Warning: Permanently added '[localhost]:59683' (ECDSA) to the list of known hosts. 2022/10/03 23:22:02 fuzzer started 2022/10/03 23:22:02 dialing manager at localhost:35095 syzkaller login: [ 37.013634] cgroup: Unknown subsys name 'net' [ 37.089909] cgroup: Unknown subsys name 'rlimit' 2022/10/03 23:22:17 syscalls: 2215 2022/10/03 23:22:17 code coverage: enabled 2022/10/03 23:22:17 comparison tracing: enabled 2022/10/03 23:22:17 extra coverage: enabled 2022/10/03 23:22:17 setuid sandbox: enabled 2022/10/03 23:22:17 namespace sandbox: enabled 2022/10/03 23:22:17 Android sandbox: enabled 2022/10/03 23:22:17 fault injection: enabled 2022/10/03 23:22:17 leak checking: enabled 2022/10/03 23:22:17 net packet injection: enabled 2022/10/03 23:22:17 net device setup: enabled 2022/10/03 23:22:17 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/03 23:22:17 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/03 23:22:17 USB emulation: enabled 2022/10/03 23:22:17 hci packet injection: enabled 2022/10/03 23:22:17 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/03 23:22:17 802.15.4 emulation: enabled 2022/10/03 23:22:17 fetching corpus: 50, signal 24351/26217 (executing program) 2022/10/03 23:22:18 fetching corpus: 100, signal 39815/43316 (executing program) 2022/10/03 23:22:18 fetching corpus: 150, signal 51679/56693 (executing program) 2022/10/03 23:22:18 fetching corpus: 200, signal 57682/64195 (executing program) 2022/10/03 23:22:18 fetching corpus: 250, signal 62398/70355 (executing program) 2022/10/03 23:22:18 fetching corpus: 300, signal 67085/76493 (executing program) 2022/10/03 23:22:18 fetching corpus: 350, signal 71566/82386 (executing program) 2022/10/03 23:22:18 fetching corpus: 400, signal 77292/89355 (executing program) 2022/10/03 23:22:18 fetching corpus: 450, signal 79578/93005 (executing program) 2022/10/03 23:22:19 fetching corpus: 500, signal 82982/97655 (executing program) 2022/10/03 23:22:19 fetching corpus: 550, signal 86149/102071 (executing program) 2022/10/03 23:22:19 fetching corpus: 600, signal 89457/106575 (executing program) 2022/10/03 23:22:19 fetching corpus: 650, signal 92691/110968 (executing program) 2022/10/03 23:22:19 fetching corpus: 700, signal 96206/115572 (executing program) 2022/10/03 23:22:19 fetching corpus: 750, signal 98601/119122 (executing program) 2022/10/03 23:22:19 fetching corpus: 800, signal 100210/121934 (executing program) 2022/10/03 23:22:19 fetching corpus: 850, signal 102125/125021 (executing program) 2022/10/03 23:22:19 fetching corpus: 900, signal 103961/127991 (executing program) 2022/10/03 23:22:19 fetching corpus: 950, signal 106929/131936 (executing program) 2022/10/03 23:22:20 fetching corpus: 1000, signal 107950/134149 (executing program) 2022/10/03 23:22:20 fetching corpus: 1050, signal 110797/137933 (executing program) 2022/10/03 23:22:20 fetching corpus: 1100, signal 112527/140669 (executing program) 2022/10/03 23:22:20 fetching corpus: 1150, signal 114608/143714 (executing program) 2022/10/03 23:22:20 fetching corpus: 1200, signal 118096/147913 (executing program) 2022/10/03 23:22:20 fetching corpus: 1250, signal 121204/151734 (executing program) 2022/10/03 23:22:20 fetching corpus: 1300, signal 123079/154527 (executing program) 2022/10/03 23:22:20 fetching corpus: 1350, signal 124841/157230 (executing program) 2022/10/03 23:22:21 fetching corpus: 1400, signal 126195/159565 (executing program) 2022/10/03 23:22:21 fetching corpus: 1450, signal 127197/161564 (executing program) 2022/10/03 23:22:21 fetching corpus: 1500, signal 128566/163851 (executing program) 2022/10/03 23:22:21 fetching corpus: 1550, signal 130309/166440 (executing program) 2022/10/03 23:22:21 fetching corpus: 1600, signal 131821/168772 (executing program) 2022/10/03 23:22:21 fetching corpus: 1650, signal 134026/171640 (executing program) 2022/10/03 23:22:21 fetching corpus: 1700, signal 134642/173220 (executing program) 2022/10/03 23:22:21 fetching corpus: 1750, signal 135510/175072 (executing program) 2022/10/03 23:22:21 fetching corpus: 1800, signal 136842/177269 (executing program) 2022/10/03 23:22:22 fetching corpus: 1850, signal 138327/179563 (executing program) 2022/10/03 23:22:22 fetching corpus: 1900, signal 140108/182075 (executing program) 2022/10/03 23:22:22 fetching corpus: 1950, signal 141047/183881 (executing program) 2022/10/03 23:22:22 fetching corpus: 2000, signal 141826/185511 (executing program) 2022/10/03 23:22:22 fetching corpus: 2050, signal 143636/187927 (executing program) 2022/10/03 23:22:22 fetching corpus: 2100, signal 144720/189763 (executing program) 2022/10/03 23:22:22 fetching corpus: 2150, signal 145714/191520 (executing program) 2022/10/03 23:22:22 fetching corpus: 2200, signal 146570/193245 (executing program) 2022/10/03 23:22:22 fetching corpus: 2250, signal 147693/195113 (executing program) 2022/10/03 23:22:23 fetching corpus: 2300, signal 148868/196995 (executing program) 2022/10/03 23:22:23 fetching corpus: 2350, signal 149437/198451 (executing program) 2022/10/03 23:22:23 fetching corpus: 2400, signal 150085/199919 (executing program) 2022/10/03 23:22:23 fetching corpus: 2450, signal 151661/202007 (executing program) 2022/10/03 23:22:23 fetching corpus: 2500, signal 152338/203501 (executing program) 2022/10/03 23:22:23 fetching corpus: 2550, signal 153143/205126 (executing program) 2022/10/03 23:22:23 fetching corpus: 2600, signal 153921/206622 (executing program) 2022/10/03 23:22:23 fetching corpus: 2650, signal 155901/208900 (executing program) 2022/10/03 23:22:24 fetching corpus: 2700, signal 157581/210980 (executing program) 2022/10/03 23:22:24 fetching corpus: 2750, signal 159464/213210 (executing program) 2022/10/03 23:22:24 fetching corpus: 2800, signal 161055/215195 (executing program) 2022/10/03 23:22:24 fetching corpus: 2850, signal 161599/216486 (executing program) 2022/10/03 23:22:24 fetching corpus: 2900, signal 162245/217845 (executing program) 2022/10/03 23:22:24 fetching corpus: 2950, signal 162741/219118 (executing program) 2022/10/03 23:22:24 fetching corpus: 3000, signal 163692/220632 (executing program) 2022/10/03 23:22:24 fetching corpus: 3050, signal 164619/222154 (executing program) 2022/10/03 23:22:25 fetching corpus: 3100, signal 165202/223482 (executing program) 2022/10/03 23:22:25 fetching corpus: 3150, signal 165819/224798 (executing program) 2022/10/03 23:22:25 fetching corpus: 3200, signal 167032/226461 (executing program) 2022/10/03 23:22:25 fetching corpus: 3250, signal 167694/227817 (executing program) 2022/10/03 23:22:25 fetching corpus: 3300, signal 168216/229044 (executing program) 2022/10/03 23:22:25 fetching corpus: 3350, signal 168974/230440 (executing program) 2022/10/03 23:22:25 fetching corpus: 3400, signal 169753/231828 (executing program) 2022/10/03 23:22:25 fetching corpus: 3450, signal 171380/233613 (executing program) 2022/10/03 23:22:25 fetching corpus: 3500, signal 172093/234911 (executing program) 2022/10/03 23:22:26 fetching corpus: 3550, signal 173283/236445 (executing program) 2022/10/03 23:22:26 fetching corpus: 3600, signal 173976/237719 (executing program) 2022/10/03 23:22:26 fetching corpus: 3650, signal 174682/238981 (executing program) 2022/10/03 23:22:26 fetching corpus: 3700, signal 175266/240200 (executing program) 2022/10/03 23:22:26 fetching corpus: 3750, signal 175735/241341 (executing program) 2022/10/03 23:22:26 fetching corpus: 3800, signal 176365/242546 (executing program) 2022/10/03 23:22:26 fetching corpus: 3850, signal 177503/243985 (executing program) 2022/10/03 23:22:26 fetching corpus: 3900, signal 178578/245330 (executing program) 2022/10/03 23:22:27 fetching corpus: 3950, signal 180406/247090 (executing program) 2022/10/03 23:22:27 fetching corpus: 4000, signal 181259/248385 (executing program) 2022/10/03 23:22:27 fetching corpus: 4050, signal 181858/249559 (executing program) 2022/10/03 23:22:27 fetching corpus: 4100, signal 183037/251006 (executing program) 2022/10/03 23:22:27 fetching corpus: 4150, signal 183399/252003 (executing program) 2022/10/03 23:22:27 fetching corpus: 4200, signal 184123/253144 (executing program) 2022/10/03 23:22:27 fetching corpus: 4250, signal 184506/254165 (executing program) 2022/10/03 23:22:27 fetching corpus: 4300, signal 185000/255190 (executing program) 2022/10/03 23:22:28 fetching corpus: 4350, signal 185452/256201 (executing program) 2022/10/03 23:22:28 fetching corpus: 4400, signal 186064/257351 (executing program) 2022/10/03 23:22:28 fetching corpus: 