Warning: Permanently added '[localhost]:5586' (ECDSA) to the list of known hosts. 2022/09/30 16:56:40 fuzzer started 2022/09/30 16:56:41 dialing manager at localhost:40535 syzkaller login: [ 38.486532] cgroup: Unknown subsys name 'net' [ 38.580864] cgroup: Unknown subsys name 'rlimit' 2022/09/30 16:56:55 syscalls: 2215 2022/09/30 16:56:55 code coverage: enabled 2022/09/30 16:56:55 comparison tracing: enabled 2022/09/30 16:56:55 extra coverage: enabled 2022/09/30 16:56:55 setuid sandbox: enabled 2022/09/30 16:56:55 namespace sandbox: enabled 2022/09/30 16:56:55 Android sandbox: enabled 2022/09/30 16:56:55 fault injection: enabled 2022/09/30 16:56:55 leak checking: enabled 2022/09/30 16:56:55 net packet injection: enabled 2022/09/30 16:56:55 net device setup: enabled 2022/09/30 16:56:55 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 16:56:55 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 16:56:55 USB emulation: enabled 2022/09/30 16:56:55 hci packet injection: enabled 2022/09/30 16:56:55 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 16:56:55 802.15.4 emulation: enabled 2022/09/30 16:56:56 fetching corpus: 50, signal 22862/24667 (executing program) 2022/09/30 16:56:56 fetching corpus: 100, signal 34915/38297 (executing program) 2022/09/30 16:56:56 fetching corpus: 150, signal 39686/44646 (executing program) 2022/09/30 16:56:56 fetching corpus: 200, signal 47891/54242 (executing program) 2022/09/30 16:56:56 fetching corpus: 250, signal 54651/62310 (executing program) 2022/09/30 16:56:56 fetching corpus: 300, signal 60593/69504 (executing program) 2022/09/30 16:56:56 fetching corpus: 350, signal 64889/75069 (executing program) 2022/09/30 16:56:56 fetching corpus: 400, signal 68443/79803 (executing program) 2022/09/30 16:56:56 fetching corpus: 450, signal 70800/83404 (executing program) 2022/09/30 16:56:56 fetching corpus: 500, signal 75481/89101 (executing program) 2022/09/30 16:56:57 fetching corpus: 550, signal 80526/95113 (executing program) 2022/09/30 16:56:57 fetching corpus: 600, signal 82943/98618 (executing program) 2022/09/30 16:56:57 fetching corpus: 650, signal 84812/101598 (executing program) 2022/09/30 16:56:57 fetching corpus: 700, signal 88631/106332 (executing program) 2022/09/30 16:56:57 fetching corpus: 750, signal 91586/110136 (executing program) 2022/09/30 16:56:57 fetching corpus: 800, signal 93655/113165 (executing program) 2022/09/30 16:56:57 fetching corpus: 850, signal 95853/116250 (executing program) 2022/09/30 16:56:57 fetching corpus: 900, signal 98392/119594 (executing program) 2022/09/30 16:56:58 fetching corpus: 950, signal 101069/123065 (executing program) 2022/09/30 16:56:58 fetching corpus: 1000, signal 103803/126515 (executing program) 2022/09/30 16:56:58 fetching corpus: 1050, signal 105846/129360 (executing program) 2022/09/30 16:56:58 fetching corpus: 1100, signal 107383/131762 (executing program) 2022/09/30 16:56:58 fetching corpus: 1150, signal 110214/135144 (executing program) 2022/09/30 16:56:58 fetching corpus: 1200, signal 112986/138416 (executing program) 2022/09/30 16:56:58 fetching corpus: 1250, signal 114945/141085 (executing program) 2022/09/30 16:56:58 fetching corpus: 1300, signal 116206/143145 (executing program) 2022/09/30 16:56:58 fetching corpus: 1350, signal 120269/147366 (executing program) 2022/09/30 16:56:59 fetching corpus: 1400, signal 123237/150635 (executing program) 2022/09/30 16:56:59 fetching corpus: 1450, signal 124942/152918 (executing program) 2022/09/30 16:56:59 fetching corpus: 1500, signal 126616/155072 (executing program) 2022/09/30 16:56:59 fetching corpus: 1550, signal 128407/157392 (executing program) 2022/09/30 16:56:59 fetching corpus: 1600, signal 130344/159759 (executing program) 2022/09/30 16:56:59 fetching corpus: 1650, signal 131524/161513 (executing program) 2022/09/30 16:56:59 fetching corpus: 1700, signal 133184/163613 (executing program) 2022/09/30 16:56:59 fetching corpus: 1750, signal 134341/165349 (executing program) 2022/09/30 16:56:59 fetching corpus: 1800, signal 135386/166967 (executing program) 2022/09/30 16:57:00 fetching corpus: 1850, signal 136926/168878 (executing program) 2022/09/30 16:57:00 fetching corpus: 1900, signal 137650/170282 (executing program) 2022/09/30 16:57:00 fetching corpus: 1950, signal 139166/172174 (executing program) 2022/09/30 16:57:00 fetching corpus: 2000, signal 140710/174077 (executing program) 2022/09/30 16:57:00 fetching corpus: 2050, signal 141894/175675 (executing program) 2022/09/30 16:57:00 fetching corpus: 2100, signal 143047/177243 (executing program) 2022/09/30 16:57:00 fetching corpus: 2150, signal 143925/178595 (executing program) 2022/09/30 16:57:00 fetching corpus: 2200, signal 145451/180389 (executing program) 2022/09/30 16:57:00 fetching corpus: 2250, signal 146097/181622 (executing program) 2022/09/30 16:57:01 fetching corpus: 2300, signal 147656/183358 (executing program) 2022/09/30 16:57:01 fetching corpus: 2350, signal 148422/184604 (executing program) 2022/09/30 16:57:01 fetching corpus: 2400, signal 149754/186160 (executing program) 2022/09/30 16:57:01 fetching corpus: 2450, signal 151386/187878 (executing program) 2022/09/30 16:57:01 fetching corpus: 2500, signal 153024/189611 (executing program) 2022/09/30 16:57:01 fetching corpus: 2550, signal 153820/190797 (executing program) 2022/09/30 16:57:01 fetching corpus: 2600, signal 155747/192650 (executing program) 2022/09/30 16:57:01 fetching corpus: 2650, signal 156647/193833 (executing program) 2022/09/30 16:57:02 fetching corpus: 2700, signal 157267/194903 (executing program) 2022/09/30 16:57:02 fetching corpus: 2750, signal 158291/196150 (executing program) 2022/09/30 16:57:02 fetching corpus: 2800, signal 159417/197443 (executing program) 2022/09/30 16:57:02 fetching corpus: 2850, signal 160175/198478 (executing program) 2022/09/30 16:57:02 fetching corpus: 2900, signal 160715/199435 (executing program) 2022/09/30 16:57:02 fetching corpus: 2950, signal 162152/200805 (executing program) 2022/09/30 16:57:02 fetching corpus: 3000, signal 162988/201868 (executing program) 2022/09/30 16:57:02 fetching corpus: 3050, signal 163677/202849 (executing program) 2022/09/30 16:57:03 fetching corpus: 3100, signal 164758/203993 (executing program) 2022/09/30 16:57:03 fetching corpus: 3150, signal 165565/205024 (executing program) 2022/09/30 16:57:03 fetching corpus: 3200, signal 166206/205949 (executing program) 2022/09/30 16:57:03 fetching corpus: 3250, signal 167495/207200 (executing program) 2022/09/30 16:57:03 fetching corpus: 