Warning: Permanently added '[localhost]:3093' (ECDSA) to the list of known hosts. 2022/10/01 07:25:33 fuzzer started 2022/10/01 07:25:33 dialing manager at localhost:35095 syzkaller login: [ 37.006676] cgroup: Unknown subsys name 'net' [ 37.105728] cgroup: Unknown subsys name 'rlimit' 2022/10/01 07:25:47 syscalls: 2215 2022/10/01 07:25:47 code coverage: enabled 2022/10/01 07:25:47 comparison tracing: enabled 2022/10/01 07:25:47 extra coverage: enabled 2022/10/01 07:25:47 setuid sandbox: enabled 2022/10/01 07:25:47 namespace sandbox: enabled 2022/10/01 07:25:47 Android sandbox: enabled 2022/10/01 07:25:47 fault injection: enabled 2022/10/01 07:25:47 leak checking: enabled 2022/10/01 07:25:47 net packet injection: enabled 2022/10/01 07:25:47 net device setup: enabled 2022/10/01 07:25:47 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/01 07:25:47 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/01 07:25:47 USB emulation: enabled 2022/10/01 07:25:47 hci packet injection: enabled 2022/10/01 07:25:47 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/01 07:25:47 802.15.4 emulation: enabled 2022/10/01 07:25:47 fetching corpus: 50, signal 22219/23988 (executing program) 2022/10/01 07:25:48 fetching corpus: 100, signal 33914/37249 (executing program) 2022/10/01 07:25:48 fetching corpus: 150, signal 41499/46310 (executing program) 2022/10/01 07:25:48 fetching corpus: 200, signal 49482/55617 (executing program) 2022/10/01 07:25:48 fetching corpus: 250, signal 54475/61926 (executing program) 2022/10/01 07:25:48 fetching corpus: 300, signal 62051/70555 (executing program) 2022/10/01 07:25:48 fetching corpus: 350, signal 68842/78383 (executing program) 2022/10/01 07:25:48 fetching corpus: 400, signal 72383/83046 (executing program) 2022/10/01 07:25:48 fetching corpus: 450, signal 77697/89229 (executing program) 2022/10/01 07:25:49 fetching corpus: 500, signal 81244/93702 (executing program) 2022/10/01 07:25:49 fetching corpus: 550, signal 84203/97611 (executing program) 2022/10/01 07:25:49 fetching corpus: 600, signal 87096/101430 (executing program) 2022/10/01 07:25:49 fetching corpus: 650, signal 89871/105032 (executing program) 2022/10/01 07:25:49 fetching corpus: 700, signal 92773/108724 (executing program) 2022/10/01 07:25:49 fetching corpus: 750, signal 97871/114216 (executing program) 2022/10/01 07:25:49 fetching corpus: 800, signal 99833/116954 (executing program) 2022/10/01 07:25:49 fetching corpus: 850, signal 102096/119912 (executing program) 2022/10/01 07:25:50 fetching corpus: 900, signal 104689/123112 (executing program) 2022/10/01 07:25:50 fetching corpus: 950, signal 106998/126009 (executing program) 2022/10/01 07:25:50 fetching corpus: 1000, signal 109255/128932 (executing program) 2022/10/01 07:25:50 fetching corpus: 1050, signal 112778/132697 (executing program) 2022/10/01 07:25:50 fetching corpus: 1100, signal 114608/135119 (executing program) 2022/10/01 07:25:50 fetching corpus: 1150, signal 116980/138003 (executing program) 2022/10/01 07:25:50 fetching corpus: 1200, signal 118730/140239 (executing program) 2022/10/01 07:25:50 fetching corpus: 1250, signal 120706/142633 (executing program) 2022/10/01 07:25:51 fetching corpus: 1300, signal 122555/144978 (executing program) 2022/10/01 07:25:51 fetching corpus: 1350, signal 124830/147482 (executing program) 2022/10/01 07:25:51 fetching corpus: 1400, signal 125867/149109 (executing program) 2022/10/01 07:25:51 fetching corpus: 1450, signal 127575/151125 (executing program) 2022/10/01 07:25:51 fetching corpus: 1500, signal 128769/152766 (executing program) 2022/10/01 07:25:51 fetching corpus: 1550, signal 130343/154691 (executing program) 2022/10/01 07:25:51 fetching corpus: 1600, signal 131489/156288 (executing program) 2022/10/01 07:25:52 fetching corpus: 1650, signal 133018/158138 (executing program) 2022/10/01 07:25:52 fetching corpus: 1700, signal 134770/160028 (executing program) 2022/10/01 07:25:52 fetching corpus: 1750, signal 136212/161718 (executing program) 2022/10/01 07:25:52 fetching corpus: 1800, signal 139164/164441 (executing program) 2022/10/01 07:25:52 fetching corpus: 1850, signal 141461/166617 (executing program) 2022/10/01 07:25:52 fetching corpus: 1900, signal 142529/167988 (executing program) 2022/10/01 07:25:52 fetching corpus: 1950, signal 144165/169727 (executing program) 2022/10/01 07:25:52 fetching corpus: 2000, signal 145282/171070 (executing program) 2022/10/01 07:25:52 fetching corpus: 2050, signal 146087/172256 (executing program) 2022/10/01 07:25:53 fetching corpus: 2100, signal 147201/173619 (executing program) 2022/10/01 07:25:53 fetching corpus: 2150, signal 148532/175102 (executing program) 2022/10/01 07:25:53 fetching corpus: 2200, signal 149717/176435 (executing program) 2022/10/01 07:25:53 fetching corpus: 2250, signal 151392/178009 (executing program) 2022/10/01 07:25:53 fetching corpus: 2300, signal 151988/178955 (executing program) 2022/10/01 07:25:53 fetching corpus: 2350, signal 152823/180052 (executing program) 2022/10/01 07:25:53 fetching corpus: 2400, signal 153929/181244 (executing program) 2022/10/01 07:25:53 fetching corpus: 2450, signal 155325/182646 (executing program) 2022/10/01 07:25:53 fetching corpus: 2500, signal 156413/183795 (executing program) 2022/10/01 07:25:54 fetching corpus: 2550, signal 157309/184774 (executing program) 2022/10/01 07:25:54 fetching corpus: 2600, signal 158134/185757 (executing program) 2022/10/01 07:25:54 fetching corpus: 2650, signal 159601/186978 (executing program) 2022/10/01 07:25:54 fetching corpus: 2700, signal 160444/187863 (executing program) 2022/10/01 07:25:54 fetching corpus: 2750, signal 161265/188760 (executing program) 2022/10/01 07:25:54 fetching corpus: 2800, signal 161799/189509 (executing program) 2022/10/01 07:25:54 fetching corpus: 2850, signal 162983/190507 (executing program) 2022/10/01 07:25:54 fetching corpus: 2900, signal 163827/191357 (executing program) 2022/10/01 07:25:54 fetching corpus: 2950, signal 164237/192000 (executing program) 2022/10/01 07:25:55 fetching corpus: 3000, signal 165308/192919 (executing program) 2022/10/01 07:25:55 fetching corpus: 3050, signal 166186/193762 (executing program) 2022/10/01 07:25:55 fetching corpus: 3100, signal 166855/194499 (executing program) 2022/10/01 07:25:55 fetching corpus: 3150, signal 167617/195308 (executing program) 2022/10/01 07:25:55 fetching corpus: 3200, signal 168427/196073 (executing program) 2022/10/01 07:25:55 fetching corpus: 3250, signal 169814/197030 (executing program) 2022/10/01 07:25:55 fetching corpus: 3300, signal 171708/198137 (executing program) 2022/10/01 07:25:55 fetching corpus: 3350, signal 173047/199032 (executing program) 2022/10/01 07:25:56 fetching corpus: 3400, signal 173737/199674 (executing program) 2022/10/01 07:25:56 fetching corpus: 3450, signal 174313/200235 (executing program) 2022/10/01 07:25:56 fetching corpus: 3500, signal 174693/200774 (executing program) 2022/10/01 07:25:56 fetching corpus: 3550, signal 175376/201382 (executing program) 2022/10/01 07:25:56 fetching corpus: 3600, signal 176369/202056 (executing program) 2022/10/01 07:25:56 fetching corpus: 3650, signal 176990/202596 (executing program) 2022/10/01 07:25:56 fetching corpus: 3700, signal 177420/203037 (executing program) 2022/10/01 07:25:56 fetching corpus: 3750, signal 178327/203685 (executing program) 2022/10/01 07:25:56 fetching corpus: 3800, signal 179035/204264 (executing program) 2022/10/01 07:25:57 fetching corpus: 3850, signal 179512/204714 (executing program) 2022/10/01 07:25:57 fetching corpus: 3900, signal 180149/205225 (executing program) 2022/10/01 07:25:57 fetching corpus: 3950, signal 180715/205690 (executing program) 2022/10/01 07:25:57 fetching corpus: 4000, signal 182039/206342 (executing program) 2022/10/01 07:25:57 fetching corpus: 4050, signal 182645/206797 (executing program) 2022/10/01 07:25:57 fetching corpus: 4100, signal 183828/207393 (executing program) 2022/10/01 07:25:57 fetching corpus: 4150, signal 184431/207823 (executing program) 2022/10/01 07:25:57 fetching corpus: 4200, signal 185066/208269 (executing program) 2022/10/01 