Warning: Permanently added '[localhost]:14019' (ECDSA) to the list of known hosts. 2023/02/24 21:57:05 fuzzer started 2023/02/24 21:57:06 dialing manager at localhost:41417 syzkaller login: [ 50.295813] cgroup: Unknown subsys name 'net' [ 50.410004] cgroup: Unknown subsys name 'rlimit' [ 53.670095] hrtimer: interrupt took 3291454 ns 2023/02/24 21:57:20 syscalls: 2217 2023/02/24 21:57:20 code coverage: enabled 2023/02/24 21:57:20 comparison tracing: enabled 2023/02/24 21:57:20 extra coverage: enabled 2023/02/24 21:57:20 setuid sandbox: enabled 2023/02/24 21:57:20 namespace sandbox: enabled 2023/02/24 21:57:20 Android sandbox: enabled 2023/02/24 21:57:20 fault injection: enabled 2023/02/24 21:57:20 leak checking: enabled 2023/02/24 21:57:20 net packet injection: enabled 2023/02/24 21:57:20 net device setup: enabled 2023/02/24 21:57:20 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2023/02/24 21:57:20 devlink PCI setup: PCI device 0000:00:10.0 is not available 2023/02/24 21:57:20 USB emulation: enabled 2023/02/24 21:57:20 hci packet injection: enabled 2023/02/24 21:57:20 wifi device emulation: enabled 2023/02/24 21:57:20 802.15.4 emulation: enabled 2023/02/24 21:57:20 fetching corpus: 50, signal 33987/35802 (executing program) 2023/02/24 21:57:20 fetching corpus: 100, signal 50141/53564 (executing program) 2023/02/24 21:57:21 fetching corpus: 150, signal 60858/65759 (executing program) 2023/02/24 21:57:21 fetching corpus: 200, signal 72524/78788 (executing program) 2023/02/24 21:57:21 fetching corpus: 250, signal 79334/86954 (executing program) 2023/02/24 21:57:22 fetching corpus: 300, signal 86993/95890 (executing program) 2023/02/24 21:57:22 fetching corpus: 350, signal 92850/103038 (executing program) 2023/02/24 21:57:22 fetching corpus: 400, signal 97291/108766 (executing program) 2023/02/24 21:57:22 fetching corpus: 450, signal 102041/114656 (executing program) 2023/02/24 21:57:23 fetching corpus: 500, signal 106047/119817 (executing program) 2023/02/24 21:57:23 fetching corpus: 550, signal 110909/125778 (executing program) 2023/02/24 21:57:23 fetching corpus: 600, signal 114227/130234 (executing program) 2023/02/24 21:57:23 fetching corpus: 650, signal 117189/134294 (executing program) 2023/02/24 21:57:24 fetching corpus: 700, signal 121470/139531 (executing program) 2023/02/24 21:57:24 fetching corpus: 750, signal 124962/144003 (executing program) 2023/02/24 21:57:24 fetching corpus: 800, signal 127492/147542 (executing program) 2023/02/24 21:57:25 fetching corpus: 850, signal 130752/151726 (executing program) 2023/02/24 21:57:25 fetching corpus: 900, signal 132907/154883 (executing program) 2023/02/24 21:57:25 fetching corpus: 950, signal 135976/158800 (executing program) 2023/02/24 21:57:25 fetching corpus: 1000, signal 138830/162547 (executing program) 2023/02/24 21:57:26 fetching corpus: 1050, signal 141449/166036 (executing program) 2023/02/24 21:57:26 fetching corpus: 1100, signal 144043/169529 (executing program) 2023/02/24 21:57:26 fetching corpus: 1150, signal 146508/172817 (executing program) 2023/02/24 21:57:26 fetching corpus: 1200, signal 147945/175211 (executing program) 2023/02/24 21:57:27 fetching corpus: 1250, signal 149488/177673 (executing program) 2023/02/24 21:57:27 fetching corpus: 1300, signal 151430/180470 (executing program) 2023/02/24 21:57:27 fetching corpus: 1350, signal 153443/183301 (executing program) 2023/02/24 21:57:28 fetching corpus: 1400, signal 155416/186026 (executing program) 2023/02/24 21:57:28 fetching corpus: 1450, signal 156654/188188 (executing program) 2023/02/24 21:57:28 fetching corpus: 1500, signal 159236/191427 (executing program) 2023/02/24 21:57:29 fetching corpus: 1550, signal 161236/194135 (executing program) 2023/02/24 21:57:29 fetching corpus: 1600, signal 163091/196688 (executing program) 2023/02/24 21:57:29 fetching corpus: 1650, signal 164926/199158 (executing program) 2023/02/24 21:57:30 fetching corpus: 1700, signal 168115/202706 (executing program) 2023/02/24 21:57:30 fetching corpus: 1750, signal 169299/204664 (executing program) 2023/02/24 21:57:30 fetching corpus: 1800, signal 171293/207216 (executing program) 2023/02/24 21:57:30 fetching corpus: 1850, signal 173198/209720 (executing program) 2023/02/24 21:57:31 fetching corpus: 1900, signal 174809/211979 (executing program) 2023/02/24 21:57:31 fetching corpus: 1950, signal 176449/214233 (executing program) 2023/02/24 21:57:31 fetching corpus: 2000, signal 178173/216564 (executing program) 2023/02/24 21:57:32 fetching corpus: 2050, signal 179319/218405 (executing program) 2023/02/24 21:57:32 fetching corpus: 2100, signal 180205/220000 (executing program) 2023/02/24 21:57:32 fetching corpus: 2150, signal 181276/221749 (executing program) 2023/02/24 21:57:32 fetching corpus: 2200, signal 182521/223623 (executing program) 2023/02/24 21:57:33 fetching corpus: 2250, signal 184116/225773 (executing program) 2023/02/24 21:57:33 fetching corpus: 2300, signal 185008/227347 (executing program) 2023/02/24 21:57:33 fetching corpus: 2350, signal 186496/229353 (executing program) 2023/02/24 21:57:33 fetching corpus: 2400, signal 187746/231173 (executing program) 2023/02/24 21:57:34 fetching corpus: 2450, signal 188575/232682 (executing program) 2023/02/24 21:57:34 fetching corpus: 2500, signal 189683/234381 (executing program) 2023/02/24 21:57:35 fetching corpus: 2550, signal 191342/236456 (executing program) 2023/02/24 21:57:35 fetching corpus: 2600, signal 192194/237908 (executing program) 2023/02/24 21:57:35 fetching corpus: 2650, signal 193395/239618 (executing program) 2023/02/24 21:57:36 fetching corpus: 2700, signal 194506/241244 (executing program) 2023/02/24 21:57:36 fetching corpus: 2750, signal 195514/242814 (executing program) 2023/02/24 21:57:36 fetching corpus: 2800, signal 196795/244504 (executing program) 2023/02/24 21:57:37 fetching corpus: 2850, signal 197701/245945 (executing program) 2023/02/24 21:57:37 fetching corpus: 2900, signal 198734/247506 (executing program) 2023/02/24 21:57:37 fetching corpus: 2950, signal 199453/248852 (executing program) 2023/02/24 21:57:37 fetching corpus: 3000, signal 200055/250091 (executing program) 2023/02/24 21:57:37 fetching corpus: 3050, signal 200872/251439 (executing program) 2023/02/24 21:57:37 fetching corpus: 3100, signal 201793/252831 (executing program) 2023/02/24 21:57:38 fetching corpus: 3150, signal 202605/254162 (executing program) 2023/02/24 21:57:38 fetching corpus: 3200, signal 204207/256003 (executing program) 2023/02/24 21:57:38 fetching corpus: 3250, signal 205118/257372 (executing program) 2023/02/24 21:57:39 fetching corpus: 3300, signal 205763/258602 (executing program) 2023/02/24 21:57:39 fetching corpus: 3350, signal 206664/259959 (executing program) 2023/02/24 21:57:40 fetching corpus: 3400, signal 207583/261282 (executing program) 2023/02/24 21:57:40 fetching corpus: 3450, signal 208294/262500 (executing program) 2023/02/24 21:57:40 fetching corpus: 3500, signal 209059/263747 (executing program) 2023/02/24 21:57:40 fetching corpus: 3550, signal 209904/264994 (executing program) 2023/02/24 21:57:41 fetching corpus: 3600, signal 211084/266426 (executing program) 2023/02/24 21:57:41 fetching corpus: 3650, signal 211731/267577 (executing program) 2023/02/24 21:57:42 fetching corpus: 3700, signal 212358/268646 (executing program) 2023/02/24 21:57:42 fetching corpus: 3750, signal 212828/269671 (executing program) 2023/02/24 21:57:42 fetching corpus: 3800, signal 213814/270959 (executing program) 2023/02/24 21:57:42 fetching corpus: 3850, signal 214710/272240 (executing program) 2023/02/24 21:57:43 fetching corpus: 3900, signal 215511/273479 (executing program) 2023/02/24 21:57:43 fetching corpus: 3950, signal 216300/274684 (executing program) 2023/02/24 21:57:43 fetching corpus: 4000, signal 217938/276353 (executing program) 2023/02/24 21:57:43 fetching corpus: 4050, signal 218866/277572 (executing program) 2023/02/24 21:57:44 fetching corpus: 4100, signal 219611/278708 (executing program) 2023/02/24 21:57:44 fetching corpus: 4150, signal 220249/279760 (executing program) 2023/02/24 21:57:44 fetching corpus: 4200, signal 220778/280761 (executing program) 2023/02/24 21:57:45 fetching corpus: 4250, signal 221562/281899 (executing program) 2023/02/24 21:57:45 fetching corpus: 4300, signal 222607/283082 (executing program) 2023/02/24 21:57:45 fetching corpus: 4350, signal 223254/284103 (executing program) 2023/02/24 21:57:46 fetching corpus: 4400, signal 223920/285100 (executing program) 2023/02/24 21:57:46 fetching corpus: 4450, signal 224720/286175 (executing program) 2023/02/24 21:57:46 fetching corpus: 