Warning: Permanently added '[localhost]:3768' (ECDSA) to the list of known hosts. 2022/10/01 20:00:55 fuzzer started 2022/10/01 20:00:56 dialing manager at localhost:35095 syzkaller login: [ 45.023612] cgroup: Unknown subsys name 'net' [ 45.164614] cgroup: Unknown subsys name 'rlimit' 2022/10/01 20:01:11 syscalls: 2215 2022/10/01 20:01:11 code coverage: enabled 2022/10/01 20:01:11 comparison tracing: enabled 2022/10/01 20:01:11 extra coverage: enabled 2022/10/01 20:01:11 setuid sandbox: enabled 2022/10/01 20:01:11 namespace sandbox: enabled 2022/10/01 20:01:11 Android sandbox: enabled 2022/10/01 20:01:12 fault injection: enabled 2022/10/01 20:01:12 leak checking: enabled 2022/10/01 20:01:12 net packet injection: enabled 2022/10/01 20:01:12 net device setup: enabled 2022/10/01 20:01:12 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/01 20:01:12 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/01 20:01:12 USB emulation: enabled 2022/10/01 20:01:12 hci packet injection: enabled 2022/10/01 20:01:12 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/01 20:01:12 802.15.4 emulation: enabled 2022/10/01 20:01:12 fetching corpus: 50, signal 26494/28285 (executing program) 2022/10/01 20:01:12 fetching corpus: 100, signal 36662/40075 (executing program) 2022/10/01 20:01:12 fetching corpus: 150, signal 44212/49153 (executing program) 2022/10/01 20:01:12 fetching corpus: 200, signal 55349/61541 (executing program) 2022/10/01 20:01:12 fetching corpus: 250, signal 63549/70967 (executing program) 2022/10/01 20:01:12 fetching corpus: 300, signal 67903/76647 (executing program) 2022/10/01 20:01:12 fetching corpus: 350, signal 73467/83386 (executing program) 2022/10/01 20:01:13 fetching corpus: 400, signal 76420/87562 (executing program) 2022/10/01 20:01:13 fetching corpus: 450, signal 81046/93219 (executing program) 2022/10/01 20:01:13 fetching corpus: 500, signal 83800/97090 (executing program) 2022/10/01 20:01:13 fetching corpus: 550, signal 86811/101141 (executing program) 2022/10/01 20:01:13 fetching corpus: 600, signal 90631/105898 (executing program) 2022/10/01 20:01:13 fetching corpus: 650, signal 94777/110875 (executing program) 2022/10/01 20:01:13 fetching corpus: 700, signal 96158/113336 (executing program) 2022/10/01 20:01:13 fetching corpus: 750, signal 97906/116105 (executing program) 2022/10/01 20:01:13 fetching corpus: 800, signal 99646/118834 (executing program) 2022/10/01 20:01:14 fetching corpus: 850, signal 102577/122578 (executing program) 2022/10/01 20:01:14 fetching corpus: 900, signal 105576/126357 (executing program) 2022/10/01 20:01:14 fetching corpus: 950, signal 107338/128956 (executing program) 2022/10/01 20:01:14 fetching corpus: 1000, signal 109132/131592 (executing program) 2022/10/01 20:01:14 fetching corpus: 1050, signal 111740/134890 (executing program) 2022/10/01 20:01:14 fetching corpus: 1100, signal 113178/137168 (executing program) 2022/10/01 20:01:14 fetching corpus: 1150, signal 114768/139524 (executing program) 2022/10/01 20:01:14 fetching corpus: 1200, signal 116350/141871 (executing program) 2022/10/01 20:01:15 fetching corpus: 1250, signal 118239/144455 (executing program) 2022/10/01 20:01:15 fetching corpus: 1300, signal 120531/147363 (executing program) 2022/10/01 20:01:15 fetching corpus: 1350, signal 121367/149040 (executing program) 2022/10/01 20:01:15 fetching corpus: 1400, signal 122501/150923 (executing program) 2022/10/01 20:01:15 fetching corpus: 1450, signal 124412/153407 (executing program) 2022/10/01 20:01:15 fetching corpus: 1500, signal 125418/155145 (executing program) 2022/10/01 20:01:15 fetching corpus: 1550, signal 126687/157094 (executing program) 2022/10/01 20:01:15 fetching corpus: 1600, signal 128691/159518 (executing program) 2022/10/01 20:01:15 fetching corpus: 1650, signal 131317/162372 (executing program) 2022/10/01 20:01:16 fetching corpus: 1700, signal 132603/164226 (executing program) 2022/10/01 20:01:16 fetching corpus: 1750, signal 135560/167319 (executing program) 2022/10/01 20:01:16 fetching corpus: 1800, signal 137511/169570 (executing program) 2022/10/01 20:01:16 fetching corpus: 1850, signal 138182/170911 (executing program) 2022/10/01 20:01:16 fetching corpus: 1900, signal 139235/172536 (executing program) 2022/10/01 20:01:16 fetching corpus: 1950, signal 140188/174085 (executing program) 2022/10/01 20:01:16 fetching corpus: 2000, signal 141802/176040 (executing program) 2022/10/01 20:01:16 fetching corpus: 2050, signal 143077/177743 (executing program) 2022/10/01 20:01:16 fetching corpus: 2100, signal 143800/179049 (executing program) 2022/10/01 20:01:17 fetching corpus: 2150, signal 144973/180617 (executing program) 2022/10/01 20:01:17 fetching corpus: 2200, signal 146169/182248 (executing program) 2022/10/01 20:01:17 fetching corpus: 2250, signal 147024/183582 (executing program) 2022/10/01 20:01:17 fetching corpus: 2300, signal 147726/184818 (executing program) 2022/10/01 20:01:17 fetching corpus: 2350, signal 148859/186399 (executing program) 2022/10/01 20:01:17 fetching corpus: 2400, signal 150856/188427 (executing program) 2022/10/01 20:01:17 fetching corpus: 2450, signal 151659/189701 (executing program) 2022/10/01 20:01:17 fetching corpus: 2500, signal 153203/191333 (executing program) 2022/10/01 20:01:17 fetching corpus: 2550, signal 154024/192647 (executing program) 2022/10/01 20:01:18 fetching corpus: 2600, signal 154990/194017 (executing program) 2022/10/01 20:01:18 fetching corpus: 2650, signal 155743/195243 (executing program) 2022/10/01 20:01:18 fetching corpus: 2700, signal 156321/196296 (executing program) 2022/10/01 20:01:18 fetching corpus: 2750, signal 157084/197443 (executing program) 2022/10/01 20:01:18 fetching corpus: 2800, signal 158499/198929 (executing program) 2022/10/01 20:01:18 fetching corpus: 2850, signal 159240/200077 (executing program) 2022/10/01 20:01:18 fetching corpus: 2900, signal 161861/202215 (executing program) 2022/10/01 20:01:19 fetching corpus: 2950, signal 162856/203402 (executing program) 2022/10/01 20:01:19 fetching corpus: 3000, signal 163554/204488 (executing program) 2022/10/01 20:01:19 fetching corpus: 3050, signal 165004/205956 (executing program) 2022/10/01 20:01:19 fetching corpus: 3100, signal 165548/206893 (executing program) 2022/10/01 20:01:19 fetching corpus: 3150, signal 166612/208106 (executing program) 2022/10/01 20:01:19 fetching corpus: 3200, signal 167033/209031 (executing program) 2022/10/01 20:01:19 fetching corpus: 3250, signal 167771/210059 (executing program) 2022/10/01 20:01:19 fetching corpus: 3300, signal 168507/211221 (executing program) 2022/10/01 20:01:19 fetching corpus: 3350, signal 169429/212378 (executing program) 2022/10/01 20:01:20 fetching corpus: 3400, signal 170118/213404 (executing program) 2022/10/01 20:01:20 fetching corpus: 3450, signal 170707/214297 (executing program) 2022/10/01 20:01:20 fetching corpus: 3500, signal 171657/215359 (executing program) 2022/10/01 20:01:20 fetching corpus: 3550, signal 172690/216383 (executing program) 2022/10/01 20:01:20 fetching corpus: 3600, signal 173536/217368 (executing program) 2022/10/01 20:01:20 fetching corpus: 3650, signal 174515/218430 (executing program) 2022/10/01 20:01:20 fetching corpus: 3700, signal 175595/219438 (executing program) 2022/10/01 20:01:21 fetching corpus: 3750, signal 176632/220433 (executing program) 2022/10/01 20:01:21 fetching corpus: 3800, signal 177696/221415 (executing program) 2022/10/01 20:01:21 fetching corpus: 3850, signal 178190/222142 (executing program) 2022/10/01 20:01:21 fetching corpus: 3900, signal 179306/223136 (executing program) 2022/10/01 20:01:21 fetching corpus: 3950, signal 180081/223948 (executing program) 2022/10/01 20:01:21 fetching corpus: 4000, signal 181150/224886 (executing program) 2022/10/01 20:01:21 fetching corpus: 4050, signal 182500/225859 (executing program) 2022/10/01 20:01:21 fetching corpus: 4100, signal 183231/226661 (executing program) 2022/10/01 20:01:22 fetching corpus: 4150, signal 