Warning: Permanently added '[localhost]:29035' (ECDSA) to the list of known hosts. 2022/10/01 20:53:34 fuzzer started 2022/10/01 20:53:34 dialing manager at localhost:35095 syzkaller login: [ 46.144017] cgroup: Unknown subsys name 'net' [ 46.217694] cgroup: Unknown subsys name 'rlimit' 2022/10/01 20:53:49 syscalls: 2215 2022/10/01 20:53:49 code coverage: enabled 2022/10/01 20:53:49 comparison tracing: enabled 2022/10/01 20:53:49 extra coverage: enabled 2022/10/01 20:53:49 setuid sandbox: enabled 2022/10/01 20:53:49 namespace sandbox: enabled 2022/10/01 20:53:49 Android sandbox: enabled 2022/10/01 20:53:49 fault injection: enabled 2022/10/01 20:53:49 leak checking: enabled 2022/10/01 20:53:49 net packet injection: enabled 2022/10/01 20:53:49 net device setup: enabled 2022/10/01 20:53:49 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/01 20:53:49 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/01 20:53:49 USB emulation: enabled 2022/10/01 20:53:49 hci packet injection: enabled 2022/10/01 20:53:49 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/01 20:53:49 802.15.4 emulation: enabled 2022/10/01 20:53:49 fetching corpus: 50, signal 21313/23152 (executing program) 2022/10/01 20:53:49 fetching corpus: 100, signal 35352/38768 (executing program) 2022/10/01 20:53:49 fetching corpus: 150, signal 42208/47149 (executing program) 2022/10/01 20:53:49 fetching corpus: 200, signal 48207/54605 (executing program) 2022/10/01 20:53:49 fetching corpus: 250, signal 55145/62887 (executing program) 2022/10/01 20:53:49 fetching corpus: 300, signal 61816/70792 (executing program) 2022/10/01 20:53:49 fetching corpus: 350, signal 68064/78219 (executing program) 2022/10/01 20:53:50 fetching corpus: 400, signal 74843/86075 (executing program) 2022/10/01 20:53:50 fetching corpus: 450, signal 80245/92475 (executing program) 2022/10/01 20:53:50 fetching corpus: 500, signal 82268/95660 (executing program) 2022/10/01 20:53:50 fetching corpus: 550, signal 84497/99046 (executing program) 2022/10/01 20:53:50 fetching corpus: 600, signal 86687/102354 (executing program) 2022/10/01 20:53:50 fetching corpus: 650, signal 90248/106894 (executing program) 2022/10/01 20:53:50 fetching corpus: 700, signal 93585/111108 (executing program) 2022/10/01 20:53:50 fetching corpus: 750, signal 95531/114048 (executing program) 2022/10/01 20:53:50 fetching corpus: 800, signal 97746/117181 (executing program) 2022/10/01 20:53:50 fetching corpus: 850, signal 101067/121276 (executing program) 2022/10/01 20:53:50 fetching corpus: 900, signal 102889/124023 (executing program) 2022/10/01 20:53:51 fetching corpus: 950, signal 104154/126318 (executing program) 2022/10/01 20:53:51 fetching corpus: 1000, signal 106337/129285 (executing program) 2022/10/01 20:53:51 fetching corpus: 1050, signal 109080/132689 (executing program) 2022/10/01 20:53:51 fetching corpus: 1100, signal 111131/135501 (executing program) 2022/10/01 20:53:51 fetching corpus: 1150, signal 113904/138887 (executing program) 2022/10/01 20:53:51 fetching corpus: 1200, signal 116570/142111 (executing program) 2022/10/01 20:53:51 fetching corpus: 1250, signal 118327/144562 (executing program) 2022/10/01 20:53:51 fetching corpus: 1300, signal 119798/146773 (executing program) 2022/10/01 20:53:52 fetching corpus: 1350, signal 120746/148543 (executing program) 2022/10/01 20:53:52 fetching corpus: 1400, signal 122145/150662 (executing program) 2022/10/01 20:53:52 fetching corpus: 1450, signal 123570/152758 (executing program) 2022/10/01 20:53:52 fetching corpus: 1500, signal 125634/155342 (executing program) 2022/10/01 20:53:52 fetching corpus: 1550, signal 129299/159112 (executing program) 2022/10/01 20:53:52 fetching corpus: 1600, signal 130866/161290 (executing program) 2022/10/01 20:53:52 fetching corpus: 1650, signal 132246/163269 (executing program) 2022/10/01 20:53:52 fetching corpus: 1700, signal 134293/165700 (executing program) 2022/10/01 20:53:53 fetching corpus: 1750, signal 135262/167334 (executing program) 2022/10/01 20:53:53 fetching corpus: 1800, signal 136637/169243 (executing program) 2022/10/01 20:53:53 fetching corpus: 1850, signal 137310/170634 (executing program) 2022/10/01 20:53:53 fetching corpus: 1900, signal 138272/172215 (executing program) 2022/10/01 20:53:53 fetching corpus: 1950, signal 139476/174016 (executing program) 2022/10/01 20:53:53 fetching corpus: 2000, signal 140365/175568 (executing program) 2022/10/01 20:53:53 fetching corpus: 2050, signal 141743/177428 (executing program) 2022/10/01 20:53:53 fetching corpus: 2100, signal 142500/178771 (executing program) 2022/10/01 20:53:53 fetching corpus: 2150, signal 143863/180477 (executing program) 2022/10/01 20:53:54 fetching corpus: 2200, signal 145117/182157 (executing program) 2022/10/01 20:53:54 fetching corpus: 2250, signal 145983/183577 (executing program) 2022/10/01 20:53:54 fetching corpus: 2300, signal 148008/185695 (executing program) 2022/10/01 20:53:54 fetching corpus: 2350, signal 148911/187039 (executing program) 2022/10/01 20:53:54 fetching corpus: 2400, signal 150356/188740 (executing program) 2022/10/01 20:53:54 fetching corpus: 2450, signal 151714/190371 (executing program) 2022/10/01 20:53:54 fetching corpus: 2500, signal 152947/191896 (executing program) 2022/10/01 20:53:54 fetching corpus: 2550, signal 154331/193496 (executing program) 2022/10/01 20:53:55 fetching corpus: 2600, signal 155775/195101 (executing program) 2022/10/01 20:53:55 fetching corpus: 2650, signal 156337/196174 (executing program) 2022/10/01 20:53:55 fetching corpus: 2700, signal 158584/198212 (executing program) 2022/10/01 20:53:55 fetching corpus: 2750, signal 159476/199445 (executing program) 2022/10/01 20:53:55 fetching corpus: 2800, signal 160454/200733 (executing program) 2022/10/01 20:53:55 fetching corpus: 2850, signal 161501/202019 (executing program) 2022/10/01 20:53:55 fetching corpus: 2900, signal 162990/203507 (executing program) 2022/10/01 20:53:55 fetching corpus: 2950, signal 163922/204739 (executing program) 2022/10/01 20:53:56 fetching corpus: 3000, signal 165252/206103 (executing program) 2022/10/01 20:53:56 fetching corpus: 3050, signal 166071/207172 (executing program) 2022/10/01 20:53:56 fetching corpus: 3100, signal 167147/208426 (executing program) 2022/10/01 20:53:56 fetching corpus: 3150, signal 168322/209697 (executing program) 2022/10/01 20:53:56 fetching corpus: 3200, signal 169360/210893 (executing program) 2022/10/01 20:53:56 fetching corpus: 3250, signal 170096/211883 (executing program) 2022/10/01 20:53:56 fetching corpus: 3300, signal 171456/213198 (executing program) 2022/10/01 20:53:56 fetching corpus: 3350, signal 172118/214118 (executing program) 2022/10/01 20:53:56 fetching corpus: 3400, signal 173270/215270 (executing program) 2022/10/01 20:53:57 fetching corpus: 3450, signal 173992/216256 (executing program) 2022/10/01 20:53:57 fetching corpus: 3500, signal 174775/217217 (executing program) 2022/10/01 20:53:57 fetching corpus: 3550, signal 175440/218075 (executing program) 2022/10/01 20:53:57 fetching corpus: 3600, signal 176297/219057 (executing program) 2022/10/01 20:53:57 fetching corpus: 3650, signal 177236/220007 (executing program) 2022/10/01 20:53:57 fetching corpus: 3700, signal 177827/220849 (executing program) 2022/10/01 20:53:57 fetching corpus: 3750, signal 179157/222017 (executing program) 2022/10/01 20:53:58 fetching corpus: 3800, signal 180725/223225 (executing program) 2022/10/01 20:53:58 fetching corpus: 3850, signal 181168/223950 (executing program) 2022/10/01 20:53:58 fetching corpus: 3900, signal 181860/224718 (executing program) 2022/10/01 20:53:58 fetching corpus: 3950, signal 182541/225533 (executing program) 2022/10/01 20:53:58 fetching corpus: 4000, signal 183126/226315 (executing program) 2022/10/01 20:53:58 fetching corpus: 4050, signal 183804/227117 (executing program) 2022/10/01 20:53:58 fetching corpus: 4100, signal 184762/228093 (executing program) 2022/10/01 20:53:58 fetching corpus: 4150, signal 185548/228910 (executing program) 2022/10/01 20:53:58 fetching corpus: 4200, signal 186638/229807 (executing program) 2022/10/01 20:53:58 fetching corpus: 4250, signal 187042/230483 (executing program) 2022/10/01 20:53:59 fetching corpus: 4300, signal 187488/231127 (executing program) 2022/10/01 20:53:59 fetching corpus: 4350, signal 188191/231879 (executing