syzkaller login: [ 41.905684] sshd (243) used greatest stack depth: 24800 bytes left Warning: Permanently added '[localhost]:41496' (ECDSA) to the list of known hosts. 2022/10/02 06:35:03 fuzzer started 2022/10/02 06:35:04 dialing manager at localhost:35095 [ 44.181120] cgroup: Unknown subsys name 'net' [ 44.277210] cgroup: Unknown subsys name 'rlimit' 2022/10/02 06:35:18 syscalls: 2215 2022/10/02 06:35:18 code coverage: enabled 2022/10/02 06:35:18 comparison tracing: enabled 2022/10/02 06:35:18 extra coverage: enabled 2022/10/02 06:35:18 setuid sandbox: enabled 2022/10/02 06:35:18 namespace sandbox: enabled 2022/10/02 06:35:18 Android sandbox: enabled 2022/10/02 06:35:18 fault injection: enabled 2022/10/02 06:35:18 leak checking: enabled 2022/10/02 06:35:18 net packet injection: enabled 2022/10/02 06:35:18 net device setup: enabled 2022/10/02 06:35:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/02 06:35:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/02 06:35:18 USB emulation: enabled 2022/10/02 06:35:18 hci packet injection: enabled 2022/10/02 06:35:18 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/02 06:35:18 802.15.4 emulation: enabled 2022/10/02 06:35:18 fetching corpus: 50, signal 25849/27657 (executing program) 2022/10/02 06:35:18 fetching corpus: 100, signal 36244/39699 (executing program) 2022/10/02 06:35:19 fetching corpus: 150, signal 51277/56145 (executing program) 2022/10/02 06:35:19 fetching corpus: 200, signal 55800/62166 (executing program) 2022/10/02 06:35:19 fetching corpus: 250, signal 57995/65853 (executing program) 2022/10/02 06:35:19 fetching corpus: 300, signal 63686/72839 (executing program) 2022/10/02 06:35:19 fetching corpus: 350, signal 67273/77757 (executing program) 2022/10/02 06:35:19 fetching corpus: 400, signal 72558/84247 (executing program) 2022/10/02 06:35:19 fetching corpus: 450, signal 74237/87246 (executing program) 2022/10/02 06:35:19 fetching corpus: 500, signal 78033/92274 (executing program) 2022/10/02 06:35:20 fetching corpus: 550, signal 81195/96574 (executing program) 2022/10/02 06:35:20 fetching corpus: 600, signal 85677/102026 (executing program) 2022/10/02 06:35:20 fetching corpus: 650, signal 90438/107698 (executing program) 2022/10/02 06:35:20 fetching corpus: 700, signal 95241/113314 (executing program) 2022/10/02 06:35:20 fetching corpus: 750, signal 98914/117867 (executing program) 2022/10/02 06:35:20 fetching corpus: 800, signal 102295/122109 (executing program) 2022/10/02 06:35:20 fetching corpus: 850, signal 104517/125253 (executing program) 2022/10/02 06:35:20 fetching corpus: 900, signal 106406/128067 (executing program) 2022/10/02 06:35:21 fetching corpus: 950, signal 108209/130851 (executing program) 2022/10/02 06:35:21 fetching corpus: 1000, signal 110713/134199 (executing program) 2022/10/02 06:35:21 fetching corpus: 1050, signal 113622/137790 (executing program) 2022/10/02 06:35:21 fetching corpus: 1100, signal 115442/140481 (executing program) 2022/10/02 06:35:21 fetching corpus: 1150, signal 116495/142520 (executing program) 2022/10/02 06:35:21 fetching corpus: 1200, signal 117922/144809 (executing program) 2022/10/02 06:35:21 fetching corpus: 1250, signal 119385/147107 (executing program) 2022/10/02 06:35:21 fetching corpus: 1300, signal 122127/150429 (executing program) 2022/10/02 06:35:21 fetching corpus: 1350, signal 123234/152459 (executing program) 2022/10/02 06:35:22 fetching corpus: 1400, signal 124689/154685 (executing program) 2022/10/02 06:35:22 fetching corpus: 1450, signal 125898/156692 (executing program) 2022/10/02 06:35:22 fetching corpus: 1500, signal 128443/159787 (executing program) 2022/10/02 06:35:22 fetching corpus: 1550, signal 129774/161808 (executing program) 2022/10/02 06:35:22 fetching corpus: 1600, signal 130866/163642 (executing program) 2022/10/02 06:35:22 fetching corpus: 1650, signal 131970/165523 (executing program) 2022/10/02 06:35:22 fetching corpus: 1700, signal 133283/167529 (executing program) 2022/10/02 06:35:22 fetching corpus: 1750, signal 134629/169566 (executing program) 2022/10/02 06:35:22 fetching corpus: 1800, signal 135213/171055 (executing program) 2022/10/02 06:35:23 fetching corpus: 1850, signal 137060/173331 (executing program) 2022/10/02 06:35:23 fetching corpus: 1900, signal 137665/174737 (executing program) 2022/10/02 06:35:23 fetching corpus: 1950, signal 138588/176393 (executing program) 2022/10/02 06:35:23 fetching corpus: 2000, signal 139594/178067 (executing program) 2022/10/02 06:35:23 fetching corpus: 2050, signal 141343/180279 (executing program) 2022/10/02 06:35:23 fetching corpus: 2100, signal 143309/182626 (executing program) 2022/10/02 06:35:23 fetching corpus: 2150, signal 145507/185071 (executing program) 2022/10/02 06:35:23 fetching corpus: 2200, signal 148012/187687 (executing program) 2022/10/02 06:35:24 fetching corpus: 2250, signal 148657/189006 (executing program) 2022/10/02 06:35:24 fetching corpus: 2300, signal 149412/190334 (executing program) 2022/10/02 06:35:24 fetching corpus: 2350, signal 150030/191606 (executing program) 2022/10/02 06:35:24 fetching corpus: 2400, signal 151315/193310 (executing program) 2022/10/02 06:35:24 fetching corpus: 2450, signal 152533/194944 (executing program) 2022/10/02 06:35:24 fetching corpus: 2500, signal 153329/196280 (executing program) 2022/10/02 06:35:24 fetching corpus: 2550, signal 154047/197596 (executing program) 2022/10/02 06:35:24 fetching corpus: 2600, signal 155478/199307 (executing program) 2022/10/02 06:35:24 fetching corpus: 2650, signal 156282/200652 (executing program) 2022/10/02 06:35:25 fetching corpus: 2700, signal 156896/201856 (executing program) 2022/10/02 06:35:25 fetching corpus: 2750, signal 157662/203099 (executing program) 2022/10/02 06:35:25 fetching corpus: 2800, signal 158697/204588 (executing program) 2022/10/02 06:35:25 fetching corpus: 2850, signal 160331/206327 (executing program) 2022/10/02 06:35:25 fetching corpus: 2900, signal 161311/207642 (executing program) 2022/10/02 06:35:25 fetching corpus: 2950, signal 162663/209176 (executing program) 2022/10/02 06:35:25 fetching corpus: 3000, signal 163271/210259 (executing program) 2022/10/02 06:35:25 fetching corpus: 3050, signal 164143/211514 (executing program) 2022/10/02 06:35:25 fetching corpus: 3100, signal 164716/212615 (executing program) 2022/10/02 06:35:26 fetching corpus: 3150, signal 165250/213714 (executing program) 2022/10/02 06:35:26 fetching corpus: 3200, signal 166122/214940 (executing program) 2022/10/02 06:35:26 fetching corpus: 3250, signal 167249/216293 (executing program) 2022/10/02 06:35:26 fetching corpus: 3300, signal 169050/217959 (executing program) 2022/10/02 06:35:26 fetching corpus: 3350, signal 170605/219490 (executing program) 2022/10/02 06:35:26 fetching corpus: 3400, signal 171302/220554 (executing program) 2022/10/02 06:35:26 fetching corpus: 3450, signal 172306/221753 (executing program) 2022/10/02 06:35:27 fetching corpus: 3500, signal 173301/222945 (executing program) 2022/10/02 06:35:27 fetching corpus: 3550, signal 173992/223941 (executing program) 2022/10/02 06:35:27 fetching corpus: 3600, signal 174471/224861 (executing program) 2022/10/02 06:35:27 fetching corpus: 3650, signal 174866/225767 (executing program) 2022/10/02 06:35:27 fetching corpus: 3700, signal 175668/226867 (executing program) 2022/10/02 06:35:27 fetching corpus: 3750, signal 176314/227907 (executing program) 2022/10/02 06:35:27 fetching corpus: 3800, signal 177210/229080 (executing program) 2022/10/02 06:35:27 fetching corpus: 3850, signal 177666/229934 (executing program) 2022/10/02 06:35:28 fetching corpus: 3900, signal 178490/230960 (executing program) 2022/10/02 06:35:28 fetching corpus: 3950, signal 179250/231890 (executing program) 2022/10/02 06:35:28 fetching corpus: 4000, signal 179980/232796 (executing program) 2022/10/02 06:35:28 fetching corpus: 4050, signal 181338/234060 (executing program) 2022/10/02 06:35:28 fetching corpus: 4100, signal 181979/234979 (executing program) 2022/10/02 06:35:28 fetching corpus: 4150, signal 182972/235977 (executing program) 2022/10/02 06:35:28 fetching corpus: 4200, signal 183749/236908 (executing program) 2022/10/02 06:35:28 fetching corpus: 4250, signal 184618/237861 (executing program) 2022/10/02 06:35:29 fetching corpus: 4300, signal 185531/238770 (executing program) 2022/10/02 06:35:29 fetching corpus: 4350, signal 186048/239577 (executing program) 2022/10/02 06:35:29 fetching corpus: 4400, signal 186733/240433 (executing program) 2022/10/02 06:35:29 fetching corpus: 4450, signal 188138/241516 (executing program) 2022/10/02 06:35:29 fetching corpus: 4500, signal 189214/242476 (executing program) 2022/10/02 06:35:29 fetching corpus: 4550, signal 189864/243277 (executing program) 2022/10/02 06:35:29 fetching corpus: 4600, signal 190469/244056 (executing program) 2022/10/02 06:35:29 fetching corpus: 4650, signal 191374/244886 (executing program) 2022/10/02 06:35:29 fetching corpus: 4700, signal 191946/245628 (executing program) 2022/10/02 06:35:30 fetching corpus: 4750, signal 193007/246508 (executing program) 2022/10/02 06:35:30 fetching corpus: 4800, signal 193551/247200 (executing program) 2022/10/02 06:35:30 fetching corpus: 4850, signal 194371/248088 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/248758 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/249302 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/249837 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/250361 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/250958 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/251496 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/252033 