Warning: Permanently added '[localhost]:20763' (ECDSA) to the list of known hosts. 2022/10/03 04:45:30 fuzzer started 2022/10/03 04:45:31 dialing manager at localhost:35095 syzkaller login: [ 35.631209] cgroup: Unknown subsys name 'net' [ 35.734427] cgroup: Unknown subsys name 'rlimit' 2022/10/03 04:45:46 syscalls: 2215 2022/10/03 04:45:46 code coverage: enabled 2022/10/03 04:45:46 comparison tracing: enabled 2022/10/03 04:45:46 extra coverage: enabled 2022/10/03 04:45:46 setuid sandbox: enabled 2022/10/03 04:45:46 namespace sandbox: enabled 2022/10/03 04:45:46 Android sandbox: enabled 2022/10/03 04:45:46 fault injection: enabled 2022/10/03 04:45:46 leak checking: enabled 2022/10/03 04:45:46 net packet injection: enabled 2022/10/03 04:45:46 net device setup: enabled 2022/10/03 04:45:46 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/03 04:45:46 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/03 04:45:46 USB emulation: enabled 2022/10/03 04:45:46 hci packet injection: enabled 2022/10/03 04:45:46 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/03 04:45:46 802.15.4 emulation: enabled 2022/10/03 04:45:46 fetching corpus: 50, signal 19026/20875 (executing program) 2022/10/03 04:45:46 fetching corpus: 100, signal 32124/35655 (executing program) 2022/10/03 04:45:46 fetching corpus: 150, signal 37822/43021 (executing program) 2022/10/03 04:45:46 fetching corpus: 200, signal 44940/51704 (executing program) 2022/10/03 04:45:46 fetching corpus: 250, signal 51120/59414 (executing program) 2022/10/03 04:45:47 fetching corpus: 300, signal 56595/66363 (executing program) 2022/10/03 04:45:47 fetching corpus: 350, signal 60863/72061 (executing program) 2022/10/03 04:45:47 fetching corpus: 400, signal 64460/77057 (executing program) 2022/10/03 04:45:47 fetching corpus: 450, signal 70899/84639 (executing program) 2022/10/03 04:45:47 fetching corpus: 500, signal 76721/91638 (executing program) 2022/10/03 04:45:47 fetching corpus: 550, signal 79792/95944 (executing program) 2022/10/03 04:45:47 fetching corpus: 600, signal 84223/101439 (executing program) 2022/10/03 04:45:47 fetching corpus: 650, signal 87821/106130 (executing program) 2022/10/03 04:45:47 fetching corpus: 700, signal 89985/109487 (executing program) 2022/10/03 04:45:48 fetching corpus: 750, signal 92318/112939 (executing program) 2022/10/03 04:45:48 fetching corpus: 800, signal 94959/116700 (executing program) 2022/10/03 04:45:48 fetching corpus: 850, signal 96623/119578 (executing program) 2022/10/03 04:45:48 fetching corpus: 900, signal 102084/125746 (executing program) 2022/10/03 04:45:48 fetching corpus: 950, signal 104239/128934 (executing program) 2022/10/03 04:45:48 fetching corpus: 1000, signal 106262/131967 (executing program) 2022/10/03 04:45:48 fetching corpus: 1050, signal 108673/135293 (executing program) 2022/10/03 04:45:48 fetching corpus: 1100, signal 110560/138192 (executing program) 2022/10/03 04:45:49 fetching corpus: 1150, signal 112851/141387 (executing program) 2022/10/03 04:45:49 fetching corpus: 1200, signal 116113/145313 (executing program) 2022/10/03 04:45:49 fetching corpus: 1250, signal 117351/147513 (executing program) 2022/10/03 04:45:49 fetching corpus: 1300, signal 119783/150715 (executing program) 2022/10/03 04:45:49 fetching corpus: 1350, signal 121750/153468 (executing program) 2022/10/03 04:45:49 fetching corpus: 1400, signal 123111/155790 (executing program) 2022/10/03 04:45:49 fetching corpus: 1450, signal 125299/158695 (executing program) 2022/10/03 04:45:49 fetching corpus: 1500, signal 127111/161335 (executing program) 2022/10/03 04:45:50 fetching corpus: 1550, signal 128680/163741 (executing program) 2022/10/03 04:45:50 fetching corpus: 1600, signal 129801/165756 (executing program) 2022/10/03 04:45:50 fetching corpus: 1650, signal 130936/167757 (executing program) 2022/10/03 04:45:50 fetching corpus: 1700, signal 132265/169908 (executing program) 2022/10/03 04:45:50 fetching corpus: 1750, signal 133903/172271 (executing program) 2022/10/03 04:45:50 fetching corpus: 1800, signal 134790/174011 (executing program) 2022/10/03 04:45:50 fetching corpus: 1850, signal 136663/176526 (executing program) 2022/10/03 04:45:50 fetching corpus: 1900, signal 138369/178870 (executing program) 2022/10/03 04:45:50 fetching corpus: 1950, signal 140386/181432 (executing program) 2022/10/03 04:45:51 fetching corpus: 2000, signal 141924/183605 (executing program) 2022/10/03 04:45:51 fetching corpus: 2050, signal 144480/186530 (executing program) 2022/10/03 04:45:51 fetching corpus: 2100, signal 145579/188332 (executing program) 2022/10/03 04:45:51 fetching corpus: 2150, signal 146687/190179 (executing program) 2022/10/03 04:45:51 fetching corpus: 2200, signal 147872/192047 (executing program) 2022/10/03 04:45:51 fetching corpus: 2250, signal 148637/193550 (executing program) 2022/10/03 04:45:51 fetching corpus: 2300, signal 149444/195112 (executing program) 2022/10/03 04:45:51 fetching corpus: 2350, signal 151084/197199 (executing program) 2022/10/03 04:45:51 fetching corpus: 2400, signal 152552/199148 (executing program) 2022/10/03 04:45:52 fetching corpus: 2450, signal 153443/200728 (executing program) 2022/10/03 04:45:52 fetching corpus: 2500, signal 154027/202051 (executing program) 2022/10/03 04:45:52 fetching corpus: 2550, signal 154846/203527 (executing program) 2022/10/03 04:45:52 fetching corpus: 2600, signal 155936/205159 (executing program) 2022/10/03 04:45:52 fetching corpus: 2650, signal 157106/206816 (executing program) 2022/10/03 04:45:52 fetching corpus: 2700, signal 158329/208607 (executing program) 2022/10/03 04:45:52 fetching corpus: 2750, signal 159186/210062 (executing program) 2022/10/03 04:45:52 fetching corpus: 2800, signal 159959/211489 (executing program) 2022/10/03 04:45:53 fetching corpus: 2850, signal 161426/213311 (executing program) 2022/10/03 04:45:53 fetching corpus: 2900, signal 162092/214631 (executing program) 2022/10/03 04:45:53 fetching corpus: 2950, signal 162801/215996 (executing program) 2022/10/03 04:45:53 fetching corpus: 3000, signal 163447/217330 (executing program) 2022/10/03 04:45:53 fetching corpus: 3050, signal 164644/218973 (executing program) 2022/10/03 04:45:53 fetching corpus: 3100, signal 165470/220344 (executing program) 2022/10/03 04:45:53 fetching corpus: 3150, signal 165842/221403 (executing program) 2022/10/03 04:45:53 fetching corpus: 3200, signal 166448/222623 (executing program) 2022/10/03 04:45:53 fetching corpus: 3250, signal 167698/224238 (executing program) 2022/10/03 04:45:53 fetching corpus: 3300, signal 168365/225482 (executing program) 2022/10/03 04:45:54 fetching corpus: 3350, signal 168889/226684 (executing program) 2022/10/03 04:45:54 fetching corpus: 3400, signal 169470/227876 (executing program) 2022/10/03 04:45:54 fetching corpus: 3450, signal 170819/229450 (executing program) 2022/10/03 04:45:54 fetching corpus: 3500, signal 172110/230998 (executing program) 2022/10/03 04:45:54 fetching corpus: 3550, signal 173783/232656 (executing program) 2022/10/03 04:45:54 fetching corpus: 3600, signal 175027/234088 (executing program) 2022/10/03 04:45:54 fetching corpus: 3650, signal 175482/235142 (executing program) 2022/10/03 04:45:54 fetching corpus: 3700, signal 176032/236221 (executing program) 2022/10/03 04:45:55 fetching corpus: 3750, signal 176547/237273 (executing program) 2022/10/03 04:45:55 fetching corpus: 3800, signal 177536/238518 (executing program) 2022/10/03 04:45:55 fetching corpus: 3850, signal 178276/239675 (executing program) 2022/10/03 04:45:55 fetching corpus: 3900, signal 178606/240683 (executing program) 2022/10/03 04:45:55 fetching corpus: 3950, signal 179126/241690 (executing program) 2022/10/03 04:45:55 fetching corpus: 4000, signal 180116/242924 (executing program) 2022/10/03 04:45:55 fetching corpus: 4050, signal 180548/243879 (executing program) 2022/10/03 04:45:55 fetching corpus: 4100, signal 181035/244858 (executing program) 2022/10/03 04:45:55 fetching corpus: 4150, signal 181625/245941 (executing program) 2022/10/03 04:45:56 fetching corpus: 4200, signal 182285/246996 (executing program) 2022/10/03 04:45:56 fetching corpus: 4250, signal 183411/248228 (executing program) 2022/10/03 04:45:56 fetching corpus: 4300, signal 184213/249326 (executing program) 2022/10/03 04:45:56 fetching corpus: 4350, signal 185340/250554 (executing program) 2022/10/03 04:45:56 fetching corpus: 4400, signal 185761/251498 (executing program) 2022/10/03 04:45:56 fetching corpus: 4450, signal 186449/252521 (executing program) 2022/10/03 04:45:56 fetching corpus: 4500, signal 186890/253443 (executing program) 2022/10/03 