Warning: Permanently added '[localhost]:52178' (ECDSA) to the list of known hosts. 2024/10/17 22:47:26 fuzzer started 2024/10/17 22:47:26 dialing manager at localhost:45639 syzkaller login: [ 61.039727] cgroup: Unknown subsys name 'net' [ 61.150342] cgroup: Unknown subsys name 'cpuset' [ 61.196903] cgroup: Unknown subsys name 'rlimit' 2024/10/17 22:47:44 syscalls: 2217 2024/10/17 22:47:44 code coverage: enabled 2024/10/17 22:47:44 comparison tracing: enabled 2024/10/17 22:47:44 extra coverage: enabled 2024/10/17 22:47:44 setuid sandbox: enabled 2024/10/17 22:47:44 namespace sandbox: enabled 2024/10/17 22:47:44 Android sandbox: enabled 2024/10/17 22:47:44 fault injection: enabled 2024/10/17 22:47:44 leak checking: enabled 2024/10/17 22:47:44 net packet injection: enabled 2024/10/17 22:47:44 net device setup: enabled 2024/10/17 22:47:44 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/10/17 22:47:44 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/10/17 22:47:44 USB emulation: enabled 2024/10/17 22:47:44 hci packet injection: enabled 2024/10/17 22:47:44 wifi device emulation: enabled 2024/10/17 22:47:44 802.15.4 emulation: enabled 2024/10/17 22:47:44 fetching corpus: 0, signal 0/2000 (executing program) 2024/10/17 22:47:44 fetching corpus: 43, signal 29133/32510 (executing program) 2024/10/17 22:47:44 fetching corpus: 93, signal 37434/42212 (executing program) 2024/10/17 22:47:44 fetching corpus: 143, signal 44606/50631 (executing program) 2024/10/17 22:47:44 fetching corpus: 193, signal 48785/56130 (executing program) 2024/10/17 22:47:44 fetching corpus: 243, signal 52821/61375 (executing program) 2024/10/17 22:47:44 fetching corpus: 293, signal 58677/68269 (executing program) 2024/10/17 22:47:45 fetching corpus: 343, signal 62047/72709 (executing program) 2024/10/17 22:47:45 fetching corpus: 393, signal 65860/77517 (executing program) 2024/10/17 22:47:45 fetching corpus: 443, signal 68054/80727 (executing program) 2024/10/17 22:47:45 fetching corpus: 493, signal 70936/84482 (executing program) 2024/10/17 22:47:45 fetching corpus: 543, signal 72328/86900 (executing program) 2024/10/17 22:47:45 fetching corpus: 593, signal 75083/90451 (executing program) 2024/10/17 22:47:45 fetching corpus: 643, signal 76397/92708 (executing program) 2024/10/17 22:47:45 fetching corpus: 693, signal 78243/95423 (executing program) 2024/10/17 22:47:45 fetching corpus: 743, signal 79649/97724 (executing program) 2024/10/17 22:47:45 fetching corpus: 793, signal 82506/101178 (executing program) 2024/10/17 22:47:45 fetching corpus: 843, signal 84349/103775 (executing program) 2024/10/17 22:47:45 fetching corpus: 893, signal 85604/105828 (executing program) 2024/10/17 22:47:45 fetching corpus: 942, signal 89530/109899 (executing program) 2024/10/17 22:47:46 fetching corpus: 992, signal 92052/112910 (executing program) 2024/10/17 22:47:46 fetching corpus: 1042, signal 93769/115186 (executing program) 2024/10/17 22:47:46 fetching corpus: 1092, signal 95758/117634 (executing program) 2024/10/17 22:47:46 fetching corpus: 1142, signal 97835/120073 (executing program) 2024/10/17 22:47:46 fetching corpus: 1191, signal 99538/122313 (executing program) 2024/10/17 22:47:46 fetching corpus: 1241, signal 100929/124223 (executing program) 2024/10/17 22:47:46 fetching corpus: 1290, signal 102132/125913 (executing program) 2024/10/17 22:47:46 fetching corpus: 1339, signal 103685/127890 (executing program) 2024/10/17 22:47:46 fetching corpus: 1389, signal 105100/129744 (executing program) 2024/10/17 22:47:46 fetching corpus: 1439, signal 106218/131327 (executing program) 2024/10/17 22:47:47 fetching corpus: 1489, signal 107691/133126 (executing program) 2024/10/17 22:47:47 fetching corpus: 1538, signal 109273/134969 (executing program) 2024/10/17 22:47:47 fetching corpus: 1588, signal 110390/136479 (executing program) 2024/10/17 22:47:47 fetching corpus: 1638, signal 111635/138050 (executing program) 2024/10/17 22:47:47 fetching corpus: 1688, signal 112587/139370 (executing program) 2024/10/17 22:47:47 fetching corpus: 1738, signal 113517/140714 (executing program) 2024/10/17 22:47:47 fetching corpus: 1788, signal 114636/142075 (executing program) 2024/10/17 22:47:47 fetching corpus: 1837, signal 115617/143383 (executing program) 2024/10/17 22:47:47 fetching corpus: 1887, signal 116107/144400 (executing program) 2024/10/17 22:47:47 fetching corpus: 1937, signal 116756/145490 (executing program) 2024/10/17 22:47:48 fetching corpus: 1987, signal 117234/146503 (executing program) 2024/10/17 22:47:48 fetching corpus: 2037, signal 118014/147666 (executing program) 2024/10/17 22:47:48 fetching corpus: 2086, signal 118856/148829 (executing program) 2024/10/17 22:47:48 fetching corpus: 2136, signal 119814/150007 (executing program) 2024/10/17 22:47:48 fetching corpus: 2186, signal 121068/151326 (executing program) 2024/10/17 22:47:48 fetching corpus: 2236, signal 121874/152431 (executing program) 2024/10/17 22:47:48 fetching corpus: 2286, signal 122482/153403 (executing program) 2024/10/17 22:47:48 fetching corpus: 2336, signal 123124/154399 (executing program) 2024/10/17 22:47:48 fetching corpus: 2386, signal 123926/155456 (executing program) 2024/10/17 22:47:48 fetching corpus: 2435, signal 125096/156658 (executing program) 2024/10/17 22:47:49 fetching corpus: 2484, signal 126176/157738 (executing program) 2024/10/17 22:47:49 fetching corpus: 2534, signal 126934/158702 (executing program) 2024/10/17 22:47:49 fetching corpus: 2584, signal 127615/159633 (executing program) 2024/10/17 22:47:49 fetching corpus: 2634, signal 128051/160415 (executing program) 2024/10/17 22:47:49 fetching corpus: 2684, signal 129136/161437 (executing program) 2024/10/17 22:47:49 fetching corpus: 2734, signal 129783/162257 (executing program) 2024/10/17 22:47:49 fetching corpus: 2783, signal 130374/162992 (executing program) 2024/10/17 22:47:49 fetching corpus: 2833, signal 131135/163836 (executing program) 2024/10/17 22:47:49 fetching corpus: 2883, signal 132214/164831 (executing program) 2024/10/17 22:47:49 fetching corpus: 2933, signal 132831/165593 (executing program) 2024/10/17 22:47:49 fetching corpus: 2981, signal 134081/166575 (executing program) 2024/10/17 22:47:50 fetching corpus: 3031, signal 134555/167248 (executing program) 2024/10/17 22:47:50 fetching corpus: 3081, signal 135120/167937 (executing program) 2024/10/17 22:47:50 fetching corpus: 3131, signal 135594/168562 (executing program) 2024/10/17 22:47:50 fetching corpus: 3181, signal 136794/169427 (executing program) 2024/10/17 22:47:50 fetching corpus: 3231, signal 137383/170125 (executing program) 2024/10/17 22:47:50 fetching corpus: 3281, signal 138165/170846 (executing program) 2024/10/17 22:47:50 fetching corpus: 3331, signal 138565/171484 (executing program) 2024/10/17 22:47:50 fetching corpus: 3381, signal 139623/172216 (executing program) 2024/10/17 22:47:50 fetching corpus: 3430, signal 140134/172820 (executing program) 2024/10/17 22:47:51 fetching corpus: 3480, signal 140767/173465 (executing program) 2024/10/17 22:47:51 fetching corpus: 3529, signal 141320/174046 (executing program) 2024/10/17 22:47:51 fetching corpus: 3579, signal 141811/174584 (executing program) 2024/10/17 22:47:51 fetching corpus: 3629, signal 142408/175160 (executing program) 2024/10/17 22:47:51 fetching corpus: 3679, signal 142892/175699 (executing program) 2024/10/17 22:47:51 fetching corpus: 3729, signal 143541/176247 (executing program) 2024/10/17 22:47:51 fetching corpus: 3778, signal 144060/176760 (executing program) 2024/10/17 22:47:51 fetching corpus: 3827, signal 144763/177259 (executing program) 2024/10/17 22:47:51 fetching corpus: 3877, signal 145294/177764 (executing program) 2024/10/17 22:47:51 fetching corpus: 3927, signal 145757/178230 (executing program) 2024/10/17 22:47:51 fetching corpus: 3977, signal 146295/178686 (executing program) 2024/10/17 22:47:51 fetching corpus: 4027, signal 146725/179127 (executing program) 2024/10/17 22:47:52 fetching corpus: 4077, signal 147382/179609 (executing program) 2024/10/17 22:47:52 fetching corpus: 4127, signal 147773/180028 (executing program) 2024/10/17 22:47:52 fetching corpus: 4177, signal 148151/180388 (executing program) 2024/10/17 22:47:52 fetching corpus: 4226, signal 148440/180813 (executing program) 2024/10/17 22:47:52 fetching corpus: 4276, signal 149072/181217 (executing program) 2024/10/17 22:47:52 fetching corpus: 4326, signal 149369/181592 (executing program) 2024/10/17 22:47:52 fetching corpus: 4376, signal 149681/181976 (executing program) 2024/10/17 22:47:52 fetching corpus: 4426, signal 150179/182356 (executing program) 2024/10/17 22:47:52 fetching corpus: 4476, signal 150806/182711 (executing program) 2024/10/17 22:47:52 fetching corpus: 4526, signal 151097/182855 (executing program) 2024/10/17 22:47:53 fetching corpus: 4575, signal 151415/182863 (executing program) 2024/10/17 22:47:53 fetching corpus: 4625, signal 151841/182863 (executing program) 2024/10/17 22:47:53 fetching corpus: 4674, signal 152344/182863 (executing program) 2024/10/17 22:47:53 fetching corpus: 4724, signal 152719/182867 (executing program) 2024/10/17 22:47:53 fetching corpus: 4774, signal 153307/182867 (executing program) 2024/10/17 22:47:53 fetching corpus: 4824, signal 153930/182867 (executing program) 2024/10/17 22:47:53 fetching corpus: 4874, signal 154403/182867 (executing program) 2024/10/17 22:47:53 fetching corpus: 4924, signal 154814/182867 (executing program) 2024/10/17 22:47:53 fetching corpus: 4974, signal 156098/182867 (executing program) 2024/10/17 22:47:54 fetching corpus: 5024, signal 156672/182867 (executing program) 2024/10/17 22:47:54 fetching corpus: 5074, signal 157188/182867 (executing program) 2024/10/17 22:47:54 fetching corpus: 5124, signal 157605/182869 (executing program) 2024/10/17 22:47:54 fetching corpus: 5173, signal 158041/182872 (executing program) 2024/10/17 22:47:54 fetching corpus: 5223, signal 158339/182872 (executing program) 2024/10/17 22:47:54 fetching corpus: 5273, signal 158615/182872 (executing program) 2024/10/17 22:47:54 fetching