07:25:57 fetching corpus: 4250, signal 185662/208668 (executing program) 2022/10/01 07:25:58 fetching corpus: 4300, signal 186063/209024 (executing program) 2022/10/01 07:25:58 fetching corpus: 4350, signal 186682/209389 (executing program) 2022/10/01 07:25:58 fetching corpus: 4400, signal 187696/209833 (executing program) 2022/10/01 07:25:58 fetching corpus: 4450, signal 189072/210407 (executing program) 2022/10/01 07:25:58 fetching corpus: 4500, signal 190225/210819 (executing program) 2022/10/01 07:25:58 fetching corpus: 4550, signal 191007/211169 (executing program) 2022/10/01 07:25:58 fetching corpus: 4600, signal 191651/211485 (executing program) 2022/10/01 07:25:59 fetching corpus: 4650, signal 192716/211840 (executing program) 2022/10/01 07:25:59 fetching corpus: 4700, signal 193124/212092 (executing program) 2022/10/01 07:25:59 fetching corpus: 4750, signal 193711/212352 (executing program) 2022/10/01 07:25:59 fetching corpus: 4800, signal 194026/212609 (executing program) 2022/10/01 07:25:59 fetching corpus: 4850, signal 194546/212960 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/213161 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/213357 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/213541 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/213714 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/213936 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/214118 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/214308 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/214494 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/214554 (executing program) 2022/10/01 07:25:59 fetching corpus: 4870, signal 194679/214554 (executing program) 2022/10/01 07:26:02 starting 8 fuzzer processes 07:26:02 executing program 0: ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448f0, &(0x7f0000000000)="dafbefc7ef13a7ac49491b6745eabc1c69c5a8ededc2b07a4c421e767264add1ac2d28536ae1997f2e03983acb00ca5d6fd1983ee766b90aa98ef00d5dc32255ab3fe99d85bad04a1d00cbcba6f7af1a16e9714945b748dd15e80ed63b15171d728d897ee718975433a550f17b2595329fbb18767f2dc6a4df581deb690cd28c6aab5e6b3bde37f63fe8df781bf4a548bd7549500e3dcec4deaed1ddee92c23417c0b7b7ee5e4a26d0edcd4e5408b42dd706e7956f9f8e5e3710ff3ebd8f74faee3e2dd93a2d83efb535040475beec4a4de5690dece96e") ioctl$HCIINQUIRY(0xffffffffffffffff, 0x800448f0, &(0x7f0000000100)={0x4, 0x5, "68091b", 0x6, 0x8}) r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8, 0xd9944f45b6a3629b, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r0, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x1020}}, 0x2) r1 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000180), 0x2, 0x0) read(r1, &(0x7f00000001c0)=""/13, 0xd) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1, {0x3}}, './file0\x00'}) ioctl$KDMKTONE(r2, 0x4b30, 0x1) ioctl$TIOCOUTQ(r2, 0x5411, &(0x7f0000000240)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x5, 0x0, r2, &(0x7f0000000280), 0x0, 0x0, 0x80800, 0x1, {0x0, r3}}, 0x20) ioctl$PIO_SCRNMAP(r2, 0x4b41, &(0x7f0000000300)="1cfd3ee75a1a9afcb1881aa1416c3ba083ca1b9023470607ad67ca1fc6cd77fb77133bdc0848a74e5eb25b505de966fcebb7088d5d642521e17cdc12aec42c15f3029dc130e2df68c67a9daccca9aead156fa99cb548a9bb07e510fd99215c6996aacf29edbb31b3513ca3f0df35ad4d28538eb95b4843cda2e92c25012193ff13b2d754812eccb7d1d8d51789052e96dec11d15880c647ffec3b89372d4bcf7b3277ff56daf2db8a6ae79") tee(r2, r1, 0x1, 0x2) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r1, {0x0, 0xffffffffffffffff}}, './file0\x00'}) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f0000001640)=[{&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000001400)=""/199, 0xc7}, {&(0x7f0000001500)=""/28, 0x1c}, {&(0x7f0000001540)=""/154, 0x9a}, {&(0x7f0000001600)=""/43, 0x2b}], 0x5) r5 = openat$incfs(r4, &(0x7f00000016c0)='.pending_reads\x00', 0x200000, 0x82) syz_io_uring_setup(0x6c09, &(0x7f0000001700)={0x0, 0xd55e, 0x2, 0x0, 0x340, 0x0, r5}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fea000/0x13000)=nil, &(0x7f0000001780), &(0x7f00000017c0)) socket$inet_tcp(0x2, 0x1, 0x0) mmap(&(0x7f0000ff6000/0x1000)=nil, 0x1000, 0x200000c, 0x810, 0xffffffffffffffff, 0x55665000) 07:26:02 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0) sendmsg$IEEE802154_SCAN_REQ(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r1, 0x4, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DURATION={0x5}, @IEEE802154_ATTR_DURATION={0x5, 0x15, 0x5}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0xe}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x484d}, 0x20000010) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_SET_MACPARAMS(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x5c, r1, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x7}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_CSMA_MIN_BE={0x5}, @IEEE802154_ATTR_LBT_ENABLED={0x5}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0xfc}, @IEEE802154_ATTR_LBT_ENABLED={0x5}, @IEEE802154_ATTR_LBT_ENABLED={0x5, 0x22, 0x1}, @IEEE802154_ATTR_CCA_ED_LEVEL={0x8, 0x24, 0x1000}, @IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x1f}]}, 0x5c}}, 0x4000000) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_PHY(r3, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x200, 0x70bd29, 0x25dfdbfe, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8483}, 0x20000001) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000380), r4) syz_genetlink_get_family_id$nl802154(&(0x7f00000003c0), r4) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_LISTALL(r5, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x64, 0x0, 0x4, 0x70bd28, 0x25dfdbfe, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x1e}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast1}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_MGMT_A_DOMAIN={0x7, 0x1, '}+\x00'}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x29}}]}, 0x64}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$TIPC_CMD_GET_BEARER_NAMES(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, 0x0, 0x10, 0x70bd2d, 0x25dfdbfe, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4) r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), r5) sendmsg$NL802154_CMD_SET_CCA_ED_LEVEL(r2, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x24, r6, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@NL802154_ATTR_CCA_ED_LEVEL={0x8, 0xe, 0xd}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008014}, 0x4044081) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000780)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000800), 0xffffffffffffffff) sendmsg$TIPC_NL_NET_GET(r7, &(0x7f0000000980)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000840)={0xf4, r8, 0x2, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x4c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8b07}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7e}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x6}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}]}, @TIPC_NLA_BEARER={0x6c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'syz_tun\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}]}, @TIPC_NLA_BEARER_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}]}]}, @TIPC_NLA_NET={0x18, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xac58}]}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x104}, 0x4004080) r9 = openat$cgroup_ro(r7, &(0x7f00000009c0)='pids.events\x00', 0x0, 0x0) sendmsg$nl_generic(r9, &(0x7f0000000c80)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000c40)={&(0x7f0000000ac0)={0x144, 0x1b, 0x8, 0x70bd27, 0x25dfdbfc, {0x16}, [@nested={0x10c, 0x6c, 0x0, 0x1, [@typed={0x8, 0x8c, 0x0, 0x0, @ipv4=@local}, @generic="5362956bf5248a29e599af0ecb99dc63688e3876e446a0db77ec6d63ff9f4ac0cbef8372b757a235b48a6eaeb8fb312df79902d59a0b08f0d6579e2cbe6915d34eb474f29614f970fe50a305dd3da4dd2a77fcebbe913cf02d6ed450aec2037b23bf1c10b3ef22c63792d3d2c7dc", @generic="8c5efa110e32561a8186ccaef869e16700a18e61f6e484c8918b5bf6e04ea153297bf5b67e298bf47d1e27b865f9ef2d665c253b1edca7e1e66a88817753123cdb480b58fec5d4de08900a3f8d36658b1a2805c5609e6d7199b3b5f8bf2d4083ba378b9bcadcee72d849f6d584395cdad86cf28688c9c3e3bea0c858dd9f", @typed={0x4, 