Warning: Permanently added '[localhost]:19321' (ECDSA) to the list of known hosts.
2022/10/01 08:13:50 fuzzer started
2022/10/01 08:13:50 dialing manager at localhost:35095
syzkaller login: [   35.714998] cgroup: Unknown subsys name 'net'
[   35.815127] cgroup: Unknown subsys name 'rlimit'
2022/10/01 08:14:06 syscalls: 2215
2022/10/01 08:14:06 code coverage: enabled
2022/10/01 08:14:06 comparison tracing: enabled
2022/10/01 08:14:06 extra coverage: enabled
2022/10/01 08:14:06 setuid sandbox: enabled
2022/10/01 08:14:06 namespace sandbox: enabled
2022/10/01 08:14:06 Android sandbox: enabled
2022/10/01 08:14:06 fault injection: enabled
2022/10/01 08:14:06 leak checking: enabled
2022/10/01 08:14:06 net packet injection: enabled
2022/10/01 08:14:06 net device setup: enabled
2022/10/01 08:14:06 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/10/01 08:14:06 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/10/01 08:14:06 USB emulation: enabled
2022/10/01 08:14:06 hci packet injection: enabled
2022/10/01 08:14:06 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930                                          )
2022/10/01 08:14:06 802.15.4 emulation: enabled
2022/10/01 08:14:06 fetching corpus: 50, signal 20238/22038 (executing program)
2022/10/01 08:14:06 fetching corpus: 100, signal 30872/34290 (executing program)
2022/10/01 08:14:06 fetching corpus: 150, signal 40416/45265 (executing program)
2022/10/01 08:14:06 fetching corpus: 200, signal 47165/53443 (executing program)
2022/10/01 08:14:06 fetching corpus: 250, signal 53067/60604 (executing program)
2022/10/01 08:14:06 fetching corpus: 300, signal 59606/68310 (executing program)
2022/10/01 08:14:07 fetching corpus: 350, signal 68608/78154 (executing program)
2022/10/01 08:14:07 fetching corpus: 400, signal 73475/84013 (executing program)
2022/10/01 08:14:07 fetching corpus: 450, signal 77377/88918 (executing program)
2022/10/01 08:14:07 fetching corpus: 500, signal 81779/94119 (executing program)
2022/10/01 08:14:07 fetching corpus: 550, signal 84030/97419 (executing program)
2022/10/01 08:14:07 fetching corpus: 600, signal 88200/102394 (executing program)
2022/10/01 08:14:07 fetching corpus: 650, signal 89510/104723 (executing program)
2022/10/01 08:14:07 fetching corpus: 700, signal 91676/107745 (executing program)
2022/10/01 08:14:07 fetching corpus: 750, signal 94039/110982 (executing program)
2022/10/01 08:14:08 fetching corpus: 800, signal 96603/114328 (executing program)
2022/10/01 08:14:08 fetching corpus: 850, signal 98879/117406 (executing program)
2022/10/01 08:14:08 fetching corpus: 900, signal 100827/120131 (executing program)
2022/10/01 08:14:08 fetching corpus: 950, signal 102865/122874 (executing program)
2022/10/01 08:14:08 fetching corpus: 1000, signal 105146/125726 (executing program)
2022/10/01 08:14:08 fetching corpus: 1050, signal 107565/128687 (executing program)
2022/10/01 08:14:08 fetching corpus: 1100, signal 110723/132215 (executing program)
2022/10/01 08:14:09 fetching corpus: 1150, signal 112419/134520 (executing program)
2022/10/01 08:14:09 fetching corpus: 1200, signal 115029/137575 (executing program)
2022/10/01 08:14:09 fetching corpus: 1250, signal 117335/140286 (executing program)
2022/10/01 08:14:09 fetching corpus: 1300, signal 119074/142500 (executing program)
2022/10/01 08:14:09 fetching corpus: 1350, signal 121203/144943 (executing program)
2022/10/01 08:14:09 fetching corpus: 1400, signal 123018/147184 (executing program)
2022/10/01 08:14:09 fetching corpus: 1450, signal 123970/148755 (executing program)
2022/10/01 08:14:09 fetching corpus: 1500, signal 128976/153250 (executing program)
2022/10/01 08:14:09 fetching corpus: 1550, signal 130284/154945 (executing program)
2022/10/01 08:14:10 fetching corpus: 1600, signal 131518/156579 (executing program)
2022/10/01 08:14:10 fetching corpus: 1650, signal 133297/158593 (executing program)
2022/10/01 08:14:10 fetching corpus: 1700, signal 134989/160512 (executing program)
2022/10/01 08:14:10 fetching corpus: 1750, signal 136544/162394 (executing program)
2022/10/01 08:14:10 fetching corpus: 1800, signal 138321/164315 (executing program)
2022/10/01 08:14:10 fetching corpus: 1850, signal 139322/165675 (executing program)
2022/10/01 08:14:10 fetching corpus: 1900, signal 141147/167612 (executing program)
2022/10/01 08:14:11 fetching corpus: 1950, signal 142540/169234 (executing program)
2022/10/01 08:14:11 fetching corpus: 2000, signal 143978/170879 (executing program)
2022/10/01 08:14:11 fetching corpus: 2050, signal 145126/172289 (executing program)
2022/10/01 08:14:11 fetching corpus: 2100, signal 146915/174058 (executing program)
2022/10/01 08:14:11 fetching corpus: 2150, signal 147861/175292 (executing program)
2022/10/01 08:14:11 fetching corpus: 2200, signal 149197/176777 (executing program)
2022/10/01 08:14:11 fetching corpus: 2250, signal 150176/177959 (executing program)
2022/10/01 08:14:11 fetching corpus: 2300, signal 151209/179205 (executing program)
2022/10/01 08:14:12 fetching corpus: 2350, signal 152020/180272 (executing program)
2022/10/01 08:14:12 fetching corpus: 2400, signal 153185/181553 (executing program)
2022/10/01 08:14:12 fetching corpus: 2450, signal 154351/182836 (executing program)
2022/10/01 08:14:12 fetching corpus: 2500, signal 155134/183775 (executing program)
2022/10/01 08:14:12 fetching corpus: 2550, signal 157155/185416 (executing program)
2022/10/01 08:14:12 fetching corpus: 2600, signal 159048/186946 (executing program)
2022/10/01 08:14:12 fetching corpus: 2650, signal 159761/187841 (executing program)
2022/10/01 08:14:12 fetching corpus: 2700, signal 160702/188810 (executing program)
2022/10/01 08:14:13 fetching corpus: 2750, signal 161455/189712 (executing program)
2022/10/01 08:14:13 fetching corpus: 2800, signal 162191/190577 (executing program)
2022/10/01 08:14:13 fetching corpus: 2850, signal 162976/191414 (executing program)
2022/10/01 08:14:13 fetching corpus: 2900, signal 164103/192519 (executing program)
2022/10/01 08:14:13 fetching corpus: 2950, signal 165197/193524 (executing program)
2022/10/01 08:14:13 fetching corpus: 3000, signal 166552/194611 (executing program)
2022/10/01 08:14:13 fetching corpus: 3050, signal 167059/195308 (executing program)
2022/10/01 08:14:13 fetching corpus: 3100, signal 167732/196031 (executing program)
2022/10/01 08:14:13 fetching corpus: 3150, signal 168722/196918 (executing program)
2022/10/01 08:14:14 fetching corpus: 3200, signal 169782/197781 (executing program)
2022/10/01 08:14:14 fetching corpus: 3250, signal 170717/198600 (executing program)
2022/10/01 08:14:14 fetching corpus: 3300, signal 171536/199339 (executing program)
2022/10/01 08:14:14 fetching corpus: 3350, signal 172320/200029 (executing program)
2022/10/01 08:14:14 fetching corpus: 3400, signal 173477/200919 (executing program)
2022/10/01 08:14:14 fetching corpus: 3450, signal 174173/201608 (executing program)
2022/10/01 08:14:14 fetching corpus: 3500, signal 174888/202255 (executing program)
2022/10/01 08:14:14 fetching corpus: 3550, signal 175342/202801 (executing program)
2022/10/01 08:14:14 fetching corpus: 3600, signal 176358/203527 (executing program)
2022/10/01 08:14:15 fetching corpus: 3650, signal 177069/204120 (executing program)
2022/10/01 08:14:15 fetching corpus: 3700, signal 177441/204648 (executing program)
2022/10/01 08:14:15 fetching corpus: 3750, signal 178404/205313 (executing program)
2022/10/01 08:14:15 fetching corpus: 3800, signal 179153/205901 (executing program)
2022/10/01 08:14:15 fetching corpus: 3850, signal 179690/206407 (executing program)
2022/10/01 08:14:15 fetching corpus: 3900, signal 180304/207023 (executing program)
2022/10/01 08:14:15 fetching corpus: 3950, signal 180983/207534 (executing program)
2022/10/01 08:14:15 fetching corpus: 4000, signal 182234/208170 (executing program)
2022/10/01 08:14:16 fetching corpus: 4050, signal 183272/208741 (executing program)
2022/10/01 08:14:16 fetching corpus: 4100, signal 185031/209523 (executing program)
2022/10/01 08:14:16 fetching corpus: 4150, signal 185617/209944 (executing program)
2022/10/01 08:14:16 fetching corpus: 4200, signal 186070/210341 (executing program)
2022/10/01 08:14:16 fetching corpus: 4250, signal 186465/210670 (executing program)
2022/10/01 08:14:16 fetching corpus: 4300, signal 187099/211126 (executing program)
2022/10/01 08:14:16 fetching corpus: 4350, signal 188001/211570 (executing program)
2022/10/01 08:14:16 fetching corpus: 4400, signal 188601/211959 (executing program)
2022/10/01 08:14:17 fetching corpus: 4450, signal 188991/212298 (executing program)
2022/10/01 08:14:17 fetching corpus: 4500, signal 189733/212695 (executing program)
2022/10/01 08:14:17 fetching corpus: 4550, signal 190318/213102 (executing program)
2022/10/01 08:14:17 fetching corpus: 4600, signal 190705/213402 (executing program)
2022/10/01 08:14:17 fetching corpus: 4650, signal 191227/213738 (executing program)
2022/10/01 08:14:17 fetching corpus: 4700, signal 191737/214068 (executing program)
2022/10/01 08:14:17 fetching corpus: 4750, signal 192947/214458 (executing program)
2022/10/01 08:14:17 fetching corpus: 4800, signal 193494/214774 (executing program)
2022/10/01 08:14:18 fetching corpus: 4850, signal 194432/215099 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/215330 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/215547 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/215748 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/215985 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/216172 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/216389 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/216597 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/216803 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/217014 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/217144 (executing program)
2022/10/01 08:14:18 fetching corpus: 4870, signal 194679/217144 (executing program)
2022/10/01 08:14:20 starting 8 fuzzer processes
08:14:20 executing program 0:
semctl$GETVAL(0x0, 0x0, 0xc, &(0x7f0000000000)=""/37)
semctl$IPC_RMID(0xffffffffffffffff, 0x0, 0x0)
semop(0x0, &(0x7f0000000040)=[{0x3, 0x4, 0x800}, {0x3, 0x7}, {0x3, 0x9, 0x2400}, {0x1, 0x7ff, 0x800}, {0x4, 0x487, 0x1000}, {0x4, 0x3, 0x1800}, {0x2, 0x93c}, {0x3, 0x8, 0x1000}], 0x8)
r0 = semget(0x2, 0x4, 0x2)
semtimedop(r0, &(0x7f0000000080)=[{0x2, 0x1, 0x1800}], 0x1, &(0x7f00000000c0))
semctl$GETPID(r0, 0x2, 0xb, &(0x7f0000000100)=""/142)
r1 = semget(0x0, 0x1, 0x1)
semctl$GETNCNT(r1, 0x3, 0xe, &(0x7f00000001c0)=""/47)
semctl$GETPID(r1, 0x1, 0xb, &(0x7f0000000200)=""/203)
r2 = semget$private(0x0, 0x3, 0x202)
semtimedop(r2, &(0x7f0000000300)=[{0x2, 0x1a, 0x1800}, {0x4, 0x2, 0x1800}, {0x4, 0x6, 0x800}, {0x4, 0x2, 0x1800}, {0x3, 0x5, 0x1800}, {0x3, 0x2}, {0x2, 0x826, 0x1000}, {0x0, 0x4, 0x1000}, {0x1, 0x0, 0x800}], 0x9, &(0x7f0000000340))
r3 = semget$private(0x0, 0x3, 0x0)
semop(r0, &(0x7f0000000380)=[{0x3, 0x6, 0x1800}, {0x2, 0x8, 0x1000}, {0x3, 0x1ff, 0x800}, {0x0, 0x4}, {0x2, 0x6, 0x800}, {0x3, 0x8c0f, 0x800}, {0x0, 0x3, 0x2800}], 0x7)
semctl$SEM_INFO(r1, 0x2, 0x13, &(0x7f00000003c0)=""/12)
r4 = semget(0x0, 0x0, 0x4)
semctl$SEM_INFO(r4, 0x2, 0x13, &(0x7f0000000400)=""/159)
semctl$SETALL(r3, 0x0, 0x11, &(0x7f00000004c0)=[0x5, 0x100, 0x5, 0x8, 0x8, 0x3, 0x1])
semctl$GETZCNT(r4, 0x1, 0xf, &(0x7f0000000500)=""/16)
semctl$SEM_INFO(r1, 0x3, 0x13, &(0x7f0000000540)=""/85)
semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f00000005c0)=""/83)

