Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:12365' (ECDSA) to the list of known hosts. 2024/11/04 09:20:15 fuzzer started 2024/11/04 09:20:16 dialing manager at localhost:46317 syzkaller login: [ 53.827973] cgroup: Unknown subsys name 'net' [ 53.936142] cgroup: Unknown subsys name 'cpuset' [ 53.968793] cgroup: Unknown subsys name 'rlimit' 2024/11/04 09:20:37 syscalls: 2217 2024/11/04 09:20:37 code coverage: enabled 2024/11/04 09:20:37 comparison tracing: enabled 2024/11/04 09:20:37 extra coverage: enabled 2024/11/04 09:20:37 setuid sandbox: enabled 2024/11/04 09:20:37 namespace sandbox: enabled 2024/11/04 09:20:37 Android sandbox: enabled 2024/11/04 09:20:37 fault injection: enabled 2024/11/04 09:20:37 leak checking: enabled 2024/11/04 09:20:37 net packet injection: enabled 2024/11/04 09:20:37 net device setup: enabled 2024/11/04 09:20:37 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/11/04 09:20:37 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/11/04 09:20:37 USB emulation: enabled 2024/11/04 09:20:37 hci packet injection: enabled 2024/11/04 09:20:37 wifi device emulation: enabled 2024/11/04 09:20:37 802.15.4 emulation: enabled 2024/11/04 09:20:37 fetching corpus: 0, signal 0/2000 (executing program) 2024/11/04 09:20:37 fetching corpus: 47, signal 22380/25901 (executing program) 2024/11/04 09:20:38 fetching corpus: 97, signal 33667/38543 (executing program) 2024/11/04 09:20:38 fetching corpus: 147, signal 38986/45254 (executing program) 2024/11/04 09:20:38 fetching corpus: 197, signal 44365/51907 (executing program) 2024/11/04 09:20:38 fetching corpus: 247, signal 48652/57478 (executing program) 2024/11/04 09:20:38 fetching corpus: 297, signal 51898/61978 (executing program) 2024/11/04 09:20:38 fetching corpus: 347, signal 56158/67286 (executing program) 2024/11/04 09:20:38 fetching corpus: 397, signal 62073/74040 (executing program) 2024/11/04 09:20:38 fetching corpus: 447, signal 65128/78099 (executing program) 2024/11/04 09:20:38 fetching corpus: 497, signal 67603/81578 (executing program) 2024/11/04 09:20:38 fetching corpus: 547, signal 69296/84371 (executing program) 2024/11/04 09:20:39 fetching corpus: 597, signal 72500/88315 (executing program) 2024/11/04 09:20:39 fetching corpus: 647, signal 74581/91356 (executing program) 2024/11/04 09:20:39 fetching corpus: 697, signal 76615/94244 (executing program) 2024/11/04 09:20:39 fetching corpus: 747, signal 77993/96540 (executing program) 2024/11/04 09:20:39 fetching corpus: 797, signal 80467/99731 (executing program) 2024/11/04 09:20:39 fetching corpus: 847, signal 82977/102950 (executing program) 2024/11/04 09:20:39 fetching corpus: 896, signal 84039/104925 (executing program) 2024/11/04 09:20:39 fetching corpus: 945, signal 86275/107788 (executing program) 2024/11/04 09:20:39 fetching corpus: 995, signal 88085/110275 (executing program) 2024/11/04 09:20:40 fetching corpus: 1044, signal 89976/112789 (executing program) 2024/11/04 09:20:40 fetching corpus: 1094, signal 91300/114827 (executing program) 2024/11/04 09:20:40 fetching corpus: 1144, signal 93410/117417 (executing program) 2024/11/04 09:20:40 fetching corpus: 1194, signal 95944/120273 (executing program) 2024/11/04 09:20:40 fetching corpus: 1244, signal 97801/122664 (executing program) 2024/11/04 09:20:40 fetching corpus: 1294, signal 99041/124509 (executing program) 2024/11/04 09:20:40 fetching corpus: 1343, signal 99742/125996 (executing program) 2024/11/04 09:20:40 fetching corpus: 1393, signal 100950/127740 (executing program) 2024/11/04 09:20:40 fetching corpus: 1443, signal 101571/129100 (executing program) 2024/11/04 09:20:40 fetching corpus: 1493, signal 103019/131010 (executing program) 2024/11/04 09:20:41 fetching corpus: 1543, signal 103858/132452 (executing program) 2024/11/04 09:20:41 fetching corpus: 1593, signal 105474/134382 (executing program) 2024/11/04 09:20:41 fetching corpus: 1643, signal 106627/135956 (executing program) 2024/11/04 09:20:41 fetching corpus: 1693, signal 107311/137265 (executing program) 2024/11/04 09:20:41 fetching corpus: 1743, signal 108405/138768 (executing program) 2024/11/04 09:20:41 fetching corpus: 1793, signal 109078/140014 (executing program) 2024/11/04 09:20:41 fetching corpus: 1843, signal 110511/141714 (executing program) 2024/11/04 09:20:41 fetching corpus: 1893, signal 112063/143373 (executing program) 2024/11/04 09:20:41 fetching corpus: 1943, signal 113118/144801 (executing program) 2024/11/04 09:20:41 fetching corpus: 1993, signal 114298/146270 (executing program) 2024/11/04 09:20:42 fetching corpus: 2043, signal 115332/147585 (executing program) 2024/11/04 09:20:42 fetching corpus: 2093, signal 116241/148879 (executing program) 2024/11/04 09:20:42 fetching corpus: 2143, signal 116999/150039 (executing program) 2024/11/04 09:20:42 fetching corpus: 2193, signal 118165/151399 (executing program) 2024/11/04 09:20:42 fetching corpus: 2243, signal 119180/152698 (executing program) 2024/11/04 09:20:42 fetching corpus: 2293, signal 119965/153822 (executing program) 2024/11/04 09:20:42 fetching corpus: 2343, signal 120818/154969 (executing program) 2024/11/04 09:20:42 fetching corpus: 2393, signal 121680/156093 (executing program) 2024/11/04 09:20:42 fetching corpus: 2443, signal 122334/157117 (executing program) 2024/11/04 09:20:42 fetching corpus: 2493, signal 123202/158229 (executing program) 2024/11/04 09:20:42 fetching corpus: 2543, signal 123812/159192 (executing program) 2024/11/04 09:20:43 fetching corpus: 2593, signal 124624/160205 (executing program) 2024/11/04 09:20:43 fetching corpus: 2643, signal 125170/161114 (executing program) 2024/11/04 09:20:43 fetching corpus: 2692, signal 125794/162043 (executing program) 2024/11/04 09:20:43 fetching corpus: 2742, signal 126500/163000 (executing program) 2024/11/04 09:20:43 fetching corpus: 2792, signal 127855/164156 (executing program) 2024/11/04 09:20:43 fetching corpus: 2842, signal 128793/165170 (executing program) 2024/11/04 09:20:43 fetching corpus: 2892, signal 129857/166194 (executing program) 2024/11/04 09:20:43 fetching corpus: 2942, signal 130649/167062 (executing program) 2024/11/04 09:20:43 fetching corpus: 2992, signal 131341/167904 (executing program) 2024/11/04 09:20:43 fetching corpus: 3042, signal 132602/168896 (executing program) 2024/11/04 09:20:43 fetching corpus: 3092, signal 133645/169812 (executing program) 2024/11/04 09:20:43 fetching corpus: 3142, signal 134320/170620 (executing program) 2024/11/04 09:20:44 fetching corpus: 3192, signal 134957/171386 (executing program) 2024/11/04 09:20:44 fetching corpus: 3242, signal 135417/172058 (executing program) 2024/11/04 09:20:44 fetching corpus: 3292, signal 135841/172693 (executing program) 2024/11/04 09:20:44 fetching corpus: 3342, signal 136682/173493 (executing program) 2024/11/04 09:20:44 fetching corpus: 3391, signal 137208/174177 (executing program) 2024/11/04 09:20:44 fetching corpus: 3441, signal 138371/175011 (executing program) 2024/11/04 09:20:44 fetching corpus: 3491, signal 138926/175664 (executing program) 2024/11/04 09:20:44 fetching corpus: 3541, signal 140824/176611 (executing program) 2024/11/04 09:20:44 fetching corpus: 3591, signal 141566/177268 (executing program) 2024/11/04 09:20:44 fetching corpus: 3641, signal 142589/177898 (executing program) 2024/11/04 09:20:45 fetching corpus: 3691, signal 143015/178435 (executing program) 2024/11/04 09:20:45 fetching corpus: 3741, signal 143468/178960 (executing program) 2024/11/04 09:20:45 fetching corpus: 3791, signal 143899/179501 (executing program) 2024/11/04 09:20:45 fetching corpus: 3841, signal 144546/180062 (executing program) 2024/11/04 09:20:45 fetching corpus: 3890, signal 145252/180657 (executing program) 2024/11/04 09:20:45 fetching corpus: 3940, signal 145823/181177 (executing program) 2024/11/04 09:20:45 fetching corpus: 3990, signal 146224/181658 (executing program) 2024/11/04 09:20:45 fetching corpus: 4040, signal 146738/182178 (executing program) 2024/11/04 09:20:45 fetching corpus: 4090, signal 147574/182750 (executing program) 2024/11/04 09:20:45 fetching corpus: 4140, signal 148036/183197 (executing program) 2024/11/04 09:20:45 fetching corpus: 4190, signal 148654/183659 (executing program) 2024/11/04 09:20:46 fetching corpus: 4240, signal 149240/184125 (executing program) 2024/11/04 09:20:46 fetching corpus: 4289, signal 149876/184584 (executing program) 2024/11/04 09:20:46 fetching corpus: 