04:45:56 fetching corpus: 4550, signal 187318/254365 (executing program) 2022/10/03 04:45:56 fetching corpus: 4600, signal 187971/255337 (executing program) 2022/10/03 04:45:57 fetching corpus: 4650, signal 188855/256377 (executing program) 2022/10/03 04:45:57 fetching corpus: 4700, signal 190051/257525 (executing program) 2022/10/03 04:45:57 fetching corpus: 4750, signal 191377/258707 (executing program) 2022/10/03 04:45:57 fetching corpus: 4800, signal 192107/259668 (executing program) 2022/10/03 04:45:57 fetching corpus: 4850, signal 192644/260564 (executing program) 2022/10/03 04:45:57 fetching corpus: 4900, signal 193808/261653 (executing program) 2022/10/03 04:45:57 fetching corpus: 4950, signal 194082/262377 (executing program) 2022/10/03 04:45:57 fetching corpus: 4997, signal 194783/263292 (executing program) 2022/10/03 04:45:57 fetching corpus: 4997, signal 194783/264006 (executing program) 2022/10/03 04:45:57 fetching corpus: 4997, signal 194783/264727 (executing program) 2022/10/03 04:45:57 fetching corpus: 4997, signal 194783/265393 (executing program) 2022/10/03 04:45:57 fetching corpus: 4997, signal 194783/266092 (executing program) 2022/10/03 04:45:57 fetching corpus: 4997, signal 194783/266786 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/267458 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/268133 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/268804 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/269464 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/270147 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/270811 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/271495 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/272168 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/272866 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/273557 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/274301 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/274995 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/275681 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/276386 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/277088 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/277798 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/278497 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/279140 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/279843 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/280543 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/281225 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/281929 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/282647 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/283331 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/284054 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/284767 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/285465 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/286107 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/286752 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/287443 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/288102 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/288808 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/289502 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/290214 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/290925 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/291621 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/292314 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/293004 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/293691 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/294386 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/295049 (executing program) 2022/10/03 04:45:58 fetching corpus: 4997, signal 194783/295049 (executing program) 2022/10/03 04:46:01 starting 8 fuzzer processes 04:46:01 executing program 0: vmsplice(0xffffffffffffffff, &(0x7f0000000380)=[{&(0x7f0000000000)="6d988363d05d27f2dacecf6addd952be", 0x10}, {&(0x7f0000000040)="f1075af35188bfb14ee446d9295ee6fdb61667c670f7fd5c2d8259de01cbbbc2d800049f7c28f4bdf96b0be769118702cf918aed9d5e731ae023af0060d2271616a72989af3f21d3af9f901cfee204bd3586efd754ba766d993fd4c335ee0c827a1076da5089290e32c6378e5ba88f21cae8855eaa8ae90d3335dee67de8246fa7f9f8ce2cef5cce7d381fe19141d5dbfdbdeec8157efa27510e9cbb49e6a4dc77ea603aeee2dd6068c8079b59730dde4cb041b2af016d3d3ed940cdb320e93d9d03290c206f74b204c216d4b8deff", 0xcf}, {&(0x7f0000000140)="ae7ddb1e60d977f651632581dfec725ee7aca23ad5a70ca0c040664b95312c297bafd1e25c6f1cccdea20e1a23d98cde887822c208aea309f3accedfec056ab088479ec453fa2f63d3d25d86e03af939532a1db89429d71d9e8af2764909a28fdca294d05119e63821888086c730877f8302264a85149b0e026ab85016544066ce5e39045db8d06980d30b2fa204a9549a5f031de7ed01207e9a0b8078750a13cb0f2057ecbb47ad7d30eeb46d5237a01d35dd096ea0b689f2b368a868a6a865e4bc9a8e8abad193f2652effed199fc74bb8d41a457e79f186d7ceb944119a7116512140486fdb016f75c4cffeeda0e255da6d99", 0xf4}, {&(0x7f0000000240)="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", 0xfe}, {&(0x7f0000000340)="90cb1e54f1c8d62540006557a6b19bdd74e1a8", 0x13}], 0x5, 0x6) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000400)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) r1 = openat(r0, &(0x7f0000000440)='./file0\x00', 0xa20000, 0x28) vmsplice(r1, &(0x7f0000000800)=[{&(0x7f0000000480)="7da364ff47532b3ae226e37b2a5419184e1a0afb326fce0cf3c305f5a61e783706b5baa421463c91c74732b86a2e1914f9274c5b4c19f295098a5ec938e5a3bcf9e5212fa186e78ab8e4e2f8e43af3e50e70e9a031112c27926f3a37c4eb2b51330ee5f1f6afd0e5df52b24717882ffb1e49dc156c09a63ebc67c5b4051965bf5dc7d042a49de4fee51c302898597331a4db35bb20e93866", 0x98}, {&(0x7f0000000540)="a3bd5b3889003ce8c03c3e5047d2ee206cbdc8069627b3437e808ba62869f35b1e09d4f75d3a8d91dc8911a50b7aeddfdd46aee99022d8b9065b05b82f43747d31d008474f7650f8d60c9e330cf6957d4ff14641536ea6292e03b9b0a2b8acdaf16b1aced9c483851c772a7837831eb5c7cc9e76e68e47792fb3c5be02ce826ab1295d0f9d65578d889140049a00b5def90dab8d2506e1fd6fc8abedfa62eae32e5563739e88c9c3ca2bbda84a7fc5a7b1c9cc9f304d414e75e452745fef58f1d6388591bd8de5217982caa60880e5db8308ef5120cb71e496fc5a4e9c68c6db84f110b578a46b7bd22e7534a72463", 0xef}, {&(0x7f0000000640)="1e095734be886924c4a440993f3b16214d041048e78566ad4d435477924546a43770a8e4ffbc4f867e8fc65785355882d2ae2ee9bb9a85f437c88aebf6aeef6f2c23bbc3c4e1176b488ff3dd6981dc98a8e943f2d2c9013a192858bee214f07c58e7059d2b0cbeb1495c561e42fb58993fc07867fe714882f48187c8f9ad404811cc69b638642e1bdb3f815bc6d6d9f68b2d5c3a66a391ce4340e7c72c382c7affe2d9be6daae7aa02", 0xa9}, {&(0x7f0000000700)="2e66dcca8518c4d97015b831ca8244fae7bc8097309a9365c94d7f3338cc3acb75a234797b641cd3b24095c8108c5686d2d41b2a529de0d798e153e950d799cc86db82a2812757d6851505dd38eb15e49a7f46b20a24af9ff0c6c7ec210b3d32822c15874ddb033d55ed29f00c4e5d247c382050153313803288b678da74d5c3b2ca0931d089a3b7caf0b2fe57646e1809cc4de0b1cdcd77c5d1078e9a7684f1b0abb409d4ec8082930685b54f4675100d9119360bd98d1f278ee9eb73809f92ad86d24bb4e1", 0xc6}], 0x4, 0xc) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000840)={r1, 0xfffffffffffff801, 0x68dd, 0x1f}) ioctl$sock_inet_tcp_SIOCATMARK(r2, 0x8905, &(0x7f0000000880)) setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000008c0)={@in={{0x2, 0x4e20, @loopback}}, 0x0, 0x0, 0x2b, 0x0, "44b785de0fbb19437d57220cd9866b039e1971e26c3bf1d5d8279b66095f16eae5c5a9ab704f59803c6ed3ef62f3644ce1f45a86135bd8f083fd793aef023864207293edebd74faa80e82d2fa62d39d3"}, 0xd8) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f00000009c0)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) linkat(r3, &(0x7f0000000a00)='./file0\x00', r1, &(0x7f0000000a40)='./file0\x00', 0x1000) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r3, 0xc0096616, &(0x7f0000000a80)={0x4, [0x0, 0x0, 0x0, 0x0]}) r4 = openat(0xffffffffffffff9c, &(0x7f0000000ac0)='./file0\x00', 0x402000, 0x8) r5 = openat$cgroup_ro(r1, &(0x7f0000000b00)='cpuacct.usage_user\x00', 0x0, 0x0) inotify_add_watch(r5, &(0x7f0000000b40)='./file0\x00', 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r0) r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000003380), 0x0) sendfile(0xffffffffffffffff, r6, &(0x7f00000033c0)=0x3ff, 0x7f) ioctl$BTRFS_IOC_RESIZE(r4, 0x50009403, &(0x7f0000003400)={{r1}, {@void, @actul_num={@void, 0xfff, 0x70}}}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000003440)={0xffffffffffffffff, 0x3, 0x250, 0xdb6f6757294d3e8, 0x1}) setsockopt$bt_BT_FLUSHABLE(r2, 0x112, 0x8, &(0x7f0000003480)=0x7, 0x4) 04:46:01 executing program 1: sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, 0x0, 0x10, 0x70bd2c, 0x25dfdbfc, {}, [@GTPA_TID={0xc}, @GTPA_NET_NS_FD={0x8}, @GTPA_O_TEI={0x8, 