08:14:20 executing program 1:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
r1 = openat(r0, &(0x7f0000000000)='./file0\x00', 0x40141, 0x1)
ioctl$SNAPSHOT_UNFREEZE(r1, 0x3302)
r2 = dup2(r0, r0)
write$binfmt_elf32(r2, &(0x7f0000000040)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x4, 0x0, 0x3, 0xfffffffffffffffe, 0x2, 0x6, 0x1, 0x76, 0x38, 0x1e7, 0x3, 0x2, 0x20, 0x1, 0x9, 0x4ce, 0x7ff}, [{0x3, 0x8, 0x5, 0x9, 0x2, 0x6, 0xffffffbe, 0xffffffff}, {0x1, 0x6, 0xfffffe01, 0x5, 0xfffffff7, 0xb3a, 0x100, 0x6}], "d50df7a880", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x57d)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000005c0))
r3 = dup2(r1, r1)
ioctl$BTRFS_IOC_SPACE_INFO(r1, 0xc0109414, &(0x7f00000007c0)={0x332, 0x8001, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']})
r4 = openat(r3, &(0x7f0000005480)='./file1\x00', 0x202, 0x141)
ioctl$NS_GET_NSTYPE(r3, 0xb703, 0x0)
dup(r3)
r5 = syz_open_procfs(0x0, &(0x7f00000054c0)='net/arp\x00')
openat(0xffffffffffffff9c, &(0x7f0000005500)='./file1\x00', 0x2001, 0xb5)
copy_file_range(r0, &(0x7f0000005540)=0x1, r4, &(0x7f0000005580)=0x9, 0x5, 0x0)
close(r0)
pread64(r2, &(0x7f00000055c0)=""/215, 0xd7, 0x9bbc)
ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r1, 0xc0105303, &(0x7f00000056c0)={0x40, 0x5, 0xe3})
fcntl$setpipe(r4, 0x407, 0x5)
r6 = openat$cgroup_int(r5, &(0x7f0000005700)='cpuset.memory_spread_page\x00', 0x2, 0x0)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r6, 0x84009422, &(0x7f0000005740)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})

08:14:20 executing program 2:
r0 = shmget(0x0, 0x4000, 0x1000, &(0x7f0000ffa000/0x4000)=nil)
shmat(r0, &(0x7f0000ffd000/0x1000)=nil, 0x1000)
r1 = shmget$private(0x0, 0x2000, 0x8, &(0x7f0000ffd000/0x2000)=nil)
shmctl$IPC_RMID(r1, 0x0)
shmat(r1, &(0x7f0000ffb000/0x2000)=nil, 0xe000)
shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x7000)
shmat(r0, &(0x7f0000ffb000/0x2000)=nil, 0x3000)
shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x800)
r2 = shmget$private(0x0, 0x4000, 0x10, &(0x7f0000ffc000/0x4000)=nil)
shmat(r2, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
shmat(r2, &(0x7f0000ffc000/0x4000)=nil, 0x0)
shmat(r0, &(0x7f0000ffb000/0x1000)=nil, 0x7000)
shmat(r2, &(0x7f0000fee000/0x12000)=nil, 0x1000)
shmat(0xffffffffffffffff, &(0x7f0000ffd000/0x3000)=nil, 0x5000)
r3 = shmget$private(0x0, 0x4000, 0x100, &(0x7f0000ffc000/0x4000)=nil)
shmat(r3, &(0x7f0000ff9000/0x4000)=nil, 0x2000)
shmat(r3, &(0x7f0000ff5000/0x4000)=nil, 0x2000)
shmctl$IPC_RMID(r1, 0x0)
shmat(r0, &(0x7f0000ffe000/0x1000)=nil, 0x1000)
shmat(r2, &(0x7f0000ff0000/0x4000)=nil, 0x0)