183726/227323 (executing program) 2022/10/01 20:01:22 fetching corpus: 4200, signal 184492/228091 (executing program) 2022/10/01 20:01:22 fetching corpus: 4250, signal 185487/228921 (executing program) 2022/10/01 20:01:22 fetching corpus: 4300, signal 186638/229872 (executing program) 2022/10/01 20:01:22 fetching corpus: 4350, signal 187168/230568 (executing program) 2022/10/01 20:01:22 fetching corpus: 4400, signal 187805/231227 (executing program) 2022/10/01 20:01:22 fetching corpus: 4450, signal 188672/231992 (executing program) 2022/10/01 20:01:22 fetching corpus: 4500, signal 189641/232751 (executing program) 2022/10/01 20:01:23 fetching corpus: 4550, signal 190223/233386 (executing program) 2022/10/01 20:01:23 fetching corpus: 4600, signal 191208/234119 (executing program) 2022/10/01 20:01:23 fetching corpus: 4650, signal 191904/234749 (executing program) 2022/10/01 20:01:23 fetching corpus: 4700, signal 192269/235304 (executing program) 2022/10/01 20:01:23 fetching corpus: 4750, signal 193110/235932 (executing program) 2022/10/01 20:01:23 fetching corpus: 4800, signal 193826/236576 (executing program) 2022/10/01 20:01:23 fetching corpus: 4850, signal 194455/237144 (executing program) 2022/10/01 20:01:23 fetching corpus: 4871, signal 194680/237594 (executing program) 2022/10/01 20:01:23 fetching corpus: 4871, signal 194680/238043 (executing program) 2022/10/01 20:01:23 fetching corpus: 4871, signal 194680/238494 (executing program) 2022/10/01 20:01:23 fetching corpus: 4871, signal 194680/238947 (executing program) 2022/10/01 20:01:23 fetching corpus: 4871, signal 194680/239386 (executing program) 2022/10/01 20:01:23 fetching corpus: 4871, signal 194680/239846 (executing program) 2022/10/01 20:01:23 fetching corpus: 4871, signal 194680/240289 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/240676 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/241101 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/241528 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/241966 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/242414 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/242860 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/243331 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/243760 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/244200 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/244692 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/245109 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/245542 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/245996 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/246453 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/246901 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/247347 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/247780 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/248212 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/248484 (executing program) 2022/10/01 20:01:24 fetching corpus: 4871, signal 194680/248484 (executing program) 2022/10/01 20:01:26 starting 8 fuzzer processes 20:01:26 executing program 0: prctl$PR_PAC_RESET_KEYS(0x36, 0x1a) prctl$PR_PAC_RESET_KEYS(0x36, 0x0) prctl$PR_PAC_RESET_KEYS(0x36, 0x2) prctl$PR_PAC_RESET_KEYS(0x36, 0x10) prctl$PR_PAC_RESET_KEYS(0x36, 0x2) prctl$PR_PAC_RESET_KEYS(0x36, 0x13) prctl$PR_PAC_RESET_KEYS(0x36, 0x20) prctl$PR_PAC_RESET_KEYS(0x36, 0x8) prctl$PR_PAC_RESET_KEYS(0x36, 0x8) prctl$PR_PAC_RESET_KEYS(0x36, 0x18) prctl$PR_PAC_RESET_KEYS(0x36, 0x16) prctl$PR_PAC_RESET_KEYS(0x36, 0x19) prctl$PR_PAC_RESET_KEYS(0x36, 0xda6356180aa394b7) prctl$PR_PAC_RESET_KEYS(0x36, 0x4) prctl$PR_PAC_RESET_KEYS(0x36, 0x10) prctl$PR_PAC_RESET_KEYS(0x36, 0x4) prctl$PR_PAC_RESET_KEYS(0x36, 0x3) prctl$PR_PAC_RESET_KEYS(0x36, 0xf) prctl$PR_PAC_RESET_KEYS(0x36, 0x8) prctl$PR_PAC_RESET_KEYS(0x36, 0x12) 20:01:26 executing program 1: ioctl$CDROMREADAUDIO(0xffffffffffffffff, 0x530e, &(0x7f0000000040)={@msf={0x0, 0x7, 0xfd}, 0x1, 0x14, &(0x7f0000000000)=""/20}) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {r0}}, './file0\x00'}) ioctl$SNDRV_TIMER_IOCTL_PVERSION(r2, 0x80045400, &(0x7f00000000c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000100)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$BTRFS_IOC_QUOTA_RESCAN(r2, 0x4040942c, &(0x7f0000000340)={0x0, 0x9, [0xfffffffffffffff7, 0x1, 0x1, 0x1, 0x2, 0x1f]}) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000380)=0x0) r4 = syz_open_procfs(r3, &(0x7f00000003c0)='auxv\x00') r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000400), 0x1) kcmp(r3, r3, 0x4, r5, r6) ioctl$F2FS_IOC_MOVE_RANGE(r4, 0xc020f509, &(0x7f0000000440)={r6, 0xa3, 0x1, 0x100000001}) write$binfmt_elf32(r7, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x0, 0x40, 0xb5, 0x3e, 0x3, 0x3e, 0x80000, 0x2e3, 0x38, 0x20f, 0x0, 0x3, 0x20, 0x2, 0x1, 0x3, 0x4}, [{0x6, 0x0, 0x4, 0x3ff, 0x0, 0x100, 0x8000, 0xfffffff7}, {0x6, 0x800, 0x5, 0x1, 0xea, 0x7, 0x5, 0x10001}], "c79e1f65d7d1aaf4a8ea43742a8ce93c17ce161f2de9fb16706441f14d989ce753a967c8cd3b1272bc71e808ffba2fa43d8565dff9ba435179362d33416e152da1c9b1d7d04e14b49a58a95234df1dc4b1f4609b6e72dbd5ab96cacfeef94c32b9ec4eaa0151338af43019f448cd3315dd37ffa3a0fc997c1bf6a35992c74154a3e693addc8c3a99689f5833a1c90efc1cef2e95d0fe10c2de3a152714fa414c453f243ad16f0ede09091416a574cfcb7f4e972e76e34f2876543349ebfac91ca776487de58db56c76a016be414c2622", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x648) stat(&(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40)) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r5, 0x660c) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r6, 0x40505331, &(0x7f0000000bc0)={{0x9, 0x80}, {0x8, 0x20}, 0x1000, 0x1, 0x1f}) ioctl$AUTOFS_DEV_IOCTL_READY(r4, 0xc0189376, &(0x7f0000000c40)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6}}, './file0/file0\x00'}) ioctl$TIOCL_PASTESEL(r8, 0x541c, &(0x7f0000000c80)) ioctl$sock_netdev_private(r8, 0x89f0, &(0x7f0000000cc0)="183a1a5b97ed13e22d4223bd62878258a047743bf04384643474849cb3520c5b005acbcf5babeabe42e9025eb9ff5190ca0a71fdceeaab775fe010b73ef8bc80c45c151bd13a37688b6980faa41b97dc6f735c51d05c4adadd2aa142f80c8207ddd9f3b130be91915a715f1b5378a474d88bda5bd28593425c34ff2935ae6f69feb38f561f71c799bea1ba6945c4b50561c8a84c15463d8e4447d14349fb111cffaa3389de168b677290ae34b7f53b12eea5466d5465ec74a7dddbeab1acd2849e550b368443d94951ebe6d9af2506e52ca8fb80") sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000dc0)=0x1, 0x5) 20:01:26 executing program 2: fremovexattr(0xffffffffffffffff, &(0x7f0000000000)=@known='system.sockprotoname\x00') pwritev2(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000040)="e49c845f0e07a4f93daba626d57947bf6c064a56894d7ea6cb61d3bc7442e4cc7182fe03ca59bef74b769d7404eebf0af81fd68b42a07adeba3125eba3796b6c88dde2e9bacb286a93e4afc40de28ecbb9757ce2ec63e182bdd6a04268215f82ccc2dd003e78a0d94a4c2c0c9915b4e027c2f5db5ae9921b46dd", 0x7a}, {&(0x7f00000000c0)="61a393e5977b68f1a6a4a68e18a53bd31d814a8b3cc760d7b55179c5828d209b3082973ddc6793a73093d2010135a146f57bfd2e344b184692521efe0532b5e5379b30fbc69e6acd8f4253e243d4d48032bdb0e0562e4fcac17b2abf8063ceee5cdb0d411049eab8f7ecccdc8104094863d91be2b89211bed2d2b308f603026029df959d847a0d7e53", 0x89}, {&(0x7f0000000180)="49b92d2e1674387eb93100d2bc2b966d2934d0601252ccbc6317d9f1b24c7fbbdc2f756fb82cfe03814d5a9bf6ba18a306e9d84b3cec20b4bd485d7d9cf80af6ec6bbc874a2fca1dd71a88e9b2d31ac35b9e85c2f9df407fa4eff044a7e1d220fda22807683eb025745e960f34e0ddeee66d0d76ebad2674573324a1d652ab13a2896c9f19fb5cab3842d1f0e676bdd9ab3c3a2c9ef974ab1e3d45a939385f86ab32f3a1611b6dad43a6a707c0f94d0661b4c513392803080dbfc929873899", 0xbf}], 0x3, 0x1, 0x2, 0x1) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000002c0)=0xffffffffffffffff, 0x4) ioctl$sock_inet_tcp_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000300)) getsockopt$bt_hci(r0, 0x0, 0x2, &(0x7f0000000340)=""/131, &(0x7f0000000400)=0x83) r1 = accept$unix(r0, 