syzkaller login: [ 36.082742] sshd (247) used greatest stack depth: 24760 bytes left Warning: Permanently added '[localhost]:60442' (ECDSA) to the list of known hosts. 2022/09/27 13:50:30 fuzzer started 2022/09/27 13:50:31 dialing manager at localhost:38881 [ 38.366895] cgroup: Unknown subsys name 'net' [ 38.466435] cgroup: Unknown subsys name 'rlimit' 2022/09/27 13:50:44 syscalls: 2215 2022/09/27 13:50:44 code coverage: enabled 2022/09/27 13:50:44 comparison tracing: enabled 2022/09/27 13:50:44 extra coverage: enabled 2022/09/27 13:50:44 setuid sandbox: enabled 2022/09/27 13:50:44 namespace sandbox: enabled 2022/09/27 13:50:44 Android sandbox: enabled 2022/09/27 13:50:44 fault injection: enabled 2022/09/27 13:50:44 leak checking: enabled 2022/09/27 13:50:44 net packet injection: enabled 2022/09/27 13:50:44 net device setup: enabled 2022/09/27 13:50:44 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/27 13:50:44 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/27 13:50:44 USB emulation: enabled 2022/09/27 13:50:44 hci packet injection: enabled 2022/09/27 13:50:44 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923) 2022/09/27 13:50:44 802.15.4 emulation: enabled 2022/09/27 13:50:44 fetching corpus: 50, signal 22118/23946 (executing program) 2022/09/27 13:50:44 fetching corpus: 100, signal 34028/37523 (executing program) 2022/09/27 13:50:44 fetching corpus: 150, signal 44438/49428 (executing program) 2022/09/27 13:50:44 fetching corpus: 200, signal 51328/57797 (executing program) 2022/09/27 13:50:44 fetching corpus: 250, signal 60561/68354 (executing program) 2022/09/27 13:50:44 fetching corpus: 300, signal 65200/74346 (executing program) 2022/09/27 13:50:44 fetching corpus: 350, signal 73292/83579 (executing program) 2022/09/27 13:50:44 fetching corpus: 400, signal 75382/87032 (executing program) 2022/09/27 13:50:44 fetching corpus: 450, signal 80001/92818 (executing program) 2022/09/27 13:50:45 fetching corpus: 500, signal 82152/96228 (executing program) 2022/09/27 13:50:45 fetching corpus: 550, signal 85398/100600 (executing program) 2022/09/27 13:50:45 fetching corpus: 600, signal 86557/103029 (executing program) 2022/09/27 13:50:45 fetching corpus: 650, signal 88401/106100 (executing program) 2022/09/27 13:50:45 fetching corpus: 700, signal 90045/108915 (executing program) 2022/09/27 13:50:45 fetching corpus: 750, signal 92457/112415 (executing program) 2022/09/27 13:50:45 fetching corpus: 800, signal 94516/115597 (executing program) 2022/09/27 13:50:45 fetching corpus: 850, signal 97041/119115 (executing program) 2022/09/27 13:50:45 fetching corpus: 900, signal 98314/121523 (executing program) 2022/09/27 13:50:45 fetching corpus: 950, signal 99774/124117 (executing program) 2022/09/27 13:50:46 fetching corpus: 1000, signal 101628/126989 (executing program) 2022/09/27 13:50:46 fetching corpus: 1050, signal 103776/130084 (executing program) 2022/09/27 13:50:46 fetching corpus: 1100, signal 107354/134384 (executing program) 2022/09/27 13:50:46 fetching corpus: 1150, signal 109103/137036 (executing program) 2022/09/27 13:50:46 fetching corpus: 1200, signal 110856/139763 (executing program) 2022/09/27 13:50:46 fetching corpus: 1250, signal 112547/142424 (executing program) 2022/09/27 13:50:46 fetching corpus: 1300, signal 114551/145157 (executing program) 2022/09/27 13:50:46 fetching corpus: 1350, signal 116367/147807 (executing program) 2022/09/27 13:50:46 fetching corpus: 1400, signal 118558/150757 (executing program) 2022/09/27 13:50:47 fetching corpus: 1450, signal 121117/153916 (executing program) 2022/09/27 13:50:47 fetching corpus: 1500, signal 122297/155990 (executing program) 2022/09/27 13:50:47 fetching corpus: 1550, signal 123091/157741 (executing program) 2022/09/27 13:50:47 fetching corpus: 1600, signal 124180/159709 (executing program) 2022/09/27 13:50:47 fetching corpus: 1650, signal 125664/161914 (executing program) 2022/09/27 13:50:47 fetching corpus: 1700, signal 126804/163897 (executing program) 2022/09/27 13:50:47 fetching corpus: 1750, signal 127757/165720 (executing program) 2022/09/27 13:50:47 fetching corpus: 1800, signal 129634/168193 (executing program) 2022/09/27 13:50:48 fetching corpus: 1850, signal 130506/169903 (executing program) 2022/09/27 13:50:48 fetching corpus: 1900, signal 131439/171672 (executing program) 2022/09/27 13:50:48 fetching corpus: 1950, signal 132376/173382 (executing program) 2022/09/27 13:50:48 fetching corpus: 2000, signal 135065/176310 (executing program) 2022/09/27 13:50:48 fetching corpus: 2050, signal 136360/178240 (executing program) 2022/09/27 13:50:48 fetching corpus: 2100, signal 137142/179845 (executing program) 2022/09/27 13:50:48 fetching corpus: 2150, signal 139513/182519 (executing program) 2022/09/27 13:50:49 fetching corpus: 2200, signal 140844/184413 (executing program) 2022/09/27 13:50:49 fetching corpus: 2250, signal 142217/186331 (executing program) 2022/09/27 13:50:49 fetching corpus: 2300, signal 142970/187785 (executing program) 2022/09/27 13:50:49 fetching corpus: 2350, signal 143888/189340 (executing program) 2022/09/27 13:50:49 fetching corpus: 2400, signal 144630/190815 (executing program) 2022/09/27 13:50:49 fetching corpus: 2450, signal 146761/193147 (executing program) 2022/09/27 13:50:49 fetching corpus: 2500, signal 147881/194850 (executing program) 2022/09/27 13:50:49 fetching corpus: 2550, signal 148782/196306 (executing program) 2022/09/27 13:50:49 fetching corpus: 2600, signal 150343/198217 (executing program) 2022/09/27 13:50:49 fetching corpus: 2650, signal 151193/199643 (executing program) 2022/09/27 13:50:50 fetching corpus: 2700, signal 151674/200832 (executing program) 2022/09/27 13:50:50 fetching corpus: 2750, signal 153463/202723 (executing program) 2022/09/27 13:50:50 fetching corpus: 2800, signal 154676/204319 (executing program) 2022/09/27 13:50:50 fetching corpus: 2850, signal 155736/205828 (executing program) 2022/09/27 13:50:50 fetching corpus: 2900, signal 156775/207346 (executing program) 2022/09/27 13:50:50 fetching corpus: 2950, signal 157855/208813 (executing program) 2022/09/27 13:50:50 fetching corpus: 3000, signal 158644/210129 (executing program) 2022/09/27 13:50:50 fetching corpus: 3050, signal 159484/211489 (executing program) 2022/09/27 13:50:51 fetching corpus: 3100, signal 160096/212657 (executing program) 2022/09/27 13:50:51 fetching corpus: 3150, signal 161356/214226 (executing program) 2022/09/27 13:50:51 fetching corpus: 3200, signal 162333/215608 (executing program) 2022/09/27 13:50:51 fetching corpus: 3250, signal 163146/216901 (executing program) 2022/09/27 13:50:51 fetching corpus: 3300, signal 163812/218113 (executing program) 2022/09/27 13:50:51 fetching corpus: 3350, signal 164444/219226 (executing program) 2022/09/27 13:50:51 fetching corpus: 3400, signal 165283/220459 (executing program) 2022/09/27 13:50:51 fetching corpus: 3450, signal 166454/221906 (executing program) 2022/09/27 13:50:51 fetching corpus: 3500, signal 167113/223040 (executing program) 2022/09/27 13:50:52 fetching corpus: 3550, signal 167836/224212 (executing program) 2022/09/27 13:50:52 fetching corpus: 3600, signal 168698/225424 (executing program) 2022/09/27 13:50:52 fetching corpus: 3650, signal 169464/226596 (executing program) 2022/09/27 13:50:52 fetching corpus: 3700, signal 170794/228012 (executing program) 2022/09/27 13:50:52 fetching corpus: 3750, signal 171654/229183 (executing program) 2022/09/27 13:50:52 fetching corpus: 3800, signal 172139/230106 (executing program) 2022/09/27 13:50:52 fetching corpus: 3850, signal 173041/231258 (executing program) 2022/09/27 13:50:52 fetching corpus: 3900, signal 173519/232294 (executing program) 2022/09/27 13:50:52 fetching corpus: 3950, signal 175450/233884 (executing program) 2022/09/27 13:50:53 fetching corpus: 4000, signal 176699/235153 (executing program) 2022/09/27 13:50:53 fetching corpus: 4050, signal 177392/236178 (executing program) 2022/09/27 13:50:53 fetching corpus: 4100, signal 178039/237194 (executing program) 2022/09/27 13:50:53 fetching corpus: 4150, signal 178778/238226 (executing program) 2022/09/27 13:50:53 fetching corpus: 4200, signal 180036/239474 (executing program) 2022/09/27 13:50:53 fetching corpus: 4250, signal 180418/240332 (executing program) 2022/09/27 13:50:53 fetching corpus: 4300, signal 181546/241476 (executing program) 2022/09/27 13:50:53 fetching corpus: 4350, signal 182890/242681 (executing program) 2022/09/27 13:50:53 fetching corpus: 4400, signal 183535/243585 (executing program) 2022/09/27 13:50:53 fetching corpus: 4450, signal 183941/244434 (executing program) 2022/09/27 13:50:54 fetching corpus: 4500, signal 184357/245255 (executing program) 2022/09/27 13:50:54 fetching corpus: 4550, signal 184837/246110 (executing program) 2022/09/27 13:50:54 fetching corpus: 4600, signal 185345/246943 (executing program) 2022/09/27 13:50:54 fetching corpus: 4650, signal 185679/247718 (executing program) 2022/09/27 13:50:54 fetching corpus: 4700, signal 186134/248504 (executing program) 2022/09/27 13:50:54 fetching corpus: 