4450, signal 186819/258544 (executing program) 2022/10/03 23:22:28 fetching corpus: 4500, signal 187189/259511 (executing program) 2022/10/03 23:22:28 fetching corpus: 4550, signal 188013/260628 (executing program) 2022/10/03 23:22:28 fetching corpus: 4600, signal 188766/261744 (executing program) 2022/10/03 23:22:28 fetching corpus: 4650, signal 189447/262851 (executing program) 2022/10/03 23:22:28 fetching corpus: 4700, signal 190594/264167 (executing program) 2022/10/03 23:22:28 fetching corpus: 4750, signal 191187/265213 (executing program) 2022/10/03 23:22:29 fetching corpus: 4800, signal 191938/266291 (executing program) 2022/10/03 23:22:29 fetching corpus: 4850, signal 192675/267375 (executing program) 2022/10/03 23:22:29 fetching corpus: 4900, signal 193463/268428 (executing program) 2022/10/03 23:22:29 fetching corpus: 4950, signal 194332/269534 (executing program) 2022/10/03 23:22:29 fetching corpus: 5000, signal 194777/270455 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/271203 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/271918 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/272654 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/273401 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/274198 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/274973 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/275724 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/276478 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/277248 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/277987 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/278709 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/279458 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/280209 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/280994 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/281730 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/282494 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/283248 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/284057 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/284792 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/285547 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/286284 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/287034 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/287778 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/288544 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/289307 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/290061 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/290806 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/291558 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/292310 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/293097 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/293873 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/294595 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/295369 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/296100 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/296837 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/297615 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/298322 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/299085 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/299827 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/300584 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/301339 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/302106 (executing program) 2022/10/03 23:22:29 fetching corpus: 5001, signal 194785/302831 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/303603 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/304330 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/305046 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/305782 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/306519 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/307317 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/308046 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/308781 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/309534 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/310272 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/311038 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/311052 (executing program) 2022/10/03 23:22:30 fetching corpus: 5001, signal 194785/311052 (executing program) 2022/10/03 23:22:32 starting 8 fuzzer processes 23:22:32 executing program 0: prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) 23:22:32 executing program 2: getsockopt$IP_SET_OP_GET_BYINDEX(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000000)={0x7, 0x7, 0x4}, &(0x7f0000000040)=0x28) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r0, 0x20, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x20000001) r1 = socket$inet6(0xa, 0x6, 0x80) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000001c0), &(0x7f0000000200)=0xc) getsockopt$IP6T_SO_GET_INFO(r1, 0x29, 0x40, &(0x7f0000000240)={'security\x00', 0x0, [0x10001, 0x80000000, 0x4, 0x1, 0x9]}, &(0x7f00000002c0)=0x54) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000500)={&(0x7f0000000380)={0x15c, r2, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x65}, @val={0x8}, @val={0xc, 0x99, {0x9, 0x69}}}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x9a0}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x7fff}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0xff}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x9}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x8000}, @NL80211_ATTR_VENDOR_DATA={0xf3, 0xc5, "0019a30760612484dc607728ff6890862c1e886f75190528ca18834ab2e27e92a3aa76c1e53485ec1c102399a2e5583d912d03e177311933a8181bb842746bc174ae5d664282b636239fd243e3a096723ac047f373faa441c65753945d7e3249dcd0f6060cfc7b4108fe4fd136f033e7b8fe9d3d4a8e4a4afb8cb1dd600ee6cff92c5717ab22ce2c5a1b804455bfcf5d4b989c1803e9b5aea3524fc3d804e4da2ec773a2acf009e9efba14dccf792010ce5e10ae9232edc5fa376dbf7e0de4f1775dbd08776f3d92f69d4c0865b90822b631054aaeb9e709efe196782b3b15aa53db2ae5cd8f5a6db48e51495b97d3"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x40}]}, 0x15c}, 0x1, 0x0, 0x0, 0x40}, 0x4000000) connect$inet6(r1, &(0x7f0000000580)={0xa, 0x4e21, 0x4, @dev={0xfe, 0x80, '\x00', 0xd}, 0xfffffff9}, 0x1c) r3 = openat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', 0x280000, 0x100) sendmsg$AUDIT_LIST_RULES(r3, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x10, 0x3f5, 0x800, 0x70bd26, 0x25dfdbfe, "", ["", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x80000}, 0x4000081) recvmsg$unix(r3, &(0x7f0000005200)={&(0x7f0000005080)=@abs, 0x6e, &(0x7f0000005180)=[{&(0x7f0000005100)=""/112, 0x70}], 0x1, &(0x7f00000051c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}, 0x60) accept4$packet(r3, &(0x7f0000005340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000005380)=0x14, 0x1000) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r4, &(0x7f0000005540)={&(0x7f0000005240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000005500)={&(0x7f00000053c0)={0x128, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}, @HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x128}, 0x1, 0x0, 0x0, 0x4008000}, 0x4048891) r8 = openat$null(0xffffffffffffff9c, &(0x7f0000005580), 0x11d300, 0x0) sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r8, &(0x7f0000005680)={&(0x7f00000055c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000005640)={&(0x7f0000005600)={0x2c, r2, 0x300, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x4, 0x80}}}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x2c}}, 0x44810) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000005700), r5) getsockname$packet(r6, &(0x7f0000005740)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000005780)=0x14) sendmsg$ETHTOOL_MSG_STRSET_GET(r9, &(0x7f0000005a80)={&(0x7f00000056c0)={0x10, 0x0, 0x0, 0x140000040}, 0xc, &(0x7f0000005a40)={&(0x7f00000058c0)={0x158, r10, 0x2, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x28, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}]}, @ETHTOOL_A_STRSET_HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'xfrm0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}]}, @ETHTOOL_A_STRSET_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0xc04901b6d966e87e}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x24, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}]}]}, @ETHTOOL_A_STRSET_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_STRSET_HEADER={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x158}, 