corpus: 5322, signal 158984/182872 (executing program) 2024/10/17 22:47:54 fetching corpus: 5372, signal 159247/182872 (executing program) 2024/10/17 22:47:54 fetching corpus: 5422, signal 159509/182872 (executing program) 2024/10/17 22:47:54 fetching corpus: 5471, signal 160168/182872 (executing program) 2024/10/17 22:47:54 fetching corpus: 5521, signal 160589/182872 (executing program) 2024/10/17 22:47:54 fetching corpus: 5571, signal 160894/182895 (executing program) 2024/10/17 22:47:55 fetching corpus: 5621, signal 161259/182895 (executing program) 2024/10/17 22:47:55 fetching corpus: 5671, signal 161500/182895 (executing program) 2024/10/17 22:47:55 fetching corpus: 5721, signal 161821/182895 (executing program) 2024/10/17 22:47:55 fetching corpus: 5769, signal 162117/182895 (executing program) 2024/10/17 22:47:55 fetching corpus: 5818, signal 162380/182895 (executing program) 2024/10/17 22:47:55 fetching corpus: 5868, signal 162633/182895 (executing program) 2024/10/17 22:47:55 fetching corpus: 5918, signal 162947/182899 (executing program) 2024/10/17 22:47:55 fetching corpus: 5968, signal 163245/182899 (executing program) 2024/10/17 22:47:55 fetching corpus: 6017, signal 163478/182899 (executing program) 2024/10/17 22:47:55 fetching corpus: 6067, signal 163732/182899 (executing program) 2024/10/17 22:47:55 fetching corpus: 6117, signal 164185/182899 (executing program) 2024/10/17 22:47:55 fetching corpus: 6167, signal 164577/182899 (executing program) 2024/10/17 22:47:55 fetching corpus: 6217, signal 164766/182899 (executing program) 2024/10/17 22:47:55 fetching corpus: 6267, signal 165033/182899 (executing program) 2024/10/17 22:47:56 fetching corpus: 6317, signal 165298/182899 (executing program) 2024/10/17 22:47:56 fetching corpus: 6367, signal 165543/182899 (executing program) 2024/10/17 22:47:56 fetching corpus: 6417, signal 165800/182899 (executing program) 2024/10/17 22:47:56 fetching corpus: 6467, signal 166446/183252 (executing program) 2024/10/17 22:47:56 fetching corpus: 6517, signal 166770/183252 (executing program) 2024/10/17 22:47:56 fetching corpus: 6566, signal 167248/183253 (executing program) 2024/10/17 22:47:56 fetching corpus: 6616, signal 167509/183253 (executing program) 2024/10/17 22:47:56 fetching corpus: 6666, signal 167747/183253 (executing program) 2024/10/17 22:47:56 fetching corpus: 6715, signal 167987/183254 (executing program) 2024/10/17 22:47:56 fetching corpus: 6765, signal 168250/183254 (executing program) 2024/10/17 22:47:56 fetching corpus: 6814, signal 168485/183263 (executing program) 2024/10/17 22:47:56 fetching corpus: 6864, signal 168829/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 6914, signal 169053/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 6964, signal 169270/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 7013, signal 169524/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 7063, signal 169881/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 7113, signal 170115/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 7161, signal 170361/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 7211, signal 170597/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 7261, signal 170955/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 7311, signal 171239/183263 (executing program) 2024/10/17 22:47:57 fetching corpus: 7361, signal 171547/183270 (executing program) 2024/10/17 22:47:57 fetching corpus: 7410, signal 171754/183270 (executing program) 2024/10/17 22:47:57 fetching corpus: 7460, signal 171965/183270 (executing program) 2024/10/17 22:47:57 fetching corpus: 7510, signal 172181/183270 (executing program) 2024/10/17 22:47:57 fetching corpus: 7560, signal 172629/183271 (executing program) 2024/10/17 22:47:57 fetching corpus: 7610, signal 172830/183271 (executing program) 2024/10/17 22:47:58 fetching corpus: 7659, signal 173127/183271 (executing program) 2024/10/17 22:47:58 fetching corpus: 7708, signal 173383/183271 (executing program) 2024/10/17 22:47:58 fetching corpus: 7757, signal 173647/183271 (executing program) 2024/10/17 22:47:58 fetching corpus: 7806, signal 173970/183271 (executing program) 2024/10/17 22:47:58 fetching corpus: 7856, signal 174226/183271 (executing program) 2024/10/17 22:47:58 fetching corpus: 7902, signal 174437/183271 (executing program) 2024/10/17 22:47:58 fetching corpus: 7951, signal 174691/183278 (executing program) 2024/10/17 22:47:58 fetching corpus: 8001, signal 174945/183279 (executing program) 2024/10/17 22:47:58 fetching corpus: 8051, signal 175320/183279 (executing program) 2024/10/17 22:47:58 fetching corpus: 8101, signal 175488/183279 (executing program) 2024/10/17 22:47:58 fetching corpus: 8150, signal 175736/183279 (executing program) 2024/10/17 22:47:58 fetching corpus: 8200, signal 175891/183279 (executing program) 2024/10/17 22:47:59 fetching corpus: 8250, signal 176126/183279 (executing program) 2024/10/17 22:47:59 fetching corpus: 8299, signal 176335/183279 (executing program) 2024/10/17 22:47:59 fetching corpus: 8348, signal 176559/183279 (executing program) 2024/10/17 22:47:59 fetching corpus: 8398, signal 176839/183293 (executing program) 2024/10/17 22:47:59 fetching corpus: 8448, signal 177140/183293 (executing program) 2024/10/17 22:47:59 fetching corpus: 8497, signal 177383/183296 (executing program) 2024/10/17 22:47:59 fetching corpus: 8547, signal 177678/183296 (executing program) 2024/10/17 22:47:59 fetching corpus: 8597, signal 177913/183296 (executing program) 2024/10/17 22:47:59 fetching corpus: 8646, signal 178192/183296 (executing program) 2024/10/17 22:47:59 fetching corpus: 8696, signal 178402/183296 (executing program) 2024/10/17 22:47:59 fetching corpus: 8746, signal 178674/183296 (executing program) 2024/10/17 22:47:59 fetching corpus: 8796, signal 178834/183296 (executing program) 2024/10/17 22:48:00 fetching corpus: 8846, signal 179021/183296 (executing program) 2024/10/17 22:48:00 fetching corpus: 8896, signal 179222/183296 (executing program) 2024/10/17 22:48:00 fetching corpus: 8946, signal 179403/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 8996, signal 180025/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9045, signal 180254/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9095, signal 180410/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9145, signal 180626/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9195, signal 180828/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9244, signal 181008/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9294, signal 181141/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9343, signal 181277/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9393, signal 181472/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9443, signal 181610/183303 (executing program) 2024/10/17 22:48:00 fetching corpus: 9475, signal 182175/183303 (executing program) 2024/10/17 22:48:01 fetching corpus: 9475, signal 182175/183303 (executing program) 2024/10/17 22:48:03 starting 8 fuzzer processes 22:48:03 executing program 0: mlock2(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x0) madvise(&(0x7f0000006000/0x2000)=nil, 0x2000, 0x9) 22:48:03 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='proc\x00', 0x0, 0x0) r0 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) lseek(r0, 0x6, 0x0) getdents64(r0, &(0x7f0000000200)=""/4096, 0x18) 22:48:03 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0xa, 0x0) getsockname$inet(r0, 0x0, &(0x7f00000001c0)) 22:48:03 executing program 3: setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000680)={@in={{0x2, 0x4e21, @broadcast}}, 0x0, 0x0, 0x0, 0x0, "444b5b6951e809317b187f9df18586eea9ed050fa61b4a08de980092aed81546ec2a1013d0b270d218ffd29117018bfdf802881cbd20d4618ad0682e22e951c3193155964ea509d4c8b8b88e248e82bb"}, 0xd8) perf_event_open(&(0x7f0000000480)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r1, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="1c0000001e0069ff0000"], 0x1c}], 0x1}, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0x4004}) r2 = syz_mount_image$vfat(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="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"]) perf_event_open(&(0x7f0000000600)={0x1, 0x80, 0x0, 0xfe, 0x6, 0x9, 0x0, 0x1f, 0x940, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x400, 0x4, @perf_bp={&(0x7f00000003c0), 0x6}, 0x18240, 0x5, 0xfe000, 0x5, 0x10000, 0xe12, 0x6, 0x0, 0x800, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(r2, 0x40046721, &(0x7f0000000040)={r0}) r3 = open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0) getdents(r3, &(0x7f0000001140)=""/4094, 0xffe) getdents(r3, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, 0xffffffffffffffff, &(0x7f0000000040)={0x4004}) signalfd4(r3, &(0x7f0000000400)={[0xf9a]}, 0x8, 0x400) openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x25c5efb9aa5298c, 0x1) 22:48:03 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x1c1042, 0x0) ioctl$KDSIGACCEPT(r0, 0x40086607, 0x800000000000e) [ 97.735124] audit: type=1400 audit(1729205283.431:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 22:48:03 executing program 5: r0 = getpid() r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000440)={[0x3]}, 0x8, 0x0) r2 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r2, 0x8040942d, &(0x7f00000000c0)) r3 = pidfd_open(r0, 0x0) dup2(r1, r3) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @remote, @broadcast}}}], 0x20}, 0xe00) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000040)={@private=0xa010100, @empty, r5}, 0xc) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fallocate(r6, 0x0, 0x0, 0x120000) preadv(r6, &(0x7f0000001400)=[{&(0x7f0000001480)=""/4111, 0x7ffff000}], 0x1, 0x0, 0x0) flock(r1, 0x9) perf_event_open(&(0x7f0000000040)={0x7, 0x80, 0x1, 0x0, 0x4, 0x7, 0x0, 0x7ff, 0x80, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000000), 0xb}, 0x8000, 0x4, 0x100, 0x3, 0xac, 0x100, 0x7, 0x0, 0x0, 0x0, 0x3}, r0, 0xf, 0xffffffffffffffff, 0x2) 22:48:03 