Warning: Permanently added '[localhost]:7596' (ECDSA) to the list of known hosts. 2022/10/02 03:55:37 fuzzer started 2022/10/02 03:55:37 dialing manager at localhost:35095 syzkaller login: [ 46.403932] cgroup: Unknown subsys name 'net' [ 46.517637] cgroup: Unknown subsys name 'rlimit' 2022/10/02 03:55:50 syscalls: 2215 2022/10/02 03:55:50 code coverage: enabled 2022/10/02 03:55:50 comparison tracing: enabled 2022/10/02 03:55:50 extra coverage: enabled 2022/10/02 03:55:50 setuid sandbox: enabled 2022/10/02 03:55:50 namespace sandbox: enabled 2022/10/02 03:55:50 Android sandbox: enabled 2022/10/02 03:55:50 fault injection: enabled 2022/10/02 03:55:50 leak checking: enabled 2022/10/02 03:55:50 net packet injection: enabled 2022/10/02 03:55:50 net device setup: enabled 2022/10/02 03:55:50 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/02 03:55:50 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/02 03:55:50 USB emulation: enabled 2022/10/02 03:55:50 hci packet injection: enabled 2022/10/02 03:55:50 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/02 03:55:50 802.15.4 emulation: enabled 2022/10/02 03:55:51 fetching corpus: 50, signal 28739/30527 (executing program) 2022/10/02 03:55:51 fetching corpus: 100, signal 38530/41898 (executing program) 2022/10/02 03:55:51 fetching corpus: 150, signal 46590/51503 (executing program) 2022/10/02 03:55:51 fetching corpus: 200, signal 53464/59838 (executing program) 2022/10/02 03:55:51 fetching corpus: 250, signal 59950/67663 (executing program) 2022/10/02 03:55:51 fetching corpus: 300, signal 63602/72709 (executing program) 2022/10/02 03:55:51 fetching corpus: 350, signal 66554/77021 (executing program) 2022/10/02 03:55:51 fetching corpus: 400, signal 71817/83417 (executing program) 2022/10/02 03:55:51 fetching corpus: 450, signal 75808/88552 (executing program) 2022/10/02 03:55:52 fetching corpus: 500, signal 81033/94833 (executing program) 2022/10/02 03:55:52 fetching corpus: 550, signal 83662/98650 (executing program) 2022/10/02 03:55:52 fetching corpus: 600, signal 85998/102159 (executing program) 2022/10/02 03:55:52 fetching corpus: 650, signal 88237/105542 (executing program) 2022/10/02 03:55:52 fetching corpus: 700, signal 91687/109993 (executing program) 2022/10/02 03:55:52 fetching corpus: 750, signal 93504/112891 (executing program) 2022/10/02 03:55:52 fetching corpus: 800, signal 95753/116130 (executing program) 2022/10/02 03:55:52 fetching corpus: 850, signal 98175/119531 (executing program) 2022/10/02 03:55:52 fetching corpus: 900, signal 100474/122746 (executing program) 2022/10/02 03:55:53 fetching corpus: 950, signal 102756/125925 (executing program) 2022/10/02 03:55:53 fetching corpus: 1000, signal 104094/128267 (executing program) 2022/10/02 03:55:53 fetching corpus: 1050, signal 106490/131441 (executing program) 2022/10/02 03:55:53 fetching corpus: 1100, signal 107902/133798 (executing program) 2022/10/02 03:55:53 fetching corpus: 1150, signal 109225/136078 (executing program) 2022/10/02 03:55:53 fetching corpus: 1200, signal 110861/138592 (executing program) 2022/10/02 03:55:53 fetching corpus: 1250, signal 113543/141918 (executing program) 2022/10/02 03:55:53 fetching corpus: 1300, signal 116568/145455 (executing program) 2022/10/02 03:55:54 fetching corpus: 1350, signal 119732/149143 (executing program) 2022/10/02 03:55:54 fetching corpus: 1400, signal 122624/152503 (executing program) 2022/10/02 03:55:54 fetching corpus: 1450, signal 123436/154196 (executing program) 2022/10/02 03:55:54 fetching corpus: 1500, signal 124589/156151 (executing program) 2022/10/02 03:55:54 fetching corpus: 1550, signal 125633/157995 (executing program) 2022/10/02 03:55:54 fetching corpus: 1600, signal 127413/160377 (executing program) 2022/10/02 03:55:54 fetching corpus: 1650, signal 129527/162973 (executing program) 2022/10/02 03:55:54 fetching corpus: 1700, signal 130622/164799 (executing program) 2022/10/02 03:55:54 fetching corpus: 1750, signal 131602/166554 (executing program) 2022/10/02 03:55:55 fetching corpus: 1800, signal 133572/169007 (executing program) 2022/10/02 03:55:55 fetching corpus: 1850, signal 134584/170744 (executing program) 2022/10/02 03:55:55 fetching corpus: 1900, signal 135325/172267 (executing program) 2022/10/02 03:55:55 fetching corpus: 1950, signal 136351/174023 (executing program) 2022/10/02 03:55:55 fetching corpus: 2000, signal 138280/176397 (executing program) 2022/10/02 03:55:55 fetching corpus: 2050, signal 139657/178271 (executing program) 2022/10/02 03:55:55 fetching corpus: 2100, signal 140779/179985 (executing program) 2022/10/02 03:55:55 fetching corpus: 2150, signal 143670/182904 (executing program) 2022/10/02 03:55:55 fetching corpus: 2200, signal 144511/184410 (executing program) 2022/10/02 03:55:56 fetching corpus: 2250, signal 145761/186123 (executing program) 2022/10/02 03:55:56 fetching corpus: 2300, signal 146405/187434 (executing program) 2022/10/02 03:55:56 fetching corpus: 2350, signal 147057/188795 (executing program) 2022/10/02 03:55:56 fetching corpus: 2400, signal 148230/190399 (executing program) 2022/10/02 03:55:56 fetching corpus: 2450, signal 149462/192040 (executing program) 2022/10/02 03:55:56 fetching corpus: 2500, signal 151873/194437 (executing program) 2022/10/02 03:55:56 fetching corpus: 2550, signal 153426/196264 (executing program) 2022/10/02 03:55:56 fetching corpus: 2600, signal 154524/197730 (executing program) 2022/10/02 03:55:57 fetching corpus: 2650, signal 155656/199269 (executing program) 2022/10/02 03:55:57 fetching corpus: 2700, signal 156789/200779 (executing program) 2022/10/02 03:55:57 fetching corpus: 2750, signal 157716/202121 (executing program) 2022/10/02 03:55:57 fetching corpus: 2800, signal 158281/203253 (executing program) 2022/10/02 03:55:57 fetching corpus: 2850, signal 158965/204488 (executing program) 2022/10/02 03:55:57 fetching corpus: 2900, signal 159820/205856 (executing program) 2022/10/02 03:55:57 fetching corpus: 2950, signal 160564/207080 (executing program) 2022/10/02 03:55:57 fetching corpus: 3000, signal 161582/208430 (executing program) 2022/10/02 03:55:57 fetching corpus: 3050, signal 162120/209515 (executing program) 2022/10/02 03:55:58 fetching corpus: 3100, signal 163092/210830 (executing program) 2022/10/02 03:55:58 fetching corpus: 3150, signal 164064/212086 (executing program) 2022/10/02 03:55:58 fetching corpus: 3200, signal 164931/213301 (executing program) 2022/10/02 03:55:58 fetching corpus: 3250, signal 166469/214893 (executing program) 2022/10/02 03:55:58 fetching corpus: 3300, signal 167197/215967 (executing program) 2022/10/02 03:55:58 fetching corpus: 3350, signal 168317/217242 (executing program) 2022/10/02 03:55:58 fetching corpus: 3400, signal 169296/218455 (executing program) 2022/10/02 03:55:58 fetching corpus: 3450, signal 170319/219647 (executing program) 2022/10/02 03:55:59 fetching corpus: 3500, signal 