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"}}, @l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0xffff, 0x91}}, @l2cap_create_chan_req={{0xc, 0x9, 0x5}, {0x1, 0x2, 0x9c}}]}}, 0x1031) (async) 06:05:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) write(r1, &(0x7f0000000500)="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", 0x200) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r2 = dup(r0) sendmsg$NFT_MSG_GETOBJ_RESET(r2, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000280)={&(0x7f0000000140)={0x110, 0x15, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_OBJ_USERDATA={0xdb, 0x8, "e39b7e72c80f1998dd9ea8e883624f8d6ed7a0369dddb82c6c65019f25f31ea1b9bc6c44bc316741ac9026af2e46da22fef2c3d311e0f75bc8efbfc3473ad1a33ae4925c899e5744695129221991d7aff9cac53f08a9fcd252b5c0da9bd58230f7824b93fb95424e86254aa21f891ff5549e0a4463c17b904897e8505db36d897003189ea92db0c65b427721400326ef8b1a24283de45ee3d1ede976cd9f01c3bcc161e27b5856fffd29be7774b0b2c726cc3f13b0b67b3a8487fb100542bce445f6e8f803378084c4860de780d7166405bde93f49efd6"}]}, 0x110}, 0x1, 0x0, 0x0, 0x40040}, 0x0) mkdirat$cgroup(r0, &(0x7f0000000040)='syz1\x00', 0x1ff) r3 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r3, &(0x7f0000002080)={0x18}, 0x18) 06:05:21 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xda}, "aafb588c1cf634b2f2fd61b36a6d3f4273ee45b80edb3b1b894df4ad18c64f6df9ddc4d0bfbb7ec4e354ec9b30ffdb147988a3146548575996ffe84488edd57bcf0a9289a2ad8b18066ef3ec192daf754842bcc2f9d6a73bb671de5a237445240c0207c7c2ec71c2131cad1606d8f0b282301be6fce1ce93be7fb107e0b84aa77b865b8fee6ad16dce72d6d0b362cdcd16eaae6c3721cad5f079a960fdb92ac4db1baf73e1d9727014daf2ec6632d16f28a1c669d5027a2435e6115d9febf42a0795ff5ef77ec8838e8897b09078234f4f877eebf1eabe6d1f3c"}, 0xde) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="ff1c1f6aedfacf76"], 0x8) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:21 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xda}, "aafb588c1cf634b2f2fd61b36a6d3f4273ee45b80edb3b1b894df4ad18c64f6df9ddc4d0bfbb7ec4e354ec9b30ffdb147988a3146548575996ffe84488edd57bcf0a9289a2ad8b18066ef3ec192daf754842bcc2f9d6a73bb671de5a237445240c0207c7c2ec71c2131cad1606d8f0b282301be6fce1ce93be7fb107e0b84aa77b865b8fee6ad16dce72d6d0b362cdcd16eaae6c3721cad5f079a960fdb92ac4db1baf73e1d9727014daf2ec6632d16f28a1c669d5027a2435e6115d9febf42a0795ff5ef77ec8838e8897b09078234f4f877eebf1eabe6d1f3c"}, 0xde) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="ff1c1f6aedfacf76"], 0x8) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 184.088516][ T38] audit: type=1804 audit(1688364321.748:286): pid=7271 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/syzkaller-testdir1702677722/syzkaller.gGE60J/207/file1" dev="sda1" ino=1956 res=1 errno=0 [ 184.111562][ T38] audit: type=1804 audit(1688364321.778:287): pid=7292 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/syzkaller-testdir1702677722/syzkaller.gGE60J/207/file1" dev="sda1" ino=1956 res=1 errno=0 [ 184.122210][ T38] audit: type=1804 audit(1688364321.778:288): pid=7271 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/syzkaller-testdir1702677722/syzkaller.gGE60J/207/file1" dev="sda1" ino=1956 res=1 errno=0 06:05:22 executing program 3: sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) (async, rerun: 32) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async, rerun: 32) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 32) r2 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (rerun: 32) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r4 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r5, 0x0, 0x0) (async) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async, rerun: 32) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 32) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = socket$can_bcm(0x1d, 0x2, 0x2) (async) r10 = socket$nl_generic(0x10, 0x3, 0x10) (async) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async, rerun: 64) r14 = gettid() (rerun: 64) process_vm_writev(r14, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r0, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2, r3, r5}}}, @rights={{0x24, 0x1, 0x1, [r1, r6, r7, r8, r1]}}, @rights={{0x18, 0x1, 0x1, [r0, r1]}}, @rights={{0x2c, 0x1, 0x1, [r9, r0, 0xffffffffffffffff, r10, r11, r1, r1]}}, @rights={{0x24, 0x1, 0x1, [r0, r1, r12, r1, r13]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xffffffffffffffff, r15}}}], 0x118, 0x20000801}}], 0x1, 0x2) (async) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r3}}, './file0\x00'}) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:22 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r4, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r4, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$IOMMU_TEST_OP_ACCESS_RW(r3, 0x3ba0, &(0x7f0000000180)={0x38, 0x8, r4, 0x0, 0x8000, 0xb0, &(0x7f0000000080)="a211532cef2c73132f02bfad2118d34d8142039ef9de1778bf188e35707b227f8bbab475df3fa0c5cf57b867daec9326a75f7c4c529995206b36c992c1e7fefdb99a8d2283217cbc0520b76a0e0146810cab2de7294d83558d4940efa0b059cb3fb19a1da5968816056937aa1d46ae8e5e4619eeab45391865ad1ff1ec1c2d25a6c775a9eaa5aba4f811bcdaa113fb12e305b8c2c5cc12a42d54bf79d2032711e2923a16ce9f7c6edf3ad7361525e9d0", 0x1}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:22 executing program 2: syz_emit_vhci(0x0, 0x17) (async, rerun: 64) syz_emit_vhci(0x0, 0x0) (async, rerun: 64) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xda}, "aafb588c1cf634b2f2fd61b36a6d3f4273ee45b80edb3b1b894df4ad18c64f6df9ddc4d0bfbb7ec4e354ec9b30ffdb147988a3146548575996ffe84488edd57bcf0a9289a2ad8b18066ef3ec192daf754842bcc2f9d6a73bb671de5a237445240c0207c7c2ec71c2131cad1606d8f0b282301be6fce1ce93be7fb107e0b84aa77b865b8fee6ad16dce72d6d0b362cdcd16eaae6c3721cad5f079a960fdb92ac4db1baf73e1d9727014daf2ec6632d16f28a1c669d5027a2435e6115d9febf42a0795ff5ef77ec8838e8897b09078234f4f877eebf1eabe6d1f3c"}, 0xde) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="ff1c1f6aedfacf76"], 0x8) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:22 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) (async) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) open(&(0x7f00000001c0)='./file1\x00', 0x400, 0x1) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180), 0x2c0812, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@aname}], [{@measure}]}}) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000000)={0x1}) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x200, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x3, 0x8}]}}}]}, 0x3c}}, 0x0) (async) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x200, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x3, 0x8}]}}}]}, 0x3c}}, 0x0) 06:05:22 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704942f61020000"], 0xa) 06:05:22 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0x0, 0x94}, "293d81094a2884922287ff8c7f14a5278b81897428d9ea4b7d29e4809f205848b1a3f819a9a75b2fab8fcb587838e2be964a8f1a44f32a875c6af7779817230aedfab0b2857ef7e285af7104cf6860e9faae0340826a3c9e79c2bf4c2974ad1d9c9a45d01c68e71de466c009f6d3b1f191fb98af5d0186fe749156251b5830d97b4a4f4796a871b5c02583f0ca29a605c7fb8726"}, 0x98) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x60}, 0x2) [ 185.326653][ T5160] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 185.327048][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:23 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0x0, 0x94}, "293d81094a2884922287ff8c7f14a5278b81897428d9ea4b7d29e4809f205848b1a3f819a9a75b2fab8fcb587838e2be964a8f1a44f32a875c6af7779817230aedfab0b2857ef7e285af7104cf6860e9faae0340826a3c9e79c2bf4c2974ad1d9c9a45d01c68e71de466c009f6d3b1f191fb98af5d0186fe749156251b5830d97b4a4f4796a871b5c02583f0ca29a605c7fb8726"}, 0x98) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x60}, 0x2) 06:05:23 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704942f61020000"], 0xa) [ 185.357050][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:23 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704942f61020000"], 0xa) [ 185.378415][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:23 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) (async) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r4, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r4, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$IOMMU_TEST_OP_ACCESS_RW(r3, 0x3ba0, &(0x7f0000000180)={0x38, 0x8, r4, 0x0, 0x8000, 0xb0, &(0x7f0000000080)="a211532cef2c73132f02bfad2118d34d8142039ef9de1778bf188e35707b227f8bbab475df3fa0c5cf57b867daec9326a75f7c4c529995206b36c992c1e7fefdb99a8d2283217cbc0520b76a0e0146810cab2de7294d83558d4940efa0b059cb3fb19a1da5968816056937aa1d46ae8e5e4619eeab45391865ad1ff1ec1c2d25a6c775a9eaa5aba4f811bcdaa113fb12e305b8c2c5cc12a42d54bf79d2032711e2923a16ce9f7c6edf3ad7361525e9d0", 0x1}) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:23 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0x0, 0x94}, "293d81094a2884922287ff8c7f14a5278b81897428d9ea4b7d29e4809f205848b1a3f819a9a75b2fab8fcb587838e2be964a8f1a44f32a875c6af7779817230aedfab0b2857ef7e285af7104cf6860e9faae0340826a3c9e79c2bf4c2974ad1d9c9a45d01c68e71de466c009f6d3b1f191fb98af5d0186fe749156251b5830d97b4a4f4796a871b5c02583f0ca29a605c7fb8726"}, 0x98) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x60}, 0x2) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0x0, 0x94}, "293d81094a2884922287ff8c7f14a5278b81897428d9ea4b7d29e4809f205848b1a3f819a9a75b2fab8fcb587838e2be964a8f1a44f32a875c6af7779817230aedfab0b2857ef7e285af7104cf6860e9faae0340826a3c9e79c2bf4c2974ad1d9c9a45d01c68e71de466c009f6d3b1f191fb98af5d0186fe749156251b5830d97b4a4f4796a871b5c02583f0ca29a605c7fb8726"}, 0x98) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x60}, 0x2) (async) [ 185.410782][ T38] audit: type=1804 audit(1688364323.078:289): pid=7308 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/syzkaller-testdir1702677722/syzkaller.gGE60J/208/file1" dev="sda1" ino=1951 res=1 errno=0 [ 185.418190][ T5160] Bluetooth: hci1: SCO packet for unknown connection handle 0 06:05:23 executing program 0: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r4, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r4, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$IOMMU_TEST_OP_ACCESS_RW(r3, 0x3ba0, &(0x7f0000000180)={0x38, 0x8, r4, 0x0, 0x8000, 0xb0, &(0x7f0000000080)="a211532cef2c73132f02bfad2118d34d8142039ef9de1778bf188e35707b227f8bbab475df3fa0c5cf57b867daec9326a75f7c4c529995206b36c992c1e7fefdb99a8d2283217cbc0520b76a0e0146810cab2de7294d83558d4940efa0b059cb3fb19a1da5968816056937aa1d46ae8e5e4619eeab45391865ad1ff1ec1c2d25a6c775a9eaa5aba4f811bcdaa113fb12e305b8c2c5cc12a42d54bf79d2032711e2923a16ce9f7c6edf3ad7361525e9d0", 0x1}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:23 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xde}, "41bc0bb48362631f986916328f76ac9239d10a12335228923f9206174b8ac2f2483d810dd4607f931c174518180caa02fa6a2a630a7d6b1c9cdd33b70efaa791af2c13be49348dfda095daa765de8a37e92f416a39e37b3c638ba135c243b25bdb6ca646622dc4acf821549e22ffa657d44b77a6fb5bdb51bcf7503f897987ff7b72bf4e51810a7bd5b2979afbf57c42a95f3818d0da3a48a5eee5aa877e365963e5df84235f4ed42ab0b67cfa87351dde7e2b93a64e1ac997baff9cb5939f696b736e204f8ec3a54eb98678c250e138a0e3c97298e732d2e0b8b9a93257"}, 0xe2) 06:05:23 executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r0 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r2 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r3, 0x0, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r5, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r7 = socket$can_bcm(0x1d, 0x2, 0x2) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r10, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r11 = gettid() process_vm_writev(r11, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r13 = syz_open_pts(r4, 0x2d0501) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r0, r1, r3}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r4, r5, r6, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r12}}}, @rights={{0x38, 0x1, 0x1, [r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, 0xffffffffffffffff, r13, r4, r6]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @rights={{0x34, 0x1, 0x1, [r13, 0xffffffffffffffff, r9, 0xffffffffffffffff, r6, r8, r10, r9, 0xffffffffffffffff]}}], 0x148, 0x20004015}}], 0x1, 0x841) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=0x0) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB='\b\x00h\x00', @ANYRES32=r14, @ANYBLOB="1400200000000000000000000000ffff0000000008002500", @ANYRES32=0x0, @ANYBLOB="2bd50b8a07000000"], 0xb4}, 0x1, 0x0, 0x0, 0x24000050}, 0x0) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="03c90000844258582d92751613f5a58f0283750a7c70ed50d3dd9f051b3b9015181abed6616e8a0740306e316c031a11b52697bba9937677cda9b7eefdcbda612524834c058837dea277864bd65be6c35f286fe96ebd22af4fa99bcc2f0800f379ddd9c15887d01e6362ce59c43e917f71786f70a29416c0ca727ead6479389cfea3a3659917d91321c1ac17aacf99e917002aeb62002e36f5d45663a03627b0633b79b627204b4397faa63cbf7195d11e6e4b5351d325cb431bf91c619ed0c5eea032552a"], 0x4) [ 185.423009][ T5160] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 185.447708][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:23 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xde}, "41bc0bb48362631f986916328f76ac9239d10a12335228923f9206174b8ac2f2483d810dd4607f931c174518180caa02fa6a2a630a7d6b1c9cdd33b70efaa791af2c13be49348dfda095daa765de8a37e92f416a39e37b3c638ba135c243b25bdb6ca646622dc4acf821549e22ffa657d44b77a6fb5bdb51bcf7503f897987ff7b72bf4e51810a7bd5b2979afbf57c42a95f3818d0da3a48a5eee5aa877e365963e5df84235f4ed42ab0b67cfa87351dde7e2b93a64e1ac997baff9cb5939f696b736e204f8ec3a54eb98678c250e138a0e3c97298e732d2e0b8b9a93257"}, 0xe2) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xde}, "41bc0bb48362631f986916328f76ac9239d10a12335228923f9206174b8ac2f2483d810dd4607f931c174518180caa02fa6a2a630a7d6b1c9cdd33b70efaa791af2c13be49348dfda095daa765de8a37e92f416a39e37b3c638ba135c243b25bdb6ca646622dc4acf821549e22ffa657d44b77a6fb5bdb51bcf7503f897987ff7b72bf4e51810a7bd5b2979afbf57c42a95f3818d0da3a48a5eee5aa877e365963e5df84235f4ed42ab0b67cfa87351dde7e2b93a64e1ac997baff9cb5939f696b736e204f8ec3a54eb98678c250e138a0e3c97298e732d2e0b8b9a93257"}, 0xe2) (async) [ 185.467667][ T5160] Bluetooth: hci0: Malformed Event: 0x02 [ 185.469797][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:23 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xde}, "41bc0bb48362631f986916328f76ac9239d10a12335228923f9206174b8ac2f2483d810dd4607f931c174518180caa02fa6a2a630a7d6b1c9cdd33b70efaa791af2c13be49348dfda095daa765de8a37e92f416a39e37b3c638ba135c243b25bdb6ca646622dc4acf821549e22ffa657d44b77a6fb5bdb51bcf7503f897987ff7b72bf4e51810a7bd5b2979afbf57c42a95f3818d0da3a48a5eee5aa877e365963e5df84235f4ed42ab0b67cfa87351dde7e2b93a64e1ac997baff9cb5939f696b736e204f8ec3a54eb98678c250e138a0e3c97298e732d2e0b8b9a93257"}, 0xe2) [ 185.506672][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:23 executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 64) r0 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async, rerun: 64) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) (async) r2 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r3, 0x0, 0x0) (async) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r5, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r7 = socket$can_bcm(0x1d, 0x2, 0x2) (async, rerun: 64) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 64) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r10, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r11 = gettid() process_vm_writev(r11, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r13 = syz_open_pts(r4, 0x2d0501) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r0, r1, r3}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r4, r5, r6, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r12}}}, @rights={{0x38, 0x1, 0x1, [r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, 0xffffffffffffffff, r13, r4, r6]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @rights={{0x34, 0x1, 0x1, [r13, 0xffffffffffffffff, r9, 0xffffffffffffffff, r6, r8, r10, r9, 0xffffffffffffffff]}}], 0x148, 0x20004015}}], 0x1, 0x841) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=0x0) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB='\b\x00h\x00', @ANYRES32=r14, @ANYBLOB="1400200000000000000000000000ffff0000000008002500", @ANYRES32=0x0, @ANYBLOB="2bd50b8a07000000"], 0xb4}, 0x1, 0x0, 0x0, 0x24000050}, 0x0) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="03c90000844258582d92751613f5a58f0283750a7c70ed50d3dd9f051b3b9015181abed6616e8a0740306e316c031a11b52697bba9937677cda9b7eefdcbda612524834c058837dea277864bd65be6c35f286fe96ebd22af4fa99bcc2f0800f379ddd9c15887d01e6362ce59c43e917f71786f70a29416c0ca727ead6479389cfea3a3659917d91321c1ac17aacf99e917002aeb62002e36f5d45663a03627b0633b79b627204b4397faa63cbf7195d11e6e4b5351d325cb431bf91c619ed0c5eea032552a"], 0x4) 06:05:23 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) (async) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) (async) r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r4, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r4, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$IOMMU_TEST_OP_ACCESS_RW(r3, 0x3ba0, &(0x7f0000000180)={0x38, 0x8, r4, 0x0, 0x8000, 0xb0, &(0x7f0000000080)="a211532cef2c73132f02bfad2118d34d8142039ef9de1778bf188e35707b227f8bbab475df3fa0c5cf57b867daec9326a75f7c4c529995206b36c992c1e7fefdb99a8d2283217cbc0520b76a0e0146810cab2de7294d83558d4940efa0b059cb3fb19a1da5968816056937aa1d46ae8e5e4619eeab45391865ad1ff1ec1c2d25a6c775a9eaa5aba4f811bcdaa113fb12e305b8c2c5cc12a42d54bf79d2032711e2923a16ce9f7c6edf3ad7361525e9d0", 0x1}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:23 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r4 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r5, 0x0, 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = socket$can_bcm(0x1d, 0x2, 0x2) r10 = socket$nl_generic(0x10, 0x3, 0x10) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r14 = gettid() process_vm_writev(r14, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r0, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2, r3, r5}}}, @rights={{0x24, 0x1, 0x1, [r1, r6, r7, r8, r1]}}, @rights={{0x18, 0x1, 0x1, [r0, r1]}}, @rights={{0x2c, 0x1, 0x1, [r9, r0, 0xffffffffffffffff, r10, r11, r1, r1]}}, @rights={{0x24, 0x1, 0x1, [r0, r1, r12, r1, r13]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xffffffffffffffff, r15}}}], 0x118, 0x20000801}}], 0x1, 0x2) getgroups(0x9, &(0x7f0000001540)=[0xffffffffffffffff, 0xee01, 0xee01, 0xffffffffffffffff, 0xee01, 0x0, 0xee00, 0xee01, 0xee00]) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfe, 0x800}, 0xc, &(0x7f00000013c0)=[{&(0x7f0000000080)={0x1b8, 0x2b, 0x200, 0x70bd2c, 0x25dfdbff, "", [@nested={0x128, 0x5e, 0x0, 0x1, [@typed={0x5c, 0x7f, 0x0, 0x0, @binary="34a3918f473f8090244ba919a161110821641640b3106f9770ef67b54e0f99750917582eba4816d288dfcde7d30315dffc9e636595dfb7eeb095b4e635c11fd90917fddfd35844fd9c48c5096a804933a413e28c1e2d10f8"}, @generic="7a4ac97b0f5bddb0f6179f9df1dae713a911062629c40d8003a0265f331ef1afdc99dda03e3bb110bd898f448de5c79253b85938c210424250b877607d481a6c2024514fa8c12c55805dd7e8dc1fa5a95a8ffbf1bfd150b53d91a0de5f7f782a4f36c6cddb1105df42b46e39fce1ee74fc2f662287196837cd79e925548517ca6e4565ec0be05401324ff86b8131e282e2d2e3907a399194190ce7d36c4985dfe4426ae11cf646793ed23f28c1b44d36bc791795d04ad3bc9a555008050639ca6f1e579cc3736ad1"]}, @generic="c615c7ac06da3888e1729d025f36209be364e0f55b44ca9454f6fd7e8c50b90f55503127f3eb62356125930cf36e239cf2e942388c2707752eb80a4bdcbf3eb496e28a0388d72c7f1c3c8b9c84a42602d60b0e347d6af833b150dcaa6afa78cd2a1ae77de9e9877e9baabf437770d8848cbd52236e04787735ce643d426f"]}, 0x1b8}, {&(0x7f0000000240)={0x100, 0x30, 0x800, 0x70bd2b, 0x25dfdbfd, "", [@nested={0xed, 0x49, 0x0, 0x1, [@generic="05e249938c643d6a57bbba63c43d32fb57fcd8f41ad78fa78f9d6c09244b1f8abaeb2bdf2ea83f0cc0382f40286b837b63da44cc540ebb6ce0d489ab8a2b3e70ce6abe6acf173bef0fe71d6584c66a047e8990615127eb63ae1b8891d3c8427ad98388a272634d8fbbc6e1a47065598a73dc380a47544b41ccac2f830317d5378fea3f5616087d9671c42010a965ca857aaa75e2b6b7589d87c5fe03f1649da268ba869e4f7a3a44748dc43057941ae105e7c7330f137c528bfa06eceb0ad3e1cf8d12683e8d3f1fe0ad8e49f4f194e7c95ad7dfa85c8c3c7a", @typed={0x8, 0x6e, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x77, 0x0, 0x0, @fd}]}, @generic]}, 0x100}, {&(0x7f0000000340)={0x208, 0x26, 0x100, 0x70bd2b, 0x25dfdbfd, "", [@nested={0x8, 0x6b, 0x0, 0x1, [@typed={0x4, 0x65}]}, @generic="c72fc447415c9972e36d7c1e40c4f0977cbf388453a210cf77be8cb3ff7369326c30df6531bb87f5e72153c5546ed095bd5d6b4af4d0108e80eff7f0c5777db9c268d6794fc8f24a4dba09cd2595bc066dacc649feee52328aba73cba25bdc653d65fa90f47f2d7d179e3070cbc05990a52cf21c5826548fae9999720f1830", @nested={0xf6, 0x1d, 0x0, 0x1, [@typed={0x8, 0x2f, 0x0, 0x0, @pid}, @typed={0x8, 0x37, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x2b, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0xc, 0x32, 0x0, 0x0, @u64=0x3}, @generic, @typed={0x8, 0x4, 0x0, 0x0, @str='#$\x85\x00'}, @typed={0x8, 0x18, 0x0, 0x0, @uid}, @generic="d4bb96862d94bbfafca984bcf431a64f6baa9e7e6a0e1fc0bf7f696d8ae767eee94ae5bd524627718e8a1fa15e0777447fafc82b078c2f89f62863f0e1d40c502d054822c684b7f4c14a5a866b21258bc9e8e357ccc40a1a78de6cdb0ee79f342334b76b89c9490de9f023cabc51c26ce991b13afff2966559c504906781ca9975326f466bd8e24e46eee8b5852236993fad1b95a016043d7a0215f1ae0b4804fe484f7f2c2ded0ba6d39c18cce4fbd2b93b116920ae4276eee8bebe02a3"]}, @typed={0x8, 0x59, 0x0, 0x0, @pid}, @generic="3e4298b11ae7c32b76f703ef3da87d8db9b845ce48a6dbf8c8b82a78aafa060a4daa12e4f5a7c92fd8b56cc10efbc1aeb805cdfb684434b00ae3238b44d176f1601cf85592310fad2f33b694de88028135ec0729aaf5206a9ad51871ba36bbe76df7f2944286b8eab0b98b47dcd239c9"]}, 0x208}, {&(0x7f0000000580)={0xb4, 0x42, 0x300, 0x70bd2c, 0x25dfdbfd, "", [@generic="bf560f6a91c8dfddcbaaf9c1a0a0f4081badd4369aa19172d49f253a71faaa7bd860a347a2a223c63f00d7592cd847cc7b6e930c6568519cdb916e93083d789d200f638a09ad780d218e59afe5c27422a8724ff3061b137f7ba3ec8c46cebd329dc7cd29d47d569e55d93916", @typed={0x8, 0x5b, 0x0, 0x0, @pid}, @typed={0x8, 0x3e, 0x0, 0x0, @fd}, @nested={0x18, 0xc, 0x0, 0x1, [@typed={0x14, 0x29, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x3f}}]}, @typed={0x8, 0x49, 0x0, 0x0, @ipv4=@private=0xa010101}, @typed={0x8, 0x63, 0x0, 0x0, @uid}]}, 0xb4}, {&(0x7f0000000640)={0x564, 0x3c, 0x10, 0x70bd26, 0x25dfdbfd, "", [@nested={0x30c, 0x8d, 0x0, 0x1, [@generic="e86564b36d0fc3a153660a412952b9d607a7d19540962f79fda3d344352a6e5785974308fab85e273cc4af77b875a6362f0a039c36bf6a7e347461380d0d29bf442665498e8d90e0ed7f8b02cf8b65fa73890079e6fc87038fa6670eb1c47d0ae66b6c8d", @generic="5021a85d348c917c2bd044cae1f452bdb9327ccb89ec54cc8d2f0d88a4432413c5ed11e50c50f5b6a9481fa23911df692ce09b9f6d290ec10d4d7eb92d8f3dcf7c64cf908b753a5f0db3a7d7b773b2b0884275dc610774987a00b735a4b6a6d968156e7ffb2902f8b55de4f4d979e5663e54458a860c23b7a16eeb087245e58b548391b2bac8943e10e22ba760fc432d0d72b795de7eb6ed192eae7d24908729f6bb76fa81635d0cdd1df575d1b939d1f6290bca827a209ab77227159cfcc16ca39be0a37fec3357aa2fafc73b39af447684202aa28712e2baad967921ecef9b49d0d8270ea5601fd8716fb5a64bab654d9916a0c9", @generic="dc948773793423a5c52fb3e0e67df3252f6bbb650e9056bee0ad9cf57636ad654218339d8c7be1564d6bb3215aa08ee55557b4a51d3b57b677eb972d4ab1e2728c04fad2c966b77c58f4fe579efc4f00aecec2f62a9604e0bd29e7ae2079afe8509e87c5c8935f3be75758ae21a632f98b41aa0b7e821f6e0fea7412a9d99f40707bc142421511cae51c31160c40dfc66333348a9879e79b10d5ca3d508a12910b37bfecea76093fd294c903", @generic="ec05f99f116da92f5d65ad50824cfd4d7ddf4a8b28", @generic="826fd068595a3a0358e4090197c99654326bcf5701645e41877a35a8269c55b47b690d00e5852034ea34b277c21491b995279456af23d034c4073ed52322b60e4db9b3a457c91c97a2b383651db410639ca26803f81510ec4babc6afc460c6ee7efba55c13aeebdce4954c1cd0d44ce5608ac2cdec2e67ca4e2a7cbdfd34aacc38a3f67699fdd517dde6160474b9c5eeba0bff5c0d08637a5ae61a3a5095f38b550165871b3bb2f5dbb9946968b91b50196e6422e29a7572c02998c94f4fa396e45c20cf81639f904988901efb54227e3eab80bb", @generic="02ed13e1ec621ad64864ffdf6655b38aea2044b30f765f9c2691"]}, @generic="4c8fecbc2f43c713839773d42c4cac4ef602dbc43f65a29ef013d7b55bef667ef2a4c6cf1274dcae21a9b5fd8111c9f99d5169a6dd0922df82c2ed20a3df633b0e4e19e2309c539cbbb0509e8fd71380dd12e1fcb4a7dc5c870576c57d26d2e9b64e15db990219767c0738820c82e54868977a5b8eeafd100b65021bcfff9bc0ce96912cc53dbdc4e72f3063e9db928f86a3bf9a316449df101ad1ba974078c981f4726d8a7ea8dc6bb3ea", @nested={0x19c, 0x4a, 0x0, 0x1, [@typed={0x6, 0x32, 0x0, 0x0, @str='\xe9\x00'}, @generic="719e8522867c82295bc817dd3ee68ba65a0dcff34e193246111c4d8263e7610b9ed732a9d75a9b8f1ab0bcd6d716f81fb7068ee68e87ce63723abfcc78d709bfd80ee9d9f592d13da4d8d097c8aec6e7829281e7e7d6264b8e677e9c07827bb369d62f08cb6730464455d7fa5aabedc34a317f7f3bd19cdc8aa8882893c77f2c1e5456b623d99378271348b9f49d4682fa215da120dbd560febd5d", @typed={0xc, 0x78, 0x0, 0x0, @u64=0x8}, @generic="63986ea8e8d68f8470e026d0e3cd23812b40b28b747302015520d0ab034909eedacf765a0fc386120cacc7538ee195bd541a582ccacd7512615c0f6c3577d88b3f8e0c790e1cedb8f553774734717566e010d069ad1160b108ea2ecdac8410bd0642c9fbfb60530eb5e44d778544d5db7391", @typed={0x14, 0x62, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic="ca", @typed={0x8, 0x6c, 0x0, 0x0, @ipv4=@private=0xa010102}, @generic="d946720bbb900744fdcd709ae617515ccbdeb250684a75b69416f79c985ba4faf11456eba70b8232345736c45c748236284911e5d5ef5c86fccf5c979ef364a6bda09cc7e12e84e00814d077fdbbb1c9196df589eecc2acb62d9"]}]}, 0x564}, {&(0x7f0000000bc0)={0x50, 0x1f, 0x4, 0x70bd2a, 0x25dfdbfc, "", [@generic="a30ac274799516e164912f1fc5e57aa541768a26aaae525e258d89da358b963c9ab1a15da38f4b9ce44b125e", @generic="daa4b50a14b190286f9d3ebb0fc18fff60"]}, 0x50}, {&(0x7f0000000c40)={0x188, 0x16, 0x100, 0x70bd2c, 0x25dfdbfc, "", [@typed={0xa, 0x26, 0x0, 0x0, @binary="14703e9665be"}, @generic="69b5d142dc46c0b0a44a400758bcf07857c61455b351fb3318011f18cd64f85e69f9883eba630c15abaf8171beac6a9bd201699a9087d3e2995b84f96642d124be2e46439b9de2f02e0edb5494393cb6309f6ca352cec1bc9bd46fa8b23cb4a7799259b36b29b8d9ab9826c4a2335c9b54dc601418b933e076891e4e7b75f8f4bf7899fecb9ba95203c41779135ceb97de21293d2af42600621c72accf2917ca2fb9f075ddb843677fd917ebc370ac84", @typed={0x8, 0x1f, 0x0, 0x0, @uid=0xee00}, @nested={0xc, 0x95, 0x0, 0x1, [@typed={0x8, 0x74, 0x0, 0x0, @u32=0x2}]}, @generic="157b90a96fca37811e75bb0e68c7241ef12439bcb27157db6898f9d2ccddcb537c7f6b3f26cafde31681a5b66ef0fd5eac7226209d21ab24b9247b32260a2a50d8c26a02d809cfff8380fe7f43d60861e2c96059b178ae6c8b32e951ea862312c99daa6ee1604c58e4b47e06349077314a2ceda8b3750e0459859eade7547be5d809f3a7cc3369a66791fa90e5d00763028c8327b2352261f768f6297391af78", @typed={0x8, 0x34, 0x0, 0x0, @fd}]}, 0x188}, {&(0x7f0000000e40)={0x2f0, 0x25, 0x100, 0x70bd2b, 0x25dfdbfe, "", [@nested={0x243, 0x54, 0x0, 0x1, [@generic="bab2289365a6432b82b4d7377b03d67be689374a8cc34f77edb7e6a620c602c12e80ba48d52a9dd65b31bb48792144483629269e3f23bca6ae0f6c438a67e14be1ae0ca0e0ea10025a65049e157f64a505ae96016a097212890f8a46399471a0557bd8e9ce2626c5614c512acda55113a286ad1cceb96dc7fdb37da355a75c5e092e57fcb600c9", @generic="d7011849b5278b901d117f49f2bcacc331daf3033dc668b3777816f698aa7c57920f5511423432b8e977a4e8205673cfdc8aaf891d58e9b509e2f6692da3ba28ff49e70fa5206cfb4915461c821e0809342e74ba68841070b879a741ff5370100219c9fe2390693c2dea11b17cf126ab0a7bd510a9b17c59", @generic="2146029e4966cd95babe9e1c015dc62df7f2c4516c83d487dc9ee4b285b153972a333573662e5a93", @typed={0x32, 0x7f, 0x0, 0x0, @binary="0870dd214266bae8ff3943d91d010bb7e39242d0174d6f1334097949af7dc89850d9dcba341daab716e4bf09be99"}, @generic="46d81dc4149f6670e5cf5618a1749f96f8ddacf047401113118e1ba974ef007068975e6ec92fae8f23f26c8959afd44ddb1bcbd5e2c3d0b43abb180e251bce18e347cc7fd55018062b0c36402a26010885c9aa2227a24d0c366414a34bd12d976d476017737f6e55", @typed={0x8, 0x40, 0x0, 0x0, @pid}, @typed={0x72, 0x74, 0x0, 0x0, @binary="d38befb9dd9c7fba03a6f6d1294185b9ec84d1da7f813d7a066697b09ab30c04e40fb3c4cc818092fb34c4ba510caff10e7c7262c0189f0bc805f6ce0b04a111b2ab69aeb0be2faee681d909c69733603c9c7ed8d5d05414d20ed758ba26f5fba9c230404b6fcdd01afc8340e1d5"}]}, @generic="2754c3436b67377b655bacc0a53fd0b2698dcce90021f3eeb175c1a2a118d039e5bdd6c01e7bec1303e6c0237ed2a610563ae21f74383e58da3108f428908209be55d9fc711d36df55d659c3c50151a396bc2494bb319aa6fc1579527c3703e57c3aa48f33e579dc95694ac0b4076a4ba73037c6c44317183d9123cd91fdc669d2a8b89ce934962faf70c6e29cae63a6b8cdeb0ce01cb96d02194fe3"]}, 0x2f0}, {&(0x7f0000001140)={0x27c, 0x15, 0x8, 0x70bd2d, 0x25dfdbfc, "", [@nested={0x255, 0x79, 0x0, 0x1, [@typed={0xdc, 0x9, 0x0, 0x0, @binary="76af48b345a16522bb6bc87abc523e50bd07f3d848b05163488954abe0fdc64f673ca1e3483bfe470b960de0298c6f36fee0070fccac3b8768815b3d203a0b0748f5bfff62ae9bce13eeffd37c33264264d1decc429b3de55be6d020401606ff3c7a077a2557dd03c22e35b6385226522f8e876c48d224e186bcc0e15be5798af7a729341a9f5e95f373b1681e40ff02fdb17f45390c6dfb49a994d878841233813b232dbaeea87bd9dc5d7c5a4c1898ce24330d46c7ccb5163a1a57763d1f83d468bf1659ff64ab82fbaad47f75d1b133d95ff20a850844"}, @generic="ca74fe0901707077b246c46850b00137f23f377db9060f8b8f629be5d42b34be327f8a46f38c4b43507aeaf64a0c3c5761f87c1926b321182d54db99084834c0f93422e74978913435223dc70a9225e7645d0002efaee72c4bb10cd8188e7225c033f04fedb600da29aee9289afa48e83f02d653f960111459047dc3ac2e8163b4004c2b68122c7e37bcbd30b724351324dd57f7a1fd75ce1a0d430d9d0386524faa92116341e47dce22683b005d08", @generic="f65edea49a754c1e3a324464d2ac0ce8021ea46ef7afce0f9d6179cdbd355ad252fc273730a0aecbf9ab826dd2952e370c06638be878cfc0dda6bd2416cc171cf5f29e9f6b30592870834d4d6a3b9a656c647406ee20fe5bc0931ea76e94545aa7e483dd05dac272facbd29c57316eb9047b94d144a1af5df399ac3dfddc77cf68bfdc223cbc093317995af0c40a436ed899d393b53a6811d6a4ccb60a22f558136ab5731ea09488cfa2f714edf7d881fe92930ce790cb83651a8caa", @typed={0x8, 0x87, 0x0, 0x0, @ipv4=@remote}, @generic="d8c0"]}, @typed={0x14, 0x3c, 0x0, 0x0, @ipv6=@remote}]}, 0x27c}], 0x9, &(0x7f0000001580)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xee01, r16}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x98, 0x4080104}, 0x40000) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:23 executing program 0: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r3 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r4, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r4, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$IOMMU_TEST_OP_ACCESS_RW(r3, 0x3ba0, &(0x7f0000000180)={0x38, 0x8, r4, 0x0, 0x8000, 0xb0, &(0x7f0000000080)="a211532cef2c73132f02bfad2118d34d8142039ef9de1778bf188e35707b227f8bbab475df3fa0c5cf57b867daec9326a75f7c4c529995206b36c992c1e7fefdb99a8d2283217cbc0520b76a0e0146810cab2de7294d83558d4940efa0b059cb3fb19a1da5968816056937aa1d46ae8e5e4619eeab45391865ad1ff1ec1c2d25a6c775a9eaa5aba4f811bcdaa113fb12e305b8c2c5cc12a42d54bf79d2032711e2923a16ce9f7c6edf3ad7361525e9d0", 0x1}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:23 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = syz_open_dev$mouse(&(0x7f0000000040), 0x8, 0xc0202) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000100)={0x300000000, r1}) connect$llc(r2, &(0x7f0000000140)={0x1a, 0x323, 0x7e, 0x7f, 0x9, 0xfd}, 0x10) ioctl$BLKSECTGET(r2, 0x1267, &(0x7f0000000180)) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f00000000c0)=r3) 06:05:23 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = syz_open_dev$mouse(&(0x7f0000000040), 0x8, 0xc0202) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000100)={0x300000000, r1}) (async) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000100)={0x300000000, r1}) connect$llc(r2, &(0x7f0000000140)={0x1a, 0x323, 0x7e, 0x7f, 0x9, 0xfd}, 0x10) ioctl$BLKSECTGET(r2, 0x1267, &(0x7f0000000180)) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f00000000c0)=r3) 06:05:23 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = syz_open_dev$mouse(&(0x7f0000000040), 0x8, 0xc0202) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000100)={0x300000000, r1}) connect$llc(r2, &(0x7f0000000140)={0x1a, 0x323, 0x7e, 0x7f, 0x9, 0xfd}, 0x10) (async) connect$llc(r2, &(0x7f0000000140)={0x1a, 0x323, 0x7e, 0x7f, 0x9, 0xfd}, 0x10) ioctl$BLKSECTGET(r2, 0x1267, &(0x7f0000000180)) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f00000000c0)=r3) 06:05:23 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = memfd_secret(0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000040)={0x0, 0x7f, 0x7fff}) [ 185.768043][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:24 executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async, rerun: 64) r0 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (rerun: 64) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) (async) r2 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r3, 0x0, 0x0) (async) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r4, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r5, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r7 = socket$can_bcm(0x1d, 0x2, 0x2) (async) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r10, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r11 = gettid() process_vm_writev(r11, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r13 = syz_open_pts(r4, 0x2d0501) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r0, r1, r3}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, r4, r5, r6, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r12}}}, @rights={{0x38, 0x1, 0x1, [r7, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8, 0xffffffffffffffff, 0xffffffffffffffff, r13, r4, r6]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r0, 0x0, 0xee00}}}, @rights={{0x34, 0x1, 0x1, [r13, 0xffffffffffffffff, r9, 0xffffffffffffffff, r6, r8, r10, r9, 0xffffffffffffffff]}}], 0x148, 0x20004015}}], 0x1, 0x841) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=0x0) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB='\b\x00h\x00', @ANYRES32=r14, @ANYBLOB="1400200000000000000000000000ffff0000000008002500", @ANYRES32=0x0, @ANYBLOB="2bd50b8a07000000"], 0xb4}, 0x1, 0x0, 0x0, 0x24000050}, 0x0) (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="03c90000844258582d92751613f5a58f0283750a7c70ed50d3dd9f051b3b9015181abed6616e8a0740306e316c031a11b52697bba9937677cda9b7eefdcbda612524834c058837dea277864bd65be6c35f286fe96ebd22af4fa99bcc2f0800f379ddd9c15887d01e6362ce59c43e917f71786f70a29416c0ca727ead6479389cfea3a3659917d91321c1ac17aacf99e917002aeb62002e36f5d45663a03627b0633b79b627204b4397faa63cbf7195d11e6e4b5351d325cb431bf91c619ed0c5eea032552a"], 0x4) 06:05:24 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = memfd_secret(0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000040)={0x0, 0x7f, 0x7fff}) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) memfd_secret(0x0) (async) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000040)={0x0, 0x7f, 0x7fff}) (async) 06:05:24 executing program 0: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = syz_open_dev$mouse(&(0x7f0000000040), 0x8, 0xc0202) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000100)={0x300000000, r1}) connect$llc(r2, &(0x7f0000000140)={0x1a, 0x323, 0x7e, 0x7f, 0x9, 0xfd}, 0x10) ioctl$BLKSECTGET(r2, 0x1267, &(0x7f0000000180)) r3 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f00000000c0)=r3) 06:05:24 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) (async) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) (async) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async) r2 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r4 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r5, 0x0, 0x0) (async) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = socket$can_bcm(0x1d, 0x2, 0x2) (async) r10 = socket$nl_generic(0x10, 0x3, 0x10) (async) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r14 = gettid() process_vm_writev(r14, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) (async) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r0, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2, r3, r5}}}, @rights={{0x24, 0x1, 0x1, [r1, r6, r7, r8, r1]}}, @rights={{0x18, 0x1, 0x1, [r0, r1]}}, @rights={{0x2c, 0x1, 0x1, [r9, r0, 0xffffffffffffffff, r10, r11, r1, r1]}}, @rights={{0x24, 0x1, 0x1, [r0, r1, r12, r1, r13]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xffffffffffffffff, r15}}}], 0x118, 0x20000801}}], 0x1, 0x2) getgroups(0x9, &(0x7f0000001540)=[0xffffffffffffffff, 0xee01, 0xee01, 0xffffffffffffffff, 0xee01, 0x0, 0xee00, 0xee01, 0xee00]) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfe, 0x800}, 0xc, &(0x7f00000013c0)=[{&(0x7f0000000080)={0x1b8, 0x2b, 0x200, 0x70bd2c, 0x25dfdbff, "", [@nested={0x128, 0x5e, 0x0, 0x1, [@typed={0x5c, 0x7f, 0x0, 0x0, @binary="34a3918f473f8090244ba919a161110821641640b3106f9770ef67b54e0f99750917582eba4816d288dfcde7d30315dffc9e636595dfb7eeb095b4e635c11fd90917fddfd35844fd9c48c5096a804933a413e28c1e2d10f8"}, @generic="7a4ac97b0f5bddb0f6179f9df1dae713a911062629c40d8003a0265f331ef1afdc99dda03e3bb110bd898f448de5c79253b85938c210424250b877607d481a6c2024514fa8c12c55805dd7e8dc1fa5a95a8ffbf1bfd150b53d91a0de5f7f782a4f36c6cddb1105df42b46e39fce1ee74fc2f662287196837cd79e925548517ca6e4565ec0be05401324ff86b8131e282e2d2e3907a399194190ce7d36c4985dfe4426ae11cf646793ed23f28c1b44d36bc791795d04ad3bc9a555008050639ca6f1e579cc3736ad1"]}, @generic="c615c7ac06da3888e1729d025f36209be364e0f55b44ca9454f6fd7e8c50b90f55503127f3eb62356125930cf36e239cf2e942388c2707752eb80a4bdcbf3eb496e28a0388d72c7f1c3c8b9c84a42602d60b0e347d6af833b150dcaa6afa78cd2a1ae77de9e9877e9baabf437770d8848cbd52236e04787735ce643d426f"]}, 0x1b8}, {&(0x7f0000000240)={0x100, 0x30, 0x800, 0x70bd2b, 0x25dfdbfd, "", [@nested={0xed, 0x49, 0x0, 0x1, [@generic="05e249938c643d6a57bbba63c43d32fb57fcd8f41ad78fa78f9d6c09244b1f8abaeb2bdf2ea83f0cc0382f40286b837b63da44cc540ebb6ce0d489ab8a2b3e70ce6abe6acf173bef0fe71d6584c66a047e8990615127eb63ae1b8891d3c8427ad98388a272634d8fbbc6e1a47065598a73dc380a47544b41ccac2f830317d5378fea3f5616087d9671c42010a965ca857aaa75e2b6b7589d87c5fe03f1649da268ba869e4f7a3a44748dc43057941ae105e7c7330f137c528bfa06eceb0ad3e1cf8d12683e8d3f1fe0ad8e49f4f194e7c95ad7dfa85c8c3c7a", @typed={0x8, 0x6e, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x77, 0x0, 0x0, @fd}]}, @generic]}, 0x100}, {&(0x7f0000000340)={0x208, 0x26, 0x100, 0x70bd2b, 0x25dfdbfd, "", [@nested={0x8, 0x6b, 0x0, 0x1, [@typed={0x4, 0x65}]}, @generic="c72fc447415c9972e36d7c1e40c4f0977cbf388453a210cf77be8cb3ff7369326c30df6531bb87f5e72153c5546ed095bd5d6b4af4d0108e80eff7f0c5777db9c268d6794fc8f24a4dba09cd2595bc066dacc649feee52328aba73cba25bdc653d65fa90f47f2d7d179e3070cbc05990a52cf21c5826548fae9999720f1830", @nested={0xf6, 0x1d, 0x0, 0x1, [@typed={0x8, 0x2f, 0x0, 0x0, @pid}, @typed={0x8, 0x37, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x2b, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0xc, 0x32, 0x0, 0x0, @u64=0x3}, @generic, @typed={0x8, 0x4, 0x0, 0x0, @str='#$\x85\x00'}, @typed={0x8, 0x18, 0x0, 0x0, @uid}, @generic="d4bb96862d94bbfafca984bcf431a64f6baa9e7e6a0e1fc0bf7f696d8ae767eee94ae5bd524627718e8a1fa15e0777447fafc82b078c2f89f62863f0e1d40c502d054822c684b7f4c14a5a866b21258bc9e8e357ccc40a1a78de6cdb0ee79f342334b76b89c9490de9f023cabc51c26ce991b13afff2966559c504906781ca9975326f466bd8e24e46eee8b5852236993fad1b95a016043d7a0215f1ae0b4804fe484f7f2c2ded0ba6d39c18cce4fbd2b93b116920ae4276eee8bebe02a3"]}, @typed={0x8, 0x59, 0x0, 0x0, @pid}, @generic="3e4298b11ae7c32b76f703ef3da87d8db9b845ce48a6dbf8c8b82a78aafa060a4daa12e4f5a7c92fd8b56cc10efbc1aeb805cdfb684434b00ae3238b44d176f1601cf85592310fad2f33b694de88028135ec0729aaf5206a9ad51871ba36bbe76df7f2944286b8eab0b98b47dcd239c9"]}, 0x208}, {&(0x7f0000000580)={0xb4, 0x42, 0x300, 0x70bd2c, 0x25dfdbfd, "", [@generic="bf560f6a91c8dfddcbaaf9c1a0a0f4081badd4369aa19172d49f253a71faaa7bd860a347a2a223c63f00d7592cd847cc7b6e930c6568519cdb916e93083d789d200f638a09ad780d218e59afe5c27422a8724ff3061b137f7ba3ec8c46cebd329dc7cd29d47d569e55d93916", @typed={0x8, 0x5b, 0x0, 0x0, @pid}, @typed={0x8, 0x3e, 0x0, 0x0, @fd}, @nested={0x18, 0xc, 0x0, 0x1, [@typed={0x14, 0x29, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x3f}}]}, @typed={0x8, 0x49, 0x0, 0x0, @ipv4=@private=0xa010101}, @typed={0x8, 0x63, 0x0, 0x0, @uid}]}, 0xb4}, {&(0x7f0000000640)={0x564, 0x3c, 0x10, 0x70bd26, 0x25dfdbfd, "", [@nested={0x30c, 0x8d, 0x0, 0x1, [@generic="e86564b36d0fc3a153660a412952b9d607a7d19540962f79fda3d344352a6e5785974308fab85e273cc4af77b875a6362f0a039c36bf6a7e347461380d0d29bf442665498e8d90e0ed7f8b02cf8b65fa73890079e6fc87038fa6670eb1c47d0ae66b6c8d", @generic="5021a85d348c917c2bd044cae1f452bdb9327ccb89ec54cc8d2f0d88a4432413c5ed11e50c50f5b6a9481fa23911df692ce09b9f6d290ec10d4d7eb92d8f3dcf7c64cf908b753a5f0db3a7d7b773b2b0884275dc610774987a00b735a4b6a6d968156e7ffb2902f8b55de4f4d979e5663e54458a860c23b7a16eeb087245e58b548391b2bac8943e10e22ba760fc432d0d72b795de7eb6ed192eae7d24908729f6bb76fa81635d0cdd1df575d1b939d1f6290bca827a209ab77227159cfcc16ca39be0a37fec3357aa2fafc73b39af447684202aa28712e2baad967921ecef9b49d0d8270ea5601fd8716fb5a64bab654d9916a0c9", @generic="dc948773793423a5c52fb3e0e67df3252f6bbb650e9056bee0ad9cf57636ad654218339d8c7be1564d6bb3215aa08ee55557b4a51d3b57b677eb972d4ab1e2728c04fad2c966b77c58f4fe579efc4f00aecec2f62a9604e0bd29e7ae2079afe8509e87c5c8935f3be75758ae21a632f98b41aa0b7e821f6e0fea7412a9d99f40707bc142421511cae51c31160c40dfc66333348a9879e79b10d5ca3d508a12910b37bfecea76093fd294c903", @generic="ec05f99f116da92f5d65ad50824cfd4d7ddf4a8b28", @generic="826fd068595a3a0358e4090197c99654326bcf5701645e41877a35a8269c55b47b690d00e5852034ea34b277c21491b995279456af23d034c4073ed52322b60e4db9b3a457c91c97a2b383651db410639ca26803f81510ec4babc6afc460c6ee7efba55c13aeebdce4954c1cd0d44ce5608ac2cdec2e67ca4e2a7cbdfd34aacc38a3f67699fdd517dde6160474b9c5eeba0bff5c0d08637a5ae61a3a5095f38b550165871b3bb2f5dbb9946968b91b50196e6422e29a7572c02998c94f4fa396e45c20cf81639f904988901efb54227e3eab80bb", @generic="02ed13e1ec621ad64864ffdf6655b38aea2044b30f765f9c2691"]}, @generic="4c8fecbc2f43c713839773d42c4cac4ef602dbc43f65a29ef013d7b55bef667ef2a4c6cf1274dcae21a9b5fd8111c9f99d5169a6dd0922df82c2ed20a3df633b0e4e19e2309c539cbbb0509e8fd71380dd12e1fcb4a7dc5c870576c57d26d2e9b64e15db990219767c0738820c82e54868977a5b8eeafd100b65021bcfff9bc0ce96912cc53dbdc4e72f3063e9db928f86a3bf9a316449df101ad1ba974078c981f4726d8a7ea8dc6bb3ea", @nested={0x19c, 0x4a, 0x0, 0x1, [@typed={0x6, 0x32, 0x0, 0x0, @str='\xe9\x00'}, @generic="719e8522867c82295bc817dd3ee68ba65a0dcff34e193246111c4d8263e7610b9ed732a9d75a9b8f1ab0bcd6d716f81fb7068ee68e87ce63723abfcc78d709bfd80ee9d9f592d13da4d8d097c8aec6e7829281e7e7d6264b8e677e9c07827bb369d62f08cb6730464455d7fa5aabedc34a317f7f3bd19cdc8aa8882893c77f2c1e5456b623d99378271348b9f49d4682fa215da120dbd560febd5d", @typed={0xc, 0x78, 0x0, 0x0, @u64=0x8}, @generic="63986ea8e8d68f8470e026d0e3cd23812b40b28b747302015520d0ab034909eedacf765a0fc386120cacc7538ee195bd541a582ccacd7512615c0f6c3577d88b3f8e0c790e1cedb8f553774734717566e010d069ad1160b108ea2ecdac8410bd0642c9fbfb60530eb5e44d778544d5db7391", @typed={0x14, 0x62, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic="ca", @typed={0x8, 0x6c, 0x0, 0x0, @ipv4=@private=0xa010102}, @generic="d946720bbb900744fdcd709ae617515ccbdeb250684a75b69416f79c985ba4faf11456eba70b8232345736c45c748236284911e5d5ef5c86fccf5c979ef364a6bda09cc7e12e84e00814d077fdbbb1c9196df589eecc2acb62d9"]}]}, 0x564}, {&(0x7f0000000bc0)={0x50, 0x1f, 0x4, 0x70bd2a, 0x25dfdbfc, "", [@generic="a30ac274799516e164912f1fc5e57aa541768a26aaae525e258d89da358b963c9ab1a15da38f4b9ce44b125e", @generic="daa4b50a14b190286f9d3ebb0fc18fff60"]}, 0x50}, {&(0x7f0000000c40)={0x188, 0x16, 0x100, 0x70bd2c, 0x25dfdbfc, "", [@typed={0xa, 0x26, 0x0, 0x0, @binary="14703e9665be"}, @generic="69b5d142dc46c0b0a44a400758bcf07857c61455b351fb3318011f18cd64f85e69f9883eba630c15abaf8171beac6a9bd201699a9087d3e2995b84f96642d124be2e46439b9de2f02e0edb5494393cb6309f6ca352cec1bc9bd46fa8b23cb4a7799259b36b29b8d9ab9826c4a2335c9b54dc601418b933e076891e4e7b75f8f4bf7899fecb9ba95203c41779135ceb97de21293d2af42600621c72accf2917ca2fb9f075ddb843677fd917ebc370ac84", @typed={0x8, 0x1f, 0x0, 0x0, @uid=0xee00}, @nested={0xc, 0x95, 0x0, 0x1, [@typed={0x8, 0x74, 0x0, 0x0, @u32=0x2}]}, @generic="157b90a96fca37811e75bb0e68c7241ef12439bcb27157db6898f9d2ccddcb537c7f6b3f26cafde31681a5b66ef0fd5eac7226209d21ab24b9247b32260a2a50d8c26a02d809cfff8380fe7f43d60861e2c96059b178ae6c8b32e951ea862312c99daa6ee1604c58e4b47e06349077314a2ceda8b3750e0459859eade7547be5d809f3a7cc3369a66791fa90e5d00763028c8327b2352261f768f6297391af78", @typed={0x8, 0x34, 0x0, 0x0, @fd}]}, 0x188}, {&(0x7f0000000e40)={0x2f0, 0x25, 0x100, 0x70bd2b, 0x25dfdbfe, "", [@nested={0x243, 0x54, 0x0, 0x1, [@generic="bab2289365a6432b82b4d7377b03d67be689374a8cc34f77edb7e6a620c602c12e80ba48d52a9dd65b31bb48792144483629269e3f23bca6ae0f6c438a67e14be1ae0ca0e0ea10025a65049e157f64a505ae96016a097212890f8a46399471a0557bd8e9ce2626c5614c512acda55113a286ad1cceb96dc7fdb37da355a75c5e092e57fcb600c9", @generic="d7011849b5278b901d117f49f2bcacc331daf3033dc668b3777816f698aa7c57920f5511423432b8e977a4e8205673cfdc8aaf891d58e9b509e2f6692da3ba28ff49e70fa5206cfb4915461c821e0809342e74ba68841070b879a741ff5370100219c9fe2390693c2dea11b17cf126ab0a7bd510a9b17c59", @generic="2146029e4966cd95babe9e1c015dc62df7f2c4516c83d487dc9ee4b285b153972a333573662e5a93", @typed={0x32, 0x7f, 0x0, 0x0, @binary="0870dd214266bae8ff3943d91d010bb7e39242d0174d6f1334097949af7dc89850d9dcba341daab716e4bf09be99"}, @generic="46d81dc4149f6670e5cf5618a1749f96f8ddacf047401113118e1ba974ef007068975e6ec92fae8f23f26c8959afd44ddb1bcbd5e2c3d0b43abb180e251bce18e347cc7fd55018062b0c36402a26010885c9aa2227a24d0c366414a34bd12d976d476017737f6e55", @typed={0x8, 0x40, 0x0, 0x0, @pid}, @typed={0x72, 0x74, 0x0, 0x0, @binary="d38befb9dd9c7fba03a6f6d1294185b9ec84d1da7f813d7a066697b09ab30c04e40fb3c4cc818092fb34c4ba510caff10e7c7262c0189f0bc805f6ce0b04a111b2ab69aeb0be2faee681d909c69733603c9c7ed8d5d05414d20ed758ba26f5fba9c230404b6fcdd01afc8340e1d5"}]}, @generic="2754c3436b67377b655bacc0a53fd0b2698dcce90021f3eeb175c1a2a118d039e5bdd6c01e7bec1303e6c0237ed2a610563ae21f74383e58da3108f428908209be55d9fc711d36df55d659c3c50151a396bc2494bb319aa6fc1579527c3703e57c3aa48f33e579dc95694ac0b4076a4ba73037c6c44317183d9123cd91fdc669d2a8b89ce934962faf70c6e29cae63a6b8cdeb0ce01cb96d02194fe3"]}, 0x2f0}, {&(0x7f0000001140)={0x27c, 0x15, 0x8, 0x70bd2d, 0x25dfdbfc, "", [@nested={0x255, 0x79, 0x0, 0x1, [@typed={0xdc, 0x9, 0x0, 0x0, @binary="76af48b345a16522bb6bc87abc523e50bd07f3d848b05163488954abe0fdc64f673ca1e3483bfe470b960de0298c6f36fee0070fccac3b8768815b3d203a0b0748f5bfff62ae9bce13eeffd37c33264264d1decc429b3de55be6d020401606ff3c7a077a2557dd03c22e35b6385226522f8e876c48d224e186bcc0e15be5798af7a729341a9f5e95f373b1681e40ff02fdb17f45390c6dfb49a994d878841233813b232dbaeea87bd9dc5d7c5a4c1898ce24330d46c7ccb5163a1a57763d1f83d468bf1659ff64ab82fbaad47f75d1b133d95ff20a850844"}, @generic="ca74fe0901707077b246c46850b00137f23f377db9060f8b8f629be5d42b34be327f8a46f38c4b43507aeaf64a0c3c5761f87c1926b321182d54db99084834c0f93422e74978913435223dc70a9225e7645d0002efaee72c4bb10cd8188e7225c033f04fedb600da29aee9289afa48e83f02d653f960111459047dc3ac2e8163b4004c2b68122c7e37bcbd30b724351324dd57f7a1fd75ce1a0d430d9d0386524faa92116341e47dce22683b005d08", @generic="f65edea49a754c1e3a324464d2ac0ce8021ea46ef7afce0f9d6179cdbd355ad252fc273730a0aecbf9ab826dd2952e370c06638be878cfc0dda6bd2416cc171cf5f29e9f6b30592870834d4d6a3b9a656c647406ee20fe5bc0931ea76e94545aa7e483dd05dac272facbd29c57316eb9047b94d144a1af5df399ac3dfddc77cf68bfdc223cbc093317995af0c40a436ed899d393b53a6811d6a4ccb60a22f558136ab5731ea09488cfa2f714edf7d881fe92930ce790cb83651a8caa", @typed={0x8, 0x87, 0x0, 0x0, @ipv4=@remote}, @generic="d8c0"]}, @typed={0x14, 0x3c, 0x0, 0x0, @ipv6=@remote}]}, 0x27c}], 0x9, &(0x7f0000001580)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xee01, r16}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x98, 0x4080104}, 0x40000) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) open(&(0x7f00000001c0)='./file1\x00', 0x400, 0x1) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180), 0x2c0812, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@aname}], [{@measure}]}}) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$BINDER_GET_NODE_DEBUG_INFO(r0, 0xc018620b, &(0x7f0000000000)={0x1}) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x200, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x3, 0x8}]}}}]}, 0x3c}}, 0x0) 06:05:24 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) r1 = memfd_secret(0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000040)={0x0, 0x7f, 0x7fff}) 06:05:24 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) socket(0x10, 0x2, 0x0) (async) r4 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r5, 0x0, 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r6, 0x1, 0x1c, 0x0, &(0x7f0000000000)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) socket$can_bcm(0x1d, 0x2, 0x2) (async) r9 = socket$can_bcm(0x1d, 0x2, 0x2) r10 = socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r14 = gettid() process_vm_writev(r14, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r0, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2, r3, r5}}}, @rights={{0x24, 0x1, 0x1, [r1, r6, r7, r8, r1]}}, @rights={{0x18, 0x1, 0x1, [r0, r1]}}, @rights={{0x2c, 0x1, 0x1, [r9, r0, 0xffffffffffffffff, r10, r11, r1, r1]}}, @rights={{0x24, 0x1, 0x1, [r0, r1, r12, r1, r13]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xffffffffffffffff, r15}}}], 0x118, 0x20000801}}], 0x1, 0x2) (async) sendmmsg$unix(r0, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2, r3, r5}}}, @rights={{0x24, 0x1, 0x1, [r1, r6, r7, r8, r1]}}, @rights={{0x18, 0x1, 0x1, [r0, r1]}}, @rights={{0x2c, 0x1, 0x1, [r9, r0, 0xffffffffffffffff, r10, r11, r1, r1]}}, @rights={{0x24, 0x1, 0x1, [r0, r1, r12, r1, r13]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xffffffffffffffff, r15}}}], 0x118, 0x20000801}}], 0x1, 0x2) getgroups(0x9, &(0x7f0000001540)=[0xffffffffffffffff, 0xee01, 0xee01, 0xffffffffffffffff, 0xee01, 0x0, 0xee00, 0xee01, 0xee00]) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001640)={&(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfe, 0x800}, 0xc, &(0x7f00000013c0)=[{&(0x7f0000000080)={0x1b8, 0x2b, 0x200, 0x70bd2c, 0x25dfdbff, "", [@nested={0x128, 0x5e, 0x0, 0x1, [@typed={0x5c, 0x7f, 0x0, 0x0, @binary="34a3918f473f8090244ba919a161110821641640b3106f9770ef67b54e0f99750917582eba4816d288dfcde7d30315dffc9e636595dfb7eeb095b4e635c11fd90917fddfd35844fd9c48c5096a804933a413e28c1e2d10f8"}, @generic="7a4ac97b0f5bddb0f6179f9df1dae713a911062629c40d8003a0265f331ef1afdc99dda03e3bb110bd898f448de5c79253b85938c210424250b877607d481a6c2024514fa8c12c55805dd7e8dc1fa5a95a8ffbf1bfd150b53d91a0de5f7f782a4f36c6cddb1105df42b46e39fce1ee74fc2f662287196837cd79e925548517ca6e4565ec0be05401324ff86b8131e282e2d2e3907a399194190ce7d36c4985dfe4426ae11cf646793ed23f28c1b44d36bc791795d04ad3bc9a555008050639ca6f1e579cc3736ad1"]}, @generic="c615c7ac06da3888e1729d025f36209be364e0f55b44ca9454f6fd7e8c50b90f55503127f3eb62356125930cf36e239cf2e942388c2707752eb80a4bdcbf3eb496e28a0388d72c7f1c3c8b9c84a42602d60b0e347d6af833b150dcaa6afa78cd2a1ae77de9e9877e9baabf437770d8848cbd52236e04787735ce643d426f"]}, 0x1b8}, {&(0x7f0000000240)={0x100, 0x30, 0x800, 0x70bd2b, 0x25dfdbfd, "", [@nested={0xed, 0x49, 0x0, 0x1, [@generic="05e249938c643d6a57bbba63c43d32fb57fcd8f41ad78fa78f9d6c09244b1f8abaeb2bdf2ea83f0cc0382f40286b837b63da44cc540ebb6ce0d489ab8a2b3e70ce6abe6acf173bef0fe71d6584c66a047e8990615127eb63ae1b8891d3c8427ad98388a272634d8fbbc6e1a47065598a73dc380a47544b41ccac2f830317d5378fea3f5616087d9671c42010a965ca857aaa75e2b6b7589d87c5fe03f1649da268ba869e4f7a3a44748dc43057941ae105e7c7330f137c528bfa06eceb0ad3e1cf8d12683e8d3f1fe0ad8e49f4f194e7c95ad7dfa85c8c3c7a", @typed={0x8, 0x6e, 0x0, 0x0, @ipv4=@local}, @typed={0x8, 0x77, 0x0, 0x0, @fd}]}, @generic]}, 0x100}, {&(0x7f0000000340)={0x208, 0x26, 0x100, 0x70bd2b, 0x25dfdbfd, "", [@nested={0x8, 0x6b, 0x0, 0x1, [@typed={0x4, 0x65}]}, @generic="c72fc447415c9972e36d7c1e40c4f0977cbf388453a210cf77be8cb3ff7369326c30df6531bb87f5e72153c5546ed095bd5d6b4af4d0108e80eff7f0c5777db9c268d6794fc8f24a4dba09cd2595bc066dacc649feee52328aba73cba25bdc653d65fa90f47f2d7d179e3070cbc05990a52cf21c5826548fae9999720f1830", @nested={0xf6, 0x1d, 0x0, 0x1, [@typed={0x8, 0x2f, 0x0, 0x0, @pid}, @typed={0x8, 0x37, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @typed={0x8, 0x2b, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0xc, 0x32, 0x0, 0x0, @u64=0x3}, @generic, @typed={0x8, 0x4, 0x0, 0x0, @str='#$\x85\x00'}, @typed={0x8, 0x18, 0x0, 0x0, @uid}, @generic="d4bb96862d94bbfafca984bcf431a64f6baa9e7e6a0e1fc0bf7f696d8ae767eee94ae5bd524627718e8a1fa15e0777447fafc82b078c2f89f62863f0e1d40c502d054822c684b7f4c14a5a866b21258bc9e8e357ccc40a1a78de6cdb0ee79f342334b76b89c9490de9f023cabc51c26ce991b13afff2966559c504906781ca9975326f466bd8e24e46eee8b5852236993fad1b95a016043d7a0215f1ae0b4804fe484f7f2c2ded0ba6d39c18cce4fbd2b93b116920ae4276eee8bebe02a3"]}, @typed={0x8, 0x59, 0x0, 0x0, @pid}, @generic="3e4298b11ae7c32b76f703ef3da87d8db9b845ce48a6dbf8c8b82a78aafa060a4daa12e4f5a7c92fd8b56cc10efbc1aeb805cdfb684434b00ae3238b44d176f1601cf85592310fad2f33b694de88028135ec0729aaf5206a9ad51871ba36bbe76df7f2944286b8eab0b98b47dcd239c9"]}, 0x208}, {&(0x7f0000000580)={0xb4, 0x42, 0x300, 0x70bd2c, 0x25dfdbfd, "", [@generic="bf560f6a91c8dfddcbaaf9c1a0a0f4081badd4369aa19172d49f253a71faaa7bd860a347a2a223c63f00d7592cd847cc7b6e930c6568519cdb916e93083d789d200f638a09ad780d218e59afe5c27422a8724ff3061b137f7ba3ec8c46cebd329dc7cd29d47d569e55d93916", @typed={0x8, 0x5b, 0x0, 0x0, @pid}, @typed={0x8, 0x3e, 0x0, 0x0, @fd}, @nested={0x18, 0xc, 0x0, 0x1, [@typed={0x14, 0x29, 0x0, 0x0, @ipv6=@dev={0xfe, 0x80, '\x00', 0x3f}}]}, @typed={0x8, 0x49, 0x0, 0x0, @ipv4=@private=0xa010101}, @typed={0x8, 0x63, 0x0, 0x0, @uid}]}, 0xb4}, {&(0x7f0000000640)={0x564, 0x3c, 0x10, 0x70bd26, 0x25dfdbfd, "", [@nested={0x30c, 0x8d, 0x0, 0x1, [@generic="e86564b36d0fc3a153660a412952b9d607a7d19540962f79fda3d344352a6e5785974308fab85e273cc4af77b875a6362f0a039c36bf6a7e347461380d0d29bf442665498e8d90e0ed7f8b02cf8b65fa73890079e6fc87038fa6670eb1c47d0ae66b6c8d", @generic="5021a85d348c917c2bd044cae1f452bdb9327ccb89ec54cc8d2f0d88a4432413c5ed11e50c50f5b6a9481fa23911df692ce09b9f6d290ec10d4d7eb92d8f3dcf7c64cf908b753a5f0db3a7d7b773b2b0884275dc610774987a00b735a4b6a6d968156e7ffb2902f8b55de4f4d979e5663e54458a860c23b7a16eeb087245e58b548391b2bac8943e10e22ba760fc432d0d72b795de7eb6ed192eae7d24908729f6bb76fa81635d0cdd1df575d1b939d1f6290bca827a209ab77227159cfcc16ca39be0a37fec3357aa2fafc73b39af447684202aa28712e2baad967921ecef9b49d0d8270ea5601fd8716fb5a64bab654d9916a0c9", @generic="dc948773793423a5c52fb3e0e67df3252f6bbb650e9056bee0ad9cf57636ad654218339d8c7be1564d6bb3215aa08ee55557b4a51d3b57b677eb972d4ab1e2728c04fad2c966b77c58f4fe579efc4f00aecec2f62a9604e0bd29e7ae2079afe8509e87c5c8935f3be75758ae21a632f98b41aa0b7e821f6e0fea7412a9d99f40707bc142421511cae51c31160c40dfc66333348a9879e79b10d5ca3d508a12910b37bfecea76093fd294c903", @generic="ec05f99f116da92f5d65ad50824cfd4d7ddf4a8b28", @generic="826fd068595a3a0358e4090197c99654326bcf5701645e41877a35a8269c55b47b690d00e5852034ea34b277c21491b995279456af23d034c4073ed52322b60e4db9b3a457c91c97a2b383651db410639ca26803f81510ec4babc6afc460c6ee7efba55c13aeebdce4954c1cd0d44ce5608ac2cdec2e67ca4e2a7cbdfd34aacc38a3f67699fdd517dde6160474b9c5eeba0bff5c0d08637a5ae61a3a5095f38b550165871b3bb2f5dbb9946968b91b50196e6422e29a7572c02998c94f4fa396e45c20cf81639f904988901efb54227e3eab80bb", @generic="02ed13e1ec621ad64864ffdf6655b38aea2044b30f765f9c2691"]}, @generic="4c8fecbc2f43c713839773d42c4cac4ef602dbc43f65a29ef013d7b55bef667ef2a4c6cf1274dcae21a9b5fd8111c9f99d5169a6dd0922df82c2ed20a3df633b0e4e19e2309c539cbbb0509e8fd71380dd12e1fcb4a7dc5c870576c57d26d2e9b64e15db990219767c0738820c82e54868977a5b8eeafd100b65021bcfff9bc0ce96912cc53dbdc4e72f3063e9db928f86a3bf9a316449df101ad1ba974078c981f4726d8a7ea8dc6bb3ea", @nested={0x19c, 0x4a, 0x0, 0x1, [@typed={0x6, 0x32, 0x0, 0x0, @str='\xe9\x00'}, @generic="719e8522867c82295bc817dd3ee68ba65a0dcff34e193246111c4d8263e7610b9ed732a9d75a9b8f1ab0bcd6d716f81fb7068ee68e87ce63723abfcc78d709bfd80ee9d9f592d13da4d8d097c8aec6e7829281e7e7d6264b8e677e9c07827bb369d62f08cb6730464455d7fa5aabedc34a317f7f3bd19cdc8aa8882893c77f2c1e5456b623d99378271348b9f49d4682fa215da120dbd560febd5d", @typed={0xc, 0x78, 0x0, 0x0, @u64=0x8}, @generic="63986ea8e8d68f8470e026d0e3cd23812b40b28b747302015520d0ab034909eedacf765a0fc386120cacc7538ee195bd541a582ccacd7512615c0f6c3577d88b3f8e0c790e1cedb8f553774734717566e010d069ad1160b108ea2ecdac8410bd0642c9fbfb60530eb5e44d778544d5db7391", @typed={0x14, 0x62, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @generic="ca", @typed={0x8, 0x6c, 0x0, 0x0, @ipv4=@private=0xa010102}, @generic="d946720bbb900744fdcd709ae617515ccbdeb250684a75b69416f79c985ba4faf11456eba70b8232345736c45c748236284911e5d5ef5c86fccf5c979ef364a6bda09cc7e12e84e00814d077fdbbb1c9196df589eecc2acb62d9"]}]}, 0x564}, {&(0x7f0000000bc0)={0x50, 0x1f, 0x4, 0x70bd2a, 0x25dfdbfc, "", [@generic="a30ac274799516e164912f1fc5e57aa541768a26aaae525e258d89da358b963c9ab1a15da38f4b9ce44b125e", @generic="daa4b50a14b190286f9d3ebb0fc18fff60"]}, 0x50}, {&(0x7f0000000c40)={0x188, 0x16, 0x100, 0x70bd2c, 0x25dfdbfc, "", [@typed={0xa, 0x26, 0x0, 0x0, @binary="14703e9665be"}, @generic="69b5d142dc46c0b0a44a400758bcf07857c61455b351fb3318011f18cd64f85e69f9883eba630c15abaf8171beac6a9bd201699a9087d3e2995b84f96642d124be2e46439b9de2f02e0edb5494393cb6309f6ca352cec1bc9bd46fa8b23cb4a7799259b36b29b8d9ab9826c4a2335c9b54dc601418b933e076891e4e7b75f8f4bf7899fecb9ba95203c41779135ceb97de21293d2af42600621c72accf2917ca2fb9f075ddb843677fd917ebc370ac84", @typed={0x8, 0x1f, 0x0, 0x0, @uid=0xee00}, @nested={0xc, 0x95, 0x0, 0x1, [@typed={0x8, 0x74, 0x0, 0x0, @u32=0x2}]}, @generic="157b90a96fca37811e75bb0e68c7241ef12439bcb27157db6898f9d2ccddcb537c7f6b3f26cafde31681a5b66ef0fd5eac7226209d21ab24b9247b32260a2a50d8c26a02d809cfff8380fe7f43d60861e2c96059b178ae6c8b32e951ea862312c99daa6ee1604c58e4b47e06349077314a2ceda8b3750e0459859eade7547be5d809f3a7cc3369a66791fa90e5d00763028c8327b2352261f768f6297391af78", @typed={0x8, 