Warning: Permanently added '[localhost]:16256' (ECDSA) to the list of known hosts. 2022/10/02 03:12:57 fuzzer started 2022/10/02 03:12:57 dialing manager at localhost:35095 syzkaller login: [ 40.664543] cgroup: Unknown subsys name 'net' [ 40.746253] cgroup: Unknown subsys name 'rlimit' 2022/10/02 03:13:11 syscalls: 2215 2022/10/02 03:13:11 code coverage: enabled 2022/10/02 03:13:11 comparison tracing: enabled 2022/10/02 03:13:11 extra coverage: enabled 2022/10/02 03:13:11 setuid sandbox: enabled 2022/10/02 03:13:11 namespace sandbox: enabled 2022/10/02 03:13:11 Android sandbox: enabled 2022/10/02 03:13:11 fault injection: enabled 2022/10/02 03:13:11 leak checking: enabled 2022/10/02 03:13:11 net packet injection: enabled 2022/10/02 03:13:11 net device setup: enabled 2022/10/02 03:13:11 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/02 03:13:11 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/02 03:13:11 USB emulation: enabled 2022/10/02 03:13:11 hci packet injection: enabled 2022/10/02 03:13:11 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/02 03:13:11 802.15.4 emulation: enabled 2022/10/02 03:13:11 fetching corpus: 50, signal 23885/25698 (executing program) 2022/10/02 03:13:12 fetching corpus: 100, signal 33564/37052 (executing program) 2022/10/02 03:13:12 fetching corpus: 150, signal 40594/45651 (executing program) 2022/10/02 03:13:12 fetching corpus: 200, signal 50003/56461 (executing program) 2022/10/02 03:13:12 fetching corpus: 250, signal 55034/62922 (executing program) 2022/10/02 03:13:12 fetching corpus: 300, signal 64853/73879 (executing program) 2022/10/02 03:13:12 fetching corpus: 350, signal 71152/81353 (executing program) 2022/10/02 03:13:12 fetching corpus: 400, signal 74142/85646 (executing program) 2022/10/02 03:13:13 fetching corpus: 450, signal 79025/91584 (executing program) 2022/10/02 03:13:13 fetching corpus: 500, signal 80876/94705 (executing program) 2022/10/02 03:13:13 fetching corpus: 550, signal 85256/100078 (executing program) 2022/10/02 03:13:13 fetching corpus: 600, signal 87002/102974 (executing program) 2022/10/02 03:13:13 fetching corpus: 650, signal 89665/106678 (executing program) 2022/10/02 03:13:13 fetching corpus: 700, signal 91696/109862 (executing program) 2022/10/02 03:13:13 fetching corpus: 750, signal 94493/113620 (executing program) 2022/10/02 03:13:13 fetching corpus: 800, signal 96919/117085 (executing program) 2022/10/02 03:13:14 fetching corpus: 850, signal 98921/120050 (executing program) 2022/10/02 03:13:14 fetching corpus: 900, signal 100912/123000 (executing program) 2022/10/02 03:13:14 fetching corpus: 950, signal 103384/126335 (executing program) 2022/10/02 03:13:14 fetching corpus: 1000, signal 106201/129931 (executing program) 2022/10/02 03:13:14 fetching corpus: 1050, signal 108702/133248 (executing program) 2022/10/02 03:13:14 fetching corpus: 1100, signal 111021/136391 (executing program) 2022/10/02 03:13:14 fetching corpus: 1150, signal 113893/139883 (executing program) 2022/10/02 03:13:14 fetching corpus: 1200, signal 116221/142923 (executing program) 2022/10/02 03:13:14 fetching corpus: 1250, signal 117257/144895 (executing program) 2022/10/02 03:13:15 fetching corpus: 1300, signal 119356/147666 (executing program) 2022/10/02 03:13:15 fetching corpus: 1350, signal 121293/150284 (executing program) 2022/10/02 03:13:15 fetching corpus: 1400, signal 123103/152800 (executing program) 2022/10/02 03:13:15 fetching corpus: 1450, signal 127708/157463 (executing program) 2022/10/02 03:13:15 fetching corpus: 1500, signal 129223/159695 (executing program) 2022/10/02 03:13:15 fetching corpus: 1550, signal 130243/161474 (executing program) 2022/10/02 03:13:15 fetching corpus: 1600, signal 131896/163696 (executing program) 2022/10/02 03:13:15 fetching corpus: 1650, signal 133974/166211 (executing program) 2022/10/02 03:13:16 fetching corpus: 1700, signal 135948/168731 (executing program) 2022/10/02 03:13:16 fetching corpus: 1750, signal 136986/170505 (executing program) 2022/10/02 03:13:16 fetching corpus: 1800, signal 138226/172330 (executing program) 2022/10/02 03:13:16 fetching corpus: 1850, signal 139800/174437 (executing program) 2022/10/02 03:13:16 fetching corpus: 1900, signal 141542/176598 (executing program) 2022/10/02 03:13:16 fetching corpus: 1950, signal 142860/178477 (executing program) 2022/10/02 03:13:16 fetching corpus: 2000, signal 144633/180570 (executing program) 2022/10/02 03:13:16 fetching corpus: 2050, signal 145974/182357 (executing program) 2022/10/02 03:13:17 fetching corpus: 2100, signal 146595/183690 (executing program) 2022/10/02 03:13:17 fetching corpus: 2150, signal 147925/185437 (executing program) 2022/10/02 03:13:17 fetching corpus: 2200, signal 149096/187100 (executing program) 2022/10/02 03:13:17 fetching corpus: 2250, signal 150252/188775 (executing program) 2022/10/02 03:13:17 fetching corpus: 2300, signal 150862/189990 (executing program) 2022/10/02 03:13:17 fetching corpus: 2350, signal 152166/191668 (executing program) 2022/10/02 03:13:17 fetching corpus: 2400, signal 153273/193242 (executing program) 2022/10/02 03:13:17 fetching corpus: 2450, signal 154565/194878 (executing program) 2022/10/02 03:13:18 fetching corpus: 2500, signal 156050/196657 (executing program) 2022/10/02 03:13:18 fetching corpus: 2550, signal 158173/198788 (executing program) 2022/10/02 03:13:18 fetching corpus: 2600, signal 159225/200202 (executing program) 2022/10/02 03:13:18 fetching corpus: 2650, signal 160005/201475 (executing program) 2022/10/02 03:13:18 fetching corpus: 2700, signal 160790/202726 (executing program) 2022/10/02 03:13:18 fetching corpus: 2750, signal 161463/203882 (executing program) 2022/10/02 03:13:18 fetching corpus: 2800, signal 162069/205012 (executing program) 2022/10/02 03:13:18 fetching corpus: 2850, signal 163533/206661 (executing program) 2022/10/02 03:13:18 fetching corpus: 2900, signal 164849/208149 (executing program) 2022/10/02 03:13:19 fetching corpus: 2950, signal 165694/209330 (executing program) 2022/10/02 03:13:19 fetching corpus: 3000, signal 166335/210393 (executing program) 2022/10/02 03:13:19 fetching corpus: 3050, signal 167089/211495 (executing program) 2022/10/02 03:13:19 fetching corpus: 3100, signal 167889/212646 (executing program) 2022/10/02 03:13:19 fetching corpus: 3150, signal 169223/214072 (executing program) 2022/10/02 03:13:19 fetching corpus: 3200, signal 169913/215140 (executing program) 2022/10/02 03:13:19 fetching corpus: 3250, signal 170794/216312 (executing program) 2022/10/02 03:13:20 fetching corpus: 3300, signal 171663/217449 (executing program) 2022/10/02 03:13:20 fetching corpus: 3350, signal 172715/218642 (executing program) 2022/10/02 03:13:20 fetching corpus: 3400, signal 173405/219619 (executing program) 2022/10/02 03:13:20 fetching corpus: 3450, signal 174102/220584 (executing program) 2022/10/02 03:13:20 fetching corpus: 3500, signal 175097/221721 (executing program) 2022/10/02 03:13:20 fetching corpus: 3550, signal 175587/222589 (executing program) 2022/10/02 03:13:20 fetching corpus: 3600, signal 176316/223570 (executing program) 2022/10/02 03:13:20 fetching corpus: 3650, signal 176710/224425 (executing program) 2022/10/02 03:13:20 fetching corpus: 3700, signal 177963/225647 (executing program) 2022/10/02 03:13:21 fetching corpus: 3750, signal 178489/226534 (executing program) 2022/10/02 03:13:21 fetching corpus: 3800, signal 179027/227484 (executing program) 2022/10/02 03:13:21 fetching corpus: 3850, signal 179597/228353 (executing program) 2022/10/02 03:13:21 fetching corpus: 3900, signal 180369/229301 (executing program) 2022/10/02 03:13:21 fetching corpus: 3950, signal 181671/230438 (executing program) 2022/10/02 03:13:21 fetching corpus: 4000, signal 183411/231679 (executing program) 2022/10/02 03:13:21 fetching corpus: 4050, signal 184489/232733 (executing program) 2022/10/02 03:13:21 fetching corpus: 4100, signal 184868/233490 (executing program) 2022/10/02 03:13:22 fetching corpus: 4150, signal 185424/234260 (executing program) 2022/10/02 03:13:22 fetching corpus: 4200, signal 185860/234989 (executing program) 2022/10/02 03:13:22 fetching corpus: 4250, signal 186651/235897 (executing program) 2022/10/02 03:13:22 fetching corpus: 4300, signal 187385/236752 (executing program) 2022/10/02 03:13:22 fetching corpus: 4350, signal 187866/237534 (executing program) 2022/10/02 03:13:22 fetching corpus: 4400, signal 188328/238253 (executing program) 2022/10/02 03:13:22 fetching corpus: 4450, signal 189180/239131 (executing program) 2022/10/02 03:13:22 fetching corpus: 