program) 2022/10/01 20:53:59 fetching corpus: 4400, signal 188903/232613 (executing program) 2022/10/01 20:53:59 fetching corpus: 4450, signal 189694/233409 (executing program) 2022/10/01 20:53:59 fetching corpus: 4500, signal 190355/234085 (executing program) 2022/10/01 20:53:59 fetching corpus: 4550, signal 190914/234708 (executing program) 2022/10/01 20:53:59 fetching corpus: 4600, signal 191841/235431 (executing program) 2022/10/01 20:53:59 fetching corpus: 4650, signal 192217/236024 (executing program) 2022/10/01 20:53:59 fetching corpus: 4700, signal 192870/236652 (executing program) 2022/10/01 20:53:59 fetching corpus: 4750, signal 193231/237271 (executing program) 2022/10/01 20:54:00 fetching corpus: 4800, signal 193993/237883 (executing program) 2022/10/01 20:54:00 fetching corpus: 4850, signal 194527/238496 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/238992 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/239391 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/239846 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/240304 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/240740 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/241185 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/241642 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/242086 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/242537 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/242978 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/243449 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/243883 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/244331 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/244791 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/245237 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/245683 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/246131 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/246592 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/247020 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/247480 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/247925 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/248362 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/248807 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/249237 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/249668 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/250131 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/250366 (executing program) 2022/10/01 20:54:00 fetching corpus: 4871, signal 194680/250366 (executing program) 2022/10/01 20:54:03 starting 8 fuzzer processes 20:54:03 executing program 0: sendmsg$IPSET_CMD_DEL(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x140, 0xa, 0x6, 0x801, 0x0, 0x0, {0x7, 0x0, 0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_ADT={0x90, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_LINENO={0x8}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x1f}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz2\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @broadcast}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_ETHER={0xa, 0x11, @link_local}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e20}}, {0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @mcast2}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x401}}]}, @IPSET_ATTR_ADT={0x90, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2={0x18, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x40}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e20}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAME={0x9, 0x12, 'syz2\x00'}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz2\x00'}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}}, {0xc, 0x7, 0x0, 0x1, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e20}}, {0x10, 0x7, 0x0, 0x1, @IPSET_ATTR_IP2_TO={0xc, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0xa}}}}]}]}, 0x140}, 0x1, 0x0, 0x0, 0x24014850}, 0x20000004) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, r0, 0x20, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="0dd08070094b"}, @NL80211_ATTR_MAC={0xa, 0x6, @random="926daf73e949"}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x11) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340), 0x103000, 0x0) sendmsg$NL80211_CMD_SET_BEACON(r1, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x20, r0, 0x2, 0x70bd25, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x20, 0x4c}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x44010}, 0x80) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r1, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x60, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x1}, {0x6, 0x16, 0xf3}, {0x5}, {0x6, 0x11, 0x1}, {0x8, 0xb, 0x9}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40080}, 0x80) sendmsg$DEVLINK_CMD_GET(r1, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x6c, 0x0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4c901}, 0x48000) r2 = syz_open_dev$mouse(&(0x7f0000000700), 0x5, 0x80441) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r1) sendmsg$NL80211_CMD_AUTHENTICATE(r2, &(0x7f0000000880)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x4c, r3, 0x800, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8e}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1e8}], @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x6}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1f}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]]}, 0x4c}, 0x1, 0x0, 0x0, 0x20004000}, 0x40800) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x38, 0x0, 0x10, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_MIN_BE={0x5, 0x11, 0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x36a20793df67f825}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0x8}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x1) ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f00000009c0)='ip6erspan0\x00') r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000a40), r2) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000b00)={'ip6tnl0\x00', &(0x7f0000000a80)={'syztnl0\x00', 0x0, 0x2f, 0x0, 0x9, 0x3, 0x11, @private2={0xfc, 0x2, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x10, 0x40, 0x4, 0x3}}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000000c00)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x4c, r4, 0x1, 0x70bd27, 0x25dfdbfc, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4028010}, 0x24044040) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000c40)='net/igmp\x00') ioctl$AUTOFS_IOC_PROTOVER(r1, 0x80049363, &(0x7f0000000c80)) sendmsg$IPCTNL_MSG_CT_GET_DYING(r1, &(0x7f0000000d80)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x14, 0x6, 0x1, 0x101, 0x0, 0x0, {0xb, 0x0, 0x5}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x40040}, 0x4000085) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$BTRFS_IOC_GET_DEV_STATS(r6, 0xc4089434, &(0x7f00000011c0)={0x0, 0x7, 0x1, [0x7, 0x100, 0xce5f, 0xcee, 0x3ff], [0x9, 0x1, 0x1f, 0xfff, 0x3, 0x1000, 0x7, 0xcdfe, 0x800, 0x4e2a, 0x0, 0x8001, 0x6, 0xa49, 0x4, 0x1, 0x1ff, 0x8ba, 0x1, 0x2, 0x8, 0x9, 0x1f, 0x5, 0x8001, 0x400, 0x1, 0x0, 0x3a, 0x6, 0x8f19, 0x6e, 0xffff, 0x3, 0x1, 0x0, 0x5, 0x6, 0xffff, 0x100000000, 0x8, 0x0, 0x9, 0x0, 0x1, 0x3f, 0xfffffffffffffffd, 0x4, 0xffffffffffffff29, 0x100000001, 0x9, 0x4, 0x7f, 0x101, 0x6, 0x5, 0x800, 0x9, 0xffffffff, 0x8000, 0x9, 0x100000001, 0x8, 0x6, 0x0, 0xc709, 0x7f, 0x4, 0x6, 0x2, 0x3, 0xdb, 0x2, 0x40, 0x2, 0x3ff, 0xff, 0x6, 0x5, 0x0, 0x9, 0x260d, 0x101, 0xffff, 0x1, 0x7, 0x0, 0x0, 0x6, 0x35, 0xffffffff, 0x80000001, 0x88, 0x1f, 0x401, 0x9, 0xffffffffffff4838, 0x40, 0x3, 0x6, 0x5, 0x6c3, 0xfffffffffffffff4, 0x3, 0x451, 0xff, 0x2, 0x1, 0xe3, 0x400, 0x1f, 0x1, 0x8, 0x6c8c, 0x3d4102f0, 0x7, 0x3, 0xfffffffffffffffd, 0x8001, 0x2, 0xdcc]}) 20:54:03 executing program 3: ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(0xffffffffffffffff, 0xc0505350, &(0x7f0000000000)={{0x20, 0x3e}, {0x3, 0x7}, 0x1, 0x0, 0x7}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f00000000c0)={0x1, 0x0, 0x3f, 0x1, 0x271, 0x7}) r1 = accept4$inet(r0, 0x0, &(0x7f0000000100), 0x0) fstat(r1, &(0x7f0000000140)) write$binfmt_misc(r1, &(0x7f00000001c0)={'syz1', "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"}, 0xff) accept4$inet(r1, 0x0, &(0x7f00000002c0), 