0x1, 0x0, 0x0, 0x10}, 0x0) 23:22:32 executing program 1: ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)={0x14c, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_REKEY_DATA={0x3c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="a05971e45662cbea7bb22b98caf8f19d25a5f7299c0e3d90f5e92c8f6c673347"}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="93c0b280719b2745acfb8b3a141f5cf0"}]}, @NL80211_ATTR_REKEY_DATA={0x2c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="51135fe869b5cab8dd3a8ba5c42fad25"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="809409582fcb4a60d68e3c085673fe51"}]}, @NL80211_ATTR_REKEY_DATA={0x58, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="3588f157a87e0dd8493d93d0f582aafd"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "53153c4a8308764c"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x3463}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x3}, @NL80211_REKEY_DATA_KEK={0x24, 0x1, @kek_ext="0f364f8e5688671a8f1abdae3eadafdfe710708529a2aa4e8552e2ddfbf29bca"}]}, @NL80211_ATTR_REKEY_DATA={0x70, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="8ae59641a41765f7acd728a01b65ec1c"}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="e77b92ea28345e1e305ec7b6ed73aba4"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="15326a9c4eda7274827821733688581c8e731150ede6e372"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "78b88570e0c5cf97"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x40}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="d5a3b8c55974cf7ef8323c72bddbe2a8"}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x804}, 0x800) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f00000002c0), 0x101440, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000340)={{{@in=@initdev, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@local}}, &(0x7f0000000440)=0xe8) recvmmsg$unix(r0, &(0x7f0000002100)=[{{&(0x7f0000000480)=@abs, 0x6e, &(0x7f0000000600)=[{&(0x7f0000000500)=""/212, 0xd4}], 0x1, &(0x7f0000000640)}}, {{&(0x7f0000000680), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000700)=""/61, 0x3d}, {&(0x7f0000000740)=""/107, 0x6b}, {&(0x7f00000007c0)=""/210, 0xd2}, {&(0x7f00000008c0)=""/33, 0x21}], 0x4, &(0x7f0000000940)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}}, {{&(0x7f00000009c0), 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000a40)=""/100, 0x64}, {&(0x7f0000000ac0)=""/47, 0x2f}, {&(0x7f0000000b00)=""/42, 0x2a}, {&(0x7f0000000b40)=""/123, 0x7b}, {&(0x7f0000000bc0)=""/23, 0x17}, {&(0x7f0000000c00)=""/91, 0x5b}, {&(0x7f0000000c80)=""/182, 0xb6}, {&(0x7f0000000d40)=""/109, 0x6d}, {&(0x7f0000000dc0)=""/41, 0x29}], 0x9, &(0x7f0000000ec0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa0}}, {{&(0x7f0000000f80)=@abs, 0x6e, &(0x7f0000002000)=[{&(0x7f0000001000)=""/4096, 0x1000}], 0x1, &(0x7f0000002040)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xa8}}], 0x4, 0x0, &(0x7f0000002200)={0x0, 0x989680}) getgroups(0x1, &(0x7f0000002240)=[0xee00]) stat(&(0x7f0000002280)='./file0\x00', &(0x7f00000022c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r2, &(0x7f0000000300)='system.posix_acl_default\x00', &(0x7f0000002340)={{}, {0x1, 0x6}, [{0x2, 0x2, 0xee01}, {0x2, 0x1, 0xffffffffffffffff}, {0x2, 0x3}, {0x2, 0x6, 0xffffffffffffffff}, {0x2, 0x7, r3}], {0x4, 0x1}, [{0x8, 0x3, r5}, {0x8, 0x1, r10}, {0x8, 0x5, r11}, {0x8, 0x3, 0xee01}], {0x10, 0x5}, {0x20, 0x5}}, 0x6c, 0x3) clock_gettime(0x0, &(0x7f0000002400)={0x0, 0x0}) futex(&(0x7f00000023c0)=0x2, 0x0, 0x0, &(0x7f0000002440)={r12, r13+10000000}, &(0x7f0000002480), 0x2) clock_gettime(0x6, &(0x7f00000024c0)) sendfile(r8, r7, &(0x7f0000002500)=0x1, 0x3) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000002540)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffff}}, './file0\x00'}) ioctl$RNDADDENTROPY(r14, 0x40085203, &(0x7f0000002580)={0x7, 0xc4, "f42b15a445cde7c258dd6d5a88c8181e72a9d89961f27e9ce63f78219d68a0e97b7505aa9832005bc80545b4d48b6894e9cf1045205b61d9c0ceef8903a22c759fac9659f656f04413870c148da8610f64c5149aa9cfcde507b4856ce18438f3f9e4920b8402f34594c9d16734118d18581d65e7233aeb25d7a1336e6613f3c889d4d0a28f48f0e63ebdb7b1d503c0c1bce06eab0091a9241edc1aab5e6823055303207c11c0b54dbf9de9437b9598160b85fceea69774692418e2dde2222962a342fcc5"}) r15 = openat$bsg(0xffffffffffffff9c, &(0x7f0000002680), 0x40a00, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r15, 0xf501, 0x0) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x6800) poll(&(0x7f00000026c0)=[{r2, 0x8002}, {r9}], 0x2, 0x7fffffff) setgroups(0x1, &(0x7f0000002700)=[r6]) [ 66.692503] audit: type=1400 audit(1664839352.584:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 23:22:32 executing program 3: ioctl$TCSETA(0xffffffffffffffff, 0x5406, &(0x7f0000000000)={0x80, 0x7, 0x40, 0x9, 0x6, "f4dd076bf573d8b9"}) preadv2(0xffffffffffffffff, &(0x7f0000001440)=[{&(0x7f0000000040)=""/4096, 0x1000}, {&(0x7f0000001040)=""/162, 0xa2}, {&(0x7f0000001100)=""/48, 0x30}, {&(0x7f0000001140)=""/241, 0xf1}, {&(0x7f0000001240)=""/239, 0xef}, {&(0x7f0000001340)=""/245, 0xf5}], 0x6, 0xa396, 0x9, 0x14) r0 = openat$hpet(0xffffffffffffff9c, &(0x7f00000014c0), 0x4002, 0x0) ioctl$KDGKBMODE(r0, 0x4b44, &(0x7f0000001500)) r1 = open(&(0x7f0000001540)='./file0\x00', 0x1200, 0x100) r2 = socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000001740)={{0x1, 0x1, 0x18, r0, {0xee01, 0xee00}}, './file0\x00'}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000019c0)={0xcc, 0x0, &(0x7f0000001880)=[@reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x48, 0x18, &(0x7f0000001580)={@flat=@weak_handle={0x77682a85, 0x110b}, @fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r2}}, &(0x7f0000001600)={0x0, 0x18, 0x30}}}, @reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x68, 0x18, &(0x7f00000017c0)={@ptr={0x70742a85, 0x1, &(0x7f0000001640)=""/233, 0xe9, 0x0, 0x14}, @fd={0x66642a85, 0x0, r3}, @ptr={0x70742a85, 0x1, &(0x7f0000001780)=""/12, 0xc, 0x0, 0x3}}, &(0x7f0000001840)={0x0, 0x28, 0x40}}, 0x400}, @acquire_done={0x40106309, 0x1}, @enter_looper, @dead_binder_done, @enter_looper, @dead_binder_done], 0x0, 0x0, &(0x7f0000001980)}) readv(0xffffffffffffffff, &(0x7f0000001d00)=[{&(0x7f0000001a00)=""/214, 0xd6}, {&(0x7f0000001b00)=""/163, 0xa3}, {&(0x7f0000001bc0)=""/43, 0x2b}, {&(0x7f0000001c00)=""/207, 0xcf}], 0x4) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000001d40)={{0x1, 0x1, 0x18, r1}, './file0/file0\x00'}) setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000002440)=@nat={'nat\x00', 0x19, 0x4, 0x660, [0x20001dc0, 0x0, 0x0, 0x20001f1e, 0x20002044], 0x0, &(0x7f0000001d80), &(0x7f0000001dc0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, [{0x3, 0x10, 0x1a, 'veth0_macvtap\x00', 'ipvlan1\x00', 'veth0_vlan\x00', 'geneve1\x00', @random="10e25a05343e", [0xff, 0x0, 0x0, 0x0, 0x0, 0xff], @multicast, [0x101, 0x0, 0xff, 0x0, 0x0, 0xff], 0xbe, 0xf6, 0x12e, [@nfacct={{'nfacct\x00', 0x0, 0x28}, {{'syz0\x00'}}}], [@snat={'snat\x00', 0x10, {{@local, 0xfffffffffffffffd}}}], @arpreply={'arpreply\x00', 0x10, {{@remote, 0xfffffffffffffffd}}}}]}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{0x11, 0x1, 0x806, 'geneve1\x00', 'virt_wifi0\x00', 'vlan1\x00', 'ip6gretap0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, [0x0, 0x0, 0x0, 0xff, 0xff], @multicast, [0xff, 0x5eed8f28f6319b84, 0xff, 0xff, 0x0, 0xff], 0xbe, 0xbe, 0xf6, [@nfacct={{'nfacct\x00', 0x0, 0x28}, {{'syz1\x00', 0x9}}}], [], @common=@mark={'mark\x00', 0x10, {{0xffffffd0, 0xffffffffffffffff}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffc, 0x2, [{0x5, 0x7a, 0x3, 'team_slave_1\x00', 'wg1\x00', 'ip6gretap0\x00', 'batadv0\x00', @multicast, [0xff, 0xff, 0xff], @dev={'\xaa\xaa\xaa\xaa\xaa', 0x38}, [0x0, 0xff, 0x0, 0xff, 0x0, 0xff], 0xd6, 0x106, 0x13e, [@realm={{'realm\x00', 0x0, 0x10}, {{0xffff, 0x432}}}, @connlabel={{'connlabel\x00', 0x0, 0x8}, {{0xb7}}}], [@common=@CONNSECMARK={'CONNSECMARK\x00', 0x8, {{0x2}}}], @arpreply={'arpreply\x00', 0x10, {{@empty, 0xfffffffffffffffe}}}}, {0x11, 0x0, 0x86dd, 'erspan0\x00', 'bridge_slave_0\x00', 'vxcan1\x00', 'caif0\x00', @random="2920d3f402db", [0x0, 0xff, 0x0, 0xff, 0xff, 0xff], @broadcast, [0x0, 0x0, 0x0, 0xff], 0x1c6, 0x236, 0x26e, [@comment={{'comment\x00', 0x0, 0x100}}, @state={{'state\x00', 0x0, 0x8}, {{0x3ff}}}], [@snat={'snat\x00', 0x10, {{@multicast, 0xfffffffffffffffe}}}, @snat={'snat\x00', 0x10, {{@link_local, 