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f00000025c0)=ANY=[@ANYBLOB='mangle'], &(0x7f0000002680)=0x28) 22:48:03 executing program 7: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r0, &(0x7f0000000080)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) connect$802154_dgram(r0, &(0x7f00000005c0)={0x24, @long}, 0x14) sendmmsg(r0, &(0x7f0000001a40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)="7efc05d4655d0070d20bc61b7d8bbb4e2131592c92720e771e600d7aaca8196a707fb94b0cd89039f94cf3c74cfa451ef732d31a84f8362dc823e3247428ebe1f3204c5b06827f57609e6eea840bc8cf799c49d4a6ad69d9d70712bd5bed33bd6e7065f844f89643e9", 0x69}], 0x1}}], 0x2, 0x0) [ 99.139248] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 99.142244] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 99.144485] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 99.156936] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 99.175640] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 99.176365] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 99.178877] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 99.181270] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 99.182983] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 99.185328] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 99.189803] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 99.191302] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 99.194331] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 99.194911] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 99.196415] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 99.196898] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 99.197747] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 99.203632] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 99.206718] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 99.222309] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 99.225754] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 99.227209] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 99.232013] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 99.233872] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 99.245117] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 99.250856] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 99.254188] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 99.260788] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 99.265751] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 99.266741] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 99.270706] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 99.271619] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 99.272811] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 99.276918] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 99.277905] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 99.278814] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 99.280730] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 99.284181] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 99.285637] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 99.286574] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 99.287322] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 99.290881] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 99.292323] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 99.304678] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 99.310201] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 99.332965] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 99.336472] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 99.342367] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 101.219638] Bluetooth: hci1: command tx timeout [ 101.281649] Bluetooth: hci4: command tx timeout [ 101.281660] Bluetooth: hci2: command tx timeout [ 101.352816] Bluetooth: hci6: command tx timeout [ 101.353186] Bluetooth: hci5: command tx timeout [ 101.353665] Bluetooth: hci3: command tx timeout [ 101.354045] Bluetooth: hci0: command tx timeout [ 101.409637] Bluetooth: hci7: command tx timeout [ 103.265643] Bluetooth: hci1: command tx timeout [ 103.329814] Bluetooth: hci2: command tx timeout [ 103.330675] Bluetooth: hci4: command tx timeout [ 103.393721] Bluetooth: hci3: command tx timeout [ 103.394201] Bluetooth: hci5: command tx timeout [ 103.396239] Bluetooth: hci6: command tx timeout [ 103.396657] Bluetooth: hci0: command tx timeout [ 103.458747] Bluetooth: hci7: command tx timeout [ 105.314602] Bluetooth: hci1: command tx timeout [ 105.377694] Bluetooth: hci2: command tx timeout [ 105.379107] Bluetooth: hci4: command tx timeout [ 105.441913] Bluetooth: hci0: command tx timeout [ 105.442015] Bluetooth: hci5: command tx timeout [ 105.442371] Bluetooth: hci3: command tx timeout [ 105.443443] Bluetooth: hci6: command tx timeout [ 105.506706] Bluetooth: hci7: command tx timeout [ 107.362680] Bluetooth: hci1: command tx timeout [ 107.427587] Bluetooth: hci4: command tx timeout [ 107.427617] Bluetooth: hci2: command tx timeout [ 107.489734] Bluetooth: hci3: command tx timeout [ 107.489791] Bluetooth: hci6: command tx timeout [ 107.490288] Bluetooth: hci5: command tx timeout [ 107.490826] Bluetooth: hci0: command tx timeout [ 107.553632] Bluetooth: hci7: command tx timeout [ 156.156860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.157925] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.369726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.370372] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.675984] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.676682] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 156.930322] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 156.931199] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 157.145794] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 157.146458] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 157.389914] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 157.390745] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 157.583205] audit: type=1400 audit(1729205343.287:8): avc: denied { open } for pid=3865 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 157.585790] audit: type=1400 audit(1729205343.288:9): avc: denied { kernel } for pid=3865 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 157.619740] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 157.620392] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 157.624669] syz-executor.2 uses obsolete (PF_INET,SOCK_PACKET) 22:49:03 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0xa, 0x0) getsockname$inet(r0, 0x0, &(0x7f00000001c0)) 22:49:03 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0xa, 0x0) getsockname$inet(r0, 0x0, &(0x7f00000001c0)) [ 157.999875] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 158.001148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 22:49:03 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0xa, 0x0) getsockname$inet(r0, 0x0, &(0x7f00000001c0)) 22:49:03 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_timeval(r0, 0x1, 0x5, &(0x7f0000000000)={0x77359400}, 0x10) 22:49:04 executing program 2: r0 = io_uring_setup(0x4477, &(0x7f0000000540)) io_uring_register$IORING_UNREGISTER_EVENTFD(r0, 0x5, 0x0, 0x0) 22:49:04 executing program 2: r0 = io_uring_setup(0x4477, &(0x7f0000000540)) io_uring_register$IORING_UNREGISTER_EVENTFD(r0, 0x5, 0x0, 0x0) 22:49:04 executing program 2: r0 = io_uring_setup(0x4477, &(0x7f0000000540)) io_uring_register$IORING_UNREGISTER_EVENTFD(r0, 0x5, 0x0, 0x0) 22:49:04 executing program 2: r0 = io_uring_setup(0x4477, &(0x7f0000000540)) io_uring_register$IORING_UNREGISTER_EVENTFD(r0, 0x5, 0x0, 0x0) [ 161.264280] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 161.269768] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 161.272133] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 161.277474] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 161.281278] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 161.283374] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 161.415472] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 161.419451] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 161.424907] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 161.429914] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 161.433867] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 161.435830] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 161.464419] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 161.467283] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 161.475716] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 161.515162] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 161.523495] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 161.525801] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 161.671392] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 161.681948] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 161.685665] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 161.761102] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 161.768819] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 161.770337] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 161.781084] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 161.788780] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 161.788881] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 161.793724] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 161.804306] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 161.806381] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 161.816109] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 161.821422] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 161.824141] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 161.825914] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 161.892834] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 161.949142] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 161.951706] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 