0x34, 0x0, 0x0, @fd}]}, 0x188}, {&(0x7f0000000e40)={0x2f0, 0x25, 0x100, 0x70bd2b, 0x25dfdbfe, "", [@nested={0x243, 0x54, 0x0, 0x1, [@generic="bab2289365a6432b82b4d7377b03d67be689374a8cc34f77edb7e6a620c602c12e80ba48d52a9dd65b31bb48792144483629269e3f23bca6ae0f6c438a67e14be1ae0ca0e0ea10025a65049e157f64a505ae96016a097212890f8a46399471a0557bd8e9ce2626c5614c512acda55113a286ad1cceb96dc7fdb37da355a75c5e092e57fcb600c9", @generic="d7011849b5278b901d117f49f2bcacc331daf3033dc668b3777816f698aa7c57920f5511423432b8e977a4e8205673cfdc8aaf891d58e9b509e2f6692da3ba28ff49e70fa5206cfb4915461c821e0809342e74ba68841070b879a741ff5370100219c9fe2390693c2dea11b17cf126ab0a7bd510a9b17c59", @generic="2146029e4966cd95babe9e1c015dc62df7f2c4516c83d487dc9ee4b285b153972a333573662e5a93", @typed={0x32, 0x7f, 0x0, 0x0, @binary="0870dd214266bae8ff3943d91d010bb7e39242d0174d6f1334097949af7dc89850d9dcba341daab716e4bf09be99"}, @generic="46d81dc4149f6670e5cf5618a1749f96f8ddacf047401113118e1ba974ef007068975e6ec92fae8f23f26c8959afd44ddb1bcbd5e2c3d0b43abb180e251bce18e347cc7fd55018062b0c36402a26010885c9aa2227a24d0c366414a34bd12d976d476017737f6e55", @typed={0x8, 0x40, 0x0, 0x0, @pid}, @typed={0x72, 0x74, 0x0, 0x0, @binary="d38befb9dd9c7fba03a6f6d1294185b9ec84d1da7f813d7a066697b09ab30c04e40fb3c4cc818092fb34c4ba510caff10e7c7262c0189f0bc805f6ce0b04a111b2ab69aeb0be2faee681d909c69733603c9c7ed8d5d05414d20ed758ba26f5fba9c230404b6fcdd01afc8340e1d5"}]}, @generic="2754c3436b67377b655bacc0a53fd0b2698dcce90021f3eeb175c1a2a118d039e5bdd6c01e7bec1303e6c0237ed2a610563ae21f74383e58da3108f428908209be55d9fc711d36df55d659c3c50151a396bc2494bb319aa6fc1579527c3703e57c3aa48f33e579dc95694ac0b4076a4ba73037c6c44317183d9123cd91fdc669d2a8b89ce934962faf70c6e29cae63a6b8cdeb0ce01cb96d02194fe3"]}, 0x2f0}, {&(0x7f0000001140)={0x27c, 0x15, 0x8, 0x70bd2d, 0x25dfdbfc, "", [@nested={0x255, 0x79, 0x0, 0x1, [@typed={0xdc, 0x9, 0x0, 0x0, @binary="76af48b345a16522bb6bc87abc523e50bd07f3d848b05163488954abe0fdc64f673ca1e3483bfe470b960de0298c6f36fee0070fccac3b8768815b3d203a0b0748f5bfff62ae9bce13eeffd37c33264264d1decc429b3de55be6d020401606ff3c7a077a2557dd03c22e35b6385226522f8e876c48d224e186bcc0e15be5798af7a729341a9f5e95f373b1681e40ff02fdb17f45390c6dfb49a994d878841233813b232dbaeea87bd9dc5d7c5a4c1898ce24330d46c7ccb5163a1a57763d1f83d468bf1659ff64ab82fbaad47f75d1b133d95ff20a850844"}, @generic="ca74fe0901707077b246c46850b00137f23f377db9060f8b8f629be5d42b34be327f8a46f38c4b43507aeaf64a0c3c5761f87c1926b321182d54db99084834c0f93422e74978913435223dc70a9225e7645d0002efaee72c4bb10cd8188e7225c033f04fedb600da29aee9289afa48e83f02d653f960111459047dc3ac2e8163b4004c2b68122c7e37bcbd30b724351324dd57f7a1fd75ce1a0d430d9d0386524faa92116341e47dce22683b005d08", @generic="f65edea49a754c1e3a324464d2ac0ce8021ea46ef7afce0f9d6179cdbd355ad252fc273730a0aecbf9ab826dd2952e370c06638be878cfc0dda6bd2416cc171cf5f29e9f6b30592870834d4d6a3b9a656c647406ee20fe5bc0931ea76e94545aa7e483dd05dac272facbd29c57316eb9047b94d144a1af5df399ac3dfddc77cf68bfdc223cbc093317995af0c40a436ed899d393b53a6811d6a4ccb60a22f558136ab5731ea09488cfa2f714edf7d881fe92930ce790cb83651a8caa", @typed={0x8, 0x87, 0x0, 0x0, @ipv4=@remote}, @generic="d8c0"]}, @typed={0x14, 0x3c, 0x0, 0x0, @ipv6=@remote}]}, 0x27c}], 0x9, &(0x7f0000001580)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xee01, r16}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x98, 0x4080104}, 0x40000) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:24 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000080)={0x38, 0x7, r1, 0x0, 0x10000, 0x0, 0x8, 0x23fc81, 0x2e99f0}) 06:05:24 executing program 2: write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x3}, 0x2) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x4, 0x2}, {0x7}}}}, 0xf) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x9f}, "d1d5d5ccc5e49dffbf0ba5f4fc562becf8829bc90f552d17a0aec908ac715efc0a4010517639f511784dec99f7578cd6063c9d853e99a9c73f3cc01cb355b67282eb58ef9eb102f4b67fc6"}, 0x4f) 06:05:24 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000080)={0x38, 0x7, r1, 0x0, 0x10000, 0x0, 0x8, 0x23fc81, 0x2e99f0}) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) (async) ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000080)={0x38, 0x7, r1, 0x0, 0x10000, 0x0, 0x8, 0x23fc81, 0x2e99f0}) (async) 06:05:24 executing program 2: write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x3}, 0x2) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x4, 0x2}, {0x7}}}}, 0xf) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x9f}, "d1d5d5ccc5e49dffbf0ba5f4fc562becf8829bc90f552d17a0aec908ac715efc0a4010517639f511784dec99f7578cd6063c9d853e99a9c73f3cc01cb355b67282eb58ef9eb102f4b67fc6"}, 0x4f) write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x3}, 0x2) (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x4, 0x2}, {0x7}}}}, 0xf) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x9f}, "d1d5d5ccc5e49dffbf0ba5f4fc562becf8829bc90f552d17a0aec908ac715efc0a4010517639f511784dec99f7578cd6063c9d853e99a9c73f3cc01cb355b67282eb58ef9eb102f4b67fc6"}, 0x4f) (async) 06:05:24 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r0, 0x3ba0, &(0x7f0000000080)={0x38, 0x7, r1, 0x0, 0x10000, 0x0, 0x8, 0x23fc81, 0x2e99f0}) [ 187.084117][ T38] audit: type=1804 audit(1688364324.748:290): pid=7404 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/syzkaller-testdir1702677722/syzkaller.gGE60J/212/file1" dev="sda1" ino=1950 res=1 errno=0 06:05:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000040)={0x0, 0xf6d}, 0x8) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x8000, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, 0x1c) sendto$inet6(r1, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) recvmmsg(r1, &(0x7f0000001d80)=[{{0x0, 0x3f1, &(0x7f0000000740)=[{&(0x7f0000000300)=""/228, 0xfffffc9d}], 0x1, 0x0, 0x600, 0x3}}], 0x10002, 0x0, 0x0) 06:05:24 executing program 2: write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x3}, 0x2) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x4, 0x2}, {0x7}}}}, 0xf) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x9f}, "d1d5d5ccc5e49dffbf0ba5f4fc562becf8829bc90f552d17a0aec908ac715efc0a4010517639f511784dec99f7578cd6063c9d853e99a9c73f3cc01cb355b67282eb58ef9eb102f4b67fc6"}, 0x4f) write$USERIO_CMD_SEND_INTERRUPT(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x3}, 0x2) (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x4, 0x2}, {0x7}}}}, 0xf) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x9f}, "d1d5d5ccc5e49dffbf0ba5f4fc562becf8829bc90f552d17a0aec908ac715efc0a4010517639f511784dec99f7578cd6063c9d853e99a9c73f3cc01cb355b67282eb58ef9eb102f4b67fc6"}, 0x4f) (async) [ 187.220025][ T38] audit: type=1400 audit(1688364324.888:291): avc: denied { name_bind } for pid=7437 comm="syz-executor.0" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 187.230474][ T38] audit: type=1400 audit(1688364324.888:292): avc: denied { node_bind } for pid=7437 comm="syz-executor.0" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 187.248430][ T38] audit: type=1400 audit(1688364324.888:293): avc: denied { name_connect } for pid=7437 comm="syz-executor.0" dest=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 187.267789][ T38] audit: type=1400 audit(1688364324.898:294): avc: denied { read } for pid=7437 comm="syz-executor.0" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x2, 0x17}, @l2cap_cid_signaling={{0x13}, [@l2cap_move_chan_req={{0xe, 0x40, 0x3}, {0x3, 0x1}}, @l2cap_conn_rsp={{0x3, 0x81, 0x8}, {0x4, 0x3f, 0x2, 0x1}}]}}, 0x1c) syz_emit_vhci(&(0x7f0000000080)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0xe0, 0xa}, {0x6, 0x9, 0x40, 0x1965, 0x100}}}}, 0x17) 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x240141, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000100)={0x2, 0x2, 0x9843, 0x80000001, 0x1}) fsetxattr(r0, &(0x7f0000000080)=@random={'security.', ':\x00'}, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x10, 0x2) write$FUSE_BMAP(r0, &(0x7f0000000040)={0x18}, 0x18) 06:05:26 executing program 2: syz_init_net_socket$llc(0x1a, 0x2, 0x0) socket$inet6(0xa, 0x6, 0x9) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cgroups\x00', 0x0, 0x0) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:26 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write(r0, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000040)={0x0, 0xf6d}, 0x8) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x8000, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, 0x1c) sendto$inet6(r1, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async) sendto$inet6(r1, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) recvmmsg(r1, &(0x7f0000001d80)=[{{0x0, 0x3f1, &(0x7f0000000740)=[{&(0x7f0000000300)=""/228, 0xfffffc9d}], 0x1, 0x0, 0x600, 0x3}}], 0x10002, 0x0, 0x0) (async) recvmmsg(r1, &(0x7f0000001d80)=[{{0x0, 0x3f1, &(0x7f0000000740)=[{&(0x7f0000000300)=""/228, 0xfffffc9d}], 0x1, 0x0, 0x600, 0x3}}], 0x10002, 0x0, 0x0) [ 188.660335][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x240141, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000100)={0x2, 0x2, 0x9843, 0x80000001, 0x1}) (async) fsetxattr(r0, &(0x7f0000000080)=@random={'security.', ':\x00'}, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x10, 0x2) write$FUSE_BMAP(r0, &(0x7f0000000040)={0x18}, 0x18) [ 188.665356][ T38] audit: type=1400 audit(1688364326.328:295): avc: denied { create } for pid=7449 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x2, 0x17}, @l2cap_cid_signaling={{0x13}, [@l2cap_move_chan_req={{0xe, 0x40, 0x3}, {0x3, 0x1}}, @l2cap_conn_rsp={{0x3, 0x81, 0x8}, {0x4, 0x3f, 0x2, 0x1}}]}}, 0x1c) syz_emit_vhci(&(0x7f0000000080)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0xe0, 0xa}, {0x6, 0x9, 0x40, 0x1965, 0x100}}}}, 0x17) [ 188.693951][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x240141, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000100)={0x2, 0x2, 0x9843, 0x80000001, 0x1}) fsetxattr(r0, &(0x7f0000000080)=@random={'security.', ':\x00'}, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x10, 0x2) write$FUSE_BMAP(r0, &(0x7f0000000040)={0x18}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x240141, 0x0) (async) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000100)={0x2, 0x2, 0x9843, 0x80000001, 0x1}) (async) fsetxattr(r0, &(0x7f0000000080)=@random={'security.', ':\x00'}, &(0x7f00000000c0)='/dev/cachefiles\x00', 0x10, 0x2) (async) write$FUSE_BMAP(r0, &(0x7f0000000040)={0x18}, 0x18) (async) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x2, 0x17}, @l2cap_cid_signaling={{0x13}, [@l2cap_move_chan_req={{0xe, 0x40, 0x3}, {0x3, 0x1}}, @l2cap_conn_rsp={{0x3, 0x81, 0x8}, {0x4, 0x3f, 0x2, 0x1}}]}}, 0x1c) syz_emit_vhci(&(0x7f0000000080)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0xe0, 0xa}, {0x6, 0x9, 0x40, 0x1965, 0x100}}}}, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x2, 0x17}, @l2cap_cid_signaling={{0x13}, [@l2cap_move_chan_req={{0xe, 0x40, 0x3}, {0x3, 0x1}}, @l2cap_conn_rsp={{0x3, 0x81, 0x8}, {0x4, 0x3f, 0x2, 0x1}}]}}, 0x1c) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_rsp={{0x15, 0xe0, 0xa}, {0x6, 0x9, 0x40, 0x1965, 0x100}}}}, 0x17) (async) [ 188.722355][ T38] audit: type=1400 audit(1688364326.388:296): avc: denied { create } for pid=7449 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x351b59521632dbdc, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 188.737088][ T38] audit: type=1400 audit(1688364326.388:297): avc: denied { ioctl } for pid=7449 comm="syz-executor.2" path="socket:[41985]" dev="sockfs" ino=41985 ioctlcmd=0xf507 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 188.762694][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x351b59521632dbdc, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 188.765726][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 2: syz_init_net_socket$llc(0x1a, 0x2, 0x0) socket$inet6(0xa, 0x6, 0x9) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) (async) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cgroups\x00', 0x0, 0x0) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:26 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000040)={0x0, 0xf6d}, 0x8) (async) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r1, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async, rerun: 64) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x8000, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, 0x1c) (async, rerun: 64) sendto$inet6(r1, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async) recvmmsg(r1, &(0x7f0000001d80)=[{{0x0, 0x3f1, &(0x7f0000000740)=[{&(0x7f0000000300)=""/228, 0xfffffc9d}], 0x1, 0x0, 0x600, 0x3}}], 0x10002, 0x0, 0x0) 06:05:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x151842, 0x0) symlinkat(&(0x7f0000000140)='./file1\x00', r0, &(0x7f0000000180)='./file1\x00') unlink(&(0x7f00000001c0)='./file1\x00') write(r0, &(0x7f0000004200)="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", 0xffe00) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000200)) syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r0) syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040207040000000002005ed43d677327665fa1210da02f79f7323016b31c52c0d118705d3558e49f6f1f37801b1cefe71971c370c8d20dfb0e4a3670cfd9291027be09aff57166f103af258722c2b6eb2b38aafb638cdd56cf503e2b6fe1a34b818a7d8f4b6f914a5857910b82da1cda2a2249dee0c4d5d0f7a9ca6461e05d5e6044a6f89b60732e8b2e92cd1bca466b4bb3cf6b59ac6bd0f1201a3d779fe6913cbe68d199ce9cec68608ddbbc688386582a232242e6863bb8aeb04d699ea7882d8ef4dd83ca9e1e6dab578bbf0881a63ab13f3acf9fea84d39f3d3eda3c29943d70c796a052cbc7c4ef62196c195deab374139a48418f70eee1ac36ec6af145545f0b30f35863de44cfbe6ecb5342b1683f61f99cd1a9311c1bdc9e013560ab844048bcb487"], 0xa) 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x351b59521632dbdc, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x351b59521632dbdc, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) [ 188.813847][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 3: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x151842, 0x0) (async) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x151842, 0x0) symlinkat(&(0x7f0000000140)='./file1\x00', r0, &(0x7f0000000180)='./file1\x00') unlink(&(0x7f00000001c0)='./file1\x00') write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write(r0, &(0x7f0000004200)="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", 0xffe00) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000200)) syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r0) syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0xa) (async) syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040207040000000002005ed43d677327665fa1210da02f79f7323016b31c52c0d118705d3558e49f6f1f37801b1cefe71971c370c8d20dfb0e4a3670cfd9291027be09aff57166f103af258722c2b6eb2b38aafb638cdd56cf503e2b6fe1a34b818a7d8f4b6f914a5857910b82da1cda2a2249dee0c4d5d0f7a9ca6461e05d5e6044a6f89b60732e8b2e92cd1bca466b4bb3cf6b59ac6bd0f1201a3d779fe6913cbe68d199ce9cec68608ddbbc688386582a232242e6863bb8aeb04d699ea7882d8ef4dd83ca9e1e6dab578bbf0881a63ab13f3acf9fea84d39f3d3eda3c29943d70c796a052cbc7c4ef62196c195deab374139a48418f70eee1ac36ec6af145545f0b30f35863de44cfbe6ecb5342b1683f61f99cd1a9311c1bdc9e013560ab844048bcb487"], 0xa) 06:05:26 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000001c40)={0x0, 0x0, &(0x7f0000001c00)={0x0, 0x54}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3400000010000104539300"/20, @ANYRES32=r2, @ANYBLOB="ddffffffffffffff140012000c000100627269646765"], 0x34}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x899ea, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc743}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x48}}, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket(0x1, 0x803, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x899ea, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="480000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="43c700000081cf1aca696adb52a1f6fc7f5ac42a24000000140004800c0001006d616376746170000400020400000500b3fd801f6dc505d06912f2c56999f69abcbc75adc336b9ed88c2ba2ef35c6678850046ebf7dacc5bf96e902adf29a654cbd7a570f5586b7e80d37f81c4660dd938af32edb594e79a7b89dfda7649cc872f2b15000eb5a9f4103cbb321157a6529e7c86ead41a330e2441c376de0f1004d08eb776e8a6e6979472b483ecf419000000000000", @ANYRES32=r8, @ANYBLOB="0a000100aaaaaaaaaaaa0000"], 0x48}}, 0x0) 06:05:26 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1}, 0x50) [ 188.849946][ T5160] Bluetooth: hci0: Malformed Event: 0x02 [ 188.852023][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 3: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x151842, 0x0) (async) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x151842, 0x0) symlinkat(&(0x7f0000000140)='./file1\x00', r0, &(0x7f0000000180)='./file1\x00') unlink(&(0x7f00000001c0)='./file1\x00') write(r0, &(0x7f0000004200)="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", 0xffe00) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000200)) syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r0) (async) syz_genetlink_get_family_id$tipc(&(0x7f0000000000), r0) syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0xa) [ 188.855368][ T38] audit: type=1400 audit(1688364326.518:298): avc: denied { read write } for pid=7497 comm="syz-executor.1" name="fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 06:05:26 executing program 2: syz_init_net_socket$llc(0x1a, 0x2, 0x0) socket$inet6(0xa, 0x6, 0x9) socket$nl_xfrm(0x10, 0x3, 0x6) (async) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cgroups\x00', 0x0, 0x0) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r0, 0xf507, 0x0) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:26 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1}, 0x50) [ 188.874429][ T38] audit: type=1400 audit(1688364326.518:299): avc: denied { open } for pid=7497 comm="syz-executor.1" path="/dev/fuse" dev="devtmpfs" ino=105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 188.879981][ T7507] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 188.898458][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1}, 0x50) [ 188.903782][ T7507] bridge1: entered promiscuous mode [ 188.906314][ T7507] bridge1: entered allmulticast mode 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04020707000000fcff00d43292009a990a7712a1abd6bd753a7459904e2c290224d174566ca31a998387ac690d30c55675b40333adecd14cd88bf7aece5955e138a8bd02c26e927313bf53a7d9c854dc2eca79181ffecfde7f0113d751dcf6d9b37d1ca300cc1350b285ad21c89c7f98b58703e20eec794d7a0db924c44b3bb9000000000000000000"], 0xa) [ 188.926808][ T7507] macvtap1: entered promiscuous mode [ 188.930158][ T7507] macvtap1: entered allmulticast mode [ 188.935632][ T5160] Bluetooth: hci0: Malformed Event: 0x02 [ 188.936491][ T7507] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) dup(r2) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0x67, 0x8000000000000000, 0x9, 0xf597, 0x101, 0x5}) ioctl$SOUND_MIXER_READ_VOLUME(r1, 0x80044d14, &(0x7f0000000040)) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04020707000000fcff00d43292009a990a7712a1abd6bd753a7459904e2c290224d174566ca31a998387ac690d30c55675b40333adecd14cd88bf7aece5955e138a8bd02c26e927313bf53a7d9c854dc2eca79181ffecfde7f0113d751dcf6d9b37d1ca300cc1350b285ad21c89c7f98b58703e20eec794d7a0db924c44b3bb9000000000000000000"], 0xa) 06:05:26 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000001c40)={0x0, 0x0, &(0x7f0000001c00)={0x0, 0x54}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3400000010000104539300"/20, @ANYRES32=r2, @ANYBLOB="ddffffffffffffff140012000c000100627269646765"], 0x34}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) (async) r4 = socket(0x1, 0x803, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x899ea, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc743}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x48}}, 0x0) (async) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket(0x1, 0x803, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x899ea, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="480000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="43c700000081cf1aca696adb52a1f6fc7f5ac42a24000000140004800c0001006d616376746170000400020400000500b3fd801f6dc505d06912f2c56999f69abcbc75adc336b9ed88c2ba2ef35c6678850046ebf7dacc5bf96e902adf29a654cbd7a570f5586b7e80d37f81c4660dd938af32edb594e79a7b89dfda7649cc872f2b15000eb5a9f4103cbb321157a6529e7c86ead41a330e2441c376de0f1004d08eb776e8a6e6979472b483ecf419000000000000", @ANYRES32=r8, @ANYBLOB="0a000100aaaaaaaaaaaa0000"], 0x48}}, 0x0) [ 188.984780][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04020707000000fcff00d43292009a990a7712a1abd6bd753a7459904e2c290224d174566ca31a998387ac690d30c55675b40333adecd14cd88bf7aece5955e138a8bd02c26e927313bf53a7d9c854dc2eca79181ffecfde7f0113d751dcf6d9b37d1ca300cc1350b285ad21c89c7f98b58703e20eec794d7a0db924c44b3bb9000000000000000000"], 0xa) [ 188.992635][ T7526] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 189.002626][ T7526] bridge2: entered promiscuous mode [ 189.004788][ T7526] bridge2: entered allmulticast mode 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c90012000e40050015000a000090e000040000000000"], 0x17) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) [ 189.026630][ T7526] macvtap2: entered promiscuous mode [ 189.026740][ T5160] Bluetooth: hci0: Malformed Event: 0x02 [ 189.031393][ T7526] macvtap2: entered allmulticast mode 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c90012000e40050015000a000090e000040000000000"], 0x17) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704e0b700000000"], 0xa) [ 189.036036][ T7528] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.0'. [ 189.047897][ T5160] Bluetooth: Unexpected start frame (len 18) 06:05:26 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) (async) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000001c40)={0x0, 0x0, &(0x7f0000001c00)={0x0, 0x54}}, 0x0) (async) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3400000010000104539300"/20, @ANYRES32=r2, @ANYBLOB="ddffffffffffffff140012000c000100627269646765"], 0x34}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32) r4 = socket(0x1, 0x803, 0x0) (rerun: 32) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x899ea, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x48, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xc743}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_ADDRESS={0xa, 0x1, @local}]}, 0x48}}, 0x0) (async) r6 = socket$nl_route(0x10, 0x3, 0x0) (async) r7 = socket(0x1, 0x803, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x899ea, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="480000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="43c700000081cf1aca696adb52a1f6fc7f5ac42a24000000140004800c0001006d616376746170000400020400000500b3fd801f6dc505d06912f2c56999f69abcbc75adc336b9ed88c2ba2ef35c6678850046ebf7dacc5bf96e902adf29a654cbd7a570f5586b7e80d37f81c4660dd938af32edb594e79a7b89dfda7649cc872f2b15000eb5a9f4103cbb321157a6529e7c86ead41a330e2441c376de0f1004d08eb776e8a6e6979472b483ecf419000000000000", @ANYRES32=r8, @ANYBLOB="0a000100aaaaaaaaaaaa0000"], 0x48}}, 0x0) [ 189.057012][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) dup(r2) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0x67, 0x8000000000000000, 0x9, 0xf597, 0x101, 0x5}) ioctl$SOUND_MIXER_READ_VOLUME(r1, 0x80044d14, &(0x7f0000000040)) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c90012000e40050015000a000090e000040000000000"], 0x17) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c90012000e40050015000a000090e000040000000000"], 0x17) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) [ 189.069794][ T7541] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704e0b700000000"], 0xa) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704e0b700000000"], 0xa) (async) [ 189.075500][ T7541] bridge3: entered promiscuous mode [ 189.077535][ T7541] bridge3: entered allmulticast mode [ 189.079731][ T5160] Bluetooth: Unexpected start frame (len 18) [ 189.082161][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 189.091045][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x2, 0x4e}, @l2cap_cid_signaling={{0x4a}, [@l2cap_create_chan_req={{0xc, 0x6, 0x5}, {0x5, 0x8, 0xda}}, @l2cap_disconn_rsp={{0x7, 0x5, 0x4}, {0x8, 0x5}}, @l2cap_conn_req={{0x2, 0x1f, 0x4}, {0x2, 0xf401}}, @l2cap_info_req={{0xa, 0x3, 0x2}, {0x5}}, @l2cap_conn_rsp={{0x3, 0x65, 0x8}, {0x2c, 0xe6, 0x8001, 0xfffd}}, @l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0x7, 0x1}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x3, 0x2}, {0x2}}, @l2cap_create_chan_rsp={{0xd, 0x3f, 0x8}, {0xff, 0x0, 0x1, 0x9}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x5, 0x2}, {0x7}}]}}, 0x53) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT, 0x2) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704e0b700000000"], 0xa) 06:05:26 executing program 0: unshare(0x20000180) [ 189.116114][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 0: unshare(0x20000180) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="7615092d96a390710704"], 0xa) 06:05:26 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) dup(r2) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0x67, 0x8000000000000000, 0x9, 0xf597, 0x101, 0x5}) ioctl$SOUND_MIXER_READ_VOLUME(r1, 0x80044d14, &(0x7f0000000040)) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x2, 0x4e}, @l2cap_cid_signaling={{0x4a}, [@l2cap_create_chan_req={{0xc, 0x6, 0x5}, {0x5, 0x8, 0xda}}, @l2cap_disconn_rsp={{0x7, 0x5, 0x4}, {0x8, 0x5}}, @l2cap_conn_req={{0x2, 0x1f, 0x4}, {0x2, 0xf401}}, @l2cap_info_req={{0xa, 0x3, 0x2}, {0x5}}, @l2cap_conn_rsp={{0x3, 0x65, 0x8}, {0x2c, 0xe6, 0x8001, 0xfffd}}, @l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0x7, 0x1}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x3, 0x2}, {0x2}}, @l2cap_create_chan_rsp={{0xd, 0x3f, 0x8}, {0xff, 0x0, 0x1, 0x9}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x5, 0x2}, {0x7}}]}}, 0x53) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT, 0x2) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:26 executing program 0: unshare(0x20000180) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="7615092d96a390710704"], 0xa) 06:05:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r2) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r3, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]]}, 0x2c}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xa4, r3, 0x400, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x70390bc1, 0x3c}}}}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4305}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88fb}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_FRAME={0x35, 0x33, @mgmt_frame=@action={@wo_ht={{0x0, 0x0, 0xd, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x3f}, @device_a, @device_b, @initial, {0x4, 0x1}}, @mesh_hwmp_psel={0xd, 0x1, {@void, @void, @void, @val={0x7e, 0x15, {{0x1, 0x8}, 0xa4, 0x80, @device_b, 0x7ff, 0x4}}}}}}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0xfbfb}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20000001}, 0x48840) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r4) sendmsg$NL80211_CMD_SET_COALESCE(r4, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r7, 0x800, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4000800) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="300000003a000b00000f0af61cda2c18c93d92000000000000000403007f5040683adfeb62f217e4d13a000004000000"], 0x30}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) sendmsg$IPVS_CMD_GET_DEST(r8, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)={0x90, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xae}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x81}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}]}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x10000}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x200}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xc}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x1}, 0x0) 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x3, 0x2, 0x4e}, @l2cap_cid_signaling={{0x4a}, [@l2cap_create_chan_req={{0xc, 0x6, 0x5}, {0x5, 0x8, 0xda}}, @l2cap_disconn_rsp={{0x7, 0x5, 0x4}, {0x8, 0x5}}, @l2cap_conn_req={{0x2, 0x1f, 0x4}, {0x2, 0xf401}}, @l2cap_info_req={{0xa, 0x3, 0x2}, {0x5}}, @l2cap_conn_rsp={{0x3, 0x65, 0x8}, {0x2c, 0xe6, 0x8001, 0xfffd}}, @l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0x7, 0x1}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x3, 0x2}, {0x2}}, @l2cap_create_chan_rsp={{0xd, 0x3f, 0x8}, {0xff, 0x0, 0x1, 0x9}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x5, 0x2}, {0x7}}]}}, 0x53) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT, 0x2) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_VENDOR_PKT, 0x2) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="7615092d96a390710704"], 0xa) 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], 0x4) 06:05:26 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000080), r0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x18000, 0x0) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1ff}}, 0x18) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], 0x4) [ 189.250975][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) [ 189.272792][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r2) (async, rerun: 32) r4 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 32) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r3, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]]}, 0x2c}}, 0x0) (async, rerun: 64) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) (rerun: 64) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xa4, r3, 0x400, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x70390bc1, 0x3c}}}}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4305}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88fb}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_FRAME={0x35, 0x33, @mgmt_frame=@action={@wo_ht={{0x0, 0x0, 0xd, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x3f}, @device_a, @device_b, @initial, {0x4, 0x1}}, @mesh_hwmp_psel={0xd, 0x1, {@void, @void, @void, @val={0x7e, 0x15, {{0x1, 0x8}, 0xa4, 0x80, @device_b, 0x7ff, 0x4}}}}}}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0xfbfb}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20000001}, 0x48840) (async) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r4) sendmsg$NL80211_CMD_SET_COALESCE(r4, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r7, 0x800, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4000800) (async) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="300000003a000b00000f0af61cda2c18c93d92000000000000000403007f5040683adfeb62f217e4d13a000004000000"], 0x30}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) sendmsg$IPVS_CMD_GET_DEST(r8, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)={0x90, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xae}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x81}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}]}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x10000}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x200}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xc}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x1}, 0x0) 06:05:26 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000080), r0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x18000, 0x0) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1ff}}, 0x18) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$nbd(&(0x7f0000000080), r0) (async) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x18000, 0x0) (async) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1ff}}, 0x18) (async) 06:05:26 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00'], 0x4) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) [ 189.299939][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:26 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000080), r0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x18000, 0x0) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1ff}}, 0x18) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$nbd(&(0x7f0000000080), r0) (async) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x18000, 0x0) (async) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1ff}}, 0x18) (async) 06:05:26 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x6}}}, 0xa) 06:05:26 executing program 2: prctl$PR_GET_CHILD_SUBREAPER(0x25) prctl$PR_GET_CHILD_SUBREAPER(0x25) prctl$PR_GET_CHILD_SUBREAPER(0x25) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) prctl$PR_GET_CHILD_SUBREAPER(0x25) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[], 0x4) [ 189.327867][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x6}}}, 0xa) [ 189.364088][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64) r1 = socket$nl_generic(0x10, 0x3, 0x10) (rerun: 64) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r2) (async) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r3, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]]}, 0x2c}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xa4, r3, 0x400, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x70390bc1, 0x3c}}}}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4305}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88fb}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_FRAME={0x35, 0x33, @mgmt_frame=@action={@wo_ht={{0x0, 0x0, 0xd, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x3f}, @device_a, @device_b, @initial, {0x4, 0x1}}, @mesh_hwmp_psel={0xd, 0x1, {@void, @void, @void, @val={0x7e, 0x15, {{0x1, 0x8}, 0xa4, 0x80, @device_b, 0x7ff, 0x4}}}}}}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0xfbfb}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20000001}, 0x48840) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r4) sendmsg$NL80211_CMD_SET_COALESCE(r4, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r7, 0x800, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4000800) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="300000003a000b00000f0af61cda2c18c93d92000000000000000403007f5040683adfeb62f217e4d13a000004000000"], 0x30}}, 0x0) (async) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) sendmsg$IPVS_CMD_GET_DEST(r8, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)={0x90, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xae}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x81}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}]}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x10000}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x200}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xc}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x1}, 0x0) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000040)={r0, 0x1, 0x10000, 0xfffffffffffff000}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mdstat\x00', 0x0, 0x0) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, r3, 0x200, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x32}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000807}, 0x1) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r3, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_GET_MPATH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r3, 0x50113e0f19654b88, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000004}, 0x0) fcntl$getflags(r1, 0x408) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xfffffffffffffff5, 0x0, {0x6}}, 0x18) 06:05:27 executing program 2: prctl$PR_GET_CHILD_SUBREAPER(0x25) (async) prctl$PR_GET_CHILD_SUBREAPER(0x25) (async, rerun: 32) prctl$PR_GET_CHILD_SUBREAPER(0x25) (async, rerun: 32) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) prctl$PR_GET_CHILD_SUBREAPER(0x25) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[], 0x4) 06:05:27 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x6}}}, 0xa) [ 189.388652][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x25}, "980b5737a66e57f545acc44ae0cadce8fe613c03663f70b673e69c59d75462d45033e1de8e"}, 0x29) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x63}, {0x7, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x8, 0x80, 0x3f, "d688c2", 0xe803}, {@any, 0x8, 0x9, 0xff, "c0a87e", 0x400}, {@any, 0x0, 0x3, 0x3f, "5b9a07", 0x5}, {@any, 0x2, 0x80, 0xff, "7c104c", 0x8}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7, 0xa9, 0x71, "db6a3e", 0x3}, {@any, 0x1, 0x1f, 0xff, '1s#'}, {@any, 0x0, 0x4d, 0x6, "dd20d2", 0x3}]}}}, 0x66) 06:05:27 executing program 2: prctl$PR_GET_CHILD_SUBREAPER(0x25) (async) prctl$PR_GET_CHILD_SUBREAPER(0x25) prctl$PR_GET_CHILD_SUBREAPER(0x25) (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) prctl$PR_GET_CHILD_SUBREAPER(0x25) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[], 0x4) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000040)={r0, 0x1, 0x10000, 0xfffffffffffff000}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mdstat\x00', 0x0, 0x0) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, r3, 0x200, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x32}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000807}, 0x1) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r3, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_GET_MPATH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r3, 0x50113e0f19654b88, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000004}, 0x0) fcntl$getflags(r1, 0x408) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xfffffffffffffff5, 0x0, {0x6}}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000040)={r0, 0x1, 0x10000, 0xfffffffffffff000}) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) (async) openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mdstat\x00', 0x0, 0x0) (async) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, r3, 0x200, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x32}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000807}, 0x1) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) (async) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r3, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]]}, 0x2c}}, 0x0) (async) sendmsg$NL80211_CMD_GET_MPATH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r3, 0x50113e0f19654b88, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000004}, 0x0) (async) fcntl$getflags(r1, 0x408) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xfffffffffffffff5, 0x0, {0x6}}, 0x18) (async) [ 189.426239][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x25}, "980b5737a66e57f545acc44ae0cadce8fe613c03663f70b673e69c59d75462d45033e1de8e"}, 0x29) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x63}, {0x7, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x8, 0x80, 0x3f, "d688c2", 0xe803}, {@any, 0x8, 0x9, 0xff, "c0a87e", 0x400}, {@any, 0x0, 0x3, 0x3f, "5b9a07", 0x5}, {@any, 0x2, 0x80, 0xff, "7c104c", 0x8}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7, 0xa9, 0x71, "db6a3e", 0x3}, {@any, 0x1, 0x1f, 0xff, '1s#'}, {@any, 0x0, 0x4d, 0x6, "dd20d2", 0x3}]}}}, 0x66) [ 189.463260][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), r2) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r3, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r5}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]]}, 0x2c}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f00000003c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0xa4, r3, 0x400, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x70390bc1, 0x3c}}}}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x4305}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88fb}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_FRAME={0x35, 0x33, @mgmt_frame=@action={@wo_ht={{0x0, 0x0, 0xd, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x3f}, @device_a, @device_b, @initial, {0x4, 0x1}}, @mesh_hwmp_psel={0xd, 0x1, {@void, @void, @void, @val={0x7e, 0x15, {{0x1, 0x8}, 0xa4, 0x80, @device_b, 0x7ff, 0x4}}}}}}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0xfbfb}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20000001}, 0x48840) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), r4) sendmsg$NL80211_CMD_SET_COALESCE(r4, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r7, 0x800, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x4000800) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="300000003a000b00000f0af61cda2c18c93d92000000000000000403007f5040683adfeb62f217e4d13a000004000000"], 0x30}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) sendmsg$IPVS_CMD_GET_DEST(r8, &(0x7f00000000c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000200)={0x90, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xae}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x4}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x81}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}]}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e23}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x10000}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x200}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xc}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x1}, 0x0) 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f00000002c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0x18}, @l2cap_cid_le_signaling={{0x14}, @l2cap_ecred_conn_rsp={{0x18, 0x3, 0x10}, {0x8001, 0xfffa, 0xffe0, 0x8, [0x6, 0x4, 0xfffe, 0x8]}}}}, 0x1d) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) 06:05:27 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x25}, "980b5737a66e57f545acc44ae0cadce8fe613c03663f70b673e69c59d75462d45033e1de8e"}, 0x29) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x63}, {0x7, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x8, 0x80, 0x3f, "d688c2", 0xe803}, {@any, 0x8, 0x9, 0xff, "c0a87e", 0x400}, {@any, 0x0, 0x3, 0x3f, "5b9a07", 0x5}, {@any, 0x2, 0x80, 0xff, "7c104c", 0x8}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7, 0xa9, 0x71, "db6a3e", 0x3}, {@any, 0x1, 0x1f, 0xff, '1s#'}, {@any, 0x0, 0x4d, 0x6, "dd20d2", 0x3}]}}}, 0x66) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000040)={r0, 0x1, 0x10000, 0xfffffffffffff000}) (async, rerun: 32) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) (async) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/mdstat\x00', 0x0, 0x0) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r4, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, r3, 0x200, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x32}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000807}, 0x1) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000080)={0x2c, r3, 0x901, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r6}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8}]]}, 0x2c}}, 0x0) sendmsg$NL80211_CMD_GET_MPATH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x40, r3, 0x50113e0f19654b88, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000004}, 0x0) (async) fcntl$getflags(r1, 0x408) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xfffffffffffffff5, 0x0, {0x6}}, 0x18) [ 189.510302][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(&(0x7f00000002c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0x18}, @l2cap_cid_le_signaling={{0x14}, @l2cap_ecred_conn_rsp={{0x18, 0x3, 0x10}, {0x8001, 0xfffa, 0xffe0, 0x8, [0x6, 0x4, 0xfffe, 0x8]}}}}, 0x1d) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x4002, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, &(0x7f0000000100)={'sit0\x00', &(0x7f0000000080)={@empty, 0x1, 0x0, 0x60, 0x0, [{}, {@multicast1}, {@initdev}, {@empty}, {@private}, {@loopback}]}}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:27 executing program 3: r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000700000014000800000000000000000000000000000000000500130000000000"], 0x30}}, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x4002, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, &(0x7f0000000100)={'sit0\x00', &(0x7f0000000080)={@empty, 0x1, 0x0, 0x60, 0x0, [{}, {@multicast1}, {@initdev}, {@empty}, {@private}, {@loopback}]}}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x4002, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, &(0x7f0000000100)={'sit0\x00', &(0x7f0000000080)={@empty, 0x1, 0x0, 0x60, 0x0, [{}, {@multicast1}, {@initdev}, {@empty}, {@private}, {@loopback}]}}) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) [ 189.569215][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 0: r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000700000014000800000000000000000000000000000000000500130000000000"], 0x30}}, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x4002, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, &(0x7f0000000100)={'sit0\x00', &(0x7f0000000080)={@empty, 0x1, 0x0, 0x60, 0x0, [{}, {@multicast1}, {@initdev}, {@empty}, {@private}, {@loopback}]}}) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(&(0x7f00000002c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0x18}, @l2cap_cid_le_signaling={{0x14}, @l2cap_ecred_conn_rsp={{0x18, 0x3, 0x10}, {0x8001, 0xfffa, 0xffe0, 0x8, [0x6, 0x4, 0xfffe, 0x8]}}}}, 0x1d) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (rerun: 32) 06:05:27 executing program 3: r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000700000014000800000000000000000000000000000000000500130000000000"], 0x30}}, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) socket$pppl2tp(0x18, 0x1, 0x1) (async) socket$inet6_udp(0xa, 0x2, 0x0) (async) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff) (async) sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000700000014000800000000000000000000000000000000000500130000000000"], 0x30}}, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) [ 189.615085][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 189.620472][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) close_range(r0, r1, 0x2) ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:27 executing program 3: r0 = socket$pppl2tp(0x18, 0x1, 0x1) (async) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) (async) r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000700000014000800000000000000000000000000000000000500130000000000"], 0x30}}, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="03c900625662971d7784bf03c3523e0b6cb5e09f3eea29113f8056c416a5cb5b4c9f502cd38fbf614db1b9baf402aa97977451daa970efdee9088fef8882db4886b73ed621762e935433c354037920addcfca78f54470e13b7480cb42491b1bcf6b51467b9f79b52f4b0934e66ca93b7c28999e1cc07000000c5769d24611b768736fa8e882f40ab7bbbf6f6af3f00"/158], 0x9b) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) close_range(r0, r1, 0x2) (async) close_range(r0, r1, 0x2) ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205) (async) ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 189.654883][ T5168] Bluetooth: hci2: Malformed Event: 0x02 06:05:27 executing program 0: socket$packet(0x11, 0xa, 0x300) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@random="d542a6007ced", @empty, @val={@void}, {@mpls_uc={0x8847, {[], @ipv6=@dccp_packet={0x0, 0x6, "70c540", 0x10, 0x21, 0x0, @local, @empty, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "145456", 0x0, "a48a33"}}}}}}}}, 0x0) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) r0 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x80000) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) sendmsg$tipc(r1, &(0x7f00000002c0)={&(0x7f00000000c0)=@id={0x1e, 0x3, 0x3, {0x4e20, 0x3}}, 0x10, &(0x7f0000000140)=[{&(0x7f00000001c0)}, {&(0x7f0000000100)="74701f", 0x3}], 0x2, &(0x7f0000000280)="a655f7c53213d6fca77305fe7ab321131c8831a4735460b3bcc9d23ad33563ff5b99ba0a31da0135ff65ad9a2b0935620399e5", 0x33, 0x40080}, 0x20000000) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x8c}, [@ldst={0x5, 0x3, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1}, 0x48) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000540)={'syztnl2\x00', &(0x7f0000000440)={'syztnl1\x00', 0x0, 0x3c40, 0x10, 0xfffffff7, 0x5c, {{0x2a, 0x4, 0x0, 0x3d, 0xa8, 0x68, 0x0, 0x6, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x17}, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ra={0x94, 0x4}, @noop, @noop, @ra={0x94, 0x4}, @generic={0x86, 0x10, "876cfce773bea80b159f58d7c5c5"}, @generic={0x86, 0xc, "edec6e5e20ba1f71e615"}, @timestamp={0x44, 0x1c, 0xe3, 0x0, 0x8, [0x3, 0x3f, 0xdc, 0x1000, 0x0, 0x3]}, @end, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x4d, 0x0, [{0x0, 0xe, "401fa759171064766cfa6a20"}, {0x1, 0x11, "3cf20bb25c780882a0ef3af0adb6a6"}, {0x1, 0xf, "df2fa09b8d90f128b3b505e9bd"}, {0x1, 0x9, "6b5e1f3caf1dbb"}, {0x7, 0x10, "8f0b77bc1d122a93bc094974535a"}]}]}}}}}) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000003500)={0xffffffffffffffff, 0x20, &(0x7f00000034c0)={&(0x7f0000003340)=""/120, 0x78, 0x0, &(0x7f00000033c0)=""/221, 0xdd}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000017c0), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x80) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1a, 0x8, &(0x7f0000001800)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="000000000001000018000000010000000000000008000000110a02000100400065d90400f0ffffff8520000002000000770c1013ebf458e24011d999fea3fa9b3cb545f3f269ef081ab2d2406ed44164123d295d2f74229800dee635c6ee12cf0fafe0f3d7e900345ed22ae53e3122444ae09e931f76dc227569895e40785d0db0d9cba831c72025145d5e90c5b546956f4f1e6fd10dbe53037017c7c08ec14e53d5cd90083db9c12b225a3f5f4c678d1006a8ef3458cea14ccf173a1b931ea78e7b7b6fde06bc13b7811fda9ffcccd9abb4ccd1e71509e9ed8facf2b54c148f225a29a3"], &(0x7f0000000180)='syzkaller\x00', 0x6, 0x26, &(0x7f0000000280)=""/38, 0x41000, 0x2, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000300)={0x3, 0x6, 0x0, 0x101}, 0x10, r2, 0xffffffffffffffff, 0x0, &(0x7f0000000600)}, 0x80) r3 = bpf$OBJ_GET_PROG(0x7, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c) sendto$inet6(r4, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c) ioctl$int_in(r4, 0x5452, &(0x7f00000002c0)=0x1) shutdown(r4, 0x1) getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r6 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_USE_IFADDR={0x5}, @IFLA_BR_MCAST_SNOOPING={0x5}]}}}]}, 0x44}}, 0x0) sendmsg$FOU_CMD_GET(r0, &(0x7f0000001a00)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x6000008}, 0xc, &(0x7f00000019c0)={&(0x7f0000001a40)={0x68, 0x0, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @initdev={0xac, 0x1e, 0x1, 0x0}}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast1}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_IFINDEX={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x448c1}, 0x24008810) recvmsg(r4, &(0x7f00000008c0)={0x0, 0x4, &(0x7f0000000840)=[{&(0x7f0000000040)=""/50, 0xfffffe72}, {&(0x7f0000000240)=""/48, 0x1b}, {&(0x7f0000000780)=""/129, 0x80}, {&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/124, 0x79}, {&(0x7f0000000400)=""/168, 0xb7}], 0x6, 0x0, 0x0, 0xb7}, 0x40000110) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)=[{&(0x7f0000000280)={0x10, 0x36, 0x400, 0x70bd28, 0x25dfdbfe}, 0x10}, {&(0x7f00000003c0)={0xe44, 0x42, 0x10, 0x70bd29, 0x25dfdbfd, "", [@typed={0x8, 0x65, 0x0, 0x0, @ipv4=@local}, @nested={0x203, 0x58, 0x0, 0x1, [@typed={0xc, 0x21, 0x0, 0x0, @u64=0x9}, @typed={0x8, 0x28, 0x0, 0x0, @fd}, @typed={0x8, 0x3d, 0x0, 0x0, @fd}, @typed={0x8, 0x12, 0x0, 0x0, @uid}, @typed={0x4, 0x32}, @generic="b8999ca00b0d20c7aca3ee7fde67530b745c3c9168dcf4e20a7cf4f7a31505420fb8b2ee8e311a0d47a75b57ab0facf342a2cff7aa5bcc7453269ab04b69fa356e6ead3344786273e64ee6892c719ac5860ddedd5fe6a3239d032794b4e2829126c9808421b1af3fea45", @typed={0x8, 0x75, 0x0, 0x0, @str='^,\\\x00'}, @generic="f0868d6b74689d8fa72e166a96321f07e8b708aa3c506ccf45c64b572235959555bbceef78f77e90b25fc756142e4e517ae4406e1a9564f993e7a1647dab6ce1997c3e837c9d42d9a88207b470a96695108a1f46aa30bb166a93101644d2d9edd04fbbd34b984fd6d06254f0faac2b2335161b94e1054720bcfe9546a26a83fb6201d65db8cf4fbb7a92ab1e33df30e9cd3c1232", @generic="a0fdfd86837da4a227225b0a1521fcadaba1c65499446fcc8e8b6d787aab2789e5769c0031000e9ea16e2aa2bd40b8370fcf2ddad3d52388519e247c828a5ad91449c33dfe4335115fd7af1fd455632dde61fca83104f741bd53e37a5070f6e34279fc75bf1e3568ee77fdb67e296413842fe1834fc4f101dc1aba7267a004c22c5c7126f38f6bc891ca0bb7c378637924b93895efbeb581843b64e6cd5a5be8ff074c8d500d085380a2ca8cb2049161a2054636d6f548ca2355dab37b429285cba6cc36db40af8b5a", @typed={0x8, 0x53, 0x0, 0x0, @pid}]}, @typed={0x8, 0x88, 0x0, 0x0, @ipv4}, @generic="80af45a1f200363d64ded7e045c9d6109b46c4ff51dd6fba62c5adbe6e5284074620e6d693793f2fb1ee1c49f29be5f890dc0228aed580176be189172c48be2df747edf6cc7ce0d5ccb8bd8eda37a605f154275e544b2dd7ea6004644d6ba4f8c2f4873e2513cfada787ea5dce6c13a877dca49fd95c02eb7250cf548fb735876057887e6439d5d79dd5e00d9a04a0429bfaf28f3ab24525bcc93c59ea9f21d86fa5dff59cf2236650ec464fd43990be775ea20a6fd04340c8743d6c2bee049262fc2f31a2e085efab2cefa8776cd75f4fe5e4cfeeaa357e4dd1c07c55c25e33f5976f691453c1f26e7177982a32127c1fef183c6da05e2e0e8f0efddd670951504c326c97811dd1fc05dbc8902f34f96c295be389ea6959b5aa958010b02e3c0814bc1ef803d92f933fafbfdd3088c0d82ba16160d51029c5f9ef1394f9323895e08adb3722cb6b226766f4214f04a6a67a6e8d8ce12a97e9209d76d471262548941e7ccfb567c8eb8f4341a78617bf581e0dbc35e1327bbbb0cadf80874eab887372da639dfcc2e7e04edb472990322b8b1672d3951e56f9268541b27915f521bfd2ffe5c73d78967e798ace75419d4b9d88d7b341d7c0ae3513994f41e69157db55ad3523c31170b5f9d588c3726e1b09b5633aa949d9c58da16c07d21265b8da2644cd6c7e8ff14cbce8b1eef289284d02452d4a21292c45b9c1032ad08b32cf9037e47f897f06cdfd32d2ef523673125febeb585d1515386bd791d9bdf887f9dfb42b673d0c14dbac4d16e9aaaf02925a310d92ea1559154a8b3a89dffc9f24b9a2e3286973f2945089f8f4add1788742d937b373eb455427df05ee088555ec1b608dc31f8f76c101e23fab81c26b0c946f5a3f70ca8d994db2932c8e5edf3ef4a0357410e36ad7f9bc7b667fde878b9b20afe4b468a471f77a24065788791982e3eeb46aeb0fb7b46079587e0649481d274a129f28d99ae2c7f6736d0492d3dbaeeb82ef7f479892e10663ea5e6efc7a2e0a370f36613f0a898cbe4bd2c5a3881a9d0f81e6aea69a3b70a815ae5faa6a60f612913a592da6a687d3c6622f08429e3751b0721572948efa94e848e9d5d9000827bf52f344392920d781b432a34301cb7047094104e1e24369380dde6bc9cd5e60e68bded5570210751da04671fb6f85ce845986d1ae75be4c05feecb86026434256770200912ef10246fe1daaf3da5a548470f1211cb80e3ae874aeb1cfa54af71cd4390b4112936de789d6282b8c73336e030a3d592ae21bed6789819f5575469ed6dd59eb8eb5ad9e15be1267d2427b4fd7d00a6618ca29acfd03e8a60fc5194c540cac2d89d19f7ec69b67c5eddcb2da8bb71cdb8a4e0e32c5229f8f118f1dfeaa2f11771368540f73d1e0d6ddcc07faf716b01b51b31df0775edb165cb0bc667b0d33e74db5869d366e31a94f28348b27b8d3b8741bc97012ffb8dff6e00f115fa8280ce4cfe12540233e830f24cb383008ed19c2ec92459dbee8077eab15490c96e271e9b556cef0e804af9639dcf0d7d79abd09f003ff46ee49b729baa7f8b19f3f93b19f8fd838cd7cef45a6ccc15d450033641d4339ba107d95df32b86a99a85cf8ad92cc326f6e8e65fb0d880331afe65957fc3e1ce91c315a381f5d49c81955c893b4c1188c8b4224837edfb9906a2de3e482637e169c01eb9e85b667942bf7ea6c07d2ae02e91f4834d2e4a8c2150e8e6c355262ead32fd71f2c4d7d682504ce6fb6dc6c1204173fc586a001688229cef279e83296fe6d0186c280709e680e2a3f580aa66a90e1bf04101ba87532c19361a6348de77e8c59f461c85c64c19b9aaee789ce03e5db66cb79cf8e59f73a0a1248ba40943c9e6d8d4633019a6f1276a68038650a414703a58d2dfbf8b2301ee191ca042e9b5265a6a8cb174a047e4145dcb6652e4e30e7ef7a6b1a0d2333cd8e4588d8c20da77df76c651fb5a17e29533b9ef86c5d537f614f79c1ac9e8a3e3b17cada11da375bc45cf313e20607e869cd19de635b18a0df07a4b7cf9ac7ca87e0b9c00544ec6967c6d557bc90fc5bd4e7c9619cc190dc46f20a2658b548b0f9a6ef465db3b9c4932befb8e2ce562022d91cdc3812febc4a539b5187a67e2fb08ba344f694a46db50c2476dec16eb784a017fdf1a9653f4401115840a9cf26f4680407a95236f1841e5c70b4215f4b640124fb284f437936a73c5413819c25e8bd1a4ff0a275edf6e87779bd6b6f4e7266572d1174137c3995412b174a8a6429c471afc4e657a3b462f4a8092b9a7ed4672f00725f45a18eda33f2cf1dbcf25c0f4dc865e72d27c7fe8bcac2362f189d6f6bc8fc0091b6a1c2a59628a3ba4116e6813cb65564d12a769986578e0f73f492e5bbc2158ace95a04ccaeb7cc410d96ccc5fccad12415a87ff55560f2d796a16b8f18d8233310f3488329cbdc360781820837119566f0efe5da4ceb4aef642c5d95fb5eb19b4d21b2f2068c827ae1c60f606f86a6c37dba79c636add6f12e372a430cf39b827ec95c5b5e10ba4523ae71e2e99f39403c5fa68a68338943b2ec71707f1c89a6ac368c61f85c2b0cb80b7630fce572663a58325a579174f0cdcc52a2d5308e23a7397eadffce73962c75a99ee2c7e75993eba05e0932575cabc346adb3fa6a55cb4cf0a69dacbbffb2408f5167ffeb93902573698b46ab76bdae6dd50ae404ef9a0978ce4c1fd41426057afff059a6e1ffcd5c33f053a1a61c14e4c8b7dfd59095f5772913988adf104be961357147b307660b796cf69bd0aed90d2fbadfd9401bbc5a10c788addbbbff2ee7aff34ff2b9d75533dd41ae6179c17108ce1c499b8bf88bf094359f3e90d0d9fea3aec47dd11c62f11276fb1917b353f5a61110a4c3e7f5e6bfe32a7f6f29d32a974bba220edc2ec8246dd6779390448bbef29cfdaf6cf20c05ccbe88de11e0e74bbaa8d2d96b321a8eedce3d2a59d949c21cd1370b640d4ad4bf7470097800920c2f7769847980dc8a16a9ebd02df588a9791beb99a4f124589624c6a32c13b132e76972a7a1140bf8b391623fc49031d65c377efe13fab4a195190a028f535cef3232e44e217114a50314bb3a8b884c1741816a8b43e00db8a909f442533fd1172d4a10d6b53007bbdd306815934bf08739cb5090aaa5387b38c5c1a193a5937e2db245c00478f6343a8a27a2b2abbea7b90eaa1ee420b7ce18f5bfdfe1d53c7e24596c32f580f179852cce77cf2c96200c4badc7e5d911a8eec808bfd47950c07745265d33dd4b57b2bac110dab8ec02ba8ecb15475f4883f0a3de0915a87b9d54699ded85473ef750ac22b52bb7dc360d45f5f49c6d38a71158aff329ba38c068e04ee1852a43f8abb092a733bb0d8597b1f622e0c4deed445bdd9a4200df17d2b9583b403f6967e1d9e7b3149c92ddcc9e15b924030c5813b0597db5f58d1748c261d7206e52461695d6c65532388d6d55ea1dbccf60d318993120e41a7b040eab15563ba1e9401ff5a5b788f0f3db7183055dd76bdda477ccf2b894e4a3e072cd6b861404308f16bf73600f78b077830d4c4f38c2b516184ea03d2db2ac185eab0e777b18210b6fbf01d4c4ba9d1c53b4ff61ba2ea489f4544d1a6120620767cf4313d35f360844bf66d1bd04242099c760e2b754a4c3f58e76b04fc268ef52bd48a27a8b3c9a32622daf8a1e6687e6eff5866985db64869f4cf38f2a6b7afa7b1702578d7fbf923a6053472f5059d11da436d77bea27231b1fcc7a5e42494fc9b0c241a8f94cc3cbef6ddeddcfd1b4d068c53d4c4536266ab80993fbe84d769f6770eb3e91fa1640daa346ffb799f88fcdc5e47b3311ba96af4ec6f73e5804c6ea539e9959778d04695f266cc3e42ffa44ca57600a7f74e698c1db4a33db34e42aa661d3548145da0cb748d6cb0027e1bb7f80c8a5c59820b202c36c57e2ba675b6dc05d77b83ac3892bc569d9fd99c936425788d0ca055401551495c1ba56648bb4a1b1ea81ca6c79e05651b7abc2c86fedc91bda7ece06610a87407251e2ef87655bbd98ef5e1d21396c0e7a21fe0ccc2cd32249558ff2320f74b69c8ae15312eb175b0f509155070c20254a67b6a842fceb69365e77aaea44dc97efd7af076ae80422c39ce1e43bfa8566610cd81aeef8219a3cf9e091c505165a7b143b42bdfe0c6c4395d2492fe3b16021e5937c9403ee23d5b342b644046d8fc0108a376152f02873dec25d3dd2f9c48cd609faf9cb287d86add35a9ebb6ff584a6ad882584f9b0c7ec595c99bd6e6e17f0694a9d4eb97e2b7831af57b2bcc5fe13c299c8ebddd30ecc5b7ee71744fbe9c54", @typed={0x8, 