Warning: Permanently added '[localhost]:38661' (ECDSA) to the list of known hosts. 2022/10/02 18:32:41 fuzzer started 2022/10/02 18:32:41 dialing manager at localhost:35095 syzkaller login: [ 44.419772] cgroup: Unknown subsys name 'net' [ 44.613873] cgroup: Unknown subsys name 'rlimit' 2022/10/02 18:32:54 syscalls: 2215 2022/10/02 18:32:54 code coverage: enabled 2022/10/02 18:32:54 comparison tracing: enabled 2022/10/02 18:32:54 extra coverage: enabled 2022/10/02 18:32:54 setuid sandbox: enabled 2022/10/02 18:32:54 namespace sandbox: enabled 2022/10/02 18:32:54 Android sandbox: enabled 2022/10/02 18:32:54 fault injection: enabled 2022/10/02 18:32:54 leak checking: enabled 2022/10/02 18:32:54 net packet injection: enabled 2022/10/02 18:32:54 net device setup: enabled 2022/10/02 18:32:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/02 18:32:54 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/02 18:32:54 USB emulation: enabled 2022/10/02 18:32:54 hci packet injection: enabled 2022/10/02 18:32:54 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/02 18:32:54 802.15.4 emulation: enabled 2022/10/02 18:32:54 fetching corpus: 50, signal 27172/28971 (executing program) 2022/10/02 18:32:55 fetching corpus: 100, signal 40655/44078 (executing program) 2022/10/02 18:32:55 fetching corpus: 150, signal 47759/52733 (executing program) 2022/10/02 18:32:55 fetching corpus: 200, signal 53781/60230 (executing program) 2022/10/02 18:32:55 fetching corpus: 250, signal 58641/66559 (executing program) 2022/10/02 18:32:55 fetching corpus: 300, signal 64220/73468 (executing program) 2022/10/02 18:32:55 fetching corpus: 350, signal 66615/77277 (executing program) 2022/10/02 18:32:55 fetching corpus: 400, signal 69905/81875 (executing program) 2022/10/02 18:32:55 fetching corpus: 450, signal 72425/85754 (executing program) 2022/10/02 18:32:55 fetching corpus: 500, signal 75968/90583 (executing program) 2022/10/02 18:32:56 fetching corpus: 550, signal 79943/95744 (executing program) 2022/10/02 18:32:56 fetching corpus: 600, signal 82014/99073 (executing program) 2022/10/02 18:32:56 fetching corpus: 650, signal 83566/101889 (executing program) 2022/10/02 18:32:56 fetching corpus: 700, signal 87056/106467 (executing program) 2022/10/02 18:32:56 fetching corpus: 750, signal 89794/110269 (executing program) 2022/10/02 18:32:56 fetching corpus: 800, signal 91811/113437 (executing program) 2022/10/02 18:32:56 fetching corpus: 850, signal 94737/117382 (executing program) 2022/10/02 18:32:56 fetching corpus: 900, signal 98026/121598 (executing program) 2022/10/02 18:32:56 fetching corpus: 950, signal 100429/125008 (executing program) 2022/10/02 18:32:57 fetching corpus: 1000, signal 105432/130625 (executing program) 2022/10/02 18:32:57 fetching corpus: 1050, signal 108506/134521 (executing program) 2022/10/02 18:32:57 fetching corpus: 1100, signal 109581/136659 (executing program) 2022/10/02 18:32:57 fetching corpus: 1150, signal 111129/139152 (executing program) 2022/10/02 18:32:57 fetching corpus: 1200, signal 112536/141558 (executing program) 2022/10/02 18:32:57 fetching corpus: 1250, signal 115117/144884 (executing program) 2022/10/02 18:32:57 fetching corpus: 1300, signal 117181/147766 (executing program) 2022/10/02 18:32:57 fetching corpus: 1350, signal 118038/149640 (executing program) 2022/10/02 18:32:58 fetching corpus: 1400, signal 119814/152208 (executing program) 2022/10/02 18:32:58 fetching corpus: 1450, signal 121826/155019 (executing program) 2022/10/02 18:32:58 fetching corpus: 1500, signal 122887/157048 (executing program) 2022/10/02 18:32:58 fetching corpus: 1550, signal 123689/158808 (executing program) 2022/10/02 18:32:58 fetching corpus: 1600, signal 125106/161028 (executing program) 2022/10/02 18:32:58 fetching corpus: 1650, signal 127247/163786 (executing program) 2022/10/02 18:32:58 fetching corpus: 1700, signal 128699/165982 (executing program) 2022/10/02 18:32:58 fetching corpus: 1750, signal 130243/168251 (executing program) 2022/10/02 18:32:59 fetching corpus: 1800, signal 133215/171529 (executing program) 2022/10/02 18:32:59 fetching corpus: 1850, signal 134220/173364 (executing program) 2022/10/02 18:32:59 fetching corpus: 1900, signal 135582/175419 (executing program) 2022/10/02 18:32:59 fetching corpus: 1950, signal 136329/177011 (executing program) 2022/10/02 18:32:59 fetching corpus: 2000, signal 137141/178656 (executing program) 2022/10/02 18:32:59 fetching corpus: 2050, signal 138340/180541 (executing program) 2022/10/02 18:32:59 fetching corpus: 2100, signal 139863/182598 (executing program) 2022/10/02 18:32:59 fetching corpus: 2150, signal 142330/185391 (executing program) 2022/10/02 18:33:00 fetching corpus: 2200, signal 144139/187649 (executing program) 2022/10/02 18:33:00 fetching corpus: 2250, signal 145325/189471 (executing program) 2022/10/02 18:33:00 fetching corpus: 2300, signal 146671/191388 (executing program) 2022/10/02 18:33:00 fetching corpus: 2350, signal 148198/193368 (executing program) 2022/10/02 18:33:00 fetching corpus: 2400, signal 148863/194757 (executing program) 2022/10/02 18:33:00 fetching corpus: 2450, signal 149911/196366 (executing program) 2022/10/02 18:33:00 fetching corpus: 2500, signal 150519/197691 (executing program) 2022/10/02 18:33:00 fetching corpus: 2550, signal 151699/199460 (executing program) 2022/10/02 18:33:00 fetching corpus: 2600, signal 152329/200859 (executing program) 2022/10/02 18:33:01 fetching corpus: 2650, signal 153415/202552 (executing program) 2022/10/02 18:33:01 fetching corpus: 2700, signal 154148/203930 (executing program) 2022/10/02 18:33:01 fetching corpus: 2750, signal 154885/205286 (executing program) 2022/10/02 18:33:01 fetching corpus: 2800, signal 155964/206859 (executing program) 2022/10/02 18:33:01 fetching corpus: 2850, signal 156932/208348 (executing program) 2022/10/02 18:33:01 fetching corpus: 2900, signal 158191/209926 (executing program) 2022/10/02 18:33:01 fetching corpus: 2950, signal 159324/211531 (executing program) 2022/10/02 18:33:01 fetching corpus: 3000, signal 160522/213095 (executing program) 2022/10/02 18:33:02 fetching corpus: 3050, signal 161414/214526 (executing program) 2022/10/02 18:33:02 fetching corpus: 3100, signal 162737/216146 (executing program) 2022/10/02 18:33:02 fetching corpus: 3150, signal 163487/217454 (executing program) 2022/10/02 18:33:02 fetching corpus: 3200, signal 164705/218952 (executing program) 2022/10/02 18:33:02 fetching corpus: 3250, signal 165806/220398 (executing program) 2022/10/02 18:33:02 fetching corpus: 3300, signal 166266/221491 (executing program) 2022/10/02 18:33:02 fetching corpus: 3350, signal 168362/223400 (executing program) 2022/10/02 18:33:02 fetching corpus: 3400, signal 169112/224610 (executing program) 2022/10/02 18:33:02 fetching corpus: 3450, signal 170030/225909 (executing program) 2022/10/02 18:33:03 fetching corpus: 3500, signal 170954/227208 (executing program) 2022/10/02 18:33:03 fetching corpus: 3550, signal 172289/228671 (executing program) 2022/10/02 18:33:03 fetching corpus: 3600, signal 173118/229867 (executing program) 2022/10/02 18:33:03 fetching corpus: 3650, signal 174404/231284 (executing program) 2022/10/02 18:33:03 fetching corpus: 3700, signal 174932/232314 (executing program) 2022/10/02 18:33:03 fetching corpus: 3750, signal 176038/233702 (executing program) 2022/10/02 18:33:03 fetching corpus: 3800, signal 177010/234920 (executing program) 2022/10/02 18:33:03 fetching corpus: 3850, signal 177803/236059 (executing program) 2022/10/02 18:33:04 fetching corpus: 3900, signal 178423/237099 (executing program) 2022/10/02 18:33:04 fetching corpus: 3950, signal 179614/238368 (executing program) 2022/10/02 18:33:04 fetching corpus: 4000, signal 180321/239444 (executing program) 2022/10/02 18:33:04 fetching corpus: 4050, signal 181367/240620 (executing program) 2022/10/02 18:33:04 fetching corpus: 4100, signal 181788/241522 (executing program) 2022/10/02 18:33:04 fetching corpus: 4150, signal 182452/242501 (executing program) 2022/10/02 18:33:04 fetching