Warning: Permanently added '[localhost]:3788' (ECDSA) to the list of known hosts.
2022/10/02 16:15:15 fuzzer started
2022/10/02 16:15:15 dialing manager at localhost:35095
syzkaller login: [   35.579975] cgroup: Unknown subsys name 'net'
[   35.682119] cgroup: Unknown subsys name 'rlimit'
2022/10/02 16:15:30 syscalls: 2215
2022/10/02 16:15:30 code coverage: enabled
2022/10/02 16:15:30 comparison tracing: enabled
2022/10/02 16:15:30 extra coverage: enabled
2022/10/02 16:15:30 setuid sandbox: enabled
2022/10/02 16:15:30 namespace sandbox: enabled
2022/10/02 16:15:30 Android sandbox: enabled
2022/10/02 16:15:30 fault injection: enabled
2022/10/02 16:15:30 leak checking: enabled
2022/10/02 16:15:30 net packet injection: enabled
2022/10/02 16:15:30 net device setup: enabled
2022/10/02 16:15:30 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/02 16:15:30 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/02 16:15:30 USB emulation: enabled
2022/10/02 16:15:30 hci packet injection: enabled
2022/10/02 16:15:30 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/02 16:15:30 802.15.4 emulation: enabled
2022/10/02 16:15:30 fetching corpus: 50, signal 20416/22265 (executing program)
2022/10/02 16:15:30 fetching corpus: 100, signal 32610/36129 (executing program)
2022/10/02 16:15:30 fetching corpus: 150, signal 38384/43510 (executing program)
2022/10/02 16:15:30 fetching corpus: 200, signal 46359/53018 (executing program)
2022/10/02 16:15:30 fetching corpus: 250, signal 51108/59284 (executing program)
2022/10/02 16:15:30 fetching corpus: 300, signal 56915/66473 (executing program)
2022/10/02 16:15:30 fetching corpus: 350, signal 60832/71815 (executing program)
2022/10/02 16:15:30 fetching corpus: 400, signal 64529/76858 (executing program)
2022/10/02 16:15:31 fetching corpus: 450, signal 70983/84496 (executing program)
2022/10/02 16:15:31 fetching corpus: 500, signal 76874/91449 (executing program)
2022/10/02 16:15:31 fetching corpus: 550, signal 80127/95883 (executing program)
2022/10/02 16:15:31 fetching corpus: 600, signal 84216/101038 (executing program)
2022/10/02 16:15:31 fetching corpus: 650, signal 87962/105891 (executing program)
2022/10/02 16:15:31 fetching corpus: 700, signal 90006/109163 (executing program)
2022/10/02 16:15:31 fetching corpus: 750, signal 92573/112769 (executing program)
2022/10/02 16:15:31 fetching corpus: 800, signal 94953/116234 (executing program)
2022/10/02 16:15:32 fetching corpus: 850, signal 96618/119034 (executing program)
2022/10/02 16:15:32 fetching corpus: 900, signal 102441/125449 (executing program)
2022/10/02 16:15:32 fetching corpus: 950, signal 104210/128212 (executing program)
2022/10/02 16:15:32 fetching corpus: 1000, signal 106230/131267 (executing program)
2022/10/02 16:15:32 fetching corpus: 1050, signal 108725/134647 (executing program)
2022/10/02 16:15:32 fetching corpus: 1100, signal 110617/137490 (executing program)
2022/10/02 16:15:32 fetching corpus: 1150, signal 112832/140591 (executing program)
2022/10/02 16:15:33 fetching corpus: 1200, signal 116213/144559 (executing program)
2022/10/02 16:15:33 fetching corpus: 1250, signal 117465/146732 (executing program)
2022/10/02 16:15:33 fetching corpus: 1300, signal 119882/149897 (executing program)
2022/10/02 16:15:33 fetching corpus: 1350, signal 121931/152717 (executing program)
2022/10/02 16:15:33 fetching corpus: 1400, signal 123299/154917 (executing program)
2022/10/02 16:15:33 fetching corpus: 1450, signal 125271/157625 (executing program)
2022/10/02 16:15:33 fetching corpus: 1500, signal 127155/160208 (executing program)
2022/10/02 16:15:33 fetching corpus: 1550, signal 128649/162471 (executing program)
2022/10/02 16:15:33 fetching corpus: 1600, signal 129772/164423 (executing program)
2022/10/02 16:15:34 fetching corpus: 1650, signal 131049/166479 (executing program)
2022/10/02 16:15:34 fetching corpus: 1700, signal 132286/168477 (executing program)
2022/10/02 16:15:34 fetching corpus: 1750, signal 133885/170731 (executing program)
2022/10/02 16:15:34 fetching corpus: 1800, signal 134783/172513 (executing program)
2022/10/02 16:15:34 fetching corpus: 1850, signal 136689/174942 (executing program)
2022/10/02 16:15:34 fetching corpus: 1900, signal 138338/177169 (executing program)
2022/10/02 16:15:34 fetching corpus: 1950, signal 140569/179812 (executing program)
2022/10/02 16:15:34 fetching corpus: 2000, signal 142050/181868 (executing program)
2022/10/02 16:15:35 fetching corpus: 2050, signal 144485/184613 (executing program)
2022/10/02 16:15:35 fetching corpus: 2100, signal 145589/186377 (executing program)
2022/10/02 16:15:35 fetching corpus: 2150, signal 146680/188108 (executing program)
2022/10/02 16:15:35 fetching corpus: 2200, signal 147860/189846 (executing program)
2022/10/02 16:15:35 fetching corpus: 2250, signal 148632/191374 (executing program)
2022/10/02 16:15:35 fetching corpus: 2300, signal 149562/192940 (executing program)
2022/10/02 16:15:35 fetching corpus: 2350, signal 151087/194930 (executing program)
2022/10/02 16:15:35 fetching corpus: 2400, signal 152527/196796 (executing program)
2022/10/02 16:15:35 fetching corpus: 2450, signal 153445/198309 (executing program)
2022/10/02 16:15:35 fetching corpus: 2500, signal 154139/199685 (executing program)
2022/10/02 16:15:36 fetching corpus: 2550, signal 155049/201203 (executing program)
2022/10/02 16:15:36 fetching corpus: 2600, signal 155927/202625 (executing program)
2022/10/02 16:15:36 fetching corpus: 2650, signal 157360/204474 (executing program)
2022/10/02 16:15:36 fetching corpus: 2700, signal 158348/206009 (executing program)
2022/10/02 16:15:36 fetching corpus: 2750, signal 159189/207409 (executing program)
2022/10/02 16:15:36 fetching corpus: 2800, signal 160038/208799 (executing program)
2022/10/02 16:15:36 fetching corpus: 2850, signal 161428/210495 (executing program)
2022/10/02 16:15:36 fetching corpus: 2900, signal 162104/211745 (executing program)
2022/10/02 16:15:36 fetching corpus: 2950, signal 163010/213127 (executing program)
2022/10/02 16:15:36 fetching corpus: 3000, signal 163486/214245 (executing program)
2022/10/02 16:15:37 fetching corpus: 3050, signal 164628/215748 (executing program)
2022/10/02 16:15:37 fetching corpus: 3100, signal 165476/217125 (executing program)
2022/10/02 16:15:37 fetching corpus: 3150, signal 165842/218137 (executing program)
2022/10/02 16:15:37 fetching corpus: 3200, signal 166462/219303 (executing program)
2022/10/02 16:15:37 fetching corpus: 3250, signal 167693/220807 (executing program)
2022/10/02 16:15:37 fetching corpus: 3300, signal 168364/221989 (executing program)
2022/10/02 16:15:37 fetching corpus: 3350, signal 168880/223155 (executing program)
2022/10/02 16:15:37 fetching corpus: 3400, signal 169769/224417 (executing program)
2022/10/02 16:15:38 fetching corpus: 3450, signal 171099/225862 (executing program)
2022/10/02 16:15:38 fetching corpus: 3500, signal 172125/227144 (executing program)
2022/10/02 16:15:38 fetching corpus: 3550, signal 174181/228906 (executing program)
2022/10/02 16:15:38 fetching corpus: 3600, signal 175090/230138 (executing program)
2022/10/02 16:15:38 fetching corpus: 3650, signal 175471/231091 (executing program)
2022/10/02 16:15:38 fetching corpus: 3700, signal 176022/232102 (executing program)
2022/10/02 16:15:38 fetching corpus: 3750, signal 176534/233107 (executing program)
2022/10/02 16:15:38 fetching corpus: 3800, signal 177501/234308 (executing program)
2022/10/02 16:15:39 fetching corpus: 3850, signal 178255/235378 (executing program)
2022/10/02 16:15:39 fetching corpus: 3900, signal 178591/236264 (executing program)
2022/10/02 16:15:39 fetching corpus: 3950, signal 179124/237229 (executing program)
2022/10/02 16:15:39 fetching corpus: 4000, signal 180133/238378 (executing program)
2022/10/02 16:15:39 fetching corpus: 4050, signal 180576/239276 (executing program)
2022/10/02 16:15:39 fetching corpus: 4100, signal 181037/240192 (executing program)
2022/10/02 16:15:39 fetching corpus: 4150, signal 181648/241199 (executing program)
2022/10/02 16:15:39 fetching corpus: 4200, signal 182560/242313 (executing program)
2022/10/02 16:15:39 fetching corpus: 4250, signal 183417/243338 (executing program)
2022/10/02 16:15:39 fetching corpus: 4300, signal 184211/244329 (executing program)
2022/10/02 16:15:40 fetching corpus: 4350, signal 185333/245444 (executing program)
2022/10/02 16:15:40 fetching corpus: 4400, signal 185763/246313 (executing program)
2022/10/02 16:15:40 fetching corpus: 4450, signal 186418/247267 (executing program)
2022/10/02 16:15:40 fetching corpus: 4500, signal 186939/248111 (executing program)
2022/10/02 16:15:40 fetching corpus: 4550, signal 187319/248974 (executing program)
2022/10/02 16:15:40 fetching corpus: 4600, signal 188020/249919 (executing program)
2022/10/02 16:15:40 fetching corpus: 4650, signal 188905/250903 (executing program)
2022/10/02 16:15:40 fetching corpus: 4700, signal 190264/252015 (executing program)
2022/10/02 16:15:41 fetching corpus: 4750, signal 191374/253027 (executing program)
2022/10/02 16:15:41 fetching corpus: 4800, signal 192106/253952 (executing program)
2022/10/02 16:15:41 fetching corpus: 4850, signal 192845/254853 (executing program)
2022/10/02 16:15:41 fetching corpus: 4900, signal 193817/255789 (executing program)
2022/10/02 16:15:41 fetching corpus: 4950, signal 194225/256540 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/257324 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/257932 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/258569 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/259194 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/259826 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/260425 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/261069 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/261722 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/262346 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/262960 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/263559 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/264187 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/264842 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/265470 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/266086 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/266736 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/267342 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/267933 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/268551 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/269150 (executing program)
2022/10/02 16:15:41 fetching corpus: 4997, signal 194783/269805 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/270388 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/271045 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/271664 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/272276 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/272915 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/273509 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/274121 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/274754 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/275408 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/276002 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/276595 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/277222 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/277839 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/278465 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/279065 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/279679 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/280283 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/280945 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/281585 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/281758 (executing program)