161.954984] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 161.973865] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 161.983993] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 162.088977] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 162.092318] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 163.361767] Bluetooth: hci0: command tx timeout [ 163.554604] Bluetooth: hci1: command tx timeout [ 163.555424] Bluetooth: hci2: command tx timeout [ 163.873675] Bluetooth: hci4: command tx timeout [ 164.129614] Bluetooth: hci7: command tx timeout [ 164.194605] Bluetooth: hci5: command tx timeout [ 164.449599] Bluetooth: hci6: command tx timeout [ 165.410480] Bluetooth: hci0: command tx timeout [ 165.602668] Bluetooth: hci1: command tx timeout [ 165.603145] Bluetooth: hci2: command tx timeout [ 165.923744] Bluetooth: hci4: command tx timeout [ 166.177995] Bluetooth: hci7: command tx timeout [ 166.242563] Bluetooth: hci5: command tx timeout [ 166.498214] Bluetooth: hci6: command tx timeout [ 167.458566] Bluetooth: hci0: command tx timeout [ 167.651583] Bluetooth: hci2: command tx timeout [ 167.652087] Bluetooth: hci1: command tx timeout [ 167.970614] Bluetooth: hci4: command tx timeout [ 168.226659] Bluetooth: hci7: command tx timeout [ 168.290641] Bluetooth: hci5: command tx timeout [ 168.545613] Bluetooth: hci6: command tx timeout [ 169.505660] Bluetooth: hci0: command tx timeout [ 169.698602] Bluetooth: hci1: command tx timeout [ 169.699092] Bluetooth: hci2: command tx timeout [ 170.018890] Bluetooth: hci4: command tx timeout [ 170.274641] Bluetooth: hci7: command tx timeout [ 170.338674] Bluetooth: hci5: command tx timeout [ 170.594748] Bluetooth: hci6: command tx timeout [ 211.918575] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 211.919232] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 212.223262] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 212.223927] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 212.565858] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 212.566584] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 212.854610] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 212.855243] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 213.588626] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.589262] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 213.812500] hrtimer: interrupt took 30889 ns [ 213.938089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 213.939610] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 214.768978] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.769649] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 214.856801] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.857416] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 214.959254] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 214.959909] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.098798] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.099408] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 215.977099] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 215.978095] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.086621] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.087250] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.623460] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.624182] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 216.655971] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 216.656598] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 22:50:02 executing program 0: mknod(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) mount$9p_unix(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x1a901e, 0x0) umount2(&(0x7f0000000200)='./file0\x00', 0x4) utime(&(0x7f0000000180)='./file0\x00', 0x0) 22:50:02 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000200), 0x4) 22:50:02 executing program 5: r0 = getpid() r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000440)={[0x3]}, 0x8, 0x0) r2 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r2, 0x8040942d, &(0x7f00000000c0)) r3 = pidfd_open(r0, 0x0) dup2(r1, r3) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @remote, @broadcast}}}], 0x20}, 0xe00) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000040)={@private=0xa010100, @empty, r5}, 0xc) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fallocate(r6, 0x0, 0x0, 0x120000) preadv(r6, &(0x7f0000001400)=[{&(0x7f0000001480)=""/4111, 0x7ffff000}], 0x1, 0x0, 0x0) flock(r1, 0x9) perf_event_open(&(0x7f0000000040)={0x7, 0x80, 0x1, 0x0, 0x4, 0x7, 0x0, 0x7ff, 0x80, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000000), 0xb}, 0x8000, 0x4, 0x100, 0x3, 0xac, 0x100, 0x7, 0x0, 0x0, 0x0, 0x3}, r0, 0xf, 0xffffffffffffffff, 0x2) 22:50:02 executing program 7: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/cgroup.procs\x00', 0x145080, 0x0) 22:50:02 executing program 4: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xe, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r0, 0x40182103, 0x0) 22:50:02 executing program 6: rseq(&(0x7f0000000040), 0x20, 0x0, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000100)=@req3, 0x1c) 22:50:02 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000100)='nomand\x00', 0x0, 0x0) 22:50:02 executing program 1: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x0, 0x0, 0x20, 0x81, 0x0, 0x89}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448cb, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000500)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)) ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, &(0x7f00000004c0)) r1 = socket$inet6_udp(0xa, 0x2, 0x0) fcntl$lock(r1, 0x25, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x100}) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x26e1, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0xc0c0583b, &(0x7f0000000240)={0xf0ffffff0f0000}) openat(r2, 0x0, 0x4000, 0xc) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000001280)) perf_event_open$cgroup(&(0x7f0000000100)={0x2, 0x80, 0x1, 0x2, 0x4, 0xb4, 0x0, 0x54176f4d, 0x10000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xb85, 0xeb76b2d4b41772c0, @perf_config_ext={0xffffffffffffff02, 0xffff}, 0x0, 0x26, 0x800, 0x5, 0x1f, 0x6, 0x8, 0x0, 0x1, 0x0, 0x8}, 0xffffffffffffffff, 0x7, r0, 0xb) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000001c0)) syz_io_uring_complete(0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1a23}, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 22:50:03 executing program 3: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='io\x00') pread64(r0, &(0x7f0000000700)=""/4096, 0x1000, 0x0) [ 217.616636] audit: type=1326 audit(1729205403.320:10): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=7114 comm="syz-executor.4" exe="/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fed2f3e9b19 code=0x0 22:50:05 executing program 0: r0 = socket$inet6(0xa, 0x1, 0x0) setreuid(0xffffffffffffffff, 0xee00) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@private2, 0x0, 0x2}, 0x20) 22:50:05 executing program 7: setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f00000003c0)={0x5, &(0x7f0000000380)=[{0x2, 0x1, 0x0, 0x6}, {0x1ff, 0x21, 0x5, 0x5}, {0x0, 0x1, 0x2c, 0x4ed}, {0x2, 0x5, 0x6, 0x7}, {0x9, 0x40, 0xf6, 0x65}]}, 0x10) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f00000004c0)) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'ip6tnl0\x00'}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000100)={"4d25efbd1d331a93dd430c2a855df8fc", 0x0, 0x0, {0x2, 0x4}, {0x9e, 0xfffff001}, 0x43ef3e1, [0x92, 0x7f, 0x100000000, 0x8, 0x1f, 0x282, 0x8, 0x8, 0x8, 0x10001, 0xffffffff80000000, 0x0, 0x7324, 0x99d, 0x8000, 0x9]}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_MRT6_ADD_MFC(r1, 0x29, 0x36, &(0x7f0000004000)={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0xa, 0x0, 0x0, @private1}}, 0x5c) mmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x200000a, 0x10, 0xffffffffffffffff, 0x29287000) dup(0xffffffffffffffff) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x0, 0x0, 0x1, 0xbb63, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) pread64(r2, &(0x7f00000012c0)=""/4093, 0xffd, 0x0) openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.log\x00', 0x0, 0x89) 22:50:05 executing program 6: syz_emit_ethernet(0x56, &(0x7f0000000200)={@multicast, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '#\x00\b', 0x20, 0x2c, 0x0, @empty, @local, {[@routing={0x88, 0x2, 0x0, 0x0, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}], {0x0, 0x0, 0x8}}}}}}, 0x0) 22:50:05 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000100)='nomand\x00', 0x0, 0x0) 22:50:05 executing program 4: r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r0, 0x107, 0xe, 0x0, &(0x7f00000007c0)) 22:50:05 executing program 5: r0 = getpid() r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000440)={[0x3]}, 0x8, 0x0) r2 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r2, 0x8040942d, &(0x7f00000000c0)) r3 = pidfd_open(r0, 0x0) dup2(r1, r3) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @remote, @broadcast}}}], 0x20}, 0xe00) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000040)={@private=0xa010100, @empty, r5}, 0xc) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fallocate(r6, 0x0, 0x0, 0x120000) preadv(r6, &(0x7f0000001400)=[{&(0x7f0000001480)=""/4111, 0x7ffff000}], 0x1, 0x0, 0x0) flock(r1, 0x9) perf_event_open(&(0x7f0000000040)={0x7, 0x80, 0x1, 0x0, 0x4, 0x7, 0x0, 0x7ff, 0x80, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000000), 0xb}, 0x8000, 0x4, 0x100, 0x3, 0xac, 0x100, 0x7, 0x0, 0x0, 0x0, 0x3}, r0, 0xf, 0xffffffffffffffff, 0x2) 22:50:05 executing program 1: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x0, 0x0, 0x20, 0x81, 0x0, 0x89}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448cb, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000500)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)) ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, &(0x7f00000004c0)) r1 = socket$inet6_udp(0xa, 0x2, 0x0) fcntl$lock(r1, 