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/252616 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/253165 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/253695 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/254236 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/254805 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/255363 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/255930 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/256497 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/257030 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/257591 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/258153 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/258672 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/259236 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/259817 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/260373 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/260934 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/261487 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/262030 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/262571 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/263114 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/263657 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/264223 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/264775 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/265360 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/265929 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/266521 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/267109 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/267674 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/267886 (executing program) 2022/10/02 06:35:30 fetching corpus: 4875, signal 194680/267886 (executing program) 2022/10/02 06:35:33 starting 8 fuzzer processes 06:35:33 executing program 0: exit(0x6) exit(0x200) exit(0x1f) exit(0x3) exit(0xc6) exit(0x7f) exit(0x4) exit(0x3f) exit(0x7) exit(0x1) exit(0x9) exit(0x5) exit(0x5) exit(0x401) exit(0x9) exit(0x4) exit(0x6) exit(0x9f9) exit(0xffff) exit(0x101) 06:35:33 executing program 1: ioctl$INCFS_IOC_READ_FILE_SIGNATURE(0xffffffffffffffff, 0x8010671f, &(0x7f0000000080)={&(0x7f0000000000)=""/94, 0x5e}) mknodat$null(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x400, 0x103) sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x94, 0x0, 0x200, 0x70bd28, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x64, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffc00}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xe910}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x16}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x384c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}]}, @TIPC_NLA_BEARER={0x1c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz1\x00'}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x800}, 0x10) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000280)={0x0, 0x5, 0xfffffffffffffffe}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(0xffffffffffffffff, 0x50009418, &(0x7f00000002c0)={{}, 0x0, 0x12, @unused=[0x0, 0xa69, 0x9, 0x100000000], @subvolid=0x8000}) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001300), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f00000013c0)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001380)={&(0x7f0000001340)={0x40, r1, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_SECCTX={0x24, 0x7, 'system_u:object_r:crack_db_t:s0\x00'}]}, 0x40}}, 0x8010) sendmsg$IEEE802154_LIST_IFACE(r0, &(0x7f00000014c0)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x30, 0x0, 0x200, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x4004c) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001500), r0) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001580), r0) sendmsg$NLBL_UNLABEL_C_STATICLIST(r0, &(0x7f00000016c0)={&(0x7f0000001540)={0x10, 0x0, 0x0, 0x88584400}, 0xc, &(0x7f0000001680)={&(0x7f00000015c0)={0x9c, r3, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @mcast1}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @remote}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @remote}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0x31}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast2}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x30}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'vlan0\x00'}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4008010}, 0x4004800) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r0, &(0x7f0000001800)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000017c0)={&(0x7f0000001740)={0x58, r2, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x1}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x40}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x1f}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x58}, 0x1, 0x0, 0x0, 0x20040004}, 0x20000000) r4 = open$dir(&(0x7f0000001840)='./file0/file0\x00', 0x0, 0x180) linkat(r4, &(0x7f0000001880)='./file1\x00', 0xffffffffffffffff, &(0x7f00000018c0)='./file0\x00', 0x1400) inotify_init1(0x81000) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f00000019c0)={&(0x7f0000001900)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001980)={&(0x7f0000001940)={0x24, r1, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @private=0xa010100}, @NLBL_UNLABEL_A_ACPTFLG={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x4040}, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001a40), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000001b40)={&(0x7f0000001a00)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001b00)={&(0x7f0000001a80)={0x60, r5, 0x100, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="c2f6c16e5c9b"}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x85d0}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_IE={0x4}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x80) sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000002340)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x8a01000}, 0xc, &(0x7f0000002300)={&(0x7f0000002280)={0x80, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x7}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x100000000}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffffffffffffff9}, @NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x24, 0x7, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000001}, 0x4084) 06:35:33 executing program 2: sendmsg$NL80211_CMD_SET_PMK(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xac, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xa90}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_PMK={0x14, 0xfe, "1d91b343b24c9a64b75b153cc017ffe1"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "8d1f26db31de62c28461d15c8325b255"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "86d7ac43676b985d41a634c4707071bd"}, @NL80211_ATTR_PMK={0x14, 0xfe, "afce2a39efc2a4ce72796ac5e7b5f1ce"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0xac}, 0x1, 0x0, 0x0, 0x20008805}, 0x800) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000180), 0xc, &(0x7f0000000800)={&(0x7f0000000200)={0x5e8, r0, 0x200, 0x70bd29, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7b, 0x55}}}}, [@NL80211_ATTR_IE={0xec, 0x2a, [@prep={0x83, 0x1f, @not_ext={{}, 0x1e, 0x8, @broadcast, 0x0, "", 0x4, 0x9, @device_b, 0x80000000}}, @random_vendor={0xdd, 0x5d, "a67995f373fe936038ab8dee64382a8cf05eff50638a739f5aeb18a40cad9d8920cf7414d3f1a86ec9a9be5d2060cc45960293f1085342fa2d0d4b6a0726b9d419189a55c31b9a37e381f4e9380aef384472a318c52d664c4d4e134a82"}, @ibss={0x6, 0x2, 0x200}, @measure_req={0x26, 0x62, {0xc4, 0x2, 0x2, "16fa00840995c1a811738ffc9008507bd56beb75e85eea5ad76b9c598c356249d592d578d2dc9b83e9c4de14003178c882709524f3934614e2144db9013099e26a8361ad54b833e654e1715592d7a454d331fe29eab5b491eec2855b14cd47"}}]}, @NL80211_ATTR_IE={0x125, 0x2a, [@random_vendor={0xdd, 0xfd, "90a4b9da3aee0cc9028348d30e68e17128c09dcbe457ccac640e32ae4fa925a0a336cdcde8563f01947ba431d33626ef5fb4d0d3455acde9993acd7d75058f574ddf9ae984e0f4247a4c76964b810eaa0dfbf39e9b8891c6e878a2526bf87a830945fbc078c295facdd9387105f5b1177eccb2b81e4fa4edfcf3f10bb602dc869b089dfe184119b1fab9e97c7e42a9d1f1ef3d284e1539f5ed81cb493052a27f17ea47c2e26bb3cd413a07a884a5a2a136309a6b2d6f6b1300363c47f90d103f5b074524d377a3e82181d53ce36a3add291d884e8571efab37166f01ce8042153e1c03105dcfa3134c2f6a179f22a4e831dda5ef4e280b630cd37ef1b5"}, @ibss={0x6, 0x2, 0x40}, @ibss={0x6, 0x2, 0x3}, @gcr_ga={0xbd, 0x6, @device_b}, @peer_mgmt={0x75, 0x8, {0x1, 0x57, @val=0x6, @val=0x36, @void}}, @cf={0x4, 0x6, {0x0, 0x1, 0x9, 0x8001}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_IE={0x1b6, 0x2a, [@random_vendor={0xdd, 0xd9, "ae6d634dcbb022a90dd48c122ddd1f03b0aa2d88839f45ccb39e741632a8348d415af01dce65030951541c25c1c023f2cabdf861a62b1ce20425a781df70ee2c6877fa08ee61a2b5b90be5d28e882be033f1c16452fc40bea7bf973f2869901ee8151a7d39cb36adaefb4f8671afaa5f77ba4fcbef2e4909a2f6812a268004fd4984cdab5eea01def036709520be1d0f0d93abdafcb5e34153e5cd030f56b3337501ecc3aeac2b2fb90d4db374ac60cbb55cc0d936f89fa4e0cef8496650a0b8ee0cbf8403beeb0a92812325b8212b27a47991121cacb4118c"}, @gcr_ga={0xbd, 0x6, @device_b}, @channel_switch={0x25, 0x3, {0x0, 0x7, 0x7}}, @fast_bss_trans={0x37, 0x8f, {0x6f, 0x3, "05bd7d9e7f72000d454a27085cb0c961", "6e7c1e3753263e87babcecab911d5f2196bf912b7048f86cdb6bf231c1d02266", "307728be0625a4059ecdf94df8f7e712527e8ecba601f9067c3ff325f7e5ff45", [{0x3, 0x26, "0f96d6ed2ee460ffda8d07a62061e9aa21e414282e11daf6fc60307b8734c18b6761c1de436d"}, {0x1, 0x8, "8a995222ccc3a004"}, {0x1, 