Warning: Permanently added '[localhost]:15780' (ECDSA) to the list of known hosts. 2023/03/27 12:41:36 fuzzer started 2023/03/27 12:41:36 dialing manager at localhost:45291 syzkaller login: [ 35.039333] cgroup: Unknown subsys name 'net' [ 35.132499] cgroup: Unknown subsys name 'rlimit' 2023/03/27 12:41:50 syscalls: 2217 2023/03/27 12:41:50 code coverage: enabled 2023/03/27 12:41:50 comparison tracing: enabled 2023/03/27 12:41:50 extra coverage: enabled 2023/03/27 12:41:50 setuid sandbox: enabled 2023/03/27 12:41:50 namespace sandbox: enabled 2023/03/27 12:41:50 Android sandbox: enabled 2023/03/27 12:41:50 fault injection: enabled 2023/03/27 12:41:50 leak checking: enabled 2023/03/27 12:41:50 net packet injection: enabled 2023/03/27 12:41:50 net device setup: enabled 2023/03/27 12:41:50 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2023/03/27 12:41:50 devlink PCI setup: PCI device 0000:00:10.0 is not available 2023/03/27 12:41:50 USB emulation: enabled 2023/03/27 12:41:50 hci packet injection: enabled 2023/03/27 12:41:50 wifi device emulation: enabled 2023/03/27 12:41:50 802.15.4 emulation: enabled 2023/03/27 12:41:50 fetching corpus: 0, signal 0/2000 (executing program) 2023/03/27 12:41:50 fetching corpus: 46, signal 27126/30741 (executing program) 2023/03/27 12:41:50 fetching corpus: 96, signal 45736/50759 (executing program) 2023/03/27 12:41:50 fetching corpus: 146, signal 57667/64020 (executing program) 2023/03/27 12:41:50 fetching corpus: 196, signal 64922/72588 (executing program) 2023/03/27 12:41:51 fetching corpus: 246, signal 71996/80904 (executing program) 2023/03/27 12:41:51 fetching corpus: 295, signal 79691/89697 (executing program) 2023/03/27 12:41:51 fetching corpus: 344, signal 85333/96419 (executing program) 2023/03/27 12:41:51 fetching corpus: 394, signal 88656/100906 (executing program) 2023/03/27 12:41:51 fetching corpus: 444, signal 92252/105621 (executing program) 2023/03/27 12:41:51 fetching corpus: 494, signal 95956/110394 (executing program) 2023/03/27 12:41:51 fetching corpus: 544, signal 100004/115376 (executing program) 2023/03/27 12:41:52 fetching corpus: 594, signal 104512/120779 (executing program) 2023/03/27 12:41:52 fetching corpus: 643, signal 106833/124122 (executing program) 2023/03/27 12:41:52 fetching corpus: 693, signal 108906/127209 (executing program) 2023/03/27 12:41:52 fetching corpus: 743, signal 112509/131635 (executing program) 2023/03/27 12:41:52 fetching corpus: 793, signal 115006/134966 (executing program) 2023/03/27 12:41:52 fetching corpus: 842, signal 117546/138274 (executing program) 2023/03/27 12:41:52 fetching corpus: 892, signal 120749/142207 (executing program) 2023/03/27 12:41:52 fetching corpus: 942, signal 122920/145209 (executing program) 2023/03/27 12:41:52 fetching corpus: 992, signal 125727/148703 (executing program) 2023/03/27 12:41:52 fetching corpus: 1042, signal 128129/151786 (executing program) 2023/03/27 12:41:53 fetching corpus: 1092, signal 131589/155756 (executing program) 2023/03/27 12:41:53 fetching corpus: 1142, signal 133246/158198 (executing program) 2023/03/27 12:41:53 fetching corpus: 1192, signal 135968/161478 (executing program) 2023/03/27 12:41:53 fetching corpus: 1242, signal 137907/164104 (executing program) 2023/03/27 12:41:53 fetching corpus: 1292, signal 140070/166842 (executing program) 2023/03/27 12:41:53 fetching corpus: 1342, signal 142510/169746 (executing program) 2023/03/27 12:41:53 fetching corpus: 1392, signal 144041/171914 (executing program) 2023/03/27 12:41:53 fetching corpus: 1442, signal 145472/173994 (executing program) 2023/03/27 12:41:54 fetching corpus: 1491, signal 147328/176408 (executing program) 2023/03/27 12:41:54 fetching corpus: 1541, signal 150252/179663 (executing program) 2023/03/27 12:41:54 fetching corpus: 1591, signal 151851/181800 (executing program) 2023/03/27 12:41:54 fetching corpus: 1641, signal 153697/184115 (executing program) 2023/03/27 12:41:54 fetching corpus: 1691, signal 154734/185788 (executing program) 2023/03/27 12:41:54 fetching corpus: 1741, signal 156143/187637 (executing program) 2023/03/27 12:41:54 fetching corpus: 1791, signal 157707/189726 (executing program) 2023/03/27 12:41:54 fetching corpus: 1841, signal 159284/191712 (executing program) 2023/03/27 12:41:55 fetching corpus: 1891, signal 160853/193694 (executing program) 2023/03/27 12:41:55 fetching corpus: 1941, signal 162236/195551 (executing program) 2023/03/27 12:41:55 fetching corpus: 1991, signal 165130/198426 (executing program) 2023/03/27 12:41:55 fetching corpus: 2041, signal 166088/199921 (executing program) 2023/03/27 12:41:55 fetching corpus: 2091, signal 167241/201532 (executing program) 2023/03/27 12:41:55 fetching corpus: 2141, signal 168575/203238 (executing program) 2023/03/27 12:41:55 fetching corpus: 2191, signal 169660/204772 (executing program) 2023/03/27 12:41:55 fetching corpus: 2241, signal 170725/206209 (executing program) 2023/03/27 12:41:55 fetching corpus: 2291, signal 172045/207884 (executing program) 2023/03/27 12:41:56 fetching corpus: 2341, signal 173123/209382 (executing program) 2023/03/27 12:41:56 fetching corpus: 2391, signal 174230/210862 (executing program) 2023/03/27 12:41:56 fetching corpus: 2441, signal 175659/212509 (executing program) 2023/03/27 12:41:56 fetching corpus: 2491, signal 176375/213720 (executing program) 2023/03/27 12:41:56 fetching corpus: 2541, signal 177948/215505 (executing program) 2023/03/27 12:41:56 fetching corpus: 2591, signal 179158/216972 (executing program) 2023/03/27 12:41:56 fetching corpus: 2641, signal 180325/218435 (executing program) 2023/03/27 12:41:57 fetching corpus: 2691, signal 181563/219840 (executing program) 2023/03/27 12:41:57 fetching corpus: 2741, signal 182553/221146 (executing program) 2023/03/27 12:41:57 fetching corpus: 2791, signal 183575/222454 (executing program) 2023/03/27 12:41:57 fetching corpus: 2841, signal 184502/223701 (executing program) 2023/03/27 12:41:57 fetching corpus: 2891, signal 185229/224796 (executing program) 2023/03/27 12:41:57 fetching corpus: 2941, signal 185957/225867 (executing program) 2023/03/27 12:41:57 fetching corpus: 2991, signal 186624/226904 (executing program) 2023/03/27 12:41:57 fetching corpus: 3041, signal 187646/228109 (executing program) 2023/03/27 12:41:58 fetching corpus: 3091, signal 188391/229143 (executing program) 2023/03/27 12:41:58 fetching corpus: 3141, signal 189369/230351 (executing program) 2023/03/27 12:41:58 fetching corpus: 3191, signal 190190/231421 (executing program) 2023/03/27 12:41:58 fetching corpus: 3241, signal 191203/232606 (executing program) 2023/03/27 12:41:58 fetching corpus: 3291, signal 191935/233635 (executing program) 2023/03/27 12:41:58 fetching corpus: 3341, signal 192709/234676 (executing program) 2023/03/27 12:41:58 fetching corpus: 3390, signal 193953/235865 (executing program) 2023/03/27 12:41:58 fetching corpus: 3440, signal 194613/236762 (executing program) 2023/03/27 12:41:59 fetching corpus: 3490, signal 195605/237845 (executing program) 2023/03/27 12:41:59 fetching corpus: 3540, signal 196679/238996 (executing program) 2023/03/27 12:41:59 fetching corpus: 3590, signal 197620/240028 (executing program) 2023/03/27 12:41:59 fetching corpus: 3640, signal 198217/240921 (executing program) 2023/03/27 12:41:59 fetching corpus: 3690, signal 199232/241975 (executing program) 2023/03/27 12:41:59 fetching corpus: 3739, signal 200067/242941 (executing program) 2023/03/27 12:41:59 fetching corpus: 3789, signal 200551/243735 (executing program) 2023/03/27 12:41:59 fetching corpus: 3839, signal 201162/244586 (executing program) 2023/03/27 12:41:59 fetching corpus: 3889, signal 202068/245534 (executing program) 2023/03/27 12:42:00 fetching corpus: 3939, signal 202678/246362 (executing program) 2023/03/27 12:42:00 fetching corpus: 3989, signal 203187/247139 (executing program) 2023/03/27 12:42:00 fetching corpus: 4039, signal 204012/248013 (executing program) 2023/03/27 12:42:00 fetching corpus: 4089, signal 204831/248875 (executing program) 2023/03/27 12:42:00 fetching corpus: 4139, signal 205486/249709 (executing program) 2023/03/27 12:42:00 fetching corpus: 4189, signal 206279/250542 (executing program) 2023/03/27 12:42:00 fetching corpus: 4238, signal 206913/251281 (executing program) 2023/03/27 12:42:00 fetching corpus: 4288, signal 207451/252020 (executing program) 2023/03/27 12:42:00 fetching corpus: 4338, signal 207888/252686 (executing program) 2023/03/27 12:42:01 fetching corpus: 4388, signal 208806/253546 (executing program) 2023/03/27 12:42:01 fetching corpus: 4438, signal 209629/254361 (executing program) 2023/03/27 12:42:01 fetching corpus: 4487, signal 210247/255089 (executing program) 2023/03/27 12:42:01 fetching corpus: 4537, signal 210918/255809 (executing program) 2023/03/27 12:42:01 fetching corpus: 4587, signal 211557/256486 (executing program) 2023/03/27 12:42:01 fetching corpus: 4637, signal 212239/257172 (executing program) 2023/03/27 12:42:01 fetching corpus: 4686, signal 212723/257799 (executing program) 2023/03/27 12:42:01 fetching corpus: 4736, signal 213320/258489 (executing program) 2023/03/27 12:42:01 fetching corpus: 4785, signal 214061/259183 (executing program) 2023/03/27 12:42:02 fetching corpus: 4835, signal 214605/259816 (executing program) 2023/03/27 12:42:02 fetching corpus: 4885, signal 215040/260401 (executing program) 2023/03/27 12:42:02 fetching corpus: 4935, signal 215669/261067 (executing program) 2023/03/27 12:42:02 fetching corpus: 4985, signal 216412/261728 (executing program) 2023/03/27 12:42:02 fetching corpus: 5035, signal 217251/262382 (executing program) 2023/03/27 12:42:02 fetching corpus: 5085, signal 217962/263006 (executing program) 2023/03/27 12:42:02 fetching corpus: 5135, signal 218366/263540 (executing program) 2023/03/27 12:42:02 fetching corpus: 5185, signal 218884/264117 (executing program) 2023/03/27 12:42:02 fetching corpus: 5235, signal 219297/264606 (executing program) 2023/03/27 12:42:03 fetching corpus: 5285, signal 219804/265149 (executing program) 2023/03/27 12:42:03 fetching corpus: 5335, signal 220708/265802 (executing program) 2023/03/27 12:42:03 fetching corpus: 5384, signal 221099/266290 (executing program) 2023/03/27 12:42:03 fetching corpus: 5434, signal 221578/266792 (executing program) 2023/03/27 12:42:03 fetching corpus: 5483, signal 222041/267280 (executing program) 2023/03/27 12:42:03 fetching corpus: 5533, signal 222400/267748 (executing program) 2023/03/27 12:42:03 fetching corpus: 5583, signal 223054/268319 (executing program) 2023/03/27 12:42:03 fetching corpus: 5633, signal 223752/268831 (executing program) 2023/03/27 12:42:04 fetching corpus: 5683, signal 224430/269360 (executing program) 2023/03/27 12:42:04 fetching corpus: 5733, signal 224975/269856 (executing program) 2023/03/27 12:42:04 fetching corpus: 5783, signal 225490/270324 (executing program) 2023/03/27 12:42:04 fetching corpus: 5833, signal 226076/270777 (executing program) 2023/03/27 12:42:04 fetching corpus: 5883, signal 226608/271232 (executing program) 2023/03/27 12:42:04 fetching corpus: 5933, signal 227338/271720 (executing program) 2023/03/27 12:42:04 fetching corpus: 5983, signal 227756/272182 (executing program) 2023/03/27 12:42:04 fetching corpus: 6032, signal 228164/272606 (executing program) 2023/03/27 12:42:05 fetching corpus: 6082, signal 228821/273029 (executing program) 2023/03/27 12:42:05 fetching corpus: 6132, signal 229387/273428 (executing program) 2023/03/27 12:42:05 fetching corpus: 6182, signal 229933/273862 (executing program) 2023/03/27 12:42:05 fetching corpus: 6232, signal 230633/274312 (executing program) 2023/03/27 12:42:05 fetching corpus: 6281, signal 231020/274710 (executing program) 2023/03/27 12:42:05 fetching corpus: 6331, signal 231541/275118 (executing program) 2023/03/27 12:42:05 fetching corpus: 6381, signal 232020/275496 (executing program) 2023/03/27 12:42:05 fetching corpus: 6431, signal 232614/275862 (executing program) 2023/03/27 12:42:06 fetching corpus: 6481, signal 233103/276220 (executing program) 2023/03/27 12:42:06 fetching corpus: 6531, signal 233542/276593 (executing program) 2023/03/27 12:42:06 fetching corpus: 6580, signal 234226/276965 (executing program) 2023/03/27 12:42:06 fetching corpus: 6630, signal 234684/277297 (executing program) 2023/03/27 12:42:06 fetching corpus: 6680, signal 235255/277613 (executing program) 2023/03/27 12:42:06 fetching corpus: 6730, signal 235567/277924 (executing program) 2023/03/27 12:42:06 fetching corpus: 6780, signal 236117/278256 (executing program) 2023/03/27 12:42:07 fetching corpus: 6830, signal 236649/278579 (executing program) 2023/03/27 12:42:07 fetching corpus: 6880, signal 237067/278872 (executing program) 2023/03/27 12:42:07 fetching corpus: 6930, signal 237740/278980 (executing program) 2023/03/27 12:42:07 fetching corpus: 6980, signal 238167/278986 (executing program) 2023/03/27 12:42:07 fetching corpus: 7030, signal 238606/278994 (executing program) 2023/03/27 12:42:07 fetching corpus: 7080, signal 238913/278996 (executing program) 2023/03/27 12:42:07 fetching corpus: 7130, signal 239281/278996 (executing program) 2023/03/27 12:42:07 fetching corpus: 7180, signal 239792/278998 (executing program) 2023/03/27 12:42:07 fetching corpus: 7230, signal 240235/278998 (executing program) 2023/03/27 12:42:08 fetching corpus: 7280, signal 240907/278998 (executing program) 2023/03/27 12:42:08 fetching corpus: 7330, signal 241286/279005 (executing program) 2023/03/27 12:42:08 fetching corpus: 7380, signal 241758/279005 (executing program) 2023/03/27 12:42:08 fetching corpus: 7430, signal 242118/279005 (executing program) 2023/03/27 12:42:08 fetching corpus: 7480, signal 242418/279005 (executing program) 2023/03/27 12:42:08 fetching corpus: 7530, signal 242833/279005 (executing program) 2023/03/27 12:42:08 fetching corpus: 7580, signal 243304/279005 (executing program) 2023/03/27 12:42:08 fetching corpus: 7630, signal 243765/279005 (executing program) 2023/03/27 12:42:09 fetching corpus: 7680, signal 244301/279005 (executing program) 2023/03/27 12:42:09 fetching corpus: 7730, signal 244635/279005 (executing program) 2023/03/27 12:42:09 fetching corpus: 7780, signal 245038/279008 (executing program) 2023/03/27 12:42:09 fetching corpus: 7830, signal 245423/279014 (executing program) 2023/03/27 12:42:09 fetching corpus: 7880, signal 245713/279022 (executing program) 2023/03/27 12:42:09 fetching corpus: 7930, signal 246198/279022 (executing program) 2023/03/27 12:42:09 fetching corpus: 7980, signal 246726/279022 (executing program) 2023/03/27 12:42:09 fetching corpus: 8030, signal 247205/279029 (executing program) 2023/03/27 12:42:09 fetching corpus: 8080, signal 247512/279029 (executing program) 2023/03/27 12:42:10 fetching corpus: 8130, signal 247880/279029 (executing program) 2023/03/27 12:42:10 fetching corpus: 8180, signal 248328/279029 (executing program) 2023/03/27 12:42:10 fetching corpus: 8230, signal 248674/279044 (executing program) 2023/03/27 12:42:10 fetching corpus: 8280, signal 249292/279045 (executing program) 2023/03/27 12:42:10 fetching corpus: 8330, signal 249752/279045 (executing program) 2023/03/27 12:42:10 fetching corpus: 8380, signal 250164/279048 (executing program) 2023/03/27 12:42:10 fetching corpus: 8430, signal 250630/279048 (executing program) 2023/03/27 12:42:10 fetching corpus: 8480, signal 250952/279048 (executing program) 2023/03/27 12:42:10 fetching corpus: 8530, signal 251207/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8580, signal 251608/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8630, signal 251941/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8680, signal 252354/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8730, signal 252558/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8780, signal 252856/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8830, signal 253302/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8880, signal 253623/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8930, signal 253934/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 8980, signal 254355/279048 (executing program) 2023/03/27 12:42:11 fetching corpus: 9030, signal 254772/279049 (executing program) 2023/03/27 12:42:12 fetching corpus: 9080, signal 255164/279049 (executing program) 2023/03/27 12:42:12 fetching corpus: 9130, signal 255547/279049 (executing program) 2023/03/27 12:42:12 fetching corpus: 9179, signal 255861/279049 (executing program) 2023/03/27 12:42:12 fetching corpus: 9229, signal 256165/279049 (executing program) 2023/03/27 12:42:12 fetching corpus: 9279, signal 256517/279049 (executing program) 2023/03/27 12:42:12 fetching corpus: 9329, signal 256915/279049 (executing program) 2023/03/27 12:42:12 fetching corpus: 9379, signal 257397/279049 (executing program) 2023/03/27 12:42:12 fetching corpus: 9429, signal 257632/279049 (executing program) 2023/03/27 12:42:13 fetching corpus: 9479, signal 258054/279049 (executing program) 2023/03/27 12:42:13 fetching corpus: 9529, signal 258442/279049 (executing program) 2023/03/27 12:42:13 fetching corpus: 9579, signal 258842/279049 (executing program) 2023/03/27 12:42:13 fetching corpus: 9628, signal 259944/279049 (executing program) 2023/03/27 12:42:13 fetching corpus: 9678, signal 260230/279049 (executing program) 2023/03/27 12:42:13 fetching corpus: 9728, signal 260542/279051 (executing program) 2023/03/27 12:42:13 fetching corpus: 9776, signal 260877/279052 (executing program) 2023/03/27 12:42:13 fetching corpus: 9826, signal 261202/279052 (executing program) 2023/03/27 12:42:13 fetching corpus: 9876, signal 261532/279052 (executing program) 2023/03/27 12:42:14 fetching corpus: 9926, signal 261793/279053 (executing program) 2023/03/27 12:42:14 fetching corpus: 9976, signal 262576/279053 (executing program) 2023/03/27 12:42:14 fetching corpus: 10026, signal 263130/279053 (executing program) 2023/03/27 12:42:14 fetching corpus: 10076, signal 263465/279053 (executing program) 2023/03/27 12:42:14 fetching corpus: 10126, signal 263718/279056 (executing program) 2023/03/27 12:42:14 fetching corpus: 10176, signal 264143/279061 (executing program) 2023/03/27 12:42:14 fetching corpus: 10226, signal 264531/279061 (executing program) 2023/03/27 12:42:14 fetching corpus: 10276, signal 264976/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10325, signal 265311/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10375, signal 265639/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10425, signal 266051/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10475, signal 266444/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10524, signal 266823/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10574, signal 