Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:14256' (ECDSA) to the list of known hosts. 2022/10/01 15:47:18 fuzzer started 2022/10/01 15:47:18 dialing manager at localhost:35095 syzkaller login: [ 36.634489] cgroup: Unknown subsys name 'net' [ 36.735090] cgroup: Unknown subsys name 'rlimit' 2022/10/01 15:47:31 syscalls: 2215 2022/10/01 15:47:31 code coverage: enabled 2022/10/01 15:47:31 comparison tracing: enabled 2022/10/01 15:47:31 extra coverage: enabled 2022/10/01 15:47:31 setuid sandbox: enabled 2022/10/01 15:47:31 namespace sandbox: enabled 2022/10/01 15:47:31 Android sandbox: enabled 2022/10/01 15:47:31 fault injection: enabled 2022/10/01 15:47:31 leak checking: enabled 2022/10/01 15:47:31 net packet injection: enabled 2022/10/01 15:47:31 net device setup: enabled 2022/10/01 15:47:31 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/01 15:47:31 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/01 15:47:31 USB emulation: enabled 2022/10/01 15:47:31 hci packet injection: enabled 2022/10/01 15:47:31 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/01 15:47:31 802.15.4 emulation: enabled 2022/10/01 15:47:31 fetching corpus: 50, signal 36466/38164 (executing program) 2022/10/01 15:47:31 fetching corpus: 100, signal 46926/50122 (executing program) 2022/10/01 15:47:32 fetching corpus: 150, signal 52633/57289 (executing program) 2022/10/01 15:47:32 fetching corpus: 200, signal 58396/64405 (executing program) 2022/10/01 15:47:32 fetching corpus: 250, signal 63492/70771 (executing program) 2022/10/01 15:47:32 fetching corpus: 300, signal 69079/77573 (executing program) 2022/10/01 15:47:32 fetching corpus: 350, signal 74204/83800 (executing program) 2022/10/01 15:47:32 fetching corpus: 400, signal 76226/87083 (executing program) 2022/10/01 15:47:32 fetching corpus: 450, signal 81068/92940 (executing program) 2022/10/01 15:47:33 fetching corpus: 500, signal 84522/97422 (executing program) 2022/10/01 15:47:33 fetching corpus: 550, signal 87423/101363 (executing program) 2022/10/01 15:47:33 fetching corpus: 600, signal 90982/105821 (executing program) 2022/10/01 15:47:33 fetching corpus: 650, signal 94547/110230 (executing program) 2022/10/01 15:47:33 fetching corpus: 700, signal 96191/112914 (executing program) 2022/10/01 15:47:33 fetching corpus: 750, signal 98996/116528 (executing program) 2022/10/01 15:47:33 fetching corpus: 800, signal 100949/119406 (executing program) 2022/10/01 15:47:33 fetching corpus: 850, signal 103277/122539 (executing program) 2022/10/01 15:47:34 fetching corpus: 900, signal 105305/125382 (executing program) 2022/10/01 15:47:34 fetching corpus: 950, signal 107328/128244 (executing program) 2022/10/01 15:47:34 fetching corpus: 1000, signal 109978/131559 (executing program) 2022/10/01 15:47:34 fetching corpus: 1050, signal 111698/134075 (executing program) 2022/10/01 15:47:34 fetching corpus: 1100, signal 115244/138046 (executing program) 2022/10/01 15:47:34 fetching corpus: 1150, signal 118621/141815 (executing program) 2022/10/01 15:47:34 fetching corpus: 1200, signal 120322/144151 (executing program) 2022/10/01 15:47:34 fetching corpus: 1250, signal 121858/146378 (executing program) 2022/10/01 15:47:35 fetching corpus: 1300, signal 123662/148752 (executing program) 2022/10/01 15:47:35 fetching corpus: 1350, signal 125142/150863 (executing program) 2022/10/01 15:47:35 fetching corpus: 1400, signal 126592/152903 (executing program) 2022/10/01 15:47:35 fetching corpus: 1450, signal 128358/155159 (executing program) 2022/10/01 15:47:35 fetching corpus: 1500, signal 129994/157295 (executing program) 2022/10/01 15:47:35 fetching corpus: 1550, signal 132255/159900 (executing program) 2022/10/01 15:47:35 fetching corpus: 1600, signal 132952/161268 (executing program) 2022/10/01 15:47:35 fetching corpus: 1650, signal 133916/162896 (executing program) 2022/10/01 15:47:35 fetching corpus: 1700, signal 135175/164667 (executing program) 2022/10/01 15:47:36 fetching corpus: 1750, signal 136826/166657 (executing program) 2022/10/01 15:47:36 fetching corpus: 1800, signal 138566/168757 (executing program) 2022/10/01 15:47:36 fetching corpus: 1850, signal 139701/170365 (executing program) 2022/10/01 15:47:36 fetching corpus: 1900, signal 140671/171864 (executing program) 2022/10/01 15:47:36 fetching corpus: 1950, signal 142594/173975 (executing program) 2022/10/01 15:47:36 fetching corpus: 2000, signal 143566/175442 (executing program) 2022/10/01 15:47:36 fetching corpus: 2050, signal 144756/177043 (executing program) 2022/10/01 15:47:36 fetching corpus: 2100, signal 145348/178235 (executing program) 2022/10/01 15:47:36 fetching corpus: 2150, signal 146729/179900 (executing program) 2022/10/01 15:47:37 fetching corpus: 2200, signal 147796/181356 (executing program) 2022/10/01 15:47:37 fetching corpus: 2250, signal 148425/182554 (executing program) 2022/10/01 15:47:37 fetching corpus: 2300, signal 149287/183847 (executing program) 2022/10/01 15:47:37 fetching corpus: 2350, signal 150681/185403 (executing program) 2022/10/01 15:47:37 fetching corpus: 2400, signal 151472/186596 (executing program) 2022/10/01 15:47:37 fetching corpus: 2450, signal 152384/187888 (executing program) 2022/10/01 15:47:37 fetching corpus: 2500, signal 153650/189324 (executing program) 2022/10/01 15:47:37 fetching corpus: 2550, signal 155719/191253 (executing program) 2022/10/01 15:47:37 fetching corpus: 2600, signal 156876/192573 (executing program) 2022/10/01 15:47:38 fetching corpus: 2650, signal 159176/194510 (executing program) 2022/10/01 15:47:38 fetching corpus: 2700, signal 160160/195713 (executing program) 2022/10/01 15:47:38 fetching corpus: 2750, signal 160784/196713 (executing program) 2022/10/01 15:47:38 fetching corpus: 2800, signal 161347/197682 (executing program) 2022/10/01 15:47:38 fetching corpus: 2850, signal 162131/198763 (executing program) 2022/10/01 15:47:38 fetching corpus: 2900, signal 163203/199946 (executing program) 2022/10/01 15:47:38 fetching corpus: 2950, signal 164033/201019 (executing program) 2022/10/01 15:47:38 fetching corpus: 3000, signal 164582/201893 (executing program) 2022/10/01 15:47:38 fetching corpus: 3050, signal 165624/203031 (executing program) 2022/10/01 15:47:39 fetching corpus: 3100, signal 166515/204083 (executing program) 2022/10/01 15:47:39 fetching corpus: 3150, signal 167113/204917 (executing program) 2022/10/01 15:47:39 fetching corpus: 3200, signal 167821/205848 (executing program) 2022/10/01 15:47:39 fetching corpus: 3250, signal 168667/206850 (executing program) 2022/10/01 15:47:39 fetching corpus: 3300, signal 170317/208134 (executing program) 2022/10/01 15:47:39 fetching corpus: 3350, signal 171036/209040 (executing program) 2022/10/01 15:47:39 fetching corpus: 3400, signal 172237/210113 (executing program) 2022/10/01 15:47:39 fetching corpus: 3450, signal 172964/210998 (executing program) 2022/10/01 15:47:39 fetching corpus: 3500, signal 173686/211857 (executing program) 2022/10/01 15:47:39 fetching corpus: 3550, signal 174337/212644 (executing program) 2022/10/01 15:47:40 fetching corpus: 3600, signal 174823/213371 (executing program) 2022/10/01 15:47:40 fetching corpus: 3650, signal 175459/214125 (executing program) 2022/10/01 15:47:40 fetching corpus: 3700, signal 176622/215110 (executing program) 2022/10/01 15:47:40 fetching corpus: 3750, signal 177953/216126 (executing program) 2022/10/01 15:47:40 fetching corpus: 3800, signal 179552/217232 (executing program) 2022/10/01 15:47:40 fetching corpus: 3850, signal 180450/218036 (executing program) 2022/10/01 15:47:40 fetching corpus: 3900, signal 181051/218705 (executing program) 2022/10/01 15:47:41 fetching corpus: 3950, signal 182313/219630 (executing program) 2022/10/01 15:47:41 fetching corpus: 4000, signal 182617/220232 (executing program) 2022/10/01 15:47:41 fetching corpus: 4050, signal 183357/220926 (executing program) 2022/10/01 15:47:41 fetching corpus: 4100, signal 183720/221494 (executing program) 2022/10/01 15:47:41 fetching corpus: 4150, signal 184388/222230 (executing program) 2022/10/01 15:47:41 fetching corpus: 4200, signal 184931/222925 (executing program) 2022/10/01 15:47:41 fetching corpus: 4250, signal 185748/223706 (executing program) 2022/10/01 15:47:41 fetching corpus: 4300, signal 186233/224270 (executing program) 2022/10/01 15:47:42 fetching corpus: 4350, signal 186698/224821 (executing program) 2022/10/01 15:47:42 fetching corpus: 4400, signal 187614/225508 (executing program) 2022/10/01 15:47:42 