0x0, &(0x7f0000000440)) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f0000000480)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f00000004c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0x0}}, './file0\x00'}) setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r2, 0x10e, 0x2, &(0x7f0000000500)=0x5, 0x4) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000540)={0x5e, 0x13, '\x00', [@hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2a}}}, @pad1, @generic={0x5, 0x7, "75f6387ee9d447"}, @jumbo={0xc2, 0x4, 0x20}, @hao={0xc9, 0x10, @mcast2}, @calipso={0x7, 0x48, {0x2, 0x10, 0x5, 0x0, [0x7, 0x88, 0x101, 0x100000001, 0x80000000, 0x7, 0xc01, 0x6]}}, @calipso={0x7, 0x18, {0x1, 0x4, 0x5, 0xfff, [0x10001, 0x7]}}]}, 0xa8) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r2, 0x6, 0x21, &(0x7f0000000600)="4ddbc81a4fc6fde91ab2bba37f778355", 0x10) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000640)={{0x1, 0x1, 0x18, r2, {r3, r4}}, './file0\x00'}) sendmsg$802154_raw(r5, &(0x7f00000007c0)={&(0x7f0000000680)={0x24, @none={0x0, 0x1}}, 0x14, &(0x7f0000000780)={&(0x7f00000006c0)="1913a0a265fc7676944573b822a85172396bc7a468f7c411af6d705728a91ac83f600206f7c743809f54bb7fdb79ade159c6fcc88a31e5f411c7ef8cd7e55ad3c837a553509c8c3bc5f66ef22929e54ac68b4fc5abdf1edc3bd2c9b5fb7edeeb0d8dc7beb066acff498043cd98a209e6bc24193afa39e28652d775af5ea2eb2b89420a89636a29cf98ea3830807e141faae5cf323c65a6aee857a9638fa95f12bd26abf949f5157715d5a25b55160baf71321465400f3244fcfbe957d91844", 0xbf}, 0x1, 0x0, 0x0, 0x4004800}, 0x40808) r6 = socket$inet6(0xa, 0xa, 0x1000) ioctl$sock_SIOCADDDLCI(r6, 0x8980, &(0x7f0000000800)={'ip6gretap0\x00', 0x47}) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000840)={@multicast1, @broadcast, 0x1, 0x5, [@remote, @multicast1, @multicast1, @broadcast, @multicast2]}, 0x24) r7 = syz_open_dev$vcsu(&(0x7f0000000880), 0x1, 0x100) setsockopt$inet6_int(r7, 0x29, 0x4b, &(0x7f00000008c0)=0x2b, 0x4) ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, &(0x7f0000000900)={0x48f, 0x4, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) [ 73.984088] audit: type=1400 audit(1664654486.596:6): avc: denied { execmem } for pid=288 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 20:01:26 executing program 3: r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x3, 0x800) fcntl$setown(r0, 0x8, 0x0) setsockopt$inet6_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000040)=@gcm_256={{0x303}, "d19ee5793675205d", "ad4d460f8ad3f8a1502f4253fa3fc8c254eb0fb9f93b29844c2ccedaf725a629", "ae6f2a65", "4292493d3f2098ac"}, 0x38) r1 = syz_open_dev$vcsn(&(0x7f0000000080), 0x7f, 0x1a5081) r2 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2080, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE(r1, 0x50009401, &(0x7f0000000100)={{r2}, "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"}) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000001100)) r3 = syz_io_uring_complete(0x0) inotify_rm_watch(r1, 0x0) ioctl$HIDIOCGVERSION(r3, 0x80044801, &(0x7f0000001140)) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r3, 0x80286722, &(0x7f0000001240)={&(0x7f0000001180)=""/170, 0xaa, 0x101, 0xffffff60}) ioctl$BTRFS_IOC_WAIT_SYNC(r3, 0x40089416, &(0x7f0000001280)) r4 = perf_event_open(&(0x7f00000012c0)={0x5, 0x80, 0x36, 0x5, 0x8, 0x77, 0x0, 0xb2a, 0x4020, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x1, @perf_config_ext={0x2, 0x3}, 0x8, 0x2, 0x5, 0x2, 0x4, 0x7f, 0x2, 0x0, 0x0, 0x0, 0x10000}, 0xffffffffffffffff, 0xf, r1, 0xa) ioctl$VFAT_IOCTL_READDIR_SHORT(r4, 0x82307202, &(0x7f0000001340)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$TIOCGISO7816(r3, 0x80285442, &(0x7f0000001580)) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f00000015c0)='wlan0\x00') sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000001740)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001700)={&(0x7f0000001640)={0x98, 0x0, 0x400, 0x70bd28, 0x9, {}, [@MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x6}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @empty}]}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x3}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}]}, 0x98}, 0x1, 0x0, 0x0, 0x4004004}, 0x20000004) ioctl$HIDIOCGPHYS(r2, 0x80404812, &(0x7f0000001780)) sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f00000018c0)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001880)={&(0x7f0000001800)={0x4c, 0x0, 0x100, 0x70bd29, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x7}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x17}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x1}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x2}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000) perf_event_open(&(0x7f0000001900)={0x3, 0x80, 0xaa, 0x80, 0x7, 0x3f, 0x0, 0x3, 0x480, 0x4, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x1, 0xd63}, 0x480, 0x5, 0x400, 0x7, 0x9, 0x4, 0x9, 0x0, 0x1ff, 0x0, 0x4}, 0x0, 0x8, r4, 0xb) 20:01:26 executing program 5: write$P9_RLCREATE(0xffffffffffffffff, &(0x7f0000000000)={0x18, 0xf, 0x1, {{0x20, 0x1, 0x8}}}, 0x18) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{0x5, 0xfffff087}, {0x80000000, 0x3}]}, 0x14, 0x0) r0 = accept4(0xffffffffffffffff, &(0x7f00000000c0)=@nfc_llcp, &(0x7f0000000140)=0x80, 0x0) ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/time_for_children\x00') sendfile(r0, r1, &(0x7f00000001c0)=0x33, 0x6f47) setns(r1, 0x20000) r2 = open_tree(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x1000) inotify_add_watch(r2, &(0x7f0000000240)='./file0\x00', 0x68000401) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$getownex(r4, 0x10, &(0x7f00000002c0)) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000940)={{{@in=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@empty}}, &(0x7f0000000a40)=0xe8) r7 = syz_mount_image$nfs(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x2, 0x7, &(0x7f0000000880)=[{&(0x7f0000000380)="1b9c9ae5a5507888afc5e3d2f80729a2c75e56f6523ba61e9a8b8b7a0e8cb05eb0865eb56ef408f341fa7bd45c2d81af3d1a72f2ab094ebadf15eef6c61a7bd31ca40da0832765379a91baf1b36bb7af225525d6ad88fcff023d81fbc121dec6e3fd2e6d9fa2feb5f2a66d69cff0080ffe2c9f4177a8a019a2d6befb3ad9978a1da8b1366e3fd1bcd0d2d1ba2fbd0a81b9fdee88e5384f2e72e2e9e748d4e70740897adddfbf14930079b7765ebb5bf5834e4330d4a2c917e6c27c", 0xbb, 0x1}, {&(0x7f0000000440)="e4ddb87b939c6fe08c09d773092cad4aeb4b9f9688aa3a3df68783de13470e691d6ae514bbf21a1772efb73ebf69e86a14b2ae9e806a098d2aaf302b46c06c41545715ba966c3c80a42dce6917b95a66359f38d5355bde9c8593d06c2ab8dcdcc87eef9b708f4e7bca4ff784784e49e9d088b9d45301fd8c3ec6bb5c9ee4fd991778469717d1bcbcaa9a4765ba880cd8fd49be54344d81bb126966b45117d26ce374b92591497950e1f87e83a1ec7b898e5b75bd49e1b4470646a518f56fe17a75c3aba2bff611969088", 0xca, 0x8}, {&(0x7f0000000540)="a86d662a0bb83db47502abf91225777c7218609f8244ebb9683c2389989b", 0x1e, 0x1000}, {&(0x7f0000000580)="8c482d05644e90996f748ee9eed0a91577bcff9d1eed66dddc8cb99c51eb70b09611c3025a322e55058c17829b0b3bc450c85590813b9278fb85f1992b7ae1e98bcb52391650bea205dd226c667424db177d39498a2e9f8ba3cf1f19cb9c92b4f7316a74711ed481bf074f690587f13e7fbc5e77e1c014156569c81eb3c85b687220286e7b60bea16f22d95173c2261f07d75e01d6a41f7b7397f30bc1d6c280c7f4a86620d525a6bea29936dce313648d0a718f561876296336af5f442bd505cbf0842fe15172da3efc4f7db08adb", 0xcf, 0xfffffffffffffffe}, {&(0x7f0000000680)="546c20ccf95c9e0cff8c57a3f0709f59f510a1cfd39dc49d722e67e0ba5a1b674b4e2afa145fa1c0c5e77a8a1bea6c95cad71a7c83945699d6385c383614637b2fdbe71c2f0291a76811b19597283b9518134acb8a5921bd416ac6cfce8413301cdeeac466b10dee25ab989c3d97c1c50c55db45062d2bf49860ea86ae2e9a9f01d3d980ec844d37a1db", 0x8a, 0x3}, {&(0x7f0000000740)="685b4ab2b63b7c1fbecea573a01e68bfcc5e9ed71440c5e7c5039b71bff029327f4a7d8410cee0ce58295ee8d863cbd3541ec159bb7d5051ce3803a4c243e674d289528978fe5666ad965dbf207b3c5a45f678cf92bb7f99f85e779c4832f53fa753d120ef92a69f54c274fd7d2a3b4362f8d1a37fad171af6d7bf120bc5cca1ccb2b8", 0x83, 0x3117c6b}, {&(0x7f0000000800)="77563fcff603211f80afdc941b31d22d884bc008508b5ed9f2a2bd65fe2b0765f524254dd7c564489e9f1cde752ea5f6ddf0f38789dc25142738f0864e184c10abb3c080b0f596115e71b76d72c8e0a98bac8ff64a64e9f6f9a78de8bc26d5332c40e6dabaa9f995fb81e08defebfdbe330f7561c36ebd2d62af5ddb", 0x7c, 0x10000000000}], 0x2020000, &(0x7f0000000a80)={[{'}%!'