth: Invalid esc byte 0x60
14:31:42 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000100)=0xffffffdb)

[  693.221998] Bluetooth: Invalid header checksum
14:31:42 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x300)

14:31:42 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x40087602, &(0x7f0000000140))

[  693.341139] Bluetooth: Invalid header checksum
[  693.345663] Bluetooth: Invalid esc byte 0x00
[  693.429890] Bluetooth: Invalid esc byte 0x00
[  693.450898] Bluetooth: Invalid header checksum
[  693.561717] Bluetooth: Invalid header checksum
14:31:42 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x4020940d, &(0x7f0000000140))

14:31:42 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100))

14:31:42 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0xc0189436, &(0x7f0000000100)=0xffffffdb)

14:31:42 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x500)

14:31:42 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(0x0, 0x23)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
wait4(r4, 0x0, 0x20000000, &(0x7f00000000c0))
setpgid(r4, 0x0)

14:31:42 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
getsockopt$packet_buf(r4, 0x107, 0x5, &(0x7f0000000000)=""/54, &(0x7f0000000140)=0x36)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r5, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r5, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x3, 0xfe, "f9f9ec40ce622558"})
syz_open_pts(r5, 0x81)
fadvise64(r5, 0x1, 0xc7a, 0x3)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  693.829275] Bluetooth: Invalid esc byte 0x00
14:31:43 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
sendto(r1, &(0x7f00000000c0)="f2435e150badc59b6050e46f6e23da68de4ba106dce795cf86b066e314972a2f1c7681b7c9821a2f5ec87b2734032ff7df22a1fe3490a7369f694b7448565f87b4779d01ac2a9e998054226e50e6aee60d6e9823c3782bcd8279d1b516a471a0a1", 0x61, 0x4000, &(0x7f0000000140)=@sco={0x1f, @none}, 0x80)

14:31:43 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
creat(&(0x7f0000000100)='./file0\x00', 0x88)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:43 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100))

[  693.944855] Bluetooth: Invalid esc byte 0x00
14:31:43 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0xc020660b, &(0x7f0000000100)=0xffffffdb)

[  694.000913] Bluetooth: Invalid header checksum
[  694.005876] Bluetooth: Invalid header checksum
14:31:43 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x80045432, &(0x7f0000000140))

14:31:43 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000000), 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000180)={0x0, 0x9}, 0x8)
getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e22, @multicast1}}, [0x5, 0x4, 0x1, 0x7, 0x0, 0x0, 0x0, 0x7f, 0x7f7, 0x101, 0x10001, 0x0, 0x7, 0xfffffffffffffe01, 0x4]}, &(0x7f0000000140)=0x100)
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
r3 = socket(0x11, 0x800000003, 0x8)
getsockopt$sock_int(r3, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000095dff8)={0x1, [<r6=>0x0]}, &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x77, &(0x7f0000000000)={r6}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000180)={r6, 0x9}, 0x8)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r2, 0x84, 0x1, &(0x7f00000000c0)={r6, 0x0, 0x33e, 0xa2d, 0x7, 0x7}, 0x14)

14:31:43 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x600)

14:31:43 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100))

[  694.110846] Bluetooth: Too short H5 packet
[  694.115371] Bluetooth: Invalid header checksum
14:31:43 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = syz_open_dev$vcsu(&(0x7f0000000100)='/dev/vcsu#\x00', 0xffff, 0xa400)
renameat(r2, &(0x7f00000000c0)='./file0\x00', r3, &(0x7f0000000140)='./file0\x00')
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r4, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000180)=[@timestamp, @mss={0x2, 0x10000}, @mss={0x2, 0x7}, @timestamp, @mss={0x2, 0x5}, @timestamp, @mss={0x2, 0x1}, @sack_perm], 0x8)

[  694.220751] Bluetooth: Invalid header checksum
[  694.226969] Bluetooth: Invalid esc byte 0x00
14:31:43 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x80045440, &(0x7f0000000140))

14:31:43 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, 0x0)

[  694.331675] Bluetooth: Invalid header checksum
[  694.338289] Bluetooth: Invalid esc byte 0x00
[  694.442184] Bluetooth: Invalid header checksum
[  694.550643] Bluetooth: Invalid header checksum
[  694.660648] Bluetooth: Invalid header checksum
14:31:44 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
ioctl$GIO_UNISCRNMAP(r1, 0x4b69, &(0x7f0000000000)=""/39)
r2 = socket$inet6(0xa, 0x803, 0x7f)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x700)

14:31:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffc0)

14:31:44 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r0, 0x200004)
sendfile(0xffffffffffffffff, r0, 0x0, 0x80001d00c0d0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f0000000200)={0x0, 0x0, 0x2, 0x7fffffff, 0x16, "000000e9ffffff0500"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x400, 0x0, 0x0, 0x0, "f9f9ec1ea5abab58"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000140)={0xfffffff, 0x23, 0x8000, <r3=>r2, 0x0, &(0x7f0000000100)={0x9909d3, 0x2, [], @p_u32=&(0x7f00000000c0)=0x1ff}})
ioctl$UI_GET_SYSNAME(r3, 0x8040552c, &(0x7f0000000180))
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r4 = gettid()
ptrace(0x4206, r4)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x4000000a, &(0x7f0000000000))

14:31:44 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, 0x0)

14:31:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x80086601, &(0x7f0000000140))

[  694.956947] Bluetooth: Invalid esc byte 0x00
14:31:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x80087601, &(0x7f0000000140))

14:31:44 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, 0x0)

[  695.073973] Bluetooth: Too short H5 packet
[  695.078699] Bluetooth: Invalid header checksum
[  695.087517] Bluetooth: Invalid esc byte 0x00
[  695.093429] Bluetooth: Invalid header checksum
[  695.180895] Bluetooth: Invalid header checksum
14:31:44 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x1200)

14:31:44 executing program 1 (fault-call:6 fault-nth:0):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:44 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f0000000000)={'HL\x00'}, &(0x7f0000000140)=0x1e)
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r3, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00')
r5 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6(0xa, 0xa, 0x1ff)
sendmsg$TIPC_NL_BEARER_ENABLE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES16=r4, @ANYBLOB="6ffe000000000000000003000000140001800f00010069623a697036677265300000"], 0x3}}, 0x0)
sendmsg$TIPC_NL_LINK_GET(r3, &(0x7f00000005c0)={&(0x7f0000000180), 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB="94030000", @ANYRES16=r4, @ANYBLOB="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"], 0x394}, 0x1, 0x0, 0x0, 0x8080}, 0x4880)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  695.290640] Bluetooth: Invalid header checksum
[  695.309895] Bluetooth: Invalid esc byte 0x00
14:31:44 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000140))

[  695.390649] FAULT_INJECTION: forcing a failure.
[  695.390649] name failslab, interval 1, probability 0, space 0, times 0
[  695.404544] CPU: 0 PID: 22745 Comm: syz-executor.1 Not tainted 4.19.114-syzkaller #0
[  695.411828] Bluetooth: Invalid header checksum
[  695.412471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  695.426424] Call Trace:
[  695.429043]  dump_stack+0x188/0x20d
[  695.432703]  should_fail.cold+0xa/0x1b
[  695.436686]  ? fault_create_debugfs_attr+0x1e0/0x1e0
[  695.441797]  ? __lock_is_held+0xad/0x140
[  695.445891]  __should_failslab+0x115/0x180
[  695.450141]  should_failslab+0x5/0xf
[  695.453866]  kmem_cache_alloc_node_trace+0x272/0x750
[  695.458971]  ? mark_held_locks+0xf0/0xf0
[  695.463044]  ? perf_trace_lock_acquire+0xf5/0x530
[  695.467911]  __get_vm_area_node+0x128/0x3a0
[  695.472228]  __vmalloc_node_range+0xd8/0x790
[  695.476625]  ? n_tty_open+0x16/0x160
[  695.480339]  ? n_tty_open+0x16/0x160
[  695.484070]  vzalloc+0x67/0x80
[  695.487260]  ? n_tty_open+0x16/0x160
[  695.490981]  n_tty_open+0x16/0x160
[  695.494542]  ? n_tty_set_termios+0xe00/0xe00
[  695.498949]  tty_ldisc_open.isra.0+0x81/0xc0
[  695.503370]  tty_set_ldisc+0x2bf/0x640
[  695.507271]  tty_ioctl+0x616/0x1420
[  695.510923]  ? tty_vhangup+0x30/0x30
[  695.514652]  ? mark_held_locks+0xf0/0xf0
[  695.518708]  ? perf_trace_lock_acquire+0xf5/0x530
[  695.523581]  ? tty_vhangup+0x30/0x30
[  695.527307]  do_vfs_ioctl+0xcda/0x12e0
[  695.531205]  ? selinux_file_ioctl+0x46c/0x5d0
[  695.535693]  ? selinux_file_ioctl+0x125/0x5d0
[  695.540294]  ? check_preemption_disabled+0x41/0x280
[  695.545336]  ? ioctl_preallocate+0x200/0x200
[  695.549756]  ? selinux_file_mprotect+0x600/0x600
[  695.554508]  ? __fget+0x340/0x510
[  695.557950]  ? iterate_fd+0x350/0x350
[  695.561897]  ? security_file_ioctl+0x6c/0xb0
[  695.566320]  ksys_ioctl+0x9b/0xc0
[  695.569772]  __x64_sys_ioctl+0x6f/0xb0
[  695.573650]  ? lockdep_hardirqs_on+0x40b/0x5d0
[  695.578223]  do_syscall_64+0xf9/0x620
[  695.582029]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  695.587215] RIP: 0033:0x45c889
[  695.590410] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  695.609323] RSP: 002b:00007fd5ade70c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  695.617026] RAX: ffffffffffffffda RBX: 00007fd5ade716d4 RCX: 000000000045c889
[  695.624300] RDX: 0000000020000100 RSI: 0000000000005423 RDI: 0000000000000003
[  695.631575] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  695.638883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  695.646148] R13: 0000000000000582 R14: 00000000004c81b7 R15: 0000000000000000
[  695.656793] syz-executor.1: vmalloc: allocation failure: 9088 bytes, mode:0x6080c0(GFP_KERNEL|__GFP_ZERO), nodemask=(null)
[  695.663900] Bluetooth: Too short H5 packet
[  695.672715] Bluetooth: Invalid header checksum
[  695.674370] Bluetooth: Invalid esc byte 0x00
[  695.682653] syz-executor.1 cpuset=/ mems_allowed=0-1
[  695.685713] Bluetooth: Invalid header checksum
[  695.691708] CPU: 0 PID: 22745 Comm: syz-executor.1 Not tainted 4.19.114-syzkaller #0
[  695.700978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  695.710322] Call Trace:
[  695.712911]  dump_stack+0x188/0x20d
[  695.716566]  warn_alloc.cold+0x7b/0x173
[  695.720577]  ? zone_watermark_ok_safe+0x260/0x260
[  695.725432]  ? rcu_read_lock_sched_held+0x10a/0x130
[  695.730466]  ? perf_trace_lock_acquire+0xf5/0x530
[  695.735317]  ? __get_vm_area_node+0x2df/0x3a0
[  695.739822]  __vmalloc_node_range+0x499/0x790
[  695.744330]  ? n_tty_open+0x16/0x160
[  695.748039]  vzalloc+0x67/0x80
[  695.751226]  ? n_tty_open+0x16/0x160
[  695.754934]  n_tty_open+0x16/0x160
[  695.758816]  ? n_tty_set_termios+0xe00/0xe00
[  695.763228]  tty_ldisc_open.isra.0+0x81/0xc0
[  695.767627]  tty_set_ldisc+0x2bf/0x640
[  695.771515]  tty_ioctl+0x616/0x1420
[  695.775139]  ? tty_vhangup+0x30/0x30
[  695.778843]  ? mark_held_locks+0xf0/0xf0
[  695.782915]  ? perf_trace_lock_acquire+0xf5/0x530
[  695.787756]  ? tty_vhangup+0x30/0x30
[  695.791462]  do_vfs_ioctl+0xcda/0x12e0
[  695.795345]  ? selinux_file_ioctl+0x46c/0x5d0
[  695.799834]  ? selinux_file_ioctl+0x125/0x5d0
[  695.804323]  ? check_preemption_disabled+0x41/0x280
[  695.809342]  ? ioctl_preallocate+0x200/0x200
[  695.813745]  ? selinux_file_mprotect+0x600/0x600
[  695.818507]  ? __fget+0x340/0x510
[  695.821954]  ? iterate_fd+0x350/0x350
[  695.825750]  ? security_file_ioctl+0x6c/0xb0
[  695.830154]  ksys_ioctl+0x9b/0xc0
[  695.833607]  __x64_sys_ioctl+0x6f/0xb0
[  695.837486]  ? lockdep_hardirqs_on+0x40b/0x5d0
[  695.842064]  do_syscall_64+0xf9/0x620
[  695.845859]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  695.851040] RIP: 0033:0x45c889
[  695.854225] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  695.873133] RSP: 002b:00007fd5ade70c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  695.880831] RAX: ffffffffffffffda RBX: 00007fd5ade716d4 RCX: 000000000045c889
[  695.888097] RDX: 0000000020000100 RSI: 0000000000005423 RDI: 0000000000000003
[  695.895357] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000
[  695.902612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[  695.910141] R13: 0000000000000582 R14: 00000000004c81b7 R15: 0000000000000000
[  695.929280] Mem-Info:
[  695.944759] active_anon:340513 inactive_anon:28035 isolated_anon:0
[  695.944759]  active_file:14598 inactive_file:21114 isolated_file:0
[  695.944759]  unevictable:0 dirty:155 writeback:0 unstable:0
[  695.944759]  slab_reclaimable:18139 slab_unreclaimable:130491
[  695.944759]  mapped:64651 shmem:6334 pagetables:5373 bounce:0
[  695.944759]  free:953240 free_pcp:246 free_cma:0
[  695.991664] Bluetooth: Invalid header checksum
[  696.006570] Bluetooth: Invalid header checksum
[  696.014190] Node 0 active_anon:1286924kB inactive_anon:74016kB active_file:58164kB inactive_file:61108kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:257140kB dirty:708kB writeback:0kB shmem:17104kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 598016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  696.044670] Node 1 active_anon:75128kB inactive_anon:38124kB active_file:228kB inactive_file:24748kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:1464kB dirty:12kB writeback:0kB shmem:8232kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no
[  696.055271] Bluetooth: Invalid header checksum
[  696.080767] Node 0 DMA free:12068kB min:220kB low:272kB high:324kB active_anon:3572kB inactive_anon:0kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:16kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  696.116352] lowmem_reserve[]: 0 2533 2535 2535 2535
[  696.121918] Node 0 DMA32 free:161628kB min:36064kB low:45080kB high:54096kB active_anon:1283356kB inactive_anon:74016kB active_file:58164kB inactive_file:62208kB unevictable:0kB writepending:652kB present:3129332kB managed:2597388kB mlocked:0kB kernel_stack:15424kB pagetables:20088kB bounce:0kB free_pcp:1048kB local_pcp:480kB free_cma:0kB
[  696.156617] lowmem_reserve[]: 0 0 1 1 1
[  696.161055] Node 0 Normal free:8kB min:24kB low:28kB high:32kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:1908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  696.187918] lowmem_reserve[]: 0 0 0 0 0
[  696.192132] Node 1 Normal free:3636424kB min:53796kB low:67244kB high:80692kB active_anon:75128kB inactive_anon:38124kB active_file:228kB inactive_file:24748kB unevictable:0kB writepending:12kB present:3932160kB managed:3870168kB mlocked:0kB kernel_stack:864kB pagetables:1296kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  696.236210] lowmem_reserve[]: 0 0 0 0 0
[  696.242054] Node 0 DMA: 59*4kB (UME) 45*8kB (UME) 47*16kB (UME) 31*32kB (UME) 26*64kB (UME) 7*128kB (U) 6*256kB (UME) 3*512kB (UME) 2*1024kB (UE) 1*2048kB (E) 0*4096kB = 12068kB
[  696.304732] audit: type=1800 audit(1586615505.432:7265): pid=22753 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.4" name="bus" dev="sda1" ino=16190 res=0
[  696.325154] Node 0 DMA32: 2744*4kB (UMEH) 3118*8kB (UMEH) 2018*16kB (UMEH) 1338*32kB (UMEH) 525*64kB (UMEH) 91*128kB (UMH) 9*256kB (M) 3*512kB (UM) 3*1024kB (UMH) 0*2048kB 0*4096kB = 163184kB
[  696.367979] Node 0 Normal: 0*4kB 1*8kB (U) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  696.396549] Node 1 Normal: 1060*4kB (UME) 1081*8kB (UM) 885*16kB (UME) 507*32kB (UME) 239*64kB (UME) 92*128kB (UME) 48*256kB (UM) 29*512kB (UE) 12*1024kB (UM) 4*2048kB (U) 859*4096kB (UM) = 3636424kB
14:31:45 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x200000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:45 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/qat_adf_ctl\x00', 0x21c800, 0x0)
ioctl$KVM_SET_DEVICE_ATTR(r0, 0x4018aee1, &(0x7f0000000140)={0x0, 0x1, 0xfffffffffffffffe, &(0x7f0000000100)=0xc1b0})
r1 = gettid()
tkill(r1, 0xb)
ptrace(0x4206, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x2000)