267101/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10624, signal 267324/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10673, signal 267678/279061 (executing program) 2023/03/27 12:42:15 fetching corpus: 10723, signal 268072/279061 (executing program) 2023/03/27 12:42:16 fetching corpus: 10773, signal 268328/279061 (executing program) 2023/03/27 12:42:16 fetching corpus: 10823, signal 268647/279062 (executing program) 2023/03/27 12:42:16 fetching corpus: 10873, signal 268896/279062 (executing program) 2023/03/27 12:42:16 fetching corpus: 10922, signal 269231/279062 (executing program) 2023/03/27 12:42:16 fetching corpus: 10972, signal 269549/279062 (executing program) 2023/03/27 12:42:16 fetching corpus: 11022, signal 269912/279062 (executing program) 2023/03/27 12:42:16 fetching corpus: 11072, signal 270211/279062 (executing program) 2023/03/27 12:42:16 fetching corpus: 11122, signal 270475/279062 (executing program) 2023/03/27 12:42:17 fetching corpus: 11172, signal 270733/279062 (executing program) 2023/03/27 12:42:17 fetching corpus: 11222, signal 271075/279062 (executing program) 2023/03/27 12:42:17 fetching corpus: 11272, signal 271392/279062 (executing program) 2023/03/27 12:42:17 fetching corpus: 11322, signal 271638/279062 (executing program) 2023/03/27 12:42:17 fetching corpus: 11372, signal 271941/279067 (executing program) 2023/03/27 12:42:17 fetching corpus: 11422, signal 272364/279067 (executing program) 2023/03/27 12:42:17 fetching corpus: 11472, signal 272578/279067 (executing program) 2023/03/27 12:42:17 fetching corpus: 11522, signal 272783/279067 (executing program) 2023/03/27 12:42:17 fetching corpus: 11572, signal 273027/279067 (executing program) 2023/03/27 12:42:18 fetching corpus: 11622, signal 273386/279070 (executing program) 2023/03/27 12:42:18 fetching corpus: 11672, signal 273707/279075 (executing program) 2023/03/27 12:42:18 fetching corpus: 11722, signal 273958/279077 (executing program) 2023/03/27 12:42:18 fetching corpus: 11772, signal 274228/279077 (executing program) 2023/03/27 12:42:18 fetching corpus: 11822, signal 274495/279077 (executing program) 2023/03/27 12:42:18 fetching corpus: 11872, signal 274675/279077 (executing program) 2023/03/27 12:42:18 fetching corpus: 11922, signal 274867/279077 (executing program) 2023/03/27 12:42:18 fetching corpus: 11972, signal 275094/279077 (executing program) 2023/03/27 12:42:19 fetching corpus: 12022, signal 275320/279077 (executing program) 2023/03/27 12:42:19 fetching corpus: 12071, signal 275571/279081 (executing program) 2023/03/27 12:42:19 fetching corpus: 12085, signal 275654/279081 (executing program) 2023/03/27 12:42:19 fetching corpus: 12085, signal 275654/279081 (executing program) 2023/03/27 12:42:21 starting 8 fuzzer processes 12:42:21 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 12:42:21 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup(0xffffffffffffffff) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mtu(r0, 0x0, 0x4, 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0) 12:42:21 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000600)='net/packet\x00') pread64(r0, &(0x7f0000000000)=""/186, 0xba, 0x0) 12:42:21 executing program 3: io_setup(0xd29, &(0x7f0000000780)) 12:42:21 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b52, &(0x7f0000000380)={0x0, 0x6}) [ 79.023873] audit: type=1400 audit(1679920941.100:6): avc: denied { execmem } for pid=260 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 12:42:21 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000800)="84", 0x1}], 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x8011) 12:42:21 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x7, 0x0, &(0x7f0000000040)) 12:42:21 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/seq/clients\x00', 0x0, 0x0) preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/116, 0x74}], 0x1, 0x0, 0x0) [ 80.259538] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.260498] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 80.263320] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.263814] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 80.265768] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.266333] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 80.269683] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 80.271283] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 80.272472] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.277712] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.287922] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 80.289678] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 80.321638] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.330451] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 80.332566] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 80.342629] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 80.345842] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 80.348779] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 80.372596] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.374746] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.379431] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.392200] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.402180] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 80.404916] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.469479] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 80.473243] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 80.474489] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 80.476161] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 80.477724] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 80.478767] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 82.338478] Bluetooth: hci0: command 0x0409 tx timeout [ 82.339235] Bluetooth: hci1: command 0x0409 tx timeout [ 82.402083] Bluetooth: hci2: command 0x0409 tx timeout [ 82.466215] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 82.466369] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 82.468410] Bluetooth: hci3: command 0x0409 tx timeout [ 82.469511] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 82.530163] Bluetooth: hci7: command 0x0409 tx timeout [ 84.386090] Bluetooth: hci1: command 0x041b tx timeout [ 84.386484] Bluetooth: hci0: command 0x041b tx timeout [ 84.450197] Bluetooth: hci2: command 0x041b tx timeout [ 84.514105] Bluetooth: hci3: command 0x041b tx timeout [ 84.578060] Bluetooth: hci7: command 0x041b tx timeout [ 86.145831] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 86.148098] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 86.149764] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 86.152151] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 86.153803] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 86.154853] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 86.227835] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 86.237556] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 86.238872] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 86.241754] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 86.248217] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 86.250472] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 86.435103] Bluetooth: hci0: command 0x040f tx timeout [ 86.435122] Bluetooth: hci1: command 0x040f tx timeout [ 86.499054] Bluetooth: hci2: command 0x040f tx timeout [ 86.563049] Bluetooth: hci3: command 0x040f tx timeout [ 86.627050] Bluetooth: hci7: command 0x040f tx timeout [ 87.522140] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 88.226078] Bluetooth: hci5: command 0x0409 tx timeout [ 88.290086] Bluetooth: hci6: command 0x0409 tx timeout [ 88.482057] Bluetooth: hci1: command 0x0419 tx timeout [ 88.483108] Bluetooth: hci0: command 0x0419 tx timeout [ 88.547093] Bluetooth: hci2: command 0x0419 tx timeout [ 88.611055] Bluetooth: hci3: command 0x0419 tx timeout [ 88.675452] Bluetooth: hci7: command 0x0419 tx timeout [ 90.262954] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 90.264515] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 90.265897] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 90.272199] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 90.275053] Bluetooth: hci5: command 0x041b tx timeout [ 90.275188] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 90.277938] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 90.339087] Bluetooth: hci6: command 0x041b tx timeout [ 92.323099] Bluetooth: hci5: command 0x040f tx timeout [ 92.323107] Bluetooth: hci4: command 0x0409 tx timeout [ 92.387100] Bluetooth: hci6: command 0x040f tx timeout [ 94.370083] Bluetooth: hci5: command 0x0419 tx timeout [ 94.370097] Bluetooth: hci4: command 0x041b tx timeout [ 94.434054] Bluetooth: hci6: command 0x0419 tx timeout [ 96.418074] Bluetooth: hci4: command 0x040f tx timeout [ 98.466097] Bluetooth: hci4: command 0x0419 tx timeout [ 124.792521] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.793131] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.794743] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 124.946079] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 124.946667] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 