corpus: 4200, signal 183116/243478 (executing program) 2022/10/02 18:33:04 fetching corpus: 4250, signal 183637/244356 (executing program) 2022/10/02 18:33:05 fetching corpus: 4300, signal 184699/245535 (executing program) 2022/10/02 18:33:05 fetching corpus: 4350, signal 185308/246452 (executing program) 2022/10/02 18:33:05 fetching corpus: 4400, signal 186619/247683 (executing program) 2022/10/02 18:33:05 fetching corpus: 4450, signal 187281/248657 (executing program) 2022/10/02 18:33:05 fetching corpus: 4500, signal 188603/249818 (executing program) 2022/10/02 18:33:05 fetching corpus: 4550, signal 189227/250773 (executing program) 2022/10/02 18:33:05 fetching corpus: 4600, signal 189739/251636 (executing program) 2022/10/02 18:33:05 fetching corpus: 4650, signal 190324/252535 (executing program) 2022/10/02 18:33:06 fetching corpus: 4700, signal 190816/253347 (executing program) 2022/10/02 18:33:06 fetching corpus: 4750, signal 191336/254169 (executing program) 2022/10/02 18:33:06 fetching corpus: 4800, signal 192256/255271 (executing program) 2022/10/02 18:33:06 fetching corpus: 4850, signal 193211/256190 (executing program) 2022/10/02 18:33:06 fetching corpus: 4900, signal 193869/257093 (executing program) 2022/10/02 18:33:06 fetching corpus: 4950, signal 194283/257853 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/258668 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/259333 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/259949 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/260595 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/261209 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/261842 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/262483 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/263123 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/263725 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/264381 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/265029 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/265664 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/266285 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/266911 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/267555 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/268180 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/268815 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/269444 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/270061 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/270665 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/271292 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/271957 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/272602 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/273223 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/273877 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/274532 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/275172 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/275824 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/276441 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/277073 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/277688 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/278322 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/278934 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/279565 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/280220 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/280892 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/281520 (executing program) 2022/10/02 18:33:06 fetching corpus: 4997, signal 194783/282168 (executing program) 2022/10/02 18:33:07 fetching corpus: 4997, signal 194783/282763 (executing program) 2022/10/02 18:33:07 fetching corpus: 4997, signal 194783/283389 (executing program) 2022/10/02 18:33:07 fetching corpus: 4997, signal 194783/284035 (executing program) 2022/10/02 18:33:07 fetching corpus: 4997, signal 194783/284439 (executing program) 2022/10/02 18:33:07 fetching corpus: 4997, signal 194783/284439 (executing program) 2022/10/02 18:33:09 starting 8 fuzzer processes 18:33:09 executing program 0: r0 = syz_open_dev$loop(&(0x7f0000000000), 0x1, 0x140) ioctl$BTRFS_IOC_INO_PATHS(r0, 0xc0389423, &(0x7f0000000080)={0xe08, 0x30, [0x0, 0x5, 0x0, 0x7f], &(0x7f0000000040)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) dup(r1) ioctl$LOOP_CLR_FD(r1, 0x4c01) r2 = openat(r1, &(0x7f0000000100)='./file0\x00', 0x10000, 0x104) ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000140)={0x8, 0x3, 0x2, 0x8, 0x2, [{0x5b5, 0x1}, {0xfffffffffffffff8, 0x3, 0x0, '\x00', 0x2280}]}) r3 = fcntl$dupfd(r2, 0x0, r0) r4 = dup2(r0, r2) openat(r3, &(0x7f0000000200)='./file0\x00', 0x80400, 0x2) close(r0) r5 = openat(r3, &(0x7f0000000240)='./file0\x00', 0x80, 0x8) r6 = fcntl$dupfd(r5, 0x406, r4) setsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, &(0x7f0000000280)=0x1, 0x4) ioctl$AUTOFS_DEV_IOCTL_VERSION(r5, 0xc0189371, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r6}, './file0\x00'}) ioctl$LOOP_CTL_GET_FREE(r7, 0x4c82) openat(r5, &(0x7f0000000300)='./file0\x00', 0x20080, 0xd2) setsockopt$IPT_SO_SET_ADD_COUNTERS(r2, 0x0, 0x41, &(0x7f0000000340)={'raw\x00', 0x3, [{}, {}, {}]}, 0x58) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r3, {0x7}}, './file0\x00'}) openat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x800, 0x21) 18:33:09 executing program 2: sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x68, 0x0, 0x1, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x68}, 0x1, 0x0, 0x0, 0x801}, 0x4010) r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x90, r0, 0x20, 0x70bd26, 0x25dfdbfc, {}, [@HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x2}, 0x1c1) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x420}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, 0x0, 0x200, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r1}, @void}}, ["", ""]}, 0x1c}}, 0x0) r2 = accept$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000004c0)=0x14) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000580)={'syztnl0\x00', &(0x7f0000000500)={'syztnl2\x00', 0x0, 0x29, 0xfb, 0x8, 0x100, 0xd, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x40, 0x80, 0x5, 0x9}}) sendmsg$ETHTOOL_MSG_EEE_GET(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000740)={&(0x7f00000005c0)={0x144, r0, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x4}]}, 0x144}, 0x1, 0x0, 0x0, 0x4048040}, 0x10000000) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f00000007c0)=r4) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000840), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x30, r5, 0x3, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1000}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000980), 0xffffffffffffffff) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r6, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x34, r7, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x3c}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5, 0x35, 0x1f}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x81}, 0x20) r8 = accept4(r2, &(0x7f0000000a80)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000b00)=0x80, 0x800) r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b40)='/proc/partitions\x00', 0x0, 0x0) sendmsg$FOU_CMD_DEL(r9, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x2c, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e21}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000) r10 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r9, 0xc018937d, &(0x7f0000000c80)={{0x1, 0x1, 0x18, r8, {0xc1}}, './file0\x00'}) io_uring_register$IORING_REGISTER_FILES(r9, 0x2, &(0x7f0000000cc0)=[r10, r11, r9], 0x3) 18:33:09 executing program 1: sendmsg$NLBL_MGMT_C_REMOVEDEF(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x64, 0x0, 0x8, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_DOMAIN={0x9, 0x1, '\v\'\xcc^\x00'}, @NLBL_MGMT_A_DOMAIN={0x7, 