4500, signal 189661/239844 (executing program) 2022/10/02 03:13:22 fetching corpus: 4550, signal 190083/240465 (executing program) 2022/10/02 03:13:23 fetching corpus: 4600, signal 190590/241175 (executing program) 2022/10/02 03:13:23 fetching corpus: 4650, signal 191363/241980 (executing program) 2022/10/02 03:13:23 fetching corpus: 4700, signal 192246/242799 (executing program) 2022/10/02 03:13:23 fetching corpus: 4750, signal 192983/243539 (executing program) 2022/10/02 03:13:23 fetching corpus: 4800, signal 193894/244339 (executing program) 2022/10/02 03:13:23 fetching corpus: 4850, signal 194299/245040 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/245647 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/246174 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/246688 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/247199 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/247734 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/248262 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/248800 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/249328 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/249843 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/250371 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/250866 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/251391 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/251896 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/252393 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/252917 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/253456 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/253973 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/254507 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/255011 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/255526 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/256034 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/256553 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/257027 (executing program) 2022/10/02 03:13:23 fetching corpus: 4874, signal 194680/257577 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/258103 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/258617 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/259193 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/259708 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/260189 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/260757 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/261276 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/261796 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/261992 (executing program) 2022/10/02 03:13:24 fetching corpus: 4874, signal 194680/261992 (executing program) 2022/10/02 03:13:26 starting 8 fuzzer processes 03:13:26 executing program 0: ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000000)=0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0, 0xee00}}, './file0\x00'}) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x0, '\x00', [{0x7fff, 0x1000, 0x8b, 0x261, 0x1, 0x1}, {0x7, 0x43, 0x400, 0x6, 0x2, 0x40}], ['\x00']}) sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0xb0, 0x0, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x28, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x23, 0x2}}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PROTOCOL={0x6}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0x23}}]}, @IPVS_CMD_ATTR_SERVICE={0x34, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@local}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0x21}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x3a}]}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}]}, 0xb0}, 0x1, 0x0, 0x0, 0x40}, 0x80) r4 = openat$incfs(r1, &(0x7f0000000300)='.log\x00', 0x10000, 0x5) r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000380), r1) sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000480)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x60, r5, 0xc04, 0x70bd26, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x4}}]}, 0x60}, 0x1, 0x0, 0x0, 0x50}, 0x0) r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x80000, 0x2) fsconfig$FSCONFIG_SET_PATH(r1, 0x3, &(0x7f0000000500)='\\!-\x00', &(0x7f0000000540)='./file0\x00', 0xffffffffffffff9c) r7 = openat(r1, &(0x7f0000000580)='./file0\x00', 0x40200, 0x13a) getsockopt$IP_SET_OP_VERSION(r1, 0x1, 0x53, &(0x7f00000005c0), &(0x7f0000000600)=0x8) ioctl$FS_IOC_SETFLAGS(r7, 0x40086602, &(0x7f0000000640)=0x2000000) openat(0xffffffffffffff9c, &(0x7f0000000680)='./file1\x00', 0x102, 0x104) ioctl$AUTOFS_DEV_IOCTL_FAIL(r4, 0xc0189377, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r6, {0x5ab, 0x10001}}, './file1\x00'}) r9 = dup3(r7, r8, 0x80000) sendmsg$TIPC_CMD_GET_NODES(r9, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000001}, 0x4000) r10 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), r8) sendmsg$NL80211_CMD_GET_MPP(r1, &(0x7f0000000940)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x70, r10, 0x300, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000000}, 0x1) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r8, 0xc018937b, &(0x7f0000000e40)={{0x1, 0x1, 0x18, r4, {r2, r3}}, '\x00'}) sendmsg$OSF_MSG_ADD(r11, &(0x7f00000013c0)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001380)={&(0x7f0000000ec0)={0x4bc, 0x0, 0x5, 0x0, 0x0, 0x0, {0xa, 0x0, 0x3}, [{{0x254, 0x1, {{0x3, 0x8}, 0x6, 0x9, 0x5, 0x7, 0x27, 'syz0\x00', "633645c5b38e0504e6710112bafe18943a5adde0fe84151daedf098d9f9bfc9a", "37c64816f32bddb042e2fb3d758c9bea0a6c17b7bfb4bb67e54a2251b2b1366f", [{0x1, 0x8000, {0x2, 0x6}}, {0x6, 0x2, {0x3, 0x8}}, {0x2f58, 0x9, {0x1, 0x80}}, {0x1, 0x80, {0x0, 0x9}}, {0x40, 0x5, {0x1, 0xf0}}, {0x382, 0x3936, {0x3, 0x5}}, {0x5fb, 0xffc0, {0x2}}, {0x7ff, 0xb6, {0x1, 0x2}}, {0x3, 0x3ff, {0x3, 0x1}}, {0x5dfe, 0x1, {0x3, 0x4}}, {0x28b, 0x19d7, {0x2, 0x800}}, {0x2, 0x3, {0x1, 0x8}}, {0xff54, 0x3, {0x2, 0x3ff}}, {0x8, 0x1, {0x2, 0x1}}, {0x71, 0x9, {0x1, 0xffff}}, {0x3ff, 0x4, {0x3, 0x8000}}, {0x0, 0x5, {0x3, 0xe8800000}}, {0x4, 0x7fff, {0x1, 0x3}}, {0x9, 0xab93, {0x3, 0x5}}, {0x9, 0x400, {0x0, 0x3ff}}, {0x9, 0xc55, {0x0, 0x8}}, {0x8, 0x80, {0x1, 0x3}}, {0x9, 0x4, {0x1, 0x9c12}}, {0x0, 0x4, {0x1, 0x7ff}}, {0xf9a, 0x401, {0x0, 0x9}}, {0x4, 0xff81, {0x0, 0xda}}, {0x800, 0x3ff, {0x0, 0x3f}}, {0x5, 0x1f, {0x0, 0x8}}, {0x3, 0x6, {0x2, 0x7fffffff}}, {0x7ff, 0xae, {0x2, 0x3}}, {0xf704, 0x8, {0x2, 0x66}}, {0x1, 0x3, {0x3, 0x6}}, {0x80, 0x100, {0x0, 0xb3}}, {0x7fff, 0x1000, {0x1}}, {0x4, 0x1, {0x2, 0x3f}}, {0xfffa, 0x8464, {0x2, 0x4}}, {0x1, 0x0, {0x1, 0x5}}, {0x7f, 0x2, {0x1, 0xfffffff9}}, {0xfeff, 0xfff, {0x3, 0x7}}, {0x8000, 0x7, {0x3, 0x964}}]}}}, {{0x254, 0x1, {{0x1, 0x1}, 0x6, 0x5, 0x7, 0x47, 0x22, 'syz0\x00', "855633652a192934041e878fac5c34ae0e4d3bab5d604eb94ca736302b5975b3", "0cf7c21ec7059aa84e6204573ffe8d9633fce1e2add37490e78275774e3ad17c", [{0x800, 0x7, {0x3, 0x6}}, {0xff, 0x8, {0x3, 0x5}}, {0x2, 0x6, {0x3, 0x9}}, {0xfffc, 0x8249, {0x3c4a3c3cb86acd8d, 0x7}}, {0x5, 0x6, {0x2, 0x7fff}}, {0x3ff, 0x8, {0x3, 0x401}}, {0x3, 0x3, {0x2, 0x7}}, {0x80, 0x4, {0x0, 0x9}}, {0x401, 0x3b0, {0x2, 0x4}}, {0x8001, 0x83, {0x2, 0xfffff000}}, {0x80, 0xb081, {0x1, 0xffffff7f}}, {0x3, 0x7, {0x0, 0x1}}, {0x1, 0x7f, {0x1, 0xf693}}, {0x7, 0x4, {0x2, 0x3}}, {0x5, 0x7e, {0x2, 0x1}}, {0x6cf8, 0xfffd, {0x2, 0x8}}, {0x101, 0x8, {0x1, 0x401}}, {0xfff, 0x7, {0x0, 0x6}}, {0x1f, 0x9c2, {0x1, 0x97be}}, {0x9, 0x3f, {0x2, 0x5}}, {0x1, 0x400, {0x1, 0x800}}, {0xc5b, 0x7, {0x0, 0xa9}}, {0x4, 0x8, {0x1, 0x6}}, {0x0, 0x401, {0x1, 0x6}}, {0x8, 0x2, {0x0, 0x7fff}}, {0x5, 0x4, {0x0, 0x227e79b2}}, {0x2, 0xfff9, {0x2, 0x400}}, {0x4, 0x4, {0x1, 0xfffffffb}}, {0x5, 0x1, {0x2, 0x1}}, {0x1ff, 0xeeb, {0x1, 0x1}}, {0x5, 0x1, {0x2, 0x1a}}, {0x41d3, 0x9, {0x2, 0x7fff}}, {0x9794, 0x200, {0x0, 0x2}}, {0x69, 0x9, {0x2, 0x3}}, {0x9, 0x0, {0x3, 0x6}}, {0xc, 0x4, {0x1, 0x10000}}, {0x0, 0x4, {0x3}}, {0x1, 0x2, {0x2, 0xd6}}, {0x8, 0xf6d0, {0x0, 0x4}}, {0x1000, 0x6, {0x0, 0x3}}]}}}]}, 0x4bc}, 0x1, 0x0, 0x0, 0x8000}, 0x80) 03:13:26 executing program 1: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x100, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x85}, 0x44000) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000140), 0x8200, 0x0) sendmsg$NL80211_CMD_LEAVE_IBSS(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, 0x0, 0x200, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x7d}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x50}, 0x20000050) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2288, &(0x7f0000000280)) sync_file_range(r1, 