Extracting prog: 24.450478454s
Minimizing prog: 37m28.081307212s
Simplifying prog options: 0s
Extracting C: 34.939015837s
Simplifying C: 9m4.532567304s


extracting reproducer from 51 programs
first checking the prog from the crash report
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE-socketpair$unix-epoll_ctl$EPOLL_CTL_ADD
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
r5 = epoll_create1(0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r7, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r7, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r6, 0x112, 0x8, &(0x7f0000000040), 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r8, &(0x7f0000000100)={0x8})

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
single: successfully extracted reproducer
found reproducer with 40 syscalls
minimizing guilty program
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE-socketpair$unix
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0))

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-bpf$BPF_PROG_TEST_RUN
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r5, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r5, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={0xffffffffffffffff, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-bpf$BPF_TASK_FD_QUERY-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-close-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
close(0x3)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-mount$fuse-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-mount$fuse-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0) (async)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-openat$fuse-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-epoll_create1-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
epoll_create1(0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r5, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-sendmsg$IPCTNL_MSG_CT_NEW-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x80c4)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-sendmsg$TIPC_NL_KEY_SET-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_genetlink_get_family_id$tipc2-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
syz_genetlink_get_family_id$tipc2(0x0, r0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_genetlink_get_family_id$tipc2-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r2, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r3, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x18)
syz_genetlink_get_family_id$tipc2(0x0, r0) (async)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r1, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r6, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r5, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r5, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r4, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000003c0)='sched_switch\x00', r3}, 0x18) (async)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r5, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r4, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-bpf$PROG_LOAD-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32=r2, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r4, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-recvmmsg-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r4, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-sendmmsg$unix-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r4, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r3, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-connect$unix-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r3, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-connect$unix-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x6e) (async)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r3, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-socketpair$unix-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r2, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-mmap-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r2, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-sched_setscheduler-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r2, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-sched_setaffinity-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r2, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-sched_setaffinity-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000380)=0x202) (async)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r2, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-getpid-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={r0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r2, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-sched_setscheduler-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-sched_setscheduler-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-prlimit64-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-socket$nl_generic-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-socket$nl_generic-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
socket$nl_generic(0x10, 0x3, 0x10) (async)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_mount_image$ext4-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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") (async)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$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")
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_mount_image$ext4-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000080), 0x1, 0x525, &(0x7f0000000880)="$eJzs3W1rY1kdAPD/TZtOZ6ZrsyoyLri7uCszi07Sbt3dKrK7guirBXV9P9Y2LaVpMzTpOi2LdvEDCCIq+AF8I/gBBJmPIMKAvhcVRXRGX+pcuTc32IekDW06mU1/PziTc3Jy7/+cO8npfTjcG8Cl9WJEvB0RExHxSkTMFu+XihT7nZR97tHD95ezlESavvuPJJLive66svJkRFwvFpuOiG9+LeI7yfG4rd29jaVGo75dlGvtzbu11u7e7fXNpbX6Wn1rYWH+9cU3Fl9bnEsL5+pnJSLe/MpffvLDX3z1zd987rt/vPO3W9/LmvWlT3TaHRHL5wrQR2fd5XxbdGXbaPsigo1I1p/yxKhbAQDAILJ9/I9GxKfz/f/ZmMj35gAAAIBxkr41E/9JIlIAAABgbJUiYiaSUrWYCzATpVK12pnD+/G4Vmo0W+3PrjZ3tlayuohKlEur6436XDFXuBLlJCvPF3Nsu+VXj5QXIuLZiPjx7NW8XF1uNlZGffIDAAAALonrLxw+/v/3bCnPAwAAAGOm0rcAAAAAjAuH/AAAADD+HP8DAADAWPv6O+9kKe0+x3vlvd2djeZ7t1fqrY3q5s5ytRwR1bVmcy2/Z9/maetrNJt3Px9bO/dq7XqrXWvt7t3ZbO5ste+sH3oENgAAAPAEPfvC/T8kEbH/xat5iuI+gACH/HnUDQCGaWLUDQBGZnLUDQBGpnzqJ4wQMO6SU+qPT97pnCuM315MewAAgOG7+cnj1/+nirrTzw0AH2bm+gDA5ePqHlxe5bPOALwx7JYAo/KRzsuVfvV9b94xwPX/zjmGND1TwwAAgKGZyVNSqhb76TNRKlWrEc/kjwUoJ6vrjfpccXzw+9nylaw8ny+ZnDpnGAAAAAAAAAAAAAAAAAAAAAAAAADoSNMkUgAAAGCsRZT+muR384+4OfvyzOGzA0ee+vXzd396b6nd3p6PmEr+OZu9NRUR7Z8V77+aeiQAAAAAPAU6x+nF6/yoWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAuHn08P3lbhpsiStDifv3L0dEpVf8yZjOX6fzQNf+lcTkgeWSiJgYQvz9DyLiRq/4STxO07RStKJX/KsXHL+Sb5re8UsRcX0I8eEyu5+NP2/3+v2V4sX8tffvb7JI59Ud/6aK8sH4xfiXj3O9xp9njpT7ee7Br2p9438Q8dxk7/GnGz/pxD8UIiu8NGAfv/2tvb2eFQdW2Sv+wVi19ubdWmt37/b65tJafa2+tbAw//riG4uvLc7VVtcb9eLfnmF+9KlfPz6p/9f6xK8c7v+x7f/yQL1P478P7j38WKdQ7hX/1ku9//7eOBq/8x+Sj/3Zd+IzRT6rv9nN73fyBz3/y989f1L/V/r0f/qU/t8aqP/xhVe+8YM/9aw5tjUAgCehtbu3sdRo1LdPyEwP8JmBMxNDWc9bQ2vP05KJp6MZF5yZij5V6fc738fzhTjn4scy6XkWn4whNGPq2O90Is66wiRiP1vXgF9IAABgzPx/p/+kK0gAAAAAAAAAAAAAAAAAAADARTrjbcmmI2LgDx+NuT+argIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnOh/AQAA///L38kW") (async)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): arch_prctl$ARCH_ENABLE_TAGGED_ADDR-syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
arch_prctl$ARCH_ENABLE_TAGGED_ADDR(0x4002, 0x5)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program did not crash
testing program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, 0x0, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=33.334981843s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
simplifying C reproducer
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program did not crash
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program did not crash
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program did not crash
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:true UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing compiled C program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
testing program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
validation run: crashed=true
testing program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
validation run: crashed=true
testing program (duration=33.334981843s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:true BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:true HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-close-bpf$BPF_TASK_FD_QUERY-openat$cgroup_root-bpf$PROG_LOAD-bpf$BPF_PROG_TEST_RUN-setsockopt$bt_BT_FLUSHABLE
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
close(0x3)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={r1, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$bt_BT_FLUSHABLE(r0, 0x112, 0x8, &(0x7f0000000040), 0x1)