08:14:20 executing program 3:
prctl$PR_SET_FP_MODE(0x2d, 0x1)
prctl$PR_SET_FP_MODE(0x2d, 0x2)
prctl$PR_SET_FP_MODE(0x2d, 0x2)
prctl$PR_SET_FP_MODE(0x2d, 0x2)
prctl$PR_SET_FP_MODE(0x2d, 0x1)
prctl$PR_SET_FP_MODE(0x2d, 0x3)
prctl$PR_SET_FP_MODE(0x2d, 0x1)
prctl$PR_SET_FP_MODE(0x2d, 0x2)
prctl$PR_SET_FP_MODE(0x2d, 0x3)
prctl$PR_SET_FP_MODE(0x2d, 0x3)
prctl$PR_SET_FP_MODE(0x2d, 0x7)
prctl$PR_SET_FP_MODE(0x2d, 0x1)
prctl$PR_SET_FP_MODE(0x2d, 0x2)
prctl$PR_SET_FP_MODE(0x2d, 0x1)
prctl$PR_SET_FP_MODE(0x2d, 0x3)
prctl$PR_SET_FP_MODE(0x2d, 0x1)
prctl$PR_SET_FP_MODE(0x2d, 0x2)
prctl$PR_SET_FP_MODE(0x2d, 0x1)
prctl$PR_SET_FP_MODE(0x2d, 0x2)
prctl$PR_SET_FP_MODE(0x2d, 0x2)

08:14:20 executing program 4:
r0 = semget(0x0, 0x3, 0x10)
semop(r0, &(0x7f0000000000)=[{0x4, 0x1, 0x800}, {0x4, 0xfffd, 0x800}, {0x1, 0x8, 0x1800}, {0x4, 0x1f, 0x1400}], 0x4)
semctl$IPC_RMID(r0, 0x0, 0x0)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000040)=[0x5, 0x0])
semtimedop(r0, &(0x7f0000000080)=[{0x4, 0x5, 0x800}], 0x1, &(0x7f00000000c0))
r1 = semget(0x2, 0x4, 0x202)
semctl$GETZCNT(r1, 0x3, 0xf, &(0x7f0000000100)=""/91)
semctl$SEM_INFO(r1, 0x2, 0x13, &(0x7f0000000180)=""/173)
semctl$IPC_RMID(r1, 0x0, 0x0)
semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000000240)=[0x3ff])
semctl$GETPID(r1, 0x2, 0xb, &(0x7f0000000280)=""/4096)
semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000001280)=[0xff93])
semctl$IPC_RMID(r1, 0x0, 0x0)
semctl$SEM_INFO(0x0, 0x3, 0x13, &(0x7f00000012c0)=""/47)
semget(0x2, 0x4, 0x18c)
semctl$IPC_RMID(r1, 0x0, 0x0)
semctl$GETALL(r0, 0x0, 0xd, &(0x7f0000001300)=""/239)
r2 = semget(0x0, 0x3, 0x20)
semtimedop(r2, &(0x7f0000001400)=[{0x1, 0x8000}, {0x3, 0x2, 0x800}, {0x1, 0x2, 0x800}, {0x3, 0x6}, {0x7, 0x8acf, 0x1000}, {0x1, 0x9, 0x1800}, {0x1, 0x5, 0x1800}, {0x2, 0x4, 0x800}], 0x8, &(0x7f0000001440))
semctl$GETZCNT(0x0, 0x2, 0xf, &(0x7f0000001480)=""/113)