3300, signal 168209/208112 (executing program) 2022/09/30 16:57:03 fetching corpus: 3350, signal 168901/209013 (executing program) 2022/09/30 16:57:03 fetching corpus: 3400, signal 169877/209984 (executing program) 2022/09/30 16:57:03 fetching corpus: 3450, signal 170554/210832 (executing program) 2022/09/30 16:57:04 fetching corpus: 3500, signal 171331/211754 (executing program) 2022/09/30 16:57:04 fetching corpus: 3550, signal 171996/212582 (executing program) 2022/09/30 16:57:04 fetching corpus: 3600, signal 172674/213417 (executing program) 2022/09/30 16:57:04 fetching corpus: 3650, signal 173355/214267 (executing program) 2022/09/30 16:57:04 fetching corpus: 3700, signal 174519/215246 (executing program) 2022/09/30 16:57:04 fetching corpus: 3750, signal 175581/216224 (executing program) 2022/09/30 16:57:04 fetching corpus: 3800, signal 176278/217046 (executing program) 2022/09/30 16:57:04 fetching corpus: 3850, signal 176989/217816 (executing program) 2022/09/30 16:57:05 fetching corpus: 3900, signal 177485/218500 (executing program) 2022/09/30 16:57:05 fetching corpus: 3950, signal 178630/219424 (executing program) 2022/09/30 16:57:05 fetching corpus: 4000, signal 179063/220081 (executing program) 2022/09/30 16:57:05 fetching corpus: 4050, signal 179992/220912 (executing program) 2022/09/30 16:57:05 fetching corpus: 4100, signal 180578/221578 (executing program) 2022/09/30 16:57:05 fetching corpus: 4150, signal 181466/222406 (executing program) 2022/09/30 16:57:05 fetching corpus: 4200, signal 181689/222973 (executing program) 2022/09/30 16:57:05 fetching corpus: 4250, signal 182588/223709 (executing program) 2022/09/30 16:57:06 fetching corpus: 4300, signal 183231/224323 (executing program) 2022/09/30 16:57:06 fetching corpus: 4350, signal 183919/225000 (executing program) 2022/09/30 16:57:06 fetching corpus: 4400, signal 184520/225638 (executing program) 2022/09/30 16:57:06 fetching corpus: 4450, signal 185310/226325 (executing program) 2022/09/30 16:57:06 fetching corpus: 4500, signal 186379/227039 (executing program) 2022/09/30 16:57:06 fetching corpus: 4550, signal 187068/227643 (executing program) 2022/09/30 16:57:06 fetching corpus: 4600, signal 187444/228192 (executing program) 2022/09/30 16:57:06 fetching corpus: 4650, signal 187940/228745 (executing program) 2022/09/30 16:57:06 fetching corpus: 4700, signal 188623/229318 (executing program) 2022/09/30 16:57:07 fetching corpus: 4750, signal 188949/229816 (executing program) 2022/09/30 16:57:07 fetching corpus: 4800, signal 189666/230375 (executing program) 2022/09/30 16:57:07 fetching corpus: 4850, signal 190338/230921 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/231389 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/231789 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/232235 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/232632 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/233050 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/233465 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/233898 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/234291 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/234686 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/235111 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/235512 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/235926 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/236372 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/236791 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/237209 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/237609 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/238037 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/238478 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/238905 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/239317 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/239729 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/239739 (executing program) 2022/09/30 16:57:07 fetching corpus: 4873, signal 190746/239739 (executing program) 2022/09/30 16:57:10 starting 8 fuzzer processes 16:57:10 executing program 0: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/4\x00') r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), r0) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r1, &(0x7f0000000200)={&(0x7f00000000c0), 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x4c, r2, 0xe0d, 0x70bd27, 0x25dfdbff, {}, [@HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000000}, 0x5) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x80, r2, 0x200, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_TX={0x5}, @ETHTOOL_A_PAUSE_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}]}, @ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5, 0x2, 0x1}, @ETHTOOL_A_PAUSE_TX={0x5}]}, 0x80}, 0x1, 0x0, 0x0, 0x4000004}, 0x40000) r3 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) r4 = syz_genetlink_get_family_id$fou(&(0x7f00000003c0), r1) sendmsg$FOU_CMD_ADD(r3, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x1c, r4, 0x100, 0x70bd2a, 0x3, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x2d}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000004c0), 0x101000, 0x0) fcntl$notify(r5, 0x402, 0x0) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000540), r1) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, r6, 0xb21, 0x70bd29, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008800}, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000640)={{0x0, 0x5, 0x1cc, 0x9, 0x2, 0xff, 0x23870d8, 0x4, 0x4, 0x0, 0x3, 0x4, 0xf89, 0x5, 0x4}, 0x20, [0x0, 0x0, 0x0, 0x0]}) r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), r1) sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f0000000880)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000840)={&(0x7f0000000780)={0xb0, r7, 0x10, 0x70bd2b, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_ADDR={0x4c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @remote}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @rand_addr=0x64010102}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x1}]}, 0xb0}, 0x1, 0x0, 0x0, 0x40000}, 0x4000040) ioctl$TIOCGDEV(r5, 0x80045432, &(0x7f00000008c0)) sendmsg$SMC_PNETID_FLUSH(r3, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x28, 0x0, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x28}}, 0x40) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x8010, r5, 0x8000000) syz_io_uring_submit(r8, 0x0, &(0x7f0000000a80)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, r5, &(0x7f0000000a00)={0xa0080, 