0x9, "d1d32912eed92fd4b0"}]}}, @link_id={0x65, 0x12, {@random="4a6048aea519", @device_b, @broadcast}}, @prep={0x83, 0x1f, @not_ext={{}, 0x8, 0xab, @broadcast, 0xa7, "", 0x4, 0x4, @broadcast, 0xffffffff}}, @ibss={0x6, 0x2, 0x1}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x63}, @NL80211_ATTR_IE={0x1d8, 0x2a, [@fast_bss_trans={0x37, 0xbe, {0x1, 0x7, "fb6cf99407e918fb1803531cecf773db", "2b84ced4e7c64bfe77472a9c102931d2356fa17ad1c3999054084dacf132648d", "71efb92cc665527072473e4e5da5b85ebaf999e00c3261e217d90a32d14191c9", [{0x1, 0xf, "96dd94af79649cbb19af593d134681"}, {0x3, 0x10, "92dfae256f194ce040fa05b28497adf6"}, {0x1, 0xe, "0621d75bad18c8fdce56c601935a"}, {0x1, 0x10, "439be1c26023d069d09698c613d980c4"}, {0x2, 0x8, "c07a87a5e279c6bc"}, {0x2, 0x15, "4132c04671aa64e1a1b0ce5a59520a9caa771e2631"}, {0x1, 0x4, "a6cc914f"}]}}, @measure_req={0x26, 0xfc, {0x8, 0x0, 0x6, "e2d4b0c8ba6d3de1b89ff9d24b6553471393a42b55b0888dc0f258cd229dff4bc738ceab63478c4e2fe24fe6c921730f40d6b21dd88c2f5883540270fb4738c7f610f6b0576f8a6b5a40e24e12f0df81964c0b40168cb9d13ce51e87091cc8ccd2d9c502d91d1e98519b25f5ba1b3a4619ce3fb7c91324436a38d802763d9d705fb4df9d97d75205e400a3807ee5a5ee69c1acaa0da34b152c0c9d174fd20fadfd14d10e1378e6e0842e84c4403a99be0b1630cac52260fe5e7076b6fab0befb64d9a80f5a3fd57fda0c4396298105ee06a358092a589a242e85b49c91b2215b1dd10afc86ad6550d20d31fc2a89bedb861632656dd0c51185"}}, @channel_switch={0x25, 0x3, {0x1, 0x4, 0x2}}, @cf={0x4, 0x6, {0x74, 0x7b, 0x7, 0x8}}, @mesh_config={0x71, 0x7, {0x0, 0x1, 0xffffffffffffffff, 0x0, 0x3, 0x4c}}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x4a}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x2b}]}, 0x5e8}, 0x1, 0x0, 0x0, 0x4004000}, 0x10) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000880), 0x88001, 0x0) sendmsg$NL80211_CMD_ASSOCIATE(r1, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000980)={&(0x7f0000000900)={0x48, r0, 0x101, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_DISABLE_VHT={0x4}, @crypto_settings=[@NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_AKM_SUITES={0x1c, 0x4c, [0xfac12, 0xfac03, 0xfac05, 0xfac03, 0xfac05, 0xfac14]}], @crypto_settings=[@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CIPHER_SUITES_PAIRWISE={0x8, 0x49, [0x0]}, @NL80211_ATTR_CONTROL_PORT={0x4}]]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000d40)={0x0, 0x0, 0x0}, &(0x7f0000000d80)=0xc) r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000dc0), 0x101203, 0x0) r4 = syz_io_uring_setup(0x64bc, &(0x7f0000000e00)={0x0, 0xcb4d, 0x1, 0x0, 0x71, 0x0, r1}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000000e80), &(0x7f0000000ec0)=0x0) r6 = perf_event_open(&(0x7f0000000f40)={0x4, 0x80, 0x81, 0x1, 0x81, 0x80, 0x0, 0x3, 0x20000, 0x5, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xceb, 0x1, @perf_bp={&(0x7f0000000f00), 0x6}, 0x3641, 0xffffffff, 0x10000, 0x1, 0x7, 0xffff, 0x40, 0x0, 0x7, 0x0, 0x6}, 0x0, 0x8, r1, 0x2) clone3(&(0x7f0000001240)={0x2000, &(0x7f0000000fc0), &(0x7f0000001000)=0x0, &(0x7f0000001040), {0x40}, &(0x7f0000001080)=""/76, 0x4c, &(0x7f0000001100)=""/200, &(0x7f0000001200)=[0x0, 0xffffffffffffffff], 0x2, {r1}}, 0x58) newfstatat(0xffffffffffffff9c, &(0x7f00000012c0)='./file0\x00', &(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4900) sendmsg$netlink(r1, &(0x7f00000014c0)={&(0x7f0000000a00)=@kern={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000d00)=[{&(0x7f0000000a40)={0x2a0, 0x20, 0x8, 0x70bd25, 0x25dfdbfb, "", [@generic="0f6c862eacda5aebdbd6429971960c7d8f920aac443a8dbe98dc04a64341ab15732bc5f8f52340257d31df648e50774edbe238e74d722193f0550632ce7e8010c5af0f42ffcac7d2abd1f59b711607022b9a34", @generic="08680007fa868dada6f5a45e6af4e060ec8c81141fc6c0e194cc04dbaa7af5a8bf6688da39cb3c7afba300ae9fcdc3895e317fde855c1736ada61109615fa5718cdd7ea18bcf8afea2528927df99ae4064d0280c0fc0e90e6c76", @generic="d2f953b9ade21e3135c307ac0483f2e7163e7760fa2a540d2a129709134fecbd18268fff9f58d2e87697cb1178577c25", @generic="12ec8f0dad12f0c0a1e91019cb80e2c8714a46e7a51c726b6ac0434fdd36a17fdb718f3dc944d67727e38675da57f3bd60afea9fcc6f739f218ee76b84c9b1c9a21d8e0925f90a81898feb09eaac6dd768ab698d0e6b0c55f86af5756072f15162b6b25e7a89d9f025509a565d53211ab557fe9d76fa58d02bf0fd787368431576b06e7a27424fce7009002f15ab7c66e44b20804f282a7a184aaf3ca08fdc9640474b1ea96c841571004ffb211b65b2e5495cf9dc8c2344af2a02d08f63e4b96e23dcbdf7718070ad50650e7dd42bfadf2adeffed6fbd69070809e31906567abd0cdd9192de5e8e4258cb3398d923d4d149c56b", @generic="e9695bab9b6deb3acc349eb4eac077b935759bc019d8608d60799f7d6a51cd16a509d40c3fc7090c830e782ca99bfecb631d4e94e1a674126d256b3d7fb6a242d39649da7c3c6bf8239f7b9db0789d1c124e8e59b525f902911619a11ff3f7945038993012518eef3169b3bfd2df1eb8fb8e4bc27fb08f7a54aea3566d761629a74435bc2184092e7c06902d4037e790644ebb820825b8a2d0d30f8c73216b83fae3e335c5270acfbd8c627c00e4de79a1c9f32de724ee02fd2a309c5151"]}, 0x2a0}], 0x1, &(0x7f0000001380)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, r2}}}, @rights={{0x20, 0x1, 0x1, [r3, r4, r1, r6]}}, @cred={{0x1c, 0x1, 0x2, {r7, 0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, r8}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff, 0xee00}}}], 0x120, 0x48840}, 0x40dc) sendmsg$NL80211_CMD_TDLS_MGMT(r1, &(0x7f0000001600)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001540)={0x6c, r0, 0x10, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x4e, 0x2a, [@mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x0, 0x1, 0x1, 0x0, 0x40, 0x28}}, @mic={0x8c, 0x10, {0xf38, "c7572680b2aa", @short="58e06f813ac98d16"}}, @link_id={0x65, 0x12, {@from_mac, @device_b}}, @dsss={0x3, 0x1, 0x21}, @peer_mgmt={0x75, 0x16, {0x1, 0x8, @void, @val=0x12, @val="e1da47c347abc0db5ff3a1ca02253d43"}}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4}, 0x810) perf_event_open(&(0x7f0000001680)={0x4, 0x80, 0x4, 0x4e, 0x1f, 0x4, 0x0, 0x10001, 0x33400, 0xa, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x2, @perf_bp={&(0x7f0000001640)}, 0x9a42, 0xe6b, 0x2b67, 0x6, 0x1, 0x9, 0x4, 0x0, 0xd3, 0x0, 0x1f}, 0xffffffffffffffff, 0x10, 0xffffffffffffffff, 0x3) openat(0xffffffffffffff9c, &(0x7f0000001700)='./file0\x00', 0x3210c0, 0x81) ioctl$BTRFS_IOC_SCRUB_CANCEL(r3, 0x941c, 0x0) r9 = openat$nvram(0xffffffffffffff9c, &(0x7f0000001740), 0x380, 0x0) r10 = syz_genetlink_get_family_id$tipc2(&(0x7f00000017c0), r1) sendmsg$TIPC_NL_NET_GET(r9, &(0x7f0000001ac0)={&(0x7f0000001780), 0xc, &(0x7f0000001a80)={&(0x7f0000001800)={0x258, r10, 0xc, 0x70bd2c, 0x5, {}, [@TIPC_NLA_LINK={0x4c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_NODE={0x160, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xf, 0x3, "fd334cd89ec7bd0665af8e"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x80000000}, @TIPC_NLA_NODE_KEY={0x3f, 0x4, {'gcm(aes)\x00', 0x17, "d79e36cb796a3601440be0163204d6d1bd2ac41c317b74"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7f}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x96f}, @TIPC_NLA_NODE_ID={0xee, 0x3, "83864b958399ae109ba43403d10fac4643f8e3be9c43f2a523e5191bf48c1a1776333f479ed3375ae4396e4ab925fba78e50093e19ea7d7f996b8bc4d20aed69347d436f42a561344fac4d3b3624394241bc5fa17600144eb41f10e47bd9a2d05093a0d2504f5d8ed392be8b4dc73ffb0e831e7a93041cc16467f8631b9e0dbb34d9b053e39e73420ceab7a6df57b0f804be6bad0db8bf98f2651e790ad9632d5a8d4187d69cc9b5c751bbb32d88e88c1fbddbb38b8e4126713b2246201f74be72a654335c820dd8022ef96a5617a1d57aa22322112f9d309c1785e6204f96ffc5512ca703dbb0239266"}]}, @TIPC_NLA_NODE={0x8c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "6816f8a587e5488311611e1d3dc00d379deb8d66e706"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x1}, @TIPC_NLA_NODE_ID={0x3c, 0x3, "b9ba263912cf72e6962cba484c0e527d5d9f8bf3e10ee7c0f9303182e14b243def36847b497de9231c818ef2ecececc58b60e758686d27dd"}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}]}]}, 0x258}, 0x1, 0x0, 0x0, 0x8000}, 0x4c000) syz_io_uring_submit(0x0, r5, &(0x7f0000001f40)=@IORING_OP_STATX={0x15, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000001e00), &(0x7f0000001f00)='./file0\x00', 0x2, 0x800, 0x1}, 0x0) 06:35:33 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000000)={{{@in6=@private0, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6}}, &(0x7f0000000100)=0xe8) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000140)={'syztnl0\x00', r1, 0x29, 0x2a, 0x6, 0x7f, 0x1e, @loopback, @mcast2, 0x8, 0x8000, 0x84c, 0xdf8}}) connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e23, 0x5, @loopback, 0x8000}, 0x1c) fcntl$getownex(r0, 0x10, &(0x7f0000000280)={0x0, 0x0}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000600)={&(0x7f00000002c0)={0x30c, 0x13, 0x1, 0x70bd2c, 0x25dfdbfd, {0x3}, [@nested={0xc, 0x1, 0x0, 0x1, [@typed={0x8, 0x10, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}]}, @generic="aaa99c38ce588cabc30d3dc359aaf865e57bb545abc4caef4eb8e8525aa44c0334cdb80ddb7ffb01e89a72caa06a2337254d2b5e9c966ed007a56889d73b02f088378166ca93b0c53017a9c4802e3307d5b7031e4492b3eb3b7c6acba9d84da81b04f41599439f56a97ecc89", @typed={0x4, 0x4b}, @generic="aeaaeb91f3cba65eeb68c249dcd73604fea8c1786e0d3d4296498cf76b434daf74532d484b6e1ef549d02e27708932b158e3", @typed={0x8, 0x4a, 0x0, 0x0, @pid=r2}, @generic="3c41cb65354dbfed236ce8cff3a7d77c0a5cc86f2698eaa71284", @nested={0x158, 0x42, 0x0, 0x1, [@generic="526b86ac196ab433858efb980cd380fff32adaec5932ac1249f638763c214f7fe34314a577f27ca8bc2b27d593a0ab1a5bf04fa0d147693d91d9f5b806e17b447fdf071b23faa758f9ac352d2adecc363ed1161ffecebcd4770d45017dc42698361cd869d972a94b2697de0e0ef7de679fcf273f215b7694c98ff30c0dcbd4916a03f0e87a6f1fbfa62825b7b1f4e329f561b515193b0dca902750d2e3938cafe62fed95e03c864acd13e69cd67efa8dd9ed6593", @typed={0xc, 0x71, 0x0, 0x0, @u64=0x6}, @typed={0x8a, 0x85, 0x0, 