0x1, '-(\x00'}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @empty}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x18}}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @loopback}]}, 0x64}, 0x1, 0x0, 0x0, 0x200048d1}, 0x4000080) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x0, 0x4, 0x70bd2c, 0x25dfdbfc, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000880) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000280), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000002c0)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_NEW_INTERFACE(r1, &(0x7f00000003c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x60, r2, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, {0xaaaaaaaaaaaa0302}}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan4\x00'}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, {0xaaaaaaaaaaaa0002}}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x60}, 0x1, 0x0, 0x0, 0x24068010}, 0x84) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000480), 0xffffffffffffffff) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r4, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x70, r5, 0x200, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x10000, 0x5f}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x5d}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2b}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x22}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x42}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0xb}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x64}]}, 0x70}, 0x1, 0x0, 0x0, 0x80}, 0x0) sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000680)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x34, r5, 0x800, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3ff, 0x15}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x40800}, 0x40000) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r1, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x14, 0x0, 0x2, 0x70bd26, 0x25dfdbff}, 0x14}}, 0x4000) r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000800), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000840)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_PAN_ID(r1, &(0x7f0000000900)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x3c, r6, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_PAN_ID={0x6, 0x9, 0x1}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0xffff}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_PAN_ID={0x6}]}, 0x3c}}, 0x2000a890) sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000a00)={&(0x7f0000000980)={0x5c, r5, 0x20, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0xc, {0x8, 0x0, 0xc17}}}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x400, 0x3, 0x6, 0x0, {0x6, 0x4, 0x0, 0x16a, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x300, 0x3249, 0x1}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC_HINT={0xa, 0xc8, @from_mac}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000030}, 0x0) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000ac0), r4) sendmsg$TIPC_NL_MON_GET(r4, &(0x7f0000000fc0)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000f80)={&(0x7f0000000b00)={0x480, r8, 0x2, 0x70bd2d, 0x25dfdbfc, {}, [@TIPC_NLA_LINK={0x114, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe00000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x38b}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x537}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x40}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_BEARER={0x78, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x4}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}]}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x281675b3, @remote, 0x7}}, {0x20, 0x2, @in6={0xa, 0x4e21, 0xfffffffe, @mcast2, 0xfa3}}}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xdad9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xffff5630}]}, @TIPC_NLA_BEARER={0xe8, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x11}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x7f}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x40}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}]}, @TIPC_NLA_BEARER_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x58c4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x408}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2e}]}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xef}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xc}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9c8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}]}, @TIPC_NLA_BEARER_NAME={0xb, 0x1, @l2={'ib', 0x3a, 'wg2\x00'}}]}, @TIPC_NLA_BEARER={0xec, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x76}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @rand_addr=0x64010102}}, {0x14, 0x2, @in={0x2, 0x4e22, @loopback}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1e}}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0xfdd, @loopback, 0xacd}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x4, @loopback, 0x9}}, {0x14, 0x2, @in={0x2, 0x4e21, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}]}]}, @TIPC_NLA_SOCK={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x3f}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x80000000}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4d}]}, @TIPC_NLA_BEARER={0xc0, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xce}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x7, 0x6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x5095}}, {0x14, 0x2, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x14, 0x1, @in={0x2, 0x4e21, @private=0xa010100}}, {0x20, 0x2, @in6={0xa, 0x4e20, 0x6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xffffff7f}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'vlan1\x00'}}, @TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x14, 0x2, @in={0x2, 0x4e24, @rand_addr=0x64010102}}}}]}]}, 0x480}, 0x1, 0x0, 0x0, 0x4000001}, 0x90) r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001040), r4) sendmsg$IPVS_CMD_DEL_SERVICE(r4, &(0x7f00000011c0)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001180)={&(0x7f0000001080)={0xe8, r9, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x101}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1_to_bond\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'syzkaller1\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8001}, @IPVS_CMD_ATTR_DAEMON={0x50, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x6}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x3a}}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x50a9}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_DEST={0x28, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x20}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@dev={0xac, 0x14, 0x14, 0x27}}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x42}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x81}, 0x2000) 18:33:09 executing program 3: set_mempolicy(0x0, &(0x7f0000000000), 0x8000) set_mempolicy(0x2, &(0x7f0000000040), 0x0) set_mempolicy(0x2, &(0x7f0000000080)=0x1, 0xfff) set_mempolicy(0x3, &(0x7f00000000c0)=0x2, 0x9) set_mempolicy(0x2, &(0x7f0000000100)=0xd037, 0x7) set_mempolicy(0x3, &(0x7f0000000140)=0x3, 0x0) set_mempolicy(0x0, &(0x7f0000000180)=0x1000, 0x7) set_mempolicy(0x2, &(0x7f00000001c0)=0x1f6, 0x5) set_mempolicy(0x0, &(0x7f0000000200)=0xffffffffffff1521, 0x3) set_mempolicy(0x4000, &(0x7f0000000240)=0x5, 0xffffffff) set_mempolicy(0x4000, &(0x7f0000000280)=0x5, 0x1) set_mempolicy(0x3, &(0x7f00000002c0)=0x3, 0x6) set_mempolicy(0x4000, &(0x7f0000000300)=0xff, 0x6) set_mempolicy(0x8000, &(0x7f0000000340)=0x4f, 0x4) set_mempolicy(0x8000, &(0x7f0000000380), 0x6) set_mempolicy(0x2, &(0x7f00000003c0)=0x2, 0x40) set_mempolicy(0x0, &(0x7f0000000400)=0xefc, 0x0) set_mempolicy(0x4000, &(0x7f0000000440)=0x4, 0x9) set_mempolicy(0x4000, &(0x7f0000000480)=0x9c8, 0x9) set_mempolicy(0x2, &(0x7f00000004c0)=0xff, 0x5) 18:33:09 executing program 4: ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x3) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x3, 