0x100, 0x12}, &(0x7f0000000a40)='./file0\x00', 0x18, 0x0, 0x23456}, 0x525) 16:57:10 executing program 1: ustat(0x0, &(0x7f0000000000)) ustat(0x4, &(0x7f0000000040)) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0xc) r0 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r0) r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8900) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, r0) ustat(0x542, &(0x7f00000000c0)) ioctl$LOOP_CTL_REMOVE(r2, 0x4c81, 0x1) ustat(0x7, &(0x7f0000000100)) ioctl$FAT_IOCTL_GET_VOLUME_ID(r2, 0x80047213, &(0x7f0000000140)) ioctl$EXT4_IOC_GETSTATE(r2, 0x40046629, &(0x7f0000000180)) r3 = syz_open_dev$usbmon(&(0x7f00000001c0), 0xc01, 0x86083) ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, &(0x7f0000000200)={{0xfffffffc, 0x7}, 0x100, './file0\x00'}) write$P9_RREADDIR(r2, &(0x7f0000000340)={0xc5, 0x29, 0x1, {0x9, [{{0x1, 0x4, 0x2}, 0x7fffffff, 0x1, 0x7, './file0'}, {{0x40, 0x4, 0x2}, 0x20000000000000, 0x8, 0x7, './file0'}, {{0x2, 0x1, 0x6}, 0x7, 0x8, 0x7, './file0'}, {{0x80}, 0x6, 0x1, 0x7, './file0'}, {{0x1, 0x2, 0x4}, 0xfffffffffffffff7, 0x7, 0x7, './file0'}, {{0x4, 0x0, 0x2}, 0xaa8, 0x9, 0x7, './file0'}]}}, 0xc5) r4 = memfd_secret(0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000440)={{0x1, 0x1, 0x18, r2}, './file1\x00'}) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0x0) 16:57:10 executing program 3: ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'}) write$cgroup_devices(r0, &(0x7f0000000040)={'b', ' *:* ', 'wm\x00'}, 0x9) r1 = syz_open_dev$sg(&(0x7f0000000080), 0x9, 0x140000) pread64(r1, &(0x7f00000000c0)=""/122, 0x7a, 0xffffffff) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001280)='/proc/key-users\x00', 0x0, 0x0) io_submit(0x0, 0x3, &(0x7f0000001300)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x4, r1, &(0x7f0000000140)="0f83201c12690a77e3691a65509c56bba907b968493684e813525aadac9790a71749dc1f1200e84165c1e62625260e68140f7e0ac3f2165e809e934038f8611f25088b63b0e8cbc650ccd529a5b96a0228bffb", 0x53, 0x54f8, 0x0, 0x3, r0}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x40, r1, &(0x7f0000000200)="a5c8893ffa08a0ab3d148c7dc753ef86b7b358e4a90aabdb4c75caf6c2addbe777e9cdcb5d4b74bccac9e5f90b2a58e4b693f7fb175ce504548cae3cf5", 0x3d, 0x6b, 0x0, 0x3, r0}, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x2, 0xfff8, r0, &(0x7f0000000280)="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", 0x1000, 0x200, 0x0, 0x1, r2}]) r3 = open$dir(&(0x7f0000001340)='./file0\x00', 0x10080, 0x184) preadv(r3, &(0x7f0000001540)=[{&(0x7f0000001380)=""/180, 0xb4}, {&(0x7f0000001440)=""/237, 0xed}], 0x2, 0x1, 0x9) r4 = dup3(0xffffffffffffffff, r3, 0x0) fallocate(r4, 0x42, 0x44e, 0x7fff) unlinkat(0xffffffffffffff9c, &(0x7f0000001580)='./file0\x00', 0x200) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r4, 0x80089419, &(0x7f00000015c0)) ioctl$SG_SET_DEBUG(r2, 0x227e, &(0x7f0000001600)=0x1) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000001640)={{0x1, 0x1, 0x18, r0, {0x80000}}, './file0\x00'}) getpeername$packet(r5, &(0x7f0000001680), &(0x7f00000016c0)=0x14) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r4, 0xf502, 0x0) fcntl$addseals(r2, 0x409, 0x6) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000001700)={{0x1, 0x1, 0x18, r4, {0x1}}, './file0\x00'}) ioctl$PTP_EXTTS_REQUEST(r6, 0x40103d02, &(0x7f0000001740)) lstat(&(0x7f0000001780)='./file0\x00', &(0x7f00000017c0)) 16:57:10 executing program 2: prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) prctl$PR_GET_DUMPABLE(0x3) 16:57:10 executing program 4: syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_PAN_ID(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x44, r1, 0x100, 0x70bd27, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_PAN_ID={0x6}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x3}]}, 0x44}, 0x1, 0x0, 0x0, 0x41004}, 0x4c000) r2 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000200), r0) sendmsg$NLBL_CALIPSO_C_REMOVE(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r2, 0x4, 0x70bd28, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x81) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000340)={'wpan1\x00'}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000003c0)={'wpan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'wpan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000440)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_TX_POWER(r4, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x38, r3, 0x20, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x200400c5) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_DISASSOCIATE_REQ(r8, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x20, 0x0, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0002}}]}, 0x20}}, 0x84) syz_genetlink_get_family_id$nl802154(&(0x7f0000000640), r8) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000680), r0) r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000700), 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_CONFIG(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000740)={0x60, r9, 0x2, 0x70bd28, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_DAEMON={0x4c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xff}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000880}, 0x9) sendmsg$NL80211_CMD_AUTHENTICATE(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x68, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xfff, 0x31}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @key_params=[@NL80211_ATTR_KEY_SEQ={0x14, 0xa, "bdddda45fc204a4fef380c8aab4e2b71"}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0x4}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "8b700e87b04fbac26d0538ee0f"}]]}, 0x68}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) 16:57:10 executing program 5: prlimit64(0xffffffffffffffff, 0x7, &(0x7f0000000000)={0x2, 0x8}, &(0x7f0000000040)) setrlimit(0x8, &(0x7f0000000080)={0x80000001, 0xfffffffffffffff7}) fork() getrlimit(0x2, &(0x7f00000000c0)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000100)=0x0) prlimit64(r0, 0x9, &(0x7f0000000140)={0xffffffffffffffff}, &(0x7f0000000180)) r1 = accept4$inet6(0xffffffffffffffff, &(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000000200)=0x1c, 0x80800) ioctl$sock_netdev_private(r1, 