0x63, 0x0, 0x0, @uid}, @generic="fa8f7d500bf73914b8254903f3f1ff2ffec581383e9b73"]}, 0xe44}, {&(0x7f0000001680)=ANY=[@ANYBLOB="b00000003e00020029bd7000fedbdf25050000000000000008004100060000008d008b8008000300", @ANYRES32=r3, @ANYBLOB='\b\x00H\x00', @ANYRES32, @ANYBLOB="14004500fc00000000000000000000000000000141a86662b5cb89a5d37722ee951e6490fa5032ba8076fa012c18898df7e7a2c37bb9936918693451294b62d81073968446fd3ae57962f4dd8d73a6c2024b090600d51d3f453073ef4187eeaa57c9303a6615e84d8a81cc6c35eb88b91c3ec55481fd09acb3000000"], 0xb0}], 0x3, &(0x7f0000001740)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4, 0xffffffffffffffff]}}], 0x28, 0x4040000}, 0x4801) 06:05:27 executing program 3: syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000080)=@ctrl_frame=@ack={{}, {0x80}}, 0xa) syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="04027ffb13b3a22cef9c325407040000000000efc789f20b9d7fa762708dab00"], 0xa) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x49}, @l2cap_cid_signaling={{0x45}, [@l2cap_move_chan_cfm={{0x10, 0x6, 0x4}, {0x9, 0x80}}, @l2cap_disconn_rsp={{0x7, 0x6d, 0x4}, {0x479, 0x5c}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x3892, 0x9, 0x3ff, 0xffff}}, @l2cap_conf_req={{0x4, 0x3, 0x25}, {0x5, 0x3f, [@l2cap_conf_rfc={0x4, 0x9, {0x4, 0x4, 0x9, 0x3, 0x5, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x40, 0x0, 0x5, 0x2, 0x4, 0x828}}, @l2cap_conf_ews={0x7, 0x2, 0xbd}]}}]}}, 0x4e) syz_80211_inject_frame(&(0x7f0000000140), &(0x7f0000000180)=@mgmt_frame=@reassoc_req={@with_ht={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x8}, @broadcast, @broadcast, @initial, {0x3}}, @ver_80211n={0x0, 0xc6e, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x8000, 0x1, @device_b, {0x0, 0x10, @random="66adb901be9328e6e4be74f623233a58"}, @val={0x1, 0x2, [{0x30}, {0x16, 0x1}]}, @void, [{0xdd, 0xa2, "e0aba075c4d3529bde2aca39dd7e3d3f806252d3c43d44617810fafb229503ae2c4bfaf5a0784eca4cfa4197d9f7a554289d22510999b878552cfe491a7671d5fb9f57826a16347b0dd10b8ed2a789f98a91c0ac4e52f913408565347c69fc2b7e1250a2adeef0feb33c96085ab5a84d76ccc521c0c40c4d336ee000b6785f4e5e9adfd3e5b410d2ed29169d50c2364f35f1882fffba32a8beb73582823b092a6823"}, {0xdd, 0x28, "3fd2098cb57d80bc6b2688ee3d8e5c69e5162362dcb47ae14423fbbd2c8bcee007bfe44f0c4fb11e"}]}, 0x10a) 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="03c900625662971d7784bf03c3523e0b6cb5e09f3eea29113f8056c416a5cb5b4c9f502cd38fbf614db1b9baf402aa97977451daa970efdee9088fef8882db4886b73ed621762e935433c354037920addcfca78f54470e13b7480cb42491b1bcf6b51467b9f79b52f4b0934e66ca93b7c28999e1cc07000000c5769d24611b768736fa8e882f40ab7bbbf6f6af3f00"/158], 0x9b) (async, rerun: 32) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) close_range(r0, r1, 0x2) (async) ioctl$MON_IOCQ_RING_SIZE(r0, 0x9205) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 189.678536][ T7706] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 189.683357][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="03c900625662971d7784bf03c3523e0b6cb5e09f3eea29113f8056c416a5cb5b4c9f502cd38fbf614db1b9baf402aa97977451daa970efdee9088fef8882db4886b73ed621762e935433c354037920addcfca78f54470e13b7480cb42491b1bcf6b51467b9f79b52f4b0934e66ca93b7c28999e1cc07000000c5769d24611b768736fa8e882f40ab7bbbf6f6af3f00"/158], 0x9b) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 189.687444][ T7706] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 189.714708][ T38] audit: type=1400 audit(1688364327.378:300): avc: denied { name_bind } for pid=7707 comm="syz-executor.0" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c981fbd0f2e26ecc1e7254bf86d95ce6b042003e00070007000b094000060004000506110002000400810f0409020308f8ff000405000c810500070601000103010800a8000000225c08000800ff0f000000000000"], 0x47) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$cgroup_subtree(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="e9080000006d602c5064a0190369000000473f8469948c556f9dbe641d8342d320137e4a8ebeda64c14f431b5e"], 0x8) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 189.724949][ T38] audit: type=1400 audit(1688364327.388:301): avc: denied { node_bind } for pid=7707 comm="syz-executor.0" saddr=::1 src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 189.736707][ T5166] Bluetooth: hci1: ACL packet for unknown connection handle 457 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c981fbd0f2e26ecc1e7254bf86d95ce6b042003e00070007000b094000060004000506110002000400810f0409020308f8ff000405000c810500070601000103010800a8000000225c08000800ff0f000000000000"], 0x47) [ 189.761748][ T5166] Bluetooth: hci1: ACL packet for unknown connection handle 457 06:05:27 executing program 0: socket$packet(0x11, 0xa, 0x300) (async) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@random="d542a6007ced", @empty, @val={@void}, {@mpls_uc={0x8847, {[], @ipv6=@dccp_packet={0x0, 0x6, "70c540", 0x10, 0x21, 0x0, @local, @empty, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "145456", 0x0, "a48a33"}}}}}}}}, 0x0) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) r0 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x80000) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) sendmsg$tipc(r1, &(0x7f00000002c0)={&(0x7f00000000c0)=@id={0x1e, 0x3, 0x3, {0x4e20, 0x3}}, 0x10, &(0x7f0000000140)=[{&(0x7f00000001c0)}, {&(0x7f0000000100)="74701f", 0x3}], 0x2, &(0x7f0000000280)="a655f7c53213d6fca77305fe7ab321131c8831a4735460b3bcc9d23ad33563ff5b99ba0a31da0135ff65ad9a2b0935620399e5", 0x33, 0x40080}, 0x20000000) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x8c}, [@ldst={0x5, 0x3, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1}, 0x48) (async) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000540)={'syztnl2\x00', &(0x7f0000000440)={'syztnl1\x00', 0x0, 0x3c40, 0x10, 0xfffffff7, 0x5c, {{0x2a, 0x4, 0x0, 0x3d, 0xa8, 0x68, 0x0, 0x6, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x17}, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ra={0x94, 0x4}, @noop, @noop, @ra={0x94, 0x4}, @generic={0x86, 0x10, "876cfce773bea80b159f58d7c5c5"}, @generic={0x86, 0xc, "edec6e5e20ba1f71e615"}, @timestamp={0x44, 0x1c, 0xe3, 0x0, 0x8, [0x3, 0x3f, 0xdc, 0x1000, 0x0, 0x3]}, @end, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x4d, 0x0, [{0x0, 0xe, "401fa759171064766cfa6a20"}, {0x1, 0x11, "3cf20bb25c780882a0ef3af0adb6a6"}, {0x1, 0xf, "df2fa09b8d90f128b3b505e9bd"}, {0x1, 0x9, "6b5e1f3caf1dbb"}, {0x7, 0x10, "8f0b77bc1d122a93bc094974535a"}]}]}}}}}) (async) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000003500)={0xffffffffffffffff, 0x20, &(0x7f00000034c0)={&(0x7f0000003340)=""/120, 0x78, 0x0, &(0x7f00000033c0)=""/221, 0xdd}}, 0x10) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000017c0), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x80) (async) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1a, 0x8, &(0x7f0000001800)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="000000000001000018000000010000000000000008000000110a02000100400065d90400f0ffffff8520000002000000770c1013ebf458e24011d999fea3fa9b3cb545f3f269ef081ab2d2406ed44164123d295d2f74229800dee635c6ee12cf0fafe0f3d7e900345ed22ae53e3122444ae09e931f76dc227569895e40785d0db0d9cba831c72025145d5e90c5b546956f4f1e6fd10dbe53037017c7c08ec14e53d5cd90083db9c12b225a3f5f4c678d1006a8ef3458cea14ccf173a1b931ea78e7b7b6fde06bc13b7811fda9ffcccd9abb4ccd1e71509e9ed8facf2b54c148f225a29a3"], &(0x7f0000000180)='syzkaller\x00', 0x6, 0x26, &(0x7f0000000280)=""/38, 0x41000, 0x2, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000300)={0x3, 0x6, 0x0, 0x101}, 0x10, r2, 0xffffffffffffffff, 0x0, &(0x7f0000000600)}, 0x80) (async) r3 = bpf$OBJ_GET_PROG(0x7, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c) (async) sendto$inet6(r4, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c) ioctl$int_in(r4, 0x5452, &(0x7f00000002c0)=0x1) shutdown(r4, 0x1) (async) getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async) r6 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_USE_IFADDR={0x5}, @IFLA_BR_MCAST_SNOOPING={0x5}]}}}]}, 0x44}}, 0x0) (async) sendmsg$FOU_CMD_GET(r0, &(0x7f0000001a00)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x6000008}, 0xc, &(0x7f00000019c0)={&(0x7f0000001a40)={0x68, 0x0, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @initdev={0xac, 0x1e, 0x1, 0x0}}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast1}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_IFINDEX={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x448c1}, 0x24008810) (async) recvmsg(r4, &(0x7f00000008c0)={0x0, 0x4, &(0x7f0000000840)=[{&(0x7f0000000040)=""/50, 0xfffffe72}, {&(0x7f0000000240)=""/48, 0x1b}, {&(0x7f0000000780)=""/129, 0x80}, {&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/124, 0x79}, {&(0x7f0000000400)=""/168, 0xb7}], 0x6, 0x0, 0x0, 0xb7}, 0x40000110) (async) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)=[{&(0x7f0000000280)={0x10, 0x36, 0x400, 0x70bd28, 0x25dfdbfe}, 0x10}, {&(0x7f00000003c0)={0xe44, 0x42, 0x10, 0x70bd29, 0x25dfdbfd, "", [@typed={0x8, 0x65, 0x0, 0x0, @ipv4=@local}, @nested={0x203, 0x58, 0x0, 0x1, [@typed={0xc, 0x21, 0x0, 0x0, @u64=0x9}, @typed={0x8, 0x28, 0x0, 0x0, @fd}, @typed={0x8, 0x3d, 0x0, 0x0, @fd}, @typed={0x8, 0x12, 0x0, 0x0, @uid}, @typed={0x4, 0x32}, @generic="b8999ca00b0d20c7aca3ee7fde67530b745c3c9168dcf4e20a7cf4f7a31505420fb8b2ee8e311a0d47a75b57ab0facf342a2cff7aa5bcc7453269ab04b69fa356e6ead3344786273e64ee6892c719ac5860ddedd5fe6a3239d032794b4e2829126c9808421b1af3fea45", @typed={0x8, 0x75, 0x0, 0x0, @str='^,\\\x00'}, @generic="f0868d6b74689d8fa72e166a96321f07e8b708aa3c506ccf45c64b572235959555bbceef78f77e90b25fc756142e4e517ae4406e1a9564f993e7a1647dab6ce1997c3e837c9d42d9a88207b470a96695108a1f46aa30bb166a93101644d2d9edd04fbbd34b984fd6d06254f0faac2b2335161b94e1054720bcfe9546a26a83fb6201d65db8cf4fbb7a92ab1e33df30e9cd3c1232", @generic="a0fdfd86837da4a227225b0a1521fcadaba1c65499446fcc8e8b6d787aab2789e5769c0031000e9ea16e2aa2bd40b8370fcf2ddad3d52388519e247c828a5ad91449c33dfe4335115fd7af1fd455632dde61fca83104f741bd53e37a5070f6e34279fc75bf1e3568ee77fdb67e296413842fe1834fc4f101dc1aba7267a004c22c5c7126f38f6bc891ca0bb7c378637924b93895efbeb581843b64e6cd5a5be8ff074c8d500d085380a2ca8cb2049161a2054636d6f548ca2355dab37b429285cba6cc36db40af8b5a", @typed={0x8, 0x53, 0x0, 0x0, @pid}]}, @typed={0x8, 0x88, 0x0, 0x0, @ipv4}, @generic="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", @typed={0x8, 0x63, 0x0, 0x0, @uid}, @generic="fa8f7d500bf73914b8254903f3f1ff2ffec581383e9b73"]}, 0xe44}, {&(0x7f0000001680)=ANY=[@ANYBLOB="b00000003e00020029bd7000fedbdf25050000000000000008004100060000008d008b8008000300", @ANYRES32=r3, @ANYBLOB='\b\x00H\x00', @ANYRES32, @ANYBLOB="14004500fc00000000000000000000000000000141a86662b5cb89a5d37722ee951e6490fa5032ba8076fa012c18898df7e7a2c37bb9936918693451294b62d81073968446fd3ae57962f4dd8d73a6c2024b090600d51d3f453073ef4187eeaa57c9303a6615e84d8a81cc6c35eb88b91c3ec55481fd09acb3000000"], 0xb0}], 0x3, &(0x7f0000001740)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4, 0xffffffffffffffff]}}], 0x28, 0x4040000}, 0x4801) 06:05:27 executing program 3: syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000080)=@ctrl_frame=@ack={{}, {0x80}}, 0xa) syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="04027ffb13b3a22cef9c325407040000000000efc789f20b9d7fa762708dab00"], 0xa) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x49}, @l2cap_cid_signaling={{0x45}, [@l2cap_move_chan_cfm={{0x10, 0x6, 0x4}, {0x9, 0x80}}, @l2cap_disconn_rsp={{0x7, 0x6d, 0x4}, {0x479, 0x5c}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x3892, 0x9, 0x3ff, 0xffff}}, @l2cap_conf_req={{0x4, 0x3, 0x25}, {0x5, 0x3f, [@l2cap_conf_rfc={0x4, 0x9, {0x4, 0x4, 0x9, 0x3, 0x5, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x40, 0x0, 0x5, 0x2, 0x4, 0x828}}, @l2cap_conf_ews={0x7, 0x2, 0xbd}]}}]}}, 0x4e) syz_80211_inject_frame(&(0x7f0000000140), &(0x7f0000000180)=@mgmt_frame=@reassoc_req={@with_ht={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x8}, @broadcast, @broadcast, @initial, {0x3}}, @ver_80211n={0x0, 0xc6e, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x8000, 0x1, @device_b, {0x0, 0x10, @random="66adb901be9328e6e4be74f623233a58"}, @val={0x1, 0x2, [{0x30}, {0x16, 0x1}]}, @void, [{0xdd, 0xa2, "e0aba075c4d3529bde2aca39dd7e3d3f806252d3c43d44617810fafb229503ae2c4bfaf5a0784eca4cfa4197d9f7a554289d22510999b878552cfe491a7671d5fb9f57826a16347b0dd10b8ed2a789f98a91c0ac4e52f913408565347c69fc2b7e1250a2adeef0feb33c96085ab5a84d76ccc521c0c40c4d336ee000b6785f4e5e9adfd3e5b410d2ed29169d50c2364f35f1882fffba32a8beb73582823b092a6823"}, {0xdd, 0x28, "3fd2098cb57d80bc6b2688ee3d8e5c69e5162362dcb47ae14423fbbd2c8bcee007bfe44f0c4fb11e"}]}, 0x10a) syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000080)=@ctrl_frame=@ack={{}, {0x80}}, 0xa) (async) syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="04027ffb13b3a22cef9c325407040000000000efc789f20b9d7fa762708dab00"], 0xa) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x49}, @l2cap_cid_signaling={{0x45}, [@l2cap_move_chan_cfm={{0x10, 0x6, 0x4}, {0x9, 0x80}}, @l2cap_disconn_rsp={{0x7, 0x6d, 0x4}, {0x479, 0x5c}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x3892, 0x9, 0x3ff, 0xffff}}, @l2cap_conf_req={{0x4, 0x3, 0x25}, {0x5, 0x3f, [@l2cap_conf_rfc={0x4, 0x9, {0x4, 0x4, 0x9, 0x3, 0x5, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x40, 0x0, 0x5, 0x2, 0x4, 0x828}}, @l2cap_conf_ews={0x7, 0x2, 0xbd}]}}]}}, 0x4e) (async) syz_80211_inject_frame(&(0x7f0000000140), &(0x7f0000000180)=@mgmt_frame=@reassoc_req={@with_ht={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x8}, @broadcast, @broadcast, @initial, {0x3}}, @ver_80211n={0x0, 0xc6e, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x8000, 0x1, @device_b, {0x0, 0x10, @random="66adb901be9328e6e4be74f623233a58"}, @val={0x1, 0x2, [{0x30}, {0x16, 0x1}]}, @void, [{0xdd, 0xa2, "e0aba075c4d3529bde2aca39dd7e3d3f806252d3c43d44617810fafb229503ae2c4bfaf5a0784eca4cfa4197d9f7a554289d22510999b878552cfe491a7671d5fb9f57826a16347b0dd10b8ed2a789f98a91c0ac4e52f913408565347c69fc2b7e1250a2adeef0feb33c96085ab5a84d76ccc521c0c40c4d336ee000b6785f4e5e9adfd3e5b410d2ed29169d50c2364f35f1882fffba32a8beb73582823b092a6823"}, {0xdd, 0x28, "3fd2098cb57d80bc6b2688ee3d8e5c69e5162362dcb47ae14423fbbd2c8bcee007bfe44f0c4fb11e"}]}, 0x10a) (async) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$cgroup_subtree(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="e9080000006d602c5064a0190369000000473f8469948c556f9dbe641d8342d320137e4a8ebeda64c14f431b5e"], 0x8) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c981fbd0f2e26ecc1e7254bf86d95ce6b042003e00070007000b094000060004000506110002000400810f0409020308f8ff000405000c810500070601000103010800a8000000225c08000800ff0f000000000000"], 0x47) 06:05:27 executing program 0: socket$packet(0x11, 0xa, 0x300) (async) syz_emit_ethernet(0x4a, &(0x7f0000000200)={@random="d542a6007ced", @empty, @val={@void}, {@mpls_uc={0x8847, {[], @ipv6=@dccp_packet={0x0, 0x6, "70c540", 0x10, 0x21, 0x0, @local, @empty, {[], {{0x0, 0x0, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "145456", 0x0, "a48a33"}}}}}}}}, 0x0) (async) openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0) r0 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x80000) (async) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) sendmsg$tipc(r1, &(0x7f00000002c0)={&(0x7f00000000c0)=@id={0x1e, 0x3, 0x3, {0x4e20, 0x3}}, 0x10, &(0x7f0000000140)=[{&(0x7f00000001c0)}, {&(0x7f0000000100)="74701f", 0x3}], 0x2, &(0x7f0000000280)="a655f7c53213d6fca77305fe7ab321131c8831a4735460b3bcc9d23ad33563ff5b99ba0a31da0135ff65ad9a2b0935620399e5", 0x33, 0x40080}, 0x20000000) (async) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x8c}, [@ldst={0x5, 0x3, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1}, 0x48) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000540)={'syztnl2\x00', &(0x7f0000000440)={'syztnl1\x00', 0x0, 0x3c40, 0x10, 0xfffffff7, 0x5c, {{0x2a, 0x4, 0x0, 0x3d, 0xa8, 0x68, 0x0, 0x6, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x17}, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@ra={0x94, 0x4}, @noop, @noop, @ra={0x94, 0x4}, @generic={0x86, 0x10, "876cfce773bea80b159f58d7c5c5"}, @generic={0x86, 0xc, "edec6e5e20ba1f71e615"}, @timestamp={0x44, 0x1c, 0xe3, 0x0, 0x8, [0x3, 0x3f, 0xdc, 0x1000, 0x0, 0x3]}, @end, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x4d, 0x0, [{0x0, 0xe, "401fa759171064766cfa6a20"}, {0x1, 0x11, "3cf20bb25c780882a0ef3af0adb6a6"}, {0x1, 0xf, "df2fa09b8d90f128b3b505e9bd"}, {0x1, 0x9, "6b5e1f3caf1dbb"}, {0x7, 0x10, "8f0b77bc1d122a93bc094974535a"}]}]}}}}}) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000003500)={0xffffffffffffffff, 0x20, &(0x7f00000034c0)={&(0x7f0000003340)=""/120, 0x78, 0x0, &(0x7f00000033c0)=""/221, 0xdd}}, 0x10) (async) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000017c0), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x80) (async) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1a, 0x8, &(0x7f0000001800)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="000000000001000018000000010000000000000008000000110a02000100400065d90400f0ffffff8520000002000000770c1013ebf458e24011d999fea3fa9b3cb545f3f269ef081ab2d2406ed44164123d295d2f74229800dee635c6ee12cf0fafe0f3d7e900345ed22ae53e3122444ae09e931f76dc227569895e40785d0db0d9cba831c72025145d5e90c5b546956f4f1e6fd10dbe53037017c7c08ec14e53d5cd90083db9c12b225a3f5f4c678d1006a8ef3458cea14ccf173a1b931ea78e7b7b6fde06bc13b7811fda9ffcccd9abb4ccd1e71509e9ed8facf2b54c148f225a29a3"], &(0x7f0000000180)='syzkaller\x00', 0x6, 0x26, &(0x7f0000000280)=""/38, 0x41000, 0x2, '\x00', 0x0, 0xc, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x0, 0x4}, 0x8, 0x10, &(0x7f0000000300)={0x3, 0x6, 0x0, 0x101}, 0x10, r2, 0xffffffffffffffff, 0x0, &(0x7f0000000600)}, 0x80) r3 = bpf$OBJ_GET_PROG(0x7, 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c) sendto$inet6(r4, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c) ioctl$int_in(r4, 0x5452, &(0x7f00000002c0)=0x1) shutdown(r4, 0x1) getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) (async) r6 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r5}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_QUERY_USE_IFADDR={0x5}, @IFLA_BR_MCAST_SNOOPING={0x5}]}}}]}, 0x44}}, 0x0) sendmsg$FOU_CMD_GET(r0, &(0x7f0000001a00)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x6000008}, 0xc, &(0x7f00000019c0)={&(0x7f0000001a40)={0x68, 0x0, 0x400, 0x70bd2c, 0x25dfdbfb, {}, [@FOU_ATTR_LOCAL_V4={0x8, 0x6, @initdev={0xac, 0x1e, 0x1, 0x0}}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast1}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_IFINDEX={0x8}]}, 0x68}, 0x1, 0x0, 0x0, 0x448c1}, 0x24008810) (async, rerun: 32) recvmsg(r4, &(0x7f00000008c0)={0x0, 0x4, &(0x7f0000000840)=[{&(0x7f0000000040)=""/50, 0xfffffe72}, {&(0x7f0000000240)=""/48, 0x1b}, {&(0x7f0000000780)=""/129, 0x80}, {&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/124, 0x79}, {&(0x7f0000000400)=""/168, 0xb7}], 0x6, 0x0, 0x0, 0xb7}, 0x40000110) (rerun: 32) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000001780)={&(0x7f0000000040), 0xc, &(0x7f00000001c0)=[{&(0x7f0000000280)={0x10, 0x36, 0x400, 0x70bd28, 0x25dfdbfe}, 0x10}, {&(0x7f00000003c0)={0xe44, 0x42, 0x10, 0x70bd29, 0x25dfdbfd, "", [@typed={0x8, 0x65, 0x0, 0x0, @ipv4=@local}, @nested={0x203, 0x58, 0x0, 0x1, [@typed={0xc, 0x21, 0x0, 0x0, @u64=0x9}, @typed={0x8, 0x28, 0x0, 0x0, @fd}, @typed={0x8, 0x3d, 0x0, 0x0, @fd}, @typed={0x8, 0x12, 0x0, 0x0, @uid}, @typed={0x4, 0x32}, @generic="b8999ca00b0d20c7aca3ee7fde67530b745c3c9168dcf4e20a7cf4f7a31505420fb8b2ee8e311a0d47a75b57ab0facf342a2cff7aa5bcc7453269ab04b69fa356e6ead3344786273e64ee6892c719ac5860ddedd5fe6a3239d032794b4e2829126c9808421b1af3fea45", @typed={0x8, 0x75, 0x0, 0x0, @str='^,\\\x00'}, @generic="f0868d6b74689d8fa72e166a96321f07e8b708aa3c506ccf45c64b572235959555bbceef78f77e90b25fc756142e4e517ae4406e1a9564f993e7a1647dab6ce1997c3e837c9d42d9a88207b470a96695108a1f46aa30bb166a93101644d2d9edd04fbbd34b984fd6d06254f0faac2b2335161b94e1054720bcfe9546a26a83fb6201d65db8cf4fbb7a92ab1e33df30e9cd3c1232", @generic="a0fdfd86837da4a227225b0a1521fcadaba1c65499446fcc8e8b6d787aab2789e5769c0031000e9ea16e2aa2bd40b8370fcf2ddad3d52388519e247c828a5ad91449c33dfe4335115fd7af1fd455632dde61fca83104f741bd53e37a5070f6e34279fc75bf1e3568ee77fdb67e296413842fe1834fc4f101dc1aba7267a004c22c5c7126f38f6bc891ca0bb7c378637924b93895efbeb581843b64e6cd5a5be8ff074c8d500d085380a2ca8cb2049161a2054636d6f548ca2355dab37b429285cba6cc36db40af8b5a", @typed={0x8, 0x53, 0x0, 0x0, @pid}]}, @typed={0x8, 0x88, 0x0, 0x0, @ipv4}, @generic="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", @typed={0x8, 0x63, 0x0, 0x0, @uid}, @generic="fa8f7d500bf73914b8254903f3f1ff2ffec581383e9b73"]}, 0xe44}, {&(0x7f0000001680)=ANY=[@ANYBLOB="b00000003e00020029bd7000fedbdf25050000000000000008004100060000008d008b8008000300", @ANYRES32=r3, @ANYBLOB='\b\x00H\x00', @ANYRES32, @ANYBLOB="14004500fc00000000000000000000000000000141a86662b5cb89a5d37722ee951e6490fa5032ba8076fa012c18898df7e7a2c37bb9936918693451294b62d81073968446fd3ae57962f4dd8d73a6c2024b090600d51d3f453073ef4187eeaa57c9303a6615e84d8a81cc6c35eb88b91c3ec55481fd09acb3000000"], 0xb0}], 0x3, &(0x7f0000001740)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r4, 0xffffffffffffffff]}}], 0x28, 0x4040000}, 0x4801) [ 190.010232][ T5166] Bluetooth: hci1: ACL packet for unknown connection handle 457 [ 190.020917][ T7745] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$cgroup_subtree(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="e9080000006d602c5064a0190369000000473f8469948c556f9dbe641d8342d320137e4a8ebeda64c14f431b5e"], 0x8) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 190.026985][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 190.031261][ T7745] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 190.037207][ T7745] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 190.042124][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:27 executing program 3: syz_80211_inject_frame(&(0x7f0000000040)=@device_b, &(0x7f0000000080)=@ctrl_frame=@ack={{}, {0x80}}, 0xa) syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="04027ffb13b3a22cef9c325407040000000000efc789f20b9d7fa762708dab00"], 0xa) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x49}, @l2cap_cid_signaling={{0x45}, [@l2cap_move_chan_cfm={{0x10, 0x6, 0x4}, {0x9, 0x80}}, @l2cap_disconn_rsp={{0x7, 0x6d, 0x4}, {0x479, 0x5c}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x3892, 0x9, 0x3ff, 0xffff}}, @l2cap_conf_req={{0x4, 0x3, 0x25}, {0x5, 0x3f, [@l2cap_conf_rfc={0x4, 0x9, {0x4, 0x4, 0x9, 0x3, 0x5, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x40, 0x0, 0x5, 0x2, 0x4, 0x828}}, @l2cap_conf_ews={0x7, 0x2, 0xbd}]}}]}}, 0x4e) (async) syz_80211_inject_frame(&(0x7f0000000140), &(0x7f0000000180)=@mgmt_frame=@reassoc_req={@with_ht={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x8}, @broadcast, @broadcast, @initial, {0x3}}, @ver_80211n={0x0, 0xc6e, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x8000, 0x1, @device_b, {0x0, 0x10, @random="66adb901be9328e6e4be74f623233a58"}, @val={0x1, 0x2, [{0x30}, {0x16, 0x1}]}, @void, [{0xdd, 0xa2, "e0aba075c4d3529bde2aca39dd7e3d3f806252d3c43d44617810fafb229503ae2c4bfaf5a0784eca4cfa4197d9f7a554289d22510999b878552cfe491a7671d5fb9f57826a16347b0dd10b8ed2a789f98a91c0ac4e52f913408565347c69fc2b7e1250a2adeef0feb33c96085ab5a84d76ccc521c0c40c4d336ee000b6785f4e5e9adfd3e5b410d2ed29169d50c2364f35f1882fffba32a8beb73582823b092a6823"}, {0xdd, 0x28, "3fd2098cb57d80bc6b2688ee3d8e5c69e5162362dcb47ae14423fbbd2c8bcee007bfe44f0c4fb11e"}]}, 0x10a) 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 190.073809][ T7757] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000100)=""/74) r2 = syz_open_dev$mouse(&(0x7f0000000080), 0x7ff, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00'}) read$FUSE(r2, &(0x7f0000004100)={0x2020}, 0x2020) read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0}, 0x2020) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008800) read$FUSE(r0, &(0x7f0000006140)={0x2020}, 0x2020) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r3, {0x1}}, 0x18) fcntl$setflags(r0, 0x2, 0x0) 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 190.082197][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 190.086655][ T7760] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium 06:05:27 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) close(r2) [ 190.091413][ T38] audit: type=1400 audit(1688364327.758:302): avc: denied { read } for pid=7761 comm="syz-executor.1" name="btrfs-control" dev="devtmpfs" ino=1149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1 [ 190.105824][ T38] audit: type=1400 audit(1688364327.758:303): avc: denied { open } for pid=7761 comm="syz-executor.1" path="/dev/btrfs-control" dev="devtmpfs" ino=1149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0xfc) syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x3, 0xe9}, @l2cap_cid_signaling={{0xe5}, [@l2cap_info_rsp={{0xb, 0x3f, 0x78}, {0x5, 0x4, "b1e1002245f286d34981405b4bfe65c42acc8111ca930d05e0ace1d38c36f57c3c631a0cc179895a1db39a28ef62472bcfdf50022c6068f05bfe57ca58a522eee8897bf458c60ec6f816a370cd6e73005cdf2238a422d7a5e08a4f6836a35c2c217b27207a8aa23a7f5bcd29c0a5ed8cc8dc7a97"}}, @l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0x1, 0x7}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x7, 0x2}}, @l2cap_create_chan_req={{0xc, 0x98, 0x5}, {0x4, 0x7, 0xc8}}, @l2cap_create_chan_req={{0xc, 0x5, 0x5}, {0x0, 0x400}}, @l2cap_conf_req={{0x4, 0x4, 0x23}, {0xffd3, 0x7, [@l2cap_conf_mtu={0x1, 0x2, 0x3f}, @l2cap_conf_ews={0x7, 0x2, 0x8001}, @l2cap_conf_mtu={0x1, 0x2, 0x8}, @l2cap_conf_ews={0x7, 0x2, 0x6}, @l2cap_conf_rfc={0x4, 0x9, {0x2, 0x2, 0x80, 0x5, 0xe1b, 0x4d}}, @l2cap_conf_flushto={0x2, 0x2, 0x4}]}}, @l2cap_conn_req={{0x2, 0x9, 0x4}, {0x7f, 0x1f80}}, @l2cap_conf_req={{0x4, 0x2, 0xb}, {0x1a7, 0xfc01, [@l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_flushto={0x2, 0x2, 0x9}]}}, @l2cap_conn_rsp={{0x3, 0x40, 0x8}, {0x1f, 0xffb, 0x401, 0x80}}]}}, 0xee) 06:05:27 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0xfc) (async) syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x3, 0xe9}, @l2cap_cid_signaling={{0xe5}, [@l2cap_info_rsp={{0xb, 0x3f, 0x78}, {0x5, 0x4, "b1e1002245f286d34981405b4bfe65c42acc8111ca930d05e0ace1d38c36f57c3c631a0cc179895a1db39a28ef62472bcfdf50022c6068f05bfe57ca58a522eee8897bf458c60ec6f816a370cd6e73005cdf2238a422d7a5e08a4f6836a35c2c217b27207a8aa23a7f5bcd29c0a5ed8cc8dc7a97"}}, @l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0x1, 0x7}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x7, 0x2}}, @l2cap_create_chan_req={{0xc, 0x98, 0x5}, {0x4, 0x7, 0xc8}}, @l2cap_create_chan_req={{0xc, 0x5, 0x5}, {0x0, 0x400}}, @l2cap_conf_req={{0x4, 0x4, 0x23}, {0xffd3, 0x7, [@l2cap_conf_mtu={0x1, 0x2, 0x3f}, @l2cap_conf_ews={0x7, 0x2, 0x8001}, @l2cap_conf_mtu={0x1, 0x2, 0x8}, @l2cap_conf_ews={0x7, 0x2, 0x6}, @l2cap_conf_rfc={0x4, 0x9, {0x2, 0x2, 0x80, 0x5, 0xe1b, 0x4d}}, @l2cap_conf_flushto={0x2, 0x2, 0x4}]}}, @l2cap_conn_req={{0x2, 0x9, 0x4}, {0x7f, 0x1f80}}, @l2cap_conf_req={{0x4, 0x2, 0xb}, {0x1a7, 0xfc01, [@l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_flushto={0x2, 0x2, 0x9}]}}, @l2cap_conn_rsp={{0x3, 0x40, 0x8}, {0x1f, 0xffb, 0x401, 0x80}}]}}, 0xee) [ 190.127200][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 1926 06:05:27 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000100)=""/74) r2 = syz_open_dev$mouse(&(0x7f0000000080), 0x7ff, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00'}) read$FUSE(r2, &(0x7f0000004100)={0x2020}, 0x2020) read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0}, 0x2020) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008800) read$FUSE(r0, &(0x7f0000006140)={0x2020}, 0x2020) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r3, {0x1}}, 0x18) fcntl$setflags(r0, 0x2, 0x0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r1, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000100)=""/74) (async) syz_open_dev$mouse(&(0x7f0000000080), 0x7ff, 0x2) (async) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00'}) (async) read$FUSE(r2, &(0x7f0000004100)={0x2020}, 0x2020) (async) read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020}, 0x2020) (async) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008800) (async) read$FUSE(r0, &(0x7f0000006140)={0x2020}, 0x2020) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r3, {0x1}}, 0x18) (async) fcntl$setflags(r0, 0x2, 0x0) (async) [ 190.147504][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 1926 [ 190.173537][ T38] audit: type=1400 audit(1688364327.838:304): avc: denied { bind } for pid=7763 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x6d}, @l2cap_cid_signaling={{0x69}, [@l2cap_info_rsp={{0xb, 0x1, 0x33}, {0x401, 0x0, "0f19eecd9931febe6d2e0323b14222a6320ffa9ec42bafb6c52ee833dfb229902e5d7a774187d5f1a41ac009fb37d8"}}, @l2cap_cmd_rej_unk={{0x1, 0x2, 0x2}, {0x1}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x81, 0x2}, {0x5}}, @l2cap_move_chan_req={{0xe, 0x0, 0x3}, {0x7, 0x7}}, @l2cap_move_chan_rsp={{0xf, 0x36, 0x4}, {0x3f, 0x7}}, @l2cap_create_chan_req={{0xc, 0x1f, 0x5}, {0x3f, 0xf05, 0xff}}, @l2cap_cmd_rej_unk={{0x1, 0x7, 0x2}, {0x7fff}}, @l2cap_move_chan_rsp={{0xf, 0x9, 0x4}, {0x5, 0x1000}}]}}, 0x72) 06:05:28 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="038697f8921a3b1346d850eba858193d166f3acbdd5434e8ff7cf19571d65ef72630ab42ff03fd0eb0e08312096b1e76b70ea7bcca2f44d408b6723c00340f256a9e742f12ff2c655371293ab4d70fa441a454ef6c4f973a1720999362d23c5a745a6d527df8d6ffda528f732eff1a3aa7559c59f15148d68cbae14233b22dcf8c1247b25bca14f43e29699d9202a51ef366cc9e509cbe4b931a7ddae11385a9bfe93d2b9dd20d097e29e5648863d1de1a702433348a8e51a091cfb9d99c515f440d1a8bba26f7b30eca3e1410fc81d6d989ef808531d497b12a17481fba29b968e39a2654e0aa3d894f9023b179f00835284f043151038e8ca76062"], 0xfc) (async) syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x3, 0xe9}, @l2cap_cid_signaling={{0xe5}, [@l2cap_info_rsp={{0xb, 0x3f, 0x78}, {0x5, 0x4, "b1e1002245f286d34981405b4bfe65c42acc8111ca930d05e0ace1d38c36f57c3c631a0cc179895a1db39a28ef62472bcfdf50022c6068f05bfe57ca58a522eee8897bf458c60ec6f816a370cd6e73005cdf2238a422d7a5e08a4f6836a35c2c217b27207a8aa23a7f5bcd29c0a5ed8cc8dc7a97"}}, @l2cap_move_chan_req={{0xe, 0x3, 0x3}, {0x1, 0x7}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x7, 0x2}}, @l2cap_create_chan_req={{0xc, 0x98, 0x5}, {0x4, 0x7, 0xc8}}, @l2cap_create_chan_req={{0xc, 0x5, 0x5}, {0x0, 0x400}}, @l2cap_conf_req={{0x4, 0x4, 0x23}, {0xffd3, 0x7, [@l2cap_conf_mtu={0x1, 0x2, 0x3f}, @l2cap_conf_ews={0x7, 0x2, 0x8001}, @l2cap_conf_mtu={0x1, 0x2, 0x8}, @l2cap_conf_ews={0x7, 0x2, 0x6}, @l2cap_conf_rfc={0x4, 0x9, {0x2, 0x2, 0x80, 0x5, 0xe1b, 0x4d}}, @l2cap_conf_flushto={0x2, 0x2, 0x4}]}}, @l2cap_conn_req={{0x2, 0x9, 0x4}, {0x7f, 0x1f80}}, @l2cap_conf_req={{0x4, 0x2, 0xb}, {0x1a7, 0xfc01, [@l2cap_conf_fcs={0x5, 0x1}, @l2cap_conf_flushto={0x2, 0x2, 0x9}]}}, @l2cap_conn_rsp={{0x3, 0x40, 0x8}, {0x1f, 0xffb, 0x401, 0x80}}]}}, 0xee) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000100)=""/74) (async) r2 = syz_open_dev$mouse(&(0x7f0000000080), 0x7ff, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000000c0)={'batadv_slave_1\x00'}) (async) read$FUSE(r2, &(0x7f0000004100)={0x2020}, 0x2020) (async) read$FUSE(0xffffffffffffffff, &(0x7f00000020c0)={0x2020, 0x0, 0x0}, 0x2020) (async) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x4008800) (async) read$FUSE(r0, &(0x7f0000006140)={0x2020}, 0x2020) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r3, {0x1}}, 0x18) (async) fcntl$setflags(r0, 0x2, 0x0) 06:05:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) (async) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) (async) r2 = socket$can_raw(0x1d, 0x3, 0x1) (async) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) (async) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) (async) bind$can_raw(r2, &(0x7f0000000000), 0x10) (async) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) (async) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) close(r2) [ 190.413692][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x6d}, @l2cap_cid_signaling={{0x69}, [@l2cap_info_rsp={{0xb, 0x1, 0x33}, {0x401, 0x0, "0f19eecd9931febe6d2e0323b14222a6320ffa9ec42bafb6c52ee833dfb229902e5d7a774187d5f1a41ac009fb37d8"}}, @l2cap_cmd_rej_unk={{0x1, 0x2, 0x2}, {0x1}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x81, 0x2}, {0x5}}, @l2cap_move_chan_req={{0xe, 0x0, 0x3}, {0x7, 0x7}}, @l2cap_move_chan_rsp={{0xf, 0x36, 0x4}, {0x3f, 0x7}}, @l2cap_create_chan_req={{0xc, 0x1f, 0x5}, {0x3f, 0xf05, 0xff}}, @l2cap_cmd_rej_unk={{0x1, 0x7, 0x2}, {0x7fff}}, @l2cap_move_chan_rsp={{0xf, 0x9, 0x4}, {0x5, 0x1000}}]}}, 0x72) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x6d}, @l2cap_cid_signaling={{0x69}, [@l2cap_info_rsp={{0xb, 0x1, 0x33}, {0x401, 0x0, "0f19eecd9931febe6d2e0323b14222a6320ffa9ec42bafb6c52ee833dfb229902e5d7a774187d5f1a41ac009fb37d8"}}, @l2cap_cmd_rej_unk={{0x1, 0x2, 0x2}, {0x1}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x81, 0x2}, {0x5}}, @l2cap_move_chan_req={{0xe, 0x0, 0x3}, {0x7, 0x7}}, @l2cap_move_chan_rsp={{0xf, 0x36, 0x4}, {0x3f, 0x7}}, @l2cap_create_chan_req={{0xc, 0x1f, 0x5}, {0x3f, 0xf05, 0xff}}, @l2cap_cmd_rej_unk={{0x1, 0x7, 0x2}, {0x7fff}}, @l2cap_move_chan_rsp={{0xf, 0x9, 0x4}, {0x5, 0x1000}}]}}, 0x72) (async) [ 190.419525][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 1926 [ 190.431836][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010d6500000000000000020000000800030054a9fe331cdde6e6ead5eaa5f854cbec2581d1630d2c3bab", @ANYRES32=r3, @ANYBLOB="080026006c0900000800220100000000"], 0x2c}}, 0x0) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000827bd707f000000080003000000000000", @ANYRES32=r3, @ANYBLOB="060048001e0000000a003400020202020202000006004800000000000a0034000101010101010000"], 0x44}, 0x1, 0x0, 0x0, 0x2404a805}, 0x40084) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) signalfd(r5, &(0x7f0000000280)={[0x214]}, 0x8) write$FUSE_BMAP(r4, &(0x7f0000000040)={0x18, 0xfffffffffffffffe}, 0x18) [ 190.437918][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0x6d}, @l2cap_cid_signaling={{0x69}, [@l2cap_info_rsp={{0xb, 0x1, 0x33}, {0x401, 0x0, "0f19eecd9931febe6d2e0323b14222a6320ffa9ec42bafb6c52ee833dfb229902e5d7a774187d5f1a41ac009fb37d8"}}, @l2cap_cmd_rej_unk={{0x1, 0x2, 0x2}, {0x1}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x81, 0x2}, {0x5}}, @l2cap_move_chan_req={{0xe, 0x0, 0x3}, {0x7, 0x7}}, @l2cap_move_chan_rsp={{0xf, 0x36, 0x4}, {0x3f, 0x7}}, @l2cap_create_chan_req={{0xc, 0x1f, 0x5}, {0x3f, 0xf05, 0xff}}, @l2cap_cmd_rej_unk={{0x1, 0x7, 0x2}, {0x7fff}}, @l2cap_move_chan_rsp={{0xf, 0x9, 0x4}, {0x5, 0x1000}}]}}, 0x72) 06:05:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_tos={0x0, r2, 0x0, 0x3}}, 0x20) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000040)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), r2, r3}}, 0x18) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 190.453864][ T7804] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. 06:05:28 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) (async) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010d6500000000000000020000000800030054a9fe331cdde6e6ead5eaa5f854cbec2581d1630d2c3bab", @ANYRES32=r3, @ANYBLOB="080026006c0900000800220100000000"], 0x2c}}, 0x0) (async) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000827bd707f000000080003000000000000", @ANYRES32=r3, @ANYBLOB="060048001e0000000a003400020202020202000006004800000000000a0034000101010101010000"], 0x44}, 0x1, 0x0, 0x0, 0x2404a805}, 0x40084) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) signalfd(r5, &(0x7f0000000280)={[0x214]}, 0x8) (async, rerun: 64) write$FUSE_BMAP(r4, &(0x7f0000000040)={0x18, 0xfffffffffffffffe}, 0x18) (rerun: 64) [ 190.478253][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRES16=0x0], 0xa) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRES16=0x0], 0xa) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRES16=0x0], 0xa) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) 06:05:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) (async) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) (async) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) (async) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) (async) bind$can_raw(r2, &(0x7f0000000000), 0x10) (async) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) (async) r5 = socket$nl_generic(0x10, 0x3, 0x10) (async) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) (async) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) (async) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) close(r2) 06:05:28 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) (async) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010d6500000000000000020000000800030054a9fe331cdde6e6ead5eaa5f854cbec2581d1630d2c3bab", @ANYRES32=r3, @ANYBLOB="080026006c0900000800220100000000"], 0x2c}}, 0x0) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000827bd707f000000080003000000000000", @ANYRES32=r3, @ANYBLOB="060048001e0000000a003400020202020202000006004800000000000a0034000101010101010000"], 0x44}, 0x1, 0x0, 0x0, 0x2404a805}, 0x40084) (async) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000827bd707f000000080003000000000000", @ANYRES32=r3, @ANYBLOB="060048001e0000000a003400020202020202000006004800000000000a0034000101010101010000"], 0x44}, 0x1, 0x0, 0x0, 0x2404a805}, 0x40084) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0) signalfd(r5, &(0x7f0000000280)={[0x214]}, 0x8) (async) signalfd(r5, &(0x7f0000000280)={[0x214]}, 0x8) write$FUSE_BMAP(r4, &(0x7f0000000040)={0x18, 0xfffffffffffffffe}, 0x18) 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYRES16=0x0], 0xa) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) 06:05:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_tos={0x0, r2, 0x0, 0x3}}, 0x20) (async) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000040)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), r2, r3}}, 0x18) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 190.566064][ T7823] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x15}, @l2cap_cid_signaling={{0x11}, [@l2cap_move_chan_cfm={{0x10, 0x3, 0x4}, {0x1, 0x55}}, @l2cap_create_chan_req={{0xc, 0x2, 0x5}, {0x1, 0x8, 0xff}}]}}, 0x1a) [ 190.591634][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0xc0000, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x15) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) read$FUSE(r3, &(0x7f00000020c0)={0x2020}, 0x2020) ioctl$TCSETSF2(r2, 0x404c4701, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "ebeed70000000000000000400000000800"}) ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f00000000c0)) write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080)={'pim6reg0', 0x32, 0x30}, 0xb) 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x15}, @l2cap_cid_signaling={{0x11}, [@l2cap_move_chan_cfm={{0x10, 0x3, 0x4}, {0x1, 0x55}}, @l2cap_create_chan_req={{0xc, 0x2, 0x5}, {0x1, 0x8, 0xff}}]}}, 0x1a) [ 190.627516][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x15}, @l2cap_cid_signaling={{0x11}, [@l2cap_move_chan_cfm={{0x10, 0x3, 0x4}, {0x1, 0x55}}, @l2cap_create_chan_req={{0xc, 0x2, 0x5}, {0x1, 0x8, 0xff}}]}}, 0x1a) [ 190.658352][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="ef457f319ea965827380387a7ae040a143b03c2cafc4c20fe11ddf8a5d4f6041006bf106a47e70d9c0d92780ab3675e8cefebd5764c8936e071431deffec207bd080712b698f3f3336853dd709d3b8d8e406195bd1ff1ff9fe8bbd34839adb14dec14427903f07f0c84865439b5339efc6f8fb346fbb313af0f3fb455e0c2835cba63955a219f9649858ac9fb488973d11f5ae0642f76419ce77954c2a978eafd505d794e2a772927eacd1b3cb1c7f4fde70315525bd860dc87a77ee622c239eb67ba75356794fd2415291d08d85e2d3c25de0fdddf029c7ebf192d035eae5c65217c473c8860bc50cad04e9023f3b8b7f07d018b9c7a5e5df5aced8227f5af44b9f3a5d032f4e27943d716ac18644a7493bc75cb272fe029862d436e9a4d8b742fe4c96b14a8b66fca8dae0736d96e690327a7a87d4fcd513c8", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) close(r2) 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="04020704ac9c5122ca2bde073aa2e8fcd327c2000000000000"], 0xa) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_req={{0x34, 0x6}, {@none}}}, 0x9) syz_emit_vhci(&(0x7f0000000240)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x3f, 0xa}, {0x1, 0x1000, 0x7a, 0x4, 0x6}}}}, 0x17) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x6}, "32f6a29a917a"}, 0xa) syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xd7}, "3e7a88481f589ba656fbff74602ccee2c66e63ee987ff7e02141546eee8e530c178c922519eb73600dc5b31fb79dd81f00bf5f26d99a59e9b40f3974b269abde801f8efc749369bbc9fc4e0f8c3da651ad47e71ec7598afd370e75bed6663dcdd2abe6e68e5c6d138b1a7a5c96efe8ad644880ca122a771d5dc42e5f02ee077fb035245cbd21814cec135d78663b615a5a99bf2d3f10a7e33744a9d9ac875d39344fcc6d063e39bb14493d0ecde75b8e129b9151578805f78b3aa4140a720980c5695360e934a3989f97a9d22ff23f40b3b7c4a38088c1"}, 0xdb) 06:05:28 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r1, &(0x7f0000000140)={0xe, 0x18, 0xfa00, @id_tos={0x0, r2, 0x0, 0x3}}, 0x20) (async) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000040)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), r2, r3}}, 0x18) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0xc0000, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x15) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) read$FUSE(r3, &(0x7f00000020c0)={0x2020}, 0x2020) ioctl$TCSETSF2(r2, 0x404c4701, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "ebeed70000000000000000400000000800"}) ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f00000000c0)) write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080)={'pim6reg0', 0x32, 0x30}, 0xb) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0xc0000, 0x0) (async) syz_open_dev$tty20(0xc, 0x4, 0x1) (async) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x15) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r3, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) read$FUSE(r3, &(0x7f00000020c0)={0x2020}, 0x2020) (async) ioctl$TCSETSF2(r2, 0x404c4701, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "ebeed70000000000000000400000000800"}) (async) ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f00000000c0)) (async) write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080)={'pim6reg0', 0x32, 0x30}, 0xb) (async) [ 190.746510][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="04020704ac9c5122ca2bde073aa2e8fcd327c2000000000000"], 0xa) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_req={{0x34, 0x6}, {@none}}}, 0x9) (async) syz_emit_vhci(&(0x7f0000000240)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x3f, 0xa}, {0x1, 0x1000, 0x7a, 0x4, 0x6}}}}, 0x17) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x6}, "32f6a29a917a"}, 0xa) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xd7}, "3e7a88481f589ba656fbff74602ccee2c66e63ee987ff7e02141546eee8e530c178c922519eb73600dc5b31fb79dd81f00bf5f26d99a59e9b40f3974b269abde801f8efc749369bbc9fc4e0f8c3da651ad47e71ec7598afd370e75bed6663dcdd2abe6e68e5c6d138b1a7a5c96efe8ad644880ca122a771d5dc42e5f02ee077fb035245cbd21814cec135d78663b615a5a99bf2d3f10a7e33744a9d9ac875d39344fcc6d063e39bb14493d0ecde75b8e129b9151578805f78b3aa4140a720980c5695360e934a3989f97a9d22ff23f40b3b7c4a38088c1"}, 0xdb) [ 190.766840][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="04020704ac9c5122ca2bde073aa2e8fcd327c2000000000000"], 0xa) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_user_passkey_req={{0x34, 0x6}, {@none}}}, 0x9) (rerun: 64) syz_emit_vhci(&(0x7f0000000240)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x3f, 0xa}, {0x1, 0x1000, 0x7a, 0x4, 0x6}}}}, 0x17) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x6}, "32f6a29a917a"}, 0xa) syz_emit_vhci(&(0x7f0000000100)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xd7}, "3e7a88481f589ba656fbff74602ccee2c66e63ee987ff7e02141546eee8e530c178c922519eb73600dc5b31fb79dd81f00bf5f26d99a59e9b40f3974b269abde801f8efc749369bbc9fc4e0f8c3da651ad47e71ec7598afd370e75bed6663dcdd2abe6e68e5c6d138b1a7a5c96efe8ad644880ca122a771d5dc42e5f02ee077fb035245cbd21814cec135d78663b615a5a99bf2d3f10a7e33744a9d9ac875d39344fcc6d063e39bb14493d0ecde75b8e129b9151578805f78b3aa4140a720980c5695360e934a3989f97a9d22ff23f40b3b7c4a38088c1"}, 0xdb) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0xc0000, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x15) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) read$FUSE(r3, &(0x7f00000020c0)={0x2020}, 0x2020) ioctl$TCSETSF2(r2, 0x404c4701, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "ebeed70000000000000000400000000800"}) ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f00000000c0)) write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080)={'pim6reg0', 0x32, 0x30}, 0xb) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x20100, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0xc0000, 0x0) (async) syz_open_dev$tty20(0xc, 0x4, 0x1) (async) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x15) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r3, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) read$FUSE(r3, &(0x7f00000020c0)={0x2020}, 0x2020) (async) ioctl$TCSETSF2(r2, 0x404c4701, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, "ebeed70000000000000000400000000800"}) (async) ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f00000000c0)) (async) write$cgroup_netprio_ifpriomap(r1, &(0x7f0000000080)={'pim6reg0', 0x32, 0x30}, 0xb) (async) [ 190.806939][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES8], 0xfffffffffffffefc) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:28 executing program 2: r0 = openat$mice(0xffffffffffffff9c, &(0x7f00000000c0), 0x4c8000) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={&(0x7f0000000280), 0xc, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="5c0000002e0000022bbd7000ffdbdf25000000001b16", @ANYRES32=0x0, @ANYBLOB="03000100080007000c00040008000b000200000008000b000104000008000b000200000008000b008500000008000b0060d64e4408000b000400000008000b0002000000"], 0x8b}, 0x1, 0x0, 0x0, 0x4}, 0x40000) syz_emit_vhci(0x0, 0x17) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x4000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$KVM_GET_LAPIC(r1, 0x8400ae8e, &(0x7f00000002c0)={"26c0a3d2e2302d40b921c59178fce8742f7f2de5c3d8f4728a632b748a29ac2777bd64d43dd67d86159d78c88859236a26ebb5f93b3fa6f06bb5889f831fd1490f1aeed8cc2dc2e318381bc0c7211214df30abe300c432c10b0dbe8d659324ca9e4ffd25da826a009add2711f3d8bcb75860739cc0fa29158943c590f35823db8a9481ecf82d36848317630672ad0665395be65698316ebc7270899e75ab55e082efd8eeb379a5271585054f6dfec23c2320667875750fbf105dee4f968d95fd7e39adf1d7c9ec6e289aff3e4ca3663d3f962b605bec6ebe36fe5864e438c032e008d40bf3a1b82b97858f95ed31f105726d27a3e5f635c4bd05dd237df0755e3418dac72c73c873202de28e34e561860df74373ed55e1e51ab536f97185fde6af5784241a781ffe2d0b8c6a5522effd86635dda72c6458313d799fff8722c6b69e167ebe31b687c2dfeaa2310f07ee20063a83becd6e801edee74ef08693d7c5fed071921095b7c826a9c8e684f3e4fa5421ab15d3a21f13539467b597d69ce72583fbbc07376c14ae5972c302cdb00f9ec0c065a30003a3450961ecaf517c7789610c799b55f6eca5d46a57ccb81a580e70021ae77550ca4bf0035d9b6efc9787605700f1ceefc85867dc7bbcd01d14220949cbac1c6e78dcb4ba7b89f6d281759388a3f8fb398e79619869056f48736c320bc1f2abe5e6a1cc5d03ce9b1a2dfe676dc1742cd629e318b54224092a1e70aa80ba0b1a43dd55a087aba8ebfe2bc1830b4e4e526869241a1fd2b80b2f2d2549381f489a98afd779e1090a9d8991a22989e1c7945a7910c6766fbbb9c3e7dc2aa591c5f2e03804411b37a75e1a4a2a3368b6b1916a123b280ecebf1df6cfc8cd3cbf1167ce5e0adde26b81476b60d0a165887dbc1368ead02cfd47ce88fba27517bfa6763e277d3851b4c0275ea1be7c4d9331c13197350115d3fdd09f7f8237a118bcb776a7b88ebab38a0951ff47d0cdaa41977efe9ccd1f30e956e472aec13c66a3932783f4a16711f3ba98b66c30c8dcaf0464afff0d1be54bf04a683fdafd1bcad4c260870348f32e63777770fb2d336c451d4e3706b32cffe25d5c2455feb522602dec08c8122e2b73d10db95fb7fd58d20cdd7d599541d21ccff79e8798ba153a35d84eaa68636ebb292faa6608622acb5410f8c0d8c4182af4a0741c57e94513d02ad6f2fe5567019d157578ad6cce5d24e3063d24599dbfcee9be61723e04cff315659acf172e8d78ec481b1ee441114aaf06c183449a712fc196ae4891ecd5fd40e28adfa4200e851712113359663e490e121f6950bcae4764dc322b0af1c1e0007e73f19c97d5a69e0003d9b1be648f9d5181653fa77f03a620f2f6a14c50aad2830472b717764e1a06aa8d439e1fb7c5ed777479dfb3ba27873c967bdca2b7b9a950e9cb36c877d"}) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03d90006"], 0x4) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendfile(r3, r4, 0x0, 0x1f3) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000180)) sendmsg$tipc(r4, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000100)={0x0, r3, 0x8, 0x6, 0x7, 0xe00000000000}) 06:05:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) close(r2) 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES8], 0xfffffffffffffefc) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x4000) sendto$inet6(r1, &(0x7f0000000080)="aab69c93fbb254406db38b64cf23160daef1443ed16c954e19199d38810b7655c6c32301d5c378e5e905ef426e0a40550465e6ed2c60e85a11e51054f567a6e6af04c5f31bbd2b35756de20d5f6a77728894b7725800f30a664e845297cfd30dac9e92f614d6565b014643324c7841c4e1ffc2bc77f583198317946f29ac4919759bc41846b7835ff94d3bd5607eaa4560a8b9a1f5db873c9b40839930ac055e4593c5a09d1f24bb2e1f1c2bcdb198b0fd325488c6da3776b6757ac18bac73789c1772688495af09b162a5f4f5264b3f58f4068cede50334bf9d568dbcd36d7d3ff5c24701d9af3fd7807ada7349b96f7435f74289a9be8b", 0xf8, 0x4010, &(0x7f0000000180)={0xa, 0x4e23, 0x2, @ipv4={'\x00', '\xff\xff', @remote}, 0x101}, 0x1c) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES8], 0xfffffffffffffefc) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x4000) sendto$inet6(r1, &(0x7f0000000080)="aab69c93fbb254406db38b64cf23160daef1443ed16c954e19199d38810b7655c6c32301d5c378e5e905ef426e0a40550465e6ed2c60e85a11e51054f567a6e6af04c5f31bbd2b35756de20d5f6a77728894b7725800f30a664e845297cfd30dac9e92f614d6565b014643324c7841c4e1ffc2bc77f583198317946f29ac4919759bc41846b7835ff94d3bd5607eaa4560a8b9a1f5db873c9b40839930ac055e4593c5a09d1f24bb2e1f1c2bcdb198b0fd325488c6da3776b6757ac18bac73789c1772688495af09b162a5f4f5264b3f58f4068cede50334bf9d568dbcd36d7d3ff5c24701d9af3fd7807ada7349b96f7435f74289a9be8b", 0xf8, 0x4010, &(0x7f0000000180)={0xa, 0x4e23, 0x2, @ipv4={'\x00', '\xff\xff', @remote}, 0x101}, 0x1c) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x4000) sendto$inet6(r1, &(0x7f0000000080)="aab69c93fbb254406db38b64cf23160daef1443ed16c954e19199d38810b7655c6c32301d5c378e5e905ef426e0a40550465e6ed2c60e85a11e51054f567a6e6af04c5f31bbd2b35756de20d5f6a77728894b7725800f30a664e845297cfd30dac9e92f614d6565b014643324c7841c4e1ffc2bc77f583198317946f29ac4919759bc41846b7835ff94d3bd5607eaa4560a8b9a1f5db873c9b40839930ac055e4593c5a09d1f24bb2e1f1c2bcdb198b0fd325488c6da3776b6757ac18bac73789c1772688495af09b162a5f4f5264b3f58f4068cede50334bf9d568dbcd36d7d3ff5c24701d9af3fd7807ada7349b96f7435f74289a9be8b", 0xf8, 0x4010, &(0x7f0000000180)={0xa, 0x4e23, 0x2, @ipv4={'\x00', '\xff\xff', @remote}, 0x101}, 0x1c) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x4000) (async) sendto$inet6(r1, &(0x7f0000000080)="aab69c93fbb254406db38b64cf23160daef1443ed16c954e19199d38810b7655c6c32301d5c378e5e905ef426e0a40550465e6ed2c60e85a11e51054f567a6e6af04c5f31bbd2b35756de20d5f6a77728894b7725800f30a664e845297cfd30dac9e92f614d6565b014643324c7841c4e1ffc2bc77f583198317946f29ac4919759bc41846b7835ff94d3bd5607eaa4560a8b9a1f5db873c9b40839930ac055e4593c5a09d1f24bb2e1f1c2bcdb198b0fd325488c6da3776b6757ac18bac73789c1772688495af09b162a5f4f5264b3f58f4068cede50334bf9d568dbcd36d7d3ff5c24701d9af3fd7807ada7349b96f7435f74289a9be8b", 0xf8, 0x4010, &(0x7f0000000180)={0xa, 0x4e23, 0x2, @ipv4={'\x00', '\xff\xff', @remote}, 0x101}, 0x1c) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi={{0x22, 0x39}, {0x4, [{@none, 0xf7, 0x20, '60:', 0x0, 0x5}, {@any, 0x5, 0x20, "75e337", 0x6, 0xff}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3, 0x1, "c35a35", 0x4, 0xca}, {@any, 0x3, 0xfd, "b4be7a", 0x9, 0x81}]}}}, 0x3c) [ 191.061492][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 2: r0 = openat$mice(0xffffffffffffff9c, &(0x7f00000000c0), 0x4c8000) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={&(0x7f0000000280), 0xc, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="5c0000002e0000022bbd7000ffdbdf25000000001b16", @ANYRES32=0x0, @ANYBLOB="03000100080007000c00040008000b000200000008000b000104000008000b000200000008000b008500000008000b0060d64e4408000b000400000008000b0002000000"], 0x8b}, 0x1, 0x0, 0x0, 0x4}, 0x40000) syz_emit_vhci(0x0, 0x17) (async) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x4000, 0x0) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$KVM_GET_LAPIC(r1, 0x8400ae8e, &(0x7f00000002c0)={"26c0a3d2e2302d40b921c59178fce8742f7f2de5c3d8f4728a632b748a29ac2777bd64d43dd67d86159d78c88859236a26ebb5f93b3fa6f06bb5889f831fd1490f1aeed8cc2dc2e318381bc0c7211214df30abe300c432c10b0dbe8d659324ca9e4ffd25da826a009add2711f3d8bcb75860739cc0fa29158943c590f35823db8a9481ecf82d36848317630672ad0665395be65698316ebc7270899e75ab55e082efd8eeb379a5271585054f6dfec23c2320667875750fbf105dee4f968d95fd7e39adf1d7c9ec6e289aff3e4ca3663d3f962b605bec6ebe36fe5864e438c032e008d40bf3a1b82b97858f95ed31f105726d27a3e5f635c4bd05dd237df0755e3418dac72c73c873202de28e34e561860df74373ed55e1e51ab536f97185fde6af5784241a781ffe2d0b8c6a5522effd86635dda72c6458313d799fff8722c6b69e167ebe31b687c2dfeaa2310f07ee20063a83becd6e801edee74ef08693d7c5fed071921095b7c826a9c8e684f3e4fa5421ab15d3a21f13539467b597d69ce72583fbbc07376c14ae5972c302cdb00f9ec0c065a30003a3450961ecaf517c7789610c799b55f6eca5d46a57ccb81a580e70021ae77550ca4bf0035d9b6efc9787605700f1ceefc85867dc7bbcd01d14220949cbac1c6e78dcb4ba7b89f6d281759388a3f8fb398e79619869056f48736c320bc1f2abe5e6a1cc5d03ce9b1a2dfe676dc1742cd629e318b54224092a1e70aa80ba0b1a43dd55a087aba8ebfe2bc1830b4e4e526869241a1fd2b80b2f2d2549381f489a98afd779e1090a9d8991a22989e1c7945a7910c6766fbbb9c3e7dc2aa591c5f2e03804411b37a75e1a4a2a3368b6b1916a123b280ecebf1df6cfc8cd3cbf1167ce5e0adde26b81476b60d0a165887dbc1368ead02cfd47ce88fba27517bfa6763e277d3851b4c0275ea1be7c4d9331c13197350115d3fdd09f7f8237a118bcb776a7b88ebab38a0951ff47d0cdaa41977efe9ccd1f30e956e472aec13c66a3932783f4a16711f3ba98b66c30c8dcaf0464afff0d1be54bf04a683fdafd1bcad4c260870348f32e63777770fb2d336c451d4e3706b32cffe25d5c2455feb522602dec08c8122e2b73d10db95fb7fd58d20cdd7d599541d21ccff79e8798ba153a35d84eaa68636ebb292faa6608622acb5410f8c0d8c4182af4a0741c57e94513d02ad6f2fe5567019d157578ad6cce5d24e3063d24599dbfcee9be61723e04cff315659acf172e8d78ec481b1ee441114aaf06c183449a712fc196ae4891ecd5fd40e28adfa4200e851712113359663e490e121f6950bcae4764dc322b0af1c1e0007e73f19c97d5a69e0003d9b1be648f9d5181653fa77f03a620f2f6a14c50aad2830472b717764e1a06aa8d439e1fb7c5ed777479dfb3ba27873c967bdca2b7b9a950e9cb36c877d"}) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03d90006"], 0x4) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendfile(r3, r4, 0x0, 0x1f3) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000180)) (async) sendmsg$tipc(r4, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000100)={0x0, r3, 0x8, 0x6, 0x7, 0xe00000000000}) [ 191.062077][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 217 06:05:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) close(r2) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000040)=0x4) 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi={{0x22, 0x39}, {0x4, [{@none, 0xf7, 0x20, '60:', 0x0, 0x5}, {@any, 0x5, 0x20, "75e337", 0x6, 0xff}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3, 0x1, "c35a35", 0x4, 0xca}, {@any, 0x3, 0xfd, "b4be7a", 0x9, 0x81}]}}}, 0x3c) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi={{0x22, 0x39}, {0x4, [{@none, 0xf7, 0x20, '60:', 0x0, 0x5}, {@any, 0x5, 0x20, "75e337", 0x6, 0xff}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3, 0x1, "c35a35", 0x4, 0xca}, {@any, 0x3, 0xfd, "b4be7a", 0x9, 0x81}]}}}, 0x3c) 06:05:28 executing program 2: r0 = openat$mice(0xffffffffffffff9c, &(0x7f00000000c0), 0x4c8000) sendmsg$nl_route_sched(r0, &(0x7f0000000200)={&(0x7f0000000280), 0xc, &(0x7f00000001c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="5c0000002e0000022bbd7000ffdbdf25000000001b16", @ANYRES32=0x0, @ANYBLOB="03000100080007000c00040008000b000200000008000b000104000008000b000200000008000b008500000008000b0060d64e4408000b000400000008000b0002000000"], 0x8b}, 0x1, 0x0, 0x0, 0x4}, 0x40000) (async, rerun: 64) syz_emit_vhci(0x0, 0x17) (async, rerun: 64) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x4000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async, rerun: 64) ioctl$KVM_GET_LAPIC(r1, 