0xfffffffffffffffc}}}], @arpreply={'arpreply\x00', 0x10, {{@remote, 0xfffffffffffffffe}}}}]}]}, 0x6d8) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000002500)={{{@in6=@private1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private0}, 0x0, @in=@broadcast}}, &(0x7f0000002600)=0xe8) sendmsg$DCCPDIAG_GETSOCK(r5, &(0x7f0000002800)={&(0x7f00000024c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000027c0)={&(0x7f0000002640)={0x17c, 0x13, 0x200, 0x70bd2a, 0x25dfdbfc, {0x1f, 0x1, 0x40, 0x1, {0x4e21, 0x4e23, [0x553, 0x80000001, 0x5, 0x1], [0x3ff, 0x0, 0x7], r6, [0x9, 0x8591]}, 0x7, 0x200}, [@INET_DIAG_REQ_BYTECODE={0x32, 0x1, "dadc088071b6cffd504dd73f2dec3cac241a31d1948039a07cf4c3814e6ebe9f6048f2252903e7793718a028909a"}, @INET_DIAG_REQ_BYTECODE={0x1b, 0x1, "07dad9e9b85d233bc82a08a48243f98903fe8335166eee"}, @INET_DIAG_REQ_BYTECODE={0xde, 0x1, "1da3be00de1cf105a8c2c58813b2d2ddd8be5ed217ea4afa5e723ce5df6dcf4c975a695dde5ac790f6e28078d51576cdfa322573ecd10a158dc5bd03678707100bfb363d3d6f11a60ffe2801c58e2cb73ebbb1193eb84cecf93bd782098f42b13288e6d1cdf43844ac680dfd57d3e3299c36ec7d1038fcb7b797da150368dedd4760d54fecbe2f81538b0e7a54208b3de882b8ba4488d87c9546fe2719eb3b8f6be800b4be05eadedc3281ddf1647ea77fb38e574534bfb9d3d3be8495072968584b828840221216acb660ff9ebab6f9edc4bfb8dcda536dfcad"}]}, 0x17c}, 0x1, 0x0, 0x0, 0x4000880}, 0x8814) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000002840)={{0x1, 0x1, 0x18, r5, {r7, r4}}, './file0\x00'}) getsockopt$ARPT_SO_GET_ENTRIES(r8, 0x0, 0x61, &(0x7f0000002880)={'filter\x00', 0x7a, "a4c9a9b3ff96b778ed862af58f1478e9a685242bc2d9172028a7c9736383775127a37dfce896c7f30167786e8ed225828310deac8d8e95bfc377ff492bdffc9fb91184090c12bb9a5941ae49119c3078935c37412ea327a5ee5cbc922a67e5bd6d8c1e3e71d3c7e049f9e158a17a58bc0de8aab6960d2402f4d2"}, &(0x7f0000002940)=0x9e) fsetxattr$trusted_overlay_origin(r8, &(0x7f0000002980), &(0x7f00000029c0), 0x2, 0x1) ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000002a80)={'wg1\x00', 0x0}) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000002f80)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002f40)={&(0x7f0000002ac0)={0x464, 0x13, 0x20, 0x70bd29, 0x25dfdbfb, {0x1, 0xff, 0x37, 0x1, {0x4e20, 0x4e22, [0x8, 0x65b, 0x0, 0x5], [0x7fff, 0x7, 0x9e1e, 0xffffffff], r9, [0xfffffe3a, 0x100]}, 0x8}, [@INET_DIAG_REQ_BYTECODE={0xd9, 0x1, "5d17e39cf3560c1a0d95278eb7e1e8c7d2fcb9169bf5331d886fd491a7a034dff093ff0a0f7be954a507fc49e0a98b63b84326e826a8b433001dd3a00faeeb84af197471b326acb16666db6206f273a735fcb66b2befa15f7bfcb512ad36ec520345a9f098959f35ac025a87cb3c950358b273e62dbb552566ed2b24a58c58cc4a0d9ff39dfcde024c32b28a693321ddee7aacee86a528790e2af1f1fc876ce011114596dfce389545f23c49bc16ccdcd9e2ea053d14bd24a8414a3c719ddf6a39b1a0a41cef4effe00143ad1737777be29a50ff85"}, @INET_DIAG_REQ_BYTECODE={0x8d, 0x1, "a582f14b98b5725c8c203350beb1222ca69d2c60e60eafe250a42526b9a5aca7e185409dc376e7a4524207d802c5dd253c316a79619e07cbe332abcffaa1388bb6a32fca8f4df7277cefb2165cc552e238141ef25c836d8fe8a1d76febbc1e758a1b062b0e7496f0b377bc6777abff66ff7f0c4da595342380846fc105f314b0edfe366a07036c3ee4"}, @INET_DIAG_REQ_BYTECODE={0x3b, 0x1, "8edf7993f45ade21831ac45f75e82e8d5afb0224f9a2ec036909f451be4af8416dad58eb81c0277e0779b356276d5ba5a8624cdee037c2"}, @INET_DIAG_REQ_BYTECODE={0x4}, @INET_DIAG_REQ_BYTECODE={0xb8, 0x1, "b354c40cf171de7d5de260dac8559a01780eaa00d35176d90fef9bd578c64c575465344fe7c6c40789f5828a507f3b3f893df174121b0b48228e4350e3e09169e34ecf86061d6a0be3a4847665d8190a21bac148d2cae3f81c17070443638ec801b58fab3e294033453af7f19aa77f19b120e72b91b4675b007ce810b8fd94577418d84ddaf62c2881275bc035475e401ad93d0c2ae910064e0c51e7644c5b67c74951518652b9310bfae8ffab1261fe3ce1abbd"}, @INET_DIAG_REQ_BYTECODE={0x8d, 0x1, "cf9b1aa367cee7fe3d03bd82d9da43701dff90c93680ae73e4edde2c9396aeb31aef2bd63ba48d88b1e512ec8fb1a885be67cce27d5c446f31da9bf0bba060088dd43607ae54c085163479f8dc53ed993414e7dcb17aa105570ab6e109731d928f62345021d7967b665c73b97e322f355688019c6bd8b021b041eeda64c1e68c42b43cdae96e61672b"}, @INET_DIAG_REQ_BYTECODE={0x74, 0x1, "9b9d6d42d4dd19d5c45fe0cc9cfc384478ea76b2ae9430d7fe93a332d807f8b541bf484f7fd42ba76cee414be3452f82451af83447bfb6902d03817c913a1af63d6030995e8085a20dcd4baa66175f7940d97deddbe58aa101e8edef7b8e352c07b2fe8f46d19b048abf38f5d895c00a"}, @INET_DIAG_REQ_BYTECODE={0x48, 0x1, "cc789e80b2895c02c2a68c2a0727d1479798774c342b39728cf19f366fe2c8de54720bf6527dc6cd6a0599703965b6f241d09bfc48d5c5634b191f30becdcc6189aaea05"}, @INET_DIAG_REQ_BYTECODE={0x65, 0x1, "65fba2842306e5bfc78983725e072fe87e566ca3c756446ffce4798ed1a668e805c01cbd305246d039676ac67daed0f1792d98f6aef5565970482e49688ebae953e8e75d9f27c74f982ab81d844ddc6a88cd66728689906d9ad15152aa1a5a1ba4"}]}, 0x464}, 0x1, 0x0, 0x0, 0x40800}, 0xc1) r10 = socket$netlink(0x10, 0x3, 0x15) sendmsg$IPVS_CMD_GET_INFO(r10, &(0x7f0000003100)={&(0x7f0000002fc0), 0xc, &(0x7f00000030c0)={&(0x7f0000003040)={0x48, 0x0, 0x10, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x51e494a8}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000080}, 0x800) 23:22:32 executing program 5: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x34782, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, &(0x7f0000000080)) pread64(r0, &(0x7f0000000100)=""/132, 0x84, 0x9) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f00000001c0)={"fc9f0f47af2a3862132da16b7369faea", 0x0, 0x0, {0xfffffffffffffffe, 0x1}, {0x100000000, 0x6}, 0xce, [0xfffffffffffffffd, 0x8, 0x80, 0x5, 0x9, 0x7, 0x6, 0x3, 0x0, 0x8001, 0x80000000, 0x8000, 0x85fc, 0x101, 0x5, 0x6]}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c89425, &(0x7f00000002c0)={"b5288396c17cb4a84671c62333952323", 0x0, r2, {0x4, 0x4e7}, {0x5, 0x3}, 0xbf, [0x100, 0x6, 0x5, 0x0, 0x0, 0x1, 0x6, 0x6, 0x6, 0x6, 0x0, 0x9, 0x4, 0x2, 0x6, 0x1]}) r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$SEG6_CMD_SETHMAC(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, r3, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@SEG6_ATTR_ALGID={0x5, 0x6, 0x7b}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20048000}, 0x0) ioctl$RTC_UIE_OFF(r1, 0x7004) r4 = openat$incfs(r0, &(0x7f0000000500)='.pending_reads\x00', 0x149600, 0x0) ioctl$HIDIOCGRAWPHYS(r4, 0x80404805, &(0x7f0000000540)) r5 = openat$cgroup(r1, &(0x7f0000000580)='syz0\x00', 0x200002, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f00000005c0)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff}}, './file0\x00'}) write$binfmt_elf64(r6, &(0x7f0000000600)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x4, 0x3, 0xe9, 0x5, 0x0, 0x6, 0x7f, 0x59, 0x40, 0x1c8, 0x2, 0x274e, 0x38, 0x2, 0x8, 0x9, 0x5}, [{0x2, 0x100, 0xffffffff80000001, 0xfffffffffffffff9, 0x1ff, 0x5e, 0x8001, 0x8}], "b8594c0a20cd9e49393aa60c195b71436b0830f4"}, 0x8c) openat$cgroup_freezer_state(r1, &(0x7f00000006c0), 0x2, 0x0) r7 = syz_open_dev$vcsa(&(0x7f0000000700), 0x3f, 0x402000) ioctl$LOOP_SET_STATUS64(r7, 0x4c04, &(0x7f0000000740)={0x0, 0x0, 0x0, 0xfff, 0xfffffffffffffff7, 0x0, 0x2, 0xc, 0xa, "f943d00149293882a992b4183eb9f0483e6ac42364b12abcc210c9d4965069a640cb142f82a148c525756cbd316af3632e7a154478e7c754e742c838a79a1598", "d4502eb97864bd020dd2caf75c0322cf921eb9a7b401018e5319bde7f5e03faa861a3d39a56ddb46db67198e8e5d205c1ef6d7e57c3cb78f828d2fd72c0f83b3", "10e0310cadb1ff9f1b729a6a88b4c23f127a1093858d91023f0f5682370dfe5e", [0x3, 0xffffffffffffff00]}) sendmsg$NL80211_CMD_NEW_MPATH(r0, &(0x7f0000000900)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x28, 0x0, 0x8, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x5a}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x48081}, 0x4000) ioctl$BTRFS_IOC_BALANCE_V2(r5, 0xc4009420, &(0x7f0000000940)={0x13, 0x1, {0x3f, @struct={0x1, 0x7}, 0x0, 0xa1f7, 0x8a1, 0x4, 0x80000000, 0xff, 0x400, @struct={0x0, 0xce9a}, 0x2, 0x0, [0x1, 0x9, 0x7, 0x81, 0x3, 0xa5b]}, {0x80, @usage=0x12, 0x0, 0x0, 0x3, 0x100000001, 0x8, 0x6, 0x2, @struct={0xff, 0x5}, 0x3, 0xff, [0x7f, 0x80000000, 0x7, 0x2, 0x1, 0x2a]}, {0xffffffff00000000, @usage=0x1ff, 0x0, 0x8158, 0x7, 0x3f, 0x2400, 0x50e42c24, 0x40, @struct={0x81, 0x8000}, 0x7, 0x80000001, [0x6, 0x2c, 0x7f, 0x6, 0x10000, 0x92]}, {0x3ff, 0x0, 0x400}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r4, 0xc400941d, &(0x7f0000000d40)={r8, 0x0, 0x8, 0x1}) 23:22:32 executing program 4: r0 = syz_io_uring_complete(0x0) sendmsg$NL80211_CMD_PROBE_CLIENT(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x4, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000810}, 0x4000011) syz_io_uring_setup(0x74c5, &(0x7f0000000100)={0x0, 0x40, 0x1, 0x3, 