0x9, 0x4}, @GTPA_PEER_ADDRESS={0x8, 0x4, @loopback}, @GTPA_TID={0xc, 0x3, 0x2}, @GTPA_PEER_ADDRESS={0x8, 0x4, @loopback}]}, 0x4c}, 0x1, 0x0, 0x0, 0x800}, 0x4000004) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/unix\x00') sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, 0x0, 0x200, 0x70bd28, 0x25dfdbff, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x8020}, 0x44012) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/class/ata_port', 0x800, 0x5a) sendmsg$NL80211_CMD_GET_MPATH(r1, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x34, 0x0, 0x300, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x42}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000810}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r2, &(0x7f0000000480)={0xffffffffffffffff, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x40, 0x0, 0x1, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0xd577, 0x52}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x6}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x9}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x9}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x8090) sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x54, 0x0, 0x100, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x4, 0x55}}}}, [@NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x2}, @NL80211_ATTR_MESH_SETUP={0x24, 0x70, [@NL80211_MESH_SETUP_AUTH_PROTOCOL={0x5, 0x8, 0x2}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5}, @NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}, @NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC={0x5, 0x2, 0x1}]}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x7}]}, 0x54}, 0x1, 0x0, 0x0, 0x8010}, 0x1) preadv(r2, &(0x7f0000001b40)=[{&(0x7f0000000600)=""/215, 0xd7}, {&(0x7f0000000700)=""/241, 0xf1}, {&(0x7f0000000800)=""/225, 0xe1}, {&(0x7f0000000900)=""/199, 0xc7}, {&(0x7f0000000a00)=""/58, 0x3a}, {&(0x7f0000000a40)=""/41, 0x29}, {&(0x7f0000000a80)=""/85, 0x55}, {&(0x7f0000000b00)=""/6, 0x6}, {&(0x7f0000000b40)=""/4096, 0x1000}], 0x9, 0x9, 0x7) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001c00), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_WOWLAN(r2, &(0x7f0000001d00)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001cc0)={&(0x7f0000001c80)={0x28, r4, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x41}, @void, @val={0xc, 0x99, {0x40, 0x48}}}}, ["", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000004}, 0x200080c0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000001d40)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001dc0), r1) sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r5, &(0x7f0000001e80)={&(0x7f0000001d80)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001e40)={&(0x7f0000001e00)={0x14, r6, 0x100, 0x70bd2d, 0x25dfdbff, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040040}, 0x840) r7 = socket$unix(0x1, 0x1, 0x0) lstat(&(0x7f0000002000)='./file0\x00', &(0x7f0000002040)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f00000020c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r10 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000002180)={0x6, &(0x7f0000002140)=[{0x3, 0x7, 0x81, 0x3}, {0x8001, 0x2, 0x1f, 0x1}, {0xed, 0x4d, 0x1, 0x5}, {0x1f, 0x90, 0x5, 0xe6}, {0x7, 0x1, 0xdb, 0x6}, {0x4, 0x0, 0x7f, 0x90}]}) sendmmsg$unix(r7, &(0x7f00000044c0)=[{{&(0x7f0000001ec0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000001f40)="dfe3c15994f84092b7542c2f60a0a64aabc904cf215708f6ac0f6f421d72ea28ee1def7653de299b1815698ebd846afb26d7f08d08344dac77e72b9ef1d149473722ba9723b752d2091c9a830a8f35848e31d9e4394e6e5880c94d59b773284e3189db80b6ca8f6401ad", 0x6a}], 0x1, &(0x7f00000021c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r8, r9}}}, @rights={{0x20, 0x1, 0x1, [r10, 0xffffffffffffffff, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee01}}}], 0xa0, 0x4048051}}, {{0x0, 0x0, &(0x7f0000002540)=[{&(0x7f0000002280)="b793b4b3868c2914de03cbe13e7c462eb4a0b331c399294dec6b56a0f9fbd5b5ccef19d071bb715e8c74121ff697cffbae8aab09f55e8c9d81494c63832459f819f11c3e00f8202997c1586d0c4dc6ee3f7188246a981c5b764e55c7c3948e9cf6173d0f7e67c6ef95dd591ac07ccb1fa82fbab865f8ee25687ed353c1c3a127aedb20e7b6604ad0c8adfa91747274cbd4850b51e8686ce1e67378bd", 0x9c}, {&(0x7f0000002340)="64f9335e746bdc57faeab66382fbcfa6", 0x10}, {&(0x7f0000002380)="4eacddab7991f1a5531b3be74378a5939990a570591b4f6b4e6630743fdea548167a510b60d031cfff505233509c45f643316718e96651bea6264ae60b2601c14d754c14cd1f8ce352f1a3d8dca404ececc96a56dd12fd8149770d6e6b3a139fbf52a458d5714b00be6305f5ce1937d03a363b52ceaddc1d443ad947692d35953d7387e4e4bf90154f92d6c02634fc5cdb2e844f7c9cb33c750c307116ee9e1daaaa12065189cd3d29765fe01fec4ef8b1673505ea7275d9efb1cbdfde24f33f69d59b14c815c37e38b2fb6bb18074137ea900e3498f081bca387cef74b35cd4c2efef2059f01f89f0ad549acf253c6753b3bb66541625d5", 0xf8}, {&(0x7f0000002480)="634c7f5695cf6804403cce9337b1a8ff9376ba70e1d861e736c210ba978a5d776f3c50e49b0179703e88bee39abe596d6c54dd9a488e6f5c033d5a2aae0157ef0baa0ed190f6c0823591c44fed8cbe", 0x4f}, {&(0x7f0000002500)="db76690b4f3a9337d49d934049ff64a8d8069ddbd0935e71283a2baf8fea4bfbd82c080589b10aaac0af42bff9720f83713039d8b27a58", 0x37}], 0x5, &(0x7f0000003a80)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [r2, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}, @rights={{0x38, 0x1, 0x1, [r5, r1, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0, r0, r0, 0xffffffffffffffff, r5]}}, @rights={{0x10}}], 0xa0, 0x24004000}}, {{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000003b40)="79f0ae7c3042dc4e6b9f2d8141ec7ac0938892df03292aa0204383569511dadc90af93112dc2abc8", 0x28}, {&(0x7f0000003b80)="40cb63bf4982f55991ba48309ddc59dd11f5239e0f8c75fd08222183b1eaa30172047dad24a83d144e1e95f9206c41a575890cad66304cfc245dc2bf45a4c73865c8cf0c2ff42206533016ceca40528097c075cd036bd96874f070ff62bce74ea2c3832933074d61afbf", 0x6a}, {&(0x7f0000003c00)="aa4e2325ca3999172fdaee56dc1a07d607472cc1c4364a37a4542c68597e01f3820069406398e0f451e5a04ddcd54c273268d39a21a465644759c6673c95cbf3bfeef372d934ab2eda5c8b81cc9a077490b65955dd2cde0bf984adbaf6567ec639129709a2d9a8c4b32b5b701b04382763ac26fe1fbdc4e0c0034e26eb6c93c0e96d189ec0c9", 0x86}, {&(0x7f0000003cc0)="52e2ff4c5807c4e9afb3df5ad26b058a9106821dd8d07c585e34ed755c270f370eb3313bf224a607e8a818a52cf73ba2cdbefd6ccbf9894ec57494d175a5e75057cdfe991a6e262972ca567f34cd5ca9ef456f33e033f07e7d79b2", 0x5b}, {&(0x7f0000003d40)="5b633bf6445dcc31da320432d616421ff00fd023ad549d6eb69ac495ee3deaaa1ed048fd8c6ecc4045d97b7f5a61e56827b14e42e1fceaef93d831bc2c20170d28031e3dd809ed28150092dcfa4dd6ee6acaef14ea19433558474fdcdb28a16f3db8c6a7223c2422706dd2b2dc8222255da6d058869c55a89e391c75a62d9ff7448596fd4d97f699165bde6067d4d3ab54b1", 0x92}], 0x5, &(0x7f0000003fc0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, r2, r1, r1]}}], 0x98, 0x20008000}}, {{&(0x7f0000004080)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f00000041c0)=[{&(0x7f0000004100)="2634a1a32cb0e565de39dc77d79b98b2ff57cb99ea1c16c41ec400b5c7fc3951537a5588f4558a25990b2439de30ac35128b040a7617aeb9dfff2706fdf373c7095147e9f81220c4d903b7864bf0bd55b019650154b525446663aa6e6a8cce1d18b146e81ad8a5911cf06090aa15757a78355bd30a03d3421a077f2ca9928b52e283293088a33e1d8b2332d3609bee12bf1e4b025a", 0x95}], 0x1, &(0x7f00000043c0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, r5]}}, @rights={{0x18, 0x1, 0x1, [r5, r2]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r0, r1]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xffffffffffffffff}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0, 0x20000040}}], 0x4, 0x4000) 04:46:01 executing program 2: r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00'}) getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f00000000c0)={0x2, 'team0\x00', {0x8001}, 0x9}) r1 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x200, 0x4) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000140)={0x4, 0x7}, 0x4) socketpair(0x27, 0x6, 0x9, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_IOC_EXPIRE(r2, 0x810c9365, &(0x7f00000001c0)={{0x3, 0x465}, 0x100, './file0\x00'}) r4 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000300)='/proc/thread-self/attr/fscreate\x00', 0x2, 0x0) ftruncate(r4, 0x0) write$selinux_attr(r2, &(0x7f0000000340)='system_u:object_r:root_t:s0\x00', 0x1c) write$selinux_attr(0xffffffffffffffff, &(0x7f0000000380)='system_u:object_r:gpg_helper_exec_t:s0\x00', 0x27) ioctl$sock_inet_SIOCSIFNETMASK(r1, 0x891c, &(0x7f00000003c0)={'veth1_to_batadv\x00', {0x2, 0x0, @private}}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, r2, {0xee01, 0xee01}}, './file0\x00'}) ioctl$sock_SIOCADDRT(r5, 