171405/220850 (executing program) 2022/10/02 03:55:59 fetching corpus: 3550, signal 172400/222005 (executing program) 2022/10/02 03:55:59 fetching corpus: 3600, signal 172866/222874 (executing program) 2022/10/02 03:55:59 fetching corpus: 3650, signal 174356/224200 (executing program) 2022/10/02 03:55:59 fetching corpus: 3700, signal 175519/225435 (executing program) 2022/10/02 03:55:59 fetching corpus: 3750, signal 176354/226507 (executing program) 2022/10/02 03:55:59 fetching corpus: 3800, signal 177173/227485 (executing program) 2022/10/02 03:56:00 fetching corpus: 3850, signal 178454/228707 (executing program) 2022/10/02 03:56:00 fetching corpus: 3900, signal 179164/229709 (executing program) 2022/10/02 03:56:00 fetching corpus: 3950, signal 180352/230869 (executing program) 2022/10/02 03:56:00 fetching corpus: 4000, signal 180947/231732 (executing program) 2022/10/02 03:56:00 fetching corpus: 4050, signal 182013/232770 (executing program) 2022/10/02 03:56:00 fetching corpus: 4100, signal 182959/233737 (executing program) 2022/10/02 03:56:00 fetching corpus: 4150, signal 183713/234626 (executing program) 2022/10/02 03:56:00 fetching corpus: 4200, signal 184260/235427 (executing program) 2022/10/02 03:56:01 fetching corpus: 4250, signal 185464/236423 (executing program) 2022/10/02 03:56:01 fetching corpus: 4300, signal 186001/237223 (executing program) 2022/10/02 03:56:01 fetching corpus: 4350, signal 186988/238152 (executing program) 2022/10/02 03:56:01 fetching corpus: 4400, signal 187567/238908 (executing program) 2022/10/02 03:56:01 fetching corpus: 4450, signal 188053/239669 (executing program) 2022/10/02 03:56:01 fetching corpus: 4500, signal 188787/240426 (executing program) 2022/10/02 03:56:01 fetching corpus: 4550, signal 189454/241201 (executing program) 2022/10/02 03:56:01 fetching corpus: 4600, signal 190377/242044 (executing program) 2022/10/02 03:56:01 fetching corpus: 4650, signal 190884/242719 (executing program) 2022/10/02 03:56:02 fetching corpus: 4700, signal 191947/243611 (executing program) 2022/10/02 03:56:02 fetching corpus: 4750, signal 193375/244538 (executing program) 2022/10/02 03:56:02 fetching corpus: 4800, signal 193749/245169 (executing program) 2022/10/02 03:56:02 fetching corpus: 4850, signal 194348/245865 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/246489 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/247020 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/247543 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/248050 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/248589 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/249119 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/249669 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/250207 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/250731 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/251254 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/251806 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/252360 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/252887 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/253397 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/253940 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/254435 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/255001 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/255550 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/256078 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/256649 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/257184 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/257666 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/258201 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/258725 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/259249 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/259809 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/260354 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/260873 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/261393 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/261935 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/262474 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/263010 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/263517 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/263630 (executing program) 2022/10/02 03:56:02 fetching corpus: 4874, signal 194680/263630 (executing program) 2022/10/02 03:56:05 starting 8 fuzzer processes 03:56:05 executing program 1: mknodat$loop(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x2000, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x741300, 0x90) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = fcntl$dupfd(r0, 0x406, r0) ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f0000000280)={{'\x00', 0x1}, {0x1}, 0xb7, 0x0, 0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100)="9b555fc8ecfeb692bea78206ef50af5e50", 0x11, 0x0, &(0x7f0000000140)={0x2, 0xe2, {0x1, 0xc, 0x4f, "9daa0b2144f78acb6363570744629a66c6bf89a8f7127ca4669fc60ea390e382bf76bf7647381e061a7b8721b75ffc469def8fa8cdcc5fde0038e3d8da621518ed31bb9d60120ada30e463b730083a", 0x86, "793ea5466991930fe3a076c39a10e82f74b7f751f3fff2c0ecba131791a38f323e63febbf92acbb0970835d1e5e73deff60fb4a76e68fdf302711a9917fdf5b76bc27cd4ffdd898c42aa3c89224af6587a08e7ae2340620f758fbcba942e7ee99c4e5ab77e8886e33cfb2e667357c03cfbbee3cac4301f12434c0ae4db3ea4d64b86c3d475ad"}, 0x13, "c2a7bc9c69c2a8fa27a6488ed7f1d385f889d9"}, 0x101}) write$bt_hci(r1, &(0x7f0000000300)={0x1, @create_conn={{0x405, 0xd}, {@any, 0x8, 0x5, 0x3, 0xbf3, 0x4e}}}, 0x11) fchdir(r2) openat(0xffffffffffffffff, &(0x7f0000000340)='./file0/file0\x00', 0x90000, 0x10c) fallocate(r2, 0x1, 0x1, 0x7ff) r3 = openat2(r0, &(0x7f0000000380)='./file0\x00', &(0x7f00000003c0)={0xac402, 0x10, 0x18}, 0x18) r4 = openat(r3, &(0x7f0000000400)='./file0\x00', 0x1, 0xa0) r5 = accept4$packet(r2, 0x0, &(0x7f0000000440), 0x80000) ioctl$BTRFS_IOC_GET_DEV_STATS(r5, 0xc4089434, &(0x7f0000000480)={0x0, 0x80000001, 0x0, [0x1a, 0x4cbc, 0x8000000000, 0x10001, 0xe93], [0xb161, 0x5, 0x6, 0xe000000000000, 0x7fffffff, 0x3, 0xd841, 0x2fa, 0x7ff, 0x200, 0xfffffffffffffffe, 0x3, 0x9, 0xe000000, 0x4, 0x8, 0x8, 0x9, 0x7, 0x9, 0x7, 0x8000, 0x100000001, 0x8, 0x8, 0x6, 0x0, 0x3, 0x6, 0x7, 0x0, 0x1, 0x3, 0x0, 0x0, 0x3, 0x2, 0x100, 0xa7, 0x1, 0x6, 0xffff, 0x7, 0xfffffffffffeffff, 0x6, 0x3, 0xfffffffffffffff0, 0x2, 0x0, 0x27e6a825, 0x3f, 0x8, 0x3, 0x4, 0x8, 0x77e, 0x1, 0x80000000, 0x8000, 0x7f, 0x5, 0x81, 0xffffffff, 0x800, 0x80000001, 0x985, 0x5, 0xff, 0x3f, 0x3f, 0x1, 0x3e, 0x8001, 0x2, 0x7, 0x2, 0x4ac, 0x8, 0x7, 0xfffffffffffffff8, 0x2, 0x5, 0x4, 0x0, 0xeb3a, 0x4, 0x8a0, 0x5, 0x7f, 0x5, 0x1, 0x7e, 0x1, 0x8, 0x4, 0x7, 0x3a, 0x8, 0x6, 0x7, 0x7, 0x3, 0x1f, 0x7, 0x9, 0x7, 0x5, 0x2, 0x8, 0x1, 0x2, 0x0, 0x40, 0xd3ed, 0x590c, 0x8, 0x9, 0x20, 0x6, 0x8, 0x2da]}) openat(r0, &(0x7f00000008c0)='./file0\x00', 