}], [{@appraise}, {@fsmagic={'fsmagic', 0x3d, 0x7e}}, {@permit_directio}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@uid_lt={'uid<', 0xee00}}, {@fowner_eq={'fowner', 0x3d, r6}}, {@pcr={'pcr', 0x3d, 0x3a}}, {@obj_role={'obj_role', 0x3d, ',,^\\:}.#{\\!*@\xc0!\\'}}]}) write$P9_RRENAMEAT(r4, &(0x7f0000000b40)={0x7, 0x4b, 0x2}, 0x7) r8 = syz_open_dev$sg(&(0x7f0000000b80), 0x80000001, 0x402000) r9 = socket$nl_xfrm(0x10, 0x3, 0x6) sendfile(r8, r9, 0x0, 0x26) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000bc0)={{0x1, 0x1, 0x18, r7, {0x6}}, './file0\x00'}) setsockopt$packet_add_memb(r10, 0x107, 0x1, &(0x7f0000000c00)={r5, 0x1, 0x6, @local}, 0x10) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000c80)={{0xcc, 0x42, 0x0, 0xc1, 0x2b6, 0x9, 0x3e8, 0x2}, "1c3d8baaed46b4c95b016c74be1c6ac003f1c896498690c8a526f48253c91953421e650953291021c9269505c1b6f89b57f4f89bd99d9f13ca8b4a367911f347b909025a5870f9692c72a8978e67ce7b6c31e96da53f89fd3f529057265dd33380073f130ab8bda22cf2184a35665a6e92c2", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x792) 20:01:26 executing program 4: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x28]}, 0x8) r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x120) r2 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6, 0xa, &(0x7f0000000680)=[{&(0x7f0000000100)="ed146fd1f89e55e339d62fd28bc4be0186826316987ac212f0d43d085f337b2d1474ba518087e8884e478f1ae8984f99fd544246af92b9e5200785c2efec808642ece81171d9", 0x46, 0x5}, {&(0x7f0000000180), 0x0, 0x1}, {&(0x7f00000001c0)="005478f3a3f8237a6b8720a534bc3027237591c5283559448267d676c83a5a0f7bd0d73fbce8ee09ed0f862d806a706ccca9252ff21d1784f51124b78eef13509ea1899eb73cacfa33c5d2036dc84c0d158703fe42797bb31d136fab4b60d0b03a1de6e069f85d8f5250ae7580166ebc52d570cd3ddd908a35e33a95919b538d08243a1722e633", 0x87, 0x2}, {&(0x7f0000000280)="6d9ae8b0e62c97586e91cf4f416ec1d5cef9d6c44598cf7e07ca692388a54d5d", 0x20, 0x2}, {&(0x7f00000002c0)="53683fb0d5c42bd7386de18cc979f7cab07ff36f256b6210cf9a7686b82f441f29b69d1a694fe2ed27adad52e12b428f1ecbfcc3070bda0aa510e1a061ab5d65f69590024dae3c6bec80336b8892cb283d5a09f4f7a64da0e697e5a8e2232c93e43ce1d8ea06e8105831be0993d4a9c0a359cc2f5e82c464fbfe74a44df0e1c49a3e1f0a99f304389c7635014c800d6c1832a72e115d0d381a30445857fd27f5651d1ad2f835179ab20af8c33450c2c5c6dcbfd254702b480abd60a685addd808205386f76cbf8f0430d4840dd61cb9266a39017ffb927016cbb80ce99dae2abe17bd7", 0xe3, 0x8}, {&(0x7f00000003c0)="83a7abb90e647ebefeca41349ce72100e97a050233fbeeb84603791c7e5a6feb480ca468dd790889", 0x28, 0x1}, {&(0x7f0000000400)="8d8841365c2f4edee4251dcf6bf2361cf4fecbe27fb69e8c1fcac56c71a5086e974c750055d533210d7c59ea2572c3c401c28152ed115df9e065ecdd939c50dbbe78d2c16bcba2580fe5ceb3f82ccf03fd2f5f6bf41300d0ec9c1553181b5dcaaab245f11c23f050be41657ef88018a742ae075e3211e8495c2d0b8a1f35f020aee80eb22fe4f6b88a33d5299a", 0x8d, 0xffffffff}, {&(0x7f00000004c0)="1f18e088a2f29e69d3cad92e6e55fa79f81f0b5e26a9ca3866a21938317dc56ac56f8cf247f6a34b6361b0daf1660d54e9a9ea99a23cb7471715bd59225837911e58dbae9d945695dee1e23e0babaafb88df31db1139ed7ffcb7d23b0760e56b2b587d0b97b1ef9c94c92c3d1e7c71a6bb0a93bfadcc02d85ff61b96ac7c4d7e1681d0ef7f798ca212a3b6ddafb20e170f0d1eef1907db327bd6676e10ba982553", 0xa1, 0x5}, {&(0x7f0000000580)="d0e9f9cfeb94acd165c639903bb1096bd4bebc4a414bb9367c224b7f0b391509fc6a7984e88faf143db76d0705643605420b78fc947133ab41bb4c8249705802252989e210b2bb98087ed95f7bbac78b2270541a70a07e582250c27f2a7b763a13086e4a13bcfdde855cfab873a8dbaec20589", 0x73, 0x4}, {&(0x7f0000000600)="ec3abda96d2f346417bd85215f8904048e968b3bfadbe8da96b12671737a6c1b5118aaff49ef62475a15b01f7f2cf73c72ada7d2abf047e9daa5735c6d6fc2649e042f82653589b91879c0b43e66ee3090", 0x51, 0x10001}], 0x100000, &(0x7f0000000780)={[{@utf8}, {@rodir}], [{@obj_role={'obj_role', 0x3d, '-)^[\x90%'}}, {@euid_gt={'euid>', 0xee01}}, {@uid_gt={'uid>', 0xee01}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@obj_user}, {@seclabel}, {@fowner_eq={'fowner', 0x3d, 0xee01}}, {@permit_directio}]}) r3 = syz_open_dev$mouse(&(0x7f0000000840), 0xfffffffffffff001, 0x4800) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000880), 0x40100) fchdir(r4) r5 = openat(r2, &(0x7f00000008c0)='./file0\x00', 0x60000, 0x2) ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0x9) r6 = syz_open_dev$evdev(&(0x7f0000000900), 0x87, 0x10a00) r7 = accept4$inet6(r1, &(0x7f0000000a00)={0xa, 0x0, 0x0, @private2}, &(0x7f0000000a40)=0x1c, 0x40000) ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000c80)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r9 = accept$unix(r1, &(0x7f0000000d00)=@abs, &(0x7f0000000d80)=0x6e) io_submit(0x0, 0x4, &(0x7f0000000f00)=[&(0x7f00000009c0)={0x0, 0x0, 0x0, 0x8, 0xfffc, r6, &(0x7f0000000940)="d260319a21ab71eafc96c2a46356566a33f74e2642452bbb780478f3e6fbc09f45d7c514a0453c7fba201848fb6dd5668fcdc3c4aefabbcbd8a2f249f7851f04d57a23d8e325ae0e", 0x48, 0x200, 0x0, 0x0, r3}, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x2, 0x3, r7, &(0x7f0000000a80)="911818a1df58f4b40ff94f83e5fa2d2f6dae3e97ff5ad3a214f8f47ace1c9188e550c7e3dc183fefdcce18f7757e555bc04c9b3a4fa98515da4968a8950f9aa1b8c5d887fbe2b405c0f6d79fe2ce29dfcc791f77477a2bd7222c2b729412e843fcb141ca482ca4b1b895205d651c0db51c79fe7443900644f0694d40078aa7aa585ddbc212b84faf5f5a22d1d6513bc6acc0ac54e936945b50b03245e1af78baf57678a1b9803fc4e64e8bafe4d946fc409038bd7cf3fe854303da8bf929f2b77b08816d1b29f030f060786b560e23086411ae13dd0096e8d841a27547a33f4dff10a33c30651152731625b9", 0xec, 0x4, 0x0, 0x1, r5}, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x3, 0x0, r2, &(0x7f0000000bc0)="c06c4a7c7e9a7b4cbf3896c67c14cfcbe9078dca176ca58b039eee19ff287bd8c77d23e078936f73fd8f7a163b5881b9e8132366a97de9de12fe01d6bcbd7b962922a722a8b594e7e6c57036c7692b1108a8196f9776a1ebf3738e1e20adc9ed9b27498a6501b8f69351951afdfc88a4b3be6a3650ed767e8204e19cde6636866e", 0x81, 0x20, 0x0, 0x2, r8}, &(0x7f0000000ec0)={0x0, 0x0, 0x0, 0x5, 0x5, r9, &(0x7f0000000dc0)="e835cd49cdc13697a10067420f7b309e9ee1843afe335985c7fd2daa7da5f9ccb1d6379c2652e868ecde15ca66fd217a62d9e77ed7892d045244a57125fa5a63dd32f471b57ad45a532cf94cdb97fc9b8696e66d5561bf2a5a01c913c94f3da2fd97ff8507fee254961ca062b2418f945518b864d69f2dace3ffe8f449448ce5023bdacd83cb9bb67e8c25b89eff17f9b015b4bf3b4995eddc9ad569864a4f253f3716c7ae2e75fbbf958786129a7ce67f240d9a5249ddd135832e6432f57206fa0f7eb7d18b3d200497df2a0587fb46201010bcbb85c52c5a33406c710972efbfceb09dcae94436d7d9bfa170e921209a", 0xf1, 0x2, 0x0, 0x1, r5}]) fcntl$setsig(0xffffffffffffffff, 0xa, 0x32) ioctl$EVIOCGSND(r8, 0x8040451a, &(0x7f0000000f40)=""/77) copy_file_range(r7, &(0x7f0000000fc0)=0x81, r2, &(0x7f0000001000)=0x5, 0x9, 0x0) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r9, 0x8010671f, &(0x7f0000002040)={&(0x7f0000001040)=""/4096, 0x1000}) ioctl$SNDRV_TIMER_IOCTL_STATUS64(r0, 0x80605414, &(0x7f0000002080)) r10 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r10, 0xf505, 0x0) 20:01:26 executing program 7: ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f0000000000)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000400)={r0, 0x10000, 0x7fffffff}) ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000000800)={0x0, 0x6, [0x0, 0x7, 0x100000001, 0x3, 0x8, 0x7]}) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000840)={r1, 0x1}) ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000c40)={{r2}, {@val={r3}, @actul_num={@val=0x2b, 0x100000000, 0x6d}}}) r4 = signalfd4(r2, &(0x7f0000000c80), 0x8, 0x100000) ioctl$PERF_EVENT_IOC_DISABLE(r4, 0x2401, 0x94b) socketpair(0x9, 0x1, 0x9, &(0x7f0000002fc0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFBR(r5, 0x8940, &(0x7f0000003100)=@get={0x1, &(0x7f0000003000)=""/200, 0x8}) ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000003140)={0x0, 0x1, 0xc7, 0x401}) r7 = fcntl$dupfd(r5, 0x0, r6) ioctl$BTRFS_IOC_GET_DEV_STATS(r5, 0xc4089434, &(0x7f0000003bc0)={r0, 0x1, 0x0, [0x1, 0x4, 0x7fff, 0x100, 0x758], [0x8, 0x4, 0x1, 0x2, 0x401, 