0x890b, &(0x7f0000000480)={0x0, @vsock={0x28, 0x0, 0x2711}, @l2={0x1f, 0x6, @none, 0x4}, @qipcrtr={0x2a, 0xffffffff, 0x3fff}, 0x2, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000440)='veth0_virt_wifi\x00', 0x7ff, 0x0, 0x8}) sendmsg$NL80211_CMD_GET_SCAN(r3, &(0x7f00000005c0)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x14, 0x0, 0x400, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8850}, 0x881) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000600)={'macvlan0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, &(0x7f0000000640)={{0x1, 0x1, 0x18, r1}, './file1\x00'}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000680)={{0x1, 0x1, 0x18, r6, @in_args={0x2}}, './file1\x00'}) write$selinux_attr(r5, &(0x7f00000006c0)='system_u:object_r:hald_dccm_exec_t:s0\x00', 0x26) 04:46:01 executing program 3: r0 = syz_open_dev$vcsn(&(0x7f0000000000), 0x15ee, 0x80040) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000001c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/100, 0x64, 0x1, &(0x7f00000000c0)=""/234, 0xea}, &(0x7f0000000200)=0x40) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240), 0x10) r1 = eventfd2(0x2, 0x0) kcmp$KCMP_EPOLL_TFD(0x0, 0xffffffffffffffff, 0x7, r1, &(0x7f0000000280)={r0, r0, 0x5}) setsockopt(r0, 0x7fffffff, 0x6, &(0x7f00000002c0)="27a63f6e26c43a8c0fbf0db5fddd057bee0784a7a932efb69a38cd20842e39715e4b9492cc55168d9970648a6fd34c6277f3a49e40e998a4ff4c0a7fb0b3ade0994749561a21822e5903c590560f27b663f20c929dff79a1316138400fbaee3f88c9af5d8f6c0ed0bdc401364c6d3d2d7c2043b0865be44ddd0da23767ef4fa1461403296cd79145e024184ce8e9f0070d021df332b3d07b54960d70ae572dafaade9ea15ccee0ca19871a8410de1b44394a06fd8c45b902cdde7ec2ecbdc4737c6f50c10cd9a7", 0xc7) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000640), 0x8000, 0x0) clone3(&(0x7f0000000680)={0x280800800, &(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000440), {0x26}, &(0x7f0000000480)=""/244, 0xf4, &(0x7f0000000580)=""/91, &(0x7f0000000600)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, {r2}}, 0x58) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000700)={@in6={{0xa, 0x4e20, 0xaf61, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x1}}, 0x0, 0x0, 0x16, 0x0, "7c5fc4440f7223c7a575c5f5aaa18edfddad9929d670c46d0e7655c9fca9572d6d850276488574b02d137f5830526aa24c1763d1faa1b89b2ea1ef2e180a18cbef2d861f5e19fe79e43ffd2507aa5636"}, 0xd8) r3 = fork() r4 = syz_open_procfs(r3, &(0x7f0000000800)='oom_score\x00') r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000840), 0x200802, 0x0) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r5, 0x7, &(0x7f0000000880)=r0, 0x1) r6 = openat$dir(0xffffffffffffff9c, &(0x7f00000008c0)='./file0\x00', 0x108100, 0x40) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r6, 0xf507, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000940)={0x0, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x7, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000900)='caif0\x00', 0x1, 0x7, 0xfff}) r7 = syz_open_dev$vcsa(&(0x7f00000009c0), 0x7f, 0x70000) setsockopt$inet_tcp_TCP_MD5SIG(r7, 0x6, 0xe, &(0x7f0000000a00)={@in6={{0xa, 0x4e21, 0x7fffffff, @mcast1, 0x7}}, 0x0, 0x0, 0x4a, 0x0, "a80286ddd8fb9d9202b19c9f1b26e7d59f003bc3abd76ee27dc6f683e888d2c646b7f0caa6ea40cf984bf8a886f78578ea05e9a50ac647c696060dd06bc7618cdfc0b7e7b6d436eabcf23138e50aab8b"}, 0xd8) sendfile(r1, r4, &(0x7f0000000b00), 0xc3) ioctl$RNDGETENTCNT(r5, 0x80045200, &(0x7f0000000b40)) 04:46:01 executing program 4: r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000080), 0x48000, 0x0) r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, r0, 0x100, 0x70bd29, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SOCKETS={0x24, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8}, {0x8, 0x1, r2}]}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7fee}]}, 0x68}, 0x1, 0x0, 0x0, 0x4000}, 0x4) sendmsg$NL80211_CMD_ABORT_SCAN(r2, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x20, 0x0, 0x16, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x0, 0x7c}}}}, ["", "", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x8881}, 0x2000c010) fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000002c0)=0x4) r3 = creat(&(0x7f0000000340)='./file0\x00', 0x10) r4 = syz_open_dev$mouse(&(0x7f0000000380), 0xb, 0x80800) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x30, r0, 0x400, 0x70bd25, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0x8, 0x1, r3}, {0x8, 0x1, r2}, {0x8, 0x1, r4}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x80) r5 = fsmount(r3, 0x1, 0x12) splice(r5, &(0x7f0000000480)=0x3, r4, &(0x7f00000004c0), 0x2, 0x4) r6 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000700)={&(0x7f0000000580)={0x180, r6, 0x8, 0x70bd2d, 0x25dfdbfe, {}, [@NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x6}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MLSCATLST={0x148, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1a3500e2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x822f}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc55d}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7d316c7e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2b3146cb}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x19da}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5e17}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x72ca80ea}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd978}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x213c1bd2}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x11370e60}]}, {0x54, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc37}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x762f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x55cfd5c8}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4e2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xde5b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x74237c62}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3d105b20}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18fc75ea}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x867c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6c155312}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xdad1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa170}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc135}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x639a2c1e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4f13394d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4bef4db2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1422}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4c82725a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x656e4a4f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x783d6f52}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x393d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3b1fd02}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x376de540}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x60b7517a}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9eff}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3bc7}]}]}]}, 0x180}, 0x1, 0x0, 0x0, 0x4000}, 0x805) r7 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000007c0), 0xffffffffffffffff) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000900)={&(0x7f0000000800)={0xd8, r7, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x44, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x5}, {0x5, 0x3, 0x7}, {0x5, 0x3, 0x6}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_MLSLVLLST={0x70, 0x8, 0x0, 0x1, [{0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x14}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xac1b0e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7417b065}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x37}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x34b49117}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7228a668}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfe}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xab}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf7}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0xc0}, 0x8001) r8 = syz_genetlink_get_family_id$nl802154(&(0x7f00000009c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000a00)={'wpan0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000a40)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x50, r8, 0x8, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x50}, 0x1, 0x0, 0x0, 0x2400c085}, 0x20048005) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r3, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x38, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x7, 