0x0, @binary="05b1a72559576f71afb5be6c695c8cae9cb6309876b693c8e1b8c9b16c7a18f0e6f669db7e4b638f817bede7108303162bfe751ac7e590eed103563e1fa04d1c013f8a1d8c2cfeacc9ce7351d4001ca842daddde6ee1015b98f9b356ff569aa5df202ac079454c1e447282f3d3f1cc958e2d0e966d05c8f8f4d0a1aaa4b354f9f73f7b4f4a60"}, @typed={0x8, 0x7d, 0x0, 0x0, @u32=0x3}]}, @generic="1b491730d142d355a7c1651d6c59635b38b8075dc3e25514d304ec4ac44cb2e24db159ce095e2211cb677670075918f3c522d42b087720c052ab870b156ff8b0280ee68415e76795b8299002b66277d766cb0a85d045dc0caa263d435ad1f0afc75fa6ef9f8ad00bf3ce2829e3e18495c8358888757951bc128686750c9e95848f3a58874724641c157e30a302a688a37e1799a86ed7e9bb8ef9d80d72582b5d32776a5947c088e5dbd9bfff2ac7c75151a6001378a3a8fe33665b7f49c22e1564b5d22b9962015fdcbe28a113"]}, 0x30c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000680), 0x5, 0x109403) r4 = memfd_create(&(0x7f00000006c0)='\x00', 0x0) sendfile(r3, r4, &(0x7f0000000700)=0x7ff, 0x40) r5 = openat$sr(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, &(0x7f0000000780)=0xf, 0x4) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000800), r5) sendmsg$ETHTOOL_MSG_COALESCE_SET(r5, &(0x7f0000000900)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x54, r6, 0xb04, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0x8}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES_IRQ={0x8, 0x5, 0x6}, @ETHTOOL_A_COALESCE_TX_USECS={0x8, 0x6, 0x8}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x2}, @ETHTOOL_A_COALESCE_PKT_RATE_LOW={0x8, 0xd, 0x8}, @ETHTOOL_A_COALESCE_RX_USECS_LOW={0x8, 0xe, 0x5}, @ETHTOOL_A_COALESCE_RX_USECS_HIGH={0x8, 0x13, 0x46}, @ETHTOOL_A_COALESCE_PKT_RATE_LOW={0x8, 0xd, 0x3ff}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) r7 = dup2(r4, r3) copy_file_range(r7, &(0x7f0000000940)=0x5, r0, &(0x7f0000000980), 0x8, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r7, 0x89f8, &(0x7f0000000a40)={'syztnl2\x00', &(0x7f00000009c0)={'ip6gre0\x00', r1, 0x0, 0x3f, 0x5, 0x5, 0x4, @local, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8000, 0x10, 0xa7, 0x2}}) ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, &(0x7f0000000a80)) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r8, &(0x7f0000000dc0)={&(0x7f0000000ac0), 0xc, &(0x7f0000000d80)={&(0x7f0000000b00)={0x278, 0x1, 0x2, 0x3, 0x0, 0x0, {0x0, 0x0, 0x1}, [@CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x7}, @CTA_EXPECT_NAT={0xf8, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x4}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0xb4, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x94}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010101}, {0x8, 0x2, @rand_addr=0x64010100}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2}, {0x14, 0x4, @empty}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010101}, {0x8, 0x2, @remote}}}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_TUPLE={0xc, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}]}, @CTA_EXPECT_TIMEOUT={0x8}, @CTA_EXPECT_NAT={0x15c, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_DIR={0x8}, @CTA_EXPECT_NAT_TUPLE={0x44, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x14, 0x4, @loopback}}}]}, @CTA_EXPECT_NAT_TUPLE={0x48, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1d}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @multicast2}}}]}, @CTA_EXPECT_NAT_TUPLE={0x38, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_NAT_TUPLE={0x54, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}, @CTA_EXPECT_NAT_TUPLE={0x28, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_EXPECT_NAT_DIR={0x8, 0x1, 0x1, 0x0, 0x1}]}]}, 0x278}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000000e40)={'syz_tun\x00'}) [ 73.529202] audit: type=1400 audit(1664692533.890:6): avc: denied { execmem } for pid=286 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 06:35:33 executing program 4: r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x224100, 0x0) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000000040)) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x5}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000004}, 0x4) ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000180)={0x0, "fbda403b60226f6aeed674b363bd35dd"}) pread64(0xffffffffffffffff, &(0x7f0000001180)=""/115, 0x73, 0x1) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000001200), &(0x7f0000001240)={'L+', 0x2}, 0x16, 0x6) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000001280), 0x40880, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f00000012c0)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee00}}, './file0\x00'}) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f0000001400)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000013c0)={&(0x7f0000001340)={0x5c, 0x2, 0x7, 0x101, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x7f}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x2}, @NFACCT_PKTS={0xc, 0x2, 0x1, 0x0, 0x10000}, @NFACCT_NAME={0x9, 0x1, 'syz1\x00'}, @NFACCT_NAME={0x9, 0x1, 'syz0\x00'}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4880}, 0x4000) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r1, &(0x7f0000001500)={&(0x7f0000001440)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000014c0)={&(0x7f0000001480)={0x24, 0x0, 0x20, 0x70bd2b, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x59}, @ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x148c1}, 0x4000000) sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f00000019c0)={&(0x7f0000001540)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001980)={&(0x7f0000001580)={0x3d4, 0x12, 0x200, 0x70bd25, 0x25dfdbff, {0x1f, 0x0, 0x1, 0x72, {0x4e23, 0x4e24, [0x9b, 0xffffffff, 0x7ff, 0x40], [0x4, 0x0, 0x7, 0x3], 0x0, [0x8, 0x6]}, 0xff, 0x1}, [@INET_DIAG_REQ_BYTECODE={0x8a, 0x1, "7c2d7604827e32213063bcfbe44ec221f53cb46bb1e33f43c39232b529d844e7a4337d38ad26e8482c378df19f03c3c41cabbdaa32604622ccd0927d428317a18fac05dcbae2c3722172dd508865c24a8de177aff6cdb5fa2feba9fb241a7e96c14759c6b859004373c412cd95f4c85e732e3918e0b9a7e745cb433f8c92d5a7576ddc181ff2"}, @INET_DIAG_REQ_BYTECODE={0x18, 0x1, "368dc79d7306ee830edb66a44e55c878a70bf202"}, @INET_DIAG_REQ_BYTECODE={0x4b, 0x1, "666e06201e0d5ed7a18218d34daebc38963eced1628f3234bcca8073101f5a53681103bcc2162c683888af441f936283751ca48cbb231873998d284499fd0884f047bbce4d9940"}, @INET_DIAG_REQ_BYTECODE={0x1f, 0x1, "ab06ee89abce677c7a4fce40961b4c7c1e7076cd3fcd50d8176d6a"}, @INET_DIAG_REQ_BYTECODE={0x1f, 0x1, "0258542a327d30b8ffdc9ae818abc0bbc25c8855f3d7d2bd45cd05"}, @INET_DIAG_REQ_BYTECODE={0x5a, 0x1, "eae3682a938349007b82fb7ce991e98574a717f2eaf76adc4f23a348f0c9729ba4df0d7cc0272a75e4699ab7598b6261373243f87ffa806d92ed1961de59eb9b1d44ad542bb6913dc9b6d6cf2412f85abc84084b3a96"}, @INET_DIAG_REQ_BYTECODE={0xf0, 0x1, "21e20a8babee3fbb36ab9013976bbda9414f3b9852e4334fcb28edf3ee45f6502f4bd49c50ccac0652f4161e026d7b2bb591c295c0ffc478631f82478b2944f36ec3214cba8873f5b0989a78cd00fe3cd2308c8f18fb5631b9759238c1c530d0c134e9b34c2a9d9e904274c800bc6aa2bb9f68ab22a614ca62fbf9ec16e6f9fdf446ba17ea0514e36f77a7d49d69698d4f02cc44706e8c67cfc4c52f48a8b449f3fb242c3c8efe8b21b6aa4d00209d65b17b671537f84add1b5b681100ef078c98c17a9ea28fa41f047167f39ed69fd1bef54bf1cdc6107138bc0c7938055fd76cc53c45a17af5d62b342359"}, @INET_DIAG_REQ_BYTECODE={0x1a, 0x1, "0712846570e5e21c5595018dd2828ccf4558a1df51d8"}, @INET_DIAG_REQ_BYTECODE={0xf0, 0x1, "e176f1fe9cec4e1e0fb2988633f6d5e2f99e20f045084e4d131ff8c74d087285063eaaf5042e9c934070181f8a0be760e0a964cd717b3da74490bba2ac151d3380b1cf87e314a1fb97ed91c5ce283f6b74052b563f67f5bd4aacfa321d9e2ac4d9642c341a3119bb30bdbc9da04c6a83d43df0695ca0416075e52cf22d2ea8e1676d0d14a00e7ffb09d0a585a30f0d2619aeade36450b98d131922f2dd39c8d6d1f9e3f004a91d8449cdd8baf6a6832d6764815d82559fe3c7b15995ab3752970b5309b732f06ce15df5f71cdfd1ec68427fffd9f7a346f8f88da1f1bce813201e0a98278798cef66dcda8e8"}]}, 0x3d4}, 0x1, 0x0, 0x0, 0x4000000}, 0x4) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000001a40), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000001c80)={&(0x7f0000001a00)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001c40)={&(0x7f0000001a80)={0x188, r3, 0x200, 0x70bd29, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x9}, {0xc}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc, 0x8f, 0x7fff}, {0xc, 0x90, 0xfd8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x3}, {0xc, 0x8f, 0x7fffffff}, {0xc, 0x90, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8}, {0xc, 0x8f, 0x3}, {0xc, 0x90, 0xfffffffffffffff8}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x3}, {0xc, 0x8f, 0x10001}, {0xc, 0x90, 0x7}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x770b}, {0xc, 0x90, 0x8}}]}, 0x188}, 0x1, 0x0, 0x0, 0x880}, 0x8000) pwritev(r2, &(0x7f0000001dc0)=[{&(0x7f0000001cc0)="1f8aa27d8d14f749a5d8d6ad373c33fefb01f2c68b556707dbcdd38ce63c341dbe48051865c7f4f7316771c73dd2e65988d9c5fb9ea81587e32fca887c3f5fe1943fbdd402b5c90d511dd138ffaaa3e3485d11a030c661ac11934f53cc18af488d9b34a69a6f3dde5f4805dd21f09892e95ebfffb42f6dfe3e36daa23cdfa303998e1257402d3cc3e496947bb1c457ebd89ea35d144302572ee0827f38683ddc84118d421ea1693a96bbb8ffac535563d85dd2c748febd0c0478df77b098ed", 0xbf}, {&(0x7f0000001d80)}], 0x2, 0xd10, 0x4) sendmsg$NL80211_CMD_START_SCHED_SCAN(r2, &(0x7f0000002280)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000002240)={&(0x7f0000001e40)={0x3e0, 0x0, 0x308, 0x70bd26, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x6, 0x47}}}}, [@NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x2}, @NL80211_ATTR_SCAN_SUPP_RATES={0x3b8, 0x7d, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xa0, 