0x53}, @typed={0x8, 0x78, 0x0, 0x0, @uid}, @typed={0x8, 0xc, 0x0, 0x0, @ipv4=@local}]}, @nested={0xa, 0x23, 0x0, 0x1, [@generic="09ec6f19690e"]}, @nested={0x10, 0x2a, 0x0, 0x1, [@typed={0xb, 0x8d, 0x0, 0x0, @str='TIPCv2\x00'}]}, @typed={0x8, 0x31, 0x0, 0x0, @fd}]}, 0x144}, 0x1, 0x0, 0x0, 0x4}, 0x20040000) 07:26:02 executing program 2: sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000000), 0xc, &(0x7f00000003c0)={&(0x7f0000000040)={0x370, 0x13, 0x2, 0x70bd26, 0x25dfdbfe, {0x2c, 0x5, 0x83, 0x0, {0x4e22, 0x4e21, [0x1, 0x7, 0x4a51, 0x7], [0x0, 0x0, 0x5, 0x2], 0x0, [0x7]}, 0x8, 0x3ff}, [@INET_DIAG_REQ_BYTECODE={0x5c, 0x1, "3ec456b9618a9402d826aa813d782570e2fb7f2dcda73feb2835431103f3dc1d187ce1314c2a3696dbb6739b6baaf770f10d0f78838bd9f2760e2fe8ec6a064100a58219d7f9013ed77cc6d7f2113b04bf4e63c68a49cb9f"}, @INET_DIAG_REQ_BYTECODE={0xc7, 0x1, "02fa4351526296c5491558a2557b0bf6733aea631d7a0a6bf4cf6bb77ef20fbabaef1d627a665380330125430eb273e5eeff2784babf516ee958ee290950ff7b619a9148c4c5fddc9664535cd7adea07e29e276a0ec8ce6cb7f83b16f3eb97c4f4f98192b37e8bec510bde5828ef759d9d5d6bfaccefc3803a40861b2b098987a819727103f4cfe677dec221a468daa24aa58809706dd233005b203faf660432143f6cb24848c9a6f7b94ecf8ca464c6fc2a81eeaaea608b07726922aa4c3cd9b45ae7"}, @INET_DIAG_REQ_BYTECODE={0x1e, 0x1, "800f05ec8eaeb6ef8e864b9be4c00cbd49e084516a530127ab02"}, @INET_DIAG_REQ_BYTECODE={0xd8, 0x1, "2e7db8605f1671ce00f9ed55d4043abc407a358c9dda168e0a5fb88b9bb864e42db85cd54828bd5785ace6d5af46aa6374530ad4f21a9954f5e4fba2d3d0d73fdf9c0040de8551bb5b5b923481ff7f18d92306165a1dd593efbbc3025e094f87ad9fb1edde095b127191b85ed777898d56e95e414dff833346ae12fa31db9efb1b370aa6635371a30c6992fe3092bc974aea549ed7b0fdeb669e78a31155c36e62e80afd9093100a6edede8e2ffe5d1ec1590940c76c81f60c98c87d0abfeaced63d0d37541058a404a99989a7a57f4281cd8286"}, @INET_DIAG_REQ_BYTECODE={0xfb, 0x1, "f6a6c97b64d85ad29ba602f478e3ed57e485d4e1211493a3b30da805265850356bdabd2f57a66514d510bc48ac135e55d541d37464dc90cf6f5000153bca0dc54fa6b75e993d946624b7c91600877005dfe55942f7500c63fc6ed83c05da70028d1722d97d413f2ac6a53f9d110a4503f473265fa9cab6edcce82c488c92bc00ddac0b7a01beef55eade096b59da523d1f8a8ca8d5efcbcda9c0d3a20c5655c3e41bf49dc19ee5f93fda4c4372be1daacc8c059cd06d67d3b5fdb51d0d61c16fe4f951b1c5bebd8ef90712bc9efd12eb5937f57f3e1b5d8cf25afd0bf5aa9bb6a3a48b0b95c1721e31b72bcf4e1f1e77a7904b7676e30a"}, @INET_DIAG_REQ_BYTECODE={0x9, 0x1, "5126965c17"}]}, 0x370}, 0x1, 0x0, 0x0, 0x20004080}, 0x1) r0 = fsmount(0xffffffffffffffff, 0x1, 0x8) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000480)={@remote, @broadcast, 0x0}, &(0x7f00000004c0)=0xc) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000001000)={{{@in, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@broadcast}}, &(0x7f0000001100)=0xe8) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r0, &(0x7f0000001240)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001200)={&(0x7f0000001140)={0xb8, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x24040000}, 0x20008000) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001280), 0x70000, 0x0) getsockname$packet(r0, &(0x7f00000012c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000001300)=0x14) ioctl$TUNSETIFINDEX(r3, 0x400454da, &(0x7f0000001340)=r4) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000001380)={r2, 0x1, 0x6, @random="f8d4387aa553"}, 0x10) r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000041c0), 0x400, 0x0) fstat(r5, &(0x7f0000004200)) getsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000004280)={@rand_addr, @dev, 0x0}, &(0x7f00000042c0)=0xc) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000004380)={'ip6_vti0\x00', &(0x7f0000004300)={'ip6tnl0\x00', r1, 0x4, 0x3, 0x1, 0xa7400000, 0x6, @local, @local, 0x7800, 0x1, 0x4, 0x8000}}) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000004400)={'team0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000044c0)={'batadv0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f0000004640)={'ip6_vti0\x00', &(0x7f00000045c0)={'syztnl0\x00', r4, 0x2f, 0x80, 0x2e, 0x9, 0x74, @private0, @loopback, 0x7800, 0x10, 0x6, 0x3}}) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f0000004780)={&(0x7f00000043c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000004740)={&(0x7f0000004680)={0x84, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r7}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010102}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r8}]}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r9}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x84}, 0x1, 0x0, 0x0, 0x20000001}, 0x95) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000004880)={'syztnl1\x00', &(0x7f0000004800)={'syztnl0\x00', r4, 0x2f, 0x5, 0xd8, 0x1ff, 0x0, @private0, @mcast1, 0x700, 0x20, 0x2, 0xe6d9}}) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000004a40)={&(0x7f00000047c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000004a00)={&(0x7f00000048c0)={0x140, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}]}, @HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}]}]}, 0x140}}, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000004c40)={'syztnl1\x00', &(0x7f0000004bc0)={'ip6tnl0\x00', 0x0, 0x29, 0x54, 0x81, 0x7, 0x14, @dev={0xfe, 0x80, '\x00', 0x3a}, @mcast2, 0x8000, 0x20, 0x9}}) 07:26:02 executing program 4: ioctl$EXT4_IOC_GETSTATE(0xffffffffffffffff, 0x40046629, &(0x7f0000000000)) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xb8, r0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x7c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xa873}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}]}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x10000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}]}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x200c050}, 0x20000000) r1 = accept4(0xffffffffffffffff, &(0x7f0000005980)=@tipc, &(0x7f0000005a00)=0x80, 0x0) syz_genetlink_get_family_id$devlink(&(0x7f0000000200), r1) r2 = memfd_secret(0x80000) syz_genetlink_get_family_id$batadv(&(0x7f0000005a40), r2) setsockopt$inet6_IPV6_ADDRFORM(r1, 0x29, 0x1, &(0x7f0000005a80), 0x4) ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000005ac0)) r3 = syz_open_dev$vcsn(&(0x7f0000005b40), 0x8, 0x40) io_submit(0x0, 0x1, &(0x7f0000005bc0)=[&(0x7f0000005b80)={0x0, 0x0, 0x0, 0x7, 0x9, r2, &(0x7f0000005b00)="0397453948f2da0585f83eca17897f3366b5135151ce", 0x16, 0x9, 0x0, 0x3, r3}]) sendmsg$IPSET_CMD_TYPE(r2, &(0x7f0000005cc0)={&(0x7f0000005c00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000005c80)={&(0x7f0000005c40)={0x3c, 0xd, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x4}, [@IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040084}, 0x24008040) ioctl$PTP_SYS_OFFSET(r2, 0x43403d05, &(0x7f0000005d00)={0x16}) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r3, 0xf503, 0x0) r4 = creat(&(0x7f0000006040)='./file0\x00', 0x5a) sendmsg$NFNL_MSG_ACCT_NEW(r4, &(0x7f0000006140)={&(0x7f0000006080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000006100)={&(0x7f00000060c0)={0x38, 0x0, 0x7, 0x201, 0x0, 0x0, {0x5, 0x0, 0x1}, [@NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x7}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0xae}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000020}, 0x10) r5 = openat$urandom(0xffffffffffffff9c, &(0x7f0000006180), 0x8002, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r5, 0xc0046686, &(0x7f00000061c0)={0x1, 0x6d, "664ae0ab12b69bbdc70b1f6dec8921d51775b977d926a3f3a9d3f68bccf83dfdab6b0271fca8361ddd55851554feed9a47db2865db507526f09dd852a0befb0a9780d3e1610c348a8bd7a6ccdc572e9a690cf366a2cf89cbd9894bccab07479c0d085149a0d4a85a5481dff11f"}) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r2, &(0x7f0000006300)={&(0x7f0000006240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000062c0)={&(0x7f0000006280)={0x3c, 0x0, 0x4, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x8}, @NL80211_ATTR_BANDS={0x8, 0xef, 0xc}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x2}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x2}, @NL80211_ATTR_BANDS={0x8, 