0x25, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x100}) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x26e1, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0xc0c0583b, &(0x7f0000000240)={0xf0ffffff0f0000}) openat(r2, 0x0, 0x4000, 0xc) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000001280)) perf_event_open$cgroup(&(0x7f0000000100)={0x2, 0x80, 0x1, 0x2, 0x4, 0xb4, 0x0, 0x54176f4d, 0x10000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xb85, 0xeb76b2d4b41772c0, @perf_config_ext={0xffffffffffffff02, 0xffff}, 0x0, 0x26, 0x800, 0x5, 0x1f, 0x6, 0x8, 0x0, 0x1, 0x0, 0x8}, 0xffffffffffffffff, 0x7, r0, 0xb) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000001c0)) syz_io_uring_complete(0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1a23}, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 22:50:05 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000440008000f801", 0x17}, {&(0x7f0000000240)="53595a4b414c4c45522020080000eb80325132510000eb8032510800000000004166006900ec00650030000f00fc0000ffffffffffffffffffff004c453000000000000000e7192dff95c9cd9fdef8fd750f51a5f9a472acd6b1414fa1e1fd6885690ccd71564a2325f70f2abdb4ea0121c50fd73860313372649b707eab85cbfbab9e0a819fa07b0c472a79db95bb1b76b6d9f032e77b628eebad46c3999ca41ad76354fff7ae0422002c0fa94e3f372c459f9e696a494e69c212294abae40510f0", 0xc2, 0xa00}], 0x0, &(0x7f00000003c0)=ANY=[]) unlinkat(r0, &(0x7f0000000140)='./file0\x00', 0x0) [ 219.486808] loop3: detected capacity change from 0 to 10 22:50:05 executing program 0: syz_emit_vhci(&(0x7f0000000180)=ANY=[@ANYBLOB="043e170200", @ANYRESOCT], 0x1a) 22:50:05 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x30, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x3c}}}, 0xe8) sendmmsg$inet6(r0, &(0x7f0000001f40)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback={0xfe80000000000000}}, 0x1c, 0x0}}], 0x1, 0x0) 22:50:05 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000440008000f801", 0x17}, {&(0x7f0000000240)="53595a4b414c4c45522020080000eb80325132510000eb8032510800000000004166006900ec00650030000f00fc0000ffffffffffffffffffff004c453000000000000000e7192dff95c9cd9fdef8fd750f51a5f9a472acd6b1414fa1e1fd6885690ccd71564a2325f70f2abdb4ea0121c50fd73860313372649b707eab85cbfbab9e0a819fa07b0c472a79db95bb1b76b6d9f032e77b628eebad46c3999ca41ad76354fff7ae0422002c0fa94e3f372c459f9e696a494e69c212294abae40510f0", 0xc2, 0xa00}], 0x0, &(0x7f00000003c0)=ANY=[]) unlinkat(r0, &(0x7f0000000140)='./file0\x00', 0x0) 22:50:05 executing program 7: r0 = socket$inet6(0xa, 0x1, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000001ac0)=[{&(0x7f0000000440)="272f38066c8aa5da2ccc7575310ef7382a6a6d666a8de61e9e769f88ca77ce57b910bc273127774f3190554ab91b77c2aa8e51a3005a0646ab8ae58f1707111c52b924df7690ecb9cc3161bae5c768b9232a43868c44d79fbf262f987ad0f36e3b47f7f3d29ac3afeb143970ea411dd23cde4a9fc509a5bafd8f4657ee1dc1d94855e73a6db34864157ece7d0000c013857f2af52c042502e6d0742c5e25709ccb4e32f03dd5baf94d22a2944eb94be0ca7d94a5566f7f2ee83336cbdee4c46dbf32d42573fd2f9ef918fb1920f90689e5e74bfd8755d43b835cef71237a6d2c998841f4544503802610bba694523fc2e364c99c19f3549a522d0579d11a072a486dc667dd0948a6d7990782ce9557bb6bfd9debf9e603b4ac5c73db6f97aa50a594fda4e7ad70f0557365dd89801216d9eb036f7fe460c6531e36b4cbc9f20b0fe5fffce9936399362a67dd04de2fc24ba391a20f2d5b1061f78f13391bf93b11316e70bf46631ece1d6f8853d4c87df46e5903da37cc9a1ff4473c7acad199d0be239693fa5a0505a47f2bda4fb18b24917b974915f52569682275bd939b532025f69951e32bf8d2e4157f57738fefc74a3c124c9ae1e0112a3773d0921e35cbab548c5de1d17ae12de66eca3e35ee2be2b251dcd15d32c65de1f2c98fb38817ce54aa2054a141bf985bd12bc4fdbdb9fdae2554da39fbf16cb6fc01ccad6195b501906a1405687b5fcb1f49815c62495e28219f0fe211b56e557fd3c82577d4dd00bb9bdc2d4db0e2fbdbb60f0367ed1bb73ed0141e3f765d3d94b45d8a1e6a508bf57444552f0bf54f47b56d1e96470f481ce308a70846f5bf8456d25657f184a9fe2cb50788ddd76dc022305323a57f97d9fea56501946da53900212c828db1958b2a5187fe2a753f0057f28d7b27226224f19a41068fea349633ec6b04444870f12835cfc156cb22073d264dbf7d63ab83dd2982eb1f017c8f504be1cb36bf3e0eac1049cdf54a9b21b4ee655b14164a1995039bcf0a2884d48c8b187d44131c1f05253673b094dbe2f38aa3380741c480af4557871233c4baf79c60c90cebedecfa0fd3861e930005b64cad77df2a5a58ffe942ed9bb12aa9040eef1b941d839c1ecfaedb2ab1877678d9510b5f1fdb88117018b0aa9f541f55243c9def2e0f0b84d39544503203d2e7f41f6e8333eda4e9c8dea75d106e2162bc9767040e7625252caf7fa14e778d1aae8dc1558f6fa3e42f69b4e450b2dc58cd80f8b8a3237f866e95bb74f94a2fba1338066e9121156f8a18db1c61290ac949fd9d60271e4cb754337731f6c8387463aeb7a7d6ea801e834631b9e6df5b2336615ff0ecd46bc9404750088e8acf6319c8d63990c2184679aa69c23c8716ec8687351938acdd14f008a17389535f243d163c0ebfab6535fb4a9fdbd20a98768edec35efeda1664da3e2a6b27b21b2e868b281448fd3987dcefe5b15607d197d482782233b7b83ad164241a8220f5e839fc1afe466e5f6d7c0175390ba450062b6168dab3cafbddb2b2d84806717fe352e1f59a9d5464e6bdcf86b1062f049e9456b52384c357b8ee315a062830b8a2be1fe0c52c2f1635083e65edf6ce4a564025629f554b0b80117d1a96df2b69ec5c346d146fe1f494a4ae0c18b28eff8c4532a256f9869559c5b923d06ca8df77e8e045aca94302555f5c7a6df07b1e0bcbbaa03b51d41735260c230827a6018c765a07de88c5d2102f42dbbeadc88bf1909b5587cf1bed6acd77d5de013dde087901af587c5c9d7756f6988ba81f864b90425a857fb0d39b05bda16afdda48bec34e5c270a81b83fe6c65d2ce8b603670f52c1e85256a94ad1aae42f4d77bbc0fc2f978f6d4d4dbbd6a06e4d9f56ac8001b7402e1b667484a4efb10914ed97dba96469aa9f347941353ac40b0cc0691b431ceee0888a4e73ba44ee1ab20be5514c0c35e07dddc341fbdbcd0b31d235c791dab3fd48c84ee5e4e46816746c4723a74c84827ade5c7c99c228baeaff818d28fa249c237b65c72ae9fe3e1b8476f3acb3b5d6439e6f5e386d17343f8d0a9c0f4fe55322ce692f04defdc9e47e96cc988d0f2fabf5b9479edaf074ba03ffce0d6f13ab02084c41a5eab6d508dd839e299609e7a8e48b7782a89336070c0628061662d676c914f2abcd278f53e094eafa47ea3170ffcf57e23676874a59fd7e20223e48fc754bf88737ceecb6b71a1c2fe58b51ab6a9d23f43a6c21b7636441483249cf3c4b623dc47714f8a0fe7aea963dc500d9809c6fcf43ca8414ad6426ba6dc26884b699547f5fa5ecbe28eeefa66b3036ddc2112b639ff6442184a3b9d3c42e6897361794a520f64f2c27ba6ec3acd8fa6ca836cae6591d74bac57273850f26384c76bb0e2e710a2e2c69e2d36f1d95c1f088622396b09b056e20230a4a61d63a999b575d8f92743f65f830c9bbef1511833803716d69cbf4972fd4d6f2fa2c657bb675cac5b970d0a024f05b027b83838df69cf1f0b2026964076ac8d0ccec036d3e3e5031a679ffdee784ef084cc30b19791e744e263a170a72eb5fa49b833b058835f563053e9e2e4be674d92801c70dcf857a3a62f57cb441a9aab7856d5b6d98d46a9bca196e5e956cde43f78ac62cdac3b8345d02bc17274a0a2df1c345b1ad1ca22c70aec85e5c6c27741694cce93cf67f1bdc8b8ea2c18ffe426854828d870ce2d648cf43bcdd44a0e96b549cb5e4f2ed35146d95a6d9a7bb2504dbf461e02ddab99862326152a11cd7efbac66dc6b7f048f37c17ef958526ef5dfe1d4b3ffc1d6884cb4d1053726f167f4153175ddc52395d9ea6129abfc2a36fed5edad11de756d6804060de537b22777ca744d7330e8ced735acf21b118562617a7fff3bdc6daeff11eeddafb167b85a230a1dd9c76be48dab98de983933eeda0e5da83a923524bf01f95a03f84edb4cb2e30becfd4cf547af9a12e19f3e4edd303cf59112b65f138fe5937dfd240c16c1640f80f57", 0x855}], 0x1, 0x0, 0x0) setsockopt$inet6_int(r0, 0x29, 0x40, &(0x7f0000000c40), 0x4) 22:50:05 executing program 6: r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040), 0x4) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x3}, 0x4) 22:50:05 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000100)='nomand\x00', 0x0, 0x0) 22:50:05 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x3f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000040)=0x1, 0x4) renameat(0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0xffffffffffffffff, &(0x7f0000000180)='./file1\x00') setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000440)={@in6={{0xa, 0x4e22, 0x2, @mcast2, 0x2}}, 0x0, 0x0, 0x1e, 0x0, "1de901553653690a4852d869fd0c900dc3c26cae543007ebbe8256979e1dd7b96ba6c9767e25d2cdf3bf699ea307b759febe825291d794f251794c17b4a6627c2edb3b36961337a63e714a62189e0356"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) ioctl$FAT_IOCTL_GET_ATTRIBUTES(0xffffffffffffffff, 0x80047210, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="7472616e733d58126cb89dda40133d", @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',\x00']) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff}, 0x0) fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x90) r2 = getgid() setresgid(0x0, r2, 0x0) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000200), 0x10000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0x3b}}, {@access_user}, {@dfltgid={'dfltgid', 0x3d, r2}}], [{@smackfshat={'smackfshat', 0x3d, 'wfdno'}}, {@dont_hash}, {@obj_role={'obj_role', 0x3d, 'trans=fd,'}}, {@hash}]}}) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="2c7766646e6f3dd3447b3bdb4c59e85b0397f07a8e5531f105419bead5ffebed421b551791a8725c3b7b8a376ce788d619fe656eef6f5d36eba3d68305f11f1814294eef49ec18da3549d404118ca4f0c751e5aec912c0c6af5ad07439eb5246fd63f8407bf7504a9a85a17f002b6904a679c3a925f4c8f92a8bb11c0d4c885eb7367e1a9e83ec9386d29bea9c06c6c1b108e19d774450ba41b5c04a05bd9aafe952416aac", @ANYBLOB]) 22:50:05 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x4, &(0x7f0000000280)=0x0) pipe(&(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000a80)="177a", 0x2}], 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000a40)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) vmsplice(r2, &(0x7f00000005c0)=[{&(0x7f0000000380)="d2", 0x1}], 0x1, 0x0) [ 219.963176] loop3: detected capacity change from 0 to 10 22:50:05 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000100)='nomand\x00', 0x0, 0x0) 22:50:05 executing program 6: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='fd\x00') getdents64(r0, &(0x7f0000000100)=""/202, 0xca) r1 = dup2(r0, r0) getdents64(r1, &(0x7f0000000300)=""/43, 0x2b) 22:50:05 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000440008000f801", 0x17}, {&(0x7f0000000240)="53595a4b414c4c45522020080000eb80325132510000eb8032510800000000004166006900ec00650030000f00fc0000ffffffffffffffffffff004c453000000000000000e7192dff95c9cd9fdef8fd750f51a5f9a472acd6b1414fa1e1fd6885690ccd71564a2325f70f2abdb4ea0121c50fd73860313372649b707eab85cbfbab9e0a819fa07b0c472a79db95bb1b76b6d9f032e77b628eebad46c3999ca41ad76354fff7ae0422002c0fa94e3f372c459f9e696a494e69c212294abae40510f0", 