0x7, 0x2, 0x8, 0x7, "bbf915ffe4bb9c7b465e5c39d8e2719d8c5f6e"}) r0 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x80800) ioctl$INCFS_IOC_PERMIT_FILL(r0, 0x40046721, &(0x7f0000000080)) ioctl$TIOCGDEV(0xffffffffffffffff, 0x80045432, &(0x7f00000000c0)) r1 = signalfd(r0, &(0x7f0000000100)={[0x80000000]}, 0x8) ioctl$PERF_EVENT_IOC_DISABLE(r1, 0x2401, 0xffff) clone3(&(0x7f0000000440)={0x8040000, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280)=0x0, {0x3e}, &(0x7f00000002c0)=""/97, 0x61, &(0x7f0000000340)=""/139, &(0x7f0000000400)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x3, {r1}}, 0x58) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r4 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x2, 0x3f, 0x8, 0x40, 0x0, 0x4, 0x8, 0x4, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0xfffffffe, 0x0, @perf_bp={&(0x7f0000000140), 0x9}, 0x5c80c, 0xbed4, 0x0, 0x8, 0xffffffff80000000, 0x81, 0x5, 0x0, 0x10001, 0x0, 0x46}, r2, 0x3, r3, 0x3) perf_event_open$cgroup(&(0x7f0000000500)={0x5, 0x80, 0x4, 0xbc, 0x7, 0xaa, 0x0, 0x4, 0x203, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x80000000, 0x4, @perf_config_ext={0x7fffffff, 0x45e}, 0x4a007, 0x3, 0x0, 0x4, 0x7, 0x2, 0x1, 0x0, 0x3, 0x0, 0xfffffffffffffff9}, r3, 0xf, r3, 0x3) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000580)='/proc/schedstat\x00', 0x0, 0x0) memfd_secret(0x0) r6 = openat2(r1, &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x80000, 0x81, 0x10}, 0x18) ioctl$TCGETA(r6, 0x5405, &(0x7f0000000640)) fcntl$setflags(r4, 0x2, 0x0) ioctl$BLKPG(r3, 0x1269, &(0x7f00000006c0)={0x401, 0x3ff, 0xd, &(0x7f0000000680)="18e943ac505e5bd282e58e4e21"}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r6, 0xc0189373, &(0x7f0000000700)={{0x1, 0x1, 0x18, r5, {0x9}}, './file0/file0\x00'}) r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000740), 0x80000, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r7, 0xc0189373, &(0x7f0000000780)={{0x1, 0x1, 0x18, r8, {0x5}}, './file0\x00'}) 18:33:09 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x5, 0x7b, 0xf5, 0x3, 0x0, 0x5, 0x208be, 0xc, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x8000, 0x0, @perf_bp={&(0x7f0000000000), 0xa}, 0x345, 0x8, 0x7, 0x6, 0x4, 0x763, 0x1, 0x0, 0x0, 0x0, 0x78}, 0x0, 0xb, 0xffffffffffffffff, 0xa) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000000c0)=':-\xc3,\x00') ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140), 0x880, 0x0) ioctl$FITHAW(r2, 0xc0045878) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2, 0x50, r0, 0x2c892000) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000017c0), 0x102, 0x0) ioctl$RTC_WKALM_RD(r3, 0x80287010, &(0x7f0000001800)) sendmsg$DEVLINK_CMD_SB_POOL_SET(r1, &(0x7f0000001940)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001900)={&(0x7f0000001880)={0x50, 0x0, 0x20, 0x70bd25, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0xd4a5}, {0x8, 0x13, 0x7199}, {0x5, 0x14, 0x1}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40800}, 0x0) ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000001980)=0x20000) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001a80)={0x0}, &(0x7f0000001ac0)=0xc) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000001b00)={{0x1, 0x1, 0x18, r0, {r3}}, './file0\x00'}) r6 = perf_event_open(&(0x7f0000001a00)={0x2, 0x80, 0x24, 0x8, 0x6, 0x5, 0x0, 0x8, 0x80, 0x6, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x70800000, 0x3, @perf_bp={&(0x7f00000019c0), 0x13}, 0x20, 0x6, 0x8, 0x8, 0x2, 0x200, 0x1, 0x0, 0xfffff801, 0x0, 0x8}, r4, 0x3, r5, 0x9) r7 = openat$cgroup_ro(r1, &(0x7f0000001b40)='cpu.stat\x00', 0x0, 0x0) ioctl$SG_IO(r7, 0x2285, &(0x7f0000002fc0)={0x0, 0xfffffffffffffffe, 0x4c, 0x66, @scatter={0x7, 0x0, &(0x7f0000002e40)=[{&(0x7f0000001b80)=""/238, 0xee}, {&(0x7f0000001c80)=""/13, 0xd}, {&(0x7f0000001cc0)=""/2, 0x2}, {&(0x7f0000001d00)=""/10, 0xa}, {&(0x7f0000001d40)=""/81, 0x51}, {&(0x7f0000001dc0)=""/72, 0x48}, {&(0x7f0000001e40)=""/4096, 0x1000}]}, &(0x7f0000002ec0)="fd28f3fb6be7f067536335aa4381f937fdb1c6b1c8187f3f27b9fc4756bdccdea16a4edfdb8eb25ad77dbb025d51090492ef922efc69587ef9d5141517c36f9ce84bf4994e06985eed103c17", &(0x7f0000002f40)=""/40, 0x6, 0x10032, 0x0, &(0x7f0000002f80)}) preadv(r2, &(0x7f0000003040), 0x0, 0xffff, 0x4) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000003080)={{0x1, 0x1, 0x18, r6}, './file0\x00'}) ioctl$CDROMREADCOOKED(r8, 0x5315, &(0x7f00000030c0)) ioctl$AUTOFS_DEV_IOCTL_FAIL(r8, 0xc0189377, &(0x7f0000003b40)={{0x1, 0x1, 0x18, r0, {0xfffffffd, 0x9}}, './file0\x00'}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000003bc0)={"06774b659ad4aae4a84f481d2928e3b5", 0x0, 0x0, {0x3, 0xfffffffe}, {0x52c, 0x2}, 0x81, [0x0, 0x0, 0x5, 0x4, 0x8, 0x6, 0x100, 0xe6e, 0x0, 0x4, 0x5, 0x481, 0x9, 0x1f, 0x0, 0x6]}) [ 72.275104] audit: type=1400 audit(1664735589.802:6): avc: denied { execmem } for pid=288 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:33:09 executing program 7: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @out_args}, './file0\x00'}) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000040)) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x24042, 0x0) sendto(r1, &(0x7f00000000c0)="7f72a6e45e3245e405286eaa2c0451776403d910415ee94db34614e2ebf27c1652cb6c65a851c1694f2a1a6482defe99fd670843bc71e70dd65fd5b34f6073e230cd3b835faf1042cb636c046d65dc1903c337b36e3fd52d6428a48efa2ef20773668938b79897b886c82c2ac2c476ae48860030df32f28e7e992a5ab23f8b2ca00e9a797aaa5814b3edd007929816b794374ab78b3b69b2866b80f1fe5cb5e2fe11d62dcde9874bf0c8f6c480e492f213608500e1016d60fd112eb90778a744073b0bfebc3984512d134a76bfcb564ddb6b", 0xd2, 0x48840, &(0x7f00000001c0)=@generic={0x28, "19060b9caafd35b10a73d77d4078ef900c6d381ba16a80d06a55607cf3d021b593662a2213505db84c8b4cf314495861727dc51eda596403d9b7b0c5936d40eb3eb53e6970f029ae42f7dd624d7f65f75573696500fdc4df703a5eb933bebc350d2ad32b608a84c768c0f8217d0ef83b817a197f682a3a7aca8de9b2cfb9"}, 0x80) ioctl$sock_inet_SIOCSARP(r1, 0x8955, &(0x7f0000000240)={{0x2, 0x4e21, @broadcast}, {0x6, @random="35a6e38e84f3"}, 0x40, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x80, 0x0}}, 'ip6erspan0\x00'}) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000002c0), 0x301382, 0x0) ioctl$SG_GET_KEEP_ORPHAN(r2, 0x2288, &(0x7f0000000300)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_buf(r3, 0x0, 0x25, &(0x7f0000000340)="65de1ad04a0bb364ae634f3f95fa780758bbe7f788c7c1aa8c9c80cf9c23eb6dbd8737484e993d9d6d091772f63fd16e33b5153a388f84393ebd6ce92058ebac0214b1bc2e7c9011d0476652400b297414db92ec4d2165cafdb7a8e5e037491c10356e1da7b15b510a7c0223d8ff389404e15509619ab3a1f8a6931607f5c4160e3185ea6ebb18645ab2cb0b8b87a6aad33068259b06dd27a57da36886cb91e36b034abc2876376516ce1119a71029da910a861b0d4d487836645ad3d362e8024a047963557592c9eabe7fe66cdd458b768c697dfcabfd046a3d42b8929757645ae14d37aa92aba0a58feaabcaa74c", 0xef) r4 = accept4$inet(r1, &(0x7f00000006c0)={0x2, 0x0, @dev}, &(0x7f0000000700)=0x10, 0x800) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r4, 0x50009418, &(0x7f00000007c0)={{r2}, 0x0, 0x18, @inherit={0x50, &(0x7f0000000740)={0x1, 0x1, 0x2, 0x7, {0x5, 0x4, 0x0, 0x2, 0x830}, [0x400]}}, @devid}) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r3, 0x5000943f, &(0x7f0000001880)={{r2}, 0x0, 0x10, @inherit={0x98, &(0x7f00000017c0)={0x0, 0xa, 0x3, 0x1, {0x35, 0x4, 0x0, 0x2, 0x4}, [0x59ddf2f4, 0x1, 0x80, 0xff, 0x7, 0x2, 0x8, 0x9, 0x7, 0x7]}}, @subvolid=0x4}) setsockopt$IP_VS_SO_SET_FLUSH(r2, 0x0, 0x485, 0x0, 0x0) r5 = fsmount(r0, 0x1, 0x8) sendfile(r5, r3, &(0x7f0000002880)=0x80000000, 0x4) mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x100010, r5, 0x8e18a000) r6 = fsmount(r2, 0x0, 0x2) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r6, 0xc0c89425, &(0x7f00000028c0)={"c5dc97e599b602d102de5d78a8177d21", 0x0, 0x0, {0x7f, 0x8}, {0x40, 0x9}, 0x1, [0x3ff, 0x9, 0x2, 0xffffffff, 0x4, 0x8000, 0x1000, 0x154, 0x4, 0x0, 0xf9, 0x6, 0xfffffffffffffe01, 0x0, 0x100000000, 0x10001]}) r7 = syz_open_dev$vcsu(&(0x7f00000029c0), 0x0, 