0xef, 0xe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20008012}, 0x0) ioctl$AUTOFS_IOC_CATATONIC(r2, 0x9362, 0x0) 07:26:02 executing program 5: prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x2, 0x5, &(0x7f0000000000)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x7ff, &(0x7f0000000040)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x0, &(0x7f0000000080)=0x1f) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x401, &(0x7f00000000c0)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0xffff, &(0x7f0000000100)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x8, 0x40, &(0x7f0000000140)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x58f, 0x9, &(0x7f0000000180)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x7f, 0x1, &(0x7f00000001c0)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x6, &(0x7f0000000200)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x800, 0xfff, &(0x7f0000000240)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x81, 0x1, &(0x7f0000000280)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x10001, 0x1, &(0x7f00000002c0)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x9, 0x9, &(0x7f0000000300)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x2, 0x7, &(0x7f0000000340)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xbe, 0x10001, &(0x7f0000000380)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x101, 0x5, &(0x7f00000003c0)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x1, &(0x7f0000000400)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x400, &(0x7f0000000440)) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xcfb3, 0x5, &(0x7f0000000480)=0x1) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x7fffffff, 0x80000001, &(0x7f00000004c0)) 07:26:02 executing program 3: fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000000)='-}+-!]$./\\]**\x00', &(0x7f0000000040)='./file0\x00', 0xffffffffffffff9c) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000300)=0x0) r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x180000000, 0x3, &(0x7f0000000280)=[{&(0x7f0000000100)="ccc9763f760041492cfde849b7a42678b26f70f019d4cc8f8d0a819157864c2c4d0b7f464de6f14477815d390a1b8efc6b3905677044bcbd9605a9e9bab10835cd43ff55295d5371aa1c6bab616bd4d4558f5f0a2dad63152d8b6fe8df98aa25a26945d6cc97888526fd2f9488b721f02b55a7cc9b2108d621151ce9d8c02e97c1ab2365da0974d702dd62d6b5f668de180b709e721ebfe79de4a49befd1838191ec0d7b", 0xa4, 0xffffffffffff1346}, {&(0x7f00000001c0)="0ce159054e7f6f9dbcb9e3598c942ba1cfdc93eb8fc0a65f2b5098814a", 0x1d, 0x63}, {&(0x7f0000000200)="7dd5640784a3e6dc6d7b01cc5c18bfecc43685a7fa828564fec78899e379ae016c8e9287150aaf02df2d6692c1f792e7eff02f4b5c78bfe97df6c1db17a5b289f25997d853a15804b53b9a6789acdf2670cea3313707437a15abb27174a86c7a8198d373d961f8193c34dfd39bc6a0ad699eff810e8cb4557c2b59ba11798042", 0x80, 0x6}], 0x1000008, &(0x7f0000000340)={[{@shortname_winnt}, {@numtail}, {@utf8no}, {@utf8no}, {@nonumtail}, {@shortname_winnt}, {@numtail}, {@nonumtail}], [{@smackfsfloor={'smackfsfloor', 0x3d, '-}+-!]$./\\]**\x00'}}, {@obj_user={'obj_user', 0x3d, '!('}}, {@permit_directio}, {@fowner_gt={'fowner>', r0}}, {@smackfsfloor={'smackfsfloor', 0x3d, '\xc2}^'}}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@euid_eq={'euid', 0x3d, 0xee00}}]}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, r1, @in_args={0x1}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000480)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) lsetxattr$trusted_overlay_redirect(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), &(0x7f0000000540)='./file1\x00', 0x8, 0x2) sendmmsg$sock(r3, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000580)="54670d6394bd2b203adc640a7909763cff2ab9117727d2358fd67a60ce2e5479787aeb8b4676d2028f70d70bcb3ffd9267ac2c94e37bf0c273abeeb001c9726a39c582d59b940f22390fa7e6c1136c2cf67757096439f13b0e8d2785da12648f8a3b30c65a5e97b0fa27fa48f5d0fa887ac28c0f831d637bf47f49c9409efe3fa07f07a9c441dc0f7df4144a22951898e3e7888e082695ed329f9b428635ee2178b42f784f1e7ec97d3a7dd710dfdbfb0670e46c7a7c3438e9ec20d6014a47e4d1404eee5224fee77bc0bfa2a838193a3ab124678d304fb5109123631714db6b042f05466b3d463e058ddf1f107c0bd44d01ab121dd4ab8afc", 0xf9}], 0x1, &(0x7f00000006c0)=[@txtime={{0x18, 0x1, 0x3d, 0xa00}}, @mark={{0x14, 0x1, 0x24, 0x2}}, @timestamping={{0x14, 0x1, 0x25, 0x4}}, @mark={{0x14, 0x1, 0x24, 0x8001}}, @mark={{0x14}}], 0x78}}, {{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000740)="c4bb6fc876ca5a815ec9ba78493d62", 0xf}], 0x1}}, {{&(0x7f00000007c0)=@vsock={0x28, 0x0, 0xffffffff, @host}, 0x80, &(0x7f0000000a40)=[{&(0x7f0000000840)="d05538ae12e581909c671fd79fe027f07d5de23157fdfc077c9616948738d72f80a48d1b2d6206e9917a43a03deebb8e179c0af676792b6011b6d6569a771ebb240d75ac116d1c23e7d7bebc80a9bae430ca4add65114eabdafb491f89939fc6bb973e8513647f5c01e2888e066fd47b1622fc8fcfe1532efa5daa321ef966d79222595c3de9f619873ecc8d0900bd4ee32717fa5bedf90f380a1ca6ce78d8d573f3350f7e5139edc36f486054e8de53eac947d3dde67979db7a0978860f5abea6e1262847105fbc9cf352c3d67d5ea9bbc3a4a8cd49513ef14785dcf46c198296b67f", 0xe3}, {&(0x7f0000000940)="69f8d5ad44228984f96780bcb536f4e1c5e9d3319fe1a6271fd1ef36a7a6b8495e4cebafe57cfdc75e7310f2c0034f514180ba060276e5613cf6e720573698656090c5a8b65171eb425039f6e18d45e7737d1163afd277b84f8abc6c158371610472d6e4b865c67182e9fb219fdd593d01ff9fd89931676f5abbada23483a3e7e6e93fea1d822f307960da27c334fd6a6ee495f21d961c2ef4af8d7ab186ca00a7ad8c910e", 0xa5}, {&(0x7f0000000a00)="415ba78caad31ecaf87a36eab9c00c53c9feece166b87a6396", 0x19}], 0x3}}, {{&(0x7f0000000a80)=@vsock={0x28, 0x0, 0xffffffff, @local}, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000b00)="07df4113585d7afff02b6489d9ebbf870c5ec998594386b204e66a9d82dd2c992b7cd938d02b3cb0f65360f403a776e81c38a463f02f019cb40ec2bbaff0b94c2e0cf729246355b3ace7117b5c28b966f9273127196fa56e8546304dfb0af4a8635c7b20973ae269bb456bf4dc86498dd82e822380606f5175b485d3598cbb108f80e07b77fe03896b5d2f2349bb9cfc0e5e3ed893c2798df0018cedd64f4fa24c78e051ce0219c12a55533f33cfb2c3dace9d67beaf38128e5fd7198fd48c809fef637f567ea4ba0660f9056743f1970353005ed8935b85d7bc0c4b987127fff660b96362e7a81c78d465681d39bc403beddf51f4a63a", 0xf7}, {&(0x7f0000000c00)="fac836bfccc9c80e71b89935a32d3aa97f91a9119f7d7663e0239be763ead36b41868568baa1db3b5827438c627f18db788cf6de1b1690", 0x37}, {&(0x7f0000000c40)="045d343c6e4537870bfe0363e22b70ae7f96fd79748982", 0x17}, {&(0x7f0000000c80)="6f0a851bcf677185b73e9100d1dac32f059fe07303ab3191f6b4c843ec1273235104071ff86e735b105fc865012f99845393de1720c9a95c54dc6bf84b3b52f496617a88568dbf99888782d3ddebd87fb07dc1f7316f777468a0adc1f1c3947d079900986390374bffe01f9e664600361e04055b89a4693495994f8446f870c56df2e12fb40c35a8f090fd579af0e6f488d80a8065630eaa0b13d4617878611ce3890468369d1cc8ae1a9f61cf8708fb92fa413a8db7eb260ea9c483e49dfd", 0xbf}, {&(0x7f0000000d40)="b0b14e5bd61b64d3a79b84a754dd0e09eb5bf8d241320391df82f9bc370c33bb4988c7e935e7e67bc174820537cafde50e0a7beed1c56a87066d3219edc47867f99f7b86c81932e03d6ff50f4208b676e9c72e28c4ec84a869f689abc583b712fda90c5cefb744fa9a33e16fefa0bd7d81e158c99aaf0b07b3285905d60f6c70cb827a10f8aaf908ea2db4fa2c0c41c46d71b17bf0154d346e944e3a1492e6aaa5f31f4adf1ce2ede6dd0eecce89256bf57cb9", 0xb3}, {&(0x7f0000000e00)="b5bb268b9342cc49c3f732877f0a04d9850a4ed5589f842cd5", 0x19}], 0x6, &(0x7f0000000ec0)=[@mark={{0x14, 0x1, 0x24, 0x3}}, @txtime={{0x18}}, @mark={{0x14, 0x1, 0x24, 0xdb5}}, @timestamping={{0x14, 0x1, 0x25, 0xb20}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @mark={{0x14, 0x1, 0x24, 0xe691}}], 0x90}}, {{&(0x7f0000000f80)=@tipc=@name={0x1e, 0x2, 0x0, {{0x1, 0x4}}}, 0x80, &(0x7f00000014c0)=[{&(0x7f0000001000)="4674125debbad0669cb7da4eebce922e5f0c291b03ec2ad1de035e5027dda03ff40a38d3ee5c70950c2f32bf003668d8b98d41756b5815bb6b466d8abc009e21e1862dd9caebca0f27d65814aa7c0f138025924d56d04fe952375cd613c0d84d0ab64dc285f95d27cfeb7a4ceaaf6504da724e9b3c31f9a7f6246e926de3a4b99c17c6e03dd82300a853de34406e126a1932c71da89e50dcd5d1ab31d3ef82101f8e2d8beeea2c56da787d2027ba2dc620dda20f5251286659b5f1039911ab941b8e4f85c94f6ac693bfb42fcb1854635c01b38e68b8d06c8e27e4bc0624e3cccf4abfc86574f1519f16", 