0x89fa, &(0x7f0000000240)="e7876d24447635359f24a209653752dec3ff244a49c2e60617ab1814f22739cde9f58070749c4ca5d82f6659bc7c432c145e236f175b537a8c9df1a6d5ad848201f08dcf289c17544ac19fcb871039967d881705d9448b4aff94c1da08670e80312cb2c15d225f4fdbeda2d13d5e590fd12411992b20b67868cf77b10ab9415cd4725e0fcc315c0fd65c6dea68cf0a100ed113d01a4e4703a24a234a834030ac97a076841f1e88ccac32330882525df063e7c673baa4ec6938e10167afeefdd1d8ada934d4318c82793f8554220a59aa217b41b9744a6f50d5aec65c2862a0dd5647918a56be94d0ee1adec8856bb7bd") r2 = getpid() prlimit64(r2, 0xc, &(0x7f0000000340)={0xe9, 0x80}, &(0x7f0000000380)) r3 = clone3(&(0x7f00000005c0)={0x2880200, &(0x7f00000003c0), &(0x7f0000000400)=0x0, &(0x7f0000000440)=0x0, {0x24}, &(0x7f0000000480)=""/15, 0xf, &(0x7f00000004c0)=""/135, &(0x7f0000000580)=[r0], 0x1}, 0x58) prlimit64(r5, 0x2, &(0x7f0000000640)={0x94fb, 0x10001}, &(0x7f0000000680)) prlimit64(r4, 0x6, &(0x7f00000006c0)={0x4, 0x3}, &(0x7f0000000700)) fork() getrlimit(0xe, &(0x7f0000000740)) prlimit64(r5, 0xb, &(0x7f0000000780)={0x4, 0x40}, &(0x7f00000007c0)) prlimit64(r3, 0x9, &(0x7f0000000800)={0x4617, 0x3e2}, &(0x7f0000000840)) setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f0000000880)={0x6, 0x6, '\x00', [@calipso={0x7, 0x30, {0x2, 0xa, 0x5, 0x9, [0x200, 0x0, 0x1, 0x3, 0x9]}}]}, 0x40) perf_event_open(&(0x7f00000008c0)={0x3, 0x80, 0x40, 0x20, 0x4, 0x81, 0x0, 0xff, 0x10010, 0x4, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x1, @perf_config_ext={0x0, 0x6}, 0x4e, 0x5, 0x0, 0x4, 0x4, 0x3, 0x8, 0x0, 0x8}, r2, 0x5, 0xffffffffffffffff, 0x0) prlimit64(r4, 0xb, 0x0, 0x0) 16:57:10 executing program 6: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1a, 0x2000) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x4, @empty, 0x3f}, 0x1c) r1 = socket(0x8, 0x5, 0x7e52) sendmsg$NL80211_CMD_SET_POWER_SAVE(r1, &(0x7f0000000140)={&(0x7f0000000080), 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x40810) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000480)={&(0x7f00000001c0)={0x298, 0x0, 0x500, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x9, 0xf}}}}, [@NL80211_ATTR_COALESCE_RULE_CONDITION={0x8, 0x2, 0x1}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0xfd}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0xa4, 0x3, 0x0, 0x1, [{0x94, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x8d, 0x2, "2646922c291bb188fb7d7ed94eab3a32830aeba1f5c1e49e5eaec6922f2b8be70da906dbb0e2e94ee36be67c634521dc6c10616c98fa88b900d3b1d569c81ef6e4525860bd34215291a70d31b949ff99fc653025c45d6e32e822d1912221e7934a6ea5c4d868fd23620fd69db03e0fe1787d3beb23c171931012513d563d5e3a2466a43e7c453fe856"}}, {0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x80000001}}]}, @NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x7ff}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x28, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x15c7}}, {0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x1ff}}, {0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x8}}]}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x4}, @NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x180, 0x3, 0x0, 0x1, [{0x70, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0x6a, 0x2, "1c440d5af1619bc498f182e58bc36320e398801b016724640946a7abc5301db537b9c9c272367f93986b906fccdf67a2c89042fff949a5c5b3f61718bb40f2e321ea415face6d219c18a684496b58c7f1f55f0260c265464b774b28d0dbd9ce1ed3a575c5ef1"}}, {0x50, 0x0, 0x0, 0x1, @NL80211_PKTPAT_MASK={0x49, 0x1, "3532a09e626f63876b7535383db492aede6ef7145a6ea0c20158c518f58545b418fdfadd31eef2db502aa9107a9110cf55e706ee9527b936d9856a81ece1461c9306df7b2a"}}, {0xbc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_PATTERN={0xb8, 0x2, "bdbf6a28635d5ffa0b6446072affaff64e9cde98d8df7cc14e7911e8984e9282e751647a9371475a194e7f1036c54229ddf7456e1ad3459e5e1d84aa49654e047ab4964a6d95bc4d4731d4555fbf14c51afef45d259b68e17fe1ee1b313e90c01c244559afcc1341f85f5995eed97d43ec2ebd9ae51b036234ee5c22697d4739419fc4fa77fd1fceafceaf083086320d7b650e696c846b6e59e84830a0705627d7fb3bd38a50884908dbde8bfd07dfb6286e24dd"}}]}]}, 0x298}, 0x1, 0x0, 0x0, 0x40}, 0x4000800) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000500)={0x0, 0x0, 0x66618cda, 0x21d0}) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f0000000540), &(0x7f0000000580)=0x4) r2 = fspick(r0, &(0x7f00000005c0)='./file0\x00', 0x0) r3 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) ioctl$BTRFS_IOC_LOGICAL_INO(r3, 0xc0389424, &(0x7f0000000640)={0xef7c, 0x28, '\x00', 0x1, &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0, 0x0]}) vmsplice(r2, &(0x7f00000008c0)=[{&(0x7f0000000680)="8c0fc8263abb750c1d6f83c48ce793cd3d80b0cd3daf39178a43b034a8701972d4ce787e182481fc1d0d7620bde8180d5670fd4c049f20e463a6e94246", 0x3d}, {&(0x7f00000006c0)="2a333a7ad9c0afc2ad964a557ee8eb11c11ff534e5b3dd90df3f59139a8f3346a868c730262e8e17ce90250e8535f2665dad87e1825377c676cd0a1e813ab286fc1a8af8ded354a652ef6d6ce42432a9cc0fd4dea6dea62e2a67299dc43ef6a0ca46f5f6df75d6e0607a3760a3659137f654e07a9de6043989768fcd8328d6acbd3a1affedc309f7b8d9ef1cc846e70a0f2ed5a7205b3feb7111ef54dfe39b822dd9f674e7ef1a8b2071d479aa300c77a1f59efc29dae192a89bd23b720bd67aeb3087cfbd2accdd1810ae4fd75e46c9ce9dde1e0e40a90a33d7a65c49f7687fae839d43d41c2b6302d7aa3900ef0f", 0xef}, {&(0x7f00000007c0)="8ee2a77b81e1f72871bc28e8e7c703a50cdce5dc7f9ca5b120fb2adfc19a7112859ef56c32f71dc6e4ca65b5ad2d3a9e173aa3ff86222f3e5dddbde4f4814b231c5e7b93c44b6415c2fa63e4f4062c78ac7b3fa7efe0a7f6aff839b3794247183ecf518ea068e74a4fc601d3feafecb83e92788cfaaa905f5586c02ebb3dda0ce6b9f15772f5af1048e669d3ebc44572ba", 0x91}, {&(0x7f0000000880)="6b70a7e35fd8fe2499", 0x9}], 0x4, 0x4) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000009c0), 0x32440, 0x0) r5 = syz_mount_image$vfat(&(0x7f0000000a00), &(0x7f0000000a40)='./file0\x00', 0x80000000, 0x4, &(0x7f0000001c00)=[{&(0x7f0000000a80)="5360b70294cf00059d53c959a48f763234920f30ed39ecc0fdcd38b10f0ba50d3adc7221444c71afdfb57cf23043b77aac4dd29aba643bcb90069d6fa35ed530791c4da93939bf596b784f67a08a71b1f982eaadeb6c54e9dc171065df73054ed756c950c3a13582fc90e259da3680e27bf24b7729c5b01b5f8c52869138f56a40a2a376", 0x84, 0xe}, {&(0x7f0000000b40)="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", 0x1000, 0x1fd7}, {&(0x7f0000001b40)="da8f7546483b979680aee286e325af0702", 0x11, 0x1}, {&(0x7f0000001b80)="d05b01588822b76b295c71c251e48cda7a5c88c1443cc88b50dc0711f3c726d71c9f495d3c7cf848a135b9eeb70b563f43b00f74a4e6ece25f8408f8cb96b168b1a4bbdb5459497bc131f7c901426451acde431553644fcf9398deec4bd81168", 0x60, 0x10000}], 0x4008, &(0x7f0000001c80)={[{@uni_xlateno}, {@uni_xlateno}, {@shortname_lower}, {@fat=@gid}, {@uni_xlateno}, {@shortname_mixed}, {@shortname_mixed}], [{@subj_user={'subj_user', 0x3d, '\x00'}}, {@dont_measure}, {@smackfsroot={'smackfsroot', 