program crashed: KASAN: slab-out-of-bounds Read in l2cap_sock_setsockopt
validation run: crashed=true
reproducing took 50m21.002454373s
repro crashed as (corrupted=false):
==================================================================
BUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]
BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]
BUG: KASAN: slab-out-of-bounds in l2cap_sock_setsockopt+0x1b8e/0x1f60 net/bluetooth/l2cap_sock.c:996
Read of size 4 at addr ffff88810f2b316b by task syz.2.17/373

CPU: 0 PID: 373 Comm: syz.2.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
 <TASK>
 __dump_stack+0x21/0x30 lib/dump_stack.c:88
 dump_stack_lvl+0xee/0x150 lib/dump_stack.c:106
 print_address_description+0x7f/0x2c0 mm/kasan/report.c:248
 __kasan_report mm/kasan/report.c:427 [inline]
 kasan_report+0xf1/0x140 mm/kasan/report.c:444
 __asan_report_load_n_noabort+0xf/0x20 mm/kasan/report_generic.c:319
 copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]
 copy_from_sockptr include/linux/sockptr.h:55 [inline]
 l2cap_sock_setsockopt+0x1b8e/0x1f60 net/bluetooth/l2cap_sock.c:996
 __sys_setsockopt+0x2f0/0x460 net/socket.c:2203
 __do_sys_setsockopt net/socket.c:2214 [inline]
 __se_sys_setsockopt net/socket.c:2211 [inline]
 __x64_sys_setsockopt+0xbf/0xd0 net/socket.c:2211
 x64_sys_call+0x982/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:55
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7fa826bb3749
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc316bec98 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00007fa826e09fa0 RCX: 00007fa826bb3749
RDX: 0000000000000008 RSI: 0000000000000112 RDI: 0000000000000004
RBP: 00007fa826c37f91 R08: 0000000000000001 R09: 0000000000000000
R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fa826e09fa0 R14: 00007fa826e09fa0 R15: 0000000000000005
 </TASK>