14:31:45 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000140))

14:31:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsu\x00', 0x202481, 0x0)
getsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000000140)=0x8, &(0x7f0000000180)=0x1)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  696.428207] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  696.447156] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  696.492188] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  696.504097] Bluetooth: Invalid esc byte 0x00
[  696.512005] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  696.527357] 41628 total pagecache pages
[  696.532321] 0 pages in swap cache
[  696.535904] Swap cache stats: add 0, delete 0, find 0/0
14:31:45 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/video1\x00', 0x2, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  696.545847] Free swap  = 0kB
[  696.548903] Total swap = 0kB
[  696.556401] 1965979 pages RAM
[  696.559533] 0 pages HighMem/MovableOnly
[  696.574112] 344636 pages reserved
[  696.578059] 0 pages cma reserved
14:31:45 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
socket$inet(0x2, 0xa, 0x1f)
ptrace(0x4206, r0)
ptrace$setregs(0xf, r0, 0x1f, &(0x7f00000000c0)="08325f5561c1e29502623f8eefa542e2a63c637b9e3f0fa88f945ef75f00a5fce122e189251c91d003473521ff3dca6173f66213dd50375317e5f76bd7460a6614bbf4a38a85e59ea8367e150da64aea1f00de0be039e851ecc00ad2921cedd874d2998d02ca8877a3f75c01778177e8195dc886a296d33eb4856d6e28e8dc76f752f23748e30096a677e4e777602b6c9e306e71632f634735392ed2a702654a6c5eefc5bbe337a610130c46d306cc086d5f86d5d2276f")
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:45 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

[  696.607561] Bluetooth: Invalid esc byte 0x00
14:31:45 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0xc0189436, &(0x7f0000000140))

14:31:45 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
syz_open_dev$vcsu(&(0x7f0000000000)='/dev/vcsu#\x00', 0x1, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:45 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x3f00)

14:31:45 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x2, &(0x7f0000000100))

[  696.803789] Bluetooth: Invalid esc byte 0x00
14:31:46 executing program 0:
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r0, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x5, &(0x7f0000000000)=0x1f, 0x4)
ioctl$BLKFLSBUF(r0, 0x1261, &(0x7f0000000000)=0x7fffffff)
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
tkill(r1, 0xb)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)
write$P9_RCREATE(0xffffffffffffffff, &(0x7f0000000040)={0x18, 0x73, 0x2, {{0x1, 0x1, 0x4}, 0x9}}, 0x18)
ptrace(0x4206, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x33)
ptrace$setregs(0xd, r4, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
wait4(0x0, 0x0, 0x1, &(0x7f0000000140))

14:31:46 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r3, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r4, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$inet_mreqn(r4, 0x0, 0x24, &(0x7f00000001c0)={@initdev, @initdev, <r5=>0x0}, &(0x7f0000000200)=0xc)
setsockopt$packet_drop_memb(r3, 0x107, 0x2, &(0x7f0000000240)={r5, 0x1, 0x6, @dev={[], 0xd}}, 0x10)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:46 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$SCSI_IOCTL_STOP_UNIT(r2, 0x6)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  696.902354] Bluetooth: Invalid esc byte 0x00
14:31:46 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000000)=0x7, 0x4)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0xc020660b, &(0x7f0000000140))

14:31:46 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000340)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000bc0)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, 0x1, 0x2, [{{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @mcast2}}]}, 0x190)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000000)={0x1, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90)
ptrace(0x4206, r0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x6000)

14:31:46 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x4b47, &(0x7f0000000100))

[  697.143304] Bluetooth: Invalid esc byte 0x00
14:31:46 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x33)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
ptrace(0x10, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(r0, 0x0, 0x0, &(0x7f0000000000))

[  697.171990] Bluetooth: Too short H5 packet
[  697.176327] Bluetooth: Invalid header checksum
[  697.199420] Bluetooth: Invalid header checksum
[  697.250970] Bluetooth: Invalid esc byte 0x00
14:31:46 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ptrace$setopts(0x4206, 0x0, 0x0, 0x0)
tkill(0x0, 0x33)
ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, 0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mountstats\x00')
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000100)='./cgroup/syz0\x00', 0x200002, 0x0)
r5 = openat$cgroup_procs(r4, &(0x7f0000000440)='tasks\x00', 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000600)={r6, 0xc0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r7=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x2, &(0x7f0000000500)=ANY=[@ANYRESHEX=r5], &(0x7f0000000000)='GPL\x00', 0x0, 0xc0, &(0x7f000000cf3d)=""/192, 0x0, 0x2, [], 0x0, 0x14, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000400)={0x3, 0x4, 0x401}, 0x10, r7}, 0x78)
r8 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=r7, 0x4)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r8, &(0x7f0000000180)={0x40000012})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  697.300747] Bluetooth: Invalid header checksum
14:31:46 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x12e)
r3 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r4 = socket(0x10, 0x0, 0x0)
stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0})
sendmsg$netlink(r4, &(0x7f0000002100)={&(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfb, 0x2}, 0xc, 0x0, 0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="00000000180000000000", @ANYRES32=r4, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r3, @ANYRES32, @ANYBLOB="000000001c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYRES32=r5, @ANYBLOB='\x00\x00\x00\x00'], 0xd2}, 0x4)
setregid(0x0, r5)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r6 = gettid()
ptrace$setopts(0x4206, r6, 0x0, 0x0)
tkill(r6, 0x33)
ptrace$setregs(0xd, r6, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r6, 0x0, 0x0)
wait4(0xffffffffffffffff, 0x0, 0x20000000, &(0x7f00000000c0))

14:31:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x1000000)

14:31:46 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r3, 0x8982, &(0x7f00000000c0)={0x2, 'ip6_vti0\x00', {0xff}, 0x6})
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:46 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x4b49, &(0x7f0000000100))

[  697.439111] Bluetooth: Invalid esc byte 0x00
14:31:46 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(r1, 0x541c, &(0x7f0000000000)={0x6, 0x97})

[  697.502477] audit: type=1800 audit(1586615506.632:7266): pid=22843 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.4" name="bus" dev="sda1" ino=16168 res=0
[  697.530366] Bluetooth: Invalid esc byte 0x00
[  697.535631] Bluetooth: Invalid esc byte 0x00
14:31:46 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_GET(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000001040101000000000000007b07000008060002400600000005000300210000000c0004800800027d2f75b84e"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x800)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x2, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r4, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r4, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r4, 0x0)
getsockopt$IP_SET_OP_VERSION(r3, 0x1, 0x53, &(0x7f0000000300), &(0x7f0000000340)=0x8)
ioctl$TIOCCBRK(r4, 0x5428)
prctl$PR_GET_NO_NEW_PRIVS(0x27)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(r3, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000140)=0xc)

14:31:46 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x2000000)

14:31:46 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000000c0), 0x4)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
wait4(0x0, 0x0, 0x2, &(0x7f0000000000))

14:31:46 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5409, &(0x7f0000000100))

14:31:46 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x2)