4750, signal 186561/249283 (executing program) 2022/09/27 13:50:54 fetching corpus: 4800, signal 187202/250163 (executing program) 2022/09/27 13:50:54 fetching corpus: 4850, signal 188080/251100 (executing program) 2022/09/27 13:50:54 fetching corpus: 4900, signal 188631/251871 (executing program) 2022/09/27 13:50:55 fetching corpus: 4950, signal 189145/252641 (executing program) 2022/09/27 13:50:55 fetching corpus: 5000, signal 189880/253502 (executing program) 2022/09/27 13:50:55 fetching corpus: 5050, signal 190460/254315 (executing program) 2022/09/27 13:50:55 fetching corpus: 5100, signal 190845/255057 (executing program) 2022/09/27 13:50:55 fetching corpus: 5150, signal 191132/255736 (executing program) 2022/09/27 13:50:55 fetching corpus: 5200, signal 191534/256470 (executing program) 2022/09/27 13:50:55 fetching corpus: 5250, signal 192018/257192 (executing program) 2022/09/27 13:50:55 fetching corpus: 5300, signal 192482/257892 (executing program) 2022/09/27 13:50:55 fetching corpus: 5350, signal 193146/258643 (executing program) 2022/09/27 13:50:56 fetching corpus: 5400, signal 193925/259450 (executing program) 2022/09/27 13:50:56 fetching corpus: 5450, signal 194451/260176 (executing program) 2022/09/27 13:50:56 fetching corpus: 5500, signal 194685/260822 (executing program) 2022/09/27 13:50:56 fetching corpus: 5550, signal 195370/261574 (executing program) 2022/09/27 13:50:56 fetching corpus: 5600, signal 196147/262330 (executing program) 2022/09/27 13:50:56 fetching corpus: 5650, signal 197065/263068 (executing program) 2022/09/27 13:50:56 fetching corpus: 5700, signal 197848/263772 (executing program) 2022/09/27 13:50:56 fetching corpus: 5750, signal 198558/264567 (executing program) 2022/09/27 13:50:57 fetching corpus: 5800, signal 199597/265310 (executing program) 2022/09/27 13:50:57 fetching corpus: 5850, signal 200090/265945 (executing program) 2022/09/27 13:50:57 fetching corpus: 5900, signal 200541/266584 (executing program) 2022/09/27 13:50:57 fetching corpus: 5950, signal 201257/267232 (executing program) 2022/09/27 13:50:57 fetching corpus: 6000, signal 202007/267904 (executing program) 2022/09/27 13:50:57 fetching corpus: 6050, signal 203327/268597 (executing program) 2022/09/27 13:50:57 fetching corpus: 6100, signal 203773/269162 (executing program) 2022/09/27 13:50:58 fetching corpus: 6150, signal 204022/269749 (executing program) 2022/09/27 13:50:58 fetching corpus: 6200, signal 204418/270284 (executing program) 2022/09/27 13:50:58 fetching corpus: 6250, signal 205200/270906 (executing program) 2022/09/27 13:50:58 fetching corpus: 6300, signal 205790/271494 (executing program) 2022/09/27 13:50:58 fetching corpus: 6350, signal 206117/272033 (executing program) 2022/09/27 13:50:58 fetching corpus: 6400, signal 206905/272590 (executing program) 2022/09/27 13:50:58 fetching corpus: 6450, signal 207472/273148 (executing program) 2022/09/27 13:50:58 fetching corpus: 6500, signal 208065/273711 (executing program) 2022/09/27 13:50:58 fetching corpus: 6550, signal 208556/274217 (executing program) 2022/09/27 13:50:59 fetching corpus: 6600, signal 209114/274767 (executing program) 2022/09/27 13:50:59 fetching corpus: 6650, signal 209560/275270 (executing program) 2022/09/27 13:50:59 fetching corpus: 6700, signal 209848/275762 (executing program) 2022/09/27 13:50:59 fetching corpus: 6750, signal 210546/276281 (executing program) 2022/09/27 13:50:59 fetching corpus: 6800, signal 211170/276802 (executing program) 2022/09/27 13:50:59 fetching corpus: 6850, signal 211528/277288 (executing program) 2022/09/27 13:50:59 fetching corpus: 6900, signal 211824/277349 (executing program) 2022/09/27 13:50:59 fetching corpus: 6950, signal 212367/277349 (executing program) 2022/09/27 13:50:59 fetching corpus: 7000, signal 212652/277353 (executing program) 2022/09/27 13:51:00 fetching corpus: 7050, signal 212864/277358 (executing program) 2022/09/27 13:51:00 fetching corpus: 7100, signal 213233/277358 (executing program) 2022/09/27 13:51:00 fetching corpus: 7150, signal 213752/277366 (executing program) 2022/09/27 13:51:00 fetching corpus: 7200, signal 214577/277368 (executing program) 2022/09/27 13:51:00 fetching corpus: 7250, signal 214837/277368 (executing program) 2022/09/27 13:51:00 fetching corpus: 7300, signal 215275/277370 (executing program) 2022/09/27 13:51:00 fetching corpus: 7350, signal 215693/277370 (executing program) 2022/09/27 13:51:00 fetching corpus: 7400, signal 216047/277405 (executing program) 2022/09/27 13:51:00 fetching corpus: 7450, signal 216704/277405 (executing program) 2022/09/27 13:51:01 fetching corpus: 7500, signal 217431/277412 (executing program) 2022/09/27 13:51:01 fetching corpus: 7550, signal 217701/277412 (executing program) 2022/09/27 13:51:01 fetching corpus: 7597, signal 218141/277577 (executing program) 2022/09/27 13:51:01 fetching corpus: 7597, signal 218141/277577 (executing program) 2022/09/27 13:51:03 starting 8 fuzzer processes 13:51:03 executing program 0: r0 = syz_mount_image$nfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x9, &(0x7f0000000500)=[{&(0x7f0000000080)="73e5a29e14047f3b438b26672f1311fb77c01c6e797de43053874c00056fdf0f9482c81f81e48a9217e6abcdec7ad5afc439a952f061708763c85a74928bb79dc2173445261009f89379b0ea10ec2184ac5df1083d4449f4f742d727daace360553986e21bf0d086bc427afd6f0ee464dabab504ea06f75619b3ec90bf167e8a3dbb61f4e917719b78b7547a631a62ab504b1dafc7399b21cfab3d164c84367a73001b5d2b5929d09e356b513f79474be1035c0b0c798c85b88719b8942f521b014abae39d7785b5b18f4b29e8a7e50da5f79116ee659c7f904a01b7c187524ee3b6debd2ef412c228633406f6ef42800ff187290cce20", 0xf7, 0x5}, {&(0x7f0000000180)="b84201995521698d33a02f06c1ee473bd9bcdedfba9745166a3c6ad1342bdc44308213c388e50ffdd4a76314b1628e8bbe5b6c223efeb995f8aa59deb55076ac6d14476b67a2b19aa5d1c818ad3b01e74e08525c18e16b6d6b9c800f7f03", 0x5e, 0x7fff}, {&(0x7f0000000200)="1426953001616d151aec7058d3619a10", 0x10, 0x6}, {&(0x7f0000000240), 0x0, 0x9}, {&(0x7f0000000280)="255979645196f5dec3a6159ea8b7075dbd324573264bc5a8fb453b8c26627239e7f538682c57e33b8b80cda39ca9bc4133d55be4579f9dae16a1fb566a6b46dcdba880d71619396ec653dbfdae834eb47a62882fcf522cef0b95700b44d4da687558603ec3e58996a4a6ab5dd4786791286aabab19925451289e37eef45a", 0x7e, 0x3ff}, {&(0x7f0000000300)="dd34ac19065ac63c629c920298a57a1111b728d94dc39d4b96fff72c425336278c688b2e2caefe546dd29f19130ed69e1e358f6dc41e5fda004595ada9cae11e88eec703667b6408d58ee32f28a45019326d7df0dec1eef5fa2de6eba9ae28a677ae167e4316c45d573337f545791d7d0167dcf42a81f221f3e37e9ad632f799e7e4c589bd20ffc25a6e86c900c719f169714e5db360c0eb4d83cd3b3d", 0x9d, 0x4}, {&(0x7f00000003c0), 0x0, 0x8}, {&(0x7f0000000400)="3e2c606f2f0b1537632df8d52f9e5d23a6e2a0991a9a1d24855f3024204ac7e29fd6f1c905c92dddd1663b", 0x2b, 0xfff}, {&(0x7f0000000440)="a7a65326f81c5b8ff18930aff4820d6e23a0e328dc26d0d493c5bd81947b494efea691a1e582d0f7b61d9c10bf059e1c30557263ff3407a4801fff1317b84934c63bfa5f0de7f2bb2e62846493abd29e37df4ef0de7c1064dd119cc7b1db3c720aa51425d1eed310e6030d14b61a2114cdf66a4c7f456714ba2a3f1b16cf58aa11087aa956adbd", 0x87, 0x10001}], 0x2000010, &(0x7f0000000600)={[{'*$-'}, {'#'}, {'*+'}], [{@euid_gt={'euid>', 0xee00}}]}) ppoll(&(0x7f0000000640)=[{r0, 0x1280}, {0xffffffffffffffff, 0x20}, {0xffffffffffffffff, 0x8000}, {0xffffffffffffffff, 0x2200}], 0x4, &(0x7f0000000680)={0x77359400}, &(0x7f00000006c0)={[0x2]}, 0x8) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000700), 0xf61576a29b75b765, 0x0) accept4$unix(r1, &(0x7f0000000740)=@abs, &(0x7f00000007c0)=0x6e, 0x80800) r2 = openat2(r0, &(0x7f0000000800)='./file0\x00', &(0x7f0000000840)={0x2b28c1, 0x1c, 0x10}, 0x18) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, &(0x7f0000000940)={'syztnl2\x00', &(0x7f00000008c0)={'sit0\x00', 0x0, 0x29, 0x4, 0x5e, 0x1, 0x22, @empty, @remote, 0x700, 0x7, 0x7fffffff, 0x1}}) sendmsg$WG_CMD_SET_DEVICE(r2, &(0x7f0000000a00)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0xd698be3493b60bc2}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x1c, 0x0, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x400c0) getpeername(r1, &(0x7f0000000a40)=@nfc_llcp, &(0x7f0000000ac0)=0x80) getsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000b00)={@remote, 0x0}, &(0x7f0000000b40)=0x14) accept4$unix(r1, &(0x7f0000000b80)=@abs, &(0x7f0000000c00)=0x6e, 0x80800) r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000c40), 0x82100, 0x0) fcntl$getown(r5, 0x9) inotify_add_watch(r5, &(0x7f0000000c80)='./file0\x00', 0x600) mkdir(&(0x7f0000000cc0)='./file0\x00', 0x0) ioctl$NS_GET_OWNER_UID(r1, 0xb704, &(0x7f0000001480)=0x0) syz_mount_image$tmpfs(&(0x7f0000000d00), &(0x7f0000000d40)='./file0\x00', 0xffffffffffffff45, 0x8, &(0x7f00000013c0)=[{&(0x7f0000000d80)="68b0c5b4fd1705621f1e88883db28710c3bc196b3755d428cee3bcff023e8ef694996861146565a2b75a7d8cc3766ad5fbfdef10a5b7283e3ae9d5786bbc0c17175942961a5ab63cff305addbbe3e6945b828c7cecc12940ec8aca9574b18b6b744356f44402e830a65ec2bd39a1115d0b8a7afcea8dde0009f400fd87f64b03ccae685e37e1c15d9d9a767ba1e1a4501d7859c0baf32a1364f149f7c76c93c18fa6805c53ff075d76ef2db39f9f1af8", 0xb0, 