4500, signal 225328/287128 (executing program) 2023/02/24 21:57:46 fetching corpus: 4550, signal 225812/288027 (executing program) 2023/02/24 21:57:47 fetching corpus: 4600, signal 226585/289041 (executing program) 2023/02/24 21:57:47 fetching corpus: 4650, signal 227318/290060 (executing program) 2023/02/24 21:57:48 fetching corpus: 4700, signal 227998/291045 (executing program) 2023/02/24 21:57:48 fetching corpus: 4750, signal 228420/291902 (executing program) 2023/02/24 21:57:48 fetching corpus: 4800, signal 228986/292841 (executing program) 2023/02/24 21:57:48 fetching corpus: 4850, signal 229722/293826 (executing program) 2023/02/24 21:57:49 fetching corpus: 4900, signal 230549/294836 (executing program) 2023/02/24 21:57:49 fetching corpus: 4950, signal 231016/295740 (executing program) 2023/02/24 21:57:49 fetching corpus: 5000, signal 231721/296682 (executing program) 2023/02/24 21:57:50 fetching corpus: 5050, signal 232328/297562 (executing program) 2023/02/24 21:57:50 fetching corpus: 5100, signal 232839/298423 (executing program) 2023/02/24 21:57:50 fetching corpus: 5150, signal 233848/299493 (executing program) 2023/02/24 21:57:51 fetching corpus: 5200, signal 234506/300384 (executing program) 2023/02/24 21:57:51 fetching corpus: 5250, signal 235176/301271 (executing program) 2023/02/24 21:57:52 fetching corpus: 5300, signal 236280/302352 (executing program) 2023/02/24 21:57:52 fetching corpus: 5350, signal 236994/303217 (executing program) 2023/02/24 21:57:52 fetching corpus: 5400, signal 237595/304097 (executing program) 2023/02/24 21:57:53 fetching corpus: 5450, signal 238031/304844 (executing program) 2023/02/24 21:57:53 fetching corpus: 5500, signal 238703/305686 (executing program) 2023/02/24 21:57:53 fetching corpus: 5550, signal 239406/306608 (executing program) 2023/02/24 21:57:53 fetching corpus: 5600, signal 239866/307354 (executing program) 2023/02/24 21:57:53 fetching corpus: 5650, signal 240530/308152 (executing program) 2023/02/24 21:57:54 fetching corpus: 5700, signal 241058/308948 (executing program) 2023/02/24 21:57:54 fetching corpus: 5750, signal 241411/309699 (executing program) 2023/02/24 21:57:54 fetching corpus: 5800, signal 241837/310457 (executing program) 2023/02/24 21:57:54 fetching corpus: 5850, signal 242524/311303 (executing program) 2023/02/24 21:57:55 fetching corpus: 5900, signal 242997/312054 (executing program) 2023/02/24 21:57:55 fetching corpus: 5950, signal 243425/312735 (executing program) 2023/02/24 21:57:55 fetching corpus: 6000, signal 243980/313445 (executing program) 2023/02/24 21:57:56 fetching corpus: 6050, signal 244480/314158 (executing program) 2023/02/24 21:57:57 fetching corpus: 6100, signal 245204/314944 (executing program) 2023/02/24 21:57:57 fetching corpus: 6150, signal 245870/315724 (executing program) 2023/02/24 21:57:57 fetching corpus: 6200, signal 246331/316433 (executing program) 2023/02/24 21:57:58 fetching corpus: 6250, signal 246877/317156 (executing program) 2023/02/24 21:57:58 fetching corpus: 6300, signal 247322/317867 (executing program) 2023/02/24 21:57:58 fetching corpus: 6350, signal 247741/318519 (executing program) 2023/02/24 21:57:59 fetching corpus: 6400, signal 248250/319206 (executing program) 2023/02/24 21:57:59 fetching corpus: 6450, signal 248922/319955 (executing program) 2023/02/24 21:57:59 fetching corpus: 6500, signal 249369/320578 (executing program) 2023/02/24 21:58:00 fetching corpus: 6550, signal 250375/321339 (executing program) 2023/02/24 21:58:00 fetching corpus: 6600, signal 250896/322001 (executing program) 2023/02/24 21:58:01 fetching corpus: 6650, signal 251446/322688 (executing program) 2023/02/24 21:58:01 fetching corpus: 6700, signal 252102/323396 (executing program) 2023/02/24 21:58:01 fetching corpus: 6750, signal 252665/324051 (executing program) 2023/02/24 21:58:01 fetching corpus: 6800, signal 253096/324684 (executing program) 2023/02/24 21:58:02 fetching corpus: 6850, signal 253676/325342 (executing program) 2023/02/24 21:58:02 fetching corpus: 6900, signal 254183/325955 (executing program) 2023/02/24 21:58:02 fetching corpus: 6950, signal 254607/326579 (executing program) 2023/02/24 21:58:02 fetching corpus: 7000, signal 255091/327203 (executing program) 2023/02/24 21:58:03 fetching corpus: 7050, signal 255957/327896 (executing program) 2023/02/24 21:58:03 fetching corpus: 7100, signal 256415/328494 (executing program) 2023/02/24 21:58:03 fetching corpus: 7150, signal 256902/329036 (executing program) 2023/02/24 21:58:04 fetching corpus: 7200, signal 257298/329678 (executing program) 2023/02/24 21:58:04 fetching corpus: 7250, signal 257644/330267 (executing program) 2023/02/24 21:58:04 fetching corpus: 7300, signal 258138/330844 (executing program) 2023/02/24 21:58:05 fetching corpus: 7350, signal 258580/331423 (executing program) 2023/02/24 21:58:05 fetching corpus: 7400, signal 258942/331967 (executing program) 2023/02/24 21:58:06 fetching corpus: 7450, signal 259397/332532 (executing program) 2023/02/24 21:58:06 fetching corpus: 7500, signal 259883/333109 (executing program) 2023/02/24 21:58:07 fetching corpus: 7550, signal 260389/333644 (executing program) 2023/02/24 21:58:07 fetching corpus: 7600, signal 260835/334204 (executing program) 2023/02/24 21:58:08 fetching corpus: 7650, signal 261314/334773 (executing program) 2023/02/24 21:58:08 fetching corpus: 7700, signal 261696/335265 (executing program) 2023/02/24 21:58:08 fetching corpus: 7750, signal 262122/335792 (executing program) 2023/02/24 21:58:08 fetching corpus: 7800, signal 262662/336340 (executing program) 2023/02/24 21:58:09 fetching corpus: 7850, signal 263187/336841 (executing program) 2023/02/24 21:58:09 fetching corpus: 7900, signal 263564/337296 (executing program) 2023/02/24 21:58:09 fetching corpus: 7950, signal 263898/337756 (executing program) 2023/02/24 21:58:10 fetching corpus: 8000, signal 264257/338284 (executing program) 2023/02/24 21:58:10 fetching corpus: 8050, signal 264650/338769 (executing program) 2023/02/24 21:58:10 fetching corpus: 8100, signal 265168/339258 (executing program) 2023/02/24 21:58:10 fetching corpus: 8150, signal 265668/339781 (executing program) 2023/02/24 21:58:11 fetching corpus: 8200, signal 266067/340255 (executing program) 2023/02/24 21:58:11 fetching corpus: 8250, signal 266412/340705 (executing program) 2023/02/24 21:58:11 fetching corpus: 8300, signal 266839/341125 (executing program) 2023/02/24 21:58:12 fetching corpus: 8350, signal 267210/341569 (executing program) 2023/02/24 21:58:12 fetching corpus: 8400, signal 267572/342042 (executing program) 2023/02/24 21:58:12 fetching corpus: 8450, signal 267986/342481 (executing program) 2023/02/24 21:58:13 fetching corpus: 8500, signal 268437/342931 (executing program) 2023/02/24 21:58:13 fetching corpus: 8550, signal 268843/343405 (executing program) 2023/02/24 21:58:13 fetching corpus: 8600, signal 269287/343751 (executing program) 2023/02/24 21:58:14 fetching corpus: 8650, signal 269498/343751 (executing program) 2023/02/24 21:58:14 fetching corpus: 8700, signal 269886/343751 (executing program) 2023/02/24 21:58:14 fetching corpus: 8750, signal 270342/343751 (executing program) 2023/02/24 21:58:15 fetching corpus: 8800, signal 270801/343751 (executing program) 2023/02/24 21:58:15 fetching corpus: 8850, signal 271289/343751 (executing program) 2023/02/24 21:58:16 fetching corpus: 8900, signal 271758/343751 (executing program) 2023/02/24 21:58:16 fetching corpus: 8950, signal 272335/343751 (executing program) 2023/02/24 21:58:16 fetching corpus: 9000, signal 272816/343751 (executing program) 2023/02/24 21:58:16 fetching corpus: 9050, signal 273294/343751 (executing program) 2023/02/24 21:58:17 fetching corpus: 9100, signal 273548/343751 (executing program) 2023/02/24 21:58:17 fetching corpus: 9150, signal 274008/343751 (executing program) 2023/02/24 21:58:18 fetching corpus: 9200, signal 274274/343751 (executing program) 2023/02/24 21:58:18 fetching corpus: 9250, signal 274611/343751 (executing program) 2023/02/24 21:58:18 fetching corpus: 9300, signal 274929/343751 (executing program) 2023/02/24 21:58:19 fetching corpus: 9350, signal 275559/343751 (executing program) 2023/02/24 21:58:19 fetching corpus: 9400, signal 276195/343751 (executing program) 2023/02/24 21:58:19 fetching corpus: 9450, signal 276648/343751 (executing program) 2023/02/24 21:58:19 fetching corpus: 9500, signal 277019/343751 (executing program) 2023/02/24 21:58:20 fetching corpus: 9550, signal 277355/343751 (executing program) 2023/02/24 21:58:20 fetching corpus: 9600, signal 277673/343751 (executing program) 2023/02/24 21:58:20 fetching corpus: 