08:14:20 executing program 6:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x541e00, 0x0)
ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f0000000040)=""/7)
ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000000c0)=0x14)
r2 = socket$netlink(0x10, 0x3, 0xe)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r0)
sendmsg$ETHTOOL_MSG_WOL_SET(r2, &(0x7f0000001800)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000017c0)={&(0x7f0000000180)={0x160c, r3, 0x400, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_WOL_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @ETHTOOL_A_WOL_MODES={0x18c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0xb6, 0x5, "f5b76db221c27e35f6cf6617872930a89f7ac52cbd1de8584f2daa04588082d80e761d08836000f6946b064daac42dfecd786f487781c4ad3e44867dc78588b32ef495a5701bd50f3e35d6bbc938f4d85a65e9db8fc51ba4d9af411d791581795240abefe85905cd9f2a7cec2f3a717bbe57c1ab59ff91223dca8730929608c2df425d79ef3b8f60a6b79232b75ee23a0f64d81a5f4417f481ef09071209457baba7e698ad8af349b04717102e6a7b307ced"}, @ETHTOOL_A_BITSET_MASK={0xc9, 0x5, "6528dd2d154640a63b13134da06211183ddf1aab0a80ae6308c67ed1cee0182f53bcf248f8c895dc8028f8a9ccdf508e6bfe253ed478f2d36ad509bbbcdd3dd4a535c31c16832472231af2a6e56e9dc3bc48d05c47c6725f0a7ef37ef32e885e29dd950eab98a7ef360e594d2a8ff8f74caec2be0a40162b5154501f63458109faa66855205b50c1243280e9891e926277ed62f854dcef261114797c69ad39da703d47a8dc49928350a5516606a64c587aaa096534da85d0f0f0f7d69f84c6fd4df4132084"}]}, @ETHTOOL_A_WOL_MODES={0x11c, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x118, 0x3, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '/[\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ']\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x20}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '.,+@.@!\x00'}]}, {0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ')\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2a9}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xa, 0x2, ':+{.-\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '+\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, '&+:[*:\x00'}]}]}]}, @ETHTOOL_A_WOL_MODES={0x1088, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x5c, 0x4, "15407780cb295da771873d7c104a60da8a899b548167625484688a240e4060e38185041cc0f6fd43b0dfcaf3f829222e1ae066912ff263c40f65f336aa2aecb3f8d6625a85aed7424a2595f70eee9775b249f8610fa2b2cc"}, @ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "7dfc8be9d0a1b14c78ebb71467da158f401d9b356c37aa9bef71158b8b92d17c2bf9286cedc46b1b8bde704165bd58bd95c6011d46dfc9deed7ad843c348753fad29580ee046db630078a032aa29e34ffab994d253ef9f991b9963d1fcbac9c7460c0d3ee500667afc28405763fd9d7ce74b4a48e3b9a2fce205e8982e5dc0b7a97501d1a9611935735edc461b4659402b00e2df12cd4cd89254aa39de9362869f6e19f7191f6ec4f44e270285ddd066619f031fa5ac5b50fa4e98685edd01d747adcf9daa20905db524c948958f00c478f4df2be9e7ac28c1c8c8f410bae195a3bcb575d9e2b7563e99c0aabae0b72890eb0dff8c0a3edadfb390dedcda894a4ea425d891ee48a5ce58aba6755dfdd5767bcf1513bedb16bafa3cbbd0019c9df38e5075057b615f477c49ebf19f8a0385f75470e8561f02becadbb9c6600b1d28c8ad34c26d6119cc20c7f6f01c000ba2b9cbe47aed188c080092dbe52951c20c157ac1fc417b08e8285327c260b66f33c0b0d9e16cafc4c246e431d1d004f87fdf545599d0d3b1ff1c0c7430303644dbf4393129e8ef6fbbb36220bbcd7d558c2df88bb83989dbbd6fd371d41d7b45b648466ec5ec2d5ff7f263f91009cccf01e7c4b2818b630ee5425c92e3947c7b32b001105b8fd2ca077a56878344578ab9f50e589bd253f0be812af2a95d7fdf70542df89a0b53b4d8efb997d4d4e9dc81a52b858057349c82503ace5bed24e925d82ec02d1356abf953c035ca839e5eb9f800d431d4b4d85a6ad907aec82abfcb0d6fb707356ec42357e23d219cc976b77dceb6cb6d04f74409ef70b1d44ea392db12a595d10f14e6a78676b61fdb7e072da39c852c3a9077bf14fab6fbb992e0a74ae7f9a6dd6b79feb3deba94dce1695c2d9e9e4d883aa2328749ef2a8d9abe81fd9b3563aec12bd760d0bda56fe46d33031978044cf0e85ce50d4a9f1d770e21004c7a57d3a4752040cf2c9ee4c151c3872b6f2c662a88374ac6f7ad86b41a4c2fa86b23884613cdda8af0a44c25f13382aa7175c44529e3c072cddd85828a9bd42125e8abe54468ba08850be31f4d894b461808d0470200f13f75a53a4a7c84c5d132dba72eea1bb998ab5cc46c97f476d8e0be710bd0c39b56c4cb4716529923eabcdefd76a1225ee9c18f5dcd7c81824999be8cac5de3019c1dd8c55a61c57d5ac10a48e3aad4e8cc4a3a1f9d48b7b3a394de76de6d914dfbd3b4f451f9d742b75a6042f48ab47be5fb5398ac21301d50635a0524e8c2e9a57e459861d9bdcd16f4bd4f47047dec4ea9fb47b6626cb5c008967d7ae1f3ce50ecbeb0129e38187d07909054f07b37ca369b62298c89e3fc8ef660bcccc847032fe20d1882029c69981ef029706c691b97fba506946ea1c9783fd5876220420aba26e8281a2a65ac9261e47ff88c047c404b3212af83278d5bafc4695517da8f2600519a6894f811334568c73a66f9024842743c324136465d95ea8c7046ad9d2d27d7f71d9804d167b3897886274a1f9a1c55010c61f1bfbd10cebbf7cc140747416fce22a97a1d54ed73659c167bd57007b546008d4afeb1f5a6ca34e5a243b96e2444767678e1b7ea8a70312ec7187e7112ae4afaab748b0f399c5e64bb29ad261264b990e82486d11e297bca000b4147bb4fdfa7749984f9b59350f4ed9d22f89fd99174114b9118ab632267698470c73cb73f41d59da9412108140575eec6ef2d42d0d771dca26b62d9ba80a702970cc47775b0a03ab62058925bf8b55945249563889109d62d2700005fc3f000b02a0b555c1e44ddb1de51ccdcdd994e1b5dc24133afd0a1e52f533a8995e7062d0ac2a25defbf673d9a6ff0ff852df1afcff68e8861e9a26ae5dbfe5a4bd19d417a4dc92aa04276472cf8b25c479a18fc1f9fe09de18317a869f51324b2d49a132b60bd586df09226253475658e55f07aab5231cac55f7dda582390e5ee7e4d9f7ddabc38ec4f599f28f65b33cc848be3c68865476ee567538885dabfbd4e7db90bf48fe63cd982e3127e7c0c7d671ee406a21d145d0135a3ccdd606838c037d84295e7914518a62a08f618f470633d396519368e82f92ffeec35acbd8fea71415e9b4e73ed28d437a8904a9ca42525472f6e9e3442c695f806675d1047465e548ddbf7cf3e51126daaa2e1f42d14ddbe603caa8e749c4b6e4233424713a8cfe97d874fcb16ac5e9845eb2003d19917e93b2345a5fa5858852ec3e05c69a0c4ec55d68afd292b62e23f6c3e1e9d568cc429a268f3904cd5d82bacf13f60c3da632e314f63c46edec66dd24b2afe41fa9b65c5c851507e23d78eec6fdc5f909e32efe78472010bbc12c4e594d7938cac757774f8543dbeb60c28a17c837eec1fa839c794c7392ea27721447da7d4c595be28d9163860592e6f56771a938753d825994ca2ab5f5bb22b499712450a7b79a6fd860b5e0927cf90b5782846bb89e1ae4b1364303af7843e3789941079b8989854c354df5b12aea556d10c149cb0666d027f4e45a8dc4a8fae9ab851fde56956f3676c6ce18ae32a180dc4495db284a5fb187cec6311468c904b4747bd026ebe17bf57263cf34fc9fa1ea6a1aad33023adb298f545350f78dec11ed811c2e6e881b95e1c0600588ae240cb020f9d06b6d07ffe87376efeb429f888ced8aede37267065fe3366530d1aa75be111056e055d0723b711b7bcbd477fecf40950406e287d70e65ca475a1eec33fdfa831ce27c2409f9897b405e304dbfdc41d96e83f471964754a51d70c6d34682f7b6ed9c01ee6328329f27f53a4ccdca8e978ce8377cb17670adc350b4fda7d00c4581bf781b9bff8ad62c7f78710acf5cb476ca837b05bd315a14a0dc41248515ef672a38ce3a990b8ddf6c023d2de897cba956d102094ab47de7f176c0e02f11234bdabebdbf8b28487b4ec21310235ac9bebe9be31a6ffe5920f33c23c08d6322f43cd596632454e102af75944ba4ac6d01b60914be6dbbcdb2e16e03cd1661e701774c479899c6e196d022cc434f916ec5c66f37a0d732383dd40e76b409c77a7985bbf753c7bab91fe98f93baa2d7a28eea929a3ac1e10693deb8027db5595cd3c9544b27a9911bf86b50e2de1dd3534f5f8c92b342fe46c8c308ff51a5e87f7fa1770967c28e4291744deb85f667076093e86e73782024cca0e4013a93b3887aabd6bfb3d1873c6effaf0e3b1118d70cd926b790dfdb6646fef9904942ae1ebefa670cc789401b8196c5141b91d16f3b59b7da21c09eae74c4d383e6666dc54df2eb9b2cbf407fa09c9ae7e540d6d8bdbba32f73902d953186a644978bebe8e4936fc2361e0f66ad147bc564c828fcac79790ae458d58fcb680c9655957fa2d3e1edfdf918fb8066adcb0998ece4b88c70bdb30e66a2652438610f00e92ab9a91577e6f6770846a106d8b2eb3fe9ee666af1b169c786efa5bf9b69fdc5501ab4c9c5cc299f25420e21cac9f00ed187cb6be4ea3cf819a6a4969f5da2ff17a3bebc677c8b26b9ee220b52918c4f30d662f2087d695b08f373732eb3a99716bdf7c6745a99f493abf0a128d2c08b28b78f6d23adbe299bde967debd30c35a425b9790d20b11a4b1bb4773cb96c8b1c1c92a37bfd441c2e5d8c487a1ba70358cefb4d481af2645fc6a3bf01915e64fdeaad857fad11ad6d03d0558a42c7f186588825c74f1efe664a04b9f7a113e43062b3780e758f677824177955905a7ab79026e537b3a3ffe6b4ebdda53a7efd5118f9b4e3e748bd96e371dd6ebb38aa0030933b3e6d3e36af2db3e64b71326bb2d97845088256e4c03949dd2a99405e62de1b4bf164d5ceb8999f2b43e71eaa3261c0bdde8429e55cd8236c3587e051f5e2ff07a38d73f3d9a076d752d2ad346ded7a2de41843bd5ef7b23082169b43c9aa5c2ee95c35140428ecf306d956714995a89a50af2c7afb277ab8b3a69819d7fc80e3a85b575f458449e760c9f0df98e385361bb063bf6113decd769e6f54fa9bbe09bcd3cfd25ebfd1ca23f0120e1ac952e3abbb9322992c6787b03c2501ed68867435337ea8d9cc037f63c553d0d89331aeed581eea54bd490e4a40f3c1f2ff5d1a74c60ecf72f9cadc9d71322be9f2e9debf6974329e6b79bf518b90ecb2af1be54010a6893d37701cc553fc0f72cdfc465aa1fd5bdbe0b45a3ae2fd1e44a77ce8173ea0665b6d4db5928f61695b0f579446e5cdbb4e83f1abb1a98c8e4d0643aebbd79d2565b385fe75de64d51a7253bcbab1e42668fde8e7e663cbc7fe06f2e204ea8f5c040ffe8af37d56753230055dd05323cc03a9d8786d049ea68bfe5f7e568a3e51bd09593572a3a579a1936865cdd55370f5ea2ad94503b90883579feca2a6d72d9d932f316ef2ed902b5d9db687162ec8c5d232f08ddd9728cc028fd74e35a026ce89dd805a70c75dc97cd5ba21e35d1a777049ff527ffaf806821c4edfae726a06193485c7b6cc0fde9592d907b8e22d2d0f4234f834748aeae53031f9b1cdd3f9321a8b50afe08ec760249b9251be039d0d9d0a5f9d5572680ae3b38579a063a5e0aabc0b4ed73d80f81f8b6d96a6288a62e6a345ecfa28f971f49f47fad5a4703a51a6e63096dda746bb3785f4953408e790e4a9ae786515bdad8219f8e893541ce4345918cf7ea1665c0b746bdf4f854ddd192433cbb9535d7c06b2b621dc55a2d52c6f7baec1185cac3df2806f8b39e0659ecd63059b5c90ab0bf341d92d217cb17dbbe24826f5fd7583f4f66436254fc3a147fa46b74a877c8712cc2a32f1a2c549c9e44ee0be749ce0866ab0ab5e49328136f29a9f5a4a507e15793292aeb157aab9435f93eb8bc837ff435dd38dd4e6ab14270bb6ab9c9f4facc79b40ed0ed976250a429f444dc8dbed8cd4570060c9cac785b1ddf74de469cf10fa97df908d00cfb37e2e15a9b9d10ba463f520eefef4fcff00ca2cee1284516c662922454f84247818e41be350a3f8cc2d640fe9e9b332771d598cb33c0b583c7dc26b88f46648a5bdfb3301f408241754c48418771f17563714161e4e634a24c22aacd2f37fa885ad26c8aae1b2ec70717050574e86d5ec09fbd75bfb68159fa5c54ebfeedb6d2238200db04d65cdd768322b0a5497d177aa362df8ef8a6e7442683613cac71e9e7f78e74fd55cda36883decca2b224e689adadf1de2f36ac4cc7db4a78eb534dc6c3c32b2b02e5368fa287cc99a9cbe725be2eb7b787aded670eb76ad0645ae01c7371439531665db9061131fff5743cc231e91c41507119db3a2e0ddf1143b8ed38b5accf8064d2c2b7208199fdf80caab74b021e8897f8e0e6a1e5564b6abb90eef6fcfb71a4d43898328647a47c8a90303c94c154a65c6a026a61a653a632305d4b9a14ece6d06401adff89343f3ae28260616b57981c48afaa52ec4725dee93b80c25a9abf9e04d4c9d9386495ca2aea698bd3a39adc224e1aab1fe24c76cc9a1329293815caac3beacdf949889e5974dddbb32675eb67acc5f0f4eadb0a0f65bac89f463e63dc3d7b6133ceefaea57d2c6535698030c12ddd0b1f68aaded29a3278b4bd573ca5ff65e1a465c284a77b8dcedcea3602c861b953e47467ef69941e060ff7d71431c963b3a4e5e4fe4b901be90b065e2800e8213e859c93b92ace1833eb4ab71d24901fc236f2816d62e2dd5bb4b1d8f8fbeda336fc44922e06e97008859e7dcdd518c3ef4f088edb77faa7c0f1f53e1e884769201daaf420b384741822802d74a2da0976fe53cc024f10d229e0b1ddf679e1"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xfff}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_MASK={0xd, 0x5, "62eb9fb1850197f91d"}]}, @ETHTOOL_A_WOL_MODES={0x1c8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x81}, @ETHTOOL_A_BITSET_VALUE={0x50, 0x4, "646647eadebbdda7d3f37a145ed3e37e0ca4fc1c3667ea37b0ed4c61e5603e7b50c79faed4e88a86870bab982e574a811108db8164318848c63252f48cc76b7d8f0ff22e36175299f9ea63cf"}, @ETHTOOL_A_BITSET_BITS={0x13c, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x3}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x72}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, ']\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x79e}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '^:\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x19}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xf, 0x2, '/dev/hwrng\x00'}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fffffff}]}]}, @ETHTOOL_A_BITSET_MASK={0x1e, 0x5, "bb59b6165f6e4fc57449223f3a82bf096cf38aead42c9c8855b6"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x5}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x1}]}, @ETHTOOL_A_WOL_HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}]}, @ETHTOOL_A_WOL_SOPASS={0x6e, 0x3, "d08c0020b1bf9acf931edb09af6d9b18607153823d7f8e51d060d845f6a9c49e704c9900644a0b88edce1d73876fa1ada27afa12adfc3187543bebb66eb7c1bcad23eb21b011756993c347d9f0d44befc1df2c12c72901d90aa313decab57943d96e8c6593b04a587b44"}, @ETHTOOL_A_WOL_HEADER={0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}]}]}, 0x160c}, 0x1, 0x0, 0x0, 0x4800}, 0x48084)
r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000001840), 0x200000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc018937e, &(0x7f0000001880)={{0x1, 0x1, 0x18, <r5=>r0, @out_args}, './file0\x00'})
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000001d40)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001d00)={&(0x7f0000001900)={0x3d8, 0x12, 0x100, 0x70bd2c, 0x25dfdbfd, {0x2, 0x7, 0x3f, 0x8, {0x4e23, 0x4e23, [0x61, 0x0, 0x0, 0x3], [0x81, 0xcc0, 0x4, 0x200], r1, [0x100, 0xffff]}, 0x7, 0x7}, [@INET_DIAG_REQ_BYTECODE={0x12, 0x1, "51a3925e89328d35d512a8a39a2f"}, @INET_DIAG_REQ_BYTECODE={0xf2, 0x1, "497e6e5f49da117c1829a72a7a1be7f6e80d73c70600fc6afead2fdb35a2550d0f355494d09d3ee3202bc5b0f332e4ff3028b05aca28f0a3a871dc8547cf31222e7ddce0071fb4a479111f65870d989d00b5c3ab90997b5cd15b09d3c7b0f8122408b148ed9b6f77e0feed6ed87299f6d3ab7681b9dc3988384df003bc4ec14e7a04d12c5a0ab71e6a376631dd7c4b3aba16ee0b9227e0a0f565b3b502139e87941552a8ebb22edae83ef8df9a49ee1815e466c8e2927f17b59679213b583f2b282ee451a3e91870a9f61319e5f42a25ef74386945c42e767c2d24b5c02e433a79e5ed632f41c793c54602625f7d"}, @INET_DIAG_REQ_BYTECODE={0x6d, 0x1, "4b63e19c988bd4797df35034d884443b32069afdde86e6ee7ab94a9312359f1f71bf44a440600297fec50aa8d514203bf108d9060d118cfa90afe52e7b9b9ae8441af6b92837d66360c9b642fdf114a4cf4f815dd6662d22d535aebb551e2c56d4bf43d05e1e511fb5"}, @INET_DIAG_REQ_BYTECODE={0xa0, 0x1, "e453271a793814db454a65afd8b26529b5a3cde207b5cba8a456c4818738bb883f21fc419b36c5128b4a42a0c00f19b8197e8d3093fccc2b6e38c243d6b965e2fa0327148e51d09a09c9912eef1fb8d294cb868ce34eea7b222bfc09a7517de2e94b546b5db8f3de7ec04a97c23d4b1cfa7ed67f223b517fd8cbcf398b599d6b5dff033a96b92448759553d865f98420d73c328b5544ed4bff463ce2"}, @INET_DIAG_REQ_BYTECODE={0xad, 0x1, "22f1fede1191f24fd6d33ac8aad34e0dc9b08a66ad5954aecf1cbdabc9bbca7f541d96c046b295c2d8cd9c14fac5d3b1b46d47c479c746f3aeef248c809cf340f3e4631b1a452807f32740748b26e9b677f21b8d562925b0bb24f839c47e7631e53c5cfa0548cb3a9d74617fb4e0a2e55091192768ef11e89f72be0d07f9f953e1b103327b7b9cd73ac3b2b0e915526711a0e90c134a5a5b7b64cf3debfac0393332a9a51c32b27bd0"}, @INET_DIAG_REQ_BYTECODE={0x77, 0x1, "947e84e6e95ba361bac2a452f8d000bf303afe6ce23b585395c5f2dd52c8fe9cc585dca3aba8f79bcc819911c70e78770435f4e95aa2835c55160af4a148a9fe84dfa330fb6cda4b8934da6d7a4b2c0b8a6b0c74933ccde5493554f842f5d4dfd62939a6955832cd4a8f01fb69acfc7638253a"}, @INET_DIAG_REQ_BYTECODE={0x4c, 0x1, "d8f50c32e332008faeca9ac4e5fb72c406134682015df4147948328dc6dc27c48b3d7bfcebeae756218f7ceeef93c21c582800c4b9c659f05074d1a27344a3dffa4f362dd9e3ef35"}]}, 0x3d8}}, 0x40000)
socketpair(0x1a, 0x3, 0x6, &(0x7f0000001d80)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001e00), r0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000002000)={'ip6_vti0\x00', &(0x7f0000001f80)={'sit0\x00', <r8=>r1, 0x29, 0x0, 0x3, 0x5, 0x1, @mcast1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8000, 0x20, 0x3f, 0x3}})
sendmsg$ETHTOOL_MSG_FEATURES_GET(r6, &(0x7f0000002100)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000020c0)={&(0x7f0000002040)={0x58, r7, 0x2, 0x800, 0x25dfdbff, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nr0\x00'}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000004}, 0x4040000)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r6, 0x89f4, &(0x7f00000021c0)={'sit0\x00', &(0x7f0000002140)={'syztnl1\x00', r1, 0x2f, 0x4, 0x7, 0xff, 0x1d, @dev={0xfe, 0x80, '\x00', 0x11}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x7, 0x7800, 0x0, 0x2}})
setsockopt$packet_drop_memb(r5, 0x107, 0x2, &(0x7f0000002200)={r8, 0x1, 0x6, @multicast}, 0x10)
r9 = syz_io_uring_setup(0x1984, &(0x7f0000002240)={0x0, 0x962b, 0x254f672deb4dbf1, 0x3, 0x116, 0x0, r5}, &(0x7f0000ff2000/0xb000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f00000022c0), &(0x7f0000002300))
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000002340)={{0x1, 0x1, 0x18, <r10=>r0, {r9}}, './file1\x00'})
ioctl$CDROMEJECT(r10, 0x5309)
sendmsg$NL80211_CMD_DEL_MPATH(0xffffffffffffffff, &(0x7f0000002480)={&(0x7f00000023c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000002440)={&(0x7f0000002400)={0x38, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x38}}, 0x20000000)