0x20040, 0x6) finit_module(r2, &(0x7f0000000900)='\x00', 0x2) openat2(0xffffffffffffff9c, &(0x7f0000000940)='./file0/file0\x00', &(0x7f0000000980)={0xe900, 0x0, 0x1}, 0x18) r6 = pidfd_getfd(0xffffffffffffffff, r4, 0x0) openat(r6, &(0x7f00000009c0)='./file0/file0\x00', 0x240800, 0x94) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000a00)='/sys/module/nf_conntrack_ftp', 0x8000, 0x1) mknodat$null(0xffffffffffffffff, &(0x7f0000000a80)='\x00', 0x4, 0x103) 03:56:05 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2302, 0x20) fcntl$setpipe(r0, 0x407, 0x80000000) r1 = memfd_secret(0x80000) sendmsg$AUDIT_USER(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x10, 0x3ed, 0x20, 0x70bd28, 0x25dfdbfe}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x40084) r2 = open(&(0x7f0000000140)='./file0\x00', 0x50d9c0, 0x28) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_MPATH(r2, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x34, 0x0, 0x400, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x34}, 0x1, 0x0, 0x0, 0x60000804}, 0x8004) dup3(r0, r2, 0x80000) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r2) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r2, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0xa8, r4, 0x100, 0x70bd29, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x10000}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x101}}]}, 0xa8}, 0x1, 0x0, 0x0, 0x48000}, 0x4000042) r5 = openat(r2, &(0x7f0000000480)='./file0\x00', 0x303001, 0x20) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), r0) getsockopt$inet_pktinfo(r5, 0x0, 0x8, &(0x7f0000000540)={0x0, @multicast1, @initdev}, &(0x7f0000000580)=0xc) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r5, &(0x7f0000000640)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x34, r6, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x40) sendmsg$NL802154_CMD_SET_PAN_ID(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x38, 0x0, 0x900, 0x70bd2d, 0x25dfdbfe, {}, [@NL802154_ATTR_PAN_ID={0x6, 0x9, 0xffff}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x2}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0xfffe}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x20001000) r8 = syz_genetlink_get_family_id$tipc(&(0x7f00000007c0), r5) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r0, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x2c, r8, 0x20, 0x70bd2c, 0x25dfdbfd, {{}, {}, {0x10, 0x18, {0x4fa0, @bearer=@l2={'eth', 0x3a, 'lo\x00'}}}}, ["", ""]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x20008801) sendto$packet(r1, &(0x7f00000008c0)="10f0459428565766e9159fc563343806a2cf27feb749a52daa451b029261262817ebd1029089c137209e4b5257ccd12f50fb0aee91d8ec4d0b9998b2357b9dc99d7e340e096644b7265d76d23f0c1fbdc76a82375161aa4250e73557c9b02755a0aefef41e86c3228f0df85f8f18ac8e74ddf63f54ed49a262234a0bdfd436ea146150b848922c1a5a7b8294c50d32d5fc486b5bfa138abb4323255b3165", 0x9e, 0x20000001, &(0x7f0000000980)={0x11, 0x10, r7, 0x1, 0x6, 0x6, @random="1090e1cb8012"}, 0x14) r9 = openat$vcs(0xffffffffffffff9c, &(0x7f00000009c0), 0x400000, 0x0) sendmsg$NL80211_CMD_SET_COALESCE(r9, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x24, 0x0, 0x20, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_COALESCE_RULE_CONDITION={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x851) 03:56:05 executing program 2: fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040), 0x2, 0x3) r0 = fcntl$getown(0xffffffffffffffff, 0x9) r1 = socket$packet(0x11, 0x3, 0x300) r2 = syz_open_dev$sg(&(0x7f0000000080), 0xfffffffffffffffd, 0x121000) r3 = fcntl$dupfd(r1, 0x406, r2) ioctl$EVIOCSABS20(r3, 0x401845e0, &(0x7f00000000c0)={0x3, 0x80, 0x8, 0x10001, 0xfffff4ce, 0x8}) r4 = open$dir(&(0x7f0000000100)='./file0\x00', 0x5355a2a5120d690b, 0x1) pread64(r4, &(0x7f0000000140)=""/29, 0x1d, 0xfffffffffffffffa) r5 = syz_open_dev$sg(&(0x7f0000000180), 0x0, 0x400000) ioctl$SG_SET_KEEP_ORPHAN(r5, 0x2287, &(0x7f00000001c0)=0x7) r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000200), 0x2101, 0x0) write$P9_RLERRORu(r6, &(0x7f0000000240)={0xd, 0x7, 0x2, {{}, 0x2}}, 0xd) ioctl$FS_IOC_FSGETXATTR(r6, 0x801c581f, &(0x7f0000000280)={0xfff, 0xe38, 0x3, 0x4, 0x7f}) pipe2(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) ioctl$TIOCL_BLANKSCREEN(r8, 0x541c, &(0x7f0000000300)) ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0x5) lseek(r7, 0x0, 0x4) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r7, 0x81f8943c, &(0x7f0000000340)) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r8, 0xc0189379, &(0x7f0000000540)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) ioctl$TIOCSPGRP(r9, 0x5410, &(0x7f0000000580)=r0) [ 74.460816] audit: type=1400 audit(1664682965.917:6): avc: denied { execmem } for pid=287 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 03:56:05 executing program 3: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x210201, 0x0) sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000001180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001140)={&(0x7f0000000080)={0x10b8, 0x0, 0x0, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x1, 0x6d}}}}, [@NL80211_ATTR_TDLS_ACTION={0x5, 0x88, 0xa}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x501}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x17}, @NL80211_ATTR_IE={0x107f, 0x2a, [@link_id={0x65, 0x12}, @rann={0x7e, 0x15, {{0x0, 0x7}, 0x6, 0x5, @device_b, 0x8, 0x80, 0x6}}, @measure_req={0x26, 0x1003, {0x5, 0x88, 0x2, "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"}}, @sec_chan_ofs={0x3e, 0x1, 0x1}, @preq={0x82, 0x3b, @not_ext={{0x0, 0x1, 0x1}, 0x9, 0x5, 0x5, @broadcast, 0x1, "", 0x7, 0x400, 0x3, [{{0x1, 0x0, 0x1}, @broadcast, 0xfffffbff}, {{0x1}, @broadcast, 0x9}, {}]}}, @chsw_timing={0x68, 0x4, {0x4, 0x1000}}, @channel_switch={0x25, 0x3, {0x1, 0x74, 0x6}}]}]}, 0x10b8}}, 0x20008040) sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f00000012c0)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x78, 0x0, 0x8, 0x70bd25, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x1f, 0x15}}}}, [@NL80211_ATTR_FRAME={0x41, 0x33, @mgmt_frame=@action_no_ack={@wo_ht={{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, {}, @broadcast, @device_a, @random="cf5faec91e30", {0x4, 0x7}}, @tdls_setup_resp={0xc, 0x1, 0x3c, 0x1f, @val, @val, @val={0x2d, 0x1a, {0x20, 0x2, 0x7, 0x0, {0x80, 0x12c, 0x0, 0x1a6, 0x0, 0x1, 0x1, 0x2, 0x1}, 0x6, 0x1b3f, 0x1}}, @void}}}, @NL80211_ATTR_FRAME={0x14, 0x33, @ctrl_frame=@pspoll={{}, @default, @initial, @device_b}}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000}, 0x4000055) r1 = syz_open_dev$evdev(&(0x7f0000001300), 0x8, 0x600100) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r1, 0xf503, 0x0) r2 = pidfd_getfd(r0, r1, 0x0) r3 = accept4(r0, &(0x7f0000001380)=@can={0x1d, 0x0}, &(0x7f0000001400)=0x80, 0x80000) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000004a40)={'ip6gre0\x00', &(0x7f00000049c0)={'sit0\x00', 