9650, signal 278030/343752 (executing program) 2023/02/24 21:58:21 fetching corpus: 9700, signal 278508/343752 (executing program) 2023/02/24 21:58:21 fetching corpus: 9750, signal 278902/343752 (executing program) 2023/02/24 21:58:22 fetching corpus: 9800, signal 279155/343752 (executing program) 2023/02/24 21:58:22 fetching corpus: 9850, signal 279575/343752 (executing program) 2023/02/24 21:58:22 fetching corpus: 9900, signal 279901/343752 (executing program) 2023/02/24 21:58:22 fetching corpus: 9950, signal 280255/343752 (executing program) 2023/02/24 21:58:22 fetching corpus: 10000, signal 280552/343752 (executing program) 2023/02/24 21:58:23 fetching corpus: 10050, signal 280848/343752 (executing program) 2023/02/24 21:58:23 fetching corpus: 10100, signal 281152/343752 (executing program) 2023/02/24 21:58:23 fetching corpus: 10150, signal 281514/343752 (executing program) 2023/02/24 21:58:23 fetching corpus: 10200, signal 281885/343752 (executing program) 2023/02/24 21:58:24 fetching corpus: 10250, signal 282170/343752 (executing program) 2023/02/24 21:58:24 fetching corpus: 10300, signal 282594/343752 (executing program) 2023/02/24 21:58:24 fetching corpus: 10350, signal 282999/343752 (executing program) 2023/02/24 21:58:25 fetching corpus: 10400, signal 283232/343752 (executing program) 2023/02/24 21:58:25 fetching corpus: 10450, signal 283551/343752 (executing program) 2023/02/24 21:58:25 fetching corpus: 10500, signal 283891/343752 (executing program) 2023/02/24 21:58:25 fetching corpus: 10550, signal 284398/343752 (executing program) 2023/02/24 21:58:26 fetching corpus: 10600, signal 284827/343752 (executing program) 2023/02/24 21:58:26 fetching corpus: 10650, signal 285227/343752 (executing program) 2023/02/24 21:58:26 fetching corpus: 10700, signal 285706/343752 (executing program) 2023/02/24 21:58:27 fetching corpus: 10750, signal 286313/343752 (executing program) 2023/02/24 21:58:27 fetching corpus: 10800, signal 286711/343752 (executing program) 2023/02/24 21:58:28 fetching corpus: 10850, signal 286929/343752 (executing program) 2023/02/24 21:58:28 fetching corpus: 10900, signal 287234/343752 (executing program) 2023/02/24 21:58:28 fetching corpus: 10950, signal 287495/343752 (executing program) 2023/02/24 21:58:29 fetching corpus: 11000, signal 287886/343752 (executing program) 2023/02/24 21:58:29 fetching corpus: 11050, signal 288275/343752 (executing program) 2023/02/24 21:58:30 fetching corpus: 11100, signal 288605/343752 (executing program) 2023/02/24 21:58:30 fetching corpus: 11150, signal 288901/343752 (executing program) 2023/02/24 21:58:31 fetching corpus: 11200, signal 289321/343752 (executing program) 2023/02/24 21:58:31 fetching corpus: 11250, signal 289561/343752 (executing program) 2023/02/24 21:58:31 fetching corpus: 11300, signal 290173/343752 (executing program) 2023/02/24 21:58:32 fetching corpus: 11350, signal 291679/343752 (executing program) 2023/02/24 21:58:32 fetching corpus: 11400, signal 292083/343752 (executing program) 2023/02/24 21:58:32 fetching corpus: 11450, signal 292434/343752 (executing program) 2023/02/24 21:58:32 fetching corpus: 11500, signal 292617/343752 (executing program) 2023/02/24 21:58:33 fetching corpus: 11550, signal 292962/343752 (executing program) 2023/02/24 21:58:33 fetching corpus: 11600, signal 293240/343752 (executing program) 2023/02/24 21:58:33 fetching corpus: 11650, signal 293539/343752 (executing program) 2023/02/24 21:58:33 fetching corpus: 11700, signal 293780/343752 (executing program) 2023/02/24 21:58:34 fetching corpus: 11750, signal 294089/343752 (executing program) 2023/02/24 21:58:34 fetching corpus: 11800, signal 294403/343752 (executing program) 2023/02/24 21:58:35 fetching corpus: 11850, signal 294622/343752 (executing program) 2023/02/24 21:58:35 fetching corpus: 11900, signal 294815/343752 (executing program) 2023/02/24 21:58:36 fetching corpus: 11950, signal 295025/343752 (executing program) 2023/02/24 21:58:36 fetching corpus: 12000, signal 295273/343752 (executing program) 2023/02/24 21:58:36 fetching corpus: 12050, signal 295603/343752 (executing program) 2023/02/24 21:58:37 fetching corpus: 12100, signal 295933/343752 (executing program) 2023/02/24 21:58:37 fetching corpus: 12150, signal 296280/343752 (executing program) 2023/02/24 21:58:37 fetching corpus: 12200, signal 296531/343753 (executing program) 2023/02/24 21:58:38 fetching corpus: 12250, signal 296779/343753 (executing program) 2023/02/24 21:58:38 fetching corpus: 12300, signal 297015/343753 (executing program) 2023/02/24 21:58:38 fetching corpus: 12350, signal 297353/343753 (executing program) 2023/02/24 21:58:38 fetching corpus: 12400, signal 297667/343753 (executing program) 2023/02/24 21:58:39 fetching corpus: 12450, signal 297900/343753 (executing program) 2023/02/24 21:58:39 fetching corpus: 12500, signal 298231/343753 (executing program) 2023/02/24 21:58:39 fetching corpus: 12550, signal 298594/343753 (executing program) 2023/02/24 21:58:40 fetching corpus: 12600, signal 298885/343753 (executing program) 2023/02/24 21:58:40 fetching corpus: 12650, signal 299161/343753 (executing program) 2023/02/24 21:58:40 fetching corpus: 12700, signal 299566/343753 (executing program) 2023/02/24 21:58:40 fetching corpus: 12750, signal 300171/343753 (executing program) 2023/02/24 21:58:41 fetching corpus: 12800, signal 300472/343753 (executing program) 2023/02/24 21:58:41 fetching corpus: 12850, signal 300743/343753 (executing program) 2023/02/24 21:58:42 fetching corpus: 12900, signal 301093/343753 (executing program) 2023/02/24 21:58:42 fetching corpus: 12950, signal 301343/343753 (executing program) 2023/02/24 21:58:42 fetching corpus: 13000, signal 301670/343753 (executing program) 2023/02/24 21:58:42 fetching corpus: 13050, signal 301939/343753 (executing program) 2023/02/24 21:58:43 fetching corpus: 13061, signal 302054/343753 (executing program) 2023/02/24 21:58:43 fetching corpus: 13061, signal 302054/343753 (executing program) 21:58:45 executing program 0: ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, &(0x7f0000000000)) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x400100, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) r1 = socket$inet(0x2, 0x3, 0x54) accept$inet(r1, &(0x7f0000000080)={0x2, 0x0, @remote}, &(0x7f00000000c0)=0x10) ioctl$sock_inet_SIOCDARP(r1, 0x8953, &(0x7f0000000100)={{0x2, 0x4e23, @loopback}, {0x306, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x42}}, 0x40, {0x2, 0x4e24, @multicast2}, 'vxcan1\x00'}) r2 = accept4(r0, &(0x7f0000000180)=@ax25={{}, [@rose, @remote, @null, @default, @remote, @remote, @bcast, @null]}, &(0x7f0000000200)=0x80, 0x800) setsockopt$inet_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f0000000240)=@ccm_128={{0x303}, "b6e390966c7633b3", "387c2002e357c4c3927064d3cf319387", "b8edc636", "0cdbc76f34cf86bc"}, 0x28) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r3, 0x800, 0x70bd28, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000040}, 0x2000c0d4) r4 = syz_open_dev$ttys(0xc, 0x2, 0x1) open_by_handle_at(r4, &(0x7f00000003c0)=@raw={0xfc, 0x0, {"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"}}, 0x486340) r5 = open_tree(0xffffffffffffffff, &(0x7f0000000500)='./file0\x00', 0x101) ioctl$sock_inet_SIOCDARP(0xffffffffffffffff, 0x8953, &(0x7f0000000540)={{0x2, 0x4e24, @private=0xa010101}, {0x1, @link_local}, 0x2, {0x2, 0x4e20, @empty}, 'lo\x00'}) ioctl$sock_ifreq(r2, 0x89c4, &(0x7f00000005c0)={'lo\x00', @ifru_flags}) openat(0xffffffffffffff9c, &(0x7f0000000600)='\x00', 0x200000, 0x103) r6 = openat$incfs(r5, &(0x7f0000000640)='.log\x00', 0x141080, 0x184) getsockname$inet(r6, &(0x7f0000000680)={0x2, 0x0, @dev}, &(0x7f00000006c0)=0x10) ioctl$FS_IOC_SETVERSION(r2, 0x40087602, &(0x7f0000000700)=0x8) shutdown(0xffffffffffffffff, 0x1) 2023/02/24 21:58:45 starting 8 fuzzer processes 21:58:45 executing program 1: r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc4}, &(0x7f0000000080)={0x0, "966b5086ff8eabbddf7aff079db9fb3607f870b4695351e0e413ba11b36b4ecd4b587d6dbe9c5dfa7c72518aeb1a1c8ab0f210cd6bac08f274e77800ffe9ab17", 0x17}, 0x48, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$unlink(0x9, r0, r1) keyctl$unlink(0x9, r0, r1) r2 = request_key(&(0x7f0000000180)='big_key\x00', &(0x7f00000001c0)={'syz', 0x1}, &(0x7f0000000200)='85baa174f0cb1142', r0) r3 = request_key(&(0x7f0000000240)='rxrpc_s\x00', &(0x7f0000000280)={'syz', 0x3}, &(0x7f00000002c0)='#@$-\'(.]