0x295a}, {&(0x7f0000000e40)="14d6493ba889de24b86c3ae80fc04f0ee1e2d6c95591f3db60a61cee0b57649185cadb1428f9cac1179bd044b9196460165404dcbb5661c047ed11fc50f4d2dfde3e0dd8934e1e599e550905aae80695a984d7bd6cd143a16f631dc8d1daefab9e4fd7cbeefbdfa315807fe1cc77bcf99091c75b76ccb371f358bdb3c7506fb0d68745ffaebc077313e276229390f5b7f91c27a2af6ea9b5", 0x98, 0x60}, {&(0x7f0000000f00)="e3382b585fc91450af2f0d3d05346f6c13aa4085b6a50149f6e7863b09b1033914f6e4c51956f537c51ae1d41a53fd38a50b62d2a72aea74249563e1529d45be9a8361e96b8fbf05c528f1e1cd1362", 0x4f, 0xffffffffffff0001}, {&(0x7f0000000f80)="0460fe0b79fd8fa9e6db4cc8f2ec00063518aa1389f64f1b89edd6908b43b28782d62cacefae88532757992083cd3f981f3049b11d0c509f14258b98a834638dc6a82e5a659ff32720711dc861bf116104dff32c2fdc7028adbef9a0e78b7686de5d54968bdadfe8879452e5614d9e2e4aa1a69628efd7123a18c5f58114242eb94ccef4ebca5a2b052c4f506bd713ac2c376864680b49cc159aad9a2ab98f8bda3faa5971a20f4d70d70b60345db28e77027323787ce5026a48ee1478354ba68357dc20c23371aaa2a0d41e1e0616ae5c8a3e96863ec6b07fcbdfc309669aeeee581cbef0cc69f5b2237a2be9c004cfdbd26212ac7b01a1", 0xf8, 0x3ff}, {&(0x7f0000001080)="69de6b98a9d69ff9e83af959ab391be134065dce373631bb44e6d743efd68ee436219f14867e46668db985f9e97b9349df73c7236b4f69f778741279438733c333953afa15d3bc32d5b5321805886294241e1d88193e9342197927b6334bcdd5b913efc544b2b9645648d7c4a0f7b16fed1da4a46cbdb5b2dd2645c0c2f3ba1d56f90b27adb9b227621190b798b0f47372653255021f5f07c083b011b3c525a87d2c3b44464956a5a8e9cbf3c80e98918528b0ef1b26e60adca84e02a3c1d05748dd62cf17ccbdce5844ceb78db5cb8750cf981a53c53905196c8890125fd36224daad465cc50cb02e87e6361d4911", 0xef, 0x7}, {&(0x7f0000001180)="9098629123e16033a523dfc256bafc5e39ccd978868049bcdbd42c6e13db04bd81df7f9fe0fba3a120a11c3eb860074c2d15815e3ccc7ab5f16fb951759c4d2c89a93834e36f6e0e10f72b32110ce105d3cbe1e304d27f08b025a401a99de7845083e7d96b2631fe8cc2922f981b17c3256e8ee16b14b73a81e67fcd9ce6145f3ca63be7d31b772779879b9a0d522dc0e40c4cfda913ff5b13eb66071617774dced8b2fbbac41b26779da1cdcbd2492940d02589e5702215ca049ca95c17b46ff7159e49d1566a4eedf6e51bb38bcf03ae7a5dc2099ba0d20b72fdde0652a62a06d5934ec5e3dcbc6e", 0xe9, 0x1ff}, {&(0x7f0000001280)="5469d860a3be8c0acb8842b99029dba65dc8b2a0c6a82351badb5ab484365967a3c2c68194efaaa897033bd39fffc881bbedf0bcccef4033b14d31474cae5f22b49ebee61152feaadfb2c4f627b8ccf8f44467a36768a34a8b7841410542dfad23641ea4743d", 0x66, 0x100}, {&(0x7f0000001300)="ec884ddc117e46f8190310995274877e38bde133165f4cdfc1c9f0fdcf52487e6a5465245beb461fb7081fe223655bc6c95fc0e0bd960a7059fb62bd78a197b75c815e77ed9a321e4680a1012bea347fa48de414c04d7dba9cbbbf56e410dc6c594a4d4018bbf0ea83188c6ea0c96dd44e5d760e714e1bbddb1489c0204884b68ba1a282cc8f", 0x86, 0x7fff}], 0x40, &(0x7f00000014c0)={[{@gid={'gid', 0x3d, 0xffffffffffffffff}}, {@huge_always}, {@gid={'gid', 0x3d, 0xffffffffffffffff}}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@euid_gt={'euid>', 0xee01}}, {@euid_gt={'euid>', r6}}, {@pcr={'pcr', 0x3d, 0x3}}, {@measure}, {@smackfshat={'smackfshat', 0x3d, '\'}'}}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@uid_gt}, {@fsuuid={'fsuuid', 0x3d, {[0x63, 0x0, 0x0, 0x33, 0x61, 0x66, 0x37, 0x52], 0x2d, [0x36, 0x35, 0x64, 0x60], 0x2d, [0x30, 0x38, 0x30, 0x65], 0x2d, [0x37, 0x63, 0x35, 0x36], 0x2d, [0x37, 0x65, 0x37, 0x62, 0x30, 0x62, 0x62, 0x31]}}}]}) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r7, 0x89f2, &(0x7f0000001680)={'syztnl0\x00', &(0x7f0000001600)={'syztnl1\x00', r4, 0x2f, 0x4, 0x8, 0x0, 0x10, @remote, @remote, 0x8000, 0x700, 0xffffff0d, 0xfffffc73}}) setxattr$trusted_overlay_nlink(&(0x7f00000016c0)='./file0\x00', &(0x7f0000001700), &(0x7f0000001740)={'L+'}, 0x16, 0x0) accept4(0xffffffffffffffff, &(0x7f00000017c0)=@pppoe={0x18, 0x0, {0x0, @local}}, &(0x7f0000001840)=0x80, 0x0) 13:51:03 executing program 1: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x1c0, 0x0) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, &(0x7f0000000040)={0x4, 0x2, '\x00', [@hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}}]}, 0x20) sendfile(r0, r0, 0x0, 0xabe4) pwritev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="ea9d0a3970af3dbe54f73389c53801ec59b59175d32a207e61a259494ed225d671eb24c849189eb600b143459248c8426f51679a47770965b3ef732ee3d9cf7194ae04b046f38f9ed93280b10f2095f1c2a4e5bb6174bb4979ffea40965e96013afaa9bdb42a33054d039cbe6d24c6b5ee8857cf3b5a3007f4f0", 0x7a}, {&(0x7f0000000100)="a3", 0x1}], 0x2, 0x5, 0xffff) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000804}, 0x20000084) ioctl$BTRFS_IOC_FS_INFO(r0, 0x8400941f, &(0x7f0000000280)) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000680)=0x200) syz_io_uring_setup(0x7a25, &(0x7f00000006c0)={0x0, 0x8a9f, 0x10, 0x3, 0x1c2}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000740)=0x0, &(0x7f0000000780)) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000007c0)='/sys/module/sr_mod', 0x80, 0x10) syz_io_uring_submit(r1, 0x0, &(0x7f0000000840)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, r2, 0x0, &(0x7f0000000800)='./file0\x00', 0x2, 0x4800, 0x12345}, 0x401) r3 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000880), 0x2, 0x0) sendfile(r0, r3, &(0x7f00000008c0)=0xffffffffffff0000, 0xd3b) r4 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x5) r5 = perf_event_open(&(0x7f0000000900)={0x3, 0x80, 0x36, 0x4, 0x0, 0x80, 0x0, 0x0, 0x1000, 0xc, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_config_ext={0x6, 0x8000}, 0x21, 0x5, 0x80000001, 0x0, 0x8, 0x1ff, 0xaa1, 0x0, 0x8, 0x0, 0x8000}, 0xffffffffffffffff, 0x2, 0xffffffffffffffff, 0x2) r6 = dup2(r4, r5) ioctl$FS_IOC_MEASURE_VERITY(r6, 0xc0046686, &(0x7f0000000980)={0x3, 0xe7, "10f2fc68fb2228cb19e1e43f85b66c49158e35f11697048c0e91f9f63f527c57a33dea05d00534f85bfed3ab633ef4793ae1f0c41397347aa25fc2e777c20a04916f7ee1bf1b36f793d7aaf32fd68691fbf8895840b1eda6721c17166925aa6ea1530886767c9be941e5958bbf421e28b3aea9fce8528de1364c995e8e37ba4bd7ec330422e5343b98ba64523b60c6c6790f5213cfed66e7c606a4abf749de57cf0af3088752c37e990a7bf39850d8b2cef8b63d544a70f262361957eba6ad0a9b2d17bd552513c99fc90a41f3ae063d9d7cafcaebc682c3c261f57fd04bea6aec1f661bac0d85"}) r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000a80), 0x40000, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r7, 0xc018937c, &(0x7f0000000ac0)={{0x1, 0x1, 0x18, r6, {0x4}}, './file0\x00'}) sendmsg$NET_DM_CMD_START(0xffffffffffffffff, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x14, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x4004045) 13:51:03 executing program 2: ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8000}}, './file0\x00'}) r1 = fsmount(r0, 0x0, 0x1) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0xc) perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x4, 0x80, 0x7, 0x6f, 0x0, 0x100, 0x8c02, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, @perf_bp={&(0x7f0000000040), 0xa}, 0x2800, 0x200, 0x0, 0x7, 0xba, 0x1, 0x8, 0x0, 0x7fffffff, 0x0, 0x8}, r2, 0xf, r1, 0x9) perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x1, 0x68, 0xe7, 0x1f, 0x0, 0x8b19, 0x40, 0x5, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, @perf_config_ext={0x5, 0xfffffffffffffff7}, 0x0, 0x6, 0x4, 0x3, 0x8, 0xad, 0x8, 0x0, 0x800, 0x0, 0x61}, r2, 0x1, 0xffffffffffffffff, 0x2) fcntl$getflags(r0, 0x1) ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000200)={'veth1_macvtap\x00', {0x2, 0x0, @private}}) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x20000, 0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r0, &(0x7f0000000280)={0x2005}) syz_io_uring_setup(0x76e1, &(0x7f00000002c0)={0x0, 0xd757, 0x0, 0x3, 0x322, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000340)=0x0, &(0x7f0000000380)) syz_io_uring_submit(r5, 0x0, &(0x7f0000000440)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x4, 0x0, r0, 0x0, &(0x7f00000003c0)="5ad3a759e29b0a3d083bc296de30bc6005532bb1a8de68eb4ed3c223cd1675fa47d845201ad38fd563f17564b275bde55b266a2e70bd1c4222e9a0417cb4219c79481122d3fb54f0654403312c", 0x4d, 0x1, 0x1}, 0x6) getsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000480), &(0x7f00000004c0)=0x4) syz_io_uring_setup(0x6da0, &(0x7f0000000500)={0x0, 0x6314, 0x10, 0x3, 0x39b}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000580), &(0x7f00000005c0)=0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000600)={{0x1, 0x1, 0x18, r1, {r0}}, './file0/file0\x00'}) syz_io_uring_submit(r5, r6, &(0x7f00000006c0)=@IORING_OP_OPENAT2={0x1c, 0x1, 0x0, r7, &(0x7f0000000640)={0x200040, 0x52, 0x10}, &(0x7f0000000680)='\x00', 0x18, 0x0, 0x12345}, 0xfffffffe) r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) fcntl$addseals(r8, 0x409, 0x8) openat$nvram(0xffffffffffffff9c, &(0x7f0000000700), 0x2000, 0x0) r9 = syz_mount_image$iso9660(&(0x7f0000000740), &(0x7f0000000780)='./file1\x00', 0x7fffffff, 0x8, &(0x7f0000000c80)=[{&(0x7f00000007c0)="66e09b34d9359a36f065bb2514c32dccb84953170830eb961bd29cd96f5842e44dbf551c1288a93171dff4d43c68c467b350487eb6f43b10519f9474fa3242c1ac7888ae6b664f9830fec0f82beb3413182a90586e786df0bdf20105975df2514f1bf2966bc936e40af3a0e5739cc20a75e33b93005461361c61fd9aece9e5db5d74baff44c992f0c6acd1030afa216f294f41c10947afb60749aa346abab20387bad550dd8127f6c2029f75fe7e5af56b48", 