4339, signal 150407/185002 (executing program) 2024/11/04 09:20:46 fetching corpus: 4389, signal 150827/185433 (executing program) 2024/11/04 09:20:46 fetching corpus: 4439, signal 151308/185851 (executing program) 2024/11/04 09:20:46 fetching corpus: 4489, signal 151631/186210 (executing program) 2024/11/04 09:20:46 fetching corpus: 4539, signal 152241/186609 (executing program) 2024/11/04 09:20:46 fetching corpus: 4589, signal 152810/186997 (executing program) 2024/11/04 09:20:46 fetching corpus: 4639, signal 153291/187205 (executing program) 2024/11/04 09:20:46 fetching corpus: 4689, signal 153777/187210 (executing program) 2024/11/04 09:20:46 fetching corpus: 4739, signal 154171/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 4789, signal 154555/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 4839, signal 155042/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 4889, signal 155412/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 4939, signal 155762/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 4989, signal 156546/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 5039, signal 156830/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 5089, signal 157441/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 5139, signal 157702/187210 (executing program) 2024/11/04 09:20:47 fetching corpus: 5189, signal 157947/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5239, signal 158399/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5289, signal 158804/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5339, signal 159129/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5389, signal 159583/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5439, signal 160031/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5489, signal 160371/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5539, signal 160728/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5589, signal 161144/187210 (executing program) 2024/11/04 09:20:48 fetching corpus: 5639, signal 161519/187210 (executing program) 2024/11/04 09:20:49 fetching corpus: 5689, signal 161810/187212 (executing program) 2024/11/04 09:20:49 fetching corpus: 5739, signal 162044/187212 (executing program) 2024/11/04 09:20:49 fetching corpus: 5789, signal 162476/187212 (executing program) 2024/11/04 09:20:49 fetching corpus: 5839, signal 162773/187212 (executing program) 2024/11/04 09:20:49 fetching corpus: 5888, signal 163083/187212 (executing program) 2024/11/04 09:20:49 fetching corpus: 5938, signal 163451/187212 (executing program) 2024/11/04 09:20:49 fetching corpus: 5988, signal 163750/187212 (executing program) 2024/11/04 09:20:49 fetching corpus: 6038, signal 164055/187212 (executing program) 2024/11/04 09:20:49 fetching corpus: 6088, signal 164360/187223 (executing program) 2024/11/04 09:20:49 fetching corpus: 6138, signal 164654/187223 (executing program) 2024/11/04 09:20:50 fetching corpus: 6188, signal 164962/187223 (executing program) 2024/11/04 09:20:50 fetching corpus: 6237, signal 165255/187268 (executing program) 2024/11/04 09:20:50 fetching corpus: 6287, signal 165612/187268 (executing program) 2024/11/04 09:20:50 fetching corpus: 6336, signal 166412/187268 (executing program) 2024/11/04 09:20:50 fetching corpus: 6386, signal 166983/187268 (executing program) 2024/11/04 09:20:50 fetching corpus: 6436, signal 167571/187268 (executing program) 2024/11/04 09:20:50 fetching corpus: 6486, signal 167811/187268 (executing program) 2024/11/04 09:20:50 fetching corpus: 6536, signal 168322/187268 (executing program) 2024/11/04 09:20:51 fetching corpus: 6586, signal 168568/187268 (executing program) 2024/11/04 09:20:51 fetching corpus: 6636, signal 168918/187268 (executing program) 2024/11/04 09:20:51 fetching corpus: 6686, signal 169216/187268 (executing program) 2024/11/04 09:20:51 fetching corpus: 6735, signal 169584/187268 (executing program) 2024/11/04 09:20:51 fetching corpus: 6785, signal 169792/187268 (executing program) 2024/11/04 09:20:51 fetching corpus: 6834, signal 170151/187269 (executing program) 2024/11/04 09:20:51 fetching corpus: 6884, signal 170543/187277 (executing program) 2024/11/04 09:20:51 fetching corpus: 6934, signal 170795/187277 (executing program) 2024/11/04 09:20:51 fetching corpus: 6984, signal 171111/187277 (executing program) 2024/11/04 09:20:51 fetching corpus: 7034, signal 171452/187277 (executing program) 2024/11/04 09:20:52 fetching corpus: 7084, signal 171872/187277 (executing program) 2024/11/04 09:20:52 fetching corpus: 7134, signal 172086/187280 (executing program) 2024/11/04 09:20:52 fetching corpus: 7184, signal 172510/187280 (executing program) 2024/11/04 09:20:52 fetching corpus: 7234, signal 172713/187280 (executing program) 2024/11/04 09:20:52 fetching corpus: 7284, signal 172938/187280 (executing program) 2024/11/04 09:20:52 fetching corpus: 7334, signal 173175/187280 (executing program) 2024/11/04 09:20:52 fetching corpus: 7384, signal 173369/187282 (executing program) 2024/11/04 09:20:52 fetching corpus: 7434, signal 173636/187282 (executing program) 2024/11/04 09:20:53 fetching corpus: 7484, signal 173889/187282 (executing program) 2024/11/04 09:20:53 fetching corpus: 7534, signal 174188/187282 (executing program) 2024/11/04 09:20:53 fetching corpus: 7584, signal 174455/187282 (executing program) 2024/11/04 09:20:53 fetching corpus: 7634, signal 174649/187282 (executing program) 2024/11/04 09:20:53 fetching corpus: 7683, signal 174913/187282 (executing program) 2024/11/04 09:20:53 fetching corpus: 7733, signal 175096/187283 (executing program) 2024/11/04 09:20:53 fetching corpus: 7783, signal 175335/187283 (executing program) 2024/11/04 09:20:53 fetching corpus: 7833, signal 175578/187283 (executing program) 2024/11/04 09:20:53 fetching corpus: 7883, signal 175881/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 7932, signal 176144/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 7982, signal 176493/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 8032, signal 176703/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 8082, signal 176954/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 8132, signal 177393/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 8182, signal 177595/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 8232, signal 177817/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 8282, signal 178077/187283 (executing program) 2024/11/04 09:20:54 fetching corpus: 8332, signal 178274/187283 (executing program) 2024/11/04 09:20:55 fetching corpus: 8382, signal 178511/187283 (executing program) 2024/11/04 09:20:55 fetching corpus: 8432, signal 178804/187283 (executing program) 2024/11/04 09:20:55 fetching corpus: 8482, signal 179074/187284 (executing program) 2024/11/04 09:20:55 fetching corpus: 8532, signal 179350/187284 (executing program) 2024/11/04 09:20:55 fetching corpus: 8582, signal 179650/187284 (executing program) 2024/11/04 09:20:55 fetching corpus: 8632, signal 179933/187284 (executing program) 2024/11/04 09:20:55 fetching corpus: 8682, signal 180245/187284 (executing program) 2024/11/04 09:20:55 fetching corpus: 8732, signal 180631/187287 (executing program) 2024/11/04 09:20:55 fetching corpus: 8782, signal 181011/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 8832, signal 181421/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 8882, signal 181687/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 8932, signal 181888/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 8982, signal 182076/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 9031, signal 182306/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 9081, signal 182581/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 9131, signal 182800/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 9181, signal 183078/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 9231, signal 183283/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 9281, signal 183518/187287 (executing program) 2024/11/04 09:20:56 fetching corpus: 9331, signal 183704/187287 (executing program) 2024/11/04 09:20:57 fetching corpus: 9380, signal 183900/187287 (executing program) 2024/11/04 09:20:57 fetching corpus: 9430, signal 184213/187287 (executing program) 2024/11/04 09:20:57 fetching corpus: 9480, signal 184607/187296 (executing program) 2024/11/04 09:20:57 fetching corpus: 9529, signal 184779/187296 (executing program) 2024/11/04 