0x0, "417b01ccbe2e9b6000686fc548cf50543bc9e12ca0fe95ea64fe0f5a412e321871d3823f68909e0218e698f6a64c575ceb4f533329bcb682df8ded1acd2806d317199d753a7291bd47e26d1350e37820e1e0c4b7f917abce24f2627e1201e62578cff65590d6a1b7e7aa5d840090a061349e4b6f7f6f2e81b664bd0593a82b3e0b7a327d70a245e30efb79a5589efc3af13a66f431b0ed9247ac90a0"}, @NL80211_BAND_60GHZ={0xe5, 0x2, "0ed398b4fc82ce872ab3345251d228c1fa728c7c2a50dc4a9f8a5592d917775be9d17496684108b9bbaa4f81be0a0540e3dde96468e7b4f17b37e5cf9fe281f6ef1ba55b3a2b6a4aa9a7cb715ba7789c65022fec62e136dc9f78c3cc26da49ca0d5728cc74019d73076ee40a447e92d4fdcdea26406ec0c8bbd6e54d6019bf4cd09e806425626df3826290bb402fb03b9992ce0e7adfccc4466a34c40c76e78dcde04820055b5ab63b2456012701d409e028cba27a6d8b1b6f545084003768e6f92a7eed0fdc3696baa051f85a6ffe3dca95fda55d84e7b233d9c45f7134a0f173"}, @NL80211_BAND_5GHZ={0xa3, 0x1, "889dbdaf368c749c1c1b6343d24e57765e4f45be07e78ad526e000646e8f4ddb4c8ab291be4b20d537e0c20205b23bb9a82a6792d756eb613b193aa0c8400ee771c6504fad7eb2b61bb9fd1576ed96228b38f3128d5e431b9383027f529fffa36cf1278a3b33783f54be381962673ea44ac2593fb9eb93d23829c58c79f0d47b11f879faee70ac93ebde482877e4745307c5171de2ad9982364ae4eac21b65"}, @NL80211_BAND_6GHZ={0xd2, 0x3, "28c4da0d4eda05f1ac95fcc73cfc5b4a63b990c963e2f8fc962cd1f0065173c379d7e97be87d5ec9f8acf52aa9c82d7f9d687dd5d69e5766037bd6fae0b723a0d93c004a13992914d874db45f0fbce8311cc43807c33269ca7756b7fa9d9261bbc5c84f4249c09dbcb5c0d8ca26be5b609a38d399156d6d58f963ae4719f293627c86a9addda180f3db4403dca9cb377e3c4efcc8c7198a4bd9ae5162d2af733388a8aacab98a9ce49f773a47759f97beb892de899299f5b5afc929c3191920fc74f7e8188b4b26ce4e6ac330d17"}, @NL80211_BAND_6GHZ={0x52, 0x3, "2856ec16e536c5cffdf6ac918b1455ccaab542b7cacd1f1a9c4e0cd405e7077cbd52df91b8ed2e0eb21499dbecb3da6614334852a9cf57d57a68ba16b0aabaca28f4363f1d17e0a56e086db7f1dc"}, @NL80211_BAND_60GHZ={0x5f, 0x2, "decd087169ca1e9a9ec3a2f6d2104ad3ca961ffc998dd271fd303c7aa2c0c498d5c34391d0c50584b99888d0e994fe4e7645675da780b60eb2c208dc134b41a07b743ab2eadd9d3391a3ea52d46dbc0f37261349b0f96c0cb8ddad"}]}]}, 0x3e0}, 0x1, 0x0, 0x0, 0x80}, 0xc2) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f00000022c0)={{0x1, 0x1, 0x18, r2, {0x8001}}, './file0\x00'}) open_by_handle_at(r4, &(0x7f0000002300)=@fuse_with_parent={0x18, 0x82, {{0x35, 0x8605e726, 0x5}, {0x8ff5, 0x1ff, 0x8}}}, 0x100) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000002340)={{0x1, 0x1, 0x18, r1, {0x7}}, './file0\x00'}) setsockopt$bt_BT_DEFER_SETUP(r5, 0x112, 0x7, &(0x7f0000002380), 0x4) sendmsg$IPVS_CMD_SET_DEST(r2, &(0x7f0000002540)={&(0x7f00000023c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002500)={&(0x7f0000002440)={0xac, 0x0, 0x200, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x24, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x9}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e24}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}]}, @IPVS_CMD_ATTR_SERVICE={0x5c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x4, 0x23}}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e23}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'wlc\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0xff}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'dh\x00'}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x800}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1e1}]}, 0xac}, 0x1, 0x0, 0x0, 0x4040801}, 0x4000) 06:35:33 executing program 6: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r1, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x8}, @MPTCP_PM_ATTR_ADDR={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004}, 0x4000000) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x68, r2, 0x300, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_KEYS={0x14, 0x51, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_DEFAULT={0x4}]}]}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x3}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x25}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}], @NL80211_ATTR_PRIVACY={0x4}]}, 0x68}, 0x1, 0x0, 0x0, 0x44044}, 0x0) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r0, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x128, 0x0, 0x400, 0x70bd29, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x5, 0x83, 0x1}}]}, 0x128}, 0x1, 0x0, 0x0, 0x4004}, 0x48044) sync_file_range(r0, 0x6, 0x1, 0x3) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000004c0), 0x200000, 0x0) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r3, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x7c, 0x0, 0x300, 0x70bd2c, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0xd}, {0x5}}, {@pci={{0x8}, {0x11}}, {0xd}, {0x5, 0x83, 0x1}}]}, 0x7c}, 0x1, 0x0, 0x0, 0x20}, 0x818) sendmsg$IEEE802154_LLSEC_LIST_DEV(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x14, 0x0, 0x20, 0x70bd2c, 0x25dfdbff, {}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24000000}, 0x40) ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000000740)) sendmsg$DEVLINK_CMD_RATE_DEL(r3, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x3c, 0x0, 0xc36, 0x70bd29, 0x25dfdbff, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x4040001) ftruncate(r3, 0x9) r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000880), 0x298200, 0x0) r5 = dup(r4) r6 = syz_io_uring_setup(0x3a06, &(0x7f00000008c0)={0x0, 0x12b, 0x0, 0x1, 0x388, 0x0, r5}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000940)=0x0, &(0x7f0000000980)) syz_io_uring_submit(r7, 0x0, &(0x7f0000000a40)=@IORING_OP_READV=@pass_iovec={0x1, 0x5, 0x2004, @fd=r0, 0x200, &(0x7f0000000a00)=[{&(0x7f00000009c0)}], 0x1, 0xc, 0x1}, 0x7) ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f0000000a80)={{0x1, 0x1, 0x18, r6}, './file0\x00'}) syz_io_uring_setup(0x6dc5, &(0x7f0000000ac0)={0x0, 0xdef6, 0x0, 0x3, 0x302, 0x0, r8}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000b40), &(0x7f0000000b80)) sendmsg$NFT_MSG_GETRULE(r5, &(0x7f0000001dc0)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001d80)={&(0x7f0000000c00)={0x1174, 0x7, 0xa, 0x101, 0x0, 0x0, {0x6, 0x0, 0x1}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x101, 0x7, 0x1, 0x0, "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"}, @NFTA_RULE_COMPAT={0x34, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2f}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x892f}, @NFTA_RULE_COMPAT_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x6c}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x2b}]}, @NFTA_RULE_USERDATA={0x1004, 0x7, 0x1, 0x0, "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"}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}]}, 0x1174}, 0x1, 0x0, 0x0, 0x40011}, 0x0) 06:35:33 executing program 5: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_KEY(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0xf0, r0, 0x100, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY={0x8c, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPES={0x28, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "8ff78be8a6249da469d4773c2e"}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "e47f65a7d7bf13bfcd4db75524"}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "7ef8015425c1cf080b9d8a223a"}, @NL80211_KEY_SEQ={0xb, 0x4, "1f63191ad6aeda"}, @NL80211_KEY_IDX={0x5, 0x2, 0x3}, @NL80211_KEY_SEQ={0x9, 0x4, "aab384cbcb"}]}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x2}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_KEY={0x1c, 0x50, 0x0, 0x1, [@NL80211_KEY_MODE={0x5}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_SEQ={0x6, 0x4, "749c"}, @NL80211_KEY_DEFAULT_MGMT={0x4}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x40000}, 0x50) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000280), 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(0xffffffffffffffff, 0x89fa, &(0x7f0000000340)={'sit0\x00', &(0x7f00000002c0)={'ip6tnl0\x00', 0x0, 0x4, 0x7f, 0xf7, 0x1, 0x0, @mcast2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x700, 0x1, 0x4c, 0xfffffffd}}) sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, r2, 0x300, 0x70bd26, 0x25dfdbfd, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0xfffffffb}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x8500000}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r3}]}, 0x54}, 0x1, 0x0, 0x0, 0x40001}, 0x11) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x48, r4, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x1}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x3}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000780)=[{&(0x7f0000000600)=""/94, 0x5e}, {&(0x7f0000000680)=""/22, 0x16}, {&(0x7f00000006c0)=""/166, 0xa6}], 0x3, 0x7ff, 0x6) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x24, r2, 0x100, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008010}, 0x4800) r5 = syz_open_dev$vcsa(&(0x7f00000008c0), 0xffffffffffff2ade, 0x2300) ioctl$sock_SIOCDELRT(r5, 0x890c, &(0x7f0000000940)={0x0, @llc={0x1a, 0x1b, 0x81, 0xf8, 0x3f, 0x2, @broadcast}, @nl=@unspec, @sco, 0x1f, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000900)='syz_tun\x00', 0x6, 0x0, 0x6c2c}) sendmsg$BATADV_CMD_TP_METER_CANCEL(r5, &(0x7f0000000a80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x7290a36f36603cb9}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x24, r2, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) write$cgroup_devices(r5, &(0x7f0000000ac0)={'c', ' *:* ', 'm\x00'}, 0x8) syz_genetlink_get_family_id$nl80211(&(0x7f0000000b00), 0xffffffffffffffff) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b80), r5) sendmsg$NL80211_CMD_START_AP(r5, &(0x7f0000000d00)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000bc0)={0xd8, r6, 