0xea}, {&(0x7f0000001100)="39a13975bec4c952830b80fcbd89214f930e38de7c1b30581f664dca0bd3c3ce9188e0731e7f92c24fc87b71af8b3cc76430ae11e8109152a108f37ff8a3bf20aee59bd1ee4c7360a64797a3b5f3b5a39d33223a6d3ef2c4c72e311f3fed090e63557c30eb7188d29c2cfc12b9b5db0e66b31b473b6e1b143f0636cfcef8d15918f7a24befc5583d74ca239157f2e77e039d2a7d416cee17c2f913d9d761dd877c26ad7012018e0e659c0f8551bcd4beeb3495212b307029058d0820d06bde1342de22cd9d0f0ee4b785db62e12ba57a2d913c3390a8", 0xd6}, {&(0x7f0000001200)="4ad36061a01eb7933db7d5dffbc136453f8013c72e487e062ce64906a6a6aeb397ec4f7b0ec2cbf3f26cf23b403b81603e0a065a3d350c1805eafc6cf14b485c88e506070b5e7aef183a0edbf0dcdb842a9f7e26f9003eb13d0cd10a55c9ebbb7550", 0x62}, {&(0x7f0000001280)="eb8b162ce16d40e9f44c58413d7e596895602304a05a3fb72c15ac0d6bd040bf8e52160fbe5c3b11512369a1a9078b738eaafa4d9cf142495d43a202c9b3ed07a1aaa0941227705771073f11e43a2d1e1faef957ebad84c2b3b5ae09d752c416f21de7db57b8beb7d7472d7d645946621ede269e08339deccb7ad975c4e5de666751cdffb4bab478864178eee03f7da67e9feb90e8d91b5f950741de54c7dc2e1655df316baf822ce456830941f8cef40e025c4ddacf9cc038995946e8d3f1fc6fb6907045", 0xc5}, {&(0x7f0000001380)="4f44ff8f6dbefbade1b14d0312fa1fc62e26aeb71983847a65f039de25c89f7c439c71c3", 0x24}, {&(0x7f00000013c0)="0aa46f258333c95e60b92b464abe5e3256c51892159a0d8499be81bb2803779729cb106ee3fc2b2c094e683da9e05428d13ece025c795e1e0809b0202d09285a620e22604fed3a786c697189b66cb5db4e422033dac0bb71d50cad0c1e74793e29cf05da4fa6fb3802a9120f3290dddded3ece949429dafaf82259fd45ad8d4579b990510915c4f6b07c9f755e9da3474f718134a3cef3a525bf68a6d5877d9bba74ce05e946f029cf8dc647afbeae384eff97968edbd79e749d09d26570acb9c4ac19f20aaead1c7144a64f96e2195aac7c8b2809bdecd02acf9e3568cb3a90c6bb5aea26927148814e54d207af3d29dac0249070d1af", 0xf7}], 0x6, &(0x7f0000001540)=[@txtime={{0x18, 0x1, 0x3d, 0x6b9}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}], 0x48}}], 0x5, 0x20004000) perf_event_open(&(0x7f0000001740)={0x1, 0x80, 0x1, 0x9, 0x1f, 0x5e, 0x0, 0x7, 0x8, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000001700)}, 0x44, 0x0, 0x437, 0x3, 0x6, 0x6, 0x6, 0x0, 0x2, 0x0, 0x5}, 0x0, 0xf, r2, 0x8) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0) r4 = geteuid() r5 = syz_mount_image$vfat(&(0x7f00000017c0), &(0x7f0000001800)='./file0\x00', 0x1, 0x2, &(0x7f0000001900)=[{&(0x7f0000001840)="8f385a8768e874f41f09f94d3164cfbc7bf026d468090a3a23c92ee7e8f032958cab34a2d9bc854250be4c930c719ad62dfc70916f4f5af72d208e4adfbd3fb95d9cacd541765af62d46908c06e549b0757fdfe9c69e54413f64091349b9f1aee6ff6809c8d90b26918d175d3658bcac2890c036fdae7c3d329e0a0eb81de193", 0x80, 0xffffffffffff1c01}, {&(0x7f00000018c0)="e28098034b7d9b77e96414c51d72a08f0a1677950a770160807ce440103b9050e862aba9", 0x24}], 0x2, &(0x7f0000001940)={[{@utf8}], [{@euid_lt={'euid<', r4}}, {@appraise}, {@obj_user={'obj_user', 0x3d, 'fscontext'}}]}) ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000001980)={{0x1, 0x1, 0x18, r5, {0x2}}, './file0\x00'}) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001a00), r2) r8 = getpgid(0x0) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r6, &(0x7f0000001ac0)={&(0x7f00000019c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001a80)={&(0x7f0000001a40)={0x28, r7, 0x400, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void, @val={0xc, 0x99, {0x9, 0x76}}}}, [@NL80211_ATTR_PID={0x8, 0x52, r8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040001) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000001b40)={'wpan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000001b80)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_GET_WPAN_PHY(0xffffffffffffffff, &(0x7f0000001c40)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x7e2837066a3170a6}, 0xc, &(0x7f0000001c00)={&(0x7f0000001bc0)={0x3c, 0x0, 0x8, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000080}, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000001c80)='./file1\x00', &(0x7f0000001cc0), &(0x7f0000001d00)='./file1\x00', 0x8, 0x1) mount$9p_virtio(&(0x7f0000001d40), &(0x7f0000001d80)='./file0\x00', &(0x7f0000001dc0), 0x40410, &(0x7f0000001e00)={'trans=virtio,', {[{@uname={'uname', 0x3d, '&'}}, {@fscache}, {@cache_loose}, {@dfltgid={'dfltgid', 0x3d, 0xee00}}, {@cache_loose}], [{@smackfshat={'smackfshat', 0x3d, 'vfat\x00'}}, {@uid_eq={'uid', 0x3d, r4}}]}}) [ 65.906763] audit: type=1400 audit(1664609162.630:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 07:26:02 executing program 7: modify_ldt$read_default(0x2, &(0x7f0000000000)=""/4096, 0x1000) modify_ldt$read_default(0x2, &(0x7f0000001000)=""/76, 0x4c) modify_ldt$read_default(0x2, &(0x7f0000001080)=""/52, 0x34) modify_ldt$read_default(0x2, &(0x7f00000010c0)=""/136, 0x88) modify_ldt$read_default(0x2, &(0x7f0000001180)=""/194, 0xc2) modify_ldt$read_default(0x2, &(0x7f0000001280)=""/84, 0x54) modify_ldt$read_default(0x2, &(0x7f0000001300)=""/182, 0xb6) modify_ldt$read_default(0x2, &(0x7f00000013c0)=""/11, 0xb) modify_ldt$read_default(0x2, &(0x7f0000001400)=""/150, 0x96) modify_ldt$read_default(0x2, &(0x7f00000014c0)=""/184, 0xb8) modify_ldt$read_default(0x2, &(0x7f0000001580)=""/233, 0xe9) modify_ldt$read_default(0x2, &(0x7f0000001680)=""/202, 0xca) modify_ldt$read_default(0x2, &(0x7f0000001780)=""/56, 0x38) modify_ldt$read_default(0x2, &(0x7f00000017c0)=""/243, 0xf3) modify_ldt$read_default(0x2, &(0x7f00000018c0)=""/15, 0xf) modify_ldt$read_default(0x2, &(0x7f0000001900)=""/63, 0x3f) modify_ldt$read_default(0x2, &(0x7f0000001940)=""/4096, 0x1000) modify_ldt$read_default(0x2, &(0x7f0000002940)=""/4096, 0x1000) modify_ldt$read_default(0x2, &(0x7f0000003940)=""/172, 0xac) modify_ldt$read_default(0x2, &(0x7f0000003a00)=""/4096, 0x1000) 07:26:02 executing program 6: move_mount(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f0000000080)=@abs, 0x6e, &(0x7f0000001340)=[{&(0x7f0000000100)=""/15, 0xf}, {&(0x7f0000000140)=""/200, 0xc8}, {&(0x7f0000000240)=""/8, 0x8}, {&(0x7f0000000280)=""/148, 0x94}, {&(0x7f0000000340)=""/4096, 0x1000}], 0x5, &(0x7f00000013c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0xe0}, 0x10040) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000001500)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) perf_event_open(&(0x7f0000001740)={0x3, 0x80, 0xd5, 0x2, 0xb3, 0x9, 0x0, 0x9f0, 0xcb105, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xad, 0x0, @perf_config_ext={0x3, 0xfff}, 0x1, 0x24c, 0x0, 0x0, 0x6, 0x5, 0x7, 0x0, 0x6, 0x0, 0x3}, r11, 0x5, r8, 0x2) pipe(&(0x7f00000017c0)) getxattr(&(0x7f0000001800)='./file0\x00', &(0x7f0000001840)=@known='system.sockprotoname\x00', &(0x7f0000001880)=""/14, 0xe) statx(r6, &(0x7f00000018c0)='./file0\x00', 0x400, 0x7ff, &(0x7f0000001900)) r12 = openat$incfs(r1, &(0x7f0000001a80)='.log\x00', 0x101000, 0x83) perf_event_open(&(0x7f0000001a00)={0x5, 0x80, 0x4, 0x5, 0xc1, 0x7, 0x0, 0xf4, 0x10, 0x4, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x1, @perf_config_ext={0xeb7, 0x8001}, 0x21, 0x1f, 0x100, 0x7, 0x9, 0x4, 0x8001, 0x0, 0x9, 0x0, 0x9}, 0xffffffffffffffff, 0x0, r12, 0x8) perf_event_open(&(0x7f0000001ac0)={0x5, 0x80, 0x7f, 0xb6, 0xc8, 0x8, 0x0, 0x1000, 0x30, 0xa, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0xffff, 0x2, @perf_config_ext={0x3ff, 0x401}, 0x10446, 0xff, 0x20, 0x1, 0x6, 0x5, 0x4df, 0x0, 0xf5, 0x0, 0x8}, r11, 0x2, r5, 0xb) lsetxattr$trusted_overlay_nlink(&(0x7f0000001b40)='./file0\x00', &(0x7f0000001b80), &(0x7f0000001bc0)={'L+', 0x173407d2}, 0x16, 0x3) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000001c40)={{0x1, 0x1, 0x18, r7, {0x5}}, './file0\x00'}) mount_setattr(r3, &(0x7f0000001c00)='./file0\x00', 0x1000, &(0x7f0000001c80)={0xa, 0x2, 0x40000, {r13}}, 0x20) ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r10, 0xc018937e, &(0x7f0000001cc0)={{0x1, 0x1, 0x18, r9, @in_args={0x2}}, './file0\x00'}) bind$unix(0xffffffffffffffff, &(0x7f0000001d00)=@file={0x1, './file0\x00'}, 0x6e) perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x7f, 0xc0, 0x2, 0x7f, 0x0, 0xfffffffffffff800, 0x20240, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xc00000, 0x2, @perf_config_ext={0xb7b, 0x8}, 0x40000, 0x4, 0x80, 0x8, 0xcaf, 0x7, 0x800, 0x0, 0x9, 0x0, 0x4}, r11, 0xd, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f0000001e00)={0x5, 0x80, 0x1, 