0x0, 0x4, 0x2, 0x4, 0x8, 0x68, @ipv4={'\x00', '\xff\xff', @loopback}, @private2, 0x8000, 0x80, 0x95, 0x81}}) sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f0000004f40)={&(0x7f0000001340)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000004f00)={&(0x7f0000004a80)={0x460, 0x0, 0x2, 0x70bd25, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x120, 0x2, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}]}, @ETHTOOL_A_STRSET_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x104, 0x2, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}]}, @ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x3c, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_STRSET_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x50, 0x2, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x4}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x14c, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x4}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_STRSET_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}]}, 0x460}, 0x1, 0x0, 0x0, 0x841}, 0x10) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f0000004f80)) r6 = syz_open_dev$sg(&(0x7f0000005000), 0x0, 0x101000) fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000005040), &(0x7f0000005080)='./file0\x00', 0x8, 0x1) sendmsg$NL80211_CMD_NEW_KEY(r6, &(0x7f0000005200)={&(0x7f00000050c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000051c0)={&(0x7f0000005100)={0xa4, 0x0, 0x8, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x97, 0x7e}}}}, [@NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "b4613d646bf935d9842751778c"}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "fb655a61dd"}, @NL80211_ATTR_KEY={0x38, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_IDX={0x5, 0x2, 0x4}, @NL80211_KEY_DEFAULT_TYPES={0xc, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT_TYPES={0xc, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}]}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x8, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x1c, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0xc800}, 0x0) fcntl$getownex(r2, 0x10, &(0x7f0000005240)) ioctl$EVIOCGMASK(r2, 0x80104592, &(0x7f0000005340)={0x3, 0x8d, &(0x7f0000005280)="aade63957308dc9e9a346967c6ba9b49bf67092e9da9cb097777886d3326ca1df9c0e55343b187e4763e6ae1dd6a975ac0108fa88ac5bada6f5db93b28553093687327f1eaa16aec948df8c0ec82ea5e6fbe7b0144e70a869ac8e6afc68cc4ee9658bcb4fdf8ca22a86706dc60e69dd9424346747af4b63f07391316634b36addaaee4974b3245bda8749b1008"}) ioctl$SG_SET_KEEP_ORPHAN(r2, 0x2287, &(0x7f0000005380)=0x3) sendmsg$NFNL_MSG_ACCT_DEL(r3, &(0x7f00000054c0)={&(0x7f00000053c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000005480)={&(0x7f0000005400)={0x50, 0x3, 0x7, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x100000000}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x6}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x60d}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x6f0}]}, 0x50}, 0x1, 0x0, 0x0, 0x4004000}, 0x4000090) ioctl$EVIOCGRAB(r0, 0x40044590, &(0x7f0000005500)=0x9) sendfile(r3, r0, &(0x7f0000005540)=0xfff, 0x2) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r2, 0x89f5, &(0x7f0000005600)={'sit0\x00', &(0x7f0000005580)={'sit0\x00', r4, 0x2f, 0x80, 0xf9, 0x314b, 0x40, @private1, @local, 0x48, 0x10, 0x1f, 0x4}}) 03:56:05 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x6c, 0x0, 0x2, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x6c}}, 0x4000001) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x58, 0x0, 0x8, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_DEVKEY={0x1c, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x401}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x800}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000300), r0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x10}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x9}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x11}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1a}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_PAGE={0x5, 0x7, 0xb}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000801}, 0x4000) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_DEV(r5, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000580)={&(0x7f00000004c0)={0x98, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_DEVICE={0xc, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_FRAME_COUNTER={0x6, 0x1, 0x4}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_SEC_DEVICE={0x48, 0x23, 0x0, 0x1, [@NL802154_DEV_ATTR_FRAME_COUNTER={0x6, 0x1, 0x9}, @NL802154_DEV_ATTR_EXTENDED_ADDR={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5, 0x5, 0x1}, @NL802154_DEV_ATTR_KEY_MODE={0x8}, @NL802154_DEV_ATTR_PAN_ID={0x6}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5}, @NL802154_DEV_ATTR_SHORT_ADDR={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ATTR_SECLEVEL_EXEMPT={0x5, 0x5, 0x1}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x98}, 0x1, 0x0, 0x0, 0x24048081}, 0x0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), r6) sendmsg$IEEE802154_LIST_IFACE(r4, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x3c, 0x0, 0x400, 0x70bd29, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000844}, 0x80d1) r7 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000780), r0) sendmsg$NLBL_CALIPSO_C_LISTALL(r3, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x3c, r7, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4004010) sendmsg$IEEE802154_ASSOCIATE_REQ(r6, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x28, 0x0, 0x4, 0x70bd2b, 0x25dfdbff, {}, [@IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x7}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0002}}]}, 0x28}, 0x1, 0x0, 0x0, 0x4044040}, 0x90) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000980), r3) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f00000009c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8}}, './file0\x00'}) sendmsg$TCPDIAG_GETSOCK(r8, &(0x7f0000001c80)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001c40)={&(0x7f0000000a80)={0x11a8, 0x12, 0x8, 0x70bd2d, 0x25dfdbfd, {0x2c, 0x7, 0x3f, 0x6b, {0x4e23, 0x4e20, [0x9, 0x80000000, 0x5, 0x3], [0x7, 0xa408, 0xffffffce, 0x2], 0x0, [0x3, 0x1]}, 0xf4, 0x6}, [@INET_DIAG_REQ_BYTECODE={0xac, 0x1, "a76454f245349db17a1265a99f92c4eb142c20eb0f3314e576259997855c54a07c1ef98ceee39ca3824e9bb461e7be2dddee4886698a56195cf969380347eee8762a104d48e70139072e676f5d421ad536075d66bb43d147672f92bcf2319e3b26a54d40528d9758e10e4b6c74fc50849a9c36638b39a5800c873f2f7c3f03465e3b85ca2a0da8d86835e9e96702e6459f95c6d2e808be0f968d19fe89de5b7be51ad743c335e3c9"}, @INET_DIAG_REQ_BYTECODE={0x1004, 0x1, "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"}, @INET_DIAG_REQ_BYTECODE={0xa9, 