0xb2, 0x8}, {&(0x7f0000000880)="42e5b05625709fecd3360e0e691e56e5ed354d15540b7b81cbc7f8503805f8d21c990539051bfff318baabf35cb4fdc60bdc0820ab9260c4b1013729dffeeb7cb89ef86a57ba8a0fe2575d5f163956f39db2fd52e2d697ffc0b3438ebcd0a573f9a17dbcf2f3e92dbe9d7fc9b10f538169a65efc3c6eb8de94989a3d2d5c3806d5d06938efde814d0e76b3ad26b25753738935b677e7635e25c199d03e62a3889542c4295847c73458a8c124ebbcc2c5826f22f08c30f2ee2d9b2f1287c2b3f9063b1cf212a3f3a4baf08f36c2c30f543d923d1aa0389c78a05b64c24d23868da6eb6e91bd62fc48885d4535ea58e93c", 0xf0, 0x1}, {&(0x7f0000000980)="f6822cb9267696f5940db67f6bd047f64ba0a74dc4659c145d851913934314d2e7812c76e84afab84155f58527037c1077dd320d46453ad2865b4587c24705d5c67b99097ee611ba51b9f16ee0f5ec2ef0ed523182fa08dad4f5e30e4592e7333e5aaf8fdf15cc72324d0578ee9b5696b798690d0f783907c7f9c8d95ec9bf8d7abf48648112772b279f0c31363c4b23344bbce443c3802fc8a4f84cbed7ede251f2db6abd60a3427c821cbc76ca294d43f95a9bce6b755209", 0xb9, 0x1}, {&(0x7f0000000a40), 0x0, 0x1}, {&(0x7f0000000a80)="d795615bde7a32707db2434aadb8bbb83493eeda7785b67a5743ed38a78472d215afe9b28c705d62e415004ec7ca11e653844d9e1759c5d07a26d9e0ccbea3db15db3eb0421de7ad3ad5e91897835c5aa1e935f3291c2edbbdda8633a7a2259cb8765b1f06fc791e7146a18070407a3bc0651359007f4972a65fb99e3b54f5fc411c", 0x82, 0x10000000}, {&(0x7f0000000b40)="8ba6ddd4bdf02ff0ec3bea5877e3227b659737f91cbaa53a33b632d4067469bef8fe6bb160679b1bccfa17d8617e91b94614700b2460fe01df79c8b2a6356b3bc1360f3d3603a72dddc89d10d53582e5c441affce7679d62a47961fdc4a94f3a80f7b797e02f7f6e9f4c62290ef73ce8579f11e94cabc1", 0x77, 0x7}, {&(0x7f0000000bc0), 0x0, 0x1}, {&(0x7f0000000c00)="3bc0581be9eb4f114bdd88db14f4be09645813666338c766b9a1e6cd36ca2689381e690458c1c10ad79a1f052db56ee9c711c870a18c05d3ce9a05b87b66a0984a", 0x41, 0x4}], 0x110100c, &(0x7f0000000d40)={[{@utf8}, {@map_off}, {@gid={'gid', 0x3d, r3}}, {@unhide}, {@check_relaxed}, {@map_normal}], [{@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@pcr={'pcr', 0x3d, 0x1d}}, {@dont_hash}, {@fsuuid={'fsuuid', 0x3d, {[0x35, 0x63, 0x6d, 0x31, 0x4, 0x34, 0x30], 0x2d, [0x39, 0x65, 0x31, 0x37], 0x2d, [0x61, 0x57, 0x34, 0x64], 0x2d, [0x37, 0x33, 0x35, 0x36], 0x2d, [0x66, 0xa, 0x65, 0x36, 0x64, 0x62, 0x32, 0xc197d173780954a]}}}, {@seclabel}]}) faccessat(r9, &(0x7f0000000e00)='./file0\x00', 0x1) 13:51:03 executing program 3: r0 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$LOOP_GET_STATUS(r0, 0x4c03, &(0x7f0000000000)) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x7}}, './file0\x00'}) close(r1) r2 = open_tree(r1, &(0x7f0000000100)='./file0\x00', 0x8001) utimensat(r2, &(0x7f0000000140)='./file1\x00', &(0x7f0000000180)={{0x0, 0xea60}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1, {0xd46}}, './file0\x00'}) r4 = io_uring_setup(0x13d4, &(0x7f0000000200)={0x0, 0x8e7b, 0x0, 0x3, 0x3ae, 0x0, r1}) ioctl$FITRIM(r4, 0xc0185879, &(0x7f0000000280)={0xbc9, 0x3, 0x4}) r5 = pidfd_getfd(r0, r2, 0x0) r6 = socket$netlink(0x10, 0x3, 0x15) r7 = socket$nl_sock_diag(0x10, 0x3, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x781, &(0x7f00000002c0)=[r4, r4, 0xffffffffffffffff, r5, r6, r7, r1], 0x7, 0x0, 0x1}, 0x4) r8 = syz_open_dev$loop(&(0x7f0000000340), 0x4, 0x80) ioctl$AUTOFS_IOC_EXPIRE(r8, 0x810c9365, &(0x7f0000000380)={{0x862}, 0x100, './file1\x00'}) ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, &(0x7f00000004c0)={0x0, {}, 0x0, {}, 0x60b, 0x2, 0xe, 0x18, "4bd380db8218468947ddb1741a5c38716ae7c74acb47c66e8b2f67da788fc7accf247a9f6755bbfadd961beed11526464988aa7d2bbbe452b95832877321fae0", "d9ff227f7bae32944e564c37527ee34716bdc298d27125ec556cc8a7324b63d9", [0x5, 0x6]}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r5, 0xc018937c, &(0x7f0000000580)={{0x1, 0x1, 0x18, r3}, './file1\x00'}) ioctl$LOOP_CLR_FD(r9, 0x4c01) r10 = creat(&(0x7f00000005c0)='\x00', 0x0) sendmsg$nl_generic(r10, &(0x7f0000000900)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000008c0)={&(0x7f0000000640)={0x254, 0x23, 0x2, 0x70bd26, 0x25dfdbfb, {0x1b}, [@nested={0xdc, 0x30, 0x0, 0x1, [@typed={0xd8, 0x37, 0x0, 0x0, @binary="44af35af9d19482d660e29e812fee0559ca2b2a9d41c74293e404eddc9f19192832fab8e04cee59a183ee169041036e249153d1d71d813f488c16e0119ea48e3d655e6860ea5f02a69e135209990d90438befd73e1f2fd2f75962c3ff0d531b139d615e71e686bb4322de9b3be5f4a8e69d1e42d685d666a3568387d17eff7b5a420126d73aaf304fee5b7d0f42d6f55c779f783f1566b2f08fd50c6d5091d6c775f347755f97fd2f40a1de52d4c7dcb968a5034239b9750d4ce8260fc6bd4e8c6d39be7fd2eb0fbda2bd245ec8333c69d9ae3f3"}]}, @generic="956c3de75528b32a34a16367ea2cf24b4f3d672cc866f1bf22ca3839b487a31fe1785f32fd908f63dae19a72d7ecd3f78b175c683afeaf418843c944cc85cbde6b6d2481f1679284a5599801eb424a", @nested={0xfe, 0x57, 0x0, 0x1, [@generic="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"]}, @typed={0x14, 0x2f, 0x0, 0x0, @ipv6=@mcast2}]}, 0x254}, 0x1, 0x0, 0x0, 0x48080}, 0x2000c045) 13:51:03 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x3, 0x200001) sendmsg$NL80211_CMD_RADAR_DETECT(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x0, 0x8, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x246}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2e}]}, 0x3c}, 0x1, 0x0, 0x0, 0xea02a7590654d29f}, 0x4) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000140), 0x400100, 0x0) copy_file_range(r1, &(0x7f0000000180)=0x6, r0, &(0x7f00000001c0)=0x3, 0xebb, 0x0) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000200)={0x2, {{0xa, 0x4e22, 0x3, @mcast1, 0x2000}}, {{0xa, 0x4e21, 0x1, @private0, 0x3}}}, 0x108) ioctl$CDROM_SET_OPTIONS(r0, 0x5320, 0x8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000340)='\x00', 0x800, 0x80) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r2, 0x40bc5311, &(0x7f0000000380)={0x3ff, 0x2, 'client0\x00', 0xffffffff80000003, "d409e20061eaa684", "abf3187a3c72964256184f490157555513811db691209eba01edf3265989f9dd", 0xab, 0x1f}) ioctl$CDROM_SET_OPTIONS(r0, 0x5320, 0x4) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000440)) ioctl$BLKGETSIZE64(r0, 0x80081272, &(0x7f0000000480)) sendmsg$NL80211_CMD_GET_MESH_CONFIG(r0, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x28, 0x0, 0x400, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8000, 0x70}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x24000800}, 0x20000854) r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000005c0), 0x15d142) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r3, 0x6628) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000600)={{0x108, 0x0, 0x10, 0x302, 0x2, 0x1, 0x33, 0x6}, "4d45ecc846906bbb1394482f84a3008b6d5bd10240dd2d2053bae34474a3031d8378511f7a17c8fc61a1cda79d3787071cd6637c1fda9e2d3875cd882a8d9601d8a7438ae6ad4210a1ef30a402a4d6e3c1025357fa7ccc6f953c78f8d5d35de5053a49e65954b431034fe03cdfde39c87fe4a829b6d26f3f9843f5d497a7311e509cee0245fc339fdc58d888f0f1c8782c4611ff9f95fe83b9a39e2231282d227d1b64710b4b397606c2d2577b949eb374ecfaaf1ce204cac3f1986db73c120e1d017bf2055ee0bebf7ebb8965082153a7a5e8b81821f38e8b9d19424421be", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x7ff) r4 = fcntl$dupfd(r3, 0x0, r1) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000e00)={{0x1, 0x1, 0x18, r4, {0x8000}}, './file0\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r4, 0xc08c5335, &(0x7f0000000e40)={0x6e27, 0x8, 0x1, 'queue0\x00', 0x7}) openat$cgroup_int(r2, &(0x7f0000000f00)='cpu.idle\x00', 0x2, 0x0) sendmsg$DEVLINK_CMD_RATE_NEW(0xffffffffffffffff, &(0x7f00000010c0)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001080)={&(0x7f0000001000)={0x44, 0x0, 0x200, 0x70bd2d, 0x25dfdbff, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xe}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000800}, 0xd0) 13:51:03 executing program 5: sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x5c, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000}, 0x20000040) r0 = creat(&(0x7f0000000200)='./file0\x00', 0xb0) sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x38, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xd2e}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}, @TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40800}, 0x40085) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000340), 0xad6403, 0x0) ioctl$BTRFS_IOC_INO_PATHS(r1, 0xc0389423, &(0x7f00000003c0)={0x100000000, 0x10, [0x1, 0x3, 0x9, 0x8], &(0x7f0000000380)=[0x0, 0x0]}) r2 = creat(&(0x7f0000000400)='./file0\x00', 0x0) sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000600)={&(0x7f0000000440), 0xc, &(0x7f00000005c0)={&(0x7f0000000480)={0x13c, 0x0, 0x4, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x7ff}, @NL80211_ATTR_TX_RATES={0xdc, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x64, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x1, 0xb, 0x0, 0x4, 0x0, 0x6c, 0x1b, 0x36, 0x18, 0x1, 0x12, 0x3c, 0x3, 0x60, 0xc, 0x4, 0x18, 0x18, 0x9, 0xc, 0x60, 0x60, 0x36]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x4, 0x40, 0x8, 0x401, 0x8, 0xff, 0xd62b]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0x48, 0x12, 0x3, 0x30, 0x16, 0x9, 0x18, 0xb, 0x16, 0x18, 0x9, 0x30, 0x18, 0x60, 0x5, 0x3, 0x9, 0xc]}]}, @NL80211_BAND_6GHZ={0x54, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x7613, 