0xc2, 0xa00}], 0x0, &(0x7f00000003c0)=ANY=[]) unlinkat(r0, &(0x7f0000000140)='./file0\x00', 0x0) 22:50:05 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x4, &(0x7f0000000280)=0x0) pipe(&(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000a80)="177a", 0x2}], 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000a40)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) vmsplice(r2, &(0x7f00000005c0)=[{&(0x7f0000000380)="d2", 0x1}], 0x1, 0x0) 22:50:05 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xdfffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_PIE_ON(r0, 0x7005) preadv(r0, &(0x7f0000000700)=[{&(0x7f0000000300)=""/255, 0xff}], 0x1, 0x0, 0x0) getpgrp(0xffffffffffffffff) [ 220.362483] loop3: detected capacity change from 0 to 10 22:50:06 executing program 5: r0 = getpid() r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000440)={[0x3]}, 0x8, 0x0) r2 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r2, 0x8040942d, &(0x7f00000000c0)) r3 = pidfd_open(r0, 0x0) dup2(r1, r3) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet_udp(0x2, 0x2, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r5, @remote, @broadcast}}}], 0x20}, 0xe00) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000040)={@private=0xa010100, @empty, r5}, 0xc) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fallocate(r6, 0x0, 0x0, 0x120000) preadv(r6, &(0x7f0000001400)=[{&(0x7f0000001480)=""/4111, 0x7ffff000}], 0x1, 0x0, 0x0) flock(r1, 0x9) perf_event_open(&(0x7f0000000040)={0x7, 0x80, 0x1, 0x0, 0x4, 0x7, 0x0, 0x7ff, 0x80, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000000), 0xb}, 0x8000, 0x4, 0x100, 0x3, 0xac, 0x100, 0x7, 0x0, 0x0, 0x0, 0x3}, r0, 0xf, 0xffffffffffffffff, 0x2) [ 220.541470] 9pnet_fd: Insufficient options for proto=fd 22:50:06 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000440008000f801", 0x17}, {&(0x7f0000000240)="53595a4b414c4c45522020080000eb80325132510000eb8032510800000000004166006900ec00650030000f00fc0000ffffffffffffffffffff004c453000000000000000e7192dff95c9cd9fdef8fd750f51a5f9a472acd6b1414fa1e1fd6885690ccd71564a2325f70f2abdb4ea0121c50fd73860313372649b707eab85cbfbab9e0a819fa07b0c472a79db95bb1b76b6d9f032e77b628eebad46c3999ca41ad76354fff7ae0422002c0fa94e3f372c459f9e696a494e69c212294abae40510f0", 0xc2, 0xa00}], 0x0, &(0x7f00000003c0)=ANY=[]) unlinkat(r0, &(0x7f0000000140)='./file0\x00', 0x0) [ 220.691185] 9pnet_fd: Insufficient options for proto=fd [ 220.702395] 9pnet: Could not find request transport: Xl@=0xffffffffffffffff [ 220.878409] loop3: detected capacity change from 0 to 10 22:50:07 executing program 7: r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) write$tcp_mem(r0, &(0x7f0000000180), 0x48) 22:50:07 executing program 6: r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{0x3c}, {0x6}]}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0x2}], 0x1}, 0x0) 22:50:07 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x40086607, &(0x7f0000001500)) 22:50:07 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0xc0189436, &(0x7f0000000180)) 22:50:07 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x4, &(0x7f0000000280)=0x0) pipe(&(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000a80)="177a", 0x2}], 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000a40)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) vmsplice(r2, &(0x7f00000005c0)=[{&(0x7f0000000380)="d2", 0x1}], 0x1, 0x0) 22:50:07 executing program 3: sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000002c0)={0x60, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_VHT_CAPABILITY_MASK={0x10}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10}, @NL80211_ATTR_KEYS={0x1c, 0x51, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_MODE={0x5}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPES={0x8, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}]}]}]}, 0x60}}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="28000000180001fb64a044803ea5d7d00a"], 0x28}}, 0x0) 22:50:07 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f0000000080)={0x24, 0x13, 0x101, 0x0, 0x0, "", [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}]}, 0x24}], 0x1}, 0x0) 22:50:07 executing program 1: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x0, 0x0, 0x20, 0x81, 0x0, 0x89}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448cb, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000500)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)) ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, &(0x7f00000004c0)) r1 = socket$inet6_udp(0xa, 0x2, 0x0) fcntl$lock(r1, 0x25, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x100}) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x26e1, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0xc0c0583b, &(0x7f0000000240)={0xf0ffffff0f0000}) openat(r2, 0x0, 0x4000, 0xc) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000001280)) perf_event_open$cgroup(&(0x7f0000000100)={0x2, 0x80, 0x1, 0x2, 0x4, 0xb4, 0x0, 0x54176f4d, 0x10000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xb85, 0xeb76b2d4b41772c0, @perf_config_ext={0xffffffffffffff02, 0xffff}, 0x0, 0x26, 0x800, 0x5, 0x1f, 0x6, 0x8, 0x0, 0x1, 0x0, 0x8}, 0xffffffffffffffff, 0x7, r0, 0xb) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000001c0)) syz_io_uring_complete(0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1a23}, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 221.911176] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 222.011918] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 222.015325] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 22:50:07 executing program 7: personality(0x400000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9, 0x80032, 0xffffffffffffffff, 0x0) 22:50:07 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000140)='./cgroup/cgroup.procs\x00', &(0x7f0000000180), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}}) 22:50:07 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000100)='stack\x00') pread64(r0, &(0x7f0000000300)=""/142, 0x8e, 0x0) 22:50:07 executing program 0: syz_emit_ethernet(0x19, &(0x7f0000000180)={@multicast, @multicast, @val={@val={0x8100}}, {@llc={0x8100, {@llc={0x0, 0x0, '\x00'}}}}}, 0x0) 22:50:07 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x40086607, &(0x7f0000001500)) 22:50:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000600), 0xffffffffffffffff) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000180)={0x20, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKINFO_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x0) 22:50:07 executing program 6: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000002c0)={@dev, 0x80000, 0x0, 0xff, 0x9}, 0x20) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000002c0)={@dev, 0x80000, 0x0, 0xff, 0x0, 0x0, 0xfffc}, 0x20) 22:50:08 executing program 0: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000100)=[{&(0x7f0000000140)="84", 0x20000141}], 0x1, 0x0) readv(r0, &(0x7f0000000300)=[{&(0x7f00000018c0)=""/4096, 0x1000}], 0x1) write$P9_RMKDIR(r1, &(0x7f0000000000)={0x14}, 0x14) fcntl$setpipe(r0, 0x407, 0x10001) 22:50:09 executing program 1: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x0, 0x0, 0x20, 0x81, 0x0, 0x89}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448cb, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000500)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)) ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, &(0x7f00000004c0)) r1 = socket$inet6_udp(0xa, 0x2, 0x0) fcntl$lock(r1, 0x25, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x100}) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x26e1, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0xc0c0583b, &(0x7f0000000240)={0xf0ffffff0f0000}) openat(r2, 0x0, 0x4000, 0xc) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000001280)) perf_event_open$cgroup(&(0x7f0000000100)={0x2, 0x80, 0x1, 0x2, 0x4, 0xb4, 0x0, 0x54176f4d, 0x10000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0xb85, 0xeb76b2d4b41772c0, @perf_config_ext={0xffffffffffffff02, 0xffff}, 0x0, 0x26, 0x800, 0x5, 0x1f, 0x6, 0x8, 0x0, 0x1, 0x0, 0x8}, 0xffffffffffffffff, 0x7, r0, 0xb) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000001c0)) syz_io_uring_complete(0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1a23}, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 22:50:09 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x2) close(r0) 22:50:09 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000100), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000002c0)={0x1c, r1, 0x1, 0x0, 0x0, {0x3}, [@NLBL_CIPSOV4_A_DOI={0x8}]}, 0x1c}}, 0x0) 22:50:09 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x4, &(0x7f0000000280)=0x0) pipe(&(0x7f0000000700)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000a80)="177a", 0x2}], 0x1, 0x0) io_submit(r0, 0x1, &(0x7f0000000a40)=[&(0x7f0000000780)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}]) vmsplice(r2, &(0x7f00000005c0)=[{&(0x7f0000000380)="d2", 0x1}], 0x1, 0x0) 22:50:09 executing program 6: perf_event_open(&(0x7f0000003c80)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x6, &(0x7f0000000000)={@dev}, 0x14) 22:50:09 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x40086607, &(0x7f0000001500)) 22:50:09 executing program 5: r0 = syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)) lseek(r0, 0x0, 0x1) 22:50:09 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x8000039a}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'xfrm0\x00'}) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f00000000c0)) 22:50:09 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x2) close(r0) 22:50:09 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x40086607, &(0x7f0000001500)) 22:50:09 executing program 6: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_buf(r0, 0x6, 0x1f, &(0x7f00000000c0)='q', 0x1) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='reno\x00', 0x5) 22:50:09 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a", 0xd, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x787102, 0x0) setxattr$security_evm(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000003c3eae3d7fcfd6cd9240ec9db62d50286424cfed26e4000000000000000069449712781fa6939e6db0b8beadeec2"], 0x45, 0x0) fallocate(r1, 0x2d, 0xffffffffffff15aa, 0x7ff) r2 = fork() ptrace$setopts(0x4200, r2, 0x0, 0x0) r3 = fcntl$getown(r0, 0x9) syz_open_procfs$userns(r3, &(0x7f0000000040)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r4, &(0x7f0000000080)="01", 0x292e9) r5 = open$dir(&(0x7f0000000200)='.