[  697.752064] Bluetooth: Invalid esc byte 0x00
14:31:46 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
ioctl$GIO_CMAP(0xffffffffffffffff, 0x4b70, &(0x7f00000000c0))
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
syz_mount_image$ext4(&(0x7f00000001c0)='ext2\x00', &(0x7f0000000200)='./file1\x00', 0x8, 0x6, &(0x7f0000000540)=[{&(0x7f0000000240)="9e55f7f90de6cf2b3cb11fd5d3853df2c15b3e36bfe6226c81437ddb2f7e2bb7b43e369aa37324718aaf3fef", 0x2c, 0xb97}, {&(0x7f0000000280), 0x0, 0x5}, {&(0x7f00000002c0)="1ef06e54db91eca15426df8904acd5e4e4748dd2feb02ca9236d884eaba79273e499b4f05f6028343abcd7cb72d530eaf033a0d93d6a4adadab9fd4d140c3ef0fc1db0c6134f7926393b060b6b48a51a", 0x50, 0x85}, {&(0x7f0000000340)="63c68a5fd03caade3d6a6ca4d7a2bc053b4e76a7f4a6b9d5dbb8e8761d3aa21ff441edc956a5986db98700b5d359bf12fbd2749e8d666969844b5b950beda409608958de42427b5e16e81ede523a670d4f077309988bcf0edfd942b24b05aef54f0ffdaafff06b25006a71d99e09b674de96c279933ddf71f87336e9a3adc2114db24f0ac72ca53930f1c171b2ed5aeedd72257b929201ca665b80e8f24a761305f79911448208732f1d48bed539e7d19abe537ee271817709552178faeb0647c387990954306bc8a36a6e95ff81b5000a6a5e29d94dcc4f51e786fca07d72fba341e463420e6bfd4e3e2ee1d0508ea98b3d19387d60", 0xf6, 0x7ab2}, {&(0x7f0000000440)="55568d6fab4c27f584f680b131d24f49d689552969bab5ed844b97ac83649f9285dd1cb2d9546a144dac6d8d214313cd7b4f22a3ef4417a9f2cd1eb780cb5e911b3294da8b07da587102f3859ef20c9afb236158dce5f15079e80c3ac383e4d66da6d95cac9ec4702d3034edcd5b60caf2bc8db482650c86aeadc5bc88c42999fa585f0c8bcb24807fb897478da4365c32a3", 0x92, 0xca}, {&(0x7f0000000500)="374191f3f26ff0aa4c4c6af2390044b264ab737c3fe0e62a37f5c27488", 0x1d, 0x762}], 0x1002000, &(0x7f0000000600)={[{@user_xattr='user_xattr'}, {@i_version='i_version'}, {@bsdgroups='bsdgroups'}], [{@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}]})
ioctl$KVM_SET_CPUID(r1, 0x4008ae8a, &(0x7f0000000100)={0x7, 0x0, [{0x80000001, 0x7, 0x8, 0xfffffc00, 0xe59}, {0x3, 0x8, 0x4, 0x8, 0x2}, {0x40000000, 0xa993c794, 0x9, 0x1000, 0xb76}, {0x80000007, 0x6, 0x6, 0x99, 0x1}, {0x0, 0x2, 0x5, 0xe08, 0x8}, {0xc0000006, 0x0, 0x5, 0xb6, 0x5}, {0x2, 0x7, 0x5, 0x8000, 0x6}]})
tkill(r0, 0xb)
ptrace(0x4206, r0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r5 = fcntl$dupfd(r4, 0x0, 0xffffffffffffffff)
setsockopt$inet6_MCAST_JOIN_GROUP(r5, 0x29, 0x2a, &(0x7f0000000640)={0x59, {{0xa, 0x4e21, 0x6, @ipv4={[], [], @local}, 0x80}}}, 0x88)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  697.781707] Bluetooth: Too short H5 packet
[  697.786298] Bluetooth: Invalid header checksum
[  697.800549] Bluetooth: Too short H5 packet
[  697.805336] Bluetooth: Invalid header checksum
[  697.809854] Bluetooth: Invalid header checksum
[  697.832839] Bluetooth: Invalid esc byte 0x02
[  697.835889] Bluetooth: Invalid header checksum
[  697.863994] Bluetooth: Invalid esc byte 0x00
[  697.890463] Bluetooth: Invalid header checksum
[  697.912431] Bluetooth: Invalid header checksum
14:31:47 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x3000000)

14:31:47 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x3)

14:31:47 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x540b, &(0x7f0000000100))

[  697.993745] Bluetooth: Invalid esc byte 0x00
[  698.000591] Bluetooth: Invalid header checksum
[  698.023026] Bluetooth: Invalid header checksum
[  698.053592] Bluetooth: Invalid esc byte 0x03
[  698.084949] Bluetooth: Invalid esc byte 0x00
14:31:47 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0x9004180, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
msgctl$IPC_INFO(0x0, 0x3, &(0x7f00000000c0)=""/215)
tkill(r0, 0xb)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x33)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(r2, 0x33)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
ptrace(0x4206, r2)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  698.111579] Bluetooth: Invalid header checksum
14:31:47 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
r1 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_ADDFB(r1, 0xc01c64ae, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x20})
tkill(r0, 0xb)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r2, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$KVM_SET_TSS_ADDR(r2, 0xae47, 0x0)
ptrace(0x4206, r0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000100))

[  698.140835] Bluetooth: Invalid header checksum
[  698.225581] Bluetooth: Invalid header checksum
[  698.255007] Bluetooth: Invalid header checksum
[  698.330785] Bluetooth: Invalid header checksum
[  698.360338] Bluetooth: Invalid header checksum
[  698.440567] Bluetooth: Invalid header checksum
14:31:47 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r0, 0x5406, &(0x7f0000000000)={0x5, 0x2, 0x7, 0x7, 0x0, "f9f9ec40ce622558"})
r1 = syz_open_pts(r0, 0x0)
ioctl$TCSETSF(r1, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r3 = syz_open_pts(r2, 0x0)
ioctl$TCSETSF(r3, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000040000000000000002000724a00"})
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
r4 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nvme-fabrics\x00', 0x100, 0x0)
getpeername$inet6(r4, &(0x7f0000000140)={0xa, 0x0, 0x0, @ipv4={[], [], @multicast1}}, &(0x7f00000001c0)=0x1c)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:47 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x4)

14:31:47 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x4000000)

14:31:47 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x540c, &(0x7f0000000100))

14:31:47 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x33)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
tkill(r1, 0xb)
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, 0x0, 0x0)
ioctl$sock_SIOCOUTQ(r2, 0x5411, &(0x7f00000000c0))
ptrace(0x4206, r0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  698.785161] Bluetooth: Invalid esc byte 0x04
[  698.794024] Bluetooth: Invalid esc byte 0x00
[  698.902287] Bluetooth: Invalid esc byte 0x00
14:31:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
pipe(&(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$DRM_IOCTL_ADD_CTX(r3, 0xc0086420, &(0x7f0000000440)={<r4=>0x0})
ioctl$DRM_IOCTL_LOCK(0xffffffffffffffff, 0x4008642a, &(0x7f0000000480)={r4, 0x2})
ioctl$DRM_IOCTL_LOCK(r2, 0x4008642a, &(0x7f0000000000)={r4, 0x2})

14:31:48 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
ioctl$SNDRV_PCM_IOCTL_DRAIN(0xffffffffffffffff, 0x4144, 0x0)
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:48 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x540d, &(0x7f0000000100))

14:31:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x5000000)

14:31:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x5)

14:31:48 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x59, 0x59, 0xc, [@datasec={0x2, 0x2, 0x0, 0xf, 0x1, [{0x1, 0x5, 0x4bd}, {0x4, 0x78, 0x4}], "97"}, @fwd={0x3}, @fwd={0xa}, @enum={0xe, 0x2, 0x0, 0x6, 0x4, [{0x6, 0xbf99}, {0x10, 0x1}]}]}, {0x0, [0x61, 0x0, 0x0, 0x30, 0x2e, 0x61, 0x5f, 0x2e, 0x30, 0x30]}}, &(0x7f0000000140)=""/187, 0x80, 0xbb, 0x1}, 0x20)

[  699.116733] Bluetooth: Invalid esc byte 0x00
[  699.123294] Bluetooth: Invalid esc byte 0x05
14:31:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x8000000228006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x8, 0x0, 0x0, 0x0, "99000000000000000000002000724a00000010"})
epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r4)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r5 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, &(0x7f00000001c0))
fallocate(r5, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r5, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$VIDIOC_S_HW_FREQ_SEEK(r5, 0x40305652, &(0x7f0000000140)={0xfffffffe, 0x22eeb29695cba7f6, 0x8, 0x0, 0x2, 0x800, 0xffff1146})
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  699.212544] Bluetooth: Invalid esc byte 0x00
14:31:48 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
capget(&(0x7f00000000c0)={0x20080522, 0xffffffffffffffff}, &(0x7f0000000100)={0x3, 0x80ae, 0x1, 0x10001, 0x2, 0x1000})
r0 = syz_open_dev$mouse(&(0x7f0000000140)='/dev/input/mouse#\x00', 0x10000, 0x585080)
sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x8001}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x4040894)
r1 = gettid()
tkill(r1, 0xb)
ptrace(0x4206, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:48 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x6)

14:31:48 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x6000000)

14:31:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000001c0)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000180)={0x3, &(0x7f0000000140)=[{0x7, 0x8, 0x2, 0x3}, {0x8ca6, 0x1, 0x0, 0xc}, {0x57d0, 0x8, 0x1, 0xe114}]})
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PIO_UNISCRNMAP(r2, 0x4b6a, &(0x7f0000000000)="77789c0d3cd4cd3d9111270d1d6d4a2cb351e62de762fd92c4bb7f541f9f811ed37abb31518c2fe0fa3aadc5b6dbd28edb4be016")
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x6)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000000)='IPVS\x00')
sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, r2, 0xf01}, 0x14}}, 0x0)
sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="b33626a040db65c56b237373cc5e9c2f3d6e194608e4617365e07a7a6ba6543b08b557f0f5b7b02760a65809ff56d5fbd135e04b00f0709686506dc117e812bb1006e0c4d7718f221c15f73f11f28254c4512137d020fb2349bd088b818c5e90053932296a03878cd45b308a4f0dd13400d3755a70b8b74580d85f015b6095f4c718f6", @ANYRES16=r2, @ANYBLOB="00012abd7000fddbdf250200000008000500ffffffff080006000300000008000500ff0f0000380001800800050002000000060002001d00000014000300fe8000000000000000000000000000aa0800080007000000060004004e2200001c0001800800050048ea000008000800080000000800050004000000080005002d0f0000"], 0x88}, 0x1, 0x0, 0x0, 0x4000}, 0x20000000)
ioctl$KDADDIO(r0, 0x400455c8, 0x104000000000002)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0x7)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:48 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
tkill(0x0, 0xb)
ptrace(0x4206, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  699.620062] Bluetooth: Invalid esc byte 0x00
[  699.629421] Bluetooth: Invalid esc byte 0x06
14:31:48 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
lsetxattr$trusted_overlay_nlink(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000140)='trusted.overlay.nlink\x00', &(0x7f0000000000)={'L+', 0x3f}, 0x16, 0x3)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r2, 0xc0205649, &(0x7f0000000280)={0xeb8ffff, 0x9, 0x400, 0xffffffffffffffff, 0x0, &(0x7f0000000240)={0x990a6b, 0x8000, [], @p_u16=&(0x7f0000000200)=0xff}})
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f00000001c0))

14:31:48 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5413, &(0x7f0000000100))

14:31:48 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
r5 = openat(r4, &(0x7f00000000c0)='./file0\x00', 0x401c0, 0x18)
ioctl$VIDIOC_G_INPUT(r2, 0x80045626, &(0x7f0000000140))
openat(r5, &(0x7f0000000100)='./file0\x00', 0x40000, 0xf8afb0f336a388d9)

[  699.727577] Bluetooth: Invalid esc byte 0x00
14:31:48 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
ioctl$TIOCGPTPEER(r0, 0x5441, 0x8)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:48 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x7)

14:31:49 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x7000000)

[  699.918892] Bluetooth: Invalid esc byte 0x00
[  699.925850] Bluetooth: Too short H5 packet
[  699.931672] Bluetooth: Invalid header checksum
[  699.936635] Bluetooth: Invalid esc byte 0x07
[  699.941004] Bluetooth: Invalid header checksum
[  700.047413] Bluetooth: Invalid esc byte 0x00
14:31:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5414, &(0x7f0000000100))

14:31:49 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
syslog(0x9, &(0x7f00000000c0)=""/41, 0x29)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x3, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
wait4(r0, 0x0, 0x1, &(0x7f0000000000))
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r1, 0xffffffffffffffff, 0x0, 0x80001d00c0d1)
setsockopt$bt_hci_HCI_TIME_STAMP(r5, 0x0, 0x3, &(0x7f0000000100)=0x9f81, 0x4)

14:31:49 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x10)

14:31:49 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x10000000)

14:31:49 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x121880, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
r2 = syz_open_dev$vcsa(&(0x7f0000000140)='/dev/vcsa#\x00', 0x0, 0x8000)
ioctl$SIOCX25GSUBSCRIP(r2, 0x89e0, &(0x7f00000002c0)={'veth1_to_team\x00', 0xb596, 0x80000000})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r3, 0x0)
ioctl$EXT4_IOC_MIGRATE(r3, 0x6609)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
ioctl$KDADDIO(r1, 0x400455c8, 0x2000000000002)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000c2bbd7000fcdbdf2506fd00000800b457ecf15d2508500d000100000008000a00feff000005002100000000000500070003000000050007000300000006001c0006000000"], 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x20000004)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:49 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f00000000c0)={0x554586e1, 0xc5, 0x5, 0x3, 0x3}, 0x14)
ptrace(0x4206, r0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
r4 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r4, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r4, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$VHOST_GET_FEATURES(r4, 0x8008af00, &(0x7f0000000100))
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  700.278173] Bluetooth: Invalid esc byte 0x10
[  700.295604] Bluetooth: Invalid esc byte 0x00
14:31:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5415, &(0x7f0000000100))

14:31:49 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
dup(r1)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
r4 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r4)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r5, 0x200004)
sendfile(r4, r5, 0x0, 0x80001d00c0d0)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x4101fb)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  700.437373] Bluetooth: Invalid esc byte 0x00
14:31:49 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x12)

14:31:49 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x12000000)

14:31:49 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5416, &(0x7f0000000100))

[  700.608920] Bluetooth: Invalid esc byte 0x12
[  700.692358] Bluetooth: Invalid esc byte 0x00
[  700.791182] Bluetooth: Invalid esc byte 0x00
14:31:49 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x60)