[   65.025091] audit: type=1400 audit(1664612060.464:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:14:20 executing program 5:
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000000))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000040))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000080))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f00000000c0))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000100))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000140))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000180))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f00000001c0))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000200))
syz_genetlink_get_family_id$devlink(&(0x7f0000000240), 0xffffffffffffffff)
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000280))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f00000002c0))
r0 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000380), 0x202200, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x1000000, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@privport}, {@access_user}], [{@obj_user}, {@seclabel}, {@measure}, {@appraise_type}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@seclabel}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@smackfsdef={'smackfsdef', 0x3d, 'devlink\x00'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfshat={'smackfshat', 0x3d, 'devlink\x00'}}]}})
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f00000004c0))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000500))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000540))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f0000000580))
prctl$PR_GET_PDEATHSIG(0x2, &(0x7f00000005c0))
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000a40)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000780)={0x254, 0x0, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}]}, @ETHTOOL_A_FEATURES_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_FEATURES_WANTED={0x1c4, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0xcd, 0x5, "093bc972076302b18edaf00e5cf8fc950ef16354f80c8b4f3cd58a1d504c2f71b9bb068d76131ec495674189fe1913d89a73feeaf44e90f706063c15c5e022c200eb6615dd4855de488e8486839354057625ee702e14b1bbd731bec297751525711801f0db53a0d344618c4d1960138b54393c1969a70649d9d2c12cb2d3dfb2b4b79ac4c9d6e7b3fc12e929eb298a1152c5807db13d155ee3a213ec9cab87b05568fe44d83bf6a5bce7fd9271fd1721962caba984412fa96a3cc9f3fa9fde08fd24942cf6ad895cf3"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x6d, 0x4, "4eb68b1b53f4f8e95e6ef7692a74b3700c42cf092b834077280f9f8533400c7a097d1047413ffecf46249fc1a51501dba4d598571f430ffdfe659598ee6cdc3e54bb4a0f047454ddd729372549ad06714e710d3ad54d9812e72f3f67859edac15b84a3f040dc213aa3"}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_VALUE={0x6d, 0x4, "9814ef5682fc05815d4c8064db3e39fc76e85154b36d97b88fda8ea7f816ad15ab7249b02dcaa00e699be8e28e464604f562ef69829e7409811f0553c2b5a77bd9801b654f1ed8f0b084cbd66cacae74c5bda7b1f041eec51c7c0c4fbbc70a48b1d9d1bd0a651e759d"}]}]}, 0x254}, 0x1, 0x0, 0x0, 0x40040}, 0x4008810)

