Warning: Permanently added '[localhost]:34435' (ECDSA) to the list of known hosts. 2022/09/30 19:22:17 fuzzer started 2022/09/30 19:22:18 dialing manager at localhost:40535 syzkaller login: [ 46.085286] cgroup: Unknown subsys name 'net' [ 46.183008] cgroup: Unknown subsys name 'rlimit' 2022/09/30 19:22:32 syscalls: 2215 2022/09/30 19:22:32 code coverage: enabled 2022/09/30 19:22:32 comparison tracing: enabled 2022/09/30 19:22:32 extra coverage: enabled 2022/09/30 19:22:32 setuid sandbox: enabled 2022/09/30 19:22:32 namespace sandbox: enabled 2022/09/30 19:22:32 Android sandbox: enabled 2022/09/30 19:22:32 fault injection: enabled 2022/09/30 19:22:32 leak checking: enabled 2022/09/30 19:22:32 net packet injection: enabled 2022/09/30 19:22:32 net device setup: enabled 2022/09/30 19:22:32 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 19:22:32 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 19:22:32 USB emulation: enabled 2022/09/30 19:22:32 hci packet injection: enabled 2022/09/30 19:22:32 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 19:22:32 802.15.4 emulation: enabled 2022/09/30 19:22:32 fetching corpus: 50, signal 28208/29963 (executing program) 2022/09/30 19:22:32 fetching corpus: 100, signal 39055/42430 (executing program) 2022/09/30 19:22:32 fetching corpus: 150, signal 44684/49576 (executing program) 2022/09/30 19:22:32 fetching corpus: 200, signal 52521/58813 (executing program) 2022/09/30 19:22:32 fetching corpus: 250, signal 57982/65638 (executing program) 2022/09/30 19:22:33 fetching corpus: 300, signal 63668/72608 (executing program) 2022/09/30 19:22:33 fetching corpus: 350, signal 67534/77721 (executing program) 2022/09/30 19:22:33 fetching corpus: 400, signal 73600/84846 (executing program) 2022/09/30 19:22:33 fetching corpus: 450, signal 81178/93282 (executing program) 2022/09/30 19:22:33 fetching corpus: 500, signal 85197/98309 (executing program) 2022/09/30 19:22:33 fetching corpus: 550, signal 87716/101913 (executing program) 2022/09/30 19:22:33 fetching corpus: 600, signal 91441/106604 (executing program) 2022/09/30 19:22:33 fetching corpus: 650, signal 94515/110584 (executing program) 2022/09/30 19:22:34 fetching corpus: 700, signal 96612/113683 (executing program) 2022/09/30 19:22:34 fetching corpus: 750, signal 99215/117210 (executing program) 2022/09/30 19:22:34 fetching corpus: 800, signal 101601/120465 (executing program) 2022/09/30 19:22:34 fetching corpus: 850, signal 103332/123145 (executing program) 2022/09/30 19:22:34 fetching corpus: 900, signal 105437/126044 (executing program) 2022/09/30 19:22:34 fetching corpus: 950, signal 106632/128185 (executing program) 2022/09/30 19:22:34 fetching corpus: 1000, signal 109411/131625 (executing program) 2022/09/30 19:22:34 fetching corpus: 1050, signal 111725/134659 (executing program) 2022/09/30 19:22:35 fetching corpus: 1100, signal 113279/137043 (executing program) 2022/09/30 19:22:35 fetching corpus: 1150, signal 114884/139444 (executing program) 2022/09/30 19:22:35 fetching corpus: 1200, signal 115972/141346 (executing program) 2022/09/30 19:22:35 fetching corpus: 1250, signal 118135/144150 (executing program) 2022/09/30 19:22:35 fetching corpus: 1300, signal 119331/146171 (executing program) 2022/09/30 19:22:35 fetching corpus: 1350, signal 121390/148784 (executing program) 2022/09/30 19:22:35 fetching corpus: 1400, signal 122490/150638 (executing program) 2022/09/30 19:22:35 fetching corpus: 1450, signal 124337/153078 (executing program) 2022/09/30 19:22:35 fetching corpus: 1500, signal 126661/155856 (executing program) 2022/09/30 19:22:36 fetching corpus: 1550, signal 128653/158319 (executing program) 2022/09/30 19:22:36 fetching corpus: 1600, signal 129882/160181 (executing program) 2022/09/30 19:22:36 fetching corpus: 1650, signal 132610/163172 (executing program) 2022/09/30 19:22:36 fetching corpus: 1700, signal 133544/164784 (executing program) 2022/09/30 19:22:36 fetching corpus: 1750, signal 134782/166596 (executing program) 2022/09/30 19:22:36 fetching corpus: 1800, signal 136058/168417 (executing program) 2022/09/30 19:22:36 fetching corpus: 1850, signal 137625/170369 (executing program) 2022/09/30 19:22:36 fetching corpus: 1900, signal 138672/172005 (executing program) 2022/09/30 19:22:37 fetching corpus: 1950, signal 139409/173387 (executing program) 2022/09/30 19:22:37 fetching corpus: 2000, signal 141196/175417 (executing program) 2022/09/30 19:22:37 fetching corpus: 2050, signal 142469/177111 (executing program) 2022/09/30 19:22:37 fetching corpus: 2100, signal 143460/178587 (executing program) 2022/09/30 19:22:37 fetching corpus: 2150, signal 144938/180406 (executing program) 2022/09/30 19:22:37 fetching corpus: 2200, signal 146100/181945 (executing program) 2022/09/30 19:22:37 fetching corpus: 2250, signal 146855/183270 (executing program) 2022/09/30 19:22:37 fetching corpus: 2300, signal 148217/184906 (executing program) 2022/09/30 19:22:37 fetching corpus: 2350, signal 149443/186469 (executing program) 2022/09/30 19:22:38 fetching corpus: 2400, signal 150287/187786 (executing program) 2022/09/30 19:22:38 fetching corpus: 2450, signal 151758/189461 (executing program) 2022/09/30 19:22:38 fetching corpus: 2500, signal 152564/190723 (executing program) 2022/09/30 19:22:38 fetching corpus: 2550, signal 153460/191997 (executing program) 2022/09/30 19:22:38 fetching corpus: 2600, signal 154400/193294 (executing program) 2022/09/30 19:22:38 fetching corpus: 2650, signal 155177/194458 (executing program) 2022/09/30 19:22:38 fetching corpus: 2700, signal 155999/195643 (executing program) 2022/09/30 19:22:38 fetching corpus: 2750, signal 157293/197058 (executing program) 2022/09/30 19:22:39 fetching corpus: 2800, signal 158801/198592 (executing program) 2022/09/30 19:22:39 fetching corpus: 2850, signal 159553/199689 (executing program) 2022/09/30 19:22:39 fetching corpus: 2900, signal 160476/200857 (executing program) 2022/09/30 19:22:39 fetching corpus: 2950, signal 161030/201847 (executing program) 2022/09/30 19:22:39 fetching corpus: 3000, signal 162430/203247 (executing program) 2022/09/30 19:22:39 fetching corpus: 3050, signal 162959/204203 (executing program) 2022/09/30 19:22:39 fetching corpus: 3100, signal 164053/205419 (executing program) 2022/09/30 19:22:39 fetching corpus: 3150, signal 164717/206392 (executing program) 2022/09/30 19:22:39 fetching corpus: 3200, signal 165717/207522 (executing program) 2022/09/30 19:22:40 fetching corpus: 3250, signal 166020/208279 (executing program) 2022/09/30 19:22:40 fetching corpus: 3300, signal 167028/209366 (executing program) 2022/09/30 19:22:40 fetching corpus: 3350, signal 167935/210445 (executing program) 2022/09/30 19:22:40 fetching corpus: 3400, signal 168793/211369 (executing program) 2022/09/30 19:22:40 fetching corpus: 3450, signal 169484/212299 (executing program) 2022/09/30 19:22:40 fetching corpus: 3500, signal 170502/213375 (executing program) 2022/09/30 19:22:40 fetching corpus: 3550, signal 171591/214415 (executing program) 2022/09/30 19:22:40 fetching corpus: 3600, signal 172534/215421 (executing program) 2022/09/30 19:22:40 fetching corpus: 3650, signal 172985/216169 (executing program) 2022/09/30 19:22:41 fetching corpus: 3700, signal 173547/217029 (executing program) 2022/09/30 19:22:41 fetching corpus: 3750, signal 174323/217899 (executing program) 2022/09/30 19:22:41 fetching corpus: 3800, signal 174718/218638 (executing program) 2022/09/30 19:22:41 fetching corpus: 3850, signal 175567/219525 (executing program) 2022/09/30 19:22:41 fetching corpus: 3900, signal 176363/220364 (executing program) 2022/09/30 19:22:41 fetching corpus: 3950, signal 177870/221433 (executing program) 2022/09/30 19:22:41 fetching corpus: 4000, signal 178392/222195 (executing program) 2022/09/30 19:22:41 fetching corpus: 4050, signal 179330/223039 (executing program) 2022/09/30 19:22:42 fetching corpus: 4100, signal 180035/223803 (executing program) 2022/09/30 19:22:42 fetching corpus: 4150, signal 180518/224499 (executing program) 2022/09/30 19:22:42 fetching corpus: 4200, signal 181434/225349 (executing program) 2022/09/30 19:22:42 fetching corpus: 4250, signal 181937/226039 (executing program) 2022/09/30 19:22:42 fetching corpus: 4300, signal 182562/226787 (executing program) 2022/09/30 19:22:42 fetching corpus: 4350, signal 182979/227450 (executing program) 2022/09/30 19:22:42 fetching corpus: 4400, signal 184166/228269 (executing program) 2022/09/30 19:22:42 fetching corpus: 4450, signal 185263/229171 (executing program) 2022/09/30 19:22:43 fetching corpus: 4500, signal 186007/230022 (executing program) 2022/09/30 19:22:43 fetching corpus: 4550, signal 186200/230577 (executing program) 2022/09/30 19:22:43 fetching corpus: 4600, signal 187301/231312 (executing program) 2022/09/30 19:22:43 fetching corpus: 4650, signal 187887/231925 (executing program) 2022/09/30 19:22:43 fetching corpus: 4700, signal 188529/232547 (executing program) 2022/09/30 19:22:43 fetching corpus: 4750, signal 189080/233129 (executing program) 2022/09/30 19:22:43 fetching corpus: 4800, signal 189787/233739 (executing program) 2022/09/30 19:22:43 fetching corpus: 4850, signal 190260/234302 (executing program) 2022/09/30 19:22:43 fetching corpus: 4873, signal 190746/234831 (executing program) 2022/09/30 19:22:43 fetching corpus: 4873, signal 190746/235260 (executing program) 2022/09/30 19:22:43 fetching corpus: 