14:31:50 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
ftruncate(0xffffffffffffffff, 0x200004)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)
ioctl$KVM_HAS_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee3, &(0x7f0000000080)={0x0, 0x66, 0x78, &(0x7f0000000040)=0xeec})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x7, &(0x7f0000000080))
ptrace$cont(0x20, 0x0, 0x0, 0x4695)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f0000000000)=0x8, 0x4)
wait4(r3, 0x0, 0x20000000, &(0x7f00000001c0))
clock_gettime(0x0, &(0x7f0000000100)={<r4=>0x0, <r5=>0x0})
futex(&(0x7f00000000c0), 0x8d, 0x1, &(0x7f0000000140)={r4, r5+30000000}, &(0x7f0000000180)=0x8ce2, 0x1)

14:31:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x20000000)

14:31:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5418, &(0x7f0000000100))

[  700.918314] Bluetooth: Invalid esc byte 0x60
14:31:50 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
mq_notify(r2, &(0x7f00000000c0)={0x0, 0x18, 0x4, @tid=r3})
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  701.029670] Bluetooth: Invalid esc byte 0x00
[  701.129349] Bluetooth: Invalid esc byte 0x00
14:31:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x141001, 0x0)
ioctl$VT_RESIZE(r1, 0x5609, &(0x7f0000000140)={0xffff, 0x9, 0x4a})
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000180)={{0x108, 0x2, 0x3, 0x157, 0x228, 0x100, 0x229, 0x8}, "30f941585b79bc59a9074f003a89157d495ab072d26b200079176c11cf52268b93bc46547da24265117372548a53cb37b8ba9f6a319998ae0d82b60588b87669772580868e1608a8208811dde667ba4f9637f6763cf7bed21472ba407860fc60dcb675c0c248c21e92d051b6e07ccc6ef01b6ecff16497b5dcf289122a34196e8434c7899ab24123428d3aa6c61ae6916978ec8f4f9c7036321eb8fd518c974e63a584fe1240fffbfb5fa0ba1f5350c93163b32d295965a4aefbca1fb48a26f8fe7b06474e25d5955d677bc5fae18a136e5f451ae1bec4b779547cb0f7398885b189f34cee20", [[], [], [], [], [], []]}, 0x706)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:50 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x300)

14:31:50 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
wait4(r3, 0x0, 0x20000000, &(0x7f00000000c0))

14:31:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x541b, &(0x7f0000000100))

14:31:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x3f000000)

[  701.370626] Bluetooth: Invalid esc byte 0x00
[  701.373576] Bluetooth: Invalid esc byte 0x00
14:31:50 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
gettid()
r0 = gettid()
ptrace$setopts(0x4206, r0, 0x0, 0x0)
tkill(r0, 0x33)
ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r0, 0x0, 0x0)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x33)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r1, 0x0, 0x0)
tkill(r1, 0x52)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

[  701.491428] Bluetooth: Invalid esc byte 0x00
14:31:50 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x60000000)

14:31:50 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x541d, &(0x7f0000000100))

14:31:50 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x500)

14:31:50 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r2 = syz_open_pts(r1, 0x0)
link(&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)='./file0\x00')
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611)

14:31:50 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
r2 = dup2(0xffffffffffffffff, r1)
ftruncate(0xffffffffffffffff, 0x200004)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x80001d00c0d0)
ioctl$ASHMEM_GET_PROT_MASK(0xffffffffffffffff, 0x7706, &(0x7f0000000140))
ioctl$SNDRV_PCM_IOCTL_USER_PVERSION(r2, 0x40044104, &(0x7f0000000100)=0x8001)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
r5 = openat(r4, &(0x7f00000000c0)='./file0\x00', 0x380, 0x80)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)

[  701.726028] Bluetooth: Invalid esc byte 0x00
[  701.735881] Bluetooth: Invalid esc byte 0x00
14:31:51 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000380)='/dev/full\x00', 0x200, 0x0)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x0, 0x0, 0x101}, 0x10)
getsockopt$inet_sctp_SCTP_AUTH_ACTIVE_KEY(r3, 0x84, 0x18, &(0x7f00000001c0)={0x0, 0x1f}, &(0x7f0000000340)=0x8)
bind$tipc(r3, 0x0, 0x0)
sendmmsg(r3, 0x0, 0x0, 0x0)
r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000140)='nbd\x00')
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040), 0xc, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYRES16=r4], 0x1}, 0x1, 0x0, 0x0, 0x80}, 0x40000)
sendmsg$NBD_CMD_DISCONNECT(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, r4, 0x2, 0x70bd28, 0x25dfdbfc, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x4000814)
sendmsg$NBD_CMD_DISCONNECT(r2, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, r4, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x14}, 0x4000010)
r5 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
fanotify_mark(0xffffffffffffffff, 0x14, 0x8000012, r5, &(0x7f0000000180)='./file0\x00')
r6 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  701.853151] Bluetooth: Invalid esc byte 0x00
[  701.873596] Bluetooth: Too short H5 packet
[  701.878121] Bluetooth: Invalid header checksum
[  701.894172] Bluetooth: Invalid header checksum
14:31:51 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x600)

14:31:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x541e, &(0x7f0000000100))

14:31:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xc0ffffff)

[  701.985838] Bluetooth: Invalid header checksum
[  702.005217] Bluetooth: Invalid esc byte 0x00
[  702.088708] Bluetooth: Invalid esc byte 0xff
[  702.102621] Bluetooth: Invalid header checksum
[  702.185796] Bluetooth: Invalid esc byte 0xff
14:31:51 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x700)

[  702.221783] Bluetooth: Invalid header checksum
14:31:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5421, &(0x7f0000000100))

14:31:51 executing program 3:
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(0xffffffffffffffff, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x8, 0x5, 0x0, 0x3, 0xb, 0x0, "ee6471b8d750e94adc14f24fcead5294e46b0a3fde2b1040e47b4b7277c686a8e595c8bfd31dfc3ad166de9639ccaf9dbd9c8bb74071f2451b9f887ee15689ad", "67af62369b9a656e2fd92eee4eb6a81a0f93123c92da69c2484df1db102f1b6c1219538d5e5bd4b340ee31538b1ba88e95153762da1a19d313b6488366c00e03", "1d3cc324008d67681ed0256da6ce6ab14d73779cd864cebbfcea90c5fd2efd6e", [0x9, 0x4]})
setsockopt$PNPIPE_ENCAP(r0, 0x113, 0x1, 0x0, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, &(0x7f0000000000), &(0x7f0000000140)=0x40)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r2, 0x400455c8, 0x2)
ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000100))
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(0xffffffffffffffff, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x6)

14:31:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xdcffffff)

[  702.330054] Bluetooth: Invalid header checksum
[  702.343001] Bluetooth: Invalid esc byte 0x00
[  702.397048] Bluetooth: Invalid esc byte 0xff
[  702.442139] Bluetooth: Invalid header checksum
14:31:51 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x1200)

[  702.528172] Bluetooth: Invalid esc byte 0xff
14:31:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5424, &(0x7f0000000100))

[  702.632321] Bluetooth: Invalid esc byte 0x00
14:31:51 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:51 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:51 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x30, &(0x7f0000000000)="ac292b976950da0ecece41164fca751a336b7eb24e255578d5ff3cb2da9edd6ef7745bdfbc4b3ecb9214c09cef547ef0bcd968", 0x33)
close(r0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x4, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendfile(r3, r4, 0x0, 0x80001d00c0d0)
recvfrom$unix(r4, &(0x7f0000000140)=""/209, 0xd1, 0x10001, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:51 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xddffffff)

14:31:51 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5425, &(0x7f0000000100))

14:31:52 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x2000)

[  702.885226] Bluetooth: Invalid esc byte 0xff
14:31:52 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x80000001b1885, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r2 = syz_open_pts(r1, 0x0)
ioctl$BLKALIGNOFF(0xffffffffffffffff, 0x127a, &(0x7f0000000140))
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x3, 0xee0, 0x80000001})
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
ptrace$setregs(0xf, 0x0, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, 0x0, 0x0, 0x0)
sched_setparam(0x0, &(0x7f00000001c0)=0xffffffff)

[  702.979246] Bluetooth: Invalid esc byte 0xff
[  703.026689] Bluetooth: Invalid esc byte 0x00
14:31:52 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5427, &(0x7f0000000100))

14:31:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xfdfdffff)

14:31:52 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x3f00)

14:31:52 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x686e31de1ce22eac, 0x0)
r1 = gettid()
ptrace$setopts(0x4206, r1, 0x0, 0x0)
tkill(r1, 0x1d)
ptrace$setregs(0xd, r1, 0x0, &(0x7f0000000080))
r2 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0xfffffffc, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r3 = fcntl$getown(r2, 0x9)
wait4(r3, 0x0, 0x2, &(0x7f00000001c0))
ptrace$cont(0x7, r1, 0x0, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x29, 0x6, 0x61, 0x7ffd, 0x6, 0x2, 0x2, 0x385695ac, 0xe, 0x2}, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x80000000, &(0x7f0000000100))
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x8001, 0x0)

[  703.268923] Bluetooth: Invalid esc byte 0xff
[  703.317083] Bluetooth: Invalid esc byte 0x00
14:31:52 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdd)

[  703.360988] audit: type=1800 audit(1586615512.492:7267): pid=23276 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=16175 res=0
[  703.376394] Bluetooth: Invalid esc byte 0xff
14:31:52 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
socket$packet(0x11, 0x3, 0x300)

14:31:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5428, &(0x7f0000000100))

14:31:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xfffffdfd)

14:31:52 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
exit(0x2)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f00000000c0))
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r3 = syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCSETSF(r3, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$GIO_FONTX(r3, 0x4b6b, &(0x7f0000000500)={0x1cc, 0x0, &(0x7f0000000100)})
r4 = gettid()
ptrace$setopts(0x4206, r4, 0x0, 0x0)
tkill(r4, 0x33)
ptrace$setregs(0xd, 0x0, 0xffffffffffffffff, &(0x7f0000000080))
ptrace$cont(0x7, r4, 0x0, 0x0)
wait4(r4, 0x0, 0x2, &(0x7f0000000540))

14:31:52 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x6000)

[  703.577822] Bluetooth: Invalid esc byte 0xfd
14:31:52 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5437, &(0x7f0000000100))

[  703.682486] Bluetooth: Invalid esc byte 0x00
[  703.690301] Bluetooth: Invalid esc byte 0xfd
14:31:52 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ptmx\x00', 0x498400, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000240)=0xf)
ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x5, 0x81, 0x400, 0xfc00, 0x1}})
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000080006, 0x0)
ioctl$TCSETS(r2, 0x40045431, &(0x7f0000000280)={0x0, 0xfffffffd, 0x7fffffff, 0x3, 0x0, "000000e9ffffff000000c2cf7ac23c137b00"})
write$binfmt_aout(r2, &(0x7f0000000240)=ANY=[], 0x0)
ioctl$TCSETA(r2, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r2, 0x0)
r3 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r3, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r3, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$VIDIOC_STREAMON(r3, 0x40045612, &(0x7f00000001c0)=0x46)
ioctl$VHOST_SET_VRING_BUSYLOOP_TIMEOUT(0xffffffffffffffff, 0x4008af23, &(0x7f00000000c0)={0x3, 0x8000})
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$inet6_buf(r1, 0x29, 0x0, &(0x7f0000000140)=""/6, &(0x7f0000000180)=0x6)
ioctl$SIOCPNENABLEPIPE(r1, 0x89ed, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:52 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
r2 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r2, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r2, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
write$selinux_attr(r2, &(0x7f0000000000)='system_u:object_r:dbusd_exec_t:s0\x00', 0x22)
close(r1)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r1, r3, 0x0, 0x80001d00c0d0)
ioctl$VIDIOC_ENUM_FMT(r3, 0xc0405602, &(0x7f00000000c0)={0x4, 0x8, 0x2, "2be20d90a29ca3c92697bbacc1ac8d552e328db2c88cf8251c3fce00afea433b", 0x31435641})
tkill(r0, 0xb)
ptrace(0x4206, r0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x1000000, &(0x7f0000000100))

14:31:52 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffff7f)

14:31:52 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x1000000)

14:31:53 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x13, &(0x7f0000000000)={0x0, 0x9}, &(0x7f0000000140)=0x8)
r2 = syz_open_dev$vcsu(&(0x7f0000000180)='/dev/vcsu#\x00', 0xfffffffffffffffa, 0x22002)
ioctl$ASHMEM_GET_PIN_STATUS(r2, 0x7709, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:53 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5441, &(0x7f0000000100))