2022/10/02 16:15:42 fetching corpus: 4997, signal 194783/281758 (executing program)
2022/10/02 16:15:44 starting 8 fuzzer processes
16:15:44 executing program 0:
r0 = accept$inet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0x10)
fcntl$lock(r0, 0x7, &(0x7f0000000080)={0x1, 0x0, 0xee89, 0x7, 0xffffffffffffffff})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0, {<r2=>r0}}, './file0\x00'})
write$P9_RLOPEN(r1, &(0x7f0000000100)={0x18, 0xd, 0x1, {{0x80, 0x2, 0x5}, 0xb8}}, 0x18)
fsconfig$FSCONFIG_SET_PATH(r2, 0x3, &(0x7f0000000140)='#\x00', &(0x7f0000000180)='./file0\x00', 0xffffffffffffff9c)
write$P9_RXATTRWALK(r1, &(0x7f00000001c0)={0xf, 0x1f, 0x2, 0x34b}, 0xf)
perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x20, 0x1f, 0x5, 0x3f, 0x0, 0x100, 0x40038, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x7f, 0xffffffffffffffff}, 0x54351, 0xfff, 0x70b, 0x0, 0x8, 0x401, 0x3f, 0x0, 0x2, 0x0, 0x80000000}, 0xffffffffffffffff, 0xc, r1, 0x2)
r3 = open(&(0x7f0000000280)='./file0\x00', 0x1, 0x106)
write$P9_RMKDIR(r3, &(0x7f00000002c0)={0x14, 0x49, 0x1, {0x10, 0x2, 0x1}}, 0x14)
r4 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x40, 0xf8, 0x3, 0x1f, 0x0, 0x4, 0x80000, 0xd, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x4, 0x0, @perf_config_ext={0xd2, 0x2}, 0x4, 0x4, 0x1, 0x5, 0x4, 0x0, 0x5, 0x0, 0x4, 0x0, 0x39}, 0xffffffffffffffff, 0xb, r1, 0xa)
recvmsg$unix(r2, &(0x7f0000001540)={&(0x7f0000000380)=@abs, 0x6e, &(0x7f0000001480)=[{&(0x7f0000000400)=""/111, 0x6f}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x2, &(0x7f00000014c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {<r5=>0x0}}}], 0x60}, 0x0)
write$P9_RREMOVE(r2, &(0x7f0000001580)={0x7, 0x7b, 0x2}, 0x7)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000015c0)={'#! ', './file0', [{0x20, 'A'}, {0x20, '#\x00'}, {0x20, '#\x00'}, {}, {0x20, '#\x00'}, {0x20, '#\x00'}], 0xa, "bb6b88e7a306af71313ae227011a1507d9a68957907ca8a409f1d2d159d9400ce40e79d76301895af746bc83da6df1478094ffcdab66a0c753a58d894a808c8a92cf"}, 0x5c)
mkdirat(0xffffffffffffff9c, &(0x7f0000001640)='./file0\x00', 0x48)
accept4$inet(r1, &(0x7f0000001680)={0x2, 0x0, @multicast1}, &(0x7f00000016c0)=0x10, 0x800)
rmdir(&(0x7f0000001700)='./file0\x00')
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000001740)={{0x1, 0x1, 0x18, <r6=>r2, {0x1}}, './file0\x00'})
r7 = getpgid(r5)
fcntl$setownex(r6, 0xf, &(0x7f0000001780)={0x3, r7})
mmap$perf(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x8, 0x1010, r4, 0x1)

16:15:44 executing program 1:
r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x410001, 0x0)
ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000040))
getpeername$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, &(0x7f00000000c0)=0x10)
fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000100), &(0x7f0000000140), 0x2, 0x2)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f00000014c0)={{'\x00', 0x2}, {}, 0x40, 0x0, 0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)="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", 0x13a, 0x0, &(0x7f0000000340)={0x2, 0x1070, {0x1, 0xc, 0x1000, "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", 0x63, "10fa991dd5b87d3f53600333db168edbce3b5d118132d1f9c22f737bd88695a6ebdecd60b99487f4c7dd5f571783a13f4f0ad68167a8fd21890e606f629cf02f22965d953268b3244d61ec7595315cf704b835757702720ea85de80d0d1d21af079fa6"}, 0xc9, "02a2a3b89434c864eb3ee2228e1319fe7b2b07576185b58df92c00a7f57180c5d3956873e0133d7c274558dad09d21ab127e1d8102d2153a0dba9cc96ca41cf98a63e06842720e7d8081bfcf52a1e2f116da94cab322e82fa59400c3fbe6c21036e2ac271ab6b73ceaa0675af0df961c85b801a734f531868ee32dc8d653cefe0310412c6e745ba951df7f9f61c6dc9dfac6587bf1b018860c06009993b6930ead0f5ec262d984ce7c25fcc124eafb917e4e708d027d3ad1d9573eab55080f938dd30ce14ff0855d31"}, 0x1145})
sendfile(r1, r0, &(0x7f0000001540)=0x1ff, 0x4)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001680)={{{@in=@remote, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in=@empty}, 0x0, @in6=@private1}}, &(0x7f0000001780)=0xe8)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001900)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000018c0)={&(0x7f00000017c0)={0xe8, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_FEATURES_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_FEATURES_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x44, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x3f, 0x4, "132e2b9c2581653e789f857adef8e7f2e52e509e95273bcb349f1f6ccf037efb4d979f9a150c85cd261663f0d371466632014faa069ced7b1d25d3"}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x48001}, 0x20000000)
recvfrom$inet(r0, &(0x7f0000001940)=""/78, 0x4e, 0x40000100, &(0x7f00000019c0)={0x2, 0x4e21, @multicast2}, 0x10)
r3 = dup(r1)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f0000001a00)={{0x1, 0x1, 0x18, <r4=>r0}, './file0\x00'})
r5 = openat(r3, &(0x7f0000001a80)='./file0\x00', 0x331801, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001a40), r5)
pipe2(&(0x7f0000001ac0)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x4000)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r3, &(0x7f0000001b00)={0x5})
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000001b40)={{0x1, 0x1, 0x18, r3, {<r7=>r4}}, './file0\x00'})
r8 = accept4$packet(r0, &(0x7f0000001b80)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000001bc0)=0x14, 0x80000)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000001c00)={0xe0002002})
sendmsg$TEAM_CMD_PORT_LIST_GET(0xffffffffffffffff, &(0x7f00000025c0)={&(0x7f0000001c80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000002580)={&(0x7f0000001f40)={0x640, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {}, [{{0x8, 0x1, r9}, {0xe8, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}, {0x6c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x3c, 0x4, [{0x77d, 0x5, 0x4, 0xd1d}, {0x2, 0x3, 0xff, 0xa3}, {0x3, 0x40, 0x20, 0x81}, {0x0, 0x2c, 0x4, 0x8}, {0x7f, 0x1, 0x1, 0x10001}, {0xc46, 0x5, 0x3f, 0x7fff}, {0x4, 0x1, 0x20, 0x3}]}}}]}}, {{0x8, 0x1, r2}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r9}}}]}}, {{0x8, 0x1, r2}, {0x234, 0x2, 0x0, 0x1, [{0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8}}, {0x8, 0x6, r2}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x5d0}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r9}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x6f}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r2}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x8}}, {0x8, 0x6, r9}}}]}}, {{0x8, 0x1, r2}, {0x1e4, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x1000}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x60}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x2}}, {0x8, 0x6, r9}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r9}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x7}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}, {{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0xfffffff7}}}]}}, {{0x8, 0x1, r2}, {0x7c, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x10000}}}]}}]}, 0x640}, 0x1, 0x0, 0x0, 0x40}, 0x4000)

16:15:44 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x13}}, './file0\x00'})
ioctl$sock_SIOCSIFVLAN_SET_VLAN_FLAG_CMD(r0, 0x8983, &(0x7f0000000040)={0x7, 'syzkaller0\x00', {0xfffffff7}})
r1 = memfd_secret(0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000200))
r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000240), 0x14000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000280)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
recvmmsg$unix(r1, &(0x7f000000a1c0)=[{{&(0x7f00000013c0)=@abs, 0x6e, &(0x7f0000002680)=[{&(0x7f0000001440)}, {&(0x7f0000001480)=""/145, 0x91}, {&(0x7f0000001540)=""/231, 0xe7}, {&(0x7f0000001640)=""/4096, 0x1000}, {&(0x7f0000002640)=""/26, 0x1a}], 0x5, &(0x7f0000002700)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, <r3=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x128}}, {{0x0, 0x0, &(0x7f0000003c40)=[{&(0x7f0000002840)=""/231, 0xe7}, {&(0x7f0000002940)=""/179, 0xb3}, {&(0x7f0000002a00)=""/32, 0x20}, {&(0x7f0000002a40)=""/87, 0x57}, {&(0x7f0000002ac0)=""/155, 0x9b}, {&(0x7f0000002b80)=""/190, 0xbe}, {&(0x7f0000002c40)=""/4096, 0x1000}], 0x7}}, {{&(0x7f0000003cc0), 0x6e, &(0x7f0000005280)=[{&(0x7f0000003d40)=""/92, 0x5c}, {&(0x7f0000003dc0)=""/4096, 0x1000}, {&(0x7f0000004dc0)=""/45, 0x2d}, {&(0x7f0000004e00)=""/144, 0x90}, {&(0x7f0000004ec0)=""/106, 0x6a}, {&(0x7f0000004f40)=""/36, 0x24}, {&(0x7f0000004f80)=""/114, 0x72}, {&(0x7f0000005000)=""/204, 0xcc}, {&(0x7f0000005100)=""/165, 0xa5}, {&(0x7f00000051c0)=""/139, 0x8b}], 0xa, &(0x7f0000005340)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r4=>0x0}}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}}, {{&(0x7f0000005440), 0x6e, &(0x7f0000006800)=[{&(0x7f00000054c0)=""/122, 0x7a}, {&(0x7f0000005540)=""/4096, 0x1000}, {&(0x7f0000006540)=""/63, 0x3f}, {&(0x7f0000006580)=""/211, 0xd3}, {&(0x7f0000006680)=""/73, 0x49}, {&(0x7f0000006700)=""/246, 0xf6}], 0x6, &(0x7f0000006880)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x68}}, {{&(0x7f0000006900)=@abs, 0x6e, &(0x7f0000007c40)=[{&(0x7f0000006980)=""/200, 0xc8}, {&(0x7f0000006a80)=""/4096, 0x1000}, {&(0x7f0000007a80)=""/145, 0x91}, {&(0x7f0000007b40)=""/34, 0x22}, {&(0x7f0000007b80)=""/183, 0xb7}], 0x5, &(0x7f0000007cc0)}}, {{0x0, 0x0, &(0x7f0000008f40)=[{&(0x7f0000007d00)=""/125, 0x7d}, {&(0x7f0000007d80)=""/78, 0x4e}, {&(0x7f0000007e00)=""/4096, 0x1000}, {&(0x7f0000008e00)=""/252, 0xfc}, {&(0x7f0000008f00)}], 0x5, &(0x7f0000008fc0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x78}}, {{&(0x7f0000009040), 0x6e, &(0x7f000000a180)=[{&(0x7f00000090c0)=""/4096, 0x1000}, {&(0x7f000000a0c0)=""/179, 0xb3}], 0x2}}], 0x7, 0x0, &(0x7f000000a380))
clone3(&(0x7f000000a400)={0x984100, &(0x7f00000002c0), &(0x7f0000000300), &(0x7f0000000340), {0x3e}, &(0x7f0000000380)=""/29, 0x1d, &(0x7f00000003c0)=""/4096, &(0x7f000000a3c0)=[0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, r4], 0x9}, 0x58)
r10 = syz_open_dev$evdev(&(0x7f000000a480), 0x6, 0x40101)