0x1, "872d6c9292b7aaf6e5b6b24bb70551e2eb184a1b5dd1362c089e511f3775624f05eda65cc60dd256840f631aa77d467518a58dfa55bbffc13ca37f91a39be8aa5caee39a411792354c08aa033bb6dc5ab226ff7a7cab4071e1ae063b6d472e3c6cfaaecb45d4dd289200fb8737c2c3ca9f999eb727b535bae0b1f7ebca8755ca67d05f25ee183dc55b8d701901ed0415bc3088e1371a91f10a704ee51e79a234d4724cd1bc"}]}, 0x11a8}, 0x1, 0x0, 0x0, 0x4000}, 0x10) 03:56:05 executing program 5: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) pwrite64(r0, &(0x7f0000000040)="85df9d86907d61b02fe410a5b3daafa927285f347b2f76b9b2123ccade1a26bb5b2449daa875bda6c2482947308f6cd09e6b60146667a2e814df90829cc3d561fb80916dd2dfe56462754d60b7d49f2c371e5472e21924d643277341d095389ceba5212ad79b518aee8f966c55de7f477e12fbd7a1053ce907b7aa3e6fd7705635c0", 0x82, 0x10000) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3, 0x1000}}, './file0\x00'}) fallocate(r1, 0x1, 0x0, 0x1) r2 = fsopen(&(0x7f0000000140)='cramfs\x00', 0x0) ftruncate(r2, 0x56) ioctl$RNDGETENTCNT(r1, 0x80045200, &(0x7f0000000180)) r3 = memfd_create(&(0x7f00000001c0)=']-][/\'\xdd@\xa5[./\x00', 0x0) r4 = epoll_create1(0x0) ioctl$EXT4_IOC_MOVE_EXT(r3, 0xc028660f, &(0x7f0000000200)={0x0, r4, 0x100, 0x0, 0x5, 0x5}) r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x26180, 0x0) ioctl$RNDGETENTCNT(r5, 0x80045200, &(0x7f0000000280)) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r5, 0x6628) ioctl$VFAT_IOCTL_READDIR_SHORT(r3, 0x82307202, &(0x7f00000002c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r6 = openat$cgroup_devices(r1, &(0x7f0000000500)='devices.allow\x00', 0x2, 0x0) finit_module(r6, &(0x7f0000000540)='|\x00', 0x2) r7 = openat(r1, &(0x7f0000000580)='./file0\x00', 0x4000, 0x200) fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0) r8 = ioctl$TUNGETDEVNETNS(r5, 0x54e3, 0x0) close(r8) 03:56:05 executing program 6: ioctl$TIOCSCTTY(0xffffffffffffffff, 0x540e, 0x5) ioctl$PIO_FONTRESET(0xffffffffffffffff, 0x4b6d, 0x0) ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000000)=0xffffffe1) sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x8, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4048814}, 0x8800) ioctl$GIO_CMAP(0xffffffffffffffff, 0x4b70, &(0x7f0000000140)) r0 = creat(&(0x7f0000000180)='./file0\x00', 0x3) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f00000001c0)) r1 = openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000200), 0x2, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000240)=0x0) ioctl$TIOCSPGRP(r0, 0x5410, &(0x7f0000000280)=r2) ioctl$IOC_PR_REGISTER(r0, 0x401870c8, &(0x7f00000002c0)={0x6, 0x5}) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000300)={0x9, 0x0, 0x9}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000340)={{0x1, 0x1, 0x18, r1, {0x33}}, './file0\x00'}) write$cgroup_netprio_ifpriomap(r3, &(0x7f0000000380)={'batadv_slave_0', 0x32, 0x33}, 0x11) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/locks\x00', 0x0, 0x0) ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000400)={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x6, @broadcast}, 0x14, {0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 'wlan0\x00'}) ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0) ioctl$FIONREAD(r3, 0x541b, &(0x7f0000000480)) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r0, {0x7f}}, './file0\x00'}) ioctl$TIOCGWINSZ(r5, 0x5413, &(0x7f0000000500)) 03:56:06 executing program 7: ioctl$sock_SIOCOUTQNSD(0xffffffffffffffff, 0x894b, &(0x7f0000000000)) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000040)=0x0) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000080)={0x1, 0x3, 0x5, 0x331, r0}) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$FIBMAP(r1, 0x1, &(0x7f00000000c0)=0x9) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$DVD_WRITE_STRUCT(r2, 0x5390, &(0x7f0000000140)=@type=0x2) r3 = fcntl$dupfd(r2, 0x406, 0xffffffffffffffff) ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000980)=0x1) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f00000009c0), 0x624640, 0x0) ioctl$KDFONTOP_SET_DEF(r4, 0x4b72, &(0x7f0000000e00)={0x2, 0x1, 0xa, 0xb, 0x129, &(0x7f0000000a00)="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"}) ioctl$KDFONTOP_COPY(r2, 0x4b72, &(0x7f0000001240)={0x3, 0x0, 0x1c, 0x1d, 0x7, &(0x7f0000000e40)}) ioctl$AUTOFS_IOC_CATATONIC(r2, 0x9362, 0x0) write$P9_RLOPEN(r3, &(0x7f0000001280)={0x18, 0xd, 0x2, {{0x8, 0x2}, 0x5}}, 0x18) r5 = fcntl$dupfd(r1, 0x406, r1) r6 = signalfd4(r5, &(0x7f00000012c0), 0x8, 0x800) lseek(r4, 0x5, 0x1) fcntl$dupfd(r2, 0x0, r6) ioctl$TIOCSRS485(r6, 0x542f, &(0x7f0000001300)={0x7, 0xdce1, 0x9}) [ 75.831037] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.833544] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.835166] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.839395] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.842203] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 75.844328] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.849943] Bluetooth: hci0: HCI_REQ-0x0c1a [ 75.885121] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 75.890036] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 75.891417] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 75.905792] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 75.907527] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 75.909923] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 75.912431] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 75.913971] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 75.917928] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 75.928790] Bluetooth: hci1: HCI_REQ-0x0c1a [ 75.949415] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 75.950799] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 75.952056] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 75.953135] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 75.955480] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 75.956527] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 75.957535] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 75.958517] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 75.960276] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 75.963205] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 75.964455] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 75.966316] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 75.969498] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 75.970491] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 75.971491] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 75.973043] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 75.974049] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 75.975250] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 75.976347] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 75.979331] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 75.980573] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 75.988000] Bluetooth: hci2: HCI_REQ-0x0c1a [ 75.994273] Bluetooth: hci3: HCI_REQ-0x0c1a [ 75.994497] Bluetooth: hci4: HCI_REQ-0x0c1a [ 75.995305] Bluetooth: hci5: HCI_REQ-0x0c1a [ 76.049180] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 76.051926] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 76.053209] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 76.061924] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 76.065271] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 76.066519] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 76.091914] Bluetooth: hci7: HCI_REQ-0x0c1a [ 77.905189] Bluetooth: hci0: command 0x0409 tx timeout [ 77.967638] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 77.968483] Bluetooth: hci1: command 0x0409 tx timeout [ 78.031652] Bluetooth: hci3: command 0x0409 tx timeout [ 78.032270] Bluetooth: hci2: command 0x0409 tx timeout [ 78.032853] Bluetooth: hci5: command 0x0409 tx timeout [ 78.033348] Bluetooth: hci4: command 0x0409 tx timeout [ 78.159708] Bluetooth: hci7: command 0x0409 tx timeout [ 79.951650] Bluetooth: hci0: command 0x041b tx timeout [ 80.015666] Bluetooth: hci1: command 0x041b tx timeout [ 80.079980] Bluetooth: hci4: command 0x041b tx timeout [ 80.080406] Bluetooth: hci5: command 0x041b tx timeout [ 80.081162] Bluetooth: hci2: command 0x041b tx timeout [ 80.081563] Bluetooth: hci3: command 0x041b tx timeout [ 80.208301] Bluetooth: hci7: command 0x041b tx timeout [ 82.000670] Bluetooth: hci0: command 0x040f tx timeout [ 82.064626] Bluetooth: hci1: command 0x040f tx timeout [ 82.128646] Bluetooth: hci3: command 0x040f tx timeout [ 82.129073] Bluetooth: hci2: command 0x040f tx timeout [ 82.129476] Bluetooth: hci5: command 0x040f tx timeout [ 82.129924] Bluetooth: hci4: command 0x040f tx timeout [ 82.256652] Bluetooth: hci7: command 0x040f tx timeout [ 82.832691] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 84.049429] Bluetooth: hci0: command 0x0419 tx timeout [ 84.112633] Bluetooth: hci1: command 0x0419 tx timeout [ 84.176700] Bluetooth: hci4: command 0x0419 tx timeout [ 84.177117] Bluetooth: hci5: command 0x0419 tx timeout [ 84.177518] Bluetooth: hci2: command 0x0419 tx timeout [ 84.177931] Bluetooth: hci3: command 0x0419 tx timeout [ 84.304686] Bluetooth: hci7: command 0x0419 tx timeout [ 85.462795] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 85.466847] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 85.468766] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 85.474723] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 85.477903] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 85.478760] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 85.530652] Bluetooth: hci6: HCI_REQ-0x0c1a [ 87.568748] Bluetooth: hci6: command 0x0409 tx timeout [ 89.616679] Bluetooth: hci6: command 0x041b tx timeout [ 91.663675] Bluetooth: hci6: command 0x040f tx timeout [ 93.711747] Bluetooth: hci6: command 0x0419 tx timeout 03:56:57 executing program 3: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=0x0) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r2, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000500)=ANY=[@ANYRESHEX, @ANYRES32=0x0, @ANYBLOB="5e22039329f37c21a308753233994af6c9355465f3edb42ee9cc2ba9eac6a1af1a8d4f39f4da9eba10d7d5395a84"], 0x1c}, {&(0x7f0000000580)={0x100, 0x13, 0x200, 0x70bd28, 0x25dfdbff, "", [@typed={0x8, 0x51, 0x0, 0x0, @fd=r1}, @typed={0x8, 0x52, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="9c86412737633f239c54c2003ee593f31b97f8cc8e1a68634244b195036742be9ea7edc94d29973942ec293195a064af500bcf833a2b5eb40fcc4604a72e020c3d2bb58a99d6c256b523bd378524fa874824912a1a126b0e38575fe3c05d91faa41a6fdf36ed5bd0f8aab35d65f0f92439e592b2", @typed={0x8, 0x55, 0x0, 0x0, @uid=0xee01}, @generic="78646f895c176281ec6ea1b0b5e329c9012bf5993d0eed43f1", @generic="59a24bfc2a47c1e0d76e231f53a4934de36f74f3a8ee5ebcdfe0a06fe9097ee63dd88a3ac2f3475854b44672002522b407710107e885b110f839c5d9cd57297ccf9ad6d8660c43e6bee84b"]}, 0x100}, {&(0x7f0000000480)={0x18, 0x23, 0x4, 0x70bd2c, 0x25dfdbfc, "", [@typed={0x8, 0x3, 0x0, 0x0, @pid=r0}]}, 0x18}], 0x3}, 0x0) getsockopt$sock_int(r2, 0x1, 0x3f, &(0x7f0000000400), &(0x7f0000000440)=0x4) r3 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r3, 0x0, 0x29, 0x0, &(0x7f0000000000)=0x28) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x41252, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r4 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c2, 0x0, 0x0, r0}) r5 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r5, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc) setsockopt$inet_mreqn(r5, 0x0, 0x24, &(0x7f0000000180)={@multicast2, @private=0xac141400}, 0xc) getsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000000300)={{{@in6=@dev, @in6=@ipv4={""/10, ""/2, @initdev}}}, {{@in6=@mcast1}, 0x0, @in=@empty}}, &(0x7f0000000680)=0xe8) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000140)={0x0, 0x1, 0x6, @link_local}, 0x10) setsockopt$inet_mreqn(r3, 0x0, 0x24, &(0x7f0000000240)={@remote, @broadcast}, 0xc) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000000040)) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000200)={'wlan0\x00'}) ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0) [ 126.631570] audit: type=1400 audit(1664683018.088:7): avc: denied { open } for pid=3539 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.638097] audit: type=1400 audit(1664683018.088:8): avc: denied { kernel } for pid=3539 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.661758] ------------[ cut here ]------------ [ 126.661789] [ 126.661793] ====================================================== [ 126.661799] WARNING: possible circular locking dependency detected [ 126.661806] 6.0.0-rc7-next-20220930 #1 Not tainted [ 126.661817] ------------------------------------------------------ [ 126.661822] syz-executor.3/3540 is trying to acquire lock: [ 126.661833] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 126.661899] [ 126.661899] but task is already holding lock: [ 126.661904] ffff88800d22d420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.661950] [ 126.661950] which lock already depends on the new lock. [ 126.661950] [ 126.661955] [ 126.661955] the existing dependency chain (in reverse order) is: [ 126.661960] [ 126.661960] -> #3 (&ctx->lock){....