0x8001, 0xffffffffffff0000, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00'}) sendmsg$SOCK_DIAG_BY_FAMILY(r1, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x60, 0x14, 0x4, 0x70bd26, 0x25dfdbfb, {0x0, 0x5}, [@INET_DIAG_REQ_BYTECODE={0x4c, 0x1, "42ffc686d4d05e487f9720f1c43bf7ac7ae9a01d30582b87deddc05ce579d044a4f1fcfc11b33bf18618091ef5106309767d9271ec293f65771803f2b08b774c68af473cd75b9871"}]}, 0x60}, 0x1, 0x0, 0x0, 0xbd89ebf63d92b60e}, 0x20044000) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_DEL(r2, 0x2, r1) ioctl$PTP_PIN_SETFUNC2(r1, 0x40603d10, &(0x7f0000000440)={'\x00', 0xff7, 0x2, 0x4}) syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r1) ioctl$BTRFS_IOC_SCRUB_CANCEL(r2, 0x941c, 0x0) epoll_pwait2(r2, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}], 0x6, &(0x7f0000000580)={0x0, 0x3938700}, &(0x7f00000005c0)={[0x6]}, 0x8) sendmsg$nl_generic(r2, &(0x7f00000008c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000880)={&(0x7f0000000640)={0x23c, 0x7fff, 0x1, 0x70bd27, 0x25dfdbfc, {0xa}, [@generic="0e765d923aef917af9c96cedc94a031b7fd235b9729800eccb0d9d4fc6cf044d1d1b555a4129030f17fee2024e3c77b2859db3f71996b8108d2c9e6953acdf526f9810c1", @generic="29c885e8a2e02911f3550431881e9f2dc1da54725342e23d3688db1d582284cfa21ebecd9bafa14103589f84b97dad21ada6d8086040bc6ad1d7cbc8fe1eea6aa0a3e35ecda2668bf6334befeb0867525d4cc4df7b23d76e7058719b076e02d0921fe8250b1fe0fd4b577baace41dea1df4adab53e59ed1cdb3a12a700fde71842a03272cf33142dbd659405c6799159fa0bf1f6ba631fe6d795f0b3a536bfcf8b49c2a7987830fb72bd38da3f320b319705750e24d9850a89d9473531", @nested={0x124, 0x3d, 0x0, 0x1, [@typed={0xc, 0x6b, 0x0, 0x0, @u64=0xe9e}, @typed={0x4, 0x8e}, @generic="34a3891481fd83ddcdd7f2cec90ac78b2391513bd70147d71472b891ccd42d2559dae3dbde8a5064b67f9e478a6e293969fbfd09ace640765805cd39a27f669b224a5677ef1d151a47c133c794963034664d3eddfe048f3f1e7cc7b6519c0da30fe767b2571e5053bb6fa9eb43aef86185f9c44a760444f33bda6120e3e8e86f1d490c6a7a8097693673ce41694e76dd", @generic="4edb671ae8b799712bbfe796ba061b83f3318215ac01e5898570277c11ddb672", @generic="c3f95dbb655defffc97e8c43fe4f66c7fabaf24b641833b7cfbaa160dfa73edf76931f235eed5476a9d25c828597dcbff6e12b5a0e784e7c89ec25284c09bc920b16197afd94e5b29ddac86a9812914b4750098dc86682af283041995b3604c7"]}]}, 0x23c}, 0x1, 0x0, 0x0, 0x10}, 0x40010) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000002040)={'veth1_virt_wifi\x00', 0x0}) sendmmsg$sock(r1, &(0x7f0000002640)=[{{&(0x7f0000000900)=@phonet={0x23, 0x1, 0x20, 0x2b}, 0x80, &(0x7f0000001e00)=[{&(0x7f0000000980)="909f3262545af16c5291fa46d07b8cafc7ec77db6b7c68573c1e70eb5fc61277c06038afec9bfafe7965aec5ae1dcccd988e47d418bcca47273171623c3e3c0b6c3fc068cb37163038ab39cc6dc623cb23feca64f9563ba7d65388713cf4be058025a7bf6652ff247c38f818d4745c2fe3643b0337de2d839a68cd13d6f9f66ecb4e1f62e67572e7dbb83da2dfc302f8ad5c80abb95c7d3864affa5d7195557390eb9f22b80aacf30b0fe9bfa37e14f51b4520343d0076f62afdf110ed488be9", 0xc0}, {&(0x7f0000000a40)="b45ab929c4784b7b4a0041c1e23461d89ed04528a0c8909d8333c8ed2a013e6634a17ce973aabe6ae84dc3bac34570d89ba2259a460bd6567f3588a6aa06ae22907d277d1f6955564dfd627b8df5332846e452de", 0x54}, {&(0x7f0000000ac0)="84c810db4217d3593eb2b36cc3406cafd702b734f438d09b44148d77eb5eb4f803f6501d460537938c50", 0x2a}, {&(0x7f0000000b00)="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", 0x1000}, {&(0x7f0000001b00)="cc09b3fc6caa173f3299b0bc3c47e3e08047758c35bd66d684357de21eb03ac1690eed032e1b54c2aa67cafb4709c74244a86bba6c7561c6525d09fa16f81c9a9e93edc0ee64e7389b0de851a7e12397806cc164b0b35157a6373c80a289af24e29e4e61d9b57bea318f28df5123940c117d605764d4cdcf47d2d39d6018fa09e080d658e31469", 0x87}, {&(0x7f0000001bc0)="2556c8592a34b6869ece0d7311bb6aa335930b76ff1deb2109aee18f25f3f9b1fac69fbe66657867e8ba90c8871b0ece1e3c4b021477f8de9ada45dccd45b183a2fd1bbffa964372e2e802ceccf0b62613b1ead2d36bd2d60eca7120cd43d7bf58d797775df2495c444a0b07e07e77031fa464ff42b20c9fac1894bd75f13b87d03b1d709989c6fbd087b80b6530a6be551ba475c15de48cc30137da04506bcc21335017cec18ebea73640ffcb1d9e7869070a02acf182792239524b589c86f4bce3433dd2e939633fefb24e6cfdf37a26b3c5c285d2a6ee3055972eaea94a3a6ca956d259567c915c772499c78368", 0xef}, {&(0x7f0000001cc0)="68fcdda8298ae865a2bef9aeef7508a008c388444b08acc859a1990b7e4c889aa731235eac3cf2ebe3e90373581113a663afdd7acef292bb84d5f01b7b952e4bfd33495948af0f8a059a4fab440168f2e9a52377215fa32957f53d1c4f35b97b442d9e5b69b91929e36b5df46bae16e6d46b8be06c6f19687495f655a7d3103321ac9416ba79e76f931c49ea6c", 0x8d}, {&(0x7f0000001d80)="935408ba2750f9e22a8247928a237f0ae758722f14032b20183377557edf49f14ac617f43a5c559ba1cf5eea8d5f92b5f26f2477108bfc35cba805adbc64f59e3df349c53a89f7351758f0f1ffe6a711c346c59ff3ec60ab9ac98d9e96a33663fba8a3061a1b7b6612fe", 0x6a}], 0x8, &(0x7f0000001e80)=[@mark={{0x14, 0x1, 0x24, 0x3ce1000}}, @timestamping={{0x14, 0x1, 0x25, 0x5a2}}], 0x30}}, {{&(0x7f0000001ec0)=@x25, 0x80, &(0x7f0000001f80)=[{&(0x7f0000001f40)="854b0b", 0x3}], 0x1, &(0x7f0000001fc0)=[@timestamping={{0x14}}, @txtime={{0x18, 0x1, 0x3d, 0xbbfe}}, @txtime={{0x18}}, @timestamping={{0x14}}], 0x60}}, {{&(0x7f0000002080)=@xdp={0x2c, 0xc, r3, 0x2c}, 0x80, &(0x7f00000025c0)=[{&(0x7f0000002100)="9ec90be4af04f8f8b8863dc1a25c0b758b82d56e6155e208", 0x18}, {&(0x7f0000002140)="f526c797a042215dd4897701761dfaf79988f007a19aaff287110c7ea33378371a3757b98b15426ca8cc0199c22b3ebef8c7f8162d219bc9e1eeb6a2f7ec2eeee4242d7c929133c31d31e9ca4826c6bb6e1235aae6372a2c50626dd454d5073dac277cb1dc095a9d7fa65664e6a18bf28c492c79cf21c4815ccf8b9bc37319b700fa345cecbedbd8bc068792dd1db240174f70ff00fb6da229522281", 0x9c}, {&(0x7f0000002200)="8a5e96f9ea543aa7e94321c19b72cf97a0339f0b3fc7dcb35c6c0e968a17287ae9993ecdae3f1962f2019d6f92fcc338d24dde8be4163ee88889694f5076947705388328c34a31dd7c4c3a69e5bf0ea9325881590c86b9a68c9329fb0ca4c01128d7cc20a8940f33b3f8cd0e91d4f36b109f687ed9ab46a5d03a4f57699431a2cfe8b5048536ed97e23be05abc8e2d381386c67b59227effe88f20ee603cec8334fc15172dcfa865c8673c586fbc20cf994cd88fdb9278669f4ffe9d58e3b19b5cb2c4b909ba1a58d6c0671ce7bcc3682386979455", 0xd5}, {&(0x7f0000002300)="afa63acda75ec8cc0d391fd44ff8d9091df48ce48fc6e48b4d2e567814a6de09a1efb140e4e878bf829e01dcd092b5eeddc7a062ad7d416b7e8f0c525ee0f2779a32085b4a92a7e6ef90259ef1e7d9a0f9210b0183ebc3c3437637d570e5a2140b9507b78b0d62d637d780bd5300a1987a1c4cceb9e50027f061aa6d5b6030c70dbb6e8bff2a13e9acb7a38c527ca553cbeaba0134d43fed52020be6", 0x9c}, {&(0x7f00000023c0)="8bfe7c9c997d327892a0514913136c6176b9a4f96873bc00a3a18e0a60a8fab65b282297b703c3028c0b7d1e4494f8ec8ae3979418e618c32944d658218cb9527ed42abd1f60f7e3bdc5c013702f1eb4d53a29c6001476dea935e4a2cb5ba36a0cdfe8cde5c01a34fa835ade50206beab2457ba7d390d29d87c5d53235017093a2ea0bab2fdc7bf4d270715cd20ba5d9a226d2d97b890aae342e94d4abc308bce13e3f3475b782857e17a50cbd2e673a90f741896d42ec1e9a7339bc9f6d13ac5bfdc9ad", 0xc4}, {&(0x7f00000024c0)="047ac33dab94c12fc07ad1121d9a95a9c0a3ee864880bd4e6e43c1cc3fcdda59ba8a85875b95c295071a0b2e7d09fdcec2b31d4cc3e3542e2f02bfda8145185d4f288791cfb9259fa8b78d9beb2e95406b4ae07edd2e2a5155eaff23f44ade083406db25b6ceaadad832a7638b7c76116d35e58cd72acb4e9f781d0c92a0bda72aeb0011f601b59ced0576a2394ef45463f45d2d3eed1b76c3850f89802f954618ad91eae92801483b4d48c0428974ee5347814ad637739e6ad242656a07107c55d184daec6005aad65c0a27641aebfd4a8d1f48003865830c79f12570325f3ba50be6f24ddd66dd6093a1a55c1c317aeba904af396265", 0xf7}], 0x6}}], 0x3, 0xd0a650ea608287ab) syz_io_uring_submit(0x0, 0x0, &(0x7f0000002700)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd_index=0x5, 0x0, 0x0, 0x0, {0x711}}, 0x2d) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000002740)={'veth1_virt_wifi\x00', {0x2, 0x0, @loopback}}) ioctl$sock_SIOCDELRT(r1, 0x890c, &(0x7f00000027c0)={0x0, @tipc=@nameseq={0x1e, 0x1, 0x3, {0x0, 0x0, 0x2}}, @vsock={0x28, 0x0, 0x2710, @hyper}, @xdp={0x2c, 0x1, r3, 0x26}, 0x81, 0x0, 0x0, 0x0, 0x1, &(0x7f0000002780)='wlan1\x00', 0x0, 0x7, 0x5}) 03:13:26 executing program 2: ioctl$CDROM_LOCKDOOR(0xffffffffffffffff, 0x5329, 0x1) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2f8}}, './file0\x00'}) ioctl$CDROMPAUSE(r0, 0x5301) r1 = dup2(r0, r0) ioctl$CDROMGETSPINDOWN(r1, 0x531d, &(0x7f0000000040)) ioctl$CDROM_LAST_WRITTEN(r0, 0x5395, &(0x7f0000000080)) ioctl$CDROMSEEK(r0, 0x5316, &(0x7f00000000c0)={0x2, 0xa2, 0x8, 0x1, 0x8, 0x7f}) ioctl$CDROMSETSPINDOWN(r0, 0x531e, &(0x7f0000000100)=0x8) ioctl$CDROM_SET_OPTIONS(r1, 0x5320, 0xe703eb5316304ff0) ioctl$CDROM_SET_OPTIONS(r0, 0x5320, 0x2) ioctl$CDROM_TIMED_MEDIA_CHANGE(r1, 0x5396, &(0x7f0000000140)={0xffffffff}) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000180), 0x90000, 0x0) ioctl$CDROM_SET_OPTIONS(r2, 0x5320, 0x9) ioctl$CDROMPLAYMSF(r2, 0x5303, &(0x7f00000001c0)={0x8f, 0x6a, 