0x428c80) sendmsg$TIPC_CMD_RESET_LINK_STATS(r7, &(0x7f0000002b00)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000002ac0)={&(0x7f0000002a80)={0x28, 0x0, 0x100, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0xc, 0x14, 'syz1\x00'}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x4003) 18:33:09 executing program 6: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x220a80, 0x0) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x80, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x1, 0x25}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x41}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x24}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x70}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x68}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x25}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x76}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x53}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2b}]}, 0x80}, 0x1, 0x0, 0x0, 0x1000}, 0x4) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000240)={&(0x7f0000000180), 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x400, 0x70bd28, 0x25dfdbfb, {{}, {@void, @void, @val={0xc, 0x99, {0x6, 0x51}}}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x4cea}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x2}]}, 0x30}, 0x1, 0x0, 0x0, 0x41}, 0x10) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x3c, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20048840}, 0x4004050) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'wg1\x00', 0x0}) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000680)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000400)={0x20c, 0x0, 0x4, 0x70bd26, 0x25dfdbff, {}, [@ETHTOOL_A_STRSET_STRINGSETS={0x10c, 0x2, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}, @ETHTOOL_A_STRSET_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}]}, @ETHTOOL_A_STRSET_STRINGSETS={0xa0, 0x2, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}]}, @ETHTOOL_A_STRSET_STRINGSETS={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}]}]}, 0x20c}}, 0xc804) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), r0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000700), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f0000000840)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x1800}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x44, r2, 0x10, 0x70bd2b, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2b}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}]}, 0x44}, 0x1, 0x0, 0x0, 0x8080}, 0x810) r3 = syz_genetlink_get_family_id$devlink(&(0x7f00000008c0), r0) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r0, &(0x7f0000000b80)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000900)={0x230, r3, 0x300, 0x70bd2a, 0x25dfdbfc, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0xbac}, {0x6, 0x11, 0x2}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x1000}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0x4}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x5}, {0x6, 0x11, 0x79}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0x7fff}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8}, {0x6, 0x11, 0x1ff}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x7fffffff}, {0x6, 0x11, 0x2}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0xffff}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8}, {0x6, 0x11, 0x2c9c}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x3f}, {0x6, 0x11, 0x4d}}]}, 0x230}, 0x1, 0x0, 0x0, 0x8084}, 0x8844) sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000cc0)={&(0x7f0000000bc0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000c80)={&(0x7f0000000c00)={0x50, r2, 0x800, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x0, 0x26}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x78}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x45}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2b}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x6f}]}, 0x50}, 0x1, 0x0, 0x0, 0x24008084}, 0x8000) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000d40), 0xffffffffffffffff) sendmsg$IEEE802154_SCAN_REQ(r4, &(0x7f0000000e00)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000d80)={0x1c, r5, 0x800, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x1e}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0xc0c0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e80), r0) sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000f40)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000ec0)={0x1c, r6, 0x200, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000010) r7 = accept(r0, &(0x7f0000000f80)=@tipc=@id, &(0x7f0000001000)=0x80) sendmsg$DEVLINK_CMD_RATE_GET(r7, &(0x7f0000001180)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001140)={&(0x7f0000001080)={0xb0, r3, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}, @handle=@pci={{0x8}, {0x11}}, @handle=@pci={{0x8}, {0x11}}, @handle=@pci={{0x8}, {0x11}}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0xb0}, 0x1, 0x0, 0x0, 0xc1}, 0x10) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f0000001280)) [ 73.621771] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.623328] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.625869] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.628455] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.629693] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.632779] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.642450] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.646075] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.647911] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.651547] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.654609] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.658030] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 73.672216] Bluetooth: hci0: HCI_REQ-0x0c1a [ 73.680095] Bluetooth: hci1: HCI_REQ-0x0c1a [ 73.701427] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.702904] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.706067] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.713618] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.716349] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 73.717559] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.731304] Bluetooth: hci5: HCI_REQ-0x0c1a [ 73.731848] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 73.739832] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 73.742411] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 73.745616] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 73.747722] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 73.749089] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 73.754271] Bluetooth: hci7: HCI_REQ-0x0c1a [ 75.705083] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 75.706481] Bluetooth: hci1: command 0x0409 tx timeout [ 75.707024] Bluetooth: hci0: command 0x0409 tx timeout [ 75.707607] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 75.708938] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 75.769050] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 75.769116] Bluetooth: hci5: command 0x0409 tx timeout [ 75.770068] Bluetooth: hci7: command 0x0409 tx timeout [ 77.753451] Bluetooth: hci0: command 0x041b tx timeout [ 77.753641] Bluetooth: hci1: command 0x041b tx timeout [ 77.817038] Bluetooth: hci5: command 0x041b tx timeout [ 77.817170] Bluetooth: hci7: command 0x041b tx timeout [ 79.801040] Bluetooth: hci1: command 0x040f tx timeout [ 79.801670] Bluetooth: hci0: command 0x040f tx timeout [ 79.865015] Bluetooth: hci7: command 0x040f tx timeout [ 79.865563] Bluetooth: hci5: command 0x040f tx timeout [ 80.506050] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 80.698054] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 80.761096] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 80.762864] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 81.850034] Bluetooth: hci0: command 0x0419 tx timeout [ 81.850749] Bluetooth: hci1: command 0x0419 tx timeout [ 81.914074] Bluetooth: hci5: command 0x0419 tx timeout [ 81.914818] Bluetooth: hci7: command 0x0419 tx timeout [ 83.454760] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 83.456550] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 83.458608] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 83.463606] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 83.466613] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 83.467519] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 83.482986] Bluetooth: hci3: HCI_REQ-0x0c1a [ 83.606992] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 83.608859] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 83.611158] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 83.617371] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 83.626101] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 83.626933] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 83.631062] Bluetooth: hci4: HCI_REQ-0x0c1a [ 83.792786] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 83.799778] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 83.802839] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 83.808533] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 83.809582] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 83.810831] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 83.826407] Bluetooth: hci6: HCI_REQ-0x0c1a [ 84.922217] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 85.561022] Bluetooth: hci3: command 0x0409 tx timeout [ 85.689014] Bluetooth: hci4: command 0x0409 tx timeout [ 85.881027] Bluetooth: hci6: command 0x0409 tx timeout [ 87.443122] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 87.459437] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.461376] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 87.468129] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 87.471269] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 87.472978] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 87.479997] Bluetooth: hci2: HCI_REQ-0x0c1a [ 87.609511] Bluetooth: hci3: command 0x041b tx timeout [ 87.736999] Bluetooth: hci4: command 0x041b tx timeout [ 87.929005] Bluetooth: hci6: command 0x041b tx timeout [ 89.529325] Bluetooth: hci2: command 0x0409 tx timeout [ 89.657022] Bluetooth: hci3: command 0x040f tx timeout [ 89.785213] Bluetooth: hci4: command 0x040f tx timeout [ 89.977092] Bluetooth: hci6: command 0x040f tx timeout [ 91.578162] Bluetooth: hci2: command 0x041b tx timeout [ 91.706087] Bluetooth: hci3: command 0x0419 tx timeout [ 91.834692] Bluetooth: hci4: command 0x0419 tx timeout [ 92.026001] Bluetooth: hci6: command 0x0419 tx timeout [ 93.626044] Bluetooth: hci2: command 0x040f tx timeout [ 95.673005] Bluetooth: hci2: command 0x0419 tx timeout 18:34:03 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000480), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)=ANY=[@ANYRESDEC=r0, @ANYRES32, @ANYBLOB="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"], 0x14}}, 0x0) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0xc00, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000000), 0x0, 0x80901) ioctl$MON_IOCX_MFETCH(r2, 0xc0109207, &(0x7f0000000080)={0x0, 0x0, 0x80000001}) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2, {0x2}}, './file0\x00'}) 18:34:03 executing program 1: clock_adjtime(0x0, &(0x7f0000000200)={0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getpeername(r0, 0x0, 0x0) clock_adjtime(0x2, &(0x7f0000000100)={0x8, 0x80, 0x1, 0xb91, 0x2, 0x8000, 0x8000, 0x8, 0x100000001, 0xc69, 0x8000000000000000, 0x6, 0x81, 0x4, 0x7fff, 0x7, 0x3, 0x1000, 0x1, 0x8000, 0x7fffffff, 0x40, 0x9, 0xffff, 0x3f, 0x2}) clock_adjtime(0x0, &(0x7f0000000000)={0xc3, 0x7, 0x9000, 0x3, 0x7b8c, 0x40, 0x8000, 0x100000000, 0x9, 0xbd77, 0x1000, 0x9, 0x1, 0xa3f, 0x0, 0x1000, 0x51, 0x8, 0x4, 0x100000000, 0x3cff48da, 0x9, 0x3, 0x101, 0x1, 0x6}) clock_adjtime(0x4, &(0x7f0000000300)={0x1, 0x59c, 0x800, 0x3, 0x100000000, 0x324, 0x1000, 0x5, 0x1, 0x3, 0xffff, 0x8001, 0x7, 0xffffffffffffff65, 0x3, 0x1, 0x8501, 0x1f, 0x7e, 0x3d19, 0x6, 0x5, 0x2, 0xffff, 0x3ff, 0x8}) 18:34:03 executing program 6: unshare(0x8040080) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x3, 0xffff, 0x3000}, {0x0, 0x7}], 0x2) unshare(0x8020080) 18:34:03 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000040)=[{0x4, 0x80, 0x1f, 0x7e, @time={0xfffffff9, 0x800}, {0x20, 0x5}, {0x2, 0xff}, @ext={0x29, &(0x7f0000000000)="41d4023027db2b2aa970b93e8c83a0983adddb9f86809e7de1a0ff2fce8e873d4ea8c6b9d4618a76dd"}}], 0x1c) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) [ 126.094600] audit: type=1400 audit(1664735643.622:7): avc: denied { open } for pid=3442 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.096212] audit: type=1400 audit(1664735643.622:8): avc: denied { kernel } for pid=3442 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.120052] ------------[ cut here ]------------ [ 126.120075] [ 126.120078] ====================================================== [ 126.120081] WARNING: possible circular locking dependency detected [ 126.120085] 6.0.0-rc7-next-20220930 #1 Not tainted [ 126.120092] ------------------------------------------------------ [ 126.120095] syz-executor.1/3445 is trying to acquire lock: [ 126.120102] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 126.120142] [ 126.120142] but task is already holding lock: [ 126.120145] ffff88800d465c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.120172] [ 126.120172] which lock already depends on the new lock. [ 126.120172] [ 126.120175] [ 126.120175] the existing dependency chain (in reverse order) is: [ 126.120178] [ 126.120178] -> #3 (&ctx->lock){....}-{2:2}: [ 126.120192] _raw_spin_lock+0x2a/0x40 [ 126.120203] __perf_event_task_sched_out+0x53b/0x18d0 [ 126.120214] __schedule+0xedd/0x2470 [ 126.120228] schedule+0xda/0x1b0 [ 126.120241] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.120254] syscall_exit_to_user_mode+0x19/0x40 [ 126.120267] do_syscall_64+0x48/0x90 [ 126.120284] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.120297] [ 126.120297] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 126.120310] _raw_spin_lock_nested+0x30/0x40 [ 126.120321] raw_spin_rq_lock_nested+0x1e/0x30 [ 126.120334] task_fork_fair+0x63/0x4d0 [ 126.120351] sched_cgroup_fork+0x3d0/0x540 [ 126.120365] copy_process+0x4183/0x6e20 [ 126.120377] kernel_clone+0xe7/0x890 [ 126.120386] user_mode_thread+0xad/0xf0 [ 126.120396] rest_init+0x24/0x250 [ 126.120408] arch_call_rest_init+0xf/0x14 [ 126.120426] start_kernel+0x4c6/0x4eb [ 126.120441] secondary_startup_64_no_verify+0xe0/0xeb [ 126.120455] [ 126.120455] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 126.120468] _raw_spin_lock_irqsave+0x39/0x60 [ 126.120479] try_to_wake_up+0xab/0x1930 [ 126.120492] up+0x75/0xb0 [ 126.120506] __up_console_sem+0x6e/0x80 [ 126.120522] console_unlock+0x46a/0x590 [ 126.120538] do_con_write+0xc05/0x1d50 [ 126.120549] con_write+0x21/0x40 [ 126.120558] n_tty_write+0x4d4/0xfe0 [ 126.120570] file_tty_write.constprop.0+0x455/0x8a0 [ 126.120582] vfs_write+0x9c3/0xd90 [ 126.120598] ksys_write+0x127/0x250 [ 126.120614] do_syscall_64+0x3b/0x90 [ 126.120630] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.120642] [ 126.120642] -> #0 ((console_sem).lock){....