+*\x00', r0) keyctl$search(0xa, r3, &(0x7f0000000300)='ceph\x00', &(0x7f0000000340)={'syz', 0x0}, r2) keyctl$set_timeout(0xf, r2, 0x9) r4 = add_key$user(&(0x7f0000000380), &(0x7f00000003c0)={'syz', 0x1}, &(0x7f0000000400)="f747dd51cabf6bafe9cadb7e08e98456a7d44fc037508728096625fb31802f5899225d9e89d7bf5da3b723206bacb4f29554d15487b4f9ebaf50d0e941e3ea9614611bcafd0aeb480253bd6f2bdf7d2e026a4a4be7da0c9eb1dc06e3bb1b57339cf288c53c5194d475937661b3aba3863486422995eb794bea3a0f0656265c9213e5b4c9e7e8a2127e22ac26875ce97eb3a7a34145c8ecc8fe3e981d869b21fd2412dcd317543d470e4e36ac707b9f5665c5fd06bc21c641a61a71ab4dc1df121ebc2571b0eb436fdb77e413bef54148e74443d876ca51ab7cc985881e1aec1a5332148d78e2d0ce082db902b9444f", 0xef, 0x0) r5 = add_key$keyring(&(0x7f0000000500), &(0x7f0000000540)={'syz', 0x2}, 0x0, 0x0, r0) r6 = add_key(&(0x7f0000000680)='encrypted\x00', &(0x7f00000006c0)={'syz', 0x3}, &(0x7f0000000700)="82bd621b46a18bfbfb4af8205fa335f2a9f4d4ab91b1247d93cf93b52a5df3a9c21e059a75c8b7b2093b3b9cd96e674b8d5ecdbf28ddafb1c15fcf5bb3700ef423fbd84a12f4c745569886ddb9982524541d332c0b4c8781a88e28f362f1bd24e6ee23b11e7a747bbd243c228cc23539dbfc9dcfae363f1b974b624f5e5d14bedeed60d5b045d8090599e8e928f828186bc9264e44d0d1e9962414dde03048af89062140c55d249ce2a6e30d23d9ca59ec8654e291b801335f669ace59c38890187c4cb9f755d5e3a42ebc8255faee28283f9410d7a9bba1d908771e25c7c4e8d7915fa17bc360370e10639fd61b56318bcbdbf98a", 0xf5, r3) add_key(&(0x7f0000000580)='pkcs7_test\x00', &(0x7f00000005c0)={'syz', 0x2}, &(0x7f0000000600)="7f4804989f5163615ba47db09c54e059604212ad70571766a853979eb43e7cf1d4b99105b76d08081894ea6342020c792ced4894dd596ebfc874ad5cef7462f6bbbd5da113f57e", 0x47, r6) request_key(&(0x7f0000000800)='blacklist\x00', &(0x7f0000000840)={'syz', 0x3}, &(0x7f0000000880)='[\x00', r3) r7 = add_key$keyring(&(0x7f00000008c0), &(0x7f0000000900)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) add_key$keyring(&(0x7f0000000940), &(0x7f0000000980)={'syz', 0x0}, 0x0, 0x0, r0) r8 = add_key$keyring(&(0x7f00000009c0), &(0x7f0000000a00)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_MOVE(0x1e, r4, r8, r3, 0x0) add_key$fscrypt_v1(&(0x7f0000000a40), &(0x7f0000000a80)={'fscrypt:', @desc1}, &(0x7f0000000ac0)={0x0, "b28dcbdf4f8b2226662295faced4e308758cc174b37d57f010bcf1479d1c551e219e54159d60ab1a7466dbb466edc6a75f4c28e3e991cceee15199961ee12e16", 0x3b}, 0x48, r7) add_key$keyring(&(0x7f0000000b40), &(0x7f0000000b80)={'syz', 0x3}, 0x0, 0x0, r0) add_key$user(&(0x7f0000000bc0), &(0x7f0000000c00)={'syz', 0x1}, &(0x7f0000000c40)="50abe806eecb1e46817eebdd88c054b8709aa96c0b42795441a344a33bde7fe218b9cad900c190926e20268e20f8420b7315db427c72a89d4f8c8b70e2363120de0c14e7edcd4bc9fddf1941b1d1a6281e64c09f49083ff18545d0cf89bbb39afce98b1264496a5153300b8e8d0e6bd733ceac93b2d2e54a7b32308e15d86aaf2248916e525bac1cad", 0x89, r5) [ 149.448323] audit: type=1400 audit(1677275925.548:6): avc: denied { execmem } for pid=260 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 21:58:45 executing program 2: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x4a) ioctl$PTP_CLOCK_GETCAPS(r0, 0x80503d01, &(0x7f0000000040)) r1 = socket$netlink(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0xe4, 0x0, 0x9, 0x201, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFCTH_STATUS={0x8}, @NFCTH_TUPLE={0xb4, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @broadcast}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x1f}}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x81}}]}, 0xe4}, 0x1, 0x0, 0x0, 0x80}, 0x8000) sendmsg$SEG6_CMD_SET_TUNSRC(r0, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x78, 0x0, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xffffffff}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xffff}, @SEG6_ATTR_SECRETLEN={0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x5}, @SEG6_ATTR_SECRET={0x14, 0x4, [0x4, 0x6, 0x1, 0x3]}, @SEG6_ATTR_SECRET={0x14, 0x4, [0xc27, 0xffffff5b, 0x3, 0x5]}, @SEG6_ATTR_SECRET={0x14, 0x4, [0xff, 0x3ff, 0x40, 0x9]}]}, 0x78}}, 0x80) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sync_file_range(r2, 0x7ff, 0x200000002, 0x5) stat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)) sendmsg$NL80211_CMD_LEAVE_IBSS(r1, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x1c, 0x0, 0x100, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x854}, 0xc845) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000600), r2) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r0, &(0x7f0000000700)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x80, r4, 0x300, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x100, 0x5}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x42}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x7f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x40}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x18}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x13}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x49}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x48}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000001}, 0x40) setxattr$security_evm(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780), &(0x7f00000007c0)=@md5={0x1, "fe8ce2d13f125ba7ef023295a666f4f2"}, 0x11, 0x2) fcntl$setpipe(r2, 0x407, 0x40) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000840)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r2, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x5c, r4, 0xacf9c4604088be66, 0x195b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_BSSID={0xa}, @NL80211_ATTR_BSSID={0xa}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x1a}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x64}, @NL80211_ATTR_BSSID={0xa}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) r6 = syz_open_dev$vcsu(&(0x7f0000000980), 0x7, 0x80200) r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000a00), r3) sendmsg$IPVS_CMD_GET_SERVICE(r6, &(0x7f0000000b00)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x7c, r7, 0x8, 0x70bd2d, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e21}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e22}]}, @IPVS_CMD_ATTR_DEST={0x3c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x1d}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x24}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x5}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e22}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3f}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x10001}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20000881}, 0x800) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000c80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x85384d20a6f36fcc}, 0xc, &(0x7f0000000c40)={&(0x7f0000000b80)={0x84, r4, 0x400, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x10, 0xcd, [0x4, 0x3, 0xf92, 0x9, 0xff, 0x7ff]}, @NL80211_ATTR_FRAME={0x1e, 0x33, @deauth={@wo_ht={{0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x6}, @device_b, @device_b, @random="a08a37c72e55", {0x8, 0x8a2}}, 0x32, @void}}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}], @NL80211_ATTR_CSA_C_OFFSETS_TX={0x12, 0xcd, [0x3, 0x7, 0x800, 0x101, 0x0, 0x2, 0x7]}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xb45}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x9d7}]}, 0x84}, 0x1, 0x0, 0x0, 0x8000}, 0x0) mount(&(0x7f0000000cc0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000d00)='./file0\x00', &(0x7f0000000d40)='mqueue\x00', 0x800, &(0x7f0000000d80)='wlan1\x00') 21:58:45 executing program 4: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_NOP={0x0, 0x4}, 0x12) mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, 0x100010, 0xffffffffffffffff, 0x10000000) r0 = syz_io_uring_setup(0x48b5, &(0x7f0000000040)={0x0, 0x94c8, 0x10, 0x3, 0x199}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000100)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x54d8c3, 0x10c) r3 = eventfd2(0x6, 0x80001) ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f0000000180)=0x8001) r4 = syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, 0xa, &(0x7f0000000940)=[{&(0x7f0000000240)="5a2813661ab6a051050fa92f9b8ed25949f8b73fa05efc0866b3653a6259f181cdc604d8a5dabb4c5d691ad2e27638f5c2e35e902c418997507fe54c01715a3e94762fbdb398831d8cada1682f50998ebc097440ba60b8ddc7b18005d1ba2c101ca2ea2509a5e40660d3260afcf060aba0423b8f5ee4f0cfb57e17ee9d672cbd8ed45cf5fb87ad041ebe29226ba121b4ab2639a795957e8690f56b80134e17a50a724347a23f321b97e5c2e03d92fe40f8f21c8f300f05ab519e234c8f003185d07f66a5ed057cc18090700a067b79a25f970775441c58641d0e04e35453fc6507e385330459da0bef2e48b3aecedef5930ccee0c8fcc1dc", 0xf8, 0x1}, {&(0x7f0000000340)="4c4aef38b8a05e2199beabfd1f93a093aee6182b0418f39ffbb408979b505562693426860103a234dc10b2cb8a0c250f30585f69e48e1709002acabc9f4b40ec025b17f170c4263e472e6592b22b164afeee2bdaa6044ad9383edc660976122d668ed0ce1c9f610a80a1af8658fc3195bdb762318722f3def7b013707d89974f32c3cf6f42ecede758941fc611087d43b242d6457cc174fb1d9652e36f3e61a63aa20ed2d535df07502a8f65f89801008e977992338f65bf97fc5642f9d9634d51dad5ad95d273e5f4c2ae90fc5d173ed36b3dc379e0c37d4a3064f2081148c1c4c7781b68", 