0x5, 0x5, 0x2, 0x4}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f0000000240)={0x1ff, 0x8, 0x0, 0x7f, 0x2, [{0x7, 0x1000, 0x3, '\x00', 0x2000}, {0x7, 0x6a33, 0x6, '\x00', 0x2180}]}) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/bus/serio', 0x800, 0x48) ioctl$CDROM_GET_CAPABILITY(r4, 0x5331) openat$cdrom(0xffffffffffffff9c, &(0x7f0000000340), 0x321080, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x4010942a, &(0x7f0000000380)={0x1, 0x3}) 03:13:26 executing program 3: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$HIDIOCGRAWNAME(r0, 0x80404804, &(0x7f0000000040)) r2 = fsmount(r0, 0x0, 0x84) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f0000000300)={0x3, &(0x7f0000000280)=[{0x5, 0xa9, &(0x7f0000000080)="d70dc27ca51538eb52477f1d91b90006bc6fd6d53e072fc00f70766bc403958a27a4cd7cdfa2a48bc347c66fd7a077b6e8fc4db8a4c1c66cb643001985cd3c053086583b32b63c7605163d978ea4141941f71629758087ec92f586c52dcb33d999f5be390f747d8069a39e2a40bd8b83a60ca350a04ba9d6694c706c8bb3ade4f736157835fdb7f74c469026697e2113521826c9fb7b3656c341a68f0352e4b11f25a5c94769e5875c", 0x0, 0x1}, {0x81, 0x5e, &(0x7f0000000140)="bf261c42e9c4650b41cd72278defb9cf282f106a506176427ea8b7fb5a97d6078d525781f43700a6839fb8a70f50bf73ea0550eaf994bb78c11b0ca0c835121f8aacdef3a01102a10a43f3ebaba1f829f41be27c37d366da6d71abcdbc61", 0x1, 0x1}, {0x1, 0xa9, &(0x7f00000001c0)="3b49672fd2e06d359ee0d23c82cb79d5f5b1ab0e464f278044ccf2ac24163fe70395004cca75ab9ea9935c96438c0e013965b8cc596d2530ef13b24a1d55ca7fb8aa252512481e66df1b7a64aa46237c4207e9907e9faaedbe319d098a2c4b1c5520b82766ac587b3c476bc09dbe61a10342d78c9ecdba713bf5a42f0a2c13230421b16248e1c9c582d7428a7379ebf30c0e31f0e652f5d44985d1c98a2409c7b39233fe4987f39fa9", 0x1}]}) ioctl$BTRFS_IOC_SET_FEATURES(r2, 0x40309439, &(0x7f0000000340)={0x2, 0x0, 0x2}) ioctl$VFAT_IOCTL_READDIR_SHORT(r0, 0x82307202, &(0x7f0000000380)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r3 = perf_event_open(&(0x7f00000005c0)={0x5, 0x80, 0x20, 0xff, 0x1, 0x4b, 0x0, 0x9, 0x5610, 0x3, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x4, @perf_config_ext={0x6, 0x7ff}, 0x8000, 0x8, 0x3f, 0x1, 0x5, 0x9, 0x8, 0x0, 0xcd, 0x0, 0x3f}, 0x0, 0x7, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000640)={0x0, 0x2, 0x5, 0x8}) r4 = io_uring_setup(0x614a, &(0x7f0000000680)={0x0, 0x8793, 0x4, 0x0, 0x6f, 0x0, r0}) clone3(&(0x7f00000008c0)={0x80002200, &(0x7f0000000700)=0xffffffffffffffff, &(0x7f0000000740), &(0x7f0000000780), {0x3e}, &(0x7f00000007c0)=""/35, 0x23, &(0x7f0000000800)=""/108, &(0x7f0000000880)=[0x0], 0x1, {r0}}, 0x58) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000940)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_RM_DEV_V2(r4, 0x5000943a, &(0x7f0000000b40)={{r5}, r6, 0x0, @unused=[0x7ff, 0x4, 0x8, 0x8], @devid}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r7, 0x6, 0x15, &(0x7f0000001b40)=0xe1d, 0x4) ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000001b80)={{0x1, 0x1, 0x18, r5, {0x4, 0x401}}, './file0\x00'}) fsync(r8) r9 = open$dir(&(0x7f0000001bc0)='./file1\x00', 0x40000, 0x8) ioctl$INCFS_IOC_PERMIT_FILL(r9, 0x40046721, &(0x7f0000001c00)={r0}) r10 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001c40), 0x101141, 0x0) ioctl$AUTOFS_IOC_CATATONIC(r10, 0x9362, 0x0) 03:13:26 executing program 4: ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000000)={0x0, 0x60000000, 0x2}) ioctl$FIOCLEX(0xffffffffffffffff, 0x5451) ioctl$BTRFS_IOC_DEFRAG(0xffffffffffffffff, 0x50009402, 0x0) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(0xffffffffffffffff, 0x4008941a, &(0x7f0000000400)) vmsplice(0xffffffffffffffff, &(0x7f0000000540)=[{&(0x7f0000000440)="0ba150fbebebf961afcd3a485ee528218bc1caf664ca27c83e9fbf1843ad6a6b14d0188396e9587d73ad3f2cbe92df087c5c16165e78a7f89aafd41cdedb7a73430400d75c1dd993914cfbb0a768ee9a85afe13842c3b17b59eee8dbd676c8aa7e33b5a83908ab45fefd55b9e2cb16d4046b1b04ff2d784e3283431220c21883e9ff28ccdac3cb1294a9d96cafbad91899d138b2aeb8753ba87c084fdcfad56b041185009f7343fdad17cc0afb98d4d0563806500aaee27b82a2806e3e407fca2fbbfaf5dc5ab7d9dc95f668344eec8777e8d027054a", 0xd6}], 0x1, 0xf) r0 = openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000580), 0x2, 0x0) write$binfmt_elf64(r0, &(0x7f00000005c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x0, 0x5, 0x8, 0x1a, 0x3, 0x6, 0x6, 0x31b, 0x40, 0x1ab, 0x7, 0x80, 0x38, 0x2, 0xff, 0x123}, [{0x70000007, 0x6, 0x4, 0x4, 0x7, 0x1, 0xb5, 0x2}], "9277282cf909984dce8f2865d0c7ad2c504806e59e0f8c115f2168496281f5ba1a4371282ed21571e330ba01ec7044f6fd3d30ead561334a4967c63195893f5e21051ac19bf747cd05b41376a436c1b6e615fbbc0ecdef4ed2bb81e8bdbd8bc6d6112ad582c6803b5304ba6ce22acd9bcccffe8a96f3daa4038c4d13693989772961802d53b735c9926a5c8cbfbac4455a4ae4de8b1c52a4230058ad63c2eff5e20744e49e5aed09e6fe6cd241cc7c6b7822964917801b797958969feebce3a743bad38bfbca7c6dd85fd8915105785fd82a3772a030137bd348db5c", ['\x00', '\x00', '\x00', '\x00']}, 0x554) r1 = syz_open_dev$vcsa(&(0x7f0000000b40), 0x8, 0x111500) sendmsg$NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f0000000c40)={&(0x7f0000000b80), 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x24, 0x0, 0x10, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xe2}]}, 0x24}, 0x1, 0x0, 0x0, 0x40001}, 0x2400c811) ioctl$AUTOFS_IOC_ASKUMOUNT(r1, 0x80049370, &(0x7f0000000c80)) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000cc0), 0x80001) fsetxattr$security_evm(r2, &(0x7f0000000d00), &(0x7f0000000d40)=@md5={0x1, "d5253c6c1b9aa0094349d84e6790c845"}, 0x11, 0x1) r3 = openat(r1, &(0x7f0000000d80)='./file0\x00', 0x82000, 0x8) ioctl$TCGETA(r3, 0x5405, &(0x7f0000000dc0)) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000e00)={{0x3, 0x1, 0x3, 0x1, 0x6}}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r3, &(0x7f0000000f40)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000f00)={&(0x7f0000000e80)={0x64, 0x0, 0x1, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x28}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1ff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xdd65}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x2}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1000}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1f}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x4}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3}]}, 0x64}}, 0x40040) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r1, 0x40505412, &(0x7f0000000f80)={0x5, 0x6, 0x8000, 0x0, 0xe}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000001000)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) ioctl$EVIOCSABS0(r4, 0x401845c0, &(0x7f0000001040)={0x6, 0x3, 0x9, 0x7ff, 0x9, 0xdf}) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x401) 03:13:26 executing program 5: sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x84, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x38, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @broadcast}, @IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @local}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}]}, 0x84}, 0x1, 0x0, 0x0, 0x20040080}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20800}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x68, 0x0, 0x10, 0x70bd29, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @mcast1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'bridge_slave_0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast1}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast1}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x10}}]}, 0x68}}, 0x4000080) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, 0x3, 0x8, 0x3, 0x0, 0x0, {0xc, 0x0, 0x7}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8010}, 0x20004000) r0 = dup(0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000001b80)={'ip6gre0\x00', &(0x7f0000001b00)={'ip6gre0\x00', 0x0, 0x29, 0x0, 0x6, 0x1ff, 0x2, @rand_addr=' \x01\x00', @local, 0x8, 0x80, 0x1, 0x3}}) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000001bc0)={'wg0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000001c80)={'syztnl2\x00', &(0x7f0000001c00)={'syztnl1\x00', 0x0, 0x2d, 0x0, 0x5, 0x2, 0x5e, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x80, 0x20, 0x7, 0x401}}) sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000001dc0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001d80)={&(0x7f0000001cc0)={0xb8, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {}, [@HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_macvtap\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1\x00'}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x10}, 