0x8400ae8e, &(0x7f00000002c0)={"26c0a3d2e2302d40b921c59178fce8742f7f2de5c3d8f4728a632b748a29ac2777bd64d43dd67d86159d78c88859236a26ebb5f93b3fa6f06bb5889f831fd1490f1aeed8cc2dc2e318381bc0c7211214df30abe300c432c10b0dbe8d659324ca9e4ffd25da826a009add2711f3d8bcb75860739cc0fa29158943c590f35823db8a9481ecf82d36848317630672ad0665395be65698316ebc7270899e75ab55e082efd8eeb379a5271585054f6dfec23c2320667875750fbf105dee4f968d95fd7e39adf1d7c9ec6e289aff3e4ca3663d3f962b605bec6ebe36fe5864e438c032e008d40bf3a1b82b97858f95ed31f105726d27a3e5f635c4bd05dd237df0755e3418dac72c73c873202de28e34e561860df74373ed55e1e51ab536f97185fde6af5784241a781ffe2d0b8c6a5522effd86635dda72c6458313d799fff8722c6b69e167ebe31b687c2dfeaa2310f07ee20063a83becd6e801edee74ef08693d7c5fed071921095b7c826a9c8e684f3e4fa5421ab15d3a21f13539467b597d69ce72583fbbc07376c14ae5972c302cdb00f9ec0c065a30003a3450961ecaf517c7789610c799b55f6eca5d46a57ccb81a580e70021ae77550ca4bf0035d9b6efc9787605700f1ceefc85867dc7bbcd01d14220949cbac1c6e78dcb4ba7b89f6d281759388a3f8fb398e79619869056f48736c320bc1f2abe5e6a1cc5d03ce9b1a2dfe676dc1742cd629e318b54224092a1e70aa80ba0b1a43dd55a087aba8ebfe2bc1830b4e4e526869241a1fd2b80b2f2d2549381f489a98afd779e1090a9d8991a22989e1c7945a7910c6766fbbb9c3e7dc2aa591c5f2e03804411b37a75e1a4a2a3368b6b1916a123b280ecebf1df6cfc8cd3cbf1167ce5e0adde26b81476b60d0a165887dbc1368ead02cfd47ce88fba27517bfa6763e277d3851b4c0275ea1be7c4d9331c13197350115d3fdd09f7f8237a118bcb776a7b88ebab38a0951ff47d0cdaa41977efe9ccd1f30e956e472aec13c66a3932783f4a16711f3ba98b66c30c8dcaf0464afff0d1be54bf04a683fdafd1bcad4c260870348f32e63777770fb2d336c451d4e3706b32cffe25d5c2455feb522602dec08c8122e2b73d10db95fb7fd58d20cdd7d599541d21ccff79e8798ba153a35d84eaa68636ebb292faa6608622acb5410f8c0d8c4182af4a0741c57e94513d02ad6f2fe5567019d157578ad6cce5d24e3063d24599dbfcee9be61723e04cff315659acf172e8d78ec481b1ee441114aaf06c183449a712fc196ae4891ecd5fd40e28adfa4200e851712113359663e490e121f6950bcae4764dc322b0af1c1e0007e73f19c97d5a69e0003d9b1be648f9d5181653fa77f03a620f2f6a14c50aad2830472b717764e1a06aa8d439e1fb7c5ed777479dfb3ba27873c967bdca2b7b9a950e9cb36c877d"}) (rerun: 64) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03d90006"], 0x4) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendfile(r3, r4, 0x0, 0x1f3) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, &(0x7f0000000180)) (async, rerun: 32) sendmsg$tipc(r4, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async, rerun: 32) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000100)={0x0, r3, 0x8, 0x6, 0x7, 0xe00000000000}) [ 191.162635][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 217 [ 191.213372][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi={{0x22, 0x39}, {0x4, [{@none, 0xf7, 0x20, '60:', 0x0, 0x5}, {@any, 0x5, 0x20, "75e337", 0x6, 0xff}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x3, 0x1, "c35a35", 0x4, 0xca}, {@any, 0x3, 0xfd, "b4be7a", 0x9, 0x81}]}}}, 0x3c) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000040)=0x4) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) ioctl$int_in(r1, 0x5421, &(0x7f0000000040)=0x4) (async) [ 191.234847][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 217 [ 191.247765][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:28 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0x1, 0x24}, "c51bdff51ce962bb7a0053742ab4b2fbf71ae3bb8dbed15ce72466b0782be1f8cdddb370"}, 0x28) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) 06:05:28 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000040)=0x4) 06:05:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) close(r2) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0x1, 0x24}, "c51bdff51ce962bb7a0053742ab4b2fbf71ae3bb8dbed15ce72466b0782be1f8cdddb370"}, 0x28) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) 06:05:29 executing program 1: accept(0xffffffffffffffff, &(0x7f0000000c40)=@llc, &(0x7f0000000cc0)=0x80) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$VIDIOC_G_MODULATOR(r0, 0xc0445636, &(0x7f0000000a80)={0x200, "9c96313f7698a2c0fdd379350f9143479db3e08ec619fc02ff615fa86ad9b1b0", 0x20, 0x80, 0x8, 0x4, 0x1}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000b00)={0x5, 0xffffffffffffffff, 0x80000}) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x3c, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @multicast2}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_TID={0xc}, @GTPA_I_TEI={0x8, 0x8, 0x3}]}, 0x3c}}, 0x80) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$BTRFS_IOC_DEV_REPLACE(r1, 0xca289435, &(0x7f0000000040)={0x1, 0x8, @status={[0x3, 0xab4, 0x5, 0xfffffffffffffffe, 0x1, 0xa0]}, [0x6, 0x9, 0x6, 0x9, 0xffffffffffffffff, 0xfffffffffffffffb, 0x6c2, 0x2, 0xfffffffffffffff5, 0x1200, 0xfa, 0x3f, 0x10000, 0x5, 0x0, 0x7ff, 0x0, 0x9, 0x2, 0x4db, 0x5, 0x3, 0x8001, 0x65c, 0x1e22, 0x9e7, 0x800, 0xffffffffffffffff, 0xa2, 0x400, 0x3, 0x1, 0x2c, 0x0, 0x8, 0xa866, 0x100000001, 0x4, 0x8001, 0x3, 0xff, 0x9c, 0x3, 0x6a, 0x8, 0xfffffffffffffffc, 0x8, 0x8, 0x5, 0x4, 0x80, 0x1, 0x1d, 0x80000001, 0x8, 0x8000000000000000, 0xd90e, 0x1, 0x6, 0x284, 0x0, 0xf484, 0x4, 0x3]}) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r2, 0x6628) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r4, &(0x7f0000002080)={0x18}, 0x18) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) (async, rerun: 64) syz_emit_vhci(0x0, 0x0) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) [ 191.274977][ T5166] Bluetooth: hci0: SCO packet for unknown connection handle 1 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0x1, 0x24}, "c51bdff51ce962bb7a0053742ab4b2fbf71ae3bb8dbed15ce72466b0782be1f8cdddb370"}, 0x28) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (rerun: 32) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) [ 191.452135][ T5166] Bluetooth: hci0: SCO packet for unknown connection handle 1 [ 191.483652][ T5166] Bluetooth: hci0: SCO packet for unknown connection handle 1 06:05:29 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x9e, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f00000000c0)={0x40, 0x2, 0x2}, 0x10) syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="04028704ad5000000000fe5e0632edae35f46854c6306cc3c6df5ac7de5508186eaf8449364adad3766433ca9aafc12adbfa3802af14181aa2a20c23f5a5c27270170f30c9920dfdbaf9312fcc34fd8b145e4d6073c38f08431b8c5e75085a012d9e901ba18e870c9102000000000000002893d50eb19c9e88d7f1"], 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x19}, "2e88024ed515ae0bfabadc919a6de300933b7d1ebe93703222"}, 0x1d) [ 191.486755][ T5166] Bluetooth: hci0: SCO packet for unknown connection handle 1 [ 191.511048][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="ef457f319ea965827380387a7ae040a143b03c2cafc4c20fe11ddf8a5d4f6041006bf106a47e70d9c0d92780ab3675e8cefebd5764c8936e071431deffec207bd080712b698f3f3336853dd709d3b8d8e406195bd1ff1ff9fe8bbd34839adb14dec14427903f07f0c84865439b5339efc6f8fb346fbb313af0f3fb455e0c2835cba63955a219f9649858ac9fb488973d11f5ae0642f76419ce77954c2a978eafd505d794e2a772927eacd1b3cb1c7f4fde70315525bd860dc87a77ee622c239eb67ba75356794fd2415291d08d85e2d3c25de0fdddf029c7ebf192d035eae5c65217c473c8860bc50cad04e9023f3b8b7f07d018b9c7a5e5df5aced8227f5af44b9f3a5d032f4e27943d716ac18644a7493bc75cb272fe029862d436e9a4d8b742fe4c96b14a8b66fca8dae0736d96e690327a7a87d4fcd513c8", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) close(r2) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x79}, "779dba864ecfc09242722cf9e898c5480580a0c25f85abea8f2ab07708650242d4bc64651af766098f32135c1e9d4242347c9491ac86f1449c73ffb83719e379d1494b606cf00fbe397c361b9703da056d6fd6f8ddada7fd059cd43937794e8fce34ac7e3ac3fb10eb9847c761167027dad266a90ee7ec3f02"}, 0x7d) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000380)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xcd}, "d897bc1c39575d1f0eecd1f6ca4ba9c1f18415419f4220ac22832cd4b567fd1b5a42daeceded27999274f3af3c9c1ff801c4d90ec383da8cde15181a19537778e05f2bf7acbf312a7ebbf60e36276a357e64b22898a5b2d3d3517e0088f25bd6543793ead3ff9b8052de3065d345aa4e627156c359e39d4bf2ea8591fb091f67ec17481549e329e2e88ef30da6f7a01ae2688996dca3560b5be0211e76e4cf20ee4464b9f0dd3bb6f825a0d18cbd7f03ce76741302fae78e1a0dd060782d83e7d33112fa7a6a7f8b29cf46e201"}, 0xd1) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x3, 0x99}, @l2cap_cid_signaling={{0x95}, [@l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x8001}}, @l2cap_create_chan_req={{0xc, 0x3f, 0x5}, {0x9, 0x7, 0x3}}, @l2cap_conf_req={{0x4, 0x0, 0x59}, {0x4fb9, 0x72d, [@l2cap_conf_efs={0x6, 0x10, {0x1, 0x2, 0xf8, 0x50b7, 0x1ff, 0x1}}, @l2cap_conf_mtu={0x1, 0x2, 0x2}, @l2cap_conf_efs={0x6, 0x10, {0x4, 0x2, 0x4, 0x1f, 0x2, 0x1}}, @l2cap_conf_flushto={0x2, 0x2, 0xfffc}, @l2cap_conf_mtu={0x1, 0x2, 0x1ff0}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x9f8, 0x401, 0x100, 0x5}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x80, 0x20, 0x3ff, 0x200, 0x200}}, @l2cap_conf_mtu={0x1, 0x2, 0x80}, @l2cap_conf_flushto={0x2, 0x2, 0x3ff}]}}, @l2cap_conn_rsp={{0x3, 0x40, 0x8}, {0xff, 0x7, 0x5, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x7f, 0x4}, {0x81, 0x2}}, @l2cap_create_chan_rsp={{0xd, 0x3, 0x8}, {0x5, 0x8, 0x2ea, 0x280f}}, @l2cap_move_chan_req={{0xe, 0x7f, 0x3}, {0x9, 0xca}}]}}, 0x9e) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0xb) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='\tk4@'], 0x4) syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x29}, "1ef792b4c6bb582d860ad1fad7dd030493cad11ec9808262a09712787cd0425c2b599bb9dca6eca230"}, 0x2d) 06:05:29 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x9e, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f00000000c0)={0x40, 0x2, 0x2}, 0x10) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="04028704ad5000000000fe5e0632edae35f46854c6306cc3c6df5ac7de5508186eaf8449364adad3766433ca9aafc12adbfa3802af14181aa2a20c23f5a5c27270170f30c9920dfdbaf9312fcc34fd8b145e4d6073c38f08431b8c5e75085a012d9e901ba18e870c9102000000000000002893d50eb19c9e88d7f1"], 0xa) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x19}, "2e88024ed515ae0bfabadc919a6de300933b7d1ebe93703222"}, 0x1d) 06:05:29 executing program 1: accept(0xffffffffffffffff, &(0x7f0000000c40)=@llc, &(0x7f0000000cc0)=0x80) (async) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$VIDIOC_G_MODULATOR(r0, 0xc0445636, &(0x7f0000000a80)={0x200, "9c96313f7698a2c0fdd379350f9143479db3e08ec619fc02ff615fa86ad9b1b0", 0x20, 0x80, 0x8, 0x4, 0x1}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000b00)={0x5, 0xffffffffffffffff, 0x80000}) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x3c, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @multicast2}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_TID={0xc}, @GTPA_I_TEI={0x8, 0x8, 0x3}]}, 0x3c}}, 0x80) (async) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) ioctl$BTRFS_IOC_DEV_REPLACE(r1, 0xca289435, &(0x7f0000000040)={0x1, 0x8, @status={[0x3, 0xab4, 0x5, 0xfffffffffffffffe, 0x1, 0xa0]}, [0x6, 0x9, 0x6, 0x9, 0xffffffffffffffff, 0xfffffffffffffffb, 0x6c2, 0x2, 0xfffffffffffffff5, 0x1200, 0xfa, 0x3f, 0x10000, 0x5, 0x0, 0x7ff, 0x0, 0x9, 0x2, 0x4db, 0x5, 0x3, 0x8001, 0x65c, 0x1e22, 0x9e7, 0x800, 0xffffffffffffffff, 0xa2, 0x400, 0x3, 0x1, 0x2c, 0x0, 0x8, 0xa866, 0x100000001, 0x4, 0x8001, 0x3, 0xff, 0x9c, 0x3, 0x6a, 0x8, 0xfffffffffffffffc, 0x8, 0x8, 0x5, 0x4, 0x80, 0x1, 0x1d, 0x80000001, 0x8, 0x8000000000000000, 0xd90e, 0x1, 0x6, 0x284, 0x0, 0xf484, 0x4, 0x3]}) (async) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r2, 0x6628) (async) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r4, &(0x7f0000002080)={0x18}, 0x18) [ 191.637490][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.639739][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.641744][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.643752][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.645773][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.648359][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.651139][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x9e, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f00000000c0)={0x40, 0x2, 0x2}, 0x10) (async) syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="04028704ad5000000000fe5e0632edae35f46854c6306cc3c6df5ac7de5508186eaf8449364adad3766433ca9aafc12adbfa3802af14181aa2a20c23f5a5c27270170f30c9920dfdbaf9312fcc34fd8b145e4d6073c38f08431b8c5e75085a012d9e901ba18e870c9102000000000000002893d50eb19c9e88d7f1"], 0xa) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x19}, "2e88024ed515ae0bfabadc919a6de300933b7d1ebe93703222"}, 0x1d) (rerun: 64) [ 191.653854][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.657019][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.660272][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.662941][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.665202][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.667327][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x79}, "779dba864ecfc09242722cf9e898c5480580a0c25f85abea8f2ab07708650242d4bc64651af766098f32135c1e9d4242347c9491ac86f1449c73ffb83719e379d1494b606cf00fbe397c361b9703da056d6fd6f8ddada7fd059cd43937794e8fce34ac7e3ac3fb10eb9847c761167027dad266a90ee7ec3f02"}, 0x7d) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x79}, "779dba864ecfc09242722cf9e898c5480580a0c25f85abea8f2ab07708650242d4bc64651af766098f32135c1e9d4242347c9491ac86f1449c73ffb83719e379d1494b606cf00fbe397c361b9703da056d6fd6f8ddada7fd059cd43937794e8fce34ac7e3ac3fb10eb9847c761167027dad266a90ee7ec3f02"}, 0x7d) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000380)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xcd}, "d897bc1c39575d1f0eecd1f6ca4ba9c1f18415419f4220ac22832cd4b567fd1b5a42daeceded27999274f3af3c9c1ff801c4d90ec383da8cde15181a19537778e05f2bf7acbf312a7ebbf60e36276a357e64b22898a5b2d3d3517e0088f25bd6543793ead3ff9b8052de3065d345aa4e627156c359e39d4bf2ea8591fb091f67ec17481549e329e2e88ef30da6f7a01ae2688996dca3560b5be0211e76e4cf20ee4464b9f0dd3bb6f825a0d18cbd7f03ce76741302fae78e1a0dd060782d83e7d33112fa7a6a7f8b29cf46e201"}, 0xd1) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x3, 0x99}, @l2cap_cid_signaling={{0x95}, [@l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x8001}}, @l2cap_create_chan_req={{0xc, 0x3f, 0x5}, {0x9, 0x7, 0x3}}, @l2cap_conf_req={{0x4, 0x0, 0x59}, {0x4fb9, 0x72d, [@l2cap_conf_efs={0x6, 0x10, {0x1, 0x2, 0xf8, 0x50b7, 0x1ff, 0x1}}, @l2cap_conf_mtu={0x1, 0x2, 0x2}, @l2cap_conf_efs={0x6, 0x10, {0x4, 0x2, 0x4, 0x1f, 0x2, 0x1}}, @l2cap_conf_flushto={0x2, 0x2, 0xfffc}, @l2cap_conf_mtu={0x1, 0x2, 0x1ff0}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x9f8, 0x401, 0x100, 0x5}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x80, 0x20, 0x3ff, 0x200, 0x200}}, @l2cap_conf_mtu={0x1, 0x2, 0x80}, @l2cap_conf_flushto={0x2, 0x2, 0x3ff}]}}, @l2cap_conn_rsp={{0x3, 0x40, 0x8}, {0xff, 0x7, 0x5, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x7f, 0x4}, {0x81, 0x2}}, @l2cap_create_chan_rsp={{0xd, 0x3, 0x8}, {0x5, 0x8, 0x2ea, 0x280f}}, @l2cap_move_chan_req={{0xe, 0x7f, 0x3}, {0x9, 0xca}}]}}, 0x9e) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x3, 0x99}, @l2cap_cid_signaling={{0x95}, [@l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x8001}}, @l2cap_create_chan_req={{0xc, 0x3f, 0x5}, {0x9, 0x7, 0x3}}, @l2cap_conf_req={{0x4, 0x0, 0x59}, {0x4fb9, 0x72d, [@l2cap_conf_efs={0x6, 0x10, {0x1, 0x2, 0xf8, 0x50b7, 0x1ff, 0x1}}, @l2cap_conf_mtu={0x1, 0x2, 0x2}, @l2cap_conf_efs={0x6, 0x10, {0x4, 0x2, 0x4, 0x1f, 0x2, 0x1}}, @l2cap_conf_flushto={0x2, 0x2, 0xfffc}, @l2cap_conf_mtu={0x1, 0x2, 0x1ff0}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x9f8, 0x401, 0x100, 0x5}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x80, 0x20, 0x3ff, 0x200, 0x200}}, @l2cap_conf_mtu={0x1, 0x2, 0x80}, @l2cap_conf_flushto={0x2, 0x2, 0x3ff}]}}, @l2cap_conn_rsp={{0x3, 0x40, 0x8}, {0xff, 0x7, 0x5, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x7f, 0x4}, {0x81, 0x2}}, @l2cap_create_chan_rsp={{0xd, 0x3, 0x8}, {0x5, 0x8, 0x2ea, 0x280f}}, @l2cap_move_chan_req={{0xe, 0x7f, 0x3}, {0x9, 0xca}}]}}, 0x9e) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0xb) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='\tk4@'], 0x4) syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x29}, "1ef792b4c6bb582d860ad1fad7dd030493cad11ec9808262a09712787cd0425c2b599bb9dca6eca230"}, 0x2d) [ 191.670652][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.673426][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.676166][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.678929][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.681543][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.684180][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.686835][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.689690][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.692361][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x79}, "779dba864ecfc09242722cf9e898c5480580a0c25f85abea8f2ab07708650242d4bc64651af766098f32135c1e9d4242347c9491ac86f1449c73ffb83719e379d1494b606cf00fbe397c361b9703da056d6fd6f8ddada7fd059cd43937794e8fce34ac7e3ac3fb10eb9847c761167027dad266a90ee7ec3f02"}, 0x7d) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000380)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xcd}, "d897bc1c39575d1f0eecd1f6ca4ba9c1f18415419f4220ac22832cd4b567fd1b5a42daeceded27999274f3af3c9c1ff801c4d90ec383da8cde15181a19537778e05f2bf7acbf312a7ebbf60e36276a357e64b22898a5b2d3d3517e0088f25bd6543793ead3ff9b8052de3065d345aa4e627156c359e39d4bf2ea8591fb091f67ec17481549e329e2e88ef30da6f7a01ae2688996dca3560b5be0211e76e4cf20ee4464b9f0dd3bb6f825a0d18cbd7f03ce76741302fae78e1a0dd060782d83e7d33112fa7a6a7f8b29cf46e201"}, 0xd1) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x3, 0x99}, @l2cap_cid_signaling={{0x95}, [@l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x8001}}, @l2cap_create_chan_req={{0xc, 0x3f, 0x5}, {0x9, 0x7, 0x3}}, @l2cap_conf_req={{0x4, 0x0, 0x59}, {0x4fb9, 0x72d, [@l2cap_conf_efs={0x6, 0x10, {0x1, 0x2, 0xf8, 0x50b7, 0x1ff, 0x1}}, @l2cap_conf_mtu={0x1, 0x2, 0x2}, @l2cap_conf_efs={0x6, 0x10, {0x4, 0x2, 0x4, 0x1f, 0x2, 0x1}}, @l2cap_conf_flushto={0x2, 0x2, 0xfffc}, @l2cap_conf_mtu={0x1, 0x2, 0x1ff0}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x9f8, 0x401, 0x100, 0x5}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x80, 0x20, 0x3ff, 0x200, 0x200}}, @l2cap_conf_mtu={0x1, 0x2, 0x80}, @l2cap_conf_flushto={0x2, 0x2, 0x3ff}]}}, @l2cap_conn_rsp={{0x3, 0x40, 0x8}, {0xff, 0x7, 0x5, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x7f, 0x4}, {0x81, 0x2}}, @l2cap_create_chan_rsp={{0xd, 0x3, 0x8}, {0x5, 0x8, 0x2ea, 0x280f}}, @l2cap_move_chan_req={{0xe, 0x7f, 0x3}, {0x9, 0xca}}]}}, 0x9e) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0xb) (async) syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="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"], 0xb) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='\tk4@'], 0x4) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='\tk4@'], 0x4) syz_emit_vhci(&(0x7f0000000340)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x29}, "1ef792b4c6bb582d860ad1fad7dd030493cad11ec9808262a09712787cd0425c2b599bb9dca6eca230"}, 0x2d) [ 191.695450][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.700385][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.703119][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.705782][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.708665][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.711462][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.714115][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 1: accept(0xffffffffffffffff, &(0x7f0000000c40)=@llc, &(0x7f0000000cc0)=0x80) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$VIDIOC_G_MODULATOR(r0, 0xc0445636, &(0x7f0000000a80)={0x200, "9c96313f7698a2c0fdd379350f9143479db3e08ec619fc02ff615fa86ad9b1b0", 0x20, 0x80, 0x8, 0x4, 0x1}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000b00)={0x5, 0xffffffffffffffff, 0x80000}) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x3c, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @multicast2}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_TID={0xc}, @GTPA_I_TEI={0x8, 0x8, 0x3}]}, 0x3c}}, 0x80) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$BTRFS_IOC_DEV_REPLACE(r1, 0xca289435, &(0x7f0000000040)={0x1, 0x8, @status={[0x3, 0xab4, 0x5, 0xfffffffffffffffe, 0x1, 0xa0]}, [0x6, 0x9, 0x6, 0x9, 0xffffffffffffffff, 0xfffffffffffffffb, 0x6c2, 0x2, 0xfffffffffffffff5, 0x1200, 0xfa, 0x3f, 0x10000, 0x5, 0x0, 0x7ff, 0x0, 0x9, 0x2, 0x4db, 0x5, 0x3, 0x8001, 0x65c, 0x1e22, 0x9e7, 0x800, 0xffffffffffffffff, 0xa2, 0x400, 0x3, 0x1, 0x2c, 0x0, 0x8, 0xa866, 0x100000001, 0x4, 0x8001, 0x3, 0xff, 0x9c, 0x3, 0x6a, 0x8, 0xfffffffffffffffc, 0x8, 0x8, 0x5, 0x4, 0x80, 0x1, 0x1d, 0x80000001, 0x8, 0x8000000000000000, 0xd90e, 0x1, 0x6, 0x284, 0x0, 0xf484, 0x4, 0x3]}) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r2, 0x6628) r4 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r4, &(0x7f0000002080)={0x18}, 0x18) accept(0xffffffffffffffff, &(0x7f0000000c40)=@llc, &(0x7f0000000cc0)=0x80) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$VIDIOC_G_MODULATOR(r0, 0xc0445636, &(0x7f0000000a80)={0x200, "9c96313f7698a2c0fdd379350f9143479db3e08ec619fc02ff615fa86ad9b1b0", 0x20, 0x80, 0x8, 0x4, 0x1}) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) ioctl$DMA_HEAP_IOCTL_ALLOC(r0, 0xc0184800, &(0x7f0000000b00)={0x5, 0xffffffffffffffff, 0x80000}) (async) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x3c, 0x0, 0x400, 0x70bd27, 0x25dfdbfc, {}, [@GTPA_MS_ADDRESS={0x8, 0x5, @multicast2}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_TID={0xc}, @GTPA_I_TEI={0x8, 0x8, 0x3}]}, 0x3c}}, 0x80) (async) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) ioctl$BTRFS_IOC_DEV_REPLACE(r1, 0xca289435, &(0x7f0000000040)={0x1, 0x8, @status={[0x3, 0xab4, 0x5, 0xfffffffffffffffe, 0x1, 0xa0]}, [0x6, 0x9, 0x6, 0x9, 0xffffffffffffffff, 0xfffffffffffffffb, 0x6c2, 0x2, 0xfffffffffffffff5, 0x1200, 0xfa, 0x3f, 0x10000, 0x5, 0x0, 0x7ff, 0x0, 0x9, 0x2, 0x4db, 0x5, 0x3, 0x8001, 0x65c, 0x1e22, 0x9e7, 0x800, 0xffffffffffffffff, 0xa2, 0x400, 0x3, 0x1, 0x2c, 0x0, 0x8, 0xa866, 0x100000001, 0x4, 0x8001, 0x3, 0xff, 0x9c, 0x3, 0x6a, 0x8, 0xfffffffffffffffc, 0x8, 0x8, 0x5, 0x4, 0x80, 0x1, 0x1d, 0x80000001, 0x8, 0x8000000000000000, 0xd90e, 0x1, 0x6, 0x284, 0x0, 0xf484, 0x4, 0x3]}) (async) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r2, 0x6628) (async) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) write$FUSE_BMAP(r4, &(0x7f0000002080)={0x18}, 0x18) (async) [ 191.716529][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.719516][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.722286][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.725035][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.730843][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.733923][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.736955][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.739936][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.742754][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.745560][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.748196][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.750582][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.752894][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.755785][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.761394][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.765984][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.769594][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.772796][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.775884][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.779535][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.782589][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.785577][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.788570][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.791124][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.793385][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.796222][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.800864][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.803462][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.805926][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.808522][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.810997][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.813383][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.815807][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.819385][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.821908][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.824483][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.827034][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.830247][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.832732][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.835398][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.838148][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.840787][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.843434][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.846039][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.848845][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.851526][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.854134][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.856747][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.859884][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.862506][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.865129][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.867878][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.870511][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.873141][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.875758][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.878440][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.881182][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.883800][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.886522][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.889340][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.892044][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.894677][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.897231][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.899848][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.902445][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.905251][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.908220][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.911012][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 191.913601][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_pin_code_req={{0x16, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}}}, 0x9) 06:05:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) setsockopt$CAN_RAW_FILTER(r2, 0x65, 0x1, 0x0, 0x0) 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_req={{0x17, 0x6}, {@none}}}, 0x9) 06:05:29 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xfffffffffffffffe}, 0x18) 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_req={{0x17, 0x6}, {@none}}}, 0x9) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_pin_code_req={{0x16, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}}}, 0x9) 06:05:29 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xfffffffffffffffe}, 0x18) 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_req={{0x17, 0x6}, {@none}}}, 0x9) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_req={{0x17, 0x6}, {@none}}}, 0x9) (async) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_pin_code_req={{0x16, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}}}}, 0x9) 06:05:29 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xfffffffffffffffe}, 0x18) 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_oob_data_request={{0x35, 0x6}}}, 0x9) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}, {0x80, 0xc8}}}, 0x6) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_clock_offset={{0x1c, 0x5}, {0x96, 0xc8, 0x5}}}, 0x8) 06:05:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) r4 = signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r6, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) sendmsg$ETHTOOL_MSG_DEBUG_GET(r4, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x50, r6, 0x400, 0x70bd2c, 0x7fff, {}, [@HEADER={0x4}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x4040000}, 0x20040004) [ 192.124691][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_oob_data_request={{0x35, 0x6}}}, 0x9) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}, {0x80, 0xc8}}}, 0x6) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_clock_offset={{0x1c, 0x5}, {0x96, 0xc8, 0x5}}}, 0x8) (rerun: 64) 06:05:29 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x10000, 0x84) ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xfffffffffffffffa) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 192.153696][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x10000, 0x84) ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xfffffffffffffffa) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) open(&(0x7f0000000040)='./file0\x00', 0x10000, 0x84) (async) ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xfffffffffffffffa) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}, {0x80, 0xc8}}}, 0x6) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_key_refresh_complete={{0x30, 0x3}, {0x80, 0xc8}}}, 0x6) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_clock_offset={{0x1c, 0x5}, {0x96, 0xc8, 0x5}}}, 0x8) 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_oob_data_request={{0x35, 0x6}}}, 0x9) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_oob_data_request={{0x35, 0x6}}}, 0x9) 06:05:29 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x10000, 0x84) ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xfffffffffffffffa) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) open(&(0x7f0000000040)='./file0\x00', 0x10000, 0x84) (async) ioctl$NBD_SET_TIMEOUT(r1, 0xab09, 0xfffffffffffffffa) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) [ 192.189979][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x14, r5, 0xe985e4df3848afb5, 0x0, 0x0, {0x17}}, 0x14}}, 0x0) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_rsp={{0x18, 0x0, 0xc}, {0x8001, 0x7, 0x100, 0x1, [0xec9, 0x20]}}}}, 0x19) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_move_chan_rsp={{0xf, 0xfe, 0x4}, {0xf77c, 0x8}}]}}, 0x11) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_signaling={{0x6}, [@l2cap_cmd_rej_unk={{0x1, 0x72, 0x2}, {0x1}}]}}, 0xf) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x6, @none, "260644435d8e9ac7b832d3a7430822c797161ba754da21b906bfbda364d953dbcafffaa129597bee481d30bd0c6f002421b70e1c0c818dc6b77a4e28cb94b79c93eba441d1acdbae9c76a75d718848f46cb66dc41d563e8744ec9e0eafc499eb458d03f45b980ad273fc2bb6e62d4365494acecfa238fa79c41aeb4cf579682d0910d4c16282c2e4ae1b3ea55a258cf34f02b92b0dc3a6566cc809bbd67cc50e74aa441dd6eb34336a778f17e048fae3e7bab29f7da9218b73b76279d3ab9984cbb18676c408bd1bfae3a03145fec8ef7d6ac6877e197009eafd8962fc1212810c347adac2da1c1ba8100e71eee2dd62c516f63572a8b3f6"}}}, 0x102) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4, 0x0, 0x8b}}}, 0xa) 06:05:29 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x5, 0x4, 0x7}}, 0x30) [ 192.296607][ T5168] Bluetooth: Unexpected continuation frame (len 10) [ 192.304006][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:29 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x5, 0x4, 0x7}}, 0x30) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x5, 0x4, 0x7}}, 0x30) (async) 06:05:29 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4, 0x0, 0x8b}}}, 0xa) 06:05:29 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_rsp={{0x18, 0x0, 0xc}, {0x8001, 0x7, 0x100, 0x1, [0xec9, 0x20]}}}}, 0x19) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_move_chan_rsp={{0xf, 0xfe, 0x4}, {0xf77c, 0x8}}]}}, 0x11) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_signaling={{0x6}, [@l2cap_cmd_rej_unk={{0x1, 0x72, 0x2}, {0x1}}]}}, 0xf) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x6, @none, "260644435d8e9ac7b832d3a7430822c797161ba754da21b906bfbda364d953dbcafffaa129597bee481d30bd0c6f002421b70e1c0c818dc6b77a4e28cb94b79c93eba441d1acdbae9c76a75d718848f46cb66dc41d563e8744ec9e0eafc499eb458d03f45b980ad273fc2bb6e62d4365494acecfa238fa79c41aeb4cf579682d0910d4c16282c2e4ae1b3ea55a258cf34f02b92b0dc3a6566cc809bbd67cc50e74aa441dd6eb34336a778f17e048fae3e7bab29f7da9218b73b76279d3ab9984cbb18676c408bd1bfae3a03145fec8ef7d6ac6877e197009eafd8962fc1212810c347adac2da1c1ba8100e71eee2dd62c516f63572a8b3f6"}}}, 0x102) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_rsp={{0x18, 0x0, 0xc}, {0x8001, 0x7, 0x100, 0x1, [0xec9, 0x20]}}}}, 0x19) (async) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_move_chan_rsp={{0xf, 0xfe, 0x4}, {0xf77c, 0x8}}]}}, 0x11) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_signaling={{0x6}, [@l2cap_cmd_rej_unk={{0x1, 0x72, 0x2}, {0x1}}]}}, 0xf) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x6, @none, "260644435d8e9ac7b832d3a7430822c797161ba754da21b906bfbda364d953dbcafffaa129597bee481d30bd0c6f002421b70e1c0c818dc6b77a4e28cb94b79c93eba441d1acdbae9c76a75d718848f46cb66dc41d563e8744ec9e0eafc499eb458d03f45b980ad273fc2bb6e62d4365494acecfa238fa79c41aeb4cf579682d0910d4c16282c2e4ae1b3ea55a258cf34f02b92b0dc3a6566cc809bbd67cc50e74aa441dd6eb34336a778f17e048fae3e7bab29f7da9218b73b76279d3ab9984cbb18676c408bd1bfae3a03145fec8ef7d6ac6877e197009eafd8962fc1212810c347adac2da1c1ba8100e71eee2dd62c516f63572a8b3f6"}}}, 0x102) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) [ 192.323644][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 192.329294][ T5166] Bluetooth: Unexpected continuation frame (len 10) 06:05:30 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4, 0x0, 0x8b}}}, 0xa) [ 192.350938][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:30 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x5, 0x4, 0x7}}, 0x30) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x5, 0x4, 0x7}}, 0x30) (async) 06:05:30 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_rsp={{0x18, 0x0, 0xc}, {0x8001, 0x7, 0x100, 0x1, [0xec9, 0x20]}}}}, 0x19) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_move_chan_rsp={{0xf, 0xfe, 0x4}, {0xf77c, 0x8}}]}}, 0x11) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_signaling={{0x6}, [@l2cap_cmd_rej_unk={{0x1, 0x72, 0x2}, {0x1}}]}}, 0xf) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_signaling={{0x6}, [@l2cap_cmd_rej_unk={{0x1, 0x72, 0x2}, {0x1}}]}}, 0xf) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x6, @none, "260644435d8e9ac7b832d3a7430822c797161ba754da21b906bfbda364d953dbcafffaa129597bee481d30bd0c6f002421b70e1c0c818dc6b77a4e28cb94b79c93eba441d1acdbae9c76a75d718848f46cb66dc41d563e8744ec9e0eafc499eb458d03f45b980ad273fc2bb6e62d4365494acecfa238fa79c41aeb4cf579682d0910d4c16282c2e4ae1b3ea55a258cf34f02b92b0dc3a6566cc809bbd67cc50e74aa441dd6eb34336a778f17e048fae3e7bab29f7da9218b73b76279d3ab9984cbb18676c408bd1bfae3a03145fec8ef7d6ac6877e197009eafd8962fc1212810c347adac2da1c1ba8100e71eee2dd62c516f63572a8b3f6"}}}, 0x102) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) 06:05:30 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04028ed256c47a070400f5ca667196a72d16f9a58772aa8239ebd1139bdb36ffe404b6c9f7b6ef903bbc9accb84639614968570de4b4e63f49a991af820f9d3b59801233592ac2764799a967d9e0eceff41786445cfe3839b36ef0d38e4391ad71c74b07d931911b30"], 0xa) [ 192.484193][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 192.487541][ T5166] Bluetooth: Unexpected continuation frame (len 10) [ 192.490362][ T5166] Bluetooth: Unexpected continuation frame (len 10) 06:05:30 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04028ed256c47a070400f5ca667196a72d16f9a58772aa8239ebd1139bdb36ffe404b6c9f7b6ef903bbc9accb84639614968570de4b4e63f49a991af820f9d3b59801233592ac2764799a967d9e0eceff41786445cfe3839b36ef0d38e4391ad71c74b07d931911b30"], 0xa) 06:05:30 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x440941, 0x0) fcntl$getflags(0xffffffffffffffff, 0x408) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = syz_io_uring_setup(0x31e2, &(0x7f0000000040)={0x0, 0x401c0d, 0x10, 0x2, 0x127}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) r2 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) syz_io_uring_setup(0x1ccb, &(0x7f00000001c0)={0x0, 0xc29a, 0x25a, 0x0, 0x290, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280)) ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000140)=0xffffffffffffffff) close_range(r1, r3, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000140)='veth1_to_bridge\x00', 0x10) getsockopt$sock_buf(r4, 0x1, 0x19, &(0x7f0000000180)=""/227, &(0x7f0000000280)=0xe3) connect$inet(r4, &(0x7f00000002c0)={0x2, 0x4e20, @local}, 0x10) 06:05:30 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_features={{0xb, 0xb}, {0x5, 0xc9, "231d5fe7d866acb6"}}}, 0xe) [ 192.505281][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:30 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="04028ed256c47a070400f5ca667196a72d16f9a58772aa8239ebd1139bdb36ffe404b6c9f7b6ef903bbc9accb84639614968570de4b4e63f49a991af820f9d3b59801233592ac2764799a967d9e0eceff41786445cfe3839b36ef0d38e4391ad71c74b07d931911b30"], 0xa) 06:05:30 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_features={{0xb, 0xb}, {0x5, 0xc9, "231d5fe7d866acb6"}}}, 0xe) [ 192.536958][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:30 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_features={{0xb, 0xb}, {0x5, 0xc9, "231d5fe7d866acb6"}}}, 0xe) 06:05:30 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x7, 0xfffc}}}, 0xa) 06:05:30 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) socket$nl_generic(0x10, 0x3, 0x10) 06:05:30 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="576f631d66e7dcbaf18367fb708a27a69e89e673f127a5d645d16ec1c78771673b420d65013dc1d7b1f64bf2212a"], 0x4) [ 192.634903][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:31 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="576f631d66e7dcbaf18367fb708a27a69e89e673f127a5d645d16ec1c78771673b420d65013dc1d7b1f64bf2212a"], 0x4) 06:05:31 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x7, 0xfffc}}}, 0xa) 06:05:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) signalfd4(r2, &(0x7f0000000080)={[0x8a]}, 0x8, 0x80800) 06:05:31 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x440941, 0x0) fcntl$getflags(0xffffffffffffffff, 0x408) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) r1 = syz_io_uring_setup(0x31e2, &(0x7f0000000040)={0x0, 0x401c0d, 0x10, 0x2, 0x127}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) (async) r2 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) syz_io_uring_setup(0x1ccb, &(0x7f00000001c0)={0x0, 0xc29a, 0x25a, 0x0, 0x290, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280)) (async) ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000140)=0xffffffffffffffff) close_range(r1, r3, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000140)='veth1_to_bridge\x00', 0x10) (async) getsockopt$sock_buf(r4, 0x1, 0x19, &(0x7f0000000180)=""/227, &(0x7f0000000280)=0xe3) (async) connect$inet(r4, &(0x7f00000002c0)={0x2, 0x4e20, @local}, 0x10) [ 193.370934][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:31 executing program 2: syz_emit_vhci(0x0, 0x17) (async, rerun: 64) syz_emit_vhci(0x0, 0x0) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="576f631d66e7dcbaf18367fb708a27a69e89e673f127a5d645d16ec1c78771673b420d65013dc1d7b1f64bf2212a"], 0x4) 06:05:31 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x7, 0xfffc}}}, 0xa) 06:05:31 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x440941, 0x0) (async) fcntl$getflags(0xffffffffffffffff, 0x408) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) r1 = syz_io_uring_setup(0x31e2, &(0x7f0000000040)={0x0, 0x401c0d, 0x10, 0x2, 0x127}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) r2 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) syz_io_uring_setup(0x1ccb, &(0x7f00000001c0)={0x0, 0xc29a, 0x25a, 0x0, 0x290, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280)) (async) ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000140)=0xffffffffffffffff) close_range(r1, r3, 0x0) (async) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000140)='veth1_to_bridge\x00', 0x10) (async) getsockopt$sock_buf(r4, 0x1, 0x19, &(0x7f0000000180)=""/227, &(0x7f0000000280)=0xe3) (async) connect$inet(r4, &(0x7f00000002c0)={0x2, 0x4e20, @local}, 0x10) [ 193.397114][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:31 executing program 3: setsockopt$inet_sctp_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000040)=0x8, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2) 06:05:31 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x41, 0x4, 0x1}, 0x10) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000000)={0x7, 0x3}) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x6e707d2b542a2136, 0x0) r3 = openat(r2, &(0x7f0000000100)='./file0\x00', 0x103401, 0x67) r4 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r5, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f00000012c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="08040000020000002e2f66696c65550d513c91d183eb80381650f06bf88aad9ae1a7f6f4028801212e2296ca6b9cb0e2d1c0d0dd11b454a5e47f74d4e2c4cb3c6a58e020c0d430dce874a401d8f7c30dd24431af795f9f35375e21d441140952a7b03c9d1d6f0b179300774acc44a8f920be93af07a380c9f2e51bb3b38b0f1f2d47279cac89ab1bc304386977db22057f96cd"]) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32=r3]) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000140)={r2}) setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000200)={0x41, 0x4, 0x2}, 0x10) 06:05:31 executing program 3: setsockopt$inet_sctp_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000040)=0x8, 0x4) (async) setsockopt$inet_sctp_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000040)=0x8, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2) 06:05:31 executing program 3: setsockopt$inet_sctp_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000040)=0x8, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2) setsockopt$inet_sctp_SCTP_NODELAY(0xffffffffffffffff, 0x84, 0x3, &(0x7f0000000040)=0x8, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT, 0x2) (async) 06:05:31 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x41, 0x4, 0x1}, 0x10) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000000)={0x7, 0x3}) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x6e707d2b542a2136, 0x0) r3 = openat(r2, &(0x7f0000000100)='./file0\x00', 0x103401, 0x67) r4 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r5, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f00000012c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="08040000020000002e2f66696c65550d513c91d183eb80381650f06bf88aad9ae1a7f6f4028801212e2296ca6b9cb0e2d1c0d0dd11b454a5e47f74d4e2c4cb3c6a58e020c0d430dce874a401d8f7c30dd24431af795f9f35375e21d441140952a7b03c9d1d6f0b179300774acc44a8f920be93af07a380c9f2e51bb3b38b0f1f2d47279cac89ab1bc304386977db22057f96cd"]) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32=r3]) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000140)={r2}) setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000200)={0x41, 0x4, 0x2}, 0x10) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x41, 0x4, 0x1}, 0x10) (async) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000000)={0x7, 0x3}) (async) openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x6e707d2b542a2136, 0x0) (async) openat(r2, &(0x7f0000000100)='./file0\x00', 0x103401, 0x67) (async) fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r5, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f00000012c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="08040000020000002e2f66696c65550d513c91d183eb80381650f06bf88aad9ae1a7f6f4028801212e2296ca6b9cb0e2d1c0d0dd11b454a5e47f74d4e2c4cb3c6a58e020c0d430dce874a401d8f7c30dd24431af795f9f35375e21d441140952a7b03c9d1d6f0b179300774acc44a8f920be93af07a380c9f2e51bb3b38b0f1f2d47279cac89ab1bc304386977db22057f96cd"]) (async) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32=r3]) (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000140)={r2}) (async) setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000200)={0x41, 0x4, 0x2}, 0x10) (async) 06:05:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) 06:05:31 executing program 3: r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x7c, r0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x68, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4649cc63}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5eb49450}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4775fd15}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2f9cb1a5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x19dc}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x65faa786}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x643e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9c24}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x220}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b0bb016}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18119e94}]}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4008090) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704000003000000"], 0xa) [ 193.549169][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 194.048834][ T1342] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.051982][ T1342] ieee802154 phy1 wpan1: encryption failed: -22 06:05:31 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x24001, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:31 executing program 3: r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x7c, r0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x68, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4649cc63}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5eb49450}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4775fd15}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2f9cb1a5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x19dc}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x65faa786}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x643e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9c24}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x220}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b0bb016}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18119e94}]}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4008090) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704000003000000"], 0xa) 06:05:31 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x41, 0x4, 0x1}, 0x10) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000000)={0x7, 0x3}) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x6e707d2b542a2136, 0x0) r3 = openat(r2, &(0x7f0000000100)='./file0\x00', 0x103401, 0x67) r4 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r5, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f00000012c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="08040000020000002e2f66696c65550d513c91d183eb80381650f06bf88aad9ae1a7f6f4028801212e2296ca6b9cb0e2d1c0d0dd11b454a5e47f74d4e2c4cb3c6a58e020c0d430dce874a401d8f7c30dd24431af795f9f35375e21d441140952a7b03c9d1d6f0b179300774acc44a8f920be93af07a380c9f2e51bb3b38b0f1f2d47279cac89ab1bc304386977db22057f96cd"]) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32=r3]) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000140)={r2}) setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000200)={0x41, 0x4, 0x2}, 0x10) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x41, 0x4, 0x1}, 0x10) (async) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000000)={0x7, 0x3}) (async) openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x6e707d2b542a2136, 0x0) (async) openat(r2, &(0x7f0000000100)='./file0\x00', 0x103401, 0x67) (async) fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r5, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f00000012c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="08040000020000002e2f66696c65550d513c91d183eb80381650f06bf88aad9ae1a7f6f4028801212e2296ca6b9cb0e2d1c0d0dd11b454a5e47f74d4e2c4cb3c6a58e020c0d430dce874a401d8f7c30dd24431af795f9f35375e21d441140952a7b03c9d1d6f0b179300774acc44a8f920be93af07a380c9f2e51bb3b38b0f1f2d47279cac89ab1bc304386977db22057f96cd"]) (async) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32=r3]) (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000140)={r2}) (async) setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000200)={0x41, 0x4, 0x2}, 0x10) (async) 06:05:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r2, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) [ 194.253190][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:31 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x24001, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:31 executing program 3: r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x7c, r0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x68, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4649cc63}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5eb49450}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4775fd15}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2f9cb1a5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x19dc}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x65faa786}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x643e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9c24}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x220}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b0bb016}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18119e94}]}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4008090) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704000003000000"], 0xa) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000080), 0xffffffffffffffff) (async) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x7c, r0, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x68, 0xc, 0x0, 0x1, [{0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4649cc63}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5eb49450}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4775fd15}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2f9cb1a5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x19dc}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x65faa786}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x643e}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9c24}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x220}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4b0bb016}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18119e94}]}]}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4008090) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04020704000003000000"], 0xa) (async) 06:05:31 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x24001, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x24001, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 194.313200][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:31 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda}, 0x18) [ 194.316715][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:32 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@ipv4_getnexthop={0x18, 0x6a, 0x303, 0x0, 0x0, {0x2, 0x0, 0x0, 0x2}}, 0x18}}, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x9d}, "974f3a8365a844a188c97bb0b641f306fb21ada6fea816db8888209e44dc8ec1b3fce68c7e0d8124753b34dea586e4ceb9e0838015fb26d4e1d86ee58ada6f619f96ec83100ba2b1130b0ef409080d7d32c50663cdc5dc61a53baa27b32c1cf73e627630e1220547136dbe05795136f9c1719226fd830b889203c74dd59b2fc374fb75d1e23da37c282d11f334c4adba8a0f0517ace0a0a609206d8bc5"}, 0xa1) 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda}, 0x18) (async) [ 194.356545][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda}, 0x18) 06:05:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r2, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) 06:05:32 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@ipv4_getnexthop={0x18, 0x6a, 0x303, 0x0, 0x0, {0x2, 0x0, 0x0, 0x2}}, 0x18}}, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) socket$nl_route(0x10, 0x3, 0x0) (async) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@ipv4_getnexthop={0x18, 0x6a, 0x303, 0x0, 0x0, {0x2, 0x0, 0x0, 0x2}}, 0x18}}, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x9d}, "974f3a8365a844a188c97bb0b641f306fb21ada6fea816db8888209e44dc8ec1b3fce68c7e0d8124753b34dea586e4ceb9e0838015fb26d4e1d86ee58ada6f619f96ec83100ba2b1130b0ef409080d7d32c50663cdc5dc61a53baa27b32c1cf73e627630e1220547136dbe05795136f9c1719226fd830b889203c74dd59b2fc374fb75d1e23da37c282d11f334c4adba8a0f0517ace0a0a609206d8bc5"}, 0xa1) 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x9d}, "974f3a8365a844a188c97bb0b641f306fb21ada6fea816db8888209e44dc8ec1b3fce68c7e0d8124753b34dea586e4ceb9e0838015fb26d4e1d86ee58ada6f619f96ec83100ba2b1130b0ef409080d7d32c50663cdc5dc61a53baa27b32c1cf73e627630e1220547136dbe05795136f9c1719226fd830b889203c74dd59b2fc374fb75d1e23da37c282d11f334c4adba8a0f0517ace0a0a609206d8bc5"}, 0xa1) [ 194.411531][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 194.415210][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:32 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@ipv4_getnexthop={0x18, 0x6a, 0x303, 0x0, 0x0, {0x2, 0x0, 0x0, 0x2}}, 0x18}}, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) socket$nl_route(0x10, 0x3, 0x0) (async) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=@ipv4_getnexthop={0x18, 0x6a, 0x303, 0x0, 0x0, {0x2, 0x0, 0x0, 0x2}}, 0x18}}, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="045cf07ed287ec853f44460b478ee8249e080003c9008f15410343875bd95dbf2b8336da76afaa1cb183ef519dfade40bac696006c813020e472373b85455df1a66edbd2c61b1b63836100"/88], 0xffffffffffffffd0) 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 194.441431][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 194.444385][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0xd}, {0x3, [{0xc8, 0x81}, {0xc8, 0x3}, {0xc8, 0xb42}]}}}, 0x10) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xac}, "27aab24a4619fbfaf37c9902c4aebe2eaafcdad1e64b2c31c935413c5ae955f5fab1b2a3c01ed9946fced6d0e80046dc7f0ea0fb51c273831d344ced139e0b97d35282df49a2668307e8a459f7bf7b53bcaeba198cd3eece567435492c00e2849eeea165f31e31a5d4220f59fef507a35de3f188b82c669c3b3db3b147ba29a5b7a6566094bdad6683381d0829571b84ab659cdd231589452193b209fe9a35af8fe7764b5d46f7ab3e5d56ff"}, 0xb0) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="045cf07ed287ec853f44460b478ee8249e080003c9008f15410343875bd95dbf2b8336da76afaa1cb183ef519dfade40bac696006c813020e472373b85455df1a66edbd2c61b1b63836100"/88], 0xffffffffffffffd0) 06:05:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0xd}, {0x3, [{0xc8, 0x81}, {0xc8, 0x3}, {0xc8, 0xb42}]}}}, 0x10) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0xd}, {0x3, [{0xc8, 0x81}, {0xc8, 0x3}, {0xc8, 0xb42}]}}}, 0x10) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xac}, "27aab24a4619fbfaf37c9902c4aebe2eaafcdad1e64b2c31c935413c5ae955f5fab1b2a3c01ed9946fced6d0e80046dc7f0ea0fb51c273831d344ced139e0b97d35282df49a2668307e8a459f7bf7b53bcaeba198cd3eece567435492c00e2849eeea165f31e31a5d4220f59fef507a35de3f188b82c669c3b3db3b147ba29a5b7a6566094bdad6683381d0829571b84ab659cdd231589452193b209fe9a35af8fe7764b5d46f7ab3e5d56ff"}, 0xb0) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="045cf07ed287ec853f44460b478ee8249e080003c9008f15410343875bd95dbf2b8336da76afaa1cb183ef519dfade40bac696006c813020e472373b85455df1a66edbd2c61b1b63836100"/88], 0xffffffffffffffd0) 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000040)={0x0, 0x1, r0}) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0xd}, {0x3, [{0xc8, 0x81}, {0xc8, 0x3}, {0xc8, 0xb42}]}}}, 0x10) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_num_comp_pkts={{0x13, 0xd}, {0x3, [{0xc8, 0x81}, {0xc8, 0x3}, {0xc8, 0xb42}]}}}, 0x10) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xac}, "27aab24a4619fbfaf37c9902c4aebe2eaafcdad1e64b2c31c935413c5ae955f5fab1b2a3c01ed9946fced6d0e80046dc7f0ea0fb51c273831d344ced139e0b97d35282df49a2668307e8a459f7bf7b53bcaeba198cd3eece567435492c00e2849eeea165f31e31a5d4220f59fef507a35de3f188b82c669c3b3db3b147ba29a5b7a6566094bdad6683381d0829571b84ab659cdd231589452193b209fe9a35af8fe7764b5d46f7ab3e5d56ff"}, 0xb0) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="efc8600a000600fcff01ff02004a00"], 0xf) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x3, 0xc0}, @l2cap_cid_signaling={{0xbc}, [@l2cap_create_chan_req={{0xc, 0x5, 0x5}, {0x8, 0x401, 0x5}}, @l2cap_conf_rsp={{0x5, 0xfb, 0x52}, {0x7, 0x2, 0x5, [@l2cap_conf_rfc={0x4, 0x9, {0x2, 0x6, 0x7, 0x9b, 0x5, 0x8eef}}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0xfff8, 0x7, 0x1ff, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x81, 0x0, 0x8, 0x6, 0x1, 0x401}}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x1, 0xff, 0x2d3dbc36, 0x5, 0x8001}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x1, 0x7, 0x3ff, 0x1e98, 0x800}}]}}, @l2cap_create_chan_rsp={{0xd, 0x4, 0x8}, {0x3, 0x0, 0x1, 0x80}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x5, 0x9cb, 0x809, 0x2}}, @l2cap_conf_rsp={{0x5, 0x7, 0x35}, {0x401, 0x3, 0x9, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_mtu={0x1, 0x2, 0x5}, @l2cap_conf_flushto={0x2, 0x2, 0x7f}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x0, 0x1000, 0x5, 0xe0, 0x3}}, @l2cap_conf_efs={0x6, 0x10, {0x18, 0x2, 0xfff7, 0x33e, 0x81, 0x2}}]}}, @l2cap_conn_rsp={{0x3, 0xe, 0x8}, {0x1000, 0x5, 0x2}}]}}, 0xc5) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03c92f3f"], 0x4) 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000040)={0x0, 0x1, r0}) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="044209e9ff0000000000"], 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x2b}, {0x3, [{@none, 0x40, 0xfe, 0x3f, "664ad0", 0x2}, {@none, 0x2, 0x8, 0xe7, "8b8225", 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x74, 0x3, 0xd6, ',+O', 0xff}]}}}, 0x2e) 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r0, 0xc01064c2, &(0x7f0000000040)={0x0, 0x1, r0}) 06:05:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="efc8600a000600fcff01ff02004a00"], 0xf) (async) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x3, 0xc0}, @l2cap_cid_signaling={{0xbc}, [@l2cap_create_chan_req={{0xc, 0x5, 0x5}, {0x8, 0x401, 0x5}}, @l2cap_conf_rsp={{0x5, 0xfb, 0x52}, {0x7, 0x2, 0x5, [@l2cap_conf_rfc={0x4, 0x9, {0x2, 0x6, 0x7, 0x9b, 0x5, 0x8eef}}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0xfff8, 0x7, 0x1ff, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x81, 0x0, 0x8, 0x6, 0x1, 0x401}}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x1, 0xff, 0x2d3dbc36, 0x5, 0x8001}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x1, 0x7, 0x3ff, 0x1e98, 0x800}}]}}, @l2cap_create_chan_rsp={{0xd, 0x4, 0x8}, {0x3, 0x0, 0x1, 0x80}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x5, 0x9cb, 0x809, 0x2}}, @l2cap_conf_rsp={{0x5, 0x7, 0x35}, {0x401, 0x3, 0x9, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_mtu={0x1, 0x2, 0x5}, @l2cap_conf_flushto={0x2, 0x2, 0x7f}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x0, 0x1000, 0x5, 0xe0, 0x3}}, @l2cap_conf_efs={0x6, 0x10, {0x18, 0x2, 0xfff7, 0x33e, 0x81, 0x2}}]}}, @l2cap_conn_rsp={{0x3, 0xe, 0x8}, {0x1000, 0x5, 0x2}}]}}, 0xc5) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03c92f3f"], 0x4) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="044209e9ff0000000000"], 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x2b}, {0x3, [{@none, 0x40, 0xfe, 0x3f, "664ad0", 0x2}, {@none, 0x2, 0x8, 0xe7, "8b8225", 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x74, 0x3, 0xd6, ',+O', 0xff}]}}}, 0x2e) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="044209e9ff0000000000"], 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x2b}, {0x3, [{@none, 0x40, 0xfe, 0x3f, "664ad0", 0x2}, {@none, 0x2, 0x8, 0xe7, "8b8225", 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x74, 0x3, 0xd6, ',+O', 0xff}]}}}, 0x2e) (async) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="efc8600a000600fcff01ff02004a00"], 0xf) (rerun: 64) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x3, 0xc0}, @l2cap_cid_signaling={{0xbc}, [@l2cap_create_chan_req={{0xc, 0x5, 0x5}, {0x8, 0x401, 0x5}}, @l2cap_conf_rsp={{0x5, 0xfb, 0x52}, {0x7, 0x2, 0x5, [@l2cap_conf_rfc={0x4, 0x9, {0x2, 0x6, 0x7, 0x9b, 0x5, 0x8eef}}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0xfff8, 0x7, 0x1ff, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x81, 0x0, 0x8, 0x6, 0x1, 0x401}}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x1, 0xff, 0x2d3dbc36, 0x5, 0x8001}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x1, 0x7, 0x3ff, 0x1e98, 0x800}}]}}, @l2cap_create_chan_rsp={{0xd, 0x4, 0x8}, {0x3, 0x0, 0x1, 0x80}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x5, 0x9cb, 0x809, 0x2}}, @l2cap_conf_rsp={{0x5, 0x7, 0x35}, {0x401, 0x3, 0x9, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_mtu={0x1, 0x2, 0x5}, @l2cap_conf_flushto={0x2, 0x2, 0x7f}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x0, 0x1000, 0x5, 0xe0, 0x3}}, @l2cap_conf_efs={0x6, 0x10, {0x18, 0x2, 0xfff7, 0x33e, 0x81, 0x2}}]}}, @l2cap_conn_rsp={{0x3, 0xe, 0x8}, {0x1000, 0x5, 0x2}}]}}, 0xc5) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03c92f3f"], 0x4) [ 194.717936][ T5168] Bluetooth: hci0: unexpected event 0x42 length: 7 > 3 [ 194.736084][ T5168] Bluetooth: hci0: unexpected event 0x42 length: 7 > 3 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x340, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="66643d2c1a981142a9dd7928b89f675b1c1972136d1a4cf808594021de5fd8f0d8581dc2240c6419a58cb1615c63a41a04056705df56f64bf8c55d817c9201faebc54d12e23a29317d6b3515fbe33b0074f5156a9351ceba7d33fec69b8b8616dbd7241f5ce03d61618cb3723489ea76b872f756ac5d3d4f2992cbc29037a0528ad4caa1fabac2e27007fc2b094d7afc8c26db57f534449773e5b4361b5d17ea38ed1f52c4f240968e506956aa9f27c255418249a399ed8e363a0f1812c2a74d9e", @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2020) r6 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r8 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r9, 0x0, 0x0) r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r10, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = socket$can_bcm(0x1d, 0x2, 0x2) r14 = socket$nl_generic(0x10, 0x3, 0x10) r15 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r15, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r16 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r16, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r17 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r17, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r18 = gettid() process_vm_writev(r18, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r6, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r6, r7, r9}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r10, r11, r12, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [r13, 0xffffffffffffffff, 0xffffffffffffffff, r14, r15, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r16, 0xffffffffffffffff, r17]}}, @cred={{0x1c, 0x1, 0x2, {r6, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r18, 0xffffffffffffffff, r19}}}], 0x118, 0x20000801}}], 0x1, 0x2) syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000e80)={&(0x7f0000000180)={0x50, 0xffffffffffffffda, 0x1f, {0x7, 0x26, 0x0, 0x2080140, 0x6, 0x1, 0x1000, 0x6}}, &(0x7f0000000200)={0x18, 0x0, 0x7, {0xfffffffffffffffb}}, &(0x7f0000000240)={0x18, 0x0, 0x400, {0x40}}, &(0x7f0000000280)={0x18, 0x0, 0x2, {0x2e}}, &(0x7f00000002c0)={0x18, 0x0, 0x9, {0x7}}, &(0x7f0000000300)={0x28, 0x0, 0x4, {{0x7, 0x9, 0x0, r5}}}, &(0x7f0000000340)={0x60, 0x0, 0x2, {{0x736c17f8, 0x80, 0x10000, 0x6, 0x5, 0x8e78, 0x6, 0x6}}}, &(0x7f00000003c0)={0x18, 0x0, 0x800, {0x6}}, &(0x7f0000000400)={0x14, 0x0, 0x2, {']}!