08:14:20 executing program 7:
ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'ipvlan1\x00'})
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
setsockopt$sock_timeval(r1, 0x1, 0x14, &(0x7f0000000080)={0x0, 0x2710}, 0x10)
setsockopt$bt_l2cap_L2CAP_LM(r0, 0x6, 0x3, &(0x7f00000000c0)=0x2, 0x4)
write$binfmt_misc(r0, &(0x7f0000000100)={'syz0', "d4bf81d83881a546ab1a0aa1f4d4dc66ac00427300bca4"}, 0x1b)
getsockopt$bt_l2cap_L2CAP_LM(r1, 0x6, 0x3, &(0x7f0000000140), &(0x7f0000000180)=0x4)
fsetxattr$security_capability(r0, &(0x7f00000001c0), &(0x7f0000000200)=@v2={0x2000000, [{0x8000, 0xfff}, {0x37, 0xfff}]}, 0x14, 0x3)
r2 = syz_open_dev$loop(&(0x7f0000000240), 0x0, 0x400400)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r3=>r2, {0x8}}, './file0\x00'})
r4 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0), 0x541802, 0x0)
fallocate(r4, 0x0, 0x55ca42c1, 0x1)
ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r0)
ioctl$F2FS_IOC_GARBAGE_COLLECT(r3, 0x4004f506, &(0x7f0000000300))
r5 = socket(0xb, 0x0, 0x5504)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000340)={{0x1, 0x1, 0x18, r5}, './file1\x00'})
ioctl$SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, &(0x7f0000000380)=""/76)
io_submit(0x0, 0x1, &(0x7f0000000480)=[&(0x7f0000000440)={0x0, 0x0, 0x0, 0x8, 0x9, 0xffffffffffffffff, &(0x7f0000000400)="0e197d2f2c22a8c107a97eb8cc0a1630689d8a64e5dc8a988089850cced4c916767114897a20", 0x26, 0x4, 0x0, 0x1}])
accept$unix(0xffffffffffffffff, &(0x7f00000004c0)=@abs, &(0x7f0000000540)=0x6e)
ioctl$RTC_PLL_GET(0xffffffffffffffff, 0x80207011, &(0x7f00000005c0))

[   66.404776] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   66.408069] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   66.411119] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   66.414262] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   66.418608] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   66.421741] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   66.446431] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   66.450093] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   66.451555] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   66.464360] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   66.465757] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   66.467457] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   66.469151] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   66.470870] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   66.473155] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   66.476341] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   66.479107] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   66.480572] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   66.482117] Bluetooth: hci1: HCI_REQ-0x0c1a
[   66.482435] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   66.485857] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   66.488218] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   66.489606] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   66.490790] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   66.491933] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   66.492943] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   66.494437] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   66.494604] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   66.495782] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   66.496746] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   66.497924] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   66.499602] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   66.501141] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   66.503099] Bluetooth: hci2: HCI_REQ-0x0c1a
[   66.503528] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   66.506538] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   66.508065] Bluetooth: hci0: HCI_REQ-0x0c1a
[   66.511119] Bluetooth: hci6: HCI_REQ-0x0c1a
[   66.525317] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   66.530879] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   66.535703] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   66.536736] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   66.537811] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   66.541138] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   66.542727] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   66.542742] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   66.545560] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   66.546698] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   66.547967] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   66.549438] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   66.550923] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   66.554994] Bluetooth: hci7: HCI_REQ-0x0c1a
[   66.555450] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   66.563022] Bluetooth: hci4: HCI_REQ-0x0c1a
[   66.563576] Bluetooth: hci5: HCI_REQ-0x0c1a
[   66.563760] Bluetooth: hci3: HCI_REQ-0x0c1a
[   68.533732] Bluetooth: hci2: command 0x0409 tx timeout
[   68.533870] Bluetooth: hci0: command 0x0409 tx timeout
[   68.534768] Bluetooth: hci6: command 0x0409 tx timeout
[   68.597275] Bluetooth: hci3: command 0x0409 tx timeout
[   68.598078] Bluetooth: hci7: command 0x0409 tx timeout
[   68.599380] Bluetooth: hci1: command 0x0409 tx timeout
[   68.600207] Bluetooth: hci5: command 0x0409 tx timeout
[   68.600904] Bluetooth: hci4: command 0x0409 tx timeout
[   70.581278] Bluetooth: hci6: command 0x041b tx timeout
[   70.582259] Bluetooth: hci0: command 0x041b tx timeout
[   70.582727] Bluetooth: hci2: command 0x041b tx timeout
[   70.645238] Bluetooth: hci4: command 0x041b tx timeout
[   70.645665] Bluetooth: hci5: command 0x041b tx timeout
[   70.646064] Bluetooth: hci1: command 0x041b tx timeout
[   70.646530] Bluetooth: hci7: command 0x041b tx timeout
[   70.646941] Bluetooth: hci3: command 0x041b tx timeout
[   72.629247] Bluetooth: hci2: command 0x040f tx timeout
[   72.629858] Bluetooth: hci0: command 0x040f tx timeout
[   72.630402] Bluetooth: hci6: command 0x040f tx timeout
[   72.693248] Bluetooth: hci3: command 0x040f tx timeout
[   72.693703] Bluetooth: hci7: command 0x040f tx timeout
[   72.694092] Bluetooth: hci1: command 0x040f tx timeout
[   72.694523] Bluetooth: hci5: command 0x040f tx timeout
[   72.694907] Bluetooth: hci4: command 0x040f tx timeout
[   74.677321] Bluetooth: hci6: command 0x0419 tx timeout
[   74.677803] Bluetooth: hci0: command 0x0419 tx timeout
[   74.678624] Bluetooth: hci2: command 0x0419 tx timeout
[   74.741309] Bluetooth: hci4: command 0x0419 tx timeout
[   74.741784] Bluetooth: hci5: command 0x0419 tx timeout
[   74.742237] Bluetooth: hci1: command 0x0419 tx timeout
[   74.742649] Bluetooth: hci7: command 0x0419 tx timeout
[   74.743059] Bluetooth: hci3: command 0x0419 tx timeout
08:15:15 executing program 3:
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff8)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f00000000c0)=@keyring={'key_or_keyring:', r0})
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='gid_map\x00')
pread64(r1, &(0x7f0000001980)=""/146, 0x92, 0x8)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r2, 0x5412, &(0x7f0000000000))
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r3, 0x5412, &(0x7f0000000000))
fcntl$setpipe(r3, 0x407, 0x1)

08:15:16 executing program 7:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
pivot_root(&(0x7f0000000340)='./file1\x00', &(0x7f0000000380)='./file0/file0\x00')
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'})
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r2, 0x5412, &(0x7f0000000000))
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, r2}, './file1\x00'})
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