09:20:57 fetching corpus: 9579, signal 184950/187296 (executing program) 2024/11/04 09:20:57 fetching corpus: 9629, signal 185113/187296 (executing program) 2024/11/04 09:20:57 fetching corpus: 9679, signal 185382/187300 (executing program) 2024/11/04 09:20:57 fetching corpus: 9728, signal 185570/187300 (executing program) 2024/11/04 09:20:57 fetching corpus: 9778, signal 185793/187300 (executing program) 2024/11/04 09:20:57 fetching corpus: 9828, signal 186133/187300 (executing program) 2024/11/04 09:20:57 fetching corpus: 9878, signal 186300/187300 (executing program) 2024/11/04 09:20:57 fetching corpus: 9928, signal 186538/187300 (executing program) 2024/11/04 09:20:57 fetching corpus: 9941, signal 186607/187300 (executing program) 2024/11/04 09:20:57 fetching corpus: 9941, signal 186607/187300 (executing program) 2024/11/04 09:21:00 starting 8 fuzzer processes 09:21:00 executing program 0: syz_mount_image$nfs4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) mlockall(0x3) 09:21:00 executing program 1: r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f00000001c0)='./file0\x00') open_tree(r1, &(0x7f0000000180)='./file0/../file0\x00', 0x101) 09:21:00 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) geteuid() 09:21:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x24e1, 0x0) fcntl$setlease(r0, 0x400, 0x1) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fdinfo/3\x00') pread64(r1, &(0x7f0000000700)=""/4096, 0x1000, 0x0) 09:21:00 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000a940)=[{&(0x7f00000003c0)={0x28, 0x2d, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x1100000001}, @typed={0xc, 0x0, 0x0, 0x0, @u64}]}, 0x28}], 0x1}, 0x0) [ 97.625597] audit: type=1400 audit(1730712060.503:7): avc: denied { execmem } for pid=272 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:21:00 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x1b, &(0x7f0000000300)={{{@in=@local, @in6=@dev}}, {{@in=@local}, 0x0, @in6=@remote, 0x0, 0x0, 0x0, 0x2}}, 0xe8) 09:21:00 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736676209600088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011000)) 09:21:00 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$sock_int(r0, 0x1, 0x49, &(0x7f0000000040)=0x7000000, 0x4) [ 99.050553] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 99.056940] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 99.058890] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 99.061213] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 99.064266] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 99.065938] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 99.067869] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 99.070338] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 99.072127] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 99.076464] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 99.078805] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 99.081267] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 99.084654] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 99.090682] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 99.092717] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 99.099492] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 99.100920] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 99.102534] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 99.105618] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 99.110947] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 99.111830] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 99.112891] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 99.114314] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 99.116853] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 99.130699] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 99.132296] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 99.139330] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 99.140467] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 99.148597] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 99.149434] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 99.150509] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 99.151487] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 99.160259] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 99.161451] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 99.167254] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 99.173387] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 99.177073] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 99.182340] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 99.183542] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 99.183736] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 99.186597] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 99.206517] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 99.220622] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 99.222372] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 99.224297] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 99.228411] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 99.231229] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 99.235252] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 101.127537] Bluetooth: hci2: command tx timeout [ 101.191090] Bluetooth: hci4: command tx timeout [ 101.191164] Bluetooth: hci1: command tx timeout [ 101.192508] Bluetooth: hci0: command tx timeout [ 101.256063] Bluetooth: hci7: command tx timeout [ 101.256100] Bluetooth: hci5: command tx timeout [ 101.256286] Bluetooth: hci3: command tx timeout [ 101.319054] Bluetooth: hci6: command tx timeout [ 103.175580] Bluetooth: hci2: command tx timeout [ 103.239144] Bluetooth: hci1: command tx timeout [ 103.239324] Bluetooth: hci0: command tx timeout [ 103.239569] Bluetooth: hci4: command tx timeout [ 103.303074] Bluetooth: hci3: command tx timeout [ 103.306027] Bluetooth: hci7: command tx timeout [ 103.306048] Bluetooth: hci5: command tx timeout [ 103.367525] Bluetooth: hci6: command tx timeout [ 105.224106] Bluetooth: hci2: command tx timeout [ 105.287062] Bluetooth: hci0: command tx timeout [ 105.287194] Bluetooth: hci1: command tx timeout [ 105.287603] Bluetooth: hci4: command tx timeout [ 105.351166] Bluetooth: hci7: command tx timeout [ 105.352064] Bluetooth: hci5: command tx timeout [ 105.352876] Bluetooth: hci3: command tx timeout [ 105.415287] Bluetooth: hci6: command tx timeout [ 107.271170] Bluetooth: hci2: command tx timeout [ 107.335728] Bluetooth: hci1: command tx timeout [ 107.335764] Bluetooth: hci4: command tx timeout [ 107.336374] Bluetooth: hci0: command tx timeout [ 107.399076] Bluetooth: hci5: command tx timeout [ 107.399100] Bluetooth: hci3: command tx timeout [ 107.399524] Bluetooth: hci7: command tx timeout [ 107.463063] Bluetooth: hci6: command tx timeout [ 161.686050] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 161.689271] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 161.691580] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 161.706217] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 161.714530] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 161.717669] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 161.874389] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 161.877430] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 161.879753] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 161.886215] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 161.890154] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 161.892434] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 161.964892] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 161.969747] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 161.972552] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 161.978422] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 161.983606] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 161.989855] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 162.001567] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 162.006234] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 162.013513] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 162.019635] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 162.037191] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 