0x4000) sendmsg$AUDIT_TTY_GET(r0, &(0x7f0000001ec0)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e40)={0x10, 0x3f8, 0x101, 0x70bd29, 0x25dfdbfd, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x40}, 0x10) r4 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001f40), r0) sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f0000002000)={&(0x7f0000001f00)={0x10, 0x0, 0x0, 0xc23d8151722622d3}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001f80)={0x1c, r4, 0x300, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}]}, 0x1c}}, 0x2008050) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000002040)={{0x1, 0x1, 0x18, r0, {0x0, 0xee01}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r5, 0xc0189373, &(0x7f0000002080)={{0x1, 0x1, 0x18, r0, {0x9}}, './file0\x00'}) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000002180)={&(0x7f00000020c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000002140)={&(0x7f0000002100)={0x34, 0x0, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x40}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x40800) socket$inet_udplite(0x2, 0x2, 0x88) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f00000021c0)={{0x1, 0x1, 0x18, r5, {0xfffffffb}}, './file0\x00'}) fcntl$setflags(r7, 0x2, 0x1) ioctl$BTRFS_IOC_SET_FEATURES(r6, 0x40309439, &(0x7f0000002200)={0x2, 0x1, 0xd}) mknodat(r0, &(0x7f0000002240)='./file0\x00', 0x400, 0x101) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c89425, &(0x7f0000002280)={"1b03ca70a5bcb752e1114cbf7f96ccd2", 0x0, 0x0, {0xfffffffffffffeff, 0x6}, {0x1, 0xfffffe5b}, 0x91, [0xff, 0xfffffffffffffffc, 0xffffffff, 0x8, 0x1, 0x4, 0x7, 0x8, 0x54, 0x1, 0x5, 0xdf60, 0x2, 0x7ff, 0x6, 0x1000]}) [ 69.946309] audit: type=1400 audit(1664680406.988:6): avc: denied { execmem } for pid=286 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 03:13:26 executing program 6: ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000000)={{0xb01}, 0x100, './file0\x00'}) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f0000000280)={0x3, &(0x7f0000000200)=[{0xe3, 0x3d, &(0x7f0000000140)="dec09bf3e475c052591ffdabb70059aa6236224004a21de24bc6c131517ca4ccff0e3578297287a85cd898e3b504837b78a204b8a5e6f5c5c52e5b0952", 0x1, 0x1}, {0x101, 0x9, &(0x7f0000000180)="77af49a4f991c99e63", 0x1, 0x1}, {0xf0, 0x25, &(0x7f00000001c0)="82e2071ba9748a186c01be01205702e39e1c441192419fd78672be0a31d494b78bee7561f8"}]}) ioctl$BTRFS_IOC_DEFRAG(0xffffffffffffffff, 0x50009402, 0x0) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x128, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}]}, 0x128}, 0x1, 0x0, 0x0, 0x4000000}, 0x4040054) r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000004c0), 0x543e01, 0x0) fsmount(r0, 0x1, 0x30) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000500)={{0x6, 0x5}, 0x100, './file0/file0\x00'}) sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x7c, 0x0, 0x204, 0x70bd29, 0x25dfdbfb, {}, [@DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xf, 0xa9, @name2}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x8}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0x4, 0xa9, @random}, @DEVLINK_ATTR_PORT_INDEX={0x8}, @DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0x7fff}, @DEVLINK_ATTR_RATE_TX_MAX={0xc, 0xa7, 0x9}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0x7c}, 0x1, 0x0, 0x0, 0x800}, 0x20004084) getsockname$inet(r0, &(0x7f0000000780)={0x2, 0x0, @initdev}, &(0x7f00000007c0)=0x10) r1 = memfd_secret(0x80000) sendmsg$NL80211_CMD_SET_CQM(r1, &(0x7f0000000a40)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000a00)={&(0x7f0000000840)={0x1b4, 0x0, 0x100, 0x70bd2b, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7fe8, 0x44}}}}, [@NL80211_ATTR_CQM={0x58, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x514}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x36}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x42a}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x7}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x1000}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x80000001}, @NL80211_ATTR_CQM_RSSI_THOLD={0x1c, 0x1, [0x7, 0x2, 0x6, 0x7, 0x23f, 0xbed]}]}, @NL80211_ATTR_CQM={0x1c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x23}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x43}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x1}]}, @NL80211_ATTR_CQM={0x24, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x3}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x2ae}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x800}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x5}]}, @NL80211_ATTR_CQM={0x40, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x14, 0x1, [0x0, 0xff, 0x22, 0x8]}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x1f}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x6}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x9}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x10}]}, @NL80211_ATTR_CQM={0x2c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x1f3}, @NL80211_ATTR_CQM_TXE_INTVL={0x8, 0x7, 0x3a2}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x4}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x16}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0x3}]}, @NL80211_ATTR_CQM={0x1c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THOLD={0x18, 0x1, [0x2, 0x9, 0x200, 0x9, 0x800]}]}, @NL80211_ATTR_CQM={0x3c, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x7ff}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x28}, @NL80211_ATTR_CQM_RSSI_LEVEL={0x8, 0x9, 0x101}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x101}, @NL80211_ATTR_CQM_RSSI_HYST={0x8, 0x2, 0xfffffff8}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x488c}, @NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8, 0x3, 0x1}]}, @NL80211_ATTR_CQM={0x38, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0x14, 0x1, [0x0, 0x80000001, 0xfff, 0x0]}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x49}, @NL80211_ATTR_CQM_TXE_RATE={0x8, 0x5, 0x8}, @NL80211_ATTR_CQM_TXE_PKTS={0x8, 0x6, 0x6}]}]}, 0x1b4}, 0x1, 0x0, 0x0, 0x80004}, 0x40) flistxattr(r0, &(0x7f0000000a80)=""/233, 0xe9) r2 = openat(r1, &(0x7f0000000b80)='./file0\x00', 0x4100, 0xa8) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000c00), r1) sendmsg$TIPC_NL_LINK_SET(r2, &(0x7f0000000e80)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000c40)={0x1d8, r3, 0x200, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_LINK={0x58, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x72}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x80000001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fff}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}]}, @TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffffff1d}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x81}]}, @TIPC_NLA_NODE={0x10, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7ff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1f}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x5349}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfd8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x5}]}, @TIPC_NLA_SOCK={0x74, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1ff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x351a6b7a}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80000001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0xfff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4}, @TIPC_NLA_CON_FLAG={0x8}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x80000000}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x101}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x60ff}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x8ae}]}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x200}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x6}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x10000}]}, @TIPC_NLA_NODE={0x5c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7ff}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x43, 0x4, {'gcm(aes)\x00', 0x1b, "45f3c85ef42407ee6f6b356b30215349aab2a5ea5872d9e584fc24"}}]}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x4001}, 0x4000000) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000ec0), 0x200, 0x0) sendmsg$NL80211_CMD_GET_MPP(r4, &(0x7f0000000fc0)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x5188}, 0xc, &(0x7f0000000f80)={&(0x7f0000000f40)={0x40, 0x0, 0x0, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x40}}, 0x4000) write$binfmt_elf64(r4, &(0x7f0000001000)={{0x7f, 0x45, 0x4c, 0x46, 0x6, 0xf9, 0x20, 0x7, 0x6, 0x3, 