}-{2:2}: [ 126.661985] _raw_spin_lock+0x2a/0x40 [ 126.662005] __perf_event_task_sched_out+0x53b/0x18d0 [ 126.662025] __schedule+0xedd/0x2470 [ 126.662050] schedule+0xda/0x1b0 [ 126.662075] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.662096] syscall_exit_to_user_mode+0x19/0x40 [ 126.662119] do_syscall_64+0x48/0x90 [ 126.662150] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.662173] [ 126.662173] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 126.662198] _raw_spin_lock_nested+0x30/0x40 [ 126.662217] raw_spin_rq_lock_nested+0x1e/0x30 [ 126.662240] task_fork_fair+0x63/0x4d0 [ 126.662270] sched_cgroup_fork+0x3d0/0x540 [ 126.662295] copy_process+0x4183/0x6e20 [ 126.662313] kernel_clone+0xe7/0x890 [ 126.662331] user_mode_thread+0xad/0xf0 [ 126.662349] rest_init+0x24/0x250 [ 126.662371] arch_call_rest_init+0xf/0x14 [ 126.662401] start_kernel+0x4c6/0x4eb [ 126.662429] secondary_startup_64_no_verify+0xe0/0xeb [ 126.662454] [ 126.662454] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 126.662478] _raw_spin_lock_irqsave+0x39/0x60 [ 126.662498] try_to_wake_up+0xab/0x1930 [ 126.662522] up+0x75/0xb0 [ 126.662548] __up_console_sem+0x6e/0x80 [ 126.662576] console_unlock+0x46a/0x590 [ 126.662604] vt_ioctl+0x2822/0x2ca0 [ 126.662624] tty_ioctl+0x785/0x16b0 [ 126.662643] __x64_sys_ioctl+0x19a/0x210 [ 126.662667] do_syscall_64+0x3b/0x90 [ 126.662700] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.662725] [ 126.662725] -> #0 ((console_sem).lock){....}-{2:2}: [ 126.662750] __lock_acquire+0x2a02/0x5e70 [ 126.662780] lock_acquire+0x1a2/0x530 [ 126.662808] _raw_spin_lock_irqsave+0x39/0x60 [ 126.662828] down_trylock+0xe/0x70 [ 126.662855] __down_trylock_console_sem+0x3b/0xd0 [ 126.662885] vprintk_emit+0x16b/0x560 [ 126.662914] vprintk+0x84/0xa0 [ 126.662943] _printk+0xba/0xf1 [ 126.662962] report_bug.cold+0x72/0xab [ 126.662996] handle_bug+0x3c/0x70 [ 126.663026] exc_invalid_op+0x14/0x50 [ 126.663057] asm_exc_invalid_op+0x16/0x20 [ 126.663079] group_sched_out.part.0+0x2c7/0x460 [ 126.663111] ctx_sched_out+0x8f1/0xc10 [ 126.663141] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.663161] __schedule+0xedd/0x2470 [ 126.663186] schedule+0xda/0x1b0 [ 126.663210] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.663230] syscall_exit_to_user_mode+0x19/0x40 [ 126.663253] do_syscall_64+0x48/0x90 [ 126.663283] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.663306] [ 126.663306] other info that might help us debug this: [ 126.663306] [ 126.663311] Chain exists of: [ 126.663311] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 126.663311] [ 126.663338] Possible unsafe locking scenario: [ 126.663338] [ 126.663342] CPU0 CPU1 [ 126.663346] ---- ---- [ 126.663350] lock(&ctx->lock); [ 126.663360] lock(&rq->__lock); [ 126.663371] lock(&ctx->lock); [ 126.663383] lock((console_sem).lock); [ 126.663393] [ 126.663393] *** DEADLOCK *** [ 126.663393] [ 126.663397] 2 locks held by syz-executor.3/3540: [ 126.663409] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 126.663462] #1: ffff88800d22d420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.663511] [ 126.663511] stack backtrace: [ 126.663515] CPU: 1 PID: 3540 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1 [ 126.663537] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.663551] Call Trace: [ 126.663557] [ 126.663563] dump_stack_lvl+0x8b/0xb3 [ 126.663597] check_noncircular+0x263/0x2e0 [ 126.663627] ? format_decode+0x26c/0xb50 [ 126.663656] ? print_circular_bug+0x450/0x450 [ 126.663687] ? simple_strtoul+0x30/0x30 [ 126.663716] ? format_decode+0x26c/0xb50 [ 126.663748] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 126.663780] __lock_acquire+0x2a02/0x5e70 [ 126.663819] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 126.663861] lock_acquire+0x1a2/0x530 [ 126.663891] ? down_trylock+0xe/0x70 [ 126.663923] ? lock_release+0x750/0x750 [ 126.663960] ? vprintk+0x84/0xa0 [ 126.663993] _raw_spin_lock_irqsave+0x39/0x60 [ 126.664014] ? down_trylock+0xe/0x70 [ 126.664043] down_trylock+0xe/0x70 [ 126.664072] ? vprintk+0x84/0xa0 [ 126.664103] __down_trylock_console_sem+0x3b/0xd0 [ 126.664135] vprintk_emit+0x16b/0x560 [ 126.664170] vprintk+0x84/0xa0 [ 126.664201] _printk+0xba/0xf1 [ 126.664222] ? record_print_text.cold+0x16/0x16 [ 126.664252] ? report_bug.cold+0x66/0xab [ 126.664285] ? group_sched_out.part.0+0x2c7/0x460 [ 126.664318] report_bug.cold+0x72/0xab [ 126.664353] handle_bug+0x3c/0x70 [ 126.664385] exc_invalid_op+0x14/0x50 [ 126.664418] asm_exc_invalid_op+0x16/0x20 [ 126.664441] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.664478] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.664499] RSP: 0018:ffff8880356dfc48 EFLAGS: 00010006 [ 126.664515] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.664529] RDX: ffff888015f60000 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 126.664543] RBP: ffff88803ee38000 R08: 0000000000000005 R09: 0000000000000001 [ 126.664556] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800d22d400 [ 126.664570] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 126.664590] ? group_sched_out.part.0+0x2c7/0x460 [ 126.664627] ? group_sched_out.part.0+0x2c7/0x460 [ 126.664663] ctx_sched_out+0x8f1/0xc10 [ 126.664699] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.664725] ? lock_is_held_type+0xd7/0x130 [ 126.664751] ? __perf_cgroup_move+0x160/0x160 [ 126.664770] ? set_next_entity+0x304/0x550 [ 126.664802] ? update_curr+0x267/0x740 [ 126.664836] ? lock_is_held_type+0xd7/0x130 [ 126.664862] __schedule+0xedd/0x2470 [ 126.664893] ? io_schedule_timeout+0x150/0x150 [ 126.664924] ? rcu_read_lock_sched_held+0x3e/0x80 [ 126.664961] schedule+0xda/0x1b0 [ 126.664988] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.665011] syscall_exit_to_user_mode+0x19/0x40 [ 126.665036] do_syscall_64+0x48/0x90 [ 126.665069] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.665093] RIP: 0033:0x7fe192bd9b19 [ 126.665108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.665127] RSP: 002b:00007fe19014f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.665147] RAX: 0000000000000001 RBX: 00007fe192cecf68 RCX: 00007fe192bd9b19 [ 126.665161] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe192cecf6c [ 126.665174] RBP: 00007fe192cecf60 R08: 000000000000000e R09: 0000000000000000 [ 126.665187] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fe192cecf6c [ 126.665200] R13: 00007fffac7e796f R14: 00007fe19014f300 R15: 0000000000022000 [ 126.665223] [ 126.762443] WARNING: CPU: 1 PID: 3540 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 126.763682] Modules linked in: [ 126.764120] CPU: 1 PID: 3540 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1 [ 126.765188] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.766675] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.767415] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.769803] RSP: 0018:ffff8880356dfc48 EFLAGS: 00010006 [ 126.770520] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.771471] RDX: ffff888015f60000 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 126.772426] RBP: ffff88803ee38000 R08: 0000000000000005 R09: 0000000000000001 [ 126.773377] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800d22d400 [ 126.774317] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 126.775262] FS: 00007fe19014f700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 126.776325] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.777098] CR2: 00007f67b06d78e0 CR3: 000000001b8ce000 CR4: 0000000000350ee0 [ 126.778078] Call