0x3b8}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff3000/0xd000)=nil, &(0x7f0000000180), &(0x7f00000001c0)) r1 = io_uring_setup(0x29f1, &(0x7f0000000200)={0x0, 0xd51a, 0x1, 0x0, 0x1a7, 0x0, r0}) r2 = accept(r0, &(0x7f0000000280)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, &(0x7f0000000300)=0x80) sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r2, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x94, 0x0, 0x20, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x80}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x30}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x70}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xd}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x13}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xa}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x8}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x69}]}, 0x94}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r0, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0xf0, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_QOS_MAP={0xe, 0xc7, {[{0x80, 0x7}], "265fb4c1bb5b6341"}}, @NL80211_ATTR_QOS_MAP={0x24, 0xc7, {[{0x6, 0x2}, {0x6, 0x6}, {0x3f, 0x4}, {0x18, 0x6}, {0x3, 0x7}, {0xff, 0x6}, {0x9, 0x7}, {0xfb, 0x5}, {0x1, 0x2}, {0x7f, 0x1}, {0x0, 0x2}, {0x8, 0x2}], "560e948c13f2cfcd"}}, @NL80211_ATTR_QOS_MAP={0xc, 0xc7, {[], "99b4cff6f0509b13"}}, @NL80211_ATTR_QOS_MAP={0x1e, 0xc7, {[{0x7f, 0x4}, {0x8, 0x4}, {0x4, 0x2}, {0x3f, 0x3}, {0x9, 0x3}, {0x2, 0x7}, {0x81}, {0xe3, 0x1}, {0x7f, 0x1}], "dc6b0b086bca56b0"}}, @NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0x4, 0x4}, {0x1f, 0x7}, {0x4, 0x3}], "d078a81d50560de8"}}, @NL80211_ATTR_QOS_MAP={0x12, 0xc7, {[{0xfa, 0x2}, {0x7, 0x7}, {0x1, 0x5}], "1d955916eb665e6c"}}, @NL80211_ATTR_QOS_MAP={0x2c, 0xc7, {[{0x4, 0x2}, {0x1, 0x2}, {0x0, 0x5}, {0x7, 0x3}, {0x7, 0x7}, {0x4, 0x2}, {0x9}, {0x40, 0x7}, {0x81, 0x4}, {0x30, 0x7}, {0x5a}, {0x9, 0x7}, {0x8, 0x7}, {0x1, 0x2}, {0x8, 0x80}, {0x0, 0x7}], "07773cb537db819f"}}, @NL80211_ATTR_QOS_MAP={0x1e, 0xc7, {[{0x3, 0x2}, {0x0, 0x7}, {0xfa, 0x5}, {0x9}, {0x2, 0x3}, {0x4, 0x3}, {0xde, 0x1}, {0x5, 0x3}, {0x7, 0x3}], "b6177770db1e79de"}}]}, 0xf0}}, 0x4000044) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r2) sendmsg$NL80211_CMD_SET_CHANNEL(r3, &(0x7f00000007c0)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x70, r4, 0x10, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3f, 0x5e}}}}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x211}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x171b}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]}, 0x70}, 0x1, 0x0, 0x0, 0x48090}, 0x8095) sendmsg$TIPC_CMD_GET_LINKS(r0, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x24, 0x0, 0x4, 0x70bd2a, 0x25dfdbfb, {{}, {}, {0x8, 0x11, 0x2bd}}, ["", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000845}, 0x4000) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x1000000, 0x10, r0, 0x0) r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1000000, 0x13, r1, 0x10000000) r7 = syz_open_pts(r0, 0x4200c0) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000900)={0xffffffffffffffff, 0x4, 0x100, 0x7}) r9 = perf_event_open(&(0x7f0000000940)={0x2, 0x80, 0x20, 0x1, 0x3f, 0xff, 0x0, 0x8, 0x20000, 0x17, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x5, 0x8a}, 0x40448, 0xe91, 0xddd, 0x6, 0x2, 0x6, 0x0, 0x0, 0x1f, 0x0, 0x5}, 0xffffffffffffffff, 0x7, r0, 0x3) syz_io_uring_submit(r5, r6, &(0x7f0000000a00)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0xe9, &(0x7f00000009c0)=[r7, r1, r2, r1, r8, r0, r9], 0x7}, 0xff) r10 = creat(&(0x7f0000000a40)='./file0\x00', 0xc) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r10, &(0x7f0000000b80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x80, 0x0, 0x10, 0x70bd28, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}, @MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}]}, 0x80}, 0x1, 0x0, 0x0, 0x4016}, 0x20000045) r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c00), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(r3, &(0x7f0000000d40)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x64, r11, 0x392e672893fc9bb6, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x1000, 0x58}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x64}, 0x1, 0x0, 0x0, 0x67c8339291c84257}, 0x4040) 23:22:32 executing program 6: r0 = syz_open_dev$sg(&(0x7f0000000000), 0x1, 0x4000) r1 = syz_open_pts(0xffffffffffffffff, 0x121001) ioctl$BTRFS_IOC_RM_DEV(r0, 0x5000940b, &(0x7f0000000040)={{r1}, "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"}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000001040)={{0x1, 0x1, 0x18, r0, {0x89}}, './file0\x00'}) ioctl$KDFONTOP_SET_DEF(r2, 0x4b72, &(0x7f0000001480)={0x2, 0x0, 0xa, 0x5, 0xf7, &(0x7f0000001080)="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"}) ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f00000014c0)={{0x1, 0x1, 0x18, r0, {0x7fffffff}}, './file0\x00'}) ioctl$KDGKBSENT(r3, 0x4b48, &(0x7f0000001500)={0x8, "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"}) openat(r2, &(0x7f0000001740)='./file0\x00', 0x121000, 0x84) pipe(&(0x7f0000001780)={0xffffffffffffffff, 0xffffffffffffffff}) close_range(r2, r4, 0x0) r5 = open$dir(&(0x7f00000017c0)='./file0\x00', 0xc0000, 0x1a3) fchmodat(r5, &(0x7f0000001800)='./file0\x00', 0x0) recvmsg$unix(r4, &(0x7f0000001f00)={&(0x7f00000018c0)=@abs, 0x6e, &(0x7f0000001d00)=[{&(0x7f0000001940)=""/105, 0x69}, {&(0x7f00000019c0)=""/24, 0x18}, {&(0x7f0000001a00)=""/10, 0xa}, {&(0x7f0000001a40)=""/50, 0x32}, {&(0x7f0000001a80)=""/125, 0x7d}, {&(0x7f0000001b00)=""/213, 0xd5}, {&(0x7f0000001c00)=""/229, 0xe5}], 0x7, &(0x7f0000001d80)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x180}, 0x40010300) fchownat(r3, &(0x7f0000001840)='./file0/file0\x00', r8, 0xee01, 0x100) r9 = openat(r6, &(0x7f0000001f40)='./file0\x00', 0x2c2200, 0x4) write$binfmt_aout(r9, &(0x7f0000001f80)={{0x108, 0x8, 0xfd, 0x12f, 0x117, 0x532e, 0xae, 0x9}, "", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x920) r10 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TIOCMIWAIT(r10, 0x545c, 0x0) ioctl$KDGETKEYCODE(r7, 0x4b4c, &(0x7f00000028c0)={0x49c3e3a7, 0x6}) ioctl$PIO_FONTRESET(0xffffffffffffffff, 0x4b6d, 0x0) 23:22:32 executing program 7: ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000000000)={{0x0, 0x9, 0x401, 0x7, 0x1938, 0x800, 0x1b2, 0x9, 0x7, 0x9, 0xfffffffe, 0x7, 0x1, 0x401, 0x7fff}}) ioctl$TUNSETNOCSUM(0xffffffffffffffff, 0x400454c8, 0x1) r0 = creat(&(0x7f0000001000)='./file0\x00', 0x2) ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000001040)) ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000001080)) ioctl$AUTOFS_IOC_READY(r0, 0x9360, 0x5) r1 = syz_open_dev$rtc(&(0x7f00000010c0), 0x1, 0x424040) ioctl$AUTOFS_IOC_PROTOVER(r1, 0x80049363, &(0x7f0000001100)) pipe2(&(0x7f0000001140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$KDFONTOP_GET(r2, 0x4b72, &(0x7f0000001580)={0x1, 0x0, 0x1f, 0x4, 0x16e, &(0x7f0000001180)}) r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000015c0), 0x20840, 0x0) sendfile(r1, r4, &(0x7f0000001600)=0x1, 0x1) r5 = memfd_secret(0x80000) ioctl$RTC_WKALM_SET(r5, 0x4028700f, &(0x7f0000001640)={0x0, 0x0, {0x26, 0x9, 0x16, 0x14, 0x8, 0xff000000, 0x1, 0x6d, 0xffffffffffffffff}}) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000001680)) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x11, r3, 0xf2041000) ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r4, 0x8983, &(0x7f00000016c0)) pwritev2(r3, &(0x7f0000001800)=[{&(0x7f0000001700)="b00044e6febcd69ea48ee12fa5dfa6161dcdc3eb04fc1d4d746d8758db22fca30a1b07f8bd1966a5a6fa71d981fa77e36347861a364a6e0214fe4436d6455bb2830004ea776399db139c5497c5cee0b7c194d495646c2db56121f1c602342d4196a2d7446108db7f41497a3e74b5feb9283f2bd5241d7251034944d7e3246e3f6e4013", 0x83}, {&(0x7f00000017c0)="2cf4242df8cdc18cf0a3c44c", 0xc}], 0x2, 0xc9, 0x4, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r6, 0xf50f, 0x0) [ 68.097835] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 68.099708] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 68.101228] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 68.102564] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 68.103609] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 68.103691] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 68.105382] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 68.106812] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 