fetching corpus: 4450, signal 188413/226099 (executing program) 2022/10/01 15:47:42 fetching corpus: 4500, signal 189127/226711 (executing program) 2022/10/01 15:47:42 fetching corpus: 4550, signal 190225/227464 (executing program) 2022/10/01 15:47:42 fetching corpus: 4600, signal 190981/228064 (executing program) 2022/10/01 15:47:42 fetching corpus: 4650, signal 191704/228618 (executing program) 2022/10/01 15:47:42 fetching corpus: 4700, signal 192494/229169 (executing program) 2022/10/01 15:47:42 fetching corpus: 4750, signal 192898/229633 (executing program) 2022/10/01 15:47:43 fetching corpus: 4800, signal 193928/230203 (executing program) 2022/10/01 15:47:43 fetching corpus: 4850, signal 194590/230717 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/231094 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/231486 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/231854 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/232237 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/232584 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/232954 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/233322 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/233690 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/234065 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/234460 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/234845 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/235194 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/235558 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/235913 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/236290 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/236665 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/237026 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/237368 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/237741 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/238116 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/238255 (executing program) 2022/10/01 15:47:43 fetching corpus: 4871, signal 194680/238255 (executing program) 2022/10/01 15:47:45 starting 8 fuzzer processes 15:47:45 executing program 0: syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x3, 0x6000, @fd_index=0x8, 0x200, 0x0, 0x0, 0x13, 0x0, {0x2}}, 0x6) r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x8]}, 0x8, 0x80000) ioctl$TIOCCONS(r0, 0x541d) signalfd4(r0, &(0x7f0000000080)={[0x35e1146b]}, 0x8, 0x80800) r1 = socket$nl_generic(0x10, 0x3, 0x10) getsockopt$sock_int(r1, 0x1, 0x23, &(0x7f00000000c0), &(0x7f0000000100)=0x4) pselect6(0x40, &(0x7f0000000140)={0x8000, 0x4, 0xffff, 0x38, 0x1, 0x5, 0x2, 0x8001}, &(0x7f0000000180)={0xffffffffffffff9e, 0x6, 0x88f3, 0x3, 0x9, 0x4, 0x0, 0x6}, &(0x7f00000001c0)={0x100000000, 0x8000, 0x1b22, 0x7fff, 0x2, 0x6, 0x9, 0x5}, &(0x7f0000000200), &(0x7f0000000280)={&(0x7f0000000240)={[0x8]}, 0x8}) r2 = syz_open_dev$vcsu(&(0x7f00000002c0), 0x7fffffff, 0x201) r3 = openat(r2, &(0x7f0000000300)='./file0\x00', 0x2000, 0x60) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r2, 0xc0096616, &(0x7f0000000340)={0x4, [0x0, 0x0, 0x0, 0x0]}) r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x5) dup2(r1, r4) r5 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$sock_SIOCGIFCONF(r5, 0x8912, &(0x7f0000000400)=@buf={0x66, &(0x7f0000000380)="61db85ae5f7adc03dc0d5077d6139f3f60b4775c4f12a97b2a06cfa017fce20bb9b99d496411907573b908e98f5f395b6ab75d60b14925cb05773450c448d1641831d216a687c33962e18c7acce029601a8d1a0e98babbd1f63d30869f3441b8c7b13f0dd221"}) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmsg$sock(r6, &(0x7f0000000600)={&(0x7f0000000440)=@qipcrtr={0x2a, 0x0, 0x8000}, 0x80, &(0x7f0000000540)=[{&(0x7f00000004c0)="2dfb1391385112b6d83197dba5d1a87e04cbb48bd55a5b57414c653e85ccb7e9ead671393f678f13193566d6a8fc1049e5c12c78ca0aeba18b6796095dea099820968094c4b55177a05c1397bd260f58b36038f5972ec90f1d4f59fd1731fb3818646dfe899f6eb6966a3bee00acbbb88c725c64e2b843a3d2e8e2968707", 0x7e}], 0x1, &(0x7f0000000580)=[@mark={{0x14, 0x1, 0x24, 0x952a}}, @timestamping={{0x14, 0x1, 0x25, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0x3}}, @mark={{0x14, 0x1, 0x24, 0x7}}], 0x60}, 0x8000) r7 = accept4(r3, &(0x7f0000000640), &(0x7f00000006c0)=0x80, 0x80000) ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r7, 0x8983, &(0x7f0000000700)={0x3, 'wlan1\x00', {0x4}, 0x8}) ioctl$KDSIGACCEPT(r3, 0x4b4e, 0x11) ioctl$TIOCOUTQ(r0, 0x5411, &(0x7f0000000740)) 15:47:45 executing program 1: sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x400, 0x2d}}}}, [@NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x42081) r0 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$SEG6_CMD_DUMPHMAC(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r0, 0x400, 0x70bd28, 0x25dfdbff, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x4252}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8084}, 0x20000000) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x300000a, 0x100010, 0xffffffffffffffff, 0x575c3000) syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) ioctl$GIO_FONTX(0xffffffffffffffff, 0x4b6b, &(0x7f0000000680)={0x9, 0x0, &(0x7f0000000280)}) ioctl$BTRFS_IOC_GET_FEATURES(0xffffffffffffffff, 0x80189439, &(0x7f00000006c0)) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000700)='/proc/mdstat\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEAUTHENTICATE(r1, &(0x7f00000008c0)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000880)={&(0x7f00000007c0)={0xa0, r2, 0x1, 0xdad, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x20, 0x2a, [@ht={0x2d, 0x1a, {0x94, 0x1, 0x7, 0x0, {0x3, 0x0, 0x0, 0x18, 0x0, 0x1, 0x1, 0x0, 0x1}, 0x300, 0x401, 0xb1}}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xfe01}, @NL80211_ATTR_MAC={0xa, 0x6, @random="261999200c62"}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x7}, @NL80211_ATTR_MAC={0xa, 0x6, @random="d614a5246026"}, @NL80211_ATTR_IE={0x27, 0x2a, [@chsw_timing={0x68, 0x4, {0x0, 0x3}}, @rann={0x7e, 0x15, {{0x0, 0x9}, 0x20, 0x7, @device_a, 0x87d, 0x8, 0x101}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x20, 0xb, 0x3}}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x8}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xffff}]}, 0xa0}, 0x1, 0x0, 0x0, 0x40890}, 0x24000881) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000900)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000a00)={'sit0\x00', &(0x7f0000000980)={'sit0\x00', 0x0, 0x4, 0x5, 0x2d, 0x2, 0x52, @private1={0xfc, 0x1, '\x00', 0x1}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8000, 0x700, 0x7, 0x400}}) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r3, &(0x7f0000000b00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x64, 0x0, 0x300, 0x70bd28, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_ADDR={0x34, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}, @MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000048}, 0x20000004) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000b40)={r4, @dev={0xac, 0x14, 0x14, 0x19}, @empty}, 0xc) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r5, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x38, 0x0, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x14) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000c80)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0\x00'}) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r1, 0x89f5, &(0x7f0000000d40)={'sit0\x00', &(0x7f0000000cc0)={'syztnl0\x00', 0x0, 0x4, 0x7, 0x3, 0x0, 0x8, @private1, @private0={0xfc, 0x0, '\x00', 0x1}, 0x7800, 0x8, 0xe00, 0x8}}) setsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000d80)={@rand_addr=0x64010101, @empty, r7}, 0xc) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000e00)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xaa}}, './file0\x00'}) 15:47:45 executing program 2: ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000000)={0x9, 0x1}) r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x602200, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r0, 0x4004f50d, &(0x7f0000000080)) fcntl$getownex(r0, 0x10, &(0x7f00000000c0)={0x0, 0x0}) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x100) r3 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) sendmsg$NFT_MSG_GETRULE(r3, &(0x7f0000000380)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f0000000180)={0x194, 0x7, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_EXPRESSIONS={0x160, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@fib={{0x8}, @void}, @hash={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_HASH_SREG={0x8}, @NFTA_HASH_TYPE={0x8}]}}]}, {0x28, 