0x0, 0x9, 0x101, 0x0, 0x400]}}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x2, 0x9}, {0x3}, {0x6, 0x1}, {0x5, 0x2}, {0x3, 0x1}, {0x5, 0x1}, {0x2, 0x5}, {0x0, 0x2}, {0x5, 0x4}, {0x1, 0xa}, {0x3, 0x4}, {0x2}, {0x6, 0x5}, {0x7, 0x1}, {0x0, 0x8}, {0x3, 0x6}, {0x0, 0x3}, {0x2, 0x1}, {0x2, 0x6}, {0x4, 0xa}, {0x4, 0x9}, {0x5, 0x9}, {0x0, 0x9}, {0x2, 0xa}, {0x5, 0x7}, {0x4, 0x1}, {0x4, 0x9}, {0x1, 0x3}, {0x2, 0x2}, {0x4, 0x5}, {0x4, 0x6}, {0x1, 0x3}, {0x5, 0x7}, {0x4, 0x8}, {0x3, 0x4}, {0x0, 0x6}, {0x1, 0x3}, {0x7, 0x3}, {0x4, 0x7}, {0x3, 0xa}, {0x5, 0x9}, {0x1, 0xa}, {0x1, 0x2}, {0x7, 0x5}, {0x3}, {0x1, 0x6}, {0x1, 0x1}, {0x4, 0x3}]}]}, @NL80211_BAND_6GHZ={0x14, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}]}, @NL80211_ATTR_HE_OBSS_PD={0x44, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0xf}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x9}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x7}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x10}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x1}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x12}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0xf}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0x2}]}]}, 0x13c}, 0x1, 0x0, 0x0, 0x14}, 0x80) r3 = signalfd(r1, &(0x7f0000000680)={[0x4e]}, 0x8) syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), r3) sendmsg$IPSET_CMD_PROTOCOL(r0, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x24, 0x1, 0x6, 0x5, 0x0, 0x0, {0x3, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x40040) r4 = openat$full(0xffffffffffffff9c, &(0x7f00000007c0), 0x20400, 0x0) ioctl$EVIOCGSND(r4, 0x8040451a, &(0x7f0000000800)=""/178) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000a80)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000a40)={&(0x7f0000000900)={0x10c, 0x0, 0x204, 0x70bd26, 0x25dfdbfd, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0xf8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x321}, @ETHTOOL_A_BITSET_MASK={0xea, 0x5, "f63a641f74917cb326b41efa6920b354441cbf44034da1ddd0cd70f7e4efaac825d9fc0963232dbcd93164211a4f4df3be4cac79a99efa7f72b3ea130d1959028daf60453fa0ff995c6997d4ca96f97dcafa54cf799f919913d1d7c28c2666d3c200703f315b2c848e61eaafcec1855d126ca7c3ce159d8745ab15c3b5e0284d6d0b87e3a14016c778825d8abaf4412e320b2cd871aa6ed5f8929c6eb2299d9bf3aeac5bd2f20a052abf68fda905770fba77cab75065b7cd5477b0109fa3e3c322feb2d1828396ecc71e0664f8b64deba3b753ba87190f8867e5c268c69159ece933f752e915"}]}]}, 0x10c}, 0x1, 0x0, 0x0, 0x4000804}, 0x24000000) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000ac0), 0x422001, 0x0) ioctl$BLKRESETZONE(r5, 0x40101283, &(0x7f0000000b00)={0x3c8, 0x4}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f0000000b40)={{0x1, 0x1, 0x18, r1, @in_args={0x2}}, './file0\x00'}) flistxattr(r6, &(0x7f0000000b80)=""/41, 0x29) r7 = open$dir(&(0x7f0000000bc0)='./file0\x00', 0x101000, 0xa2) ioctl$AUTOFS_IOC_EXPIRE(r7, 0x810c9365, &(0x7f0000000c00)={{0x0, 0x9dd}, 0x100, './file0\x00'}) ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000001140)={{}, 0x2, &(0x7f0000001100)=[0x1ff, 0x0], 0xff, 0x2, [0x4000000000, 0x6, 0x2, 0x10000]}) 13:51:03 executing program 6: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3ff, 0x8, 0xcbf, 0x5, "4638ce286b9fc24909d012d3783726b032a90a", 0x4, 0x1}) writev(0xffffffffffffffff, &(0x7f0000000180)=[{&(0x7f0000000040)="3b9e2e398d76f386d995e9ef532e1093f6251a8ba284c50835ce2fc61b260fd008bb195fafbbcf610cb6360d275b56de97f03b8bbd84010f2d7c6747539e4e6493a27993c50574d2997afa51d5fe6e39d1145e01d66205cf8ad031029ca4b8c3437e418ff614597eeb045bd0e91688f7de537275432160d94243cca9c0945ddaeecee037b6cecba93499b7bf26b52f088687ab45cd4bef99d5b07c6de6359f0b12f1f1e7153a7d698bcd4f0823e1", 0xae}, {&(0x7f0000000100)="93db7139020e25b8816542f763dc5f436b36e9254cf6ae54900179b5fbd6a47b41b89a0b9dc06b6d059041e0e42dd6f173771e7c90ce80b651aacb7675228e34cdc167500ab45b324ae236ec", 0x4c}], 0x2) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x200000, 0x32) ioctl$CDROMPAUSE(r0, 0x5301) r1 = syz_open_procfs$userns(0x0, &(0x7f0000000200)) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c89425, &(0x7f0000000240)={"2fb9ba5f2fb7f931fb63cb05debe99a1", 0x0, 0x0, {0x3, 0x8}, {0x24000000000, 0xfffffff9}, 0x6, [0x1, 0x8001, 0x33aa, 0x0, 0x3, 0x89e, 0x2, 0x100000000, 0x0, 0xcd4, 0xfffffffffffffff7, 0x3, 0x9, 0x0, 0x9, 0x1fd4]}) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000340), 0x488000, 0x0) ioctl$CDROMREADCOOKED(r2, 0x5315, &(0x7f0000000380)) recvmmsg$unix(r0, &(0x7f0000004080)=[{{&(0x7f0000000e00)=@abs, 0x6e, &(0x7f0000000ec0)=[{&(0x7f0000000e80)=""/24, 0x18}], 0x1}}, {{0x0, 0x0, &(0x7f00000011c0)=[{&(0x7f0000000f00)=""/225, 0xe1}, {&(0x7f0000001000)=""/215, 0xd7}, {&(0x7f0000001100)=""/137, 0x89}], 0x3, &(0x7f0000001200)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38}}, {{&(0x7f0000001240), 0x6e, &(0x7f0000002380)=[{&(0x7f00000012c0)=""/19, 0x13}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/84, 0x54}], 0x3}}, {{&(0x7f00000023c0)=@abs, 0x6e, &(0x7f0000003780)=[{&(0x7f0000002440)=""/179, 0xb3}, {&(0x7f0000002500)=""/212, 0xd4}, {&(0x7f0000002600)=""/31, 0x1f}, {&(0x7f0000002640)=""/181, 0xb5}, {&(0x7f0000002700)=""/58, 0x3a}, {&(0x7f0000002740)=""/58, 0x3a}, {&(0x7f0000002780)=""/4096, 0x1000}], 0x7, &(0x7f0000003800)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f00000038c0)=@abs, 0x6e, &(0x7f0000003d00)=[{&(0x7f0000003940)=""/69, 0x45}, {&(0x7f00000039c0)=""/74, 0x4a}, {&(0x7f0000003a40)=""/253, 0xfd}, {&(0x7f0000003b40)=""/216, 0xd8}, {&(0x7f0000003c40)=""/32, 0x20}, {&(0x7f0000003c80)=""/83, 0x53}], 0x6, &(0x7f0000003d80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{&(0x7f0000003e40), 0x6e, &(0x7f0000003fc0)=[{&(0x7f0000003ec0)=""/157, 0x9d}, {&(0x7f0000003f80)=""/25, 0x19}], 0x2, &(0x7f0000004000)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}}], 0x6, 0x10000, &(0x7f0000004200)) r9 = openat$cgroup_subtree(r0, &(0x7f0000004240), 0x2, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r8, 0xc028660f, &(0x7f0000004280)={0x0, r9, 0x6, 0x4, 0x4, 0xff}) recvmsg$unix(r5, &(0x7f0000006600)={&(0x7f00000042c0), 0x6e, &(0x7f0000006540)=[{&(0x7f0000004340)=""/50, 0x32}, {&(0x7f0000004380)=""/4096, 0x1000}, {&(0x7f0000005380)=""/222, 0xde}, {&(0x7f0000005480)=""/192, 0xc0}, {&(0x7f0000005540)=""/4096, 0x1000}], 0x5, &(0x7f00000065c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}, 0x20) openat(r3, &(0x7f0000006640)='./file0\x00', 0x100, 0x15e) io_submit(0x0, 0x0, &(0x7f0000006680)) ioctl$CDROMVOLREAD(r7, 0x5313, &(0x7f00000066c0)) io_setup(0x38, &(0x7f0000006700)=0x0) r11 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000006740), 0xa000, 0x0) io_cancel(r10, &(0x7f0000006800)={0x0, 0x0, 0x0, 0x7, 0x782, r11, &(0x7f0000006780)="04342ef1cd971cbc65697932687c9617a0444edb1633b7bc02f7b57943fa9c837e72d3cbc3c3ea85bebd0f74dac9b8a5ce9cf436e06e67b53ea78d5c54b566daaf1f9e3c6cb3f6cbe2ba780e3e9405626bb00ce3295f82dade102c10a6deefa06d6533640a81c526d7", 0x69, 0xf96, 0x0, 0x1}, &(0x7f0000006840)) io_setup(0x2, &(0x7f0000006880)=0x0) io_submit(r12, 0x3, &(0x7f0000006c00)=[&(0x7f0000006940)={0x0, 0x0, 0x0, 0x3, 0x1ff, 0xffffffffffffffff, &(0x7f00000068c0)="04880f7dc29de1840b6585c133c62abe9435fbbdcc24166f58ee", 0x1a, 0x8, 0x0, 0x2}, &(0x7f0000006a80)={0x0, 0x0, 0x0, 0x3, 0x1, r4, &(0x7f0000006980)="c1870dcc2b163359a41909458a6a65ca9afa95b1d70a5147e747d052cdcd9acdfb6becb898b5335e76996e5929fd2e735a7e64ec094713712c31f1fdf86c3d804a427d8d101fb5a2d76d94ce9f0066708873e2603c11e4679b7f43a331ec458841b3e92c2af9c6b69610b7efb1a078c2b3e27c65c70dbcc46933fe516ef570a5c2a5143fd6eb9f68760f66f4072462ca22fdef69728f8bc84b91892f37c228781206c6e04637b4344e50b9be9f3aed97c78679d4d1d977e0dbf698f5082059a9f556e5da38cde76b3006ef60c81029260dc0fdb64ba0c0f524", 0xd9, 0xc154, 0x0, 0x1, r6}, &(0x7f0000006bc0)={0x0, 0x0, 0x0, 0x7, 0x7, r2, &(0x7f0000006ac0)="a4768826fed76526837bed448d74a14c49eafff291cffaae6152058411df796c39c12cdffc81df661f122514ffef4145b96f6ce49014f3ed1decaa3ee1b29d197d84be26985ec396b347b1bc01ec4dbe94d2fd47d168e306a01426ae1728181e57823a59aa2f3f25c4325b00f5bc8aa11bce74fe257a427b59b11859feee2a2b1f71a5decb49250c9c5533de1257525e41f2216d1663f6d084689f7555b9ea4a266f9a5b48680768b2732b13ab4135f97428bcf971d524bbd025fcf0172de8f7e420fe8597b7dfe8bf63debd014203352ec15dc462fd79f5ca9cae521f31bc9ee1a1ade3c8dd326fd164b65d1ebaeb6eb448970c", 0xf4, 0x0, 0x0, 0x1}]) 13:51:03 executing program 7: getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000040)={{{@in6=@private0, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in6=@dev}}, &(0x7f0000000140)=0xe8) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000180)={'syztnl0\x00', 0x0, 0x29, 0x3, 0x7f, 0x5e5, 0x42, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0x10, 0x1, 0x9, 0x1}}) sendmsg$ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000000), 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x70, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x20044051}, 0x4040008) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000580)={'syztnl0\x00', &(0x7f0000000440)={'ip_vti0\x00', r1, 