68.110261] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 68.110333] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 68.116152] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 68.117272] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 68.129455] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 68.135507] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 68.137783] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 68.139269] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 68.142000] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 68.145606] Bluetooth: hci1: HCI_REQ-0x0c1a [ 68.147201] Bluetooth: hci2: HCI_REQ-0x0c1a [ 68.156395] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 68.157839] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 68.162593] Bluetooth: hci0: HCI_REQ-0x0c1a [ 68.179090] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 68.184225] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 68.191585] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 68.193332] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 68.193660] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 68.196878] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 68.198165] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 68.201934] Bluetooth: hci6: HCI_REQ-0x0c1a [ 68.212984] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 68.214129] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 68.217545] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 68.218535] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 68.226014] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 68.230547] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 68.231628] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 68.232964] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 68.239904] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 68.241469] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 68.242550] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 68.252527] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 68.253623] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 68.258707] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 68.273004] Bluetooth: hci5: HCI_REQ-0x0c1a [ 68.276556] Bluetooth: hci4: HCI_REQ-0x0c1a [ 68.306051] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 68.310647] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 68.316794] Bluetooth: hci7: HCI_REQ-0x0c1a [ 70.160070] Bluetooth: hci1: command 0x0409 tx timeout [ 70.160135] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 70.160775] Bluetooth: hci2: command 0x0409 tx timeout [ 70.223799] Bluetooth: hci6: command 0x0409 tx timeout [ 70.223894] Bluetooth: hci0: command 0x0409 tx timeout [ 70.288854] Bluetooth: hci4: command 0x0409 tx timeout [ 70.352075] Bluetooth: hci7: command 0x0409 tx timeout [ 70.352811] Bluetooth: hci5: command 0x0409 tx timeout [ 72.208221] Bluetooth: hci2: command 0x041b tx timeout [ 72.208313] Bluetooth: hci1: command 0x041b tx timeout [ 72.271770] Bluetooth: hci0: command 0x041b tx timeout [ 72.272777] Bluetooth: hci6: command 0x041b tx timeout [ 72.335778] Bluetooth: hci4: command 0x041b tx timeout [ 72.399766] Bluetooth: hci7: command 0x041b tx timeout [ 72.400821] Bluetooth: hci5: command 0x041b tx timeout [ 74.255830] Bluetooth: hci1: command 0x040f tx timeout [ 74.256788] Bluetooth: hci2: command 0x040f tx timeout [ 74.319829] Bluetooth: hci6: command 0x040f tx timeout [ 74.319865] Bluetooth: hci0: command 0x040f tx timeout [ 74.383891] Bluetooth: hci4: command 0x040f tx timeout [ 74.447834] Bluetooth: hci5: command 0x040f tx timeout [ 74.448284] Bluetooth: hci7: command 0x040f tx timeout [ 75.087834] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 76.303940] Bluetooth: hci2: command 0x0419 tx timeout [ 76.304017] Bluetooth: hci1: command 0x0419 tx timeout [ 76.378602] Bluetooth: hci6: command 0x0419 tx timeout [ 76.378616] Bluetooth: hci0: command 0x0419 tx timeout [ 76.431782] Bluetooth: hci4: command 0x0419 tx timeout [ 76.496808] Bluetooth: hci7: command 0x0419 tx timeout [ 76.496820] Bluetooth: hci5: command 0x0419 tx timeout [ 77.765711] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.767069] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.767970] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.770015] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.771256] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 77.772037] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.775968] Bluetooth: hci3: HCI_REQ-0x0c1a [ 79.824823] Bluetooth: hci3: command 0x0409 tx timeout [ 81.872802] Bluetooth: hci3: command 0x041b tx timeout [ 83.920854] Bluetooth: hci3: command 0x040f tx timeout [ 85.968910] Bluetooth: hci3: command 0x0419 tx timeout [ 119.919889] audit: type=1400 audit(1664839405.811:7): avc: denied { create } for pid=3598 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 23:23:26 executing program 2: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)=ANY=[@ANYBLOB="24000000bf65925642743a9a0b330ecfb0bf576eff19d9ad230ab1993e44bc83920e5e83fe33e06b", @ANYRES16, @ANYBLOB="050000008f000000000006000000080003005611e931046ebde0d6f29431333ef3b361a35ab01e349f3376e59b781f838a50d62158a528c8b87a64b4bd5f580c156bee0e8cd5c5fd2dc21b05ab1f7d13d99f85af6992f7c037c3ff6446452d751cee8d6c75bd4b14968db1ef9acadd23396736b4d6953e9dab06e1fb96422881c65c1dc416e48df7a5315f17410b63040bb51e34dab098a40c815a5a957222bb95fcc19a3beb72f9b7787976c8ef03d21e6ae98e7d8cb47739db9ffef4a2e2527ff5928f3f90b61e557e6c9bb5f141011906e58d28ec2b4e3a4613f56a32237afd8c2f8705854ae2965573b1861d8a000000000000", @ANYRES32, @ANYBLOB], 0x24}}, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/locks\x00', 0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) name_to_handle_at(0xffffffffffffffff, &(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x3, 0x1, 0xfff}, 0x4, 0x4}}, &(0x7f0000000740), 0x0) r0 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x3, 0xa6, 0xff, 0x3, 0x0, 0x0, 0x400, 0x9, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x400, 0x2, @perf_bp={&(0x7f0000000000), 0x2}, 0x6, 0x6, 0x245a, 0x1, 0x80000000, 0x3, 0xfffe, 0x0, 0x0, 0x0, 0x100000001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) fcntl$setlease(r0, 0x400, 0x0) [ 120.333527] audit: type=1400 audit(1664839406.224:8): avc: denied { open } for pid=3628 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.337224] audit: type=1400 audit(1664839406.226:9): avc: denied { kernel } for pid=3628 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 120.343655] ------------[ cut here ]------------ [ 120.343676] [ 120.343679] ====================================================== [ 120.343683] WARNING: possible circular locking dependency detected [ 120.343687] 6.0.0-rc7-next-20220930 #1 Not tainted [ 120.343693] ------------------------------------------------------ [ 120.343697] syz-executor.2/3631 is trying to acquire lock: [ 120.343703] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 120.343747] [ 120.343747] but task is already holding lock: [ 120.343750] ffff8880089f6820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 120.343777] [ 120.343777] which lock already depends on the new lock. [ 120.343777] [ 120.343780] [ 120.343780] the existing dependency chain (in reverse order) is: [ 120.343784] [ 120.343784] -> #3 (&ctx->lock){....}-{2:2}: [ 120.343797] _raw_spin_lock+0x2a/0x40 [ 120.343809] __perf_event_task_sched_out+0x53b/0x18d0 [ 120.343820] __schedule+0xedd/0x2470 [ 120.343834] schedule+0xda/0x1b0 [ 120.343847] futex_wait_queue+0xf5/0x1e0 [ 120.343860] futex_wait+0x28e/0x690 [ 120.343870] do_futex+0x2ff/0x380 [ 120.343879] __x64_sys_futex+0x1c6/0x4d0 [ 120.343889] do_syscall_64+0x3b/0x90 [ 120.343907] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.343920] [ 120.343920] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 120.343933] _raw_spin_lock_nested+0x30/0x40 [ 120.343944] raw_spin_rq_lock_nested+0x1e/0x30 [ 120.343957] task_fork_fair+0x63/0x4d0 [ 120.343974] sched_cgroup_fork+0x3d0/0x540 [ 120.343988] copy_process+0x4183/0x6e20 [ 120.343999] kernel_clone+0xe7/0x890 [ 120.344008] user_mode_thread+0xad/0xf0 [ 120.344018] rest_init+0x24/0x250 [ 120.344030] arch_call_rest_init+0xf/0x14 [ 120.344048] start_kernel+0x4c6/0x4eb [ 120.344063] secondary_startup_64_no_verify+0xe0/0xeb [ 120.344078] [ 120.344078] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 120.344092] _raw_spin_lock_irqsave+0x39/0x60 [ 120.344102] try_to_wake_up+0xab/0x1930 [ 120.344115] up+0x75/0xb0 [ 120.344129] __up_console_sem+0x6e/0x80 [ 120.344145] console_unlock+0x46a/0x590 [ 120.344161] vt_ioctl+0x2822/0x2ca0 [ 120.344173] tty_ioctl+0x785/0x16b0 [ 120.344184] __x64_sys_ioctl+0x19a/0x210 [ 120.344198] do_syscall_64+0x3b/0x90 [ 120.344214] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.344227] [ 120.344227] -> #0 ((console_sem).lock){....