14:31:53 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x4840, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ptmx\x00', 0x41e42d86a30ec6, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xfe, "00c6ec4cce622578"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$TIOCOUTQ(r2, 0x5411, &(0x7f0000000500))
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000900)=ANY=[@ANYBLOB="7261770000000000000000000000000000000000000009800000030000005003000000000000ffffffffffffffffd8010000fffffbffb8020000ffffffffffffffe2b802001e447978ff03000000bd0d826c4bafdece228e11", @ANYPTR=&(0x7f0000000200)=ANY=[@ANYBLOB="00000000000000000000000000000000f706000001000000000000000000000000000000000000000000000000000000915c0b844eb0ace0d949ce81d2c600000000000400000000"], @ANYPTR64=&(0x7f0000000180)=ANY=[@ANYRES32, @ANYPTR=&(0x7f0000000140)=ANY=[@ANYRESHEX]]], 0x3)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f00000001c0)=0x8)
r3 = socket$inet6(0xa, 0x80000, 0x80)
syz_open_dev$video4linux(&(0x7f0000000480)='/dev/v4l-subdev#\x00', 0x4, 0x480)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x5)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f00000004c0)={0x0, 0x6, 0x1, 0x8})
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x68d)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  703.924832] Bluetooth: Invalid esc byte 0x00
[  703.935050] Bluetooth: Invalid esc byte 0x7f
[  704.055838] Bluetooth: Invalid esc byte 0x7f
14:31:53 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x2000000)

14:31:53 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
r4 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
write$P9_RLOPEN(r4, &(0x7f00000001c0)={0x18, 0xd, 0x1, {{0x4, 0x1, 0x8}, 0x8001}}, 0x18)
r5 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ocfs2_control\x00', 0x191800, 0x0)
ioctl$KDDISABIO(r5, 0x4b37)
close(r3)
r6 = open(&(0x7f0000000180)='./bus/file0\x00', 0x179842, 0x8)
ftruncate(r6, 0x200004)
sendfile(r3, r6, 0x0, 0x80001d00c0d0)
setsockopt$XDP_UMEM_FILL_RING(r6, 0x11b, 0x5, &(0x7f0000000000)=0x1000, 0x4)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:53 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
ioctl$USBDEVFS_FREE_STREAMS(r3, 0x8008551d, &(0x7f00000001c0)={0xd73f, 0xc, [{0x0, 0x1}, {0x7, 0x1}, {0x7, 0x1}, {0x5, 0x1}, {0x5}, {0xf}, {0x2}, {0xc, 0x1}, {0xe}, {0xe}, {0x8}, {0x9, 0x1}]})
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r1, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vcs\x00', 0xa080, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0x1)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
clock_gettime(0x0, &(0x7f0000000200)={<r6=>0x0, <r7=>0x0})
ioctl$VIDIOC_DQBUF(r3, 0xc0585611, &(0x7f00000002c0)={0x7fffffff, 0x4, 0x4, 0x0, 0x1, {r6, r7/1000+10000}, {0x3, 0x2, 0x1, 0x76, 0x9, 0x8, "d69a255f"}, 0x2f, 0x4, @offset=0x1, 0x0, 0x0, r5})

14:31:53 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:53 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5450, &(0x7f0000000100))

[  704.212839] Bluetooth: Invalid esc byte 0x00
[  704.254465] Bluetooth: Too short H5 packet
14:31:53 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x3000000)

[  704.379418] Bluetooth: Too short H5 packet
[  704.449339] Bluetooth: Invalid esc byte 0x00
14:31:53 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x0, 0x0)
fcntl$setsig(r1, 0xa, 0x2f)
r2 = gettid()
ptrace$setopts(0x4206, r2, 0x0, 0x0)
tkill(0x0, 0x26)
ptrace$setregs(0xd, r2, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r2, 0x0, 0x0)
r3 = syz_open_procfs(r2, &(0x7f00000001c0)='net/dev\x00')
ioctl$TIOCMBIC(r3, 0x5417, &(0x7f0000000200)=0x9)
ioctl$BLKALIGNOFF(0xffffffffffffffff, 0x127a, &(0x7f0000000240))
r4 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0xfffffffffffffff9, 0x0)
ioctl$sock_inet_tcp_SIOCATMARK(r4, 0x8905, &(0x7f0000000180))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r5 = socket$inet6(0xa, 0x803, 0x7f)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x16f)

14:31:53 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5451, &(0x7f0000000100))

14:31:53 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffdc)

14:31:53 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x4000000)

[  704.627328] audit: type=1800 audit(1586615513.752:7268): pid=23427 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.0" name="bus" dev="sda1" ino=16165 res=0
[  704.687460] Bluetooth: Invalid esc byte 0x00
14:31:53 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x11, &(0x7f00000002c0)=0x1f, 0x0)
mq_timedsend(r1, &(0x7f00000000c0)="72eb7942cca8edd1d7d27aa1d3acd256065dfc17459837bdaacead63d0522236e0618b3522624e2cea0a48a120cebaab45837f125c76ce05730f97237572705b67e9e570", 0x44, 0x2, &(0x7f0000000140))
acct(&(0x7f0000000300)='./file1\x00')
ptrace(0x4206, r0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
waitid(0x2, r0, &(0x7f0000000180), 0x1, &(0x7f0000000200))
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))
r4 = msgget$private(0x0, 0x164)
msgctl$IPC_STAT(r4, 0x2, &(0x7f0000000000)=""/37)
msgctl$MSG_STAT_ANY(r4, 0xd, 0x0)
msgrcv(r4, &(0x7f0000000340)={0x0, ""/13}, 0x15, 0x1, 0x800)

14:31:53 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
ioctl$UI_DEV_DESTROY(r2, 0x5502)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$ASHMEM_PURGE_ALL_CACHES(r2, 0x770a, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
ioctl$DRM_IOCTL_MODE_ADDFB(r4, 0xc01c64ae, &(0x7f0000000000)={0x1, 0x7e, 0x3a1, 0x7ff, 0x5, 0x9})

[  704.771113] Process accounting resumed
14:31:53 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vga_arbiter\x00', 0x2, 0x0)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r1 = gettid()
tkill(r1, 0xb)
ptrace(0x4206, r1)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
r3 = dup(r2)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000000)={0x2, 0x0, 0x81, 0x8b, 0x7, 0x1, 0x8}, 0xc)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
wait4(r1, 0x0, 0x40000000, &(0x7f0000000100))

14:31:54 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x5000000)

[  704.929866] Bluetooth: Too short H5 packet
[  704.934473] Bluetooth: Invalid header checksum
[  704.952254] Bluetooth: Invalid header checksum
[  704.952584] Bluetooth: Invalid esc byte 0x00
[  705.123142] audit: type=1800 audit(1586615514.253:7269): pid=23449 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=16238 res=0
14:31:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffdd)

14:31:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5452, &(0x7f0000000100))

14:31:54 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0xa01ffff, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
wait4(0x0, 0x0, 0x40000000, &(0x7f00000000c0))

14:31:54 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000)=0x1a)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x4001ff)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))
ioctl$FICLONE(r2, 0x40049409, r0)

14:31:54 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x6000000)

14:31:54 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xb)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
r3 = socket(0x11, 0x800000003, 0x8)
getsockopt$sock_int(r3, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = socket$inet6_sctp(0xa, 0x10000000005, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f00000001c0)=ANY=[@ANYBLOB="51b9b72e776c8951e34c9b62e368d23fd2d0ae4ac6bf43cde07a8626f7d192fec8e123fc1c3070e9bd6e8b144c0456da1297ec8deaf4da034b47e14d0e76bb1c7b47c371f884847966753ab0bd432c9a7281e61d57bf96764c8f8b47f5c970d8ef9a97576a1be402cb3cddffbce1d756f318654607e7edf778fa6e74e282d01669fc79b6e01b4a4be0fd2d7eb77b99b7d2cdaea2f1f7c7ecffff5b51b3cf6e8b839502af8d349eb585", @ANYRES32=<r6=>0x0], &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x77, &(0x7f0000000000)={r6}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(r3, 0x84, 0x11, &(0x7f0000000180)={r6, 0x9}, 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000000)={r6, 0x8}, 0x8)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e24, 0xffffffff, @remote, 0x7}, 0x1c)

[  705.275861] Bluetooth: Invalid esc byte 0x00
14:31:54 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x80, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)
r3 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:54 executing program 0:
clone(0x2102005ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
clone(0x8401ee7f, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = gettid()
tkill(r0, 0xb)
ptrace(0x4206, r0)
ioctl$VIDIOC_G_DV_TIMINGS(0xffffffffffffffff, 0xc0845658, &(0x7f0000000200)={0x0, @bt={0x6e, 0x5, 0x0, 0x2, 0x4d, 0x2, 0x2, 0x2, 0x2, 0x6, 0x400, 0x10001, 0x5, 0x9a, 0x0, 0x8, {0xfb7}, 0x80, 0x6}})
r1 = creat(&(0x7f0000000180)='./bus\x00', 0x0)
r2 = socket(0x10, 0x0, 0x0)
stat(&(0x7f0000000200)='./bus\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
sendmsg$netlink(r2, &(0x7f0000000580)={&(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfb, 0x2000000}, 0xc, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="1c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="00000000180000000000", @ANYRES32=r2, @ANYRES32, @ANYRES32, @ANYRESDEC, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r1, @ANYRES32, @ANYBLOB="000000001c0000000000000001000000020000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00'], 0xe2}, 0x4)
lstat(&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x4000)
semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f0000000400)={{0x1, 0x0, r3, r4, r5, 0x1d5, 0x6a2}, 0x7ff, 0x1a, 0x0, 0x0, 0x0, 0x0, 0xcf01})
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
r7 = dup(r6)
ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040)='TIPC\x00')
sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[]}, 0x1, 0xfffffff0, 0x0, 0x4000801}, 0x8091)
sendmsg$TIPC_CMD_SET_LINK_WINDOW(r7, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x38, r8, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {}, {0x1c, 0x18, {0x40, @bearer=@l2={'eth', 0x3a, 'bond_slave_0\x00'}}}}, [""]}, 0x38}}, 0x41800)
wait4(0x0, 0x0, 0x20000000, &(0x7f0000000000))

14:31:54 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x2100, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r2 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r3=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r3)
getresgid(&(0x7f00000000c0), &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0))
write$P9_RGETATTR(r1, &(0x7f0000000200)={0xa0, 0x19, 0x1, {0x800, {0x20, 0x1, 0x2}, 0x40, r3, r4, 0x400, 0x0, 0x100000000, 0x8, 0x6, 0x101, 0x7, 0x88, 0x1, 0x100, 0x3, 0x81, 0x2, 0x62b0, 0x8}}, 0xa0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(0xffffffffffffffff, &(0x7f00000003c0)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @dev}}}, 0x48)
write$RDMA_USER_CM_CMD_LISTEN(0xffffffffffffffff, &(0x7f0000000300)={0x7, 0x8, 0xfa00, {0xffffffffffffffff, 0xff}}, 0x10)
r5 = socket$inet6(0xa, 0x803, 0x7f)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000340)=0xffffffdb)
openat$vnet(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vhost-net\x00', 0x2, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:54 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x7000000)

14:31:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x545d, &(0x7f0000000100))

14:31:54 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:54 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
r3 = gettid()
ptrace$setopts(0x4206, r3, 0x0, 0x0)
tkill(r3, 0x33)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
ptrace$cont(0x7, r3, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r2, 0xc1105511, &(0x7f0000000140)={{0x5, 0x1, 0x7, 0x1f, 'syz1\x00', 0x8}, 0x1, 0x100, 0x87, r3, 0x2, 0xfffffffe, 'syz0\x00', &(0x7f0000000000)=['\x00', '/dev/ptmx\x00'], 0xb, [], [0x2, 0xff00, 0x80, 0x4]})
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  705.608656] Bluetooth: Invalid esc byte 0x00
[  705.650430] Bluetooth: Too short H5 packet
14:31:54 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:54 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:54 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)

[  705.793789] Bluetooth: Too short H5 packet
14:31:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r2, 0x81785501, &(0x7f0000000000)=""/59)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5460, &(0x7f0000000100))

14:31:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x10000000)

14:31:55 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:55 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ttyS3\x00', 0x24e040, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  705.937718] Bluetooth: Invalid esc byte 0x00
14:31:55 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(0xffffffffffffffff, r2, 0x0, 0x80001d00c0d0)
ioctl$USBDEVFS_DROP_PRIVILEGES(r2, 0x4004551e, &(0x7f0000000200)=0x9)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7ff, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
ioctl$KDSETLED(r1, 0x4b32, 0x8000)
r4 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000140)='/dev/vsock\x00', 0x80, 0x0)
ioctl$TIOCGRS485(r4, 0x542e, &(0x7f00000001c0))
r5 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  706.014573] Bluetooth: Invalid esc byte 0x00
[  706.023450] Bluetooth: Too short H5 packet
14:31:55 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  706.120196] Bluetooth: Invalid header checksum
[  706.124947] Bluetooth: Invalid header checksum
14:31:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x40049409, &(0x7f0000000100))

14:31:55 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f00000002c0)='./file0\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
getsockopt$inet_sctp_SCTP_RESET_STREAMS(r3, 0x84, 0x77, &(0x7f0000000000)={<r4=>0x0, 0x4, 0x3, [0xdc0, 0x6, 0x5]}, &(0x7f0000000140)=0xe)
uselib(&(0x7f0000000240)='./bus\x00')
ioctl$USBDEVFS_SETCONFIGURATION(r3, 0x80045505, &(0x7f0000000280)=0x200)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, &(0x7f0000000180)={r4, 0x5d, "c049fd9244541fc89d1c4b4143b10a7be38c12f9d4305da9bd5e373083e1f4e7f601604d5fc459a11494854258f93f40ffac7d492d15ecabfcacc17088c7a7d6d80259877caa4a694414afbbd8ca5c95ef9ef356b2f272a2c9d7bc8597"}, &(0x7f0000000200)=0x65)