0x3e, 0xeb4, 0x319, 0x40, 0x398, 0x3, 0x0, 0x38, 0x1, 0x7fff, 0x8, 0x76d}, [{0x1, 0x5, 0x100000001, 0x2, 0x1, 0x400, 0x5, 0x800}], "2a02dc9abf6acdd520112b8f2d4abfbf2d1dfa91aebf22e4c8d3a83db0957539615ac7bb7041df2838ae9d95e6264e687c62043e70afd9128e406dcb8776d775407a1327764259453f8c81b3a76bf8ffa469f6b14c552536819b0e74fcaf81324f32cd5ae6f60731f2b26d22fee45ef53e3ed20311dfbe288ed74c05053ddd79432504"}, 0xfb) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001140), r2) sendmsg$NL80211_CMD_FLUSH_PMKSA(r4, &(0x7f0000001200)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)={0x14, r5, 0x8, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x1890) 03:13:27 executing program 7: ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7ff}}, './file0\x00'}) ioctl$CDROMRESUME(r0, 0x5302) ioctl$CDROMREADTOCHDR(r0, 0x5305, &(0x7f0000000040)={0x3, 0x2}) ioctl$BTRFS_IOC_SET_FEATURES(0xffffffffffffffff, 0x40309439, &(0x7f0000000080)={0x0, 0x1, 0x14}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(r0, 0xc04c5349, &(0x7f00000000c0)={0x3, 0x3, 0x6}) r1 = perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x0, 0x40, 0x96, 0x1f, 0x0, 0x5, 0x88c02, 0xa, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0x285, 0x9}, 0x8082, 0x5, 0x1, 0x0, 0x6, 0x3, 0x6, 0x0, 0x8, 0x0, 0xfffffffffffff478}, 0xffffffffffffffff, 0x7, r0, 0x3) ioctl$DVD_READ_STRUCT(r0, 0x5390, &(0x7f00000001c0)=@physical={0x0, 0x2, [{0x7, 0x7, 0xe, 0xa, 0x3, 0x1, 0x1, 0xb, 0x7, 0x1, 0x7, 0x1a2, 0x5}, {0x3, 0x0, 0xc, 0x8, 0x6, 0x1, 0x1, 0x9, 0x1, 0x0, 0x277f, 0x2, 0x4}, {0x3, 0x0, 0x9, 0x4, 0xc, 0x1, 0x3, 0x1, 0xc, 0x1, 0xfffffffd, 0x74c1, 0x7fffffff}, {0x2, 0x3, 0x0, 0x6, 0xb, 0x0, 0x1, 0x5, 0x5, 0x0, 0x8, 0x40, 0xffff}]}) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000a80), 0xc01, 0x0) mount$9p_fd(0x0, &(0x7f0000000a00)='./file0\x00', &(0x7f0000000a40), 0x800, &(0x7f0000000ac0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@loose}, {@version_9p2000}, {@mmap}, {@version_9p2000}, {@version_9p2000}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}, {@loose}, {@fscache}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@permit_directio}]}}) write(r2, &(0x7f0000000b80)="3589e23cc9e25217e988048bede5776bbfb6210cb87a79b142e7144e3d8b3a6233c4f11cf4f7cf9e90efd86da12bb869ba05f6240b706839e7378b98a973fed940374a644624e7746065296d10bc3b5ca8376a3dd7c455464c387017c29b40b9544603bc83e380b71416e85673911127dffb8d5ad30464e3c3c499e36a741ead46192014b1da215d610ea8770345cb216391def8fa00c7c83dc73a31b492afe6ef4737d72e34264ef23407233dd933cc8fc9aadd058c15d584471db8a555c76ff243", 0xc2) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000c80)={{0x1, 0x1, 0x18, r2, {0x3ff}}, './file0\x00'}) ioctl$CDROMREADRAW(r3, 0x5314, &(0x7f0000000cc0)={0x1, 0x4, 0x82, 0x9, 0x6, 0x35}) ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f0000001740)) openat$cdrom(0xffffffffffffff9c, &(0x7f0000001780), 0x800, 0x0) openat$cdrom(0xffffffffffffff9c, &(0x7f00000017c0), 0x20000, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r1, 0xf501, 0x0) ioctl$CDROM_DISC_STATUS(r2, 0x5327) ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000001800)=0x1) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r3, &(0x7f0000001840)={0x20000000}) ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f00000018c0)={0x0, 0x0, {0x0, @struct}, {0x0, @struct}, {0x0, @struct}}) [ 71.302596] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 71.304722] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 71.306429] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.308016] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 71.310440] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.311626] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 71.312995] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 71.314225] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 71.316198] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 71.317731] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.319007] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 71.320244] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 71.323591] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 71.325523] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 71.326944] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 71.344239] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 71.361885] Bluetooth: hci3: HCI_REQ-0x0c1a [ 71.363715] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 71.364775] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 71.368199] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 71.370255] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 71.370316] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 71.376134] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.378809] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 71.379547] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 71.381636] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 71.383227] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 71.384323] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 71.384759] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 71.387015] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 71.390178] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 71.391743] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 71.393348] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 71.394914] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 71.395062] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.396625] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.398385] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 71.400450] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 71.407021] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 71.411213] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 71.414444] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 71.418661] Bluetooth: hci0: HCI_REQ-0x0c1a [ 71.422400] Bluetooth: hci4: HCI_REQ-0x0c1a [ 71.423187] Bluetooth: hci1: HCI_REQ-0x0c1a [ 71.436725] Bluetooth: hci2: HCI_REQ-0x0c1a [ 71.461777] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 71.465059] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 71.466577] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 71.468909] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 71.473208] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 71.474793] Bluetooth: hci5: HCI_REQ-0x0c1a [ 71.475469] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 71.479496] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 71.491589] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 71.492978] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 71.499184] Bluetooth: hci6: HCI_REQ-0x0c1a [ 73.372354] Bluetooth: hci3: command 0x0409 tx timeout [ 73.435919] Bluetooth: hci7: command 0x0409 tx timeout [ 73.436922] Bluetooth: hci0: command 0x0409 tx timeout [ 73.436950] Bluetooth: hci1: command 0x0409 tx timeout [ 73.500965] Bluetooth: hci5: command 0x0409 tx timeout [ 73.501637] Bluetooth: hci2: command 0x0409 tx timeout [ 73.502154] Bluetooth: hci4: command 0x0409 tx timeout [ 73.563945] Bluetooth: hci6: command 0x0409 tx timeout [ 75.419922] Bluetooth: hci3: command 0x041b tx timeout [ 75.483939] Bluetooth: hci0: command 0x041b tx timeout [ 75.484429] Bluetooth: hci7: command 0x041b tx timeout [ 75.484984] Bluetooth: hci1: command 0x041b tx timeout [ 75.548030] Bluetooth: hci4: command 0x041b tx timeout [ 75.548509] Bluetooth: hci2: command 0x041b tx timeout [ 75.548958] Bluetooth: hci5: command 0x041b tx timeout [ 75.612208] Bluetooth: hci6: command 0x041b tx timeout [ 77.468893] Bluetooth: hci3: command 0x040f tx timeout [ 77.532986] Bluetooth: hci1: command 0x040f tx timeout [ 77.533528] Bluetooth: hci7: command 0x040f tx timeout [ 77.533970] Bluetooth: hci0: command 0x040f tx timeout [ 77.595942] Bluetooth: hci5: command 0x040f tx timeout [ 77.596472] Bluetooth: hci2: command 0x040f tx timeout [ 77.597035] Bluetooth: hci4: command 0x040f tx timeout [ 77.660121] Bluetooth: hci6: command 0x040f tx timeout [ 79.515954] Bluetooth: hci3: command 0x0419 tx timeout [ 79.580022] Bluetooth: hci0: command 0x0419 tx timeout [ 79.580894] Bluetooth: hci7: command 0x0419 tx timeout [ 79.581615] Bluetooth: hci1: command 0x0419 tx timeout [ 79.644015] Bluetooth: hci4: command 0x0419 tx timeout [ 79.644802] Bluetooth: hci2: command 0x0419 tx timeout [ 79.645560] Bluetooth: hci5: command 0x0419 tx timeout [ 79.708198] Bluetooth: hci6: command 0x0419 tx timeout 03:14:22 