162.050153] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 162.054372] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 162.062586] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 162.073455] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 162.102438] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 162.105577] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 162.105748] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 162.110229] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 162.115536] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 162.118360] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 162.118634] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 162.124354] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 162.135415] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 162.138540] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 162.140743] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 162.143450] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 162.146839] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 162.151406] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 162.153940] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 162.176714] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 162.178875] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 162.180842] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 162.297356] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 162.333534] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 162.347619] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 163.783088] Bluetooth: hci0: command tx timeout [ 163.975068] Bluetooth: hci1: command tx timeout [ 164.103074] Bluetooth: hci2: command tx timeout [ 164.167093] Bluetooth: hci7: command tx timeout [ 164.231106] Bluetooth: hci3: command tx timeout [ 164.295121] Bluetooth: hci6: command tx timeout [ 164.295791] Bluetooth: hci4: command tx timeout [ 164.487045] Bluetooth: hci5: command tx timeout [ 165.832094] Bluetooth: hci0: command tx timeout [ 166.024031] Bluetooth: hci1: command tx timeout [ 166.151260] Bluetooth: hci2: command tx timeout [ 166.215201] Bluetooth: hci7: command tx timeout [ 166.279329] Bluetooth: hci3: command tx timeout [ 166.343075] Bluetooth: hci6: command tx timeout [ 166.343552] Bluetooth: hci4: command tx timeout [ 166.535045] Bluetooth: hci5: command tx timeout [ 167.879023] Bluetooth: hci0: command tx timeout [ 168.072985] Bluetooth: hci1: command tx timeout [ 168.199065] Bluetooth: hci2: command tx timeout [ 168.263146] Bluetooth: hci7: command tx timeout [ 168.327090] Bluetooth: hci3: command tx timeout [ 168.391053] Bluetooth: hci4: command tx timeout [ 168.391492] Bluetooth: hci6: command tx timeout [ 168.583040] Bluetooth: hci5: command tx timeout [ 169.929050] Bluetooth: hci0: command tx timeout [ 170.119267] Bluetooth: hci1: command tx timeout [ 170.247027] Bluetooth: hci2: command tx timeout [ 170.311064] Bluetooth: hci7: command tx timeout [ 170.375223] Bluetooth: hci3: command tx timeout [ 170.439795] Bluetooth: hci6: command tx timeout [ 170.440277] Bluetooth: hci4: command tx timeout [ 170.631033] Bluetooth: hci5: command tx timeout [ 224.152725] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 224.159429] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 224.167426] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 224.178491] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 224.181667] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 224.183874] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 224.229823] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 224.232433] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 224.241157] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 224.249398] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 224.255579] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 224.258330] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 224.347185] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 224.365190] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 224.372520] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 224.405198] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 224.415367] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 224.424364] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 224.431503] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 224.433661] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 224.438482] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 224.475262] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 224.480378] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 224.483863] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 224.516368] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 224.548376] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 224.554609] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 224.558324] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 224.560876] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 224.576712] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 224.578451] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 224.592340] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 224.595384] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 224.606606] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 224.611208] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 224.615821] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 224.617384] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 224.619259] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 224.621356] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 224.633341] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 224.636020] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 224.637729] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 224.641562] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 224.643454] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 224.658656] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 224.673402] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 224.675547] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 224.691281] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 226.247209] Bluetooth: hci0: command tx timeout [ 226.311077] Bluetooth: hci1: command tx timeout [ 226.567093] Bluetooth: hci2: command tx timeout [ 226.631249] Bluetooth: hci3: command tx timeout [ 226.696012] Bluetooth: hci6: command tx timeout [ 226.696825] Bluetooth: hci5: command tx timeout [ 226.759071] Bluetooth: hci7: command tx timeout [ 226.824011] Bluetooth: hci4: command tx timeout [ 228.295113] Bluetooth: hci0: command tx timeout [ 228.359980] Bluetooth: hci1: command tx timeout [ 228.615039] Bluetooth: hci2: command tx timeout [ 228.679037] Bluetooth: hci3: command tx timeout [ 228.743036] Bluetooth: hci6: command tx timeout [ 228.743488] Bluetooth: hci5: command tx timeout [ 228.807067] Bluetooth: hci7: command tx timeout [ 228.871030] Bluetooth: hci4: command tx timeout [ 230.343671] Bluetooth: hci0: command tx timeout [ 230.407096] Bluetooth: hci1: command tx timeout [ 230.663986] Bluetooth: hci2: command tx timeout [ 230.727288] Bluetooth: hci3: command tx timeout [ 230.792011] Bluetooth: hci5: command tx timeout [ 230.792452] Bluetooth: hci6: command tx timeout [ 230.855011] Bluetooth: hci7: command tx timeout [ 230.919025] Bluetooth: hci4: command tx timeout [ 232.392007] Bluetooth: hci0: command tx timeout [ 232.455029] Bluetooth: hci1: command tx timeout [ 232.711037] Bluetooth: hci2: command tx timeout [ 232.775045] Bluetooth: hci3: command tx timeout [ 232.839078] Bluetooth: hci6: command tx timeout [ 232.839540] Bluetooth: hci5: command tx timeout [ 232.903024] Bluetooth: hci7: command tx timeout [ 232.967147] Bluetooth: hci4: command tx timeout [ 279.915136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 279.915861] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 280.235243] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 280.235879] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 280.552972] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 280.553589] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 280.718332] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 