0x0) fchmod(0xffffffffffffffff, 0x20) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0) ioctl$AUTOFS_IOC_READY(r2, 0x9360, 0x8) r3 = fcntl$getown(r2, 0x9) kcmp(0x0, r3, 0x2, r2, r1) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x40, 0x7, 0x6, 0x80, 0x0, 0x5, 0x10, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x6, 0x1, @perf_config_ext={0x8, 0x3}, 0x22, 0xa1a, 0x81, 0x2, 0x79c2, 0x0, 0x8, 0x0, 0x9, 0x0, 0xfe00000}, r3, 0xf, 0xffffffffffffffff, 0xa) r4 = memfd_secret(0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) readlinkat(r4, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=""/73, 0x49) r5 = io_uring_setup(0x40b2, &(0x7f00000004c0)={0x0, 0x4368, 0x1, 0x2, 0x4a}) ioctl$BTRFS_IOC_WAIT_SYNC(r5, 0x40089416, 0x0) r6 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$FIONCLEX(r6, 0x5450) 20:54:03 executing program 2: r0 = openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000040)='io.pressure\x00', 0x2, 0x0) splice(0xffffffffffffffff, &(0x7f0000000000)=0xab1, r0, &(0x7f0000000080)=0x4, 0x0, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x8, 0xa4, 0x0, 0x100}) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x400200, 0x0) ioctl$EVIOCGKEY(r1, 0x80404518, &(0x7f0000000140)=""/208) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x2820c2, 0x0) openat$cgroup_type(r2, &(0x7f0000000280), 0x2, 0x0) r3 = epoll_create(0x6) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) r5 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000300), 0x2, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000340)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000540)}, 0x1) getsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x4) ioctl$EVIOCGMASK(r4, 0x80104592, &(0x7f0000000680)={0x4, 0x9, &(0x7f0000000640)="e10716b736d48cf1de"}) r6 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r6, 0xc400941d, &(0x7f00000006c0)={0x0, 0x7, 0x7, 0x1}) ioctl$TUNSETQUEUE(r4, 0x400454d9, &(0x7f0000000ac0)={'veth1_vlan\x00'}) fcntl$notify(r2, 0x402, 0x23) sendmsg$TIPC_NL_MON_GET(r4, &(0x7f0000001f40)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001f00)={&(0x7f0000000b40)={0x1390, 0x0, 0x20, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3ff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7fff}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0xb030}]}, @TIPC_NLA_LINK={0x5c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_NODE={0x11a4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x3f, 0x3, "ba77be3759aca13f267cdc56048226e26b9b492966d5ddfc097a5733cf05b17ae35ecd57a79294b1a793bc955493f5fb6a90a888a9961a84c22ec2"}, @TIPC_NLA_NODE_ID={0x101, 0x3, "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"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x40}, @TIPC_NLA_NODE_KEY={0x41, 0x4, {'gcm(aes)\x00', 0x19, "cd172c261425da055100a57ac11868941cc7eb84c0e937d0e3"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x1004, 0x3, "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"}]}, @TIPC_NLA_SOCK={0xac, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xffffffe1}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x20}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3d19}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffff34}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7ff}]}, @TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x83}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xd25b}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xffff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xc60}]}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x10}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5bbb76d}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x1390}, 0x1, 0x0, 0x0, 0x30000000}, 0x48040) openat$procfs(0xffffffffffffff9c, &(0x7f0000001f80)='/proc/bus/input/devices\x00', 0x0, 0x0) 20:54:03 executing program 1: r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, r0, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x4000040) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000800)={&(0x7f00000001c0)={0x618, r1, 0x100, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4}}}}, [@NL80211_ATTR_TX_RATES={0x80, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x48, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x26, 0x2, [{0x3, 0x6}, {0x0, 0x8}, {0x0, 0x8}, {0x5}, {0x7, 0x8}, {0x0, 0x3}, {0x6, 0x9}, {0x1, 0x1}, {0x7}, {0x5, 0x4}, {0x5, 0x2}, {0x3, 0x8}, {0x7, 0xa}, {0x5, 0x4}, {0x1, 0xa}, {0x0, 0x5}, {0x5, 0x5}, {0x1, 0x1}, {0x7, 0x6}, {0x3}, {0x5, 0xa}, {0x1, 0x1}, {0x0, 0x7}, {0x1, 0x8}, {0x3, 0x2}, {0x0, 0x4}, {0x3}, {0x4, 0x7}, {0x5, 0x9}, {0x6, 0x5}, {0x6, 0x1}, {0x1, 0x4}, {0x0, 0x2}, {0x1, 0x9}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x20, 0x6, 0xff, 0x8, 0x81, 0x7, 0x1]}}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_5GHZ={0x30, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x12, 0x1, [0x2, 0x36, 0x60, 0x0, 0x18, 0x16, 0x3, 0x30, 0x35, 0x4, 0x6c, 0x3, 0x2, 0x2]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_6GHZ={0x4}]}, @NL80211_ATTR_TX_RATES={0x154, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xa4, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xf, 0x1, [0x6c, 0xc, 0x30, 0x18, 0xb, 0xc, 0x68, 0x12, 0x48, 0x24, 0x30]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x2, 0x3, 0x12, 0x7, 0x6, 0xc, 0x12, 0x16, 0x30, 0x6f, 0x5, 0x2, 0x1b, 0x16, 0x9, 0x60, 0x9, 0x3, 0xb, 0x1, 0x12, 0x8, 0x3, 0x4, 0x48]}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0xb, 0x9, 0x60, 0x30, 0x48, 0xb, 0x12, 0x1465a60f6dc08a56, 0x24, 0x4, 0x16, 0x0, 0x5, 0x6, 0x3, 0x30, 0x48, 0x30, 0x12, 0x4, 0x16, 0x1]}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x2, 0x2}, {0x6, 0x1}, {0x0, 0x9}, {0x1, 0x3}, {0x4, 0x2}, {0x5, 0x9}, {0x7, 0xa}, {0x0, 0x3}, {0x1, 0x4}, {0x1, 0x7}, {0x6, 0x7}, {0x1, 0x5}, {0x3, 0x9}, {0x0, 0x4}, {0x4, 0x9}, {0x2, 0x7}, {0x0, 0x6}, {0x5, 0x3}, {0x5, 0x5}, {0x3, 0x3}, {0x4, 0x7}, {0x7}, {0x3}, {0x2, 0x1}, {0x6, 0x5}, {0x1, 0xa}, {0x7, 0x5}, {0x7, 0x7}, {0x0, 0x8}, {0x2, 0x9}, {0x6, 0x1e}, {0x0, 0x3}, {0x1, 0x6}, {0x4, 0x3}, {0x0, 0x2}, {0x3, 0x6}, {0x3, 0x2}, {0x0, 0xa}, {0x7, 0x9}, {0x7, 0x1}, {0x5, 0x5}, {0x3, 0x9}, {0x7, 0x4}, {0x2, 0x4}, {0x0, 0xa}, {0x5, 0x5}, {0x6, 0x7}, {0x2, 0x7}, {0x0, 0x6}, {0x4, 0x5}, {0x1, 0x4}, {0x1, 0x7}, {0x4, 0x6}, {0x6, 0x9}, {0x7, 0xa}, {0x7, 0x9}, {0x6, 0x2}, {0x3, 0x9}, {0x3, 0x5}, {0x5, 0x9}, {0x3, 0xa}, {0x2}, {0x2, 0x5}, {0x0, 0x8}, {0x4, 0x6}, {0x4, 0x3}, {0x1, 0x5}, {0x2, 0x2}, {0x0, 0x1}, {0x7}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0x38, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x1, 0x0, 0x1, 0x0, 0x80, 0x4, 0x5]}}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x60, 0x36, 0x6, 0x12, 0x1b, 0x3, 0x60, 0x5, 0xb, 0x30, 0x6c, 0x12, 0x9, 0x5, 0x3, 0x48, 0x1b, 0x48, 0x48, 0x30, 0xb, 0x1b, 0x48, 0x5, 0xc, 0x48, 0xc]}]}, @NL80211_BAND_2GHZ={0x34, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x81, 0xd79, 0xbf40, 0x8, 0x3, 0x69, 0x4, 0x7ff]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x3ff, 0xcb, 0x1, 0x5, 0x5, 0x401, 0xfffd]}}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_2GHZ={0x40, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x9, 0x200, 0x9, 0x6, 0x40, 0xd5, 0x1ff]}}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x0, 0xc, 0x2, 0xb, 0x60, 0x60, 0x30, 0xfa859cfd0666e030, 0x24, 0x6, 0xb, 0x16, 0x1, 0x12, 0x12, 0x6, 0x3, 0x1b, 0x12, 0x5, 0x36, 0xb, 0xb, 0x5, 0xb]}]}]}, @NL80211_ATTR_TX_RATES={0x41c, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x44, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0xe, 0x2, [{0x4, 0x3}, {0x2, 0x3}, {0x7, 0x5}, {0x1, 0x6}, {0x2, 0x4}, {0x3, 0x6}, {0x1, 0x9}, {0x6}, {0x5, 0x6}, {0x5, 0x4}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xd9d7, 0x54, 0x39, 0x0, 0x2, 0x20, 0x9, 0xfff]}}, @NL80211_TXRATE_LEGACY={0x12, 0x1, [0x0, 0x30, 0x16, 0x18, 0x0, 0x6, 0x9, 0x4, 0x36, 0x1, 0x12, 0xc, 0x18, 0x4]}]}, @NL80211_BAND_6GHZ={0x11c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x27, 0x2, [{0x3, 0x9}, {0x3, 0x6}, {0x7, 0x3}, {0x7, 0x7}, {0x0, 0x6}, {0x1, 0x4}, {0x1, 0x4}, {0x7, 0x5}, {0x2, 0xa}, {0x2}, {0x4, 0x9}, {0x4, 0x7}, {0x0, 0x7}, {0x3, 0x3}, {0x5, 0x3}, {0x1, 0x2}, {0x4, 0x5}, {0x3, 0x1}, {0x5, 0x2}, {0x4}, {0x1, 0x9}, {0x7, 0xa}, {0x3, 0x2}, {0x2, 0x7}, {0x7, 0x8}, {0x6, 0x4}, {0x6, 0xa}, {0x7, 0x1}, {0x3}, {0x3, 