4873, signal 190746/235700 (executing program) 2022/09/30 19:22:43 fetching corpus: 4873, signal 190746/236161 (executing program) 2022/09/30 19:22:43 fetching corpus: 4873, signal 190746/236609 (executing program) 2022/09/30 19:22:43 fetching corpus: 4873, signal 190746/237067 (executing program) 2022/09/30 19:22:43 fetching corpus: 4873, signal 190746/237487 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/237962 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/238387 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/238859 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/239292 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/239749 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/240181 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/240630 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/241088 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/241514 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/241985 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/242407 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/242848 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/243303 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/243763 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/244203 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/244663 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/244941 (executing program) 2022/09/30 19:22:44 fetching corpus: 4873, signal 190746/244941 (executing program) 2022/09/30 19:22:47 starting 8 fuzzer processes 19:22:47 executing program 0: vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000000)="baeb75f9e6fe96e23daa70ecdf2d0fb49970228b93b79113dd9cb9ab4453bfd601c4fcb0ba92c062663d6deba4ce9effad8fcf72bfd2f2ff10cc5c6dbaafbea309a1b70ae8747ffb5f7a792af73f17cd7b788059e68704dd3a34de89eaeb12280ea9a1b8f0a02e77db9ec6db342f4235891da44bae956915f31d1f5a3a2f84a95d", 0x81}], 0x1, 0x0) r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x68, r0, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x48, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000800}, 0x4844) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000280)=0x3f) r1 = syz_open_dev$vcsn(&(0x7f00000002c0), 0xfffffffffffffffe, 0x38802) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x60, 0x0, 0x8, 0x70bd26, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7fff}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000850}, 0x1) r2 = fsmount(r1, 0x0, 0xe) pwritev2(r2, &(0x7f0000000580)=[{&(0x7f0000000440)="12941131da6ffd531e477fb76351c71b2e17258e215c605b5bda723f518e63bc003c3ba98c07a2def87a3958bbd6b8d0a2d7b95286f66010a3ab4acdec43382392b9113143c319471e38e3997b9e00c1eb9790814079060631319409bfc3e069d8c6e4a96b6a14efbc310c03d7eee23473dfe3bb22e7cf04b2d93ba5104ad215740499be8c7b06b881112243653225a01f28b66085715f2cc2ae047922f6a26a2d620027650da25f3c71c2559fcc574c2cad71883093a323c85a373082dfe439dd71c9d2f4c3b32fbac0653f19eafee7ca4ee75246a40ded98dd6747467345216906b595c9bb67b34e8181c160c2", 0xee}, {&(0x7f0000000540)="d6d8f9dbd7c359", 0x7}], 0x2, 0x7fffffff, 0x2, 0xe) r3 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f00000005c0)='./binderfs/binder-control\x00', 0x800, 0x0) fsetxattr$trusted_overlay_upper(r3, &(0x7f0000000600), &(0x7f0000000640)={0x0, 0xfb, 0xb8, 0x7, 0x1, "5c6e8ac7d4a4a80861bb24dd45a161c5", "135bbeca8eb7fa9847738a646b999131ff43ddc1ad09ffb483071b607ae7577e6b53e0d1706da001f2c6e6bd6ca1f153c00e3ea524792e8c3d9b26f52e1b2dd7b35635eeddcb7e138724d4e775274691082a0c74b52528e0342e5f972e1afd800d2fc68f733b61b5d05d5c08c0af5f21c2b1c31f460cc2538de43f0802d21912805b2f7810c1423002d371e71ff0eab32f5d61079a7168ca7b9f7d75210039ee99b541"}, 0xb8, 0x2) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000700)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) ioctl$MON_IOCT_RING_SIZE(r4, 0x9204, 0xc3f6f) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000740)='/proc/timer_list\x00', 0x0, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_uring_register$IORING_REGISTER_FILES_UPDATE(r6, 0x6, &(0x7f00000007c0)={0x9, 0x0, &(0x7f0000000780)=[r2, r7, r8, r4]}, 0x4) fallocate(r4, 0xf, 0x3, 0x1ff) ioctl$BTRFS_IOC_DEFRAG_RANGE(r5, 0x40309410, &(0x7f0000000800)={0x101, 0x9512f62, 0x0, 0x4, 0x3, [0xffff, 0x9, 0x8000, 0x8]}) ioctl$FS_IOC_MEASURE_VERITY(r8, 0xc0046686, &(0x7f0000000840)={0x2, 0xd1, "76461d1449106b77f667c0980f5b3e08bee4ebc19e06257bd8856794fcebf79b77134f9804d13cec7cd146f1c7649c5aec1c0d25a25843a1c05e941938dc409b53277455a3f2999d7f755b135c1f0f0c14935f6de5cddf7548654791f8f2b29ad9756757dfadb5c0b4b74555ac6f91c917c2ea67067f48aaa0159d5dc02dca86b33738c1d6b4bdb35db2c77b376818dddb3a67f90427592a84f711a85bd5bc3536cae3f988e7a0834c4d10a54f7bb172e36e07f938d94ed0a005929fd3bb12ce634d63f84c8aec5ad6ec876c40738aedf6"}) setsockopt$bt_BT_SNDMTU(0xffffffffffffffff, 0x112, 0xc, &(0x7f0000000940)=0x5100, 0x2) 19:22:47 executing program 4: ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x110800}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x0, 0x400, 0x70bd28, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0xffffffff}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000180), 0x101000, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r1) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f00000001c0), 0x400481, 0x0) ftruncate(r2, 0x9) r3 = openat(r0, &(0x7f0000000200)='./file0\x00', 0x60282, 0x104) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1) sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x20, r4, 0x300, 0x70bd29, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x800, 0x61}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x5) mknodat$loop(r1, &(0x7f0000000380)='./file0\x00', 0x2, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_MPATH(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x4c, r5, 0x8, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x8, 0x43}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x40014) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000005c0), r1) sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f0000000700)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000600)={0x88, r7, 0x200, 0x70bd27, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x6, 0x70}}}}, [@NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "ebe448363331529015e96da07d"}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_SEQ={0x6, 0xa, "9375"}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "72447468d7a9c23ffae8144379"}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x1}, @NL80211_ATTR_KEY_SEQ={0x7, 0xa, "a5ae53"}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "727521d6cb418da6cc33fa814d"}, @NL80211_ATTR_KEY_DEFAULT={0x4}]}, 0x88}, 0x1, 0x0, 0x0, 0x8}, 0x4014) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r1) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f00000009c0)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000980)={&(0x7f00000007c0)={0x184, r8, 0x100, 0x70bd29, 0x25dfdbff, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x1}, @NL80211_ATTR_REG_RULES={0x134, 0x22, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x800}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xa1}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xdd}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xbfaa}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7ff}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7f}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8000}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x10000}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x80}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x81}]}, {0x54, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9ad3}, @NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x10001}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x3}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xffe00}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x4}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xf0b}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x4}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xffff7c7b}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x171}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x377}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0xd6}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x81}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x4}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9e}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}]}, 0x184}, 0x1, 0x0, 0x0, 0x40000}, 0x1) pipe2(&(0x7f0000000a00)={0xffffffffffffffff}, 0x800) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r9, 0x8982, &(0x7f0000000a40)={0x2, 'veth1_to_team\x00', {0x10000}, 0x5}) sendmsg$NL80211_CMD_START_P2P_DEVICE(r0, &(0x7f0000000b80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x20, 0x0, 0x400, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x0, 0x68}}}}, ["", "", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x5}, 0x8c0) 19:22:47 executing program 1: sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0x100, 0x0, 0x200, 0x70bd27, 0x25dfdbfc, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x4}, {0x6, 0x16, 0x6}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0x345}, {0x8, 0xb, 0x7}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0xfffffff7}, {0x6, 0x16, 0x7ff}, {0x5, 0x12, 0x1}, {0x6, 0x11, 0x1ff}, {0x8, 