08:15:16 executing program 3:
r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffff8)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f00000000c0)=@keyring={'key_or_keyring:', r0})
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='gid_map\x00')
pread64(r1, &(0x7f0000001980)=""/146, 0x92, 0x8)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r2, 0x5412, &(0x7f0000000000))
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r3, 0x5412, &(0x7f0000000000))
fcntl$setpipe(r3, 0x407, 0x1)

[  120.602002] loop7: detected capacity change from 0 to 40
[  120.646730] audit: type=1400 audit(1664612116.086:7): avc:  denied  { open } for  pid=3784 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  120.648154] audit: type=1400 audit(1664612116.086:8): avc:  denied  { kernel } for  pid=3784 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  120.664034] ------------[ cut here ]------------
[  120.664055] 
[  120.664058] ======================================================
[  120.664061] WARNING: possible circular locking dependency detected
[  120.664066] 6.0.0-rc7-next-20220930 #1 Not tainted
[  120.664072] ------------------------------------------------------
[  120.664075] syz-executor.7/3786 is trying to acquire lock:
[  120.664081] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  120.664121] 
[  120.664121] but task is already holding lock:
[  120.664124] ffff8880100f8820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  120.664150] 
[  120.664150] which lock already depends on the new lock.
[  120.664150] 
[  120.664153] 
[  120.664153] the existing dependency chain (in reverse order) is:
[  120.664156] 
[  120.664156] -> #3 (&ctx->lock){....}-{2:2}:
[  120.664173]        _raw_spin_lock+0x2a/0x40
[  120.664184]        __perf_event_task_sched_out+0x53b/0x18d0
[  120.664196]        __schedule+0xedd/0x2470
[  120.664209]        preempt_schedule_common+0x45/0xc0
[  120.664224]        __cond_resched+0x17/0x30
[  120.664238]        __mutex_lock+0xa3/0x14d0
[  120.664253]        __do_sys_perf_event_open+0x1eec/0x32c0
[  120.664265]        do_syscall_64+0x3b/0x90
[  120.664282]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.664295] 
[  120.664295] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  120.664308]        _raw_spin_lock_nested+0x30/0x40
[  120.664319]        raw_spin_rq_lock_nested+0x1e/0x30
[  120.664332]        task_fork_fair+0x63/0x4d0
[  120.664348]        sched_cgroup_fork+0x3d0/0x540
[  120.664362]        copy_process+0x4183/0x6e20
[  120.664373]        kernel_clone+0xe7/0x890
[  120.664382]        user_mode_thread+0xad/0xf0
[  120.664392]        rest_init+0x24/0x250
[  120.664404]        arch_call_rest_init+0xf/0x14
[  120.664422]        start_kernel+0x4c6/0x4eb
[  120.664437]        secondary_startup_64_no_verify+0xe0/0xeb
[  120.664451] 
[  120.664451] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  120.664464]        _raw_spin_lock_irqsave+0x39/0x60
[  120.664475]        try_to_wake_up+0xab/0x1930
[  120.664488]        up+0x75/0xb0
[  120.664502]        __up_console_sem+0x6e/0x80
[  120.664525]        console_unlock+0x46a/0x590
[  120.664541]        vt_ioctl+0x2822/0x2ca0
[  120.664552]        tty_ioctl+0x785/0x16b0
[  120.664563]        __x64_sys_ioctl+0x19a/0x210
[  120.664576]        do_syscall_64+0x3b/0x90
[  120.664593]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.664605] 
[  120.664605] -> #0 ((console_sem).lock){....}-{2:2}:
[  120.664619]        __lock_acquire+0x2a02/0x5e70
[  120.664635]        lock_acquire+0x1a2/0x530
[  120.664651]        _raw_spin_lock_irqsave+0x39/0x60
[  120.664662]        down_trylock+0xe/0x70
[  120.664676]        __down_trylock_console_sem+0x3b/0xd0
[  120.664692]        vprintk_emit+0x16b/0x560
[  120.664708]        vprintk+0x84/0xa0
[  120.664723]        _printk+0xba/0xf1
[  120.664735]        report_bug.cold+0x72/0xab
[  120.664750]        handle_bug+0x3c/0x70
[  120.664767]        exc_invalid_op+0x14/0x50
[  120.664783]        asm_exc_invalid_op+0x16/0x20
[  120.664795]        group_sched_out.part.0+0x2c7/0x460
[  120.664813]        ctx_sched_out+0x8f1/0xc10
[  120.664829]        __perf_event_task_sched_out+0x6d0/0x18d0
[  120.664840]        __schedule+0xedd/0x2470
[  120.664853]        preempt_schedule_common+0x45/0xc0
[  120.664868]        __cond_resched+0x17/0x30
[  120.664882]        __mutex_lock+0xa3/0x14d0
[  120.664896]        __do_sys_perf_event_open+0x1eec/0x32c0
[  120.664907]        do_syscall_64+0x3b/0x90
[  120.664924]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.664936] 
[  120.664936] other info that might help us debug this:
[  120.664936] 
[  120.664939] Chain exists of:
[  120.664939]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  120.664939] 
[  120.664954]  Possible unsafe locking scenario:
[  120.664954] 
[  120.664956]        CPU0                    CPU1
[  120.664958]        ----                    ----
[  120.664961]   lock(&ctx->lock);
[  120.664966]                                lock(&rq->__lock);
[  120.664972]                                lock(&ctx->lock);
[  120.664978]   lock((console_sem).lock);
[  120.664984] 
[  120.664984]  *** DEADLOCK ***
[  120.664984] 
[  120.664986] 2 locks held by syz-executor.7/3786:
[  120.664993]  #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  120.665021]  #1: ffff8880100f8820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  120.665047] 
[  120.665047] stack backtrace:
[  120.665050] CPU: 0 PID: 3786 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1
[  120.665063] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  120.665071] Call Trace:
[  120.665075]  <TASK>
[  120.665079]  dump_stack_lvl+0x8b/0xb3
[  120.665097]  check_noncircular+0x263/0x2e0
[  120.665113]  ? format_decode+0x26c/0xb50
[  120.665129]  ? print_circular_bug+0x450/0x450
[  120.665146]  ? simple_strtoul+0x30/0x30
[  120.665162]  ? lock_release+0x547/0x750
[  120.665181]  ? format_decode+0x26c/0xb50
[  120.665198]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  120.665215]  __lock_acquire+0x2a02/0x5e70
[  120.665236]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  120.665259]  lock_acquire+0x1a2/0x530
[  120.665275]  ? down_trylock+0xe/0x70
[  120.665292]  ? lock_release+0x750/0x750
[  120.665312]  ? vprintk+0x84/0xa0
[  120.665330]  _raw_spin_lock_irqsave+0x39/0x60
[  120.665341]  ? down_trylock+0xe/0x70
[  120.665357]  down_trylock+0xe/0x70
[  120.665372]  ? vprintk+0x84/0xa0
[  120.665389]  __down_trylock_console_sem+0x3b/0xd0
[  120.665406]  vprintk_emit+0x16b/0x560
[  120.665425]  vprintk+0x84/0xa0
[  120.665442]  _printk+0xba/0xf1
[  120.665453]  ? record_print_text.cold+0x16/0x16
[  120.665469]  ? report_bug.cold+0x66/0xab
[  120.665487]  ? group_sched_out.part.0+0x2c7/0x460
[  120.665505]  report_bug.cold+0x72/0xab
[  120.665523]  handle_bug+0x3c/0x70
[  120.665540]  exc_invalid_op+0x14/0x50
[  120.665558]  asm_exc_invalid_op+0x16/0x20
[  120.665571] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  120.665592] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  120.665603] RSP: 0018:ffff88801d517978 EFLAGS: 00010006
[  120.665612] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  120.665619] RDX: ffff88801a5d0000 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  120.665627] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  120.665634] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff8880100f8800
[  120.665642] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  120.665653]  ? group_sched_out.part.0+0x2c7/0x460
[  120.665673]  ? group_sched_out.part.0+0x2c7/0x460
[  120.665693]  ctx_sched_out+0x8f1/0xc10
[  120.665712]  __perf_event_task_sched_out+0x6d0/0x18d0
[  120.665726]  ? lock_is_held_type+0xd7/0x130
[  120.665740]  ? __perf_cgroup_move+0x160/0x160
[  120.665750]  ? set_next_entity+0x304/0x550
[  120.665768]  ? update_curr+0x267/0x740
[  120.665786]  ? lock_is_held_type+0xd7/0x130
[  120.665800]  __schedule+0xedd/0x2470
[  120.665817]  ? io_schedule_timeout+0x150/0x150
[  120.665832]  ? find_held_lock+0x2c/0x110
[  120.665848]  ? lock_is_held_type+0xd7/0x130
[  120.665861]  ? __cond_resched+0x17/0x30
[  120.665876]  preempt_schedule_common+0x45/0xc0
[  120.665893]  __cond_resched+0x17/0x30
[  120.665907]  __mutex_lock+0xa3/0x14d0
[  120.665924]  ? lock_is_held_type+0xd7/0x130
[  120.665936]  ? __do_sys_perf_event_open+0x1eec/0x32c0
[  120.665950]  ? mutex_lock_io_nested+0x1310/0x1310
[  120.665966]  ? lock_release+0x3b2/0x750
[  120.665983]  ? __up_read+0x192/0x730
[  120.665998]  ? up_write+0x520/0x520
[  120.666012]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  120.666026]  __do_sys_perf_event_open+0x1eec/0x32c0
[  120.666042]  ? perf_compat_ioctl+0x130/0x130
[  120.666053]  ? xfd_validate_state+0x59/0x180
[  120.666076]  ? syscall_enter_from_user_mode+0x1d/0x50
[  120.666090]  ? syscall_enter_from_user_mode+0x1d/0x50
[  120.666105]  do_syscall_64+0x3b/0x90
[  120.666123]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.666136] RIP: 0033:0x7f37b040ab19
[  120.666144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.666155] RSP: 002b:00007f37ad980188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  120.666166] RAX: ffffffffffffffda RBX: 00007f37b051df60 RCX: 00007f37b040ab19
[  120.666173] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080
[  120.666181] RBP: 00007f37b0464f6d R08: 0000000000000000 R09: 0000000000000000
[  120.666188] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  120.666195] R13: 00007fff5b6b871f R14: 00007f37ad980300 R15: 0000000000022000
[  120.666208]  </TASK>
[  120.725711] WARNING: CPU: 0 PID: 3786 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  120.726394] Modules linked in:
[  120.726633] CPU: 0 PID: 3786 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1
[  120.727229] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  120.728054] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  120.728466] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  120.729824] RSP: 0018:ffff88801d517978 EFLAGS: 00010006
[  120.730228] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  120.730762] RDX: ffff88801a5d0000 RSI: ffffffff81565dc7 RDI: 0000000000000005
[  120.731285] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001
[  120.731811] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff8880100f8800
[  120.732348] R13: ffff88806ce3d2c0 R14: ffffffff8547d000 R15: 0000000000000002
[  120.732906] FS:  00007f37ad980700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000
[  120.733510] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  120.733950] CR2: 00007f4d7d81b038 CR3: 000000003e364000 CR4: 0000000000350ef0
[  120.734481] Call Trace:
[  120.734681]  <TASK>
[  120.734858]  ctx_sched_out+0x8f1/0xc10
[  120.735164]  __perf_event_task_sched_out+0x6d0/0x18d0
[  120.735558]  ? lock_is_held_type+0xd7/0x130
[  120.735888]  ? __perf_cgroup_move+0x160/0x160
[  120.736231]  ? set_next_entity+0x304/0x550
[  120.736563]  ? update_curr+0x267/0x740
[  120.736863]  ? lock_is_held_type+0xd7/0x130
[  120.737197]  __schedule+0xedd/0x2470
[  120.737488]  ? io_schedule_timeout+0x150/0x150
[  120.737851]  ? find_held_lock+0x2c/0x110
[  120.738171]  ? lock_is_held_type+0xd7/0x130
[  120.738499]  ? __cond_resched+0x17/0x30
[  120.738800]  preempt_schedule_common+0x45/0xc0
[  120.739152]  __cond_resched+0x17/0x30
[  120.739451]  __mutex_lock+0xa3/0x14d0
[  120.739746]  ? lock_is_held_type+0xd7/0x130
[  120.740075]  ? __do_sys_perf_event_open+0x1eec/0x32c0
[  120.740469]  ? mutex_lock_io_nested+0x1310/0x1310
[  120.740845]  ? lock_release+0x3b2/0x750
[  120.741149]  ? __up_read+0x192/0x730
[  120.741442]  ? up_write+0x520/0x520
[  120.741727]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  120.742105]  __do_sys_perf_event_open+0x1eec/0x32c0
[  120.742479]  ? perf_compat_ioctl+0x130/0x130
[  120.742802]  ? xfd_validate_state+0x59/0x180
[  120.743145]  ? syscall_enter_from_user_mode+0x1d/0x50
[  120.743538]  ? syscall_enter_from_user_mode+0x1d/0x50
[  120.743934]  do_syscall_64+0x3b/0x90
[  120.744229]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  120.744627] RIP: 0033:0x7f37b040ab19
[  120.744914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  120.746262] RSP: 002b:00007f37ad980188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a
[  120.746843] RAX: ffffffffffffffda RBX: 00007f37b051df60 RCX: 00007f37b040ab19
[  120.747374] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080
[  120.747906] RBP: 00007f37b0464f6d R08: 0000000000000000 R09: 0000000000000000
[  120.748433] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000
[  120.748983] R13: 00007fff5b6b871f R14: 00007f37ad980300 R15: 0000000000022000
[  120.749520]  </TASK>
[  120.749699] irq event stamp: 3062
[  120.749957] hardirqs last  enabled at (3061): [<ffffffff84273de8>] _raw_spin_unlock_irqrestore+0x28/0x60
[  120.750665] hardirqs last disabled at (3062): [<ffffffff8425caa5>] __schedule+0x1225/0x2470
[  120.751293] softirqs last  enabled at (2496): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  120.751945] softirqs last disabled at (2401): [<ffffffff8116fa0b>] __irq_exit_rcu+0x11b/0x180
[  120.752597] ---[ end trace 0000000000000000 ]---
08:15:16 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='attr/prev\x00')
read$snapshot(r1, &(0x7f00000004c0)=""/104, 0x68)
openat(r1, &(0x7f0000000080)='./file0\x00', 0x802, 0x48)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0x0, r2, 0x0)
fchown(r0, 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00')