0x9, 0x9, 0x7f, 0x0, 0x0, 0xd08, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x1, @perf_config_ext={0x5, 0x5}, 0x8, 0xc84, 0x1, 0x0, 0x5, 0x0, 0x2, 0x0, 0x101, 0x0, 0x7f}, r11, 0xe, 0xffffffffffffffff, 0x1) pipe(&(0x7f0000001e80)={0xffffffffffffffff}) fallocate(r14, 0x0, 0x7fff, 0x8) [ 67.228990] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 67.232133] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 67.233642] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 67.236773] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 67.238949] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 67.240286] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 67.245972] Bluetooth: hci0: HCI_REQ-0x0c1a [ 67.248227] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 67.250488] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 67.253197] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.257249] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.261202] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 67.279392] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.289771] Bluetooth: hci1: HCI_REQ-0x0c1a [ 67.364970] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 67.367159] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 67.370783] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 67.372342] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 67.374325] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 67.376392] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 67.381587] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 67.382756] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 67.386925] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 67.388219] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 67.392599] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 67.393804] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 67.398560] Bluetooth: hci6: HCI_REQ-0x0c1a [ 67.412321] Bluetooth: hci7: HCI_REQ-0x0c1a [ 67.424385] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 67.436512] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 67.440539] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 67.461928] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 67.469985] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 67.474258] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 67.489525] Bluetooth: hci5: HCI_REQ-0x0c1a [ 69.301537] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 69.302293] Bluetooth: hci0: command 0x0409 tx timeout [ 69.365504] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 69.365563] Bluetooth: hci1: command 0x0409 tx timeout [ 69.369544] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 69.429649] Bluetooth: hci7: command 0x0409 tx timeout [ 69.430271] Bluetooth: hci6: command 0x0409 tx timeout [ 69.558495] Bluetooth: hci5: command 0x0409 tx timeout [ 71.349622] Bluetooth: hci0: command 0x041b tx timeout [ 71.413620] Bluetooth: hci1: command 0x041b tx timeout [ 71.477592] Bluetooth: hci6: command 0x041b tx timeout [ 71.478347] Bluetooth: hci7: command 0x041b tx timeout [ 71.605482] Bluetooth: hci5: command 0x041b tx timeout [ 72.401855] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 72.408596] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 72.410229] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 72.413325] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 72.414349] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 72.415131] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 72.418942] Bluetooth: hci3: HCI_REQ-0x0c1a [ 72.492451] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 72.504299] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 72.505567] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 72.507921] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 72.508965] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 72.510183] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 72.513693] Bluetooth: hci4: HCI_REQ-0x0c1a [ 73.397490] Bluetooth: hci0: command 0x040f tx timeout [ 73.462491] Bluetooth: hci1: command 0x040f tx timeout [ 73.526491] Bluetooth: hci7: command 0x040f tx timeout [ 73.526508] Bluetooth: hci6: command 0x040f tx timeout [ 73.654583] Bluetooth: hci5: command 0x040f tx timeout [ 74.102528] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 74.486533] Bluetooth: hci3: command 0x0409 tx timeout [ 74.549540] Bluetooth: hci4: command 0x0409 tx timeout [ 75.445492] Bluetooth: hci0: command 0x0419 tx timeout [ 75.509528] Bluetooth: hci1: command 0x0419 tx timeout [ 75.573511] Bluetooth: hci7: command 0x0419 tx timeout [ 75.574534] Bluetooth: hci6: command 0x0419 tx timeout [ 75.702528] Bluetooth: hci5: command 0x0419 tx timeout [ 76.534473] Bluetooth: hci3: command 0x041b tx timeout [ 76.597459] Bluetooth: hci4: command 0x041b tx timeout [ 76.696574] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.697811] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.699657] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.703388] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.705287] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 76.706324] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.709711] Bluetooth: hci2: HCI_REQ-0x0c1a [ 78.581595] Bluetooth: hci3: command 0x040f tx timeout [ 78.646520] Bluetooth: hci4: command 0x040f tx timeout [ 78.773645] Bluetooth: hci2: command 0x0409 tx timeout [ 80.630511] Bluetooth: hci3: command 0x0419 tx timeout [ 80.694467] Bluetooth: hci4: command 0x0419 tx timeout [ 80.823079] Bluetooth: hci2: command 0x041b tx timeout [ 82.870102] Bluetooth: hci2: command 0x040f tx timeout [ 84.917799] Bluetooth: hci2: command 0x0419 tx timeout 07:26:57 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x16, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000e2f4655fe2f4655f0100ffff53ef010001000000e1f4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35383633343136333700"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000bdcefad9b4924007bb7e3623d7c96baa010000000c00000000000000e1f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000003900000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000030000000400000030000f000300040000000000000000000f008ec4", 0x20, 0x1000}, {&(0x7f0000010500)="ffff000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000e1f4655fe1f4655fe1f4655f00"/8224, 0x2020, 0x2000}, {&(0x7f0000012600)="ed41000000100000e1f4655fe2f4655fe2f4655f00000000000004000800000000000000050000000800"/64, 0x40, 0x4200}, {&(0x7f0000012700)="20000000d4c49a2ed4c49a2e00000000e1f4655f00"/32, 0x20, 0x4280}, {&(0x7f0000012800)="c041000000300000e1f4655fe1f4655fe1f4655f0000000000000200180000000000000000000000090000000a0000000b00"/64, 0x40, 0x5400}, {&(0x7f0000012900)="20000000000000000000000000000000e1f4655f000000000000000000000000000002ea00"/64, 0x40, 0x5480}, {&(0x7f0000012a00)="ed4100003c000000e2f4655fe2f4655fe2f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c653100000000000000000000000000000000000000000000000000000048c5e5fc00000000000000000000000000000000000000000000000020000000d4c49a2ed4c49a2ed4c49a2ee2f4655fd4c49a2e0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x5600}, {&(0x7f0000012b00)="ed8100001a040000e2f4655fe2f4655fe2f4655f00000000000001000800000000000000010000000c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000b6a4ff5400000000000000000000000000000000000000000000000020000000d4c49a2ed4c49a2ed4c49a2ee2f4655fd4c49a2e0000000000000000", 0xa0, 0x5800}, {&(0x7f0000012c00)="ffa1000026000000e2f4655fe2f4655fe2f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3538363334313633372f66696c65302f66696c6530000000000000000000000000000000000000000000005960499000000000000000000000000000000000000000000000000020000000d4c49a2ed4c49a2ed4c49a2ee2f4655fd4c49a2e0000000000000000", 0xa0, 