0x200, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @random="2015c91ff3a1"}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x8}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1685}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x3}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3ac}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1d1d}], @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x8}, @acl_policy=[@NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_MAC_ADDRS={0x40, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}, {0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}], @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x1}, @NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0x8}]}, 0xd8}, 0x1, 0x0, 0x0, 0x4c0d0}, 0x4000) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000d40), 0x843, 0x0) r7 = signalfd4(r5, &(0x7f0000000d80)={[0x10000]}, 0x8, 0x0) sendmsg$ETHTOOL_MSG_EEE_GET(r7, &(0x7f0000000fc0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000f80)={&(0x7f0000000e40)={0x118, 0x0, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0xa0, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x4004}, 0x20000040) 06:35:33 executing program 7: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$RTC_PLL_GET(r0, 0x80207011, &(0x7f0000000040)) ioctl$RTC_ALM_SET(r0, 0x40247007, &(0x7f0000000080)={0x20, 0x15, 0x7, 0x18, 0x4, 0x1, 0x2, 0x83}) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/seq/clients\x00', 0x0, 0x0) ioctl$RTC_EPOCH_READ(r1, 0x8008700d, &(0x7f0000000100)) ioctl$RTC_PIE_OFF(r1, 0x7006) ioctl$RTC_PIE_ON(r1, 0x7005) ioctl$RTC_IRQP_READ(r0, 0x8008700b, &(0x7f0000000140)) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x18dc) r2 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000180), 0xc102, 0x0) preadv(r2, &(0x7f0000001580)=[{&(0x7f00000001c0)=""/205, 0xcd}, {&(0x7f00000002c0)=""/6, 0x6}, {&(0x7f0000000300)=""/202, 0xca}, {&(0x7f0000000400)=""/178, 0xb2}, {&(0x7f00000004c0)=""/111, 0x6f}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/24, 0x18}], 0x7, 0x20, 0x5) r3 = dup(0xffffffffffffffff) ioctl$CDROMCLOSETRAY(r3, 0x5319) ioctl$CDROMCLOSETRAY(r3, 0x5319) openat$rtc(0xffffffffffffff9c, &(0x7f0000001600), 0x2, 0x0) r4 = openat$cgroup_type(r3, &(0x7f0000001640), 0x2, 0x0) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r4, 0xf50f, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000001680)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) openat$cdrom(0xffffffffffffff9c, &(0x7f00000016c0), 0x242840, 0x0) ioctl$CDROMREADRAW(r1, 0x5314, &(0x7f0000001700)={0x5, 0x0, 0x40, 0xaa, 0xb1, 0x66}) [ 74.905623] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 74.907427] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 74.908992] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 74.910166] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 74.912252] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 74.913950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 74.918605] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 74.919919] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 74.922210] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 74.924333] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 74.939988] Bluetooth: hci1: HCI_REQ-0x0c1a [ 74.965748] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 74.968077] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 74.969672] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 74.972206] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 74.974561] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 74.976101] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 74.977083] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 74.980238] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 74.985395] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 74.985469] Bluetooth: hci0: HCI_REQ-0x0c1a [ 74.988002] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 74.989419] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 74.991068] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 74.992301] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 74.993923] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 74.995598] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 74.997513] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 74.998703] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 75.003364] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 75.006406] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 75.008668] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 75.010276] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 75.011750] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 75.013334] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 75.015326] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 75.017127] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 75.019138] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 75.023658] Bluetooth: hci3: HCI_REQ-0x0c1a [ 75.027734] Bluetooth: hci5: HCI_REQ-0x0c1a [ 75.031480] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 75.033025] Bluetooth: hci2: HCI_REQ-0x0c1a [ 75.043839] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 75.049849] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 75.053775] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 75.055681] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 75.057204] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 75.062470] Bluetooth: hci6: HCI_REQ-0x0c1a [ 75.079631] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 75.085322] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 75.089575] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 75.090600] Bluetooth: hci7: HCI_REQ-0x0c1a [ 75.119138] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 75.133490] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 75.135266] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 75.157503] Bluetooth: hci4: HCI_REQ-0x0c1a [ 76.982344] Bluetooth: hci1: command 0x0409 tx timeout [ 77.045398] Bluetooth: hci2: command 0x0409 tx timeout [ 77.046463] Bluetooth: hci5: command 0x0409 tx timeout [ 77.047507] Bluetooth: hci0: command 0x0409 tx timeout [ 77.109069] Bluetooth: hci7: command 0x0409 tx timeout [ 77.110066] Bluetooth: hci3: command 0x0409 tx timeout [ 77.111024] Bluetooth: hci6: command 0x0409 tx timeout [ 77.237374] Bluetooth: hci4: command 0x0409 tx timeout [ 79.029614] Bluetooth: hci1: command 0x041b tx timeout [ 79.092997] Bluetooth: hci0: command 0x041b tx timeout [ 79.093748] Bluetooth: hci5: command 0x041b tx timeout [ 79.094542] Bluetooth: hci2: command 0x041b tx timeout [ 79.157009] Bluetooth: hci6: command 0x041b tx timeout [ 79.157762] Bluetooth: hci3: command 0x041b tx timeout [ 79.158629] Bluetooth: hci7: command 0x041b tx timeout [ 79.286965] Bluetooth: hci4: command 0x041b tx timeout [ 81.077032] Bluetooth: hci1: command 0x040f tx timeout [ 81.140985] Bluetooth: hci2: command 0x040f tx timeout [ 81.141777] Bluetooth: hci5: command 0x040f tx timeout [ 81.143085] Bluetooth: hci0: command 0x040f tx timeout [ 81.205003] Bluetooth: hci7: command 0x040f tx timeout [ 81.205775] Bluetooth: hci3: command 0x040f tx timeout [ 81.206579] Bluetooth: hci6: command 0x040f tx timeout [ 81.333407] Bluetooth: hci4: command 0x040f tx timeout [ 83.124959] Bluetooth: hci1: command 0x0419 tx timeout [ 83.189465] Bluetooth: hci0: command 0x0419 tx timeout [ 83.190105] Bluetooth: hci5: command 0x0419 tx timeout [ 83.190514] Bluetooth: hci2: command 0x0419 tx timeout [ 83.252930] Bluetooth: hci6: command 0x0419 tx timeout [ 83.253356] Bluetooth: hci3: command 0x0419 tx timeout [ 83.253781] Bluetooth: hci7: command 0x0419 tx timeout [ 83.381144] Bluetooth: hci4: command 0x0419 tx timeout 06:36:27 executing program 1: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x3]}, 0x8) ioctl$KDSETMODE(r0, 0x4b3a, 0x1) syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x200004, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x165c02, 0x0) preadv(r2, &(0x7f0000001540)=[{&(0x7f0000000400)=""/57, 0x39}, {&(0x7f0000000440)=""/137, 0x89}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/37, 0x25}], 0x4, 0x0, 0x4) r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0xc) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000180)=ANY=[@ANYRES32=r7, @ANYRES32=r3, @ANYRES32=r6, @ANYRESHEX=r5, @ANYRES64, @ANYRESOCT, @ANYRES64=r4, @ANYRES32, @ANYRESOCT]) fchownat(r2, &(0x7f0000000040)='./file0/../file0\x00', 0xee01, r7, 0x400) ioctl$FS_IOC_SETFLAGS(r1, 0xc0189436, &(0x7f0000000080)) [ 127.357601] audit: type=1400 audit(1664692587.718:7): avc: denied { open } for pid=3854 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.359151] audit: type=1400 audit(1664692587.719:8): avc: denied { kernel } for pid=3854 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.365921] ------------[ cut here ]------------ [ 127.365943] [ 127.365945] ====================================================== [ 127.365949] WARNING: possible circular locking dependency detected [ 127.365953] 6.0.0-rc7-next-20220930 #1 Not tainted [ 127.365959] ------------------------------------------------------ [ 127.365962] syz-executor.1/3856 is trying to acquire lock: [ 127.365969] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 127.366012] [ 127.366012] but task is already holding lock: [ 127.366015] ffff88800d3e8820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.366042] [ 127.366042] which lock already depends on the new lock. [ 127.366042] [ 127.366045] [ 127.366045] the existing dependency chain (in reverse order) is: [ 127.366049] [ 127.366049] -> #3 (&ctx->lock){....