0x1, 0x0, 0x1, [@queue={{0xa}, @void}, @tproxy={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_TPROXY_REG_ADDR={0x8, 0x2, 0x1, 0x0, 0x13}]}}]}, {0xfc, 0x1, 0x0, 0x1, [@lookup={{0xb}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0xb}, @NFTA_LOOKUP_SET={0x9, 0x1, 'syz0\x00'}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x4}, @NFTA_LOOKUP_SREG={0x8, 0x2, 0x1, 0x0, 0x13}]}}, @counter={{0xc}, @val={0x7c, 0x2, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xffffffffffffff80}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x20}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x14}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x7fffffff}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x5}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x80}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x9}]}}, @nat={{0x8}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_NAT_REG_ADDR_MAX={0x8, 0x4, 0x1, 0x0, 0x8}, @NFTA_NAT_REG_PROTO_MAX={0x8, 0x6, 0x1, 0x0, 0xe}, @NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_NAT_REG_PROTO_MAX={0x8, 0x6, 0x1, 0x0, 0x16}, @NFTA_NAT_REG_ADDR_MAX={0x8, 0x4, 0x1, 0x0, 0x2}]}}]}, {0xc, 0x1, 0x0, 0x1, [@rt={{0x7}, @void}]}]}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x2}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}]}, 0x194}, 0x1, 0x0, 0x0, 0x4000}, 0x10) fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0) r4 = openat2(r2, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x220480, 0x30, 0x2}, 0x18) ioctl$BTRFS_IOC_FS_INFO(r4, 0x8400941f, &(0x7f0000000440)) sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x48, 0x0, 0x8, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7ff, 0x73}}}}, [@NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x101}, @NL80211_ATTR_NOACK_MAP={0x6}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x66}]}, 0x48}, 0x1, 0x0, 0x0, 0x44}, 0x800) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000980), 0x80800, 0x0) r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000a40)={0xa, &(0x7f00000009c0)=[{0xffff, 0x81, 0xfa, 0x80}, {0x80, 0x20, 0x8b, 0x7}, {0x9, 0x3, 0x1f, 0x37}, {0x5, 0xa3, 0x40, 0x4}, {0x1f, 0x81, 0x7f, 0x1}, {0x400, 0xfe, 0x1f, 0xe38d}, {0x1846, 0x7, 0x6, 0x100}, {0x6, 0x7c, 0x51, 0x4}, {0x9, 0x57, 0x5, 0x7}, {0x20, 0x2, 0x8, 0x8ba}]}) r7 = fcntl$dupfd(r6, 0x0, 0xffffffffffffffff) r8 = openat2(r2, &(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0)={0xa2401, 0x31, 0x1}, 0x18) r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r10 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000c00), 0x111402) getgroups(0x7, &(0x7f0000000c40)=[0x0, 0xee00, 0x0, 0x0, 0x0, 0xee00, 0xee00]) r12 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$unix(r8, &(0x7f0000005300)=[{{&(0x7f0000000b00)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000bc0)=[{&(0x7f0000000b80)="ae06ce491c47e26582337b05d28330c55804ea7088cc9e9fe2", 0x19}], 0x1, &(0x7f0000000dc0)=[@rights={{0x2c, 0x1, 0x1, [r6, r0, r9, 0xffffffffffffffff, 0xffffffffffffffff, r10, r4]}}, @cred={{0x1c, 0x1, 0x2, {r1, 0xee00, r11}}}, @rights={{0x34, 0x1, 0x1, [r7, r0, r5, r4, r12, 0xffffffffffffffff, r3, r7, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r1, 0xffffffffffffffff}}}], 0xa8, 0x20000000}}, {{0x0, 0x0, &(0x7f0000001280)=[{&(0x7f0000000e80)="180bdaaa2b30d15f7d14d28822c9b90cecca7aa1f1c9de649ee1dd7b141059c0c68d4f580e2cd2e2c9e60bdaf453085494b4cf61b31d002d67ff71eda735e886b558288afdedb81cb7fd01681ca0a9bad79a21e74da68911afebbade8a670d476942e66dbd5d3a74cc8385138fbeb0bd82982bce00aaf57f27be1f781350058dc8ecb3e00a77afa9a22e41b395af633e55e55eaf2bc16f7470bb4531bc953bf1fc39821f387d38286b47a5ac", 0xac}, {&(0x7f0000000f40)="097593b6ecdf3f2c508ba787acc58e188e9e469523e2d67de23bf90821cafd7a0d583e1547270255f9a73c1b282f4047c5868979bf1970caac725d35e5c9924aeb0eaf105a84c84aca07478a5bc9094ed8a40214e950f089cc748ae6dbf892e1189b78ce3166c7e6af2e818aeaceee11d526ac95ba651d5beb8c5c3179e4902aa7a06496f3499df349fd2a1ffcdb44c215f3bd0abc510a3b177df4327fe7ee88e974645f07f74b07672286471eafff052bed53a0f46a7d6ce2169a5c42ab2906f04f21788afb2cfdc89dbed08788a33adde8bff967a6dc96ca57f3ff7562a9c9cb8eba060e86649cc4cb9064b216c1ba5207911dee0c48", 0xf7}, {&(0x7f0000001040)="dc60296ed4a2cd908f36567bd1760e5912ae9f4ae1493e799992b9eb070f", 0x1e}, {&(0x7f0000001080)="4257e4b09bcd02e82cbf69b521df9ece02bb70a4dc20b1e16974f0b5af6fb62fda20cb5ecc936d6f108f18f67075fe67bafa107f909516e80aca44f920fa25572b1490", 0x43}, {&(0x7f0000001100)="fccdd74a7101d74b343209d9eb26d51635acf16e391f466acfdb50af4dc6db0844d0b4f8fd0787184dbd8f9fbcfa145913655cd42270a945ae59aca6400185713cb85489fa6bd9d880d071d7917d9aa1f44e0f8a38c9ab857bf50e69e7690bf1f568f491bd48e20ac4f315715204e9cd7d9f7a86b6cd0fc7afa899c5db90f7ce91b720ac85a70afdc9c9e0a6ab4a2f7e23b744", 0x93}, {&(0x7f00000011c0)="8154c2cdf88152bf7c92ed28786b95965a65f2d8baeb907c1b0b1076fdf4b3b6464391de253e5dfb9fcbd7a5679263e087362264bb55a7e93d63b9b5c836", 0x3e}, {&(0x7f0000001200)="c40edf82976ad3e3310610909536602a202bfb6097b5074fc9ccf08e480d511edcbda313d07908890529cdd5ea09714aaba2ad04f0a3a8d7b8d992f1ba20eee412443d54d4d665332e554af418718e19eda6eb0380f0948b6191be90cd68c8", 0x5f}], 0x7, &(0x7f00000014c0)=[@rights={{0x14, 0x1, 0x1, [r4]}}, @rights={{0x20, 0x1, 0x1, [r7, 0xffffffffffffffff, r0, r5]}}, @rights={{0x20, 0x1, 0x1, [r2, r2, 0xffffffffffffffff, r0]}}, @cred={{0x1c, 0x1, 0x2, {r1}}}, @rights={{0x1c, 0x1, 0x1, [r7, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [r6, 0xffffffffffffffff, r6]}}], 0xb8, 0x20000000}}, {{0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000001580)="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", 0x1000}, {&(0x7f0000002580)="59b3646cf7ff6270a9f83e2e99ff9b3f6052c1329b49b15104692eb375d88c940e7070ea4093bf38ad46b26721821f455d1d74ae4e6e95ceb051421be07cd6484e69013402d5c65febfa6f6df26c52df9b5bcd98689c7cdf3f39f905157d014ff6bc4dc91feaad144c4ba88aa4aa553738da9f9254e9ecae9df79be86037410c4df029c61071ee51119e183e51fba425373b891a21771c895416000b47fb3f6ed1a425ecc4ab8526d4e2400ab8f83894e7786c", 0xb3}], 0x2, &(0x7f0000004740)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r3, r4, 0xffffffffffffffff, 0xffffffffffffffff, r4, r4, r7, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r1, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r1}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r0, 0xffffffffffffffff, r2, r3, r7, r3, r3, r6]}}, @cred={{0x1c, 0x1, 0x2, {r1, 0xee00}}}, @rights={{0x28, 0x1, 0x1, [r7, 0xffffffffffffffff, r4, 0xffffffffffffffff, 0xffffffffffffffff, r3]}}, @cred={{0x1c, 0x1, 0x2, {r1, 0xee00}}}, @rights={{0x18, 0x1, 0x1, [r2, r6]}}], 0x168, 0x800}}, {{&(0x7f00000048c0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004980)=[{&(0x7f0000004940)="24de094b7469449a40cf08e8", 0xc}], 0x1, &(0x7f0000004a40)=[@rights={{0x1c, 0x1, 0x1, [r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x58, 0xc1}}, {{&(0x7f0000004ac0)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000004c40)=[{&(0x7f0000004b40)="b7c300773cdd0a5d97d323cef404dcbf8ae57651907b44df34f12dccbc6e4f895eb73290921ee1fadf3c2783b61def94e72ed8282d1d7447032965246eb3aadb69d70bb5ecca0aaa96cba6176a3ff6e0768f9f1eba61e967a57a81efa288f196e413faf167cf4f0f2bad3c6e47211f97f015ce24d796c160de5602f65bcbee2b0dc3d2f4f42e2b048113fc813a5e2d521ac42bdc4f95c5bf076bf72339a09be3a99119c541293dd1a432dab33ad9725a717ec8ea88f54241955e3be324f72d001b0341aa1e6593cd93a0a6f885", 0xcd}], 0x1, &(0x7f0000004cc0)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r7, 0xffffffffffffffff, r6]}}], 0x20, 0x8004}}, {{&(0x7f0000004d00)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000004f40)=[{&(0x7f0000004d80)="11ed74a35a15c89d88604c524eeff82fd03b382d4340fa2553626b723cd052f5c5f742504073e0d10e128f44b343c2e078ee5d9b795a073b92723ac7a240e4ad75e30760dcb35139992415bd498cf3c73c8297edbed944ea7887c102b58c2eba8203223ae72ff6f22f86ddedb98a3434fcef31ab0d032244ca1737e33f2dc72cf5a55037580e4789195e732314f02555a20472cb5ef5571a166d38e023cae68188a96c008d273146dea5", 0xaa}, {&(0x7f0000004e40)="25fae7b7ac879dcc4bd682a99b87526362e2527f291a975af9f5b653ac4e3853dcdbf91783a11432e34edbe08f594e1edfac65269bd6b70166efb56ee5ad19efc8aaa5702a5a2754a1230a140311f09709d84946652b7753af2fa893981a4742db23bbc8f4f19ae0b99b8c1446d1187688a611fba4efc3760be1392887cff2104f978ccc2f5e9240103d3997aa24fa6969ba4f4d3cda3afa12976dae2baa0a7a0192364c449dd5189fb3c976772f72541db0c1bc415e5778a450957af3cba037a6bafb77f152ac999f6187854d67d8cdf6b2b7eb19dec593", 