}-{2:2}: [ 126.120656] __lock_acquire+0x2a02/0x5e70 [ 126.120673] lock_acquire+0x1a2/0x530 [ 126.120689] _raw_spin_lock_irqsave+0x39/0x60 [ 126.120699] down_trylock+0xe/0x70 [ 126.120714] __down_trylock_console_sem+0x3b/0xd0 [ 126.120746] vprintk_emit+0x16b/0x560 [ 126.120762] vprintk+0x84/0xa0 [ 126.120777] _printk+0xba/0xf1 [ 126.120789] report_bug.cold+0x72/0xab [ 126.120805] handle_bug+0x3c/0x70 [ 126.120821] exc_invalid_op+0x14/0x50 [ 126.120837] asm_exc_invalid_op+0x16/0x20 [ 126.120850] group_sched_out.part.0+0x2c7/0x460 [ 126.120867] ctx_sched_out+0x8f1/0xc10 [ 126.120884] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.120895] __schedule+0xedd/0x2470 [ 126.120908] schedule+0xda/0x1b0 [ 126.120921] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.120932] syscall_exit_to_user_mode+0x19/0x40 [ 126.120944] do_syscall_64+0x48/0x90 [ 126.120960] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.120973] [ 126.120973] other info that might help us debug this: [ 126.120973] [ 126.120975] Chain exists of: [ 126.120975] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 126.120975] [ 126.120990] Possible unsafe locking scenario: [ 126.120990] [ 126.120992] CPU0 CPU1 [ 126.120995] ---- ---- [ 126.120997] lock(&ctx->lock); [ 126.121003] lock(&rq->__lock); [ 126.121009] lock(&ctx->lock); [ 126.121015] lock((console_sem).lock); [ 126.121021] [ 126.121021] *** DEADLOCK *** [ 126.121021] [ 126.121023] 2 locks held by syz-executor.1/3445: [ 126.121029] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 126.121058] #1: ffff88800d465c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.121084] [ 126.121084] stack backtrace: [ 126.121087] CPU: 1 PID: 3445 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1 [ 126.121100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.121108] Call Trace: [ 126.121111] [ 126.121115] dump_stack_lvl+0x8b/0xb3 [ 126.121134] check_noncircular+0x263/0x2e0 [ 126.121150] ? format_decode+0x26c/0xb50 [ 126.121166] ? print_circular_bug+0x450/0x450 [ 126.121183] ? simple_strtoul+0x30/0x30 [ 126.121199] ? format_decode+0x26c/0xb50 [ 126.121216] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 126.121233] __lock_acquire+0x2a02/0x5e70 [ 126.121255] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 126.121277] lock_acquire+0x1a2/0x530 [ 126.121294] ? down_trylock+0xe/0x70 [ 126.121311] ? lock_release+0x750/0x750 [ 126.121331] ? vprintk+0x84/0xa0 [ 126.121348] _raw_spin_lock_irqsave+0x39/0x60 [ 126.121360] ? down_trylock+0xe/0x70 [ 126.121376] down_trylock+0xe/0x70 [ 126.121391] ? vprintk+0x84/0xa0 [ 126.121408] __down_trylock_console_sem+0x3b/0xd0 [ 126.121425] vprintk_emit+0x16b/0x560 [ 126.121443] vprintk+0x84/0xa0 [ 126.121461] _printk+0xba/0xf1 [ 126.121472] ? record_print_text.cold+0x16/0x16 [ 126.121488] ? report_bug.cold+0x66/0xab [ 126.121505] ? group_sched_out.part.0+0x2c7/0x460 [ 126.121524] report_bug.cold+0x72/0xab [ 126.121542] handle_bug+0x3c/0x70 [ 126.121559] exc_invalid_op+0x14/0x50 [ 126.121577] asm_exc_invalid_op+0x16/0x20 [ 126.121590] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.121610] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.121622] RSP: 0018:ffff88803f707c48 EFLAGS: 00010006 [ 126.121631] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.121638] RDX: ffff88803f801ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 126.121646] RBP: ffff88803f818000 R08: 0000000000000005 R09: 0000000000000001 [ 126.121653] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800d465c00 [ 126.121661] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 126.121672] ? group_sched_out.part.0+0x2c7/0x460 [ 126.121692] ? group_sched_out.part.0+0x2c7/0x460 [ 126.121711] ctx_sched_out+0x8f1/0xc10 [ 126.121731] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.121745] ? lock_is_held_type+0xd7/0x130 [ 126.121758] ? __perf_cgroup_move+0x160/0x160 [ 126.121769] ? set_next_entity+0x304/0x550 [ 126.121787] ? update_curr+0x267/0x740 [ 126.121805] ? lock_is_held_type+0xd7/0x130 [ 126.121819] __schedule+0xedd/0x2470 [ 126.121836] ? io_schedule_timeout+0x150/0x150 [ 126.121852] ? rcu_read_lock_sched_held+0x3e/0x80 [ 126.121873] schedule+0xda/0x1b0 [ 126.121888] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.121900] syscall_exit_to_user_mode+0x19/0x40 [ 126.121914] do_syscall_64+0x48/0x90 [ 126.121932] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.121945] RIP: 0033:0x7ff28f1fdb19 [ 126.121953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.121963] RSP: 002b:00007ff28c773218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.121974] RAX: 0000000000000001 RBX: 00007ff28f310f68 RCX: 00007ff28f1fdb19 [ 126.121981] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff28f310f6c [ 126.121989] RBP: 00007ff28f310f60 R08: 000000000000000e R09: 0000000000000000 [ 126.121996] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ff28f310f6c [ 126.122003] R13: 00007ffd2a9b703f R14: 00007ff28c773300 R15: 0000000000022000 [ 126.122015] [ 126.177929] WARNING: CPU: 1 PID: 3445 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 126.178657] Modules linked in: [ 126.178910] CPU: 1 PID: 3445 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1 [ 126.179519] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.180366] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.180800] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.182169] RSP: 0018:ffff88803f707c48 EFLAGS: 00010006 [ 126.182580] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.183120] RDX: ffff88803f801ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 126.183657] RBP: ffff88803f818000 R08: 0000000000000005 R09: 0000000000000001 [ 126.184199] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800d465c00 [ 126.184737] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 126.185288] FS: 00007ff28c773700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 126.185902] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.186357] CR2: 00007f29f907b438 CR3: 0000000034db0000 CR4: 0000000000350ee0 [ 126.186914] Call Trace: [ 126.187116] [ 126.187290] ctx_sched_out+0x8f1/0xc10 [ 126.187602] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.188008] ? lock_is_held_type+0xd7/0x130 [ 126.188339] ? __perf_cgroup_move+0x160/0x160 [ 126.188678] ? set_next_entity+0x304/0x550 [ 126.189026] ? update_curr+0x267/0x740 [ 126.189340] ? lock_is_held_type+0xd7/0x130 [ 126.189668] __schedule+0xedd/0x2470 [ 126.189960] ? io_schedule_timeout+0x150/0x150 [ 126.190318] ? rcu_read_lock_sched_held+0x3e/0x80 [ 126.190706] schedule+0xda/0x1b0 [ 126.190978] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.191359] syscall_exit_to_user_mode+0x19/0x40 [ 126.191728] do_syscall_64+0x48/0x90 [ 126.192028] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.192420] RIP: 0033:0x7ff28f1fdb19 [ 126.192721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.194098] RSP: 002b:00007ff28c773218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.194677] RAX: 0000000000000001 RBX: 00007ff28f310f68 RCX: 00007ff28f1fdb19 [ 126.195220] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff28f310f6c [ 126.195754] RBP: 00007ff28f310f60 R08: 000000000000000e R09: 0000000000000000 [ 126.196304] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ff28f310f6c [ 126.196844] R13: 00007ffd2a9b703f R14: 00007ff28c773300 R15: 0000000000022000 [ 126.197402] [ 126.197585] irq event stamp: 1060 [ 126.197850] hardirqs last enabled at (1059): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 126.198559] hardirqs last disabled at (1060): [] __schedule+0x1225/0x2470 [ 126.199203] softirqs last enabled at (796): [] __irq_exit_rcu+0x11b/0x180 [ 126.199854] softirqs last disabled at (787): [] __irq_exit_rcu+0x11b/0x180 [ 126.200509] ---[ end trace 0000000000000000 ]--- 18:34:03 executing program 6: syz_emit_ethernet(0x3a, &(0x7f0000000300)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @multicast1, @dev={0xac, 0x14, 0x14, 0xfc}, {[@timestamp={0x44, 0x4, 0x2c}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x173) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_emit_ethernet(0xd1, &(0x7f0000000180)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x2f}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x41}, @void, {@mpls_mc={0x8848, {[{0x9, 0x0, 0x1}, {0x400}, {0x5, 0x0, 0x1}, {0x2, 0x0, 0x1}, {0x6}, {0x7ff, 0x0, 0x1}, {0x1}, {0x1, 0x0, 0x1}, {0x2}], @llc={@llc={0x7e, 0xfe, '+!', "6c903496f7a054c2aaca226938894fc988b36151f83be39f3ab4db9c84c7b5a2b3dda436e1c21649ab96f440bac0c617983e71c45a6c7818a9ffa6a6a68a6ebd1e2fc0ecd31689c263320237d42e561dbd611481552622423d96ffa40066f083b0f27436e315fb616ce471f99d8949789b24a9a1175c155b6196cd8c8566b4717d0b61ff057d92af172837c35688591ec745a7adc926a7cbae75cd"}}}}}}, &(0x7f0000000280)={0x1, 0x3, [0xb03, 0x2f6, 0x3bc, 