124.947904] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 125.083461] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.085159] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.087617] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 125.369475] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.370154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.371494] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 125.507616] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.508256] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.509605] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 125.680451] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.680630] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.681373] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.682299] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.684669] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 125.687573] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 125.836805] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 125.837451] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 125.840233] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 12:43:08 executing program 1: r0 = syz_io_uring_setup(0x35c3, &(0x7f0000000180), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000200)) io_uring_register$IORING_REGISTER_FILES(r0, 0x13, &(0x7f0000000000)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2) 12:43:08 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw6\x00') pread64(r0, &(0x7f0000000080)=""/202, 0xca, 0x0) 12:43:08 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) r2 = signalfd4(r1, &(0x7f0000000100)={[0x5]}, 0x8, 0x100800) recvmsg$unix(r2, &(0x7f0000000180)={&(0x7f0000000480), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000500)=""/220, 0xdc}, {&(0x7f0000000600)=""/124, 0x7c}, {&(0x7f0000000680)=""/110, 0x6e}, {&(0x7f0000000700)=""/99, 0x63}, {&(0x7f0000000780)=""/196, 0xc4}, {&(0x7f0000000880)=""/94, 0x5e}], 0x6, &(0x7f0000000980)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001400000040000000010000000200e400", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x0) sendfile(r0, r2, &(0x7f0000000000)=0x100000000, 0x5) open$dir(&(0x7f0000000040)='./file1\x00', 0x101000, 0x1e) syz_open_dev$tty20(0xc, 0x4, 0x1) [ 126.356440] audit: type=1400 audit(1679920988.431:7): avc: denied { open } for pid=3642 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.359705] audit: type=1400 audit(1679920988.432:8): avc: denied { kernel } for pid=3642 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.470860] general protection fault, probably for non-canonical address 0xdffffc0004000008: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 126.470881] KASAN: probably user-memory-access in range [0x0000000020000040-0x0000000020000047] [ 126.470893] CPU: 0 PID: 3652 Comm: syz-executor.7 Not tainted 6.3.0-rc3-next-20230327 #1 [ 126.470910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 126.470918] RIP: 0010:do_iter_read+0x481/0x750 [ 126.470944] Code: 00 0f 85 52 02 00 00 4d 8b 7c 24 28 e8 48 2c c6 ff 48 8b 44 24 18 80 38 00 0f 85 1c 02 00 00 48 8b 43 18 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 ef 01 00 00 48 8b 4c 24 20 48 8b 30 80 39 00 [ 126.470959] RSP: 0018:ffff888042acfc78 EFLAGS: 00010212 [ 126.470972] RAX: 0000000020000040 RBX: ffff888042acfd60 RCX: ffffc90004a02000 [ 126.470983] RDX: 0000000004000008 RSI: ffffffff81855c98 RDI: 0000000000000007 [ 126.470993] RBP: 0000000000000074 R08: 0000000000000007 R09: 0000000000000000 [ 126.471006] R10: 0000000000000074 R11: 0000000000000001 R12: ffff88803da39680 [ 126.471015] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffffff8491de20 [ 126.471027] FS: 00007f9bc9654700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 126.471041] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.471053] CR2: 0000001b2c621000 CR3: 0000000041f64000 CR4: 0000000000350ef0 [ 126.471064] Call Trace: [ 126.471067] [ 126.471075] ? import_iovec+0x87/0xb0 [ 126.471094] vfs_readv+0xe5/0x160 [ 126.471112] ? __pfx_vfs_readv+0x10/0x10 [ 126.471130] ? __fget_files+0x24e/0x480 [ 126.471145] ? lock_release+0x1e3/0x680 [ 126.471175] ? __fget_files+0x270/0x480 [ 126.471193] __x64_sys_preadv+0x233/0x310 [ 126.471215] ? __pfx___x64_sys_preadv+0x10/0x10 [ 126.471238] ? lockdep_hardirqs_on_prepare+0x27b/0x3f0 [ 126.471264] do_syscall_64+0x3f/0x90 [ 126.471281] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 126.471300] RIP: 0033:0x7f9bcc0deb19 [ 126.471310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.471325] RSP: 002b:00007f9bc9654188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 126.471339] RAX: ffffffffffffffda RBX: 00007f9bcc1f1f60 RCX: 00007f9bcc0deb19 [ 126.471349] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000004 [ 126.471358] RBP: 00007f9bcc138f6d R08: 0000000000000000 R09: 0000000000000000 [ 126.471368] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 126.471377] R13: 00007fff74c64ecf R14: 00007f9bc9654300 R15: 0000000000022000 [ 126.471392] [ 126.471396] Modules linked in: [ 126.471432] ---[ end trace 0000000000000000 ]--- [ 126.471439] RIP: 0010:do_iter_read+0x481/0x750 [ 126.471460] Code: 00 0f 85 52 02 00 00 4d 8b 7c 24 28 e8 48 2c c6 ff 48 8b 44 24 18 80 38 00 0f 85 1c 02 00 00 48 8b 43 18 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 ef 01 00 00 48 8b 4c 24 20 48 8b 30 80 39 00 [ 126.471475] RSP: 0018:ffff888042acfc78 EFLAGS: 00010212 [ 126.471488] RAX: 0000000020000040 RBX: ffff888042acfd60 RCX: ffffc90004a02000 [ 126.471500] RDX: 0000000004000008 RSI: ffffffff81855c98 RDI: 0000000000000007 [ 126.471511] RBP: 0000000000000074 R08: 0000000000000007 R09: 0000000000000000 [ 126.471521] R10: 0000000000000074 R11: 0000000000000001 R12: ffff88803da39680 [ 126.471532] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffffff8491de20 [ 126.471544] FS: 00007f9bc9654700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 126.471559] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.471571] CR2: 0000001b2c621000 CR3: 0000000041f64000 CR4: 0000000000350ef0 12:43:08 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) r2 = signalfd4(r1, &(0x7f0000000100)={[0x5]}, 0x8, 0x100800) recvmsg$unix(r2, &(0x7f0000000180)={&(0x7f0000000480), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000500)=""/220, 0xdc}, {&(0x7f0000000600)=""/124, 0x7c}, {&(0x7f0000000680)=""/110, 0x6e}, {&(0x7f0000000700)=""/99, 0x63}, {&(0x7f0000000780)=""/196, 0xc4}, {&(0x7f0000000880)=""/94, 0x5e}], 0x6, &(0x7f0000000980)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001400000040000000010000000200e400", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x0) sendfile(r0, r2, &(0x7f0000000000)=0x100000000, 0x5) open$dir(&(0x7f0000000040)='./file1\x00', 0x101000, 0x1e) syz_open_dev$tty20(0xc, 0x4, 0x1) 12:43:08 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) r2 = signalfd4(r1, &(0x7f0000000100)={[0x5]}, 0x8, 0x100800) recvmsg$unix(r2, &(0x7f0000000180)={&(0x7f0000000480), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000500)=""/220, 0xdc}, {&(0x7f0000000600)=""/124, 0x7c}, {&(0x7f0000000680)=""/110, 0x6e}, {&(0x7f0000000700)=""/99, 0x63}, {&(0x7f0000000780)=""/196, 0xc4}, {&(0x7f0000000880)=""/94, 0x5e}], 0x6, &(0x7f0000000980)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001400000040000000010000000200e400", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x0) sendfile(r0, r2, &(0x7f0000000000)=0x100000000, 0x5) open$dir(&(0x7f0000000040)='./file1\x00', 0x101000, 0x1e) syz_open_dev$tty20(0xc, 0x4, 0x1) [ 126.817158] ieee80211 phy10: Selected rate control algorithm 'minstrel_ht' [ 126.839879] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.840395] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.840996] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 126.849670] ieee80211 phy11: Selected rate control algorithm 'minstrel_ht' [ 126.881993] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 126.882774] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 126.883411] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 127.982903] ieee80211 phy12: Selected rate control algorithm 'minstrel_ht' [ 127.996176] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 127.996665] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 127.997652] ieee80211 phy13: Selected rate control algorithm 'minstrel_ht' [ 127.998351] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 128.013250] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.013724] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.014825] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 128.021419] ieee80211 phy14: Selected rate control algorithm 'minstrel_ht' [ 128.035101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.035590] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.036683] ieee80211 phy15: Selected rate control algorithm 'minstrel_ht' [ 128.037177] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 128.052828] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 128.053328] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 128.053884] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 130.368900] ieee80211 phy16: Selected rate control algorithm 'minstrel_ht' [ 130.389650] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.390721] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.391421] ieee80211 