0x3d, '/dev/vcs#\x00'}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@mask={'mask', 0x3d, 'MAY_WRITE'}}, {@obj_user={'obj_user', 0x3d, '%,/'}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@euid_lt={'euid<', 0xee01}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@hash}]}) r6 = dup2(r4, r5) r7 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r6, 0xc0189372, &(0x7f0000001dc0)={{0x1, 0x1, 0x18, r7, {0x12039b88}}, './file1\x00'}) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) listen(r8, 0x8) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000003000)={'veth1_virt_wifi\x00', &(0x7f0000002fc0)=@ethtool_channels={0x3d, 0xfffffffb, 0x81, 0x27, 0x7, 0x7, 0x80, 0xfff, 0x8}}) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f0000003040)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) [ 68.020714] audit: type=1400 audit(1664557030.690:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 16:57:10 executing program 7: write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000000)={{0x7f, 0x45, 0x4c, 0x46, 0xff, 0x0, 0x0, 0x3b, 0x7f, 0x2, 0x3d, 0x0, 0x2d6, 0x38, 0x29b, 0x7, 0x5, 0x20, 0x1, 0x20, 0x0, 0xfff}, [{0x7, 0x6d0dba20, 0x101, 0x1, 0x3ff, 0x2, 0x100, 0x200}], "bad5834a7cad19781d2a854dfef5221043f4e6754172c28c3c0653bc537977e305281c83b955c742c48fbdd899a749d18a04fc50b9c5b171c033b149abfefef0f013a782f3cd05367264b14d18488949e051afbba4592bf0f8b5b0a086d746b0973da36a13f0a490e78e91f4c24c9d0d3578dc1b3965c2b111babc93d4cd1c24f5603630bd808c8b8b8cfff39745871a04673a731798a840f2aee41ba695aade0279e6e149c11bb1ba", ['\x00', '\x00', '\x00', '\x00']}, 0x501) ioctl$CDROM_TIMED_MEDIA_CHANGE(0xffffffffffffffff, 0x5396, &(0x7f0000000540)={0x4851}) r0 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000580)='devices.allow\x00', 0x2, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f00000005c0)={{0x800, 0x7}, 0x100, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000700)={{0x1, 0x1, 0x18, r0, {0xee01, 0xee00}}, './file0/file0\x00'}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000740)={{r1}, 0x0, 0x2, @unused=[0xfffffffffffffff9, 0x1, 0x0, 0x721], @name="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"}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001780), r1) sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f0000001880)={&(0x7f0000001740)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001840)={&(0x7f00000017c0)={0x7c, r2, 0x10, 0x70bd29, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x4, 0x4b}}}}, [@NL80211_ATTR_IE={0x4c, 0x2a, [@measure_req={0x26, 0x4, {0x6, 0x1, 0x0, "ff"}}, @random={0x1f, 0x40, "51f7553603d074e00cb8e681e3d41bc6cd70899d48e76924be2c87d907a2c135edbc1f3472a5f368795a03b223637faebe64b2330de6c9638ae5bfb865df09cc"}]}, @NL80211_ATTR_MAC={0xa, 0x6, @random="bbaae49f1927"}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4000800}, 0x4008040) ioctl$CDROM_MEDIA_CHANGED(0xffffffffffffffff, 0x5325, 0x9) sendmsg$FOU_CMD_DEL(r1, &(0x7f0000001980)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001940)={&(0x7f0000001900)={0x30, 0x0, 0x4, 0x70bd29, 0x25dfdbff, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @mcast2}, @FOU_ATTR_PEER_V4={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0xc5}}]}, 0x30}, 0x1, 0x0, 0x0, 0x2}, 0x92) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f00000019c0), 0x28400, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000001b00)={&(0x7f0000001a00)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001ac0)={&(0x7f0000001a40)={0x4c, r2, 0x200, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x80000001, 0xb}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}, @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x1) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000001b40), 0x20002, 0x0) sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r4, &(0x7f0000001c40)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0xa0030000}, 0xc, &(0x7f0000001c00)={&(0x7f0000001bc0)={0x14, r2, 0x805, 0x70bd2d, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x28000001}, 0x40) r5 = openat(r1, &(0x7f0000001c80)='./file0/file0\x00', 0x0, 0xc) sendmsg$NL80211_CMD_GET_STATION(r5, &(0x7f0000001d80)={&(0x7f0000001cc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001d40)={&(0x7f0000001d00)={0x3c, r2, 0x100, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0xffffffff, 0x50}}}}, [@NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x3, 0x7}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) fallocate(r1, 0x9, 0x3, 0x6) r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000001dc0), 0x48003, 0x0) inotify_add_watch(r6, &(0x7f0000001e00)='./file0/file0\x00', 0x1000c00) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 69.270872] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.278585] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.280350] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 69.282234] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.288621] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 69.293444] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.295763] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 69.297934] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 69.310334] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 69.312218] Bluetooth: hci0: HCI_REQ-0x0c1a [ 69.332794] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 69.334509] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 69.348490] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 69.351015] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 69.352890] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 69.355623] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 69.360708] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 69.360873] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 69.379388] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 69.381258] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 69.386434] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 69.387673] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 69.388871] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 69.390002] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 69.391738] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 69.394670] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 69.400957] Bluetooth: hci2: HCI_REQ-0x0c1a [ 69.402310] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 69.404254] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 69.405859] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 