0xd8}], 0x2, 0x0, 0x0, 0x4004060}}, {{&(0x7f0000004f80)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000050c0)=[{&(0x7f0000005000)="869e4cd524119b02e4a02223adaef43cd88562692ed8cc1f8ee21afa593f5de730b965d9ad4a1846a51dcbe9ab82d852ba67d95d3376b0f32ff60e2b2a7655195589d6cf9ec636ba60937fb4f797237fbe21a25edf4a9cb499d36a0d9309455286f644bc6e3d932b9257f0d9c7f92ce8dbe3821b40427133e6a2dbf248a97664a6240f8631ced9de41bd6bbbc3626d4c274c7b27a5257a17cc358f584317f494", 0xa0}], 0x1, &(0x7f0000005240)=[@cred={{0x1c, 0x1, 0x2, {r1, 0xee01, 0xffffffffffffffff}}}, @rights={{0x2c, 0x1, 0x1, [r5, 0xffffffffffffffff, r2, 0xffffffffffffffff, r4, r6, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}, @rights={{0x30, 0x1, 0x1, [r0, r3, r5, r7, 0xffffffffffffffff, r5, 0xffffffffffffffff, r3]}}, @cred={{0x1c, 0x1, 0x2, {r1, 0xee01, 0xee00}}}], 0xc0, 0x40000}}], 0x7, 0x62) 15:47:45 executing program 3: prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000000)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000040)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000080)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000000c0)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000100)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000140)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000180)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000001c0)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000200)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000240)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000280)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000002c0)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000300)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000340)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000380)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000003c0)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000400)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000440)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f0000000480)) prctl$PR_SET_MM_MAP_SIZE(0x23, 0xf, &(0x7f00000004c0)) 15:47:45 executing program 4: connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10) r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @fixed}, &(0x7f0000000080)=0xe, 0x400) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f00000000c0)={'wg0\x00', {0x2, 0x0, @multicast2}}) r1 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r1) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x13, 0x0, 0x5, 0x70bd2c, 0x25dfdbfc, {0xc, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40000) fgetxattr(r0, &(0x7f0000000240)=@known='system.sockprotoname\x00', &(0x7f0000000280)=""/219, 0xdb) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = accept4(r2, &(0x7f0000000380)=@ethernet={0x0, @local}, &(0x7f0000000400)=0x80, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0\x00'}) sendmsg$NL80211_CMD_REGISTER_FRAME(r4, &(0x7f0000001540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001500)={&(0x7f00000004c0)={0x1034, 0x0, 0x800, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x27}}}}, [@NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x1f}, @NL80211_ATTR_FRAME_MATCH={0x1004, 0x5b, "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"}]}, 0x1034}}, 0x2000c000) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, &(0x7f00000016c0)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001680)={&(0x7f00000015c0)={0xac, 0x0, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @private=0xa010100}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'vlan0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'hsr0\x00'}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @loopback}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'caif0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private1}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @private=0xa010101}]}, 0xac}, 0x1, 0x0, 0x0, 0x4000050}, 0x8004) ioctl$sock_inet_udp_SIOCOUTQ(r4, 0x5411, &(0x7f0000001700)) r5 = syz_open_dev$vcsu(&(0x7f0000001740), 0x8, 0x10a82) ioctl$EVIOCGVERSION(r5, 0x80044501, &(0x7f0000001780)=""/116) getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f0000001800), &(0x7f0000001840)=0x4) close_range(r3, r0, 0x2) close_range(r1, r1, 0x0) r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000001880), 0x202002, 0x0) write$binfmt_elf64(r6, &(0x7f00000018c0)={{0x7f, 0x45, 0x4c, 0x46, 0x6c, 0x7, 0x2, 0x6, 0x0, 0x3, 0x3, 0x0, 0x13d, 0x40, 0x1d5, 0x2, 0xd000, 0x38, 0x2, 0x9, 0x6, 0x200}, [{0x1, 0xffff, 0x8, 0x80000001, 0x37, 0x0, 0x3, 0x1000}, {0x7, 0x10001, 0xf1, 0x10001, 0x9, 0x4, 0x0, 0x401}], "ce3bcfd4520f984ddb8959d55ee78a093fc936efb79b47d9af3ad0b7fde7d3fc5f34bec1c18c531e7fac4872d8e0976701d5ea63b81b7abdd38abc7bebdc1422fb90e52c19722bfc765c43b33a23eb7ed40897928c", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x905) 15:47:45 executing program 5: r0 = fsmount(0xffffffffffffffff, 0x1, 0x8) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000040)={'bond_slave_1\x00'}) r1 = socket$nl_generic(0x10, 0x3, 0x10) getresuid(&(0x7f00000000c0), &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = geteuid() recvmsg$unix(r0, &(0x7f0000000600)={&(0x7f0000000180)=@abs, 0x6e, &(0x7f0000000540)=[{&(0x7f0000000200)=""/80, 0x50}, {&(0x7f0000000280)=""/254, 0xfe}, {&(0x7f0000000380)=""/5, 0x5}, {&(0x7f00000003c0)=""/184, 0xb8}, {&(0x7f0000000480)=""/95, 0x5f}, {&(0x7f0000000500)=""/15, 0xf}], 0x6, &(0x7f00000005c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}], 0x20}, 0x75acecaf6be01512) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000b00)=@filter={'filter\x00', 0xe, 0x4, 0x4b0, [0x0, 0x20000640, 0x20000796, 0x20000a0a], 0x0, &(0x7f0000000080), &(0x7f0000000640)=[{0x0, '\x00', 0x0, 0xfffffffffffffffc, 0x1, [{0x9, 0x8, 0x19, 'veth0_macvtap\x00', 'vlan0\x00', 'veth1\x00', 'veth1_to_batadv\x00', @local, [0x0, 0xff, 0xff, 0x0, 0x1fe], @dev={'\xaa\xaa\xaa\xaa\xaa', 0x37}, [0xff, 0xff, 0x0, 0xff, 0x0, 0xff], 0xf6, 0xf6, 0x126, [@ip={{'ip\x00', 0x0, 0x20}, {{@initdev={0xac, 0x1e, 0x1, 0x0}, @empty, 0xff, 0xffffffff, 0x3, 0x16, 0x18, 0xf, 0x4e23, 0x4e23, 0x4e22, 0x4e22}}}, @owner={{'owner\x00', 0x0, 0x18}, {{r2, r4, 0xffffffffffffffff, r6, 0x3, 0x6}}}], [], @common=@redirect={'redirect\x00', 0x8, {{0xffffffffffffffff}}}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffe, 0x2, [{0x5, 0x18, 0x9100, 'bond_slave_1\x00', 'rose0\x00', 'vcan0\x00', 'ipvlan1\x00', @local, [0xff, 0x0, 0xff, 0xff, 0xff], @remote, [0xff, 0x0, 0x0, 0xff, 0xff], 0x9e, 0x9e, 0xee, [@pkttype={{'pkttype\x00', 0x0, 0x8}, {{0x5, 0x1}}}], [], @common=@LED={'LED\x00', 0x28, {{'syz1\x00', 0x1, 0x8, {0x7}}}}}, {0x9, 0x18, 0x884c, 'bond_slave_1\x00', 'veth0_to_hsr\x00', 'gre0\x00', 'erspan0\x00', @broadcast, [0xff, 0xff, 0xff, 0x0, 0xff], @random="16ef3300474e", [0xff, 0x0, 0xff, 0x0, 0x0, 0xff], 0xa6, 0x106, 0x156, [@cluster={{'cluster\x00', 0x0, 0x10}, {{0xfffffffa, 0x9, 0x9, 0x1}}}], [@common=@CLASSIFY={'CLASSIFY\x00', 0x8, {{0x7fffffff}}}, @common=@STANDARD={'\x00', 0x8, {0xffffffffffffffff}}], @common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x5, 'syz1\x00', {0xffffffff}}}}}]}, {0x0, '\x00', 0x3, 0xfffffffffffffffc, 0x1, [{0x3, 0x10, 0x8914, 'veth0_macvtap\x00', 'caif0\x00', 'veth0\x00', 'macvlan1\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0x19}, [0xff, 0x0, 0xff, 0xff, 0xff, 0xff], @remote, [0xff, 0xff, 0xff, 0xff, 0xff, 0xff], 0x6e, 0x6e, 0xb6, [], [], @common=@ERROR={'ERROR\x00', 0x20, {"0116b89597f7bb61f0df1d7f714255b65aa8f5b48808be7cd4267597d465"}}}]}]}, 0x528) setresuid(r2, r3, r5) setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x48f, &(0x7f0000000b80)={0x29, @dev={0xac, 0x14, 0x14, 0x24}, 0x4e23, 0x3, 'lc\x00', 0x4, 0x1, 0x44}, 0x2c) ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000000c00)={0x0, @phonet={0x23, 0x4, 0x0, 0x85}, @ax25={0x3, @bcast, 0x1}, @qipcrtr={0x2a, 0xfffffffc}, 0x0, 0x0, 0x0, 0x0, 0xff7f, &(0x7f0000000bc0)='vlan0\x00', 0x6, 0x1}) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000c80)='\xaa\xaa\xaa\xaa\xaa', &(0x7f0000000cc0)='{{,\x00', 0x0) r7 = syz_open_dev$vcsu(&(0x7f0000001440), 0x9, 0x62020) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f00000014c0), r1) sendmsg$NL80211_CMD_SET_BSS(r7, &(0x7f0000001580)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001540)={&(0x7f0000001500)={0x1c, r8, 0x20, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x8}]}, 0x1c}}, 