phy17: Selected rate control algorithm 'minstrel_ht' [ 130.392475] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 130.417224] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 130.418243] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 130.419274] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 12:43:12 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 12:43:12 executing program 3: pkey_mprotect(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xc, 0xffffffffffffffff) mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0) 12:43:12 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) r2 = signalfd4(r1, &(0x7f0000000100)={[0x5]}, 0x8, 0x100800) recvmsg$unix(r2, &(0x7f0000000180)={&(0x7f0000000480), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000500)=""/220, 0xdc}, {&(0x7f0000000600)=""/124, 0x7c}, {&(0x7f0000000680)=""/110, 0x6e}, {&(0x7f0000000700)=""/99, 0x63}, {&(0x7f0000000780)=""/196, 0xc4}, {&(0x7f0000000880)=""/94, 0x5e}], 0x6, &(0x7f0000000980)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001400000040000000010000000200e400", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x0) sendfile(r0, r2, &(0x7f0000000000)=0x100000000, 0x5) open$dir(&(0x7f0000000040)='./file1\x00', 0x101000, 0x1e) syz_open_dev$tty20(0xc, 0x4, 0x1) 12:43:12 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) r2 = signalfd4(r1, &(0x7f0000000100)={[0x5]}, 0x8, 0x100800) recvmsg$unix(r2, &(0x7f0000000180)={&(0x7f0000000480), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000500)=""/220, 0xdc}, {&(0x7f0000000600)=""/124, 0x7c}, {&(0x7f0000000680)=""/110, 0x6e}, {&(0x7f0000000700)=""/99, 0x63}, {&(0x7f0000000780)=""/196, 0xc4}, {&(0x7f0000000880)=""/94, 0x5e}], 0x6, &(0x7f0000000980)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001400000040000000010000000200e400", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x0) sendfile(r0, r2, &(0x7f0000000000)=0x100000000, 0x5) open$dir(&(0x7f0000000040)='./file1\x00', 0x101000, 0x1e) syz_open_dev$tty20(0xc, 0x4, 0x1) 12:43:12 executing program 4: perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x79, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$netlink(0x10, 0x3, 0xe) 12:43:12 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/seq/clients\x00', 0x0, 0x0) preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/116, 0x74}], 0x1, 0x0, 0x0) 12:43:12 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)={0x2c, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x4}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x2c}}, 0x0) 12:43:12 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4c8f, &(0x7f0000000080), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_FILES(r0, 0x18, &(0x7f0000000140)=[0xffffffffffffffff], 0x1) [ 130.777411] general protection fault, probably for non-canonical address 0xdffffc0004000008: 0000 [#2] PREEMPT SMP KASAN NOPTI [ 130.778965] KASAN: probably user-memory-access in range [0x0000000020000040-0x0000000020000047] [ 130.780066] CPU: 1 PID: 3954 Comm: syz-executor.7 Tainted: G D 6.3.0-rc3-next-20230327 #1 [ 130.781290] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 130.782350] RIP: 0010:do_iter_read+0x481/0x750 [ 130.782972] Code: 00 0f 85 52 02 00 00 4d 8b 7c 24 28 e8 48 2c c6 ff 48 8b 44 24 18 80 38 00 0f 85 1c 02 00 00 48 8b 43 18 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 ef 01 00 00 48 8b 4c 24 20 48 8b 30 80 39 00 [ 130.785259] RSP: 0018:ffff8880415e7c78 EFLAGS: 00010212 [ 130.785939] RAX: 0000000020000040 RBX: ffff8880415e7d60 RCX: ffffc90004a02000 [ 130.786861] RDX: 0000000004000008 RSI: ffffffff81855c98 RDI: 0000000000000007 [ 130.787774] RBP: 0000000000000074 R08: 0000000000000007 R09: 0000000000000000 [ 130.788694] R10: 0000000000000074 R11: 0000000000000001 R12: ffff8880145c3400 [ 130.789643] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffffff8491de20 [ 130.790603] FS: 00007f9bc9654700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 130.791664] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.792443] CR2: 0000001b2c623000 CR3: 000000001c980000 CR4: 0000000000350ee0 [ 130.793402] Call Trace: [ 130.793757] [ 130.794088] ? import_iovec+0x87/0xb0 [ 130.794629] vfs_readv+0xe5/0x160 [ 130.795133] ? __pfx_vfs_readv+0x10/0x10 [ 130.795699] ? __fget_files+0x24e/0x480 [ 130.796249] ? lock_release+0x4d8/0x680 [ 130.796818] ? kmem_cache_free+0xff/0x4a0 [ 130.797416] ? do_futex+0x13a/0x380 [ 130.797944] ? __fget_files+0x270/0x480 [ 130.798038] hrtimer: interrupt took 34264 ns [ 130.798489] __x64_sys_preadv+0x233/0x310 [ 130.799623] ? __pfx___x64_sys_preadv+0x10/0x10 [ 130.800283] do_syscall_64+0x3f/0x90 [ 130.800811] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 130.801512] RIP: 0033:0x7f9bcc0deb19 [ 130.802041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 130.804382] RSP: 002b:00007f9bc9654188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 130.805361] RAX: ffffffffffffffda RBX: 00007f9bcc1f1f60 RCX: 00007f9bcc0deb19 [ 130.806288] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000004 [ 130.807198] RBP: 00007f9bcc138f6d R08: 0000000000000000 R09: 0000000000000000 [ 130.808111] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 130.809041] R13: 00007fff74c64ecf R14: 00007f9bc9654300 R15: 0000000000022000 [ 130.809977] [ 130.810312] Modules linked in: [ 130.822575] ---[ end trace 0000000000000000 ]--- [ 130.823434] RIP: 0010:do_iter_read+0x481/0x750 [ 130.824106] Code: 00 0f 85 52 02 00 00 4d 8b 7c 24 28 e8 48 2c c6 ff 48 8b 44 24 18 80 38 00 0f 85 1c 02 00 00 48 8b 43 18 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 ef 01 00 00 48 8b 4c 24 20 48 8b 30 80 39 00 [ 130.826450] RSP: 0018:ffff888042acfc78 EFLAGS: 00010212 [ 130.827174] RAX: 0000000020000040 RBX: ffff888042acfd60 RCX: ffffc90004a02000 [ 130.828118] RDX: 0000000004000008 RSI: ffffffff81855c98 RDI: 0000000000000007 [ 130.829066] RBP: 0000000000000074 R08: 0000000000000007 R09: 0000000000000000 [ 130.829983] R10: 0000000000000074 R11: 0000000000000001 R12: ffff88803da39680 [ 130.830973] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffffff8491de20 [ 130.831920] FS: 00007f9bc9654700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 130.832994] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.833780] CR2: 0000001b2c623000 CR3: 000000001c980000 CR4: 0000000000350ee0 12:43:12 executing program 3: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCSWINSZ(r0, 0x5412, &(0x7f0000000000)) 12:43:13 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_EEE_SET(r0, &(0x7f00000004c0)={&(0x7f0000000280), 0xc, &(0x7f0000000480)={0x0}}, 0xc044015) 12:43:13 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) r2 = signalfd4(r1, &(0x7f0000000100)={[0x5]}, 0x8, 0x100800) recvmsg$unix(r2, &(0x7f0000000180)={&(0x7f0000000480), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000500)=""/220, 0xdc}, {&(0x7f0000000600)=""/124, 0x7c}, {&(0x7f0000000680)=""/110, 0x6e}, {&(0x7f0000000700)=""/99, 0x63}, {&(0x7f0000000780)=""/196, 0xc4}, {&(0x7f0000000880)=""/94, 0x5e}], 0x6, &(0x7f0000000980)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001400000040000000010000000200e400", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x0) sendfile(r0, r2, &(0x7f0000000000)=0x100000000, 0x5) open$dir(&(0x7f0000000040)='./file1\x00', 0x101000, 0x1e) syz_open_dev$tty20(0xc, 0x4, 0x1) 12:43:13 executing program 6: keyctl$set_timeout(0xf, 0x0, 0x0) 12:43:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) sendfile(r0, r0, 0x0, 0x100000) r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xc4842, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0x40305839, &(0x7f0000000080)=ANY=[@ANYBLOB="0600000000007cd181000000000000000089"]) 12:43:13 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getrusage(0x0, 0xfffffffffffffffd) 12:43:13 executing program 3: perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x6dc8}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x4, &(0x7f0000001440)=[{&(0x7f0000000000)={0x24, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x2}, @typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x24}], 0x1}, 0x0) [ 131.839938] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 12:43:14 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/seq/clients\x00', 0x0, 0x0) preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/116, 0x74}], 0x1, 0x0, 0x0) 12:43:14 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 12:43:14 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4c8f, &(0x7f0000000080), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_FILES(r0, 0x18, &(0x7f0000000140)=[0xffffffffffffffff], 0x1) 12:43:14 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) getrlimit(0x0, &(0x7f0000000080)) [ 132.342397] general protection fault, probably for non-canonical address 0xdffffc0004000008: 0000 [#3] PREEMPT SMP KASAN NOPTI [ 132.343744] KASAN: probably user-memory-access in range [0x0000000020000040-0x0000000020000047] [ 132.344734] CPU: 1 PID: 3997 Comm: syz-executor.7 Tainted: G D 6.3.0-rc3-next-20230327 #1 [ 132.345796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 132.346731] RIP: 0010:do_iter_read+0x481/0x750 [ 132.347280] Code: 00 0f 85 52 02 00 00 4d 8b 7c 24 28 e8 48 2c c6 ff 48 8b 44 24 18 80 38 00 0f 85 1c 02 00 00 48 8b 43 18 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 ef 01 