0xb, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x4}, {0x6, 0x16, 0x1f}, {0x5}, {0x6, 0x11, 0x7f}, {0x8, 0xb, 0x2}}]}, 0x100}, 0x1, 0x0, 0x0, 0x44004}, 0x40) r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='syscall\x00') sendmsg$SMC_PNETID_GET(r0, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x58, 0x0, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz0\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'team_slave_0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x40810) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_NOACK_MAP(r0, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x5}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x2}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x4fe}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3ff}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x90) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000680)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000640)={&(0x7f00000004c0)={0x174, r1, 0x300, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x10001, 0x2b}}}}, [@NL80211_ATTR_4ADDR={0x5}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "66c781c4d58882ae4fb07f6affe68c44773db3027e61a970"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "ad6b1f8946339945d92dcb43f176195b8a1a14bf32a821ea"}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "c7f34514b63308fe8a4b4e6a2d75c01acc7444c91991903a"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "f116b0e06ddfcbcb3b27ba0c46cc9d0c471320d45104dcbb"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "134f87fba221be874eb744458cc55d6ce1bdee39781e96e3"}], @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "b35fc734f7ab4756922caaac9f0d86bd824e4abc45ee8abb"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "2a99626148e517545b5b1e29e51817ed25823daca701ce64"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}]]}, 0x174}, 0x1, 0x0, 0x0, 0x48004}, 0x9800) syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000740), r2) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x1c, r3, 0x2, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x80) sendmsg$AUDIT_USER_TTY(r0, &(0x7f00000009c0)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000980)={&(0x7f0000000880)={0xf8, 0x464, 0x8, 0x70bd27, 0x25dfdbff, "cdfd2b50b28f49cd3f8f9b4b3256e50d7a7a5d6ce38786f6d1c8f3399975356463ac201a3949de100c067e04a7a77310443e3c48ec41bcd329b1aebf95b55b777447abca74f389a90d3beed096e80ecdee65cc4f4894b074cd0a3fcba75d51f8100f691dfeaf1ce6540034734098163708f005c5db2aff103cdbbf102a918c47845e4e121ef4470c3927cd87868c4c6e25f3d06c580d12c83608d715e37cbce957ed291c203c99200f4588f8ec05b47d1992828a0d95722a1bd513d36cee676d1a699f8881725f4544d8407483622c301c0666ab3a6a4fde41b370b54a9a510480164da2cdae", ["", "", ""]}, 0xf8}, 0x1, 0x0, 0x0, 0x4004001}, 0x4040000) r4 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f0000000a00), 0x4) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000a40), 0x202000, 0x0) r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000ac0), r2) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r5, &(0x7f0000000b80)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x30, r6, 0x200, 0x70bd28, 0x25dfdbfb, {{}, {}, {0x14, 0x18, {0x5, @bearer=@udp='udp:syz0\x00'}}}, [""]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0xc0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000bc0)) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e00)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001200)={&(0x7f0000000dc0), 0xc, &(0x7f00000011c0)={&(0x7f0000000e40)={0x37c, r3, 0x8, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x1, 0x31}}}}, [@NL80211_ATTR_BSS_BASIC_RATES={0x1d, 0x24, [{0x18}, {0x4}, {0x1}, {0x18}, {0x65, 0x1}, {0x1, 0x1}, {0x18}, {0x2}, {0x36, 0x1}, {0x1}, {0x9, 0x1}, {0x30}, {0x69}, {0x9, 0x1}, {0x1}, {0x6, 0x1}, {0x24, 0x1}, {0x36, 0x1}, {0x18}, {0xb}, {0x48}, {0x6c, 0x1}, {0x23, 0x1}, {0x3}, {0x2}]}, @NL80211_ATTR_TX_RATES={0xe0, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x20, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x6, 0x1, [0x36, 0x30]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x0, 0x800, 0x3, 0x363, 0x9, 0x100, 0x1]}}]}, @NL80211_BAND_5GHZ={0xbc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xde, 0x1ff, 0x0, 0x400, 0x1f, 0x3, 0x80b, 0x401]}}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0xc, 0x6c, 0x18, 0x6, 0xb, 0x37, 0x4, 0x9, 0xb, 0x18, 0x1d, 0x1b, 0x6, 0x30, 0x1, 0x6, 0x12, 0xb, 0x24, 0x1, 0x30, 0x6c, 0x9]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x1f, 0x2, [{0x3, 0x1}, {0x0, 0x3}, {0x0, 0x5}, {0x2, 0x1}, {0x2}, {0x3, 0xa}, {0x2, 0x7}, {0x1, 0x5}, {0x1, 0x4}, {0x4}, {0x7, 0xa}, {0x7, 0xa}, {0x5, 0x1}, {0x2, 0x9}, {0x4, 0x3}, {0x6, 0xa}, {0x5, 0x3}, {0x3, 0x5}, {0x3, 0x7}, {0x7, 0x4}, {0x3, 0x2}, {0x6, 0x1}, {0x7, 0x9}, {0x4, 0x8}, {0x6}, {0x5, 0x1}, {0x1, 0x7}]}, @NL80211_TXRATE_HT={0x13, 0x2, [{0x1, 0x6}, {0x4, 0x6}, {0x1, 0x1}, {0x1, 0x4}, {0x5, 0x1}, {0x4, 0x5}, {0x5, 0x6}, {0x3, 0xa}, {0x5, 0x2}, {0x6, 0x5}, {0x1, 0x3}, {0x6, 0x7}, {0x3, 0x1}, {0x2, 0x4}, {0x1, 0x8}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x20, 0x1, [0x24, 0x2, 0x12, 0xc, 0x1b, 0x36, 0x94, 0x7d, 0x16, 0x1, 0x36, 0xc, 0xb, 0x18, 0x60, 0x4, 0x60, 0xc, 0x2, 0x16, 0x1b, 0x6c, 0x12, 0x0, 0x1b, 0x18, 0x3, 0x42]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xb1f8, 0x1, 0xff2a, 0x6, 0x8, 0x101, 0x3, 0x40]}}]}]}, @NL80211_ATTR_TX_RATES={0x20c, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x28, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x6, 0x1, [0x72, 0x9]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7fff, 0x800, 0x200, 0x800, 0x162, 0x5, 0x2, 0xfffe]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0x34, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x4, 0x18]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xed4, 0x4dd, 0x100, 0x8, 0xf8, 0xfff8, 0x4, 0x7f]}}, @NL80211_TXRATE_HT={0xc, 0x2, [{0x2, 0x9}, {0x5, 0x4}, {0x5, 0x5}, {0x0, 0x8}, {0x1, 0x5}, {0x1, 0x2}, {0x0, 0x5}, {0x0, 0x6}]}]}, @NL80211_BAND_6GHZ={0xb0, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x3d, 0x2, [{0x5, 0x9}, {0x4, 0x4}, {0x5, 0x5}, {0x2, 0x9}, {0x5, 0x7}, {0x6, 0x1}, {0x1, 0x9}, {0x5, 0x3}, {0x0, 0x7}, {0x6, 0x1}, {0x6, 0xa}, {0x4, 0x6}, {0x7, 0x8}, {0x5, 0x8}, {0x4, 0x9}, {0x6}, {0x0, 0x4}, {0x0, 0x1}, {0x5, 0x5}, {0x0, 0x9}, {0x5, 0x9}, {0x1, 0x7}, {0x4, 0x9}, {0x2, 0xa}, {0x6, 0x1}, {0x0, 0x6}, {0x4, 0x3}, {0x0, 0x4}, {0x0, 0x6}, {0x5, 0x1}, {0x1, 0xa}, {0x1, 0x1}, {0x7}, {0x1, 0x9}, {0x6, 0x1}, {}, {0x5, 0x8}, {0x2, 0x9}, {0x6, 0xa}, {0x2, 0xa}, {0x3, 0x4}, {0x0, 0x6}, {0x1, 0xa}, {0x1, 0x2}, {0x0, 0x8}, {0x5, 0x2}, {}, {0x5, 0xa}, {0x5}, {0x3, 0x6}, {0x1, 0x4}, {0x5}, {0x4, 0x5}, {0x5, 0x3}, {0x0, 0x7}, {0x2, 0x5}, {0x4, 0x3}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xc85, 0x8001, 0x3f, 0x400, 0x20, 0x40, 0xff]}}, @NL80211_TXRATE_HT={0x50, 0x2, [{0x7, 0x7}, {0x4, 0x2}, {0x4, 0x3}, {0x4, 0x7}, {0x2, 0x6}, {0x0, 0x7}, {0x0, 0x9}, {}, {0x1}, {0x2}, {0x7, 0x1}, {0x6, 0x6}, {0x4, 0x5}, {0x0, 0x8}, {0x2, 0x1}, {0x3, 0x1}, {0x3, 0x4}, {0x7, 0x3}, {0x1, 0x1}, {0x7, 0x1}, {0x2, 0x9}, {0x7, 0x4}, {0x6, 0x1}, {0x7, 0x3}, {0x5, 0x2}, {0x0, 0x8}, {0x1, 0x2}, {0x4, 0x9}, {0x0, 0x8}, {0x3}, {0x6, 0x6}, {0x0, 0x5}, {0x7, 0x3}, {0x3, 0x2}, {0x2, 0xa}, {0x1, 0xa}, {0x2, 0x7}, {0x2, 0x9}, {0x3, 0x3}, {0x4, 0x1}, {0x3, 0x4}, {0x7, 0x9}, {0x1, 0x2}, {0x1}, {0x0, 0x9}, {0x1, 0x2}, {0x6, 0x8}, {0x0, 0x7}, {0x3, 0x2}, {0x2, 0x1}, {0x2, 0x7}, {0x3, 0x3}, {0x4, 0x1}, {0x7, 0x3}, {0x1, 0x4}, {0x4, 0x5}, {0x0, 0x1}, {0x1, 0x8}, {0x1, 0x1}, {0x0, 0x6}, {0x2, 0x6}, {0x3, 0xa}, {0x1, 0x7}, {0x6, 0x7}, {0x0, 0x1}, {0x2, 0x3}, {0x5, 0x4}, {0x0, 0x4}, {0x7, 0x3}, {0x4, 0x1}, {0x3, 0x9}, {0x5}, {0x1, 0x5}, {0x7, 0x4}, {0x5}, {0x0, 0x4}]}]}, @NL80211_BAND_5GHZ={0x44, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x3d, 0x2, [{0x1, 0x1}, {0x7, 0x9}, {0x0, 0xa}, {0x5, 0x6}, {0x4, 0x3}, {0x7}, {0x5, 0x3}, {0x1, 0x4}, {0x0, 0x5}, {0x3, 0x4}, {0x0, 0x1}, {0x4, 0x9}, {0x6, 0x4}, {0x7, 0x3}, {0x6, 0x6}, {0x2, 0x4}, {0x2, 0xa}, {0x5, 0x7}, {0x4, 0x2}, {0x5, 0x3}, {0x5, 0x6}, {0x7, 0x3}, {0x1, 0x7}, {0x1, 0x1}, {0x1, 0x9}, {0x1, 0x5}, {0x2, 0x5}, {0x3, 0x3}, {0x7}, {0x5, 0xa}, {0x4, 0x7}, {0x3, 0x9}, {0x1, 0x2}, {0x4, 0x2}, {0x7, 0x8}, {0x1, 0x3}, {0x6, 0x5}, {0x2, 0x4}, {0x6, 0x9}, {0x5, 0x3}, {0x4, 0x3}, {0x1, 0x4}, {0x0, 0x7}, {0x3}, {0x4, 0x7}, {0x4, 0x9}, {0x1}, {0x5, 0x8}, {0x1, 0x7}, {0x6, 0x8}, {0x3, 0xa}, {0x2, 0xa}, {0x2, 0x6}, {0x1, 0xa}, {0x0, 0x4}, {0x2, 0x7}, {0x0, 0xa}]}]}, @NL80211_BAND_5GHZ={0x7c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xabe0, 0x800, 0x6, 0x3ff, 0x3ff, 0x7, 0x0, 0x2ad3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x3f, 0x1, 0xf800, 0x4, 0x2, 0xfd54, 0x7fff]}}, @NL80211_TXRATE_HT={0x4d, 0x2, [{0x0, 0x3}, {0x1, 0x6}, {0x7, 0x2}, {0x4, 0xa}, {0x2, 0xa}, {0x3, 0xa}, {0x5, 0x4}, {0x5, 0xa}, {0x2, 0x2}, {0x7, 0x6}, {0x2, 0x1}, {0x4, 0x5}, {0x6, 0x5}, {0x0, 0x9}, {0x3, 0x9}, {0x2, 0x9}, {0x1, 0xa}, {0x0, 0x8}, {0x1, 0xa}, {0x7, 0x3}, {0x2, 0x2}, {0x3, 0x8}, {0x3, 0x6}, {0x6, 0x9}, {0x5, 0x4}, {0x7, 0x9}, {0x2, 0x5}, {0x0, 0x3}, {0x4, 0x8}, {0x0, 0xa}, {0x7, 0x1}, {0x0, 0x7}, {0x4, 0x9}, {0x4, 0x7}, {0x1, 0xa}, {0x1, 0x6}, {0x7}, {0x3, 0x6}, {0x0, 0x9}, {0x0, 0x6}, {0x7, 0x5}, {0x7, 0x8}, {0x3, 0x2}, {0x4, 0x2}, {0x5, 0x7}, {0x3, 0x5}, {0x3, 0x8}, {0x4, 0x8}, {0x3, 0x9}, {0x2, 0x7}, {0x4, 0x7}, {0x7, 0x4}, {0x3, 0x6}, {0x1, 0x1}, {0x6, 