Allocated by task 373:
 kasan_save_stack mm/kasan/common.c:38 [inline]
 kasan_set_track mm/kasan/common.c:45 [inline]
 set_alloc_info mm/kasan/common.c:433 [inline]
 ____kasan_kmalloc mm/kasan/common.c:512 [inline]
 __kasan_kmalloc+0xda/0x110 mm/kasan/common.c:521
 kasan_kmalloc include/linux/kasan.h:227 [inline]
 __kmalloc+0x13d/0x2c0 mm/slub.c:4436
 kmalloc include/linux/slab.h:624 [inline]
 __cgroup_bpf_run_filter_setsockopt+0x891/0xa40 kernel/bpf/cgroup.c:1511
 __sys_setsockopt+0x413/0x460 net/socket.c:2186
 __do_sys_setsockopt net/socket.c:2214 [inline]
 __se_sys_setsockopt net/socket.c:2211 [inline]
 __x64_sys_setsockopt+0xbf/0xd0 net/socket.c:2211
 x64_sys_call+0x982/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:55
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0

The buggy address belongs to the object at ffff88810f2b3168
 which belongs to the cache kmalloc-8 of size 8
The buggy address is located 3 bytes inside of
 8-byte region [ffff88810f2b3168, ffff88810f2b3170)
The buggy address belongs to the page:
page:ffffea00043cacc0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10f2b3
flags: 0x4000000000000200(slab|zone=1)
raw: 4000000000000200 ffffea00043798c0 0000000200000002 ffff888100042300
raw: 0000000000000000 0000000080660066 00000001ffffffff 0000000000000000
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 102, ts 4239300197, free_ts 4239268189
 set_page_owner include/linux/page_owner.h:33 [inline]
 post_alloc_hook+0x192/0x1b0 mm/page_alloc.c:2605
 prep_new_page+0x1c/0x110 mm/page_alloc.c:2611
 get_page_from_freelist+0x2cc5/0x2d50 mm/page_alloc.c:4485
 __alloc_pages+0x18f/0x440 mm/page_alloc.c:5808
 alloc_slab_page mm/slub.c:-1 [inline]
 allocate_slab mm/slub.c:1937 [inline]
 new_slab+0xa1/0x4d0 mm/slub.c:2000
 ___slab_alloc+0x381/0x810 mm/slub.c:3033
 __slab_alloc+0x49/0x90 mm/slub.c:3120
 slab_alloc_node mm/slub.c:3211 [inline]
 slab_alloc mm/slub.c:3255 [inline]
 __kmalloc+0x16a/0x2c0 mm/slub.c:4432
 kmalloc include/linux/slab.h:624 [inline]
 kernfs_fop_write_iter+0x156/0x400 fs/kernfs/file.c:273
 call_write_iter include/linux/fs.h:2212 [inline]
 new_sync_write fs/read_write.c:507 [inline]
 vfs_write+0x802/0xf70 fs/read_write.c:594
 ksys_write+0x140/0x240 fs/read_write.c:647
 __do_sys_write fs/read_write.c:659 [inline]
 __se_sys_write fs/read_write.c:656 [inline]
 __x64_sys_write+0x7b/0x90 fs/read_write.c:656
 x64_sys_call+0x8ef/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
page last free stack trace:
 reset_page_owner include/linux/page_owner.h:26 [inline]
 free_pages_prepare mm/page_alloc.c:1472 [inline]
 free_pcp_prepare mm/page_alloc.c:1544 [inline]
 free_unref_page_prepare+0x542/0x550 mm/page_alloc.c:3534
 free_unref_page+0xa2/0x550 mm/page_alloc.c:3616
 free_the_page mm/page_alloc.c:805 [inline]
 __free_pages+0x6c/0x100 mm/page_alloc.c:5884
 free_pages+0x82/0x90 mm/page_alloc.c:5895
 selinux_genfs_get_sid+0x20b/0x250 security/selinux/hooks.c:1381
 inode_doinit_with_dentry+0x86e/0xd70 security/selinux/hooks.c:1576
 selinux_d_instantiate+0x27/0x40 security/selinux/hooks.c:6495
 security_d_instantiate+0x9e/0xf0 security/security.c:2074
 d_splice_alias+0x6d/0x390 fs/dcache.c:3073
 kernfs_iop_lookup+0x2c2/0x310 fs/kernfs/dir.c:1175
 lookup_open fs/namei.c:3448 [inline]
 open_last_lookups fs/namei.c:3540 [inline]
 path_openat+0xfcf/0x2f10 fs/namei.c:3747
 do_filp_open+0x1b3/0x3e0 fs/namei.c:3777
 do_sys_openat2+0x14c/0x7b0 fs/open.c:1236
 do_sys_open fs/open.c:1252 [inline]
 __do_sys_openat fs/open.c:1268 [inline]
 __se_sys_openat fs/open.c:1263 [inline]
 __x64_sys_openat+0x136/0x160 fs/open.c:1263
 x64_sys_call+0x219/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:258
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80