Trace: [ 126.778430] [ 126.778746] ctx_sched_out+0x8f1/0xc10 [ 126.779293] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.779991] ? lock_is_held_type+0xd7/0x130 [ 126.780576] ? __perf_cgroup_move+0x160/0x160 [ 126.781176] ? set_next_entity+0x304/0x550 [ 126.781767] ? update_curr+0x267/0x740 [ 126.782304] ? lock_is_held_type+0xd7/0x130 [ 126.782886] __schedule+0xedd/0x2470 [ 126.783407] ? io_schedule_timeout+0x150/0x150 [ 126.784035] ? rcu_read_lock_sched_held+0x3e/0x80 [ 126.784706] schedule+0xda/0x1b0 [ 126.785179] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.785843] syscall_exit_to_user_mode+0x19/0x40 [ 126.786485] do_syscall_64+0x48/0x90 [ 126.787007] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.787702] RIP: 0033:0x7fe192bd9b19 [ 126.788203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.790610] RSP: 002b:00007fe19014f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.791605] RAX: 0000000000000001 RBX: 00007fe192cecf68 RCX: 00007fe192bd9b19 [ 126.792557] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fe192cecf6c [ 126.793505] RBP: 00007fe192cecf60 R08: 000000000000000e R09: 0000000000000000 [ 126.794463] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fe192cecf6c [ 126.795408] R13: 00007fffac7e796f R14: 00007fe19014f300 R15: 0000000000022000 [ 126.796361] [ 126.796681] irq event stamp: 702 [ 126.797123] hardirqs last enabled at (701): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 126.798359] hardirqs last disabled at (702): [] __schedule+0x1225/0x2470 [ 126.799461] softirqs last enabled at (552): [] __irq_exit_rcu+0x11b/0x180 [ 126.800597] softirqs last disabled at (523): [] __irq_exit_rcu+0x11b/0x180 [ 126.801736] ---[ end trace 0000000000000000 ]--- 03:56:58 executing program 3: r0 = syz_io_uring_setup(0x8b5, &(0x7f00000011c0), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x7c6f, &(0x7f0000000000)={0x0, 0x7cf1, 0x3b, 0x1, 0x358, 0x0, r0}, &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) 03:56:59 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_sigqueueinfo(r1, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7}) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x6, 0x1, 0x3, 0x4, 0x0, 0x8001, 0x4443, 0xb, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0xfffffffffffffffe, 0x9}, 0x810, 0xa0b6, 0x996, 0x2, 0x0, 0x1, 0xe4, 0x0, 0x3, 0x0, 0x7}, r1, 0x0, r0, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r2, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r3, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e24}, 0x6e) connect$unix(r2, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) 03:56:59 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_sigqueueinfo(r1, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7}) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x6, 0x1, 0x3, 0x4, 0x0, 0x8001, 0x4443, 0xb, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0xfffffffffffffffe, 0x9}, 0x810, 0xa0b6, 0x996, 0x2, 0x0, 0x1, 0xe4, 0x0, 0x3, 0x0, 0x7}, r1, 0x0, r0, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r2, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r3, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e24}, 0x6e) connect$unix(r2, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) 03:56:59 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_sigqueueinfo(r1, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7}) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x6, 0x1, 0x3, 0x4, 0x0, 0x8001, 0x4443, 0xb, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0xfffffffffffffffe, 0x9}, 0x810, 0xa0b6, 0x996, 0x2, 0x0, 0x1, 0xe4, 0x0, 0x3, 0x0, 0x7}, r1, 0x0, r0, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r2, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r3, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e24}, 0x6e) connect$unix(r2, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) 03:56:59 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_sigqueueinfo(r1, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7}) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x6, 0x1, 0x3, 0x4, 0x0, 0x8001, 0x4443, 0xb, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0xfffffffffffffffe, 0x9}, 0x810, 0xa0b6, 0x996, 0x2, 0x0, 0x1, 0xe4, 0x0, 0x3, 0x0, 0x7}, r1, 0x0, r0, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r2, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r3, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e24}, 0x6e) connect$unix(r2, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) 03:56:59 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = gettid() rt_sigqueueinfo(r1, 0x21, &(0x7f0000000000)={0x0, 0x0, 0x7}) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x6, 0x1, 0x3, 0x4, 0x0, 0x8001, 0x4443, 0xb, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x4, @perf_config_ext={0xfffffffffffffffe, 0x9}, 0x810, 0xa0b6, 0x996, 0x2, 0x0, 0x1, 0xe4, 0x0, 0x3, 0x0, 0x7}, r1, 0x0, r0, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r2, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r3, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e24}, 0x6e) connect$unix(r2, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) 03:56:59 executing program 0: r0 = shmget(0x1, 0x2000, 0x800, &(0x7f0000ffe000/0x2000)=nil) shmat(r0, &(0x7f0000ffd000/0x3000)=nil, 0x5000) shmctl$IPC_RMID(r0, 0x0) r1 = shmget$private(0x0, 0x3000, 0x54000000, &(0x7f0000ffd000/0x3000)=nil) shmat(r1, &(0x7f0000ffc000/0x1000)=nil, 0x2000) mlock2(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1) VM DIAGNOSIS: 03:56:58 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000000000001 RCX=ffff88803a537f48 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000001 RBP=ffff88803a537820 RSP=ffff88803a537748 R8 =ffffffff862445f0 R9 =ffffffff862445f4 R10=ffffed10074a6f06 R11=000000000003603d R12=ffff88803a537809 R13=ffff88803a537828 R14=ffff88803a5377c8 R15=ffffffff862445f5 RIP=ffffffff8111b17e RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0da29d5260 CR3=000000001b20a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 2e6f747079726362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00312e312e6f732e 6f74707972636269 YMM03=0000000000000000 0000000000000000 6c2f756e672d7875 6e696c2d34365f36 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000007d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff8880356df690 R8 =0000000000000001 R9 =000000000000000a R10=000000000000007d R11=0000000000000001 R12=000000000000007d R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe19014f700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f67b06d78e0 CR3=000000001b8ce000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fe192cc07c0 00007fe192cc07c8 YMM02=0000000000000000 0000000000000000 00007fe192cc07e0 00007fe192cc07c0 YMM03=0000000000000000 0000000000000000 00007fe192cc07c8 00007fe192cc07c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000