0xe5, 0x2}, {&(0x7f0000000440), 0x0, 0x3ff}, {&(0x7f0000000480)="78ce0427bb8fc2284f6924c2f747e5a95e7a33e61efa0af4b1aabadfffbb89bc", 0x20, 0x9}, {&(0x7f00000004c0)="47f7156b1e0d2e5a8366fb07dd172f49ca6556a72bbffe0c54fa977c31b6df6e3adcd259c1dc66fce3c7eca992225a43ae3555264a229d87ece921720f0c5fd5cbcea50ea5260191f45ca49cdf48e80c0297496c775f46106e7a9b6a713407eae9b1eeb26383bc3ad661de3f3b60cae552f4c18c111521609b84758538d77a6cc78262bbd8297293f815459187cb38ba13bfd8ef6343174f8c36eebdcf01ab9437b2c4121d31819f9bd9746b206a22603fea3a0eed9316650b79c3429a72da9d2e6389d5cda8c732be018ec89b095a875da933fd6dea011fb0", 0xd9, 0x2}, {&(0x7f00000005c0)="13337ce84c2bb9065460abea9b0c7d6fffba4da91db414d615b96426858541469af4e22f8b5e656176c1e0c3952634e8dfc270b7cab515a49e9fbe5f25ec1b139e1d61bcaf0f443210aed4a36c60fe931d09bac8edcdaa46c4df89c9522cebceaa4f1aa2713a5a56284a0bba30ba097e686c6153f5bd5105a9e8fca050e8e0835c57fab3a19ee5471411af787b24ff91f70ec11e0ac2eca0c9ee6ade69061d6a3193e0c4e828079224c2c3bcb39e6a2d98ddcd60a90303189743ef7ed06331413125ed3f7e341234eeee416e5f7f880391684881c97f", 0xd6, 0xffffffffffffffff}, {&(0x7f00000006c0)="da9fe9d6396cd2bd035851f9611bd7ba38eba5aba63c18a4ee43f432fcab5feeecc9c5be506e9f7bbcd6558f05823ca6107e6e", 0x33, 0x7}, {&(0x7f0000000700)="96b92042e6f24f774862079e83f261aaa9899f58e934153da3b233b69ac821df413a3e2bf3fa183dfa2883347e42d07d582826747a7bec0078e1601b326ec065aadeb2fc5efb2226e2862d7dc035b354a53e136fe74c37df7f540afaa12cc317ba2a5fa17e0f9351757ed780612417d56ca4f0dab78031aae9b3ff2672a0aa3a41ab8ee02e5b923a6dc96883fb70bfcf68b697fd01c349cb9f86ba2ae686aff37c4635d2c9127336fb3dec7287aa94f7753cdfcec7b87033d97a92649ec44481ae8a59b2a3666971b5801bab0586ba386aa0cdf3cde6192d93ab624a82f31e9fddc67e9af35227ff6d07667f65", 0xed, 0x9162}, {&(0x7f0000000800), 0x0, 0x2}, {&(0x7f0000000840)="490c434cd484e73b48313227513c016559c60b2440ac09538e618271f53299586d236ccc39cac3d144a02d87005e61fae0e0cf02da354d8175e62e25f01f7f62817b8a3a3e1f00520034f5caad47eb7514c555c84e09dc6b21e1302f4b31d40bc90d0a6598f42893d1d461839558078d39d99bedf5c8b3f87313e635a23576c8b5742b0415c6d393d0c74b70ae35b7d2bae8164efa402deeaf4328925651a6b783aff180ea29ec92f41bba292b6441ddd73d8700658dd291dca25c91e12fd9b03ee071dc30b6a73ccd8b", 0xca, 0x3fffffff80000}], 0x88069, &(0x7f0000000a40)={[{@shortname_win95}, {@shortname_win95}, {@numtail}], [{@measure}, {@func={'func', 0x3d, 'FIRMWARE_CHECK'}}, {@func={'func', 0x3d, 'KEXEC_INITRAMFS_CHECK'}}, {@hash}, {@obj_role={'obj_role', 0x3d, '\x00'}}, {@smackfsroot={'smackfsroot', 0x3d, ')@&.\xeb+.*.{)}-)'}}, {@dont_measure}, {@rootcontext={'rootcontext', 0x3d, 'root'}}]}) ioctl$FS_IOC_GETFSLABEL(r0, 0x81009431, &(0x7f0000000b00)) r5 = syz_io_uring_complete(r1) bind$netlink(r5, &(0x7f0000000c00)={0x10, 0x0, 0x25dfdbfc, 0x80}, 0xc) r6 = io_uring_setup(0x49dd, &(0x7f0000000c40)={0x0, 0x1670, 0x1, 0x1, 0x2ef, 0x0, r5}) mkdirat(r5, &(0x7f0000000cc0)='./file0\x00', 0x5) r7 = signalfd(r4, &(0x7f0000000d00)={[0xff]}, 0x8) r8 = syz_open_procfs$userns(0x0, &(0x7f0000000d40)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000d80)={0xffffffffffffffff, 0xffffffffffffffff}) r10 = socket$inet6_tcp(0xa, 0x1, 0x0) io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000dc0)=[r3, r2, r7, r8, r9, r10, r7, r4], 0x8) openat$sr(0xffffffffffffff9c, &(0x7f0000000e00), 0x20000, 0x0) fallocate(r6, 0x20, 0x4, 0x7) lsetxattr$security_selinux(&(0x7f0000000e40)='./file0\x00', &(0x7f0000000e80), &(0x7f0000000ec0)='system_u:object_r:mouse_device_t:s0\x00', 0x24, 0x3) 21:58:45 executing program 3: ioctl$BLKBSZGET(0xffffffffffffffff, 0x80081270, &(0x7f0000000000)) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x964}}, './file0\x00'}) ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000080)={0x5}) ioctl(r0, 0x654, &(0x7f00000000c0)="732df389fd5837890b7bd214b1a94acca78ead4ffeeabddd4462221bb3b6c3f602a8a6a5e3551b0de1ae402b81006ed7d35d5516807dc3475ae96f8e90f7dcbf5708beb03890735e0f7cd67ddf823093e7663a0fb711fb8021ff7088d0103c05ce6f4efc83c844c79d742f7513cf767961f8014235e6568d362581d9c1cb86a6b1710d012639a7cf6b53830e25c97f322b40a7ff6ebad06017ae54fa06e2ef18b252eba1fdae6c645331c04b528f33220f5ac6b410") ioctl$BLKREPORTZONE(r0, 0xc0101282, &(0x7f0000000180)={0x7fff, 0x4, 0x0, [{0xe, 0x20, 0x4, 0x0, 0x7, 0x1, 0x4}, {0x7ff, 0xffffffffffff98b5, 0x8, 0x20, 0x48, 0x3f, 0x4}, {0x3, 0xc9, 0x5, 0x1, 0x8, 0x1, 0x2}, {0x7ff, 0x5, 0x3, 0xaf, 0x3, 0x40, 0x67}]}) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {0xfe}}, './file0\x00'}) preadv2(r1, &(0x7f0000000300), 0x0, 0x4, 0x6, 0x1) r2 = open_tree(r1, &(0x7f0000000340)='./file0\x00', 0x900) pwritev(r2, &(0x7f00000004c0)=[{&(0x7f0000000380)="f3bb", 0x2}, {&(0x7f00000003c0)="126495c6e5d370d43b4c0956cf105d09d05008deb15630a872d80a96564ba177a214fea8dc14d6", 0x27}, {&(0x7f0000000400)="aeb5ce0eefa8952b08b455202909c73c24fb6c4d83e40fb03c4b74831535bbfccdf462f71331ee0c7523264e1929a669b346801ef18f8b843261c1ea68a7eaa542f9f90f8a2543a4df365d71f1ef7efc1d476b73893eebc95135fb383c25fffede18441657ed718dbd3633802a9f27dec7cbca38dcd8ed71a582befa1d5874a2f80f00e2fbf4ccbd1f1ca90b3f82e6634eca636b99692ab80a813d580371", 0x9e}], 0x3, 0x80000000, 0x6f) ioctl$AUTOFS_IOC_FAIL(r2, 0x9361, 0xbe7) readv(r2, &(0x7f0000001600)=[{&(0x7f0000000500)=""/131, 0x83}, {&(0x7f00000005c0)=""/26, 0x1a}, {&(0x7f0000000600)=""/4096, 0x1000}], 0x3) fstat(r2, &(0x7f0000001640)) r3 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$HIDIOCGSTRING(r3, 0x81044804, &(0x7f00000016c0)={0xf2, "e796da219d57de246016e7e443f9a54c880f243e5e598d9994d07c2586a5bc424e83f84e4ce3ac886b8bde0195af25a42554673f1cf0cfced2d81fa9a4382f91bc5726acf48253ca809c6222d7103c9eece5a6b5e2b42e9c79da76580e647b359dd556dbe4a59ff80c0bd50bac1e71155c5c165e9f599c533fe6d05bc2618343f5f210348da1437d8b8c7e24fef4e38dae6bbf4587a6f738e7104ecdba3e1686f664ea113374aa52ecb1149ae3fcb57929d07e79b28f68388fefb17fbb2f31963a43dbfa5492387fdb4289d7195a8c48ef1ecfe0875ec8c8e9ef0e885529adb0cfac67f09fa1ef3bf1f8ad3b9357132e318e"}) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000017c0)) setsockopt$inet_udp_int(r3, 0x11, 0xa, &(0x7f0000001800)=0x81, 0x4) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$KDDELIO(r4, 0x4b35, 0x2) write(0xffffffffffffffff, &(0x7f0000001840)="58cf0af213f6fc8d1615f95478c0871d4672248ced43e840a2095e855b5da7fd15ef328478ba6ed406e7e991656fd3f6135c46f4bcf603beb304377b2a31a700813c86ccf320f75287ba9ea0e820ab6f85bd20cb2a6b06063485a5079407fa65899ea83e614093189c5280c8ff0f9459b9f1b0811162d37775b26d5b0e5f67f661a8c9cd7782dba1bef8ddb4ae9b7d42cda2f87222e0099ff633486eec61a26e392b4edea6b665393f5c8ab4d67ac5fd19586a60343526cef9eb85fe", 0xbc) 21:58:45 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) ioctl$KIOCSOUND(r0, 0x4b2f, 0xee5e) socket$nl_audit(0x10, 0x3, 0x9) ioctl$TIOCL_SCROLLCONSOLE(0xffffffffffffffff, 0x541c, &(0x7f0000000040)={0xd, 0x6}) r1 = syz_open_dev$vcsa(&(0x7f0000000080), 0x8, 0x201) ioctl$GIO_FONTX(r1, 0x4b6b, &(0x7f00000004c0)={0x145, 0x2, &(0x7f00000000c0)}) r2 = openat(r1, &(0x7f0000000500)='./file0\x00', 0x202400, 0xf0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000540)={'netdevsim0\x00'}) ioctl$FIOCLEX(r0, 0x5451) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r1, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x38, 0x4, 0x8, 0x201, 0x0, 0x0, {0x7, 0x0, 0x8001}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8035}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xb7fe}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x880) write$binfmt_aout(r1, &(0x7f0000000680)={{0x108, 0x7f, 0x20, 0x1c0, 0xb, 0x400, 0x33, 0x591}, "7ccd4725cc2daed2d032da9b88a5d0b36a0b79a3e6f1cbe68faccfb37dc0566be1ba27ebda9d2a697f4bcfc7fe3f9cd635a8a3", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x953) fcntl$addseals(r0, 0x409, 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000001000)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r4 = open_tree(0xffffffffffffff9c, &(0x7f0000001040)='./file0\x00', 0x1000) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r4, 0x400c6615, &(0x7f0000001080)={0x0, @aes256, 0x0, @desc1}) sendmsg$IPSET_CMD_GET_BYINDEX(r3, &(0x7f0000001180)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x24, 0xf, 0x6, 0x801, 0x0, 0x0, {0x5, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}}, 0x0) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000011c0), 0x40000, 0x0) openat(r5, &(0x7f0000001200)='./file0\x00', 0x0, 0xca) ioctl$TIOCGPTPEER(r1, 0x5441, 0x800) sendmsg$AUDIT_TTY_SET(r1, &(0x7f0000001300)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000012c0)={&(0x7f0000001280)={0x18, 