08:15:16 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='attr/prev\x00')
read$snapshot(r1, &(0x7f00000004c0)=""/104, 0x68)
openat(r1, &(0x7f0000000080)='./file0\x00', 0x802, 0x48)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0x0, r2, 0x0)
fchown(r0, 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00')

08:15:16 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='attr/prev\x00')
read$snapshot(r1, &(0x7f00000004c0)=""/104, 0x68)
openat(r1, &(0x7f0000000080)='./file0\x00', 0x802, 0x48)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0x0, r2, 0x0)
fchown(r0, 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00')

08:15:16 executing program 3:
syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000300)='attr/prev\x00')
read$snapshot(r1, &(0x7f00000004c0)=""/104, 0x68)
openat(r1, &(0x7f0000000080)='./file0\x00', 0x802, 0x48)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0x0, r2, 0x0)
fchown(r0, 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00')

08:15:16 executing program 7:
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='attr/prev\x00')
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r1, 0x5412, &(0x7f0000000000))
write$binfmt_aout(r1, &(0x7f0000000540)={{0x10b, 0x1, 0x0, 0x202, 0x27e, 0x8, 0x25, 0x9}, "952bb28fcf24226bbd11c1c3789400b5", ['\x00', '\x00', '\x00']}, 0x330)
read$snapshot(r0, &(0x7f00000004c0)=""/104, 0x68)
ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000100))
r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x4b80, 0x0)
ioctl$EVIOCSFF(r2, 0x40304580, &(0x7f0000000040)={0x52, 0x4, 0x6, {0x2, 0x200}, {0x1ff, 0x8}, @ramp={0x0, 0x9, {0x8a9, 0x7ff, 0x3, 0x8274}}})
copy_file_range(r2, &(0x7f0000000080)=0x7f, r2, &(0x7f00000000c0)=0x9, 0x10001, 0x0)


VM DIAGNOSIS:
08:15:16  Registers:
info registers vcpu 0
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801d5173c0
R8 =0000000000000001 R9 =000000000000000a R10=000000000000003a R11=0000000000000001
R12=000000000000003a R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0
RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f37ad980700 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f4d7d81b038 CR3=000000003e364000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffff00ffffffffff ffffffffffff00ff
YMM02=0000000000000000 0000000000000000 4c4700362e322e32 5f4342494c470035
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000470035
YMM04=0000000000000000 0000000000000000 4342494c4700362e 322e325f4342494c
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=1ffffffff0b6a5d3 RBX=ffffffff85b52e98 RCX=ffffffff8111c7f9 RDX=0000000000000000
RSI=ffffffff85e41d80 RDI=ffffffff85b52e98 RBP=ffffffff85b52e98 RSP=ffff88801f2374b0
R8 =ffffffff85e41d80 R9 =ffff88801f2375c8 R10=ffffed1003e46ec6 R11=000000000003603d
R12=ffffffff85b52e98 R13=ffffffff85b52e98 R14=ffffffff85b52e98 R15=dffffc0000000000
RIP=ffffffff81119b6f RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3eae14db70 CR3=000000003cdfa000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 2e6f747079726362 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 00312e312e6f732e 6f74707972636269
YMM03=0000000000000000 0000000000000000 6c2f756e672d7875 6e696c2d34365f36
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000