write$binfmt_aout(r10, &(0x7f000000a4c0)={{0xcc, 0x80, 0x4, 0x18e, 0x1f9, 0x3, 0x4b, 0x1}, "1e2f94538b59177811be11d2bf7bfdc8401f774806c3145adb4ca57bc8e9d296fa77c28b37d8c35d82ee513dcf2b693f3f7ba1dec71913a4c79e75519550ea750a30bb5f4200628a05bd4cf458c950c5c680ad881ad13340da6c5973b3ea33fbf9db507e77917265f5b1c65e082d836bc05bcfaeab78cc1d9460ae4d033c99c8f6236e95b6cc9f2739147ae292baf9ee5e3263fd5a7af4291945ad47e8e710c44563de07348442944a03366f5d746c98c93f59dec45d4a2a53aeca239a11f4fce80fada7324b97e46dd6ea56e8f45d54b1cc5411b67766184c74a7fd583eb5afe94bb3649ce55321e787ff9fee809b5003b0778c57df8a23cabd64f927db0a74e2fb33c9e302537a0efb4be7a4fe049df0e49481f2e3437bd6e14ff322df639d4856a8150d3732b40e6723805e03d54625f5a46886598b857c8773063d92dcaed8a45775739597dd7287aeaec359e756f3ccc1854e29f868cc367467014118377b0009ad27d40ae5b6821896a4bfe29de21e8c049f2cb145234de55af927ad429cec78273e7d974e7e3c830a63c18072e124a68626d4680a105438061104404cba05f0096b15068dc0cdbcec4534c81b6141994bdf2e1a785eae7ef506cb8007d7ad252d897da612fa4aa08568e973c7b2129591ac470e77ad4b2e7d6209864c95d3f90ec96e06f4921d88d85ed50b16fe63e0f501e3e2c7f6f94b0437a30e6ae4a3a53171ba14186197bd1884df586d56fa40caff24373f1ac86e83d70ea9382f9461ba8b7d16c3b1756d5562b3a6d183c20f135999460dff3382c5ae6a2ed350eca7356f09cff913b5c1e8c7e496925b9025f0606ab4c2723ce8bf6fa7360685881f4ddf66a10927de0833e2fe0a5957f2480f713c2fe5315bfee07f7756dc15a4a9c3dd628a3334758ab5866367ecbd3ecb3f4151225fedf48d185b4d378ba39c83e887885f6dc75d4890cf62c907cd688d0bdb9e55e0f91a406fd6792fc1f6b2c011dc5193102a250c862289364163a75bd1a6569a3b72a997a3c101b16aeb21a84b5d4b6f488b272ec1385cf7e47ef9d05389bd97203a3f6470c06e9a507add6a157a43772cca2c68a878a43bd8aa3e81698ebbe568c72bba582978dc407c03a273159708a516051f577835635b0584a61732f29562375972c59317638f1d3627abf8adba2d94ffd3714649ba3283c778ff14fa2d9ab678afe9c4d159798d8e5a08f2b3e4c2bebd248cbe744426eb1a09123022e277eb76d22b13469c52af00075646a3f03e4c55dc5ce455be7cd2b90d301d68e806baa77cc84762113f9115b33fd5d82f95e79ba2507243a42a576422d2127ff12ca33bc449d2e89a4408d616b4dfe5840c6311b0e52fb81711df83b75f3d8e96b75d108006aed0cbd22edbce9a4e3ea51977f5b4fb654174928e92a7ce20c5567f9cc42d40c579a9b2e96f023c698f4b58eef62baaa5888afb921328494494bcd6db48216e73f9ac1385cf6c0ae734cee0b267b022429d408e5211944eba240fb6f145838260fe81f82efe93708539e72880c031d19a9f2e61f2fe2c288edb74b127df030b1455b39fd529f9eab929138e31749133c91c3faf74ce595a2d2af3ff8b2d40fc9b67ad74bb4cd5958f47e593ed58cc34deb9171f15bf1361f08cb1f072cf1a8ac713290e6879ef7d3aec62fcbc7c8f43acdef56dd0b60513a9899aa1d1cf5b12f7a84a2ab376b10139b488180aab6fa748dc41f13751e587f10fcbb66761f22f5c86952cb6894794c1c8c1ca2de8c5066915bd8810f91b0fec719d930d050e10499dcc172f127b2e567f321ddde555fca28e80761a777adedbbe7044722e660223d44a80ae5224059bd8a5e7fbe7ce44f7aa3b10bae1a01261826f40894a0b7224f3072baffa5df29a296d9bdd1f06bbdf58e300f2ff521c2e1d5a2267e531f14035f0a83f5d13a66c06083edd8f887caf502d5edd579387a69f91dbb9eccdbaaba55cbbb317416ff136d00904ab84b931fec2b2f86263088824aa1ded601e5f4c414834563c6b0c0eabba45f0454161d38145acd6e1780377678719746b665315055882fc2abff8c78e4c595ff65c19863ccf3544bc88e2241b2c748fdcd683ede42ff1f23fa72b2ae24d180b44bed6841a0267e6c3ba64fdaace7c72a9b00d687b554e9dc339f0e81b06842eb0568153edc8247b51e58dad47abd659a22f27e53cd3894c312c5ac45fcad356221496ba3ae62a0365b26293328f03f77bee7c14c37d6aeb887cef50069be7363e4670b4988695bd56c97db7f0a90a5f0b60cb34880bcd6ff53cbbab79754818938fd67aca3082bc68a7573b28dce387fffefc765c63b32d4a617abc747f44426a0f0f58eb33aecd4865fc9300ecc14e872ee5b7b2f7f1b18bd2e942704d2add1e31b9fe7aa23b328265f9e7835ce125f35056b687211bd6cfcb322c8bf6b88e059e2f6f54b4cd515584ed23ba8ed886a0f2f78134b08b811a52172909af19cd5b10b53c050344b005a198b8dbd2bfe826ce85e9ad296ae0d541f55060a68af901ec5cec5de82605a3d7e37a83bdd8548ac24e2a9d177b9a2d521e423660b682c8497704262e0ada32b81d698f1532354852701c4f679cb44afa732a55fdbdecbc815892d24b8d6407986860ee99a8ec454e8f0d81afb5a8388520fcea0e87efb407025ab5fe2644ead3177a1cbee7777f96b2abc44bdfd5e06d422fe010d7cb5644f5a7b26c1d95cd5cc3fc2bb4098f4ddd33035f17e2a92a3aff26009bcae155420d3e9ab3e9f104a800069c92b50f0f1072eeef23e2994628d100efc23a71ae7000a6e4e5fe72695772d1be66afa45cc04ad4cc1068e492c47624f4c392830b5923f644e7a8ede522da3cd3279c7aebbb5cf6853959811b12b0437221c2042987a2072f5aff4c59d9b95dd77a1bf65f55026144e0e550c49c9e72c6dc1cceb0a3498af9d35c38220f773a6eabf092594c375c3318204a815ee300b6a82177f31fd68b1eb64d606eaff81ef9d16f669cc9ead3e820e9519df881846773c85843c6a27cd5a52b068dc63268a8c167291fdced3f2d3e4b577045977745ef140a8b1650ed91ee4e4587430174bfe40753b9d359b9241c58a611bdadca9813ea47d5be92cc89f5d53973a7f2f0cf0afbd541207795496723de2ec0537a7ce5ab489ee58b3c1f71df4a409d63fadcd249396faae65c0a981348d4e413e65103a91ab36b1836077adeb0498e587610b5121ab2f010d6ed369934c0ce644b89fd05bbaca5bad799c16cdce615f9339f5447b654803e2a284a31cf178c064453900820958ec5571611313ad5b1c058009e63bdc1a7257e3a8554768a3a3981ea88784ba30e883c6078c826eb1916bfd376904746780884b4899723a1640058c484ca7053f9b647bc0e258d29807204423fc7521b91f04093503f5859ac0869c85e43307397e0146e38187d108eaf278d78245c5cfc33a0542ea2993ffa6e56717cd0c3d411652b04b1805f3f7a1d9c644000309565cc137c3e9d0ebe93a4ddfe57faafdd447b2c946fac0db2453b7038645d2bdf51914f87fe46c0b783cd440ab49ea07e655199c8272de0a597e13f9b5a93f7f8e76f784eea2408eb49b45912db96675dbf2eab89d7279ddcc1d501dd3e0c14cc1e94a9fa7b5ab204b815e9f5d9c5f5275426231027bc9a27895dc4ab033464e1e06291677ff6c4ff4bd5b41c93226e16e49d6965e3723a9965760ca88702640700040e76b9f9e4399b5d89e1967abacee88037dfb3d5f1fd5ac1d8d3df7a29c6555afa28a25eea29c7f238e15f0e77f6641cea13ef896268d0e77714b8f09d7cabf3142c8f839adcf38e65cfaeef187b33875256a28f114838186728e0e36c8dbee54e4bee031d57c0fe850f2c9943f637e1a2b9a7452bd4f1fb4c9e6681198bca84a96adfc61d5349bd815f4c6ee8412f3e233ed643cd03b9f78c2811075773d71e75b521ce3f9e5362795286a168b58ab3f86d232397b0dd3a84640db0d788d4547813acb6555e303b52e68887abfa575bb31ad9c59b5068b3f2bc3f1334a00eb131bb2370917e3b70aec8541de8d0fa166a0c452f3f5258c2e6692fadd45e26ba8b9ffe173208feb0000aae43ae09c1d79ed0e296dffa32cefcdd284ccf3a0d13a8821083ed7d039f1468db000fb88bac710c59dc349ce920f2d7441cd01f1be3566f6866139ca151d1ff8d0494ab05e7538cf5b56eb4f2b361dc5ff5359184b73bdbeec630754891ddebf35136654306a25c717b2c9ec9c440c5d67fb5d5e77774f3f9009ed7dd5bc3abe296f4b16cdef2e2825dd6ab02704afa84a9cbe574cf9352e17083c872106909f9d5dc69d902232735800db9bbf0c6ba53b636cd829e2f370b31e22b55bb39db5fbd8d1c0301e9e7bfba689b9aa073b643b366fc8ca7e2b2619a7d1e1dacbda75adf9299f1a77a59e90416295f7a0b085b4b16cf3f736554314e1b8907b1d4c100960a948dd24463c69cf4f3de008d3f17c30fcc9e6ad1192a959b970f1cc4d6a21d7424613023cf3fabaa77dbc74a179d40e1f01a1c14f1031edc7f729e3d85fab232b4bd854839e2a2ff7913adfa5901f10b94b0135e0d85d9ee0a117b94f75719c41e11bc97efb1dfc38b372064bc661c188cc03e2e44bb5ba5f49002a5a0d34e761af1d18a647c5b686fbf546f7c9b7f13a0a4800a81651d3aca3a683ff8ea9d25fe6cc72636e1f3b9bce1d93849ec65639b4e274e112b53d8ceb741fff35396ac6eaf2457d67c3606d326a2599f5d794958a0ac6bc9aedc0db2581b00c0252cf5963bafe6b9f62f9e3715aad5cfafb15369b8675c9b2728a26a8bd9cd91aac301a08238e08878c8fef8c38c16e172d81fdfe806e5f0191cfb252f30e616c7c2be67275185abdfc5e5034a02d804ead7bd82d592ec4640d029e5e88a8f9f358510dc06852959204371344158076c33cf11596f4824475115abfe2a14b8a89cb0fbcc6b4ee340a365d321d90e58bc442654d131b93ea7729f5dc62b4b893fbc76d5a338324b8821eff78f1483daeabca46e92fd4741f2ca8ff809c09154fd80302b1887f80cff37d3d12c7d9b449fee1f2ea9b6a7a315fc1269014dbfc52b9b23cba6a1f083c08d58f1a292f806d673086b94e5241751d71b0ee42eea4d3c35512ab536928fee2785881023a3158569f0116a65ce01c72a7af710477eb3cea58b1a2c6cdb8f921c35e15e5a51932048e191833eb16fecba5af453b4fc68759ffff423e0d2eda5ab82b895c5a3e62ac92dbf4a0f0a04e6465ce403b008aa32e37c71af2950ebd54a56fa8960f393eaea4b54504f6cda5aa83ccc78e6161a08033e639f2bb3abebe4460889feb853cf6bac7d99373d680ed63efce33e9de4fbdab84bb50255897e531d17388e756326809e66f0c04d234ea6fe6f6a2d5109d59cef582b1745812395ca090cb7bbea56ee8cc4db2ce60592d926dee2a811939bb9b33e3f654d9755f5c09da022b17b2c48b3af8ce5d0353e1b334c82a53898da25e9235d65708893ac3f8acd389e67e9bb48f2cf364113f40b614fc278629cff228eee7e318c04e2bbe336d9ea7fc8a03408276953baedbbe5f503999f5944e6b7f54f41a79688eb22c12d1af50e9cc5eee85894d04c9b9b82b93411b1c6630c57bfc4faf9f5c4fb16e493f9ad85d859e436e5291786eb13feedc085622e853daeececd78830f55223a7359004fdf88ce0221d4ca511a4c507df6b38bae5ce1a912a13a5ebbce947d4bc4247e616a1cfd2973b2048ee9bc94f7c", ['\x00', '\x00', '\x00']}, 0x1320)
ioctl$RNDADDTOENTCNT(r6, 0x40045201, &(0x7f000000b800)=0x9)
openat(r7, &(0x7f000000b840)='./file0\x00', 0x400000, 0x131)
openat(r9, &(0x7f000000b880)='./file0\x00', 0x4100, 0x0)
fsetxattr$trusted_overlay_upper(r8, &(0x7f000000b8c0), &(0x7f000000b900)={0x0, 0xfb, 0x15, 0x0, 0x1, "dd8dcc5ebc028b1f5138a426d4a101f4"}, 0x15, 0x2)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f000000bb00)={&(0x7f000000b940)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f000000bac0)={&(0x7f000000b980)={0x134, 0xa, 0x6, 0x401, 0x0, 0x0, {0x7, 0x0, 0xa}, [@IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x10001}, @IPSET_ATTR_COMMENT={0x9, 0x1a, '\\://\x00'}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x3}]}, @IPSET_ATTR_ADT={0x40, 0x8, 0x0, 0x1, [{0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010100}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0xc}}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x9}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0x7f}}]}, @IPSET_ATTR_ADT={0x48, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0xffff}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CIDR2={0x5, 0x15, 0x3}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x5}}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x9e79}, @IPSET_ATTR_DATA={0x50, 0x7, 0x0, 0x1, [@IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0x7}, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0xfffffffffffffa14}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x1}, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x40}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_SKBPRIO={0x8, 0x1c, 0x1, 0x0, 0x1}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x3f}]}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_PROTO={0x5, 0x7, 0x5e}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x3}, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x4}]}]}, 0x134}, 0x1, 0x0, 0x0, 0x20004810}, 0x4008000)
r11 = signalfd4(r3, &(0x7f000000bb40)={[0x6]}, 0x8, 0x80800)
ioctl$IOC_PR_CLEAR(r11, 0x401070cd, &(0x7f000000bb80)={0x6})
r12 = openat$sndtimer(0xffffffffffffff9c, &(0x7f000000bbc0), 0x1)
write$binfmt_script(r12, &(0x7f000000bc00)={'#! ', './file0', [{0x20, 'trusted.overlay.upper\x00'}, {0x20, '-#'}, {0x20, 'f:-@{%'}, {0x20, 'batadv0\x00'}], 0xa, "ba8fd1f946296f4d57d9f3b92a3c779df6a4cf40cc2d0a76614d72c52b0b4d3353e77d0253768301dc271117874d4025714dfa6d8d9e32cff3fa0339e860d3706acfe974cd0dec9d8777cdc8b85db037acca1ac9c3ce8a43e7c71de9485bb0b4264c7e126f5b4bc6f2e644aa71c060bdf280fde81d3225960a41753ae8dd5d6b965445ec7b83af1712851b24b13d2cfebddce6c0958e0d2e58cfd29db72f808f06a6c58735d5c38e886e75d694"}, 0xe2)
ioctl$AUTOFS_IOC_EXPIRE(r5, 0x810c9365, &(0x7f000000bd00)={{0x4, 0x6}, 0x100, './file0\x00'})

16:15:44 executing program 2:
close(0xffffffffffffffff)
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000000)='netdevsim0\x00', 0x10)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x1, 0xf69}}, './file0\x00'})
ioctl$sock_inet6_SIOCSIFDSTADDR(r1, 0x8918, &(0x7f0000000080)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7d})
fcntl$setpipe(r1, 0x407, 0x7)
r2 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x8, 0x0)
setsockopt$inet6_opts(r2, 0x29, 0x3, &(0x7f0000000100)=@routing={0x2c, 0x6, 0x2, 0x9, 0x0, [@mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private1]}, 0x38)
r3 = signalfd4(r0, &(0x7f0000000180)={[0xfff]}, 0x8, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r4=>r1, {0x365a}}, './file0\x00'})
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/consoles\x00', 0x0, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x4c, 0x0, 0x800, 0x70bd29, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r3}, {0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r4}, {0x8, 0x1, r5}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x4008010)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r2, &(0x7f0000000340)={0x2000000c})
sync_file_range(r3, 0xffffffffffffffff, 0xfffffffffffffffe, 0x2)
ioctl$TIOCL_UNBLANKSCREEN(r1, 0x541c, &(0x7f0000000380))