\x00'}}, &(0x7f00000004c0)={0x20, 0x0, 0x7}, &(0x7f00000005c0)={0x78, 0xfffffffffffffffe, 0x1, {0xfffffffffffffffc, 0x0, 0x0, {0x1, 0x1, 0x5, 0x7, 0x5, 0x7, 0x4, 0x2, 0x4, 0xc000, 0x1, r3, 0x0, 0x6, 0x4}}}, &(0x7f00000006c0)={0x90, 0x0, 0x64, {0x1, 0x3, 0x4343, 0x3, 0x6a2f, 0x9, {0x4, 0xffffffff, 0x0, 0x8000000000000000, 0x9, 0x0, 0x1, 0xfffff3fd, 0x8, 0xc000, 0x100, r3, 0x0, 0x6, 0x401}}}, &(0x7f0000000780)={0x148, 0x0, 0x9, [{0x4, 0x8, 0x14, 0xe4a1, 'w\'@\\,(@(\\.#\\}+-({)$-'}, {0x5, 0x0, 0x1, 0x2, '.'}, {0x2, 0x8, 0x3, 0x7, ')]!'}, {0x6, 0x63ad, 0x3, 0x0, ':\':'}, {0x3, 0xb474, 0xa, 0xe6, '/dev/fuse\x00'}, {0x0, 0x4, 0x5, 0x5f5, 'fuse\x00'}, {0x1, 0x5, 0x0, 0x80000000}, {0x0, 0xffff, 0x10, 0x0, '/dev/cachefiles\x00'}, {0x0, 0x20, 0x5, 0x2ac, 'fuse\x00'}]}, &(0x7f0000000900)={0x468, 0x0, 0x6, [{{0x3, 0x2, 0x8, 0x3, 0x3, 0xff, {0x1, 0xc9, 0xff, 0x1, 0x4000000000, 0x3, 0x60a0025f, 0x2, 0xf55d, 0xc000, 0x9, 0x0, r4, 0x400}}, {0x1, 0x0, 0x0, 0x7}}, {{0x1, 0x0, 0x6, 0xffffffffffffffff, 0x5, 0x401, {0x1, 0x609c, 0x0, 0x800, 0x1f, 0x8000000000000000, 0x10001, 0x80, 0x100, 0x6000, 0x7, r3, 0x0, 0x81, 0x8}}, {0x3, 0x3, 0x5, 0x5, 'fuse\x00'}}, {{0x3, 0x0, 0x3f, 0x400, 0x1000, 0xb0b, {0x4, 0x9, 0x1, 0x6, 0x5, 0x8000000000000000, 0x1, 0x1, 0x2, 0x8000, 0x0, 0x0, 0x0, 0x6, 0x100}}, {0x0, 0xfffffffffffffff9, 0xa, 0x200, '/dev/fuse\x00'}}, {{0x3, 0x2, 0x81, 0x5, 0x1f, 0x1, {0x2, 0x8800000000000000, 0x39c, 0x9, 0x0, 0x4, 0x8, 0x5, 0x9, 0x1000, 0xbf, 0x0, r4, 0x8000, 0xfffffffe}}, {0x4, 0x7060dfbc, 0x0, 0xad}}, {{0x0, 0x2, 0x4, 0x7, 0x6, 0x9, {0x3, 0x1000, 0x3, 0xfff, 0x9, 0xfffffffffffffffd, 0x5, 0x8000, 0x1, 0x8000, 0xf044, 0x0, 0x0, 0x5, 0x8}}, {0x1, 0x2, 0x0, 0x4}}, {{0x6, 0x3, 0x1, 0x100, 0x52e, 0x3f, {0x5, 0x401, 0xffffffffffffee1f, 0x2, 0x1, 0x93fb, 0x6, 0x92d1, 0x80, 0x6000, 0x6, 0x0, 0x0, 0x7fffffff, 0x101}}, {0x6, 0xfffffffffffffffc, 0x2, 0x2, '--'}}, {{0x2, 0x0, 0x5ac, 0xf1, 0x10001, 0x8, {0x6, 0x2, 0x1, 0x81, 0x7, 0x9, 0x5, 0x200, 0x8, 0x1000, 0x1, r3, r9, 0x8, 0x400}}, {0x6, 0x10000, 0x10, 0x3f, '/dev/cachefiles\x00'}}]}, &(0x7f0000000d80)={0xa0, 0x0, 0x7fff, {{0x1, 0x0, 0x0, 0x96, 0x10001, 0x5, {0x2, 0x1, 0x100000000, 0x1000, 0xfffffffffffffffe, 0x9, 0x6, 0x0, 0x3ff, 0x8000, 0xfffffffd, r3, r4, 0x3, 0x2}}}}, &(0x7f0000000e40)={0x20, 0x0, 0x7fffffff, {0xfe, 0x4, 0x9, 0x5}}}) write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2}, 0x50) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r2}, 0x18) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="044209e9ff0000000000"], 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x2b}, {0x3, [{@none, 0x40, 0xfe, 0x3f, "664ad0", 0x2}, {@none, 0x2, 0x8, 0xe7, "8b8225", 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x74, 0x3, 0xd6, ',+O', 0xff}]}}}, 0x2e) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0xaf, 0x4}, {0x7fff, 0x238}}}}, 0x11) [ 194.739137][ T5168] Bluetooth: hci0: unexpected event 0x42 length: 7 > 3 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xcb}, "89acb6340d2a2d78e12e7c0c21579da656b902ff67d6e1894991461eac19f32bf69df1cf073ab029ce7247e1e73ce5f8e06ae1f91ba78456224b572f088bc0937e169fb39da883d250b308e43b45d69f3f64fa29294f93112f24be2d728a5dbc919920aed160f37a14453dcd1ff2a101f0692cfba8b6862eba622bd07ff051528acbc50812eb1235c052dcb91866bacc5c4fba4297537a64807cf698b8fff0d7561754b8c30676c33cbd320b50c40caab5cd1d54b90a9d99a8b06a6239b849b6ca8363b6495508b2bd3159"}, 0xcf) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_channel_selected={{0x41, 0x1}, {0xc8}}}, 0x4) [ 194.776509][ T5168] Bluetooth: hci0: unexpected event 0x42 length: 7 > 3 [ 194.795988][ T5168] Bluetooth: Unexpected start frame (len 12) [ 194.807632][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xcb}, "89acb6340d2a2d78e12e7c0c21579da656b902ff67d6e1894991461eac19f32bf69df1cf073ab029ce7247e1e73ce5f8e06ae1f91ba78456224b572f088bc0937e169fb39da883d250b308e43b45d69f3f64fa29294f93112f24be2d728a5dbc919920aed160f37a14453dcd1ff2a101f0692cfba8b6862eba622bd07ff051528acbc50812eb1235c052dcb91866bacc5c4fba4297537a64807cf698b8fff0d7561754b8c30676c33cbd320b50c40caab5cd1d54b90a9d99a8b06a6239b849b6ca8363b6495508b2bd3159"}, 0xcf) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_channel_selected={{0x41, 0x1}, {0xc8}}}, 0x4) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0xaf, 0x4}, {0x7fff, 0x238}}}}, 0x11) 06:05:32 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x340, 0x0) (async) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="66643d2c1a981142a9dd7928b89f675b1c1972136d1a4cf808594021de5fd8f0d8581dc2240c6419a58cb1615c63a41a04056705df56f64bf8c55d817c9201faebc54d12e23a29317d6b3515fbe33b0074f5156a9351ceba7d33fec69b8b8616dbd7241f5ce03d61618cb3723489ea76b872f756ac5d3d4f2992cbc29037a0528ad4caa1fabac2e27007fc2b094d7afc8c26db57f534449773e5b4361b5d17ea38ed1f52c4f240968e506956aa9f27c255418249a399ed8e363a0f1812c2a74d9e", @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2020) (async) r6 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) (async) r8 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r9, 0x0, 0x0) (async) r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r10, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = socket$can_bcm(0x1d, 0x2, 0x2) r14 = socket$nl_generic(0x10, 0x3, 0x10) (async) r15 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r15, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r16 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r16, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r17 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r17, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r18 = gettid() process_vm_writev(r18, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) (async) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r6, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r6, r7, r9}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r10, r11, r12, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [r13, 0xffffffffffffffff, 0xffffffffffffffff, r14, r15, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r16, 0xffffffffffffffff, r17]}}, @cred={{0x1c, 0x1, 0x2, {r6, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r18, 0xffffffffffffffff, r19}}}], 0x118, 0x20000801}}], 0x1, 0x2) (async) syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000e80)={&(0x7f0000000180)={0x50, 0xffffffffffffffda, 0x1f, {0x7, 0x26, 0x0, 0x2080140, 0x6, 0x1, 0x1000, 0x6}}, &(0x7f0000000200)={0x18, 0x0, 0x7, {0xfffffffffffffffb}}, &(0x7f0000000240)={0x18, 0x0, 0x400, {0x40}}, &(0x7f0000000280)={0x18, 0x0, 0x2, {0x2e}}, &(0x7f00000002c0)={0x18, 0x0, 0x9, {0x7}}, &(0x7f0000000300)={0x28, 0x0, 0x4, {{0x7, 0x9, 0x0, r5}}}, &(0x7f0000000340)={0x60, 0x0, 0x2, {{0x736c17f8, 0x80, 0x10000, 0x6, 0x5, 0x8e78, 0x6, 0x6}}}, &(0x7f00000003c0)={0x18, 0x0, 0x800, {0x6}}, &(0x7f0000000400)={0x14, 0x0, 0x2, {']}!\x00'}}, &(0x7f00000004c0)={0x20, 0x0, 0x7}, &(0x7f00000005c0)={0x78, 0xfffffffffffffffe, 0x1, {0xfffffffffffffffc, 0x0, 0x0, {0x1, 0x1, 0x5, 0x7, 0x5, 0x7, 0x4, 0x2, 0x4, 0xc000, 0x1, r3, 0x0, 0x6, 0x4}}}, &(0x7f00000006c0)={0x90, 0x0, 0x64, {0x1, 0x3, 0x4343, 0x3, 0x6a2f, 0x9, {0x4, 0xffffffff, 0x0, 0x8000000000000000, 0x9, 0x0, 0x1, 0xfffff3fd, 0x8, 0xc000, 0x100, r3, 0x0, 0x6, 0x401}}}, &(0x7f0000000780)={0x148, 0x0, 0x9, [{0x4, 0x8, 0x14, 0xe4a1, 'w\'@\\,(@(\\.#\\}+-({)$-'}, {0x5, 0x0, 0x1, 0x2, '.'}, {0x2, 0x8, 0x3, 0x7, ')]!'}, {0x6, 0x63ad, 0x3, 0x0, ':\':'}, {0x3, 0xb474, 0xa, 0xe6, '/dev/fuse\x00'}, {0x0, 0x4, 0x5, 0x5f5, 'fuse\x00'}, {0x1, 0x5, 0x0, 0x80000000}, {0x0, 0xffff, 0x10, 0x0, '/dev/cachefiles\x00'}, {0x0, 0x20, 0x5, 0x2ac, 'fuse\x00'}]}, &(0x7f0000000900)={0x468, 0x0, 0x6, [{{0x3, 0x2, 0x8, 0x3, 0x3, 0xff, {0x1, 0xc9, 0xff, 0x1, 0x4000000000, 0x3, 0x60a0025f, 0x2, 0xf55d, 0xc000, 0x9, 0x0, r4, 0x400}}, {0x1, 0x0, 0x0, 0x7}}, {{0x1, 0x0, 0x6, 0xffffffffffffffff, 0x5, 0x401, {0x1, 0x609c, 0x0, 0x800, 0x1f, 0x8000000000000000, 0x10001, 0x80, 0x100, 0x6000, 0x7, r3, 0x0, 0x81, 0x8}}, {0x3, 0x3, 0x5, 0x5, 'fuse\x00'}}, {{0x3, 0x0, 0x3f, 0x400, 0x1000, 0xb0b, {0x4, 0x9, 0x1, 0x6, 0x5, 0x8000000000000000, 0x1, 0x1, 0x2, 0x8000, 0x0, 0x0, 0x0, 0x6, 0x100}}, {0x0, 0xfffffffffffffff9, 0xa, 0x200, '/dev/fuse\x00'}}, {{0x3, 0x2, 0x81, 0x5, 0x1f, 0x1, {0x2, 0x8800000000000000, 0x39c, 0x9, 0x0, 0x4, 0x8, 0x5, 0x9, 0x1000, 0xbf, 0x0, r4, 0x8000, 0xfffffffe}}, {0x4, 0x7060dfbc, 0x0, 0xad}}, {{0x0, 0x2, 0x4, 0x7, 0x6, 0x9, {0x3, 0x1000, 0x3, 0xfff, 0x9, 0xfffffffffffffffd, 0x5, 0x8000, 0x1, 0x8000, 0xf044, 0x0, 0x0, 0x5, 0x8}}, {0x1, 0x2, 0x0, 0x4}}, {{0x6, 0x3, 0x1, 0x100, 0x52e, 0x3f, {0x5, 0x401, 0xffffffffffffee1f, 0x2, 0x1, 0x93fb, 0x6, 0x92d1, 0x80, 0x6000, 0x6, 0x0, 0x0, 0x7fffffff, 0x101}}, {0x6, 0xfffffffffffffffc, 0x2, 0x2, '--'}}, {{0x2, 0x0, 0x5ac, 0xf1, 0x10001, 0x8, {0x6, 0x2, 0x1, 0x81, 0x7, 0x9, 0x5, 0x200, 0x8, 0x1000, 0x1, r3, r9, 0x8, 0x400}}, {0x6, 0x10000, 0x10, 0x3f, '/dev/cachefiles\x00'}}]}, &(0x7f0000000d80)={0xa0, 0x0, 0x7fff, {{0x1, 0x0, 0x0, 0x96, 0x10001, 0x5, {0x2, 0x1, 0x100000000, 0x1000, 0xfffffffffffffffe, 0x9, 0x6, 0x0, 0x3ff, 0x8000, 0xfffffffd, r3, r4, 0x3, 0x2}}}}, &(0x7f0000000e40)={0x20, 0x0, 0x7fffffff, {0xfe, 0x4, 0x9, 0x5}}}) (async) write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2}, 0x50) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r2}, 0x18) [ 194.886681][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0xaf, 0x4}, {0x7fff, 0x238}}}}, 0x11) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0xaf, 0x4}, {0x7fff, 0x238}}}}, 0x11) (async) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xcb}, "89acb6340d2a2d78e12e7c0c21579da656b902ff67d6e1894991461eac19f32bf69df1cf073ab029ce7247e1e73ce5f8e06ae1f91ba78456224b572f088bc0937e169fb39da883d250b308e43b45d69f3f64fa29294f93112f24be2d728a5dbc919920aed160f37a14453dcd1ff2a101f0692cfba8b6862eba622bd07ff051528acbc50812eb1235c052dcb91866bacc5c4fba4297537a64807cf698b8fff0d7561754b8c30676c33cbd320b50c40caab5cd1d54b90a9d99a8b06a6239b849b6ca8363b6495508b2bd3159"}, 0xcf) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_channel_selected={{0x41, 0x1}, {0xc8}}}, 0x4) [ 194.914059][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 194.923774][ T5166] Bluetooth: hci1: link tx timeout [ 194.926828][ T5166] Bluetooth: hci1: killing stalled connection 10:aa:aa:aa:aa:aa [ 194.932256][ T5166] Bluetooth: hci1: link tx timeout [ 194.934637][ T5166] Bluetooth: hci1: killing stalled connection 10:aa:aa:aa:aa:aa 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xec}, "72a6caa9be87db7d5e8bc96c22ac4853bfc0138c85fa0d0f91d24d2dad9bcaa6f848e19f21d1ce001f068ca40362901e68299fab651d365b702f85d24e9b3464656bcf6f6a5f1e86af49874a7ee0fc98e73b3c262dfeb8ff5292785c966804ccf653bc564b2565c90c452d50e7785c4cdeae6ad7ad891376f98e85581850aee7e3f4115a71a6cdf33cf0ba6adda5a356b1fd94eacf235446475b45aca554ac091729b8fa7d79cc64a9fc3c992562ac9522d46c6a467e959c793ef7752508e904cf0d2e0dca720f750876e77604ac245c7805a76fbd93dbcdc757070834063ee63b89f5adb13757c739022c01"}, 0xf0) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0xa) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) [ 194.957265][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) 06:05:32 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xec}, "72a6caa9be87db7d5e8bc96c22ac4853bfc0138c85fa0d0f91d24d2dad9bcaa6f848e19f21d1ce001f068ca40362901e68299fab651d365b702f85d24e9b3464656bcf6f6a5f1e86af49874a7ee0fc98e73b3c262dfeb8ff5292785c966804ccf653bc564b2565c90c452d50e7785c4cdeae6ad7ad891376f98e85581850aee7e3f4115a71a6cdf33cf0ba6adda5a356b1fd94eacf235446475b45aca554ac091729b8fa7d79cc64a9fc3c992562ac9522d46c6a467e959c793ef7752508e904cf0d2e0dca720f750876e77604ac245c7805a76fbd93dbcdc757070834063ee63b89f5adb13757c739022c01"}, 0xf0) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xec}, "72a6caa9be87db7d5e8bc96c22ac4853bfc0138c85fa0d0f91d24d2dad9bcaa6f848e19f21d1ce001f068ca40362901e68299fab651d365b702f85d24e9b3464656bcf6f6a5f1e86af49874a7ee0fc98e73b3c262dfeb8ff5292785c966804ccf653bc564b2565c90c452d50e7785c4cdeae6ad7ad891376f98e85581850aee7e3f4115a71a6cdf33cf0ba6adda5a356b1fd94eacf235446475b45aca554ac091729b8fa7d79cc64a9fc3c992562ac9522d46c6a467e959c793ef7752508e904cf0d2e0dca720f750876e77604ac245c7805a76fbd93dbcdc757070834063ee63b89f5adb13757c739022c01"}, 0xf0) (async) 06:05:32 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0xa) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) [ 195.047804][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:34 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x340, 0x0) (async) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="66643d2c1a981142a9dd7928b89f675b1c1972136d1a4cf808594021de5fd8f0d8581dc2240c6419a58cb1615c63a41a04056705df56f64bf8c55d817c9201faebc54d12e23a29317d6b3515fbe33b0074f5156a9351ceba7d33fec69b8b8616dbd7241f5ce03d61618cb3723489ea76b872f756ac5d3d4f2992cbc29037a0528ad4caa1fabac2e27007fc2b094d7afc8c26db57f534449773e5b4361b5d17ea38ed1f52c4f240968e506956aa9f27c255418249a399ed8e363a0f1812c2a74d9e", @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x2020) (async) r6 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r8 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r9, 0x0, 0x0) (async) r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r10, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = socket$can_bcm(0x1d, 0x2, 0x2) (async) r14 = socket$nl_generic(0x10, 0x3, 0x10) (async) r15 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r15, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r16 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r16, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r17 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r17, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r18 = gettid() process_vm_writev(r18, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) (async) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r6, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r6, r7, r9}}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r10, r11, r12, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [r13, 0xffffffffffffffff, 0xffffffffffffffff, r14, r15, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r16, 0xffffffffffffffff, r17]}}, @cred={{0x1c, 0x1, 0x2, {r6, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r18, 0xffffffffffffffff, r19}}}], 0x118, 0x20000801}}], 0x1, 0x2) (async) syz_fuse_handle_req(r1, &(0x7f0000004200)="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", 0x2000, &(0x7f0000000e80)={&(0x7f0000000180)={0x50, 0xffffffffffffffda, 0x1f, {0x7, 0x26, 0x0, 0x2080140, 0x6, 0x1, 0x1000, 0x6}}, &(0x7f0000000200)={0x18, 0x0, 0x7, {0xfffffffffffffffb}}, &(0x7f0000000240)={0x18, 0x0, 0x400, {0x40}}, &(0x7f0000000280)={0x18, 0x0, 0x2, {0x2e}}, &(0x7f00000002c0)={0x18, 0x0, 0x9, {0x7}}, &(0x7f0000000300)={0x28, 0x0, 0x4, {{0x7, 0x9, 0x0, r5}}}, &(0x7f0000000340)={0x60, 0x0, 0x2, {{0x736c17f8, 0x80, 0x10000, 0x6, 0x5, 0x8e78, 0x6, 0x6}}}, &(0x7f00000003c0)={0x18, 0x0, 0x800, {0x6}}, &(0x7f0000000400)={0x14, 0x0, 0x2, {']}!\x00'}}, &(0x7f00000004c0)={0x20, 0x0, 0x7}, &(0x7f00000005c0)={0x78, 0xfffffffffffffffe, 0x1, {0xfffffffffffffffc, 0x0, 0x0, {0x1, 0x1, 0x5, 0x7, 0x5, 0x7, 0x4, 0x2, 0x4, 0xc000, 0x1, r3, 0x0, 0x6, 0x4}}}, &(0x7f00000006c0)={0x90, 0x0, 0x64, {0x1, 0x3, 0x4343, 0x3, 0x6a2f, 0x9, {0x4, 0xffffffff, 0x0, 0x8000000000000000, 0x9, 0x0, 0x1, 0xfffff3fd, 0x8, 0xc000, 0x100, r3, 0x0, 0x6, 0x401}}}, &(0x7f0000000780)={0x148, 0x0, 0x9, [{0x4, 0x8, 0x14, 0xe4a1, 'w\'@\\,(@(\\.#\\}+-({)$-'}, {0x5, 0x0, 0x1, 0x2, '.'}, {0x2, 0x8, 0x3, 0x7, ')]!'}, {0x6, 0x63ad, 0x3, 0x0, ':\':'}, {0x3, 0xb474, 0xa, 0xe6, '/dev/fuse\x00'}, {0x0, 0x4, 0x5, 0x5f5, 'fuse\x00'}, {0x1, 0x5, 0x0, 0x80000000}, {0x0, 0xffff, 0x10, 0x0, '/dev/cachefiles\x00'}, {0x0, 0x20, 0x5, 0x2ac, 'fuse\x00'}]}, &(0x7f0000000900)={0x468, 0x0, 0x6, [{{0x3, 0x2, 0x8, 0x3, 0x3, 0xff, {0x1, 0xc9, 0xff, 0x1, 0x4000000000, 0x3, 0x60a0025f, 0x2, 0xf55d, 0xc000, 0x9, 0x0, r4, 0x400}}, {0x1, 0x0, 0x0, 0x7}}, {{0x1, 0x0, 0x6, 0xffffffffffffffff, 0x5, 0x401, {0x1, 0x609c, 0x0, 0x800, 0x1f, 0x8000000000000000, 0x10001, 0x80, 0x100, 0x6000, 0x7, r3, 0x0, 0x81, 0x8}}, {0x3, 0x3, 0x5, 0x5, 'fuse\x00'}}, {{0x3, 0x0, 0x3f, 0x400, 0x1000, 0xb0b, {0x4, 0x9, 0x1, 0x6, 0x5, 0x8000000000000000, 0x1, 0x1, 0x2, 0x8000, 0x0, 0x0, 0x0, 0x6, 0x100}}, {0x0, 0xfffffffffffffff9, 0xa, 0x200, '/dev/fuse\x00'}}, {{0x3, 0x2, 0x81, 0x5, 0x1f, 0x1, {0x2, 0x8800000000000000, 0x39c, 0x9, 0x0, 0x4, 0x8, 0x5, 0x9, 0x1000, 0xbf, 0x0, r4, 0x8000, 0xfffffffe}}, {0x4, 0x7060dfbc, 0x0, 0xad}}, {{0x0, 0x2, 0x4, 0x7, 0x6, 0x9, {0x3, 0x1000, 0x3, 0xfff, 0x9, 0xfffffffffffffffd, 0x5, 0x8000, 0x1, 0x8000, 0xf044, 0x0, 0x0, 0x5, 0x8}}, {0x1, 0x2, 0x0, 0x4}}, {{0x6, 0x3, 0x1, 0x100, 0x52e, 0x3f, {0x5, 0x401, 0xffffffffffffee1f, 0x2, 0x1, 0x93fb, 0x6, 0x92d1, 0x80, 0x6000, 0x6, 0x0, 0x0, 0x7fffffff, 0x101}}, {0x6, 0xfffffffffffffffc, 0x2, 0x2, '--'}}, {{0x2, 0x0, 0x5ac, 0xf1, 0x10001, 0x8, {0x6, 0x2, 0x1, 0x81, 0x7, 0x9, 0x5, 0x200, 0x8, 0x1000, 0x1, r3, r9, 0x8, 0x400}}, {0x6, 0x10000, 0x10, 0x3f, '/dev/cachefiles\x00'}}]}, &(0x7f0000000d80)={0xa0, 0x0, 0x7fff, {{0x1, 0x0, 0x0, 0x96, 0x10001, 0x5, {0x2, 0x1, 0x100000000, 0x1000, 0xfffffffffffffffe, 0x9, 0x6, 0x0, 0x3ff, 0x8000, 0xfffffffd, r3, r4, 0x3, 0x2}}}}, &(0x7f0000000e40)={0x20, 0x0, 0x7fffffff, {0xfe, 0x4, 0x9, 0x5}}}) (async) write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2}, 0x50) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r2}, 0x18) 06:05:34 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0xa) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0xa) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(&(0x7f00000001c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) 06:05:34 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xec}, "72a6caa9be87db7d5e8bc96c22ac4853bfc0138c85fa0d0f91d24d2dad9bcaa6f848e19f21d1ce001f068ca40362901e68299fab651d365b702f85d24e9b3464656bcf6f6a5f1e86af49874a7ee0fc98e73b3c262dfeb8ff5292785c966804ccf653bc564b2565c90c452d50e7785c4cdeae6ad7ad891376f98e85581850aee7e3f4115a71a6cdf33cf0ba6adda5a356b1fd94eacf235446475b45aca554ac091729b8fa7d79cc64a9fc3c992562ac9522d46c6a467e959c793ef7752508e904cf0d2e0dca720f750876e77604ac245c7805a76fbd93dbcdc757070834063ee63b89f5adb13757c739022c01"}, 0xf0) 06:05:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) socket$can_raw(0x1d, 0x3, 0x1) [ 196.557534][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 196.560627][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:34 executing program 3: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) tee(r0, 0xffffffffffffffff, 0x1ff, 0x8) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:34 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_disconn_req={{0x6, 0x7, 0x4}, {0xc306, 0x1ff}}]}}, 0x11) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 196.582559][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:34 executing program 3: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) tee(r0, 0xffffffffffffffff, 0x1ff, 0x8) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) tee(r0, 0xffffffffffffffff, 0x1ff, 0x8) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) 06:05:34 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_disconn_req={{0x6, 0x7, 0x4}, {0xc306, 0x1ff}}]}}, 0x11) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 196.608608][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 197.007680][ T5166] Bluetooth: hci1: command 0x0406 tx timeout 06:05:35 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x905c1, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) write$binfmt_misc(r0, &(0x7f0000000040)={'syz1', "a06dc8df4412f4c7ffba1fcb854e55c39fed194ee6c9cb86cf1a25ff4a0e70ae4efd1fee5c351b8ccb379c545940ca304aa8833682fd0ece42adb4e026dcbb254020"}, 0x46) 06:05:35 executing program 3: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) tee(r0, 0xffffffffffffffff, 0x1ff, 0x8) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) tee(r0, 0xffffffffffffffff, 0x1ff, 0x8) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) 06:05:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) 06:05:35 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_disconn_req={{0x6, 0x7, 0x4}, {0xc306, 0x1ff}}]}}, 0x11) syz_emit_vhci(0x0, 0x0) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (rerun: 64) [ 197.680543][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:35 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRESOCT=0x0], 0x9) 06:05:35 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x905c1, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) write$binfmt_misc(r0, &(0x7f0000000040)={'syz1', "a06dc8df4412f4c7ffba1fcb854e55c39fed194ee6c9cb86cf1a25ff4a0e70ae4efd1fee5c351b8ccb379c545940ca304aa8833682fd0ece42adb4e026dcbb254020"}, 0x46) 06:05:35 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRESOCT=0x0], 0x9) 06:05:35 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:35 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x905c1, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async, rerun: 64) write$binfmt_misc(r0, &(0x7f0000000040)={'syz1', "a06dc8df4412f4c7ffba1fcb854e55c39fed194ee6c9cb86cf1a25ff4a0e70ae4efd1fee5c351b8ccb379c545940ca304aa8833682fd0ece42adb4e026dcbb254020"}, 0x46) (rerun: 64) 06:05:35 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:35 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:35 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRESOCT=0x0], 0x9) 06:05:35 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r10 = socket$can_bcm(0x1d, 0x2, 0x2) r11 = socket$nl_generic(0x10, 0x3, 0x10) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r14, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r15 = gettid() process_vm_writev(r15, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r10, r1, 0xffffffffffffffff, r11, r12, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r13, r2, r14]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0xffffffffffffffff, r16}}}], 0x118, 0x20000801}}], 0x1, 0x2) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="9802000000000000", @ANYRES64=0x0, @ANYBLOB="05000000000000c6248e0002000000000000000200000000000000090000000000000009000000000000000400000000000000030000000000000002000000000000000001000000000000000000800000000004000000000000000300000061000000010000000020000002", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0400000023ab00000000000000000000000000000000010000000000030000000900000040286e000000000004000000000000000100000000000000ff0300000000000001000000010000000200000000000080060000000000000001000000010000000300000000000000d7000000000000004000000000000000000000000000000000000080080000007a09000000e0000009000000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="e400000005000000ee6caf9461eefe00000000020000000000000004000000000000000000000001040000060000000000000002000000000000000800000000000000000000000004100008000000080000000400000000000000ffff000000000000010000000000008001000000000000000900000000000000240c00000000000000000000070000000800000000c0000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f000000ffffffff000000000600000000000000400000000000000010000000080000002f6465762f636163686566696c6573000100000000000000030000000000000009000000000000000010000000000000010000000002000006000000000000000100000000000000ff07000000000000f9ffffffffffffff010000000000000005000000000000005000000005000000590000000040000002000000", @ANYRES32=0xee01, @ANYRES32=r6, @ANYBLOB="400a8b7563b4c02cc665ecd44be9000006008000000000000000000000000000c60000000000000010000000010000002f646576"], 0x298) 06:05:35 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) 06:05:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0x80984120, &(0x7f0000000040)) syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="04020704000000000000caea184c83319898f0da5bbb32c24f3bf83eebfe3d3f59ecc4d0d61a14849a2e45d8dfc79f785410873707dddb85be3f7fefa4c7beb38171dd673115481b49419f158b47ac6f0c5904ef1d77078a8349afb943cd04007a91b1dccaa22f0e6fff41f98c0508286f05e5a43ca8fd57aa56437032c56dea9400000000fabbcaa740165c32bbe2f62379f9bc801c910993430399885192540d13682c7c86c15ee8317dc12b2c9d5a3fb9ac53727c9d905edbc8d47b5361607ae23b79d9de339ca37e9bc01a19b99c8f5ea258ac2eebc92e43af58e2ecda"], 0xa) 06:05:35 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0x0, 0x37}, "37f370b9be67d407dc95742c53f25d6e8a6b72c604558c9054b34e364191bc81aa431653f16ae2f4ac8a12f8e51790c8ea28cbaa7ee7d3"}, 0x3b) [ 197.802200][ T5168] bt_err_ratelimited: 34 callbacks suppressed 06:05:35 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0x0, 0x37}, "37f370b9be67d407dc95742c53f25d6e8a6b72c604558c9054b34e364191bc81aa431653f16ae2f4ac8a12f8e51790c8ea28cbaa7ee7d3"}, 0x3b) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0x0, 0x37}, "37f370b9be67d407dc95742c53f25d6e8a6b72c604558c9054b34e364191bc81aa431653f16ae2f4ac8a12f8e51790c8ea28cbaa7ee7d3"}, 0x3b) (async) [ 197.802213][ T5168] Bluetooth: hci1: SCO packet for unknown connection handle 0 06:05:35 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x4) (rerun: 32) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0x0, 0x37}, "37f370b9be67d407dc95742c53f25d6e8a6b72c604558c9054b34e364191bc81aa431653f16ae2f4ac8a12f8e51790c8ea28cbaa7ee7d3"}, 0x3b) [ 197.820733][ T5168] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 197.842679][ T5168] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 197.849457][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:35 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:35 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03c90200"], 0x4) 06:05:36 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0x80984120, &(0x7f0000000040)) (async) syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="04020704000000000000caea184c83319898f0da5bbb32c24f3bf83eebfe3d3f59ecc4d0d61a14849a2e45d8dfc79f785410873707dddb85be3f7fefa4c7beb38171dd673115481b49419f158b47ac6f0c5904ef1d77078a8349afb943cd04007a91b1dccaa22f0e6fff41f98c0508286f05e5a43ca8fd57aa56437032c56dea9400000000fabbcaa740165c32bbe2f62379f9bc801c910993430399885192540d13682c7c86c15ee8317dc12b2c9d5a3fb9ac53727c9d905edbc8d47b5361607ae23b79d9de339ca37e9bc01a19b99c8f5ea258ac2eebc92e43af58e2ecda"], 0xa) 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03c90200"], 0x4) 06:05:36 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) newfstatat(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) (async) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) (async) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r10 = socket$can_bcm(0x1d, 0x2, 0x2) (async) r11 = socket$nl_generic(0x10, 0x3, 0x10) (async) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r14, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r15 = gettid() process_vm_writev(r15, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r10, r1, 0xffffffffffffffff, r11, r12, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r13, r2, r14]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0xffffffffffffffff, r16}}}], 0x118, 0x20000801}}], 0x1, 0x2) (async) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="9802000000000000", @ANYRES64=0x0, @ANYBLOB="05000000000000c6248e0002000000000000000200000000000000090000000000000009000000000000000400000000000000030000000000000002000000000000000001000000000000000000800000000004000000000000000300000061000000010000000020000002", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0400000023ab00000000000000000000000000000000010000000000030000000900000040286e000000000004000000000000000100000000000000ff0300000000000001000000010000000200000000000080060000000000000001000000010000000300000000000000d7000000000000004000000000000000000000000000000000000080080000007a09000000e0000009000000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="e400000005000000ee6caf9461eefe00000000020000000000000004000000000000000000000001040000060000000000000002000000000000000800000000000000000000000004100008000000080000000400000000000000ffff000000000000010000000000008001000000000000000900000000000000240c00000000000000000000070000000800000000c0000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f000000ffffffff000000000600000000000000400000000000000010000000080000002f6465762f636163686566696c6573000100000000000000030000000000000009000000000000000010000000000000010000000002000006000000000000000100000000000000ff07000000000000f9ffffffffffffff010000000000000005000000000000005000000005000000590000000040000002000000", @ANYRES32=0xee01, @ANYRES32=r6, @ANYBLOB="400a8b7563b4c02cc665ecd44be9000006008000000000000000000000000000c60000000000000010000000010000002f646576"], 0x298) [ 197.883923][ T5168] Bluetooth: hci1: SCO packet for unknown connection handle 713 06:05:36 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03c90200"], 0x4) 06:05:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0x80984120, &(0x7f0000000040)) syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="04020704000000000000caea184c83319898f0da5bbb32c24f3bf83eebfe3d3f59ecc4d0d61a14849a2e45d8dfc79f785410873707dddb85be3f7fefa4c7beb38171dd673115481b49419f158b47ac6f0c5904ef1d77078a8349afb943cd04007a91b1dccaa22f0e6fff41f98c0508286f05e5a43ca8fd57aa56437032c56dea9400000000fabbcaa740165c32bbe2f62379f9bc801c910993430399885192540d13682c7c86c15ee8317dc12b2c9d5a3fb9ac53727c9d905edbc8d47b5361607ae23b79d9de339ca37e9bc01a19b99c8f5ea258ac2eebc92e43af58e2ecda"], 0xa) 06:05:36 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) [ 198.647231][ T5168] Bluetooth: hci1: SCO packet for unknown connection handle 713 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0x81, @none}}}, 0xa) 06:05:36 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0x81, @none}}}, 0xa) [ 198.686345][ T5168] Bluetooth: hci1: SCO packet for unknown connection handle 713 [ 198.752567][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:36 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) (async, rerun: 64) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) (async, rerun: 64) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) newfstatat(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) (async) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r10 = socket$can_bcm(0x1d, 0x2, 0x2) (async) r11 = socket$nl_generic(0x10, 0x3, 0x10) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r14, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r15 = gettid() process_vm_writev(r15, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) (async) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r10, r1, 0xffffffffffffffff, r11, r12, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r13, r2, r14]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0xffffffffffffffff, r16}}}], 0x118, 0x20000801}}], 0x1, 0x2) (async) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f0000000640)=ANY=[@ANYBLOB="9802000000000000", @ANYRES64=0x0, @ANYBLOB="05000000000000c6248e0002000000000000000200000000000000090000000000000009000000000000000400000000000000030000000000000002000000000000000001000000000000000000800000000004000000000000000300000061000000010000000020000002", @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB="0400000023ab00000000000000000000000000000000010000000000030000000900000040286e000000000004000000000000000100000000000000ff0300000000000001000000010000000200000000000080060000000000000001000000010000000300000000000000d7000000000000004000000000000000000000000000000000000080080000007a09000000e0000009000000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYBLOB="e400000005000000ee6caf9461eefe00000000020000000000000004000000000000000000000001040000060000000000000002000000000000000800000000000000000000000004100008000000080000000400000000000000ffff000000000000010000000000008001000000000000000900000000000000240c00000000000000000000070000000800000000c0000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f000000ffffffff000000000600000000000000400000000000000010000000080000002f6465762f636163686566696c6573000100000000000000030000000000000009000000000000000010000000000000010000000002000006000000000000000100000000000000ff07000000000000f9ffffffffffffff010000000000000005000000000000005000000005000000590000000040000002000000", @ANYRES32=0xee01, @ANYRES32=r6, @ANYBLOB="400a8b7563b4c02cc665ecd44be9000006008000000000000000000000000000c60000000000000010000000010000002f646576"], 0x298) 06:05:36 executing program 0: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:36 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0xf6}, @l2cap_cid_signaling={{0xf2}, [@l2cap_info_req={{0xa, 0xbc, 0x2}, {0x6}}, @l2cap_create_chan_rsp={{0xd, 0x4, 0x8}, {0x3ff, 0x80, 0x1372, 0x2}}, @l2cap_create_chan_req={{0xc, 0x8, 0x5}, {0x20, 0x3, 0x3}}, @l2cap_move_chan_req={{0xe, 0x2, 0x3}, {0xc9, 0x5e}}, @l2cap_move_chan_req={{0xe, 0x4, 0x3}, {0xe4, 0xce}}, @l2cap_info_rsp={{0xb, 0x80, 0xbd}, {0x40, 0x0, "23293642c3b67f6ada25a6075c933cbf5be26fcc2456a594affbbf72e9e87052a9087fa4e2817cf37c4e8f81f5e2dd9be60646323a7f29198235e53679e068ab9bed6c9f7b7fee92a29c1636bc53e35e3bb886f014b5f6c6f14bf365fc39b9ed606d9a9958142c26f873aebb3444a5ccdd742eeab246691628491d2a1dd52fe87b4ed2fd750d89f44a1e2ac42a0310c378331d5a019206b593d891b72b94206404b53bb1cfa7afb80bf7a32b4d834ec16f6c4c2a6d11a49422"}}, @l2cap_disconn_rsp={{0x7, 0x1, 0x4}, {0x3, 0xca}}]}}, 0xfb) 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0x81, @none}}}, 0xa) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0x81, @none}}}, 0xa) (async) 06:05:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:36 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0xf6}, @l2cap_cid_signaling={{0xf2}, [@l2cap_info_req={{0xa, 0xbc, 0x2}, {0x6}}, @l2cap_create_chan_rsp={{0xd, 0x4, 0x8}, {0x3ff, 0x80, 0x1372, 0x2}}, @l2cap_create_chan_req={{0xc, 0x8, 0x5}, {0x20, 0x3, 0x3}}, @l2cap_move_chan_req={{0xe, 0x2, 0x3}, {0xc9, 0x5e}}, @l2cap_move_chan_req={{0xe, 0x4, 0x3}, {0xe4, 0xce}}, @l2cap_info_rsp={{0xb, 0x80, 0xbd}, {0x40, 0x0, "23293642c3b67f6ada25a6075c933cbf5be26fcc2456a594affbbf72e9e87052a9087fa4e2817cf37c4e8f81f5e2dd9be60646323a7f29198235e53679e068ab9bed6c9f7b7fee92a29c1636bc53e35e3bb886f014b5f6c6f14bf365fc39b9ed606d9a9958142c26f873aebb3444a5ccdd742eeab246691628491d2a1dd52fe87b4ed2fd750d89f44a1e2ac42a0310c378331d5a019206b593d891b72b94206404b53bb1cfa7afb80bf7a32b4d834ec16f6c4c2a6d11a49422"}}, @l2cap_disconn_rsp={{0x7, 0x1, 0x4}, {0x3, 0xca}}]}}, 0xfb) 06:05:36 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) getpeername$tipc(r2, &(0x7f00000000c0)=@name, &(0x7f0000000100)=0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='memory.events.local\x00', 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={0x0, 0x2, r1, 0xb0a2}) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRES32], 0xffffffffffffff8f) 06:05:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:36 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0xf6}, @l2cap_cid_signaling={{0xf2}, [@l2cap_info_req={{0xa, 0xbc, 0x2}, {0x6}}, @l2cap_create_chan_rsp={{0xd, 0x4, 0x8}, {0x3ff, 0x80, 0x1372, 0x2}}, @l2cap_create_chan_req={{0xc, 0x8, 0x5}, {0x20, 0x3, 0x3}}, @l2cap_move_chan_req={{0xe, 0x2, 0x3}, {0xc9, 0x5e}}, @l2cap_move_chan_req={{0xe, 0x4, 0x3}, {0xe4, 0xce}}, @l2cap_info_rsp={{0xb, 0x80, 0xbd}, {0x40, 0x0, "23293642c3b67f6ada25a6075c933cbf5be26fcc2456a594affbbf72e9e87052a9087fa4e2817cf37c4e8f81f5e2dd9be60646323a7f29198235e53679e068ab9bed6c9f7b7fee92a29c1636bc53e35e3bb886f014b5f6c6f14bf365fc39b9ed606d9a9958142c26f873aebb3444a5ccdd742eeab246691628491d2a1dd52fe87b4ed2fd750d89f44a1e2ac42a0310c378331d5a019206b593d891b72b94206404b53bb1cfa7afb80bf7a32b4d834ec16f6c4c2a6d11a49422"}}, @l2cap_disconn_rsp={{0x7, 0x1, 0x4}, {0x3, 0xca}}]}}, 0xfb) 06:05:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:36 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) getpeername$tipc(r2, &(0x7f00000000c0)=@name, &(0x7f0000000100)=0x10) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='memory.events.local\x00', 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={0x0, 0x2, r1, 0xb0a2}) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRES32], 0xffffffffffffff8f) 06:05:36 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000001580)=[{0x2, 0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000001880)=""/237, 0xed}, {&(0x7f0000001400)=""/216, 0xd8}], &(0x7f0000001540)=[0xb, 0x0, 0x605]}], 0x1) r1 = syz_io_uring_complete(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) r2 = eventfd(0x8) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000001740)=[{&(0x7f0000000080)=""/90, 0x5a}, {&(0x7f0000001640)=""/211, 0xd3}], 0x2) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, r3, 0x6, @inherit={0x58, 0x0}, @devid}) ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000000100)={{}, r3, 0x8, @inherit={0x68, &(0x7f0000001300)=ANY=[@ANYBLOB="008f0000000000000400000000000e0004000800000000fbffff250000000000080000000000000000000000000000000700000000000000040000000000000006fb000000000000070000000000000049f8ffffffffffff7ff600ee9b000000f5b85849d800000000000031f37ffe4a00000000000800009010a382019cb74561d7c8929f5a537f8c15ea2159fb32f023f12c9d00510c993d673651f43a981292ac07584e798b88d9bec44068520fc876dc48ba2e2be5cbcf9c1e09fa2cc0655e89d40e85b6cc10b8a7fcc5088034fb9773fe34f7221d9f6fbe7ce7816c813a6e"]}, @name="145fc607f0f1a7db5b9d286582a3e92e6a6cc0fbd070ac0e77604b825c1cc63371c574b4635f0d5f34a9e97900a119f02278fc7f391a18d1d4705b528581406144a48573dd3918149ecf53796c36b0aac7f41da7143983fd4d89b0b59b0c199c5f0bc15467695ada9a3b66d53ac2cdc695b7b1bc991d22cdf470339e06ac3613ff411fd2224960901811ab1589320b20e50a0401b8b118a97d29fa5d9a92b45d5f10f119e2f7f6b350416ef5e1a6ab8f11888771df0e6b56ec73677b6a7d546d6de9f190dea44aee57e7ee1fc7fd40e86b609f46d3389d0dd2d0b11aa56897f2eedc3de8051734df926b000989a81efff5be3f0a3f5e82fcff46fc3afeb52210dd33a1600781369094970af41b4719febc4710abdf99520030f96e084405375f1039876037ed65b0463776be10b0ba48d6a22af5f4f73b9ce0051170ffd3ab00b09c3ea83bdca7826997cbbee32b1cf30064ea273058d9aa1f6749fd65f9a803008f67cb77e653f0f3486b9b545c4b03dd43920d2be3556fb85d7257c84b9d2396dbba1a7bf1a287532e8ebd565caa296ad0d3191326473df92e2f3270bbe4f870746036322e3f91a82bcd31b3eb4bb1959306096e5eb0bd9751f4456c311e46d34ed4efb5a859a28cb64ea090ac0792c9dfec57d6b433f0ab54de182efa4491e0a0f3e3636cffdddf0c11810c9849f4bca699f1f062c1d70f4fe25862befdfcd29ffd1d9032b0c41e13681b67ae14613adc4d63a0a1b4b8994f5dcd7f4c6c93a6b73914c5add639b84d8e602972196f1b28eb63bcbad6b5e0fa301b880844409914147c632e86cdcfa930a506479f85baa2517d8618610e49197dff2c4e4c3152c76cda19d734354847cdcba04f281270c08b383b23f5ca513fcac8b71a8fbdc852f8f56d39438918a2d672f9e13bbf9b925af33593c376f8af80143f96bdefcef044b0532b3ae60d4ca89b682065abed8d1c7470b52b8c1b58e1683ecd87aabc56e86e72c8384af9fd262f073af8b4fe850a6e0dd7754d13c055544dc6bf07d4e9b10ea037444c02576a674a3a1b299be4a2ac947b157d07da69ac14c1f5a904adc07be9e71612197d45c3fe0e4d0e845910dd2bfc899d38868ed399bb1b814b2c6d2c07ea8f0ba0886f25cac035d8f345fe0c4c63bba90a6a6733c9c065084b5810f07bf0996821e003b9c3a70839ffd91e54dae62a8513cbe32e5a28577cb95b0259ffbda8f6a6530d9946464d097863724b736cd8642fb65012d0d8af394bf720c225a1d33b01c8fdda787163655ff348ececa8d5238f2912d646a4e2ec5cda3a96d0dc162c0ec36e643f5b89bd54b81874092dd5594d564a0e951024653b5458935ac3a61fd486f335c48ad065ee4e641352c738f1a86b55ef7aa45d8e8fb8a08560b05fc97ba17dabb0f8f02ad8a703c535e8753d7b3189db222f338b9efb1ad4dbd30dbda9d40c1c975f728b3d0bb62ed99aa4ad630dc2b1f51d55205c5948c685849f155386271e7fa14ee560378344e03bdb3b607ea09e200e511578e72861794c409bb51ceb73cc12b521aee44a01523dc8a8b803386677c0a3dad9fdf7af878aaa49997ce74add6e8a915907bea2fbb375424504208de6b3d9f3c0b17838f84aa690b1bd167984ea47ca62365add7cfb57b33532e386e3bdb2fd7a746fab1b7375a5ccbfcf191de52a9c8eae57c1ae31eb5f468cc29bb28b8cdc84c093324c3d621ea11b21ea5dbe239426c68c94b74f8df85e9f4fab50544799b8e644d14d955150947fde4fd1b664f920eaacd51924265779fcb6bc426ee8be1a1d5756f070cf828a23cdf1fb87da2119ba6f8b8a075f28168a3d4ae91f0a2fe2257928f712e59dab8a3ccaebedd153a667c8569dfbd2b2d5a9db74e43fa822ce1246247b2588dd92cbe6ebd83b37ecf91b93bcdd8fca47751ec8ff34c2bcbace6f5f33e8694fe125fdc73775c5ce2733eada22ac1028e2cf274f8106f9f0d5bdc633c68d8abf16cab429ea4e1b8bcd38bebec49bb4f3b0fb18f1df3aeaf292227327d6ce1664789439eca72debf6b1d798c94a9145f98970b0ed29417562e3f79107567f572892b3542509e100950540f70c079e24a291d4f22df2c30cf86f8b4689b2368a8b8ec15b79c81cb3baa78c00d3317a23b9e07aa65624f3b4a3c0d35b817cb22f50351be860f518cc2b3c7733916184c6c91dd8d43263021fec1575724dca4e312634af0ac001d4ba85f87e4639ccef2f038d09007ab76f497b610c47ed2806fcc54e5453558c6dd56981cad1d77c0df063030e1ba6081a0cc6d5e714ef6e90eb4d731c813b5f5fa74df9c5859e39cd8c16b3efe8afbc54cae62b817cb060a74b267c69f645cf2255de510d410a140268c620956b5249f99f3003b561203811db4fa9cde68cbdf2ef0ca1776d747a1396be1c7ccda06467d0c5d0afce4851d53c8e920558fbcb97cc07bbeab633020af59a6d96d4e20bbcbbf356b7b82f055145b5534eeb6bb2dd0ad75aa5e62406ae8d3ec1c0a4e25d85cfb0341cfcabeea4f0c886a049c0740a1d50316e2b1d30ae9d8f97c1dd831381a5a8b0fd0a65de9fe6e46b38fabf8f2126b413dc02070519db2985d3ffb510561b533ddfc21886614180980de74f4c6ed3429b4cb91c064c2d533f4a0a1097fa5593849e2128c8ecdc72ed27dc0da290f52de08f579f7a75f01463fe59cc257e6ad62f1e3fae954bb32ac13e2bb29aaa261e8c9249d24d5b79fdfc25446b2a0fcb78ac635465863a8a4558ec7b562b84308c2a1f481dfec7db23c4c895e6c17faea9db10d7a15ce36278e4194404162936f8f8ba89f0f462fd1e5db955d902c488a1c4821e7cc08dc90b6422c0bf302647882c14757dcab945f5b06c3fcba59cd09dfacdcdbcf21c1206d2fbad4b0f487c8187cde5463c339e7939368e7301e96c0148c375829c88d63042ece7e7641316aae9a80a1103024178b95d65ec829c1a95405965b53d90a56aeae14dc7d2c410c3e03db2f493aa1b21fb3e630b4301119316f6cd35ce369d626e27abff286326920ab73083ac8fb6f94bc1593f10c27d0ba352dd21eeab9c24c46dbe5ba0df03635476570b9ec54f4033c2b9e321e325872bd37f71d94921c7514f7ad0d8ff784d427e3bd072769d8d5473928371384b05743f0fb6aee9144f3f4604f54668cca76e60af106fe9f91567ccc80159e00f6179756ae9973f88798854ff25fc57a2d9ae068d337e2953eaa0cf7509b8cf574b3d8d35ae8ea608efc397f9fdbd95a87215674247cf88da2e82a09b11b3df0e4c305515371b78c2307f9232590bcdf028ecfef6788c912244c616cef2a420066c62a2d70f6248b895c7a5c917ca8c73743b277d6b63cbce672b8fc3aa4da17545dfdce9a1998373a1c244fed716615143014114fde36cc535244cabbe81ce0cd690151c0e22937322324580e960377690e7a659e23bc9d521f8c323cfb1bc324142178ede6ddf46e74e1b120551f426c1d3e4f086be069d60125c6012cb2e93fceb64a703bd4ee98ab53081351366662b95cbdf892c9efe784d98122974b03ffcc6ae0e455c2214bb53937f63ab7fff9bf4c348b845113d849eccbf2934c8cf4f3d026b136d096eacd61b26a18ee85c826b86ab33756ac9cdb7587eba7c6c3e8382ec089f2a3200bf48c7a4b13ae9d80607b9460a99189720e9d56c341d936fb5ab0b7ab706569d866787d5ff19eca93281d81fa2c9a83e690107706fb49a2a6d4208e3708776d2a162d8dbd2f3ca23fd12c52225d537fdadd850b700c182639a0677c4b085ba9c07210b3310d19779f57e9a262011640b2d7f983102857accb7ea4c5b9772e033c003458bf593c17f137ef50c228988014126b126560663883db7a11abebc5b690b88bd5b8975f1c09eb41ce753927348344c0e6f91f79171097e73eccd35c8c2c2e60bf3b208781494721db9ac0bac62477e0c76a147d0072b6f7435210266d98fd4199d9829ac1511ce78d3dd8a0b97c31f699f97d9daeed0c17a3d591d8ab90914bb4ec5234914ade432fd77882447688b10c8fe92494b527c72a3de4921921f75e9fa688bc06d1dbb383ef9e05a403d56dc908dcf7137e6c0b786ae49d2970101fb042e045d0c3fd5854fb3f862a45541fee98eb20117535228fc3d9e97677d3f0aa9c2ceb1ab4f98fdf05042a7fe631df0fed830d804db9856aa8969caf9d3d248b0fc8ff9ef08de67b8bf6241475f50c7f0d89709065eef6796a5a5fc2ac38625893cb758a78a7fcc9ffe2b81908d58337bdd5782c850b3d02a0ae606967b79ccf7d0c86d2158afd75527970beaba8509dba56f3bb956ab01fc268b5193b0629012c8966d91da105ffaf3289fc6ebeb342b68c6bda90175757c902c74954cf3a19eb3fd3f06849ba00369f71b0206a126e4c2766345db5bf3775a999cdf9bfb0b74737d92e54015c42be8ef86a630ec35122e315a0faa20264cac024f0617597d7d1f762bf3a26d6beafb1813a04e5a80b5809a43e18f2cdd247ae6f921ed1ce6af23778a081e0d9932955636b85152ab3ec6563e67565a13b4f6a7df2e66eaf3ef18c4d90b86b3b7f97431a833fbda42b76496ba673210c2d7403534e2aa372b9ae3a2bb061924118d6cdda3a902133e264abf1af3ad02437c24b8c788b2998c434d74d17847ebdaf13c6ff2341513abcf7d4b95240ba50b6ec808cacbee0011ff6e66ee4e384cb72385af8c93ba6289e6192c1eab497c2a1eb74f91ab4ea847bda159875b5d1d5dc80f0475a9e15b633295446f4884f7886e3932badee81295d9ed3a8af7b8f8159f8206fce45ea871acbb4484be55b44be52d4ec8167a4a89cd3cdb476cdd23f304d7b799122580f91456f965fbb41daac40885d21cb40aa845d9c9aff0c5c12a54ad9e2e61adfde4e4426dc3dd8491b0777bb7e8562d3a4c14c987c35b228e990d9551e71d85427b80be8afbc0cb3d39664246c9aa35f6de70bcc1a3f93cb76076d0a2da8a24a820ba4de4b90e5941204f2c044520e90dbd01f5fc6a6a8babf293beccb72ba6a39864742679ac109d95645a0668c5075ec3a75e773b9d03735dcad109502a1cb5f0e997776d4d3ea0e35dc981da5019dfebc69e72d3a92a151b294938e01f04822424152322d70f2e4868af169af022ae5333fb0366c7f85c4cb005441c7563f2ed3a4829f4e1a3b9f53c2bd39aad47eebb3a4329d55fceb5af3f0dcd15b401af75f294f98548e253a084314b4de605c71fad1296ffe997552114bb2488d9bedbef6bbb3d0f8a4cb83884ed497ec95cb9725861d55303f248bc9966025e1942624d7b4624966d7c49db450fe557ff7602bf9af7e97d9e2d3628357f55e61804b5ac5f0bffa232261adcda5ccac4c7a60a584431d7ecd81bf274b6a662bc9772954b84573363c0c49f60e93a9efb1d169992b1284e31ff60c8960996023a64a04a16283e19df6eaec54b9e0006ecfa61474fd38c527e87714f2d4f3a6c2bdc6458053686b86581ab6d9240e211c193b890c67299e69c69c2ea1f84d7a24bb004ce7dd17f9128716d04ca15b9d0100a7575f15ca137772c2d5add7aebb866540fd1d5d56661d41fdbf9d3668e9f78645d486c174c1b55e266401caf88a7f52f4169f9b5f181df84e01fc35a46760270eb53b4dca64534c7836158bb8be92edc72ce662d9ce693a8b83e2ee9e82f18d863cc"}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:36 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) getpeername$tipc(r2, &(0x7f00000000c0)=@name, &(0x7f0000000100)=0x10) (async) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='memory.events.local\x00', 0x0, 0x0) (async) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={0x0, 0x2, r1, 0xb0a2}) (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRES32], 0xffffffffffffff8f) 06:05:36 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0x0, 0x1, 0x2, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0x32, 0x4}, {0x8, 0x9}}}}, 0x11) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x74}, "32c63ea1373cd6afec41112c4a4a92e7fe790c60f818f6f5c2f815242621fbf40707012af876416bb0031d08439be98d6c4a50eac73a1eb4ec2b65971da0b3b1fbb6eef597af4e7ee94bf328ead5b8062c3d50fa8ce2a8e274983916ef1b19d87c7828700e6cf59cab4c90bcedc7a8561adbd1e2"}, 0x78) 06:05:36 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000001580)=[{0x2, 0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000001880)=""/237, 0xed}, {&(0x7f0000001400)=""/216, 0xd8}], &(0x7f0000001540)=[0xb, 0x0, 0x605]}], 0x1) r1 = syz_io_uring_complete(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) (async) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) r2 = eventfd(0x8) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000001740)=[{&(0x7f0000000080)=""/90, 0x5a}, {&(0x7f0000001640)=""/211, 0xd3}], 0x2) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, r3, 0x6, @inherit={0x58, 0x0}, @devid}) ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000000100)={{}, r3, 0x8, @inherit={0x68, &(0x7f0000001300)=ANY=[@ANYBLOB="008f0000000000000400000000000e0004000800000000fbffff250000000000080000000000000000000000000000000700000000000000040000000000000006fb000000000000070000000000000049f8ffffffffffff7ff600ee9b000000f5b85849d800000000000031f37ffe4a00000000000800009010a382019cb74561d7c8929f5a537f8c15ea2159fb32f023f12c9d00510c993d673651f43a981292ac07584e798b88d9bec44068520fc876dc48ba2e2be5cbcf9c1e09fa2cc0655e89d40e85b6cc10b8a7fcc5088034fb9773fe34f7221d9f6fbe7ce7816c813a6e"]}, @name="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"}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:36 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) [ 199.155692][ T5168] Bluetooth: hci0: ACL packet for unknown connection handle 0 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000001240)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x109a}, @l2cap_cid_signaling={{0x1096}, [@l2cap_move_chan_req={{0xe, 0x5, 0x3}, {0x0, 0xcc}}, @l2cap_info_rsp={{0xb, 0x8, 0x1004}, {0x3a, 0xc66, "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"}}, @l2cap_info_rsp={{0xb, 0x22, 0x83}, {0x4a, 0xff, "01745c1cc0461a38506ffe061453269cde796c99e19fc7fc1b5f5c1073fcab782ccaaaf37a922033176ec3082e1e31f775dd05eacca7286311555a8294410995e4210f0a0000000000007d6b8a759af0ff37ba1eedf4c43b17e26e8908e81ff3d157ee3752cddfa8528a016d6968764c42006af503d016fa9e181db57b8de0"}}]}}, 0x109f) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_stack_internal={{0xfd, 0xc3}, {0x8, "ccb9de5bff41cde5c787757c3dc2a1bcc153fe3e6fff9643bbb6cf2ef14f335848017bfccdf62f567a10cb58a243c882d5f26da3721706a9bab1543d2ca65cbd9e5f024621094ebc12cf5d9ba6f0bea21883ea86112c5e56efc5ccacd2762f742cb49ecb60a81c16921f72aa3984ffb48590097b7da5352022901307aa6b20bb888ab888bef8aa356c3a1eed64f0cce9b577dd95da9379f01f151e789f5ae8c65ba7c81207e66aa1925e48a559d0b3fa4bc330b3497796e8c129b1241e001f0798"}}}, 0xc6) 06:05:36 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0x0, 0x1, 0x2, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0x32, 0x4}, {0x8, 0x9}}}}, 0x11) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x74}, "32c63ea1373cd6afec41112c4a4a92e7fe790c60f818f6f5c2f815242621fbf40707012af876416bb0031d08439be98d6c4a50eac73a1eb4ec2b65971da0b3b1fbb6eef597af4e7ee94bf328ead5b8062c3d50fa8ce2a8e274983916ef1b19d87c7828700e6cf59cab4c90bcedc7a8561adbd1e2"}, 0x78) 06:05:36 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000001580)=[{0x2, 0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000001880)=""/237, 0xed}, {&(0x7f0000001400)=""/216, 0xd8}], &(0x7f0000001540)=[0xb, 0x0, 0x605]}], 0x1) r1 = syz_io_uring_complete(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) r2 = eventfd(0x8) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000001740)=[{&(0x7f0000000080)=""/90, 0x5a}, {&(0x7f0000001640)=""/211, 0xd3}], 0x2) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, r3, 0x6, @inherit={0x58, 0x0}, @devid}) ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000000100)={{}, r3, 0x8, @inherit={0x68, &(0x7f0000001300)=ANY=[@ANYBLOB="008f0000000000000400000000000e0004000800000000fbffff250000000000080000000000000000000000000000000700000000000000040000000000000006fb000000000000070000000000000049f8ffffffffffff7ff600ee9b000000f5b85849d800000000000031f37ffe4a00000000000800009010a382019cb74561d7c8929f5a537f8c15ea2159fb32f023f12c9d00510c993d673651f43a981292ac07584e798b88d9bec44068520fc876dc48ba2e2be5cbcf9c1e09fa2cc0655e89d40e85b6cc10b8a7fcc5088034fb9773fe34f7221d9f6fbe7ce7816c813a6e"]}, @name="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"}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) io_uring_register$IORING_REGISTER_RING_FDS(r0, 0x14, &(0x7f0000001580)=[{0x2, 0x0, 0x0, &(0x7f0000001500)=[{&(0x7f0000001880)=""/237, 0xed}, {&(0x7f0000001400)=""/216, 0xd8}], &(0x7f0000001540)=[0xb, 0x0, 0x605]}], 0x1) (async) syz_io_uring_complete(0x0) (async) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)) (async) eventfd(0x8) (async) io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f0000001740)=[{&(0x7f0000000080)=""/90, 0x5a}, {&(0x7f0000001640)=""/211, 0xd3}], 0x2) (async) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)) (async) ioctl$BTRFS_IOC_SNAP_CREATE_V2(0xffffffffffffffff, 0x50009417, &(0x7f0000000300)={{}, r3, 0x6, @inherit={0x58, 0x0}, @devid}) (async) ioctl$BTRFS_IOC_RM_DEV_V2(r2, 0x5000943a, &(0x7f0000000100)={{}, r3, 0x8, @inherit={0x68, &(0x7f0000001300)=ANY=[@ANYBLOB="008f0000000000000400000000000e0004000800000000fbffff250000000000080000000000000000000000000000000700000000000000040000000000000006fb000000000000070000000000000049f8ffffffffffff7ff600ee9b000000f5b85849d800000000000031f37ffe4a00000000000800009010a382019cb74561d7c8929f5a537f8c15ea2159fb32f023f12c9d00510c993d673651f43a981292ac07584e798b88d9bec44068520fc876dc48ba2e2be5cbcf9c1e09fa2cc0655e89d40e85b6cc10b8a7fcc5088034fb9773fe34f7221d9f6fbe7ce7816c813a6e"]}, @name="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"}) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) [ 