0x10, 0x1, 0x4, 0x6, {{0x40, 0x4, 0x3, 0x7, 0x100, 0x65, 0x0, 0x7f, 0x2d, 0x0, @broadcast, @private=0xa010101, {[@generic={0x89, 0xa, "bc4af41fb23ea122"}, @lsrr={0x83, 0xb, 0x48, [@loopback, @empty]}, @generic={0x94, 0xc, "3fa0b06213bdc251750a"}, @timestamp_prespec={0x44, 0x44, 0xbf, 0x3, 0x3, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x101}, {@multicast1, 0x3}, {@rand_addr=0x64010100, 0xfff}, {@private=0xa010101, 0x43}, {@multicast2, 0x8}, {@local, 0x5}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x8}, {@local, 0x52e80161}]}, @ssrr={0x89, 0x1b, 0xf5, [@broadcast, @multicast2, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast1, @dev={0xac, 0x14, 0x14, 0x22}, @empty]}, @timestamp={0x44, 0x2c, 0xc6, 0x0, 0x3, [0x1000, 0x8, 0x1, 0x9, 0x0, 0x5, 0x7, 0xa, 0x5, 0xf48]}, @cipso={0x86, 0x3d, 0x3, [{0x2, 0xb, "aa53326789bae9a017"}, {0x6, 0xf, "1aa96d0727c2a7028e14518651"}, {0x1, 0xd, "1de66f6b6fd6f361bebe2a"}, {0x6, 0x10, "cdabae3dcfd1c034ac5b97adb279"}]}]}}}}}) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x5c, 0x0, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x3f}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x4a000}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0xa91}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x2}, @ETHTOOL_A_RINGS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0x3ff}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x10) r3 = openat2(0xffffffffffffffff, &(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)={0x402001, 0x88, 0x3}, 0x18) setsockopt$inet_udp_encap(r3, 0x11, 0x64, &(0x7f0000000740)=0x5, 0x4) preadv(r3, &(0x7f0000000b00)=[{&(0x7f0000000780)=""/116, 0x74}, {&(0x7f0000000800)=""/169, 0xa9}, {&(0x7f00000008c0)=""/34, 0x22}, {&(0x7f0000000900)=""/222, 0xde}, {&(0x7f0000000a00)=""/218, 0xda}], 0x5, 0x1, 0x6e6a) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001f80)='/proc/asound/seq/clients\x00', 0x0, 0x0) r5 = syz_genetlink_get_family_id$smc(&(0x7f0000002000), 0xffffffffffffffff) sendmsg$SMC_PNETID_FLUSH(r4, &(0x7f00000020c0)={&(0x7f0000001fc0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002080)={&(0x7f0000002040)={0x28, r5, 0x200, 0x70bd25, 0x25dfdbfb, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'xfrm0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000}, 0x40800) syz_genetlink_get_family_id$nl80211(&(0x7f0000002100), r4) syz_genetlink_get_family_id$ethtool(&(0x7f0000002140), r4) r6 = syz_genetlink_get_family_id$batadv(&(0x7f00000021c0), r4) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r4, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002240)={&(0x7f0000002200)={0x1c, r6, 0x100, 0x70bd25, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xa71}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000014}, 0x40) r7 = fsmount(0xffffffffffffffff, 0x0, 0x38) r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000002500), r4) sendmsg$TIPC_CMD_GET_MAX_PORTS(r7, &(0x7f00000025c0)={&(0x7f00000024c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000002580)={&(0x7f0000002540)={0x1c, r8, 0x100, 0x70bd2a, 0x25dfdbfd, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x80) r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002640), r3) sendmsg$ETHTOOL_MSG_STRSET_GET(r7, &(0x7f0000002740)={&(0x7f0000002600)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000002700)={&(0x7f0000002680)={0x80, r9, 0xb36, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_STRSET_HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}]}, 0x80}, 0x1, 0x0, 0x0, 0xd}, 0x40004801) [ 70.969620] audit: type=1400 audit(1664286663.889:6): avc: denied { execmem } for pid=287 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 72.202866] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.205924] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.207782] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.210962] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.213691] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 72.216208] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.222923] Bluetooth: hci0: HCI_REQ-0x0c1a [ 72.280190] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 72.281620] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 72.284368] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 72.286479] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 72.288106] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 72.288438] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 72.292114] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 72.292218] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 72.293220] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 72.295557] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 72.295957] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 72.297282] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 72.298884] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 72.300292] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 72.301351] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 72.302724] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 72.303971] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 72.305159] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 72.308969] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 72.312858] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 72.312923] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 72.315429] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 72.316835] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 72.319442] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 72.321955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 72.323520] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 72.324835] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 72.326142] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 72.327649] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 72.330287] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 72.331552] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 72.332570] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 72.335367] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 72.336855] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 72.337839] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 72.339342] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 72.341244] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 72.342657] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 72.343745] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 72.348184] Bluetooth: hci1: HCI_REQ-0x0c1a [ 72.349130] Bluetooth: hci7: HCI_REQ-0x0c1a [ 72.350064] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 72.351612] Bluetooth: hci3: HCI_REQ-0x0c1a [ 72.361664] Bluetooth: hci4: HCI_REQ-0x0c1a [ 72.366290] Bluetooth: hci2: HCI_REQ-0x0c1a [ 72.367469] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 72.370975] Bluetooth: hci6: HCI_REQ-0x0c1a [ 72.373940] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 72.381422] Bluetooth: hci5: HCI_REQ-0x0c1a [ 74.284436] Bluetooth: hci0: command 0x0409 tx timeout [ 74.412388] Bluetooth: hci3: command 0x0409 tx timeout [ 74.413131] Bluetooth: hci4: command 0x0409 tx timeout [ 74.413614] Bluetooth: hci1: command 0x0409 tx timeout [ 74.414119] Bluetooth: hci5: command 0x0409 tx timeout [ 74.414618] Bluetooth: hci6: command 0x0409 tx timeout [ 74.415116] Bluetooth: hci2: command 0x0409 tx timeout [ 74.415586] Bluetooth: hci7: command 0x0409 tx timeout [ 76.334182] Bluetooth: hci0: command 0x041b tx timeout [ 76.460112] Bluetooth: hci7: command 0x041b tx timeout [ 76.460179] Bluetooth: hci2: command 0x041b tx timeout [ 76.460990] Bluetooth: hci6: command 0x041b tx timeout [ 76.461444] Bluetooth: hci5: command 0x041b tx timeout [ 76.461470] Bluetooth: hci1: command 0x041b tx timeout [ 76.462274] Bluetooth: hci4: command 0x041b tx timeout [ 76.462629] Bluetooth: hci3: command 0x041b tx timeout [ 78.381355] Bluetooth: hci0: command 0x040f tx timeout [ 78.508222] Bluetooth: hci1: command 0x040f tx timeout [ 78.508264] Bluetooth: hci3: command 0x040f tx timeout [ 78.509561] Bluetooth: hci6: command 0x040f tx timeout [ 78.509597] Bluetooth: hci4: command 0x040f tx timeout [ 78.510321] Bluetooth: hci5: command 0x040f tx timeout [ 78.510729] Bluetooth: hci2: command 0x040f tx timeout [ 78.511447] Bluetooth: hci7: command 0x040f tx timeout [ 80.429081] Bluetooth: hci0: command 0x0419 tx timeout [ 80.556089] Bluetooth: hci7: command 0x0419 tx timeout [ 80.556558] Bluetooth: hci1: command 0x0419 tx timeout [ 80.557094] Bluetooth: hci2: command 0x0419 tx timeout [ 80.557501] Bluetooth: hci5: command 0x0419 tx timeout [ 80.557899] Bluetooth: hci4: command 0x0419 tx timeout [ 80.558335] Bluetooth: hci6: command 0x0419 tx timeout [ 80.558745] Bluetooth: hci3: command 0x0419 tx timeout [ 127.144851] audit: type=1400 audit(1664286720.066:7): avc: denied { open } for pid=3859 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.148391] audit: type=1400 audit(1664286720.070:8): avc: denied { kernel } for pid=3859 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.229883] loop2: detected capacity change from 0 to 264192 [ 127.340265] loop2: detected capacity change from 0 to 264192 13:52:00 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0xeb1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x91}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) dup2(r0, r1) r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r4, &(0x7f0000000400)=0x80, &(0x7f00000005c0)=@isdn, 0x0, 0x80800, 0x1, {0x0, r5}}, 0x3) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, {0x0, r5}}, 0x5) fcntl$setstatus(r3, 0x4, 0x2000) 13:52:00 executing program 6: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000040)={r0, 0xb58a, 0x100000001, 0x2}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r2, &(0x7f0000000140)=[{&(0x7f0000000000)='P', 0x1}], 0x1, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/protocols\x00') pread64(r3, &(0x7f00000000c0)=""/98, 0x62, 0xe99) syz_io_uring_setup(0x4f26, &(0x7f0000000200)={0x0, 0x30e4, 0x4, 0x3, 0xe4, 0x0, r3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000300), &(0x7f0000000340)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r4, 0x0, 0x0, 0x87ffffc) openat(r4, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0) [ 127.598044] ------------[ cut here ]------------ [ 127.598075] [ 127.598079] ====================================================== [ 127.598084] WARNING: possible circular locking dependency detected [ 127.598089] 6.0.0-rc6-next-20220923 #1 Not tainted [ 127.598098] ------------------------------------------------------ [ 127.598103] syz-executor.2/3891 is trying to acquire lock: [ 127.598112] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 127.598163] [ 127.598163] but task is already holding lock: [ 127.598167] ffff88800ef72c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.598206] [ 127.598206] which lock already depends on the new lock. [ 127.598206] [ 127.598210] [ 127.598210] the existing dependency chain (in reverse order) is: [ 127.598215] [ 127.598215] -> #3 (&ctx->lock){....}-{2:2}: [ 127.598234] _raw_spin_lock+0x2a/0x40 [ 127.598260] __perf_event_task_sched_out+0x53b/0x18d0 [ 127.598278] __schedule+0xedd/0x2470 [ 127.598296] schedule+0xda/0x1b0 [ 127.598314] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.598330] syscall_exit_to_user_mode+0x19/0x40 [ 127.598347] do_syscall_64+0x48/0x90 [ 127.598370] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.598387] [ 127.598387] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 127.598406] _raw_spin_lock_nested+0x30/0x40 [ 127.598431] raw_spin_rq_lock_nested+0x1e/0x30 [ 127.598449] task_fork_fair+0x63/0x4d0 [ 127.598472] sched_cgroup_fork+0x3d0/0x540 [ 127.598492] copy_process+0x4183/0x6e20 [ 127.598506] kernel_clone+0xe7/0x890 [ 127.598519] user_mode_thread+0xad/0xf0 [ 127.598533] rest_init+0x24/0x250 [ 127.598549] arch_call_rest_init+0xf/0x14 [ 127.598573] start_kernel+0x4c1/0x4e6 [ 127.598594] secondary_startup_64_no_verify+0xe0/0xeb [ 127.598613] [ 127.598613] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 127.598632] _raw_spin_lock_irqsave+0x39/0x60 [ 127.598657] try_to_wake_up+0xab/0x1930 [ 127.598675] up+0x75/0xb0 [ 127.598694] __up_console_sem+0x6e/0x80 [ 127.598716] console_unlock+0x46a/0x590 [ 127.598738] do_con_write+0xc05/0x1d50 [ 127.598754] con_write+0x21/0x40 [ 127.598768] n_tty_write+0x4d4/0xfe0 [ 127.598787] file_tty_write.constprop.0+0x49c/0x8f0 [ 127.598804] vfs_write+0x9c3/0xd90 [ 127.598829] ksys_write+0x127/0x250 [ 127.598852] do_syscall_64+0x3b/0x90 [ 127.598875] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.598892] [ 127.598892] -> #0 ((console_sem).lock){....}-{2:2}: [ 127.598911] __lock_acquire+0x2a02/0x5e70 [ 127.598934] lock_acquire+0x1a2/0x530 [ 127.598956] _raw_spin_lock_irqsave+0x39/0x60 [ 127.598981] down_trylock+0xe/0x70 [ 127.599001] __down_trylock_console_sem+0x3b/0xd0 [ 127.599023] vprintk_emit+0x16b/0x560 [ 127.599046] vprintk+0x84/0xa0 [ 127.599067] _printk+0xba/0xf1 [ 127.599082] report_bug.cold+0x72/0xab [ 127.599105] handle_bug+0x3c/0x70 [ 127.599127] exc_invalid_op+0x14/0x50 [ 127.599150] asm_exc_invalid_op+0x16/0x20 [ 127.599165] group_sched_out.part.0+0x2c7/0x460 [ 127.599180] ctx_sched_out+0x8f1/0xc10 [ 127.599194] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.599212] __schedule+0xedd/0x2470 [ 127.599230] schedule+0xda/0x1b0 [ 127.599248] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.599262] syscall_exit_to_user_mode+0x19/0x40 [ 127.599279] do_syscall_64+0x48/0x90 [ 127.599302] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.599318] [ 127.599318] other info that might help us debug this: [ 127.599318] [ 127.599322] Chain exists of: [ 127.599322] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 127.599322] [ 127.599343] Possible unsafe locking scenario: [ 127.599343] [ 127.599346] CPU0 CPU1 [ 127.599349] ---- ---- [ 127.599353] lock(&ctx->lock); [ 127.599360] lock(&rq->__lock); [ 127.599369] lock(&ctx->lock); [ 127.599378] lock((console_sem).lock); [ 127.599386] [ 127.599386] *** DEADLOCK *** [ 127.599386] [ 127.599389] 2 locks held by syz-executor.2/3891: [ 127.599398] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 127.599438] #1: ffff88800ef72c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.599477] [ 127.599477] stack backtrace: [ 127.599481] CPU: 0 PID: 3891 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1 [ 127.599498] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.599509] Call Trace: [ 127.599514] [ 127.599520] dump_stack_lvl+0x8b/0xb3 [ 127.599544] check_noncircular+0x263/0x2e0 [ 127.599567] ? format_decode+0x26c/0xb50 [ 127.599589] ? print_circular_bug+0x450/0x450 [ 127.599613] ? enable_ptr_key_workfn+0x20/0x20 [ 127.599636] ? format_decode+0x26c/0xb50 [ 127.599659] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 127.599684] __lock_acquire+0x2a02/0x5e70 [ 127.599714] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 127.599745] lock_acquire+0x1a2/0x530 [ 127.599768] ? down_trylock+0xe/0x70 [ 127.599791] ? lock_release+0x750/0x750 [ 127.599819] ? vprintk+0x84/0xa0 [ 127.599844] _raw_spin_lock_irqsave+0x39/0x60 [ 127.599870] ? down_trylock+0xe/0x70 [ 127.599892] down_trylock+0xe/0x70 [ 127.599913] ? vprintk+0x84/0xa0 [ 127.599936] __down_trylock_console_sem+0x3b/0xd0 [ 127.599960] vprintk_emit+0x16b/0x560 [ 127.599986] vprintk+0x84/0xa0 [ 127.600010] _printk+0xba/0xf1 [ 127.600025] ? record_print_text.cold+0x16/0x16 [ 127.600047] ? report_bug.cold+0x66/0xab [ 127.600072] ? group_sched_out.part.0+0x2c7/0x460 [ 127.600088] report_bug.cold+0x72/0xab [ 127.600113] handle_bug+0x3c/0x70 [ 127.600137] exc_invalid_op+0x14/0x50 [ 127.600162] asm_exc_invalid_op+0x16/0x20 [ 127.600178] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.600197] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.600213] RSP: 0018:ffff888018557c48 EFLAGS: 00010006 [ 127.600226] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.600237] RDX: ffff888020430000 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 127.600247] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001 [ 127.600258] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800ef72c00 [ 127.600268] R13: ffff88806ce3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 127.600284] ? group_sched_out.part.0+0x2c7/0x460 [ 127.600302] ? group_sched_out.part.0+0x2c7/0x460 [ 127.600321] ctx_sched_out+0x8f1/0xc10 [ 127.600339] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.600361] ? lock_is_held_type+0xd7/0x130 [ 127.600379] ? __perf_cgroup_move+0x160/0x160 [ 127.600396] ? set_next_entity+0x304/0x550 [ 127.600420] ? update_curr+0x267/0x740 [ 127.600446] ? lock_is_held_type+0xd7/0x130 [ 127.600464] __schedule+0xedd/0x2470 [ 127.600487] ? io_schedule_timeout+0x150/0x150 [ 127.600510] ? rcu_read_lock_sched_held+0x3e/0x80 [ 127.600538] schedule+0xda/0x1b0 [ 127.600577] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.600594] syscall_exit_to_user_mode+0x19/0x40 [ 127.600612] do_syscall_64+0x48/0x90 [ 127.600636] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.600654] RIP: 0033:0x7fb703765b19 [ 127.600666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.600681] RSP: 002b:00007fb700cdb218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.600696] RAX: 0000000000000001 RBX: 00007fb703878f68 RCX: 00007fb703765b19 [ 127.600707] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb703878f6c [ 127.600717] RBP: 00007fb703878f60 R08: 000000000000000e R09: 0000000000000000 [ 127.600727] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb703878f6c [ 127.600737] R13: 00007ffd0f07629f R14: 00007fb700cdb300 R15: 0000000000022000 [ 127.600755] [ 127.672010] WARNING: CPU: 0 PID: 3891 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 127.672833] Modules linked in: [ 127.673124] CPU: 0 PID: 3891 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1 [ 127.673834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.674818] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.675296] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.676914] RSP: 