sendmsg$sock(r2, &(0x7f0000000700)={&(0x7f00000003c0)=@un=@abs={0x1, 0x0, 0x4e23}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000440)="3000dd69ea2c0832390582df6509a77c7247d28df651d090e4f12c64a4f6b66579b0647467067777d08031f429ea540e3f4cc7c18da9a7259a3a38ea1e28e9a17597db927690cfaa95a480617401034bb06d91ab748788135d6caed97ceb3172f9c9c0bcc746a78517050f9d8ecf90974b74020c0d8a94772bde4f8a8870f2b070a63a9031", 0x85}, {&(0x7f0000000500)="04b2c44b7aae15d1f85cf9657ff9115ad3985ba07c46ebfb56b884ac06936212f5c64891407370976697a9cf7ddbc20452", 0x31}, {&(0x7f0000000540)="26432bd5df0e2d84a364f1cebc677bad019d7246e09bd75655a0ebc7bd80acc449621ea31ebe17971393814ce02e6c23519e0da208dd924ade6b10f1e0b85d672c66391d5e44dcdc3429f4e3b09dc7c7e4191f0a297adc7a5489c71d40211436e323d9b5f44e5ee1ecb5d1807fe3d1f6cfbcc887", 0x74}, {&(0x7f00000005c0)="90d25665e59a7f00eb56f84f3de6b72b4239f7dea2dd0a2b737e9458158d63bd21161d9a", 0x24}], 0x4, &(0x7f0000000640)=[@mark={{0x14}}, @mark={{0x14, 0x1, 0x24, 0x4}}, @mark={{0x14, 0x1, 0x24, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x1}}, @mark={{0x14, 0x1, 0x24, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x5}}], 0x90}, 0x50)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
writev(r6, &(0x7f0000000900)=[{&(0x7f0000000740)="19c7601abe9c39ca1969862d8f3765c879bf95990b8eb46a8c2d64688a02934d2c80a442196ccd1d063410d6e21fe4f86a71b8a44abd638fdad9ddf01cdc78a9bc220119c85a1f6192d99264db4f6f6b61533340a87fb8aad329d3710cf81badd5ba51c1a614384defe12a019631a708f89e6d97846c6d73cae5de4cb9ef1d6514333f8359ba9212a77822b4932417321da752b0d03f094f14b772a67d9c11b34cfdff64d08fd8f040cac9f5bfb89babbf", 0xb1}, {&(0x7f0000000800)}, {&(0x7f0000000840)="eb50b82ebfb2b57862573d34d96620c0bb064fbe32afcc451a89156bcca84d1f4fd44f1ebfadb620b6761cdbf194c34b588d72a3efcf5d7a9d102f974e2e9cefd98e89581be6278694552cf72fdb014c8db39a7bcb75f4b17e26b0a2f3904f6ce360beeae8a1913bb078e751400e9317c8c7f9db3ee576330646f54161095f1452340c43ae64b1af7c43df73c4b1d451dbbab92868788ccf291a635c924a14f8506544", 0xa3}], 0x3)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000000940)={{0x1, 0x1, 0x18, r3, {0x1ff}}, './file0\x00'})
preadv(r3, &(0x7f0000000ac0)=[{&(0x7f0000000980)=""/42, 0x2a}, {&(0x7f00000009c0)=""/9, 0x9}, {&(0x7f0000000a00)}, {&(0x7f0000000a40)=""/60, 0x3c}, {&(0x7f0000000a80)=""/46, 0x2e}], 0x5, 0x6, 0x8)

16:15:44 executing program 4:
r0 = msgget(0x2, 0xa)
fstat(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
msgctl$IPC_SET(r0, 0x1, &(0x7f0000000080)={{0x1, 0x0, r1, 0xffffffffffffffff, 0x0, 0x80, 0x7}, 0x0, 0x0, 0x39ae, 0x5, 0xfffffffffffffd83, 0x8, 0x2, 0x81, 0x80, 0xf73b, 0xffffffffffffffff})
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000100)={r2, 0x80000001, 0x8, 0x7ff})
r3 = msgget$private(0x0, 0x2)
msgctl$IPC_INFO(r3, 0x3, &(0x7f0000000140)=""/152)
r4 = msgget$private(0x0, 0xb)
msgctl$MSG_INFO(r4, 0xc, &(0x7f0000000200)=""/49)
r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000240), 0x200300, 0x0)
r6 = msgget$private(0x0, 0x210)
msgrcv(r6, &(0x7f0000000280)={0x0, ""/210}, 0xda, 0x2, 0x1000)
r7 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r7, 0x8916, &(0x7f0000000380)={'ip6tnl0\x00'})
r8 = syz_open_dev$char_usb(0xc, 0xb4, 0x11)
fcntl$setstatus(r8, 0x4, 0x4400)
r9 = signalfd(r5, &(0x7f00000003c0)={[0x1]}, 0x8)
ioctl$sock_inet6_udp_SIOCOUTQ(r9, 0x5411, &(0x7f0000000400))
msgctl$MSG_INFO(r6, 0xc, &(0x7f0000000440)=""/211)
ioctl$sock_inet6_tcp_SIOCATMARK(r5, 0x8905, &(0x7f0000000540))

[   63.970373] audit: type=1400 audit(1664727344.365:6): avc:  denied  { execmem } for  pid=287 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
16:15:44 executing program 5:
ioctl$EVIOCGBITSND(0xffffffffffffffff, 0x80404532, &(0x7f0000000000)=""/4096)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000001000)={[0x7f]}, 0x8)
ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000001040)=""/60)
r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000001, 0x12, r0, 0x10000000)
syz_io_uring_submit(0x0, r1, &(0x7f0000001080)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4}, 0xb2fe)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000010c0), 0x1, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000001100)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd_index=0x2, 0x0, 0x0, 0x0, 0x9, 0x0, {0x0, 0x0, r2}}, 0x6)
ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r2, 0xf505, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000001140)={{0x1, 0x1, 0x18, <r3=>r2, {<r4=>r2}}, './file0\x00'})
ioctl$TUNSETIFINDEX(r3, 0x400454da, &(0x7f0000001180))
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000011c0)={{0x1, 0x1, 0x18, <r5=>r2, {0x4, 0x80000001}}, './file0\x00'})
r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000001200)='ns/mnt\x00')
ioctl$AUTOFS_DEV_IOCTL_READY(r5, 0xc0189376, &(0x7f0000001240)={{0x1, 0x1, 0x18, r6, {0x7}}, './file0\x00'})
r7 = openat$cgroup_ro(r4, &(0x7f0000001280)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0)
dup3(r5, r7, 0x80000)
r8 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f00000012c0), 0x800)
ioctl$FS_IOC_READ_VERITY_METADATA(r8, 0xc0286687, &(0x7f0000001400)={0x3, 0x1, 0xd3, &(0x7f0000001300)=""/211})
r9 = openat(r5, &(0x7f0000001440)='./file0\x00', 0x6000, 0x8c)
sendmsg$BATADV_CMD_SET_VLAN(r9, &(0x7f0000001540)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001500)={&(0x7f00000014c0)={0x24, 0x0, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0xc0)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000001640)={0x0, 0x1, 0x6, @random="68aab06cb60d"}, 0x10)

16:15:44 executing program 6:
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0xffffffffffffffff, 0xee00}}, './file0\x00'})
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000080)={0x32c, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x100}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x8fe5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}]}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x800}]}, @TIPC_NLA_SOCK={0xa8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x605d}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x334}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x9}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffffffc}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80000000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5181300c}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x81}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xb872}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8}]}, @TIPC_NLA_MEDIA={0x100, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6c}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xa7c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_SOCK={0xa0, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x80000000}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x5}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x20}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5d}]}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x610}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfffffffa}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x3}]}, @TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x400}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x101}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x345}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffffe}]}]}, 0x32c}, 0x1, 0x0, 0x0, 0x4000}, 0x8001)
ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000440)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
fallocate(r0, 0x2a, 0x3, 0xffffffff)
sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x40000200}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x2c, 0x0, 0x400, 0x70bd26, 0x25dfdbfb, {{}, {}, {0x10, 0x13, @l2={'eth', 0x3a, 'tunl0\x00'}}}, ["", "", ""]}, 0x2c}, 0x1, 0x0, 0x0, 0x84}, 0x8001)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000780)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff, {0x7f}}, './file0/file0\x00'})
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x30, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {{}, {}, {0x14, 0x19, {0x1ff, 0x2, 0xf54d, 0x8}}}, ["", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x10)
fallocate(r1, 0x60, 0x7, 0xebf)
mmap$perf(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x13, r1, 0x2)
ioctl$AUTOFS_IOC_SETTIMEOUT(r1, 0x80049367, &(0x7f00000008c0)=0x400)
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000a80), 0x228100, 0x0)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000b00), r1)
sendmsg$TIPC_NL_MEDIA_GET(r2, &(0x7f0000000d00)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000b40)={0x148, r3, 0x100, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_BEARER={0x88, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x4, @private2, 0x8223369}}, {0x20, 0x2, @in6={0xa, 0x4, 0x4, @ipv4={'\x00', '\xff\xff', @local}, 0x5735}}}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_SOCK={0xac, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}]}, @TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x2d7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1000}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x46bc}]}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7f}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2b4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x2}]}]}, 0x148}, 0x1, 0x0, 0x0, 0x1}, 0x2000080c)
r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000d40), 0x8f00, 0x0)
setsockopt$IP_VS_SO_SET_DEL(r4, 0x0, 0x484, &(0x7f0000000d80)={0x88, @broadcast, 0x4e21, 0x4, 'sed\x00', 0x5, 0x6, 0x51}, 0x2c)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CALIPSO_C_LIST(r5, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e00)={0x5c, 0x0, 0x8, 0x70bd28, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20008010}, 0x8004)
perf_event_open(&(0x7f0000000f40)={0x3, 0x80, 0x98, 0x8, 0x3, 0x8, 0x0, 0x0, 0x2, 0x18, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000f00), 0x2}, 0x100, 0x42ed, 0x7, 0x1, 0x3, 0x7, 0x9, 0x0, 0x51, 0x0, 0x80000001}, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x8)
ioctl$BTRFS_IOC_FS_INFO(0xffffffffffffffff, 0x8400941f, &(0x7f0000000fc0))
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000001880)={0x5, 0x1, {0x5, @struct={0x6, 0x5}, 0x0, 0xff, 0x5, 0xa400000, 0x8001, 0xd0f4, 0x10, @struct={0x80000000, 0x80}, 0x8, 0x9, [0xe45c, 0x8, 0xb41, 0x8620, 0x2, 0x1]}, {0x100, @struct={0x5, 0x7fffffff}, 0x0, 0x40, 0x2, 0x4, 0xfffffffffffffe00, 0x5, 0x410, @usage=0x7, 0xbf, 0xff, [0x16, 0x1, 0x0, 0x101, 0x9, 0x8]}, {0x3, @usage=0x551b, 0x0, 0x8, 0x9, 0x7, 0x0, 0x5, 0x0, @usage=0x4, 0x2, 0x7, [0xf0b2, 0x80, 0x3f, 0x400, 0x7fffffff, 0x7fffffff]}, {0x5, 0xfffffffffffff800, 0xfffffffffffff049}})

16:15:44 executing program 7:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x201000)
fcntl$F_SET_RW_HINT(r1, 0x40c, &(0x7f0000000080))
fallocate(r0, 0x20, 0x9, 0x0)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x103080, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r3=>r2, {0xba39}}, './file0\x00'})
fallocate(r0, 0x1, 0xffff, 0x2)
r4 = syz_open_dev$sg(&(0x7f0000000140), 0x44, 0x400)
close(r4)
openat(r0, &(0x7f0000000180)='./file0\x00', 0x400, 0x100)
fstatfs(0xffffffffffffffff, &(0x7f00000001c0)=""/218)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x101400, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0xb8400, 0x18)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000340)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
setsockopt$inet_mreq(r6, 0x0, 0x24, &(0x7f0000000380)={@empty, @multicast1}, 0x8)
accept(r3, &(0x7f00000003c0), &(0x7f0000000440)=0x80)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(r7, 0x9362, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000480)={{0x1, 0x1, 0x18, <r8=>r5, {0x7f}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r7}, './file0\x00'})