0x20000000) fsetxattr$security_capability(r7, &(0x7f00000015c0), &(0x7f0000001600)=@v2={0x2000000, [{0x40, 0x8}, {0x8, 0x9}]}, 0x14, 0x4) r9 = accept(r0, &(0x7f0000001640)=@un=@abs, &(0x7f00000016c0)=0x80) sendmsg$NL80211_CMD_VENDOR(r9, &(0x7f0000001800)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000017c0)={&(0x7f0000001740)={0x44, r8, 0x2, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x73}, @val={0x8}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xe46}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x80000001}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x566d}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x800}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x4c0c0) r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001980)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000001940)={&(0x7f00000018c0)={0x48, r10, 0x2, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x9e}, @NL80211_ATTR_FRAME={0x1f, 0x33, @action_no_ack={@wo_ht={{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x1}, {0x9}, @broadcast, @broadcast, @from_mac=@broadcast, {0x5, 0x3}}, @smps={0x7, 0x1, {0x0, 0x1}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x20008804) 15:47:45 executing program 7: ioctl$HIDIOCGREPORT(0xffffffffffffffff, 0x400c4807, &(0x7f0000000000)={0x3, 0x2, 0x200}) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000040)={0x0, 0x1, 0x4, 0x5}) ioctl$F2FS_IOC_START_VOLATILE_WRITE(0xffffffffffffffff, 0xf503, 0x0) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, 0xffffffffffffffff) ioctl$AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, &(0x7f0000000080)) ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, 0xee01) syz_genetlink_get_family_id$fou(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, &(0x7f0000000100)={0x0, 0x2}) r0 = accept4$bt_l2cap(0xffffffffffffffff, 0x0, &(0x7f0000000140), 0x800) r1 = fcntl$dupfd(r0, 0x406, 0xffffffffffffffff) r2 = syz_open_dev$ttys(0xc, 0x2, 0x1) write(r2, &(0x7f0000000180)="70fd62dd6e74f8b1a8650cbab3412da7f29bb5686c5b978e88808b1760fd48390812b93f1b253a0b9216b304cd088ec2bc7bba909ecafc656bde80a18e5f379ff50cd6c55cf276cd28750f", 0x4b) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r0, 0xf505, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000240), r1) sendmsg$TIPC_NL_NET_GET(r1, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x78, r3, 0x4, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x8}]}, @TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x401}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xff}]}, @TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x44090}, 0x8000) fsetxattr$security_selinux(r0, &(0x7f0000000380), &(0x7f00000003c0)='system_u:object_r:modules_conf_t:s0\x00', 0x24, 0x6) pidfd_send_signal(r1, 0xa, &(0x7f0000000400)={0x20, 0x3, 0x400}, 0x0) ioctl$HIDIOCGCOLLECTIONINFO(0xffffffffffffffff, 0xc0104811, &(0x7f0000000480)={0x6cd, 0x8, 0x100, 0x800}) syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff) 15:47:45 executing program 6: setitimer(0x2, &(0x7f0000000000)={{0x0, 0x2710}, {0x77359400}}, &(0x7f0000000040)) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) setitimer(0x1, &(0x7f00000000c0)={{r0, r1/1000+10000}, {0x77359400}}, 0x0) getitimer(0x0, &(0x7f0000000100)) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) setitimer(0x0, &(0x7f0000000180)={{}, {r2, r3/1000+60000}}, &(0x7f00000001c0)) setitimer(0x0, &(0x7f0000000200)={{0x77359400}, {0x0, 0xea60}}, &(0x7f0000000240)) setitimer(0x1, &(0x7f0000000280)={{0x0, 0xea60}, {0x77359400}}, &(0x7f00000002c0)) getitimer(0x0, &(0x7f0000000300)) clock_gettime(0x1, &(0x7f0000000340)) setitimer(0x1, &(0x7f0000000380)={{}, {0x77359400}}, &(0x7f00000003c0)) pselect6(0x40, &(0x7f0000000400)={0x1, 0x1, 0x2a, 0x1, 0x8, 0x5b, 0x3, 0x200}, &(0x7f0000000440)={0xff, 0x5, 0xbf, 0x9, 0x48, 0x3ff, 0x0, 0x101}, &(0x7f0000000480)={0x7fffffff, 0xffffffff, 0x85db, 0x4, 0x1, 0x2, 0xffff, 0x8}, &(0x7f00000004c0)={0x0, 0x3938700}, &(0x7f0000000540)={&(0x7f0000000500)={[0x3]}, 0x8}) clock_gettime(0x0, &(0x7f0000000580)) setitimer(0x1, &(0x7f00000005c0)={{0x0, 0xea60}}, &(0x7f0000000600)) clock_gettime(0x4, &(0x7f0000000640)) clock_gettime(0x0, &(0x7f0000000680)={0x0, 0x0}) setitimer(0x2, &(0x7f00000006c0)={{r4, r5/1000+10000}, {0x0, 0x2710}}, &(0x7f0000000700)) setitimer(0x1, &(0x7f0000000740)={{0x77359400}, {0x0, 0x2710}}, &(0x7f0000000780)) clock_gettime(0x0, &(0x7f00000007c0)={0x0, 0x0}) setitimer(0x1, &(0x7f0000000800)={{r6, r7/1000+10000}, {0x77359400}}, 0x0) [ 64.091698] audit: type=1400 audit(1664639265.988:6): avc: denied { execmem } for pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 65.299775] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 65.301826] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 65.303164] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 65.304916] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 65.306118] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 65.307076] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 65.308834] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 65.309921] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 65.311068] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 65.316000] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 65.317101] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 65.325534] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 65.327396] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 65.350636] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 65.352159] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 65.353176] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 65.355035] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 65.357003] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 65.358169] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 65.359636] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 65.360948] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 65.364662] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 65.365837] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 65.367816] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 65.368905] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 65.370289] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 65.371368] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 65.380330] Bluetooth: hci4: HCI_REQ-0x0c1a [ 65.382258] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 65.387913] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 65.391928] Bluetooth: hci1: HCI_REQ-0x0c1a [ 65.393374] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 65.399374] Bluetooth: hci2: HCI_REQ-0x0c1a [ 65.408726] Bluetooth: hci0: HCI_REQ-0x0c1a [ 65.411991] Bluetooth: hci3: HCI_REQ-0x0c1a [ 65.461950] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 65.467271] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 65.471530] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 65.471581] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 65.474574] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 65.483402] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 65.503547] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 65.523887] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 65.524079] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 65.527070] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 65.536291] Bluetooth: hci5: HCI_REQ-0x0c1a [ 65.570454] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 65.582445] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 65.598273] Bluetooth: hci6: HCI_REQ-0x0c1a [ 67.440522] Bluetooth: hci1: command 0x0409 tx timeout [ 67.441559] Bluetooth: hci3: command 0x0409 tx timeout [ 67.442129] Bluetooth: hci0: command 0x0409 tx timeout [ 67.442904] Bluetooth: hci2: command 0x0409 tx timeout [ 67.443471] Bluetooth: hci4: command 0x0409 tx timeout [ 67.444464] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 67.568516] Bluetooth: hci5: command 0x0409 tx timeout [ 67.632272] Bluetooth: hci6: command 0x0409 tx timeout [ 69.489385] Bluetooth: hci4: command 0x041b tx timeout [ 69.489861] Bluetooth: hci2: command 0x041b tx timeout [ 69.490371] Bluetooth: hci0: command 0x041b tx timeout [ 69.490769] Bluetooth: hci3: command 0x041b tx timeout [ 69.491171] Bluetooth: hci1: command 0x041b tx timeout [ 69.617309] Bluetooth: hci5: command 0x041b tx timeout [ 69.681756] Bluetooth: hci6: command 0x041b tx timeout [ 70.323806] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 