69.410258] Bluetooth: hci3: HCI_REQ-0x0c1a [ 69.414543] Bluetooth: hci4: HCI_REQ-0x0c1a [ 69.436390] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 69.441380] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 69.450567] Bluetooth: hci1: HCI_REQ-0x0c1a [ 69.458399] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 69.461804] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 69.470575] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 69.473626] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 69.475711] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 69.478257] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 69.484374] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 69.487245] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 69.491755] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 69.492705] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 69.494366] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 69.497004] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 69.498778] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 69.500618] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 69.505116] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 69.505320] Bluetooth: hci6: HCI_REQ-0x0c1a [ 69.533526] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 69.536040] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 69.545552] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 69.549838] Bluetooth: hci5: HCI_REQ-0x0c1a [ 69.596266] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.347486] Bluetooth: hci0: command 0x0409 tx timeout [ 71.411732] Bluetooth: hci2: command 0x0409 tx timeout [ 71.475236] Bluetooth: hci4: command 0x0409 tx timeout [ 71.475276] Bluetooth: hci1: command 0x0409 tx timeout [ 71.476000] Bluetooth: hci3: command 0x0409 tx timeout [ 71.539259] Bluetooth: hci6: command 0x0409 tx timeout [ 71.603327] Bluetooth: hci5: command 0x0409 tx timeout [ 71.667212] Bluetooth: hci7: command 0x0409 tx timeout [ 73.395184] Bluetooth: hci0: command 0x041b tx timeout [ 73.459221] Bluetooth: hci2: command 0x041b tx timeout [ 73.523227] Bluetooth: hci1: command 0x041b tx timeout [ 73.523688] Bluetooth: hci3: command 0x041b tx timeout [ 73.523715] Bluetooth: hci4: command 0x041b tx timeout [ 73.587181] Bluetooth: hci6: command 0x041b tx timeout [ 73.651263] Bluetooth: hci5: command 0x041b tx timeout [ 73.715197] Bluetooth: hci7: command 0x041b tx timeout [ 75.443215] Bluetooth: hci0: command 0x040f tx timeout [ 75.507265] Bluetooth: hci2: command 0x040f tx timeout [ 75.571237] Bluetooth: hci4: command 0x040f tx timeout [ 75.571678] Bluetooth: hci3: command 0x040f tx timeout [ 75.571691] Bluetooth: hci1: command 0x040f tx timeout [ 75.635187] Bluetooth: hci6: command 0x040f tx timeout [ 75.699217] Bluetooth: hci5: command 0x040f tx timeout [ 75.763211] Bluetooth: hci7: command 0x040f tx timeout [ 77.491192] Bluetooth: hci0: command 0x0419 tx timeout [ 77.555197] Bluetooth: hci2: command 0x0419 tx timeout [ 77.619211] Bluetooth: hci3: command 0x0419 tx timeout [ 77.619681] Bluetooth: hci1: command 0x0419 tx timeout [ 77.620099] Bluetooth: hci4: command 0x0419 tx timeout [ 77.683174] Bluetooth: hci6: command 0x0419 tx timeout [ 77.747236] Bluetooth: hci5: command 0x0419 tx timeout [ 77.811663] Bluetooth: hci7: command 0x0419 tx timeout 16:58:05 executing program 4: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) syz_io_uring_setup(0x3256, &(0x7f0000000100)={0x0, 0xa0ef, 0x0, 0x1, 0xcd, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) r9 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r9, 0x0, 0x30, 0x0, 0x5002) syz_io_uring_submit(r4, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x20, 0x0, 0x10000, 0x6}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 122.571066] audit: type=1400 audit(1664557085.240:7): avc: denied { open } for pid=3817 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.572618] audit: type=1400 audit(1664557085.240:8): avc: denied { kernel } for pid=3817 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 122.584744] ------------[ cut here ]------------ [ 122.584767] [ 122.584771] ====================================================== [ 122.584775] WARNING: possible circular locking dependency detected [ 122.584779] 6.0.0-rc7-next-20220929 #1 Not tainted [ 122.584786] ------------------------------------------------------ [ 122.584789] syz-executor.4/3821 is trying to acquire lock: [ 122.584796] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 122.584840] [ 122.584840] but task is already holding lock: [ 122.584843] ffff88800dfb8c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 122.584871] [ 122.584871] which lock already depends on the new lock. [ 122.584871] [ 122.584874] [ 122.584874] the existing dependency chain (in reverse order) is: [ 122.584877] [ 122.584877] -> #3 (&ctx->lock){....}-{2:2}: [ 122.584891] _raw_spin_lock+0x2a/0x40 [ 122.584902] __perf_event_task_sched_out+0x53b/0x18d0 [ 122.584914] __schedule+0xedd/0x2470 [ 122.584929] schedule+0xda/0x1b0 [ 122.584942] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.584955] syscall_exit_to_user_mode+0x19/0x40 [ 122.584968] do_syscall_64+0x48/0x90 [ 122.584986] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.584999] [ 122.584999] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 122.585012] _raw_spin_lock_nested+0x30/0x40 [ 122.585023] raw_spin_rq_lock_nested+0x1e/0x30 [ 122.585036] task_fork_fair+0x63/0x4d0 [ 122.585053] sched_cgroup_fork+0x3d0/0x540 [ 122.585067] copy_process+0x4183/0x6e20 [ 122.585078] kernel_clone+0xe7/0x890 [ 122.585094] user_mode_thread+0xad/0xf0 [ 122.585104] rest_init+0x24/0x250 [ 122.585116] arch_call_rest_init+0xf/0x14 [ 122.585135] start_kernel+0x4c6/0x4eb [ 122.585150] secondary_startup_64_no_verify+0xe0/0xeb [ 122.585165] [ 122.585165] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 122.585178] _raw_spin_lock_irqsave+0x39/0x60 [ 122.585189] try_to_wake_up+0xab/0x1930 [ 122.585202] up+0x75/0xb0 [ 122.585216] __up_console_sem+0x6e/0x80 [ 122.585232] console_unlock+0x46a/0x590 [ 122.585248] do_con_write+0xc05/0x1d50 [ 122.585259] con_write+0x21/0x40 [ 122.585268] n_tty_write+0x4d4/0xfe0 [ 122.585281] file_tty_write.constprop.0+0x455/0x8a0 [ 122.585292] vfs_write+0x9c3/0xd90 [ 122.585310] ksys_write+0x127/0x250 [ 122.585325] do_syscall_64+0x3b/0x90 [ 122.585341] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.585354] [ 122.585354] -> #0 ((console_sem).lock){....