[   65.249650] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   65.251680] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   65.253673] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   65.254912] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   65.257633] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   65.259400] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   65.260587] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   65.262019] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   65.266319] Bluetooth: hci0: HCI_REQ-0x0c1a
[   65.267672] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   65.277701] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   65.283560] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   65.289077] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   65.296672] Bluetooth: hci1: HCI_REQ-0x0c1a
[   65.319495] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   65.321108] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   65.322766] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   65.325491] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   65.327067] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   65.328273] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   65.332858] Bluetooth: hci7: HCI_REQ-0x0c1a
[   65.383102] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   65.383343] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   65.390616] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   65.392816] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   65.398683] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   65.399878] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   65.406818] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   65.408632] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   65.410292] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   65.416228] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   65.417616] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   65.420128] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   65.420965] Bluetooth: hci6: HCI_REQ-0x0c1a
[   65.436555] Bluetooth: hci5: HCI_REQ-0x0c1a
[   67.332029] Bluetooth: hci4: Opcode 0x c03 failed: -110
[   67.332058] Bluetooth: hci1: command 0x0409 tx timeout
[   67.333529] Bluetooth: hci0: command 0x0409 tx timeout
[   67.334286] Bluetooth: hci3: Opcode 0x c03 failed: -110
[   67.334968] Bluetooth: hci2: Opcode 0x c03 failed: -110
[   67.396506] Bluetooth: hci7: command 0x0409 tx timeout
[   67.459507] Bluetooth: hci6: command 0x0409 tx timeout
[   67.460513] Bluetooth: hci5: command 0x0409 tx timeout
[   69.379495] Bluetooth: hci0: command 0x041b tx timeout
[   69.380991] Bluetooth: hci1: command 0x041b tx timeout
[   69.443481] Bluetooth: hci7: command 0x041b tx timeout
[   69.507529] Bluetooth: hci5: command 0x041b tx timeout
[   69.508056] Bluetooth: hci6: command 0x041b tx timeout
[   70.234820] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   70.236618] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   70.237974] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   70.240152] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   70.241141] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   70.246775] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   70.250640] Bluetooth: hci3: HCI_REQ-0x0c1a
[   70.299417] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   70.306823] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   70.308298] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   70.317037] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   70.324596] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   70.325329] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   70.328748] Bluetooth: hci4: HCI_REQ-0x0c1a
[   71.427581] Bluetooth: hci1: command 0x040f tx timeout
[   71.427661] Bluetooth: hci0: command 0x040f tx timeout
[   71.491512] Bluetooth: hci7: command 0x040f tx timeout
[   71.555519] Bluetooth: hci6: command 0x040f tx timeout
[   71.556244] Bluetooth: hci5: command 0x040f tx timeout
[   72.003520] Bluetooth: hci2: Opcode 0x c03 failed: -110
[   72.259782] Bluetooth: hci3: command 0x0409 tx timeout
[   72.387549] Bluetooth: hci4: command 0x0409 tx timeout
[   73.475708] Bluetooth: hci0: command 0x0419 tx timeout
[   73.476602] Bluetooth: hci1: command 0x0419 tx timeout
[   73.539761] Bluetooth: hci7: command 0x0419 tx timeout
[   73.603535] Bluetooth: hci5: command 0x0419 tx timeout
[   73.604371] Bluetooth: hci6: command 0x0419 tx timeout
[   74.307529] Bluetooth: hci3: command 0x041b tx timeout
[   74.435587] Bluetooth: hci4: command 0x041b tx timeout
[   76.355546] Bluetooth: hci3: command 0x040f tx timeout
[   76.483487] Bluetooth: hci4: command 0x040f tx timeout
[   76.739536] Bluetooth: hci2: Opcode 0x c03 failed: -110
[   78.403484] Bluetooth: hci3: command 0x0419 tx timeout
[   78.531489] Bluetooth: hci4: command 0x0419 tx timeout
[   81.283544] Bluetooth: hci2: Opcode 0x c03 failed: -110
[   83.876034] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   83.877494] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   83.879639] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   83.885581] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   83.886518] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   83.887162] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   83.889815] Bluetooth: hci2: HCI_REQ-0x0c1a
[   85.955508] Bluetooth: hci2: command 0x0409 tx timeout
[   88.003821] Bluetooth: hci2: command 0x041b tx timeout
[   90.051532] Bluetooth: hci2: command 0x040f tx timeout
[   92.099524] Bluetooth: hci2: command 0x0419 tx timeout
16:16:37 executing program 3:
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080))
syz_open_dev$tty20(0xc, 0x4, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0xa281, 0x0)
write$cgroup_pid(r0, &(0x7f00000000c0)=0xffffffffffffffff, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0xa281, 0x0)
write$cgroup_pid(r1, &(0x7f00000000c0)=0xffffffffffffffff, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r1, 0x0, 0x10001, 0x275f})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x84042, 0x0)
pwrite64(r2, &(0x7f00000006c0)='y', 0x1, 0x0)
close(r2)
openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x100, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0xa281, 0x0)
write$cgroup_pid(r3, &(0x7f00000000c0)=0xffffffffffffffff, 0x10)
ioctl$GIO_SCRNMAP(r3, 0x4b52, 0x0)

[  116.700345] capability: warning: `syz-executor.3' uses deprecated v2 capabilities in a way that may be insecure
16:16:37 executing program 3:
r0 = syz_io_uring_setup(0xfa7, &(0x7f0000000140)={0x0, 0x0, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000380)=<r2=>0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000200)=@in6={0xa, 0x0, 0x0, @empty}}, 0x0)
io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0)

16:16:37 executing program 3:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe(0x0)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000040)={&(0x7f0000000000)=""/46, 0x2e, 0x8e, 0x9})
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[  117.038274] audit: type=1400 audit(1664727397.433:7): avc:  denied  { open } for  pid=3471 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  117.039903] audit: type=1400 audit(1664727397.433:8): avc:  denied  { kernel } for  pid=3471 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  117.042772] ------------[ cut here ]------------
[  117.043346] WARNING: CPU: 0 PID: 3465 at kernel/events/core.c:2233 event_filter_match+0x422/0x660
[  117.044024] Modules linked in:
[  117.044291] CPU: 0 PID: 3465 Comm: modprobe Not tainted 6.0.0-rc7-next-20220930 #1
[  117.044797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  117.045548] RIP: 0010:event_filter_match+0x422/0x660
[  117.045922] Code: 00 00 00 e9 7c fc ff ff e8 7b 33 f1 ff 65 8b 2d 00 9d ad 7e 31 ff 89 ee e8 1b 30 f1 ff 85 ed 0f 84 ef 00 00 00 e8 5e 33 f1 ff <0f> 0b eb 9f e8 d5 a1 23 00 e9 17 fc ff ff e8 4b 33 f1 ff 48 8d 7b
[  117.048005] RSP: 0018:ffff88806ce09c70 EFLAGS: 00010046
[  117.048566] RAX: 0000000080010001 RBX: ffff88803e810000 RCX: 0000000000000000
[  117.049325] RDX: ffff88803d1f9ac0 RSI: ffffffff8154d8d2 RDI: 0000000000000005
[  117.049867] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000001
[  117.050397] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88803e810220
[  117.050938] R13: 0000000000000000 R14: ffff88803e8100a8 R15: ffff88803e810220
[  117.051480] FS:  00007f86bb992540(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  117.052077] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.052516] CR2: 00005605fe5b04c8 CR3: 000000000dbbe000 CR4: 0000000000350ef0
[  117.053010] Call Trace:
[  117.053188]  <IRQ>
[  117.053354]  merge_sched_in+0x107/0x1110
[  117.053649]  visit_groups_merge.constprop.0.isra.0+0x4fc/0xef0
[  117.054061]  ? merge_sched_in+0x1110/0x1110
[  117.054397]  ? lock_is_held_type+0xd7/0x130
[  117.054736]  ctx_sched_in+0x2e6/0x770
[  117.055034]  ? lock_acquire+0x1b2/0x530
[  117.055345]  ? visit_groups_merge.constprop.0.isra.0+0xef0/0xef0
[  117.055814]  ? lock_is_held_type+0xd7/0x130
[  117.056148]  perf_event_sched_in+0x75/0x80
[  117.056480]  ctx_resched+0x1ce/0x390
[  117.056772]  __perf_install_in_context+0x285/0x9c0
[  117.057147]  ? ctx_resched+0x390/0x390
[  117.057468]  remote_function+0x125/0x1b0
[  117.057785]  __flush_smp_call_function_queue+0x1df/0x5a0
[  117.058197]  ? perf_duration_warn+0x40/0x40
[  117.058527]  __sysvec_call_function_single+0x92/0x3a0
[  117.058922]  sysvec_call_function_single+0x89/0xc0
[  117.059295]  </IRQ>
[  117.059461]  <TASK>
[  117.059621]  asm_sysvec_call_function_single+0x16/0x20
[  117.059973] RIP: 0010:path_init+0x763/0x1830
[  117.060283] Code: 00 48 c7 c7 00 06 90 84 c6 05 df 95 2c 04 01 e8 2d 8c 94 02 e9 fd f9 ff ff e8 b9 a4 c4 ff 49 8d 44 24 20 48 89 c2 48 89 45 a8 <48> b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 04 0e
[  117.061489] RSP: 0018:ffff88803e7b7a50 EFLAGS: 00000293
[  117.061848] RAX: ffff88803e7b7c50 RBX: 0000000000000040 RCX: 0000000000000000
[  117.062321] RDX: ffff88803e7b7c50 RSI: ffffffff81816777 RDI: 0000000000000005
[  117.062794] RBP: ffff88803e7b7ae8 R08: 0000000000000005 R09: 0000000000000000
[  117.063267] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803e7b7c30
[  117.063741] R13: 0000000000000000 R14: ffffffff85214640 R15: 0000000000000000
[  117.064222]  ? path_init+0x757/0x1830
[  117.064497]  ? percpu_counter_add_batch+0xb4/0x170
[  117.064846]  path_openat+0x170/0x27b0
[  117.065118]  ? path_lookupat+0x850/0x850
[  117.065412]  do_filp_open+0x1b6/0x410
[  117.065677]  ? may_open_dev+0xf0/0xf0
[  117.065938]  ? find_held_lock+0x2c/0x110
[  117.066220]  ? lock_release+0x3b2/0x750
[  117.066503]  ? do_raw_spin_lock+0x121/0x260
[  117.066801]  ? rwlock_bug.part.0+0x90/0x90
[  117.067105]  ? _raw_spin_unlock+0x24/0x40
[  117.067385]  ? alloc_fd+0x2d8/0x6e0
[  117.067648]  do_sys_openat2+0x171/0x4c0
[  117.067926]  ? vfs_fstatat+0x97/0xb0
[  117.068185]  ? build_open_flags+0x6f0/0x6f0
[  117.068484]  ? __ia32_sys_stat+0x70/0x70
[  117.068771]  __x64_sys_openat+0x13f/0x1f0
[  117.069055]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  117.069399]  ? syscall_enter_from_user_mode+0x1d/0x50