0xef, 0xff, 0x7, 0x0, 0x2, 0x1ff, 0x10001, 0x6, 0x8, 0x0, 0x7ff, 0x800, 0x7b, 0x8001, 0x80000000, 0xfc8f, 0x80000001, 0x5, 0x80, 0x100000001, 0x6f9, 0x81, 0x101, 0x1ff, 0x1, 0x80000001, 0x4, 0x5, 0x0, 0x6, 0x10000, 0x2, 0x7a9c, 0x7, 0x9, 0x8, 0x3, 0x100000000, 0x0, 0x1000, 0x200000000000000, 0x1, 0x1, 0x723ed4bf, 0x6, 0xb3, 0x3ff, 0x5, 0x9, 0x8, 0x9, 0xc3f, 0x2, 0x40, 0x4a, 0x200, 0x3, 0x1, 0x0, 0x49, 0xff, 0x2, 0x309911a, 0x0, 0x6, 0x7, 0x2, 0xffff, 0x4bbc, 0x3, 0x4, 0x8, 0x58, 0xa7d, 0xa6b9, 0x1f, 0x182a, 0x7, 0x4, 0xffffffff00000001, 0x9c6b, 0x5, 0x6b, 0x0, 0x101, 0x3, 0x4, 0x380, 0x3, 0x4, 0x5, 0x6, 0x3ff, 0x0, 0x10000, 0x20, 0x3, 0xffffffff, 0x7, 0x7, 0x0, 0xaa, 0x1, 0x2, 0x6, 0x1, 0x4, 0x57, 0x4, 0x7, 0x3, 0x0, 0x4000000000, 0x4, 0x7]}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r7, 0xc400941d, &(0x7f0000004000)={r8, 0x4, 0x2, 0x1}) ftruncate(r7, 0x6) r9 = syz_open_dev$vcsa(&(0x7f0000004400), 0x3f, 0x400) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r9, 0xc0189374, &(0x7f0000004440)={{0x1, 0x1, 0x18, r5, {0x4}}, './file0\x00'}) mount$9p_fd(0x0, &(0x7f0000004480)='./file0\x00', &(0x7f00000044c0), 0x1c00, &(0x7f0000004500)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@fscache}, {@fscache}, {@fscache}], [{@fowner_lt={'fowner<', 0xee01}}, {@obj_user={'obj_user', 0x3d, '/dev/vcsa#\x00'}}, {@measure}, {@euid_gt={'euid>', 0xee01}}, {@subj_user}, {@pcr={'pcr', 0x3d, 0x6}}, {@smackfsdef={'smackfsdef', 0x3d, '/dev/vcsa#\x00'}}]}}) dup(r2) 20:01:26 executing program 6: ioctl$sock_SIOCGIFBR(0xffffffffffffffff, 0x8940, &(0x7f0000000040)=@add_del={0x2, &(0x7f0000000000)='vxcan1\x00'}) setsockopt$inet6_IPV6_ADDRFORM(0xffffffffffffffff, 0x29, 0x1, &(0x7f0000000080), 0x4) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000000c0), 0xc400, 0x0) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10010, r0, 0x17f94000) r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x40) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r1, 0x80047210, &(0x7f0000000100)) r2 = syz_open_dev$sg(&(0x7f0000000140), 0x80, 0x1e1400) sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x5c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8887}, @IPVS_CMD_ATTR_DAEMON={0x24, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x9}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @empty}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x7}]}, @IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x20008800) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000002c0)=[0xffffffffffffffff, r2, r2, r2, r0, r0], 0x6) syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r0) fcntl$setpipe(r1, 0x407, 0xffff) io_uring_enter(0xffffffffffffffff, 0x2952, 0x122f, 0x3, &(0x7f0000000340)={[0x6]}, 0x8) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_FALLOCATE={0x11, 0x5, 0x0, @fd=r2, 0x1, 0x0, 0x3}, 0x1) r3 = syz_open_dev$sg(&(0x7f00000003c0), 0xffffffff, 0x1) ioctl$SCSI_IOCTL_DOORLOCK(r3, 0x5380) read(r3, &(0x7f0000000400)=""/11, 0xb) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000004c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r0, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x28, r4, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0xef9a, 0x79}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x40081}, 0x8004) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f00000005c0)=0x9, 0x4) [ 75.347907] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.350047] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 75.353218] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 75.354254] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.356139] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 75.357199] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.362887] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.364476] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 75.366813] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 75.368444] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 75.369798] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 75.369970] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.379226] Bluetooth: hci1: HCI_REQ-0x0c1a [ 75.387926] Bluetooth: hci0: HCI_REQ-0x0c1a [ 75.443096] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 75.464077] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 75.466543] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 75.469954] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 75.471863] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 75.472160] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 75.474442] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 75.475153] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 75.478513] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 75.479727] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 75.484044] Bluetooth: hci2: HCI_REQ-0x0c1a [ 75.500452] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 75.505037] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 75.506274] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 75.509103] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 75.510665] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 75.515610] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 75.517256] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 75.518240] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 75.519235] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 75.520271] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 75.521781] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 75.527809] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 75.528922] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 75.530170] Bluetooth: hci5: HCI_REQ-0x0c1a [ 75.534945] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 75.536016] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 75.537673] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 75.540098] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 75.541093] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 75.545281] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 75.546416] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 75.547415] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 75.552271] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 75.557051] Bluetooth: hci4: HCI_REQ-0x0c1a [ 75.559123] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 75.560590] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 75.572524] Bluetooth: hci7: HCI_REQ-0x0c1a [ 75.575506] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 75.579641] Bluetooth: hci6: HCI_REQ-0x0c1a [ 75.581547] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 75.610007] Bluetooth: hci3: HCI_REQ-0x0c1a [ 77.429529] Bluetooth: hci1: command 0x0409 tx timeout [ 77.429545] Bluetooth: hci0: command 0x0409 tx timeout [ 77.491955] Bluetooth: hci2: command 0x0409 tx timeout [ 77.555905] Bluetooth: hci5: command 0x0409 tx timeout [ 77.619920] Bluetooth: hci7: command 0x0409 tx timeout [ 77.621070] Bluetooth: hci3: command 0x0409 tx timeout [ 77.621122] Bluetooth: hci6: command 0x0409 tx timeout [ 77.621853] Bluetooth: hci4: command 0x0409 tx timeout [ 79.475909] Bluetooth: hci0: command 0x041b tx timeout [ 79.476688] Bluetooth: hci1: command 0x041b tx timeout [ 79.539915] Bluetooth: hci2: command 0x041b tx timeout [ 79.603907] Bluetooth: hci5: command 0x041b tx timeout [ 79.668109] Bluetooth: hci6: command 0x041b tx timeout [ 79.668902] Bluetooth: hci3: command 0x041b tx timeout [ 79.669627] Bluetooth: hci4: command 0x041b tx timeout [ 79.670422] Bluetooth: hci7: command 0x041b tx timeout [ 81.524899] Bluetooth: hci1: command 0x040f tx timeout [ 81.525384] Bluetooth: hci0: command 0x040f tx timeout [ 81.587867] Bluetooth: hci2: command 0x040f tx timeout [ 81.651961] Bluetooth: hci5: command 0x040f tx timeout [ 81.716932] Bluetooth: hci7: command 0x040f tx timeout [ 81.717385] Bluetooth: hci4: command 0x040f