0x2}, {0x1, 0x3}, {0x4, 0x7}, {0x1, 0x6}, {0x7, 0xa}, {0x7, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xb0, 0x2, 0x8, 0x5, 0xd3, 0x1, 0x8, 0x1]}}, @NL80211_TXRATE_HT={0x28, 0x2, [{0x6, 0x2}, {0x0, 0x5}, {0x1, 0x7}, {0x0, 0x6}, {0x1, 0x6}, {0x5, 0x3}, {0x0, 0x3}, {0x4, 0x7}, {0x1, 0x5}, {0x4, 0x1}, {0x0, 0x5}, {0x6, 0x4}, {0x5, 0x7}, {0x2, 0x1}, {0x1, 0x8}, {0x0, 0x7}, {0x4, 0x3}, {0x0, 0x3}, {0x1, 0x7}, {0x4, 0x7}, {0x6, 0x6}, {}, {0x0, 0x6}, {0x0, 0x1}, {0x1, 0x2}, {0x4, 0x7}, {0x1, 0x8}, {0x2, 0x4}, {0x6, 0x6}, {0x3, 0x1}, {0x7, 0x7}, {0x5, 0x6}, {0x1, 0x5}, {0x1}, {0x7, 0x3}, {0x7, 0x9}]}, @NL80211_TXRATE_HT={0x47, 0x2, [{0x4, 0x4}, {0x2, 0x2}, {0x0, 0x9}, {0x3, 0x5}, {0x6, 0x9}, {0x1, 0x7}, {0x4, 0x6}, {0x1, 0x8}, {0x0, 0x2}, {0x6, 0x7}, {0x1, 0x1}, {0x6}, {0x6, 0x6}, {0x1, 0x6}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x2}, {0x7, 0x3}, {0x3, 0x8}, {0x6, 0xa}, {0x1, 0xa}, {0x1, 0x8}, {0x6, 0x6}, {0x4, 0x8}, {0x1, 0x3}, {0x0, 0x9}, {0x1, 0xa}, {0x5, 0x3}, {0x0, 0x9}, {0x3, 0x4}, {0x4, 0x7}, {0x6, 0x6}, {0x3, 0x7}, {}, {0x0, 0x9}, {0x7, 0x8}, {0x0, 0x8}, {0x2, 0x7}, {0x1, 0x4}, {0x4, 0x4}, {0x6, 0x3}, {0x0, 0x7}, {0x7, 0x7}, {0x6, 0x2}, {0x0, 0x9}, {0x2, 0x3}, {0x7}, {0x3, 0x7}, {0x0, 0x5}, {0x2, 0xa}, {0x2, 0x5}, {0x1, 0x8}, {0x7, 0x2}, {0x0, 0x8}, {0x6, 0x2}, {0x5, 0x1}, {0x1, 0x8}, {0x1}, {0x0, 0x7}, {0x4, 0x3}, {0x0, 0xa}, {0x6, 0x2}, {0x1, 0x1f}, {0x2, 0xa}, {0x2, 0x8}, {0x0, 0xa}, {0x1, 0x4}]}, @NL80211_TXRATE_HT={0x4e, 0x2, [{0x1, 0x8}, {0x6, 0x8}, {0x4, 0x3}, {0x3}, {0x4, 0x4}, {0x1, 0x4}, {0x4, 0x5}, {0x7, 0x3}, {0x0, 0x5}, {0x7, 0x1}, {0x3, 0x2}, {0x0, 0xa}, {0x2, 0xa}, {0x0, 0x9}, {0x4, 0x9}, {0x1, 0x4}, {0x6, 0x7}, {0x3, 0x2}, {0x1, 0x1}, {0x5, 0x9}, {0x1}, {0x2}, {0x1, 0x1}, {0x6, 0x9}, {0x1, 0x5}, {0x4, 0x3}, {0x2, 0xa}, {0x1, 0x5}, {0x6}, {0x6, 0x6}, {0x0, 0x1}, {0x4, 0xa}, {0x1, 0x7}, {0x5, 0x5}, {0x7, 0x4}, {0x5, 0xa}, {0x4}, {0x6, 0x8}, {0x1, 0x2}, {0x4, 0x3}, {0x0, 0x4}, {0x6, 0x1}, {0x1, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x2, 0x4}, {0x5, 0x5}, {0x7, 0x8}, {0x1, 0x5}, {0x0, 0x9}, {0x3, 0x2}, {0x3, 0x6}, {0x3, 0x4}, {0x2, 0x4}, {0x0, 0x7}, {0x4, 0x6}, {0x0, 0x8}, {0x7, 0x2}, {0x6, 0x1}, {0x7, 0x9}, {0x2, 0x4}, {0x4, 0x1}, {0x1, 0x3}, {0x5, 0x2}, {0x5, 0x5}, {0x1, 0x2}, {0x5, 0x8}, {0x0, 0x7}, {0x5, 0x6}, {0x4, 0x5}, {0x2, 0x6}, {0x0, 0x6}, {0x7, 0x3}, {0x0, 0xa}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xfff, 0x2, 0x1000, 0x4, 0x9, 0x0, 0x9, 0x8]}}]}, @NL80211_BAND_2GHZ={0x50, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x3b, 0x2, [{0x7, 0x6}, {0x4, 0x2}, {0x1}, {0x1, 0x9}, {0x4, 0x5}, {0x5}, {0x1, 0x6}, {0x3, 0x2}, {0x0, 0x9}, {0x3, 0x9}, {0x7, 0x3}, {0x5, 0x6}, {0x7, 0xa}, {0x7, 0x9}, {0x6, 0x5}, {0x1, 0x3}, {0x0, 0x7}, {0x1, 0x7}, {0x2, 0x7}, {0x3}, {0x6, 0x3}, {0x2}, {0x7, 0x8}, {0x7}, {0x1, 0x9}, {0x1, 0x1}, {0x1, 0xa}, {0x6, 0x7}, {0x6, 0x2}, {0x3, 0x9}, {0x2, 0x2}, {0x5, 0x7}, {0x0, 0x1}, {0x2, 0x4}, {0x4, 0x2}, {0x4, 0x5}, {0x3, 0xe}, {0x0, 0x2}, {0x0, 0x8}, {0x6, 0x3}, {0x7, 0x5}, {0x0, 0x5}, {0x1, 0x5}, {0x6, 0x4}, {0x2, 0x6}, {0x6, 0x4}, {0x7, 0x4}, {0x5, 0xa}, {0x4, 0xa}, {0x0, 0x6}, {0x3, 0x8}, {0x0, 0x8}, {0x0, 0x3}, {0x6, 0x8}, {0x0, 0x7}]}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_2GHZ={0xd4, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x60, 0x0, 0x1b, 0x36, 0xc, 0x1, 0x4, 0x48, 0x1b, 0x1, 0x17, 0x8742e0b497a02ce9, 0xb, 0x24, 0x1b, 0x33]}, @NL80211_TXRATE_HT={0xd, 0x2, [{0x6, 0x7}, {0x3, 0x5}, {0x2, 0x9}, {0x2, 0x4}, {0x2, 0x9}, {0x5}, {0x5, 0xa}, {0x0, 0x3}, {0x4, 0x9}]}, @NL80211_TXRATE_HT={0x1d, 0x2, [{0x1, 0x7}, {0x6, 0x9}, {0x6, 0x4}, {0x2, 0x9}, {0x2, 0x3}, {0x2, 0x4}, {}, {0x0, 0x8}, {0x0, 0x7}, {0x7, 0x8}, {0x2, 0x6}, {0x1, 0x9}, {0x5, 0x5}, {0x5, 0x9}, {0x6, 0x2}, {0x6, 0x5}, {0x0, 0x9}, {0x5, 0xa}, {0x0, 0x8}, {0x2, 0x8}, {0x6, 0x9}, {0x1, 0x9}, {0x4, 0x9}, {0x0, 0x6}, {0x4, 0x1}]}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x60, 0x49, 0x12, 0x5, 0x9, 0x60, 0x9, 0x24, 0x5, 0x24, 0x1, 0x0, 0x6, 0x60, 0x6c, 0x36, 0x18, 0x30, 0x0]}, @NL80211_TXRATE_HT={0x3e, 0x2, [{0x4}, {0x7, 0x4}, {0x5}, {0x0, 0x8}, {0x4, 0x8}, {0x7, 0x6}, {0x1}, {0x6, 0x6}, {0x6, 0x6}, {0x1, 0x7}, {0x0, 0x4}, {0x0, 0x6}, {0x1, 0x9}, {0x2, 0x3}, {0x2, 0xa}, {0x4, 0x4}, {0x6, 0x6}, {0x3, 0x7}, {0x3, 0xa}, {0x4, 0x2}, {0x1, 0xa}, {0x0, 0x1}, {0x0, 0x9}, {0x4, 0x6}, {0x1, 0x7}, {0x5, 0x6}, {0x2, 0x9}, {0x5, 0xa}, {0x2, 0x2}, {0x6, 0x9}, {0x6, 0x5}, {0x0, 0x8}, {0x3, 0x7}, {0x3, 0x8}, {0x3, 0x1}, {0x6, 0x9}, {0x4, 0x7}, {0x3}, {0x0, 0x9}, {0x6, 0x3}, {0x7}, {0x0, 0xa}, {0x0, 0xf}, {0x0, 0xa}, {0x0, 0x8}, {0x7, 0x9}, {0x3, 0xa}, {0x1, 0x8}, {0x1, 0x6}, {0x6}, {0x1, 0x1}, {0x4, 0x5}, {0x1, 0x1}, {0x0, 0x6}, {0x3, 0x9}, {0x0, 0x3}, {0x7, 0x6}, {0x3, 0x9}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1f, 0x7de2, 0x7d70, 0x9777, 0x8, 0xffff, 0x4, 0x7]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_2GHZ={0x68, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x2, 0x200, 0x800, 0x400, 0xb84, 0x43, 0xff7f]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x5, 0x3}, {0x1, 0x4}, {0x3, 0x3}, {0x2, 0x3}, {0x4, 0x1}, {0x4, 0x3}, {0x4, 0x4}, {0x7, 0x6}, {0x2, 0x5}, {0x4, 0x8}, {0x0, 0x1}, {0x1}, {}, {0x7, 0x6}, {0x2, 0x5}, {0x5, 0x6}, {0x0, 0x7}, {0x3, 0xa}, {0x3, 0x1}, {0x1, 0x6}, {0x7, 0x8}, {0x2, 0x9}, {0x1, 0x1}, {0x2, 0xa}, {0x1, 0x8}, {0x3, 0x2}, {0x1, 0x9}, {0x0, 0x3}, {0x4, 0x5}, {0x5, 0x7}, {0x1, 0x6}, {0x3, 0x9}, {0x4, 0x8}, {0x5}, {0x6, 0x3}, {0x0, 0x9}, {0x0, 0x5}, {0x1}, {0x4, 0x6}, {0x5, 0x4}, {0x3, 0x5}, {0x0, 0xa}, {0x0, 0x2}, {0x1}, {0x5, 0x2}, {0x1, 0x3}, {0x4, 0x5}, {0x7, 0x4}, {0x7, 0x3}, {0x1, 0x1}, {0x0, 0x9}, {0x3, 0x4}, {0x0, 0x6}, {0x1, 0x4}, {0x0, 0x2}, {0x6, 0x1}, {0x2, 0x6}, {0x0, 0x8}, {0x2, 0x5}, {0x4}, {0x2}, {0x7, 0x6}, {0x6, 0x4}, {0x2, 0xa}, {0x1, 0xa}]}]}, @NL80211_BAND_2GHZ={0x9c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x2a, 0x1, 0x24, 0x30, 0x5a, 0x18, 0x24, 0x5, 0x30, 0xc, 0x9, 0x18, 0x9, 0x4, 0x36, 0xb, 0x5, 0xc, 0x30, 0x3, 0xc, 0x3, 0x9, 0xb, 0x48, 0xc]}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0xc, 0x30, 0x18, 0xc, 0x5, 0x1b, 0x2, 0x30, 0x3, 0x3, 0x2, 0x1, 0x48, 0x24, 0x48]}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x12, 0x16, 0x36, 0x0, 0x24, 0x3, 0x48, 0x5, 0xc, 0xc, 0x0, 0x6, 0x1, 0x18, 0x18, 0x1]}, @NL80211_TXRATE_HT={0x23, 0x2, [{0x0, 0x4}, {0x2, 0x2}, {0x0, 0x6}, {0x0, 0x5}, {0x1, 0x8}, {0x1, 0x2}, {0x2, 0x4}, {0x2, 0x1}, {0x5, 0x4}, {0x2, 0x5}, {0x0, 0x4}, {0x7, 0x7}, {0x4, 0x8}, {0x0, 0x5}, {0x4, 0x5}, {0x1}, {0x5, 0xa}, {0x7, 0x7}, {0x5}, {0x7, 0x7}, {0x3, 0x7}, {0x2, 0x2}, {0x0, 0x5}, {0x6, 0x5}, {0x0, 0x7}, {0x1, 0x5}, {0x2}, {0x7, 0xa}, {0x4, 0x5}, {0x6, 0x4}, {0x1, 0x3}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xd9, 0x1, 0x1, 0xec, 0x4, 0x0, 0x6, 0x100]}}]}, @NL80211_BAND_2GHZ={0x90, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4a, 0x2, [{0x1, 0x8}, {0x0, 0x6}, {0x7, 0x7}, {0x5, 0x9}, {0x1, 0x5}, {0x5, 0x4}, {0x1, 0x4}, {0x6, 0x1}, {0x2, 0xa}, {}, {0x5, 0x9}, {0x1, 0x9}, {0x7, 0x4}, {0x3, 0x4}, {0x3, 0x4}, {0x2, 0x4}, {0x0, 0x3}, {0x0, 0x3}, {0x1, 0x8}, {0x7, 0x1}, {0x5, 0x6}, {0x4, 0x1}, {0x0, 0x4}, {0x1, 0x5}, {0x7, 0x6}, {0x7, 0x9}, {0x3, 0x4}, {0x0, 0x7}, {0x5, 0x8}, {0x6, 0x5}, {0x5, 0x7}, {0x1, 0x1}, {0x6, 0x2}, {0x0, 0x7}, {0x0, 0xa}, {0x2, 0x7}, {0x0, 0x3}, {0x3, 0xa}, {0x1, 0x8}, {}, {0x4, 0x6}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x9}, {0x1, 0xa}, {0x4, 0x8}, {0x7, 0x9}, {0x3, 0x9}, {0x7, 0x6}, {0x2, 0x8}, {0x0, 0x1}, {0x7, 0x3}, {0x2}, {0x3, 0x6}, {0x6, 0x1}, {0x5, 0x4}, {0x4, 0x2}, {0x6, 0x8}, {0x7, 0xa}, {0x1, 0x8}, {0x4, 0x2}, {0x0, 0x9}, {0x0, 0x4}, {0x3, 0x1}, {0x7, 0x1}, {}, {0x6, 0x3}, {0x3, 0x1}, {0x3, 0x5}, {0x0, 0x3}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x14, 0x2, [{0x2, 0x4}, {0x0, 0x3}, {0x3, 0x9}, {0x2}, {0x1, 0x6}, {0x4, 0x1}, {0x5}, {0x2, 0x5}, {0x7, 0x1}, {0x0, 0xa}, {0x4, 0x4}, {}, {0x4, 0x2}, {0x6, 0x2}, {0x6, 0x2}, {0x0, 0x8}]}, @NL80211_TXRATE_LEGACY={0x19, 0x1, [0x2, 0xb, 0x4, 0x12, 0x1, 0x6, 0x16, 0x0, 0x3, 0x48, 0xc, 0xc, 0x77, 0x5, 0x6c, 0x5, 0xc, 0x18, 0x1b, 0xc, 0x24]}]}]}]}, 0x618}, 0x1, 0x0, 0x0, 0x85}, 0x480f0) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000940)={&(0x7f00000008c0)={0x44, r1, 0x800, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xc, 0xcd, [0x0, 0x401, 0x5, 0xfa]}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004}, 