[  117.069752]  ? syscall_enter_from_user_mode+0x1d/0x50
[  117.070107]  do_syscall_64+0x3b/0x90
[  117.070376]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  117.070725] RIP: 0033:0x7f86bbaaef18
[  117.070979] Code: 24 18 31 c0 41 83 e2 40 75 40 89 f0 25 00 00 41 00 3d 00 00 41 00 74 32 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 40 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00
[  117.072165] RSP: 002b:00007fff37a29400 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[  117.072670] RAX: ffffffffffffffda RBX: 00007fff37a29510 RCX: 00007f86bbaaef18
[  117.073140] RDX: 0000000000090800 RSI: 00005605fc9e9c59 RDI: 00000000ffffff9c
[  117.073620] RBP: 00005605fc9e9c59 R08: 0000000000090800 R09: 00005605fc9e9c59
[  117.074088] R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000002
[  117.074557] R13: 00005605fe5a84eb R14: 00007fff37a29500 R15: 00005605fe5a8310
[  117.075043]  </TASK>
[  117.075207] irq event stamp: 14438
[  117.075447] hardirqs last  enabled at (14437): [<ffffffff84273de8>] _raw_spin_unlock_irqrestore+0x28/0x60
[  117.076072] hardirqs last disabled at (14438): [<ffffffff842528fb>] sysvec_call_function_single+0xb/0xc0
[  117.076697] softirqs last  enabled at (14316): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.077277] softirqs last disabled at (14307): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.077849] ---[ end trace 0000000000000000 ]---
[  117.078222] ------------[ cut here ]------------
[  117.078537] WARNING: CPU: 0 PID: 3465 at kernel/events/core.c:2557 merge_sched_in+0xadb/0x1110
[  117.079117] Modules linked in:
[  117.079343] CPU: 0 PID: 3465 Comm: modprobe Tainted: G        W          6.0.0-rc7-next-20220930 #1
[  117.079936] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  117.080672] RIP: 0010:merge_sched_in+0xadb/0x1110
[  117.081009] Code: ff ff e8 08 0e ef ff 65 8b 05 8d 77 ab 7e 31 ff 89 c6 89 04 24 e8 a5 0a ef ff 8b 04 24 85 c0 0f 84 13 02 00 00 e8 e5 0d ef ff <0f> 0b e9 c4 fb ff ff e8 d9 0d ef ff 4c 89 e8 48 05 18 01 00 00 e9
[  117.082204] RSP: 0018:ffff88806ce09cb0 EFLAGS: 00010046
[  117.082561] RAX: 0000000080010001 RBX: ffff88806ce3f200 RCX: 0000000000000000
[  117.083035] RDX: ffff88803d1f9ac0 RSI: ffffffff8156fe4b RDI: 0000000000000005
[  117.083509] RBP: ffff88803e810000 R08: 0000000000000005 R09: 0000000000000001
[  117.083976] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88806ce3f200
[  117.084447] R13: 0000000000000001 R14: ffff88803e8100a8 R15: ffff88803e810220
[  117.084919] FS:  00007f86bb992540(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  117.085461] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.085849] CR2: 00005605fe5b04c8 CR3: 000000000dbbe000 CR4: 0000000000350ef0
[  117.086318] Call Trace:
[  117.086495]  <IRQ>
[  117.086654]  visit_groups_merge.constprop.0.isra.0+0x4fc/0xef0
[  117.087064]  ? merge_sched_in+0x1110/0x1110
[  117.087362]  ? lock_is_held_type+0xd7/0x130
[  117.087662]  ctx_sched_in+0x2e6/0x770
[  117.087933]  ? lock_acquire+0x1b2/0x530
[  117.088212]  ? visit_groups_merge.constprop.0.isra.0+0xef0/0xef0
[  117.088631]  ? lock_is_held_type+0xd7/0x130
[  117.088933]  perf_event_sched_in+0x75/0x80
[  117.089230]  ctx_resched+0x1ce/0x390
[  117.089496]  __perf_install_in_context+0x285/0x9c0
[  117.089828]  ? ctx_resched+0x390/0x390
[  117.090101]  remote_function+0x125/0x1b0
[  117.090383]  __flush_smp_call_function_queue+0x1df/0x5a0
[  117.090757]  ? perf_duration_warn+0x40/0x40
[  117.091090]  __sysvec_call_function_single+0x92/0x3a0
[  117.091501]  sysvec_call_function_single+0x89/0xc0
[  117.091893]  </IRQ>
[  117.092079]  <TASK>
[  117.092267]  asm_sysvec_call_function_single+0x16/0x20
[  117.092664] RIP: 0010:path_init+0x763/0x1830
[  117.093010] Code: 00 48 c7 c7 00 06 90 84 c6 05 df 95 2c 04 01 e8 2d 8c 94 02 e9 fd f9 ff ff e8 b9 a4 c4 ff 49 8d 44 24 20 48 89 c2 48 89 45 a8 <48> b8 00 00 00 00 00 fc ff df 48 c1 ea 03 80 3c 02 00 0f 85 04 0e
[  117.094369] RSP: 0018:ffff88803e7b7a50 EFLAGS: 00000293
[  117.094770] RAX: ffff88803e7b7c50 RBX: 0000000000000040 RCX: 0000000000000000
[  117.095304] RDX: ffff88803e7b7c50 RSI: ffffffff81816777 RDI: 0000000000000005
[  117.095844] RBP: ffff88803e7b7ae8 R08: 0000000000000005 R09: 0000000000000000
[  117.096381] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803e7b7c30
[  117.096929] R13: 0000000000000000 R14: ffffffff85214640 R15: 0000000000000000
[  117.097488]  ? path_init+0x757/0x1830
[  117.097802]  ? percpu_counter_add_batch+0xb4/0x170
[  117.098220]  path_openat+0x170/0x27b0
[  117.098519]  ? path_lookupat+0x850/0x850
[  117.098850]  do_filp_open+0x1b6/0x410
[  117.099150]  ? may_open_dev+0xf0/0xf0
[  117.099468]  ? find_held_lock+0x2c/0x110
[  117.099812]  ? lock_release+0x3b2/0x750
[  117.100146]  ? do_raw_spin_lock+0x121/0x260
[  117.100475]  ? rwlock_bug.part.0+0x90/0x90
[  117.100775]  ? _raw_spin_unlock+0x24/0x40
[  117.101058]  ? alloc_fd+0x2d8/0x6e0
[  117.101324]  do_sys_openat2+0x171/0x4c0
[  117.101598]  ? vfs_fstatat+0x97/0xb0
[  117.101855]  ? build_open_flags+0x6f0/0x6f0
[  117.102149]  ? __ia32_sys_stat+0x70/0x70
[  117.102434]  __x64_sys_openat+0x13f/0x1f0
[  117.102719]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  117.103050]  ? syscall_enter_from_user_mode+0x1d/0x50
[  117.103397]  ? syscall_enter_from_user_mode+0x1d/0x50
[  117.103752]  do_syscall_64+0x3b/0x90
[  117.104016]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  117.104364] RIP: 0033:0x7f86bbaaef18
[  117.104616] Code: 24 18 31 c0 41 83 e2 40 75 40 89 f0 25 00 00 41 00 3d 00 00 41 00 74 32 44 89 c2 4c 89 ce bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 40 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00
[  117.105823] RSP: 002b:00007fff37a29400 EFLAGS: 00000287 ORIG_RAX: 0000000000000101
[  117.106325] RAX: ffffffffffffffda RBX: 00007fff37a29510 RCX: 00007f86bbaaef18
[  117.106795] RDX: 0000000000090800 RSI: 00005605fc9e9c59 RDI: 00000000ffffff9c
[  117.107272] RBP: 00005605fc9e9c59 R08: 0000000000090800 R09: 00005605fc9e9c59
[  117.107746] R10: 0000000000000000 R11: 0000000000000287 R12: 0000000000000002
[  117.108222] R13: 00005605fe5a84eb R14: 00007fff37a29500 R15: 00005605fe5a8310
[  117.108710]  </TASK>
[  117.108874] irq event stamp: 14438
[  117.109110] hardirqs last  enabled at (14437): [<ffffffff84273de8>] _raw_spin_unlock_irqrestore+0x28/0x60
[  117.109739] hardirqs last disabled at (14438): [<ffffffff842528fb>] sysvec_call_function_single+0xb/0xc0
[  117.110354] softirqs last  enabled at (14316): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.110922] softirqs last disabled at (14307): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.111492] ---[ end trace 0000000000000000 ]---
16:16:37 executing program 3:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe(0x0)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000040)={&(0x7f0000000000)=""/46, 0x2e, 0x8e, 0x9})
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[  117.890331] ------------[ cut here ]------------
[  117.890730] WARNING: CPU: 0 PID: 3518 at kernel/events/core.c:2047 perf_group_detach+0x99e/0x12f0
[  117.891328] Modules linked in:
[  117.891552] CPU: 0 PID: 3518 Comm: modprobe Tainted: G        W          6.0.0-rc7-next-20220930 #1
[  117.892145] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  117.892887] RIP: 0010:perf_group_detach+0x99e/0x12f0
[  117.893240] Code: 85 d5 f8 ff ff e8 b2 4e ee ff 65 44 8b 25 36 b8 aa 7e 31 ff 44 89 e6 e8 50 4b ee ff 45 85 e4 0f 84 0a 05 00 00 e8 92 4e ee ff <0f> 0b e9 a9 f8 ff ff e8 86 4e ee ff 65 8b 1d 0b b8 aa 7e 31 ff 89
[  117.894419] RSP: 0018:ffff88806ce09e60 EFLAGS: 00010046
[  117.894774] RAX: 0000000080010001 RBX: ffff8880086605c8 RCX: 0000000000000000
[  117.895245] RDX: ffff88800d783580 RSI: ffffffff8157bd9e RDI: 0000000000000005
[  117.895715] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  117.896183] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  117.896654] R13: ffff888008660658 R14: ffff88806ce3f200 R15: ffff8880086605c8
[  117.897129] FS:  0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  117.897677] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.898066] CR2: 00007faf2e299270 CR3: 00000000310f8000 CR4: 0000000000350ef0
[  117.898539] Call Trace:
[  117.898717]  <IRQ>
[  117.898873]  ? event_sched_out+0x71c/0xcd0
[  117.899174]  __perf_remove_from_context+0x71e/0xb20
[  117.899523]  event_function+0x297/0x3d0
[  117.899799]  ? perf_output_sample_regs+0x150/0x150
[  117.900137]  remote_function+0x125/0x1b0
[  117.900418]  __flush_smp_call_function_queue+0x1df/0x5a0
[  117.900786]  ? perf_duration_warn+0x40/0x40
[  117.901083]  __sysvec_call_function_single+0x92/0x3a0
[  117.901445]  sysvec_call_function_single+0x89/0xc0
[  117.901780]  </IRQ>
[  117.901938]  <TASK>
[  117.902097]  asm_sysvec_call_function_single+0x16/0x20
[  117.902456] RIP: 0010:put_cpu_partial+0x115/0x1c0
[  117.902785] Code: 39 43 28 75 61 48 c7 43 28 00 00 00 00 48 c7 c6 00 f0 77 81 48 89 df e8 09 2c b2 ff 48 85 ed 74 06 e8 4f f4 d4 ff fb 4d 85 ed <74> 21 5b 4c 89 ee 5d 4c 89 e7 41 5c 41 5d 41 5e 41 5f e9 84 fd ff
[  117.903980] RSP: 0018:ffff88803a05fa00 EFLAGS: 00000246
[  117.904337] RAX: 0000000000002cb3 RBX: ffff88806ce3c4a0 RCX: ffffffff81297e8f
[  117.904809] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  117.905297] RBP: 0000000000000200 R08: 0000000000000001 R09: ffffffff86cd37ef
[  117.905780] R10: fffffbfff0d9a6fd R11: 0000000000000001 R12: ffff888007c4f780
[  117.906255] R13: 0000000000000000 R14: ffffea0000373880 R15: 0000000000000003
[  117.906734]  ? mark_lock.part.0+0xef/0x2f70
[  117.907043]  qlist_free_all+0x6d/0x1a0
[  117.907320]  kasan_quarantine_reduce+0x184/0x210
[  117.907648]  __kasan_slab_alloc+0x48/0x70
[  117.907935]  kmem_cache_alloc+0x1a9/0x3e0
[  117.908223]  mas_alloc_nodes+0x420/0x800
[  117.908520]  mas_preallocate+0x1bb/0x360
[  117.908799]  vma_expand+0x1cc/0xb50
[  117.909061]  ? can_vma_merge_after.constprop.0+0x83/0x280
[  117.909442]  mmap_region+0xca6/0x1a00
[  117.909713]  ? inode_has_perm+0x171/0x1d0
[  117.909996]  ? do_munmap+0x100/0x100
[  117.910258]  ? security_mmap_addr+0x79/0xa0
[  117.910558]  ? get_unmapped_area+0x1e5/0x3e0
[  117.910863]  do_mmap+0x828/0xf40
[  117.911109]  vm_mmap_pgoff+0x1af/0x270
[  117.911381]  ? randomize_page+0xb0/0xb0
[  117.911667]  ksys_mmap_pgoff+0x3d0/0x4f0
[  117.911949]  do_syscall_64+0x3b/0x90
[  117.912212]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  117.912559] RIP: 0033:0x7fac71fddd82
[  117.912810] Code: eb aa 66 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 33 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 56 5b 5d c3 0f 1f 00 c7 05 ae 03 01 00 16 00
[  117.914016] RSP: 002b:00007ffc5a943398 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[  117.914520] RAX: ffffffffffffffda RBX: 0000000000000812 RCX: 00007fac71fddd82
[  117.914993] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 00007fac71ab6000
[  117.915467] RBP: 00007fac71ab6000 R08: 0000000000000000 R09: 0000000000003000
[  117.915938] R10: 0000000000000812 R11: 0000000000000206 R12: 00007fac71fbd470
[  117.916411] R13: 00007ffc5a9433b0 R14: 00007ffc5a943410 R15: 00007ffc5a943740
[  117.916899]  </TASK>
[  117.917064] irq event stamp: 11444
[  117.917312] hardirqs last  enabled at (11443): [<ffffffff8177f021>] put_cpu_partial+0x111/0x1c0
[  117.917890] hardirqs last disabled at (11444): [<ffffffff842528fb>] sysvec_call_function_single+0xb/0xc0