0x5}, {0x1, 0x9}, {0x4, 0x9}, {0x1, 0xa}, {0x2, 0xa}, {0x4}, {0x1, 0x1}, {0x7, 0x4}, {0x5, 0x5}, {0x0, 0x1}, {0x4, 0x3}, {0x5}, {0x1, 0x8}, {0x5, 0x3}, {0x7, 0x7}, {0x3, 0x3}, {0x4, 0x2}, {0x5, 0x1}, {0x3, 0x1}]}]}, @NL80211_BAND_5GHZ={0x3c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xf, 0x1, [0xc, 0x9, 0x30, 0x5, 0x5, 0x4, 0x2, 0x30, 0x3, 0x30, 0x18]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x1, 0x24, 0x1b, 0x6c, 0x5, 0x9, 0x0, 0x31, 0x2, 0x2, 0xc, 0x3d, 0xb, 0x4, 0x12, 0x3, 0x5, 0x36, 0x2, 0x6c, 0x16, 0xb, 0x9, 0x39, 0x4, 0x18, 0x16]}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x9}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7fffffff}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x20}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1671}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x14}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x37c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000) setsockopt$inet_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, &(0x7f0000001280)=@gcm_128={{0x304}, "d6063d4f42459dcc", "4b9e4fc801f2d02ddcd69638a7c22d63", "972535c7", "f6d8022bd5ad5c77"}, 0x28) 19:22:47 executing program 2: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0x0) keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f0000000080)={r0, 0xc4, 0x2e}, &(0x7f00000000c0)={'enc=', 'raw', ' hash=', {'sha384-neon\x00'}}, &(0x7f0000000140)="67f880f0ff6ef4c74ef2efab2f66e38936fe849ac73160223611b7b50cef5ba212fb6cc6d088d96f863c907d15f7633b678287c57b7d6c34507f553ef7f559be350949c1c7cd59b32fa4ed57f5fa20ec7ff6be0a688c8a8af1e5fb2929ada5f46166252b0f55f999f6c79b5a225cb94ee9c8910d6d96945d86d3aed9c3702b7d98a6d743261da26dc199a47bfc0252ced8662e29f540dc70fef0e4239357ec6a8cbe6cb5257e2627cf9663a30e06674ae07309e08bc1ce6002a34c315aeeebddcdb72794", &(0x7f0000000240)="4043e584f6c2efe0d1ecb0a23ceab2f8daae3275fbb5c29989889160f9f19e369e3b496726b3b35fac17be8b4708") keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000280)={r0, 0x3e, 0xa2}, 0x0, &(0x7f00000002c0)="436fab6538bdb9f98e0fbaf3433f7d934b2bb5986a08ad685f8aff0be3a725659f557edcfe46b67d6a2f48139fcbc1c57a4f9c533ecfa45d03368a4cf551", &(0x7f0000000300)=""/162) r1 = request_key(&(0x7f00000003c0)='trusted\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000440)='keyring\x00', 0xfffffffffffffffe) keyctl$get_security(0x11, r1, &(0x7f0000000480)=""/113, 0x71) keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000500)={r0, 0xab, 0xd1}, &(0x7f0000000540)={'enc=', 'oaep', ' hash=', {'sha224\x00'}}, &(0x7f00000005c0)="6dc221218a9c3ac9093bf7514ee704e6353ab01ac91be2fc1853ff093b4f17e9372df84db0fdc85304c4ca2736770d43c38a0398a84c541b357a061454244335948f3cfd363ac1a5200c1a06772ea604c5894d2e15d16cd51e0106ff847e3fbb56de1338a9cba2cd6f41bdf135fbf3de4b45091fd5294210749b6c1434ec80a2426c90a145e4716fb502b94080e6fcfbcd0a6365fce8e2091bc6542e699b6d26e637fd19b29082f5948b1a", &(0x7f0000000680)=""/209) r2 = add_key$keyring(&(0x7f0000000780), &(0x7f00000007c0)={'syz', 0x2}, 0x0, 0x0, r0) r3 = add_key$keyring(&(0x7f0000000800), &(0x7f0000000840)={'syz', 0x2}, 0x0, 0x0, r2) keyctl$link(0x8, r1, r3) r4 = add_key$fscrypt_provisioning(&(0x7f0000000880), &(0x7f00000008c0)={'syz', 0x2}, &(0x7f0000000900)={0x1, 0x0, @auto=[0x21, 0x37, 0x17, 0x2c]}, 0xc, r0) keyctl$invalidate(0x15, r4) request_key(&(0x7f0000000940)='.request_key_auth\x00', &(0x7f0000000980)={'syz', 0x0}, &(0x7f00000009c0)='@\x00', r1) add_key(&(0x7f0000000a00)='rxrpc\x00', &(0x7f0000000a40)={'syz', 0x2}, &(0x7f0000000a80)="8d6bf04309bbfe5c4d8692f58f2a3de7b1e2f893c839d312f4846fa1dfae351b90b966aadb2e220b4637295b70c79ccb61e4708bce20559eaf0e749619dcc68e04b8d6a8d5493a744685e40fd768b577efc1062228f81b76a2c56154105c7f92269023f8324efe2e", 0x68, r3) keyctl$KEYCTL_PKEY_SIGN(0x1b, &(0x7f0000000b00)={r1, 0xa6, 0xc3}, 0x0, &(0x7f0000000b40)="e0ef38fc6fca336858089d6e4facbc20ab11ae127697d42106cfc28018314e528957ee7893e3cb63407cdfd3695e8f17e8a81926272363fb017b3a64268d0f10b9ea9bed5e6f32584d100a88021365dae518689e7661920a21bc5a3ccfdd9d3842f5fa192e1f6c7ef48fade9e87328421a96aaf9d397ec6d8ccddba703c713125506aacdb58e585004bb63925fec8ea49e59a81f278674e3f6686e84bfb8e8d1fd90677eba7a", &(0x7f0000000c00)=""/195) r5 = add_key$keyring(&(0x7f0000000d80), &(0x7f0000000dc0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb) keyctl$search(0xa, r1, &(0x7f0000000d00)='keyring\x00', &(0x7f0000000d40)={'syz', 0x3}, r5) keyctl$read(0xb, r5, &(0x7f0000000e00)=""/173, 0xad) r6 = add_key$fscrypt_v1(&(0x7f0000000f40), &(0x7f0000000f80)={'fscrypt:', @desc4}, &(0x7f0000000fc0)={0x0, "6ebb5b1c1a2c3f7b87695376442e967db719859846f00ecf24c65eb9d76f0b48282f0d66acd355e05fc243d83950c483232b5e2ff4524edd6b1224aa6bde916a", 0x27}, 0x48, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000ec0), &(0x7f0000000f00)={'syz', 0x0}, 0x0, 0x0, r6) keyctl$search(0xa, 0x0, &(0x7f0000001100)='encrypted\x00', &(0x7f0000001140)={'syz', 0x0}, r6) 19:22:47 executing program 3: ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f0000000000)=0x2) ioctl$HIDIOCGRAWINFO(0xffffffffffffffff, 0x80084803, &(0x7f0000000040)=""/224) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000140)={'#! ', './file0', [{0x20, '$\x04]\xf6\x93/]'}, {0x20, '\x9b)-^/]&'}, {0x20, '*!+'}, {}, {0x20, '{$[,[#(,#'}, {0x20, '#}[-.(@.'}, {0x20, '(.:/\xfc!f'}, {0x20, '*'}], 0xa, "0331d838b293abdad5e51166c5ce9fe3f4cca99aa7524cb7dab2860d8c098453c0"}, 0x5e) r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f00000001c0)=0x20) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000200)={0x2, 0xfffffffffffffffc, @status={[0x7, 0x216df280, 0xffff, 0x29, 0x100000000, 0x504]}, [0x817e, 0x0, 0x2, 0x7, 0x8000, 0x5, 0x8, 0x8001, 0xfff, 0x3, 0x7, 0xff, 0x8, 0x533, 0x1f, 0x1, 0xfffffffffffffffa, 0x3, 0x100000000, 0x495, 0x1, 0x2, 0x86, 0xff, 0x4, 0x5, 0x9, 0x6, 0x7fff, 0xff, 0xfffffffffffffffb, 0x4, 0x80000001, 0x1314, 0x10001, 0x1, 0xa2ba, 0x0, 0x5, 0x8, 0x8001, 0x7f, 0x6, 0x1ff, 0xfff, 0x7ff, 0x7f, 0x10001, 0xfffffffffffff4bc, 0x2, 0xff, 0x80, 0x3f, 0x1, 0x8, 0x4, 0xffffffff7fffffff, 0x5, 0x40, 0xb9c, 0x70, 0xfffffffffffffff7, 0x4, 0x80000001]}) r1 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000c40), &(0x7f0000000c80)=0xe, 0x800) recvmmsg(r1, &(0x7f00000015c0)=[{{&(0x7f0000000cc0)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f0000001040)=[{&(0x7f0000000d40)=""/174, 0xae}, {&(0x7f0000000e00)=""/173, 0xad}, {&(0x7f0000000ec0)=""/13, 0xd}, {&(0x7f0000000f00)=""/210, 0xd2}, {&(0x7f0000001000)=""/5, 0x5}], 0x5, &(0x7f00000010c0)=""/13, 0xd}, 0x100}, {{&(0x7f0000001100)=@caif=@util, 0x80, &(0x7f0000001440)=[{&(0x7f0000001180)=""/73, 0x49}, {&(0x7f0000001200)=""/173, 0xad}, {&(0x7f00000012c0)=""/93, 0x5d}, {&(0x7f0000001340)=""/9, 0x9}, {&(0x7f0000001380)=""/15, 0xf}, {&(0x7f00000013c0)=""/91, 0x5b}], 0x6, &(0x7f00000014c0)=""/234, 0xea}, 0xb71}], 0x2, 0x40, &(0x7f0000001640)={0x77359400}) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000001680)) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f0000001b80)={&(0x7f0000001a80)=""/218, 0xda, 0x8, 0x2}) ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0xff) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f0000001bc0)={0x5a, @dev={0xac, 0x14, 0x14, 0x38}, 0x4e24, 0x3, 'wrr\x00', 0x10, 0x2, 0x72}, 0x2c) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000001c00), 0x80, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001c40)={{0x1, 0x1, 0x18, r2, {0xee00, 0xffffffffffffffff}}, './file0\x00'}) ioctl$CDROMCLOSETRAY(r3, 0x5319) accept4(r3, &(0x7f0000001c80)=@tipc=@id, &(0x7f0000001d00)=0x80, 0x0) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r1, 0xf505, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000001d40)={'xfrm0\x00'}) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001d80)='/proc/zoneinfo\x00', 0x0, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r3, 0x6, &(0x7f0000001e00)={0x101, 0x0, &(0x7f0000001dc0)=[r3, r0, r4]}, 0x3) 19:22:47 executing program 5: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x41c200, 0x0) sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0xf0, 0x9, 0x6, 0x301, 0x0, 0x0, {0xa, 0x0, 0xa}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_ETHER={0xa, 0x11, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2f3}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x200}]}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x81}, @IPSET_ATTR_DATA={0x50, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xc3}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x2}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0xfffffffb}, @IPSET_ATTR_MARKMASK={0x8, 0xb, 0x1, 0x0, 0x80000001}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0xb79}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}, @IPSET_ATTR_IP2_TO={0x18, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x5c, 0x7, 0x0, 0x1, [@IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0xff}, @IPSET_ATTR_CADT_FLAGS={0x8}, @IPSET_ATTR_IFACE={0x14, 0x17, 'bond0\x00'}, @IPSET_ATTR_ETHER={0xa, 0x11, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @IPSET_ATTR_ETHER={0xa, 0x11, @multicast}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x6}, @IPSET_ATTR_ETHER={0xa, 0x11, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x20}, 0x80) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0x0, 0xffffffffffffffff}}, './file0\x00'}) ioctl$BLKTRACESTART(r2, 