0x2401c007) sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000b00)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a00)={0xac, 0x0, 0x200, 0x70bd29, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x2}}]}, 0xac}, 0x1, 0x0, 0x0, 0x14}, 0x4000800) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r2, &(0x7f0000000c00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x14, 0x0, 0x1, 0x70bd26, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000c40), r3) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000cc0), r2) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000d80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x2c, r5, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x40) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000e00)={0xffffffffffffffff}) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000e40)='/proc/partitions\x00', 0x0, 0x0) r9 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000e80)='cgroup.stat\x00', 0x0, 0x0) sendmsg$NBD_CMD_DISCONNECT(r6, &(0x7f0000000fc0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000ec0)={0xb8, 0x0, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_SOCKETS={0x24, 0x7, 0x0, 0x1, [{0x8, 0x1, r7}, {0x8, 0x1, r8}, {0x8, 0x1, r9}, {0x8}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x10000}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x91}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SOCKETS={0x34, 0x7, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x101}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6}]}, 0xb8}, 0x1, 0x0, 0x0, 0x8040041}, 0x40000) sendmsg$IEEE802154_ADD_IFACE(r6, &(0x7f0000001100)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000010c0)={&(0x7f0000001040)={0x54, r4, 0x1, 0x70bd25, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x4004000}, 0x8010) sendmsg$TIPC_NL_MEDIA_SET(r8, &(0x7f0000001540)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001500)={&(0x7f0000001180)={0x348, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x55, @private2, 0x5}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0xffff8000, @private0, 0x3}}}}]}, @TIPC_NLA_SOCK={0x50, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x9}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}, @TIPC_NLA_SOCK_ADDR={0x8}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4e13}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8000}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x7fff}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3}]}, @TIPC_NLA_NODE={0x4}, @TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}]}, @TIPC_NLA_BEARER={0x3c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x3, @dev={0xfe, 0x80, '\x00', 0x44}, 0x1000}}, {0x14, 0x2, @in={0x2, 0x4e24, @private=0xa010101}}}}]}, @TIPC_NLA_SOCK={0x68, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x80000001}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xffffffff}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x8}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xa3d}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x9}]}, @TIPC_NLA_BEARER={0x74, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'erspan0\x00'}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x323}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x34}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x9, @empty}}, {0x14, 0x2, @in={0x2, 0x4e20, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0x10, 0x1, @l2={'eth', 0x3a, 'syz_tun\x00'}}]}, @TIPC_NLA_MEDIA={0xac, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xff}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_LINK={0xa0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x81}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x142c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6d18}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x200}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}]}, 0x348}, 0x1, 0x0, 0x0, 0x800}, 0x20000010) [ 74.710429] audit: type=1400 audit(1664657643.382:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 20:54:03 executing program 4: bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c) r0 = accept4$inet6(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=0x1c, 0xc00) clone3(&(0x7f0000000440)={0x0, &(0x7f0000000180), &(0x7f00000001c0)=0x0, &(0x7f0000000200), {0x40}, &(0x7f0000000240)=""/189, 0xbd, &(0x7f0000000300)=""/217, &(0x7f0000000400)=[0x0, 0xffffffffffffffff], 0x2}, 0x58) r2 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x3, 0x6, 0x81, 0x0, 0x3cb, 0x42888, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={&(0x7f00000000c0), 0xf}, 0x40120, 0x0, 0x9, 0x3, 0x7, 0x20, 0x20, 0x0, 0x4, 0x0, 0x1}, r1, 0x5, 0xffffffffffffffff, 0x2) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000004c0)={@dev={0xfe, 0x80, '\x00', 0x2b}, 0x31}) r3 = perf_event_open(&(0x7f0000000540)={0x4, 0x80, 0x1, 0x7, 0x7, 0x6, 0x0, 0x8, 0xd0013, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x401, 0x0, @perf_bp={&(0x7f0000000500), 0x3}, 0x8400, 0xbda6, 0x3fb, 0x8, 0x2, 0x8f, 0x6, 0x0, 0x20, 0x0, 0x5a1}, 0x0, 0x1, r2, 0xb) r4 = fork() perf_event_open(&(0x7f00000005c0)={0x0, 0x80, 0x9, 0xff, 0x4, 0x1, 0x0, 0x3, 0x80002, 0x9, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x200, 0x81}, 0x34, 0x9, 0x7f, 0x7, 0x4, 0x800, 0x401, 0x0, 0x1, 0x0, 0xcd}, r4, 0x0, 0xffffffffffffffff, 0xe9d2f089738ed93a) r5 = fcntl$getown(r3, 0x9) ptrace$peeksig(0x4209, r5, &(0x7f0000000a00)={0x5, 0x1, 0x7}, &(0x7f0000000a40)=[{}, {}, {}, {}, {}, {}, {}]) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000dc0)='/proc/consoles\x00', 0x0, 0x0) ioctl$int_in(r6, 0x5452, &(0x7f0000000e00)=0x2) r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000e40)='/sys/kernel/iommu_groups', 0x40800, 0x1f8) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f0000000e80)={{{@in=@dev, @in6=@private2}}, {{@in=@broadcast}}}, &(0x7f0000000f80)=0xe8) perf_event_open(&(0x7f0000001000)={0x2, 0x80, 0x5, 0x1, 0x7f, 0x80, 0x0, 0x10001, 0x8, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x0, @perf_bp={&(0x7f0000000fc0), 0x8}, 0x40, 0x8001, 0x7, 0x2, 0x16ea80000, 0x0, 0x1, 0x0, 0xfff, 0x0, 0x6}, r4, 0x8, r2, 0x5ab712aa363714d8) ioctl$BTRFS_IOC_QGROUP_CREATE(r7, 0x4010942a, &(0x7f0000001080)={0x0, 0x2}) ioctl$BLKALIGNOFF(r7, 0x127a, &(0x7f00000010c0)) r8 = syz_open_dev$usbmon(&(0x7f0000001100), 0xc000000000000000, 0x452000) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r8, 0x8010671f, &(0x7f0000001200)={&(0x7f0000001140)=""/181, 0xb5}) bind$inet6(0xffffffffffffffff, &(0x7f0000001280)={0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x101}, 0x1c) 20:54:03 executing program 5: getresuid(&(0x7f0000000000), &(0x7f0000000040)=0x0, &(0x7f0000000080)) r1 = shmget(0x2, 0x4000, 0x40, &(0x7f0000ffb000/0x4000)=nil) statx(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1000, 0x7d9, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = getuid() r4 = getpgrp(0xffffffffffffffff) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000280)=0x0) shmctl$IPC_SET(r1, 0x1, &(0x7f00000002c0)={{0x1, r0, r2, r3, 0x0, 0x40, 0x6}, 0x91b1, 0x1, 0x7ff, 0x9, r4, r5, 0x3}) shmctl$IPC_INFO(r1, 0x3, &(0x7f0000000340)=""/230) shmctl$IPC_RMID(r1, 0x0) shmctl$IPC_RMID(r1, 0x0) shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x7000) shmat(r1, &(0x7f0000ffc000/0x4000)=nil, 0x1000) setuid(0x0) shmctl$IPC_RMID(r1, 0x0) shmat(r1, &(0x7f0000ffa000/0x3000)=nil, 0x2000) statx(0xffffffffffffffff, &(0x7f0000000440)='./file1\x00', 0x400, 0x80, &(0x7f0000000480)) shmctl$IPC_RMID(r1, 0x0) r6 = getpgrp(r5) ptrace$peek(0x2, r6, &(0x7f0000000580)) perf_event_open(&(0x7f0000000600)={0x1, 0x80, 0x3, 0xff, 0x2, 0x1f, 0x0, 0x100000000, 0x161009, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6551c1ab, 0x1, @perf_bp={&(0x7f00000005c0), 0xa}, 0x0, 0x7, 0x1, 0x0, 0x2000000, 0x70b, 0x0, 0x0, 0x3, 0x0, 0x2}, r5, 0x9, 0xffffffffffffffff, 0x1) 20:54:03 executing program 7: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x1}}, './file0\x00'}) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, 0x0, 0x20, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x8084}, 0xc815) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180), r0) sendmsg$IPVS_CMD_SET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x74, r1, 0x100, 