199.195380][ T5168] Bluetooth: hci0: ACL packet for unknown connection handle 0 06:05:36 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0x0, 0x1, 0x2, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0x32, 0x4}, {0x8, 0x9}}}}, 0x11) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x74}, "32c63ea1373cd6afec41112c4a4a92e7fe790c60f818f6f5c2f815242621fbf40707012af876416bb0031d08439be98d6c4a50eac73a1eb4ec2b65971da0b3b1fbb6eef597af4e7ee94bf328ead5b8062c3d50fa8ce2a8e274983916ef1b19d87c7828700e6cf59cab4c90bcedc7a8561adbd1e2"}, 0x78) 06:05:36 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) [ 199.213522][ T5168] Bluetooth: hci0: ACL packet for unknown connection handle 0 06:05:36 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002240)={&(0x7f00000021c0)={0x7c, 0x0, 0x800, 0x70bd2d, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}]}, 0x7c}, 0x1, 0x0, 0x0, 0xc008}, 0x8000) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) read$FUSE(r0, &(0x7f0000000040)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_DIRENTPLUS(r2, &(0x7f00000020c0)={0xa8, 0x0, r3, [{{0x4, 0x1, 0xd1, 0x5, 0x0, 0x4, {0x0, 0x3fe2, 0xde, 0x8, 0x6, 0x3, 0xa7, 0x8, 0xff, 0xc000, 0xac, 0xee01, 0xffffffffffffffff, 0x3, 0x3ff}}, {0x2, 0x6, 0x0, 0xedb}}]}, 0xa8) 06:05:36 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB='A\x00'], 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_ecred_reconf_req={{0x19, 0x3, 0x4}, {0x1, 0x7f}}}}, 0x11) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT, 0x2) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xd7}, "edcff4a373ce41a2e3ce50c987ddfa913a92633751df80beea6b876bf10930bad9039cfb71e4b2365b1940857a6df4842dc601b7963c50321e3b45e283b9b8ca2c3ad193222d282dcd04c03e9a78421078f8de4b9d0689a790f573a1a67864d40d4c1a54c5967e48c825d041ff7c31e5a6371eca945659a1116850874dacdb74765dfaaf5c2f7b84e4a06b3badd24cbe0bbdb66434c54a0153ca4a25e61cf5eae6c97754e6f0d76bce4ef82ce47c39fa6500e24fd0adc3715a04748e259e388ccbaf691706250d95d7605791b5957fa691415d9b5d3fec"}, 0xdb) 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000001240)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x109a}, @l2cap_cid_signaling={{0x1096}, [@l2cap_move_chan_req={{0xe, 0x5, 0x3}, {0x0, 0xcc}}, @l2cap_info_rsp={{0xb, 0x8, 0x1004}, {0x3a, 0xc66, "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"}}, @l2cap_info_rsp={{0xb, 0x22, 0x83}, {0x4a, 0xff, "01745c1cc0461a38506ffe061453269cde796c99e19fc7fc1b5f5c1073fcab782ccaaaf37a922033176ec3082e1e31f775dd05eacca7286311555a8294410995e4210f0a0000000000007d6b8a759af0ff37ba1eedf4c43b17e26e8908e81ff3d157ee3752cddfa8528a016d6968764c42006af503d016fa9e181db57b8de0"}}]}}, 0x109f) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_stack_internal={{0xfd, 0xc3}, {0x8, "ccb9de5bff41cde5c787757c3dc2a1bcc153fe3e6fff9643bbb6cf2ef14f335848017bfccdf62f567a10cb58a243c882d5f26da3721706a9bab1543d2ca65cbd9e5f024621094ebc12cf5d9ba6f0bea21883ea86112c5e56efc5ccacd2762f742cb49ecb60a81c16921f72aa3984ffb48590097b7da5352022901307aa6b20bb888ab888bef8aa356c3a1eed64f0cce9b577dd95da9379f01f151e789f5ae8c65ba7c81207e66aa1925e48a559d0b3fa4bc330b3497796e8c129b1241e001f0798"}}}, 0xc6) 06:05:36 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000001240)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x0, 0x109a}, @l2cap_cid_signaling={{0x1096}, [@l2cap_move_chan_req={{0xe, 0x5, 0x3}, {0x0, 0xcc}}, @l2cap_info_rsp={{0xb, 0x8, 0x1004}, {0x3a, 0xc66, "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"}}, @l2cap_info_rsp={{0xb, 0x22, 0x83}, {0x4a, 0xff, "01745c1cc0461a38506ffe061453269cde796c99e19fc7fc1b5f5c1073fcab782ccaaaf37a922033176ec3082e1e31f775dd05eacca7286311555a8294410995e4210f0a0000000000007d6b8a759af0ff37ba1eedf4c43b17e26e8908e81ff3d157ee3752cddfa8528a016d6968764c42006af503d016fa9e181db57b8de0"}}]}}, 0x109f) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_stack_internal={{0xfd, 0xc3}, {0x8, "ccb9de5bff41cde5c787757c3dc2a1bcc153fe3e6fff9643bbb6cf2ef14f335848017bfccdf62f567a10cb58a243c882d5f26da3721706a9bab1543d2ca65cbd9e5f024621094ebc12cf5d9ba6f0bea21883ea86112c5e56efc5ccacd2762f742cb49ecb60a81c16921f72aa3984ffb48590097b7da5352022901307aa6b20bb888ab888bef8aa356c3a1eed64f0cce9b577dd95da9379f01f151e789f5ae8c65ba7c81207e66aa1925e48a559d0b3fa4bc330b3497796e8c129b1241e001f0798"}}}, 0xc6) 06:05:36 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB='A\x00'], 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_ecred_reconf_req={{0x19, 0x3, 0x4}, {0x1, 0x7f}}}}, 0x11) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT, 0x2) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xd7}, "edcff4a373ce41a2e3ce50c987ddfa913a92633751df80beea6b876bf10930bad9039cfb71e4b2365b1940857a6df4842dc601b7963c50321e3b45e283b9b8ca2c3ad193222d282dcd04c03e9a78421078f8de4b9d0689a790f573a1a67864d40d4c1a54c5967e48c825d041ff7c31e5a6371eca945659a1116850874dacdb74765dfaaf5c2f7b84e4a06b3badd24cbe0bbdb66434c54a0153ca4a25e61cf5eae6c97754e6f0d76bce4ef82ce47c39fa6500e24fd0adc3715a04748e259e388ccbaf691706250d95d7605791b5957fa691415d9b5d3fec"}, 0xdb) 06:05:36 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0xe0, 0xc8, @any, 0x2, 0x8}}}, 0xe) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_logical_link_complete={{0x46, 0x4}, {0x6, 0xc8, 0x4}}}, 0x7) 06:05:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002240)={&(0x7f00000021c0)={0x7c, 0x0, 0x800, 0x70bd2d, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}]}, 0x7c}, 0x1, 0x0, 0x0, 0xc008}, 0x8000) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async, rerun: 64) read$FUSE(r0, &(0x7f0000000040)={0x2020, 0x0, 0x0}, 0x2020) (rerun: 64) write$FUSE_DIRENTPLUS(r2, &(0x7f00000020c0)={0xa8, 0x0, r3, [{{0x4, 0x1, 0xd1, 0x5, 0x0, 0x4, {0x0, 0x3fe2, 0xde, 0x8, 0x6, 0x3, 0xa7, 0x8, 0xff, 0xc000, 0xac, 0xee01, 0xffffffffffffffff, 0x3, 0x3ff}}, {0x2, 0x6, 0x0, 0xedb}}]}, 0xa8) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB='A\x00'], 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_ecred_reconf_req={{0x19, 0x3, 0x4}, {0x1, 0x7f}}}}, 0x11) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT, 0x2) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xd7}, "edcff4a373ce41a2e3ce50c987ddfa913a92633751df80beea6b876bf10930bad9039cfb71e4b2365b1940857a6df4842dc601b7963c50321e3b45e283b9b8ca2c3ad193222d282dcd04c03e9a78421078f8de4b9d0689a790f573a1a67864d40d4c1a54c5967e48c825d041ff7c31e5a6371eca945659a1116850874dacdb74765dfaaf5c2f7b84e4a06b3badd24cbe0bbdb66434c54a0153ca4a25e61cf5eae6c97754e6f0d76bce4ef82ce47c39fa6500e24fd0adc3715a04748e259e388ccbaf691706250d95d7605791b5957fa691415d9b5d3fec"}, 0xdb) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0xe0, 0xc8, @any, 0x2, 0x8}}}, 0xe) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_logical_link_complete={{0x46, 0x4}, {0x6, 0xc8, 0x4}}}, 0x7) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0xe0, 0xc8, @any, 0x2, 0x8}}}, 0xe) (async, rerun: 32) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_disconn_logical_link_complete={{0x46, 0x4}, {0x6, 0xc8, 0x4}}}, 0x7) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4, 0x38, 0x0, 0x8}}}, 0xa) 06:05:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) [ 199.412709][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4, 0x38, 0x0, 0x8}}}, 0xa) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0x80}}}, 0xa) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040), 0x781200, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000200)={'gre0\x00', &(0x7f00000001c0)={'sit0\x00', 0x0, 0x40, 0x80, 0x0, 0x2, {{0x6, 0x4, 0x0, 0x4, 0x18, 0x66, 0x0, 0xff, 0x29, 0x0, @broadcast, @empty, {[@noop]}}}}}) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0x0, 0xe6}, "b7ff533c7f806a9a6e1c0a813bdae46bab07af8b9aa349cfed4a6c5f126d30f2dcaf85a2c410df22dfd79301866c3057216c662eabe6d399079d12a628c85b699ce35acfefb9e5ddc4f4a2bdc47ab976189f861329a7bcaffdd8e658b64a5d1b0c4bfc7e880e7f44b3c7883e2c37f78c01a84208b92dfeb64a59b44a4ae4e94912c33929478dc49ba84d47ade25f42ced99a8e004b29f47160bc672dedc5e29aaef4afb3e81e1780db3be998035751159b847f5709db0b431a49ca25ab70f4ad6fe72995b0331e50690035a7ea994f308a0450f7ab1bd53135d87f150cbce8fad6136c24f7cb"}, 0xea) [ 199.452899][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002240)={&(0x7f00000021c0)={0x7c, 0x0, 0x800, 0x70bd2d, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5}}]}, 0x7c}, 0x1, 0x0, 0x0, 0xc008}, 0x8000) (async, rerun: 64) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async, rerun: 64) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r2, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) read$FUSE(r0, &(0x7f0000000040)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_DIRENTPLUS(r2, &(0x7f00000020c0)={0xa8, 0x0, r3, [{{0x4, 0x1, 0xd1, 0x5, 0x0, 0x4, {0x0, 0x3fe2, 0xde, 0x8, 0x6, 0x3, 0xa7, 0x8, 0xff, 0xc000, 0xac, 0xee01, 0xffffffffffffffff, 0x3, 0x3ff}}, {0x2, 0x6, 0x0, 0xedb}}]}, 0xa8) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0x80}}}, 0xa) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040), 0x781200, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000200)={'gre0\x00', &(0x7f00000001c0)={'sit0\x00', 0x0, 0x40, 0x80, 0x0, 0x2, {{0x6, 0x4, 0x0, 0x4, 0x18, 0x66, 0x0, 0xff, 0x29, 0x0, @broadcast, @empty, {[@noop]}}}}}) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0x0, 0xe6}, "b7ff533c7f806a9a6e1c0a813bdae46bab07af8b9aa349cfed4a6c5f126d30f2dcaf85a2c410df22dfd79301866c3057216c662eabe6d399079d12a628c85b699ce35acfefb9e5ddc4f4a2bdc47ab976189f861329a7bcaffdd8e658b64a5d1b0c4bfc7e880e7f44b3c7883e2c37f78c01a84208b92dfeb64a59b44a4ae4e94912c33929478dc49ba84d47ade25f42ced99a8e004b29f47160bc672dedc5e29aaef4afb3e81e1780db3be998035751159b847f5709db0b431a49ca25ab70f4ad6fe72995b0331e50690035a7ea994f308a0450f7ab1bd53135d87f150cbce8fad6136c24f7cb"}, 0xea) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0x0, 0xe6}, "b7ff533c7f806a9a6e1c0a813bdae46bab07af8b9aa349cfed4a6c5f126d30f2dcaf85a2c410df22dfd79301866c3057216c662eabe6d399079d12a628c85b699ce35acfefb9e5ddc4f4a2bdc47ab976189f861329a7bcaffdd8e658b64a5d1b0c4bfc7e880e7f44b3c7883e2c37f78c01a84208b92dfeb64a59b44a4ae4e94912c33929478dc49ba84d47ade25f42ced99a8e004b29f47160bc672dedc5e29aaef4afb3e81e1780db3be998035751159b847f5709db0b431a49ca25ab70f4ad6fe72995b0331e50690035a7ea994f308a0450f7ab1bd53135d87f150cbce8fad6136c24f7cb"}, 0xea) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4, 0x38, 0x0, 0x8}}}, 0xa) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4, 0x38, 0x0, 0x8}}}, 0xa) (async) [ 199.456519][ T5168] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 199.495124][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}, {@none}}}, 0x9) [ 199.502292][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 199.503091][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 0 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_simple_pair_complete={{0x36, 0x7}, {0x80}}}, 0xa) (async) r0 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000040), 0x781200, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000200)={'gre0\x00', &(0x7f00000001c0)={'sit0\x00', 0x0, 0x40, 0x80, 0x0, 0x2, {{0x6, 0x4, 0x0, 0x4, 0x18, 0x66, 0x0, 0xff, 0x29, 0x0, @broadcast, @empty, {[@noop]}}}}}) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0x0, 0xe6}, "b7ff533c7f806a9a6e1c0a813bdae46bab07af8b9aa349cfed4a6c5f126d30f2dcaf85a2c410df22dfd79301866c3057216c662eabe6d399079d12a628c85b699ce35acfefb9e5ddc4f4a2bdc47ab976189f861329a7bcaffdd8e658b64a5d1b0c4bfc7e880e7f44b3c7883e2c37f78c01a84208b92dfeb64a59b44a4ae4e94912c33929478dc49ba84d47ade25f42ced99a8e004b29f47160bc672dedc5e29aaef4afb3e81e1780db3be998035751159b847f5709db0b431a49ca25ab70f4ad6fe72995b0331e50690035a7ea994f308a0450f7ab1bd53135d87f150cbce8fad6136c24f7cb"}, 0xea) 06:05:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}, {@none}}}, 0x9) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="042e0b00c80005000100050001005e5e66704669bc8f23cd1278beba50094240de6e6a3df667ed3afa56168b03b2b2690bf1d4680cb3478b7bdd642ac6b3f214542b08ad21cff16f844bdbfed1ed122a84eb5c84f3154e7e22e27459c700e8f6d19bbe6e30a90ce80190d93553486ea1ebdb7f9bbcb3a50b21f9114ab0d4eb2e23f34a8a7b06db45fbfe6ea0d5ffe7b34ab330a3"], 0xe) syz_emit_vhci(&(0x7f0000000180)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xb3}, "a1341b3da0614ff9ec4d3e9546727c0c61309fb29a963ca164699c5c7e17b5dfeb05fd7f7a9bc3021a3dcca425a6763712fd9c701fcf8059da2048eacfc4dad8fd00a1e5b02bf7cb74ff4cd937538463eccbfff7c8bcfbda2824aba7665805c2b3906db225e19674690514a4e433500435685fc95590f200fb710d990fc4262c0628e167789f2ecd37e39c32e5f66c7f8cc00e7fbd47b3b08a4f63a71fc627bf9287f96672aa0b66b99d93583fa4aed19ab28c"}, 0xb7) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0x81, 0x4}, {0x40, 0x1000}}}}, 0x11) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'veth1_to_team\x00', 0x800}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}, {@none}}}, 0x9) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="042e0b00c80005000100050001005e5e66704669bc8f23cd1278beba50094240de6e6a3df667ed3afa56168b03b2b2690bf1d4680cb3478b7bdd642ac6b3f214542b08ad21cff16f844bdbfed1ed122a84eb5c84f3154e7e22e27459c700e8f6d19bbe6e30a90ce80190d93553486ea1ebdb7f9bbcb3a50b21f9114ab0d4eb2e23f34a8a7b06db45fbfe6ea0d5ffe7b34ab330a3"], 0xe) syz_emit_vhci(&(0x7f0000000180)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xb3}, "a1341b3da0614ff9ec4d3e9546727c0c61309fb29a963ca164699c5c7e17b5dfeb05fd7f7a9bc3021a3dcca425a6763712fd9c701fcf8059da2048eacfc4dad8fd00a1e5b02bf7cb74ff4cd937538463eccbfff7c8bcfbda2824aba7665805c2b3906db225e19674690514a4e433500435685fc95590f200fb710d990fc4262c0628e167789f2ecd37e39c32e5f66c7f8cc00e7fbd47b3b08a4f63a71fc627bf9287f96672aa0b66b99d93583fa4aed19ab28c"}, 0xb7) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0x81, 0x4}, {0x40, 0x1000}}}}, 0x11) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0x81, 0x4}, {0x40, 0x1000}}}}, 0x11) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'veth1_to_team\x00', 0x800}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x80}, 0xfffffffffffffff5) 06:05:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, 0x0) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x80}, 0xfffffffffffffff5) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x80}, 0xfffffffffffffff5) (async) 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'veth1_to_team\x00', 0x800}) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="042e0b00c80005000100050001005e5e66704669bc8f23cd1278beba50094240de6e6a3df667ed3afa56168b03b2b2690bf1d4680cb3478b7bdd642ac6b3f214542b08ad21cff16f844bdbfed1ed122a84eb5c84f3154e7e22e27459c700e8f6d19bbe6e30a90ce80190d93553486ea1ebdb7f9bbcb3a50b21f9114ab0d4eb2e23f34a8a7b06db45fbfe6ea0d5ffe7b34ab330a3"], 0xe) (async) syz_emit_vhci(&(0x7f0000000180)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xb3}, "a1341b3da0614ff9ec4d3e9546727c0c61309fb29a963ca164699c5c7e17b5dfeb05fd7f7a9bc3021a3dcca425a6763712fd9c701fcf8059da2048eacfc4dad8fd00a1e5b02bf7cb74ff4cd937538463eccbfff7c8bcfbda2824aba7665805c2b3906db225e19674690514a4e433500435685fc95590f200fb710d990fc4262c0628e167789f2ecd37e39c32e5f66c7f8cc00e7fbd47b3b08a4f63a71fc627bf9287f96672aa0b66b99d93583fa4aed19ab28c"}, 0xb7) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x3, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0x81, 0x4}, {0x40, 0x1000}}}}, 0x11) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1000}, "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"}, 0x1004) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000001540)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xca}, "d02b80f4eb4f8512ec29f196920b80eba50f1b99c3d22603fd67f975d347205678bc304011fc012c202dfe19257515dc7d67abf4e89329f6f03fd968f88c395d43841112b918ae798ddbdb2ae0bb662825e123efb10d5dcd26b870426190dbea1bd7c2e61c71fd2c3f50db6a170dc6682de18ddca09d92613f38ed823eff40f611535a4d23870c225f35fc24fa5ba72785877f052572cea8af6fccfdc42ce619ce1070a58db0fd0ed694b42436b5c09bd5348a41aeea89d785b9090682aa3114e8aa35cb4c9b426dc0d5"}, 0xce) syz_emit_vhci(&(0x7f0000001100)=ANY=[@ANYBLOB="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"/766], 0x2fe) syz_emit_vhci(&(0x7f0000001400)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xed}, "f64d7f9e30c68d10d543214c0008ec0de08d8a66996a06da496dab6e1b40a9b4cb5982e9b525f3743286a4e35ba62fefed8cde886ae4b5c3c9b4612cf0d0e4b9b988d25e68dd95277d6501080345d45098f7850b2b328e3d97e23a664ce5c96e67105a9bdcfdf04d1a0584ba567c3fbc021f256fe17bc233b121854083336460d4e8a722ca62e62a8ac68b4392345905a99d4fd0053b68fa4d74c3d078cde9985c0e85df3c2906abb7229593fbc2dc93e77c59a208bb7866db54bb3a7f493c91c573bf021a6156e6e617b6131fb957afc69326dbcefd6cbed19f1e11db8e8361e349771c6106f25bf19d02a6d7"}, 0xf1) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda}, 0x18) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x80}, 0xfffffffffffffff5) [ 199.508018][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 0 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1000}, "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"}, 0x1004) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000001540)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xca}, "d02b80f4eb4f8512ec29f196920b80eba50f1b99c3d22603fd67f975d347205678bc304011fc012c202dfe19257515dc7d67abf4e89329f6f03fd968f88c395d43841112b918ae798ddbdb2ae0bb662825e123efb10d5dcd26b870426190dbea1bd7c2e61c71fd2c3f50db6a170dc6682de18ddca09d92613f38ed823eff40f611535a4d23870c225f35fc24fa5ba72785877f052572cea8af6fccfdc42ce619ce1070a58db0fd0ed694b42436b5c09bd5348a41aeea89d785b9090682aa3114e8aa35cb4c9b426dc0d5"}, 0xce) syz_emit_vhci(&(0x7f0000001100)=ANY=[@ANYBLOB="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"/766], 0x2fe) (async) syz_emit_vhci(&(0x7f0000001400)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xed}, "f64d7f9e30c68d10d543214c0008ec0de08d8a66996a06da496dab6e1b40a9b4cb5982e9b525f3743286a4e35ba62fefed8cde886ae4b5c3c9b4612cf0d0e4b9b988d25e68dd95277d6501080345d45098f7850b2b328e3d97e23a664ce5c96e67105a9bdcfdf04d1a0584ba567c3fbc021f256fe17bc233b121854083336460d4e8a722ca62e62a8ac68b4392345905a99d4fd0053b68fa4d74c3d078cde9985c0e85df3c2906abb7229593fbc2dc93e77c59a208bb7866db54bb3a7f493c91c573bf021a6156e6e617b6131fb957afc69326dbcefd6cbed19f1e11db8e8361e349771c6106f25bf19d02a6d7"}, 0xf1) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 199.770487][ T5168] Bluetooth: hci1: unexpected event 0x2f length: 763 > 260 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="03861bac72221de37ebe2f9bdc97b304020704000000000000"], 0xa) 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda}, 0x18) 06:05:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, 0x0) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1000}, "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"}, 0x1004) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000001540)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xca}, "d02b80f4eb4f8512ec29f196920b80eba50f1b99c3d22603fd67f975d347205678bc304011fc012c202dfe19257515dc7d67abf4e89329f6f03fd968f88c395d43841112b918ae798ddbdb2ae0bb662825e123efb10d5dcd26b870426190dbea1bd7c2e61c71fd2c3f50db6a170dc6682de18ddca09d92613f38ed823eff40f611535a4d23870c225f35fc24fa5ba72785877f052572cea8af6fccfdc42ce619ce1070a58db0fd0ed694b42436b5c09bd5348a41aeea89d785b9090682aa3114e8aa35cb4c9b426dc0d5"}, 0xce) syz_emit_vhci(&(0x7f0000001100)=ANY=[@ANYBLOB="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"/766], 0x2fe) syz_emit_vhci(&(0x7f0000001400)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xed}, "f64d7f9e30c68d10d543214c0008ec0de08d8a66996a06da496dab6e1b40a9b4cb5982e9b525f3743286a4e35ba62fefed8cde886ae4b5c3c9b4612cf0d0e4b9b988d25e68dd95277d6501080345d45098f7850b2b328e3d97e23a664ce5c96e67105a9bdcfdf04d1a0584ba567c3fbc021f256fe17bc233b121854083336460d4e8a722ca62e62a8ac68b4392345905a99d4fd0053b68fa4d74c3d078cde9985c0e85df3c2906abb7229593fbc2dc93e77c59a208bb7866db54bb3a7f493c91c573bf021a6156e6e617b6131fb957afc69326dbcefd6cbed19f1e11db8e8361e349771c6106f25bf19d02a6d7"}, 0xf1) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1000}, "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"}, 0x1004) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000001540)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xca}, "d02b80f4eb4f8512ec29f196920b80eba50f1b99c3d22603fd67f975d347205678bc304011fc012c202dfe19257515dc7d67abf4e89329f6f03fd968f88c395d43841112b918ae798ddbdb2ae0bb662825e123efb10d5dcd26b870426190dbea1bd7c2e61c71fd2c3f50db6a170dc6682de18ddca09d92613f38ed823eff40f611535a4d23870c225f35fc24fa5ba72785877f052572cea8af6fccfdc42ce619ce1070a58db0fd0ed694b42436b5c09bd5348a41aeea89d785b9090682aa3114e8aa35cb4c9b426dc0d5"}, 0xce) (async) syz_emit_vhci(&(0x7f0000001100)=ANY=[@ANYBLOB="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"/766], 0x2fe) (async) syz_emit_vhci(&(0x7f0000001400)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xed}, "f64d7f9e30c68d10d543214c0008ec0de08d8a66996a06da496dab6e1b40a9b4cb5982e9b525f3743286a4e35ba62fefed8cde886ae4b5c3c9b4612cf0d0e4b9b988d25e68dd95277d6501080345d45098f7850b2b328e3d97e23a664ce5c96e67105a9bdcfdf04d1a0584ba567c3fbc021f256fe17bc233b121854083336460d4e8a722ca62e62a8ac68b4392345905a99d4fd0053b68fa4d74c3d078cde9985c0e85df3c2906abb7229593fbc2dc93e77c59a208bb7866db54bb3a7f493c91c573bf021a6156e6e617b6131fb957afc69326dbcefd6cbed19f1e11db8e8361e349771c6106f25bf19d02a6d7"}, 0xf1) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) [ 199.802286][ T5168] Bluetooth: hci1: unexpected event 0x2f length: 763 > 260 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="03861bac72221de37ebe2f9bdc97b304020704000000000000"], 0xa) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="03861bac72221de37ebe2f9bdc97b304020704000000000000"], 0xa) (async) 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda}, 0x18) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="03861bac72221de37ebe2f9bdc97b304020704000000000000"], 0xa) [ 199.865009][ T5168] Bluetooth: hci0: SCO packet for unknown connection handle 2950 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1}}, 0xfffffffffffffe92) ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000040)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x53}) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0x7, 0xc8, @none, 0x0, 0x9}}}, 0xe) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 199.894481][ T5168] Bluetooth: hci1: unexpected event 0x2f length: 763 > 260 [ 199.933253][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, 0x0) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0x7, 0xc8, @none, 0x0, 0x9}}}, 0xe) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0x7, 0xc8, @none, 0x0, 0x9}}}, 0xe) (async) 06:05:37 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1}}, 0xfffffffffffffe92) ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000040)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x53}) (async) ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000040)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x53}) [ 200.064336][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.066868][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_conn_complete={{0x3, 0xb}, {0x7, 0xc8, @none, 0x0, 0x9}}}, 0xe) (rerun: 32) [ 200.088926][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.092499][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x33}, @l2cap_cid_signaling={{0x2f}, [@l2cap_move_chan_rsp={{0xf, 0x5, 0x4}, {0x3ff, 0x7}}, @l2cap_conf_req={{0x4, 0x7, 0x1b}, {0xe0f0, 0x5, [@l2cap_conf_rfc={0x4, 0x9, {0x2, 0x0, 0x9, 0x0, 0xf801, 0x2a3}}, @l2cap_conf_flushto={0x2, 0x2, 0x7f}, @l2cap_conf_flushto={0x2, 0x2, 0x401}, @l2cap_conf_mtu={0x1, 0x2, 0x9}]}}, @l2cap_conn_req={{0x2, 0xff, 0x4}, {0x964, 0x8a}}]}}, 0x38) [ 200.095304][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.098949][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.101476][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.103816][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.106316][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.109138][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.111975][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r1) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f00000000c0)={'ip6gre0\x00', 0x0, 0x29, 0x7f, 0xe, 0x1, 0x23, @private0, @dev={0xfe, 0x80, '\x00', 0x42}, 0x8000, 0x80, 0xdd, 0x7}}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000140)={'tunl0\x00', 0x0, 0x7, 0x700, 0x4, 0x5, {{0xc, 0x4, 0x3, 0x25, 0x30, 0x64, 0x0, 0x7, 0x4, 0x0, @multicast1, @rand_addr=0x64010100, {[@ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @noop, @generic={0x86, 0xf, "715b3e5bbeca7ee34b66736fae"}, @end]}}}}}) r5 = socket(0x10, 0x803, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="340000001400b59500000000000000000a000000", @ANYRES32=r6, @ANYBLOB="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"], 0x34}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000240)=0x14) r8 = socket$nl_route(0x10, 0x3, 0x0) r9 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r9) getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r10, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) r11 = socket$nl_route(0x10, 0x3, 0x0) r12 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r12) getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r11, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r13, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000280)={@private2, 0x0}, &(0x7f00000002c0)=0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'veth0_vlan\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000003c0)={'syztnl1\x00', &(0x7f0000000340)={'ip6tnl0\x00', 0x0, 0x29, 0x3f, 0x3, 0x9, 0x0, @mcast2, @private2, 0x10, 0x10, 0x3, 0x1}}) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000004c0)={'syztnl0\x00', &(0x7f0000000400)={'erspan0\x00', 0x0, 0x7800, 0x8000, 0x8, 0x523, {{0x23, 0x4, 0x3, 0x9, 0x8c, 0x65, 0x0, 0x2, 0x4, 0x0, @loopback, @rand_addr=0x64010100, {[@ssrr={0x89, 0x7, 0x8f, [@multicast2]}, @rr={0x7, 0x7, 0x1f, [@rand_addr=0x64010102]}, @rr={0x7, 0x1b, 0x43, [@local, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, @multicast1, @dev={0xac, 0x14, 0x14, 0x15}]}, @timestamp={0x44, 0x14, 0xfa, 0x0, 0x4, [0xa5, 0x9, 0x5, 0x6e]}, @ra={0x94, 0x4}, @rr={0x7, 0xf, 0x8d, [@empty, @private=0xa010102, @multicast2]}, @lsrr={0x83, 0x27, 0x7b, [@loopback, @multicast1, @private=0xa010100, @rand_addr=0x64010102, @remote, @remote, @multicast2, @empty, @multicast2]}, @end]}}}}}) sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f0000000fc0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000500)={0xa70, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [{{0x8, 0x1, r2}, {0x194, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xfff}}}, {0x34, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r3}}}]}}, {{0x8}, {0x1c4, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r6}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x84, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x54, 0x4, [{0x9, 0x7, 0x5, 0x3}, {0x8000, 0x3, 0x3f, 0x8}, {0x2, 0x1, 0xe1, 0x1}, {0xfffd, 0x3f, 0xfe}, {0xd6b, 0x2, 0x80, 0x4}, {0x6, 0x2, 0x3f, 0x8001}, {0x8001, 0x20, 0x20, 0x8}, {0x5, 0x4, 0x6, 0xff}, {0xabb0, 0x20, 0x1f, 0x1ff}, {0x9, 0x9, 0x8d}]}}}]}}, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffffb}}}]}}, {{0x8}, {0x144, 0x2, 0x0, 0x1, [{0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x3, 0x7, 0x9, 0x200}, {0x1250, 0x80, 0xf8, 0x2}, {0x2ab, 0x5, 0x0, 0x5}, {0x1ff, 0x53, 0xc5, 0x202e4020}, {0x8001, 0xfe, 0x4, 0x10000}, {0x9, 0x8, 0x9, 0x4000}, {0x5, 0x5, 0x3, 0x3f}]}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r7}, {0x104, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0xff, 0x7, 0x40, 0xffffffff}, {0xffff, 0x6, 0x0, 0xf1}]}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x20}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r13}}}]}}, {{0x8}, {0x58, 0x2, 0x0, 0x1, [{0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x1, 0xff, 0x4, 0x3}, {0x3, 0x9, 0x9, 0x8}, {0x6, 0x0, 0x81, 0x6}, {0x7, 0x8, 0x25, 0x3f}]}}}]}}, {{0x8, 0x1, r14}, {0x214, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xa5}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x1000}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x3ff}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r15}}}]}}, {{0x8}, {0x1d4, 0x2, 0x0, 0x1, [{0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x0, 0x0, 0x80, 0x7}, {0x6, 0x2, 0x2, 0x9cf}, {0x101, 0x10, 0xfa, 0x5}, {0x5, 0x1f, 0x2, 0xebc}, {0x13f8, 0x2, 0x5, 0x7}]}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xbf0}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r16}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r17}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xa5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x604}}}]}}]}, 0xa70}, 0x1, 0x0, 0x0, 0x4004840}, 0x0) [ 200.115061][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.120369][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.123570][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.127053][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.129978][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.132427][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.134860][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.137416][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.140033][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.142491][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.144977][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.145751][ T8665] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 200.147293][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.147314][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.147331][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.147348][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.160076][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.160230][ T8665] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 200.162184][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.162205][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.162223][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.162249][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.171930][ T8665] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 200.173552][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.181099][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.183171][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.185199][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.187404][ T5168] Bluetooth: Unexpected continuation frame (len 51) 06:05:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) 06:05:37 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1}}, 0xfffffffffffffe92) ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000040)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x53}) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) write$FUSE_BMAP(r1, &(0x7f0000002080)={0x18, 0x0, 0x0, {0x1}}, 0xfffffffffffffe92) (async) ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000040)={@private1={0xfc, 0x1, '\x00', 0x1}, 0x53}) (async) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x33}, @l2cap_cid_signaling={{0x2f}, [@l2cap_move_chan_rsp={{0xf, 0x5, 0x4}, {0x3ff, 0x7}}, @l2cap_conf_req={{0x4, 0x7, 0x1b}, {0xe0f0, 0x5, [@l2cap_conf_rfc={0x4, 0x9, {0x2, 0x0, 0x9, 0x0, 0xf801, 0x2a3}}, @l2cap_conf_flushto={0x2, 0x2, 0x7f}, @l2cap_conf_flushto={0x2, 0x2, 0x401}, @l2cap_conf_mtu={0x1, 0x2, 0x9}]}}, @l2cap_conn_req={{0x2, 0xff, 0x4}, {0x964, 0x8a}}]}}, 0x38) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) r0 = socket$nl_route(0x10, 0x3, 0x0) (async) r1 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r1) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f00000000c0)={'ip6gre0\x00', 0x0, 0x29, 0x7f, 0xe, 0x1, 0x23, @private0, @dev={0xfe, 0x80, '\x00', 0x42}, 0x8000, 0x80, 0xdd, 0x7}}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000140)={'tunl0\x00', 0x0, 0x7, 0x700, 0x4, 0x5, {{0xc, 0x4, 0x3, 0x25, 0x30, 0x64, 0x0, 0x7, 0x4, 0x0, @multicast1, @rand_addr=0x64010100, {[@ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @noop, @generic={0x86, 0xf, "715b3e5bbeca7ee34b66736fae"}, @end]}}}}}) (async) r5 = socket(0x10, 0x803, 0x0) (async) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="340000001400b59500000000000000000a000000", @ANYRES32=r6, @ANYBLOB="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"], 0x34}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000240)=0x14) (async) r8 = socket$nl_route(0x10, 0x3, 0x0) r9 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r9) (async) getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r10, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) (async) r11 = socket$nl_route(0x10, 0x3, 0x0) (async) r12 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r12) (async) getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r11, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r13, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) (async) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000280)={@private2, 0x0}, &(0x7f00000002c0)=0x14) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'veth0_vlan\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000003c0)={'syztnl1\x00', &(0x7f0000000340)={'ip6tnl0\x00', 0x0, 0x29, 0x3f, 0x3, 0x9, 0x0, @mcast2, @private2, 0x10, 0x10, 0x3, 0x1}}) (async) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000004c0)={'syztnl0\x00', &(0x7f0000000400)={'erspan0\x00', 0x0, 0x7800, 0x8000, 0x8, 0x523, {{0x23, 0x4, 0x3, 0x9, 0x8c, 0x65, 0x0, 0x2, 0x4, 0x0, @loopback, @rand_addr=0x64010100, {[@ssrr={0x89, 0x7, 0x8f, [@multicast2]}, @rr={0x7, 0x7, 0x1f, [@rand_addr=0x64010102]}, @rr={0x7, 0x1b, 0x43, [@local, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, @multicast1, @dev={0xac, 0x14, 0x14, 0x15}]}, @timestamp={0x44, 0x14, 0xfa, 0x0, 0x4, [0xa5, 0x9, 0x5, 0x6e]}, @ra={0x94, 0x4}, @rr={0x7, 0xf, 0x8d, [@empty, @private=0xa010102, @multicast2]}, @lsrr={0x83, 0x27, 0x7b, [@loopback, @multicast1, @private=0xa010100, @rand_addr=0x64010102, @remote, @remote, @multicast2, @empty, @multicast2]}, @end]}}}}}) sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f0000000fc0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000500)={0xa70, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [{{0x8, 0x1, r2}, {0x194, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xfff}}}, {0x34, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r3}}}]}}, {{0x8}, {0x1c4, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r6}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x84, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x54, 0x4, [{0x9, 0x7, 0x5, 0x3}, {0x8000, 0x3, 0x3f, 0x8}, {0x2, 0x1, 0xe1, 0x1}, {0xfffd, 0x3f, 0xfe}, {0xd6b, 0x2, 0x80, 0x4}, {0x6, 0x2, 0x3f, 0x8001}, {0x8001, 0x20, 0x20, 0x8}, {0x5, 0x4, 0x6, 0xff}, {0xabb0, 0x20, 0x1f, 0x1ff}, {0x9, 0x9, 0x8d}]}}}]}}, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffffb}}}]}}, {{0x8}, {0x144, 0x2, 0x0, 0x1, [{0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x3, 0x7, 0x9, 0x200}, {0x1250, 0x80, 0xf8, 0x2}, {0x2ab, 0x5, 0x0, 0x5}, {0x1ff, 0x53, 0xc5, 0x202e4020}, {0x8001, 0xfe, 0x4, 0x10000}, {0x9, 0x8, 0x9, 0x4000}, {0x5, 0x5, 0x3, 0x3f}]}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r7}, {0x104, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0xff, 0x7, 0x40, 0xffffffff}, {0xffff, 0x6, 0x0, 0xf1}]}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x20}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r13}}}]}}, {{0x8}, {0x58, 0x2, 0x0, 0x1, [{0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x1, 0xff, 0x4, 0x3}, {0x3, 0x9, 0x9, 0x8}, {0x6, 0x0, 0x81, 0x6}, {0x7, 0x8, 0x25, 0x3f}]}}}]}}, {{0x8, 0x1, r14}, {0x214, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xa5}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x1000}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x3ff}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r15}}}]}}, {{0x8}, {0x1d4, 0x2, 0x0, 0x1, [{0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x0, 0x0, 0x80, 0x7}, {0x6, 0x2, 0x2, 0x9cf}, {0x101, 0x10, 0xfa, 0x5}, {0x5, 0x1f, 0x2, 0xebc}, {0x13f8, 0x2, 0x5, 0x7}]}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xbf0}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r16}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r17}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xa5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x604}}}]}}]}, 0xa70}, 0x1, 0x0, 0x0, 0x4004840}, 0x0) [ 200.274571][ T5168] Bluetooth: Unexpected continuation frame (len 51) 06:05:37 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0x33}, @l2cap_cid_signaling={{0x2f}, [@l2cap_move_chan_rsp={{0xf, 0x5, 0x4}, {0x3ff, 0x7}}, @l2cap_conf_req={{0x4, 0x7, 0x1b}, {0xe0f0, 0x5, [@l2cap_conf_rfc={0x4, 0x9, {0x2, 0x0, 0x9, 0x0, 0xf801, 0x2a3}}, @l2cap_conf_flushto={0x2, 0x2, 0x7f}, @l2cap_conf_flushto={0x2, 0x2, 0x401}, @l2cap_conf_mtu={0x1, 0x2, 0x9}]}}, @l2cap_conn_req={{0x2, 0xff, 0x4}, {0x964, 0x8a}}]}}, 0x38) [ 200.290531][ T8671] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 200.297896][ T5168] Bluetooth: Unexpected continuation frame (len 51) 06:05:37 executing program 3: r0 = add_key$fscrypt_v1(&(0x7f0000000100), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28a5668b029a561dd502c1208a93e581c166ad2699064bbd27b24859bb2dff33a3a9835000af9d51ed5bef3d6b520d260804d000"}, 0x48, 0x0) keyctl$setperm(0x5, r0, 0x0) add_key(&(0x7f0000000040)='syzkaller\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f00000001c0), 0x0, r0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000000)='user\x00', &(0x7f0000000040)=@secondary) 06:05:37 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) r0 = socket$nl_route(0x10, 0x3, 0x0) (async) r1 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r1) (async) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) (async) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'ip6gre0\x00', &(0x7f00000000c0)={'ip6gre0\x00', 0x0, 0x29, 0x7f, 0xe, 0x1, 0x23, @private0, @dev={0xfe, 0x80, '\x00', 0x42}, 0x8000, 0x80, 0xdd, 0x7}}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000140)={'tunl0\x00', 0x0, 0x7, 0x700, 0x4, 0x5, {{0xc, 0x4, 0x3, 0x25, 0x30, 0x64, 0x0, 0x7, 0x4, 0x0, @multicast1, @rand_addr=0x64010100, {[@ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @noop, @generic={0x86, 0xf, "715b3e5bbeca7ee34b66736fae"}, @end]}}}}}) r5 = socket(0x10, 0x803, 0x0) (async) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="340000001400b59500000000000000000a000000", @ANYRES32=r6, @ANYBLOB="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"], 0x34}}, 0x0) (async) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000000240)=0x14) (async) r8 = socket$nl_route(0x10, 0x3, 0x0) (async) r9 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r9) getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r10, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) (async) r11 = socket$nl_route(0x10, 0x3, 0x0) r12 = socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f00000005c0), r12) getsockname$packet(r12, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r11, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400000400ec00000000000000", @ANYRES32=r13, @ANYBLOB="00000000000000001c0012000b000100627269646765"], 0x3c}}, 0x0) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, &(0x7f0000000280)={@private2, 0x0}, &(0x7f00000002c0)=0x14) (async) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'veth0_vlan\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000003c0)={'syztnl1\x00', &(0x7f0000000340)={'ip6tnl0\x00', 0x0, 0x29, 0x3f, 0x3, 0x9, 0x0, @mcast2, @private2, 0x10, 0x10, 0x3, 0x1}}) (async) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000004c0)={'syztnl0\x00', &(0x7f0000000400)={'erspan0\x00', 0x0, 0x7800, 0x8000, 0x8, 0x523, {{0x23, 0x4, 0x3, 0x9, 0x8c, 0x65, 0x0, 0x2, 0x4, 0x0, @loopback, @rand_addr=0x64010100, {[@ssrr={0x89, 0x7, 0x8f, [@multicast2]}, @rr={0x7, 0x7, 0x1f, [@rand_addr=0x64010102]}, @rr={0x7, 0x1b, 0x43, [@local, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, @multicast1, @dev={0xac, 0x14, 0x14, 0x15}]}, @timestamp={0x44, 0x14, 0xfa, 0x0, 0x4, [0xa5, 0x9, 0x5, 0x6e]}, @ra={0x94, 0x4}, @rr={0x7, 0xf, 0x8d, [@empty, @private=0xa010102, @multicast2]}, @lsrr={0x83, 0x27, 0x7b, [@loopback, @multicast1, @private=0xa010100, @rand_addr=0x64010102, @remote, @remote, @multicast2, @empty, @multicast2]}, @end]}}}}}) sendmsg$TEAM_CMD_OPTIONS_GET(0xffffffffffffffff, &(0x7f0000000fc0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000500)={0xa70, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [{{0x8, 0x1, r2}, {0x194, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xfff}}}, {0x34, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r3}}}]}}, {{0x8}, {0x1c4, 0x2, 0x0, 0x1, [{0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r4}}}, {0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xe, 0x4, 'broadcast\x00'}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8, 0x6, r6}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x84, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x54, 0x4, [{0x9, 0x7, 0x5, 0x3}, {0x8000, 0x3, 0x3f, 0x8}, {0x2, 0x1, 0xe1, 0x1}, {0xfffd, 0x3f, 0xfe}, {0xd6b, 0x2, 0x80, 0x4}, {0x6, 0x2, 0x3f, 0x8001}, {0x8001, 0x20, 0x20, 0x8}, {0x5, 0x4, 0x6, 0xff}, {0xabb0, 0x20, 0x1f, 0x1ff}, {0x9, 0x9, 0x8d}]}}}]}}, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffffb}}}]}}, {{0x8}, {0x144, 0x2, 0x0, 0x1, [{0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x3, 0x7, 0x9, 0x200}, {0x1250, 0x80, 0xf8, 0x2}, {0x2ab, 0x5, 0x0, 0x5}, {0x1ff, 0x53, 0xc5, 0x202e4020}, {0x8001, 0xfe, 0x4, 0x10000}, {0x9, 0x8, 0x9, 0x4000}, {0x5, 0x5, 0x3, 0x3f}]}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}]}}, {{0x8, 0x1, r7}, {0x104, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x5}}, {0x8}}}, {0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0xff, 0x7, 0x40, 0xffffffff}, {0xffff, 0x6, 0x0, 0xf1}]}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x20}}, {0x8, 0x6, r10}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r13}}}]}}, {{0x8}, {0x58, 0x2, 0x0, 0x1, [{0x54, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x24, 0x4, [{0x1, 0xff, 0x4, 0x3}, {0x3, 0x9, 0x9, 0x8}, {0x6, 0x0, 0x81, 0x6}, {0x7, 0x8, 0x25, 0x3f}]}}}]}}, {{0x8, 0x1, r14}, {0x214, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x6}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xa5}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x1000}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x3ff}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r15}}}]}}, {{0x8}, {0x1d4, 0x2, 0x0, 0x1, [{0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x0, 0x0, 0x80, 0x7}, {0x6, 0x2, 0x2, 0x9cf}, {0x101, 0x10, 0xfa, 0x5}, {0x5, 0x1f, 0x2, 0xebc}, {0x13f8, 0x2, 0x5, 0x7}]}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xbf0}}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x4}}, {0x8, 0x6, r16}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r17}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xa5}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x604}}}]}}]}, 0xa70}, 0x1, 0x0, 0x0, 0x4004840}, 0x0) [ 200.325968][ T8687] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. 06:05:38 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000b, 0x4010, 0xffffffffffffffff, 0x3d887000) r1 = signalfd(r0, &(0x7f0000000140)={[0x7]}, 0x8) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@broadcast, @in6=@private1}}, {{@in6=@private2}, 0x0, @in6=@private1}}, &(0x7f0000000080)=0xe8) write(r0, &(0x7f0000004200)="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", 0xffe00) socket$inet6_tcp(0xa, 0x1, 0x0) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) connect$tipc(r1, &(0x7f0000000180)=@id={0x1e, 0x3, 0x1, {0x4e22, 0x3}}, 0x10) read$FUSE(r2, &(0x7f00000020c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_BMAP(r2, &(0x7f0000002080)={0x18, 0xffffffffffffffda, r3, {0xfffffffffffffffd}}, 0x18) [ 200.336183][ T8686] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. [ 200.343777][ T8686] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'. 06:05:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:38 executing program 3: r0 = add_key$fscrypt_v1(&(0x7f0000000100), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28a5668b029a561dd502c1208a93e581c166ad2699064bbd27b24859bb2dff33a3a9835000af9d51ed5bef3d6b520d260804d000"}, 0x48, 0x0) keyctl$setperm(0x5, r0, 0x0) (async, rerun: 64) add_key(&(0x7f0000000040)='syzkaller\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f00000001c0), 0x0, r0) (rerun: 64) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000000)='user\x00', &(0x7f0000000040)=@secondary) 06:05:38 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="4fb3d291284c7fb3d9187afd60616ac8f7f9270a7f490e1151b8705cecc24be740b9d085312d59d9f5f2f50d188e0a1af6a0"], 0x4) 06:05:38 executing program 3: r0 = add_key$fscrypt_v1(&(0x7f0000000100), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28a5668b029a561dd502c1208a93e581c166ad2699064bbd27b24859bb2dff33a3a9835000af9d51ed5bef3d6b520d260804d000"}, 0x48, 0x0) keyctl$setperm(0x5, r0, 0x0) (async) add_key(&(0x7f0000000040)='syzkaller\x00', &(0x7f0000000180)={'syz', 0x0}, &(0x7f00000001c0), 0x0, r0) (async) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000000)='user\x00', &(0x7f0000000040)=@secondary) 06:05:38 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="4fb3d291284c7fb3d9187afd60616ac8f7f9270a7f490e1151b8705cecc24be740b9d085312d59d9f5f2f50d188e0a1af6a0"], 0x4) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="4fb3d291284c7fb3d9187afd60616ac8f7f9270a7f490e1151b8705cecc24be740b9d085312d59d9f5f2f50d188e0a1af6a0"], 0x4) (async) 06:05:38 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000b, 0x4010, 0xffffffffffffffff, 0x3d887000) (async) r1 = signalfd(r0, &(0x7f0000000140)={[0x7]}, 0x8) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@broadcast, @in6=@private1}}, {{@in6=@private2}, 0x0, @in6=@private1}}, &(0x7f0000000080)=0xe8) (async) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) socket$inet6_tcp(0xa, 0x1, 0x0) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) connect$tipc(r1, &(0x7f0000000180)=@id={0x1e, 0x3, 0x1, {0x4e22, 0x3}}, 0x10) (async) read$FUSE(r2, &(0x7f00000020c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_BMAP(r2, &(0x7f0000002080)={0x18, 0xffffffffffffffda, r3, {0xfffffffffffffffd}}, 0x18) 06:05:38 executing program 3: connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000000)={0x23, 0x7, 0x7f}, 0x10) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x27}, "1e7c4f379c136dd66e2a01f219f1aa10385703520b522588d3127f01115d9568c7b8297692fbe4"}, 0x2b) 06:05:38 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="4fb3d291284c7fb3d9187afd60616ac8f7f9270a7f490e1151b8705cecc24be740b9d085312d59d9f5f2f50d188e0a1af6a0"], 0x4) 06:05:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0}) 06:05:38 executing program 3: connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000000)={0x23, 0x7, 0x7f}, 0x10) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x27}, "1e7c4f379c136dd66e2a01f219f1aa10385703520b522588d3127f01115d9568c7b8297692fbe4"}, 0x2b) 06:05:38 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xaf}, "db170a3439dbe7c240cbd4294b3ba44636c874c2736214fa213491aa70d0b6f969fcabd8a8dd88fd6ba9798f69bb818c38135ad76e092684819820b38b7bcc5cd54cb3257737d7218e57c90d61ef06b4e78b6c165e130e2536aee1fad74c773333b9bed81a8d34211e75be5f50f74bacb0e4b2e4afe59da0eb321d645912ec9959a7c68b738431028c971a4038afe59b3d8dbbf36c52ecb3892cc53f491431ed4a33349f3910e37fe643d07f3cfe40"}, 0xb3) syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="03c900d8d0795f7ed0ca7fb9a197c18ace5670c9b249f5ff1acf5aafb116752e5c99136cb41c8c322e17ade072467ea395a583cbecb6d72b25d15c4a54586badef5eec06c0c4a060e060a1b333187eeddb9ce7d759db75927bb24e699dcafe947f1b8c8db57f87e0226e8d4d75d69e399cf5d2f2ffefd3a7f993873c63b682f1a69cc8a6c7a1852ff95738836099878f3ce13443b72904df7cfa562e4bbbe838932484e8d992e67fe50dd1c210905f75e96d6334861b294877d3f8856f3dfa75a3455e000000000000000000000000000000007884aebe96794dd328272dbecd951682960152a8a394fc120b789eb369864e97ee39f83cfd93795c56616fb27eb8416497c9fe5e395da86f3625ee128ae3de38e17c2fdc232034fec57a8c93995247d086c3e8bf9ef7a1fca6b83ba1048f35f0797a2e38459b12778b83fe29395bc74004a45f6937a2aef4ad5e662bc32b713156cbf10eaff3c883106fd092b2b5000000000000000000"], 0xdc) syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0x4a}, @l2cap_cid_signaling={{0x46}, [@l2cap_cmd_rej_unk={{0x1, 0x9, 0x2}, {0x6}}, @l2cap_create_chan_rsp={{0xd, 0x7, 0x8}, {0x400, 0x4, 0x43, 0x3}}, @l2cap_conf_rsp={{0x5, 0x5, 0x30}, {0x9, 0x6, 0x2, [@l2cap_conf_mtu={0x1, 0x2, 0x3f}, @l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_ews={0x7, 0x2, 0x8}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x21, 0x9, 0x7fff, 0x3}}, @l2cap_conf_mtu={0x1, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x9574}, @l2cap_conf_flushto={0x2, 0x2, 0x7fff}]}}]}}, 0x4f) 06:05:38 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x200000b, 0x4010, 0xffffffffffffffff, 0x3d887000) r1 = signalfd(r0, &(0x7f0000000140)={[0x7]}, 0x8) getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@broadcast, @in6=@private1}}, {{@in6=@private2}, 0x0, @in6=@private1}}, &(0x7f0000000080)=0xe8) (async, rerun: 64) write(r0, &(0x7f0000004200)="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", 0xffe00) (async, rerun: 64) socket$inet6_tcp(0xa, 0x1, 0x0) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) connect$tipc(r1, &(0x7f0000000180)=@id={0x1e, 0x3, 0x1, {0x4e22, 0x3}}, 0x10) (async) read$FUSE(r2, &(0x7f00000020c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_BMAP(r2, &(0x7f0000002080)={0x18, 0xffffffffffffffda, r3, {0xfffffffffffffffd}}, 0x18) [ 200.488536][ T5168] Bluetooth: Unexpected continuation frame (len 74) 06:05:38 executing program 3: connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000000)={0x23, 0x7, 0x7f}, 0x10) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x27}, "1e7c4f379c136dd66e2a01f219f1aa10385703520b522588d3127f01115d9568c7b8297692fbe4"}, 0x2b) 06:05:38 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xaf}, "db170a3439dbe7c240cbd4294b3ba44636c874c2736214fa213491aa70d0b6f969fcabd8a8dd88fd6ba9798f69bb818c38135ad76e092684819820b38b7bcc5cd54cb3257737d7218e57c90d61ef06b4e78b6c165e130e2536aee1fad74c773333b9bed81a8d34211e75be5f50f74bacb0e4b2e4afe59da0eb321d645912ec9959a7c68b738431028c971a4038afe59b3d8dbbf36c52ecb3892cc53f491431ed4a33349f3910e37fe643d07f3cfe40"}, 0xb3) syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0xdc) syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0x4a}, @l2cap_cid_signaling={{0x46}, [@l2cap_cmd_rej_unk={{0x1, 0x9, 0x2}, {0x6}}, @l2cap_create_chan_rsp={{0xd, 0x7, 0x8}, {0x400, 0x4, 0x43, 0x3}}, @l2cap_conf_rsp={{0x5, 0x5, 0x30}, {0x9, 0x6, 0x2, [@l2cap_conf_mtu={0x1, 0x2, 0x3f}, @l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_ews={0x7, 0x2, 0x8}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x21, 0x9, 0x7fff, 0x3}}, @l2cap_conf_mtu={0x1, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x9574}, @l2cap_conf_flushto={0x2, 0x2, 0x7fff}]}}]}}, 0x4f) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0x4a}, @l2cap_cid_signaling={{0x46}, [@l2cap_cmd_rej_unk={{0x1, 0x9, 0x2}, {0x6}}, @l2cap_create_chan_rsp={{0xd, 0x7, 0x8}, {0x400, 0x4, 0x43, 0x3}}, @l2cap_conf_rsp={{0x5, 0x5, 0x30}, {0x9, 0x6, 0x2, [@l2cap_conf_mtu={0x1, 0x2, 0x3f}, @l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_ews={0x7, 0x2, 0x8}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x21, 0x9, 0x7fff, 0x3}}, @l2cap_conf_mtu={0x1, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x9574}, @l2cap_conf_flushto={0x2, 0x2, 0x7fff}]}}]}}, 0x4f) [ 200.514995][ T5168] Bluetooth: Unexpected continuation frame (len 74) 06:05:38 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) socket$can_bcm(0x1d, 0x2, 0x2) r10 = socket$nl_generic(0x10, 0x3, 0x10) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r0, 0x1, 0x1a, 0x0, &(0x7f0000000100)) r14 = gettid() process_vm_writev(r14, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r7, r1, 0xffffffffffffffff, r10, r11, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r12, r2, r13]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xffffffffffffffff, r15}}}], 0x118, 0x20000801}}], 0x1, 0x2) write$FUSE_DIRENTPLUS(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="8f4508", @ANYRES64=0x0, @ANYBLOB="060000000000000001000000000000000900000000000000020000000000000005000000030000000100000000000000f300000000000000730a000000000000fbff0000000000000800000000000000010001000000000002000000010100004000000000c0000009000000", @ANYRES64=r8, @ANYRES32=0x0, @ANYBLOB="0104000001000000000000000300000000000000000800000000000010000000d70100002f6465762f636163686566696c657300040000000000000000000000000000004e040000000000005d00000000000000080000006d0000000400000000000000010000800000000001000000000000000000000000000000ff7fffffffffffff01000000fffffffff0090000000200000101000000800000ff7f0000", @ANYRES32=0xee01, @ANYRESHEX=r11, @ANYBLOB="286080000700000000000000020000000000000001000000000000001000000005000000cd2e59fa2f636163686566696c65730001001000000000000200000000000000090001ffffffffffffff000000000000000000004969000003000000e30000000000000001000000080000000000000003ffffffffffffffff00000000000000050000000000000001000000070000000700000000a0000004000000", @ANYRES64=r3, @ANYRES32=0x0, @ANYBLOB="020000000600000000000000060000000000000000f0ffffffffffff10000000080000002f6465762f636163686566696c657377dc2c8d0000000000010000000000000008000000000000007800000000000000040000000010000005000000000000001d550000000000000900000000000000071000000000000002000000000000007f000000000000000500000040000000000000580127de660b00004000009bca0000", @ANYRES32=0xee01, @ANYRES32=0xee00, @ANYRESHEX=r0, @ANYRES32=0x0, @ANYRESHEX=r2, @ANYBLOB="070000000200000000000000010000000000000010000000000000002f6465762f636163686566696c657300"], 0x348) 06:05:38 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0xe1f90d4ce9713995}, 0x2) [ 200.519684][ T5168] Bluetooth: Unexpected continuation frame (len 74) [ 200.540053][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0}) 06:05:38 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xaf}, "db170a3439dbe7c240cbd4294b3ba44636c874c2736214fa213491aa70d0b6f969fcabd8a8dd88fd6ba9798f69bb818c38135ad76e092684819820b38b7bcc5cd54cb3257737d7218e57c90d61ef06b4e78b6c165e130e2536aee1fad74c773333b9bed81a8d34211e75be5f50f74bacb0e4b2e4afe59da0eb321d645912ec9959a7c68b738431028c971a4038afe59b3d8dbbf36c52ecb3892cc53f491431ed4a33349f3910e37fe643d07f3cfe40"}, 0xb3) (async) syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0xdc) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x0, 0x4a}, @l2cap_cid_signaling={{0x46}, [@l2cap_cmd_rej_unk={{0x1, 0x9, 0x2}, {0x6}}, @l2cap_create_chan_rsp={{0xd, 0x7, 0x8}, {0x400, 0x4, 0x43, 0x3}}, @l2cap_conf_rsp={{0x5, 0x5, 0x30}, {0x9, 0x6, 0x2, [@l2cap_conf_mtu={0x1, 0x2, 0x3f}, @l2cap_conf_ews={0x7, 0x2, 0x9}, @l2cap_conf_ews={0x7, 0x2, 0x8}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0x21, 0x9, 0x7fff, 0x3}}, @l2cap_conf_mtu={0x1, 0x2, 0x9}, @l2cap_conf_flushto={0x2, 0x2, 0x9574}, @l2cap_conf_flushto={0x2, 0x2, 0x7fff}]}}]}}, 0x4f) 06:05:38 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0xe1f90d4ce9713995}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0xe1f90d4ce9713995}, 0x2) [ 200.595815][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 200.596674][ T5160] Bluetooth: Unexpected continuation frame (len 74) 06:05:38 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2}, @l2cap_cid_signaling={{}, [@l2cap_conn_req={{0x2, 0x5}, {0xdc, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x7}, {0x0, 0x7bc8}}, @l2cap_cmd_rej_unk={{0x1, 0xc4}, {0x7}}, @l2cap_move_chan_rsp={{0xf, 0x85}, {0x8001, 0x6}}, @l2cap_create_chan_req={{0xc, 0x20}, {0x3, 0x6, 0x1}}, @l2cap_info_req={{0xa, 0x7}, {0x288}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x12}, {0x1}}]}}, 0x4) 06:05:38 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0xe1f90d4ce9713995}, 0x2) 06:05:38 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2}, @l2cap_cid_signaling={{}, [@l2cap_conn_req={{0x2, 0x5}, {0xdc, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x7}, {0x0, 0x7bc8}}, @l2cap_cmd_rej_unk={{0x1, 0xc4}, {0x7}}, @l2cap_move_chan_rsp={{0xf, 0x85}, {0x8001, 0x6}}, @l2cap_create_chan_req={{0xc, 0x20}, {0x3, 0x6, 0x1}}, @l2cap_info_req={{0xa, 0x7}, {0x288}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x12}, {0x1}}]}}, 0x4) [ 200.626038][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:39 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) (async) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) (async, rerun: 64) r5 = socket(0x10, 0x2, 0x0) (rerun: 64) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) socket$can_bcm(0x1d, 0x2, 0x2) (async) r10 = socket$nl_generic(0x10, 0x3, 0x10) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r0, 0x1, 0x1a, 0x0, &(0x7f0000000100)) (async) r14 = gettid() process_vm_writev(r14, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) (async) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r7, r1, 0xffffffffffffffff, r10, r11, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r12, r2, r13]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xffffffffffffffff, r15}}}], 0x118, 0x20000801}}], 0x1, 