00 00 48 8b 4c 24 20 48 8b 30 80 39 00 [ 132.349306] RSP: 0018:ffff888042c3fc78 EFLAGS: 00010212 [ 132.349918] RAX: 0000000020000040 RBX: ffff888042c3fd60 RCX: ffffc90004a02000 [ 132.350742] RDX: 0000000004000008 RSI: ffffffff81855c98 RDI: 0000000000000007 [ 132.351571] RBP: 0000000000000074 R08: 0000000000000007 R09: 0000000000000000 [ 132.352378] R10: 0000000000000074 R11: 0000000000000001 R12: ffff8880411c4500 [ 132.353185] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffffff8491de20 [ 132.354000] FS: 00007f9bc9654700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 132.354926] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 132.355586] CR2: 00007f9bcc1f2018 CR3: 000000000fc42000 CR4: 0000000000350ee0 [ 132.356381] Call Trace: [ 132.356679] [ 132.356945] ? import_iovec+0x87/0xb0 [ 132.357393] vfs_readv+0xe5/0x160 [ 132.357805] ? __pfx_vfs_readv+0x10/0x10 [ 132.358298] ? lock_release+0x4d8/0x680 [ 132.358771] ? kmem_cache_free+0xff/0x4a0 [ 132.359266] ? do_futex+0x13a/0x380 [ 132.359714] ? __fget_files+0x270/0x480 [ 132.360188] __x64_sys_preadv+0x233/0x310 [ 132.360675] ? __pfx___x64_sys_preadv+0x10/0x10 [ 132.361230] do_syscall_64+0x3f/0x90 [ 132.361669] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 132.362271] RIP: 0033:0x7f9bcc0deb19 [ 132.362698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 132.364688] RSP: 002b:00007f9bc9654188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 132.365536] RAX: ffffffffffffffda RBX: 00007f9bcc1f1f60 RCX: 00007f9bcc0deb19 [ 132.366342] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000004 [ 132.367148] RBP: 00007f9bcc138f6d R08: 0000000000000000 R09: 0000000000000000 [ 132.367945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 132.368742] R13: 00007fff74c64ecf R14: 00007f9bc9654300 R15: 0000000000022000 [ 132.369554] [ 132.369833] Modules linked in: [ 132.370334] ---[ end trace 0000000000000000 ]--- [ 132.370868] RIP: 0010:do_iter_read+0x481/0x750 [ 132.371433] Code: 00 0f 85 52 02 00 00 4d 8b 7c 24 28 e8 48 2c c6 ff 48 8b 44 24 18 80 38 00 0f 85 1c 02 00 00 48 8b 43 18 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 ef 01 00 00 48 8b 4c 24 20 48 8b 30 80 39 00 [ 132.373449] RSP: 0018:ffff888042acfc78 EFLAGS: 00010212 [ 132.374397] RAX: 0000000020000040 RBX: ffff888042acfd60 RCX: ffffc90004a02000 [ 132.375238] RDX: 0000000004000008 RSI: ffffffff81855c98 RDI: 0000000000000007 [ 132.376047] RBP: 0000000000000074 R08: 0000000000000007 R09: 0000000000000000 [ 132.376842] R10: 0000000000000074 R11: 0000000000000001 R12: ffff88803da39680 [ 132.377651] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffffff8491de20 [ 132.378496] FS: 00007f9bc9654700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 132.379411] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 132.380123] CR2: 00007f9bcc1f2018 CR3: 000000000fc42000 CR4: 0000000000350ee0 12:43:15 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/asound/seq/clients\x00', 0x0, 0x0) preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000040)=""/116, 0x74}], 0x1, 0x0, 0x0) 12:43:15 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$BLKFRASET(0xffffffffffffffff, 0x1264, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) r2 = signalfd4(r1, &(0x7f0000000100)={[0x5]}, 0x8, 0x100800) recvmsg$unix(r2, &(0x7f0000000180)={&(0x7f0000000480), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000500)=""/220, 0xdc}, {&(0x7f0000000600)=""/124, 0x7c}, {&(0x7f0000000680)=""/110, 0x6e}, {&(0x7f0000000700)=""/99, 0x63}, {&(0x7f0000000780)=""/196, 0xc4}, {&(0x7f0000000880)=""/94, 0x5e}], 0x6, &(0x7f0000000980)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001400000040000000010000000200e400", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000034000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x0) sendfile(r0, r2, &(0x7f0000000000)=0x100000000, 0x5) open$dir(&(0x7f0000000040)='./file1\x00', 0x101000, 0x1e) syz_open_dev$tty20(0xc, 0x4, 0x1) 12:43:15 executing program 4: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLK\xa4g?K)\xa0\xf0\x9b8Y\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x05\x00\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\xff#}g\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\x1ae\x80L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x04\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\x01\x00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xee\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\x01\x01\x00\x00\x00\x00\x00\x00\b$\xa2x\x8a\'\xfaj~\xef\x93\xb1/\\\x01\xe2\xaa\x0e\xe3\xf95\x1d\x10\xa7\x97\xbf\x8e\xac\x81\xc9\x13\x8e\xb3\xf3\xb5d\xa1\xcf\x1d\x92\x9b\x9b\xa7\x12F\xa0\xe0\xff\x1a\x8e\xe2ae^=\n\xe1\xa6\xb8\xe9v\x8f2\xf4\xac\xe5\xdf\xffi`Mo\x1e\x1cMN<\x1b\xd8\xfe\xd6P\xcdQ\x83\xfa\xe7\x1d\xd5\x01n\xa7~\x8b\x90/62\xff;.S\xf7\x0flwa\x16\xf0\xf2(\x96V,\xd7s\xaaOE\xd3H\xfd`}\xd8\xbc\x9a\xca\xe3\n\xd7fCe\xd8\xbb\xdao\xb0\x85\xcc\xedv\x94\xb5\xc4\xb6[>\xb9,\xfch_-s\x94,F\x15\xd8m5>\x94\x84\xf5\x00\xc3\xf6m\xc7B\t{\xe0d\xc65(\x18\x9c\xad\x13b6\xca\x16\x95\xcb^zF\xd0\x1a\x8dP\x94\x19\xa4\xbfr=\xb6\xae', 0x2) fcntl$addseals(r0, 0x409, 0x5) fallocate(r0, 0x0, 0x0, 0x400) 12:43:15 executing program 3: perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x6dc8}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x4, &(0x7f0000001440)=[{&(0x7f0000000000)={0x24, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x2}, @typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x24}], 0x1}, 0x0) 12:43:15 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close(r0) 12:43:15 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4c8f, &(0x7f0000000080), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_FILES(r0, 0x18, &(0x7f0000000140)=[0xffffffffffffffff], 0x1) 12:43:15 executing program 1: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_ifreq(r0, 0x8931, &(0x7f00000003c0)={'syz_tun\x00', @ifru_data=&(0x7f0000000380)="e8e6655797ac3b3ff2ae5a3d217efbc45860f885810a818028c5ec22a7694e95"}) 12:43:15 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x3, 0x4) close_range(r0, 0xffffffffffffffff, 0x0) [ 133.245782] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4015 'syz-executor.4' [ 133.306194] general protection fault, probably for non-canonical address 0xdffffc0004000008: 0000 [#4] PREEMPT SMP KASAN NOPTI [ 133.307809] KASAN: probably user-memory-access in range [0x0000000020000040-0x0000000020000047] [ 133.308966] CPU: 0 PID: 4020 Comm: syz-executor.7 Tainted: G D 6.3.0-rc3-next-20230327 #1 [ 133.310282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 133.311327] RIP: 0010:do_iter_read+0x481/0x750 [ 133.311949] Code: 00 0f 85 52 02 00 00 4d 8b 7c 24 28 e8 48 2c c6 ff 48 8b 44 24 18 80 38 00 0f 85 1c 02 00 00 48 8b 43 18 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 ef 01 00 00 48 8b 4c 24 20 48 8b 30 80 39 00 [ 133.314272] RSP: 0018:ffff88804374fc78 EFLAGS: 00010212 [ 133.315011] RAX: 0000000020000040 RBX: ffff88804374fd60 RCX: ffffc90004a02000 [ 133.315993] RDX: 0000000004000008 RSI: ffffffff81855c98 RDI: 0000000000000007 [ 133.316945] RBP: 0000000000000074 R08: 0000000000000007 R09: 0000000000000000 [ 133.317898] R10: 0000000000000074 R11: 0000000000000001 R12: ffff888042998000 [ 133.318883] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffffff8491de20 [ 133.319850] FS: 00007f9bc9654700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 133.320936] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 133.321737] CR2: 0000001b2c622000 CR3: 000000001a4cc000 CR4: 0000000000350ef0 [ 133.322713] Call Trace: [ 133.323074] [ 133.323403] ? import_iovec+0x87/0xb0 [ 133.323950] vfs_readv+0xe5/0x160 [ 133.324433] ? __pfx_vfs_readv+0x10/0x10 [ 133.324966] ? lock_release+0x4d8/0x680 [ 133.325504] ? finish_task_switch.isra.0+0x203/0x830 [ 133.326182] ? trace_hardirqs_on+0x16/0x100 [ 133.326742] ? __schedule+0x995/0x2a00 [ 133.327286] ? __fget_files+0x270/0x480 [ 133.327851] __x64_sys_preadv+0x233/0x310 [ 133.328437] ? __pfx___x64_sys_preadv+0x10/0x10 [ 133.329104] do_syscall_64+0x3f/0x90 [ 133.329625] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 133.330334] RIP: 0033:0x7f9bcc0deb19 [ 133.330841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 133.333175] RSP: 002b:00007f9bc9654188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 133.334177] RAX: ffffffffffffffda RBX: 00007f9bcc1f1f60 RCX: 00007f9bcc0deb19 [ 133.335107] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000004 [ 133.336031] RBP: 00007f9bcc138f6d R08: 0000000000000000 R09: 0000000000000000 [ 133.336954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.337888] R13: 00007fff74c64ecf R14: 00007f9bc9654300 R15: 0000000000022000 [ 133.338870] [ 133.339191] Modules linked in: [ 133.339852] ---[ end trace 0000000000000000 ]--- [ 133.340509] RIP: 0010:do_iter_read+0x481/0x750 [ 133.341187] Code: 00 0f 85 52 02 00 00 4d 8b 7c 24 28 e8 48 2c c6 ff 48 8b 44 24 18 80 38 00 0f 85 1c 02 00 00 48 8b 43 18 48 89 c2 48 c1 ea 03 <42> 80 3c 32 00 0f 85 ef 01 00 00 48 8b 4c 24 20 48 8b 30 80 39 00 [ 133.343493] RSP: 0018:ffff888042acfc78 EFLAGS: 00010212 [ 133.344244] RAX: 0000000020000040 RBX: ffff888042acfd60 RCX: ffffc90004a02000 [ 133.345222] RDX: 0000000004000008 RSI: ffffffff81855c98 RDI: 0000000000000007 [ 133.346205] RBP: 0000000000000074 R08: 0000000000000007 R09: 0000000000000000 [ 133.347169] R10: 