0x2, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7ff}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x3c}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x8af4}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000000}, 0x4008004) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/consoles\x00', 0x0, 0x0) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000340), r0) sendmsg$DEVLINK_CMD_RATE_SET(r2, &(0x7f0000000540)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000500)={&(0x7f0000000380)={0x164, r3, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xf, 0xa9, @name2}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe0, 0xa8, @random="38fcce6ad2eb55804f9929225edd94643bcd37aa5030c12a71265e2230f5b6b51c49b4740d4257e426843a0e79ee3453a4dd589ad41535b2023c64f271fae149b1b840f18c58c2f3a03dac5056070d54c4b8e3cfd8635bd1c37a7f228553a3a9b6846caace56c718d0f1b2e1444ce1fe1ded8d8eea0259c47a1fb9200caf3d7d1680154bc5e3a7b8ca2fe376d50e310d01c5ed186c34186579b4d731670491ad4e45ce8f1cfd0db9042fd4041459f308f2a6428863d7fed69526ed71a3a7c7c7a3d919f9758a7999709b73b9772bcfab4e574b44f42c8583fccd957f"}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x7}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_TX_MAX={0xc, 0xa7, 0x8}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x2}]}, 0x164}, 0x1, 0x0, 0x0, 0x4008095}, 0x240000c0) close_range(r2, r0, 0x2) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r0, &(0x7f0000000680)={&(0x7f0000000580), 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x54, 0x0, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x80000000}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x3ca}]}, 0x54}}, 0x4000800) r4 = signalfd(0xffffffffffffffff, &(0x7f0000000f00)={[0x8]}, 0x8) sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000001000)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f80)={0x24, 0x0, 0x400, 0x70bd2a, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0xa42e}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40011}, 0x1) r5 = accept(r2, &(0x7f0000001ac0)=@rc={0x1f, @fixed}, &(0x7f0000001b40)=0x80) sendmsg$BATADV_CMD_GET_NEIGHBORS(r5, &(0x7f0000001c80)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001c40)={&(0x7f0000001bc0)={0x44, 0x0, 0x800, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x800}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x8}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xff}]}, 0x44}, 0x1, 0x0, 0x0, 0x200410a4}, 0x10) r6 = syz_mount_image$vfat(&(0x7f0000001cc0), &(0x7f0000001d00)='./file0\x00', 0x2, 0x0, &(0x7f0000001d40), 0x1, &(0x7f0000001d80)={[{@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'cp950'}}, {@utf8no}, {@numtail}], [{@smackfsfloor={'smackfsfloor', 0x3d, '\'^`!$'}}, {@smackfsdef={'smackfsdef', 0x3d, 'netdevsim'}}, {@uid_gt={'uid>', 0xee00}}, {@smackfshat={'smackfshat', 0x3d, 'devlink\x00'}}, {@fowner_eq={'fowner', 0x3d, 0xee01}}, {@fsname={'fsname', 0x3d, 'M-]*'}}, {@dont_appraise}, {@context={'context', 0x3d, 'root'}}, {@obj_user={'obj_user', 0x3d, 'netdevsim'}}]}) r7 = openat(r6, &(0x7f0000001e80)='./file0\x00', 0x404040, 0x50) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001f00), r7) sendmsg$NL80211_CMD_LEAVE_IBSS(r4, &(0x7f0000001fc0)={&(0x7f0000001ec0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001f80)={&(0x7f0000001f40)={0x20, r8, 0x800, 0x70bd29, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x1a9b, 0x7b}}}}, ["", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x24040000}, 0x1c) r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002000)='/proc/asound/timers\x00', 0x0, 0x0) sendmsg$NL80211_CMD_DEAUTHENTICATE(r9, &(0x7f0000002100)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000020c0)={&(0x7f0000002080)={0x2c, r8, 0x4, 0x70bd29, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0xf0e9, 0x45}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040005}, 0x4040805) sendmsg$IEEE802154_LLSEC_DEL_DEV(0xffffffffffffffff, &(0x7f0000002280)={&(0x7f0000002140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002240)={&(0x7f00000021c0)={0x58, 0x0, 0x800, 0x70bd2c, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xfffffffffffe0006}}]}, 0x58}, 0x1, 0x0, 0x0, 0x8084}, 0x4000) 20:54:03 executing program 6: ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000040)={0x0, 0xff, 0x0, [0x100, 0x800, 0x1, 0x8, 0x1ff], [0x2, 0x80000001, 0x7fff, 0x0, 0x2c3, 0x1, 0xd580, 0x7fff, 0x4, 0xb9, 0x3, 0x1, 0x0, 0x100000001, 0x9, 0x3, 0x6, 0x1, 0x2, 0x245, 0x9, 0x7, 0xb, 0x2, 0x200, 0x2, 0x7f, 0xf1, 0x7, 0x8, 0x3d35, 0x2, 0x5, 0xe4, 0x7, 0x1f, 0x3, 0x5, 0xd6b, 0x3, 0x9, 0x6, 0x69df, 0x9, 0xffffffffef7d4d37, 0x7fffffff, 0x4, 0x1, 0x6, 0x4, 0x9, 0x7c78, 0xff, 0x4, 0x5, 0x7fffffff, 0x5, 0xfff, 0x4, 0xfff, 0x80, 0x4, 0x6, 0x20, 0xffffffff, 0x8, 0x1, 0x2, 0x100000000, 0x2, 0x100000000, 0x3, 0xd7, 0x8, 0x1, 0x80, 0x4, 0xfffffffffffff000, 0xfffffffffffffffa, 0x2, 0x8, 0x3346, 0x2, 0x1, 0x7fffffff, 0xffffffffffffffe5, 0xd79, 0x2, 0xfffffffffffff8c0, 0x3, 0x0, 0x7f, 0x0, 0x22518c92, 0x6, 0x3, 0x36, 0x4, 0x4, 0x1c0000, 0x0, 0x1, 0x1ff, 0x10001, 0x10001, 0x6, 0x800, 0x0, 0x8, 0xfffffffffffffffa, 0x8, 0x7fffffff, 0x1, 0x6, 0x7, 0x5, 0x4278, 0x6, 0x1, 0x5, 0xffffffff]}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000000480)={0x4, 0x6, {0x4, @struct={0x80000001, 0x2}, 0x0, 0x3, 0x6, 0x40, 0x9, 0xc1, 0x10, @usage=0x5, 0x5, 0x5, [0x6, 0x81, 0x400, 0x100, 0x2, 0x49e7c1c2]}, {0x0, @struct={0x4ee, 0x9}, 0x0, 0x7ff, 0x0, 0x8, 0x5, 0x8, 0x4, @struct={0x3, 0x56f}, 0x28a, 0x5, [0x2, 0x3, 0x0, 0x240000000000, 0x100000000, 0x9]}, {0x34c2, @usage=0x265, 0x0, 0x12000000000000, 0x9, 0x7ff, 0x25d74f1c, 0xfffffffffffffffe, 0x8, @usage=0x3, 0xfff, 0x67, [0x7, 0x9, 0x7fff, 0xfc1, 0x7, 0x80]}, {0x3, 0x7ff, 0x6}}) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000000880)={0x1b, 0x3, {0xfffffffffffffffa, @usage=0x2, r2, 0x5, 0x5c, 0x9, 0xfff, 0x6, 0x0, @struct={0x3, 0xffffffff}, 0x7, 0x3ff, [0x800, 0x4, 0x9, 0x1, 0x400]}, {0x8, @struct={0x3, 0x9}, 0x0, 0x2, 0x9, 0x7, 0x100000001, 0x1, 0x89, @usage=0x3, 0x8, 0x5, [0x1f, 0x80000000, 0x4, 0x535c, 0x5, 0x3]}, {0x9, @usage=0x7, r3, 0x2, 0x9, 0x7fffffff, 0xff, 0x2, 0x48, @struct={0x6, 0xbe99}, 0x3, 0x80000, [0xffffffff, 0x2, 0x3, 0x7ff, 0xca, 0x9]}, {0x1, 0x9, 0x1}}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000c80)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000cc0)={0x0, 0xfb01}) ioctl$AUTOFS_IOC_READY(r4, 0x9360, 0x7f) r5 = creat(&(0x7f0000001cc0)='./file1\x00', 0x10) openat(r5, &(0x7f0000001d00)='./file0\x00', 0x200600, 0x50) r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000001d40)='./file0\x00', 0x80000, 0x81) fsync(r6) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000001d80)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee00, 0xffffffffffffffff}}, './file1\x00'}) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r7, 0x40106614, &(0x7f0000001dc0)) stat(&(0x7f0000001e00)='./file0\x00', &(0x7f0000001e40)) setsockopt$bt_hci_HCI_DATA_DIR(r5, 0x0, 0x1, &(0x7f0000001ec0)=0x7fff, 0x4) ioctl$FS_IOC_GETFLAGS(r7, 0x80086601, &(0x7f0000001f00)) r8 = open$dir(&(0x7f0000001f40)='./file0\x00', 0x40000, 0x10) openat(r8, &(0x7f0000001f80)='./file0\x00', 0x218000, 0x108) ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000001fc0)=0x2000000) utimensat(r4, &(0x7f0000002000)='./file0\x00', &(0x7f0000002040)={{0x0, 0xea60}}, 0x0) [ 76.047158] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.049982] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.052488] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.057434] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.061494] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 76.064587] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.070748] Bluetooth: hci0: HCI_REQ-0x0c1a [ 76.099221] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.101387] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.102824] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.105614] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.107294] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 76.108679] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.114137] Bluetooth: hci2: HCI_REQ-0x0c1a [ 76.146507] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.164106] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 76.165290] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 76.166092] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 