Memory state around the buggy address:
 ffff88810f2b3000: fb fc fc fc fc fb fc fc fc fc fb fc fc fc fc fb
 ffff88810f2b3080: fc fc fc fc fa fc fc fc fc fb fc fc fc fc fb fc
>ffff88810f2b3100: fc fc fc fb fc fc fc fc fb fc fc fc fc 01 fc fc
                                                          ^
 ffff88810f2b3180: fc fc fb fc fc fc fc fb fc fc fc fc fb fc fc fc
 ffff88810f2b3200: fc fb fc fc fc fc fb fc fc fc fc fb fc fc fc fc
==================================================================

final repro crashed as (corrupted=false):
==================================================================
BUG: KASAN: slab-out-of-bounds in copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]
BUG: KASAN: slab-out-of-bounds in copy_from_sockptr include/linux/sockptr.h:55 [inline]
BUG: KASAN: slab-out-of-bounds in l2cap_sock_setsockopt+0x1b8e/0x1f60 net/bluetooth/l2cap_sock.c:996
Read of size 4 at addr ffff88810f2b316b by task syz.2.17/373

CPU: 0 PID: 373 Comm: syz.2.17 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
Call Trace:
 <TASK>
 __dump_stack+0x21/0x30 lib/dump_stack.c:88
 dump_stack_lvl+0xee/0x150 lib/dump_stack.c:106
 print_address_description+0x7f/0x2c0 mm/kasan/report.c:248
 __kasan_report mm/kasan/report.c:427 [inline]
 kasan_report+0xf1/0x140 mm/kasan/report.c:444
 __asan_report_load_n_noabort+0xf/0x20 mm/kasan/report_generic.c:319
 copy_from_sockptr_offset include/linux/sockptr.h:49 [inline]
 copy_from_sockptr include/linux/sockptr.h:55 [inline]
 l2cap_sock_setsockopt+0x1b8e/0x1f60 net/bluetooth/l2cap_sock.c:996
 __sys_setsockopt+0x2f0/0x460 net/socket.c:2203
 __do_sys_setsockopt net/socket.c:2214 [inline]
 __se_sys_setsockopt net/socket.c:2211 [inline]
 __x64_sys_setsockopt+0xbf/0xd0 net/socket.c:2211
 x64_sys_call+0x982/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:55
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
RIP: 0033:0x7fa826bb3749
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007ffc316bec98 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
RAX: ffffffffffffffda RBX: 00007fa826e09fa0 RCX: 00007fa826bb3749
RDX: 0000000000000008 RSI: 0000000000000112 RDI: 0000000000000004
RBP: 00007fa826c37f91 R08: 0000000000000001 R09: 0000000000000000
R10: 0000200000000040 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fa826e09fa0 R14: 00007fa826e09fa0 R15: 0000000000000005
 </TASK>

Allocated by task 373:
 kasan_save_stack mm/kasan/common.c:38 [inline]
 kasan_set_track mm/kasan/common.c:45 [inline]
 set_alloc_info mm/kasan/common.c:433 [inline]
 ____kasan_kmalloc mm/kasan/common.c:512 [inline]
 __kasan_kmalloc+0xda/0x110 mm/kasan/common.c:521
 kasan_kmalloc include/linux/kasan.h:227 [inline]
 __kmalloc+0x13d/0x2c0 mm/slub.c:4436
 kmalloc include/linux/slab.h:624 [inline]
 __cgroup_bpf_run_filter_setsockopt+0x891/0xa40 kernel/bpf/cgroup.c:1511
 __sys_setsockopt+0x413/0x460 net/socket.c:2186
 __do_sys_setsockopt net/socket.c:2214 [inline]
 __se_sys_setsockopt net/socket.c:2211 [inline]
 __x64_sys_setsockopt+0xbf/0xd0 net/socket.c:2211
 x64_sys_call+0x982/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:55
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0