}-{2:2}: [ 122.585367] __lock_acquire+0x2a02/0x5e70 [ 122.585385] lock_acquire+0x1a2/0x530 [ 122.585400] _raw_spin_lock_irqsave+0x39/0x60 [ 122.585411] down_trylock+0xe/0x70 [ 122.585426] __down_trylock_console_sem+0x3b/0xd0 [ 122.585441] vprintk_emit+0x16b/0x560 [ 122.585458] vprintk+0x84/0xa0 [ 122.585473] _printk+0xba/0xf1 [ 122.585485] report_bug.cold+0x72/0xab [ 122.585501] handle_bug+0x3c/0x70 [ 122.585517] exc_invalid_op+0x14/0x50 [ 122.585534] asm_exc_invalid_op+0x16/0x20 [ 122.585546] group_sched_out.part.0+0x2c7/0x460 [ 122.585564] ctx_sched_out+0x8f1/0xc10 [ 122.585580] __perf_event_task_sched_out+0x6d0/0x18d0 [ 122.585591] __schedule+0xedd/0x2470 [ 122.585605] schedule+0xda/0x1b0 [ 122.585618] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.585629] syscall_exit_to_user_mode+0x19/0x40 [ 122.585641] do_syscall_64+0x48/0x90 [ 122.585657] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.585670] [ 122.585670] other info that might help us debug this: [ 122.585670] [ 122.585673] Chain exists of: [ 122.585673] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 122.585673] [ 122.585688] Possible unsafe locking scenario: [ 122.585688] [ 122.585690] CPU0 CPU1 [ 122.585692] ---- ---- [ 122.585695] lock(&ctx->lock); [ 122.585700] lock(&rq->__lock); [ 122.585707] lock(&ctx->lock); [ 122.585713] lock((console_sem).lock); [ 122.585719] [ 122.585719] *** DEADLOCK *** [ 122.585719] [ 122.585721] 2 locks held by syz-executor.4/3821: [ 122.585728] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 122.585757] #1: ffff88800dfb8c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 122.585783] [ 122.585783] stack backtrace: [ 122.585786] CPU: 0 PID: 3821 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220929 #1 [ 122.585799] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 122.585807] Call Trace: [ 122.585811] [ 122.585815] dump_stack_lvl+0x8b/0xb3 [ 122.585834] check_noncircular+0x263/0x2e0 [ 122.585850] ? format_decode+0x26c/0xb50 [ 122.585867] ? print_circular_bug+0x450/0x450 [ 122.585884] ? enable_ptr_key_workfn+0x20/0x20 [ 122.585900] ? format_decode+0x26c/0xb50 [ 122.585917] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 122.585935] __lock_acquire+0x2a02/0x5e70 [ 122.585956] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 122.585979] lock_acquire+0x1a2/0x530 [ 122.585995] ? down_trylock+0xe/0x70 [ 122.586012] ? lock_release+0x750/0x750 [ 122.586033] ? vprintk+0x84/0xa0 [ 122.586050] _raw_spin_lock_irqsave+0x39/0x60 [ 122.586062] ? down_trylock+0xe/0x70 [ 122.586077] down_trylock+0xe/0x70 [ 122.586093] ? vprintk+0x84/0xa0 [ 122.586110] __down_trylock_console_sem+0x3b/0xd0 [ 122.586127] vprintk_emit+0x16b/0x560 [ 122.586146] vprintk+0x84/0xa0 [ 122.586163] _printk+0xba/0xf1 [ 122.586174] ? record_print_text.cold+0x16/0x16 [ 122.586190] ? report_bug.cold+0x66/0xab [ 122.586207] ? group_sched_out.part.0+0x2c7/0x460 [ 122.586226] report_bug.cold+0x72/0xab [ 122.586244] handle_bug+0x3c/0x70 [ 122.586262] exc_invalid_op+0x14/0x50 [ 122.586279] asm_exc_invalid_op+0x16/0x20 [ 122.586292] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 122.586312] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 122.586324] RSP: 0018:ffff88801b937c48 EFLAGS: 00010006 [ 122.586333] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 122.586340] RDX: ffff888018b80000 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 122.586348] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 122.586356] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800dfb8c00 [ 122.586364] R13: ffff88806ce3d2c0 R14: ffffffff8547d1a0 R15: 0000000000000002 [ 122.586374] ? group_sched_out.part.0+0x2c7/0x460 [ 122.586394] ? group_sched_out.part.0+0x2c7/0x460 [ 122.586414] ctx_sched_out+0x8f1/0xc10 [ 122.586433] __perf_event_task_sched_out+0x6d0/0x18d0 [ 122.586448] ? lock_is_held_type+0xd7/0x130 [ 122.586461] ? __perf_cgroup_move+0x160/0x160 [ 122.586472] ? set_next_entity+0x304/0x550 [ 122.586490] ? update_curr+0x267/0x740 [ 122.586508] ? lock_is_held_type+0xd7/0x130 [ 122.586522] __schedule+0xedd/0x2470 [ 122.586539] ? io_schedule_timeout+0x150/0x150 [ 122.586555] ? rcu_read_lock_sched_held+0x3e/0x80 [ 122.586576] schedule+0xda/0x1b0 [ 122.586591] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.586603] syscall_exit_to_user_mode+0x19/0x40 [ 122.586616] do_syscall_64+0x48/0x90 [ 122.586634] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.586647] RIP: 0033:0x7fbdc3096b19 [ 122.586655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.586666] RSP: 002b:00007fbdc060c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.586677] RAX: 0000000000000001 RBX: 00007fbdc31a9f68 RCX: 00007fbdc3096b19 [ 122.586684] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbdc31a9f6c [ 122.586691] RBP: 00007fbdc31a9f60 R08: 000000000000000e R09: 0000000000000000 [ 122.586699] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fbdc31a9f6c [ 122.586706] R13: 00007fffa77da4df R14: 00007fbdc060c300 R15: 0000000000022000 [ 122.586719] [ 122.642916] WARNING: CPU: 0 PID: 3821 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 122.643606] Modules linked in: [ 122.643850] CPU: 0 PID: 3821 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220929 #1 [ 122.644441] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 122.645262] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 122.645676] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 122.647022] RSP: 0018:ffff88801b937c48 EFLAGS: 00010006 [ 122.647420] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 122.647944] RDX: ffff888018b80000 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 122.648476] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 122.649002] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800dfb8c00 [ 122.649535] R13: ffff88806ce3d2c0 R14: ffffffff8547d1a0 R15: 0000000000000002 [ 122.650056] FS: 00007fbdc060c700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 122.650652] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.651082] CR2: 00007fec36b2e008 CR3: 000000003f4be000 CR4: 0000000000350ef0 [ 122.651619] Call Trace: [ 122.651817] [ 122.651990] ctx_sched_out+0x8f1/0xc10 [ 122.652294] __perf_event_task_sched_out+0x6d0/0x18d0 [ 122.652682] ? lock_is_held_type+0xd7/0x130 [ 122.653001] ? __perf_cgroup_move+0x160/0x160 [ 122.653353] ? set_next_entity+0x304/0x550 [ 122.653681] ? update_curr+0x267/0x740 [ 122.653977] ? lock_is_held_type+0xd7/0x130 [ 122.654304] __schedule+0xedd/0x2470 [ 122.654594] ? io_schedule_timeout+0x150/0x150 [ 122.654941] ? rcu_read_lock_sched_held+0x3e/0x80 [ 