76.167820] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 76.169322] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 76.170311] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 76.171083] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 76.172110] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 76.172871] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 76.173648] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.174291] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.175929] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.176509] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.178919] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 76.180006] Bluetooth: hci5: HCI_REQ-0x0c1a [ 76.180675] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.185384] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.191288] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.191683] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 76.193478] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.194056] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 76.195927] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 76.197024] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 76.197931] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.199550] Bluetooth: hci1: HCI_REQ-0x0c1a [ 76.200584] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 76.203224] Bluetooth: hci6: HCI_REQ-0x0c1a [ 76.211148] Bluetooth: hci3: HCI_REQ-0x0c1a [ 76.212470] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 76.213602] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 76.215660] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 76.218583] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 76.219259] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 76.229619] Bluetooth: hci7: HCI_REQ-0x0c1a [ 78.132235] Bluetooth: hci2: command 0x0409 tx timeout [ 78.133035] Bluetooth: hci0: command 0x0409 tx timeout [ 78.196918] Bluetooth: hci5: command 0x0409 tx timeout [ 78.197046] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 78.259920] Bluetooth: hci3: command 0x0409 tx timeout [ 78.260005] Bluetooth: hci7: command 0x0409 tx timeout [ 78.260686] Bluetooth: hci1: command 0x0409 tx timeout [ 78.261666] Bluetooth: hci6: command 0x0409 tx timeout [ 80.180097] Bluetooth: hci0: command 0x041b tx timeout [ 80.180561] Bluetooth: hci2: command 0x041b tx timeout [ 80.243933] Bluetooth: hci5: command 0x041b tx timeout [ 80.307892] Bluetooth: hci6: command 0x041b tx timeout [ 80.308325] Bluetooth: hci3: command 0x041b tx timeout [ 80.308721] Bluetooth: hci1: command 0x041b tx timeout [ 80.309150] Bluetooth: hci7: command 0x041b tx timeout [ 81.184477] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 81.204336] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 81.206695] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 81.229053] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 81.248542] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 81.251530] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 81.271717] Bluetooth: hci4: HCI_REQ-0x0c1a [ 82.227895] Bluetooth: hci2: command 0x040f tx timeout [ 82.228376] Bluetooth: hci0: command 0x040f tx timeout [ 82.291973] Bluetooth: hci5: command 0x040f tx timeout [ 82.355917] Bluetooth: hci7: command 0x040f tx timeout [ 82.356346] Bluetooth: hci1: command 0x040f tx timeout [ 82.356739] Bluetooth: hci3: command 0x040f tx timeout [ 82.357141] Bluetooth: hci6: command 0x040f tx timeout [ 83.315953] Bluetooth: hci4: command 0x0409 tx timeout [ 84.275929] Bluetooth: hci0: command 0x0419 tx timeout [ 84.276371] Bluetooth: hci2: command 0x0419 tx timeout [ 84.339925] Bluetooth: hci5: command 0x0419 tx timeout [ 84.403891] Bluetooth: hci6: command 0x0419 tx timeout [ 84.404278] Bluetooth: hci3: command 0x0419 tx timeout [ 84.404636] Bluetooth: hci1: command 0x0419 tx timeout [ 84.405097] Bluetooth: hci7: command 0x0419 tx timeout [ 85.364747] Bluetooth: hci4: command 0x041b tx timeout [ 87.412295] Bluetooth: hci4: command 0x040f tx timeout [ 89.459929] Bluetooth: hci4: command 0x0419 tx timeout [ 124.872711] FAT-fs (loop7): Unrecognized mount option "smackfsfloor='^`!$" or missing value [ 124.993530] FAT-fs (loop7): Unrecognized mount option "smackfsfloor='^`!$" or missing value 20:54:53 executing program 7: ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0]) write$P9_RSTATu(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="590000007d000000004000000000000000000000000000000000fd9f801a01000100010000000000100002001000000000000025003a000004003a27402a", @ANYRES32=0xee01, @ANYRES32, @ANYRES32=0xee00], 0x59) openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) syz_open_procfs(0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) syncfs(r0) [ 125.155573] audit: type=1400 audit(1664657693.828:7): avc: denied { open } for pid=3844 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.157150] audit: type=1400 audit(1664657693.828:8): avc: denied { kernel } for pid=3844 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.174549] ------------[ cut here ]------------ [ 125.174568] [ 125.174570] ====================================================== [ 125.174574] WARNING: possible circular locking dependency detected [ 125.174578] 6.0.0-rc7-next-20220930 #1 Not tainted [ 125.174584] ------------------------------------------------------ [ 125.174588] syz-executor.7/3845 is trying to acquire lock: [ 125.174594] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 125.174634] [ 125.174634] but task is already holding lock: [ 125.174637] ffff88800e8f7420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.174664] [ 125.174664] which lock already depends on the new lock. [ 125.174664] [ 125.174667] [ 125.174667] the existing dependency chain (in reverse order) is: [ 125.174670] [ 125.174670] -> #3 (&ctx->lock){....}-{2:2}: [ 125.174684] _raw_spin_lock+0x2a/0x40 [ 125.174695] __perf_event_task_sched_out+0x53b/0x18d0 [ 125.174706] __schedule+0xedd/0x2470 [ 125.174720] schedule+0xda/0x1b0 [ 125.174733] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.174746] syscall_exit_to_user_mode+0x19/0x40 [ 125.174759] do_syscall_64+0x48/0x90 [ 125.174776] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.174789] [ 125.174789] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 125.174803] _raw_spin_lock_nested+0x30/0x40 [ 125.174813] raw_spin_rq_lock_nested+0x1e/0x30 [ 125.174829] task_fork_fair+0x63/0x4d0 [ 125.174846] sched_cgroup_fork+0x3d0/0x540 [ 125.174860] copy_process+0x4183/0x6e20 [ 125.174871] kernel_clone+0xe7/0x890 [ 125.174880] user_mode_thread+0xad/0xf0 [ 125.174890] rest_init+0x24/0x250 [ 125.174902] arch_call_rest_init+0xf/0x14 [ 125.174920] start_kernel+0x4c6/0x4eb [ 125.174935] secondary_startup_64_no_verify+0xe0/0xeb [ 125.174949] [ 125.174949] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 125.174962] _raw_spin_lock_irqsave+0x39/0x60 [ 125.174973] try_to_wake_up+0xab/0x1930 [ 125.174987] up+0x75/0xb0 [ 125.175003] __up_console_sem+0x6e/0x80 [ 125.175022] console_unlock+0x46a/0x590 [ 125.175037] vt_ioctl+0x2822/0x2ca0 [ 125.175049] tty_ioctl+0x785/0x16b0 [ 125.175060] __x64_sys_ioctl+0x19a/0x210 [ 125.175074] do_syscall_64+0x3b/0x90 [ 125.175091] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.175103] [ 125.175103] -> #0 ((console_sem).lock){....