70.324834] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 70.326789] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 70.329329] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 70.330285] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 70.331173] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 70.337592] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.537299] Bluetooth: hci1: command 0x040f tx timeout [ 71.537751] Bluetooth: hci3: command 0x040f tx timeout [ 71.538159] Bluetooth: hci0: command 0x040f tx timeout [ 71.538768] Bluetooth: hci2: command 0x040f tx timeout [ 71.539164] Bluetooth: hci4: command 0x040f tx timeout [ 71.665264] Bluetooth: hci5: command 0x040f tx timeout [ 71.729247] Bluetooth: hci6: command 0x040f tx timeout [ 72.433305] Bluetooth: hci7: command 0x0409 tx timeout [ 73.585314] Bluetooth: hci4: command 0x0419 tx timeout [ 73.585829] Bluetooth: hci2: command 0x0419 tx timeout [ 73.586432] Bluetooth: hci0: command 0x0419 tx timeout [ 73.586838] Bluetooth: hci3: command 0x0419 tx timeout [ 73.587291] Bluetooth: hci1: command 0x0419 tx timeout [ 73.713261] Bluetooth: hci5: command 0x0419 tx timeout [ 73.777319] Bluetooth: hci6: command 0x0419 tx timeout [ 74.480275] Bluetooth: hci7: command 0x041b tx timeout [ 76.528284] Bluetooth: hci7: command 0x040f tx timeout [ 78.577434] Bluetooth: hci7: command 0x0419 tx timeout 15:48:36 executing program 6: setitimer(0x2, &(0x7f0000000000)={{0x0, 0x2710}, {0x77359400}}, &(0x7f0000000040)) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) setitimer(0x1, &(0x7f00000000c0)={{r0, r1/1000+10000}, {0x77359400}}, 0x0) getitimer(0x0, &(0x7f0000000100)) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) setitimer(0x0, &(0x7f0000000180)={{}, {r2, r3/1000+60000}}, &(0x7f00000001c0)) setitimer(0x0, &(0x7f0000000200)={{0x77359400}, {0x0, 0xea60}}, &(0x7f0000000240)) setitimer(0x1, &(0x7f0000000280)={{0x0, 0xea60}, {0x77359400}}, &(0x7f00000002c0)) getitimer(0x0, &(0x7f0000000300)) clock_gettime(0x1, &(0x7f0000000340)) setitimer(0x1, &(0x7f0000000380)={{}, {0x77359400}}, &(0x7f00000003c0)) pselect6(0x40, &(0x7f0000000400)={0x1, 0x1, 0x2a, 0x1, 0x8, 0x5b, 0x3, 0x200}, &(0x7f0000000440)={0xff, 0x5, 0xbf, 0x9, 0x48, 0x3ff, 0x0, 0x101}, &(0x7f0000000480)={0x7fffffff, 0xffffffff, 0x85db, 0x4, 0x1, 0x2, 0xffff, 0x8}, &(0x7f00000004c0)={0x0, 0x3938700}, &(0x7f0000000540)={&(0x7f0000000500)={[0x3]}, 0x8}) clock_gettime(0x0, &(0x7f0000000580)) setitimer(0x1, &(0x7f00000005c0)={{0x0, 0xea60}}, &(0x7f0000000600)) clock_gettime(0x4, &(0x7f0000000640)) clock_gettime(0x0, &(0x7f0000000680)={0x0, 0x0}) setitimer(0x2, &(0x7f00000006c0)={{r4, r5/1000+10000}, {0x0, 0x2710}}, &(0x7f0000000700)) setitimer(0x1, &(0x7f0000000740)={{0x77359400}, {0x0, 0x2710}}, &(0x7f0000000780)) clock_gettime(0x0, &(0x7f00000007c0)={0x0, 0x0}) setitimer(0x1, &(0x7f0000000800)={{r6, r7/1000+10000}, {0x77359400}}, 0x0) 15:48:36 executing program 6: prlimit64(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x4000004, 0x7077}, &(0x7f0000000040)) prlimit64(0xffffffffffffffff, 0x1, &(0x7f00000001c0)={0x4, 0x3}, &(0x7f0000000200)) r0 = fork() prlimit64(r0, 0xf, &(0x7f0000000080)={0x4, 0x3}, 0x0) getrlimit(0xc, &(0x7f00000000c0)) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000240)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, '\x00'}) fsmount(r1, 0x1, 0xf0) r2 = fork() sched_setscheduler(r2, 0x3, &(0x7f0000000100)=0x40) prlimit64(r0, 0x0, &(0x7f0000000140)={0x9, 0x400}, &(0x7f0000000180)) ioprio_get$pid(0x0, r2) r3 = fcntl$getown(0xffffffffffffffff, 0x9) ptrace$setopts(0x4206, r3, 0x100000000, 0x1) 15:48:36 executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_io_uring_setup(0x3e5b, &(0x7f0000000100)={0x0, 0x0, 0x2}, &(0x7f0000d09000/0x1000)=nil, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000001c0)) syz_io_uring_submit(r0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000280)=@llc={0x1a, 0x3, 0xfe, 0x3, 0x0, 0x80, @broadcast}}, 0x1) r1 = syz_io_uring_setup(0x3c71, &(0x7f0000000000)={0x0, 0xbdb7, 0x21, 0x0, 0x349}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) syz_io_uring_setup(0x4780, &(0x7f0000000340)={0x0, 0x2264, 0x1, 0x2, 0x1a5, 0x0, r4}, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000dc4000/0x1000)=nil, &(0x7f0000000240), &(0x7f00000003c0)) syz_io_uring_submit(r0, r2, &(0x7f0000000140)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x3, 0x1000, {}, 0x401, 0x8, 0x0, {0x0, r3}}, 0x9) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x105443, 0x31) vmsplice(r5, 0x0, 0x0, 0x0) 15:48:36 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_register$IORING_UNREGISTER_BUFFERS(0xffffffffffffffff, 0x1, 0x1000000, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="140000000200c5d2ad84a542d61800e9b66d0c163b4de64a782271eb"], 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000700)=ANY=[@ANYBLOB="019b000001000000180000008c5033344428dc2f90c9c5e854b2c38297c4b55f41c4387c56488fb46a5584a0083a176340c1d95542e1ea11947cc93f9b9b5212a447cfb1f531d2d63ad515149068fa37ae64ebd1c649fbe7ebcb04901709ff8ee378780e5114aae59906beda05d2403b530b78964bf6db", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) syz_io_uring_setup(0x56f1, &(0x7f0000000300)={0x0, 0x9a10, 0x2, 0x3, 0x256, 0x0, r1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff3000/0x3000)=nil, &(0x7f00000003c0), &(0x7f0000000400)) perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0xd2, 0x6, 0x8, 0xf7, 0x0, 0x2, 0x200, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x80000000, 0xffffffffffff532d}, 0x210, 0x40025cb, 0x4, 0x0, 0x6, 0x2, 0x0, 0x0, 0xfffff000, 0x0, 0x200}, 0x0, 0xb, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000003c0)='uid_map\x00') read(r2, &(0x7f0000000400)=""/146, 0x92) perf_event_open(&(0x7f0000000440)={0x3, 0x80, 0xce, 0xf8, 0xd1, 0xff, 0x0, 0xb9a, 0x60000, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000000180), 0x5}, 0x440, 0xaf37, 0x8, 0x3, 0x5259, 0x1, 0x1, 0x0, 0x28000000, 0x0, 0x101}, 0x0, 0xb, r2, 0x1) syz_io_uring_setup(0x37bc, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f00000006c0)) r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f00000004c0)) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r4, 0x0) syz_io_uring_setup(0xaaf, &(0x7f0000000100)={0x0, 0x0, 0x10, 0x4, 0x17, 0x0, r4}, &(0x7f0000fef000/0x2000)=nil, &(0x7f0000fef000/0x11000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) [ 114.547251] audit: type=1400 audit(1664639316.443:7): avc: denied { open } for pid=3826 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 114.548786] audit: type=1400 audit(1664639316.443:8): avc: denied { kernel } for pid=3826 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 114.566021] ------------[ cut here ]------------ [ 114.566042] [ 114.566045] ====================================================== [ 114.566048] WARNING: possible circular locking dependency detected [ 114.566052] 6.0.0-rc7-next-20220930 #1 Not tainted [ 114.566059] ------------------------------------------------------ [ 114.566062] syz-executor.6/3827 is trying to acquire lock: [ 114.566069] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 114.566108] [ 114.566108] but task is already holding lock: [ 114.566111] ffff88800e8eb020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 114.566138] [ 114.566138] which lock already depends on the new lock. [ 114.566138] [ 114.566141] [ 114.566141] the existing dependency chain (in reverse order) is: [ 114.566144] [ 114.566144] -> #3 (&ctx->lock){....}-{2:2}: [ 114.566158] _raw_spin_lock+0x2a/0x40 [ 114.566169] __perf_event_task_sched_out+0x53b/0x18d0 [ 114.566180] __schedule+0xedd/0x2470 [ 114.566194] schedule+0xda/0x1b0 [ 114.566211] exit_to_user_mode_prepare+0x114/0x1a0 [ 114.566223] syscall_exit_to_user_mode+0x19/0x40 [ 114.566237] do_syscall_64+0x48/0x90 [ 114.566254] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.566267] [ 114.566267] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 114.566280] _raw_spin_lock_nested+0x30/0x40 [ 114.566290] raw_spin_rq_lock_nested+0x1e/0x30 [ 114.566303] task_fork_fair+0x63/0x4d0 [ 114.566320] sched_cgroup_fork+0x3d0/0x540 [ 114.566334] copy_process+0x4183/0x6e20 [ 114.566345] kernel_clone+0xe7/0x890 [ 114.566355] user_mode_thread+0xad/0xf0 [ 114.566365] rest_init+0x24/0x250 [ 114.566376] arch_call_rest_init+0xf/0x14 [ 114.566394] start_kernel+0x4c6/0x4eb [ 114.566409] secondary_startup_64_no_verify+0xe0/0xeb [ 114.566423] [ 114.566423] -> #1 (&p->pi_lock){-.