0x3f9, 0x400, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x18}, 0x1, 0x0, 0x0, 0x4011}, 0x40000890) 21:58:45 executing program 6: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0) ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f0000000040)=""/65) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f00000000c0)=0x8) ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000000100)=""/67) r1 = openat2(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x540001, 0xb, 0x19}, 0x18) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, {0x3ff}}, './file0\x00'}) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000240), 0x1000, 0x0) ioctl$BTRFS_IOC_DEFRAG_RANGE(r2, 0x40309410, 0x0) r4 = dup(r0) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f0000000280)=0x4) sendfile(r2, r2, 0x0, 0x4) ioctl$BINDER_ENABLE_ONEWAY_SPAM_DETECTION(0xffffffffffffffff, 0x40046210, &(0x7f00000002c0)) recvmmsg(0xffffffffffffffff, &(0x7f0000000840)=[{{&(0x7f0000000300)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, &(0x7f0000000780)=[{&(0x7f0000000380)=""/170, 0xaa}, {&(0x7f0000000440)=""/119, 0x77}, {&(0x7f00000004c0)=""/186, 0xba}, {&(0x7f0000000580)=""/213, 0xd5}, {&(0x7f0000000680)=""/212, 0xd4}], 0x5, &(0x7f0000000800)=""/42, 0x2a}, 0x5}], 0x1, 0x10040, &(0x7f0000000880)) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r5, 0x80089419, &(0x7f00000008c0)) ioctl$EVIOCSKEYCODE(0xffffffffffffffff, 0x40084504, &(0x7f0000000900)=[0x7, 0x400]) accept$packet(r1, &(0x7f0000000940)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000980)=0x14) ioctl$EVIOCGREP(r4, 0x80084503, &(0x7f00000009c0)=""/187) ioctl$EVIOCSABS2F(r2, 0x401845ef, &(0x7f0000000a80)={0x1, 0xffffffff, 0x3f, 0x7fffffff, 0x8, 0x7f}) ioctl$BTRFS_IOC_SCRUB_CANCEL(r0, 0x941c, 0x0) ioctl$EVIOCSABS2F(r3, 0x401845ef, &(0x7f0000000ac0)={0xf9, 0xffff, 0x6, 0x0, 0x1, 0x100}) 21:58:45 executing program 7: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r0, 0x200, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, r0, 0x800, 0x70bd26, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x5c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x61}]}, 0x2c}, 0x1, 0x0, 0x0, 0xd891}, 0x20000880) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0xde98932c9b926175}, 0xc, &(0x7f0000000400)={&(0x7f00000002c0)={0x130, 0x0, 0x800, 0x70bd2a, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x33}, @val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x9}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xc89}, @NL80211_ATTR_VENDOR_DATA={0x15, 0xc5, "b4690563311eb7c49da475644399fcb505"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x2}, @NL80211_ATTR_VENDOR_DATA={0xcc, 0xc5, "4ba9a4d3f225f3ab9aa0adc9ce82031ac5e5b19c3524303962dc21edbe22698942a979d2d813b50e0dcfe6d2b3db9248823af2bac6c0895b641206820dc14c2a474f9fcada689a02ba20d8b1d6a0063cc57a321ad0f87f3005d5f9a12531552b0ef23bb9e74cc1ba15094d124d9a46fa53960e2b43791f9fabbc22e08f8bf78dbf1729d4f8ebd412ae3ca165a9a6c228452bb71b9ec44f4fc503ccb16440c216b78a1356eec8766c7a217e4e486b843076f26e8039c5d5777e403397b0a036dc2fc09e81fe2550ed"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffffffff}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x8}]}, 0x130}}, 0x800) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000480), 0x8000, 0x0) sendmsg$TIPC_NL_BEARER_ADD(r2, &(0x7f0000000740)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000700)={&(0x7f0000000500)={0x1e0, 0x0, 0x201, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x200}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xf3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x100}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5}]}, @TIPC_NLA_PUBL={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x101}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_MON={0x3c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xd8cc}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7f}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x487}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xfffffffa}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_LINK={0x4c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}]}]}, @TIPC_NLA_NODE={0x44, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x22, 0x3, "8a9320feb39435a882e4d0b8a703cebcb93209f2ddda5502cf8e77553657"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x67f0}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7e9}]}, @TIPC_NLA_BEARER={0x54, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @loopback}}, {0x14, 0x2, @in={0x2, 0x4e22, @loopback}}}}, @TIPC_NLA_BEARER_NAME={0x14, 0x1, @l2={'ib', 0x3a, 'bond_slave_0\x00'}}]}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x2000c801}, 0x4008000) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000007c0), r2) sendmsg$NL80211_CMD_SET_CHANNEL(r2, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x34, r3, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x67e532b6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x84}, 0x40) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000900), r2) sendmsg$TIPC_NL_PUBL_GET(r2, &(0x7f0000000a80)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000a40)={&(0x7f0000000940)={0xe4, r4, 0x20, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x68, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xe7e7}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffff000}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5ed}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80000000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7ff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x9}]}, @TIPC_NLA_BEARER={0x68, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x17, 0x1, @l2={'eth', 0x3a, 'batadv_slave_1\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7f}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4e0e}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffffe47f}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @local}}, {0x14, 0x2, @in={0x2, 0x4e24, @remote}}}}]}]}, 0xe4}, 0x1, 0x0, 0x0, 0x4004000}, 0x40000) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r2, 0x89fb, &(0x7f0000000b80)={'syztnl1\x00', &(0x7f0000000b00)={'syztnl2\x00', 0x0, 0x4, 0x20, 0x3f, 0x1, 0x0, @remote, @empty, 0x8000, 0x10, 0x10001, 0x8}}) sendmsg$BATADV_CMD_GET_GATEWAYS(r2, &(0x7f0000000c80)={&(0x7f0000000ac0), 0xc, &(0x7f0000000c40)={&(0x7f0000000bc0)={0x4c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x1}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x10000}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20008000}, 0x4048007) r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000cc0), 0x1, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000d40), r2) sendmsg$NL80211_CMD_CONNECT(r6, &(0x7f0000000e40)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x230}, 0xc, &(0x7f0000000e00)={&(0x7f0000000d80)={0x6c, r7, 0x8, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x2, 0x42}}}}, [@NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x2}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0xe000, {0x300, 0x4, 0x205}}}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x8000}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_PRIVACY={0x4}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40081}, 0x10000044) pipe(&(0x7f0000000e80)={0xffffffffffffffff}) sendmsg$NL80211_CMD_DEL_INTERFACE(r8, &(0x7f0000000f80)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000f40)={&(0x7f0000000f00)={0x20, r7, 0x200, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7ff00000, 0x2a}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0xc0) sendmsg$FOU_CMD_ADD(r6, &(0x7f00000010c0)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x1000800}, 0xc, &(0x7f0000001080)={&(0x7f0000001000)={0x54, 0x0, 0x800, 0x70bd28, 0x7ff, {}, [@FOU_ATTR_AF={0x5, 0x2, 0x1e}, @FOU_ATTR_IFINDEX={0x8, 0xb, r5}, @FOU_ATTR_PEER_V4={0x8, 0x8, @private=0xa010101}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e23}, @FOU_ATTR_AF={0x5, 0x2, 0x2}, @FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x73}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x88}]}, 0x54}, 0x1, 0x0, 0x0, 0x404c081}, 0x4000080) sendmsg$SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f00000012c0)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001280)={&(0x7f00000011c0)={0x88, 0x0, 0x4, 0x70bd2d, 0x25dfdbfd, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x2}, @SEG6_ATTR_DST={0x14, 0x1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @SEG6_ATTR_SECRET={0x10, 0x4, [0x6, 0x9, 0x8]}, @SEG6_ATTR_DST={0x14, 