0018:ffff888018557c48 EFLAGS: 00010006 [ 127.677391] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.678020] RDX: ffff888020430000 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 127.678652] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001 [ 127.679281] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800ef72c00 [ 127.679915] R13: ffff88806ce3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 127.680545] FS: 00007fb700cdb700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 127.681269] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.681785] CR2: 00007ffd83fb5d48 CR3: 00000000174ea000 CR4: 0000000000350ef0 [ 127.682411] Call Trace: [ 127.682647] [ 127.682856] ctx_sched_out+0x8f1/0xc10 [ 127.683214] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.683680] ? lock_is_held_type+0xd7/0x130 [ 127.684072] ? __perf_cgroup_move+0x160/0x160 [ 127.684480] ? set_next_entity+0x304/0x550 [ 127.684870] ? update_curr+0x267/0x740 [ 127.685229] ? lock_is_held_type+0xd7/0x130 [ 127.685617] __schedule+0xedd/0x2470 [ 127.685961] ? io_schedule_timeout+0x150/0x150 [ 127.686379] ? rcu_read_lock_sched_held+0x3e/0x80 [ 127.686815] schedule+0xda/0x1b0 [ 127.687125] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.687559] syscall_exit_to_user_mode+0x19/0x40 [ 127.687980] do_syscall_64+0x48/0x90 [ 127.688324] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.688789] RIP: 0033:0x7fb703765b19 [ 127.689121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.690681] RSP: 002b:00007fb700cdb218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.691333] RAX: 0000000000000001 RBX: 00007fb703878f68 RCX: 00007fb703765b19 [ 127.691948] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb703878f6c [ 127.692578] RBP: 00007fb703878f60 R08: 000000000000000e R09: 0000000000000000 [ 127.693203] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb703878f6c [ 127.693831] R13: 00007ffd0f07629f R14: 00007fb700cdb300 R15: 0000000000022000 [ 127.694465] [ 127.694677] irq event stamp: 412 [ 127.694976] hardirqs last enabled at (411): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 127.695793] hardirqs last disabled at (412): [] __schedule+0x1225/0x2470 [ 127.696518] softirqs last enabled at (306): [] __irq_exit_rcu+0x11b/0x180 [ 127.697280] softirqs last disabled at (251): [] __irq_exit_rcu+0x11b/0x180 [ 127.698020] ---[ end trace 0000000000000000 ]--- 13:52:00 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x75, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000180), 0x9}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x125c02, 0x0) fallocate(r0, 0x20, 0x0, 0x2) r1 = openat$incfs(r0, &(0x7f0000000380)='.log\x00', 0x101002, 0x11) r2 = syz_open_procfs(0x0, &(0x7f0000000f00)='mountinfo\x00') r3 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_TIOCINQ(r3, 0x541b, &(0x7f0000000040)) close(r3) read$hiddev(r2, &(0x7f0000000040)=""/169, 0x200000e9) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000000)={r1, 0x7cf2, 0x200, 0x200}) sendto$unix(r4, &(0x7f00000001c0)="ecb87b3fc4f25c6a85eb554f741624e0ee9c7bf306df12c98404e14f8475e2f4b8463373c82daa69c4c81381690cbae05c7835401f084e00b2cc2baa7505482f47ffa294ea06dab017f3fc7c88b99ecf31472676afbdadd79317572b42cd47ad9a4bbfec9cba4ef077d633a6dad85726dcc6f21ccb3334b65f77ffadd50fdfac37f4e0d06329cf", 0x87, 0x4000004, 0x0, 0x0) r5 = fork() ptrace$setopts(0x4206, r5, 0x0, 0x0) ptrace$setopts(0x4206, r5, 0x0, 0x44) [ 128.209035] hrtimer: interrupt took 24455 ns 13:52:01 executing program 6: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000040)={r0, 0xb58a, 0x100000001, 0x2}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r2, &(0x7f0000000140)=[{&(0x7f0000000000)='P', 0x1}], 0x1, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/protocols\x00') pread64(r3, &(0x7f00000000c0)=""/98, 0x62, 0xe99) syz_io_uring_setup(0x4f26, &(0x7f0000000200)={0x0, 0x30e4, 0x4, 0x3, 0xe4, 0x0, r3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000300), &(0x7f0000000340)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r4, 0x0, 0x0, 0x87ffffc) openat(r4, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0) 13:52:01 executing program 6: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000040)={r0, 0xb58a, 0x100000001, 0x2}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r2, &(0x7f0000000140)=[{&(0x7f0000000000)='P', 0x1}], 0x1, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/protocols\x00') pread64(r3, &(0x7f00000000c0)=""/98, 0x62, 0xe99) syz_io_uring_setup(0x4f26, &(0x7f0000000200)={0x0, 0x30e4, 0x4, 0x3, 0xe4, 0x0, r3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000300), &(0x7f0000000340)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r4, 0x0, 0x0, 0x87ffffc) openat(r4, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0) 13:52:01 executing program 7: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000040)={r0, 0xb58a, 0x100000001, 0x2}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r2, &(0x7f0000000140)=[{&(0x7f0000000000)='P', 0x1}], 0x1, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/protocols\x00') pread64(r3, &(0x7f00000000c0)=""/98, 0x62, 0xe99) syz_io_uring_setup(0x4f26, &(0x7f0000000200)={0x0, 0x30e4, 0x4, 0x3, 0xe4, 0x0, r3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000300), &(0x7f0000000340)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r4, 0x0, 0x0, 0x87ffffc) openat(r4, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0) 13:52:01 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0xeb1, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x91}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000380)=0x0) dup2(r0, r1) r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x5}, 0x1200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet_tcp(0x2, 0x1, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r4, &(0x7f0000000400)=0x80, &(0x7f00000005c0)=@isdn, 0x0, 0x80800, 0x1, {0x0, r5}}, 0x3) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, {0x0, r5}}, 0x5) fcntl$setstatus(r3, 0x4, 0x2000) 13:52:01 executing program 2: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000), 0x4) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000040)={r0, 0xb58a, 0x100000001, 0x2}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r2, &(0x7f0000000140)=[{&(0x7f0000000000)='P', 0x1}], 0x1, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/protocols\x00') pread64(r3, &(0x7f00000000c0)=""/98, 0x62, 0xe99) syz_io_uring_setup(0x4f26, &(0x7f0000000200)={0x0, 0x30e4, 0x4, 0x3, 0xe4, 0x0, r3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000300), &(0x7f0000000340)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r4, 0x0, 0x0, 0x87ffffc) openat(r4, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0) [ 129.217137] loop0: detected capacity change from 0 to 256 [ 129.222601] nfs: Unknown parameter '*$-' [ 129.282303] loop0: detected capacity change from 0 to 264192 [ 129.283253] ======================================================= [ 129.283253] WARNING: The mand mount option has been deprecated and [ 129.283253] and is ignored by this kernel. Remove the mand [ 129.283253] option from the mount to silence this warning. [ 129.283253] ======================================================= [ 129.292338] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 130.050646] loop0: detected capacity change from 0 to 256 [ 130.051335] nfs: Unknown parameter '*$-' [ 130.069347] loop0: detected capacity change from 0 to 264192 [ 130.069950] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 VM DIAGNOSIS: 13:52:00 Registers: info registers vcpu 0 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff888018557698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000066 R11=0000000000000001 R12=0000000000000066 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0 RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb700cdb700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffd83fb5d48 CR3=00000000174ea000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fb70384c7c0 00007fb70384c7c8 YMM02=0000000000000000 0000000000000000 00007fb70384c7e0 00007fb70384c7c0 YMM03=0000000000000000 0000000000000000 00007fb70384c7c8 00007fb70384c7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff84271427 RDX=ffffed100d9c6fa1 RSI=0000000000000004 RDI=ffff88806ce37d00 RBP=ffff88806ce37d00 RSP=ffff88802050fa98 R8 =0000000000000000 R9 =ffff88806ce37d03 R10=ffffed100d9c6fa0 R11=0000000000000001 R12=0000000000000003 R13=ffffed100d9c6fa0 R14=0000000000000001 R15=1ffff110040a1f54 RIP=ffffffff842714a4 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555556d60400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000555556d61c18 CR3=000000001d6f2000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f9ad3e437c0 00007f9ad3e437c8 YMM02=0000000000000000 0000000000000000 00007f9ad3e437e0 00007f9ad3e437c0 YMM03=0000000000000000 0000000000000000 00007f9ad3e437c8 00007f9ad3e437c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000