}-{2:2}: [ 120.344240] __lock_acquire+0x2a02/0x5e70 [ 120.344257] lock_acquire+0x1a2/0x530 [ 120.344273] _raw_spin_lock_irqsave+0x39/0x60 [ 120.344283] down_trylock+0xe/0x70 [ 120.344298] __down_trylock_console_sem+0x3b/0xd0 [ 120.344314] vprintk_emit+0x16b/0x560 [ 120.344330] vprintk+0x84/0xa0 [ 120.344345] _printk+0xba/0xf1 [ 120.344357] report_bug.cold+0x72/0xab [ 120.344373] handle_bug+0x3c/0x70 [ 120.344389] exc_invalid_op+0x14/0x50 [ 120.344406] asm_exc_invalid_op+0x16/0x20 [ 120.344418] group_sched_out.part.0+0x2c7/0x460 [ 120.344436] ctx_sched_out+0x8f1/0xc10 [ 120.344452] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.344463] __schedule+0xedd/0x2470 [ 120.344476] schedule+0xda/0x1b0 [ 120.344489] futex_wait_queue+0xf5/0x1e0 [ 120.344500] futex_wait+0x28e/0x690 [ 120.344510] do_futex+0x2ff/0x380 [ 120.344519] __x64_sys_futex+0x1c6/0x4d0 [ 120.344529] do_syscall_64+0x3b/0x90 [ 120.344545] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.344558] [ 120.344558] other info that might help us debug this: [ 120.344558] [ 120.344560] Chain exists of: [ 120.344560] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 120.344560] [ 120.344575] Possible unsafe locking scenario: [ 120.344575] [ 120.344578] CPU0 CPU1 [ 120.344580] ---- ---- [ 120.344583] lock(&ctx->lock); [ 120.344588] lock(&rq->__lock); [ 120.344594] lock(&ctx->lock); [ 120.344600] lock((console_sem).lock); [ 120.344606] [ 120.344606] *** DEADLOCK *** [ 120.344606] [ 120.344608] 2 locks held by syz-executor.2/3631: [ 120.344615] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 120.344644] #1: ffff8880089f6820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 120.344678] [ 120.344678] stack backtrace: [ 120.344681] CPU: 0 PID: 3631 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1 [ 120.344693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 120.344701] Call Trace: [ 120.344705] [ 120.344708] dump_stack_lvl+0x8b/0xb3 [ 120.344727] check_noncircular+0x263/0x2e0 [ 120.344743] ? format_decode+0x26c/0xb50 [ 120.344759] ? print_circular_bug+0x450/0x450 [ 120.344776] ? simple_strtoul+0x30/0x30 [ 120.344790] ? __lockdep_reset_lock+0x180/0x180 [ 120.344807] ? format_decode+0x26c/0xb50 [ 120.344824] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 120.344841] __lock_acquire+0x2a02/0x5e70 [ 120.344863] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 120.344885] lock_acquire+0x1a2/0x530 [ 120.344901] ? down_trylock+0xe/0x70 [ 120.344918] ? lock_release+0x750/0x750 [ 120.344935] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 120.344956] ? vprintk+0x84/0xa0 [ 120.344973] _raw_spin_lock_irqsave+0x39/0x60 [ 120.344984] ? down_trylock+0xe/0x70 [ 120.345000] down_trylock+0xe/0x70 [ 120.345016] ? vprintk+0x84/0xa0 [ 120.345032] __down_trylock_console_sem+0x3b/0xd0 [ 120.345049] vprintk_emit+0x16b/0x560 [ 120.345066] ? lock_downgrade+0x6d0/0x6d0 [ 120.345084] vprintk+0x84/0xa0 [ 120.345101] _printk+0xba/0xf1 [ 120.345113] ? record_print_text.cold+0x16/0x16 [ 120.345126] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 120.345141] ? lock_downgrade+0x6d0/0x6d0 [ 120.345158] ? report_bug.cold+0x66/0xab [ 120.345176] ? group_sched_out.part.0+0x2c7/0x460 [ 120.345194] report_bug.cold+0x72/0xab [ 120.345213] handle_bug+0x3c/0x70 [ 120.345230] exc_invalid_op+0x14/0x50 [ 120.345248] asm_exc_invalid_op+0x16/0x20 [ 120.345261] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 120.345281] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 120.345292] RSP: 0018:ffff88803f0b78f8 EFLAGS: 00010006 [ 120.345302] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 120.345309] RDX: ffff88801a749ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 120.345317] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 120.345324] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880089f6800 [ 120.345331] R13: ffff88806ce3d2c0 R14: ffffffff8547c960 R15: 0000000000000002 [ 120.345342] ? group_sched_out.part.0+0x2c7/0x460 [ 120.345362] ? group_sched_out.part.0+0x2c7/0x460 [ 120.345381] ctx_sched_out+0x8f1/0xc10 [ 120.345401] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.345415] ? lock_is_held_type+0xd7/0x130 [ 120.345429] ? __perf_cgroup_move+0x160/0x160 [ 120.345439] ? set_next_entity+0x304/0x550 [ 120.345459] ? lock_is_held_type+0xd7/0x130 [ 120.345473] __schedule+0xedd/0x2470 [ 120.345489] ? io_schedule_timeout+0x150/0x150 [ 120.345505] ? futex_wait_setup+0x166/0x230 [ 120.345519] schedule+0xda/0x1b0 [ 120.345534] futex_wait_queue+0xf5/0x1e0 [ 120.345546] futex_wait+0x28e/0x690 [ 120.345559] ? futex_wait_setup+0x230/0x230 [ 120.345572] ? wake_up_q+0x8b/0xf0 [ 120.345585] ? do_raw_spin_unlock+0x4f/0x220 [ 120.345604] ? futex_wake+0x158/0x490 [ 120.345619] ? lock_downgrade+0x6d0/0x6d0 [ 120.345635] ? lock_is_held_type+0xd7/0x130 [ 120.345650] do_futex+0x2ff/0x380 [ 120.345661] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 120.345673] ? ktime_get+0x153/0x1f0 [ 120.345690] __x64_sys_futex+0x1c6/0x4d0 [ 120.345702] ? hrtimer_interrupt+0x5b0/0x770 [ 120.345716] ? __x64_sys_futex_time32+0x480/0x480 [ 120.345728] ? syscall_enter_from_user_mode+0x1d/0x50 [ 120.345742] ? syscall_enter_from_user_mode+0x1d/0x50 [ 120.345758] do_syscall_64+0x3b/0x90 [ 120.345775] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.345788] RIP: 0033:0x7f3edd66db19 [ 120.345796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.345807] RSP: 002b:00007f3edabe3218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.345818] RAX: ffffffffffffffda RBX: 00007f3edd780f68 RCX: 00007f3edd66db19 [ 120.345825] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3edd780f68 [ 120.345832] RBP: 00007f3edd780f60 R08: 0000000000000000 R09: 0000000000000000 [ 120.345839] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3edd780f6c [ 120.345846] R13: 00007ffe4cbac5ef R14: 00007f3edabe3300 R15: 0000000000022000 [ 120.345859] [ 120.408202] WARNING: CPU: 0 PID: 3631 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 120.408872] Modules linked in: [ 120.409114] CPU: 0 PID: 3631 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1 [ 120.409707] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 120.410554] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 120.410969] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 120.412301] RSP: 0018:ffff88803f0b78f8 EFLAGS: 00010006 [ 120.412710] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 120.413244] RDX: ffff88801a749ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 120.413781] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 120.414319] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880089f6800 [ 120.414847] R13: ffff88806ce3d2c0 R14: ffffffff8547c960 R15: 0000000000000002 [ 120.415385] FS: 00007f3edabe3700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 120.415984] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.416420] CR2: 00007f26649bd690 CR3: 000000003dca6000 CR4: 0000000000350ef0 [ 120.416973] Call Trace: [ 120.417170] [ 120.417343] ctx_sched_out+0x8f1/0xc10 [ 120.417648] __perf_event_task_sched_out+0x6d0/0x18d0 [ 120.418034] ? lock_is_held_type+0xd7/0x130 [ 120.418358] ? __perf_cgroup_move+0x160/0x160 [ 120.418699] ? set_next_entity+0x304/0x550 [ 120.419031] ? lock_is_held_type+0xd7/0x130 [ 120.419365] __schedule+0xedd/0x2470 [ 120.419651] ? io_schedule_timeout+0x150/0x150 [ 120.420011] ? futex_wait_setup+0x166/0x230 [ 120.420344] schedule+0xda/0x1b0 [ 120.420611] futex_wait_queue+0xf5/0x1e0 [ 120.420933] futex_wait+0x28e/0x690 [ 120.421217] ? futex_wait_setup+0x230/0x230 [ 120.421548] ? wake_up_q+0x8b/0xf0 [ 120.421819] ? do_raw_spin_unlock+0x4f/0x220 [ 120.422169] ? futex_wake+0x158/0x490 [ 120.422470] ? lock_downgrade+0x6d0/0x6d0 [ 120.422789] ? lock_is_held_type+0xd7/0x130 [ 120.423116] do_futex+0x2ff/0x380 [ 120.423382] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 120.423816] ? ktime_get+0x153/0x1f0 [ 120.424105] __x64_sys_futex+0x1c6/0x4d0 [ 120.424412] ? hrtimer_interrupt+0x5b0/0x770 [ 120.424768] ? __x64_sys_futex_time32+0x480/0x480 [ 120.425131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 