[  706.279103] Unknown ioctl 21550
14:31:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x12000000)

14:31:55 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  706.321964] Bluetooth: Invalid esc byte 0x00
[  706.390296] Bluetooth: Invalid esc byte 0x00
[  706.418638] Unknown ioctl 35090
14:31:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x40086602, &(0x7f0000000100))

14:31:55 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x8)
fallocate(r1, 0x20, 0x10000, 0x100008000)
ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000240)={0x4, 0x8, 0x5, <r2=>0xffffffffffffffff, 0x0, &(0x7f0000000200)={0x9a090e, 0x3, [], @p_u16=&(0x7f00000001c0)=0xb98}})
getsockopt$MISDN_TIME_STAMP(r2, 0x0, 0x1, &(0x7f00000002c0), &(0x7f0000000300)=0x4)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400201)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$KVM_GET_DEBUGREGS(0xffffffffffffffff, 0x8080aea1, &(0x7f0000000340))
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r4, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r4, 0x5406, &(0x7f0000000000)={0x0, 0x12})
syz_open_pts(r4, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ttyS3\x00', 0x210402, 0x0)
ioctl$TIOCSETD(r5, 0x5412, &(0x7f0000000000)=0x1dfffe)

14:31:55 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x58c5)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:31:55 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  706.503442] Bluetooth: Too short H5 packet
[  706.508024] Bluetooth: Invalid header checksum
[  706.530914] Bluetooth: Invalid header checksum
14:31:55 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x20000000)

[  706.609940] Bluetooth: Invalid header checksum
14:31:55 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  706.667136] Bluetooth: Invalid esc byte 0x00
[  706.712340] Bluetooth: Too short H5 packet
[  706.716878] Bluetooth: Invalid header checksum
[  706.723645] Bluetooth: Invalid header checksum
[  706.737465] Bluetooth: Invalid header checksum
[  706.758448] Bluetooth: Too short H5 packet
14:31:55 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x40087602, &(0x7f0000000100))

[  706.821353] Bluetooth: Invalid header checksum
14:31:56 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x3f000000)

14:31:56 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  706.854788] audit: type=1800 audit(1586615515.983:7270): pid=23578 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.4" name="file0" dev="sda1" ino=16249 res=0
14:31:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffda)
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x0)
fallocate(r1, 0x20, 0x10000, 0x100008000)
setsockopt$inet_tcp_int(r1, 0x6, 0x4, &(0x7f0000000000)=0x1f, 0x4)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r1, 0x2)

[  706.933182] Bluetooth: Invalid header checksum
[  706.966295] Bluetooth: Invalid esc byte 0x00
[  706.989852] Bluetooth: Too short H5 packet
[  707.039833] Bluetooth: Invalid header checksum
14:31:56 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/bsg\x00', 0x141, 0x0)
ioctl$PIO_FONT(r1, 0x4b61, &(0x7f0000000200)="4fd5a4b2796f62994b735afccce41292f2be97a1065f5825e537f26ec7d06f9ed07f54f3682376d6d5f5bdf32f5867311b51578cc60b8f8f312da87a4014c41631373cc9e7dbde22774e7f966c9fa585bea3d986e6f4bd05b82dc77c0b59baaf8116399f3c512565116db8c22184da8ecc8e065b67fe03159b7f241f9c5e3fca10fc15154d84d6caa670e57974c835ec40365477c4adc941ed44cde8a63427d9150e164a1326286654d5492d5679c3cca9f64f417e1864")
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
getpeername$unix(r3, &(0x7f0000000140)=@abs, &(0x7f0000000000)=0x6e)

14:31:56 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x4020940d, &(0x7f0000000100))

14:31:56 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
dup(r1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  707.149800] Bluetooth: Invalid header checksum
[  707.210451] Bluetooth: Too short H5 packet
[  707.259943] Bluetooth: Invalid header checksum
[  707.305282] Bluetooth: Too short H5 packet
[  707.310319] Bluetooth: Invalid header checksum
[  707.315620] Bluetooth: Invalid header checksum
[  707.369771] Bluetooth: Invalid header checksum
[  707.409725] Bluetooth: Invalid header checksum
14:31:56 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCMSET(r0, 0x5418, &(0x7f0000000180)=0xa0c)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, 0x0, 0x0)
ioctl$SIOCPNADDRESOURCE(r3, 0x89e0, &(0x7f0000000000)=0x6)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:56 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x60000000)

14:31:56 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:56 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x80045432, &(0x7f0000000100))

[  707.650615] Bluetooth: Invalid esc byte 0x00
[  707.660609] Bluetooth: Too short H5 packet
[  707.691839] Bluetooth: Invalid esc byte 0x00
14:31:56 executing program 4:
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r1, 0x200004)
sendfile(r0, r1, 0x0, 0x80001d00c0d0)
bind$llc(r1, &(0x7f0000000000)={0x1a, 0x18, 0x3, 0x7f, 0x80, 0x3f, @local}, 0x10)
fallocate(0xffffffffffffffff, 0x2, 0x7, 0x3f)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xf)
r3 = socket(0x1a, 0x6, 0x1)
getsockopt$sock_int(r3, 0x1, 0x28, &(0x7f0000000000), &(0x7f00000000c0)=0x4)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000095dff8)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES32=<r5=>0x0], &(0x7f000095dffc)=0x8)
setsockopt$inet_sctp_SCTP_RTOINFO(r4, 0x84, 0x77, &(0x7f0000000000)={r5}, 0x10)
setsockopt$inet_sctp6_SCTP_CONTEXT(0xffffffffffffffff, 0x84, 0x11, &(0x7f0000000340)={r5, 0x9}, 0x8)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000140)={<r6=>r5, @in6={{0xa, 0x4e20, 0x6, @rand_addr="01def08140d310e663e64a6a15796d76", 0xffffff00}}, 0x81, 0x0, 0x5, 0x3a, 0x2, 0x5, 0xcf}, &(0x7f0000000200)=0x9c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x1f, &(0x7f0000000240)={r6, @in={{0x2, 0x4e24, @broadcast}}, 0x6, 0xffff}, &(0x7f0000000300)=0x90)
ioctl$KDADDIO(r2, 0x400455c8, 0x2)
ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:31:56 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x80045440, &(0x7f0000000100))

14:31:56 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  707.802407] Bluetooth: Invalid esc byte 0x00
14:31:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xc0ffffff)

[  707.897199] Bluetooth: Too short H5 packet
[  707.933414] Bluetooth: Invalid esc byte 0xff
14:31:57 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0x16)

[  708.000476] Bluetooth: Too short H5 packet
[  708.005081] Bluetooth: Invalid header checksum
[  708.019480] Bluetooth: Invalid header checksum
14:31:57 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x80086601, &(0x7f0000000100))

[  708.073269] Bluetooth: Invalid esc byte 0x16
14:31:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xdcffffff)

[  708.174457] Bluetooth: Too short H5 packet
[  708.179516] Bluetooth: Invalid esc byte 0x16
[  708.195293] Bluetooth: Invalid esc byte 0xff
14:31:57 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  708.219783] audit: type=1800 audit(1586615517.353:7271): pid=23651 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.4" name="bus" dev="sda1" ino=16245 res=0
14:31:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x80087601, &(0x7f0000000100))

14:31:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xddffffff)

14:31:57 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:57 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x12)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$KDADDIO(r2, 0x400455c8, 0xfffffffffffffffd)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(0xffffffffffffffff, 0x0)
ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000200)={0x1ff, 0x8001, 0x2, 0xb75, 0x1a, "28146452f4a0366d"})
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000040)=0x10000000)
getsockopt$kcm_KCM_RECV_DISABLE(r4, 0x119, 0x1, &(0x7f00000001c0), 0x4)

[  708.457484] Bluetooth: Invalid esc byte 0xff
[  708.473709] Bluetooth: Too short H5 packet
14:31:57 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:57 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000100))

14:31:57 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xfdfdffff)

14:31:57 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
r2 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r2, 0x113, 0x1, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000240)={0xa, &(0x7f00000001c0)=[{0x6, 0x7f, 0x3f, 0x100}, {0x81, 0x1, 0x1, 0x11}, {0x5000, 0x5, 0x8, 0xa52d}, {0x7, 0x80, 0xd1, 0x6}, {0x9, 0x1, 0x6, 0x8}, {0x5, 0xc7, 0x3, 0xffffffff}, {0x9, 0x1f, 0x20, 0x8}, {0x8, 0x40, 0x0, 0x7ce}, {0xfffd, 0x81, 0x5}, {0x0, 0x0, 0x63}]}, 0x10)
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$TCSETA(r4, 0x5406, &(0x7f0000000140)={0x0, 0x0, 0x8})
syz_open_pts(r1, 0x0)
ioctl$TCSETSW(r1, 0x5403, &(0x7f0000000000)={0x9, 0x1, 0x2, 0x3, 0x12, "d18048e1202f484c984924cb1edfd3556371d3"})

[  708.683229] Bluetooth: Too short H5 packet
[  708.727555] Bluetooth: Invalid esc byte 0xff
14:31:57 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:58 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0xc0045878, &(0x7f0000000100))

[  708.849976] Bluetooth: Too short H5 packet
[  708.859915] Bluetooth: Invalid header checksum
[  708.872303] Bluetooth: Too short H5 packet
[  708.877562] Bluetooth: Invalid header checksum
14:31:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xfffffdfd)

14:31:58 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  708.963746] Bluetooth: Invalid header checksum
[  708.998395] Bluetooth: Invalid esc byte 0xfd
[  709.079984] Bluetooth: Invalid header checksum
14:31:58 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffff7f)

14:31:58 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0xc0189436, &(0x7f0000000100))

[  709.199874] Bluetooth: Invalid header checksum
[  709.254415] Bluetooth: Invalid esc byte 0x7f
[  709.310582] Bluetooth: Invalid header checksum
14:31:58 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  709.431232] Bluetooth: Invalid header checksum
14:31:58 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0xc020660b, &(0x7f0000000100))

14:31:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:58 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ttyS3\x00', 0x800, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xa)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  709.529678] Bluetooth: Invalid header checksum
[  709.576894] Bluetooth: Too short H5 packet
14:31:58 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100))

14:31:58 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:58 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffdc)

14:31:59 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
prctl$PR_CAPBSET_READ(0x17, 0xe)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
connect$rose(r2, &(0x7f0000000000)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @bcast, 0x1, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, 0x1c)

14:31:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  710.041357] Bluetooth: Too short H5 packet
[  710.045713] Bluetooth: Invalid header checksum
14:31:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffdd)

14:31:59 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x2)

[  710.089806] Bluetooth: Invalid header checksum
[  710.149581] Bluetooth: Invalid header checksum
14:31:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  710.286550] audit: type=1800 audit(1586615519.413:7272): pid=23760 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.4" name="bus" dev="sda1" ino=16254 res=0
14:31:59 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$GIO_UNISCRNMAP(r2, 0x4b69, &(0x7f0000000140)=""/246)

14:31:59 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))
r3 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r4)
syz_mount_image$erofs(&(0x7f0000000000)='erofs\x00', &(0x7f0000000180)='./file0\x00', 0x1, 0x3, &(0x7f0000000380)=[{&(0x7f00000001c0)="cbd12654bb14385aed53ee84c8c00f92", 0x10, 0x8000}, {&(0x7f0000000200)="ca6ad7ec18364f9eee155d089f4a5b96bf7391f98f676f5437a295a007fa969c363388293c2c6411f387c7f58d73c5b1122ae0d658bcdab20c18e3820e419b8279bcf84da70c44e193a7e4a75388d5846798713ec3cdde02cd93745db7eb9252175bbc2dec4cd61974ad3541154fe7482cd7b23a495fdc1092c00b5c9c4a260bf03735a001f1e77d655bb5ce6ade9cd084457eae49b08158e6198881e9a85278c08439143794b865d48ab8e0d60e0eb13aa4f4e951b4d4818732aa01edffec37e213d5a937c6d0", 0xc7, 0xfffffffffffffffa}, {&(0x7f0000000300)="be9569c7bfe3204824f202d3f0634387298e00614216e10c2a6a3e0f9462d0d900862af21edfb124a417161dc66bd149292e8875ffd1356437c41fe786321b6a08eda0fbb84a410168065fdb77e28792d1a5bda4ae3cf8658212e84df27b4b1cc1", 0x61, 0x7}], 0x842000, &(0x7f0000000400)={[{@user_xattr='user_xattr'}, {@nouser_xattr='nouser_xattr'}], [{@appraise_type='appraise_type=imasig'}, {@subj_role={'subj_role'}}, {@uid_lt={'uid<', r4}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@dont_measure='dont_measure'}, {@seclabel='seclabel'}, {@smackfsfloor={'smackfsfloor'}}, {@dont_measure='dont_measure'}]})