[  117.918514] softirqs last  enabled at (10812): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.919086] softirqs last disabled at (10807): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.919662] ---[ end trace 0000000000000000 ]---
[  117.920002] ------------[ cut here ]------------
[  117.920314] WARNING: CPU: 0 PID: 3518 at kernel/events/core.c:2183 perf_group_detach+0x9c7/0x12f0
[  117.920899] Modules linked in:
[  117.921122] CPU: 0 PID: 3518 Comm: modprobe Tainted: G        W          6.0.0-rc7-next-20220930 #1
[  117.921726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  117.922465] RIP: 0010:perf_group_detach+0x9c7/0x12f0
[  117.922806] Code: ff 0f 0b e9 a9 f8 ff ff e8 86 4e ee ff 65 8b 1d 0b b8 aa 7e 31 ff 89 de e8 26 4b ee ff 85 db 0f 84 86 04 00 00 e8 69 4e ee ff <0f> 0b e9 0e fa ff ff e8 5d 4e ee ff 48 8b 7c 24 20 48 81 c7 f8 00
[  117.923984] RSP: 0018:ffff88806ce09e60 EFLAGS: 00010046
[  117.924339] RAX: 0000000080010001 RBX: 0000000000000000 RCX: 0000000000000000
[  117.924810] RDX: ffff88800d783580 RSI: ffffffff8157bdc7 RDI: 0000000000000005
[  117.925296] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  117.925769] R10: 0000000000000000 R11: 0000000000000001 R12: ffff8880086605c8
[  117.926244] R13: ffff8880086605c8 R14: ffff88806ce3f200 R15: ffff8880086605c8
[  117.926717] FS:  0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  117.927248] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.927637] CR2: 00007faf2e299270 CR3: 00000000310f8000 CR4: 0000000000350ef0
[  117.928111] Call Trace:
[  117.928288]  <IRQ>
[  117.928443]  ? event_sched_out+0x71c/0xcd0
[  117.928741]  __perf_remove_from_context+0x71e/0xb20
[  117.929083]  event_function+0x297/0x3d0
[  117.929364]  ? perf_output_sample_regs+0x150/0x150
[  117.929701]  remote_function+0x125/0x1b0
[  117.929982]  __flush_smp_call_function_queue+0x1df/0x5a0
[  117.930344]  ? perf_duration_warn+0x40/0x40
[  117.930642]  __sysvec_call_function_single+0x92/0x3a0
[  117.930992]  sysvec_call_function_single+0x89/0xc0
[  117.931324]  </IRQ>
[  117.931483]  <TASK>
[  117.931641]  asm_sysvec_call_function_single+0x16/0x20
[  117.931992] RIP: 0010:put_cpu_partial+0x115/0x1c0
[  117.932318] Code: 39 43 28 75 61 48 c7 43 28 00 00 00 00 48 c7 c6 00 f0 77 81 48 89 df e8 09 2c b2 ff 48 85 ed 74 06 e8 4f f4 d4 ff fb 4d 85 ed <74> 21 5b 4c 89 ee 5d 4c 89 e7 41 5c 41 5d 41 5e 41 5f e9 84 fd ff
[  117.933504] RSP: 0018:ffff88803a05fa00 EFLAGS: 00000246
[  117.933858] RAX: 0000000000002cb3 RBX: ffff88806ce3c4a0 RCX: ffffffff81297e8f
[  117.934329] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  117.934800] RBP: 0000000000000200 R08: 0000000000000001 R09: ffffffff86cd37ef
[  117.935270] R10: fffffbfff0d9a6fd R11: 0000000000000001 R12: ffff888007c4f780
[  117.935743] R13: 0000000000000000 R14: ffffea0000373880 R15: 0000000000000003
[  117.936221]  ? mark_lock.part.0+0xef/0x2f70
[  117.936528]  qlist_free_all+0x6d/0x1a0
[  117.936802]  kasan_quarantine_reduce+0x184/0x210
[  117.937132]  __kasan_slab_alloc+0x48/0x70
[  117.937431]  kmem_cache_alloc+0x1a9/0x3e0
[  117.937719]  mas_alloc_nodes+0x420/0x800
[  117.938009]  mas_preallocate+0x1bb/0x360
[  117.938286]  vma_expand+0x1cc/0xb50
[  117.938546]  ? can_vma_merge_after.constprop.0+0x83/0x280
[  117.938915]  mmap_region+0xca6/0x1a00
[  117.939183]  ? inode_has_perm+0x171/0x1d0
[  117.939466]  ? do_munmap+0x100/0x100
[  117.939731]  ? security_mmap_addr+0x79/0xa0
[  117.940024]  ? get_unmapped_area+0x1e5/0x3e0
[  117.940327]  do_mmap+0x828/0xf40
[  117.940578]  vm_mmap_pgoff+0x1af/0x270
[  117.940848]  ? randomize_page+0xb0/0xb0
[  117.941130]  ksys_mmap_pgoff+0x3d0/0x4f0
[  117.941417]  do_syscall_64+0x3b/0x90
[  117.941679]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  117.942026] RIP: 0033:0x7fac71fddd82
[  117.942278] Code: eb aa 66 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 33 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 56 5b 5d c3 0f 1f 00 c7 05 ae 03 01 00 16 00
[  117.943459] RSP: 002b:00007ffc5a943398 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[  117.943966] RAX: ffffffffffffffda RBX: 0000000000000812 RCX: 00007fac71fddd82
[  117.944438] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 00007fac71ab6000
[  117.944909] RBP: 00007fac71ab6000 R08: 0000000000000000 R09: 0000000000003000
[  117.945393] R10: 0000000000000812 R11: 0000000000000206 R12: 00007fac71fbd470
[  117.945862] R13: 00007ffc5a9433b0 R14: 00007ffc5a943410 R15: 00007ffc5a943740
[  117.946350]  </TASK>
[  117.946512] irq event stamp: 11444
[  117.946749] hardirqs last  enabled at (11443): [<ffffffff8177f021>] put_cpu_partial+0x111/0x1c0
[  117.947324] hardirqs last disabled at (11444): [<ffffffff842528fb>] sysvec_call_function_single+0xb/0xc0
[  117.947945] softirqs last  enabled at (10812): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.948522] softirqs last disabled at (10807): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.949098] ---[ end trace 0000000000000000 ]---
[  117.949449] ------------[ cut here ]------------
[  117.949760] WARNING: CPU: 0 PID: 3518 at kernel/events/core.c:655 perf_event_update_sibling_time+0xd5/0x4d0
[  117.950401] Modules linked in:
[  117.950621] CPU: 0 PID: 3518 Comm: modprobe Tainted: G        W          6.0.0-rc7-next-20220930 #1
[  117.951214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  117.951948] RIP: 0010:perf_event_update_sibling_time+0xd5/0x4d0
[  117.952353] Code: 5e 41 5f e9 0d f0 f0 ff e8 08 f0 f0 ff 65 8b 1d 8d 59 ad 7e 31 ff 89 de e8 a8 ec f0 ff 85 db 0f 84 d3 02 00 00 e8 eb ef f0 ff <0f> 0b eb 97 e8 e2 ef f0 ff 48 8d 7d 10 48 b8 00 00 00 00 00 fc ff
[  117.953540] RSP: 0018:ffff88806ce09e58 EFLAGS: 00010046
[  117.953897] RAX: 0000000080010001 RBX: 0000000000000000 RCX: 0000000000000000
[  117.954367] RDX: ffff88800d783580 RSI: ffffffff81551c45 RDI: 0000000000000005
[  117.954837] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001
[  117.955308] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000
[  117.955778] R13: ffff888008660670 R14: 0000000000000001 R15: 0000000000000001
[  117.956249] FS:  0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  117.956785] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  117.957172] CR2: 00007faf2e299270 CR3: 00000000310f8000 CR4: 0000000000350ef0
[  117.957654] Call Trace:
[  117.957832]  <IRQ>
[  117.957984]  ? lock_is_held_type+0xd7/0x130
[  117.958275]  ? perf_event_update_time+0x285/0x380
[  117.958611]  list_del_event+0x524/0x860
[  117.958888]  __perf_remove_from_context+0xd2/0xb20
[  117.959225]  event_function+0x297/0x3d0
[  117.959497]  ? perf_output_sample_regs+0x150/0x150
[  117.959836]  remote_function+0x125/0x1b0
[  117.960116]  __flush_smp_call_function_queue+0x1df/0x5a0
[  117.960478]  ? perf_duration_warn+0x40/0x40
[  117.960774]  __sysvec_call_function_single+0x92/0x3a0
[  117.961123]  sysvec_call_function_single+0x89/0xc0
[  117.961464]  </IRQ>
[  117.961621]  <TASK>
[  117.961780]  asm_sysvec_call_function_single+0x16/0x20
[  117.962132] RIP: 0010:put_cpu_partial+0x115/0x1c0
[  117.962458] Code: 39 43 28 75 61 48 c7 43 28 00 00 00 00 48 c7 c6 00 f0 77 81 48 89 df e8 09 2c b2 ff 48 85 ed 74 06 e8 4f f4 d4 ff fb 4d 85 ed <74> 21 5b 4c 89 ee 5d 4c 89 e7 41 5c 41 5d 41 5e 41 5f e9 84 fd ff
[  117.963638] RSP: 0018:ffff88803a05fa00 EFLAGS: 00000246
[  117.963993] RAX: 0000000000002cb3 RBX: ffff88806ce3c4a0 RCX: ffffffff81297e8f
[  117.964467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  117.964937] RBP: 0000000000000200 R08: 0000000000000001 R09: ffffffff86cd37ef
[  117.965415] R10: fffffbfff0d9a6fd R11: 0000000000000001 R12: ffff888007c4f780
[  117.965886] R13: 0000000000000000 R14: ffffea0000373880 R15: 0000000000000003
[  117.966363]  ? mark_lock.part.0+0xef/0x2f70
[  117.966669]  qlist_free_all+0x6d/0x1a0
[  117.966945]  kasan_quarantine_reduce+0x184/0x210
[  117.967274]  __kasan_slab_alloc+0x48/0x70
[  117.967559]  kmem_cache_alloc+0x1a9/0x3e0
[  117.967846]  mas_alloc_nodes+0x420/0x800
[  117.968135]  mas_preallocate+0x1bb/0x360
[  117.968414]  vma_expand+0x1cc/0xb50
[  117.968673]  ? can_vma_merge_after.constprop.0+0x83/0x280
[  117.969044]  mmap_region+0xca6/0x1a00
[  117.969327]  ? inode_has_perm+0x171/0x1d0
[  117.969610]  ? do_munmap+0x100/0x100
[  117.969874]  ? security_mmap_addr+0x79/0xa0
[  117.970169]  ? get_unmapped_area+0x1e5/0x3e0
[  117.970474]  do_mmap+0x828/0xf40
[  117.970719]  vm_mmap_pgoff+0x1af/0x270
[  117.970991]  ? randomize_page+0xb0/0xb0
[  117.971275]  ksys_mmap_pgoff+0x3d0/0x4f0
[  117.971558]  do_syscall_64+0x3b/0x90
[  117.971818]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  117.972164] RIP: 0033:0x7fac71fddd82
[  117.972416] Code: eb aa 66 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 33 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 56 5b 5d c3 0f 1f 00 c7 05 ae 03 01 00 16 00
[  117.973607] RSP: 002b:00007ffc5a943398 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[  117.974107] RAX: ffffffffffffffda RBX: 0000000000000812 RCX: 00007fac71fddd82
[  117.974579] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 00007fac71ab6000
[  117.975050] RBP: 00007fac71ab6000 R08: 0000000000000000 R09: 0000000000003000
[  117.975521] R10: 0000000000000812 R11: 0000000000000206 R12: 00007fac71fbd470
[  117.975991] R13: 00007ffc5a9433b0 R14: 00007ffc5a943410 R15: 00007ffc5a943740
[  117.976476]  </TASK>
[  117.976637] irq event stamp: 11444
[  117.976872] hardirqs last  enabled at (11443): [<ffffffff8177f021>] put_cpu_partial+0x111/0x1c0
[  117.977478] hardirqs last disabled at (11444): [<ffffffff842528fb>] sysvec_call_function_single+0xb/0xc0
[  117.978098] softirqs last  enabled at (10812): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.978665] softirqs last disabled at (10807): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  117.979235] ---[ end trace 0000000000000000 ]---
16:16:38 executing program 7:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/fib_triestat\x00')
pread64(r0, &(0x7f0000000040)=""/170, 0xaa, 0x200000007fffffff)
syz_io_uring_setup(0x5d6f, &(0x7f0000000680)={0x0, 0xbcc0, 0x2, 0x2, 0x273, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000740)=<r1=>0x0)
r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, 0x8010, r0, 0x8000000)
syz_io_uring_submit(r2, r1, &(0x7f00000003c0)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x1, 0x0, r0, 0x0, r0}, 0x8)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@nfc, 0x80, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/177, 0xb1}, {&(0x7f0000000280)=""/84, 0x54}, {&(0x7f0000000040)=""/30, 0x1e}], 0x3, &(0x7f0000000400)=""/165, 0xa5}, 0x0, 0x40, 0x1, {0x1}}, 0xffff)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x125)
ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000000180)={0x3, 0x1000})

[  118.183290] ------------[ cut here ]------------
[  118.183314] 
[  118.183318] ======================================================
[  118.183321] WARNING: possible circular locking dependency detected
[  118.183326] 6.0.0-rc7-next-20220930 #1 Tainted: G        W         
[  118.183333] ------------------------------------------------------
[  118.183337] syz-executor.7/3538 is trying to acquire lock:
[  118.183343] ffffffff853faab8 ((console_sem).lock){-...}-{2:2}, at: down_trylock+0xe/0x70
[  118.183385] 
[  118.183385] but task is already holding lock:
[  118.183388] ffff88801a74bc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  118.183415] 
[  118.183415] which lock already depends on the new lock.