0xd87]}) ioctl$sock_bt_hci(r0, 0x0, 0x0) ioctl$sock_bt_hci(r0, 0x400448de, &(0x7f0000001880)="a6") recvfrom(r0, &(0x7f0000000000)=""/194, 0xc2, 0x10, &(0x7f0000000100)=@hci={0x1f, 0x4}, 0x80) 18:34:04 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000140), 0x0) write$sndseq(0xffffffffffffffff, &(0x7f0000000040)=[{0x4, 0x80, 0x1f, 0x7e, @time={0xfffffff9, 0x800}, {0x20, 0x5}, {0x2, 0xff}, @ext={0x29, &(0x7f0000000000)="41d4023027db2b2aa970b93e8c83a0983adddb9f86809e7de1a0ff2fce8e873d4ea8c6b9d4618a76dd"}}], 0x1c) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r0, 0x0) syz_io_uring_setup(0x35a6, &(0x7f00000003c0)={0x0, 0x132c, 0x10}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480)) [ 126.766482] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 126.767238] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 126.767733] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 126.768231] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 126.768775] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 29 prio class 2 [ 126.770698] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.771166] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.771750] Buffer I/O error on dev sr0, logical block 0, async page read [ 126.773180] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.773577] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.774191] Buffer I/O error on dev sr0, logical block 1, async page read [ 126.774846] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.775268] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.775877] Buffer I/O error on dev sr0, logical block 2, async page read [ 126.776580] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.777021] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.777644] Buffer I/O error on dev sr0, logical block 3, async page read [ 126.778381] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.778785] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.779436] Buffer I/O error on dev sr0, logical block 4, async page read [ 126.780142] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.780554] I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.781207] Buffer I/O error on dev sr0, logical block 5, async page read [ 126.781900] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.782344] I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.782984] Buffer I/O error on dev sr0, logical block 6, async page read [ 126.783694] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.784126] I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.784753] Buffer I/O error on dev sr0, logical block 7, async page read [ 126.785681] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.786115] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 126.786736] Buffer I/O error on dev sr0, logical block 0, async page read [ 126.787466] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.787876] Buffer I/O error on dev sr0, logical block 1, async page read [ 126.788564] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.789769] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.790377] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.790979] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.791540] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.792153] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.793394] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.793935] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.794663] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.795243] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.796905] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.797515] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.798147] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.798732] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.799633] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.801034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.802728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.804715] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.809745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.810846] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.811872] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 126.812452] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 18:34:04 executing program 1: syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000480), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000004fc0)={0x0, 0x0, &(0x7f0000004f80)={&(0x7f0000000300)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000e0000001000028004000400ff430800020000000000"], 0x24}}, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = socket$nl_audit(0x10, 0x3, 0x9) r5 = dup2(r3, r4) r6 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f0000000200)={'sit0\x00', &(0x7f0000000280)={'syztnl2\x00', r7, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}}) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) r9 = socket$nl_audit(0x10, 0x3, 0x9) r10 = dup2(r8, r9) r11 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r10, 0x89f0, &(0x7f0000000200)={'sit0\x00', &(0x7f0000000280)={'syztnl2\x00', r12, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}}) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x108, r2, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_PAUSE_TX={0x5}, @ETHTOOL_A_PAUSE_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_PAUSE_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}]}, @ETHTOOL_A_PAUSE_RX={0x5}, @ETHTOOL_A_PAUSE_AUTONEG={0x5}, @ETHTOOL_A_PAUSE_HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}]}, @ETHTOOL_A_PAUSE_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x108}, 0x1, 0x0, 0x0, 0x4001}, 0x4008000) syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) [ 126.957563] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. [ 126.967201] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'. 18:34:04 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000380), 0x3, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000000)={0x0, r1, 0xfffffffe}) perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xc, 0x1, 0xf9, 0x7f, 0x0, 0x1ff, 0x58200, 0x4, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x5, 0x1, @perf_bp={&(0x7f0000000340), 0x3}, 0x1, 0x0, 0x9, 0x3, 0x6, 0x800, 0x2, 0x0, 0x7, 0x0, 0x401}, 0x0, 0xa, r0, 0x1) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r2, 0x0, 0x0, 0x87ffffc) r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) readv(r3, &(0x7f0000000300)=[{&(0x7f0000000140)=""/147, 0x93}, {&(0x7f0000000200)=""/116, 0x74}], 0x2) syz_open_dev$tty20(0xc, 0x4, 0x1) socket$nl_netfilter(0x10, 0x3, 0xc) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000480)) VM DIAGNOSIS: 18:34:03 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=0000000000000001 RCX=0000000000000000 RDX=000000000000782f RSI=000000000000782f RDI=ffffffff862910f8 RBP=ffff88803f617578 RSP=ffff88803f6174a0 R8 =ffffffff852c46c0 R9 =ffffffff85edfe90 R10=ffffed1007ec2eb1 R11=000000000003603d R12=ffff88803f617561 R13=ffff88803f617580 R14=ffff88803f617520 R15=ffffffff81782f3f RIP=ffffffff8111a385 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f162377e028 CR3=000000001b2b0000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 6f732e616d7a6c62 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00352e6f732e616d 7a6c62696c2f756e YMM03=0000000000000000 0000000000000000 672d78756e696c2d 34365f3638782f62 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88803f707690 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006e R11=0000000000000001 R12=000000000000006e R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff28c773700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f29f907b438 CR3=0000000034db0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007ff28f2e47c0 00007ff28f2e47c8 YMM02=0000000000000000 0000000000000000 00007ff28f2e47e0 00007ff28f2e47c0 YMM03=0000000000000000 0000000000000000 00007ff28f2e47c8 00007ff28f2e47c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000