14:31:59 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x4)

14:31:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-monitor\x00', 0x2002, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000180)=0x7)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:31:59 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:59 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  710.609564] Bluetooth: Too short H5 packet
[  710.613956] Bluetooth: Invalid header checksum
[  710.618607] Bluetooth: Invalid header checksum
[  710.646034] Bluetooth: Invalid esc byte 0x00
[  710.662104] Bluetooth: Invalid esc byte 0x00
14:31:59 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  710.721454] Bluetooth: Invalid header checksum
14:31:59 executing program 0:
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000080)=0xffffffc0)
r0 = socket$inet6(0xa, 0x803, 0x7f)
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:31:59 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x13)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  710.829772] Bluetooth: Invalid header checksum
14:32:00 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xf)

14:32:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)=""/194, &(0x7f0000000280)=""/80, &(0x7f0000000300)=""/130, 0xd000})
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
r4 = dup(r3)
ioctl$TIOCEXCL(r4, 0x540c)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:32:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  710.939582] Bluetooth: Invalid header checksum
[  711.043323] Bluetooth: Invalid esc byte 0x00
[  711.051605] Bluetooth: Invalid header checksum
[  711.099061] Bluetooth: Invalid header checksum
[  711.110398] Bluetooth: Invalid header checksum
[  711.160636] Bluetooth: Invalid header checksum
[  711.199592] Bluetooth: Invalid header checksum
[  711.269543] Bluetooth: Invalid header checksum
14:32:00 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x6)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

14:32:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:32:00 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x10)

14:32:00 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80000001)
r3 = socket(0xa, 0x2, 0x0)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000140)={0x0, @rand_addr, @initdev}, &(0x7f0000000400)=0xc)
r4 = syz_genetlink_get_family_id$net_dm(&(0x7f00000001c0)='NET_DM\x00')
ioctl$TIOCMBIS(0xffffffffffffffff, 0x5416, &(0x7f0000000240)=0x7ff)
sendmsg$NET_DM_CMD_START(r3, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1100c020}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x14, r4, 0x200, 0x70bd28, 0x25dfdbff, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4400c}, 0x400c065)
sendmsg$NET_DM_CMD_STOP(r2, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, r4, 0x100, 0x70bd27, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x20000000)
r5 = dup(0xffffffffffffffff)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  711.375964] audit: type=1800 audit(1586615520.503:7273): pid=23824 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.5" name="bus" dev="sda1" ino=16169 res=0
14:32:00 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc1)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
dup(0xffffffffffffffff)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TCSETSF(r4, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000)=0xffffffdc)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:32:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:32:00 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x4)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)

[  711.599529] Bluetooth: Too short H5 packet
[  711.610109] Bluetooth: Invalid header checksum
[  711.635141] Bluetooth: Invalid header checksum
14:32:00 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  711.671266] Bluetooth: Invalid header checksum
[  711.676221] Bluetooth: Invalid header checksum
14:32:00 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x1d)

[  711.711967] Bluetooth: Invalid header checksum
[  711.723560] Bluetooth: hci0: sending frame failed (-49)
[  711.724999] Bluetooth: hci0: Frame reassembly failed (-84)
[  711.776832] Bluetooth: hci0: Frame reassembly failed (-84)
[  711.796270] Bluetooth: Too short H5 packet
[  711.814647] Bluetooth: Invalid header checksum
[  711.830160] Bluetooth: Invalid header checksum
14:32:01 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  711.890207] Bluetooth: Invalid header checksum
[  712.001521] Bluetooth: Invalid header checksum
14:32:01 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
connect$unix(r2, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r3 = socket$inet6(0xa, 0x803, 0x7f)
r4 = dup(r3)
ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

[  712.026687] audit: type=1800 audit(1586615521.153:7274): pid=23843 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=15803 res=0
14:32:01 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  712.109503] Bluetooth: Invalid header checksum
14:32:01 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xf00)

14:32:01 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  712.229458] Bluetooth: Invalid header checksum
[  712.290075] Bluetooth: Too short H5 packet
[  712.294813] Bluetooth: Invalid header checksum
[  712.307827] Bluetooth: Invalid header checksum
14:32:01 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  712.400570] Bluetooth: Invalid header checksum
14:32:01 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x1d00)

[  712.509460] Bluetooth: Invalid header checksum
14:32:01 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
openat$userio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/userio\x00', 0x10000, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:32:01 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  712.611833] audit: type=1800 audit(1586615521.743:7275): pid=23874 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.3" name="bus" dev="sda1" ino=15969 res=0
[  712.645032] Bluetooth: Invalid esc byte 0x00
[  713.789089] Bluetooth: hci0: command 0x1003 tx timeout
[  713.794549] Bluetooth: hci0: sending frame failed (-49)
[  715.869075] Bluetooth: hci0: command 0x1001 tx timeout
[  715.874602] Bluetooth: hci0: sending frame failed (-49)
[  717.948899] Bluetooth: hci0: command 0x1009 tx timeout
14:32:11 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x3f00)

14:32:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:32:11 executing program 3:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
socket$inet6(0xa, 0x803, 0x7f)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r1, 0x0)
r2 = dup(r1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r3, 0x0)
ioctl$FS_IOC_FSGETXATTR(r3, 0x801c581f, &(0x7f0000000140)={0x4258, 0x7, 0xa1b0, 0x1, 0x1})
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100))

14:32:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc3)
r1 = socket$inet6(0xa, 0x80f, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:32:11 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x3f, 0x0)
r2 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r2)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r3, 0x200004)
sendfile(r2, r3, 0x0, 0x80001d00c0d0)
ioctl$DRM_IOCTL_MODE_LIST_LESSEES(r3, 0xc01064c7, &(0x7f0000000200)={0x9, 0x0, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0, 0x0]})
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r5, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r5, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r5, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0xfffe, 0x0, "000600000600"})
syz_open_pts(r5, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r1, 0xc01864c6, &(0x7f0000000240)={&(0x7f0000000180)=[0x4, 0x7ff, 0xfffffffd, 0x8, 0x0, 0x1], 0x6, 0x0, r4, r5})
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:32:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:32:11 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000000)=0xffffffc1)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
syz_open_dev$ttys(0xc, 0x2, 0x1)
r1 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r2)
r3 = getgid()
r4 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r5)
r6 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r7=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r7)
r8 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r9=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r9)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='fuse\x00', 0x8008, &(0x7f0000000180)=ANY=[@ANYBLOB="03fbaa", @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=r2, @ANYBLOB=',group_id=', @ANYRESDEC=r3, @ANYBLOB="2c626c6b73697a653d3078303030303030303030303030306330302c64656661756c745f7065726d697373696f6e732c64656661756c745f7065726d697373696f6e732c626c6b73697a653d3078303030303030303030303030303030302c616c6c6f775f6f746865722c6d61785f726561643d3078303030303030303030303030303030322c616c6c6f775f6f746865722c6673757569643d35356131380039362d370039572d373265312d356666312d303032625e0637652c7569643e", @ANYRESDEC=r5, @ANYBLOB=',fowner=', @ANYRESDEC=r7, @ANYBLOB=',fsname=/dev/ptmx\x00,fsuuid=b74Q3500-1703-622d-072\\-ff3390d7,fowner<', @ANYRESDEC=r9, @ANYBLOB=',smackfsroot=/dev/ptmx\x00,audit,\x00'])

[  722.488795] Bluetooth: Invalid header checksum
[  722.493549] Bluetooth: Invalid header checksum
[  722.551917] Bluetooth: Invalid esc byte 0x00
14:32:11 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x4000)

14:32:11 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x4000, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r4 = syz_open_pts(r3, 0x0)
ioctl$TIOCSETD(r4, 0x5412, &(0x7f0000000080)=0xffffffc0)
r5 = socket$inet6(0xa, 0x803, 0x7f)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  722.598847] Bluetooth: Invalid header checksum
14:32:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040))
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  722.659259] Bluetooth: Invalid header checksum
[  722.667017] Bluetooth: Invalid header checksum
[  722.709364] Bluetooth: Too short H5 packet
[  722.713805] Bluetooth: Invalid header checksum
14:32:11 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  722.772525] Bluetooth: Invalid header checksum
14:32:11 executing program 4:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
ioctl$KVM_SET_GSI_ROUTING(r2, 0x4008ae6a, &(0x7f00000001c0)={0x2, 0x0, [{0x8000, 0x2, 0x0, 0x0, @msi={0x40, 0x8b01, 0x0, 0x5202}}, {0x400, 0x4, 0x0, 0x0, @irqchip={0x1ff, 0x39}}]})
r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer2\x00', 0xce500, 0x0)
getsockopt$inet_mreqn(r3, 0x0, 0x36, &(0x7f0000000140)={@initdev, @dev}, &(0x7f0000000180)=0xc)

[  722.829591] Bluetooth: Invalid header checksum
[  722.878865] Bluetooth: Invalid header checksum
14:32:12 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x20000)

[  722.938738] Bluetooth: Invalid header checksum
14:32:12 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

[  722.998625] Bluetooth: Too short H5 packet
[  723.003363] Bluetooth: Invalid header checksum
[  723.016505] Bluetooth: Invalid header checksum
[  723.035986] Bluetooth: Invalid header checksum
[  723.048868] Bluetooth: Invalid header checksum
[  723.099342] Bluetooth: Invalid header checksum
[  723.099925] Bluetooth: Invalid header checksum
[  723.338717] audit: type=1800 audit(1586615532.474:7276): pid=23949 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.4" name="bus" dev="sda1" ino=15827 res=0
14:32:12 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x40000)

14:32:12 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(0xffffffffffffffff, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:32:12 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140)=0xffffffc0)

14:32:12 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x29)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
bind$x25(r2, &(0x7f0000000000)={0x9, @null='               \x00'}, 0x12)
r3 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r3)
r4 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r4, 0x200004)
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, 0x0, 0x4, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x3}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x24}}, 0x4080)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
r5 = socket$inet6(0xa, 0x803, 0x7f)
r6 = dup(r5)
ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:32:12 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x1000000)