120.425525] ? syscall_enter_from_user_mode+0x1d/0x50 [ 120.425919] do_syscall_64+0x3b/0x90 [ 120.426210] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 120.426599] RIP: 0033:0x7f3edd66db19 [ 120.426882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 120.428235] RSP: 002b:00007f3edabe3218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.428819] RAX: ffffffffffffffda RBX: 00007f3edd780f68 RCX: 00007f3edd66db19 [ 120.429353] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f3edd780f68 [ 120.429886] RBP: 00007f3edd780f60 R08: 0000000000000000 R09: 0000000000000000 [ 120.430421] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f3edd780f6c [ 120.430957] R13: 00007ffe4cbac5ef R14: 00007f3edabe3300 R15: 0000000000022000 [ 120.431495] [ 120.431677] irq event stamp: 574 [ 120.431932] hardirqs last enabled at (573): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 120.432647] hardirqs last disabled at (574): [] __schedule+0x1225/0x2470 [ 120.433281] softirqs last enabled at (468): [] __irq_exit_rcu+0x11b/0x180 [ 120.433916] softirqs last disabled at (365): [] __irq_exit_rcu+0x11b/0x180 [ 120.434552] ---[ end trace 0000000000000000 ]--- 23:23:26 executing program 2: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="646e6f3d3bfc6f53f75acca85a1d843ac6d42aed7636dbe211a81946f9d496af456cb4f757fa41ab822ac40c9f3792787fce6cd926ae38a0bc9317b68d09e4426456e4190da37646b545123e2eb4410b711fb2cff619ddf6faa2221abcbf6a4f59d8fda7fd509734cd5550a50383586e1c5f11dd2f0be5ac9c16bfeb8de641ebab6f48cbb50d92", @ANYRESHEX=r1, @ANYBLOB="2c76657273696f06000000000000002c005e934128f6555aaeac4056cd83d63283a7c5fbf09d8932dab7f61ca808e4fc6a9b7f67c358108dbd37897e45ba1c08dfc16fe8e1295039854c42b5b94661bef7ce7ac73a3af2cb38632bb6d0523b6ca05bcccc9c5ae00384a66fa4f1e64c87a6d0b8925a4da24d5a167306b3dda2a658a080dbe643fc12f6c677f32b62b8c8c6004161412c763872"]) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) stat(0x0, &(0x7f0000000280)) [ 120.965853] 9pnet_fd: Insufficient options for proto=fd [ 120.985894] 9pnet_fd: Insufficient options for proto=fd 23:23:26 executing program 2: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="b72ae8fb5a4c316e545238e0ab2072648cb4112885ba4fbb2708b78f54536ca6a32a2225055b327cc4c2bd11ea44f619596882f5ff586443d91b21882e117fa45cc66fefc714c91b092c18"]) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000080)={@mcast2, @private0, @rand_addr=' \x01\x00', 0x0, 0x9}) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000300)={r0, 0xb78a, 0x100000001, 0x2}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) socket$unix(0x1, 0x5, 0x0) openat(0xffffffffffffffff, 0x0, 0x400000, 0x8) r4 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) ioctl$EXT4_IOC_GROUP_EXTEND(r4, 0xc020662a, &(0x7f0000000140)) 23:23:27 executing program 2: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="b72ae8fb5a4c316e545238e0ab2072648cb4112885ba4fbb2708b78f54536ca6a32a2225055b327cc4c2bd11ea44f619596882f5ff586443d91b21882e117fa45cc66fefc714c91b092c18"]) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000080)={@mcast2, @private0, @rand_addr=' \x01\x00', 0x0, 0x9}) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000300)={r0, 0xb78a, 0x100000001, 0x2}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) socket$unix(0x1, 0x5, 0x0) openat(0xffffffffffffffff, 0x0, 0x400000, 0x8) r4 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) ioctl$EXT4_IOC_GROUP_EXTEND(r4, 0xc020662a, &(0x7f0000000140)) 23:23:27 executing program 2: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="b72ae8fb5a4c316e545238e0ab2072648cb4112885ba4fbb2708b78f54536ca6a32a2225055b327cc4c2bd11ea44f619596882f5ff586443d91b21882e117fa45cc66fefc714c91b092c18"]) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000080)={@mcast2, @private0, @rand_addr=' \x01\x00', 0x0, 0x9}) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000300)={r0, 0xb78a, 0x100000001, 0x2}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) socket$unix(0x1, 0x5, 0x0) openat(0xffffffffffffffff, 0x0, 0x400000, 0x8) r4 = creat(&(0x7f0000000080)='./file0\x00', 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4) ioctl$EXT4_IOC_GROUP_EXTEND(r4, 0xc020662a, &(0x7f0000000140)) 23:23:27 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d20, 0x0, @perf_config_ext={0x8000000000000000}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) openat(r1, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) pwritev(r1, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) ioctl$int_in(r2, 0x5421, &(0x7f0000000080)=0x7) fadvise64(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000000080)={0x3, 0x80, 0x0, 0x0, 0x81, 0x2, 0x0, 0x0, 0x100a1, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x10000}, 0x8, 0x4, 0xffff, 0x4, 0x40, 0x0, 0x8, 0x0, 0x9, 0x0, 0x7}) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendfile(0xffffffffffffffff, r1, 0x0, 0x80000001) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c) syz_io_uring_setup(0x28e4, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000880), &(0x7f00000008c0)) 23:23:27 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d20, 0x0, @perf_config_ext={0x8000000000000000}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) openat(r1, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) pwritev(r1, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) ioctl$int_in(r2, 0x5421, &(0x7f0000000080)=0x7) fadvise64(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000000080)={0x3, 0x80, 0x0, 0x0, 0x81, 0x2, 0x0, 0x0, 0x100a1, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x10000}, 0x8, 0x4, 0xffff, 0x4, 0x40, 0x0, 0x8, 0x0, 0x9, 0x0, 0x7}) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendfile(0xffffffffffffffff, r1, 0x0, 0x80000001) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c) syz_io_uring_setup(0x28e4, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000880), &(0x7f00000008c0)) 23:23:27 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7d20, 0x0, @perf_config_ext={0x8000000000000000}, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r0 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) openat(r1, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) pwritev(r1, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0) r2 = socket$inet6(0xa, 0x1, 0x0) ioctl$int_in(r2, 0x5421, &(0x7f0000000080)=0x7) fadvise64(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, &(0x7f0000000080)={0x3, 0x80, 0x0, 0x0, 0x81, 0x2, 0x0, 0x0, 0x100a1, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_config_ext={0x10000}, 0x8, 0x4, 0xffff, 0x4, 0x40, 0x0, 0x8, 0x0, 0x9, 0x0, 0x7}) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendfile(0xffffffffffffffff, r1, 0x0, 0x80000001) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @empty}, 0x1c) syz_io_uring_setup(0x28e4, 0x0, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000880), &(0x7f00000008c0)) [ 122.985758] audit: type=1400 audit(1664839408.877:10): avc: denied { map } for pid=3895 comm="syz-executor.7" path="pipe:[13817]" dev="pipefs" ino=13817 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1 VM DIAGNOSIS: 23:23:26 Registers: info registers vcpu 0 RAX=0000000000000067 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88803f0b7340 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000067 R11=0000000000000001 R12=0000000000000067 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3edabe3700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f26649bd690 CR3=000000003dca6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f3edd7547c0 00007f3edd7547c8 YMM02=0000000000000000 0000000000000000 00007f3edd7547e0 00007f3edd7547c0 YMM03=0000000000000000 0000000000000000 00007f3edd7547c8 00007f3edd7547c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88806ce3f080 RCX=0000000000000000 RDX=ffff88801a74b580 RSI=ffffffff813bbaa7 RDI=0000000000000005 RBP=0000000000000000 RSP=ffff88803f127958 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000003 R13=ffffed100d9c7e11 R14=ffff88806ce3f088 R15=0000000000000001 RIP=ffffffff813bbaa9 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555556699400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3edd775d5c CR3=000000003dca6000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f3edd7547c0 00007f3edd7547c8 YMM02=0000000000000000 0000000000000000 00007f3edd7547e0 00007f3edd7547c0 YMM03=0000000000000000 0000000000000000 00007f3edd7547c8 00007f3edd7547c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000