tx timeout [ 81.717786] Bluetooth: hci3: command 0x040f tx timeout [ 81.718239] Bluetooth: hci6: command 0x040f tx timeout [ 83.572022] Bluetooth: hci0: command 0x0419 tx timeout [ 83.572662] Bluetooth: hci1: command 0x0419 tx timeout [ 83.635958] Bluetooth: hci2: command 0x0419 tx timeout [ 83.699871] Bluetooth: hci5: command 0x0419 tx timeout [ 83.764952] Bluetooth: hci6: command 0x0419 tx timeout [ 83.765482] Bluetooth: hci3: command 0x0419 tx timeout [ 83.766037] Bluetooth: hci4: command 0x0419 tx timeout [ 83.766542] Bluetooth: hci7: command 0x0419 tx timeout 20:02:19 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440), 0x2}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x3, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r0, 0x0, 0x0, 0x87ffffc) lsetxattr(&(0x7f0000000340)='./file1\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB="70300000000000000000000000000000b47302"], &(0x7f0000000400)='/dev/ptp0\x00', 0xa, 0x0) r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) readv(r1, &(0x7f0000000300)=[{&(0x7f0000000140)=""/147, 0x93}, {&(0x7f0000000200)=""/116, 0x74}], 0x2) syz_open_dev$tty20(0xc, 0x4, 0x1) socket$nl_netfilter(0x10, 0x3, 0xc) [ 127.248168] audit: type=1400 audit(1664654539.860:7): avc: denied { open } for pid=3645 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.249681] audit: type=1400 audit(1664654539.860:8): avc: denied { kernel } for pid=3645 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.264072] ------------[ cut here ]------------ [ 127.264093] [ 127.264096] ====================================================== [ 127.264099] WARNING: possible circular locking dependency detected [ 127.264103] 6.0.0-rc7-next-20220930 #1 Not tainted [ 127.264110] ------------------------------------------------------ [ 127.264113] syz-executor.2/3648 is trying to acquire lock: [ 127.264119] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 127.264160] [ 127.264160] but task is already holding lock: [ 127.264163] ffff88803f4c9c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.264190] [ 127.264190] which lock already depends on the new lock. [ 127.264190] [ 127.264193] [ 127.264193] the existing dependency chain (in reverse order) is: [ 127.264196] [ 127.264196] -> #3 (&ctx->lock){....}-{2:2}: [ 127.264210] _raw_spin_lock+0x2a/0x40 [ 127.264222] __perf_event_task_sched_out+0x53b/0x18d0 [ 127.264233] __schedule+0xedd/0x2470 [ 127.264247] schedule+0xda/0x1b0 [ 127.264260] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.264272] syscall_exit_to_user_mode+0x19/0x40 [ 127.264286] do_syscall_64+0x48/0x90 [ 127.264303] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.264316] [ 127.264316] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 127.264329] _raw_spin_lock_nested+0x30/0x40 [ 127.264340] raw_spin_rq_lock_nested+0x1e/0x30 [ 127.264353] task_fork_fair+0x63/0x4d0 [ 127.264370] sched_cgroup_fork+0x3d0/0x540 [ 127.264384] copy_process+0x4183/0x6e20 [ 127.264396] kernel_clone+0xe7/0x890 [ 127.264405] user_mode_thread+0xad/0xf0 [ 127.264415] rest_init+0x24/0x250 [ 127.264427] arch_call_rest_init+0xf/0x14 [ 127.264444] start_kernel+0x4c6/0x4eb [ 127.264459] secondary_startup_64_no_verify+0xe0/0xeb [ 127.264474] [ 127.264474] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 127.264487] _raw_spin_lock_irqsave+0x39/0x60 [ 127.264498] try_to_wake_up+0xab/0x1930 [ 127.264511] up+0x75/0xb0 [ 127.264525] __up_console_sem+0x6e/0x80 [ 127.264541] console_unlock+0x46a/0x590 [ 127.264557] do_con_write+0xc05/0x1d50 [ 127.264568] con_write+0x21/0x40 [ 127.264577] n_tty_write+0x4d4/0xfe0 [ 127.264589] file_tty_write.constprop.0+0x455/0x8a0 [ 127.264600] vfs_write+0x9c3/0xd90 [ 127.264617] ksys_write+0x127/0x250 [ 127.264632] do_syscall_64+0x3b/0x90 [ 127.264648] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.264661] [ 127.264661] -> #0 ((console_sem).lock){....}-{2:2}: [ 127.264674] __lock_acquire+0x2a02/0x5e70 [ 127.264691] lock_acquire+0x1a2/0x530 [ 127.264707] _raw_spin_lock_irqsave+0x39/0x60 [ 127.264717] down_trylock+0xe/0x70 [ 127.264732] __down_trylock_console_sem+0x3b/0xd0 [ 127.264748] vprintk_emit+0x16b/0x560 [ 127.264764] vprintk+0x84/0xa0 [ 127.264779] _printk+0xba/0xf1 [ 127.264791] report_bug.cold+0x72/0xab [ 127.264807] handle_bug+0x3c/0x70 [ 127.264823] exc_invalid_op+0x14/0x50 [ 127.264840] asm_exc_invalid_op+0x16/0x20 [ 127.264852] group_sched_out.part.0+0x2c7/0x460 [ 127.264870] ctx_sched_out+0x8f1/0xc10 [ 127.264886] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.264897] __schedule+0xedd/0x2470 [ 127.264910] schedule+0xda/0x1b0 [ 127.264923] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.264934] syscall_exit_to_user_mode+0x19/0x40 [ 127.264946] do_syscall_64+0x48/0x90 [ 127.264963] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.264975] [ 127.264975] other info that might help us debug this: [ 127.264975] [ 127.264978] Chain exists of: [ 127.264978] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 127.264978] [ 127.264992] Possible unsafe locking scenario: [ 127.264992] [ 127.264995] CPU0 CPU1 [ 127.264997] ---- ---- [ 127.265000] lock(&ctx->lock); [ 127.265005] lock(&rq->__lock); [ 127.265012] lock(&ctx->lock); [ 127.265018] lock((console_sem).lock); [ 127.265024] [ 127.265024] *** DEADLOCK *** [ 127.265024] [ 127.265025] 2 locks held by syz-executor.2/3648: [ 127.265032] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 127.265061] #1: ffff88803f4c9c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.265087] [ 127.265087] stack backtrace: [ 127.265090] CPU: 1 PID: 3648 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1 [ 127.265102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.265110] Call Trace: [ 127.265113] [ 127.265117] dump_stack_lvl+0x8b/0xb3 [ 127.265135] check_noncircular+0x263/0x2e0 [ 127.265152] ? format_decode+0x26c/0xb50 [ 127.265168] ? print_circular_bug+0x450/0x450 [ 127.265185] ? simple_strtoul+0x30/0x30 [ 127.265199] ? __lockdep_reset_lock+0x180/0x180 [ 127.265216] ? format_decode+0x26c/0xb50 [ 127.265233] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 127.265250] __lock_acquire+0x2a02/0x5e70 [ 127.265272] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 127.265294] lock_acquire+0x1a2/0x530 [ 127.265310] ? down_trylock+0xe/0x70 [ 127.265328] ? lock_release+0x750/0x750 [ 127.265346] ? find_held_lock+0x2c/0x110 [ 127.265362] ? vprintk+0x84/0xa0 [ 127.265380] _raw_spin_lock_irqsave+0x39/0x60 [ 127.265391] ? down_trylock+0xe/0x70 [ 127.265407] down_trylock+0xe/0x70 [ 127.265422] ? vprintk+0x84/0xa0 [ 127.265439] __down_trylock_console_sem+0x3b/0xd0 [ 127.265456] vprintk_emit+0x16b/0x560 [ 127.265474] vprintk+0x84/0xa0 [ 127.265492] _printk+0xba/0xf1 [ 127.265503] ? record_print_text.cold+0x16/0x16 [ 127.265517] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 127.265531] ? lock_downgrade+0x6d0/0x6d0 [ 127.265549] ? report_bug.cold+0x66/0xab [ 127.265566] ? group_sched_out.part.0+0x2c7/0x460 [ 127.265584] report_bug.cold+0x72/0xab [ 127.265603] handle_bug+0x3c/0x70 [ 127.265620] exc_invalid_op+0x14/0x50 [ 127.265638] asm_exc_invalid_op+0x16/0x20 [ 127.265650] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.265671] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.265682] RSP: 0018:ffff88800fccfc48 EFLAGS: 00010006 [ 127.265691] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.265699] RDX: ffff88801da6d040 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 127.265707] RBP: ffff88800eff8000 R08: 0000000000000005 R09: 0000000000000001 [ 127.265714] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803f4c9c00 [ 127.265721] R13: ffff88806cf3d2c0 R14: ffffffff8547c960 R15: 0000000000000002 [ 127.265732] ? group_sched_out.part.0+0x2c7/0x460 [ 127.265752] ? group_sched_out.part.0+0x2c7/0x460 [ 127.265771] ctx_sched_out+0x8f1/0xc10 [ 127.265791] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.265805] ? lock_is_held_type+0xd7/0x130 [ 127.265818] ? __perf_cgroup_move+0x160/0x160 [ 127.265829] ? set_next_entity+0x304/0x550 [ 127.265846] ? update_curr+0x267/0x740 [ 127.265865] ? lock_is_held_type+0xd7/0x130 [ 127.265879] __schedule+0xedd/0x2470 [ 127.265896] ? io_schedule_timeout+0x150/0x150 [ 127.265912] ? __x64_sys_futex_time32+0x480/0x480 [ 127.265927] schedule+0xda/0x1b0 [ 127.265941] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.265954] syscall_exit_to_user_mode+0x19/0x40 [ 127.265967] do_syscall_64+0x48/0x90 [ 127.265985] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.265998] RIP: 0033:0x7fa3fa4eab19 [ 127.266006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.266017] RSP: 002b:00007fa3f7a60218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.266027] RAX: 0000000000000001 RBX: 00007fa3fa5fdf68 RCX: 00007fa3fa4eab19 [ 127.266035] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa3fa5fdf6c [ 127.266042] RBP: 00007fa3fa5fdf60 R08: 000000000000000e R09: 0000000000000000 [ 127.266049] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fa3fa5fdf6c [ 127.266056] R13: 00007ffc195793ff R14: 00007fa3f7a60300 R15: 0000000000022000 [ 127.266068] [ 127.323683] WARNING: CPU: 1 PID: 3648 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 127.324368] Modules linked in: [ 127.324614] CPU: 1 PID: 3648 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1 [ 127.325215] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.326050] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.326459] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.327824] RSP: 0018:ffff88800fccfc48 EFLAGS: 00010006 [ 127.328225] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.328754] RDX: ffff88801da6d040 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 127.329283] RBP: ffff88800eff8000 R08: 0000000000000005 R09: 0000000000000001 [ 127.329817] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803f4c9c00 [ 127.330349] R13: ffff88806cf3d2c0 R14: ffffffff8547c960 R15: 0000000000000002 [ 127.330885] FS: 00007fa3f7a60700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 127.331493] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.331933] CR2: 00007f19f6129028 CR3: 000000003ebc8000 CR4: 0000000000350ee0 [ 127.332466] Call Trace: [ 127.332663] [ 127.332832] ctx_sched_out+0x8f1/0xc10 [ 127.333145] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.333536] ? lock_is_held_type+0xd7/0x130 [ 127.333863] ? __perf_cgroup_move+0x160/0x160 [ 127.334206] ? set_next_entity+0x304/0x550 [ 127.334534] ? update_curr+0x267/0x740 [ 127.334835] ? lock_is_held_type+0xd7/0x130 [ 127.335161] __schedule+0xedd/0x2470 [ 127.335456] ? io_schedule_timeout+0x150/0x150 [ 127.335810] ? __x64_sys_futex_time32+0x480/0x480 [ 127.336187] schedule+0xda/0x1b0 [ 127.336451] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.336818] syscall_exit_to_user_mode+0x19/0x40 [ 127.337183] do_syscall_64+0x48/0x90 [ 127.337476] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.337868] RIP: 0033:0x7fa3fa4eab19 [ 127.338149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.339487] RSP: 002b:00007fa3f7a60218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.340065] RAX: 0000000000000001 RBX: 00007fa3fa5fdf68 RCX: 00007fa3fa4eab19 [ 127.340600] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa3fa5fdf6c [ 127.341128] RBP: 00007fa3fa5fdf60 R08: 000000000000000e R09: 0000000000000000 [ 127.341668] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fa3fa5fdf6c [ 127.342207] R13: 00007ffc195793ff R14: 00007fa3f7a60300 R15: 0000000000022000 [ 127.342748] [ 127.342927] irq event stamp: 464 [ 127.343186] hardirqs last enabled at (463): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 127.343895] hardirqs last disabled at (464): [] __schedule+0x1225/0x2470 [ 127.344516] softirqs last enabled at (0): [] copy_process+0x1e15/0x6e20 [ 127.345133] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 127.345610] ---[ end trace 0000000000000000 ]--- 20:02:20 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440), 0x2}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x3, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r0, 0x0, 0x0, 0x87ffffc) lsetxattr(&(0x7f0000000340)='./file1\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB="70300000000000000000000000000000b47302"], &(0x7f0000000400)='/dev/ptp0\x00', 0xa, 0x0) r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) readv(r1, &(0x7f0000000300)=[{&(0x7f0000000140)=""/147, 0x93}, {&(0x7f0000000200)=""/116, 0x74}], 0x2) syz_open_dev$tty20(0xc, 0x4, 0x1) socket$nl_netfilter(0x10, 0x3, 0xc) 20:02:20 executing program 2: syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000840)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}}}]}}]}}, 0x0) syz_usb_connect$cdc_ncm(0x1, 0x94, &(0x7f0000000000)=ANY=[@ANYBLOB="12010002020000202505a1a44000010203010902820002011310040904000008020d000009240600018a395789052400be330d240f0100000000060006002006241aff03001524120600a317a88b045e4f01a607c0ffcb7e392a08241c0700400000052401010009058103100005082e0904010000020d00000904010102020d0000090582024000040100090503020800807f00"], &(0x7f0000000600)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x110, 0x4, 0x7f, 0x1f, 0x0, 0x7}, 0x5, &(0x7f0000000100)={0x5, 0xf, 0x5}, 0x9, [{0xd6, &(0x7f0000000140)=@string={0xd6, 0x3, "4bbd5f623feb10e7e2ab5b0a6e213ce4e07703f0f36d0a4ca701564e03c2bf354ba757bfb4574e1b2459f5f6d0b77844f3272097e5c3204531fd8ce3414c652c608b7e5717bedc9c462f9fed09a2def1f8d2ec72b5cb2b6c5f4986343972d28e34a4c11f24b7a01a4f054747e72616557fede563bf3e2449055af325c4d5a9a506d9cdaa2056bc7a00360d164037fe5baf50364c5da2aed7df679b0b2aea7b77e564c12b2d597fd12a9f2a2d2bcb3789888cbcdcf0639664d162d5f8abe84306be95a4ecb03aa3aa6a676b767e8a21532fd1a371"}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0x41d}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x300a}}, {0xb5, &(0x7f00000002c0)=@string={0xb5, 0x3, "5bfef88db122e176571be82312d464165a9e6fee1f1ea9b65a6c902e50195da9b756e78a82871b6f0b0f4f3f1a2dfb8213782edfbb4a0edc17b59fd05172a9e2f2b5ddfdb3d22e882af52fdf986077df437a135bcfed43b3a57bc642ea7526191d4ac77aeda7afa2e9234a4910eb5feefafa348f5c4e71ddb8d29364fbda64cb2b93fe84abe4f978f00f72cd6ced550fc700aaaa0fbe500f34c41aeb47fb25bbbc7a8d1723031390b6ed4abca4847956e88fb8"}}, {0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x418}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x41e}}, {0xe5, &(0x7f0000000400)=@string={0xe5, 0x3, "0782d7913d057cbff0b474a207fedce291e64d38d78094e4351205171c43e36b3e25c2f8a01839ea71793305d1eae843b55b45a1a174cb7c5ea54d2151b597412ad6d67fb8444edb74667422c5294aee35589e2ad4ab05a69faaee20b09606e7186ab112ffb3e23163fe7af9f0698ac7dc183894d757ffa0ee1dbd5ff6822b0011b7e73b621a31f6090a9c3a5d6b8b094896f68eb99171f6e1ffc87e74de721cbaa988e773f2726d34f02d674d64a24a9ebdd7d961796f08a9732a4bffe1dcdfea67bd92199db20b67ecced1d5773bffdaf9e8bc37265a1a242ba2ac5de32504a0058f"}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x447}}, {0x88, &(0x7f0000000540)=@string={0x88, 0x3, "ac8ba3074560f5e24dd53afc9b383285d5e7117879077dfff6c248fb5ae09e688716d63cbc4a64cb3a208010d82b43224de22ad9cd734f2cff81ca99d1433c65493e5f64e997a2451e13b71c9a8ac14ceb1e50cb9c7ca0fc231cb2aa03efd02994ffdc3601c1fa2f2ab29d9f93cea29653e919638469625e3392627c9b52b7146769bd111699"}}]}) syz_usb_connect$printer(0x3, 0x2d, &(0x7f00000006c0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x7, 0xa0, 0x6, [{{0x9, 0x4, 0x0, 0x7, 0x2, 0x7, 0x1, 0x1, 0x9, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0x49, 0x4c, 0x3}}}}}]}}]}}, &(0x7f0000000a80)={0xa, &(0x7f0000000700)={0xa, 0x6, 0x200, 0x81, 0x80, 0x5, 0x20, 0x1}, 0x60, &(0x7f0000000740)={0x5, 0xf, 0x60, 0x3, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x5, 0x7f, 0x1, 0x5}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x2, 0x45, 0xe4, 0x200}, @generic={0x47, 0x10, 0x5, "8ebeca7d6c4273f49f85ec01c3973172821979bd768eb66aaa7a9057acc1c71dff179c799b82b4c83ec776ef1b6611429bcc7f79e4cf679b5beaf64369a56794b8959b80"}]}, 0x4, [{0xe6, &(0x7f00000008c0)=@string={0xe6, 