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$selinux_attr(0xffffffffffffffff, &(0x7f0000000000)='/usr/sbin/cups-browsed\x00', 0x17) poll(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) sendmsg$IPCTNL_MSG_EXP_GET(r1, 0x0, 0x180) close_range(r0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) sendfile(r2, r2, 0x0, 0x100000) symlinkat(&(0x7f0000000140)='./file1\x00', r1, &(0x7f0000000180)='./file1\x00') lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=r3, @ANYBLOB="02000100", @ANYRES32, @ANYBLOB="02000400", @ANYBLOB="040000f90000000000000000000068"], 0x3c, 0x0) getresgid(0x0, 0x0, &(0x7f0000000080)=0x0) setregid(r4, 0xffffffffffffffff) fchown(r2, 0xee01, r4) [ 125.526961] audit: type=1400 audit(1664680462.569:7): avc: denied { open } for pid=3832 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.528368] audit: type=1400 audit(1664680462.569:8): avc: denied { kernel } for pid=3832 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.552465] ------------[ cut here ]------------ [ 125.552485] [ 125.552488] ====================================================== [ 125.552492] WARNING: possible circular locking dependency detected [ 125.552496] 6.0.0-rc7-next-20220930 #1 Not tainted [ 125.552502] ------------------------------------------------------ [ 125.552505] syz-executor.4/3834 is trying to acquire lock: [ 125.552511] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 125.552553] [ 125.552553] but task is already holding lock: [ 125.552556] ffff888017660020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.552583] [ 125.552583] which lock already depends on the new lock. [ 125.552583] [ 125.552586] [ 125.552586] the existing dependency chain (in reverse order) is: [ 125.552589] [ 125.552589] -> #3 (&ctx->lock){....}-{2:2}: [ 125.552602] _raw_spin_lock+0x2a/0x40 [ 125.552614] __perf_event_task_sched_out+0x53b/0x18d0 [ 125.552625] __schedule+0xedd/0x2470 [ 125.552639] schedule+0xda/0x1b0 [ 125.552653] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.552665] syscall_exit_to_user_mode+0x19/0x40 [ 125.552679] do_syscall_64+0x48/0x90 [ 125.552696] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.552709] [ 125.552709] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 125.552723] _raw_spin_lock_nested+0x30/0x40 [ 125.552733] raw_spin_rq_lock_nested+0x1e/0x30 [ 125.552746] task_fork_fair+0x63/0x4d0 [ 125.552763] sched_cgroup_fork+0x3d0/0x540 [ 125.552777] copy_process+0x4183/0x6e20 [ 125.552788] kernel_clone+0xe7/0x890 [ 125.552798] user_mode_thread+0xad/0xf0 [ 125.552808] rest_init+0x24/0x250 [ 125.552820] arch_call_rest_init+0xf/0x14 [ 125.552842] start_kernel+0x4c6/0x4eb [ 125.552857] secondary_startup_64_no_verify+0xe0/0xeb [ 125.552871] [ 125.552871] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 125.552884] _raw_spin_lock_irqsave+0x39/0x60 [ 125.552895] try_to_wake_up+0xab/0x1930 [ 125.552908] up+0x75/0xb0 [ 125.552922] __up_console_sem+0x6e/0x80 [ 125.552938] console_unlock+0x46a/0x590 [ 125.552954] vprintk_emit+0x1bd/0x560 [ 125.552970] vprintk+0x84/0xa0 [ 125.552985] _printk+0xba/0xf1 [ 125.552997] regdb_fw_cb.cold+0x6c/0xa7 [ 125.553014] request_firmware_work_func+0x12e/0x240 [ 125.553034] process_one_work+0xa17/0x16a0 [ 125.553051] worker_thread+0x637/0x1260 [ 125.553067] kthread+0x2ed/0x3a0 [ 125.553082] ret_from_fork+0x22/0x30 [ 125.553094] [ 125.553094] -> #0 ((console_sem).lock){....}-{2:2}: [ 125.553107] __lock_acquire+0x2a02/0x5e70 [ 125.553124] lock_acquire+0x1a2/0x530 [ 125.553140] _raw_spin_lock_irqsave+0x39/0x60 [ 125.553151] down_trylock+0xe/0x70 [ 125.553165] __down_trylock_console_sem+0x3b/0xd0 [ 125.553181] vprintk_emit+0x16b/0x560 [ 125.553197] vprintk+0x84/0xa0 [ 125.553212] _printk+0xba/0xf1 [ 125.553231] report_bug.cold+0x72/0xab [ 125.553248] handle_bug+0x3c/0x70 [ 125.553264] exc_invalid_op+0x14/0x50 [ 125.553281] asm_exc_invalid_op+0x16/0x20 [ 125.553293] group_sched_out.part.0+0x2c7/0x460 [ 125.553311] ctx_sched_out+0x8f1/0xc10 [ 125.553327] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.553338] __schedule+0xedd/0x2470 [ 125.553352] schedule+0xda/0x1b0 [ 125.553366] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.553378] syscall_exit_to_user_mode+0x19/0x40 [ 125.553393] do_syscall_64+0x48/0x90 [ 125.553409] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.553422] [ 125.553422] other info that might help us debug this: [ 125.553422] [ 125.553424] Chain exists of: [ 125.553424] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 125.553424] [ 125.553439] Possible unsafe locking scenario: [ 125.553439] [ 125.553442] CPU0 CPU1 [ 125.553444] ---- ---- [ 125.553446] lock(&ctx->lock); [ 125.553452] lock(&rq->__lock); [ 125.553459] lock(&ctx->lock); [ 125.553465] lock((console_sem).lock); [ 125.553470] [ 125.553470] *** DEADLOCK *** [ 125.553470] [ 125.553472] 2 locks held by syz-executor.4/3834: [ 125.553479] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 125.553508] #1: ffff888017660020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.553534] [ 125.553534] stack backtrace: [ 125.553537] CPU: 1 PID: 3834 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220930 #1 [ 125.553549] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.553557] Call Trace: [ 125.553561] [ 125.553565] dump_stack_lvl+0x8b/0xb3 [ 125.553583] check_noncircular+0x263/0x2e0 [ 125.553599] ? format_decode+0x26c/0xb50 [ 125.553616] ? print_circular_bug+0x450/0x450 [ 125.553633] ? simple_strtoul+0x30/0x30 [ 125.553649] ? format_decode+0x26c/0xb50 [ 125.553666] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 125.553683] __lock_acquire+0x2a02/0x5e70 [ 125.553704] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 125.553727] lock_acquire+0x1a2/0x530 [ 125.553743] ? down_trylock+0xe/0x70 [ 125.553760] ? lock_release+0x750/0x750 [ 125.553780] ? vprintk+0x84/0xa0 [ 125.553798] _raw_spin_lock_irqsave+0x39/0x60 [ 125.553809] ? down_trylock+0xe/0x70 [ 125.553825] down_trylock+0xe/0x70 [ 125.553841] ? vprintk+0x84/0xa0 [ 125.553858] __down_trylock_console_sem+0x3b/0xd0 [ 125.553875] vprintk_emit+0x16b/0x560 [ 125.553893] vprintk+0x84/0xa0 [ 125.553911] _printk+0xba/0xf1 [ 125.553922] ? record_print_text.cold+0x16/0x16 [ 125.553938] ? report_bug.cold+0x66/0xab [ 125.553956] ? group_sched_out.part.0+0x2c7/0x460 [ 125.553974] report_bug.cold+0x72/0xab [ 125.553992] handle_bug+0x3c/0x70 [ 125.554009] exc_invalid_op+0x14/0x50 [ 125.554027] asm_exc_invalid_op+0x16/0x20 [ 125.554040] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.554060] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.554071] RSP: 0018:ffff88801b0efc48 EFLAGS: 00010006 [ 125.554080] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.554088] RDX: ffff8880177e1ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 125.554096] RBP: ffff888017cf8000 R08: 0000000000000005 R09: 0000000000000001 [ 125.554103] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff888017660000 [ 125.554111] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 125.554121] ? group_sched_out.part.0+0x2c7/0x460 [ 125.554141] ? group_sched_out.part.0+0x2c7/0x460 [ 125.554161] ctx_sched_out+0x8f1/0xc10 [ 125.554180] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.554195] ? lock_is_held_type+0xd7/0x130 [ 125.554208] ? __perf_cgroup_move+0x160/0x160 [ 125.554219] ? set_next_entity+0x304/0x550 [ 125.554236] ? update_curr+0x267/0x740 [ 125.554255] ? lock_is_held_type+0xd7/0x130 [ 125.554269] __schedule+0xedd/0x2470 [ 125.554285] ? io_schedule_timeout+0x150/0x150 [ 125.554302] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.554323] schedule+0xda/0x1b0 [ 125.554337] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.554350] syscall_exit_to_user_mode+0x19/0x40 [ 125.554363] do_syscall_64+0x48/0x90 [ 125.554381] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.554394] RIP: 0033:0x7f781d9a8b19 [ 125.554402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.554413] RSP: 002b:00007f781af1e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.554423] RAX: 0000000000000001 RBX: 00007f781dabbf68 RCX: 00007f781d9a8b19 [ 125.554431] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f781dabbf6c [ 125.554438] RBP: 00007f781dabbf60 R08: 000000000000000e R09: 0000000000000000 [ 125.554445] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f781dabbf6c [ 125.554452] R13: 00007ffe4081c8ff R14: 00007f781af1e300 R15: 0000000000022000 [ 125.554465] [ 125.606388] WARNING: CPU: 1 PID: 3834 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 125.607019] Modules linked in: [ 125.607241] CPU: 1 PID: 3834 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220930 #1 [ 125.607785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.608534] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.608913] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.610133] RSP: 0018:ffff88801b0efc48 EFLAGS: 00010006 [ 125.610496] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.610975] RDX: ffff8880177e1ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 125.611458] RBP: ffff888017cf8000 R08: 0000000000000005 R09: 0000000000000001 [ 125.611942] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff888017660000 [ 125.612418] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 125.612900] FS: 00007f781af1e700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 125.613466] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 125.613861] CR2: 00007fe7b4a30008 CR3: 000000003e9f0000 CR4: 0000000000350ee0 [ 125.614344] Call Trace: [ 125.614522] [ 125.614685] ctx_sched_out+0x8f1/0xc10 [ 125.614968] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.615322] ? lock_is_held_type+0xd7/0x130 [ 125.615620] ? __perf_cgroup_move+0x160/0x160 [ 125.615933] ? set_next_entity+0x304/0x550 [ 125.616233] ? update_curr+0x267/0x740 [ 125.616512] ? lock_is_held_type+0xd7/0x130 [ 125.616809] __schedule+0xedd/0x2470 [ 125.617073] ? io_schedule_timeout+0x150/0x150 [ 125.617409] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.617751] schedule+0xda/0x1b0 [ 125.617993] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.618331] syscall_exit_to_user_mode+0x19/0x40 [ 125.618660] do_syscall_64+0x48/0x90 [ 125.618928] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.619284] RIP: 0033:0x7f781d9a8b19 [ 125.619540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.620761] RSP: 002b:00007f781af1e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.621297] RAX: 0000000000000001 RBX: 00007f781dabbf68 RCX: 00007f781d9a8b19 [ 125.621783] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f781dabbf6c [ 125.622259] RBP: 00007f781dabbf60 R08: 000000000000000e R09: 0000000000000000 [ 125.622744] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f781dabbf6c [ 125.623222] R13: 00007ffe4081c8ff R14: 00007f781af1e300 R15: 0000000000022000 [ 125.623706] [ 125.623871] irq event stamp: 714 [ 125.624102] hardirqs last enabled at (713): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 125.624732] hardirqs last disabled at (714): [] __schedule+0x1225/0x2470 [ 125.625302] softirqs last enabled at (558): [] __irq_exit_rcu+0x11b/0x180 [ 125.625874] softirqs last disabled at (487): [] __irq_exit_rcu+0x11b/0x180 [ 125.626449] ---[ end trace 0000000000000000 ]--- 03:14:22 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000080)) unlinkat(0xffffffffffffffff, 0x0, 0x0) 03:14:22 executing program 1: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0) ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, &(0x7f0000000040)={0x0, 0x3, 0x7ff, 0x80}) r1 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000001040)={0x200, 0x0, 0x0, "e975bf57c90e8b3e88475f6fb9f0e089d8c33124d2138b84352cb6e14438589d116395e328e661077a348e64d34149cef3a6cfd52a9cc2f96ae8df69e442103a15563433f7518b7fd5d0132de8033db10401f8b596e0963423ec8cb9147433ca1971f297888fb2a34376a801ea3d91aaee66f036e45801b7ebe992f309c097be9309bb3a6f1efc21739655dc46aa42ef944258b212d8d08cb09e0b27cab5bfcdefb290a96c44c83ecf346bbe71f67bdc693b06de10e05d98179c8dcd5c03c31c5644301b0bcc23bc55304c0ea57e0f4a55a91d091fcf17610e30d1261ed6641fe336a4128b74e29281528bc687674ecd1661f6522c47aa7b7aae89dcd1a8fde3535c52afabca6016c191a105523cb90e7ea5190069dbb60945f7a04a255563f17eabf273e445bf731f8709bb57230bcab6e5fc962920943e219b038e5cce7205fd60b776415ef5d9d5544ec28c9e5c2f379d34dab919637e1db21677539204b361e0cfc71c63dff8e86f9fc5e5e428fd998dc083b6071e79f58b461d11bd856f4d0ec0bcd14cd0ebe3e4ced695eebef874aca473ff0ab04d142601142cacce269f2c67a6c5b9e04f9b483e456ece5b62e9a1be8aea84ac3ff365e528b4fdbb38e2d3fd2b1249ff1e6ca30e835f4f139b3c5a4c47a309ce7848bf196e03fe50bcf58d962fdf3d81c721c2d3631333696fe7f5492fbf189ce68f5453b51f43b030"}) 03:14:22 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$selinux_attr(0xffffffffffffffff, &(0x7f0000000000)='/usr/sbin/cups-browsed\x00', 0x17) poll(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) sendmsg$IPCTNL_MSG_EXP_GET(r1, 0x0, 0x180) close_range(r0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) sendfile(r2, r2, 0x0, 0x100000) symlinkat(&(0x7f0000000140)='./file1\x00', r1, &(0x7f0000000180)='./file1\x00') lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=r3, @ANYBLOB="02000100", @ANYRES32, @ANYBLOB="02000400", @ANYBLOB="040000f90000000000000000000068"], 0x3c, 0x0) getresgid(0x0, 0x0, &(0x7f0000000080)=0x0) setregid(r4, 0xffffffffffffffff) fchown(r2, 0xee01, r4) [ 125.968130] program syz-executor.1 is using a deprecated SCSI ioctl, please convert it to SG_IO 03:14:23 executing program 1: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x8, &(0x7f0000000040)=[{0x100, 0x0, 0x1, 0x1}, {0xfff, 0x3, 0x8, 0x5}, {0x101, 0x9, 0x7f, 0x1}, {0x1, 0x81, 0x2, 0xffff0c97}, {0xfa67, 0x1, 0x2, 0x7}, {0x100, 0xff, 0xc9, 0x6}, {0x6, 0x80, 0x9, 0xffffffff}, {0x1, 0x6}]}) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f00000004c0)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000440008000f801", 0x17}, {0x0, 0x0, 0xa00}, {&(0x7f0000000440)="636f62515c82f585d0", 0x9}, {&(0x7f0000000480)="55b88e29f1f6194a23a494aa231365fa5a622b9b5d661253a8a36eee", 0x1c, 0x100020000000000}], 0x0, &(0x7f0000000140)=ANY=[]) fspick(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0) stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)) [ 126.051918] loop1: detected capacity change from 0 to 264192 03:14:23 executing program 1: r0 = semget$private(0x0, 0x4, 0x0) semtimedop(r0, &(0x7f0000000040)=[{0x3, 0xfffe, 0x800}, {0x0, 0x0, 0x1000}], 0x2, 0x0) r1 = semget$private(0x0, 0x0, 0x228) semctl$IPC_RMID(r1, 0x0, 0x0) semctl$SEM_INFO(r0, 0x3, 0x13, &(0x7f00000000c0)=""/47) getrlimit(0xb, &(0x7f0000000040)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=0x0) prlimit64(r2, 0xf, &(0x7f0000000080)={0x6, 0x7}, 0x0) 03:14:23 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$selinux_attr(0xffffffffffffffff, &(0x7f0000000000)='/usr/sbin/cups-browsed\x00', 0x17) poll(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) sendmsg$IPCTNL_MSG_EXP_GET(r1, 0x0, 0x180) close_range(r0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) sendfile(r2, r2, 0x0, 0x100000) symlinkat(&(0x7f0000000140)='./file1\x00', r1, &(0x7f0000000180)='./file1\x00') lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=r3, @ANYBLOB="02000100", @ANYRES32, @ANYBLOB="02000400", @ANYBLOB="040000f90000000000000000000068"], 0x3c, 0x0) getresgid(0x0, 0x0, &(0x7f0000000080)=0x0) setregid(r4, 0xffffffffffffffff) fchown(r2, 0xee01, r4) 03:14:23 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r0, &(0x7f0000000640)=[{&(0x7f00000002c0)="02", 0x1}], 0x1, 0x7fffffe, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r3, 0x0, 0x0, 0xf06) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000000)={0x0, r2}) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) [ 126.324850] hrtimer: interrupt took 18765 ns VM DIAGNOSIS: 03:14:22 Registers: info registers vcpu 0 RAX=0000000000000007 RBX=0000000000000202 RCX=1ffffffff0b61001 RDX=0000000000000000 RSI=0000000000000004 RDI=ffffffff84273de8 RBP=ffff88800f96f950 RSP=ffff88801bf5f8a0 R8 =0000000000000000 R9 =0000000000000000 R10=ffffed1001f2df2a R11=0000000000000001 R12=ffffffff84273de8 R13=ffff88800f96f990 R14=ffff888007c75000 R15=ffff88801e6af800 RIP=ffffffff814ce4a4 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff8f2876540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff8f2d50000 CR3=000000001e46c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 00ff000000000000 0000000000ff0000 YMM01=0000000000000000 0000000000000000 ff00ffffffffffff ffffffffff0000ff YMM02=0000000000000000 0000000000000000 00666e6f63737973 00657a696c616e69 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000616e69 YMM04=0000000000000000 0000000000000000 68637300666e6f63 73797300657a696c YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801b0ef690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f781af1e700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe7b4a30008 CR3=000000003e9f0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f781da8f7c0 00007f781da8f7c8 YMM02=0000000000000000 0000000000000000 00007f781da8f7e0 00007f781da8f7c0 YMM03=0000000000000000 0000000000000000 00007f781da8f7c8 00007f781da8f7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000