-.}-{2:2}: 15:48:36 executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_io_uring_setup(0x3e5b, &(0x7f0000000100)={0x0, 0x0, 0x2}, &(0x7f0000d09000/0x1000)=nil, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000001c0)) syz_io_uring_submit(r0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000280)=@llc={0x1a, 0x3, 0xfe, 0x3, 0x0, 0x80, @broadcast}}, 0x1) r1 = syz_io_uring_setup(0x3c71, &(0x7f0000000000)={0x0, 0xbdb7, 0x21, 0x0, 0x349}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) syz_io_uring_setup(0x4780, &(0x7f0000000340)={0x0, 0x2264, 0x1, 0x2, 0x1a5, 0x0, r4}, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000dc4000/0x1000)=nil, &(0x7f0000000240), &(0x7f00000003c0)) syz_io_uring_submit(r0, r2, &(0x7f0000000140)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x3, 0x1000, {}, 0x401, 0x8, 0x0, {0x0, r3}}, 0x9) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x105443, 0x31) vmsplice(r5, 0x0, 0x0, 0x0) [ 114.566436] _raw_spin_lock_irqsave+0x39/0x60 [ 114.566447] try_to_wake_up+0xab/0x1930 [ 114.566460] up+0x75/0xb0 [ 114.566474] __up_console_sem+0x6e/0x80 [ 114.566490] console_unlock+0x46a/0x590 [ 114.566506] do_con_write+0xc05/0x1d50 [ 114.566517] con_write+0x21/0x40 [ 114.566526] n_tty_write+0x4d4/0xfe0 [ 114.566537] file_tty_write.constprop.0+0x455/0x8a0 [ 114.566554] vfs_write+0x9c3/0xd90 [ 114.566571] ksys_write+0x127/0x250 [ 114.566586] do_syscall_64+0x3b/0x90 [ 114.566602] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.566615] [ 114.566615] -> #0 ((console_sem).lock){....}-{2:2}: [ 114.566628] __lock_acquire+0x2a02/0x5e70 [ 114.566645] lock_acquire+0x1a2/0x530 [ 114.566661] _raw_spin_lock_irqsave+0x39/0x60 [ 114.566671] down_trylock+0xe/0x70 [ 114.566686] __down_trylock_console_sem+0x3b/0xd0 [ 114.566702] vprintk_emit+0x16b/0x560 [ 114.566717] vprintk+0x84/0xa0 [ 114.566733] _printk+0xba/0xf1 [ 114.566744] report_bug.cold+0x72/0xab [ 114.566760] handle_bug+0x3c/0x70 [ 114.566776] exc_invalid_op+0x14/0x50 [ 114.566793] asm_exc_invalid_op+0x16/0x20 [ 114.566805] group_sched_out.part.0+0x2c7/0x460 [ 114.566823] ctx_sched_out+0x8f1/0xc10 [ 114.566839] __perf_event_task_sched_out+0x6d0/0x18d0 [ 114.566850] __schedule+0xedd/0x2470 [ 114.566863] schedule+0xda/0x1b0 [ 114.566876] exit_to_user_mode_prepare+0x114/0x1a0 [ 114.566887] syscall_exit_to_user_mode+0x19/0x40 [ 114.566899] do_syscall_64+0x48/0x90 [ 114.566916] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.566928] [ 114.566928] other info that might help us debug this: [ 114.566928] [ 114.566931] Chain exists of: [ 114.566931] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 114.566931] [ 114.566946] Possible unsafe locking scenario: [ 114.566946] [ 114.566948] CPU0 CPU1 [ 114.566950] ---- ---- [ 114.566953] lock(&ctx->lock); [ 114.566958] lock(&rq->__lock); [ 114.566965] lock(&ctx->lock); [ 114.566971] lock((console_sem).lock); [ 114.566976] [ 114.566976] *** DEADLOCK *** [ 114.566976] [ 114.566979] 2 locks held by syz-executor.6/3827: [ 114.566985] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 114.567014] #1: ffff88800e8eb020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 114.567040] [ 114.567040] stack backtrace: [ 114.567043] CPU: 1 PID: 3827 Comm: syz-executor.6 Not tainted 6.0.0-rc7-next-20220930 #1 [ 114.567055] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 114.567063] Call Trace: [ 114.567067] [ 114.567070] dump_stack_lvl+0x8b/0xb3 [ 114.567089] check_noncircular+0x263/0x2e0 [ 114.567105] ? format_decode+0x26c/0xb50 [ 114.567121] ? print_circular_bug+0x450/0x450 [ 114.567138] ? simple_strtoul+0x30/0x30 [ 114.567154] ? format_decode+0x26c/0xb50 [ 114.567171] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 114.567188] __lock_acquire+0x2a02/0x5e70 [ 114.567210] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 114.567232] lock_acquire+0x1a2/0x530 [ 114.567248] ? down_trylock+0xe/0x70 [ 114.567265] ? lock_release+0x750/0x750 [ 114.567286] ? vprintk+0x84/0xa0 [ 114.567303] _raw_spin_lock_irqsave+0x39/0x60 [ 114.567314] ? down_trylock+0xe/0x70 [ 114.567330] down_trylock+0xe/0x70 [ 114.567346] ? vprintk+0x84/0xa0 [ 114.567362] __down_trylock_console_sem+0x3b/0xd0 [ 114.567379] vprintk_emit+0x16b/0x560 [ 114.567398] vprintk+0x84/0xa0 [ 114.567415] _printk+0xba/0xf1 [ 114.567426] ? record_print_text.cold+0x16/0x16 [ 114.567442] ? report_bug.cold+0x66/0xab [ 114.567460] ? group_sched_out.part.0+0x2c7/0x460 [ 114.567478] report_bug.cold+0x72/0xab [ 114.567496] handle_bug+0x3c/0x70 [ 114.567514] exc_invalid_op+0x14/0x50 [ 114.567532] asm_exc_invalid_op+0x16/0x20 [ 114.567544] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 114.567565] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 114.567576] RSP: 0018:ffff888040857c48 EFLAGS: 00010006 [ 114.567585] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 114.567592] RDX: ffff8880406cd040 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 114.567600] RBP: ffff888040730000 R08: 0000000000000005 R09: 0000000000000001 [ 114.567607] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800e8eb000 [ 114.567615] R13: ffff88806cf3d2c0 R14: ffffffff8547d160 R15: 0000000000000002 [ 114.567625] ? group_sched_out.part.0+0x2c7/0x460 [ 114.567645] ? group_sched_out.part.0+0x2c7/0x460 [ 114.567665] ctx_sched_out+0x8f1/0xc10 [ 114.567684] __perf_event_task_sched_out+0x6d0/0x18d0 [ 114.567698] ? lock_is_held_type+0xd7/0x130 [ 114.567712] ? __perf_cgroup_move+0x160/0x160 [ 114.567722] ? set_next_entity+0x304/0x550 [ 114.567740] ? update_curr+0x267/0x740 [ 114.567758] ? lock_is_held_type+0xd7/0x130 [ 114.567772] __schedule+0xedd/0x2470 [ 114.567789] ? io_schedule_timeout+0x150/0x150 [ 114.567805] ? rcu_read_lock_sched_held+0x3e/0x80 [ 114.567826] schedule+0xda/0x1b0 [ 114.567840] exit_to_user_mode_prepare+0x114/0x1a0 [ 114.567853] syscall_exit_to_user_mode+0x19/0x40 [ 114.567866] do_syscall_64+0x48/0x90 [ 114.567883] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.567896] RIP: 0033:0x7fb556f50b19 [ 114.567905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.567915] RSP: 002b:00007fb5544c6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 114.567926] RAX: 0000000000000001 RBX: 00007fb557063f68 RCX: 00007fb556f50b19 [ 114.567933] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb557063f6c [ 114.567940] RBP: 00007fb557063f60 R08: 000000000000000e R09: 0000000000000000 [ 114.567947] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb557063f6c [ 114.567954] R13: 00007ffc92a53eff R14: 00007fb5544c6300 R15: 0000000000022000 [ 114.567967] [ 114.623893] WARNING: CPU: 1 PID: 3827 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 114.624551] Modules linked in: [ 114.624784] CPU: 1 PID: 3827 Comm: syz-executor.6 Not tainted 6.0.0-rc7-next-20220930 #1 [ 114.625346] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 114.626131] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 114.626524] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 114.627803] RSP: 0018:ffff888040857c48 EFLAGS: 00010006 [ 114.628177] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 114.628680] RDX: ffff8880406cd040 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 114.629182] RBP: ffff888040730000 R08: 0000000000000005 R09: 0000000000000001 [ 114.629688] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800e8eb000 [ 114.630189] R13: ffff88806cf3d2c0 R14: ffffffff8547d160 R15: 0000000000000002 [ 114.630701] FS: 00007fb5544c6700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 114.631275] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 114.631691] CR2: 00007ffefaedbde0 CR3: 0000000034bcc000 CR4: 0000000000350ee0 [ 114.632198] Call Trace: [ 114.632385] [ 114.632552] ctx_sched_out+0x8f1/0xc10 [ 114.632846] __perf_event_task_sched_out+0x6d0/0x18d0 [ 114.633216] ? lock_is_held_type+0xd7/0x130 [ 114.633529] ? __perf_cgroup_move+0x160/0x160 [ 114.633852] ? set_next_entity+0x304/0x550 [ 114.634163] ? update_curr+0x267/0x740 [ 114.634452] ? lock_is_held_type+0xd7/0x130 [ 114.634769] __schedule+0xedd/0x2470 [ 114.635044] ? io_schedule_timeout+0x150/0x150 [ 114.635359] ? rcu_read_lock_sched_held+0x3e/0x80 [ 114.635692] schedule+0xda/0x1b0 [ 114.635930] exit_to_user_mode_prepare+0x114/0x1a0 [ 114.636260] syscall_exit_to_user_mode+0x19/0x40 [ 114.636585] do_syscall_64+0x48/0x90 [ 114.636846] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 114.637190] RIP: 0033:0x7fb556f50b19 [ 114.637444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 114.638628] RSP: 