[  118.183415] 
[  118.183418] 
[  118.183418] the existing dependency chain (in reverse order) is:
[  118.183421] 
[  118.183421] -> #3 (&ctx->lock){....}-{2:2}:
[  118.183438]        _raw_spin_lock+0x2a/0x40
[  118.183449]        __perf_event_task_sched_out+0x53b/0x18d0
[  118.183460]        __schedule+0xedd/0x2470
[  118.183474]        schedule+0xda/0x1b0
[  118.183487]        exit_to_user_mode_prepare+0x114/0x1a0
[  118.183501]        syscall_exit_to_user_mode+0x19/0x40
[  118.183514]        do_syscall_64+0x48/0x90
[  118.183531]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  118.183544] 
[  118.183544] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  118.183558]        _raw_spin_lock_nested+0x30/0x40
[  118.183568]        raw_spin_rq_lock_nested+0x1e/0x30
[  118.183582]        task_fork_fair+0x63/0x4d0
[  118.183598]        sched_cgroup_fork+0x3d0/0x540
[  118.183613]        copy_process+0x4183/0x6e20
[  118.183624]        kernel_clone+0xe7/0x890
[  118.183633]        user_mode_thread+0xad/0xf0
[  118.183643]        rest_init+0x24/0x250
[  118.183655]        arch_call_rest_init+0xf/0x14
[  118.183673]        start_kernel+0x4c6/0x4eb
[  118.183688]        secondary_startup_64_no_verify+0xe0/0xeb
[  118.183703] 
[  118.183703] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  118.183716]        _raw_spin_lock_irqsave+0x39/0x60
[  118.183727]        try_to_wake_up+0xab/0x1930
[  118.183740]        up+0x75/0xb0
[  118.183753]        __up_console_sem+0x6e/0x80
[  118.183770]        console_unlock+0x46a/0x590
[  118.183785]        vprintk_emit+0x1bd/0x560
[  118.183802]        vprintk+0x84/0xa0
[  118.183818]        _printk+0xba/0xf1
[  118.183830]        kauditd_hold_skb.cold+0x3f/0x4e
[  118.183847]        kauditd_send_queue+0x233/0x290
[  118.183862]        kauditd_thread+0x5f9/0x9c0
[  118.183876]        kthread+0x2ed/0x3a0
[  118.183890]        ret_from_fork+0x22/0x30
[  118.183902] 
[  118.183902] -> #0 ((console_sem).lock){-...}-{2:2}:
[  118.183916]        __lock_acquire+0x2a02/0x5e70
[  118.183933]        lock_acquire+0x1a2/0x530
[  118.183949]        _raw_spin_lock_irqsave+0x39/0x60
[  118.183960]        down_trylock+0xe/0x70
[  118.183975]        __down_trylock_console_sem+0x3b/0xd0
[  118.183991]        vprintk_emit+0x16b/0x560
[  118.184006]        vprintk+0x84/0xa0
[  118.184022]        _printk+0xba/0xf1
[  118.184032]        report_bug.cold+0x72/0xab
[  118.184048]        handle_bug+0x3c/0x70
[  118.184064]        exc_invalid_op+0x14/0x50
[  118.184081]        asm_exc_invalid_op+0x16/0x20
[  118.184093]        group_sched_out.part.0+0x2c7/0x460
[  118.184111]        ctx_sched_out+0x8f1/0xc10
[  118.184128]        __perf_event_task_sched_out+0x6d0/0x18d0
[  118.184139]        __schedule+0xedd/0x2470
[  118.184152]        schedule+0xda/0x1b0
[  118.184165]        exit_to_user_mode_prepare+0x114/0x1a0
[  118.184176]        syscall_exit_to_user_mode+0x19/0x40
[  118.184189]        do_syscall_64+0x48/0x90
[  118.184206]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  118.184218] 
[  118.184218] other info that might help us debug this:
[  118.184218] 
[  118.184221] Chain exists of:
[  118.184221]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  118.184221] 
[  118.184236]  Possible unsafe locking scenario:
[  118.184236] 
[  118.184238]        CPU0                    CPU1
[  118.184241]        ----                    ----
[  118.184243]   lock(&ctx->lock);
[  118.184249]                                lock(&rq->__lock);
[  118.184255]                                lock(&ctx->lock);
[  118.184261]   lock((console_sem).lock);
[  118.184267] 
[  118.184267]  *** DEADLOCK ***
[  118.184267] 
[  118.184269] 2 locks held by syz-executor.7/3538:
[  118.184276]  #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  118.184305]  #1: ffff88801a74bc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  118.184331] 
[  118.184331] stack backtrace:
[  118.184335] CPU: 1 PID: 3538 Comm: syz-executor.7 Tainted: G        W          6.0.0-rc7-next-20220930 #1
[  118.184348] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  118.184356] Call Trace:
[  118.184359]  <TASK>
[  118.184364]  dump_stack_lvl+0x8b/0xb3
[  118.184382]  check_noncircular+0x263/0x2e0
[  118.184398]  ? format_decode+0x26c/0xb50
[  118.184415]  ? print_circular_bug+0x450/0x450
[  118.184432]  ? simple_strtoul+0x30/0x30
[  118.184447]  ? format_decode+0x26c/0xb50
[  118.184465]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  118.184482]  __lock_acquire+0x2a02/0x5e70
[  118.184503]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  118.184526]  lock_acquire+0x1a2/0x530
[  118.184542]  ? down_trylock+0xe/0x70
[  118.184559]  ? lock_release+0x750/0x750
[  118.184579]  ? vprintk+0x84/0xa0
[  118.184597]  _raw_spin_lock_irqsave+0x39/0x60
[  118.184609]  ? down_trylock+0xe/0x70
[  118.184624]  down_trylock+0xe/0x70
[  118.184640]  ? vprintk+0x84/0xa0
[  118.184657]  __down_trylock_console_sem+0x3b/0xd0
[  118.184674]  vprintk_emit+0x16b/0x560
[  118.184692]  vprintk+0x84/0xa0
[  118.184710]  _printk+0xba/0xf1
[  118.184721]  ? record_print_text.cold+0x16/0x16
[  118.184737]  ? report_bug.cold+0x66/0xab
[  118.184754]  ? group_sched_out.part.0+0x2c7/0x460
[  118.184772]  report_bug.cold+0x72/0xab
[  118.184791]  handle_bug+0x3c/0x70
[  118.184808]  exc_invalid_op+0x14/0x50
[  118.184826]  asm_exc_invalid_op+0x16/0x20
[  118.184838] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  118.184859] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  118.184870] RSP: 0018:ffff88803e7d7c48 EFLAGS: 00010006
[  118.184879] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  118.184886] RDX: ffff888018b4b580 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  118.184894] RBP: ffff88803e8105c8 R08: 0000000000000005 R09: 0000000000000001
[  118.184901] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88801a74bc00
[  118.184909] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  118.184919]  ? group_sched_out.part.0+0x2c7/0x460
[  118.184939]  ? group_sched_out.part.0+0x2c7/0x460
[  118.184959]  ctx_sched_out+0x8f1/0xc10
[  118.184978]  __perf_event_task_sched_out+0x6d0/0x18d0
[  118.184992]  ? lock_is_held_type+0xd7/0x130
[  118.185006]  ? __perf_cgroup_move+0x160/0x160
[  118.185016]  ? set_next_entity+0x304/0x550
[  118.185034]  ? update_curr+0x267/0x740
[  118.185052]  ? lock_is_held_type+0xd7/0x130
[  118.185066]  __schedule+0xedd/0x2470
[  118.185083]  ? io_schedule_timeout+0x150/0x150
[  118.185099]  ? rcu_read_lock_sched_held+0x3e/0x80
[  118.185120]  schedule+0xda/0x1b0
[  118.185135]  exit_to_user_mode_prepare+0x114/0x1a0
[  118.185147]  syscall_exit_to_user_mode+0x19/0x40
[  118.185161]  do_syscall_64+0x48/0x90
[  118.185178]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  118.185191] RIP: 0033:0x7f2814b81b19
[  118.185199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  118.185217] RSP: 002b:00007f28120f7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  118.185227] RAX: 0000000000000001 RBX: 00007f2814c94f68 RCX: 00007f2814b81b19
[  118.185235] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2814c94f6c
[  118.185242] RBP: 00007f2814c94f60 R08: 000000000000000e R09: 0000000000000000
[  118.185249] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f2814c94f6c
[  118.185256] R13: 00007ffe90ef1fff R14: 00007f28120f7300 R15: 0000000000022000
[  118.185269]  </TASK>
[  118.240812] WARNING: CPU: 1 PID: 3538 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  118.241532] Modules linked in:
[  118.241779] CPU: 1 PID: 3538 Comm: syz-executor.7 Tainted: G        W          6.0.0-rc7-next-20220930 #1
[  118.242505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  118.243345] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  118.243767] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  118.245136] RSP: 0018:ffff88803e7d7c48 EFLAGS: 00010006
[  118.245535] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  118.246070] RDX: ffff888018b4b580 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  118.246605] RBP: ffff88803e8105c8 R08: 0000000000000005 R09: 0000000000000001
[  118.247129] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88801a74bc00
[  118.247662] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  118.248199] FS:  00007f28120f7700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  118.248813] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  118.249257] CR2: 00007f20476b41f0 CR3: 000000000dfd0000 CR4: 0000000000350ee0
[  118.249791] Call Trace:
[  118.249993]  <TASK>
[  118.250167]  ctx_sched_out+0x8f1/0xc10
[  118.250479]  __perf_event_task_sched_out+0x6d0/0x18d0
[  118.250868]  ? lock_is_held_type+0xd7/0x130
[  118.251200]  ? __perf_cgroup_move+0x160/0x160
[  118.251539]  ? set_next_entity+0x304/0x550
[  118.251861]  ? update_curr+0x267/0x740
[  118.252162]  ? lock_is_held_type+0xd7/0x130
[  118.252496]  __schedule+0xedd/0x2470
[  118.252783]  ? io_schedule_timeout+0x150/0x150
[  118.253134]  ? rcu_read_lock_sched_held+0x3e/0x80
[  118.253525]  schedule+0xda/0x1b0
[  118.253794]  exit_to_user_mode_prepare+0x114/0x1a0
[  118.254168]  syscall_exit_to_user_mode+0x19/0x40
[  118.254537]  do_syscall_64+0x48/0x90
[  118.254832]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  118.255228] RIP: 0033:0x7f2814b81b19
[  118.255507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  118.256867] RSP: 002b:00007f28120f7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  118.257455] RAX: 0000000000000001 RBX: 00007f2814c94f68 RCX: 00007f2814b81b19
[  118.257990] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2814c94f6c
[  118.258531] RBP: 00007f2814c94f60 R08: 000000000000000e R09: 0000000000000000
[  118.259066] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f2814c94f6c
[  118.259604] R13: 00007ffe90ef1fff R14: 00007f28120f7300 R15: 0000000000022000
[  118.260142]  </TASK>
[  118.260326] irq event stamp: 1976
[  118.260582] hardirqs last  enabled at (1975): [<ffffffff8133e829>] exit_to_user_mode_prepare+0x109/0x1a0
[  118.261299] hardirqs last disabled at (1976): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  118.261930] softirqs last  enabled at (1826): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  118.262586] softirqs last disabled at (1671): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  118.263226] ---[ end trace 0000000000000000 ]---
16:16:38 executing program 1:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r0, r0, 0x0, 0x1)
r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x32261, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r3 = fcntl$dupfd(r1, 0x0, r2)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r3, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write(r2, &(0x7f0000000080)="01", 0x41030)

[  118.315474] audit: type=1400 audit(1664727398.710:9): avc:  denied  { read } for  pid=3547 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
16:16:38 executing program 3:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe(0x0)
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f0000000040)={&(0x7f0000000000)=""/46, 0x2e, 0x8e, 0x9})
perf_event_open(&(0x7f0000000240)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

16:16:38 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000c80), &(0x7f0000000cc0)='./file0\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000d00)="bc", 0x1}], 0x0, &(0x7f0000001000)={[{@size={'size', 0x3d, [0x25, 0x0]}}]})


VM DIAGNOSIS:
16:16:37  Registers:
info registers vcpu 0
RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88806ce09590
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000066 R11=0000000000000001
R12=0000000000000066 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f86bb992540 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00005605fe5b04c8 CR3=000000000dbbe000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 00642e65626f7270 646f6d2f6374652f
YMM01=0000000000000000 0000000000000000 00642e65626f7270 646f6d2f6374652f
YMM02=0000000000000000 0000000000000000 0000000000000000 0000ffffffffffff
YMM03=0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff
YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 676f6c206d6f7473 7563000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=00000000000257bf RBX=1ffff11007d17f84 RCX=ffffc90000dce000 RDX=0000000000040000
RSI=ffffffff813bb183 RDI=0000000000000005 RBP=ffff88803e8bfcc8 RSP=ffff88803e8bfc00
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000200
RIP=ffffffff813bb185 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f29e6a19700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f40b858f8e0 CR3=000000000df4c000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff
YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000