280.718968] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.086814] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.087520] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.227905] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.228747] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.395381] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.396019] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 281.582040] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.582644] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:24:04 executing program 3: syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)) mount$cgroup2(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x2840804, 0x0) [ 281.791028] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 281.791670] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:24:04 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x2c, &(0x7f0000000000)=0xffffffff, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1b, &(0x7f0000000100)={0x0, 0x0}, 0x10) 09:24:04 executing program 3: openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/cgroup.procs\x00', &(0x7f00000000c0)={0xa2042, 0x0, 0x11}, 0x18) [ 282.028255] audit: type=1400 audit(1730712244.905:8): avc: denied { open } for pid=10733 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 282.033870] audit: type=1400 audit(1730712244.905:9): avc: denied { kernel } for pid=10733 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 282.046512] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 282.047271] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 282.093487] loop6: detected capacity change from 0 to 256 09:24:04 executing program 3: memfd_create(0x0, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) [ 282.114233] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 09:24:05 executing program 7: r0 = epoll_create(0x5) r1 = eventfd2(0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) read$eventfd(r1, &(0x7f0000000040), 0x8) [ 282.170231] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 282.170847] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 09:24:05 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fchdir(0xffffffffffffffff) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) 09:24:05 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736676209600088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011000)) [ 282.253395] hrtimer: interrupt took 28494 ns 09:24:05 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000ffa000/0x4000)=nil) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000a940)=[{&(0x7f0000000440)={0x1c, 0x21, 0x1, 0x0, 0x0, "", [@typed={0x2, 0x0, 0x0, 0x0, @u32}, @generic="b2"]}, 0x1c}], 0x1}, 0x0) msgsnd(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02"], 0xfd1, 0x0) [ 282.295754] loop6: detected capacity change from 0 to 256 [ 282.305112] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 282.340051] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 282.340696] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 282.414947] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 282.415622] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 282.545124] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 282.545838] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 282.629764] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 282.630425] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 282.765546] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 282.766205] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 285.718620] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 285.722106] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 285.724400] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 285.729495] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 285.732555] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 285.734717] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 285.848344] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 285.857732] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 285.862484] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 285.870727] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 285.879410] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 285.883310] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 285.916381] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 285.929143] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 285.932711] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 285.948371] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 285.952970] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 285.963545] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 286.044700] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 286.051897] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 286.055285] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 286.063299] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 286.070329] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 286.072450] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 286.106352] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 286.109280] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 286.113124] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 286.137402] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 286.160377] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 286.164692] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 287.816107] Bluetooth: hci0: command tx timeout [ 287.943034] Bluetooth: hci2: command tx timeout [ 288.071525] Bluetooth: hci4: command tx timeout [ 288.136023] Bluetooth: hci7: command tx timeout [ 288.327044] Bluetooth: hci6: command tx timeout [ 289.863001] Bluetooth: hci0: command tx timeout [ 289.991002] Bluetooth: hci2: command tx timeout [ 290.119245] Bluetooth: hci4: command tx timeout [ 290.183153] Bluetooth: hci7: command tx timeout [ 290.375074] Bluetooth: hci6: command tx timeout [ 291.911632] Bluetooth: hci0: command tx timeout [ 292.052507] Bluetooth: hci2: command tx timeout [ 292.167064] Bluetooth: hci4: command tx timeout [ 292.230978] Bluetooth: hci7: command tx timeout [ 292.423992] Bluetooth: hci6: command tx timeout [ 293.959148] Bluetooth: hci0: command tx timeout [ 294.087046] Bluetooth: hci2: command tx timeout [ 294.214992] Bluetooth: hci4: command tx timeout [ 294.279950] Bluetooth: hci7: command tx timeout [ 294.470995] Bluetooth: hci6: command tx timeout [ 321.448128] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.448765] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.623566] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.624243] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 323.473992] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.474644] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 323.580383] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.581127] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 323.650619] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.651337] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 323.692486] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.693139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 323.794724] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.795376] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 323.871799] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 323.872648] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 324.120972] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 324.121611] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 324.281134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 324.281769] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 324.335541] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'. 