0x5a00}, {&(0x7f0000012d00)="ed8100000a000000e2f4655fe2f4655fe2f4655f000000000000010000000000000000100100000073797a6b616c6c6572730000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fd265a5700000000000000000000000000000000000000000000000020000000d4c49a2ed4c49a2ed4c49a2ee2f4655fd4c49a2e0000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x5c00}, {&(0x7f0000012e00)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000e2f4655fe2f4655fe2f4655f00000000000002001800000000000000010000000d0000000e0000000f000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e970470900000000000000000000000000000000000000000000000020000000d4c49a2ed4c49a2ed4c49a2ee2f4655fd4c49a2e0000000000000000", 0xc0, 0x5de0}, {&(0x7f0000012f00)="ed81000064000000e2f4655fe2f4655fe2f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c979cb91e00000000000000000000000000000000000000000000000020000000d4c49a2ed4c49a2ed4c49a2ee2f4655fd4c49a2e0000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x6000}, {&(0x7f0000013000)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x61c0}, {&(0x7f0000013100)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000013200)="0b0000000c0001022e000000020000000c0002022e2e000000000000e80f0000", 0x20, 0x9000}, {&(0x7f0000013300)="00000000001000"/32, 0x20, 0xa000}, {&(0x7f0000013400)="00000000001000"/32, 0x20, 0xaffc}, {&(0x7f0000013500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0xc000}], 0x0, &(0x7f0000013a00)) [ 120.574163] loop4: detected capacity change from 0 to 512 [ 120.618943] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. 07:26:57 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) bind$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}], 0x2, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0) [ 120.764640] EXT4-fs (loop4): unmounting filesystem. 07:26:57 executing program 1: r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) bind$802154_raw(r0, 0x0, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x4) bind$802154_raw(r1, &(0x7f0000000040)={0x24, @none={0x0, 0xffff}}, 0x14) 07:26:57 executing program 4: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) bind$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}], 0x2, 0x0) r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuacct.usage_percpu_user\x00', 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0) 07:26:57 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @broadcast}}}], 0x20}, 0x0) recvmmsg(r0, &(0x7f0000001c00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x40000042, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000040)=0x30) 07:26:57 executing program 4: setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000040)={0x87, @dev={0xac, 0x14, 0x14, 0x26}, 0x4e23, 0x1, 'dh\x00', 0x10, 0x0, 0x25}, 0x2c) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fcntl$getown(r0, 0x9) perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x6, 0x20, 0x6, 0x1, 0x0, 0x7, 0x400, 0xc, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, @perf_config_ext={0x47, 0x5f392d51}, 0x10a00, 0x1, 0xfff, 0x1, 0x1cb2, 0x4, 0x7ff, 0x0, 0x1, 0x0, 0x7}, r1, 0x3, 0xffffffffffffffff, 0x9) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config', 0x0, 0x0) close(r2) readahead(r2, 0x100000001, 0x81) [ 121.115315] audit: type=1400 audit(1664609217.841:7): avc: denied { open } for pid=3723 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.117011] audit: type=1400 audit(1664609217.841:8): avc: denied { kernel } for pid=3723 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.130976] ------------[ cut here ]------------ [ 121.131000] [ 121.131004] ====================================================== [ 121.131008] WARNING: possible circular locking dependency detected [ 121.131012] 6.0.0-rc7-next-20220930 #1 Not tainted [ 121.131019] ------------------------------------------------------ [ 121.131022] syz-executor.4/3724 is trying to acquire lock: [ 121.131028] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 121.131077] [ 121.131077] but task is already holding lock: [ 121.131080] ffff88800f58fc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 121.131107] [ 121.131107] which lock already depends on the new lock. [ 121.131107] [ 121.131110] [ 121.131110] the existing dependency chain (in reverse order) is: [ 121.131113] [ 121.131113] -> #3 (&ctx->lock){....}-{2:2}: [ 121.131126] _raw_spin_lock+0x2a/0x40 [ 121.131139] __perf_event_task_sched_out+0x53b/0x18d0 [ 121.131151] __schedule+0xedd/0x2470 [ 121.131166] schedule+0xda/0x1b0 [ 121.131179] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.131192] syscall_exit_to_user_mode+0x19/0x40 [ 121.131205] do_syscall_64+0x48/0x90 [ 121.131222] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.131235] [ 121.131235] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 121.131249] _raw_spin_lock_nested+0x30/0x40 [ 121.131259] raw_spin_rq_lock_nested+0x1e/0x30 [ 121.131273] task_fork_fair+0x63/0x4d0 [ 121.131289] sched_cgroup_fork+0x3d0/0x540 [ 121.131304] copy_process+0x4183/0x6e20 [ 121.131314] kernel_clone+0xe7/0x890 [ 121.131324] user_mode_thread+0xad/0xf0 [ 121.131334] rest_init+0x24/0x250 [ 121.131346] arch_call_rest_init+0xf/0x14 [ 121.131363] start_kernel+0x4c6/0x4eb [ 121.131378] secondary_startup_64_no_verify+0xe0/0xeb [ 121.131393] [ 121.131393] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 121.131409] _raw_spin_lock_irqsave+0x39/0x60 [ 121.131419] try_to_wake_up+0xab/0x1930 [ 121.131435] up+0x75/0xb0 [ 121.131449] __up_console_sem+0x6e/0x80 [ 121.131465] console_unlock+0x46a/0x590 [ 121.131480] do_con_write+0xc05/0x1d50 [ 121.131492] con_write+0x21/0x40 [ 121.131500] n_tty_write+0x4d4/0xfe0 [ 121.131513] file_tty_write.constprop.0+0x455/0x8a0 [ 121.131524] vfs_write+0x9c3/0xd90 [ 121.131552] ksys_write+0x127/0x250 [ 121.131567] do_syscall_64+0x3b/0x90 [ 121.131584] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.131596] [ 121.131596] -> #0 ((console_sem).lock){....}-{2:2}: [ 121.131610] __lock_acquire+0x2a02/0x5e70 [ 121.131629] lock_acquire+0x1a2/0x530 [ 121.131645] _raw_spin_lock_irqsave+0x39/0x60 [ 121.131656] down_trylock+0xe/0x70 [ 121.131670] __down_trylock_console_sem+0x3b/0xd0 [ 121.131686] vprintk_emit+0x16b/0x560 [ 121.131702] vprintk+0x84/0xa0 [ 121.131718] _printk+0xba/0xf1 [ 121.131729] report_bug.cold+0x72/0xab [ 121.131745] handle_bug+0x3c/0x70 [ 121.131761] exc_invalid_op+0x14/0x50 [ 121.131778] asm_exc_invalid_op+0x16/0x20 [ 121.131790] group_sched_out.part.0+0x2c7/0x460 [ 121.131808] ctx_sched_out+0x8f1/0xc10 [ 121.131825] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.131836] __schedule+0xedd/0x2470 [ 121.131849] schedule+0xda/0x1b0 [ 121.131865] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.131876] syscall_exit_to_user_mode+0x19/0x40 [ 121.131888] do_syscall_64+0x48/0x90 [ 121.131904] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.131917] [ 121.131917] other info that might help us debug this: [ 121.131917] [ 121.131919] Chain exists of: [ 121.131919] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 121.131919] [ 121.131937] Possible unsafe locking scenario: [ 121.131937] [ 121.131939] CPU0 CPU1 [ 121.131941] ---- ---- [ 121.131944] lock(&ctx->lock); [ 121.131949] lock(&rq->__lock); [ 121.131956] lock(&ctx->lock); [ 121.131962] lock((console_sem).lock); [ 121.131968] [ 121.131968] *** DEADLOCK *** [ 121.131968] [ 121.131970] 2 locks held by syz-executor.4/3724: [ 121.131977] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 121.132006] #1: ffff88800f58fc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 121.132032] [ 121.132032] stack backtrace: [ 121.132035] CPU: 0 PID: 3724 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220930 #1 [ 121.132050] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 121.132058] Call Trace: [ 121.132061] [ 121.132066] dump_stack_lvl+0x8b/0xb3 [ 121.132084] check_noncircular+0x263/0x2e0 [ 121.132101] ? format_decode+0x26c/0xb50 [ 121.132119] ? print_circular_bug+0x450/0x450 [ 121.132137] ? simple_strtoul+0x30/0x30 [ 121.132153] ? format_decode+0x26c/0xb50 [ 121.132171] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 121.132189] __lock_acquire+0x2a02/0x5e70 [ 121.132215] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 121.132233] ? __mutex_add_waiter+0x120/0x120 [ 121.132253] lock_acquire+0x1a2/0x530 [ 121.132269] ? down_trylock+0xe/0x70 [ 121.132287] ? lock_release+0x750/0x750 [ 