}-{2:2}: [ 127.366062] _raw_spin_lock+0x2a/0x40 [ 127.366074] __perf_event_task_sched_out+0x53b/0x18d0 [ 127.366085] __schedule+0xedd/0x2470 [ 127.366099] schedule+0xda/0x1b0 [ 127.366112] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.366125] syscall_exit_to_user_mode+0x19/0x40 [ 127.366138] do_syscall_64+0x48/0x90 [ 127.366156] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.366168] [ 127.366168] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 127.366182] _raw_spin_lock_nested+0x30/0x40 [ 127.366192] raw_spin_rq_lock_nested+0x1e/0x30 [ 127.366209] task_fork_fair+0x63/0x4d0 [ 127.366226] sched_cgroup_fork+0x3d0/0x540 [ 127.366240] copy_process+0x4183/0x6e20 [ 127.366251] kernel_clone+0xe7/0x890 [ 127.366260] user_mode_thread+0xad/0xf0 [ 127.366270] rest_init+0x24/0x250 [ 127.366282] arch_call_rest_init+0xf/0x14 [ 127.366300] start_kernel+0x4c6/0x4eb [ 127.366315] secondary_startup_64_no_verify+0xe0/0xeb [ 127.366329] [ 127.366329] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 127.366342] _raw_spin_lock_irqsave+0x39/0x60 [ 127.366353] try_to_wake_up+0xab/0x1930 [ 127.366366] up+0x75/0xb0 [ 127.366380] __up_console_sem+0x6e/0x80 [ 127.366396] console_unlock+0x46a/0x590 [ 127.366412] con_install+0x14e/0x5d0 [ 127.366430] tty_init_dev.part.0+0xa0/0x5e0 [ 127.366443] tty_open+0xba3/0x1350 [ 127.366453] chrdev_open+0x268/0x6e0 [ 127.366465] do_dentry_open+0x6ca/0x12b0 [ 127.366478] path_openat+0x187f/0x27b0 [ 127.366488] do_filp_open+0x1b6/0x410 [ 127.366498] do_sys_openat2+0x171/0x4c0 [ 127.366511] __x64_sys_openat+0x13f/0x1f0 [ 127.366524] do_syscall_64+0x3b/0x90 [ 127.366541] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.366553] [ 127.366553] -> #0 ((console_sem).lock){....}-{2:2}: [ 127.366567] __lock_acquire+0x2a02/0x5e70 [ 127.366584] lock_acquire+0x1a2/0x530 [ 127.366599] _raw_spin_lock_irqsave+0x39/0x60 [ 127.366610] down_trylock+0xe/0x70 [ 127.366624] __down_trylock_console_sem+0x3b/0xd0 [ 127.366640] vprintk_emit+0x16b/0x560 [ 127.366656] vprintk+0x84/0xa0 [ 127.366671] _printk+0xba/0xf1 [ 127.366683] report_bug.cold+0x72/0xab [ 127.366699] handle_bug+0x3c/0x70 [ 127.366716] exc_invalid_op+0x14/0x50 [ 127.366732] asm_exc_invalid_op+0x16/0x20 [ 127.366744] group_sched_out.part.0+0x2c7/0x460 [ 127.366762] ctx_sched_out+0x8f1/0xc10 [ 127.366779] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.366789] __schedule+0xedd/0x2470 [ 127.366803] schedule+0xda/0x1b0 [ 127.366816] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.366826] syscall_exit_to_user_mode+0x19/0x40 [ 127.366839] do_syscall_64+0x48/0x90 [ 127.366855] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.366867] [ 127.366867] other info that might help us debug this: [ 127.366867] [ 127.366870] Chain exists of: [ 127.366870] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 127.366870] [ 127.366885] Possible unsafe locking scenario: [ 127.366885] [ 127.366887] CPU0 CPU1 [ 127.366890] ---- ---- [ 127.366892] lock(&ctx->lock); [ 127.366898] lock(&rq->__lock); [ 127.366904] lock(&ctx->lock); [ 127.366910] lock((console_sem).lock); [ 127.366916] [ 127.366916] *** DEADLOCK *** [ 127.366916] [ 127.366918] 2 locks held by syz-executor.1/3856: [ 127.366925] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 127.366953] #1: ffff88800d3e8820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.366979] [ 127.366979] stack backtrace: [ 127.366982] CPU: 1 PID: 3856 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1 [ 127.366995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.367003] Call Trace: [ 127.367006] [ 127.367010] dump_stack_lvl+0x8b/0xb3 [ 127.367028] check_noncircular+0x263/0x2e0 [ 127.367045] ? format_decode+0x26c/0xb50 [ 127.367061] ? print_circular_bug+0x450/0x450 [ 127.367077] ? simple_strtoul+0x30/0x30 [ 127.367092] ? __lockdep_reset_lock+0x180/0x180 [ 127.367109] ? format_decode+0x26c/0xb50 [ 127.367125] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 127.367143] __lock_acquire+0x2a02/0x5e70 [ 127.367164] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 127.367186] lock_acquire+0x1a2/0x530 [ 127.367203] ? down_trylock+0xe/0x70 [ 127.367220] ? lock_release+0x750/0x750 [ 127.367236] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 127.367257] ? vprintk+0x84/0xa0 [ 127.367275] _raw_spin_lock_irqsave+0x39/0x60 [ 127.367286] ? down_trylock+0xe/0x70 [ 127.367302] down_trylock+0xe/0x70 [ 127.367317] ? vprintk+0x84/0xa0 [ 127.367334] __down_trylock_console_sem+0x3b/0xd0 [ 127.367351] vprintk_emit+0x16b/0x560 [ 127.367367] ? lock_downgrade+0x6d0/0x6d0 [ 127.367386] vprintk+0x84/0xa0 [ 127.367403] _printk+0xba/0xf1 [ 127.367414] ? record_print_text.cold+0x16/0x16 [ 127.367428] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 127.367442] ? lock_downgrade+0x6d0/0x6d0 [ 127.367459] ? report_bug.cold+0x66/0xab [ 127.367477] ? group_sched_out.part.0+0x2c7/0x460 [ 127.367495] report_bug.cold+0x72/0xab [ 127.367514] handle_bug+0x3c/0x70 [ 127.367531] exc_invalid_op+0x14/0x50 [ 127.367549] asm_exc_invalid_op+0x16/0x20 [ 127.367561] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.367582] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.367593] RSP: 0018:ffff888019fe7c48 EFLAGS: 00010006 [ 127.367602] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.367610] RDX: ffff888019f8b580 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 127.367617] RBP: ffff888040898000 R08: 0000000000000005 R09: 0000000000000001 [ 127.367625] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800d3e8800 [ 127.367632] R13: ffff88806cf3d2c0 R14: ffffffff8547c960 R15: 0000000000000002 [ 127.367643] ? group_sched_out.part.0+0x2c7/0x460 [ 127.367663] ? group_sched_out.part.0+0x2c7/0x460 [ 127.367682] ctx_sched_out+0x8f1/0xc10 [ 127.367701] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.367715] ? lock_is_held_type+0xd7/0x130 [ 127.367729] ? __perf_cgroup_move+0x160/0x160 [ 127.367739] ? set_next_entity+0x304/0x550 [ 127.367757] ? update_curr+0x267/0x740 [ 127.367775] ? lock_is_held_type+0xd7/0x130 [ 127.367789] __schedule+0xedd/0x2470 [ 127.367806] ? io_schedule_timeout+0x150/0x150 [ 127.367822] ? __x64_sys_futex_time32+0x480/0x480 [ 127.367837] schedule+0xda/0x1b0 [ 127.367852] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.367864] syscall_exit_to_user_mode+0x19/0x40 [ 127.367877] do_syscall_64+0x48/0x90 [ 127.367895] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.367908] RIP: 0033:0x7fdf51800b19 [ 127.367916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.367927] RSP: 002b:00007fdf4ed76218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.367937] RAX: 0000000000000001 RBX: 00007fdf51913f68 RCX: 00007fdf51800b19 [ 127.367945] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdf51913f6c [ 127.367952] RBP: 00007fdf51913f60 R08: 000000000000000e R09: 0000000000000000 [ 127.367959] R10: 0000000000000006 R11: 0000000000000246 R12: 00007fdf51913f6c [ 127.367966] R13: 00007fffd46178af R14: 00007fdf4ed76300 R15: 0000000000022000 [ 127.367978] [ 127.427261] WARNING: CPU: 1 PID: 3856 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 127.427981] Modules linked in: [ 127.428231] CPU: 1 PID: 3856 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1 [ 127.428796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.429638] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.430069] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.431389] RSP: 0018:ffff888019fe7c48 EFLAGS: 00010006 [ 127.431791] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.432325] RDX: ffff888019f8b580 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 127.432869] RBP: ffff888040898000 R08: 0000000000000005 R09: 0000000000000001 [ 127.433375] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800d3e8800 [ 127.433890] R13: ffff88806cf3d2c0 R14: ffffffff8547c960 R15: 0000000000000002 [ 127.434449] FS: 00007fdf4ed76700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 127.435057] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.435468] CR2: 00007fc777394650 CR3: 000000000d9c0000 CR4: 0000000000350ee0 [ 127.435978] Call Trace: [ 127.436176] [ 127.436351] ctx_sched_out+0x8f1/0xc10 [ 127.436660] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.437030] ? lock_is_held_type+0xd7/0x130 [ 127.437352] ? __perf_cgroup_move+0x160/0x160 [ 127.437700] ? set_next_entity+0x304/0x550 [ 127.438040] ? update_curr+0x267/0x740 [ 127.438345] ? lock_is_held_type+0xd7/0x130 [ 127.438678] __schedule+0xedd/0x2470 [ 127.438977] ? io_schedule_timeout+0x150/0x150 [ 127.439329] ? __x64_sys_futex_time32+0x480/0x480 [ 127.439697] schedule+0xda/0x1b0 [ 127.439968] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.440337] syscall_exit_to_user_mode+0x19/0x40 [ 127.440701] do_syscall_64+0x48/0x90 [ 127.440999] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.441390] RIP: 0033:0x7fdf51800b19 [ 127.441677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.443067] RSP: 002b:00007fdf4ed76218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.443642] RAX: 0000000000000001 RBX: 00007fdf51913f68 RCX: 00007fdf51800b19 [ 127.444149] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdf51913f6c [ 127.444650] RBP: 00007fdf51913f60 R08: 000000000000000e R09: 0000000000000000 [ 127.445149] R10: 0000000000000006 R11: 0000000000000246 R12: 00007fdf51913f6c [ 127.445647] R13: 00007fffd46178af R14: 00007fdf4ed76300 R15: 0000000000022000 [ 127.446175] [ 127.446345] irq event stamp: 1094 [ 127.446587] hardirqs last enabled at (1093): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 127.447246] hardirqs last disabled at (1094): [] __schedule+0x1225/0x2470 [ 127.447835] softirqs last enabled at (858): [] __irq_exit_rcu+0x11b/0x180 [ 127.448430] softirqs last disabled at (779): [] __irq_exit_rcu+0x11b/0x180 [ 127.449025] ---[ end trace 0000000000000000 ]--- 06:36:28 executing program 1: syz_emit_vhci(&(0x7f0000000400)=@HCI_EVENT_PKT={0x4, @hci_ev_le_meta={{0x3e, 0xb}, @hci_ev_le_remote_conn_param_req={{}, {0x0, 0x0, 0x400}}}}, 0xe) 06:36:28 executing program 6: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000380)='/sys/power/pm_test', 0x0, 0x0) dup3(0xffffffffffffffff, r0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, r1, 0x0) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r2, 0x0) pwritev(r2, &(0x7f0000000300)=[{&(0x7f0000000080)="9f4644c3691e4901ff2eb58d28d3b314b7c98f1d14dffe2e423ce2e3be3587eccae533c92f60477c910a15bea6287f13aab437e6c0f0bd4dbb87006d56659e9f5850f5af557aa474f56b76c0d0", 0x4d}, {&(0x7f0000000100)="3ad50a6755eb6cf67b4d3b5d6a4a92c434fb396c412b74088035483f60480a4aad789d17b29d5848013c395c2c0c776adba8bb9518efc6db36c1920bac1670a8eb187e86c74234a91551055fbd5932c15d63a45c26424083c31201dd6950b39490b605c46a8ae8fe6913cbcb6e0d005710db45e8e87dd7db0dfaba8b805cdd1527228de70d36ec1523f73b10b66a9332e9b994540b30acb7577b7b263a13fe91cd55818f9a7d9c", 0xa7}, {&(0x7f0000000000)="46d50ccbd7a9ee1b4223d54b20479a597b0a7563a02d9f91dc2a08d8f466", 0x1e}, {&(0x7f00000001c0)="18e1275f975fae17e713830bb1cd9e35bb94041813c00051a88634a34101857260bc02a17d94e9816d020596dc6be438bc46600ba51d3b5cc5e43a6b36fa", 0x3e}, {&(0x7f0000000200)="c3ffc400003014eca0b37eb12bc4e12a4b5480ba319ceb61127dc5e6f84da9406378614563dcee8fda76b7f9526bab71c7eb35eee1db5d2583d576f19cdead6e163441da0301409e4168a2bff74a1caaa6d440d19c6a616e56b63220e30fb613af2529133e137aae999000c991", 0x6d}, {&(0x7f0000000280)="2ab0c512969632155a2c29750404977f52b831dcec4c6603af398121779199c78b166401624fbf1c55645e640f713b85e80d539191ec74d7c029330e43279b47c4c13d3e4f265867d4d7d1d9eec58e638214620d46", 0x55}, {&(0x7f00000003c0)="79b5dfe73452974e60d9a5335264a550a6655897366b808a30ebc5e6cbf9c0eab05140021e5b3f7fd82eae0176ba72baefc8995981ba8787d272adaaeb61ffc5e32d3b6b64b0247e4076147cca8f4d29cc9fe1c0ee0ea8a060d3404a9f64651bc259f957f10d0b5068e38b0bf99bc2ae7f98c4738153d901d7658b8e3ed68ab39f284a6c5c139e7d3854dc7bb00d699689ad5e1d0c32a787f5389975ccd6d6a29acbbfb3552b4f165bb970d68bdc2b2c4cf1d80105cb7fb261a21ba0ba522b4a042108603697104496c3611d", 0xcc}, {&(0x7f00000004c0)="2e46e3e296727df05620bdd8c26407abe65e95e72176104ea5d69ba2e34796b0df62a9279d220ef20a54c5184e1a940e41e4acb3ded4a9510ec060298930d301bb0266ca02df6f624db8f40b8fece7b8b180521db012b292bb9d2e7d923c4d895a684de9762165314b4aafd79d1db8dd4805100f34b3fcc5fceb72a04d3cc78c079dd894bedaa3c805a6a00e742ae27660acd850ae5f23ca3ca478e6014af00deb4f669bfadc636dc8520a601ff57b09c5b415743057b90f2062e20ba8c99a9b6eed0b5e4502b380617dfc55dcabc5fa094907", 0xd3}], 0x8, 0xfffffffe, 0xff800000) write$P9_RREMOVE(0xffffffffffffffff, &(0x7f0000000040)={0x7, 0x7b, 0x2}, 0x7) 06:36:28 executing program 1: syz_io_uring_setup(0x460c, &(0x7f0000000080), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), 0x0) remap_file_pages(&(0x7f0000ffb000/0x5000)=nil, 0x5000, 0x0, 0x0, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x165c02, 0x0) preadv(r0, &(0x7f0000001540)=[{&(0x7f0000000400)=""/57, 0x39}, {&(0x7f0000000440)=""/137, 0x89}, {&(0x7f0000000500)=""/4096, 0x1000}, {&(0x7f0000001500)=""/37, 0x25}], 0x4, 0x0, 0x4) r1 = memfd_secret(0x0) r2 = syz_io_uring_setup(0x30ea, &(0x7f00000002c0)={0x0, 0x7f1d, 0x4, 0x3, 0x1c5, 0x0, r1}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000340), &(0x7f0000000380)) syz_io_uring_setup(0x5f35, &(0x7f0000000000)={0x0, 0x4888, 0x10, 0x1, 0x21f, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000000140), &(0x7f0000000180)) syz_io_uring_setup(0x9fa, &(0x7f00000001c0)={0x0, 0x62e5, 0x18, 0x0, 0x3ae}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f0000000240), &(0x7f0000000280)) syz_io_uring_setup(0x131e, &(0x7f0000001580)={0x0, 0x758e, 0x8, 0x3, 0x112, 0x0, r2}, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f00000003c0), &(0x7f0000001600)) 06:36:28 executing program 4: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x80489439, &(0x7f0000000140)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r5 = fcntl$dupfd(r3, 0x0, r1) getsockopt$bt_BT_SNDMTU(r5, 0x112, 0xc, &(0x7f0000000000)=0x4, &(0x7f00000001c0)=0x2) fallocate(r4, 0x10, 0x0, 0x7ffc) r6 = socket$inet_tcp(0x2, 0x1, 0x0) listen(0xffffffffffffffff, 0x0) shutdown(r6, 0x1) lseek(0xffffffffffffffff, 0x4, 0x6b417b1c08756aa5) r7 = fcntl$dupfd(r2, 0x0, 0xffffffffffffffff) sendfile(r3, r7, 0x0, 0x1ff) r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) r9 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fcntl$dupfd(r9, 0x0, r8) perf_event_open$cgroup(&(0x7f0000000400)={0x1, 0x80, 0x45, 0xfe, 0x80, 0x4, 0x0, 0x4, 0x80000, 0xc, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x81, 0x4, @perf_bp={&(0x7f0000000200), 0x2}, 0x100b2, 0x5, 0x0, 0x7, 0x81f5, 0x8000, 0x81, 0x0, 0x5, 0x0, 0x7}, r7, 0xe, r9, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000300)=ANY=[@ANYRES32=r0, @ANYRES64, @ANYRESOCT=r1, @ANYRESOCT=r3]) [ 127.959727] mmap: syz-executor.1 (3913) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. 06:36:28 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b036f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x101042, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) pwrite64(r1, &(0x7f0000000140)="c0", 0x1, 0x75d6) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) [ 128.023273] loop6: detected capacity change from 0 to 40 [ 128.050982] syz-executor.6: attempt to access beyond end of device [ 128.050982] loop6: rw=2049, sector=88, nr_sectors = 4 limit=40 [ 128.090988] kworker/u4:8: attempt to access beyond end of device [ 128.090988] loop6: rw=1, sector=92, nr_sectors = 32 limit=40 [ 128.091924] kworker/u4:8: attempt to access beyond end of device [ 128.091924] loop6: rw=1, sector=124, nr_sectors = 4 limit=40 [ 128.092745] Buffer I/O error on dev loop6, logical block 31, lost async page write 06:36:28 executing program 1: r0 = socket$inet(0x2, 0x75e5d45ffe391a8e, 0xfffffffa) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$sg(&(0x7f00000001c0), 0x2, 0x0) ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c0, 0x0, 0x0, r1}) ioctl$SCSI_IOCTL_DOORLOCK(r2, 0x5380) ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2, r1}) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f00000000c0)=r1) r3 = socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$TCGETS(0xffffffffffffffff, 0x5401, &(0x7f0000000000)) setsockopt$inet6_icmp_ICMP_FILTER(r3, 0x1, 0x1, &(0x7f0000000080)={0x800}, 0x4) setsockopt$inet6_icmp_ICMP_FILTER(0xffffffffffffffff, 0x1, 0x1, &(0x7f0000000040)={0x3}, 0x4) r4 = fork() capset(&(0x7f0000000140)={0x19980330}, &(0x7f0000000080)) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REQ_SET_REG(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000280)={0x14, r5, 0x1}, 0x14}}, 0x0) ioprio_get$pid(0x2, r4) 06:36:28 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8}}, 0xffffffffffffffff, 0xd, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, r0, 0x0) open_by_handle_at(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="14000000006200000000000000590000000000"], 0x220000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000080)={0x0, 0x0, 0x68000000}) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r3 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, r2, 0x2) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, r3, 0x0) r4 = dup3(r1, r3, 0x0) r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000340), 0x4}, 0x801, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r6 = epoll_create(0x8) io_submit(0x0, 0x1, &(0x7f0000000240)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x5, 0x80, r6, &(0x7f0000000180)="88d55c35391093fb86c406df5f1c10947d373ca001f93b602431b7042066112ced125d69e4d7af7fe46659b5371d31a8ce5502ca9a8abb2f46823413d0ee572a2f88796f1b0ee1", 0x47, 0x401000000, 0x0, 0x1}]) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, r5, 0x0) ioctl$FS_IOC_FSSETXATTR(r5, 0x401c5820, &(0x7f0000000140)={0x3, 0x4, 0x1, 0x1, 0x7}) ioctl$FITHAW(r2, 0xc0045878) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f0000000000)={0xfffff800, 0x0, {0x0, 0x1, 0x2, 0x1, 0x6}, 0x80000000}) [ 128.141049] audit: type=1400 audit(1664692588.503:9): avc: denied { write } for pid=3933 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 128.191913] capability: warning: `syz-executor.1' uses 32-bit capabilities (legacy support in use) [ 129.844940] Bluetooth: hci0: command 0x2021 tx timeout [ 131.892918] Bluetooth: hci0: command 0x2021 tx timeout VM DIAGNOSIS: 06:36:28 Registers: info registers vcpu 0 RAX=0000000080000001 RBX=0000000000000001 RCX=1ffffffff0e0c0d8 RDX=0000000000000000 RSI=ffffffff816c532c RDI=0000000000000001 RBP=ffff88800dc1f3b0 RSP=ffff88800dc1f2c0 R8 =ffffffff85ed0a42 R9 =ffffffff85ed0a46 R10=ffffed1001b83e78 R11=ffff88800dc1f398 R12=ffff88800dc1f420 R13=0000000000000000 R14=ffff88800dc1f358 R15=ffff88801bb6b000 RIP=ffffffff8120506a RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f84fdaa3260 CR3=00000000401e0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 2e6f747079726362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00312e312e6f732e 6f74707972636269 YMM03=0000000000000000 0000000000000000 6c2f756e672d7875 6e696c2d34365f36 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000000a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff888019fe7690 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=000000000000000a R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fdf4ed76700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc777394650 CR3=000000000d9c0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000