09:24:47 executing program 0: mlock2(&(0x7f0000ff5000/0x3000)=nil, 0x3000, 0x0) shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) r1 = socket$inet_udp(0x2, 0x2, 0x0) mmap(&(0x7f0000ff3000/0x1000)=nil, 0x1000, 0x0, 0x4011, r1, 0x16038000) ioctl$BTRFS_IOC_DEV_INFO(r1, 0xd000941e, &(0x7f0000002800)={0x0, "b74019cd8441d38f1b68a371098837a1"}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8, 0x7ff, 0x0, 0x0, 0x0, 0x25}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) mincore(&(0x7f0000ffa000/0x3000)=nil, 0x3000, &(0x7f0000001700)=""/198) mlock(&(0x7f0000ff2000/0x3000)=nil, 0x3000) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, r2, 0x0) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r1, 0x50009418, &(0x7f0000001800)={{}, 0x0, 0x6, @inherit={0x50, &(0x7f0000000400)=ANY=[@ANYBLOB="000000000000000000026116fd77555775d83929af52f57ab30c5a7ebc39ddc3f185132df98607580ca000000000000000ff000028d5bf0000000000270000000000000001010000844bc3ab4823000000000003003f0000000000009ad6547800000000000000000000000000000000dbfb4533394ad01dde99771afc3a482ebbe210a862f7e7082ece724dad34bc1c516f95fe"]}, @subvolid}) shmat(r0, &(0x7f0000ffd000/0x3000)=nil, 0x4000) pread64(0xffffffffffffffff, &(0x7f0000000640)=""/221, 0xdd, 0xffff) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000005c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="feeb8943efa40300361902cacacafc29b23403af13201e013a73c00a03632b91f1809e1f9f56b2240b0066f263abb7b968828151a6242b08111799da96ef9617e82cc7b4edeffd26b339510528ba584b8d7c019bd38a1edfcbb3ea000000008800000000"]) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) 09:24:47 executing program 1: r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f00000001c0)='./file0\x00') open_tree(r1, &(0x7f0000000180)='./file0/../file0\x00', 0x101) 09:24:47 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736676209600088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011000)) 09:24:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000ffa000/0x4000)=nil) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000a940)=[{&(0x7f0000000440)={0x1c, 0x21, 0x1, 0x0, 0x0, "", [@typed={0x2, 0x0, 0x0, 0x0, @u32}, @generic="b2"]}, 0x1c}], 0x1}, 0x0) msgsnd(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02"], 0xfd1, 0x0) 09:24:47 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCGETA(r0, 0x541a, &(0x7f0000000100)) 09:24:47 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10013, r0, 0x0) 09:24:47 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0) ioctl$KDGKBLED(0xffffffffffffffff, 0x4b64, &(0x7f0000000140)) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000001, 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000440008000f801", 0x17}, {&(0x7f0000000340)="53595a4b414c4c45522020080000eb80325132510000eb80325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202010", 0x4c, 0xa00}], 0x0, &(0x7f0000000080)) perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x0, 0x80, 0x95, 0x7, 0x0, 0x4, 0x24828, 0x6, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_bp={&(0x7f00000001c0), 0xc}, 0x1417a, 0x8, 0xffff, 0x7, 0xe40, 0x0, 0x8000, 0x0, 0x3, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r0, 0x3) perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0x1f, 0x3, 0x79, 0x6, 0x0, 0x100000000, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_config_ext={0x7, 0x8}, 0x2a0, 0x2f, 0x8542, 0x0, 0xfff, 0x200, 0x8, 0x0, 0x6, 0x0, 0x6335}, 0xffffffffffffffff, 0x6, r0, 0x9) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZE(r2, 0x4b47, &(0x7f0000000000)={0x0, 0x8001}) open_tree(r1, &(0x7f0000000180)='./file0\x00', 0x80100) getresgid(&(0x7f0000000540), &(0x7f00000032c0), &(0x7f0000003300)) 09:24:47 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fchdir(0xffffffffffffffff) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) [ 324.768556] loop6: detected capacity change from 0 to 256 [ 324.815176] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 09:24:47 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10013, r0, 0x0) 09:24:47 executing program 1: r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f00000001c0)='./file0\x00') open_tree(r1, &(0x7f0000000180)='./file0/../file0\x00', 0x101) 09:24:47 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x1c, r1, 0x3ab, 0x0, 0x0, {{}, {@void, @val={0x8}, @void}}}, 0x1c}}, 0x0) 09:24:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000ffa000/0x4000)=nil) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000a940)=[{&(0x7f0000000440)={0x1c, 0x21, 0x1, 0x0, 0x0, "", [@typed={0x2, 0x0, 0x0, 0x0, @u32}, @generic="b2"]}, 0x1c}], 0x1}, 0x0) msgsnd(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02"], 0xfd1, 0x0) 09:24:47 executing program 6: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736676209600088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011000)) 09:24:47 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10013, r0, 0x0) 09:24:48 executing program 2: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10013, r0, 0x0) [ 325.565665] loop5: detected capacity change from 0 to 10 [ 325.573985] loop6: detected capacity change from 0 to 256 09:24:48 executing program 1: r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f00000001c0)='./file0\x00') open_tree(r1, &(0x7f0000000180)='./file0/../file0\x00', 0x101) [ 325.669394] FAT-fs (loop6): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 347.562196] Bluetooth: hci1: command 0x0406 tx timeout [ 347.563318] Bluetooth: hci5: command 0x0406 tx timeout [ 348.039944] Bluetooth: hci3: command 0x0406 tx timeout [ 352.721199] watchdog: BUG: soft lockup - CPU#0 stuck for 22s! [syz-executor.3:13058] [ 352.721883] Modules linked in: [ 352.722180] irq event stamp: 2941407 [ 352.722504] hardirqs last enabled at (2941406): [] irqentry_exit+0x3b/0x90 [ 352.723273] hardirqs last disabled at (2941407): [] sysvec_apic_timer_interrupt+0xf/0x80 [ 352.727497] softirqs last enabled at (2911894): [] handle_softirqs+0x50c/0x770 [ 352.728263] softirqs last disabled at (2911903): [] irq_exit_rcu+0x94/0xc0 [ 352.728985] CPU: 0 UID: 0 PID: 13058 Comm: syz-executor.3 Not tainted 6.12.0-rc5-next-20241104 #1 [ 352.729728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 352.730406] RIP: 0010:stack_trace_consume_entry+0x4/0x170 [ 352.730891] Code: ff ff ff eb c7 e8 1c 96 44 03 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa <48> b8 00 00 00 00 00 fc ff df 55 53 48 89 fb 48 83 c7 10 48 89 fa [ 352.732374] RSP: 0018:ffff88806ce09830 EFLAGS: 00000282 [ 352.732838] RAX: ffffffff845df3d0 RBX: ffffffff813ef450 RCX: 0000000000000001 [ 352.733435] RDX: 1ffff1100d9c1312 RSI: ffffffff845df3d0 RDI: ffff88806ce09900 [ 352.734031] RBP: ffff88806ce098d0 R08: 0000000000000001 R09: ffff88806ce09878 [ 352.734624] R10: 000000000003c001 R11: 0000000000082191 R12: ffff88806ce09900 [ 352.735226] R13: 0000000000000000 R14: ffff88803979d280 R15: ffff88803e92adc0 [ 352.735832] FS: 00007f7ffe139700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 352.736511] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 352.737013] CR2: 00007f6f053f7998 CR3: 000000003e77a000 CR4: 0000000000350ef0 [ 352.737614] Call Trace: [ 352.737852] [ 352.738064] ? watchdog_timer_fn+0x3ee/0x510 [ 352.738482] ? __pfx_watchdog_timer_fn+0x10/0x10 [ 352.738936] ? __hrtimer_run_queues+0x57c/0xa70 [ 352.739386] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 352.739852] ? ktime_get_update_offsets_now+0x260/0x3c0 [ 352.740340] ? hrtimer_interrupt+0x2f2/0x750 [ 352.740777] ? __sysvec_apic_timer_interrupt+0xc2/0x330 [ 352.741255] ? sysvec_apic_timer_interrupt+0x34/0x80 [ 352.741720] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 352.742219] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 352.742702] ? __iterate_interfaces+0x2e0/0x650 [ 352.743123] ? __iterate_interfaces+0x2e0/0x650 [ 352.743544] ? stack_trace_consume_entry+0x4/0x170 [ 352.743992] arch_stack_walk+0x77/0xf0 [ 352.744387] ? __iterate_interfaces+0x2e0/0x650 [ 352.744817] stack_trace_save+0x8f/0xc0 [ 352.745183] ? __pfx_stack_trace_save+0x10/0x10 [ 352.745608] ? ktime_get+0x171/0x270 [ 352.745978] ? __pfx_mark_lock+0x10/0x10 [ 352.746376] ? srso_return_thunk+0x5/0x5f [ 352.746776] ? srso_return_thunk+0x5/0x5f [ 352.747180] kasan_save_stack+0x24/0x50 [ 352.747552] ? kasan_save_stack+0x24/0x50 [ 352.747943] ? __kasan_record_aux_stack+0x8c/0xa0 [ 352.748397] ? __call_rcu_common.constprop.0+0x6a/0xaa0 [ 352.748896] ? kmem_cache_free+0x2ae/0x470 [ 352.749303] ? kfree_skbmem+0x18a/0x1f0 [ 352.749680] ? consume_skb+0xdd/0x160 [ 352.750031] ? mac80211_hwsim_tx_frame+0x1f6/0x2a0 [ 352.750494] ? mac80211_hwsim_beacon_tx+0x546/0x950 [ 352.750967] ? hrtimer_interrupt+0x589/0x750 [ 352.751402] ? srso_return_thunk+0x5/0x5f [ 352.751796] ? mark_held_locks+0x9e/0xe0 [ 352.752199] ? srso_return_thunk+0x5/0x5f [ 352.752590] ? find_held_lock+0x2c/0x110 [ 352.752970] ? __virt_addr_valid+0x2e8/0x5d0 [ 352.753382] ? srso_return_thunk+0x5/0x5f [ 352.753773] ? lock_release+0x20f/0x6f0 [ 352.754162] ? __pfx_lock_release+0x10/0x10 [ 352.754583] ? __virt_addr_valid+0x25f/0x5d0 [ 352.754991] ? __virt_addr_valid+0x2bd/0x5d0 [ 352.755401] ? srso_return_thunk+0x5/0x5f [ 352.755798] ? __virt_addr_valid+0x100/0x5d0 [ 352.756213] ? __pfx_free_object_rcu+0x10/0x10 [ 352.756638] ? srso_return_thunk+0x5/0x5f [ 352.757033] __kasan_record_aux_stack+0x8c/0xa0 [ 352.757479] ? __pfx_free_object_rcu+0x10/0x10 [ 352.757902] __call_rcu_common.constprop.0+0x6a/0xaa0 [ 352.758380] ? srso_return_thunk+0x5/0x5f [ 352.758770] ? lockdep_hardirqs_on_prepare+0x12b/0x3f0 [ 352.759284] kmem_cache_free+0x2ae/0x470 [ 352.759692] ? srso_return_thunk+0x5/0x5f [ 352.760109] ? skb_release_data+0x59d/0x990 [ 352.760537] ? kfree_skbmem+0x18a/0x1f0 [ 352.760936] kfree_skbmem+0x18a/0x1f0 [ 352.761301] consume_skb+0xdd/0x160 [ 352.761646] mac80211_hwsim_tx_frame+0x1f6/0x2a0 [ 352.762098] mac80211_hwsim_beacon_tx+0x546/0x950 [ 352.762561] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 352.763027] ? srso_return_thunk+0x5/0x5f [ 352.763428] __iterate_interfaces+0x2e0/0x650 [ 352.763842] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 352.764338] ? __pfx_mac80211_hwsim_beacon_tx+0x10/0x10 [ 352.764826] ieee80211_iterate_active_interfaces_atomic+0x71/0x1b0 [ 352.765379] mac80211_hwsim_beacon+0x105/0x200 [ 352.765816] ? __pfx_mac80211_hwsim_beacon+0x10/0x10 [ 352.766281] __hrtimer_run_queues+0x1ab/0xa70 [ 352.766716] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 352.767193] ? ktime_get_update_offsets_now+0x260/0x3c0 [ 352.767695] hrtimer_run_softirq+0x14c/0x310 [ 352.768123] handle_softirqs+0x1b1/0x770 [ 352.768505] irq_exit_rcu+0x94/0xc0 [ 352.768857] sysvec_apic_timer_interrupt+0x70/0x80 [ 352.769323] [ 352.769541] [ 352.769763] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 352.770246] RIP: 0010:qlist_free_all+0x96/0x160 [ 352.770670] Code: 0f 82 e0 00 00 00 48 c7 c2 00 00 00 80 48 2b 15 28 bf f1 03 48 01 ca 48 c1 ea 0c 48 c1 e2 06 48 03 15 06 bf f1 03 48 8b 72 08 <48> 89 d1 40 f6 c6 01 0f 85 a1 00 00 00 66 90 80 79 33 f5 ba 00 00 [ 352.772205] RSP: 0018:ffff888040d57810 EFLAGS: 00000282 [ 352.772690] RAX: ffff888018fad638 RBX: ffff888018fad638 RCX: ffff888098fad638 [ 352.773311] RDX: ffffea000063eb40 RSI: ffff888008ff0280 RDI: 0000000000080000 [ 352.773912] RBP: 0000000000000000 R08: ffff88800e6ba300 R09: 0000000000400015 [ 352.774503] R10: ffffea000039ae00 R11: 00000000000007e0 R12: 0000000000000000 [ 352.775094] R13: ffff888040d57848 R14: ffff88800e6ba300 R15: ffff88800e6ba300 [ 352.775722] kasan_quarantine_reduce+0x19f/0x240 [ 352.776163] __kasan_slab_alloc+0x49/0x70 [ 352.776551] __kmalloc_cache_noprof+0x149/0x3e0 [ 352.777003] ? __pfx_ptmx_open+0x10/0x10 [ 352.777376] tty_alloc_file+0x41/0xa0 [ 352.777743] ptmx_open+0x58/0x360 [ 352.778075] ? __pfx_ptmx_open+0x10/0x10 [ 352.778446] chrdev_open+0x235/0x690 [ 352.778797] ? __pfx_chrdev_open+0x10/0x10 [ 352.779182] ? lockref_get+0x15/0x50 [ 352.779546] do_dentry_open+0x71c/0x1420 [ 352.779927] ? __pfx_chrdev_open+0x10/0x10 [ 352.780322] vfs_open+0x82/0x3f0 [ 352.780652] ? srso_return_thunk+0x5/0x5f [ 352.781044] ? may_open+0x1f3/0x420 [ 352.781417] path_openat+0x1cf3/0x2980 [ 352.781838] ? __pfx_path_openat+0x10/0x10 [ 352.782256] ? __pfx___lock_acquire+0x10/0x10 [ 352.782697] ? srso_return_thunk+0x5/0x5f [ 352.783100] ? find_held_lock+0x2c/0x110 [ 352.783489] do_filp_open+0x1b8/0x410 [ 352.783877] ? __pfx_do_filp_open+0x10/0x10 [ 352.784291] ? find_held_lock+0x2c/0x110 [ 352.784694] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 352.785128] ? lock_acquire+0x32/0xc0 [ 352.785511] ? srso_return_thunk+0x5/0x5f [ 352.785912] ? _raw_spin_unlock+0x1e/0x40 [ 352.786292] ? srso_return_thunk+0x5/0x5f [ 352.786699] ? alloc_fd+0x2c0/0x560 [ 352.787088] do_sys_openat2+0x164/0x1d0 [ 352.787482] ? __pfx_do_sys_openat2+0x10/0x10 [ 352.787923] ? ktime_get+0x171/0x270 [ 352.788308] ? srso_return_thunk+0x5/0x5f [ 352.788721] ? srso_return_thunk+0x5/0x5f [ 352.789144] __x64_sys_openat+0x143/0x200 [ 352.789548] ? __pfx___x64_sys_openat+0x10/0x10 [ 352.790018] do_syscall_64+0xbf/0x1d0 [ 352.790398] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 352.790867] RIP: 0033:0x7f8000bc3b19 [ 352.791216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 352.792717] RSP: 002b:00007f7ffe139188 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 352.793369] RAX: ffffffffffffffda RBX: 00007f8000cd6f60 RCX: 00007f8000bc3b19 [ 352.793969] RDX: 0000000000000000 RSI: 0000000020000080 RDI: ffffffffffffff9c [ 352.794567] RBP: 00007f8000c1df6d R08: 0000000000000000 R09: 0000000000000000 [ 352.795172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.795768] R13: 00007fffbb21b92f R14: 00007f7ffe139300 R15: 0000000000022000 [ 352.796402] [ 352.796622] Sending NMI from CPU 0 to CPUs 1: [ 352.797034] NMI backtrace for cpu 1 [ 352.797084] CPU: 1 UID: 0 PID: 16 Comm: rcu_preempt Not tainted 6.12.0-rc5-next-20241104 #1 [ 352.797166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 352.797201] RIP: 0010:__lock_acquire+0x7e6/0x4430 [ 352.797325] Code: 20 66 81 e3 ff 1f 0f b7 db be 08 00 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 20 2f ee 87 e8 c2 fb 5b 00 48 0f a3 1d ca 6c be 06 <0f> 82 00 ff ff ff 48 c7 c0 80 ea 27 88 48 c1 e8 03 42 0f b6 34 28 [ 352.797390] RSP: 0018:ffff888009617730 EFLAGS: 00000047 [ 352.797442] RAX: 0000000000000001 RBX: 0000000000000033 RCX: ffffffff812fc24e [ 352.797487] RDX: fffffbfff0fdc5e5 RSI: 0000000000000008 RDI: ffffffff87ee2f20 [ 352.797532] RBP: ffff8880095edcc0 R08: 0000000000000000 R09: fffffbfff0fdc5e4 [ 352.797577] R10: ffffffff87ee2f27 R11: 0000000000000000 R12: 0000000000000005 [ 352.797625] R13: dffffc0000000000 R14: ffff8880095ed280 R15: 0000000000000000 [ 352.797683] FS: 0000000000000000(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 352.797745] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 352.797793] CR2: 000055a90dbc57c0 CR3: 000000001aef2000 CR4: 0000000000350ef0 [ 352.797838] Call Trace: [ 352.797855] [ 352.797878] ? nmi_cpu_backtrace+0x179/0x260 [ 352.797972] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 352.798081] ? nmi_handle+0x1a1/0x550 [ 352.798204] ? __lock_acquire+0x7e6/0x4430 [ 352.798312] ? __lock_acquire+0x7e6/0x4430 [ 352.798419] ? default_do_nmi+0x64/0x1c0 [ 352.798493] ? exc_nmi+0x188/0x1c0 [ 352.798561] ? end_repeat_nmi+0xf/0x53 [ 352.798663] ? __lock_acquire+0x7de/0x4430 [ 352.798772] ? __lock_acquire+0x7e6/0x4430 [ 352.798881] ? __lock_acquire+0x7e6/0x4430 [ 352.798992] ? __lock_acquire+0x7e6/0x4430 [ 352.799101] [ 352.799120] [ 352.799153] ? __pfx___lock_acquire+0x10/0x10 [ 352.799260] ? srso_return_thunk+0x5/0x5f [ 352.799357] ? mark_lock+0xac/0x1370 [ 352.799461] ? __pfx___lock_acquire+0x10/0x10 [ 352.799570] ? srso_return_thunk+0x5/0x5f [ 352.799666] ? find_held_lock+0x2c/0x110 [ 352.799757] lock_acquire.part.0+0xeb/0x320 [ 352.799883] ? hrtimer_try_to_cancel.part.0+0x6e/0x250 [ 352.799981] ? __pfx_lock_release+0x10/0x10 [ 352.800091] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 352.800203] ? srso_return_thunk+0x5/0x5f [ 352.800299] ? trace_lock_acquire+0x137/0x1b0 [ 352.800383] ? srso_return_thunk+0x5/0x5f [ 352.800480] ? timerqueue_add+0x1c2/0x330 [ 352.800553] ? srso_return_thunk+0x5/0x5f [ 352.800649] ? lock_acquire+0x32/0xc0 [ 352.800754] ? hrtimer_try_to_cancel.part.0+0x6e/0x250 [ 352.800853] _raw_spin_lock_irqsave+0x3a/0x60 [ 352.800931] ? hrtimer_try_to_cancel.part.0+0x6e/0x250 [ 352.801025] hrtimer_try_to_cancel.part.0+0x6e/0x250 [ 352.801125] hrtimer_try_to_cancel+0x37/0x50 [ 352.801216] dl_server_stop+0x49/0x90 [ 352.801320] dequeue_entities+0x12b3/0x1b90 [ 352.801424] dequeue_task_fair+0x16d/0x450 [ 352.801512] __schedule+0x4db/0x2fa0 [ 352.801601] ? __pfx___schedule+0x10/0x10 [ 352.801680] ? srso_return_thunk+0x5/0x5f [ 352.801777] ? lock_release+0x20f/0x6f0 [ 352.801885] ? __pfx_lock_release+0x10/0x10 [ 352.801991] ? trace_lock_acquire+0x137/0x1b0 [ 352.802082] ? srso_return_thunk+0x5/0x5f [ 352.802179] ? lock_acquire+0x32/0xc0 [ 352.802283] ? schedule+0x1ed/0x340 [ 352.802367] schedule+0xdb/0x340 [ 352.802447] schedule_timeout+0x11b/0x270 [ 352.802517] ? __pfx_schedule_timeout+0x10/0x10 [ 352.802590] ? __pfx_process_timeout+0x10/0x10 [ 352.802690] ? 