0x1, @empty}, @SEG6_ATTR_ALGID={0x5}, @SEG6_ATTR_DST={0x14, 0x1, @remote}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x7f}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0x8000}]}, 0x88}, 0x1, 0x0, 0x0, 0x800}, 0x20008144) [ 150.862822] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 150.866033] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 150.867267] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 150.869409] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 150.870192] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 150.870831] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 150.871679] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 150.872794] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 150.874593] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 150.875833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 150.876552] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 150.877840] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 150.878584] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 150.879432] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 150.880043] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 150.881079] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 150.882729] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 150.884047] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 150.887718] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 150.888739] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 150.889732] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 150.890346] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 150.890448] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 150.890977] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 150.892716] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 150.893412] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 150.894069] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 150.894830] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 150.895491] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 150.903698] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 150.904653] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 150.908571] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 150.909309] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 150.910544] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 150.911461] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 150.912225] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 150.913689] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 150.914765] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 150.915332] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 150.916164] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 150.917585] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 150.918512] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 150.919668] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 150.920522] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 150.921451] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 150.922808] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 150.923764] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 150.930247] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 152.967802] Bluetooth: hci0: command 0x0409 tx timeout [ 152.968566] Bluetooth: hci3: command 0x0409 tx timeout [ 152.969153] Bluetooth: hci6: command 0x0409 tx timeout [ 152.969829] Bluetooth: hci5: command 0x0409 tx timeout [ 152.970434] Bluetooth: hci4: command 0x0409 tx timeout [ 152.971024] Bluetooth: hci7: command 0x0409 tx timeout [ 152.971635] Bluetooth: hci2: command 0x0409 tx timeout [ 152.972194] Bluetooth: hci1: command 0x0409 tx timeout [ 155.015843] Bluetooth: hci1: command 0x041b tx timeout [ 155.016333] Bluetooth: hci2: command 0x041b tx timeout [ 155.016826] Bluetooth: hci7: command 0x041b tx timeout [ 155.017268] Bluetooth: hci4: command 0x041b tx timeout [ 155.017485] Bluetooth: hci5: command 0x041b tx timeout [ 155.022154] Bluetooth: hci6: command 0x041b tx timeout [ 155.022189] Bluetooth: hci3: command 0x041b tx timeout [ 155.022655] Bluetooth: hci0: command 0x041b tx timeout [ 157.063475] Bluetooth: hci6: command 0x040f tx timeout [ 157.064049] Bluetooth: hci3: command 0x040f tx timeout [ 157.064897] Bluetooth: hci0: command 0x040f tx timeout [ 157.065442] Bluetooth: hci5: command 0x040f tx timeout [ 157.065969] Bluetooth: hci4: command 0x040f tx timeout [ 157.066492] Bluetooth: hci7: command 0x040f tx timeout [ 157.066948] Bluetooth: hci2: command 0x040f tx timeout [ 157.067429] Bluetooth: hci1: command 0x040f tx timeout [ 159.111632] Bluetooth: hci1: command 0x0419 tx timeout [ 159.112143] Bluetooth: hci2: command 0x0419 tx timeout [ 159.112633] Bluetooth: hci7: command 0x0419 tx timeout [ 159.113066] Bluetooth: hci4: command 0x0419 tx timeout [ 159.113585] Bluetooth: hci5: command 0x0419 tx timeout [ 159.114022] Bluetooth: hci0: command 0x0419 tx timeout [ 159.114499] Bluetooth: hci3: command 0x0419 tx timeout [ 159.114933] Bluetooth: hci6: command 0x0419 tx timeout [ 209.958280] [ 209.958500] ====================================================== [ 209.958996] WARNING: possible circular locking dependency detected [ 209.959487] 6.2.0-next-20230224 #1 Not tainted [ 209.959854] ------------------------------------------------------ [ 209.960329] syz-executor.1/271 is trying to acquire lock: [ 209.960779] ffff88801412c880 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: __flush_work+0xdd/0xd80 [ 209.961631] [ 209.961631] but task is already holding lock: [ 209.962286] ffff88801412c920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 209.970400] [ 209.970400] which lock already depends on the new lock. [ 209.970400] [ 209.971025] [ 209.971025] the existing dependency chain (in reverse order) is: [ 209.971595] [ 209.971595] -> #1 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}: [ 209.972156] __mutex_lock+0x133/0x14a0 [ 209.972542] hci_cmd_sync_work+0x1e6/0x320 [ 209.972936] process_one_work+0xa0f/0x1790 [ 209.973327] worker_thread+0x63b/0x1260 [ 209.973705] kthread+0x2e9/0x3a0 [ 209.974056] ret_from_fork+0x2c/0x50 [ 209.974432] [ 209.974432] -> #0 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}: [ 209.978709] __lock_acquire+0x2d56/0x6380 [ 209.979105] lock_acquire.part.0+0xea/0x320 [ 209.979501] __flush_work+0x109/0xd80 [ 209.979855] __cancel_work_timer+0x39c/0x4e0 [ 209.980254] hci_cmd_sync_clear+0x52/0x250 [ 209.980649] hci_unregister_dev+0xf9/0x410 [ 209.981030] vhci_release+0x80/0x100 [ 209.981380] __fput+0x263/0xa40 [ 209.981706] task_work_run+0x174/0x280 [ 209.982107] do_exit+0xad8/0x2800 [ 209.982445] do_group_exit+0xd4/0x2a0 [ 209.982803] get_signal+0x23c8/0x2450 [ 209.983162] arch_do_signal_or_restart+0x79/0x590 [ 209.983592] exit_to_user_mode_prepare+0x122/0x190 [ 209.984038] syscall_exit_to_user_mode+0x1d/0x50 [ 209.984482] do_syscall_64+0x4c/0x90 [ 209.984841] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 209.985301] [ 209.985301] other info that might help us debug this: [ 209.985301] [ 209.985926] Possible unsafe locking scenario: [ 209.985926] [ 209.986411] CPU0 CPU1 [ 209.986771] ---- ---- [ 209.987130] lock(&hdev->cmd_sync_work_lock); [ 209.987498] lock((work_completion)(&hdev->cmd_sync_work)); [ 209.988135] lock(&hdev->cmd_sync_work_lock); [ 209.988671] lock((work_completion)(&hdev->cmd_sync_work)); [ 209.989137] [ 209.989137] *** DEADLOCK *** [ 209.989137] [ 209.989604] 1 lock held by syz-executor.1/271: [ 209.989969] #0: ffff88801412c920 (&hdev->cmd_sync_work_lock){+.+.