The buggy address belongs to the object at ffff88810f2b3168
 which belongs to the cache kmalloc-8 of size 8
The buggy address is located 3 bytes inside of
 8-byte region [ffff88810f2b3168, ffff88810f2b3170)
The buggy address belongs to the page:
page:ffffea00043cacc0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10f2b3
flags: 0x4000000000000200(slab|zone=1)
raw: 4000000000000200 ffffea00043798c0 0000000200000002 ffff888100042300
raw: 0000000000000000 0000000080660066 00000001ffffffff 0000000000000000
page dumped because: kasan: bad access detected
page_owner tracks the page as allocated
page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 102, ts 4239300197, free_ts 4239268189
 set_page_owner include/linux/page_owner.h:33 [inline]
 post_alloc_hook+0x192/0x1b0 mm/page_alloc.c:2605
 prep_new_page+0x1c/0x110 mm/page_alloc.c:2611
 get_page_from_freelist+0x2cc5/0x2d50 mm/page_alloc.c:4485
 __alloc_pages+0x18f/0x440 mm/page_alloc.c:5808
 alloc_slab_page mm/slub.c:-1 [inline]
 allocate_slab mm/slub.c:1937 [inline]
 new_slab+0xa1/0x4d0 mm/slub.c:2000
 ___slab_alloc+0x381/0x810 mm/slub.c:3033
 __slab_alloc+0x49/0x90 mm/slub.c:3120
 slab_alloc_node mm/slub.c:3211 [inline]
 slab_alloc mm/slub.c:3255 [inline]
 __kmalloc+0x16a/0x2c0 mm/slub.c:4432
 kmalloc include/linux/slab.h:624 [inline]
 kernfs_fop_write_iter+0x156/0x400 fs/kernfs/file.c:273
 call_write_iter include/linux/fs.h:2212 [inline]
 new_sync_write fs/read_write.c:507 [inline]
 vfs_write+0x802/0xf70 fs/read_write.c:594
 ksys_write+0x140/0x240 fs/read_write.c:647
 __do_sys_write fs/read_write.c:659 [inline]
 __se_sys_write fs/read_write.c:656 [inline]
 __x64_sys_write+0x7b/0x90 fs/read_write.c:656
 x64_sys_call+0x8ef/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:2
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x66/0xd0
page last free stack trace:
 reset_page_owner include/linux/page_owner.h:26 [inline]
 free_pages_prepare mm/page_alloc.c:1472 [inline]
 free_pcp_prepare mm/page_alloc.c:1544 [inline]
 free_unref_page_prepare+0x542/0x550 mm/page_alloc.c:3534
 free_unref_page+0xa2/0x550 mm/page_alloc.c:3616
 free_the_page mm/page_alloc.c:805 [inline]
 __free_pages+0x6c/0x100 mm/page_alloc.c:5884
 free_pages+0x82/0x90 mm/page_alloc.c:5895
 selinux_genfs_get_sid+0x20b/0x250 security/selinux/hooks.c:1381
 inode_doinit_with_dentry+0x86e/0xd70 security/selinux/hooks.c:1576
 selinux_d_instantiate+0x27/0x40 security/selinux/hooks.c:6495
 security_d_instantiate+0x9e/0xf0 security/security.c:2074
 d_splice_alias+0x6d/0x390 fs/dcache.c:3073
 kernfs_iop_lookup+0x2c2/0x310 fs/kernfs/dir.c:1175
 lookup_open fs/namei.c:3448 [inline]
 open_last_lookups fs/namei.c:3540 [inline]
 path_openat+0xfcf/0x2f10 fs/namei.c:3747
 do_filp_open+0x1b3/0x3e0 fs/namei.c:3777
 do_sys_openat2+0x14c/0x7b0 fs/open.c:1236
 do_sys_open fs/open.c:1252 [inline]
 __do_sys_openat fs/open.c:1268 [inline]
 __se_sys_openat fs/open.c:1263 [inline]
 __x64_sys_openat+0x136/0x160 fs/open.c:1263
 x64_sys_call+0x219/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:258
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:80

Memory state around the buggy address:
 ffff88810f2b3000: fb fc fc fc fc fb fc fc fc fc fb fc fc fc fc fb
 ffff88810f2b3080: fc fc fc fc fa fc fc fc fc fb fc fc fc fc fb fc
>ffff88810f2b3100: fc fc fc fb fc fc fc fc fb fc fc fc fc 01 fc fc
                                                          ^
 ffff88810f2b3180: fc fc fb fc fc fc fc fb fc fc fc fc fb fc fc fc
 ffff88810f2b3200: fc fb fc fc fc fc fb fc fc fc fc fb fc fc fc fc
==================================================================