0xffffffff81000000 [ 352.802733] ? srso_return_thunk+0x5/0x5f [ 352.802829] ? _raw_spin_unlock_irqrestore+0x2c/0x50 [ 352.802913] ? srso_return_thunk+0x5/0x5f [ 352.803009] ? prepare_to_swait_event+0xf4/0x370 [ 352.803087] ? lockdep_hardirqs_on_prepare+0x262/0x3f0 [ 352.803205] rcu_gp_fqs_loop+0x1c4/0xf10 [ 352.803317] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 352.803429] ? srso_return_thunk+0x5/0x5f [ 352.803530] ? srso_return_thunk+0x5/0x5f [ 352.803633] rcu_gp_kthread+0x4b7/0x6b0 [ 352.803736] ? srso_return_thunk+0x5/0x5f [ 352.803841] ? lock_acquire+0x32/0xc0 [ 352.803949] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 352.804054] ? srso_return_thunk+0x5/0x5f [ 352.804153] ? srso_return_thunk+0x5/0x5f [ 352.804251] ? srso_return_thunk+0x5/0x5f [ 352.804348] ? __kthread_parkme+0x148/0x220 [ 352.804457] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 352.804568] kthread+0x2c2/0x3a0 [ 352.804670] ? srso_return_thunk+0x5/0x5f [ 352.804766] ? __pfx_kthread+0x10/0x10 [ 352.804875] ret_from_fork+0x48/0x80 [ 352.804965] ? __pfx_kthread+0x10/0x10 [ 352.805072] ret_from_fork_asm+0x1a/0x30 [ 352.805180] 09:25:23 executing program 0: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCGSTAMP(r0, 0x8906, 0x0) 09:25:23 executing program 6: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000340)=0xeed, 0x4) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x1ff, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4) 09:25:23 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x1c, r1, 0x3ab, 0x0, 0x0, {{}, {@void, @val={0x8}, @void}}}, 0x1c}}, 0x0) 09:25:23 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) mremap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000ffa000/0x4000)=nil) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f000000a940)=[{&(0x7f0000000440)={0x1c, 0x21, 0x1, 0x0, 0x0, "", [@typed={0x2, 0x0, 0x0, 0x0, @u32}, @generic="b2"]}, 0x1c}], 0x1}, 0x0) msgsnd(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="02"], 0xfd1, 0x0) 09:25:23 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0) ioctl$KDGKBLED(0xffffffffffffffff, 0x4b64, &(0x7f0000000140)) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000001, 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000440008000f801", 0x17}, {&(0x7f0000000340)="53595a4b414c4c45522020080000eb80325132510000eb80325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202010", 0x4c, 0xa00}], 0x0, &(0x7f0000000080)) perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x0, 0x80, 0x95, 0x7, 0x0, 0x4, 0x24828, 0x6, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_bp={&(0x7f00000001c0), 0xc}, 0x1417a, 0x8, 0xffff, 0x7, 0xe40, 0x0, 0x8000, 0x0, 0x3, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r0, 0x3) perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0x1f, 0x3, 0x79, 0x6, 0x0, 0x100000000, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_config_ext={0x7, 0x8}, 0x2a0, 0x2f, 0x8542, 0x0, 0xfff, 0x200, 0x8, 0x0, 0x6, 0x0, 0x6335}, 0xffffffffffffffff, 0x6, r0, 0x9) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZE(r2, 0x4b47, &(0x7f0000000000)={0x0, 0x8001}) open_tree(r1, &(0x7f0000000180)='./file0\x00', 0x80100) getresgid(&(0x7f0000000540), &(0x7f00000032c0), &(0x7f0000003300)) 09:25:23 executing program 2: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f0000000100), 0x4) 09:25:23 executing program 1: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmmsg$inet6(r0, &(0x7f0000002580)=[{{&(0x7f00000013c0)={0xa, 0x0, 0x0, @remote}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000200)="8aac4de2", 0x4}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x0, 0x0, @private1}, 0x1c, 0x0, 0x0, &(0x7f0000000300)=[@dstopts={{0xfffffffffffffdf3}}], 0x18}}], 0x43, 0x0) 09:25:23 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fchdir(0xffffffffffffffff) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) [ 361.309514] loop5: detected capacity change from 0 to 10 09:25:24 executing program 0: r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$nl_netfilter(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x24, 0x0, 0x0, 0x0, 0x0, 0x0, {}, [@typed={0x8, 0x0, 0x0, 0x0, @fd}, @generic="31d4139acd"]}, 0x24}}, 0x0) 09:25:24 executing program 6: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000340)=0xeed, 0x4) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x1ff, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4) 09:25:24 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fchdir(0xffffffffffffffff) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) 09:25:24 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = dup2(r0, r0) ioctl$PIO_UNIMAP(r1, 0x5424, &(0x7f0000000e00)={0x0, 0x0}) 09:25:24 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x1c, r1, 0x3ab, 0x0, 0x0, {{}, {@void, @val={0x8}, @void}}}, 0x1c}}, 0x0) 09:25:24 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0) ioctl$KDGKBLED(0xffffffffffffffff, 0x4b64, &(0x7f0000000140)) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xce, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000001, 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000580)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x240, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000440008000f801", 0x17}, {&(0x7f0000000340)="53595a4b414c4c45522020080000eb80325132510000eb80325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c453020202020202010", 0x4c, 0xa00}], 0x0, &(0x7f0000000080)) perf_event_open(&(0x7f00000002c0)={0x4, 0x80, 0x0, 0x80, 0x95, 0x7, 0x0, 0x4, 0x24828, 0x6, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_bp={&(0x7f00000001c0), 0xc}, 0x1417a, 0x8, 0xffff, 0x7, 0xe40, 0x0, 0x8000, 0x0, 0x3, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r0, 0x3) perf_event_open(&(0x7f0000000240)={0x4, 0x80, 0x1f, 0x3, 0x79, 0x6, 0x0, 0x100000000, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x2, @perf_config_ext={0x7, 0x8}, 0x2a0, 0x2f, 0x8542, 0x0, 0xfff, 0x200, 0x8, 0x0, 0x6, 0x0, 0x6335}, 0xffffffffffffffff, 0x6, r0, 0x9) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$VT_RESIZE(r2, 0x4b47, &(0x7f0000000000)={0x0, 0x8001}) open_tree(r1, &(0x7f0000000180)='./file0\x00', 0x80100) getresgid(&(0x7f0000000540), &(0x7f00000032c0), &(0x7f0000003300)) 09:25:24 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x18, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}}, 0x0) 09:25:24 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) name_to_handle_at(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, 0x0) 09:25:25 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) name_to_handle_at(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, 0x0) 09:25:25 executing program 0: msgrcv(0x0, 0x0, 0x0, 0xbcdaa6e12aa5634d, 0x0) [ 362.197039] loop5: detected capacity change from 0 to 10 09:25:25 executing program 6: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000340)=0xeed, 0x4) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x1ff, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4) 09:25:25 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x1c, r1, 0x3ab, 0x0, 0x0, {{}, {@void, @val={0x8}, @void}}}, 0x1c}}, 0x0) 09:25:25 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) sendmmsg$inet6(r1, &(0x7f0000000700)=[{{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @remote}, 0x1c, 0x0, 0x0, &(0x7f00000006c0)=[@pktinfo={{0x24, 0x29, 0x32, {@ipv4={'\x00', '\xff\xff', @broadcast}}}}], 0x28}}], 0x1, 0x0) 09:25:25 executing program 7: getrusage(0x1, &(0x7f0000000000)) VM DIAGNOSIS: 09:25:15 Registers: info registers vcpu 0 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff8263f685 RDI=ffffffff8866f580 RBP=ffffffff8866f540 RSP=ffff88806ce09080 R8 =0000000000000000 R9 =ffffed1001d42046 R10=0000000000000031 R11=7371726964726168 R12=0000000000000031 R13=ffffffff8866f540 R14=0000000000000010 R15=ffffffff8263f670 RIP=ffffffff8263f6dd RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f7ffe139700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6f053f7998 CR3=000000003e77a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004125a60000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=00000000000af8ab RBX=0000000000000001 RCX=ffffffff84839b17 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff812ae2ca RBP=dffffc0000000000 RSP=ffff8880096c7e68 R8 =0000000000000001 R9 =ffffed100d9e6cba R10=ffff88806cf365d3 R11=0000000000000000 R12=ffffffff863f7790 R13=1ffff110012d8fd2 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8483aabe RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055a90dbc57c0 CR3=000000001aef2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004125a60000000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000