0x1274, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0) sendmsg$NL80211_CMD_GET_STATION(r0, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x40, r3, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x28c}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x30b}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x8}, @NL80211_ATTR_STA_SUPPORTED_RATES={0xa, 0x13, [{0xd77a2929ee39a7c3, 0x1}, {0xc, 0x1}, {0x12}, {0xb}, {0x24, 0x1}, {0x18}]}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x11}, 0x1) ioctl$FS_IOC_GETFLAGS(r2, 0x80086601, &(0x7f00000003c0)) dup3(r2, r0, 0x0) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), r1) r5 = accept4$packet(r1, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000004c0)=0x14, 0x80000) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r2, &(0x7f0000000640)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000600)={&(0x7f0000000500)={0xe4, r4, 0x120, 0x70bd2b, 0x25dfdbfc, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}]}, @HEADER={0x4}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0xe4}, 0x1, 0x0, 0x0, 0x20042800}, 0x24040004) sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x4c, 0x0, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @empty}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2c}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @mcast2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0xc0810) r7 = openat$zero(0xffffffffffffff9c, &(0x7f00000007c0), 0x1, 0x0) sendmsg$NL80211_CMD_GET_REG(r7, &(0x7f0000000840)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x1}, 0xc, 0xfffffffffffffffe, 0x1, 0x0, 0x0, 0x40050}, 0x48051) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000008c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_MESH_CONFIG(r1, &(0x7f0000000980)={&(0x7f0000000880), 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x28, r3, 0x800, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0xfff, 0x4a}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x44001) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000009c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r9, 0x8982, &(0x7f0000000a00)={0x8, 'erspan0\x00', {'tunl0\x00'}}) sendmsg$IEEE802154_LIST_IFACE(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b00)={0x48, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x4088840}, 0x8000) [ 75.022374] audit: type=1400 audit(1664565767.150:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 19:22:47 executing program 6: sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x6c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x6d55}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x80}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xa7a}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x8}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xfffe}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x7fff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4040}, 0x40000) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0xba05cb12e62b678a, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, ["", ""]}, 0x1c}}, 0x4850) r0 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NLBL_CALIPSO_C_LISTALL(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x2c, r0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000380), r1) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000003c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0xfffffbff}}, './file0\x00'}) sendmsg$NL80211_CMD_REGISTER_BEACONS(r2, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x1c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x65}, @void, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c000) r3 = accept4(r2, &(0x7f0000000500)=@l2tp={0x2, 0x0, @broadcast}, &(0x7f0000000580)=0x80, 0x80000) sendmsg$IPSET_CMD_TYPE(r3, &(0x7f0000000680)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x2c, 0xd, 0x6, 0x801, 0x0, 0x0, {0x5, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x1) sendmsg$NFT_MSG_GETRULE(r3, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x68, 0x7, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x5}, [@NFTA_RULE_POSITION_ID={0x8}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_USERDATA={0x2c, 0x7, 0x1, 0x0, "31158b0ae03d348dc409466f5e677e4829ea316b68c6a9fa2eadddcece46e2f232272ceafbeecb16"}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x2}]}, 0x68}}, 0x6) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000840)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x400020}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x38, 0x0, 0x800, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x1, 0x24}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1630}, @NL80211_ATTR_CENTER_FREQ2={0x8}]]}, 0x38}, 0x1, 0x0, 0x0, 0x20000810}, 0x40004) r5 = openat$nvram(0xffffffffffffff9c, &(0x7f00000009c0), 0x121200, 0x0) perf_event_open(&(0x7f0000000940)={0x4, 0x80, 0x5, 0x1, 0x98, 0x63, 0x0, 0x7, 0x2104, 0xb, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x4, 0x2, @perf_config_ext={0x1f, 0x4}, 0x10, 0x85f, 0x3ff, 0x8, 0x81, 0x9, 0x7, 0x0, 0xfff, 0x0, 0x9}, 0xffffffffffffffff, 0xc, r5, 0x2) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r5, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x1c, 0x0, 0x800, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000085}, 0x4000800) fchmodat(r5, &(0x7f0000000b00)='./file0\x00', 0x190) r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000b80), r2) sendmsg$TIPC_NL_LINK_RESET_STATS(r2, &(0x7f0000000cc0)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000bc0)={0xb4, r6, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0x8c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x300}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xcfd}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_SOCK={0x8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}]}]}, 0xb4}, 0x1, 0x0, 0x0, 0x20000014}, 0x4000000) sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000d40), 0xc, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x94, 0x0, 0x200, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x94}, 0x1, 0x0, 0x0, 0x4000010}, 0x80) 19:22:47 executing program 7: ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)) r0 = syz_open_dev$vcsa(&(0x7f0000000200), 0x9, 0x440000) ioctl$SIOCGSTAMPNS(r0, 0x8907, &(0x7f0000000240)) sendmsg$AUDIT_USER_TTY(r0, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0xc4, 0x464, 0x20, 0x70bd2d, 0x25dfdbff, "37035d282697c912e5eba9f2ab9c90713c1b9f9f00e9766365dfe9800f0faca251fd7015bd448a69135ab31927115f7124023825bfb5e1b7dd168c65ed491c1b16ee2bf85876194f1daab51b171a89d6ff238ffe936e4ae723278c2ed19c391149c8423aca41dffbef880932431cf2d52a22af6a97f21b5abe6aa2f7d9fa72ac98f0276115839520938560b55cc8dfdc48b7f3cbc9df3b6f70be23ad6b623b025b5469e30f47264a61312126125a5d12a4821fe4", ["", "", ""]}, 0xc4}, 0x1, 0x0, 0x0, 0x4040840}, 0x4000) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000440)={0x8, 'bond0\x00', {'team_slave_1\x00'}, 0x101}) sendmsg$NL80211_CMD_TESTMODE(r0, &(0x7f0000000640)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000600)={&(0x7f00000004c0)={0x104, 0x0, 0x200, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_TESTDATA={0xed, 0x45, "83e23b4c24f04827223028c4f502d91618497b6de23a06f40cc4fc60ebf17c11c82cc0f528a5010dac8c5cb234bc0c735d38fc3491bb1fb341155243d6d84c8e79526bc55b0027c1dd1a95108e06c2988e097ea1e5f6063ed5df3d25dcf198008665c38af3240dd6624c5083d3705fba104d5504a500af082be2429c3c9d4e9d25d9e1ac7613bedf3240ca1ea946640ab4f1b1975b61f7866624aaaecf46d64cd1c0cc0d2e87f63cb502cab5e58a97a920e65be5fc63c4ddfb9688df6d87416305f194f8b9d086a47ab17820cc56f330cfbcc166c00e067854dc0e5695fec9ce08867397274a1e3530"}]}, 0x104}, 0x1, 0x0, 0x0, 0x40002}, 0x4000800) setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000680)=@fragment={0x89, 0x0, 0x4, 0x0, 0x0, 0x6, 0x64}, 0x8) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f00000006c0)={0x2, 'netpci0\x00', {0x4}, 0x100}) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00'}) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000740), 0x20000, 0x0) sendmsg$NFNL_MSG_ACCT_DEL(r1, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x6c, 0x3, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x400}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x2}, @NFACCT_PKTS={0xc}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x1}, @NFACCT_FILTER={0x2c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x5}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xfffff001}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x2}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xba}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x8001}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x84}, 0x40) ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f00000008c0)) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000900)) recvmsg$unix(r1, &(0x7f0000000b40)={&(0x7f0000000940)=@abs, 0x6e, &(0x7f0000000ac0)=[{&(0x7f00000009c0)=""/49, 0x31}, {&(0x7f0000000a00)=""/178, 0xb2}], 0x2, &(0x7f0000000b00)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}, 0x0) sendmsg$DEVLINK_CMD_GET(r3, &(0x7f0000000d00)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000bc0)={0xec, 0x0, 0x4b9e7eda643f2c67, 0x70bd28, 0x25dfdbfd, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0xec}, 0x1, 0x0, 0x0, 0x84}, 0x20000010) r4 = fsmount(r1, 0x1, 0x8) ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r4, 0x8983, &(0x7f0000000d40)={0x3, 'gre0\x00', {0x80}, 