0x55}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x17}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x7e}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x20008084) 04:46:01 executing program 5: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) io_uring_register$IORING_REGISTER_EVENTFD(r0, 0x4, &(0x7f0000000000), 0x1) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[r0]}, 0x1) r1 = fsopen(&(0x7f00000000c0)='qnx4\x00', 0x1) r2 = dup2(r0, r1) ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f0000000100)=""/72) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000180)=0x101) r3 = mq_open(&(0x7f00000001c0)='*\x00', 0x40, 0x40, &(0x7f0000000200)={0x5, 0x5, 0x88, 0x3}) sync_file_range(r3, 0x4, 0x0, 0x5) r4 = openat$cgroup_type(r0, &(0x7f0000000240), 0x2, 0x0) splice(r4, &(0x7f0000000280)=0x2, r2, &(0x7f00000002c0), 0x1ff, 0x9) ftruncate(r3, 0x9) r5 = socket$nl_sock_diag(0x10, 0x3, 0x4) fcntl$getflags(r5, 0x3) ioctl$BLKROGET(0xffffffffffffffff, 0x125e, &(0x7f0000000300)) r6 = creat(&(0x7f0000000340)='./file0\x00', 0x81) fsmount(r6, 0x1, 0x0) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000380)={0x0, 0x40, 0x1}) r7 = accept$unix(r6, 0x0, &(0x7f0000000780)) fcntl$setown(r7, 0x8, 0x0) [ 65.674495] audit: type=1400 audit(1664772361.313:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 04:46:01 executing program 6: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @out_args}, './file0\x00'}) recvfrom$inet(r0, &(0x7f0000000040)=""/182, 0xb6, 0x2060, &(0x7f0000000100)={0x2, 0x4e20, @rand_addr=0x64010102}, 0x10) r1 = getegid() lsetxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='system.posix_acl_access\x00', &(0x7f00000001c0)={{}, {0x1, 0x2}, [{0x2, 0x2, 0xee00}, {0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x1}, {0x2, 0x4, 0xffffffffffffffff}, {0x2, 0x2, 0xee01}, {0x2, 0x3}, {0x2, 0x2, 0xee01}, {0x2, 0x1, 0xffffffffffffffff}], {0x4, 0x1}, [{0x8, 0x1, r1}, {0x8, 0x4, 0xee00}], {}, {0x20, 0x8}}, 0x74, 0x2) r2 = accept(r0, &(0x7f0000000240)=@alg, &(0x7f00000002c0)=0x80) clone3(&(0x7f0000000800)={0x8000000, &(0x7f0000000580)=0xffffffffffffffff, &(0x7f00000005c0), &(0x7f0000000600)=0x0, {0x35}, &(0x7f0000000640)=""/159, 0x9f, &(0x7f0000000700)=""/137, &(0x7f00000007c0)=[0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x6, {r0}}, 0x58) r5 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000880)='./binderfs/binder-control\x00', 0x0, 0x0) kcmp(0x0, r4, 0x1, r2, r5) ioctl$EXT4_IOC_CHECKPOINT(r5, 0x4004662b, &(0x7f00000008c0)=0x1) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000900)={{0x1, 0x1, 0x18, r2, {0x3ff}}, './file0\x00'}) sendmsg$IPVS_CMD_NEW_SERVICE(r6, &(0x7f0000000a80)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000980)={0x9c, 0x0, 0x8, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x38, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x4}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}]}, @IPVS_CMD_ATTR_SERVICE={0x44, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x0, 0x8}}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0xa, 0x6, 'lblcr\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x20040051}, 0x2000c142) r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000ac0), 0x4000, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(r7, 0x29, 0x23, &(0x7f0000000b00)={{{@in=@private, @in=@initdev}}, {{@in6=@mcast1}, 0x0, @in=@dev}}, &(0x7f0000000c00)=0xe8) r8 = openat$sr(0xffffffffffffff9c, &(0x7f0000000c40), 0x10001, 0x0) getsockopt$inet_opts(r8, 0x0, 0x9, &(0x7f0000000c80)=""/64, &(0x7f0000000cc0)=0x40) r9 = accept(r6, &(0x7f0000000d00)=@vsock, &(0x7f0000000d80)=0x80) ioctl$INCFS_IOC_PERMIT_FILL(r3, 0x40046721, &(0x7f0000000dc0)={r9}) r10 = openat$null(0xffffffffffffff9c, &(0x7f0000000e00), 0x400843, 0x0) ioctl$LOOP_SET_FD(r10, 0x4c00, r0) setxattr(&(0x7f0000000e40)='./file0\x00', &(0x7f0000000e80)=@known='com.apple.FinderInfo\x00', &(0x7f0000000ec0)='/dev/hwrng\x00', 0xb, 0x0) 04:46:01 executing program 7: ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x5d52}}, './file0\x00'}) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x5, 0x10001, 0x0, 0x2, 0x5, 0x7}) r1 = memfd_secret(0x0) r2 = perf_event_open(&(0x7f00000000c0)={0x4, 0x80, 0x0, 0x8, 0x65, 0x0, 0x0, 0x3, 0x8000, 0xd, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080)}, 0x11, 0x96, 0x8, 0x8, 0x1, 0x5, 0xfff8, 0x0, 0x8}, 0xffffffffffffffff, 0x6, r1, 0x9) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x7, &(0x7f0000000140)=0x9, 0x4) write$binfmt_aout(r1, &(0x7f0000000180)={{0x10b, 0x7f, 0xc0, 0x13b, 0x3cc, 0x7, 0x2b1, 0x80000001}, "fa643a070bbfe50f8a63abdb1c51bc782e72a9ca626b0bcb081e362dd82e4f77d7fdca40bbca95b28a41a3791a410864218d92f13228793ec08e3765ea5c3589036e61f7d9d00aae4ac9e35aac68535f160709587dd176e0ba4839ebf89784038d753fb7fbde32f60f", ['\x00', '\x00', '\x00']}, 0x389) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000600)={0x0, 0x0}, &(0x7f0000000640)=0xc) r5 = dup2(r2, r1) perf_event_open(&(0x7f0000000580)={0x0, 0x80, 0x9, 0x6, 0x78, 0x1f, 0x0, 0x8, 0x0, 0xd, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x4, @perf_bp={&(0x7f0000000540)}, 0x100, 0x81, 0x1, 0x2, 0x2, 0x2, 0x5, 0x0, 0x5, 0x0, 0x2}, r3, 0x1, r5, 0x8) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000680)) r6 = syz_mount_image$vfat(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x1, 0x0, &(0x7f0000000740), 0x41000, &(0x7f0000000780)={[{@uni_xlate}, {@uni_xlateno}, {@shortname_lower}, {@utf8no}, {@numtail}, {@shortname_mixed}], [{@uid_lt={'uid<', r4}}]}) ioctl$FITRIM(r6, 0xc0185879, &(0x7f0000000800)={0x81, 0x1, 0x5}) mount_setattr(r0, &(0x7f0000000840)='./file0\x00', 0x100, &(0x7f0000000880)={0x4, 0x1, 0x140000, {r1}}, 0x20) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000900)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f00000009c0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x1c, 0x0, 0x200, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @val={0x8, 0x3, r7}, @void}}, ["", "", "", "", "", ""]}, 0x1c}}, 0x10) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000a00)={0x0}, &(0x7f0000000a40)=0xc) sendmsg$NL80211_CMD_JOIN_MESH(r5, &(0x7f0000000c40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000c00)={&(0x7f0000000ac0)={0x134, 0x0, 0x2, 0x70bd26, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x4c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME={0x6, 0xd, 0x5}, @NL80211_MESHCONF_RETRY_TIMEOUT={0x6, 0x1, 0xd5}, @NL80211_MESHCONF_HOLDING_TIMEOUT={0x6, 0x3, 0x21}, @NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT={0x8, 0xb, 0x400}, @NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT={0x6, 0xa, 0x400}, @NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT={0x8, 0xb, 0x8}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x58}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffff83}]}, @NL80211_ATTR_TX_RATES={0xd4, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x58, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x38, 0x2, [{0x3, 0x1}, {0x0, 0x2}, {0x3, 0x5}, {}, {0x5, 0x5}, {0x6, 0x3}, {0x1}, {0x6, 0xa}, {0x0, 0x2}, {0x2, 0x6}, {0x1, 0x2}, {0x6, 0x2}, {0x2, 0x4}, {0x5, 0x4}, {0x2, 0x9}, {0x4, 0xa}, {0x5, 0x7}, {0x7, 0x2}, {0x6, 0x7}, {0x5, 0x9}, {0x1}, {0x0, 0x7}, {0x5, 0x8}, {0x4, 0x3}, {0x4, 0x6}, {0x1, 0x4}, {0x1, 0x6}, {0x2, 0x8}, {0x0, 0x4}, {0x0, 0x5}, {0x1, 0x5}, {0x5, 0x8}, {0x1, 0x3}, {0x5, 0x4}, {0x3, 0xa}, {0x3, 0x5}, {0x4, 0x2}, {0x3}, {0x7, 0x6}, {0x0, 0x4}, {0x7, 0x6}, {0x2, 0x9}, {0x6}, {0x1, 0x7}, {0x5, 0xa}, {0x0, 0x4}, {0x0, 0xa}, {0x4, 0x9}, {0x4, 0xa}, {0x1, 0x1}, {0x3}, {0x2}]}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0x18, 0x60, 0x21, 0x0, 0xb, 0x16, 0x12, 0x4, 0x6, 0x1b, 0x1, 0x18, 0x1b, 0x36, 0x30]}]}, @NL80211_BAND_2GHZ={0x3c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x36, 0x2, [{0x6, 0x4}, {0x0, 0x6}, {0x0, 0x2}, {0x1, 0x4}, {0x2, 0x3}, {0x1}, {0x1, 0x9}, {0x2, 0x4}, {0x5, 0x1}, {0x2, 0x7}, {0x1, 0x7}, {0x6, 0x3}, {0x2, 0x3}, {0x7, 0x2}, {0x7, 0x9}, {0x0, 0x3}, {0x0, 0x4}, {0x3}, {0x7, 0x7}, {0x5, 0x2}, {0x2, 0x1}, {0x3, 0x5}, {0x4}, {0x7, 0x9}, {0x6, 0x6}, {0x4, 0x5}, {0x6, 0x8}, {0x5, 0x7}, {0x4, 0x4}, {0x5, 0x4}, {0x1, 0x2}, {0x1, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x4, 0x7}, {0x2, 0x3}, {0x0, 0x3}, {0x4, 0x7}, {0x7, 0xa}, {0x4, 0x6}, {0x1, 0x1b}, {0x5, 0x7}, {0x0, 0xa}, {0x2, 0x4}, {}, {}, {0x4, 0xa}, {0x6, 0x5}, {0x7, 0x7}, {0x3, 0x4}]}]}, @NL80211_BAND_5GHZ={0x3c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0xe3, 0x2, 0x3ff, 0x3, 0x5, 0xdcf, 0x81]}}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x2, 0x5, 0x6, 0x1, 0x12, 