0000000000000074 R11: 0000000000000001 R12: ffff88803da39680 [ 133.348159] R13: 0000000000000000 R14: dffffc0000000000 R15: ffffffff8491de20 [ 133.349134] FS: 00007f9bc9654700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 133.350234] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 133.351030] CR2: 0000001b2c622000 CR3: 000000001a4cc000 CR4: 0000000000350ef0 12:43:15 executing program 1: syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), 0xffffffffffffffff) 12:43:15 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x3, 0x4) close_range(r0, 0xffffffffffffffff, 0x0) 12:43:15 executing program 4: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLK\xa4g?K)\xa0\xf0\x9b8Y\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x05\x00\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\xff#}g\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\x1ae\x80L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x04\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\x01\x00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xee\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\x01\x01\x00\x00\x00\x00\x00\x00\b$\xa2x\x8a\'\xfaj~\xef\x93\xb1/\\\x01\xe2\xaa\x0e\xe3\xf95\x1d\x10\xa7\x97\xbf\x8e\xac\x81\xc9\x13\x8e\xb3\xf3\xb5d\xa1\xcf\x1d\x92\x9b\x9b\xa7\x12F\xa0\xe0\xff\x1a\x8e\xe2ae^=\n\xe1\xa6\xb8\xe9v\x8f2\xf4\xac\xe5\xdf\xffi`Mo\x1e\x1cMN<\x1b\xd8\xfe\xd6P\xcdQ\x83\xfa\xe7\x1d\xd5\x01n\xa7~\x8b\x90/62\xff;.S\xf7\x0flwa\x16\xf0\xf2(\x96V,\xd7s\xaaOE\xd3H\xfd`}\xd8\xbc\x9a\xca\xe3\n\xd7fCe\xd8\xbb\xdao\xb0\x85\xcc\xedv\x94\xb5\xc4\xb6[>\xb9,\xfch_-s\x94,F\x15\xd8m5>\x94\x84\xf5\x00\xc3\xf6m\xc7B\t{\xe0d\xc65(\x18\x9c\xad\x13b6\xca\x16\x95\xcb^zF\xd0\x1a\x8dP\x94\x19\xa4\xbfr=\xb6\xae', 0x2) fcntl$addseals(r0, 0x409, 0x5) fallocate(r0, 0x0, 0x0, 0x400) 12:43:15 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4c8f, &(0x7f0000000080), &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_FILES(r0, 0x18, &(0x7f0000000140)=[0xffffffffffffffff], 0x1) [ 133.420096] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. 12:43:16 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x3, 0x4) close_range(r0, 0xffffffffffffffff, 0x0) 12:43:16 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x9, 0xffffffffffffffff, 0x8) open_by_handle_at(0xffffffffffffffff, &(0x7f00000007c0)=ANY=[@ANYBLOB="2c06dab8697c5688e178f17fd7f15372ccb9db3e49d9ca1c9674abc9a913625b83ecd9f6afcea6d5012b1a1967f103181be2b3729ab361c8412b7411a495b2c69252004060ffb05e8cb7a3d021594f15b049c140f4eb562c830fb0777f040df945eccc904050da6c33171c4406cdc94e2477743d201917c71323689e1745a61482e28f70965d1156b97804e507323456beaf95cee4617dcbd58671633244e6b044c1ad8aa19310d1c5dca10279c83f7b0abb521bf906dc44d15c7102c231c205fda54373217ddd0f5e6585208176176e63d80943f19ebd5a0057a6a3be74cdc588f19d6177b51576858d17f2f0f364a54bae8e3a00e43dc4b9b74a59593b6b1db74a28d0f321c0d6fd4e48a74aeeb49d6242f3759ae79e9bdd1f00"/292], 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000002880), 0x4000101, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000003c0)={@in={{0x2, 0x4e20, @loopback}}, 0x0, 0x0, 0xfffb, 0x0, "ccef3a629c18852ff917b7a76e90e296c47b802e36d880ce75757cc92bee746c2d1e79cf9b406241119c7c2efcf2b84da6deaee52e85e3eb6f3a6bd2f9a74f46b9ecd732ee710e6c587b65bead3552b9"}, 0xd8) symlinkat(&(0x7f0000000240)='./file0\x00', 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000004280)={0x0, 0x0, "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", "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"}) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x15, 0x3f, 0x1f, 0x6, 0x0, 0x0, 0x25001, 0x6, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, @perf_bp={&(0x7f0000000000), 0x1}, 0x10040, 0xfffffffffffff656, 0x7, 0x1, 0xff, 0x8, 0x400, 0x0, 0x7, 0x0, 0x1000}, 0xffffffffffffffff, 0x4, 0xffffffffffffffff, 0x3) write$sndseq(0xffffffffffffffff, 0x0, 0x0) r2 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x3, @local}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000300)="6fb9", 0x2}], 0x1, &(0x7f0000000140)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @multicast2, @broadcast}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x40}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x2}}], 0x50}, 0x0) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000006580)=r3) ftruncate(0xffffffffffffffff, 0x80000000000000) 12:43:16 executing program 1: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000000)=@polexpire={0xcc, 0x1b, 0x1, 0x0, 0x0, {{{@in=@multicast1, @in6=@local}}}, [@policy_type={0xa, 0x10, {0x1}}]}, 0xcc}}, 0x0) 12:43:16 executing program 4: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLK\xa4g?K)\xa0\xf0\x9b8Y\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x05\x00\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\xff#}g\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\x1ae\x80L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x04\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\x01\x00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xee\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\x01\x01\x00\x00\x00\x00\x00\x00\b$\xa2x\x8a\'\xfaj~\xef\x93\xb1/\\\x01\xe2\xaa\x0e\xe3\xf95\x1d\x10\xa7\x97\xbf\x8e\xac\x81\xc9\x13\x8e\xb3\xf3\xb5d\xa1\xcf\x1d\x92\x9b\x9b\xa7\x12F\xa0\xe0\xff\x1a\x8e\xe2ae^=\n\xe1\xa6\xb8\xe9v\x8f2\xf4\xac\xe5\xdf\xffi`Mo\x1e\x1cMN<\x1b\xd8\xfe\xd6P\xcdQ\x83\xfa\xe7\x1d\xd5\x01n\xa7~\x8b\x90/62\xff;.S\xf7\x0flwa\x16\xf0\xf2(\x96V,\xd7s\xaaOE\xd3H\xfd`}\xd8\xbc\x9a\xca\xe3\n\xd7fCe\xd8\xbb\xdao\xb0\x85\xcc\xedv\x94\xb5\xc4\xb6[>\xb9,\xfch_-s\x94,F\x15\xd8m5>\x94\x84\xf5\x00\xc3\xf6m\xc7B\t{\xe0d\xc65(\x18\x9c\xad\x13b6\xca\x16\x95\xcb^zF\xd0\x1a\x8dP\x94\x19\xa4\xbfr=\xb6\xae', 0x2) fcntl$addseals(r0, 0x409, 0x5) fallocate(r0, 0x0, 0x0, 0x400) 12:43:16 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x7) r1 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)) 12:43:16 executing program 3: perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x6dc8}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x4, &(0x7f0000001440)=[{&(0x7f0000000000)={0x24, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x2}, @typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x24}], 0x1}, 0x0) 12:43:16 executing program 7: r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) ioctl$sock_SIOCINQ(r0, 0x541b, 0x0) 12:43:16 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x1c, r1, 0x3ab, 0x0, 0x0, {{0x32}, {@void, @val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 12:43:16 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x6dc8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x6, 0x4, &(0x7f0000001500)=[{&(0x7f0000000180)="38b9caf347644244f24115c657929c4f7b424078738d1b58466ef69c4486d686df9528e9fab3d75861d7f2a22246014f12a91e532316aaf2ac36b31b952e3dcece3ef96c9e5189fb578c254999987cb924c6736d634e8ac643402c7388d4bf9c66ec01721a1ac079d9ee9d75473c1c8b42a3d2f0613a25f343b3b0423444932726746398bfa43a", 0x87, 0x3}, {&(0x7f0000000300)="47cb1f7def3a1d9963aa74929073471974db8c499d68eaaa5fbac8d07349ee85a54bab92ea0f87311fa97294620afac04a7d9def12bf742dc87ddc9e6fe16b0d5347f50ca841510b5355c4549c193b3a5072651db55179edbded06c503fe39810bdec5d647011697d5119c82bedfa22d8ec01b40bbc08b5d136da2a3762ad397cb92958b004ae3e1c873cc8040503ee6e78f14bc08c40d5344c2a302b810fe", 0x9f, 0xfffffffffffffffe}, {&(0x7f0000000500)="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", 0x1000, 0x2}, {&(0x7f00000003c0)="dc1430dd7ca68d107ec56dcf13d878a4400f1a05ece8051f5af5630c16eafb4f1cd0772d805ee76ec94a0c", 0xffffffffffffff6f, 0x80}], 0x0, &(0x7f0000001580)={[{@huge_always}, {@huge_within_size}, {@nr_inodes={'nr_inodes', 0x3d, [0x67, 0x6d, 0x70, 0x67]}}, {@huge_advise}, {@mode={'mode', 0x3d, 0x34ae}}]}) 12:43:16 executing program 4: r0 = memfd_create(&(0x7f0000000000)='B\xdb/\x89\x03l\xdeb\xcb\xb54\xed\xbeLK\xa4g?K)\xa0\xf0\x9b8Y\xb5Z\xe1\x12S\xf5G\xcc\xf3\xe9\x02h\v\xca(\x96\xe1C\xdf\x1c\xea\x85C\xfb\x10\x13\xfa\x03\x16\xcd\x05\x00\x80\xa1z\xb4r\x95\xc3@\x9d\xa6\xf1\xff#}g\x8a\xe6!\x7f\x8d\xea,qx\xa28\xbf\"\x1ae\x80L\xb06\xeb<$\xd7\xba\xe5\x01\x03\x94r\xab\xd4J\x03s\xaf\xf6A\xbfV\xfa\x1ew\x8d\xbf\x99I\x97\xd8\xd2\xe8\x11\xc4\x04\x00\x04\xd5i\xee\xaf\xae[E\x1f\xdd\xd7#rT+\xb621p\xaf[\x99\" 1\xeb\xc7)\xd2\x1dh\xf2\xd5s\xfd?\fa>\x9f;\xe5r\xe5\xbd\xb0|=\x8eZcPY\xf8\xbd\x13\xaa\x8b\xdf\xbc\x93u\xd5\xb0r\xfb\xde\xe7\xd9k\xe2\xc6\x1b\xf2o@&>\xf2M\xe7\x8c\xeb\xee\xf5\x02~\x85\x14\xf3\xc6v\xf15PE\x8c\xca\x16$\xc2\x01#\xb563\rbq\xbf64\xfaW\x17\xdfa\xe6\xca\x86\xd7\xf8\x81X\x9bg4\xc1\xdam\xcf=Rq6\xb0\xd4D=I\x1a\x0e\xd0\xabz\xe2\x19\x0fM\xad\xdco\xa4\xb2\x8c?\xc1\x10\xf273\x01\x00\xb3_\xe8\x9a*\xfcL\xea;\xc0\x9a\xdbx!N;\xb5x\t\xa4E\xbe\x93r\x04\xf5\xf0\xf5\x7f\x9a)\xf5\x1b\"\xa1\xd8\x06>\xc9\xe2r\xe9_\xee\xc0\b\x81\x98\x1c\xe2\xe0?