}-{2:2}: [ 125.175116] __lock_acquire+0x2a02/0x5e70 [ 125.175133] lock_acquire+0x1a2/0x530 [ 125.175149] _raw_spin_lock_irqsave+0x39/0x60 [ 125.175160] down_trylock+0xe/0x70 [ 125.175174] __down_trylock_console_sem+0x3b/0xd0 [ 125.175190] vprintk_emit+0x16b/0x560 [ 125.175206] vprintk+0x84/0xa0 [ 125.175222] _printk+0xba/0xf1 [ 125.175233] report_bug.cold+0x72/0xab [ 125.175249] handle_bug+0x3c/0x70 [ 125.175266] exc_invalid_op+0x14/0x50 [ 125.175282] asm_exc_invalid_op+0x16/0x20 [ 125.175294] group_sched_out.part.0+0x2c7/0x460 [ 125.175313] ctx_sched_out+0x8f1/0xc10 [ 125.175329] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.175340] __schedule+0xedd/0x2470 [ 125.175353] schedule+0xda/0x1b0 [ 125.175366] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.175377] syscall_exit_to_user_mode+0x19/0x40 [ 125.175389] do_syscall_64+0x48/0x90 [ 125.175406] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.175418] [ 125.175418] other info that might help us debug this: [ 125.175418] [ 125.175421] Chain exists of: [ 125.175421] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 125.175421] [ 125.175435] Possible unsafe locking scenario: [ 125.175435] [ 125.175438] CPU0 CPU1 [ 125.175440] ---- ---- [ 125.175442] lock(&ctx->lock); [ 125.175448] lock(&rq->__lock); [ 125.175454] lock(&ctx->lock); [ 125.175460] lock((console_sem).lock); [ 125.175466] [ 125.175466] *** DEADLOCK *** [ 125.175466] [ 125.175468] 2 locks held by syz-executor.7/3845: [ 125.175475] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 125.175503] #1: ffff88800e8f7420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.175529] [ 125.175529] stack backtrace: [ 125.175532] CPU: 1 PID: 3845 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1 [ 125.175545] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.175552] Call Trace: [ 125.175556] [ 125.175560] dump_stack_lvl+0x8b/0xb3 [ 125.175578] check_noncircular+0x263/0x2e0 [ 125.175594] ? format_decode+0x26c/0xb50 [ 125.175611] ? print_circular_bug+0x450/0x450 [ 125.175627] ? simple_strtoul+0x30/0x30 [ 125.175643] ? format_decode+0x26c/0xb50 [ 125.175660] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 125.175678] __lock_acquire+0x2a02/0x5e70 [ 125.175699] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 125.175721] lock_acquire+0x1a2/0x530 [ 125.175738] ? down_trylock+0xe/0x70 [ 125.175755] ? lock_release+0x750/0x750 [ 125.175775] ? vprintk+0x84/0xa0 [ 125.175792] _raw_spin_lock_irqsave+0x39/0x60 [ 125.175804] ? down_trylock+0xe/0x70 [ 125.175819] down_trylock+0xe/0x70 [ 125.175835] ? vprintk+0x84/0xa0 [ 125.175854] __down_trylock_console_sem+0x3b/0xd0 [ 125.175871] vprintk_emit+0x16b/0x560 [ 125.175889] vprintk+0x84/0xa0 [ 125.175907] _printk+0xba/0xf1 [ 125.175918] ? record_print_text.cold+0x16/0x16 [ 125.175934] ? report_bug.cold+0x66/0xab [ 125.175951] ? group_sched_out.part.0+0x2c7/0x460 [ 125.175970] report_bug.cold+0x72/0xab [ 125.175988] handle_bug+0x3c/0x70 [ 125.176005] exc_invalid_op+0x14/0x50 [ 125.176023] asm_exc_invalid_op+0x16/0x20 [ 125.176036] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.176056] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.176067] RSP: 0018:ffff88803f35fc48 EFLAGS: 00010006 [ 125.176076] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.176083] RDX: ffff88803edc3580 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 125.176091] RBP: ffff888017c68000 R08: 0000000000000005 R09: 0000000000000001 [ 125.176098] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800e8f7400 [ 125.176106] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 125.176117] ? group_sched_out.part.0+0x2c7/0x460 [ 125.176137] ? group_sched_out.part.0+0x2c7/0x460 [ 125.176156] ctx_sched_out+0x8f1/0xc10 [ 125.176175] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.176189] ? lock_is_held_type+0xd7/0x130 [ 125.176203] ? __perf_cgroup_move+0x160/0x160 [ 125.176214] ? set_next_entity+0x304/0x550 [ 125.176231] ? update_curr+0x267/0x740 [ 125.176249] ? lock_is_held_type+0xd7/0x130 [ 125.176263] __schedule+0xedd/0x2470 [ 125.176280] ? io_schedule_timeout+0x150/0x150 [ 125.176296] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.176317] schedule+0xda/0x1b0 [ 125.176332] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.176344] syscall_exit_to_user_mode+0x19/0x40 [ 125.176357] do_syscall_64+0x48/0x90 [ 125.176375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.176388] RIP: 0033:0x7f42b0803b19 [ 125.176396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.176407] RSP: 002b:00007f42add79218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.176417] RAX: 0000000000000001 RBX: 00007f42b0916f68 RCX: 00007f42b0803b19 [ 125.176425] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f42b0916f6c [ 125.176432] RBP: 00007f42b0916f60 R08: 000000000000000e R09: 0000000000000000 [ 125.176439] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f42b0916f6c [ 125.176446] R13: 00007fffd0a95e4f R14: 00007f42add79300 R15: 0000000000022000 [ 125.176458] [ 125.232457] WARNING: CPU: 1 PID: 3845 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 125.233163] Modules linked in: [ 125.233410] CPU: 1 PID: 3845 Comm: syz-executor.7 Not tainted 6.0.0-rc7-next-20220930 #1 [ 125.234017] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.234867] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.235292] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.236648] RSP: 0018:ffff88803f35fc48 EFLAGS: 00010006 [ 125.237050] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.237581] RDX: ffff88803edc3580 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 125.238128] RBP: ffff888017c68000 R08: 0000000000000005 R09: 0000000000000001 [ 125.238662] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800e8f7400 [ 125.239195] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 125.239721] FS: 00007f42add79700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 125.240322] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 125.240759] CR2: 000055ba71e004c8 CR3: 00000000319e0000 CR4: 0000000000350ee0 [ 125.241296] Call Trace: [ 125.241496] [ 125.241670] ctx_sched_out+0x8f1/0xc10 [ 125.241976] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.242372] ? lock_is_held_type+0xd7/0x130 [ 125.242699] ? __perf_cgroup_move+0x160/0x160 [ 125.243040] ? set_next_entity+0x304/0x550 [ 125.243371] ? update_curr+0x267/0x740 [ 125.243678] ? lock_is_held_type+0xd7/0x130 [ 125.244009] __schedule+0xedd/0x2470 [ 125.244304] ? io_schedule_timeout+0x150/0x150 [ 125.244656] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.245033] schedule+0xda/0x1b0 [ 125.245299] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.245664] syscall_exit_to_user_mode+0x19/0x40 [ 125.246031] do_syscall_64+0x48/0x90 [ 125.246325] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.246718] RIP: 0033:0x7f42b0803b19 [ 125.247001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.248346] RSP: 002b:00007f42add79218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.248914] RAX: 0000000000000001 RBX: 00007f42b0916f68 RCX: 00007f42b0803b19 [ 125.249455] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f42b0916f6c [ 125.249993] RBP: 00007f42b0916f60 R08: 000000000000000e R09: 0000000000000000 [ 125.250535] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f42b0916f6c [ 125.251066] R13: 00007fffd0a95e4f R14: 00007f42add79300 R15: 0000000000022000 [ 125.251610] [ 125.251788] irq event stamp: 1274 [ 125.252048] hardirqs last enabled at (1273): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 125.252746] hardirqs last disabled at (1274): [] __schedule+0x1225/0x2470 [ 125.253372] softirqs last enabled at (704): [] __irq_exit_rcu+0x11b/0x180 [ 125.254001] softirqs last disabled at (697): [] __irq_exit_rcu+0x11b/0x180 [ 125.254649] ---[ end trace 0000000000000000 ]--- VM DIAGNOSIS: 20:54:54 Registers: info registers vcpu 0 RAX=ffffffff815c1310 RBX=ffff88803f25fd88 RCX=0000000000000000 RDX=1ffffffff09268a9 RSI=ffffffff8168b3cd RDI=ffff88803f25fd88 RBP=ffffffff84934520 RSP=ffff88803f25fcc8 R8 =0000000000000007 R9 =0000000000000000 R10=000000003da02007 R11=0000000000000001 R12=ffff88800e14cc30 R13=ffff88803f25fd88 R14=ffffea0000f704c0 R15=0000000000000000 RIP=ffffffff815c1312 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1cab54d580 CR3=000000003f15a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 74636f690a3a3720 6d6172676f727020 YMM02=0000000000000000 0000000000000000 6678302852455453 45555145525f4c54 YMM03=0000000000000000 0000000000000000 302826202c623733 3938313063783020 YMM04=0000000000000000 0000000000000000 3030303030303935 223d424f4c42594e YMM05=0000000000000000 0000000000000000 3030306637783028 26202c6666666666 YMM06=0000000000000000 0000000000000000 415453525f395024 65746972770a295d YMM07=0000000000000000 0000000000000000 78303d3233534552 594e41405b3d594e YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88803f35f690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000031 R11=0000000000000001 R12=0000000000000031 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f42add79700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055ba71e004c8 CR3=00000000319e0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM01=0000000000000000 0000000000000000 2525252525252525 2525252525252525 YMM02=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000