0x48, 0xb, 0x12, 0x48, 0x9, 0x4, 0x4, 0x60, 0x60, 0x32, 0x18, 0x18, 0x24, 0x18, 0x36, 0x39, 0x1b, 0x6, 0x4, 0x48, 0x6, 0x6c, 0x9, 0x24, 0xc, 0x5, 0x12]}]}]}]}, 0x134}, 0x1, 0x0, 0x0, 0x800}, 0x0) r9 = syz_open_procfs(r8, &(0x7f0000000c80)='sched\x00') openat(r9, &(0x7f0000000cc0)='./file0\x00', 0x18000, 0x4a) sendmsg$NL80211_CMD_SET_TID_CONFIG(r9, &(0x7f0000001440)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001400)={&(0x7f0000000d40)={0x6b0, 0x0, 0x4, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x84, 0x11d, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x86}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xcd}]}, {0x28, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xc}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x28}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0xff}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}]}, @NL80211_ATTR_TID_CONFIG={0x618, 0x11d, 0x0, 0x1, [{0x33c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x330, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x2c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x1]}, @NL80211_TXRATE_LEGACY={0xb, 0x1, [0x30, 0x36, 0x36, 0x5, 0x48, 0x1b, 0x0]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0x6, 0x3, 0x8, 0xff, 0x8, 0x7ff, 0x1000]}}]}, @NL80211_BAND_5GHZ={0x60, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x1, 0x9, 0x800, 0xff, 0x8, 0x5, 0x6]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xece, 0x7fff, 0x2, 0x3ffe, 0x2, 0xfffc, 0x334, 0x7ff]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x2c, 0x2, [{0x1, 0x4}, {0x4, 0x8}, {0x5}, {0x0, 0x6}, {0x3, 0x6}, {0x7, 0x3}, {0x1}, {0x5}, {0x7, 0x6}, {0x7, 0x2}, {0x3, 0x8}, {0x1, 0x8}, {0x5, 0x7}, {0x2}, {0x3, 0x3}, {0x0, 0x4}, {0x1, 0x6}, {0x0, 0x3}, {0x4, 0x8}, {0x3, 0x3}, {0x3, 0x8}, {0x7, 0x7}, {0x2, 0x3}, {0x0, 0x8}, {0x6, 0x4}, {0x3, 0x7}, {0x0, 0x4}, {0x4, 0x9}, {0x4, 0x8}, {0x0, 0x9}, {0x6, 0x6}, {0x2}, {0x0, 0xa}, {0x1, 0x5}, {0x1, 0x4}, {0x6, 0x5}, {0x0, 0xa}, {0x7, 0x5}, {}, {0x1, 0x1}]}]}, @NL80211_BAND_5GHZ={0x30, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x24, 0x2, [{0x1, 0x2}, {0x1, 0x8}, {0x3, 0x2}, {0x6, 0x9}, {0x2, 0x9}, {0x6, 0x7}, {0x1, 0x8}, {0x2}, {0x1, 0x7}, {0x3, 0x2}, {0x2, 0xa}, {0x0, 0xa}, {0x0, 0x9}, {0x4, 0x6}, {0x4}, {0x2, 0x3}, {0x6, 0x8}, {0x2, 0x1}, {0x6, 0x1}, {0x3, 0x8}, {0x3, 0x8}, {0x7, 0x4}, {0x4, 0x2}, {0x1, 0x7}, {0x3, 0x9}, {0x2, 0x8}, {0x1, 0x7}, {0x1, 0x6}, {}, {0x6, 0xa}, {0x5, 0x3}, {0x0, 0x7}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2d887f24451dbefa}]}, @NL80211_BAND_6GHZ={0x11c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x26, 0x2, [{0x0, 0x8}, {0x0, 0x9}, {0x6, 0x7}, {0x4, 0x4}, {0x0, 0x5}, {0x3, 0x7}, {0x5, 0x1}, {0x1, 0x1}, {0x2, 0x6}, {0x7, 0x4}, {0x7, 0x7}, {0x6, 0x2}, {0x2, 0x4}, {0x1, 0x6}, {0x4}, {0x6, 0x3}, {0x2, 0x5}, {0x3, 0x4}, {0x6, 0x6}, {0x4, 0x4}, {0x4, 0x8}, {}, {0x2, 0x9}, {0x0, 0x6}, {0x4, 0x1}, {0x7, 0xa}, {0x7, 0x5}, {0x2, 0x2}, {0x3, 0x8}, {0x2, 0x4}, {0x1, 0x9}, {0x5, 0x2}, {0x3, 0x7}, {0x3, 0xa}]}, @NL80211_TXRATE_HT={0x32, 0x2, [{0x1, 0x9}, {0x6, 0x3}, {0x5, 0x6}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x5, 0x5}, {0x0, 0xa}, {0x1, 0x1}, {0x0, 0x4}, {0x2, 0x1}, {0x4, 0x7}, {0x5, 0x2}, {0x5, 0xa}, {0x3}, {0x4, 0x3}, {0x6, 0x5}, {0x0, 0x3}, {0x2, 0x4}, {0x4, 0x7}, {0x0, 0x5}, {0x3, 0x3}, {0x2, 0x8}, {0x6}, {0x3, 0x4}, {0x0, 0x8}, {0x6, 0x8}, {0x3, 0x3}, {0x2, 0x1}, {0x2, 0x1}, {0x6, 0x5}, {0x7, 0x7}, {0x4, 0x5}, {0x0, 0xa}, {0x2, 0x3}, {0x5, 0x6}, {0x3, 0x9}, {0x1, 0x8}, {0x5}, {0x4}, {0x0, 0xa}, {0x0, 0x7}, {0x7, 0x9}, {0x7, 0x8}, {0x1, 0x9}, {0x5, 0xa}]}, @NL80211_TXRATE_HT={0x31, 0x2, [{0x4, 0x5}, {0x2, 0x4}, {0x0, 0x1}, {0x5, 0x6}, {0x4, 0x4}, {0x0, 0x8}, {0x2, 0x1}, {0x1}, {0x5, 0x6}, {0x7}, {0x1, 0x6}, {}, {0x5}, {0x6, 0x5}, {0x4, 0x6}, {0x4, 0x4}, {0x0, 0xc}, {0x0, 0xa}, {0x0, 0x7}, {0x0, 0x6}, {0x3, 0x9}, {0x6, 0x3}, {0x1, 0x4}, {0x7, 0x5}, {0x0, 0x9}, {0x0, 0x6}, {0x4, 0x3}, {0x0, 0x6}, {0x1, 0x5}, {0x5, 0x9}, {0x2, 0x6}, {0x5, 0x4}, {0x7, 0x3}, {0x5, 0x2}, {0x1}, {0x1, 0x1}, {0x3, 0x8}, {0x4, 0x8}, {0x1, 0xa}, {0x6, 0x1}, {0x3, 0x8}, {0x5, 0x8}, {0x2, 0x7}, {0x6, 0xa}, {0x3, 0x1}]}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x1, 0x8}, {0x6, 0x3}, {0x1, 0x7}, {0x1, 0x7}, {0x6, 0x3}, {0x4}, {0x5, 0x8}, {0x5, 0x4}, {0x3, 0xa}, {0x7, 0x7}, {0x5, 0x1}, {0x3}, {0x0, 0x9}, {0x6}, {0x7, 0x7}, {0x7, 0x8}, {0x2, 0x9}, {0x7, 0x1}, {0x6, 0x1}, {0x2, 0x8}, {0x6, 0x6}, {0x3, 0x9}, {0x6, 0x3}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x40, 0x81, 0xff, 0x7ff, 0x200, 0x100, 0x97]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0xec97c6a7b24c4b81}, @NL80211_TXRATE_HT={0x46, 0x2, [{0x4, 0x4}, {0x7, 0xa}, {0x4, 0x4}, {0x3}, {0x6, 0x2}, {0x0, 0xa}, {0x3, 0x3}, {0x6, 0x6}, {0x4, 0x9}, {0x2, 0x3}, {0x1, 0x6}, {0x0, 0x7}, {0x6, 0x4}, {0x4, 0x1}, {0x5, 0x8}, {0x6, 0x4}, {0x7}, {0x7, 0x8}, {0x1, 0x9}, {0x7, 0xf}, {0x2, 0x4}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0x2}, {0x4, 0x4}, {0x3, 0x7}, {0x1}, {0x0, 0x3}, {0x0, 0xa}, {0x0, 0x5}, {0x7, 0x7}, {0x3, 0x8}, {0x2, 0x4}, {}, {0x1, 0x5}, {0x3, 0xa}, {0x0, 0x3}, {0x5, 0x7}, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0x4}, {0x3, 0x3}, {0x7, 0x1}, {0x3, 0x1}, {0x1}, {0x6, 0x3}, {0x4, 0x5}, {0x3, 0x6}, {0x1, 0xa}, {0x0, 0x7}, {0x2, 0x3}, {0x6, 0x2}, {0x1, 0x4}, {0x7, 0x2}, {}, {0x2, 0x1}, {0x1, 0x9}, {0x6, 0x6}, {0x0, 0x9}, {0x1, 0x4}, {0x5, 0x7}, {0x4, 0x1}, {0x0, 0x8}, {0x4, 0x4}, {0x2}, {0x4, 0x5}]}]}, @NL80211_BAND_60GHZ={0x100, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0xff, 0x1, 0x6, 0x9, 0xff, 0x20, 0x80]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x45, 0x2, [{0x4, 0x1}, {0x1, 0x5}, {0x1, 0x6}, {0x0, 0x9}, {0x0, 0x3}, {0x2, 0x8}, {0x3, 0x9}, {0x6}, {}, {0x4, 0x6}, {0x1, 0x9}, {0x4, 0xa}, {0x4, 0x8}, {0x3, 0x7}, {0x4, 0xa}, {0x1}, {0x1, 0x4}, {0x1, 0x3}, {0x3, 0x7}, {0x3, 0x1}, {0x2, 0xa}, {0x2, 0x8}, {0x4, 0x4}, {0x0, 0x4}, {0x2, 0x5}, {0x5, 0x6}, {0x3, 0x3}, {0x5, 0x9}, {0x0, 0x6}, {0x0, 0x8}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x5}, {0x4, 0x6}, {0x2, 0x2}, {0x0, 0x7}, {0x1, 0x9}, {0x6, 0xa}, {0x4, 0x1}, {0x5, 0x4}, {0x0, 0x7}, {0x0, 0xa}, {0x1, 0x7}, {0x4, 0x2}, {0x0, 0x2}, {0x6, 0x1}, {0x6, 0x4}, {0x3, 0x6}, {0x1, 0x9}, {0x0, 0x6}, {0x5, 0xa}, {0x2, 0x1}, {0x4}, {0x4, 0x9}, {0x7}, {0x7}, {0x4, 0x2}, {0x1, 0x5}, {0x1, 0x5}, {0x2, 0x7}, {0x6, 0x5}, {0x6, 0xa}, {0x1, 0x3}, {0x5, 0x7}, {0x1, 0xa}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x60, 0x36, 0x30, 0x4, 0x30, 0x5, 0x3, 0x6c, 0xb, 0x24, 0x16, 0x60, 0x16]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x39, 0x2, [{0x5}, {}, {0x4, 0x1}, {0x0, 0x5}, {0x7, 0x8}, {0x6, 0x1}, {0x0, 0xa}, {0x1, 0x8}, {0x2, 0x3}, {0x7, 0x2}, {0x4}, {0x4, 0x8}, {0x3, 0x5}, {0x4}, {0x7, 0xa}, {0x2, 0x3}, {0x4, 0x9}, {0x7, 0x2}, {0x0, 0x5}, {0x4, 0x3}, {0x3, 0x1}, {0x4, 0x7}, {0x0, 0x8}, {0x2, 0x5}, {0x0, 0x4}, {0x3}, {0x1, 0x4}, {0x1, 0x2}, {0x3, 0x5}, {0x0, 0x6}, {0x1, 0xa}, {0x2, 0xa}, {0x0, 0x3}, {0x3, 0x3}, {0x0, 0x9}, {0x1, 0x8}, {0x2, 0xa}, {0x2, 0xa}, {0x3, 0x19}, {0x0, 0x5}, {0x6, 0xa}, {0x7, 0x6}, {0x3, 0xa}, {0x6, 0x3}, {0x2, 0xa}, {0x0, 0xa}, {0x3, 0x5}, {0x5, 0x3}, {0x1, 0x7}, {0x1, 0x5}, {0x0, 0xa}, {0x0, 0x7}, {0x5, 0x5}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_LEGACY={0x19, 0x1, [0x12, 0x2, 0x24, 0xb, 0x18, 0x0, 0x36, 0x0, 0x4, 0x2b, 0x12, 0x1, 0x60, 0x48, 0x5, 0x18, 0x9, 0x60, 0x5334b246d358c48d, 0x36, 0x36651722618e0338]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1f, 0x7, 0x2c, 0x6, 0x2, 0x5, 0x9, 0x20]}}]}, @NL80211_BAND_5GHZ={0x54, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x39, 0x2, [{0x7, 0xa}, {0x6, 0x7}, {0x6, 0xa}, {0x5, 0x2}, {0x4, 0x9}, {0x4, 0x1}, {0x4, 0x2}, {0x6, 0x4}, {0x5, 0xa}, {0x5, 0x1}, {0x5, 0x1}, {0x2, 0x8}, {0x5, 0xa}, {0x4, 0xa}, {0x1, 0x6}, {0x6, 0xa}, {0x3}, {0x2, 0x7}, {0x4, 0x8}, {0x7, 0x2}, {0x1, 0x5}, {0x2, 0x4}, {0x1, 0x4}, {0x4, 0x4}, {0x2, 0xa}, {0x0, 0xa}, {0x5, 0x4}, {0x4, 0x3}, {0x5, 0x4}, {0x0, 0x8}, {0x7, 0x2}, {0x2, 0x3}, {0x1, 0x9}, {0x3, 0x5}, {0x3, 0x7}, {0x0, 0x2}, {0x5, 0x4}, {0x0, 0xa}, {0x2, 0x6}, {0x6}, {0x0, 0x9}, {0x6, 0x3}, {0x5, 0x2}, {0x0, 0x1}, {0x6, 0xa}, {0x1, 0x6}, {0x7, 0xa}, {0x5, 0x4}, {0x6, 0x9}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0x2}, {0x6, 0xa}]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x4, 0xa}, {0x6, 0x8}, {0x6, 0x4}, {0x0, 0x2}, {0x3, 0x4}]}]}]}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}]}, {0x184, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x168, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xe4, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x4e, 0x2, [{0x5, 0x4}, {0x7, 