}-{3:3}, at: hci_cmd_sync_clear+0x45/0x250 [ 209.990822] [ 209.990822] stack backtrace: [ 209.991173] CPU: 0 PID: 271 Comm: syz-executor.1 Not tainted 6.2.0-next-20230224 #1 [ 209.991784] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 209.992429] Call Trace: [ 209.992652] [ 209.992851] dump_stack_lvl+0x91/0xf0 [ 209.993185] check_noncircular+0x263/0x2e0 [ 209.993548] ? __pfx_check_noncircular+0x10/0x10 [ 209.993953] ? save_trace+0x285/0xcb0 [ 209.994301] ? __pfx_register_lock_class+0x10/0x10 [ 209.994718] __lock_acquire+0x2d56/0x6380 [ 209.995078] ? __pfx___lock_acquire+0x10/0x10 [ 209.995468] ? __pfx___lock_acquire+0x10/0x10 [ 209.995851] ? __pfx___lock_acquire+0x10/0x10 [ 209.996234] lock_acquire.part.0+0xea/0x320 [ 209.996601] ? __flush_work+0xdd/0xd80 [ 209.996949] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 209.997357] ? __flush_work+0xdd/0xd80 [ 209.997692] ? rcu_read_lock_sched_held+0x42/0x80 [ 209.998108] ? trace_lock_acquire+0x170/0x1e0 [ 209.998491] ? __flush_work+0xdd/0xd80 [ 209.998819] ? lock_acquire+0x32/0xc0 [ 209.999142] ? __flush_work+0xdd/0xd80 [ 209.999478] __flush_work+0x109/0xd80 [ 209.999807] ? __flush_work+0xdd/0xd80 [ 210.000149] ? __pfx_mark_lock.part.0+0x10/0x10 [ 210.000544] ? __pfx___flush_work+0x10/0x10 [ 210.000909] ? lock_acquire.part.0+0xea/0x320 [ 210.001295] ? hci_cmd_sync_clear+0x45/0x250 [ 210.001670] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 210.002118] ? hci_cmd_sync_clear+0x45/0x250 [ 210.002493] ? rcu_read_lock_sched_held+0x42/0x80 [ 210.002889] ? trace_lock_acquire+0x170/0x1e0 [ 210.003269] ? lock_is_held_type+0x9f/0x120 [ 210.003645] ? mark_held_locks+0x9e/0xe0 [ 210.003999] __cancel_work_timer+0x39c/0x4e0 [ 210.004377] ? __pfx___cancel_work_timer+0x10/0x10 [ 210.004785] ? __cancel_work_timer+0x2aa/0x4e0 [ 210.005166] ? __pfx___cancel_work_timer+0x10/0x10 [ 210.005569] ? lock_release+0x1e3/0x710 [ 210.005921] ? __pfx_lock_release+0x10/0x10 [ 210.006311] ? do_raw_write_lock+0x11e/0x3b0 [ 210.006695] ? __pfx_vhci_release+0x10/0x10 [ 210.007067] hci_cmd_sync_clear+0x52/0x250 [ 210.007419] ? __pfx_vhci_release+0x10/0x10 [ 210.007775] hci_unregister_dev+0xf9/0x410 [ 210.008130] vhci_release+0x80/0x100 [ 210.008453] __fput+0x263/0xa40 [ 210.008744] task_work_run+0x174/0x280 [ 210.009080] ? __pfx_task_work_run+0x10/0x10 [ 210.009450] ? switch_task_namespaces+0xb1/0xd0 [ 210.009829] ? kmem_cache_free+0xff/0x510 [ 210.010228] do_exit+0xad8/0x2800 [ 210.010519] ? find_held_lock+0x2c/0x110 [ 210.010858] ? lock_release+0x1e3/0x710 [ 210.011204] ? __pfx_do_exit+0x10/0x10 [ 210.011539] ? do_raw_spin_lock+0x125/0x270 [ 210.011900] do_group_exit+0xd4/0x2a0 [ 210.012231] get_signal+0x23c8/0x2450 [ 210.012561] ? lock_is_held_type+0x9f/0x120 [ 210.012932] ? __pfx_get_signal+0x10/0x10 [ 210.013281] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 210.013767] ? trace_lock_acquire+0x170/0x1e0 [ 210.014152] arch_do_signal_or_restart+0x79/0x590 [ 210.014513] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 210.014915] ? fd_install+0x1f7/0x6e0 [ 210.015218] ? selinux_file_ioctl+0xba/0x270 [ 210.015568] exit_to_user_mode_prepare+0x122/0x190 [ 210.015971] syscall_exit_to_user_mode+0x1d/0x50 [ 210.016357] do_syscall_64+0x4c/0x90 [ 210.016655] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 210.017054] RIP: 0033:0x7f03d82358d7 [ 210.017343] Code: Unable to access opcode bytes at 0x7f03d82358ad. [ 210.017802] RSP: 002b:00007fff45ad7008 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 210.018415] RAX: ffffffffffffffed RBX: 0000000000000004 RCX: 00007f03d82358d7 [ 210.018953] RDX: 00007fff45ad7010 RSI: 0000000000008933 RDI: 0000000000000004 [ 210.019486] RBP: 0000000000000004 R08: 0000000000000100 R09: 0000000000000006 [ 210.020018] R10: 00007f03d828fa00 R11: 0000000000000246 R12: 00007fff45ad7010 [ 210.020553] R13: 0000000000000003 R14: 00007fff45ad709c R15: 0000000000000042 [ 210.021098] [ 212.563675] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 212.564461] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 212.565204] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 212.566446] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 212.568019] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 212.568743] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 212.780536] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 212.781195] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 212.781827] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 212.782492] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 212.783620] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 212.793529] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 212.793577] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 212.794917] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 212.795466] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 212.797168] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 212.797887] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 212.798866] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 212.808870] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 212.809650] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 212.813274] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 212.814026] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 212.815455] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 212.817346] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 212.818048] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 212.833998] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 212.834997] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 212.836741] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 212.838174] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 212.839004] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 212.872872] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 212.879566] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 212.883885] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 212.885240] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 212.887022] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 212.887749] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 212.889298] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 212.890300] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 212.891323] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 212.897008] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 212.925984] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 212.929945] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 214.599470] Bluetooth: hci0: command 0x0409 tx timeout [ 214.791409] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 214.855424] Bluetooth: hci5: command 0x0409 tx timeout [ 214.856880] Bluetooth: hci3: command 0x0409 tx timeout [ 214.857475] Bluetooth: hci4: command 0x0409 tx timeout [ 214.857954] Bluetooth: hci7: command 0x0409 tx timeout [ 214.919406] Bluetooth: hci1: command 0x0409 tx timeout [ 214.983415] Bluetooth: hci6: command 0x0409 tx timeout [ 216.648505] Bluetooth: hci0: command 0x041b tx timeout [ 216.904443] Bluetooth: hci7: command 0x041b tx timeout [ 216.904945] Bluetooth: hci4: command 0x041b tx timeout [ 216.905424] Bluetooth: hci3: command 0x041b tx timeout [ 216.905874] Bluetooth: hci5: command 0x041b tx timeout [ 216.968418] Bluetooth: hci1: command 0x041b tx timeout [ 217.032448] Bluetooth: hci6: command 0x041b tx timeout [ 218.695418] Bluetooth: hci0: command 0x040f tx timeout [ 218.951509] Bluetooth: hci5: command 0x040f tx timeout [ 218.952001] Bluetooth: hci3: command 0x040f tx timeout [ 218.952472] Bluetooth: hci4: command 0x040f tx timeout [ 218.952890] Bluetooth: hci7: command 0x040f tx timeout [ 219.016420] Bluetooth: hci1: command 0x040f tx timeout [ 219.080439] Bluetooth: hci6: command 0x040f tx timeout [ 219.784387] Bluetooth: hci2: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 21:59:46 Registers: info registers vcpu 0 RAX=000000000000005f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff82502865 RDI=ffffffff87f10da0 RBP=ffffffff87f10d60 RSP=ffff888014386ee0 R8 =0000000000000001 R9 =000000000000000a R10=000000000000005f R11=0000000000000001 R12=000000000000005f R13=ffffffff87f10d60 R14=0000000000000010 R15=ffffffff82502850 RIP=ffffffff825028bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe694e9c5000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe694e9c3000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f9fa0c766f4 CR3=0000000005482000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f9fa0c8547000007f9fa0c84f20 XMM02=00000000000000000000000000000000 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=73253d656d616e6c6165722073253d73 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffffea0000ccd180 RCX=0000000000000000 RDX=ffff88800ed29ac0 RSI=ffffffff816fcd12 RDI=0000000000000005 RBP=0000000000000000 RSP=ffff888016c5f6e8 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=ffff888016c5fad8 R14=dffffc0000000000 R15=ffffea0000ccd180 RIP=ffffffff814b75eb RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe27391c2000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe27391c0000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f19bac4b6f4 CR3=0000000005482000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f19bac5a47000007f19bac59f20 XMM02=00000000000000000000000000000000 XMM03=756e20796d6d756420736e6f6974706f XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=73253d656d616e6c6165722073253d73 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000