14:32:12 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
r1 = socket$inet6(0xa, 0x400000000001, 0x0)
close(r1)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x141042, 0x0)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140)='l2tp\x00')
r5 = socket$l2tp(0x2, 0x2, 0x73)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)={0x3c, r4, 0x923, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_FD={0x8, 0x17, @l2tp=r5}]}, 0x3c}}, 0x0)
sendmsg$L2TP_CMD_SESSION_CREATE(r2, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x34, r4, 0x10, 0x70bd29, 0x25dfdbfc, {}, [@L2TP_ATTR_L2SPEC_TYPE={0x5}, @L2TP_ATTR_UDP_ZERO_CSUM6_RX={0x5, 0x22, 0x1}, @L2TP_ATTR_DEBUG={0x8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x7}]}, 0x34}, 0x1, 0x0, 0x0, 0x20004040}, 0x4004)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="004942488c23492893efde8b98bd459e7e3a445a9d1887"], 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="380000002400ffffff7f000000003c0005000000", @ANYRES32, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=@delchain={0x4b8, 0x65, 0x20, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x7, 0xfff6}, {0xd, 0xfff7}, {0x10, 0xfff3}}, [@filter_kind_options=@f_fw={{0x7, 0x1, 'fw\x00'}, {0x28, 0x2, [@TCA_FW_INDEV={0x14, 0x3, 'lo\x00'}, @TCA_FW_MASK={0x8, 0x5, 0x4}, @TCA_FW_MASK={0x8, 0x5, 0x8000}]}}, @TCA_CHAIN={0x8, 0xb, 0x9}, @TCA_RATE={0x6, 0x5, {0x40, 0x2}}, @filter_kind_options=@f_basic={{0xa, 0x1, 'basic\x00'}, {0x184, 0x2, [@TCA_BASIC_POLICE={0x50, 0x4, [@TCA_POLICE_TBF={0x3c, 0x1, {0x200, 0x6, 0x7, 0x6, 0x6, {0x0, 0x1, 0x1, 0x4, 0x7f, 0x9}, {0xae, 0x0, 0x40, 0x4, 0xfffe, 0x100}, 0x7f99, 0xfff}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0x10001}, @TCA_POLICE_RESULT={0x8, 0x5, 0x1}]}, @TCA_BASIC_EMATCHES={0x4}, @TCA_BASIC_EMATCHES={0x12c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0xfc, 0x2, 0x0, 0x1, [@TCF_EM_META={0x1c, 0x3, 0x0, 0x0, {{0x3, 0x4, 0x148}, [@TCA_EM_META_RVALUE={0x10, 0x3, [@TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_INT=0xa, @TCF_META_TYPE_INT=0x6]}]}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x7fff, 0x8, 0x9}, {0xffffffffffffffff, 0x4, 0x2}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x7, 0x1, 0xef8}, {0x0, 0x1, 0xfee8, 0xc, 0x4, 0x2, 0x1}}}, @TCF_EM_CONTAINER={0x8c, 0x3, 0x0, 0x0, {{0x7, 0x0, 0x1000}, "018cb2765fd5be5bdb437c513b3ea86899d2a6fcb881d36c8a55dd0b45e0b2ba3becdd86f6fb29c9f318aaab1e9a0a674af428eeb14b7665daa6592efce2d3febd6e148f6fd518c3b42024ca9e44514ee0ebc23380ec6cd004b9d56ade62bdec8cfed5a79837f90710336903d81c2a939ccbd34ada0fe34a0a4c880d29"}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x7fff, 0x7, 0x1}, {{0x4}, {0x2, 0x1}}}}, @TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x8, 0x7, 0xebc}, {{0x1, 0x1, 0x0, 0x1}, {0x3, 0x1}}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xff01}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8}}, @TCA_EMATCH_TREE_LIST={0x4}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}]}]}}, @TCA_RATE={0x6, 0x5, {0xff, 0x91}}, @filter_kind_options=@f_bpf={{0x8, 0x1, 'bpf\x00'}, {0x14, 0x2, [@TCA_BPF_FLAGS={0x8}, @TCA_BPF_CLASSID={0x8, 0x3, {0x4}}]}}, @TCA_RATE={0x6, 0x5, {0x4}}, @TCA_RATE={0x6, 0x5, {0x6, 0x3}}, @filter_kind_options=@f_u32={{0x8, 0x1, 'u32\x00'}, {0x288, 0x2, [@TCA_U32_SEL={0x254, 0x5, {0x7, 0x1, 0x4, 0x5, 0xff81, 0x426, 0x2f, 0x776018b3, [{0x4, 0x0, 0x6, 0x51}, {0x2, 0x6, 0x4, 0xffffff2f}, {0x671f851f, 0xb5, 0x1, 0x3}, {0x4, 0x2, 0x4, 0xffffffff}, {0x7fff, 0xb1, 0x3, 0x7}, {0x2, 0xbad4, 0x2, 0x405}, {0x7fff, 0x8, 0x7d6, 0xd1c5}, {0x7, 0x100, 0x100, 0x1}, {0x7, 0x5, 0x8000, 0x8000}, {0x2, 0x1, 0x2, 0x7fff}, {0xd032, 0xc000, 0x6, 0x8}, {0x5, 0x6, 0x8000, 0x6}, {0x1, 0x7, 0x5e0d7cef, 0x7f}, {0x1, 0x10001, 0x63cd, 0xfffffffa}, {0x3, 0x3, 0x80000000, 0x200}, {0x20001, 0x6, 0x81, 0x81}, {0x9be, 0x9ee, 0x8, 0xfffffffb}, {0xff, 0x76e9, 0x0, 0x401}, {0xff, 0x1000, 0x8001, 0x982}, {0x5, 0x20, 0xb4b0, 0x8}, {0x7f, 0xd3b5, 0x1091, 0xfff}, {0x2, 0x20004000, 0x9, 0x81}, {0x2, 0x33, 0x1ff, 0x9850}, {0x8000, 0x7, 0x5, 0x4}, {0x0, 0x0, 0x7fff, 0x291a}, {0xff, 0x101, 0xfffffc01}, {0x80000000, 0x400, 0x7, 0x9}, {0xfff, 0x7, 0x1, 0x9}, {0xfff, 0x1, 0x9, 0xfff}, {0x8, 0x9, 0x26, 0x3}, {0x1, 0x101, 0x7, 0x1}, {0x7, 0x8, 0x8000, 0x6}, {0x8, 0x1000, 0x80, 0x81}, {0x5, 0x0, 0x9, 0x5}, {0x480, 0x4, 0x4}, {0x8, 0x2, 0xfffffffe, 0x7f}]}}, @TCA_U32_LINK={0x8, 0x3, 0x9}, @TCA_U32_DIVISOR={0x8, 0x4, 0x51}, @TCA_U32_MARK={0x10, 0xa, {0x2, 0x1}}, @TCA_U32_MARK={0x10, 0xa, {0x7, 0x1ff}}]}}]}, 0x4b8}}, 0xb36953ea75e845a3)
ioctl$sock_SIOCDELRT(r5, 0x890c, &(0x7f00000002c0)={0x0, @generic={0x1f, "406201a42e53567d28ff4e4282b5"}, @can, @hci={0x1f, 0x4, 0x4}, 0x6, 0x0, 0x0, 0x0, 0x100, &(0x7f0000000280)='rose0\x00', 0x80000001, 0x7, 0xfff})
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  723.694518] Bluetooth: hci0: Frame reassembly failed (-84)
[  723.700720] Bluetooth: hci0: Frame reassembly failed (-84)
[  723.733729] Bluetooth: hci0: Frame reassembly failed (-84)
[  723.767224] Bluetooth: hci0: Frame reassembly failed (-84)
14:32:13 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x4000000)

[  723.913452] Bluetooth: Invalid esc byte 0x00
[  723.928912] Bluetooth: Too short H5 packet
[  723.933436] Bluetooth: Invalid header checksum
[  723.947353] Bluetooth: Invalid header checksum
[  724.008619] Bluetooth: Invalid header checksum
[  724.013563] Bluetooth: Invalid header checksum
[  724.039553] Bluetooth: Invalid header checksum
14:32:13 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xf000000)

[  724.237996] audit: type=1800 audit(1586615533.364:7277): pid=23987 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed comm="syz-executor.2" name="bus" dev="sda1" ino=16131 res=0
14:32:13 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
open_by_handle_at(0xffffffffffffffff, &(0x7f0000000180)={0xfd, 0x200, "56b79ae9d00d25c5536de0294097b4ca914bb96c59decafc86b2eff9a3beb8cd5c12f9fd6a8f3dc18e6e6aa35f32191bca53ac714032d95c6b7ed8b9b9c28a4a30a32b93fed8fca070b4bfb48d36cecd30728928167b49c2fa661bd7892e602ef8f6568c298037088bf29362f5cfd1beb0a106004fef326cd0776a26541104e9498669aef4ba72049fbe105141b5dcf43939018c61a4f525d291752ab64456f5492809e94d982f07fc9b4df7925214a3740982606f8cb702041a3b12e949122ca8faeb3636440a9555a2efc81deabf9c778aca78fbcfa286e8f4766f7e511cdee2a173acd579359e2954934636af22253186605cb3"}, 0x8803)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000080)=0xffffffc0)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

14:32:13 executing program 5:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000101007, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r1, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r1, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TCSETSF(r2, 0x5412, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "99000000000000000000002000724a00"})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x8000000000006, 0x0)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, "000000e9ffffff000000c2cf7ac24413f7bc00"})
write$binfmt_aout(r3, &(0x7f0000000240)=ANY=[], 0xffffff3a)
ioctl$TCSETA(r3, 0x5406, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "f9f9ec40ce622558"})
syz_open_pts(r3, 0x0)
ioctl$TIOCSETD(r3, 0x5412, &(0x7f0000000080)=0x6)
r4 = socket$inet6(0xa, 0x803, 0x7f)
r5 = dup(r4)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000100)=0xffffffdb)
ioctl$TIOCSETD(r0, 0x5412, &(0x7f0000000140))

[  724.429875] Bluetooth: Invalid esc byte 0x00
14:32:13 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x10000000)

[  724.551645] kasan: CONFIG_KASAN_INLINE enabled
[  724.556774] kasan: GPF could be caused by NULL-ptr deref or user memory access
[  724.588715] Bluetooth: Invalid header checksum
[  724.593431] Bluetooth: Invalid header checksum
[  724.602797] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[  724.609091] CPU: 0 PID: 24005 Comm: syz-executor.2 Not tainted 4.19.114-syzkaller #0
[  724.616982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  724.626370] RIP: 0010:skb_put+0x2d/0x1c0
[  724.630454] Code: 56 41 55 41 54 41 89 f4 55 48 89 fd 4c 8d ad c8 00 00 00 53 e8 34 5d d0 fb 4c 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 42
[  724.649364] RSP: 0018:ffff88808c29fa70 EFLAGS: 00010202
[  724.652546] Bluetooth: Invalid esc byte 0x00
[  724.654741] RAX: dffffc0000000000 RBX: ffff88808c29fc28 RCX: ffffc9000a11b000
[  724.654748] RDX: 0000000000000019 RSI: ffffffff8597473c RDI: 0000000000000000
[  724.654757] RBP: 0000000000000000 R08: ffff88804a45a640 R09: ffffed1015cc4733
[  724.654765] R10: ffffed1015cc4732 R11: ffff8880ae623993 R12: 0000000000000001
[  724.654773] R13: 00000000000000c8 R14: dffffc0000000000 R15: 0000000000000004
[  724.654789] FS:  00007f7166fce700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[  724.703859] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  724.709848] CR2: 000000000076c000 CR3: 0000000038572000 CR4: 00000000001406f0
[  724.717130] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  724.724411] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  724.731688] Call Trace:
[  724.734301]  h5_recv+0x35d/0x460
[  724.737694]  ? h5_slip_one_byte+0x1c0/0x1c0
[  724.742029]  ? __lock_is_held+0x90/0x140
[  724.746113]  hci_uart_tty_receive+0x21d/0x520
[  724.750614]  ? hci_uart_write_work+0x6f0/0x6f0
[  724.755209]  tty_ioctl+0xe0a/0x1420
[  724.758857]  ? tty_vhangup+0x30/0x30
[  724.762599]  ? mark_held_locks+0xf0/0xf0
[  724.766678]  ? perf_trace_lock_acquire+0xf5/0x530
[  724.771548]  ? tty_vhangup+0x30/0x30
[  724.775275]  do_vfs_ioctl+0xcda/0x12e0
[  724.779178]  ? selinux_file_ioctl+0x46c/0x5d0
[  724.783692]  ? selinux_file_ioctl+0x125/0x5d0
[  724.788210]  ? check_preemption_disabled+0x41/0x280
[  724.793234]  ? ioctl_preallocate+0x200/0x200
[  724.797660]  ? selinux_file_mprotect+0x600/0x600
[  724.802425]  ? __fget+0x340/0x510
[  724.805894]  ? iterate_fd+0x350/0x350
[  724.809716]  ? security_file_ioctl+0x6c/0xb0
[  724.814133]  ksys_ioctl+0x9b/0xc0
[  724.817736]  __x64_sys_ioctl+0x6f/0xb0
[  724.821656]  ? lockdep_hardirqs_on+0x40b/0x5d0
[  724.826261]  do_syscall_64+0xf9/0x620
[  724.830088]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[  724.835292] RIP: 0033:0x45c889
[  724.838498] Code: ad b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[  724.857501] RSP: 002b:00007f7166fcdc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  724.865225] RAX: ffffffffffffffda RBX: 00007f7166fce6d4 RCX: 000000000045c889
[  724.872514] RDX: 0000000020000140 RSI: 0000000000005412 RDI: 0000000000000003
[  724.879814] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000
[  724.887103] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff
[  724.894415] R13: 0000000000000582 R14: 00000000004c81b7 R15: 000000000076bfac
[  724.901702] Modules linked in:
[  724.912009] Bluetooth: Too short H5 packet
[  724.916335] Bluetooth: Invalid header checksum
[  724.921444] Bluetooth: Invalid header checksum
[  724.945583] Bluetooth: Invalid header checksum
[  724.954392] ---[ end trace 9263d6931eb49a24 ]---
[  724.973127] RIP: 0010:skb_put+0x2d/0x1c0
[  724.978101] Code: 56 41 55 41 54 41 89 f4 55 48 89 fd 4c 8d ad c8 00 00 00 53 e8 34 5d d0 fb 4c 89 ea 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 14 02 4c 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 42
[  725.010179] Bluetooth: Invalid header checksum
[  725.014887] Bluetooth: Invalid header checksum
[  725.018285] RSP: 0018:ffff88808c29fa70 EFLAGS: 00010202
[  725.024915] RAX: dffffc0000000000 RBX: ffff88808c29fc28 RCX: ffffc9000a11b000
[  725.058237] RDX: 0000000000000019 RSI: ffffffff8597473c RDI: 0000000000000000
14:32:14 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ptmx\x00', 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xf)
ioctl$KDADDIO(r0, 0x400455c8, 0x2)
r1 = socket$inet6(0xa, 0x803, 0x7f)
r2 = dup(r1)
ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0x1d000000)

[  725.065569] RBP: 0000000000000000 R08: ffff88804a45a640 R09: ffffed1015cc4733
[  725.080417] R10: ffffed1015cc4732 R11: ffff8880ae623993 R12: 0000000000000001
[  725.087852] R13: 00000000000000c8 R14: dffffc0000000000 R15: 0000000000000004
[  725.118556] Bluetooth: Invalid header checksum
[  725.118764] Bluetooth: Invalid header checksum
[  725.124601] FS:  00007f7166fce700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000
[  725.136704] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  725.144687] CR2: 0000000000742a30 CR3: 0000000038572000 CR4: 00000000001406f0
[  725.153744] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  725.163886] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  725.172857] Kernel panic - not syncing: Fatal exception
[  725.179823] Kernel Offset: disabled
[  725.183474] Rebooting in 86400 seconds..