0xa}, {0x1, 0xa}, {0x4, 0x4}, {0x1, 0x2}, {0x0, 0x4}, {0x2, 0x2}, {0x7, 0x2}, {0x2, 0x5}, {0x3, 0xa}, {0x4, 0x6}, {0x1, 0x6}, {0x2, 0x7}, {0x5, 0x4}, {0x3, 0x1}, {0x1, 0x4}, {0x2, 0x7}, {0x2, 0x1}, {0x1, 0x8}, {0x7, 0x9}, {0x1, 0x1}, {0x4, 0x1}, {0x2, 0x2}, {0x2, 0x4}, {0x0, 0x5}, {0x5, 0xa}, {0x1, 0x1}, {0x6, 0x5}, {0x4}, {0x7, 0x1}, {0x0, 0x7}, {0x6, 0x9}, {0x1, 0x6}, {0x4}, {0x4, 0x2}, {0x6, 0x2}, {0x6, 0x4}, {0x4, 0xa}, {0x7, 0x9}, {0x6, 0x3}, {0x6, 0x3}, {0x1, 0x6}, {0x3, 0xa}, {0x7, 0x7}, {0x7, 0x4}, {0x3, 0x2}, {0x5, 0x4}, {0x1, 0x9}, {0x7, 0x8}, {0x4, 0x2}, {0x5, 0x2}, {0x0, 0x2}, {0x3, 0xa}, {0x3, 0x3}, {0x3, 0x8}, {0x1, 0xa}, {0x6, 0x3}, {0x6, 0x8}, {0x1, 0x6}, {0x1, 0x6}, {0x7, 0x2}, {0x5, 0x4}, {0x1, 0x3}, {0x3, 0x9}, {0x1, 0xa}, {0x6}, {0x6, 0x8}, {0x5, 0x9}, {0x5}, {0x7, 0x9}, {0x3, 0xa}, {0x5, 0x1}, {0x3, 0x1}, {0x7, 0xa}]}, @NL80211_TXRATE_HT={0x4c, 0x2, [{0x1, 0x7}, {0x2, 0x3}, {0x6, 0x4}, {0x7, 0x7}, {0x2, 0x8}, {0x4, 0x9}, {0x4, 0x3}, {0x0, 0xa}, {0x1, 0x2}, {0x2}, {0x4, 0x2}, {0x6, 0x3}, {0x1, 0x3}, {0x5, 0x1}, {0x5, 0x7}, {0x1, 0x2}, {0x4, 0x1}, {0x5, 0x6}, {0x2, 0xa}, {0x0, 0x5}, {0x7, 0x3}, {0x2, 0x7}, {0x6, 0x8}, {0x1, 0x7}, {0x0, 0x5}, {0x2, 0x3}, {0x7, 0x8}, {0x6, 0x2}, {0x1, 0x1}, {0x7, 0x1}, {0x4}, {0x7, 0x8}, {0x1, 0x4}, {0x1, 0x3}, {0x3, 0x5}, {0x7, 0x5}, {0x5, 0x2}, {0x1, 0x1}, {0x7, 0x3}, {0x7, 0xa}, {0x3, 0x2}, {0x1, 0x1}, {0x4, 0x4}, {0x6, 0xa}, {0x5, 0x3}, {0x1, 0x2}, {0x7, 0x8}, {0x2, 0x5}, {0x4, 0x8}, {0x5, 0xa}, {0x0, 0x1}, {0x7, 0x7}, {0x6, 0x4}, {0x2, 0x7}, {0x0, 0x9}, {0x1, 0x9}, {0x4, 0x8}, {0x0, 0x6}, {0x7, 0x9}, {0x1, 0x6}, {0x1, 0x5}, {0x4, 0x7}, {0x4, 0x9}, {0x7, 0x1}, {0x7, 0x5}, {0x7}, {0x1, 0x1}, {0x1, 0x3}, {0x7, 0x4}, {0x5, 0xa}, {0x6, 0xa}, {0x2, 0x9}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0xc, 0x6c, 0x3, 0xb, 0xb, 0x24, 0x2, 0x3, 0x4, 0x9, 0x5]}, @NL80211_TXRATE_LEGACY={0xe, 0x1, [0x9, 0x7c388dbca33b3c0, 0xc, 0x16, 0x12, 0x0, 0x12, 0x9, 0x9, 0x30]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x7, 0x0, 0x5, 0x81, 0x1, 0x2, 0x7ff]}}]}, @NL80211_BAND_6GHZ={0x58, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x8, 0x1, 0x8000, 0x1, 0x8, 0x22, 0x6]}}, @NL80211_TXRATE_LEGACY={0x17, 0x1, [0x5, 0x3, 0x1, 0x16, 0x4, 0x36, 0x5, 0x1, 0x36, 0x7e, 0x6c, 0xb, 0x60, 0x60, 0x30, 0x24, 0x48, 0x1, 0x36]}, @NL80211_TXRATE_LEGACY={0x7, 0x1, [0x30, 0xb, 0x60]}, @NL80211_TXRATE_LEGACY={0x1d, 0x1, [0x0, 0x4, 0x4, 0x4, 0x4, 0x1e, 0x6c, 0x4, 0x60, 0x6c, 0x30, 0x30, 0x24, 0x4, 0x1, 0x9, 0xb, 0x6, 0x1, 0x30, 0x3, 0x1, 0x48, 0x48, 0x24]}]}, @NL80211_BAND_60GHZ={0x28, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x10, 0x1, [0x6c, 0x5, 0xc, 0x6c, 0xc, 0x24, 0x30, 0xc, 0x24, 0x1, 0x24, 0x1b]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0xff00, 0x0, 0x8, 0x10a, 0x7, 0xfff, 0x6]}}]}]}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}]}, {0x50, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xfe}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x8}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xeb}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x4e}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x30}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}]}, {0xcc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x1c}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xc1}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x80, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x7c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x7, 0x5, 0x1, 0x1, 0x1, 0x3, 0x7, 0x100]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7fff, 0x9a, 0x2, 0x5, 0x5, 0xe, 0x401, 0x1]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xcf, 0x1, 0xff8, 0x5, 0x4a7, 0x7, 0xfb95, 0x8]}}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0xb, 0x22bc3a5591d395ce, 0x60, 0x24, 0x1, 0x5, 0x1b, 0x18, 0x2, 0x18, 0x1b, 0x5]}, @NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x30, 0x18, 0x48, 0x16, 0xb, 0xc, 0xc, 0x60, 0x36, 0x12, 0x60, 0xa95a5883cb44098b, 0x30, 0x30, 0xc, 0xc, 0x6c, 0x2, 0xb, 0x18, 0x2, 0x4, 0xc, 0x1, 0x4, 0x9]}, @NL80211_TXRATE_HT={0x9, 0x2, [{0x1, 0x5}, {0x1, 0x5}, {0x2, 0x6}, {0x0, 0x1}, {0x4, 0xa}]}]}]}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}]}]}, 0x6b0}, 0x1, 0x0, 0x0, 0x4040084}, 0x20000801) [ 66.921434] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.923885] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.925903] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.929384] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.932456] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.933896] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.939491] Bluetooth: hci0: HCI_REQ-0x0c1a [ 66.985102] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.986445] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.988691] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.989904] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.993592] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.996396] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.998059] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.999404] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 67.004985] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 67.006432] Bluetooth: hci2: HCI_REQ-0x0c1a [ 67.057919] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 67.069183] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 67.078908] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 67.080465] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 67.083769] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 67.084451] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 67.090051] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 67.091057] Bluetooth: hci1: HCI_REQ-0x0c1a [ 67.092680] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 67.093671] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 67.103635] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 67.126507] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 67.128565] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 67.129904] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 67.133658] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 67.135263] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 67.139046] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 67.143157] Bluetooth: hci7: HCI_REQ-0x0c1a [ 67.151341] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 67.152617] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 67.159018] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 67.159997] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 67.164581] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 67.165671] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 67.177570] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 67.178565] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 67.179982] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 67.188362] Bluetooth: hci3: HCI_REQ-0x0c1a [ 67.188628] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 67.191140] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 67.195175] Bluetooth: hci6: HCI_REQ-0x0c1a [ 67.210800] Bluetooth: hci5: HCI_REQ-0x0c1a [ 68.945591] Bluetooth: hci0: command 0x0409 tx timeout [ 69.009227] Bluetooth: hci2: command 0x0409 tx timeout [ 69.073012] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 69.137295] Bluetooth: hci1: command 0x0409 tx timeout [ 69.201067] Bluetooth: hci7: command 0x0409 tx timeout [ 69.201852] Bluetooth: hci3: command 0x0409 tx timeout [ 69.265411] Bluetooth: hci5: command 0x0409 tx timeout [ 69.266360] Bluetooth: hci6: command 0x0409 tx timeout [ 70.993059] Bluetooth: hci0: command 0x041b tx timeout [ 71.057034] Bluetooth: hci2: command 0x041b tx timeout [ 71.185044] Bluetooth: hci1: command 0x041b tx timeout [ 71.250050] Bluetooth: hci3: command 0x041b tx timeout [ 71.250150] Bluetooth: hci7: command 0x041b tx timeout [ 71.313072] Bluetooth: hci6: command 0x041b tx timeout [ 71.313503] Bluetooth: hci5: command 0x041b tx timeout [ 73.041999] Bluetooth: hci0: command 0x040f tx timeout [ 73.105009] Bluetooth: hci2: command 0x040f tx timeout [ 73.233018] Bluetooth: hci1: command 0x040f tx timeout [ 73.297068] Bluetooth: hci7: command 0x040f tx timeout [ 73.297091] Bluetooth: hci3: command 0x040f tx timeout [ 73.361004] Bluetooth: hci5: command 0x040f tx timeout [ 73.361050] Bluetooth: hci6: command 0x040f tx timeout [ 74.322064] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 75.090024] Bluetooth: hci0: command 0x0419 tx timeout [ 75.153034] Bluetooth: hci2: command 0x0419 