0x3, "8fefe3f10955809f85de894e78f5383780a6e57692812c0da6a6852d6a88728cd665c242eca36d2082452e96ca54e2f8af48552eb966c6b923cce5fdec765f96363584c1018a8a4e48fbcb3d0a4e0439e851a7a7f304ecc0ef2ed2501235a6ef78b0770f1a4b2c2c13bcbd85c8983ca4235de7f343197fc4998df99e79cc2d26f5bdef93e49a4563d6ec1b570b2c0aa8f448d5d1ebe6e9770f46ff99f3156fce8c1ccade6b7d9cfcae9bc82ce38cecd3b4f0bdd2b0827d8251f26e622f82717bf0ac24265ed930906a56217488d3ea81d2c13cbf336aa407ef61cfee07bde8a971539fa8"}}, {0x4, &(0x7f00000007c0)=@lang_id={0x4, 0x3, 0x4001}}, {0x4, &(0x7f0000000800)=@lang_id={0x4, 0x3, 0x43e}}, {0xa0, &(0x7f00000009c0)=@string={0xa0, 0x3, "3c86bd1961a3be9ddbeb88e9770d0277abd01ddedae00a7717adfcd1a2a7ff8c9417cd8ba42f55eaf595345b9d598f7a815255a1a583bc2f2b83a2b6890262d6ba4504746c5f911a34b7402c42abd1c90b1eda218c89f71385cc6408af0bd470b62826223b2e1ed4ce032fc0b99607824b12521b46c2db0a59bd2f3d5527f8b61184822550e8e7931542de59a7282d09673664912bc85dff5c203048b844"}}]}) [ 127.880940] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 127.892920] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 127.894030] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 127.894725] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 127.903153] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 127.903857] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 128.304896] loop5: detected capacity change from 0 to 262144 [ 128.321628] loop5: detected capacity change from 0 to 262144 20:02:20 executing program 5: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000080)={0x6800, 0x8, 0x1ff, 0xffff}) ioctl$TCSETAF(r0, 0x4b4a, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r2 = syz_open_dev$loop(&(0x7f0000000040), 0x0, 0x80200) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r1) ioctl$TCSETSF2(r1, 0x402c542d, &(0x7f0000000000)={0x8, 0xff, 0x8, 0x800, 0x0, "b6b74757e8bacdaf12d9edbee22d50f7ddde78", 0x320b, 0x7f}) [ 128.408069] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 128.408226] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 128.409379] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 128.409518] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 128.409862] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 128.410088] misc raw-gadget: fail, usb_gadget_register_driver returned -16 20:02:21 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000001240)={'\x00', 0x555, 0x0, 0x273}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) acct(&(0x7f0000001200)='./file1\x00') openat(r1, &(0x7f0000000000)='./file1\x00', 0x2, 0x11) pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000540)={@in6={{0xa, 0x4e20, 0xffff, @mcast2, 0x4}}, 0x0, 0x0, 0x15, 0x0, "b25da62d685a38083e45ab1950001ca46105939b4b3d83bd945bed03b30b62897693132cb6e12788b1d58f9b2fff886055bea488ee0e2918a8c961a2684924dfa9841132b1916476e31d06d76d34a918"}, 0xd8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) sendfile(r1, r2, 0x0, 0xffff) openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f00000004c0)={{0x1, 0x1, 0x18}, './file1\x00'}) 20:02:21 executing program 5: capset(&(0x7f0000000140)={0x19980330}, &(0x7f0000000080)) r0 = getpid() ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) r2 = perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x8, 0xff, 0x0, 0x20, 0x0, 0xffffffffffffffcc, 0x0, 0x8, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0xb}, 0x2021, 0x40, 0x10001, 0x6, 0xfffffffffffffffb, 0x7, 0x7, 0x0, 0x7fff, 0x0, 0xc}, r0, 0x3, r1, 0x8) rt_tgsigqueueinfo(r0, r0, 0x34, &(0x7f0000000280)={0x10, 0x3, 0x2}) capset(&(0x7f0000000000)={0x19980330, r0}, &(0x7f0000000040)={0xfffffffb, 0x401, 0x6, 0x3f, 0x3, 0xd725}) r3 = getpid() rt_tgsigqueueinfo(r3, r3, 0x34, &(0x7f0000000280)={0x10, 0x3, 0x2}) perf_event_open(&(0x7f0000000300)={0x0, 0x80, 0x1, 0xff, 0xc1, 0x81, 0x0, 0x80000000, 0x4102, 0x9, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xffffffc6, 0x0, @perf_bp={&(0x7f0000000200), 0x2}, 0x40000, 0x40000000000000, 0x10001, 0x3, 0x6, 0x0, 0x83, 0x0, 0x6, 0x0, 0x2}, r3, 0x4, r2, 0x8) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REQ_SET_REG(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x14, r4, 0x1}, 0x14}}, 0x0) [ 128.518998] capability: warning: `syz-executor.5' uses 32-bit capabilities (legacy support in use) [ 128.559750] Process accounting resumed 20:02:21 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0xfffffffffffffffe}, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x100000) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x2000, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2) fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@dev}, 0x14) getsockname$packet(r2, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000200)=0x14) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f0000000240)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl2\x00', 0x0, 0x4, 0xfe, 0x40, 0x5, 0x32, @ipv4={'\x00', '\xff\xff', @local}, @initdev={0xfe, 0x88, '\x00', 0x2, 0x0}, 0x7, 0x7800, 0x10001}}) socket$inet6_udp(0xa, 0x2, 0x0) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001e00), 0x0, 0x0) lseek(r3, 0x3f, 0x1) perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x7f, 0x30, 0x1, 0x0, 0x1000, 0x30, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x6, 0x1, @perf_bp={&(0x7f0000000380), 0xe}, 0x40000, 0x7ff, 0x5, 0x1, 0x7104, 0x5, 0x6, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0xc, r3, 0xb) socket$nl_audit(0x10, 0x3, 0x9) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@dev={0xfe, 0x80, '\x00', 0xfd}}, 0x14) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) perf_event_open(&(0x7f0000000400)={0x3, 0x80, 0x6, 0x5, 0x1, 0x3f, 0x0, 0x3ff, 0x50000, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3b, 0x1, @perf_config_ext={0x1, 0x7fff}, 0xa8, 0x1, 0x20, 0x0, 0x0, 0x7fffffff, 0x9, 0x0, 0x4, 0x0, 0xdeb}, 0x0, 0x3, 0xffffffffffffffff, 0x3) [ 128.608055] Process accounting resumed [ 128.608555] syz-executor.2 (3767) used greatest stack depth: 23704 bytes left 20:02:21 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000001240)={'\x00', 0x555, 0x0, 0x273}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) acct(&(0x7f0000001200)='./file1\x00') openat(r1, &(0x7f0000000000)='./file1\x00', 0x2, 0x11) pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000540)={@in6={{0xa, 0x4e20, 0xffff, @mcast2, 0x4}}, 0x0, 0x0, 0x15, 0x0, "b25da62d685a38083e45ab1950001ca46105939b4b3d83bd945bed03b30b62897693132cb6e12788b1d58f9b2fff886055bea488ee0e2918a8c961a2684924dfa9841132b1916476e31d06d76d34a918"}, 0xd8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) sendfile(r1, r2, 0x0, 0xffff) openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f00000004c0)={{0x1, 0x1, 0x18}, './file1\x00'}) [ 128.771629] Process accounting resumed [ 129.376408] loop4: detected capacity change from 0 to 264192 [ 129.393927] loop4: detected capacity change from 0 to 264192 VM DIAGNOSIS: 20:02:20 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff84274587 RDX=ffffed100d9e6fd1 RSI=0000000000000004 RDI=ffff88806cf37e80 RBP=ffff88806cf37e80 RSP=ffff88806ce09b28 R8 =0000000000000000 R9 =ffff88806cf37e83 R10=ffffed100d9e6fd0 R11=0000000000000001 R12=0000000000000003 R13=ffffed100d9e6fd0 R14=0000000000000001 R15=1ffff1100d9c1366 RIP=ffffffff84274604 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f30cb7491f0 CR3=000000000dd30000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 ffff000000ff00ff ffffffffffffffff YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000039 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88800fccf690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000039 R11=0000000000000001 R12=0000000000000039 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fa3f7a60700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f19f6129028 CR3=000000003ebc8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fa3fa5d17c0 00007fa3fa5d17c8 YMM02=0000000000000000 0000000000000000 00007fa3fa5d17e0 00007fa3fa5d17c0 YMM03=0000000000000000 0000000000000000 00007fa3fa5d17c8 00007fa3fa5d17c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000