\x8f\xa1\xbel\aN\x83@\xb1\x03)4A\x83\x01\x01\x00\x00\x00\x00\x00\x00\b$\xa2x\x8a\'\xfaj~\xef\x93\xb1/\\\x01\xe2\xaa\x0e\xe3\xf95\x1d\x10\xa7\x97\xbf\x8e\xac\x81\xc9\x13\x8e\xb3\xf3\xb5d\xa1\xcf\x1d\x92\x9b\x9b\xa7\x12F\xa0\xe0\xff\x1a\x8e\xe2ae^=\n\xe1\xa6\xb8\xe9v\x8f2\xf4\xac\xe5\xdf\xffi`Mo\x1e\x1cMN<\x1b\xd8\xfe\xd6P\xcdQ\x83\xfa\xe7\x1d\xd5\x01n\xa7~\x8b\x90/62\xff;.S\xf7\x0flwa\x16\xf0\xf2(\x96V,\xd7s\xaaOE\xd3H\xfd`}\xd8\xbc\x9a\xca\xe3\n\xd7fCe\xd8\xbb\xdao\xb0\x85\xcc\xedv\x94\xb5\xc4\xb6[>\xb9,\xfch_-s\x94,F\x15\xd8m5>\x94\x84\xf5\x00\xc3\xf6m\xc7B\t{\xe0d\xc65(\x18\x9c\xad\x13b6\xca\x16\x95\xcb^zF\xd0\x1a\x8dP\x94\x19\xa4\xbfr=\xb6\xae', 0x2) fcntl$addseals(r0, 0x409, 0x5) fallocate(r0, 0x0, 0x0, 0x400) 12:43:16 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x3, 0x4) close_range(r0, 0xffffffffffffffff, 0x0) 12:43:16 executing program 7: shmat(0x0, &(0x7f0000ffe000/0x2000)=nil, 0x0) shmat(0x0, &(0x7f0000ff3000/0x4000)=nil, 0x4000) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x81}, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) mmap$perf(&(0x7f0000fed000/0x3000)=nil, 0x3000, 0x0, 0x13, r0, 0x4) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x6}, 0x0, 0x0, 0x8, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmctl$IPC_RMID(0x0, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x200, 0x21, 0x1b}, 0x18) mincore(&(0x7f0000ff8000/0x2000)=nil, 0x2000, &(0x7f0000000700)=""/4096) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x2, 0x3f, 0x5, 0x3, 0x0, 0x89d9, 0x1000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x4, 0x8}, 0x8040, 0x1, 0x400, 0x0, 0xa2, 0x0, 0x7, 0x0, 0x4, 0x0, 0x239b}, 0xffffffffffffffff, 0x9, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r1, 0x40089413, &(0x7f0000000180)=0x1) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) shmget(0x2, 0x2000, 0x54000000, &(0x7f0000ffc000/0x2000)=nil) shmget(0x3, 0xa000, 0x20, &(0x7f0000ff6000/0xa000)=nil) [ 134.317803] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 134.622310] loop1: detected capacity change from 0 to 32766 [ 134.623754] tmpfs: Unsupported parameter 'huge' [ 134.770605] loop1: detected capacity change from 0 to 32766 [ 134.771865] tmpfs: Unsupported parameter 'huge' 12:43:16 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x7) r1 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)) 12:43:16 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x1c, r1, 0x3ab, 0x0, 0x0, {{0x32}, {@void, @val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 12:43:16 executing program 4: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) getsockopt$bt_BT_POWER(r0, 0x112, 0x4, &(0x7f0000000000), &(0x7f0000000040)=0x1) 12:43:16 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000300)='./file1\x00', &(0x7f0000000580)='./file1/file0\x00') ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x5390, 0x0) 12:43:16 executing program 6: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) add_key(&(0x7f0000000040)='asymmetric\x00', 0x0, &(0x7f0000000080)="3097", 0x2, r0) 12:43:16 executing program 3: perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x6dc8}, 0x0, 0xfffffffdffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x4, &(0x7f0000001440)=[{&(0x7f0000000000)={0x24, 0x10, 0x1, 0x0, 0x0, "", [@typed={0xc, 0x0, 0x0, 0x0, @u64=0x2}, @typed={0x8, 0x0, 0x0, 0x0, @u32}]}, 0x24}], 0x1}, 0x0) 12:43:16 executing program 1: r0 = fork() tgkill(r0, r0, 0x6) wait4(r0, &(0x7f0000001640), 0x2, &(0x7f0000001680)) 12:43:16 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x1c, r1, 0x87d27e71721737b5, 0x0, 0x0, {{0x5}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0) [ 134.854929] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'. [ 134.864415] netlink: 'syz-executor.0': attribute type 16 has an invalid length. [ 134.870909] netlink: 'syz-executor.0': attribute type 16 has an invalid length. 12:43:16 executing program 4: mount_setattr(0xffffffffffffffff, 0x0, 0x1000, &(0x7f0000000080)={0x1000f4, 0x74}, 0x20) 12:43:16 executing program 6: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmsg$inet(r0, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @dev}, 0x9, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0x2}], 0x1, &(0x7f0000000700)}, 0x0) 12:43:17 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x1c, r1, 0x3ab, 0x0, 0x0, {{0x32}, {@void, @val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 12:43:17 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x7) r1 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)) 12:43:17 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000300)='./file1\x00', &(0x7f0000000580)='./file1/file0\x00') ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x5390, 0x0) 12:43:17 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x690, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 135.015413] audit: type=1400 audit(1679920997.092:9): avc: denied { tracepoint } for pid=4098 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 12:43:17 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/psched\x00') mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x0, 0x401b012, r0, 0x0) 12:43:17 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in=@broadcast, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@dev, 0x0, 0x2b}, 0x0, @in6=@private2, 0x0, 0x1, 0x0, 0x2}}, 0xe8) sendmmsg$inet6(r0, &(0x7f0000001b80)=[{{&(0x7f0000000000)={0x2, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0) 12:43:17 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x7) r1 = epoll_create(0x4) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000100)) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000000)) 12:43:17 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000300)='./file1\x00', &(0x7f0000000580)='./file1/file0\x00') ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x5390, 0x0) 12:43:17 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$tmpfs(&(0x7f0000000540), &(0x7f0000000580)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)=ANY=[]) syz_mount_image$tmpfs(&(0x7f0000000540), &(0x7f0000000580)='./file0\x00', 0x0, 0x0, 0x0, 0x20, &(0x7f0000000840)=ANY=[]) 12:43:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) dup2(r1, r0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1c000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x100000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1c5042, 0x0) write(r2, &(0x7f0000000200)='E', 0x140000) 12:43:17 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x1c, r1, 0x3ab, 0x0, 0x0, {{0x32}, {@void, @val={0x8, 0x3, r3}, @void}}}, 0x1c}}, 0x0) 12:43:17 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x690, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 12:43:17 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x2b, &(0x7f0000000080), 0x4) 12:43:17 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x1c1042, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmallocinfo\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r3, r2, 0x0, 0xfffff) 12:43:17 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x14, 0x3, 0x1, 0x101}, 0x14}}, 0x0) 12:43:17 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$PIO_UNIMAP(r0, 0x5423, &(0x7f00000000c0)={0x2, &(0x7f0000000080)=[{}, {}]}) 12:43:17 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, &(0x7f0000000040)) 12:43:18 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x7a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$evdev(&(0x7f0000002380), 0x0, 0x0) ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000000180)=""/194) 12:43:18 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, &(0x7f0000000040)) 12:43:18 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x2b, &(0x7f0000000080), 0x4) 12:43:18 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file1\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000300)='./file1\x00', &(0x7f0000000580)='./file1/file0\x00') ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x5390, 0x0) 12:43:18 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, &(0x7f0000000040)) 12:43:18 executing program 6: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$PIO_UNIMAP(r0, 0x5423, &(0x7f00000000c0)={0x2, &(0x7f0000000080)=[{}, {}]}) 12:43:18 executing program 5: setreuid(0x0, 0xee01) timerfd_create(0x9, 0x0) 12:43:18 executing program 1: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, &(0x7f0000000040)) VM DIAGNOSIS: 12:43:08 Registers: info registers vcpu 0 RAX=1ffff11001f7a859 RBX=ffff88800ce23068 RCX=1ffff11002d5451e RDX=1ffff11001b418cb RSI=ffffffff87b26ac0 RDI=ffff888009a561a0 RBP=ffff888009a56198 RSP=ffff888042047700 R8 =0000000000000001 R9 =0000000000000246 R10=ffffed1008408ed6 R11=0000000000000001 R12=ffff88800e41dc48 R13=dffffc0000000000 R14=ffff88800fbd42c8 R15=ffff88800da0c5f0 RIP=ffffffff84431d1a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f85405778c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f307babc710 CR3=000000000dbb8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000ff0000000000ff0000 XMM03=ffffffffff00007ffc910037706f6f6c XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=ffffffffffff00000000000000000000 XMM06=00000000000065616124242f6867632f XMM07=00000000000000000000000000000000 XMM08=732f636f72702f006b63616d7300632e XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff888041fbfb98 RCX=ffff888041fbfbdc RDX=1ffff110016bf001 RSI=ffffffff818963a1 RDI=ffff88800b5f8008 RBP=ffff888041fbf920 RSP=ffff888041fbf828 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000040 R11=0000000000000001 R12=0000000000000002 R13=0000000000000002 R14=0000000000000051 R15=ffff88800b593460 RIP=ffffffff81896405 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa573709270 CR3=000000001f1f8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=000000000000000000000000ffffffff XMM02=7463656a6e695f31313230385f7a7973 XMM03=00007fdce57307c800007fdce57307c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000