121.132308] ? vprintk+0x84/0xa0 [ 121.132326] _raw_spin_lock_irqsave+0x39/0x60 [ 121.132338] ? down_trylock+0xe/0x70 [ 121.132354] down_trylock+0xe/0x70 [ 121.132370] ? vprintk+0x84/0xa0 [ 121.132386] __down_trylock_console_sem+0x3b/0xd0 [ 121.132404] vprintk_emit+0x16b/0x560 [ 121.132423] vprintk+0x84/0xa0 [ 121.132441] _printk+0xba/0xf1 [ 121.132452] ? record_print_text.cold+0x16/0x16 [ 121.132469] ? report_bug.cold+0x66/0xab [ 121.132488] ? group_sched_out.part.0+0x2c7/0x460 [ 121.132506] report_bug.cold+0x72/0xab [ 121.132525] handle_bug+0x3c/0x70 [ 121.132543] exc_invalid_op+0x14/0x50 [ 121.132561] asm_exc_invalid_op+0x16/0x20 [ 121.132574] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 121.132594] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 121.132606] RSP: 0018:ffff8880408e7c48 EFLAGS: 00010006 [ 121.132615] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 121.132623] RDX: ffff88800ff29ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 121.132631] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 121.132638] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800f58fc00 [ 121.132646] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 121.132658] ? group_sched_out.part.0+0x2c7/0x460 [ 121.132679] ? group_sched_out.part.0+0x2c7/0x460 [ 121.132699] ctx_sched_out+0x8f1/0xc10 [ 121.132719] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.132734] ? lock_is_held_type+0xd7/0x130 [ 121.132748] ? __perf_cgroup_move+0x160/0x160 [ 121.132759] ? set_next_entity+0x304/0x550 [ 121.132777] ? update_curr+0x267/0x740 [ 121.132795] ? lock_is_held_type+0xd7/0x130 [ 121.132810] __schedule+0xedd/0x2470 [ 121.132828] ? io_schedule_timeout+0x150/0x150 [ 121.132845] ? __x64_sys_futex_time32+0x480/0x480 [ 121.132860] schedule+0xda/0x1b0 [ 121.132875] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.132888] syscall_exit_to_user_mode+0x19/0x40 [ 121.132902] do_syscall_64+0x48/0x90 [ 121.132919] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.132933] RIP: 0033:0x7fc028331b19 [ 121.132941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.132952] RSP: 002b:00007fc0258a7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.132962] RAX: 0000000000000001 RBX: 00007fc028444f68 RCX: 00007fc028331b19 [ 121.132970] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc028444f6c [ 121.132978] RBP: 00007fc028444f60 R08: 000000000000000e R09: 0000000000000000 [ 121.132987] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fc028444f6c [ 121.132995] R13: 00007ffd1057f3af R14: 00007fc0258a7300 R15: 0000000000022000 [ 121.133014] [ 121.190347] WARNING: CPU: 0 PID: 3724 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 121.191053] Modules linked in: [ 121.191309] CPU: 0 PID: 3724 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220930 #1 [ 121.191919] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 121.192781] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 121.193203] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 121.194567] RSP: 0018:ffff8880408e7c48 EFLAGS: 00010006 [ 121.194968] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 121.195519] RDX: ffff88800ff29ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 121.196070] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 121.196608] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800f58fc00 [ 121.197148] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 121.197691] FS: 00007fc0258a7700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 121.198294] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.198741] CR2: 00007fff2e536f40 CR3: 000000000a3dc000 CR4: 0000000000350ef0 [ 121.199298] Call Trace: [ 121.199505] [ 121.199702] ctx_sched_out+0x8f1/0xc10 [ 121.200018] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.200416] ? lock_is_held_type+0xd7/0x130 [ 121.200758] ? __perf_cgroup_move+0x160/0x160 [ 121.201115] ? set_next_entity+0x304/0x550 [ 121.201449] ? update_curr+0x267/0x740 [ 121.201763] ? lock_is_held_type+0xd7/0x130 [ 121.202102] __schedule+0xedd/0x2470 [ 121.202399] ? io_schedule_timeout+0x150/0x150 [ 121.202769] ? __x64_sys_futex_time32+0x480/0x480 [ 121.203150] schedule+0xda/0x1b0 [ 121.203424] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.203843] syscall_exit_to_user_mode+0x19/0x40 [ 121.204213] do_syscall_64+0x48/0x90 [ 121.204513] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.204916] RIP: 0033:0x7fc028331b19 [ 121.205208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.206603] RSP: 002b:00007fc0258a7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.207134] RAX: 0000000000000001 RBX: 00007fc028444f68 RCX: 00007fc028331b19 [ 121.207630] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc028444f6c [ 121.208113] RBP: 00007fc028444f60 R08: 000000000000000e R09: 0000000000000000 [ 121.208651] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fc028444f6c [ 121.209177] R13: 00007ffd1057f3af R14: 00007fc0258a7300 R15: 0000000000022000 [ 121.209730] [ 121.209921] irq event stamp: 606 [ 121.210187] hardirqs last enabled at (605): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 121.210894] hardirqs last disabled at (606): [] __schedule+0x1225/0x2470 [ 121.211502] softirqs last enabled at (294): [] __irq_exit_rcu+0x11b/0x180 [ 121.212156] softirqs last disabled at (275): [] __irq_exit_rcu+0x11b/0x180 [ 121.212775] ---[ end trace 0000000000000000 ]--- 07:26:57 executing program 1: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @broadcast}}}], 0x20}, 0x0) recvmmsg(r0, &(0x7f0000001c00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x40000042, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000000), &(0x7f0000000040)=0x30) [ 121.370568] loop3: detected capacity change from 0 to 264192 [ 121.371813] FAT-fs (loop3): Unrecognized mount option "nnonumtail=1" or missing value 07:26:58 executing program 1: syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_TP_METER_CANCEL(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x0, 0x0, 0x0, 0x1}, 0x14}}, 0x40800) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r0) sendmsg$TIPC_CMD_GET_NETID(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r1, 0x800, 0x70bd25, 0x25dfdbff, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x0) fcntl$setflags(r0, 0x2, 0x1) [ 121.381949] loop3: detected capacity change from 0 to 16156 [ 121.382900] FAT-fs (loop3): Unrecognized mount option "euid<00000000000000000000" or missing value [ 121.387976] loop3: detected capacity change from 0 to 264192 [ 121.388678] FAT-fs (loop3): Unrecognized mount option "nnonumtail=1" or missing value [ 121.396913] loop3: detected capacity change from 0 to 16156 [ 121.397620] FAT-fs (loop3): Unrecognized mount option "euid<00000000000000000000" or missing value VM DIAGNOSIS: 07:26:58 Registers: info registers vcpu 0 RAX=0000000000000026 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff8880408e7690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000026 R11=0000000000000001 R12=0000000000000026 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc0258a7700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fff2e536f40 CR3=000000000a3dc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fc0284187c0 00007fc0284187c8 YMM02=0000000000000000 0000000000000000 00007fc0284187e0 00007fc0284187c0 YMM03=0000000000000000 0000000000000000 00007fc0284187c8 00007fc0284187c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000080000001 RBX=0000000000000001 RCX=0000000000000000 RDX=0000000000000001 RSI=ffff88803ed37858 RDI=0000000000000001 RBP=ffff88803ed30000 RSP=ffff88803ed376e0 R8 =ffffffff85e3411e R9 =ffffffff85e34122 R10=ffffed1007da6f05 R11=ffff88803ed37800 R12=ffff88803ed37801 R13=ffff88803ed37820 R14=ffff88803ed377c0 R15=0000000000000003 RIP=ffffffff8120363e RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe3b83fd000 CR3=0000000017d54000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 322e6f732e6c6462 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00322e6f732e6c64 62696c2f756e672d YMM03=0000000000000000 0000000000000000 78756e696c2d3436 5f3638782f62696c YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000