0x2) (async) write$FUSE_DIRENTPLUS(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="8f4508", @ANYRES64=0x0, @ANYBLOB="060000000000000001000000000000000900000000000000020000000000000005000000030000000100000000000000f300000000000000730a000000000000fbff0000000000000800000000000000010001000000000002000000010100004000000000c0000009000000", @ANYRES64=r8, @ANYRES32=0x0, @ANYBLOB="0104000001000000000000000300000000000000000800000000000010000000d70100002f6465762f636163686566696c657300040000000000000000000000000000004e040000000000005d00000000000000080000006d0000000400000000000000010000800000000001000000000000000000000000000000ff7fffffffffffff01000000fffffffff0090000000200000101000000800000ff7f0000", @ANYRES32=0xee01, @ANYRESHEX=r11, @ANYBLOB="286080000700000000000000020000000000000001000000000000001000000005000000cd2e59fa2f636163686566696c65730001001000000000000200000000000000090001ffffffffffffff000000000000000000004969000003000000e30000000000000001000000080000000000000003ffffffffffffffff00000000000000050000000000000001000000070000000700000000a0000004000000", @ANYRES64=r3, @ANYRES32=0x0, @ANYBLOB="020000000600000000000000060000000000000000f0ffffffffffff10000000080000002f6465762f636163686566696c657377dc2c8d0000000000010000000000000008000000000000007800000000000000040000000010000005000000000000001d550000000000000900000000000000071000000000000002000000000000007f000000000000000500000040000000000000580127de660b00004000009bca0000", @ANYRES32=0xee01, @ANYRES32=0xee00, @ANYRESHEX=r0, @ANYRES32=0x0, @ANYRESHEX=r2, @ANYBLOB="070000000200000000000000010000000000000010000000000000002f6465762f636163686566696c657300"], 0x348) 06:05:39 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x2) 06:05:39 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2}, @l2cap_cid_signaling={{}, [@l2cap_conn_req={{0x2, 0x5}, {0xdc, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x7}, {0x0, 0x7bc8}}, @l2cap_cmd_rej_unk={{0x1, 0xc4}, {0x7}}, @l2cap_move_chan_rsp={{0xf, 0x85}, {0x8001, 0x6}}, @l2cap_create_chan_req={{0xc, 0x20}, {0x3, 0x6, 0x1}}, @l2cap_info_req={{0xa, 0x7}, {0x288}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x12}, {0x1}}]}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x1, 0x2}, @l2cap_cid_signaling={{}, [@l2cap_conn_req={{0x2, 0x5}, {0xdc, 0x3}}, @l2cap_move_chan_cfm={{0x10, 0x7}, {0x0, 0x7bc8}}, @l2cap_cmd_rej_unk={{0x1, 0xc4}, {0x7}}, @l2cap_move_chan_rsp={{0xf, 0x85}, {0x8001, 0x6}}, @l2cap_create_chan_req={{0xc, 0x20}, {0x3, 0x6, 0x1}}, @l2cap_info_req={{0xa, 0x7}, {0x288}}, @l2cap_move_chan_cfm_rsp={{0x11, 0x12}, {0x1}}]}}, 0x4) 06:05:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0}) [ 201.392352][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:39 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x2) 06:05:39 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xf6}, "c4e760d813f357d23ab07f219375db5977a949a27b4ded70aed8f82664db96dc3e715c93e4146c9de3ebdf96b846449983e7729e65c508f1ed0739c9dbf677c62113a70694ea6e5476c795d15c1983c6c70f9b4ea5eb5293cb461a4f876d72c5b9798d022f02f7a9419d9b96fc825c160bdbaa4a62e901cdca3c7f153bb7ee7c97704c98e725c56104250ecdd497e402d3012842a800f08abea67863537a8778625ff864358bba7ae65feacfc0424e9dab526bd5babd0fc198ac2490b9e3897566454fe6a5e36fa17aca6d9c95f625541b20c71708b1ec61c0b58e0193b5a87962b3d9b5c4bc1327d09433c25d8df041d970a43e4bb9"}, 0xfa) syz_emit_vhci(&(0x7f0000000200)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x5, 0xa}, {0x5, 0xfff8, 0x9, 0x401, 0x3}}}}, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x10}, {0x1, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x2, 0x66, 0x80, "13aabf", 0x0, 0xdf}]}}}, 0x13) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}}}, 0x9) syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x100, 0x5, 0x0, 0x40}}}, 0xa) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:39 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xf6}, "c4e760d813f357d23ab07f219375db5977a949a27b4ded70aed8f82664db96dc3e715c93e4146c9de3ebdf96b846449983e7729e65c508f1ed0739c9dbf677c62113a70694ea6e5476c795d15c1983c6c70f9b4ea5eb5293cb461a4f876d72c5b9798d022f02f7a9419d9b96fc825c160bdbaa4a62e901cdca3c7f153bb7ee7c97704c98e725c56104250ecdd497e402d3012842a800f08abea67863537a8778625ff864358bba7ae65feacfc0424e9dab526bd5babd0fc198ac2490b9e3897566454fe6a5e36fa17aca6d9c95f625541b20c71708b1ec61c0b58e0193b5a87962b3d9b5c4bc1327d09433c25d8df041d970a43e4bb9"}, 0xfa) syz_emit_vhci(&(0x7f0000000200)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x5, 0xa}, {0x5, 0xfff8, 0x9, 0x401, 0x3}}}}, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x10}, {0x1, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x2, 0x66, 0x80, "13aabf", 0x0, 0xdf}]}}}, 0x13) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}}}, 0x9) syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x100, 0x5, 0x0, 0x40}}}, 0xa) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xf6}, "c4e760d813f357d23ab07f219375db5977a949a27b4ded70aed8f82664db96dc3e715c93e4146c9de3ebdf96b846449983e7729e65c508f1ed0739c9dbf677c62113a70694ea6e5476c795d15c1983c6c70f9b4ea5eb5293cb461a4f876d72c5b9798d022f02f7a9419d9b96fc825c160bdbaa4a62e901cdca3c7f153bb7ee7c97704c98e725c56104250ecdd497e402d3012842a800f08abea67863537a8778625ff864358bba7ae65feacfc0424e9dab526bd5babd0fc198ac2490b9e3897566454fe6a5e36fa17aca6d9c95f625541b20c71708b1ec61c0b58e0193b5a87962b3d9b5c4bc1327d09433c25d8df041d970a43e4bb9"}, 0xfa) (async) syz_emit_vhci(&(0x7f0000000200)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x5, 0xa}, {0x5, 0xfff8, 0x9, 0x401, 0x3}}}}, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x10}, {0x1, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x2, 0x66, 0x80, "13aabf", 0x0, 0xdf}]}}}, 0x13) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}}}, 0x9) (async) syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x100, 0x5, 0x0, 0x40}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) [ 201.433821][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:39 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x2) [ 201.454864][ T5160] Bluetooth: hci0: Malformed Event: 0x02 [ 201.457666][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:40 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) (async) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) (async, rerun: 32) r5 = socket(0x10, 0x2, 0x0) (rerun: 32) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async, rerun: 64) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (rerun: 64) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) socket$can_bcm(0x1d, 0x2, 0x2) r10 = socket$nl_generic(0x10, 0x3, 0x10) (async) r11 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r11, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) getsockopt$sock_buf(r0, 0x1, 0x1a, 0x0, &(0x7f0000000100)) r14 = gettid() process_vm_writev(r14, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f0000000380)='./file0\x00', &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r7, r1, 0xffffffffffffffff, r10, r11, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r12, r2, r13]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r14, 0xffffffffffffffff, r15}}}], 0x118, 0x20000801}}], 0x1, 0x2) write$FUSE_DIRENTPLUS(r0, &(0x7f00000005c0)=ANY=[@ANYBLOB="8f4508", @ANYRES64=0x0, @ANYBLOB="060000000000000001000000000000000900000000000000020000000000000005000000030000000100000000000000f300000000000000730a000000000000fbff0000000000000800000000000000010001000000000002000000010100004000000000c0000009000000", @ANYRES64=r8, @ANYRES32=0x0, @ANYBLOB="0104000001000000000000000300000000000000000800000000000010000000d70100002f6465762f636163686566696c657300040000000000000000000000000000004e040000000000005d00000000000000080000006d0000000400000000000000010000800000000001000000000000000000000000000000ff7fffffffffffff01000000fffffffff0090000000200000101000000800000ff7f0000", @ANYRES32=0xee01, @ANYRESHEX=r11, @ANYBLOB="286080000700000000000000020000000000000001000000000000001000000005000000cd2e59fa2f636163686566696c65730001001000000000000200000000000000090001ffffffffffffff000000000000000000004969000003000000e30000000000000001000000080000000000000003ffffffffffffffff00000000000000050000000000000001000000070000000700000000a0000004000000", @ANYRES64=r3, @ANYRES32=0x0, @ANYBLOB="020000000600000000000000060000000000000000f0ffffffffffff10000000080000002f6465762f636163686566696c657377dc2c8d0000000000010000000000000008000000000000007800000000000000040000000010000005000000000000001d550000000000000900000000000000071000000000000002000000000000007f000000000000000500000040000000000000580127de660b00004000009bca0000", @ANYRES32=0xee01, @ANYRES32=0xee00, @ANYRESHEX=r0, @ANYRES32=0x0, @ANYRESHEX=r2, @ANYBLOB="070000000200000000000000010000000000000010000000000000002f6465762f636163686566696c657300"], 0x348) 06:05:40 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xf6}, "c4e760d813f357d23ab07f219375db5977a949a27b4ded70aed8f82664db96dc3e715c93e4146c9de3ebdf96b846449983e7729e65c508f1ed0739c9dbf677c62113a70694ea6e5476c795d15c1983c6c70f9b4ea5eb5293cb461a4f876d72c5b9798d022f02f7a9419d9b96fc825c160bdbaa4a62e901cdca3c7f153bb7ee7c97704c98e725c56104250ecdd497e402d3012842a800f08abea67863537a8778625ff864358bba7ae65feacfc0424e9dab526bd5babd0fc198ac2490b9e3897566454fe6a5e36fa17aca6d9c95f625541b20c71708b1ec61c0b58e0193b5a87962b3d9b5c4bc1327d09433c25d8df041d970a43e4bb9"}, 0xfa) syz_emit_vhci(&(0x7f0000000200)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x5, 0xa}, {0x5, 0xfff8, 0x9, 0x401, 0x3}}}}, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x10}, {0x1, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x2, 0x66, 0x80, "13aabf", 0x0, 0xdf}]}}}, 0x13) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}}}, 0x9) syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x100, 0x5, 0x0, 0x40}}}, 0xa) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:40 executing program 3: syz_emit_vhci(&(0x7f00000021c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1}, '2'}, 0x5) 06:05:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0}) 06:05:40 executing program 3: syz_emit_vhci(&(0x7f00000021c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1}, '2'}, 0x5) 06:05:40 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="653c32a06a52062e181768a826a3d56790c74a3b93035d9568ec40db525f21093dc36e02f401afe743aee32cca06b49f6dd11d55ffdf52c728b2b678240b6ed3d88f71f62ab768c270b1e9ee8a3935cc40bd1bd6dbd00ad10046b8"], 0x4) 06:05:40 executing program 3: syz_emit_vhci(&(0x7f00000021c0)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1}, '2'}, 0x5) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1}, '2'}, 0x5) 06:05:40 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="653c32a06a52062e181768a826a3d56790c74a3b93035d9568ec40db525f21093dc36e02f401afe743aee32cca06b49f6dd11d55ffdf52c728b2b678240b6ed3d88f71f62ab768c270b1e9ee8a3935cc40bd1bd6dbd00ad10046b8"], 0x4) 06:05:41 executing program 1: openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x400400, 0x0) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:41 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:41 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="653c32a06a52062e181768a826a3d56790c74a3b93035d9568ec40db525f21093dc36e02f401afe743aee32cca06b49f6dd11d55ffdf52c728b2b678240b6ed3d88f71f62ab768c270b1e9ee8a3935cc40bd1bd6dbd00ad10046b8"], 0x4) 06:05:41 executing program 0: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xf6}, "c4e760d813f357d23ab07f219375db5977a949a27b4ded70aed8f82664db96dc3e715c93e4146c9de3ebdf96b846449983e7729e65c508f1ed0739c9dbf677c62113a70694ea6e5476c795d15c1983c6c70f9b4ea5eb5293cb461a4f876d72c5b9798d022f02f7a9419d9b96fc825c160bdbaa4a62e901cdca3c7f153bb7ee7c97704c98e725c56104250ecdd497e402d3012842a800f08abea67863537a8778625ff864358bba7ae65feacfc0424e9dab526bd5babd0fc198ac2490b9e3897566454fe6a5e36fa17aca6d9c95f625541b20c71708b1ec61c0b58e0193b5a87962b3d9b5c4bc1327d09433c25d8df041d970a43e4bb9"}, 0xfa) syz_emit_vhci(&(0x7f0000000200)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x2, 0x2, 0x12}, @l2cap_cid_le_signaling={{0xe}, @l2cap_le_conn_req={{0x14, 0x5, 0xa}, {0x5, 0xfff8, 0x9, 0x401, 0x3}}}}, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @inquiry_info_with_rssi_and_pscan_mode={{0x22, 0x10}, {0x1, [{@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x2, 0x66, 0x80, "13aabf", 0x0, 0xdf}]}}}, 0x13) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}}}, 0x9) syz_emit_vhci(&(0x7f00000001c0)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x100, 0x5, 0x0, 0x40}}}, 0xa) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 204.110920][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:41 executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f0000004480)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000001140)=[{&(0x7f00000000c0)=""/105, 0x69}, {&(0x7f0000000140)=""/4096, 0x1000}], 0x2, &(0x7f0000001180)=""/80, 0x50}, 0x8}, {{&(0x7f0000001200)=@l2tp={0x2, 0x0, @dev}, 0x80, &(0x7f0000001280), 0x0, &(0x7f00000012c0)=""/159, 0x9f}, 0x2}, {{&(0x7f0000001380)=@xdp, 0x80, &(0x7f0000002540)=[{&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000002400)=""/220, 0xdc}, {&(0x7f0000002500)=""/15, 0xf}], 0x3}, 0x4b85}, {{&(0x7f0000002580)=@tipc, 0x80, &(0x7f0000002700)=[{&(0x7f0000002600)=""/241, 0xf1}], 0x1, &(0x7f0000002740)=""/66, 0x42}, 0x4}, {{0x0, 0x0, &(0x7f0000003c80)=[{&(0x7f00000027c0)=""/16, 0x10}, {&(0x7f0000002800)=""/114, 0x72}, {&(0x7f0000002880)=""/245, 0xf5}, {&(0x7f0000002980)=""/133, 0x85}, {&(0x7f0000002a40)=""/134, 0x86}, {&(0x7f0000002b00)=""/145, 0x91}, {&(0x7f0000002bc0)=""/170, 0xaa}, {&(0x7f0000002c80)=""/4096, 0x1000}], 0x8, &(0x7f0000003d00)=""/206, 0xce}, 0x5}, {{&(0x7f0000003e00)=@rc={0x1f, @none}, 0x80, &(0x7f0000004100)=[{&(0x7f0000003e80)=""/21, 0x15}, {&(0x7f0000003ec0)=""/33, 0x21}, {&(0x7f0000003f00)=""/91, 0x5b}, {&(0x7f0000003f80)=""/129, 0x81}, {&(0x7f0000004040)}, {&(0x7f0000004080)=""/101, 0x65}], 0x6, &(0x7f0000004180)=""/46, 0x2e}, 0x8000}, {{0x0, 0x0, &(0x7f00000041c0)}, 0x6}, {{&(0x7f0000004200)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f0000004380)=[{&(0x7f0000004280)=""/203, 0xcb}], 0x1, &(0x7f00000043c0)=""/160, 0xa0}}], 0x8, 0x0, &(0x7f0000004680)={0x77359400}) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:41 executing program 0: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x2, 0x0, 0xc}, @l2cap_cid_le_signaling={{0x8}, @l2cap_disconn_req={{0x6, 0xaf, 0x4}, {0x7fff, 0x238}}}}, 0x11) 06:05:41 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:41 executing program 0: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="efc8600a000600fcff01ff02004a00"], 0xf) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x3, 0xc0}, @l2cap_cid_signaling={{0xbc}, [@l2cap_create_chan_req={{0xc, 0x5, 0x5}, {0x8, 0x401, 0x5}}, @l2cap_conf_rsp={{0x5, 0xfb, 0x52}, {0x7, 0x2, 0x5, [@l2cap_conf_rfc={0x4, 0x9, {0x2, 0x6, 0x7, 0x9b, 0x5, 0x8eef}}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x2, 0xfff8, 0x7, 0x1ff, 0x7}}, @l2cap_conf_efs={0x6, 0x10, {0x81, 0x0, 0x8, 0x6, 0x1, 0x401}}, @l2cap_conf_efs={0x6, 0x10, {0x5, 0x1, 0xff, 0x2d3dbc36, 0x5, 0x8001}}, @l2cap_conf_rfc={0x4, 0x9, {0x3, 0x1, 0x7, 0x3ff, 0x1e98, 0x800}}]}}, @l2cap_create_chan_rsp={{0xd, 0x4, 0x8}, {0x3, 0x0, 0x1, 0x80}}, @l2cap_create_chan_rsp={{0xd, 0x2, 0x8}, {0x5, 0x9cb, 0x809, 0x2}}, @l2cap_conf_rsp={{0x5, 0x7, 0x35}, {0x401, 0x3, 0x9, [@l2cap_conf_fcs={0x5, 0x1, 0x1}, @l2cap_conf_mtu={0x1, 0x2, 0x5}, @l2cap_conf_flushto={0x2, 0x2, 0x7f}, @l2cap_conf_efs={0x6, 0x10, {0x9, 0x0, 0x1000, 0x5, 0xe0, 0x3}}, @l2cap_conf_efs={0x6, 0x10, {0x18, 0x2, 0xfff7, 0x33e, 0x81, 0x2}}]}}, @l2cap_conn_rsp={{0x3, 0xe, 0x8}, {0x1000, 0x5, 0x2}}]}}, 0xc5) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="03c92f3f"], 0x4) [ 204.137073][ T5160] Bluetooth: hci0: Malformed Event: 0x02 [ 204.149603][ T5160] bt_err_ratelimited: 3 callbacks suppressed 06:05:41 executing program 1: openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x400400, 0x0) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:41 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:41 executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f0000004480)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000001140)=[{&(0x7f00000000c0)=""/105, 0x69}, {&(0x7f0000000140)=""/4096, 0x1000}], 0x2, &(0x7f0000001180)=""/80, 0x50}, 0x8}, {{&(0x7f0000001200)=@l2tp={0x2, 0x0, @dev}, 0x80, &(0x7f0000001280), 0x0, &(0x7f00000012c0)=""/159, 0x9f}, 0x2}, {{&(0x7f0000001380)=@xdp, 0x80, &(0x7f0000002540)=[{&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000002400)=""/220, 0xdc}, {&(0x7f0000002500)=""/15, 0xf}], 0x3}, 0x4b85}, {{&(0x7f0000002580)=@tipc, 0x80, &(0x7f0000002700)=[{&(0x7f0000002600)=""/241, 0xf1}], 0x1, &(0x7f0000002740)=""/66, 0x42}, 0x4}, {{0x0, 0x0, &(0x7f0000003c80)=[{&(0x7f00000027c0)=""/16, 0x10}, {&(0x7f0000002800)=""/114, 0x72}, {&(0x7f0000002880)=""/245, 0xf5}, {&(0x7f0000002980)=""/133, 0x85}, {&(0x7f0000002a40)=""/134, 0x86}, {&(0x7f0000002b00)=""/145, 0x91}, {&(0x7f0000002bc0)=""/170, 0xaa}, {&(0x7f0000002c80)=""/4096, 0x1000}], 0x8, &(0x7f0000003d00)=""/206, 0xce}, 0x5}, {{&(0x7f0000003e00)=@rc={0x1f, @none}, 0x80, &(0x7f0000004100)=[{&(0x7f0000003e80)=""/21, 0x15}, {&(0x7f0000003ec0)=""/33, 0x21}, {&(0x7f0000003f00)=""/91, 0x5b}, {&(0x7f0000003f80)=""/129, 0x81}, {&(0x7f0000004040)}, {&(0x7f0000004080)=""/101, 0x65}], 0x6, &(0x7f0000004180)=""/46, 0x2e}, 0x8000}, {{0x0, 0x0, &(0x7f00000041c0)}, 0x6}, {{&(0x7f0000004200)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f0000004380)=[{&(0x7f0000004280)=""/203, 0xcb}], 0x1, &(0x7f00000043c0)=""/160, 0xa0}}], 0x8, 0x0, &(0x7f0000004680)={0x77359400}) (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:41 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x10000, &(0x7f0000000180), 0x0, 0xffffffffffffffff, 0x3}) ioctl$KVM_CAP_EXIT_HYPERCALL(r1, 0x4068aea3, &(0x7f0000000000)={0xc9, 0x0, 0xc}) r2 = socket$can_raw(0x1d, 0x3, 0x1) socket$can_raw(0x1d, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r3, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r3, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$CAN_RAW_ERR_FILTER(r3, 0x65, 0x2, &(0x7f0000000200)=0xfffffff9, 0x4) setsockopt(0xffffffffffffffff, 0x20009, 0xa, &(0x7f00000003c0)="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", 0x13a) bind$can_raw(r2, &(0x7f0000000000), 0x10) [ 204.149612][ T5160] Bluetooth: hci2: SCO packet for unknown connection handle 4041 [ 204.159749][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:41 executing program 2: recvmmsg(0xffffffffffffffff, &(0x7f0000004480)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000001140)=[{&(0x7f00000000c0)=""/105, 0x69}, {&(0x7f0000000140)=""/4096, 0x1000}], 0x2, &(0x7f0000001180)=""/80, 0x50}, 0x8}, {{&(0x7f0000001200)=@l2tp={0x2, 0x0, @dev}, 0x80, &(0x7f0000001280), 0x0, &(0x7f00000012c0)=""/159, 0x9f}, 0x2}, {{&(0x7f0000001380)=@xdp, 0x80, &(0x7f0000002540)=[{&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000002400)=""/220, 0xdc}, {&(0x7f0000002500)=""/15, 0xf}], 0x3}, 0x4b85}, {{&(0x7f0000002580)=@tipc, 0x80, &(0x7f0000002700)=[{&(0x7f0000002600)=""/241, 0xf1}], 0x1, &(0x7f0000002740)=""/66, 0x42}, 0x4}, {{0x0, 0x0, &(0x7f0000003c80)=[{&(0x7f00000027c0)=""/16, 0x10}, {&(0x7f0000002800)=""/114, 0x72}, {&(0x7f0000002880)=""/245, 0xf5}, {&(0x7f0000002980)=""/133, 0x85}, {&(0x7f0000002a40)=""/134, 0x86}, {&(0x7f0000002b00)=""/145, 0x91}, {&(0x7f0000002bc0)=""/170, 0xaa}, {&(0x7f0000002c80)=""/4096, 0x1000}], 0x8, &(0x7f0000003d00)=""/206, 0xce}, 0x5}, {{&(0x7f0000003e00)=@rc={0x1f, @none}, 0x80, &(0x7f0000004100)=[{&(0x7f0000003e80)=""/21, 0x15}, {&(0x7f0000003ec0)=""/33, 0x21}, {&(0x7f0000003f00)=""/91, 0x5b}, {&(0x7f0000003f80)=""/129, 0x81}, {&(0x7f0000004040)}, {&(0x7f0000004080)=""/101, 0x65}], 0x6, &(0x7f0000004180)=""/46, 0x2e}, 0x8000}, {{0x0, 0x0, &(0x7f00000041c0)}, 0x6}, {{&(0x7f0000004200)=@in={0x2, 0x0, @initdev}, 0x80, &(0x7f0000004380)=[{&(0x7f0000004280)=""/203, 0xcb}], 0x1, &(0x7f00000043c0)=""/160, 0xa0}}], 0x8, 0x0, &(0x7f0000004680)={0x77359400}) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:41 executing program 3: getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000001100)={r0, 0x70, "b0a928268b237bddf6f1cb57a07cb0199640d0777b3b20d2722099d03fad86e5861c0d347d5e3cd0b6e3969a90f43cfb565016f1bd6ecc42bea1b0f223decc86783668bd29251d186ba5ad3364300ffd5a75c4c2f33738188dc4a93aa678d572632382e0ce6e8385d9d9c25e1d53b315"}, 0x0) r1 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, 0x0) setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000040)={r0, 0x6, 0x8}, 0x8) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES32=r0], 0xa) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x2, {{0x0, 0x1}, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f0000000180)={0x0, 0x7}) fcntl$getownex(r2, 0x10, &(0x7f0000000140)) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x9ff, 0x30}, &(0x7f0000000100)=0xc) 06:05:41 executing program 1: openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x400400, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:41 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:41 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) recvmmsg(r0, &(0x7f00000063c0)=[{{&(0x7f0000000040)=@isdn, 0x80, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/220, 0xdc}], 0x2}}, {{&(0x7f00000002c0)=@caif=@rfm, 0x80, &(0x7f0000001840)=[{&(0x7f0000000340)=""/215, 0xd7}, {&(0x7f0000000440)=""/70, 0x46}, {&(0x7f00000004c0)=""/69, 0x45}, {&(0x7f0000000540)}, {&(0x7f0000000580)=""/232, 0xe8}, {&(0x7f0000000680)=""/254, 0xfe}, {&(0x7f0000000780)=""/119, 0x77}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/38, 0x26}], 0x9, &(0x7f00000020c0)=""/4096, 0x1000}, 0x7fffffff}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000001900)=""/253, 0xfd}, {&(0x7f0000001a00)=""/29, 0x1d}, {&(0x7f0000001a40)}, {&(0x7f0000001a80)=""/115, 0x73}], 0x4, &(0x7f0000001b40)=""/255, 0xff}, 0xfff}, {{&(0x7f0000001c40)=@in={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000001f40)=[{&(0x7f00000030c0)=""/4096, 0x1000}, {&(0x7f0000001cc0)=""/161, 0xa1}, {&(0x7f0000001d80)=""/97, 0x61}, {&(0x7f0000001e00)=""/170, 0xaa}, {&(0x7f0000001ec0)=""/95, 0x5f}], 0x5, &(0x7f00000040c0)=""/234, 0xea}, 0x6}, {{&(0x7f0000001fc0)=@alg, 0x80, &(0x7f0000005500)=[{&(0x7f00000041c0)=""/239, 0xef}, {&(0x7f00000042c0)=""/253, 0xfd}, {&(0x7f0000002040)=""/40, 0x28}, {&(0x7f00000043c0)=""/21, 0x15}, {&(0x7f0000004400)=""/238, 0xee}, {&(0x7f0000004500)=""/4096, 0x1000}], 0x6, &(0x7f0000005580)=""/139, 0x8b}, 0x5}, {{&(0x7f0000005640)=@alg, 0x80, &(0x7f00000057c0)=[{&(0x7f00000056c0)=""/10, 0xa}, {&(0x7f0000005700)=""/182, 0xb6}], 0x2, &(0x7f0000005800)=""/196, 0xc4}, 0x10001}, {{&(0x7f0000005900)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000005b80)=[{&(0x7f0000005980)=""/135, 0x87}, {&(0x7f0000005a40)=""/81, 0x51}, {&(0x7f0000005ac0)=""/80, 0x50}, {&(0x7f0000005b40)=""/38, 0x26}], 0x4, &(0x7f0000005bc0)=""/33, 0x21}, 0x5}, {{0x0, 0x0, &(0x7f0000006180)=[{&(0x7f0000005c00)=""/204, 0xcc}, {&(0x7f0000005d00)=""/164, 0xa4}, {&(0x7f0000005dc0)=""/160, 0xa0}, {&(0x7f0000005e80)=""/134, 0x86}, {&(0x7f0000005f40)=""/70, 0x46}, {&(0x7f0000005fc0)=""/207, 0xcf}, {&(0x7f00000060c0)=""/169, 0xa9}], 0x7}, 0x7ff}, {{&(0x7f0000006200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f00000062c0)=[{&(0x7f0000006280)=""/64, 0x40}], 0x1, &(0x7f0000006300)=""/149, 0x95}, 0x3}], 0x9, 0x100, &(0x7f0000006600)={0x77359400}) 06:05:41 executing program 3: getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000001100)={r0, 0x70, "b0a928268b237bddf6f1cb57a07cb0199640d0777b3b20d2722099d03fad86e5861c0d347d5e3cd0b6e3969a90f43cfb565016f1bd6ecc42bea1b0f223decc86783668bd29251d186ba5ad3364300ffd5a75c4c2f33738188dc4a93aa678d572632382e0ce6e8385d9d9c25e1d53b315"}, 0x0) (async, rerun: 32) r1 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0) (rerun: 32) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, 0x0) setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000040)={r0, 0x6, 0x8}, 0x8) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES32=r0], 0xa) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x2, {{0x0, 0x1}, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f0000000180)={0x0, 0x7}) (async, rerun: 64) fcntl$getownex(r2, 0x10, &(0x7f0000000140)) (rerun: 64) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x9ff, 0x30}, &(0x7f0000000100)=0xc) 06:05:41 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:41 executing program 0: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000180)={0x41, 0x4, 0x1}, 0x10) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000000)={0x7, 0x3}) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x6e707d2b542a2136, 0x0) r3 = openat(r2, &(0x7f0000000100)='./file0\x00', 0x103401, 0x67) r4 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r5, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r5, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f00000012c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="08040000020000002e2f66696c65550d513c91d183eb80381650f06bf88aad9ae1a7f6f4028801212e2296ca6b9cb0e2d1c0d0dd11b454a5e47f74d4e2c4cb3c6a58e020c0d430dce874a401d8f7c30dd24431af795f9f35375e21d441140952a7b03c9d1d6f0b179300774acc44a8f920be93af07a380c9f2e51bb3b38b0f1f2d47279cac89ab1bc304386977db22057f96cd"]) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32=r3]) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) ioctl$sock_kcm_SIOCKCMCLONE(r3, 0x89e2, &(0x7f0000000140)={r2}) setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000200)={0x41, 0x4, 0x2}, 0x10) 06:05:41 executing program 3: getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000001100)={r0, 0x70, "b0a928268b237bddf6f1cb57a07cb0199640d0777b3b20d2722099d03fad86e5861c0d347d5e3cd0b6e3969a90f43cfb565016f1bd6ecc42bea1b0f223decc86783668bd29251d186ba5ad3364300ffd5a75c4c2f33738188dc4a93aa678d572632382e0ce6e8385d9d9c25e1d53b315"}, 0x0) (async, rerun: 32) r1 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0) (rerun: 32) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r1, 0x80dc5521, 0x0) (async, rerun: 32) setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000040)={r0, 0x6, 0x8}, 0x8) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYRES32=r0], 0xa) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x2, {{0x0, 0x1}, 0x1}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0) (async, rerun: 64) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) (rerun: 64) sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async, rerun: 64) ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f0000000180)={0x0, 0x7}) (async, rerun: 64) fcntl$getownex(r2, 0x10, &(0x7f0000000140)) (async) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x9ff, 0x30}, &(0x7f0000000100)=0xc) 06:05:41 executing program 2: ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:41 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) recvmmsg(r0, &(0x7f00000063c0)=[{{&(0x7f0000000040)=@isdn, 0x80, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/220, 0xdc}], 0x2}}, {{&(0x7f00000002c0)=@caif=@rfm, 0x80, &(0x7f0000001840)=[{&(0x7f0000000340)=""/215, 0xd7}, {&(0x7f0000000440)=""/70, 0x46}, {&(0x7f00000004c0)=""/69, 0x45}, {&(0x7f0000000540)}, {&(0x7f0000000580)=""/232, 0xe8}, {&(0x7f0000000680)=""/254, 0xfe}, {&(0x7f0000000780)=""/119, 0x77}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/38, 0x26}], 0x9, &(0x7f00000020c0)=""/4096, 0x1000}, 0x7fffffff}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000001900)=""/253, 0xfd}, {&(0x7f0000001a00)=""/29, 0x1d}, {&(0x7f0000001a40)}, {&(0x7f0000001a80)=""/115, 0x73}], 0x4, &(0x7f0000001b40)=""/255, 0xff}, 0xfff}, {{&(0x7f0000001c40)=@in={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000001f40)=[{&(0x7f00000030c0)=""/4096, 0x1000}, {&(0x7f0000001cc0)=""/161, 0xa1}, {&(0x7f0000001d80)=""/97, 0x61}, {&(0x7f0000001e00)=""/170, 0xaa}, {&(0x7f0000001ec0)=""/95, 0x5f}], 0x5, &(0x7f00000040c0)=""/234, 0xea}, 0x6}, {{&(0x7f0000001fc0)=@alg, 0x80, &(0x7f0000005500)=[{&(0x7f00000041c0)=""/239, 0xef}, {&(0x7f00000042c0)=""/253, 0xfd}, {&(0x7f0000002040)=""/40, 0x28}, {&(0x7f00000043c0)=""/21, 0x15}, {&(0x7f0000004400)=""/238, 0xee}, {&(0x7f0000004500)=""/4096, 0x1000}], 0x6, &(0x7f0000005580)=""/139, 0x8b}, 0x5}, {{&(0x7f0000005640)=@alg, 0x80, &(0x7f00000057c0)=[{&(0x7f00000056c0)=""/10, 0xa}, {&(0x7f0000005700)=""/182, 0xb6}], 0x2, &(0x7f0000005800)=""/196, 0xc4}, 0x10001}, {{&(0x7f0000005900)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000005b80)=[{&(0x7f0000005980)=""/135, 0x87}, {&(0x7f0000005a40)=""/81, 0x51}, {&(0x7f0000005ac0)=""/80, 0x50}, {&(0x7f0000005b40)=""/38, 0x26}], 0x4, &(0x7f0000005bc0)=""/33, 0x21}, 0x5}, {{0x0, 0x0, &(0x7f0000006180)=[{&(0x7f0000005c00)=""/204, 0xcc}, {&(0x7f0000005d00)=""/164, 0xa4}, {&(0x7f0000005dc0)=""/160, 0xa0}, {&(0x7f0000005e80)=""/134, 0x86}, {&(0x7f0000005f40)=""/70, 0x46}, {&(0x7f0000005fc0)=""/207, 0xcf}, {&(0x7f00000060c0)=""/169, 0xa9}], 0x7}, 0x7ff}, {{&(0x7f0000006200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f00000062c0)=[{&(0x7f0000006280)=""/64, 0x40}], 0x1, &(0x7f0000006300)=""/149, 0x95}, 0x3}], 0x9, 0x100, &(0x7f0000006600)={0x77359400}) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) recvmmsg(r0, &(0x7f00000063c0)=[{{&(0x7f0000000040)=@isdn, 0x80, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/220, 0xdc}], 0x2}}, {{&(0x7f00000002c0)=@caif=@rfm, 0x80, &(0x7f0000001840)=[{&(0x7f0000000340)=""/215, 0xd7}, {&(0x7f0000000440)=""/70, 0x46}, {&(0x7f00000004c0)=""/69, 0x45}, {&(0x7f0000000540)}, {&(0x7f0000000580)=""/232, 0xe8}, {&(0x7f0000000680)=""/254, 0xfe}, {&(0x7f0000000780)=""/119, 0x77}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/38, 0x26}], 0x9, &(0x7f00000020c0)=""/4096, 0x1000}, 0x7fffffff}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000001900)=""/253, 0xfd}, {&(0x7f0000001a00)=""/29, 0x1d}, {&(0x7f0000001a40)}, {&(0x7f0000001a80)=""/115, 0x73}], 0x4, &(0x7f0000001b40)=""/255, 0xff}, 0xfff}, {{&(0x7f0000001c40)=@in={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000001f40)=[{&(0x7f00000030c0)=""/4096, 0x1000}, {&(0x7f0000001cc0)=""/161, 0xa1}, {&(0x7f0000001d80)=""/97, 0x61}, {&(0x7f0000001e00)=""/170, 0xaa}, {&(0x7f0000001ec0)=""/95, 0x5f}], 0x5, &(0x7f00000040c0)=""/234, 0xea}, 0x6}, {{&(0x7f0000001fc0)=@alg, 0x80, &(0x7f0000005500)=[{&(0x7f00000041c0)=""/239, 0xef}, {&(0x7f00000042c0)=""/253, 0xfd}, {&(0x7f0000002040)=""/40, 0x28}, {&(0x7f00000043c0)=""/21, 0x15}, {&(0x7f0000004400)=""/238, 0xee}, {&(0x7f0000004500)=""/4096, 0x1000}], 0x6, &(0x7f0000005580)=""/139, 0x8b}, 0x5}, {{&(0x7f0000005640)=@alg, 0x80, &(0x7f00000057c0)=[{&(0x7f00000056c0)=""/10, 0xa}, {&(0x7f0000005700)=""/182, 0xb6}], 0x2, &(0x7f0000005800)=""/196, 0xc4}, 0x10001}, {{&(0x7f0000005900)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000005b80)=[{&(0x7f0000005980)=""/135, 0x87}, {&(0x7f0000005a40)=""/81, 0x51}, {&(0x7f0000005ac0)=""/80, 0x50}, {&(0x7f0000005b40)=""/38, 0x26}], 0x4, &(0x7f0000005bc0)=""/33, 0x21}, 0x5}, {{0x0, 0x0, &(0x7f0000006180)=[{&(0x7f0000005c00)=""/204, 0xcc}, {&(0x7f0000005d00)=""/164, 0xa4}, {&(0x7f0000005dc0)=""/160, 0xa0}, {&(0x7f0000005e80)=""/134, 0x86}, {&(0x7f0000005f40)=""/70, 0x46}, {&(0x7f0000005fc0)=""/207, 0xcf}, {&(0x7f00000060c0)=""/169, 0xa9}], 0x7}, 0x7ff}, {{&(0x7f0000006200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f00000062c0)=[{&(0x7f0000006280)=""/64, 0x40}], 0x1, &(0x7f0000006300)=""/149, 0x95}, 0x3}], 0x9, 0x100, &(0x7f0000006600)={0x77359400}) (async) 06:05:42 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="4dd4ba644670164f2d5d4e86103fc25276dc1504db4ab23a65b5c07a9d02a15c85283524a8d3eabe474da3"], 0x4) 06:05:42 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) recvmmsg(r0, &(0x7f00000063c0)=[{{&(0x7f0000000040)=@isdn, 0x80, &(0x7f0000000280)=[{&(0x7f00000000c0)=""/140, 0x8c}, {&(0x7f0000000180)=""/220, 0xdc}], 0x2}}, {{&(0x7f00000002c0)=@caif=@rfm, 0x80, &(0x7f0000001840)=[{&(0x7f0000000340)=""/215, 0xd7}, {&(0x7f0000000440)=""/70, 0x46}, {&(0x7f00000004c0)=""/69, 0x45}, {&(0x7f0000000540)}, {&(0x7f0000000580)=""/232, 0xe8}, {&(0x7f0000000680)=""/254, 0xfe}, {&(0x7f0000000780)=""/119, 0x77}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/38, 0x26}], 0x9, &(0x7f00000020c0)=""/4096, 0x1000}, 0x7fffffff}, {{0x0, 0x0, &(0x7f0000001b00)=[{&(0x7f0000001900)=""/253, 0xfd}, {&(0x7f0000001a00)=""/29, 0x1d}, {&(0x7f0000001a40)}, {&(0x7f0000001a80)=""/115, 0x73}], 0x4, &(0x7f0000001b40)=""/255, 0xff}, 0xfff}, {{&(0x7f0000001c40)=@in={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000001f40)=[{&(0x7f00000030c0)=""/4096, 0x1000}, {&(0x7f0000001cc0)=""/161, 0xa1}, {&(0x7f0000001d80)=""/97, 0x61}, {&(0x7f0000001e00)=""/170, 0xaa}, {&(0x7f0000001ec0)=""/95, 0x5f}], 0x5, &(0x7f00000040c0)=""/234, 0xea}, 0x6}, {{&(0x7f0000001fc0)=@alg, 0x80, &(0x7f0000005500)=[{&(0x7f00000041c0)=""/239, 0xef}, {&(0x7f00000042c0)=""/253, 0xfd}, {&(0x7f0000002040)=""/40, 0x28}, {&(0x7f00000043c0)=""/21, 0x15}, {&(0x7f0000004400)=""/238, 0xee}, {&(0x7f0000004500)=""/4096, 0x1000}], 0x6, &(0x7f0000005580)=""/139, 0x8b}, 0x5}, {{&(0x7f0000005640)=@alg, 0x80, &(0x7f00000057c0)=[{&(0x7f00000056c0)=""/10, 0xa}, {&(0x7f0000005700)=""/182, 0xb6}], 0x2, &(0x7f0000005800)=""/196, 0xc4}, 0x10001}, {{&(0x7f0000005900)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000005b80)=[{&(0x7f0000005980)=""/135, 0x87}, {&(0x7f0000005a40)=""/81, 0x51}, {&(0x7f0000005ac0)=""/80, 0x50}, {&(0x7f0000005b40)=""/38, 0x26}], 0x4, &(0x7f0000005bc0)=""/33, 0x21}, 0x5}, {{0x0, 0x0, &(0x7f0000006180)=[{&(0x7f0000005c00)=""/204, 0xcc}, {&(0x7f0000005d00)=""/164, 0xa4}, {&(0x7f0000005dc0)=""/160, 0xa0}, {&(0x7f0000005e80)=""/134, 0x86}, {&(0x7f0000005f40)=""/70, 0x46}, {&(0x7f0000005fc0)=""/207, 0xcf}, {&(0x7f00000060c0)=""/169, 0xa9}], 0x7}, 0x7ff}, {{&(0x7f0000006200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f00000062c0)=[{&(0x7f0000006280)=""/64, 0x40}], 0x1, &(0x7f0000006300)=""/149, 0x95}, 0x3}], 0x9, 0x100, &(0x7f0000006600)={0x77359400}) 06:05:42 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) [ 204.351854][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:42 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) [ 204.370729][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:42 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="4dd4ba644670164f2d5d4e86103fc25276dc1504db4ab23a65b5c07a9d02a15c85283524a8d3eabe474da3"], 0x4) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="4dd4ba644670164f2d5d4e86103fc25276dc1504db4ab23a65b5c07a9d02a15c85283524a8d3eabe474da3"], 0x4) (async) 06:05:42 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2}, 0x50) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r2}, 0x18) openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) 06:05:42 executing program 0: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x440941, 0x0) fcntl$getflags(0xffffffffffffffff, 0x408) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = syz_io_uring_setup(0x31e2, &(0x7f0000000040)={0x0, 0x401c0d, 0x10, 0x2, 0x127}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) r2 = openat$ndctl0(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) syz_io_uring_setup(0x1ccb, &(0x7f00000001c0)={0x0, 0xc29a, 0x25a, 0x0, 0x290, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000240), &(0x7f0000000280)) ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, &(0x7f0000000140)=0xffffffffffffffff) close_range(r1, r3, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000140)='veth1_to_bridge\x00', 0x10) getsockopt$sock_buf(r4, 0x1, 0x19, &(0x7f0000000180)=""/227, &(0x7f0000000280)=0xe3) connect$inet(r4, &(0x7f00000002c0)={0x2, 0x4e20, @local}, 0x10) 06:05:42 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) [ 204.420456][ T5160] Bluetooth: hci0: Malformed Event: 0x02 06:05:42 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x424103) ioctl$LOOP_CLR_FD(r0, 0x4c01) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$int_in(r2, 0x5452, &(0x7f0000000140)=0xfff) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x9, 0x2ff, 0x8f12, 0xff, 0x3}) 06:05:42 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="4dd4ba644670164f2d5d4e86103fc25276dc1504db4ab23a65b5c07a9d02a15c85283524a8d3eabe474da3"], 0x4) 06:05:42 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async) read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2}, 0x50) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r2}, 0x18) (async) openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) 06:05:42 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="031c30da621258df6ba96e462577c90000"], 0x4) 06:05:42 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2}, 0x50) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r2}, 0x18) openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) openat$fuse(0xffffffffffffff9c, &(0x7f0000000680), 0x42, 0x0) (async) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) (async) read$FUSE(r1, &(0x7f00000021c0)={0x2020}, 0x2020) (async) write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2}, 0x50) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0x0, r2}, 0x18) (async) openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) (async) 06:05:42 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="031c30da621258df6ba96e462577c90000"], 0x4) [ 204.467483][ T5160] Bluetooth: hci1: SCO packet for unknown connection handle 28 06:05:42 executing program 0: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_rsp={{0x18, 0x0, 0xc}, {0x8001, 0x7, 0x100, 0x1, [0xec9, 0x20]}}}}, 0x19) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_move_chan_rsp={{0xf, 0xfe, 0x4}, {0xf77c, 0x8}}]}}, 0x11) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_signaling={{0x6}, [@l2cap_cmd_rej_unk={{0x1, 0x72, 0x2}, {0x1}}]}}, 0xf) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x6, @none, "260644435d8e9ac7b832d3a7430822c797161ba754da21b906bfbda364d953dbcafffaa129597bee481d30bd0c6f002421b70e1c0c818dc6b77a4e28cb94b79c93eba441d1acdbae9c76a75d718848f46cb66dc41d563e8744ec9e0eafc499eb458d03f45b980ad273fc2bb6e62d4365494acecfa238fa79c41aeb4cf579682d0910d4c16282c2e4ae1b3ea55a258cf34f02b92b0dc3a6566cc809bbd67cc50e74aa441dd6eb34336a778f17e048fae3e7bab29f7da9218b73b76279d3ab9984cbb18676c408bd1bfae3a03145fec8ef7d6ac6877e197009eafd8962fc1212810c347adac2da1c1ba8100e71eee2dd62c516f63572a8b3f6"}}}, 0x102) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:42 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x424103) ioctl$LOOP_CLR_FD(r0, 0x4c01) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) ioctl$int_in(r2, 0x5452, &(0x7f0000000140)=0xfff) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async, rerun: 64) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x9, 0x2ff, 0x8f12, 0xff, 0x3}) (rerun: 64) 06:05:42 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) write$RDMA_USER_CM_CMD_NOTIFY(r1, &(0x7f0000000080)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0xd}}, 0x10) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:42 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="031c30da621258df6ba96e462577c90000"], 0x4) [ 204.491361][ T5160] Bluetooth: hci1: SCO packet for unknown connection handle 28 06:05:42 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) write$RDMA_USER_CM_CMD_NOTIFY(r1, &(0x7f0000000080)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0xd}}, 0x10) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:42 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_sniff_subrate={{0x2e, 0xb}, {0x6, 0xc9, 0x80, 0xffff, 0x5, 0x9}}}, 0xe) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="a700b42b10fc64ac1cdf8bde1ca4eddcf0de48a8e88fe987926f6a5dbbfb5e0cd64a4be088276321160329af4ce97af410581f988b6486630c0e5807298502e7f0aad018183e8fb618e98041c4da5353862dbe40b589cf9eac4782018b95c3a0e1d818faae5d572a80bd6f904d0230546bddc5ec1ef8826630bb751a0bd3bfb2850887ecd185a1366bd87105f17911545f615e7d14b8f6db78d5f2a8abcb631697ea7df4be8a84d3bd5d2195dfa7c6bac2906331dfa495c141d2484406b5015c975f4b98f6eae8b1c8606031a14aa4e8fad5dd6ea4a89767b92a188830863e7790b8c848a817b1d97f7e8f166777e83b5e00a7974227c4ee10043e5e30b9b20e3776ddcf861fa97d863f3527f7fbac1d243514f5dd5a3b6c7a4f43ac6d72f53566e2a4"], 0x4) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0xc0}, 0x2) [ 205.289856][ T5160] Bluetooth: hci1: SCO packet for unknown connection handle 28 [ 205.301364][ T5160] Bluetooth: Unexpected continuation frame (len 10) 06:05:42 executing program 0: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x0, 0x1, 0x14}, @l2cap_cid_le_signaling={{0x10}, @l2cap_ecred_conn_rsp={{0x18, 0x0, 0xc}, {0x8001, 0x7, 0x100, 0x1, [0xec9, 0x20]}}}}, 0x19) syz_emit_vhci(&(0x7f0000000280)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0xc}, @l2cap_cid_signaling={{0x8}, [@l2cap_move_chan_rsp={{0xf, 0xfe, 0x4}, {0xf77c, 0x8}}]}}, 0x11) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_signaling={{0x6}, [@l2cap_cmd_rej_unk={{0x1, 0x72, 0x2}, {0x1}}]}}, 0xf) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_name={{0x7, 0xff}, {0x6, @none, "260644435d8e9ac7b832d3a7430822c797161ba754da21b906bfbda364d953dbcafffaa129597bee481d30bd0c6f002421b70e1c0c818dc6b77a4e28cb94b79c93eba441d1acdbae9c76a75d718848f46cb66dc41d563e8744ec9e0eafc499eb458d03f45b980ad273fc2bb6e62d4365494acecfa238fa79c41aeb4cf579682d0910d4c16282c2e4ae1b3ea55a258cf34f02b92b0dc3a6566cc809bbd67cc50e74aa441dd6eb34336a778f17e048fae3e7bab29f7da9218b73b76279d3ab9984cbb18676c408bd1bfae3a03145fec8ef7d6ac6877e197009eafd8962fc1212810c347adac2da1c1ba8100e71eee2dd62c516f63572a8b3f6"}}}, 0x102) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) syz_emit_vhci(&(0x7f0000000240)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) 06:05:42 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x8000, 0x0) write$RDMA_USER_CM_CMD_NOTIFY(r1, &(0x7f0000000080)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0xd}}, 0x10) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:43 executing program 2: syz_emit_vhci(0x0, 0x17) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (rerun: 64) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_sniff_subrate={{0x2e, 0xb}, {0x6, 0xc9, 0x80, 0xffff, 0x5, 0x9}}}, 0xe) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="a700b42b10fc64ac1cdf8bde1ca4eddcf0de48a8e88fe987926f6a5dbbfb5e0cd64a4be088276321160329af4ce97af410581f988b6486630c0e5807298502e7f0aad018183e8fb618e98041c4da5353862dbe40b589cf9eac4782018b95c3a0e1d818faae5d572a80bd6f904d0230546bddc5ec1ef8826630bb751a0bd3bfb2850887ecd185a1366bd87105f17911545f615e7d14b8f6db78d5f2a8abcb631697ea7df4be8a84d3bd5d2195dfa7c6bac2906331dfa495c141d2484406b5015c975f4b98f6eae8b1c8606031a14aa4e8fad5dd6ea4a89767b92a188830863e7790b8c848a817b1d97f7e8f166777e83b5e00a7974227c4ee10043e5e30b9b20e3776ddcf861fa97d863f3527f7fbac1d243514f5dd5a3b6c7a4f43ac6d72f53566e2a4"], 0x4) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0xc0}, 0x2) [ 205.332058][ T5168] Bluetooth: Unexpected continuation frame (len 10) 06:05:43 executing program 3: r0 = syz_open_dev$loop(&(0x7f0000000080), 0x0, 0x424103) ioctl$LOOP_CLR_FD(r0, 0x4c01) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$int_in(r2, 0x5452, &(0x7f0000000140)=0xfff) (async) ioctl$int_in(r2, 0x5452, &(0x7f0000000140)=0xfff) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x9, 0x2ff, 0x8f12, 0xff, 0x3}) (async) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x9, 0x2ff, 0x8f12, 0xff, 0x3}) 06:05:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) (fail_nth: 1) 06:05:43 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_sniff_subrate={{0x2e, 0xb}, {0x6, 0xc9, 0x80, 0xffff, 0x5, 0x9}}}, 0xe) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x4) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0xc0}, 0x2) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @hci_ev_sniff_subrate={{0x2e, 0xb}, {0x6, 0xc9, 0x80, 0xffff, 0x5, 0x9}}}, 0xe) (async) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="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"], 0x4) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0xc0}, 0x2) (async) 06:05:43 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$cgroup_subtree(r0, &(0x7f0000000040)={[{0x2d, 'blkio'}, {0x0, 'cpuset'}, {0x2d, 'cpuacct'}]}, 0x18) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) mknodat(r0, &(0x7f0000000080)='./file0\x00', 0xceef26cc19aab732, 0x2) 06:05:43 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$cgroup_subtree(r0, &(0x7f0000000040)={[{0x2d, 'blkio'}, {0x0, 'cpuset'}, {0x2d, 'cpuacct'}]}, 0x18) (async) write$cgroup_subtree(r0, &(0x7f0000000040)={[{0x2d, 'blkio'}, {0x0, 'cpuset'}, {0x2d, 'cpuacct'}]}, 0x18) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) mknodat(r0, &(0x7f0000000080)='./file0\x00', 0xceef26cc19aab732, 0x2) 06:05:43 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYRESDEC=r0, @ANYRESDEC=r0], 0x4) [ 205.607991][ T8948] FAULT_INJECTION: forcing a failure. [ 205.607991][ T8948] name failslab, interval 1, probability 0, space 0, times 0 [ 205.613165][ T8948] CPU: 0 PID: 8948 Comm: syz-executor.0 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0 [ 205.617360][ T8948] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 205.621343][ T8948] Call Trace: [ 205.622858][ T8948] [ 205.624239][ T8948] dump_stack_lvl+0x136/0x150 06:05:43 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$cgroup_subtree(r0, &(0x7f0000000040)={[{0x2d, 'blkio'}, {0x0, 'cpuset'}, {0x2d, 'cpuacct'}]}, 0x18) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) mknodat(r0, &(0x7f0000000080)='./file0\x00', 0xceef26cc19aab732, 0x2) [ 205.626266][ T8948] should_fail_ex+0x4a3/0x5b0 [ 205.628475][ T8948] should_failslab+0x9/0x20 [ 205.630452][ T8948] __kmem_cache_alloc_node+0x5b/0x410 [ 205.632482][ T8948] ? tomoyo_realpath_from_path+0xc3/0x600 [ 205.634658][ T8948] __kmalloc+0x4e/0x190 [ 205.636319][ T8948] ? rcu_is_watching+0x12/0xb0 [ 205.638442][ T8948] tomoyo_realpath_from_path+0xc3/0x600 [ 205.640720][ T8948] ? tomoyo_profile+0x46/0x60 [ 205.641040][ T5168] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 205.643232][ T8948] tomoyo_path_number_perm+0x21a/0x570 [ 205.649081][ T8948] ? tomoyo_path_number_perm+0x1c1/0x570 [ 205.651700][ T8948] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 205.654170][ T8948] ? lock_downgrade+0x690/0x690 [ 205.656148][ T8948] ? wait_for_completion_io_timeout+0x20/0x20 [ 205.659107][ T8948] ? __fget_files+0x261/0x470 [ 205.660721][ T8948] security_file_ioctl+0x54/0xb0 06:05:43 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async, rerun: 64) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) (rerun: 64) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYRESDEC=r0, @ANYRESDEC=r0], 0x4) [ 205.662264][ T8948] __x64_sys_ioctl+0xb7/0x210 [ 205.664150][ T8948] do_syscall_64+0x39/0xb0 [ 205.665751][ T8948] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 205.667987][ T8948] RIP: 0033:0x7fca20e8c389 [ 205.669673][ T8948] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 205.677471][ T8948] RSP: 002b:00007fca21b2a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 205.681152][ T8948] RAX: ffffffffffffffda RBX: 00007fca20fabf80 RCX: 00007fca20e8c389 [ 205.684568][ T8948] RDX: 00000000200001c0 RSI: 000000004040ae79 RDI: 0000000000000004 [ 205.687730][ T8948] RBP: 00007fca21b2a1d0 R08: 0000000000000000 R09: 0000000000000000 06:05:43 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_pscan_rep_mode={{0x20, 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7f}}}, 0xa) [ 205.691338][ T8948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 205.695034][ T8948] R13: 00007fff66a9c9ff R14: 00007fca21b2a300 R15: 0000000000022000 [ 205.698498][ T8948] [ 205.702117][ T8948] ERROR: Out of memory at tomoyo_realpath_from_path. [ 205.711605][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) (fail_nth: 2) 06:05:43 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda, 0x0, {0x1c}}, 0x18) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x21, 0x0, &(0x7f0000000100)=0xfffffffffffffde5) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r10 = socket$can_bcm(0x1d, 0x2, 0x2) r11 = socket$nl_generic(0x10, 0x3, 0x10) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r14, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r15 = gettid() process_vm_writev(r15, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f00000005c0)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r10, r1, 0xffffffffffffffff, r11, r12, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r13, r2, r14]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0xffffffffffffffff, r16}}}], 0x118, 0x20000801}}], 0x1, 0x2) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000020c0)={0xb0, 0xfffffffffffffffe, 0x0, [{{0x0, 0x1, 0x7, 0x0, 0x6, 0x2841, {0x1, 0x7, 0x2400000000000, 0x8, 0x1ff, 0x100000001, 0x4, 0x8000, 0x7b, 0x1000, 0x2, r4, 0x0, 0x1, 0x9}}, {0x6, 0x2, 0x1, 0x7, '^'}}]}, 0xb0) 06:05:43 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_pscan_rep_mode={{0x20, 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7f}}}, 0xa) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_pscan_rep_mode={{0x20, 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7f}}}, 0xa) (async) 06:05:43 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYRES32=r0, @ANYRESDEC=r0, @ANYRESDEC=r0], 0x4) [ 205.765902][ T5168] Bluetooth: hci0: Malformed Event: 0x02 [ 205.767954][ T5160] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 205.768401][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:43 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="02c95019e5edde87e20000000000000004000e00050005020a000000f8ff0982b5b60000"], 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xbd}, "c81a1acc5cf0958f2bd6088acd85ae5a626cb07ad55a13ea1a1745642d5a9a616ad93d7b5dfc0526169f39d488193e154f92494cddfc3d7ecd53c9803d8503f8d660c5039fcb84fb2eead6d2636c3d8448297f1c4cef1ac4a369ff8186cb5ff60ea7e3aea4962405f8b35a1d5e0732fe4fdd9aaab80fbfd90c20f2fbd8491bde0d0996a9dc0a7958ff216b2bbb7d8efa18e1a726492e6c81bca7e4ef87cefcef3046ec4644405b39c4ff5b4cbb4f763bc7fa001c75accfa309f8eacc79"}, 0xc1) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_notify={{0x18, 0x17}, {@any, "ae62dfcd6059f2866fffe708b2d33ea2", 0x7f}}}, 0x1a) syz_emit_vhci(0x0, 0x0) socket$netlink(0x10, 0x3, 0x6) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:43 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_pscan_rep_mode={{0x20, 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7f}}}, 0xa) [ 205.786177][ T8984] FAULT_INJECTION: forcing a failure. [ 205.786177][ T8984] name failslab, interval 1, probability 0, space 0, times 0 [ 205.787406][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:43 executing program 3: syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040247040018c85900000066aea6c5a35c015df268bbb1f43a5e2a1d052d8591f63cd115759f83a812f13dfb43ff27e08fd54d7b9df28529bcdadc259c5aa7257729a5455887917a93cea9a72f23964fa7d7ec072fd963cde5387fd234be0f342d5a10ad6efebef262d965ef3b5300f8d5411a3c83670b6550d216dc0b04cdd2eeb689a855ee19bfd0590a2acf56b6212ca75f1851fd7ba52c09777971e6b49664c19024a907610c5d27b273403e83465b6ffe91"], 0xa) [ 205.792000][ T8984] CPU: 1 PID: 8984 Comm: syz-executor.0 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0 [ 205.798499][ T8984] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 06:05:43 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="02c95019e5edde87e20000000000000004000e00050005020a000000f8ff0982b5b60000"], 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xbd}, "c81a1acc5cf0958f2bd6088acd85ae5a626cb07ad55a13ea1a1745642d5a9a616ad93d7b5dfc0526169f39d488193e154f92494cddfc3d7ecd53c9803d8503f8d660c5039fcb84fb2eead6d2636c3d8448297f1c4cef1ac4a369ff8186cb5ff60ea7e3aea4962405f8b35a1d5e0732fe4fdd9aaab80fbfd90c20f2fbd8491bde0d0996a9dc0a7958ff216b2bbb7d8efa18e1a726492e6c81bca7e4ef87cefcef3046ec4644405b39c4ff5b4cbb4f763bc7fa001c75accfa309f8eacc79"}, 0xc1) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_notify={{0x18, 0x17}, {@any, "ae62dfcd6059f2866fffe708b2d33ea2", 0x7f}}}, 0x1a) syz_emit_vhci(0x0, 0x0) socket$netlink(0x10, 0x3, 0x6) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 205.802482][ T8984] Call Trace: [ 205.804028][ T8984] [ 205.805395][ T8984] dump_stack_lvl+0x136/0x150 [ 205.807562][ T8984] should_fail_ex+0x4a3/0x5b0 [ 205.809709][ T8984] should_failslab+0x9/0x20 [ 205.811787][ T8984] __kmem_cache_alloc_node+0x5b/0x410 [ 205.813327][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 205.814213][ T8984] ? mark_held_locks+0x9f/0xe0 [ 205.814237][ T8984] ? tomoyo_encode2.part.0+0xe9/0x3a0 [ 205.814259][ T8984] __kmalloc+0x4e/0x190 [ 205.814276][ T8984] tomoyo_encode2.part.0+0xe9/0x3a0 [ 205.826058][ T8984] ? tomoyo_realpath_from_path+0xc3/0x600 [ 205.828774][ T8984] ? rcu_is_watching+0x12/0xb0 [ 205.830984][ T8984] tomoyo_encode+0x2c/0x50 [ 205.832807][ T8984] tomoyo_realpath_from_path+0x185/0x600 [ 205.834982][ T8984] ? tomoyo_profile+0x46/0x60 [ 205.836763][ T8984] tomoyo_path_number_perm+0x21a/0x570 [ 205.838819][ T8984] ? tomoyo_path_number_perm+0x1c1/0x570 [ 205.841271][ T8984] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 205.843462][ T8984] ? lock_downgrade+0x690/0x690 [ 205.845362][ T8984] ? wait_for_completion_io_timeout+0x20/0x20 [ 205.847796][ T8984] ? __fget_files+0x261/0x470 [ 205.849560][ T8984] security_file_ioctl+0x54/0xb0 [ 205.851367][ T8984] __x64_sys_ioctl+0xb7/0x210 [ 205.853064][ T8984] do_syscall_64+0x39/0xb0 [ 205.854675][ T8984] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 205.856781][ T8984] RIP: 0033:0x7fca20e8c389 [ 205.858391][ T8984] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 205.866838][ T8984] RSP: 002b:00007fca21b2a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 205.870688][ T8984] RAX: ffffffffffffffda RBX: 00007fca20fabf80 RCX: 00007fca20e8c389 [ 205.874103][ T8984] RDX: 00000000200001c0 RSI: 000000004040ae79 RDI: 0000000000000004 [ 205.877723][ T8984] RBP: 00007fca21b2a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 205.881344][ T8984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 205.884772][ T8984] R13: 00007fff66a9c9ff R14: 00007fca21b2a300 R15: 0000000000022000 [ 205.888347][ T8984] [ 205.892461][ T8984] ERROR: Out of memory at tomoyo_realpath_from_path. 06:05:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) (fail_nth: 3) [ 206.036495][ T9002] FAULT_INJECTION: forcing a failure. [ 206.036495][ T9002] name failslab, interval 1, probability 0, space 0, times 0 [ 206.042205][ T9002] CPU: 3 PID: 9002 Comm: syz-executor.0 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0 [ 206.046050][ T9002] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 206.049681][ T9002] Call Trace: [ 206.050913][ T9002] [ 206.052092][ T9002] dump_stack_lvl+0x136/0x150 [ 206.053897][ T9002] should_fail_ex+0x4a3/0x5b0 [ 206.055690][ T9002] should_failslab+0x9/0x20 [ 206.057342][ T9002] __kmem_cache_alloc_node+0x5b/0x410 [ 206.059301][ T9002] ? mark_held_locks+0x9f/0xe0 [ 206.061360][ T9002] ? tomoyo_encode2.part.0+0xe9/0x3a0 [ 206.063800][ T9002] __kmalloc+0x4e/0x190 [ 206.065645][ T9002] tomoyo_encode2.part.0+0xe9/0x3a0 [ 206.068011][ T9002] ? tomoyo_realpath_from_path+0xc3/0x600 [ 206.070284][ T9002] ? rcu_is_watching+0x12/0xb0 [ 206.072263][ T9002] tomoyo_encode+0x2c/0x50 [ 206.074071][ T9002] tomoyo_realpath_from_path+0x185/0x600 [ 206.076470][ T9002] ? tomoyo_profile+0x46/0x60 [ 206.078606][ T9002] tomoyo_path_number_perm+0x21a/0x570 [ 206.081034][ T9002] ? tomoyo_path_number_perm+0x1c1/0x570 [ 206.083065][ T9002] ? tomoyo_execute_permission+0x4a0/0x4a0 [ 206.085632][ T9002] ? lock_downgrade+0x690/0x690 [ 206.087877][ T9002] ? wait_for_completion_io_timeout+0x20/0x20 [ 206.090651][ T9002] ? __fget_files+0x261/0x470 [ 206.092842][ T9002] security_file_ioctl+0x54/0xb0 [ 206.095105][ T9002] __x64_sys_ioctl+0xb7/0x210 [ 206.097264][ T9002] do_syscall_64+0x39/0xb0 [ 206.099316][ T9002] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 206.101996][ T9002] RIP: 0033:0x7fca20e8c389 [ 206.104063][ T9002] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 206.112898][ T9002] RSP: 002b:00007fca21b2a168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 206.116704][ T9002] RAX: ffffffffffffffda RBX: 00007fca20fabf80 RCX: 00007fca20e8c389 [ 206.120264][ T9002] RDX: 00000000200001c0 RSI: 000000004040ae79 RDI: 0000000000000004 [ 206.123514][ T9002] RBP: 00007fca21b2a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 206.126417][ T9002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 206.129502][ T9002] R13: 00007fff66a9c9ff R14: 00007fca21b2a300 R15: 0000000000022000 [ 206.132515][ T9002] [ 206.141647][ T9002] ERROR: Out of memory at tomoyo_realpath_from_path. 06:05:44 executing program 3: syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040247040018c85900000066aea6c5a35c015df268bbb1f43a5e2a1d052d8591f63cd115759f83a812f13dfb43ff27e08fd54d7b9df28529bcdadc259c5aa7257729a5455887917a93cea9a72f23964fa7d7ec072fd963cde5387fd234be0f342d5a10ad6efebef262d965ef3b5300f8d5411a3c83670b6550d216dc0b04cdd2eeb689a855ee19bfd0590a2acf56b6212ca75f1851fd7ba52c09777971e6b49664c19024a907610c5d27b273403e83465b6ffe91"], 0xa) 06:05:44 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="02c95019e5edde87e20000000000000004000e00050005020a000000f8ff0982b5b60000"], 0x17) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xbd}, "c81a1acc5cf0958f2bd6088acd85ae5a626cb07ad55a13ea1a1745642d5a9a616ad93d7b5dfc0526169f39d488193e154f92494cddfc3d7ecd53c9803d8503f8d660c5039fcb84fb2eead6d2636c3d8448297f1c4cef1ac4a369ff8186cb5ff60ea7e3aea4962405f8b35a1d5e0732fe4fdd9aaab80fbfd90c20f2fbd8491bde0d0996a9dc0a7958ff216b2bbb7d8efa18e1a726492e6c81bca7e4ef87cefcef3046ec4644405b39c4ff5b4cbb4f763bc7fa001c75accfa309f8eacc79"}, 0xc1) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_notify={{0x18, 0x17}, {@any, "ae62dfcd6059f2866fffe708b2d33ea2", 0x7f}}}, 0x1a) (async) syz_emit_vhci(0x0, 0x0) (async) socket$netlink(0x10, 0x3, 0x6) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:44 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda, 0x0, {0x1c}}, 0x18) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) (async) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) (async) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x21, 0x0, &(0x7f0000000100)=0xfffffffffffffde5) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r10 = socket$can_bcm(0x1d, 0x2, 0x2) r11 = socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r14, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r15 = gettid() process_vm_writev(r15, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) (async) process_vm_writev(r15, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f00000005c0)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r10, r1, 0xffffffffffffffff, r11, r12, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r13, r2, r14]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0xffffffffffffffff, r16}}}], 0x118, 0x20000801}}], 0x1, 0x2) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000020c0)={0xb0, 0xfffffffffffffffe, 0x0, [{{0x0, 0x1, 0x7, 0x0, 0x6, 0x2841, {0x1, 0x7, 0x2400000000000, 0x8, 0x1ff, 0x100000001, 0x4, 0x8000, 0x7b, 0x1000, 0x2, r4, 0x0, 0x1, 0x9}}, {0x6, 0x2, 0x1, 0x7, '^'}}]}, 0xb0) (async) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000020c0)={0xb0, 0xfffffffffffffffe, 0x0, [{{0x0, 0x1, 0x7, 0x0, 0x6, 0x2841, {0x1, 0x7, 0x2400000000000, 0x8, 0x1ff, 0x100000001, 0x4, 0x8000, 0x7b, 0x1000, 0x2, r4, 0x0, 0x1, 0x9}}, {0x6, 0x2, 0x1, 0x7, '^'}}]}, 0xb0) 06:05:44 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) (fail_nth: 4) [ 206.632893][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:44 executing program 3: syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="040247040018c85900000066aea6c5a35c015df268bbb1f43a5e2a1d052d8591f63cd115759f83a812f13dfb43ff27e08fd54d7b9df28529bcdadc259c5aa7257729a5455887917a93cea9a72f23964fa7d7ec072fd963cde5387fd234be0f342d5a10ad6efebef262d965ef3b5300f8d5411a3c83670b6550d216dc0b04cdd2eeb689a855ee19bfd0590a2acf56b6212ca75f1851fd7ba52c09777971e6b49664c19024a907610c5d27b273403e83465b6ffe91"], 0xa) 06:05:44 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_notify={{0x18, 0x17}, {@any, "850f1cae28cd0bb15bf7b2e08cf89d87", 0x30}}}, 0x1a) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 206.654523][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 206.656082][ T9009] FAULT_INJECTION: forcing a failure. 