0x1}) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000d80)={'wlan0\x00'}) sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000f00)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e00)={0xa8, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0xfffffc00, 0x62}}}}, [@NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1478}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xfffff801}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x161c}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2c}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x28}], @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_SSID={0x12, 0x34, @random="6e0106f88456f6ea3bf308d07f39"}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_HE_BSS_COLOR={0xc, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_COLOR={0x5, 0x1, 0x3}]}]}, 0xa8}}, 0x800) setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000000f40)={{0xa, 0x4e21, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}, 0x80000000}, {0xa, 0x4e22, 0x0, @mcast2, 0xfffffffe}, 0x331b, [0x1, 0x6, 0x9, 0x7fffffff, 0xfff, 0x20, 0x7f, 0x2]}, 0x5c) [ 76.317136] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.320599] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.322748] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.324440] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.328012] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.330813] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 76.332966] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.338961] Bluetooth: hci0: HCI_REQ-0x0c1a [ 76.349229] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.351560] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.399160] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.402179] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 76.406103] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 76.408607] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.409917] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.412011] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.413442] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 76.415170] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 76.416351] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.417958] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 76.419098] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 76.420583] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 76.420864] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.421737] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.423173] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 76.423943] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 76.424712] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.425358] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 76.430105] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.430951] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 76.431370] Bluetooth: hci1: HCI_REQ-0x0c1a [ 76.434843] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.438426] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 76.439734] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 76.444076] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 76.445619] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 76.447620] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 76.457386] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.459144] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 76.460716] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 76.462707] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 76.464192] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 76.465567] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 76.467023] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 76.471624] Bluetooth: hci2: HCI_REQ-0x0c1a [ 76.479741] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 76.481561] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 76.483086] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 76.493960] Bluetooth: hci5: HCI_REQ-0x0c1a [ 76.497422] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 76.504628] Bluetooth: hci6: HCI_REQ-0x0c1a [ 76.523586] Bluetooth: hci7: HCI_REQ-0x0c1a [ 76.537607] Bluetooth: hci4: HCI_REQ-0x0c1a [ 76.643940] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 76.658809] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.759016] Bluetooth: hci3: HCI_REQ-0x0c1a [ 78.391936] Bluetooth: hci0: command 0x0409 tx timeout [ 78.454549] Bluetooth: hci1: command 0x0409 tx timeout [ 78.518763] Bluetooth: hci2: command 0x0409 tx timeout [ 78.582651] Bluetooth: hci5: command 0x0409 tx timeout [ 78.583401] Bluetooth: hci7: command 0x0409 tx timeout [ 78.583910] Bluetooth: hci4: command 0x0409 tx timeout [ 78.584510] Bluetooth: hci6: command 0x0409 tx timeout [ 78.838596] Bluetooth: hci3: command 0x0409 tx timeout [ 80.439533] Bluetooth: hci0: command 0x041b tx timeout [ 80.503544] Bluetooth: hci1: command 0x041b tx timeout [ 80.567609] Bluetooth: hci2: command 0x041b tx timeout [ 80.630576] Bluetooth: hci6: command 0x041b tx timeout [ 80.631037] Bluetooth: hci4: command 0x041b tx timeout [ 80.632317] Bluetooth: hci7: command 0x041b tx timeout [ 80.632848] Bluetooth: hci5: command 0x041b tx timeout [ 80.886619] Bluetooth: hci3: command 0x041b tx timeout [ 82.486609] Bluetooth: hci0: command 0x040f tx timeout [ 82.550621] Bluetooth: hci1: command 0x040f tx timeout [ 82.614556] Bluetooth: hci2: command 0x040f tx timeout [ 82.678626] Bluetooth: hci5: command 0x040f tx timeout [ 82.679563] Bluetooth: hci7: command 0x040f tx timeout [ 82.680360] Bluetooth: hci4: command 0x040f tx timeout [ 82.681520] Bluetooth: hci6: command 0x040f tx timeout [ 82.934770] Bluetooth: hci3: command 0x040f tx timeout [ 84.534579] Bluetooth: hci0: command 0x0419 tx timeout [ 84.599556] Bluetooth: hci1: command 0x0419 tx timeout [ 84.662576] Bluetooth: hci2: command 0x0419 tx timeout [ 84.727551] Bluetooth: hci6: command 0x0419 tx timeout [ 84.728147] Bluetooth: hci4: command 0x0419 tx timeout [ 84.728584] Bluetooth: hci7: command 0x0419 tx timeout [ 84.729093] Bluetooth: hci5: command 0x0419 tx timeout [ 84.983523] Bluetooth: hci3: command 0x0419 tx timeout 19:23:44 executing program 1: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) tee(r0, r0, 0x4724, 0x0) pread64(r0, &(0x7f0000001780)=""/2, 0x2, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000040), 0x20, 0x200000) finit_module(r1, &(0x7f0000000280)='\x00', 0x2) syz_io_uring_setup(0x3f5f, &(0x7f0000000100)={0x0, 0x3f1c, 0x10, 0x3, 0x2a3}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000000)={0x14, 0xc4, &(0x7f0000000180)="50e5e3075822c96a09d6f07d15e4cbdb361be01894b5fff53670e09aa27e8f5ee66f94339dcb6632cc2ab4d7c964d9aec9f323955b73a8c1e4d942f74985ea13619d56052fb6ed3d198efddc73c539687f60c5eab521ac88d011c1e69dd1923b50f853517296e49e82497c0e947f633893907bf9762b047553d1f13af76e7bf583627ac742317bc1c6287cf006e0b5f1ac476ce90cc954ccb72b669f52465d6da0c67cd6548b4ac8194f1305d73ffdc9ed1ff76d0e3947e7b17b03ec3f7e6cd7b26df8cb"}) 19:23:44 executing program 1: remap_file_pages(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0) r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs2/binder1\x00', 0x800, 0x0) mmap$binder(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x5) [ 132.849231] mmap: syz-executor.1 (3885) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. 19:23:45 executing program 1: clone3(&(0x7f00000011c0)={0x108108000, 0x0, 0x0, 0x0, {}, &(0x7f00000000c0)=""/4096, 0x1000, 0x0, 0x0}, 0x58) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000001800)={0x0, "dab1e52234246c259b1770d3838716fc"}) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x400}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4001}, 0x4000040) syz_genetlink_get_family_id$ethtool(&(0x7f00000017c0), 0xffffffffffffffff) 19:23:45 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="b74acbcc678a94a9d9906cb4fee2fb67f4d835e463687f6ef6140824cffd841e9cefaf98a5b97aee264b2806ab8f6fbc427fe8ccb1", @ANYRES16, @ANYRESHEX]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r4, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(r2, &(0x7f0000000340)=""/43, 0x2b, 0x80000000002) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x653a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x19001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x2, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r3, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,\a\x00\x00\x00user=^,donT_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3edfd2cec695f8fcf6996441db55771060dc57a7108e65ea40805b4fd5abf359f149d195791d62b14196f811874ffcc18359d7e3587414b702d1eb63f2b69b3b9d0e7abd3c78fcc8cb115ab3c2914f6a747365ad453f6ecd5b8daaa2d61630f70bc9c61c3be539f3"]) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r5, &(0x7f00000003c0)=ANY=[], 0x820) r6 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file1/file0\x00', 0xa01, 0xe6f9b6ba8c7b0e55) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r5, r7, 0x0, 0x7fffffff) sendfile(r4, r6, 0x0, 0xfffffdef) [ 133.407202] loop1: detected capacity change from 0 to 264192 [ 133.410811] FAT-fs (loop1): Unrecognized mount option "Jgِlg5chn$ﯘz&K(oḆ0xffffffffffffffff" or missing value [ 133.477400] audit: type=1400 audit(1664565825.605:7): avc: denied { open } for