002b:00007fb5544c6218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 114.639123] RAX: 0000000000000001 RBX: 00007fb557063f68 RCX: 00007fb556f50b19 [ 114.639591] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fb557063f6c [ 114.640057] RBP: 00007fb557063f60 R08: 000000000000000e R09: 0000000000000000 [ 114.640524] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fb557063f6c [ 114.640991] R13: 00007ffc92a53eff R14: 00007fb5544c6300 R15: 0000000000022000 [ 114.641469] [ 114.641629] irq event stamp: 706 [ 114.641853] hardirqs last enabled at (705): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 114.642464] hardirqs last disabled at (706): [] __schedule+0x1225/0x2470 [ 114.643009] softirqs last enabled at (70): [] __irq_exit_rcu+0x11b/0x180 [ 114.643562] softirqs last disabled at (35): [] __irq_exit_rcu+0x11b/0x180 [ 114.644113] ---[ end trace 0000000000000000 ]--- 15:48:36 executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_io_uring_setup(0x3e5b, &(0x7f0000000100)={0x0, 0x0, 0x2}, &(0x7f0000d09000/0x1000)=nil, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000001c0)) syz_io_uring_submit(r0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000280)=@llc={0x1a, 0x3, 0xfe, 0x3, 0x0, 0x80, @broadcast}}, 0x1) r1 = syz_io_uring_setup(0x3c71, &(0x7f0000000000)={0x0, 0xbdb7, 0x21, 0x0, 0x349}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) syz_io_uring_setup(0x4780, &(0x7f0000000340)={0x0, 0x2264, 0x1, 0x2, 0x1a5, 0x0, r4}, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000dc4000/0x1000)=nil, &(0x7f0000000240), &(0x7f00000003c0)) syz_io_uring_submit(r0, r2, &(0x7f0000000140)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x3, 0x1000, {}, 0x401, 0x8, 0x0, {0x0, r3}}, 0x9) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x105443, 0x31) vmsplice(r5, 0x0, 0x0, 0x0) 15:48:36 executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_io_uring_setup(0x3e5b, &(0x7f0000000100)={0x0, 0x0, 0x2}, &(0x7f0000d09000/0x1000)=nil, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000001c0)) syz_io_uring_submit(r0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000280)=@llc={0x1a, 0x3, 0xfe, 0x3, 0x0, 0x80, @broadcast}}, 0x1) r1 = syz_io_uring_setup(0x3c71, &(0x7f0000000000)={0x0, 0xbdb7, 0x21, 0x0, 0x349}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) syz_io_uring_setup(0x4780, &(0x7f0000000340)={0x0, 0x2264, 0x1, 0x2, 0x1a5, 0x0, r4}, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000dc4000/0x1000)=nil, &(0x7f0000000240), &(0x7f00000003c0)) syz_io_uring_submit(r0, r2, &(0x7f0000000140)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x3, 0x1000, {}, 0x401, 0x8, 0x0, {0x0, r3}}, 0x9) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x105443, 0x31) vmsplice(r5, 0x0, 0x0, 0x0) [ 114.922935] audit: type=1400 audit(1664639316.819:9): avc: denied { write } for pid=3826 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 15:48:36 executing program 1: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_io_uring_setup(0x3e5b, &(0x7f0000000100)={0x0, 0x0, 0x2}, &(0x7f0000d09000/0x1000)=nil, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f00000001c0)) syz_io_uring_submit(r0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000280)=@llc={0x1a, 0x3, 0xfe, 0x3, 0x0, 0x80, @broadcast}}, 0x1) r1 = syz_io_uring_setup(0x3c71, &(0x7f0000000000)={0x0, 0xbdb7, 0x21, 0x0, 0x349}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000200)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) syz_io_uring_setup(0x4780, &(0x7f0000000340)={0x0, 0x2264, 0x1, 0x2, 0x1a5, 0x0, r4}, &(0x7f0000dc2000/0x3000)=nil, &(0x7f0000dc4000/0x1000)=nil, &(0x7f0000000240), &(0x7f00000003c0)) syz_io_uring_submit(r0, r2, &(0x7f0000000140)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd_index=0x3, 0x1000, {}, 0x401, 0x8, 0x0, {0x0, r3}}, 0x9) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 114.971332] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 114.972099] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 114.972766] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 114.973278] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 114.973856] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 2 [ 114.977957] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.978511] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.979135] Buffer I/O error on dev sr0, logical block 0, async page read [ 114.979890] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.980322] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.980956] Buffer I/O error on dev sr0, logical block 1, async page read [ 114.984361] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.984778] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.985546] Buffer I/O error on dev sr0, logical block 2, async page read [ 114.986296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.986713] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.987741] Buffer I/O error on dev sr0, logical block 3, async page read [ 114.988459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.988891] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.989548] Buffer I/O error on dev sr0, logical block 4, async page read [ 114.990227] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.990657] I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.991299] Buffer I/O error on dev sr0, logical block 5, async page read [ 114.991952] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.992384] I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.993016] Buffer I/O error on dev sr0, logical block 6, async page read [ 114.993827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.994273] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.994928] Buffer I/O error on dev sr0, logical block 7, async page read [ 114.998468] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 114.998902] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 114.999644] Buffer I/O error on dev sr0, logical block 0, async page read [ 115.000398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 115.000811] Buffer I/O error on dev sr0, logical block 1, async page read [ 115.005396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 115.005973] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 115.006582] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 115.007162] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 115.007994] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 115.008875] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 115.093283] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 115.094021] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 115.094618] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 115.095102] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 115.901649] raw_sendmsg: syz-executor.0 forgot to set AF_INET. Fix it! VM DIAGNOSIS: 15:48:36 Registers: info registers vcpu 0 RAX=0000000000000014 RBX=ffff88804086fc60 RCX=0000000000000000 RDX=0000000000000015 RSI=ffffffff815b5d23 RDI=0000000000000005 RBP=ffffea0001b78780 RSP=ffff88804086fb48 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000014 R11=0000000000000001 R12=0000000000000014 R13=dffffc0000000000 R14=ffffea0001b787b4 R15=00000000000000ca RIP=ffffffff815b5d30 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff76f68c540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff76f77b7d0 CR3=000000000f4d8000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0070656474666f73 2e73656c75646f6d YMM01=0000000000000000 0000000000000000 0070656474666f73 2e73656c75646f6d YMM02=0000000000000000 0000000000000000 0000000000000000 0000ffffffffffff YMM03=0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 676f6c206d6f7473 7563000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff823bb06c RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff888040857638 R8 =0000000000000004 R9 =0000000000000010 R10=0000000000000010 R11=0000000000000001 R12=0000000000002710 R13=0000000000000020 R14=fffffbfff0ecb584 R15=dffffc0000000000 RIP=ffffffff823bb0c1 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fb5544c6700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffefaedbde0 CR3=0000000034bcc000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fb5570377c0 00007fb5570377c8 YMM02=0000000000000000 0000000000000000 00007fb5570377e0 00007fb5570377c0 YMM03=0000000000000000 0000000000000000 00007fb5570377c8 00007fb5570377c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000