\x00', 0x0, 0x0) getdents(r5, 0x0, 0x0) getdents64(r5, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000140)={0x0, r5, 0x6, 0x90a, 0x3, 0x47da}) ptrace(0x10, r2) ptrace(0x420f, r2) 22:50:09 executing program 5: syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x141381) 22:50:10 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x2) close(r0) 22:50:10 executing program 4: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) mlock(&(0x7f0000ff6000/0x4000)=nil, 0x4000) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3) 22:50:10 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f00000001c0)='hugetlbfs\x00', 0x0) fremovexattr(r0, &(0x7f00000002c0)=@known='system.posix_acl_access\x00') [ 225.086912] Bluetooth: hci3: command 0x0406 tx timeout [ 225.169269] loop7: detected capacity change from 0 to 512 [ 225.225776] EXT4-fs (loop7): VFS: Can't find ext4 filesystem [ 225.289773] loop7: detected capacity change from 0 to 512 [ 225.369006] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 225.386689] EXT4-fs error (device loop7): ext4_validate_block_bitmap:431: comm syz-executor.7: bg 0: block 2: invalid block bitmap 22:50:11 executing program 7: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a", 0xd, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x787102, 0x0) setxattr$security_evm(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000003c3eae3d7fcfd6cd9240ec9db62d50286424cfed26e4000000000000000069449712781fa6939e6db0b8beadeec2"], 0x45, 0x0) fallocate(r1, 0x2d, 0xffffffffffff15aa, 0x7ff) r2 = fork() ptrace$setopts(0x4200, r2, 0x0, 0x0) r3 = fcntl$getown(r0, 0x9) syz_open_procfs$userns(r3, &(0x7f0000000040)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r4, &(0x7f0000000080)="01", 0x292e9) r5 = open$dir(&(0x7f0000000200)='.\x00', 0x0, 0x0) getdents(r5, 0x0, 0x0) getdents64(r5, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000140)={0x0, r5, 0x6, 0x90a, 0x3, 0x47da}) ptrace(0x10, r2) ptrace(0x420f, r2) 22:50:11 executing program 6: perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_buf(r0, 0x6, 0x1f, &(0x7f00000000c0)='q', 0x1) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='reno\x00', 0x5) 22:50:11 executing program 5: syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x141381) 22:50:11 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x2) close(r0) 22:50:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2272, 0xf0ff1f00000000) 22:50:11 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f00000001c0)='hugetlbfs\x00', 0x0) fremovexattr(r0, &(0x7f00000002c0)=@known='system.posix_acl_access\x00') 22:50:11 executing program 4: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) mlock(&(0x7f0000ff6000/0x4000)=nil, 0x4000) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3) 22:50:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2272, 0xf0ff1f00000000) 22:50:11 executing program 5: syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x141381) 22:50:11 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f00000001c0)='hugetlbfs\x00', 0x0) fremovexattr(r0, &(0x7f00000002c0)=@known='system.posix_acl_access\x00') 22:50:11 executing program 4: r0 = shmget$private(0x0, 0x14000, 0x0, &(0x7f0000fe7000/0x14000)=nil) shmat(r0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmat(r0, &(0x7f0000ff9000/0x4000)=nil, 0x4000) mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000) mlock(&(0x7f0000ff6000/0x4000)=nil, 0x4000) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x3) 22:50:11 executing program 5: syz_open_dev$sg(&(0x7f0000000400), 0x0, 0x141381) 22:50:11 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2272, 0xf0ff1f00000000) 22:50:12 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2272, 0xf0ff1f00000000) 22:50:12 executing program 0: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a", 0xd, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x787102, 0x0) setxattr$security_evm(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000003c3eae3d7fcfd6cd9240ec9db62d50286424cfed26e4000000000000000069449712781fa6939e6db0b8beadeec2"], 0x45, 0x0) fallocate(r1, 0x2d, 0xffffffffffff15aa, 0x7ff) r2 = fork() ptrace$setopts(0x4200, r2, 0x0, 0x0) r3 = fcntl$getown(r0, 0x9) syz_open_procfs$userns(r3, &(0x7f0000000040)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r4, &(0x7f0000000080)="01", 0x292e9) r5 = open$dir(&(0x7f0000000200)='.\x00', 0x0, 0x0) getdents(r5, 0x0, 0x0) getdents64(r5, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000140)={0x0, r5, 0x6, 0x90a, 0x3, 0x47da}) ptrace(0x10, r2) ptrace(0x420f, r2) 22:50:12 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b00000000010000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a", 0xd, 0x800}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000300), 0x787102, 0x0) setxattr$security_evm(&(0x7f0000000080)='./file0\x00', &(0x7f0000000180), &(0x7f0000000280)=ANY=[@ANYBLOB="00000000000000003c3eae3d7fcfd6cd9240ec9db62d50286424cfed26e4000000000000000069449712781fa6939e6db0b8beadeec2"], 0x45, 0x0) fallocate(r1, 0x2d, 0xffffffffffff15aa, 0x7ff) r2 = fork() ptrace$setopts(0x4200, r2, 0x0, 0x0) r3 = fcntl$getown(r0, 0x9) syz_open_procfs$userns(r3, &(0x7f0000000040)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r4, &(0x7f0000000080)="01", 0x292e9) r5 = open$dir(&(0x7f0000000200)='.\x00', 0x0, 0x0) getdents(r5, 0x0, 0x0) getdents64(r5, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000000140)={0x0, r5, 0x6, 0x90a, 0x3, 0x47da}) ptrace(0x10, r2) ptrace(0x420f, r2) [ 231.248536] loop1: detected capacity change from 0 to 512 [ 253.226214] watchdog: BUG: soft lockup - CPU#1 stuck for 22s! [syz-executor.0:7332] [ 253.226935] Modules linked in: [ 253.227249] irq event stamp: 2740627 [ 253.227574] hardirqs last enabled at (2740626): [] irqentry_exit+0x3b/0x90 [ 253.228357] hardirqs last disabled at (2740627): [] sysvec_apic_timer_interrupt+0xf/0x80 [ 253.230001] softirqs last enabled at (2718490): [] handle_softirqs+0x50c/0x770 [ 253.231930] softirqs last disabled at (2718493): [] irq_exit_rcu+0x94/0xc0 [ 253.234134] CPU: 1 UID: 0 PID: 7332 Comm: syz-executor.0 Not tainted 6.12.0-rc3-next-20241016 #1 [ 253.236052] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 253.237885] RIP: 0010:arch_stack_walk+0x69/0xf0 [ 253.238331] Code: 89 e7 e8 7a 51 77 03 84 c0 74 5b 49 8b 8d 98 00 00 00 4c 89 ea 4c 89 f6 48 8d bd 68 ff ff ff e8 cd 99 07 00 8b 95 68 ff ff ff <85> d2 75 24 eb 36 4c 89 e7 e8 49 51 77 03 84 c0 74 2a 48 8d bd 68 [ 253.239799] RSP: 0018:ffff88806cf09848 EFLAGS: 00000292 [ 253.240266] RAX: 1ffff1100d9e1312 RBX: ffffffff813e8f70 RCX: ffff88806cf098e8 [ 253.240879] RDX: 0000000000000002 RSI: ffff88806cf098e0 RDI: ffff88806cf09858 [ 253.241480] RBP: ffff88806cf098e0 R08: 0000000000000001 R09: ffff88806cf09888 [ 253.242080] R10: 000000000003c001 R11: 0000000000003f0d R12: ffff88806cf09910 [ 253.242687] R13: 0000000000000000 R14: ffff8880371b1b80 R15: ffff88800cd2eb40 [ 253.243285] FS: 00007fefc4ef6700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 253.243959] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 253.244460] CR2: 0000001b30b20000 CR3: 000000000cf28000 CR4: 0000000000350ef0 [ 253.245061] Call Trace: [ 253.245297] [ 253.245503] ? watchdog_timer_fn+0x3ee/0x510 [ 253.245921] ? __pfx_watchdog_timer_fn+0x10/0x10 [ 253.246366] ? __hrtimer_run_queues+0x57c/0xa70 [ 253.246828] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 253.247282] ? ktime_get_update_offsets_now+0x260/0x3c0 [ 253.247796] ? hrtimer_interrupt+0x2f2/0x750 [ 253.248239] ? __sysvec_apic_timer_interrupt+0xc2/0x390 [ 253.248730] ? sysvec_apic_timer_interrupt+0x34/0x80 [ 253.249211] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 253.249734] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 253.250260] ? arch_stack_walk+0x69/0xf0 [ 253.250672] ? arch_stack_walk+0x63/0xf0 [ 253.251083] ? stack_trace_save+0x8f/0xc0 [ 253.251494] stack_trace_save+0x8f/0xc0 [ 253.251884] ? __pfx_stack_trace_save+0x10/0x10 [ 253.252329] ? srso_return_thunk+0x5/0x5f [ 253.252754] kasan_save_stack+0x24/0x50 [ 253.253148] ? hlock_class+0x4e/0x130 [ 253.253510] ? __lock_acquire+0x176a/0x4360 [ 253.253923] ? __pfx___lock_acquire+0x10/0x10 [ 253.254369] ? srso_return_thunk+0x5/0x5f [ 253.254778] ? find_held_lock+0x2c/0x110 [ 253.255160] ? __virt_addr_valid+0x2e8/0x5d0 [ 253.255567] ? srso_return_thunk+0x5/0x5f [ 253.255965] ? lock_release+0x20f/0x6f0 [ 253.256352] ? __pfx_lock_release+0x10/0x10 [ 253.256766] ? trace_lock_acquire+0x137/0x1b0 [ 253.257193] ? srso_return_thunk+0x5/0x5f [ 253.257597] ? lock_acquire+0x32/0xc0 [ 253.257975] ? __virt_addr_valid+0x1c6/0x5d0 [ 253.258385] ? srso_return_thunk+0x5/0x5f [ 253.258801] ? __virt_addr_valid+0x100/0x5d0 [ 253.259205] ? __pfx_free_object_rcu+0x10/0x10 [ 253.259649] ? srso_return_thunk+0x5/0x5f [ 253.260055] __kasan_record_aux_stack+0x8c/0xa0 [ 253.260485] ? __pfx_free_object_rcu+0x10/0x10 [ 253.260922] __call_rcu_common.constprop.0+0x6a/0xaa0 [ 253.261405] ? srso_return_thunk+0x5/0x5f [ 253.261811] ? lockdep_hardirqs_on_prepare+0x12b/0x3f0 [ 253.262307] kmem_cache_free+0x2ae/0x470 [ 253.262709] ? srso_return_thunk+0x5/0x5f [ 253.263110] ? skb_release_data+0x59d/0x990 [ 253.263508] ? kfree_skbmem+0x18a/0x1f0 [ 253.263915] kfree_skbmem+0x18a/0x1f0 [ 253.264291] consume_skb+0xdd/0x160 [ 253.264648] mac80211_hwsim_tx_frame+0x1f6/0x2a0 [ 253.265089] mac80211_hwsim_beacon_tx+0x546/0x950 [ 253.265537] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 253.265999] ? srso_return_thunk+0x5/0x5f [ 253.266398] ? srso_return_thunk+0x5/0x5f [ 253.266817] __iterate_interfaces+0x2cb/0x5d0 [ 253.267239] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 253.267729] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 253.268212] ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0 [ 253.268786] mac80211_hwsim_beacon+0x105/0x200 [ 253.269226] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 253.269704] __hrtimer_run_queues+0x1ab/0xa70 [ 253.270134] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 253.270603] ? ktime_get_update_offsets_now+0x260/0x3c0 [ 253.271121] hrtimer_run_softirq+0x14c/0x310 [ 253.271547] handle_softirqs+0x1b1/0x770 [ 253.271938] irq_exit_rcu+0x94/0xc0 [ 253.272278] sysvec_apic_timer_interrupt+0x70/0x80 [ 253.272739] [ 253.272951] [ 253.273164] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 253.273649] RIP: 0010:lock_acquire.part.0+0xbe/0x320 [ 253.274127] Code: b6 3c 38 4c 89 d0 83 e0 07 83 c0 03 40 38 f8 7c 09 40 84 ff 0f 85 15 02 00 00 8b bd 3c 0a 00 00 85 ff 0f 85 95 00 00 00 9c 5d 65 ff 05 62 88 d2 7e 6a 00 81 e5 00 02 00 00 4c 89 e7 6a 00 6a [ 253.275614] RSP: 0018:ffff88803feef5f8 EFLAGS: 00000246 [ 253.276080] RAX: 0000000000000007 RBX: 1ffff11007fddec2 RCX: 0000000000000000 [ 253.276686] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000 [ 253.277282] RBP: 0000000000000246 R08: 0000000000000001 R09: 0000000000000000 [ 253.277880] R10: ffff8880371b25bc R11: 0000000000000000 R12: ffff88806cf41518 [ 253.278496] R13: 000000000003fbc8 R14: 0000000000000003 R15: ffffea0000fef200 [ 253.279140] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 253.279612] ? srso_return_thunk+0x5/0x5f [ 253.280017] ? trace_lock_acquire+0x137/0x1b0 [ 253.280437] ? srso_return_thunk+0x5/0x5f [ 253.280849] ? srso_return_thunk+0x5/0x5f [ 253.281248] ? lock_acquire+0x32/0xc0 [ 253.281622] ? free_unref_page+0x34d/0xc40 [ 253.282025] _raw_spin_trylock+0x46/0x60 [ 253.282404] ? free_unref_page+0x34d/0xc40 [ 253.282803] free_unref_page+0x34d/0xc40 [ 253.283199] qlist_free_all+0x50/0x160 [ 253.283586] ? apply_wqattrs_prepare+0x107/0xb60 [ 253.284031] kasan_quarantine_reduce+0x19c/0x230 [ 253.284489] __kasan_slab_alloc+0x49/0x70 [ 253.284869] __kmalloc_noprof+0x195/0x4b0 [ 253.285272] apply_wqattrs_prepare+0x107/0xb60 [ 253.285709] ? pcpu_alloc_noprof+0x12d/0x11a0 [ 253.286157] apply_workqueue_attrs_locked+0x64/0xf0 [ 253.286638] __alloc_workqueue+0x1065/0x1820 [ 253.287060] alloc_workqueue+0xc8/0x200 [ 253.287428] ? __pfx_alloc_workqueue+0x10/0x10 [ 253.287844] ? lock_acquire+0x32/0xc0 [ 253.288217] ? __fget_files+0x34/0x3d0 [ 253.288593] ? srso_return_thunk+0x5/0x5f [ 253.289003] loop_configure+0xcd3/0x1220 [ 253.289393] lo_ioctl+0x8cc/0x18f0 [ 253.289732] ? avc_has_extended_perms+0x802/0xe40 [ 253.290177] ? __pfx_lo_ioctl+0x10/0x10 [ 253.290547] ? __pfx_avc_has_extended_perms+0x10/0x10 [ 253.291013] ? srso_return_thunk+0x5/0x5f [ 253.291414] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 253.291910] ? srso_return_thunk+0x5/0x5f [ 253.292325] ? blkdev_common_ioctl+0xb9/0x1f90 [ 253.292760] ? blkdev_common_ioctl+0x855/0x1f90 [ 253.293248] ? __sanitizer_cov_trace_switch+0x16/0x90 [ 253.293734] ? __pfx_lo_ioctl+0x10/0x10 [ 253.294112] blkdev_ioctl+0x27e/0x6d0 [ 253.294484] ? __pfx_blkdev_ioctl+0x10/0x10 [ 253.294886] ? srso_return_thunk+0x5/0x5f [ 253.295298] ? selinux_file_ioctl+0xb9/0x280 [ 253.295726] ? __pfx_blkdev_ioctl+0x10/0x10 [ 253.296136] __x64_sys_ioctl+0x1a0/0x210 [ 253.296524] do_syscall_64+0xbf/0x1d0 [ 253.296889] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.297369] RIP: 0033:0x7fefc79a18d7 [ 253.297709] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 253.299189] RSP: 002b:00007fefc4ef5f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 253.299844] RAX: ffffffffffffffda RBX: 00007fefc79eb970 RCX: 00007fefc79a18d7 [ 253.300448] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000007 [ 253.301050] RBP: 0000000000000007 R08: 0000000000000000 R09: 0000000000000000 [ 253.301652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004 [ 253.302253] R13: 0000000000000004 R14: 0000000020000248 R15: 0000000000000003 [ 253.302891] [ 253.303109] Sending NMI from CPU 1 to CPUs 0: [ 253.303527] NMI backtrace for cpu 0 [ 253.303578] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted 6.12.0-rc3-next-20241016 #1 [ 253.303679] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 253.303726] RIP: 0010:hlock_class+0x56/0x130 [ 253.303854] Code: 20 66 81 e3 ff 1f 0f b7 db be 08 00 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 a0 4e ed 87 e8 52 49 5c 00 48 0f a3 1d aa 58 be 06 <73> 16 48 8d 04 9b 48 8d 04 80 48 8d 04 c5 c0 52 ed 87 5b e9 d2 7a [ 253.303939] RSP: 0018:ffff88806ce09a50 EFLAGS: 00000047 [ 253.304008] RAX: 0000000000000001 RBX: 0000000000000060 RCX: ffffffff812ef5ee [ 253.304067] RDX: fffffbfff0fda9d6 RSI: 0000000000000008 RDI: ffffffff87ed4ea8 [ 253.304126] RBP: ffffffff85a2a740 R08: 0000000000000000 R09: fffffbfff0fda9d5 [ 253.304186] R10: ffffffff87ed4eaf R11: ffff88806ce09ff8 R12: 0000000000000008 [ 253.304245] R13: ffffffff85a2b180 R14: 0000000000000100 R15: 0000000000000002 [ 253.304308] FS: 0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 253.304390] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 253.304454] CR2: 000055a3bec70618 CR3: 000000001b6be000 CR4: 0000000000350ef0 [ 253.304514] Call Trace: [ 253.304535] [ 253.304563] ? nmi_cpu_backtrace+0x179/0x260 [ 253.304695] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 253.304840] ? nmi_handle+0x1a1/0x550 [ 253.304982] ? hlock_class+0x56/0x130 [ 253.305092] ? hlock_class+0x56/0x130 [ 253.305203] ? default_do_nmi+0x64/0x1c0 [ 253.305316] ? exc_nmi+0x188/0x1c0 [ 253.305423] ? end_repeat_nmi+0xf/0x53 [ 253.305571] ? hlock_class+0x4e/0x130 [ 253.305687] ? hlock_class+0x56/0x130 [ 253.305800] ? hlock_class+0x56/0x130 [ 253.305916] ? hlock_class+0x56/0x130 [ 253.306028] [ 253.306053] [ 253.306080] mark_lock+0xac/0x1370 [ 253.306214] ? __pfx_mark_lock+0x10/0x10 [ 253.306356] ? __pfx_mark_lock+0x10/0x10 [ 253.306509] ? ieee80211_put_eht_cap+0x2b2/0xf70 [ 253.306669] ? __pfx___lock_acquire+0x10/0x10 [ 253.306814] ? srso_return_thunk+0x5/0x5f [ 253.306959] ? hlock_class+0x4e/0x130 [ 253.307072] ? srso_return_thunk+0x5/0x5f [ 253.307216] ? hlock_class+0x4e/0x130 [ 253.307333] __lock_acquire+0x9ca/0x4360 [ 253.307486] ? print_usage_bug.part.0+0x492/0x4d0 [ 253.307632] ? __pfx___lock_acquire+0x10/0x10 [ 253.307775] ? __pfx_mark_lock+0x10/0x10 [ 253.307913] ? __pfx___lock_acquire+0x10/0x10 [ 253.308073] lock_acquire.part.0+0xeb/0x320 [ 253.308218] ? tick_nohz_handler+0x4a5/0x6d0 [ 253.308336] ? __pfx_lock_release+0x10/0x10 [ 253.308476] ? srso_return_thunk+0x5/0x5f [ 253.308621] ? trace_lock_acquire+0x137/0x1b0 [ 253.308736] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 253.308886] ? srso_return_thunk+0x5/0x5f [ 253.309031] ? trace_lock_acquire+0x137/0x1b0 [ 253.309144] ? srso_return_thunk+0x5/0x5f [ 253.309296] ? srso_return_thunk+0x5/0x5f [ 253.309440] ? lock_acquire+0x32/0xc0 [ 253.309580] ? tick_nohz_handler+0x4a5/0x6d0 [ 253.309703] _raw_spin_lock+0x2b/0x40 [ 253.309813] ? tick_nohz_handler+0x4a5/0x6d0 [ 253.309929] tick_nohz_handler+0x4a5/0x6d0 [ 253.310043] ? srso_return_thunk+0x5/0x5f [ 253.310188] ? do_raw_spin_unlock+0x53/0x220 [ 253.310284] ? __pfx_tick_nohz_handler+0x10/0x10 [ 253.310408] __hrtimer_run_queues+0x57c/0xa70 [ 253.310543] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 253.310648] ? ktime_get_update_offsets_now+0x260/0x3c0 [ 253.310818] hrtimer_interrupt+0x2f2/0x750 [ 253.310952] __sysvec_apic_timer_interrupt+0xc2/0x390 [ 253.311062] sysvec_apic_timer_interrupt+0x6b/0x80 [ 253.311198] [ 253.311223] [ 253.311251] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 253.311391] RIP: 0010:default_idle+0x1e/0x30 [ 253.311482] Code: 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 0f 1f 44 00 00 eb 0c 0f 1f 44 00 00 0f 00 2d 69 41 40 00 0f 1f 44 00 00 fb f4 e9 5c 28 02 00 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 [ 253.311567] RSP: 0018:ffffffff85a07e10 EFLAGS: 00000206 [ 253.311633] RAX: 00000000000dc3dd RBX: 0000000000000000 RCX: ffffffff848238d7 [ 253.311692] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff812ad1ed [ 253.311750] RBP: dffffc0000000000 R08: 0000000000000001 R09: ffffed100d9c6c70 [ 253.311810] R10: ffff88806ce36383 R11: 0000000000000000 R12: ffffffff863f2748 [ 253.311870] R13: 1ffffffff0b40fc7 R14: 0000000000000000 R15: 0000000000000000 [ 253.311943] ? ct_kernel_exit.constprop.0+0x127/0x150 [ 253.312099] ? do_idle+0x2fd/0x3b0 [ 253.312205] default_idle_call+0x6d/0xb0 [ 253.312294] do_idle+0x2fd/0x3b0 [ 253.312398] ? __pfx_do_idle+0x10/0x10 [ 253.312506] ? do_idle+0x12/0x3b0 [ 253.312615] cpu_startup_entry+0x4f/0x60 [ 253.312724] rest_init+0x164/0x290 [ 253.312813] ? srso_return_thunk+0x5/0x5f [ 253.312962] start_kernel+0x40d/0x530 [ 253.313104] x86_64_start_reservations+0x18/0x30 [ 253.313236] x86_64_start_kernel+0xcb/0xe0 [ 253.313365] common_startup_64+0x12c/0x138 [ 253.313491] [ 254.177526] loop0: detected capacity change from 0 to 512 VM DIAGNOSIS: 22:50:39 Registers: info registers vcpu 0 RAX=00000000000dbf17 RBX=0000000000000000 RCX=ffffffff848238d7 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff812ad1ed RBP=dffffc0000000000 RSP=ffffffff85a07e10 R8 =0000000000000001 R9 =ffffed100d9c6c70 R10=ffff88806ce36383 R11=0000000000000000 R12=ffffffff863f2748 R13=1ffffffff0b40fc7 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8482487e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055a3bec70618 CR3=000000001b6be000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004177549c80000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8262d465 RDI=ffffffff886610c0 RBP=ffffffff88661080 RSP=ffff88806cf09058 R8 =0000000000000000 R9 =ffffed10016b7046 R10=0000000000000031 R11=6572617764726148 R12=0000000000000031 R13=ffffffff88661080 R14=0000000000000010 R15=ffffffff8262d450 RIP=ffffffff8262d4bd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fefc4ef6700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b30b20000 CR3=000000000cf28000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000