pid=3913 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 133.508013] loop1: detected capacity change from 0 to 264192 [ 133.518201] FAT-fs (loop1): Unrecognized mount option "Jgِlg5chn$ﯘz&K(oḆ0xffffffffffffffff" or missing value 19:23:45 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="b74acbcc678a94a9d9906cb4fee2fb67f4d835e463687f6ef6140824cffd841e9cefaf98a5b97aee264b2806ab8f6fbc427fe8ccb1", @ANYRES16, @ANYRESHEX]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r4, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(r2, &(0x7f0000000340)=""/43, 0x2b, 0x80000000002) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x653a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x19001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x2, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r3, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,\a\x00\x00\x00user=^,donT_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3edfd2cec695f8fcf6996441db55771060dc57a7108e65ea40805b4fd5abf359f149d195791d62b14196f811874ffcc18359d7e3587414b702d1eb63f2b69b3b9d0e7abd3c78fcc8cb115ab3c2914f6a747365ad453f6ecd5b8daaa2d61630f70bc9c61c3be539f3"]) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r5, &(0x7f00000003c0)=ANY=[], 0x820) r6 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file1/file0\x00', 0xa01, 0xe6f9b6ba8c7b0e55) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r5, r7, 0x0, 0x7fffffff) sendfile(r4, r6, 0x0, 0xfffffdef) [ 133.707888] loop1: detected capacity change from 0 to 264192 [ 133.721213] FAT-fs (loop1): Unrecognized mount option "Jgِlg5chn$ﯘz&K(oḆ0xffffffffffffffff" or missing value 19:23:45 executing program 4: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x32261, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000800)='./file1\x00', 0x42, 0x0) stat(&(0x7f0000000480)='./cgroup/cgroup.procs\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r3, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000040), 0x1000, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}], [{@fowner_gt={'fowner>', r3}}, {@permit_directio}, {@subj_user={'subj_user', 0x3d, '\x00'}}, {@fsuuid={'fsuuid', 0x3d, {[0x5, 0x34, 0x0, 0x61, 0x37, 0x61, 0x63, 0x34], 0x2d, [0x36, 0x64, 0x65, 0x37], 0x2d, [0x30, 0x36, 0x62, 0x35], 0x2d, [0x0, 0x36, 0x65, 0x35], 0x2d, [0x39, 0x67, 0x37, 0x33, 0x62, 0x30, 0x61, 0x36]}}}, {@fsmagic={'fsmagic', 0x3d, 0x80}}, {@subj_user={'subj_user', 0x3d, '\x00'}}, {@dont_measure}, {@obj_role}, {@obj_role={'obj_role', 0x3d, '\x00'}}, {@appraise}]}}) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=unix,', {[{@access_user}, {@privport}], [{@fowner_gt={'fowner>', r3}}, {@subj_type}, {@obj_user={'obj_user', 0x3d, '-@-'}}, {@pcr={'pcr', 0x3d, 0x10}}, {@fsname={'fsname', 0x3d, '$+{.^-['}}, {@obj_user={'obj_user', 0x3d, '):^@#.%/'}}, {@dont_hash}]}}) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x48) fcntl$dupfd(r0, 0x0, r4) write(r4, &(0x7f0000000080)="01", 0x41030) 19:23:45 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="b74acbcc678a94a9d9906cb4fee2fb67f4d835e463687f6ef6140824cffd841e9cefaf98a5b97aee264b2806ab8f6fbc427fe8ccb1", @ANYRES16, @ANYRESHEX]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r4, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(r2, &(0x7f0000000340)=""/43, 0x2b, 0x80000000002) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x653a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x19001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x2, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r3, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,\a\x00\x00\x00user=^,donT_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3edfd2cec695f8fcf6996441db55771060dc57a7108e65ea40805b4fd5abf359f149d195791d62b14196f811874ffcc18359d7e3587414b702d1eb63f2b69b3b9d0e7abd3c78fcc8cb115ab3c2914f6a747365ad453f6ecd5b8daaa2d61630f70bc9c61c3be539f3"]) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r5, &(0x7f00000003c0)=ANY=[], 0x820) r6 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file1/file0\x00', 0xa01, 0xe6f9b6ba8c7b0e55) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r5, r7, 0x0, 0x7fffffff) sendfile(r4, r6, 0x0, 0xfffffdef) [ 133.892093] loop1: detected capacity change from 0 to 264192 [ 133.905365] FAT-fs (loop1): Unrecognized mount option "Jgِlg5chn$ﯘz&K(oḆ0xffffffffffffffff" or missing value [ 133.922215] audit: type=1400 audit(1664565826.050:8): avc: denied { kernel } for pid=3943 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 133.951813] ------------[ cut here ]------------ [ 133.951855] [ 133.951861] ====================================================== [ 133.951867] WARNING: possible circular locking dependency detected [ 133.951873] 6.0.0-rc7-next-20220929 #1 Not tainted [ 133.951884] ------------------------------------------------------ [ 133.951890] syz-executor.4/3945 is trying to acquire lock: [ 133.951901] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 133.951964] [ 133.951964] but task is already holding lock: [ 133.951969] ffff88803dfdc820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 133.952016] [ 133.952016] which lock already depends on the new lock. [ 133.952016] [ 133.952021] [ 133.952021] the existing dependency chain (in reverse order) is: [ 133.952026] [ 133.952026] -> #3 (&ctx->lock){....}-{2:2}: [ 133.952051] _raw_spin_lock+0x2a/0x40 [ 133.952071] __perf_event_task_sched_out+0x53b/0x18d0 [ 133.952091] __schedule+0xedd/0x2470 [ 133.952116] preempt_schedule_common+0x45/0xc0 [ 133.952143] __cond_resched+0x17/0x30 [ 133.952168] __mutex_lock+0xa3/0x14d0 [ 133.952195] __do_sys_perf_event_open+0x1eec/0x32c0 [ 133.952216] do_syscall_64+0x3b/0x90 [ 133.952246] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.952269] [ 133.952269] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 133.952294] _raw_spin_lock_nested+0x30/0x40 [ 133.952313] raw_spin_rq_lock_nested+0x1e/0x30 [ 133.952336] task_fork_fair+0x63/0x4d0 [ 133.952365] sched_cgroup_fork+0x3d0/0x540 19:23:46 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="b74acbcc678a94a9d9906cb4fee2fb67f4d835e463687f6ef6140824cffd841e9cefaf98a5b97aee264b2806ab8f6fbc427fe8ccb1", @ANYRES16, @ANYRESHEX]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r4, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(r2, &(0x7f0000000340)=""/43, 0x2b, 0x80000000002) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x653a0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0x19001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x2, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r3, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,\a\x00\x00\x00user=^,donT_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3edfd2cec695f8fcf6996441db55771060dc57a7108e65ea40805b4fd5abf359f149d195791d62b14196f811874ffcc18359d7e3587414b702d1eb63f2b69b3b9d0e7abd3c78fcc8cb115ab3c2914f6a747365ad453f6ecd5b8daaa2d61630f70bc9c61c3be539f3"]) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r5, &(0x7f00000003c0)=ANY=[], 0x820) r6 = openat(0xffffffffffffffff, &(0x7f0000000300)='./file1/file0\x00', 0xa01, 0xe6f9b6ba8c7b0e55) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r5, r7, 0x0, 0x7fffffff) sendfile(r4, r6, 0x0, 0xfffffdef) [ 133.952391] copy_process+0x4183/0x6e20 [ 133.952409] kernel_clone+0xe7/0x890 [ 133.952426] user_mode_thread+0xad/0xf0 [ 133.952445] rest_init+0x24/0x250 [ 133.952466] arch_call_rest_init+0xf/0x14 [ 133.952495] start_kernel+0x4c6/0x4eb [ 133.952530] secondary_startup_64_no_verify+0xe0/0xeb [ 133.952554] [ 133.952554] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 133.952579] _raw_spin_lock_irqsave+0x39/0x60 [ 133.952599] try_to_wake_up+0xab/0x1930 [ 133.952622] up+0x75/0xb0 [ 133.952648] __up_console_sem+0x6e/0x80 [ 133.952676] console_unlock+0x46a/0x590 [ 133.952704] vprintk_emit+0x1bd/0x560 [ 133.952733] vprintk+0x84/0xa0 [ 133.952762] _printk+0xba/0xf1 [ 133.952782] kauditd_hold_skb.cold+0x3f/0x4e [ 133.952812] kauditd_send_queue+0x233/0x290 [ 133.952838] kauditd_thread+0x5f9/0x9c0 [ 133.952864] kthread+0x2ed/0x3a0 [ 133.952889] ret_from_fork+0x22/0x30 [ 133.952911] [ 133.952911] -> #0 ((console_sem).lock){....