122.655307] schedule+0xda/0x1b0 [ 122.655570] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.655937] syscall_exit_to_user_mode+0x19/0x40 [ 122.656294] do_syscall_64+0x48/0x90 [ 122.656585] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.656967] RIP: 0033:0x7fbdc3096b19 [ 122.657251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.658585] RSP: 002b:00007fbdc060c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.659136] RAX: 0000000000000001 RBX: 00007fbdc31a9f68 RCX: 00007fbdc3096b19 [ 122.659659] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fbdc31a9f6c [ 122.660183] RBP: 00007fbdc31a9f60 R08: 000000000000000e R09: 0000000000000000 [ 122.660718] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fbdc31a9f6c [ 122.661258] R13: 00007fffa77da4df R14: 00007fbdc060c300 R15: 0000000000022000 [ 122.661790] [ 122.661968] irq event stamp: 2888 [ 122.662227] hardirqs last enabled at (2887): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 122.662920] hardirqs last disabled at (2888): [] __schedule+0x1225/0x2470 [ 122.663536] softirqs last enabled at (2658): [] __irq_exit_rcu+0x11b/0x180 [ 122.664173] softirqs last disabled at (2247): [] __irq_exit_rcu+0x11b/0x180 [ 122.664816] ---[ end trace 0000000000000000 ]--- 16:58:05 executing program 4: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) syz_io_uring_setup(0x3256, &(0x7f0000000100)={0x0, 0xa0ef, 0x0, 0x1, 0xcd, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) r9 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r9, 0x0, 0x30, 0x0, 0x5002) syz_io_uring_submit(r4, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x20, 0x0, 0x10000, 0x6}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 16:58:05 executing program 4: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) syz_io_uring_setup(0x3256, &(0x7f0000000100)={0x0, 0xa0ef, 0x0, 0x1, 0xcd, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) r9 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r9, 0x0, 0x30, 0x0, 0x5002) syz_io_uring_submit(r4, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x20, 0x0, 0x10000, 0x6}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 16:58:05 executing program 4: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) syz_io_uring_setup(0x3256, &(0x7f0000000100)={0x0, 0xa0ef, 0x0, 0x1, 0xcd, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) r9 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r9, 0x0, 0x30, 0x0, 0x5002) syz_io_uring_submit(r4, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x20, 0x0, 0x10000, 0x6}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 16:58:06 executing program 4: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) syz_io_uring_setup(0x3256, &(0x7f0000000100)={0x0, 0xa0ef, 0x0, 0x1, 0xcd, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) r9 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r9, 0x0, 0x30, 0x0, 0x5002) syz_io_uring_submit(r4, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x20, 0x0, 0x10000, 0x6}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 123.524200] loop6: detected capacity change from 0 to 264192 [ 123.525788] FAT-fs (loop6): Unrecognized mount option "subj_user=" or missing value 16:58:06 executing program 3: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) syz_io_uring_setup(0x3256, &(0x7f0000000100)={0x0, 0xa0ef, 0x0, 0x1, 0xcd, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) r9 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r9, 0x0, 0x30, 0x0, 0x5002) syz_io_uring_submit(r4, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x20, 0x0, 0x10000, 0x6}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 123.637578] loop6: detected capacity change from 0 to 264192 [ 123.638500] FAT-fs (loop6): Unrecognized mount option "subj_user=" or missing value 16:58:06 executing program 6: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) syz_io_uring_setup(0x3256, &(0x7f0000000100)={0x0, 0xa0ef, 0x0, 0x1, 0xcd, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) r9 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r9, 0x0, 0x30, 0x0, 0x5002) syz_io_uring_submit(r4, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x20, 0x0, 0x10000, 0x6}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 16:58:06 executing program 4: r0 = syz_io_uring_setup(0x137, &(0x7f00000003c0), &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r3, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) syz_io_uring_setup(0x101, &(0x7f0000000080), &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x4}, 0x0) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r8, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) syz_io_uring_setup(0x3256, &(0x7f0000000100)={0x0, 0xa0ef, 0x0, 0x1, 0xcd, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)) r9 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_MCAST_MSFILTER(r9, 0x0, 0x30, 0x0, 0x5002) syz_io_uring_submit(r4, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r9, 0x20, 0x0, 0x10000, 0x6}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) [ 124.997378] mmap: syz-executor.5 (3999): VmData 37515264 exceed data ulimit 38139. Update limits or use boot option ignore_rlimit_data. VM DIAGNOSIS: 16:58:05 Registers: info registers vcpu 0 RAX=000000000000007b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88801b937690 R8 =0000000000000001 R9 =000000000000000a R10=000000000000007b R11=0000000000000001 R12=000000000000007b R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fbdc060c700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fec36b2e008 CR3=000000003f4be000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fbdc317d7c0 00007fbdc317d7c8 YMM02=0000000000000000 0000000000000000 00007fbdc317d7e0 00007fbdc317d7c0 YMM03=0000000000000000 0000000000000000 00007fbdc317d7c8 00007fbdc317d7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88801b667700 RCX=0000000000000000 RDX=ffff88801bb38000 RSI=ffff88801b667700 RDI=ffff8880204bf950 RBP=ffff88800f47e0d0 RSP=ffff8880204bf908 R8 =0000000000000005 R9 =0000000000000000 R10=0000000080000000 R11=0000000000000001 R12=ffff88800ee628f0 R13=ffff8880204bfb48 R14=ffff88800de98c30 R15=ffff88801b667b20 RIP=ffffffff816cc4d2 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f33fa442368 CR3=000000001b418000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 322e6f732e6c6462 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00322e6f732e6c64 62696c2f756e672d YMM03=0000000000000000 0000000000000000 78756e696c2d3436 5f3638782f62696c YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000