06:05:44 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_notify={{0x18, 0x17}, {@any, "850f1cae28cd0bb15bf7b2e08cf89d87", 0x30}}}, 0x1a) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 206.656082][ T9009] name fail_usercopy, interval 1, probability 0, space 0, times 0 06:05:44 executing program 3: fsetxattr$trusted_overlay_upper(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000140)={0x0, 0xfb, 0x58, 0x3, 0x0, "23e0d1fb81f224c96994b458fbfc051f", "4863b9bc9069b04593f6f3d1fa3b9c23bdb8f0b58d0baac361c39a7f08d6928202e44592c6be7d3e29e2516f18b975d48110ea8624d42693a3222332dc9279531bb44e"}, 0x58, 0x3) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xac}, "80a6de14457a119ac06c8c44c1e9b3cc3f42fae3298f88e32858e41de9e25304d4ee86f75038d5bcf1f04b927b4d694356d4008f9f98965bb7a83a8349a8085a1735c925936fee99f9dab4b40e2a152793eb689b9e0e49f1a57954df5f46afd7d53e57c5a0a9ec7eda021971ad526ffe19231195c5d12159224c842eed80711112951f825b3121dfd779cf5471b56759404680c70901d140cb140e9b72a8f78230001d43d4fe00035493cc07"}, 0xb0) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0x15b, 0x1, 0x3, 0x22}, @l2cap_cid_signaling={{0x1e}, [@l2cap_disconn_req={{0x6, 0x4, 0x4}, {0x8, 0xfff8}}, @l2cap_cmd_rej_unk={{0x1, 0x0, 0x2}, {0x2}}, @l2cap_move_chan_rsp={{0xf, 0x2, 0x4}, {0x5b8}}, @l2cap_move_chan_rsp={{0xf, 0x1f, 0x4}, {0x1622, 0x800}}]}}, 0x27) [ 206.663659][ T9009] CPU: 2 PID: 9009 Comm: syz-executor.0 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0 [ 206.668395][ T9009] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 206.672485][ T9009] Call Trace: [ 206.674049][ T9009] [ 206.675431][ T9009] dump_stack_lvl+0x136/0x150 [ 206.677601][ T9009] should_fail_ex+0x4a3/0x5b0 [ 206.679798][ T9009] _copy_to_user+0x30/0xc0 [ 206.681885][ T9009] simple_read_from_buffer+0xd0/0x160 [ 206.682081][ T5166] Bluetooth: hci0: ACL packet for unknown connection handle 347 [ 206.684121][ T9009] proc_fail_nth_read+0x191/0x220 [ 206.684149][ T9009] ? proc_exe_link+0x1e0/0x1e0 [ 206.684172][ T9009] ? security_file_permission+0xaf/0xd0 [ 206.694326][ T9009] vfs_read+0x1db/0x8d0 [ 206.696275][ T9009] ? proc_exe_link+0x1e0/0x1e0 [ 206.698482][ T9009] ? kernel_read+0x1b0/0x1b0 06:05:44 executing program 3: fsetxattr$trusted_overlay_upper(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000140)={0x0, 0xfb, 0x58, 0x3, 0x0, "23e0d1fb81f224c96994b458fbfc051f", "4863b9bc9069b04593f6f3d1fa3b9c23bdb8f0b58d0baac361c39a7f08d6928202e44592c6be7d3e29e2516f18b975d48110ea8624d42693a3222332dc9279531bb44e"}, 0x58, 0x3) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xac}, "80a6de14457a119ac06c8c44c1e9b3cc3f42fae3298f88e32858e41de9e25304d4ee86f75038d5bcf1f04b927b4d694356d4008f9f98965bb7a83a8349a8085a1735c925936fee99f9dab4b40e2a152793eb689b9e0e49f1a57954df5f46afd7d53e57c5a0a9ec7eda021971ad526ffe19231195c5d12159224c842eed80711112951f825b3121dfd779cf5471b56759404680c70901d140cb140e9b72a8f78230001d43d4fe00035493cc07"}, 0xb0) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0x15b, 0x1, 0x3, 0x22}, @l2cap_cid_signaling={{0x1e}, [@l2cap_disconn_req={{0x6, 0x4, 0x4}, {0x8, 0xfff8}}, @l2cap_cmd_rej_unk={{0x1, 0x0, 0x2}, {0x2}}, @l2cap_move_chan_rsp={{0xf, 0x2, 0x4}, {0x5b8}}, @l2cap_move_chan_rsp={{0xf, 0x1f, 0x4}, {0x1622, 0x800}}]}}, 0x27) [ 206.700663][ T9009] ? selinux_bprm_creds_for_exec+0xb20/0xb20 [ 206.703659][ T9009] ? __fget_files+0x261/0x470 [ 206.705846][ T9009] ksys_read+0x122/0x250 06:05:44 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_link_key_notify={{0x18, 0x17}, {@any, "850f1cae28cd0bb15bf7b2e08cf89d87", 0x30}}}, 0x1a) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 206.707784][ T9009] ? vfs_write+0xda0/0xda0 [ 206.710214][ T9009] ? syscall_enter_from_user_mode+0x26/0x80 [ 206.712798][ T5166] Bluetooth: hci0: ACL packet for unknown connection handle 347 [ 206.713010][ T9009] do_syscall_64+0x39/0xb0 [ 206.713037][ T9009] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 206.720524][ T9009] RIP: 0033:0x7fca20e3e09c [ 206.722621][ T9009] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 206.731359][ T9009] RSP: 002b:00007fca21b2a160 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 206.735207][ T9009] RAX: ffffffffffffffda RBX: 00007fca20fabf80 RCX: 00007fca20e3e09c [ 206.738699][ T9009] RDX: 000000000000000f RSI: 00007fca21b2a1e0 RDI: 0000000000000005 [ 206.742230][ T9009] RBP: 00007fca21b2a1d0 R08: 0000000000000000 R09: 0000000000000000 [ 206.745788][ T9009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 206.749421][ T9009] R13: 00007fff66a9c9ff R14: 00007fca21b2a300 R15: 0000000000022000 [ 206.753216][ T9009] 06:05:45 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda, 0x0, {0x1c}}, 0x18) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18, 0xffffffffffffffda, 0x0, {0x1c}}, 0x18) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) (async) r3 = syz_clone(0x40900280, 0x0, 0x201d980380ffff, 0x0, 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x1100) (async) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x1100) r5 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(r6, 0x0, 0x0) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r7, 0x1, 0x21, 0x0, &(0x7f0000000100)=0xfffffffffffffde5) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) getsockopt$sock_buf(r8, 0x1, 0x1c, 0x0, &(0x7f0000000000)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r9, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r10 = socket$can_bcm(0x1d, 0x2, 0x2) socket$nl_generic(0x10, 0x3, 0x10) (async) r11 = socket$nl_generic(0x10, 0x3, 0x10) r12 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r12, 0x1, 0x1c, 0x0, &(0x7f0000000000)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (async) r13 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) getsockopt$sock_buf(r13, 0x1, 0x1c, 0x0, &(0x7f0000000000)) r14 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_buf(r14, 0x1, 0x1c, 0x0, &(0x7f0000000000)) (async) getsockopt$sock_buf(r14, 0x1, 0x1c, 0x0, &(0x7f0000000000)) gettid() (async) r15 = gettid() process_vm_writev(r15, &(0x7f0000c22000)=[{0x0}], 0x1, &(0x7f0000c22fa0), 0x0, 0x0) stat(&(0x7f00000005c0)='./file0\x00', &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) sendmmsg$unix(r1, &(0x7f0000000580)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000080)="8e8fba2c63ea9a1e64e1c467456d192a43f22bd6a797800eacb49739cf0e322f12c57a91", 0x24}, {&(0x7f0000000140)="fce6c66e444fa9f1bd8e058e6304c8eabf4fe36ec719181347da65782e259a1765e574051ea90463a9a85fae0198775b3940d519dc46d2c06ea301411356f9b3ae2c637e823597fa545b780e2d56239f8ef6c3f4c402a22e129a6d21a6fbc25f4e0ae93065df4e48e1eae00ab6d7fe6231d96acd35d1ecacf476aa9a6da636e32cad0260d152353fa628384395487f7a4ce9e7552698b0dc81959d7dd0fdb970a60ed79266e1b5", 0xa7}, {&(0x7f0000000240)="c5ebb34ceb3fa43b0c4d889730f77d5189d2702e36b3e5eb78cb79e8899406d77a1c740fd3db010e176c285079613b5d9326b6a4d5aa74bcc22abb64d6a9d9da66bbc955a23ff6635a4fb975b54a86d3e98e953c135e78dc8f31e30233feae3e547db313b368873f", 0x68}], 0x3, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r3, r4, r6}}}, @rights={{0x24, 0x1, 0x1, [r2, r7, r8, r9, r2]}}, @rights={{0x18, 0x1, 0x1, [r1, r2]}}, @rights={{0x2c, 0x1, 0x1, [r10, r1, 0xffffffffffffffff, r11, r12, r2, r2]}}, @rights={{0x24, 0x1, 0x1, [r1, r2, r13, r2, r14]}}, @cred={{0x1c, 0x1, 0x2, {r3, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0xffffffffffffffff, r16}}}], 0x118, 0x20000801}}], 0x1, 0x2) write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000020c0)={0xb0, 0xfffffffffffffffe, 0x0, [{{0x0, 0x1, 0x7, 0x0, 0x6, 0x2841, {0x1, 0x7, 0x2400000000000, 0x8, 0x1ff, 0x100000001, 0x4, 0x8000, 0x7b, 0x1000, 0x2, r4, 0x0, 0x1, 0x9}}, {0x6, 0x2, 0x1, 0x7, '^'}}]}, 0xb0) 06:05:45 executing program 3: fsetxattr$trusted_overlay_upper(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000140)={0x0, 0xfb, 0x58, 0x3, 0x0, "23e0d1fb81f224c96994b458fbfc051f", "4863b9bc9069b04593f6f3d1fa3b9c23bdb8f0b58d0baac361c39a7f08d6928202e44592c6be7d3e29e2516f18b975d48110ea8624d42693a3222332dc9279531bb44e"}, 0x58, 0x3) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9, 0xac}, "80a6de14457a119ac06c8c44c1e9b3cc3f42fae3298f88e32858e41de9e25304d4ee86f75038d5bcf1f04b927b4d694356d4008f9f98965bb7a83a8349a8085a1735c925936fee99f9dab4b40e2a152793eb689b9e0e49f1a57954df5f46afd7d53e57c5a0a9ec7eda021971ad526ffe19231195c5d12159224c842eed80711112951f825b3121dfd779cf5471b56759404680c70901d140cb140e9b72a8f78230001d43d4fe00035493cc07"}, 0xb0) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0x15b, 0x1, 0x3, 0x22}, @l2cap_cid_signaling={{0x1e}, [@l2cap_disconn_req={{0x6, 0x4, 0x4}, {0x8, 0xfff8}}, @l2cap_cmd_rej_unk={{0x1, 0x0, 0x2}, {0x2}}, @l2cap_move_chan_rsp={{0xf, 0x2, 0x4}, {0x5b8}}, @l2cap_move_chan_rsp={{0xf, 0x1f, 0x4}, {0x1622, 0x800}}]}}, 0x27) 06:05:45 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x2, 0x2}, {0x3f}}}}, 0xf) 06:05:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) [ 208.149086][ T5166] Bluetooth: hci0: ACL packet for unknown connection handle 347 06:05:45 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x2, 0x2}, {0x3f}}}}, 0xf) 06:05:45 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x3b}, "9943e2117f33477d2143d47209e8d73abede992c45284be5307cba352c2ffc09d45ef0eaff9c6d19c542ffaea35da87d5b25465c63d8cbff3c45eb"}, 0x3f) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) 06:05:45 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x2, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x2, 0x2}, {0x3f}}}}, 0xf) 06:05:45 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x3b}, "9943e2117f33477d2143d47209e8d73abede992c45284be5307cba352c2ffc09d45ef0eaff9c6d19c542ffaea35da87d5b25465c63d8cbff3c45eb"}, 0x3f) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (rerun: 32) 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_ecred_reconf_req={{0x19, 0x80, 0x8}, {0x37, 0x0, [0x9, 0x0]}}}}, 0x15) syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c9000c00080005000709040006c49542"], 0x11) syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x9}}}}, 0xf) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x47}, "5a5ad494a7ff23aba34c919c2b57dc437dec80d3f62a1ff983df10316759dc286b261192114dd6b47f3180a1a830db7c9ba6dcecdb7a18d9e42d6ce8935699599b2d6ebc64ed96"}, 0x4b) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0x18}, @l2cap_cid_signaling={{}, [@l2cap_conf_req={{0x4, 0x4}, {0x5, 0x101, [@l2cap_conf_ews={0x7, 0x0, 0x40}, @l2cap_conf_flushto={0x2, 0x0, 0x8}, @l2cap_conf_efs={0x6, 0x0, {0x9, 0x1, 0x9, 0x80, 0x10001, 0x5}}, @l2cap_conf_rfc={0x4, 0x0, {0x4, 0x86, 0x1, 0x401, 0x9, 0x209}}, @l2cap_conf_rfc={0x4, 0x0, {0x2, 0xfd, 0x2, 0x87, 0x6, 0x3}}, @l2cap_conf_ews={0x7, 0x0, 0x5}, @l2cap_conf_efs={0x6, 0x0, {0x4, 0x3, 0x3ff, 0x7fffffff, 0x20, 0x8}}, @l2cap_conf_mtu={0x1, 0x0, 0x800}, @l2cap_conf_flushto={0x2, 0x0, 0x4}, @l2cap_conf_fcs={0x5, 0x0, 0x1}]}}, @l2cap_conf_rsp={{0x5, 0x2}, {0x20, 0x1a, 0x1000, [@l2cap_conf_ews={0x7, 0x0, 0x7}]}}]}}, 0x24) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x540, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000040)=0x8) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x3b}, "9943e2117f33477d2143d47209e8d73abede992c45284be5307cba352c2ffc09d45ef0eaff9c6d19c542ffaea35da87d5b25465c63d8cbff3c45eb"}, 0x3f) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) 06:05:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x2, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040207931009009f0000"], 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @HCI_EV_INQUIRY_COMPLETE={{0x1, 0x1}, 0x10}}, 0x4) [ 209.459574][ T38] kauditd_printk_skb: 7 callbacks suppressed 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_ecred_reconf_req={{0x19, 0x80, 0x8}, {0x37, 0x0, [0x9, 0x0]}}}}, 0x15) syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c9000c00080005000709040006c49542"], 0x11) syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x9}}}}, 0xf) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x47}, "5a5ad494a7ff23aba34c919c2b57dc437dec80d3f62a1ff983df10316759dc286b261192114dd6b47f3180a1a830db7c9ba6dcecdb7a18d9e42d6ce8935699599b2d6ebc64ed96"}, 0x4b) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0x18}, @l2cap_cid_signaling={{}, [@l2cap_conf_req={{0x4, 0x4}, {0x5, 0x101, [@l2cap_conf_ews={0x7, 0x0, 0x40}, @l2cap_conf_flushto={0x2, 0x0, 0x8}, @l2cap_conf_efs={0x6, 0x0, {0x9, 0x1, 0x9, 0x80, 0x10001, 0x5}}, @l2cap_conf_rfc={0x4, 0x0, {0x4, 0x86, 0x1, 0x401, 0x9, 0x209}}, @l2cap_conf_rfc={0x4, 0x0, {0x2, 0xfd, 0x2, 0x87, 0x6, 0x3}}, @l2cap_conf_ews={0x7, 0x0, 0x5}, @l2cap_conf_efs={0x6, 0x0, {0x4, 0x3, 0x3ff, 0x7fffffff, 0x20, 0x8}}, @l2cap_conf_mtu={0x1, 0x0, 0x800}, @l2cap_conf_flushto={0x2, 0x0, 0x4}, @l2cap_conf_fcs={0x5, 0x0, 0x1}]}}, @l2cap_conf_rsp={{0x5, 0x2}, {0x20, 0x1a, 0x1000, [@l2cap_conf_ews={0x7, 0x0, 0x7}]}}]}}, 0x24) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_ecred_reconf_req={{0x19, 0x80, 0x8}, {0x37, 0x0, [0x9, 0x0]}}}}, 0x15) (async) syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c9000c00080005000709040006c49542"], 0x11) (async) syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x9}}}}, 0xf) (async) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x47}, "5a5ad494a7ff23aba34c919c2b57dc437dec80d3f62a1ff983df10316759dc286b261192114dd6b47f3180a1a830db7c9ba6dcecdb7a18d9e42d6ce8935699599b2d6ebc64ed96"}, 0x4b) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0x18}, @l2cap_cid_signaling={{}, [@l2cap_conf_req={{0x4, 0x4}, {0x5, 0x101, [@l2cap_conf_ews={0x7, 0x0, 0x40}, @l2cap_conf_flushto={0x2, 0x0, 0x8}, @l2cap_conf_efs={0x6, 0x0, {0x9, 0x1, 0x9, 0x80, 0x10001, 0x5}}, @l2cap_conf_rfc={0x4, 0x0, {0x4, 0x86, 0x1, 0x401, 0x9, 0x209}}, @l2cap_conf_rfc={0x4, 0x0, {0x2, 0xfd, 0x2, 0x87, 0x6, 0x3}}, @l2cap_conf_ews={0x7, 0x0, 0x5}, @l2cap_conf_efs={0x6, 0x0, {0x4, 0x3, 0x3ff, 0x7fffffff, 0x20, 0x8}}, @l2cap_conf_mtu={0x1, 0x0, 0x800}, @l2cap_conf_flushto={0x2, 0x0, 0x4}, @l2cap_conf_fcs={0x5, 0x0, 0x1}]}}, @l2cap_conf_rsp={{0x5, 0x2}, {0x20, 0x1a, 0x1000, [@l2cap_conf_ews={0x7, 0x0, 0x7}]}}]}}, 0x24) (async) [ 209.459582][ T38] audit: type=1400 audit(1688364347.128:312): avc: denied { append } for pid=9068 comm="syz-executor.1" name="cachefiles" dev="devtmpfs" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cachefiles_device_t tclass=chr_file permissive=1 [ 209.472873][ T5168] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x540, 0x0) (async) r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x540, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000040)=0x8) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040207931009009f0000"], 0xa) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040207931009009f0000"], 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @HCI_EV_INQUIRY_COMPLETE={{0x1, 0x1}, 0x10}}, 0x4) 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000140)=@HCI_ACLDATA_PKT={0x2, {0xc9, 0x3, 0x1, 0x10}, @l2cap_cid_le_signaling={{0xc}, @l2cap_ecred_reconf_req={{0x19, 0x80, 0x8}, {0x37, 0x0, [0x9, 0x0]}}}}, 0x15) syz_emit_vhci(&(0x7f0000000180)=@HCI_VENDOR_PKT={0xff, 0x80}, 0x2) (async) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="02c9000c00080005000709040006c49542"], 0x11) syz_emit_vhci(&(0x7f00000001c0)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_cmd_rej_unk={{0x1, 0x8, 0x2}, {0x9}}}}, 0xf) syz_emit_vhci(&(0x7f00000000c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x47}, "5a5ad494a7ff23aba34c919c2b57dc437dec80d3f62a1ff983df10316759dc286b261192114dd6b47f3180a1a830db7c9ba6dcecdb7a18d9e42d6ce8935699599b2d6ebc64ed96"}, 0x4b) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x0, 0x2, 0x18}, @l2cap_cid_signaling={{}, [@l2cap_conf_req={{0x4, 0x4}, {0x5, 0x101, [@l2cap_conf_ews={0x7, 0x0, 0x40}, @l2cap_conf_flushto={0x2, 0x0, 0x8}, @l2cap_conf_efs={0x6, 0x0, {0x9, 0x1, 0x9, 0x80, 0x10001, 0x5}}, @l2cap_conf_rfc={0x4, 0x0, {0x4, 0x86, 0x1, 0x401, 0x9, 0x209}}, @l2cap_conf_rfc={0x4, 0x0, {0x2, 0xfd, 0x2, 0x87, 0x6, 0x3}}, @l2cap_conf_ews={0x7, 0x0, 0x5}, @l2cap_conf_efs={0x6, 0x0, {0x4, 0x3, 0x3ff, 0x7fffffff, 0x20, 0x8}}, @l2cap_conf_mtu={0x1, 0x0, 0x800}, @l2cap_conf_flushto={0x2, 0x0, 0x4}, @l2cap_conf_fcs={0x5, 0x0, 0x1}]}}, @l2cap_conf_rsp={{0x5, 0x2}, {0x20, 0x1a, 0x1000, [@l2cap_conf_ews={0x7, 0x0, 0x7}]}}]}}, 0x24) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x540, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$int_in(r1, 0x5421, &(0x7f0000000040)=0x8) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 209.507240][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040207931009009f0000"], 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @HCI_EV_INQUIRY_COMPLETE={{0x1, 0x1}, 0x10}}, 0x4) [ 209.509776][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 209.522144][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x10, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:47 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) clock_gettime(0x0, &(0x7f0000001840)={0x0, 0x0}) recvmmsg(r2, &(0x7f00000017c0)=[{{&(0x7f0000000140)=@hci, 0x80, &(0x7f0000000480)=[{&(0x7f0000000280)=""/201, 0xc9}, {&(0x7f00000000c0)=""/46, 0x2e}, {&(0x7f00000001c0)=""/102, 0x66}, {&(0x7f0000000380)=""/1, 0x1}, {&(0x7f00000003c0)=""/55, 0x37}], 0x5}, 0x2}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/243, 0xf3}, {&(0x7f0000001600)=""/186, 0xba}, {&(0x7f00000020c0)=""/4096, 0x1000}], 0x4, &(0x7f00000016c0)=""/194, 0xc2}, 0x4}], 0x2, 0x2043, &(0x7f0000001880)={r3, r4+10000000}) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000018c0)) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x2c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x0]}]}]}]}, 0x2c}}, 0x0) r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000040)={0x4, 0x0, 0x4}) write$FUSE_BMAP(r6, &(0x7f0000002080)={0x18}, 0x18) 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x3}, "5837d6"}, 0x7) 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0x0, 0x41}, "70e8056591fa25d30a817479e032941d50c4a93b71abb7ffd7f324b0b56250b661973469b41023659e2dcac606a6a29dbc3ba84f8f2550bf272327ddddfd976e11"}, 0x45) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c9802000f9ff00000f040400210b895103000800030006000104ff000f090400c00000805bb65cc7057cf802ce76fdf2949eace6a2ee1e458435b9c98038342a8590fa362deb452698031ffa60c8d821d07e7d923f0870b2d56704bf326dec2751f58d68c15d50d96fb6c29e7a528743a36934dfb2b4ea86cc30ce7d4ed591209f8066c3d0827e796e8d53c08c07770884534ad262db6d32a13332bfd85094763c6414580fa1f84d41f08ca4bc55acacfa56658d42"], 0x25) [ 209.588748][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 0 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0x0, 0x41}, "70e8056591fa25d30a817479e032941d50c4a93b71abb7ffd7f324b0b56250b661973469b41023659e2dcac606a6a29dbc3ba84f8f2550bf272327ddddfd976e11"}, 0x45) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c9802000f9ff00000f040400210b895103000800030006000104ff000f090400c00000805bb65cc7057cf802ce76fdf2949eace6a2ee1e458435b9c98038342a8590fa362deb452698031ffa60c8d821d07e7d923f0870b2d56704bf326dec2751f58d68c15d50d96fb6c29e7a528743a36934dfb2b4ea86cc30ce7d4ed591209f8066c3d0827e796e8d53c08c07770884534ad262db6d32a13332bfd85094763c6414580fa1f84d41f08ca4bc55acacfa56658d42"], 0x25) (async) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c9802000f9ff00000f040400210b895103000800030006000104ff000f090400c00000805bb65cc7057cf802ce76fdf2949eace6a2ee1e458435b9c98038342a8590fa362deb452698031ffa60c8d821d07e7d923f0870b2d56704bf326dec2751f58d68c15d50d96fb6c29e7a528743a36934dfb2b4ea86cc30ce7d4ed591209f8066c3d0827e796e8d53c08c07770884534ad262db6d32a13332bfd85094763c6414580fa1f84d41f08ca4bc55acacfa56658d42"], 0x25) [ 209.589838][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 1: socket$nl_generic(0x10, 0x3, 0x10) (async) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) clock_gettime(0x0, &(0x7f0000001840)={0x0, 0x0}) recvmmsg(r2, &(0x7f00000017c0)=[{{&(0x7f0000000140)=@hci, 0x80, &(0x7f0000000480)=[{&(0x7f0000000280)=""/201, 0xc9}, {&(0x7f00000000c0)=""/46, 0x2e}, {&(0x7f00000001c0)=""/102, 0x66}, {&(0x7f0000000380)=""/1, 0x1}, {&(0x7f00000003c0)=""/55, 0x37}], 0x5}, 0x2}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/243, 0xf3}, {&(0x7f0000001600)=""/186, 0xba}, {&(0x7f00000020c0)=""/4096, 0x1000}], 0x4, &(0x7f00000016c0)=""/194, 0xc2}, 0x4}], 0x2, 0x2043, &(0x7f0000001880)={r3, r4+10000000}) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000018c0)) syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) (async) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x2c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x0]}]}]}]}, 0x2c}}, 0x0) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000040)={0x4, 0x0, 0x4}) write$FUSE_BMAP(r6, &(0x7f0000002080)={0x18}, 0x18) 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x3}, "5837d6"}, 0x7) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x3}, "5837d6"}, 0x7) (async) [ 209.608617][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 0 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0x0, 0x41}, "70e8056591fa25d30a817479e032941d50c4a93b71abb7ffd7f324b0b56250b661973469b41023659e2dcac606a6a29dbc3ba84f8f2550bf272327ddddfd976e11"}, 0x45) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c9802000f9ff00000f040400210b895103000800030006000104ff000f090400c00000805bb65cc7057cf802ce76fdf2949eace6a2ee1e458435b9c98038342a8590fa362deb452698031ffa60c8d821d07e7d923f0870b2d56704bf326dec2751f58d68c15d50d96fb6c29e7a528743a36934dfb2b4ea86cc30ce7d4ed591209f8066c3d0827e796e8d53c08c07770884534ad262db6d32a13332bfd85094763c6414580fa1f84d41f08ca4bc55acacfa56658d42"], 0x25) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0x0, 0x41}, "70e8056591fa25d30a817479e032941d50c4a93b71abb7ffd7f324b0b56250b661973469b41023659e2dcac606a6a29dbc3ba84f8f2550bf272327ddddfd976e11"}, 0x45) (async) syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c9802000f9ff00000f040400210b895103000800030006000104ff000f090400c00000805bb65cc7057cf802ce76fdf2949eace6a2ee1e458435b9c98038342a8590fa362deb452698031ffa60c8d821d07e7d923f0870b2d56704bf326dec2751f58d68c15d50d96fb6c29e7a528743a36934dfb2b4ea86cc30ce7d4ed591209f8066c3d0827e796e8d53c08c07770884534ad262db6d32a13332bfd85094763c6414580fa1f84d41f08ca4bc55acacfa56658d42"], 0x25) (async) [ 209.614376][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 209.620569][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 209.634113][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 0 06:05:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4b47, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) (async) syz_emit_vhci(&(0x7f0000000040)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x3}, "5837d6"}, 0x7) 06:05:47 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) clock_gettime(0x0, &(0x7f0000001840)={0x0, 0x0}) recvmmsg(r2, &(0x7f00000017c0)=[{{&(0x7f0000000140)=@hci, 0x80, &(0x7f0000000480)=[{&(0x7f0000000280)=""/201, 0xc9}, {&(0x7f00000000c0)=""/46, 0x2e}, {&(0x7f00000001c0)=""/102, 0x66}, {&(0x7f0000000380)=""/1, 0x1}, {&(0x7f00000003c0)=""/55, 0x37}], 0x5}, 0x2}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/243, 0xf3}, {&(0x7f0000001600)=""/186, 0xba}, {&(0x7f00000020c0)=""/4096, 0x1000}], 0x4, &(0x7f00000016c0)=""/194, 0xc2}, 0x4}], 0x2, 0x2043, &(0x7f0000001880)={r3, r4+10000000}) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000018c0)) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x2c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x0]}]}]}]}, 0x2c}}, 0x0) r6 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000040)={0x4, 0x0, 0x4}) write$FUSE_BMAP(r6, &(0x7f0000002080)={0x18}, 0x18) socket$nl_generic(0x10, 0x3, 0x10) (async) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) clock_gettime(0x0, &(0x7f0000001840)) (async) recvmmsg(r2, &(0x7f00000017c0)=[{{&(0x7f0000000140)=@hci, 0x80, &(0x7f0000000480)=[{&(0x7f0000000280)=""/201, 0xc9}, {&(0x7f00000000c0)=""/46, 0x2e}, {&(0x7f00000001c0)=""/102, 0x66}, {&(0x7f0000000380)=""/1, 0x1}, {&(0x7f00000003c0)=""/55, 0x37}], 0x5}, 0x2}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/243, 0xf3}, {&(0x7f0000001600)=""/186, 0xba}, {&(0x7f00000020c0)=""/4096, 0x1000}], 0x4, &(0x7f00000016c0)=""/194, 0xc2}, 0x4}], 0x2, 0x2043, &(0x7f0000001880)={r3, r4+10000000}) (async) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000018c0)) (async) syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) (async) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x2c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x0]}]}]}]}, 0x2c}}, 0x0) (async) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async) ioctl$VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000000040)={0x4, 0x0, 0x4}) (async) write$FUSE_BMAP(r6, &(0x7f0000002080)={0x18}, 0x18) (async) 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x10}, "31716ef98d26cb68c409d83eafc7b5cd"}, 0x14) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='{\x00\x00\x00'], 0x4) [ 209.636039][ T5166] Bluetooth: hci1: SCO packet for unknown connection handle 0 [ 209.668032][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 209.676752][ T38] audit: type=1400 audit(1688364347.338:313): avc: denied { sys_module } for pid=9121 comm="syz-executor.1" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x10}, "31716ef98d26cb68c409d83eafc7b5cd"}, 0x14) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='{\x00\x00\x00'], 0x4) 06:05:47 executing program 3: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$SNDCTL_SEQ_RESET(r0, 0x5100) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/time\x00') socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) poll(&(0x7f0000000080)=[{r0, 0x400}, {r1, 0xa580}, {r0}, {r2, 0x2080}, {r3, 0x200}], 0x5, 0x5) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000140)='veth1_to_bridge\x00', 0x10) getsockopt$sock_buf(r1, 0x1, 0x19, &(0x7f0000000180)=""/227, &(0x7f0000000280)=0xe3) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000040)={0xadf, 0x84ba, 0x155, 0x278e, 0x8}, 0x14) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:47 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x10}, "31716ef98d26cb68c409d83eafc7b5cd"}, 0x14) syz_emit_vhci(0x0, 0x0) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB='{\x00\x00\x00'], 0x4) (rerun: 64) [ 209.719203][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x4b49, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:47 executing program 3: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$SNDCTL_SEQ_RESET(r0, 0x5100) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/time\x00') socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async, rerun: 64) poll(&(0x7f0000000080)=[{r0, 0x400}, {r1, 0xa580}, {r0}, {r2, 0x2080}, {r3, 0x200}], 0x5, 0x5) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000140)='veth1_to_bridge\x00', 0x10) getsockopt$sock_buf(r1, 0x1, 0x19, &(0x7f0000000180)=""/227, &(0x7f0000000280)=0xe3) (async, rerun: 32) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000040)={0xadf, 0x84ba, 0x155, 0x278e, 0x8}, 0x14) (rerun: 32) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:47 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x5}, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) symlinkat(&(0x7f0000000080)='./file1\x00', r1, &(0x7f0000000140)='./file1\x00') syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="f0c90000296c1b29aff1463653231b65a3e6e97da4a7dbe8dd69aeacd37e691cdadf7018c4bf861c"], 0x4) [ 209.791829][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) (async, rerun: 32) r1 = socket$inet_tcp(0x2, 0x1, 0x0) (rerun: 32) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000140)='veth1_to_bridge\x00', 0x10) (async, rerun: 32) getsockopt$sock_buf(r1, 0x1, 0x19, &(0x7f0000000180)=""/227, &(0x7f0000000280)=0xe3) (async, rerun: 32) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000040)={0xadf, 0x84ba, 0x155, 0x278e, 0x8}, 0x14) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0) write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x26, 0x0, 0x100, 0x0, 0x401, 0xffff0001, 0xc0}}, 0x50) 06:05:47 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x5}, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) symlinkat(&(0x7f0000000080)='./file1\x00', r1, &(0x7f0000000140)='./file1\x00') syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="f0c90000296c1b29aff1463653231b65a3e6e97da4a7dbe8dd69aeacd37e691cdadf7018c4bf861c"], 0x4) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x5}, 0x4) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r1, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) symlinkat(&(0x7f0000000080)='./file1\x00', r1, &(0x7f0000000140)='./file1\x00') (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="f0c90000296c1b29aff1463653231b65a3e6e97da4a7dbe8dd69aeacd37e691cdadf7018c4bf861c"], 0x4) (async) 06:05:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x541b, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="74efc4c419fdb8d66bbba728f371d056ad6f01e9762d70401d1c9d331b48b925e9e6a7759abb206b9b18bfc3f3f96adb2b37c2121ef21e91bac768dd33df29649da1d82e826a55c4d620b6f510daee26004b741c951d528d806efbe00c439f2df46d3adf8be24e280b948a49afd17d56437c6e752d84f99bf37a88f0c54488dd13b848f2381d7d2aecb68ed16762e4a3c1a847565364b9f1af92c9c89e06e89fe6179cb7078a742cb968a9f09cc690dc473df29d6ad9af5879e9a2618c63702117a3a63d3a4236baee86f5f452e9663a795306dabb97db884348ab437bdc13b7cfb03eff1cf216f09d21078e1852fc7c96413d9d65c52ce9baa6bc26de7f028738a17120de30a433c9c3c8e276f3ae5e18a1f95767fffe8e98b0c3f134f12263b01c36866d4e0e856cc14ecf50279adb9438c6219c49cae973d8e7faf33dcdeb96d7ef7e89ae828cb91df22939307bb1f7fb7392e1e24f6b63166b89937c00eb8fea0245cd93e4aa803160bd71c1a0bbb6b8285d8ab654485ab985f1dd2eb9abf53131a9680dcafe4000d3ea528dd52aba3e4ff6a3883ec614253d5627bd91522d881128328ed1e00907fa6cc48cec5268bbedd85ec02d8bac3183460dd1a27fbc06b5642473a41a6cbfb07f53deab2473b37c3d10a125d610f1b9ea5c83e7d462048f25fc1e79295eeff750a23faf5d542758c421bb0673504c9dbae2959f77", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0) (async) write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x26, 0x0, 0x100, 0x0, 0x401, 0xffff0001, 0xc0}}, 0x50) 06:05:47 executing program 3: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$SNDCTL_SEQ_RESET(r0, 0x5100) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000040)='ns/time\x00') (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r3, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) poll(&(0x7f0000000080)=[{r0, 0x400}, {r1, 0xa580}, {r0}, {r2, 0x2080}, {r3, 0x200}], 0x5, 0x5) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:47 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r0, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x5}, 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) symlinkat(&(0x7f0000000080)='./file1\x00', r1, &(0x7f0000000140)='./file1\x00') syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="f0c90000296c1b29aff1463653231b65a3e6e97da4a7dbe8dd69aeacd37e691cdadf7018c4bf861c"], 0x4) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r0, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x2, 0x5}, 0x4) (async) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) (async) write(r1, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) symlinkat(&(0x7f0000000080)='./file1\x00', r1, &(0x7f0000000140)='./file1\x00') (async) syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="f0c90000296c1b29aff1463653231b65a3e6e97da4a7dbe8dd69aeacd37e691cdadf7018c4bf861c"], 0x4) (async) 06:05:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x5421, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141842, 0x0) write(r1, &(0x7f0000004200)="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", 0xffe00) (async) write$RDMA_USER_CM_CMD_GET_EVENT(r1, &(0x7f00000000c0)={0xc, 0x8, 0xfa1e, {0x0}}, 0x4000) (async) ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0) (async) write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x26, 0x0, 0x100, 0x0, 0x401, 0xffff0001, 0xc0}}, 0x50) [ 210.168225][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040207040040e7000000"], 0xa) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) sendfile(r0, r1, &(0x7f0000000040)=0x9, 0x1000) [ 210.190799][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040207040040e7000000"], 0xa) syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040207040040e7000000"], 0xa) (async) [ 210.216198][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 210.219693][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) sendfile(r0, r1, &(0x7f0000000040)=0x9, 0x1000) 06:05:47 executing program 3: syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040207040040e7000000"], 0xa) 06:05:47 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) bind(r0, &(0x7f0000000000)=@isdn={0x22, 0x0, 0xff, 0x5, 0x80}, 0x80) syz_emit_vhci(0x0, 0x17) setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f00000000c0)={0x0, 0xea60}, 0x10) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000280)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1000}, "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"}, 0x1004) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:47 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x5450, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) [ 210.247159][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:47 executing program 3: r0 = msgget$private(0x0, 0x4) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="c6307604021f00000000000062"], 0xa) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f0000000180)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0x3e}, @l2cap_cid_signaling={{0x3a}, [@l2cap_move_chan_cfm={{0x10, 0x6, 0x4}, {0x6, 0xffff}}, @l2cap_info_req={{0xa, 0x9, 0x2}, {0x4}}, @l2cap_create_chan_rsp={{0xd, 0x81, 0x8}, {0x6, 0x9, 0x1f, 0x8}}, @l2cap_conn_req={{0x2, 0x3, 0x4}, {0x9d1, 0x2}}, @l2cap_move_chan_cfm={{0x10, 0x0, 0x4}, {0x9, 0x5}}, @l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x8, 0x7f}}, @l2cap_disconn_req={{0x6, 0x1, 0x4}, {0xbe92, 0x1}}]}}, 0x43) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_pscan_rep_mode={{0x20, 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7}}}, 0xa) syz_emit_vhci(&(0x7f00000002c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x48}, "eea18f9cf8b73f6de27760a86bde7cfcc0e0dd1c50387cfc056fe41bf1509291d40315b1d9ae5abc08ec0cf602f3c7dfddffc4b20adef44a578d125ae8c481ff8fa68e864cbc7e94"}, 0x4c) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0x1f, 0x2}, {0x8000}}}}, 0xf) msgsnd(r0, &(0x7f0000000200)={0x1, "1a869fd5d981e69421f6406a33880ec9ee31f1d957329b7b31d3e5978b383e3a16f6fbb70bac5f46f8adabcbf8bbe15dfc6abf7973e129d96b94a75ee83718e03b67d09f12ed0b3565b46bf14f27006268f509f66d1e82de92b19c8b27ccf3ce6e478713905f198a6c009a5f7568f2f70bdd9b6c7984572353675bed40113a26"}, 0x88, 0x800) [ 210.261676][ T38] audit: type=1400 audit(1688364347.928:314): avc: denied { bind } for pid=9216 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 06:05:47 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)) (async) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) bind(r0, &(0x7f0000000000)=@isdn={0x22, 0x0, 0xff, 0x5, 0x80}, 0x80) syz_emit_vhci(0x0, 0x17) setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f00000000c0)={0x0, 0xea60}, 0x10) (async) setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f00000000c0)={0x0, 0xea60}, 0x10) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000280)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1000}, "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"}, 0x1004) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:47 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async, rerun: 32) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) (rerun: 32) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) sendfile(r0, r1, &(0x7f0000000040)=0x9, 0x1000) [ 210.284319][ T5166] Bluetooth: Unexpected continuation frame (len 10) 06:05:47 executing program 3: r0 = msgget$private(0x0, 0x4) (async) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="c6307604021f00000000000062"], 0xa) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(&(0x7f0000000180)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0x3e}, @l2cap_cid_signaling={{0x3a}, [@l2cap_move_chan_cfm={{0x10, 0x6, 0x4}, {0x6, 0xffff}}, @l2cap_info_req={{0xa, 0x9, 0x2}, {0x4}}, @l2cap_create_chan_rsp={{0xd, 0x81, 0x8}, {0x6, 0x9, 0x1f, 0x8}}, @l2cap_conn_req={{0x2, 0x3, 0x4}, {0x9d1, 0x2}}, @l2cap_move_chan_cfm={{0x10, 0x0, 0x4}, {0x9, 0x5}}, @l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x8, 0x7f}}, @l2cap_disconn_req={{0x6, 0x1, 0x4}, {0xbe92, 0x1}}]}}, 0x43) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_pscan_rep_mode={{0x20, 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7}}}, 0xa) (async) syz_emit_vhci(&(0x7f00000002c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x48}, "eea18f9cf8b73f6de27760a86bde7cfcc0e0dd1c50387cfc056fe41bf1509291d40315b1d9ae5abc08ec0cf602f3c7dfddffc4b20adef44a578d125ae8c481ff8fa68e864cbc7e94"}, 0x4c) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0x1f, 0x2}, {0x8000}}}}, 0xf) (async) msgsnd(r0, &(0x7f0000000200)={0x1, "1a869fd5d981e69421f6406a33880ec9ee31f1d957329b7b31d3e5978b383e3a16f6fbb70bac5f46f8adabcbf8bbe15dfc6abf7973e129d96b94a75ee83718e03b67d09f12ed0b3565b46bf14f27006268f509f66d1e82de92b19c8b27ccf3ce6e478713905f198a6c009a5f7568f2f70bdd9b6c7984572353675bed40113a26"}, 0x88, 0x800) 06:05:47 executing program 2: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) bind(r0, &(0x7f0000000000)=@isdn={0x22, 0x0, 0xff, 0x5, 0x80}, 0x80) syz_emit_vhci(0x0, 0x17) setsockopt$sock_timeval(r0, 0x1, 0x42, &(0x7f00000000c0)={0x0, 0xea60}, 0x10) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000280)=@HCI_SCODATA_PKT={0x3, {0xc9, 0x1000}, "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"}, 0x1004) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 210.315144][ T5166] Bluetooth: Unexpected continuation frame (len 10) 06:05:48 executing program 3: r0 = msgget$private(0x0, 0x4) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="c6307604021f00000000000062"], 0xa) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000080)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) (async, rerun: 32) syz_emit_vhci(&(0x7f0000000180)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x1, 0x3e}, @l2cap_cid_signaling={{0x3a}, [@l2cap_move_chan_cfm={{0x10, 0x6, 0x4}, {0x6, 0xffff}}, @l2cap_info_req={{0xa, 0x9, 0x2}, {0x4}}, @l2cap_create_chan_rsp={{0xd, 0x81, 0x8}, {0x6, 0x9, 0x1f, 0x8}}, @l2cap_conn_req={{0x2, 0x3, 0x4}, {0x9d1, 0x2}}, @l2cap_move_chan_cfm={{0x10, 0x0, 0x4}, {0x9, 0x5}}, @l2cap_disconn_req={{0x6, 0x2, 0x4}, {0x8, 0x7f}}, @l2cap_disconn_req={{0x6, 0x1, 0x4}, {0xbe92, 0x1}}]}}, 0x43) (async, rerun: 32) syz_emit_vhci(&(0x7f00000000c0)=@HCI_VENDOR_PKT={0xff, 0x1}, 0x2) (async, rerun: 64) syz_emit_vhci(&(0x7f0000000100)=@HCI_EVENT_PKT={0x4, @hci_ev_pscan_rep_mode={{0x20, 0x7}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7}}}, 0xa) (rerun: 64) syz_emit_vhci(&(0x7f00000002c0)=@HCI_SCODATA_PKT={0x3, {0xc8, 0x48}, "eea18f9cf8b73f6de27760a86bde7cfcc0e0dd1c50387cfc056fe41bf1509291d40315b1d9ae5abc08ec0cf602f3c7dfddffc4b20adef44a578d125ae8c481ff8fa68e864cbc7e94"}, 0x4c) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_ACLDATA_PKT={0x2, {0xc8, 0x1, 0x0, 0xa}, @l2cap_cid_le_signaling={{0x6}, @l2cap_ecred_reconf_rsp={{0x1a, 0x1f, 0x2}, {0x8000}}}}, 0xf) (async) msgsnd(r0, &(0x7f0000000200)={0x1, "1a869fd5d981e69421f6406a33880ec9ee31f1d957329b7b31d3e5978b383e3a16f6fbb70bac5f46f8adabcbf8bbe15dfc6abf7973e129d96b94a75ee83718e03b67d09f12ed0b3565b46bf14f27006268f509f66d1e82de92b19c8b27ccf3ce6e478713905f198a6c009a5f7568f2f70bdd9b6c7984572353675bed40113a26"}, 0x88, 0x800) 06:05:48 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x9}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) 06:05:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x5451, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:48 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xfffffffffffffc5b}}, 0x4) 06:05:48 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x9}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) (async) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) 06:05:48 executing program 3: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000000)={{r1}, 0x5, 0xfffffffff7c39a21, 0x101}) 06:05:48 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xfffffffffffffc5b}}, 0x4) 06:05:48 executing program 3: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000000)={{r1}, 0x5, 0xfffffffff7c39a21, 0x101}) 06:05:48 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x141, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x9}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)) 06:05:48 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc8, 0xfffffffffffffc5b}}, 0x4) 06:05:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x5452, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:48 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0xa900, 0x0) 06:05:48 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="2782ad64"], 0x4) 06:05:48 executing program 3: socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) (async) sendmsg$tipc(r0, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000000240)={&(0x7f0000000040)=@id, 0x10, 0x0}, 0x0) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000000)={{r1}, 0x5, 0xfffffffff7c39a21, 0x101}) 06:05:48 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="2782ad64"], 0x4) 06:05:48 executing program 3: sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8080}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x178}, 0x1, 0x0, 0x0, 0x40000}, 0x4884) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:48 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0xa900, 0x0) [ 210.489354][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:48 executing program 3: sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8080}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="780100000b06010200000000000000000100000a050001000700000068000880100007800c0019407fffffffffffffff180007801400170070696d7265670000000000000000000018000780140017006c6f00000000000000000000000000000c00078008000a40000000000c00078008000b40000000070c00078008000940000000040900020073797a32000000005c000880100007800c0019400000000000000005100007800c001940000000000000025b0c000780060004404e220000100007800900130073797a30000000001c0007801800148014000240200100000000000000000000000000016c0008800c00078005000700000000000c00078008001a003a2440000c00078008000640000000091c0007801800168014000240fc0000000000000000000000000000010c000780050003003f0000000c0007800500150040000000100007800c000000cf210900020073797a30000000000900020073797a3000000000"], 0x178}, 0x1, 0x0, 0x0, 0x40000}, 0x4884) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) [ 210.514738][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x5460, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:48 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="2782ad64"], 0x4) (async) syz_emit_vhci(&(0x7f0000000080)=ANY=[@ANYBLOB="2782ad64"], 0x4) 06:05:48 executing program 1: openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0xa900, 0x0) 06:05:48 executing program 3: sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8080}, 0xc, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="780100000b06010200000000000000000100000a050001000700000068000880100007800c0019407fffffffffffffff180007801400170070696d7265670000000000000000000018000780140017006c6f00000000000000000000000000000c00078008000a40000000000c00078008000b40000000070c00078008000940000000040900020073797a32000000005c000880100007800c0019400000000000000005100007800c001940000000000000025b0c000780060004404e220000100007800900130073797a30000000001c0007801800148014000240200100000000000000000000000000016c0008800c00078005000700000000000c00078008001a003a2440000c00078008000640000000091c0007801800168014000240fc0000000000000000000000000000010c000780050003003f0000000c0007800500150040000000100007800c000000cf210900020073797a30000000000900020073797a3000000000"], 0x178}, 0x1, 0x0, 0x0, 0x40000}, 0x4884) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) [ 210.553583][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:48 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x202c2, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:48 executing program 3: r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) finit_module(r0, &(0x7f0000000080)='\x00', 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:48 executing program 2: syz_emit_vhci(0x0, 0x17) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(0x0, 0x0) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) [ 210.578061][ T5166] Bluetooth: hci0: Malformed Event: 0x02 06:05:48 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x202c2, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) 06:05:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r1, 0x8933, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3}) 06:05:48 executing program 3: r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) finit_module(r0, &(0x7f0000000080)='\x00', 0x0) (async) finit_module(r0, &(0x7f0000000080)='\x00', 0x0) syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_si_security={{0x2, 0x7}, {0x4}}}, 0xa) 06:05:48 executing program 2: syz_emit_vhci(0x0, 0x17) (async) syz_emit_vhci(&(0x7f0000000000)=@HCI_VENDOR_PKT={0xff, 0x40}, 0x2) syz_emit_vhci(0x0, 0x0) (async) syz_emit_vhci(&(0x7f0000000080)=@HCI_SCODATA_PKT={0x3, {0xc9}}, 0x4) 06:05:48 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x202c2, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x202c2, 0x0) (async) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) (async) [ 210.622856][ T9313] ================================================================== [ 210.626569][ T9313] BUG: KASAN: stack-out-of-bounds in init_module_from_file+0x62c/0x6a0 [ 210.630305][ T9313] Read of size 8 at addr ffffc90028297e20 by task syz-executor.3/9313 [ 210.634025][ T9313] [ 210.635147][ T9313] CPU: 3 PID: 9313 Comm: syz-executor.3 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0 [ 210.639709][ T9313] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 210.645440][ T9313] Call Trace: [ 210.646944][ T9313] [ 210.648302][ T9313] dump_stack_lvl+0xd9/0x150 [ 210.650422][ T9313] print_address_description.constprop.0+0x2c/0x3c0 [ 210.653463][ T9313] kasan_report+0x11d/0x130 [ 210.655611][ T9313] ? init_module_from_file+0x62c/0x6a0 [ 210.657712][ T9313] init_module_from_file+0x62c/0x6a0 [ 210.660184][ T9313] ? __do_sys_init_module+0x2e0/0x2e0 [ 210.662735][ T9313] __x64_sys_finit_module+0xfd/0x190 [ 210.665207][ T9313] do_syscall_64+0x39/0xb0 [ 210.667282][ T9313] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 210.670033][ T9313] RIP: 0033:0x7f124a88c389 [ 210.672204][ T9313] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 210.674895][ T5166] Bluetooth: hci0: Malformed Event: 0x02 [ 210.680991][ T9313] RSP: 002b:00007f124b649168 EFLAGS: 00000246 ORIG_RAX: 0000000000000139 [ 210.681012][ T9313] RAX: ffffffffffffffda RBX: 00007f124a9abf80 RCX: 00007f124a88c389 [ 210.681023][ T9313] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003 [ 210.681032][ T9313] RBP: 00007f124a8d7493 R08: 0000000000000000 R09: 0000000000000000 [ 210.681042][ T9313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.681051][ T9313] R13: 00007ffcdf75c6af R14: 00007f124b649300 R15: 0000000000022000 [ 210.681064][ T9313] [ 210.681069][ T9313] [ 210.681075][ T9313] The buggy address belongs to the virtual mapping at [ 210.681075][ T9313] [ffffc90028290000, ffffc90028299000) created by: [ 210.681075][ T9313] kernel_clone+0xeb/0x890 [ 210.681107][ T9313] [ 210.681110][ T9313] The buggy address belongs to the physical page: [ 210.681115][ T9313] page:ffffea0004602600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x118098 [ 210.724761][ T9313] flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff) [ 210.728037][ T9313] page_type: 0xffffffff() [ 210.730044][ T9313] raw: 057ff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 210.733987][ T9313] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 210.737782][ T9313] page dumped because: kasan: bad access detected [ 210.740703][ T9313] page_owner tracks the page as allocated [ 210.743380][ T9313] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102dc2(GFP_HIGHUSER|__GFP_NOWARN|__GFP_ZERO), pid 9292, tgid 9292 (syz-executor.1), ts 210552435997, free_ts 210517675602 [ 210.751617][ T9313] post_alloc_hook+0x2db/0x350 [ 210.753400][ T9313] get_page_from_freelist+0xfed/0x2d30 [ 210.755829][ T9313] __alloc_pages+0x1cb/0x4a0 [ 210.757941][ T9313] alloc_pages+0x1aa/0x270 [ 210.759904][ T9313] __vmalloc_node_range+0xb1c/0x14c0 [ 210.762259][ T9313] copy_process+0x13bb/0x75c0 [ 210.764378][ T9313] kernel_clone+0xeb/0x890 [ 210.765981][ T9313] __do_sys_clone+0xba/0x100 [ 210.768013][ T9313] do_syscall_64+0x39/0xb0 [ 210.770096][ T9313] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 210.772370][ T9313] page last free stack trace: [ 210.774099][ T9313] free_unref_page_prepare+0x62e/0xcb0 [ 210.776066][ T9313] free_unref_page+0x33/0x370 [ 210.777830][ T9313] __folio_put+0xc5/0x140 [ 210.779430][ T9313] free_page_and_swap_cache+0x257/0x2c0 [ 210.781562][ T9313] tlb_remove_table_rcu+0x89/0xe0 [ 210.783537][ T9313] rcu_core+0x802/0x1c10 [ 210.785100][ T9313] __do_softirq+0x1d4/0x905 [ 210.786890][ T9313] [ 210.787815][ T9313] Memory state around the buggy address: [ 210.789903][ T9313] ffffc90028297d00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 210.792990][ T9313] ffffc90028297d80: f1 f1 f1 f1 04 f3 f3 f3 00 00 00 00 00 00 00 00 [ 210.796008][ T9313] >ffffc90028297e00: 00 00 00 f1 f1 f1 f1 00 00 00 00 00 00 00 00 00 [ 210.799072][ T9313] ^ [ 210.800961][ T9313] ffffc90028297e80: 00 00 f3 f3 f3 f3 f3 00 00 00 00 00 00 00 00 00 [ 210.804063][ T9313] ffffc90028297f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 210.807512][ T9313] ================================================================== [ 210.811270][ T9313] Kernel panic - not syncing: KASAN: panic_on_warn set ... 06:05:48 executing program 1: r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x8200, 0x0) write$FUSE_BMAP(r0, &(0x7f0000002080)={0x18}, 0x18) [ 210.814374][ T9313] CPU: 3 PID: 9313 Comm: syz-executor.3 Not tainted 6.4.0-syzkaller-10173-ga901a3568fd2 #0 [ 210.818880][ T9313] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 210.822757][ T9313] Call Trace: [ 210.824214][ T9313] [ 210.825396][ T9313] dump_stack_lvl+0xd9/0x150 [ 210.827259][ T9313] panic+0x686/0x730 [ 210.829064][ T9313] ? panic_smp_self_stop+0xa0/0xa0 [ 210.831400][ T9313] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 210.833878][ T9313] check_panic_on_warn+0xb1/0xc0 [ 210.835994][ T9313] end_report+0x108/0x150 [ 210.837730][ T9313] kasan_report+0xfa/0x130 [ 210.839645][ T9313] ? init_module_from_file+0x62c/0x6a0 [ 210.842062][ T9313] init_module_from_file+0x62c/0x6a0 [ 210.844402][ T9313] ? __do_sys_init_module+0x2e0/0x2e0 [ 210.846805][ T9313] __x64_sys_finit_module+0xfd/0x190 [ 210.849114][ T9313] do_syscall_64+0x39/0xb0 [ 210.851178][ T9313] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 210.853801][ T9313] RIP: 0033:0x7f124a88c389 [ 210.855849][ T9313] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 210.864308][ T9313] RSP: 002b:00007f124b649168 EFLAGS: 00000246 ORIG_RAX: 0000000000000139 [ 210.868237][ T9313] RAX: ffffffffffffffda RBX: 00007f124a9abf80 RCX: 00007f124a88c389 [ 210.871816][ T9313] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003 [ 210.875454][ T9313] RBP: 00007f124a8d7493 R08: 0000000000000000 R09: 0000000000000000 [ 210.879051][ T9313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 210.882698][ T9313] R13: 00007ffcdf75c6af R14: 00007f124b649300 R15: 0000000000022000 [ 210.886299][ T9313] Connection to localhost closed by remote host. [ 210. VM DIAGNOSIS: 06:05:48 Registers: info registers vcpu 0 RAX=0000000000000003 RBX=0000000000000000 RCX=1ffffffff1936ff0 RDX=0000000000000001 RSI=0000000000000001 RDI=0000000000000000 RBP=ffffffff8c9b7f80 RSP=ffffc900283cfbb8 R8 =0000000000000001 R9 =fffffbfff23095f7 R10=0000000000000001 R11=0000000000000001 R12=000000000000427f R13=fffffbfff1936ff0 R14=0000000000000001 R15=ffff88806b63d280 RIP=ffffffff8a2085be RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f124b628700 ffffffff 00c00000 GS =0000 ffff88806b600000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f124b628718 CR3=0000000111be3000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f124a98a7c000007f124a98a7c8 XMM02=00007f124a98a7e000007f124a98a7c0 XMM03=00007f124a98a7c800007f124a98a7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=61616161616161616161616161616161 XMM06=61616161616161616161616161616161 XMM07=61616161616161616161616161616161 XMM08=61616161616161616161616161616161 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000680f3f RBX=ffffe8fefd755380 RCX=ffffffff8a1ce055 RDX=0000000000000002 RSI=ffffffff8d3e8b60 RDI=ffffe8fefd755380 RBP=ffffffff8d3e8b60 RSP=ffffc9000037fd78 R8 =0000000000000001 R9 =ffffed100d6e6d9d R10=ffff88806b736ceb R11=0000000000000001 R12=0000000000000002 R13=ffffffff8d3e8c48 R14=0000000000000002 R15=0000000000000000 RIP=ffffffff8a1cfe73 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88806b700000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fca20fad988 CR3=000000000c775000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=61616161616161616161616161616161 XMM06=61616161616161616161616161616161 XMM07=61616161616161616161616161616161 XMM08=61616161616161616161616161616161 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 2 RAX=dffffc0000000000 RBX=ffffea0000af4580 RCX=0000000000000000 RDX=1ffffd400015e8b1 RSI=0000000000000000 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffc900038b7708 R8 =0000000000000007 R9 =ffffffffffffffff R10=00fff10000000042 R11=0000000000000001 R12=0000000000000000 R13=00fff10000000042 R14=ffff888064f5c5d0 R15=0000000000000000 RIP=ffffffff8183ebe0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000555556faa400 ffffffff 00c00000 GS =0000 ffff88806b800000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6e94ad56be CR3=0000000064f17000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=61616161616161616161616161616161 XMM06=61616161616161616161616161616161 XMM07=61616161616161616161616161616161 XMM08=61616161616161616161616161616161 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 3 RAX=0000000000000034 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff848aa875 RDI=ffffffff92411580 RBP=ffffffff92411540 RSP=ffffc900283977b0 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=6572617764726148 R12=0000000000000000 R13=0000000000000034 R14=ffffffff848aa810 R15=0000000000000000 RIP=ffffffff848aa89f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f124b649700 ffffffff 00c00000 GS =0000 ffff88806b900000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2dc21000 CR3=0000000111be3000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f124a98a7c000007f124a98a7c8 XMM02=00007f124a98a7e000007f124a98a7c0 XMM03=00007f124a98a7c800007f124a98a7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=61616161616161616161616161616161 XMM06=61616161616161616161616161616161 XMM07=61616161616161616161616161616161 XMM08=61616161616161616161616161616161 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000