}-{2:2}: [ 133.952936] __lock_acquire+0x2a02/0x5e70 [ 133.952965] lock_acquire+0x1a2/0x530 [ 133.952994] _raw_spin_lock_irqsave+0x39/0x60 [ 133.953013] down_trylock+0xe/0x70 [ 133.953040] __down_trylock_console_sem+0x3b/0xd0 [ 133.953069] vprintk_emit+0x16b/0x560 [ 133.953099] vprintk+0x84/0xa0 [ 133.953127] _printk+0xba/0xf1 [ 133.953146] report_bug.cold+0x72/0xab [ 133.953175] handle_bug+0x3c/0x70 [ 133.953205] exc_invalid_op+0x14/0x50 [ 133.953235] asm_exc_invalid_op+0x16/0x20 [ 133.953257] group_sched_out.part.0+0x2c7/0x460 [ 133.953289] ctx_sched_out+0x8f1/0xc10 [ 133.953319] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.953339] __schedule+0xedd/0x2470 [ 133.953364] preempt_schedule_common+0x45/0xc0 [ 133.953391] __cond_resched+0x17/0x30 [ 133.953416] __mutex_lock+0xa3/0x14d0 [ 133.953443] __do_sys_perf_event_open+0x1eec/0x32c0 [ 133.953463] do_syscall_64+0x3b/0x90 [ 133.953494] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.953516] [ 133.953516] other info that might help us debug this: [ 133.953516] [ 133.953521] Chain exists of: [ 133.953521] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 133.953521] [ 133.953548] Possible unsafe locking scenario: [ 133.953548] [ 133.953552] CPU0 CPU1 [ 133.953556] ---- ---- [ 133.953560] lock(&ctx->lock); [ 133.953570] lock(&rq->__lock); [ 133.953582] lock(&ctx->lock); [ 133.953593] lock((console_sem).lock); [ 133.953603] [ 133.953603] *** DEADLOCK *** [ 133.953603] [ 133.953607] 2 locks held by syz-executor.4/3945: [ 133.953619] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 133.953672] #1: ffff88803dfdc820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 133.953720] [ 133.953720] stack backtrace: [ 133.953725] CPU: 1 PID: 3945 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220929 #1 [ 133.953747] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 133.953761] Call Trace: [ 133.953766] [ 133.953774] dump_stack_lvl+0x8b/0xb3 [ 133.953806] check_noncircular+0x263/0x2e0 [ 133.953837] ? format_decode+0x26c/0xb50 [ 133.953865] ? print_circular_bug+0x450/0x450 [ 133.953896] ? enable_ptr_key_workfn+0x20/0x20 [ 133.953924] ? __lockdep_reset_lock+0x180/0x180 [ 133.953955] ? format_decode+0x26c/0xb50 [ 133.953987] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 133.954019] __lock_acquire+0x2a02/0x5e70 [ 133.954059] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 133.954100] lock_acquire+0x1a2/0x530 [ 133.954130] ? down_trylock+0xe/0x70 [ 133.954162] ? lock_release+0x750/0x750 [ 133.954195] ? find_held_lock+0x2c/0x110 [ 133.954226] ? vprintk+0x84/0xa0 [ 133.954258] _raw_spin_lock_irqsave+0x39/0x60 [ 133.954279] ? down_trylock+0xe/0x70 [ 133.954308] down_trylock+0xe/0x70 [ 133.954337] ? vprintk+0x84/0xa0 [ 133.954368] __down_trylock_console_sem+0x3b/0xd0 [ 133.954399] vprintk_emit+0x16b/0x560 [ 133.954434] vprintk+0x84/0xa0 [ 133.954466] _printk+0xba/0xf1 [ 133.954486] ? record_print_text.cold+0x16/0x16 [ 133.954512] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 133.954537] ? lock_downgrade+0x6d0/0x6d0 [ 133.954569] ? report_bug.cold+0x66/0xab [ 133.954602] ? group_sched_out.part.0+0x2c7/0x460 [ 133.954635] report_bug.cold+0x72/0xab [ 133.954670] handle_bug+0x3c/0x70 [ 133.954701] exc_invalid_op+0x14/0x50 [ 133.954734] asm_exc_invalid_op+0x16/0x20 [ 133.954757] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 133.954794] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 133.954814] RSP: 0018:ffff88803f6c7978 EFLAGS: 00010006 [ 133.954830] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 133.954844] RDX: ffff88803ddf1ac0 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 133.954858] RBP: ffff88803f6d0000 R08: 0000000000000005 R09: 0000000000000001 [ 133.954871] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803dfdc800 [ 133.954885] R13: ffff88806cf3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 133.954905] ? group_sched_out.part.0+0x2c7/0x460 [ 133.954941] ? group_sched_out.part.0+0x2c7/0x460 [ 133.954978] ctx_sched_out+0x8f1/0xc10 [ 133.955013] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.955039] ? lock_is_held_type+0xd7/0x130 [ 133.955065] ? __perf_cgroup_move+0x160/0x160 [ 133.955084] ? set_next_entity+0x304/0x550 [ 133.955116] ? update_curr+0x267/0x740 [ 133.955150] ? lock_is_held_type+0xd7/0x130 [ 133.955175] __schedule+0xedd/0x2470 [ 133.955207] ? io_schedule_timeout+0x150/0x150 [ 133.955237] ? lock_is_held_type+0xd7/0x130 [ 133.955261] ? __cond_resched+0x17/0x30 [ 133.955289] preempt_schedule_common+0x45/0xc0 [ 133.955319] __cond_resched+0x17/0x30 [ 133.955346] __mutex_lock+0xa3/0x14d0 [ 133.955376] ? lock_is_held_type+0xd7/0x130 [ 133.955399] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 133.955424] ? mutex_lock_io_nested+0x1310/0x1310 [ 133.955454] ? lock_release+0x3b2/0x750 [ 133.955486] ? __up_read+0x192/0x730 [ 133.955512] ? up_write+0x520/0x520 [ 133.955544] __do_sys_perf_event_open+0x1eec/0x32c0 [ 133.955571] ? __up_read+0x192/0x730 [ 133.955597] ? perf_compat_ioctl+0x130/0x130 [ 133.955618] ? up_write+0x520/0x520 [ 133.955652] ? syscall_enter_from_user_mode+0x1d/0x50 [ 133.955681] ? syscall_enter_from_user_mode+0x1d/0x50 [ 133.955709] do_syscall_64+0x3b/0x90 [ 133.955742] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.955766] RIP: 0033:0x7fadc9771b19 [ 133.955781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 133.955800] RSP: 002b:00007fadc6ce7188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 133.955820] RAX: ffffffffffffffda RBX: 00007fadc9884f60 RCX: 00007fadc9771b19 [ 133.955834] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 133.955848] RBP: 00007fadc97cbf6d R08: 0000000000000000 R09: 0000000000000000 [ 133.955861] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 133.955874] R13: 00007ffeb8d36f2f R14: 00007fadc6ce7300 R15: 0000000000022000 [ 133.955898] [ 134.063688] WARNING: CPU: 1 PID: 3945 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 134.064875] Modules linked in: [ 134.065290] CPU: 1 PID: 3945 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220929 #1 [ 134.066318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 134.067736] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 134.068440] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 134.070612] RSP: 0018:ffff88803f6c7978 EFLAGS: 00010006 [ 134.071259] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 134.072130] RDX: ffff88803ddf1ac0 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 134.073011] RBP: ffff88803f6d0000 R08: 0000000000000005 R09: 0000000000000001 [ 134.073869] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803dfdc800 [ 134.074733] R13: ffff88806cf3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 134.075599] FS: 00007fadc6ce7700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 134.076584] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 134.077295] CR2: 00007f02f0b2e260 CR3: 000000001f4b2000 CR4: 0000000000350ee0 [ 134.078176] Call Trace: [ 134.078493] [ 134.078776] ctx_sched_out+0x8f1/0xc10 [ 134.079267] __perf_event_task_sched_out+0x6d0/0x18d0 [ 134.079909] ? lock_is_held_type+0xd7/0x130 [ 134.080439] ? __perf_cgroup_move+0x160/0x160 [ 134.081003] ? set_next_entity+0x304/0x550 [ 134.081533] ? update_curr+0x267/0x740 [ 134.082028] ? lock_is_held_type+0xd7/0x130 [ 134.082565] __schedule+0xedd/0x2470 [ 134.083038] ? io_schedule_timeout+0x150/0x150 [ 134.083610] ? lock_is_held_type+0xd7/0x130 [ 134.084146] ? __cond_resched+0x17/0x30 [ 134.084661] preempt_schedule_common+0x45/0xc0 [ 134.085230] __cond_resched+0x17/0x30 [ 134.085718] __mutex_lock+0xa3/0x14d0 [ 134.086203] ? lock_is_held_type+0xd7/0x130 [ 134.086729] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 134.087364] ? mutex_lock_io_nested+0x1310/0x1310 [ 134.087965] ? lock_release+0x3b2/0x750 [ 134.088459] ? __up_read+0x192/0x730 [ 134.088942] ? up_write+0x520/0x520 [ 134.089409] __do_sys_perf_event_open+0x1eec/0x32c0 [ 134.090017] ? __up_read+0x192/0x730 [ 134.090479] ? perf_compat_ioctl+0x130/0x130 [ 134.091015] ? up_write+0x520/0x520 [ 134.091475] ? syscall_enter_from_user_mode+0x1d/0x50 [ 134.092093] ? syscall_enter_from_user_mode+0x1d/0x50 [ 134.092739] do_syscall_64+0x3b/0x90 [ 134.093232] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.093896] RIP: 0033:0x7fadc9771b19 [ 134.094375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 134.096696] RSP: 002b:00007fadc6ce7188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 134.097657] RAX: ffffffffffffffda RBX: 00007fadc9884f60 RCX: 00007fadc9771b19 [ 134.098555] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 134.099450] RBP: 00007fadc97cbf6d R08: 0000000000000000 R09: 0000000000000000 [ 134.100353] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 134.101264] R13: 00007ffeb8d36f2f R14: 00007fadc6ce7300 R15: 0000000000022000 [ 134.102180] [ 134.102481] irq event stamp: 1960 [ 134.102925] hardirqs last enabled at (1959): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 134.104171] hardirqs last disabled at (1960): [] __schedule+0x1225/0x2470 [ 134.105233] softirqs last enabled at (960): [] __irq_exit_rcu+0x11b/0x180 [ 134.106305] softirqs last disabled at (903): [] __irq_exit_rcu+0x11b/0x180 [ 134.107388] ---[ end trace 0000000000000000 ]--- [ 134.137489] hrtimer: interrupt took 17112 ns [ 134.141133] loop1: detected capacity change from 0 to 264192 [ 134.152220] FAT-fs (loop1): Unrecognized mount option "Jgِlg5chn$ﯘz&K(oḆ0xffffffffffffffff" or missing value [ 134.470864] I/O error, dev loop1, sector 264064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 VM DIAGNOSIS: 19:23:46 Registers: info registers vcpu 0 RAX=0000000080000001 RBX=0000000000000001 RCX=ffffffff81691e23 RDX=ffff88803ddf3580 RSI=0000000000000000 RDI=0000000000000001 RBP=ffff88801d72e150 RSP=ffff88803f697908 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffff88803f697cf8 R13=ffffea0001b3e4c0 R14=dffffc0000000000 R15=0000000000000001 RIP=ffffffff81460cd7 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7b0f5236f4 CR3=00000000188a4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f7b0f532470 00007f7b0f531f20 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 756e20796d6d7564 20736e6f6974706f YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 73253d656d616e6c 6165722073253d73 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000000a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88803f6c73c0 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=000000000000000a R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fadc6ce7700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f02f0b2e260 CR3=000000001f4b2000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000