tx timeout [ 75.281008] Bluetooth: hci1: command 0x0419 tx timeout [ 75.345003] Bluetooth: hci7: command 0x0419 tx timeout [ 75.345996] Bluetooth: hci3: command 0x0419 tx timeout [ 75.409024] Bluetooth: hci6: command 0x0419 tx timeout [ 75.409442] Bluetooth: hci5: command 0x0419 tx timeout [ 78.865034] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 81.408438] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 81.415348] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 81.421215] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 81.431118] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 81.434527] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 81.436885] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 81.449528] Bluetooth: hci4: HCI_REQ-0x0c1a [ 83.474190] Bluetooth: hci4: command 0x0409 tx timeout [ 85.522039] Bluetooth: hci4: command 0x041b tx timeout [ 87.570033] Bluetooth: hci4: command 0x040f tx timeout [ 89.617993] Bluetooth: hci4: command 0x0419 tx timeout 04:46:52 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) io_setup(0x7, &(0x7f0000000000)=0x0) r3 = syz_open_procfs(0x0, 0x0) r4 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getdents64(0xffffffffffffffff, &(0x7f0000000600)=""/148, 0x94) r5 = syz_open_procfs(0x0, &(0x7f0000000f00)='mountinfo\x00') read$hiddev(r5, &(0x7f0000000040)=""/169, 0x200000e9) memfd_secret(0x80000) ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r4, @ANYBLOB="00000000000000002e6ac6d290fed504742f66696c253100"]) r7 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETAW(r7, 0x5407, &(0x7f0000000000)={0x1000, 0x0, 0x0, 0x0, 0x10, "ddab93e1adcbd470"}) ioctl$VT_DISALLOCATE(r7, 0x5608) io_submit(r2, 0x4, &(0x7f00000005c0)=[&(0x7f0000000380)={0x0, 0x0, 0x0, 0x3, 0x3, 0xffffffffffffffff, &(0x7f0000000300)="666fd6fb7c4c8e8bf4059397e83e5ca7e7a13e2dbc305703a2c6a90bba95bb649867b6deabc9", 0x26, 0x4, 0x0, 0x3, r6}, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x1000, 0xffffffffffffffff, &(0x7f0000000400)="bcf3b4f072b97e9c8e5e4369e898ea7d3b9aaf8d0633f79e97d0826da4635d97340e117a758d18b9fe61c37ab2832aa388c707228965f582216544e3d9b9e1d50f2085b8b532a2d6b3c64fef32086daf609dede175371d47064c088a9ccda4c9", 0x60, 0x1, 0x0, 0x1, r0}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x3, r7, &(0x7f00000004c0)="457e9ecce6f0e6267ca821ea89e945294a9d2c204cfc7e6ab54c199887166c29b9dd581d3b99a5afd0", 0x29, 0xffff, 0x0, 0x1, r0}, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x7, 0x1, 0xffffffffffffffff, &(0x7f00000006c0)="caab5ab60cec2af461a1c275cab0df2622d311b22d15515e3c4d26fe7dddedecf8b1d9938e233d24e9941337524c7aaaa1ee7e747d80fbc3cca3eeec", 0x3c, 0xffffffffffffffff, 0x0, 0x1, r3}]) write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0x220) [ 117.322370] audit: type=1400 audit(1664772412.960:7): avc: denied { open } for pid=3618 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 117.325608] audit: type=1400 audit(1664772412.961:8): avc: denied { kernel } for pid=3618 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 117.349465] ------------[ cut here ]------------ [ 117.349499] [ 117.349504] ====================================================== [ 117.349515] WARNING: possible circular locking dependency detected [ 117.349523] 6.0.0-rc7-next-20220930 #1 Not tainted [ 117.349535] ------------------------------------------------------ [ 117.349541] syz-executor.6/3619 is trying to acquire lock: [ 117.349554] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 117.349624] [ 117.349624] but task is already holding lock: [ 117.349629] ffff88800dcdc820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 117.349679] [ 117.349679] which lock already depends on the new lock. [ 117.349679] [ 117.349685] [ 117.349685] the existing dependency chain (in reverse order) is: [ 117.349690] [ 117.349690] -> #3 (&ctx->lock){....}-{2:2}: [ 117.349717] _raw_spin_lock+0x2a/0x40 [ 117.349739] __perf_event_task_sched_out+0x53b/0x18d0 [ 117.349761] __schedule+0xedd/0x2470 [ 117.349788] schedule+0xda/0x1b0 [ 117.349814] futex_wait_queue+0xf5/0x1e0 [ 117.349837] futex_wait+0x28e/0x690 [ 117.349857] do_futex+0x2ff/0x380 [ 117.349875] __x64_sys_futex+0x1c6/0x4d0 [ 117.349895] do_syscall_64+0x3b/0x90 [ 117.349928] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 117.349953] [ 117.349953] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 117.349979] _raw_spin_lock_nested+0x30/0x40 [ 117.350000] raw_spin_rq_lock_nested+0x1e/0x30 [ 117.350025] task_fork_fair+0x63/0x4d0 [ 117.350058] sched_cgroup_fork+0x3d0/0x540 [ 117.350085] copy_process+0x4183/0x6e20 [ 117.350105] kernel_clone+0xe7/0x890 [ 117.350124] user_mode_thread+0xad/0xf0 [ 117.350144] rest_init+0x24/0x250 [ 117.350167] arch_call_rest_init+0xf/0x14 [ 117.350199] start_kernel+0x4c6/0x4eb [ 117.350229] secondary_startup_64_no_verify+0xe0/0xeb [ 117.350255] [ 117.350255] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 117.350282] _raw_spin_lock_irqsave+0x39/0x60 [ 117.350303] try_to_wake_up+0xab/0x1930 [ 117.350329] up+0x75/0xb0 [ 117.350356] __up_console_sem+0x6e/0x80 [ 117.350387] console_unlock+0x46a/0x590 [ 117.350417] vt_ioctl+0x2822/0x2ca0 [ 117.350439] tty_ioctl+0x785/0x16b0 [ 117.350459] __x64_sys_ioctl+0x19a/0x210 [ 117.350485] do_syscall_64+0x3b/0x90 [ 117.350517] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 117.350542] [ 117.350542] -> #0 ((console_sem).lock){....}-{2:2}: [ 117.350569] __lock_acquire+0x2a02/0x5e70 [ 117.350602] lock_acquire+0x1a2/0x530 [ 117.350632] _raw_spin_lock_irqsave+0x39/0x60 [ 117.350653] down_trylock+0xe/0x70 [ 117.350683] __down_trylock_console_sem+0x3b/0xd0 [ 117.350714] vprintk_emit+0x16b/0x560 [ 117.350746] vprintk+0x84/0xa0 [ 117.350777] _printk+0xba/0xf1 [ 117.350798] report_bug.cold+0x72/0xab [ 117.350830] handle_bug+0x3c/0x70 [ 117.350862] exc_invalid_op+0x14/0x50 [ 117.350896] asm_exc_invalid_op+0x16/0x20 [ 117.350919] group_sched_out.part.0+0x2c7/0x460 [ 117.350953] ctx_sched_out+0x8f1/0xc10 [ 117.350986] __perf_event_task_sched_out+0x6d0/0x18d0 [ 117.351008] __schedule+0xedd/0x2470 [ 117.351034] schedule+0xda/0x1b0 [ 117.351060] futex_wait_queue+0xf5/0x1e0 [ 117.351081] futex_wait+0x28e/0x690 [ 117.351101] do_futex+0x2ff/0x380 [ 117.351120] __x64_sys_futex+0x1c6/0x4d0 [ 117.351140] do_syscall_64+0x3b/0x90 [ 117.351172] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 117.351197] [ 117.351197] other info that might help us debug this: [ 117.351197] [ 117.351202] Chain exists of: [ 117.351202] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 117.351202] [ 117.351231] Possible unsafe locking scenario: [ 117.351231] [ 117.351236] CPU0 CPU1 [ 117.351240] ---- ---- [ 117.351244] lock(&ctx->lock); [ 117.351255] lock(&rq->__lock); [ 117.351267] lock(&ctx->lock); [ 117.351279] lock((console_sem).lock); [ 117.351291] [ 117.351291] *** DEADLOCK *** [ 117.351291] [ 117.351294] 2 locks held by syz-executor.6/3619: [ 117.351307] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 117.351365] #1: ffff88800dcdc820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 117.351418] [ 117.351418] stack backtrace: [ 117.351422] CPU: 1 PID: 3619 Comm: syz-executor.6 Not tainted 6.0.0-rc7-next-20220930 #1 [ 117.351447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 117.351462] Call Trace: [ 117.351468] [ 117.351475] dump_stack_lvl+0x8b/0xb3 [ 117.351511] check_noncircular+0x263/0x2e0 [ 117.351543] ? format_decode+0x26c/0xb50 [ 117.351574] ? print_circular_bug+0x450/0x450 [ 117.351608] ? simple_strtoul+0x30/0x30 [ 117.351650] ? format_decode+0x26c/0xb50 [ 117.351684] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 117.351718] __lock_acquire+0x2a02/0x5e70 [ 117.351761] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 117.351805] lock_acquire+0x1a2/0x530 [ 117.351838] ? down_trylock+0xe/0x70 [ 117.351872] ? lock_release+0x750/0x750 [ 117.351912] ? vprintk+0x84/0xa0 [ 117.351948] _raw_spin_lock_irqsave+0x39/0x60 [ 117.351970] ? down_trylock+0xe/0x70 [ 117.352002] down_trylock+0xe/0x70 [ 117.352033] ? vprintk+0x84/0xa0 [ 117.352066] __down_trylock_console_sem+0x3b/0xd0 [ 117.352100] vprintk_emit+0x16b/0x560 [ 117.352138] vprintk+0x84/0xa0 [ 117.352172] _printk+0xba/0xf1 [ 117.352195] ? record_print_text.cold+0x16/0x16 [ 117.352226] ? report_bug.cold+0x66/0xab [ 117.352262] ? group_sched_out.part.0+0x2c7/0x460 [ 117.352298] report_bug.cold+0x72/0xab [ 117.352335] handle_bug+0x3c/0x70 [ 117.352369] exc_invalid_op+0x14/0x50 [ 117.352405] asm_exc_invalid_op+0x16/0x20 [ 117.352430] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 117.352469] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 117.352491] RSP: 0018:ffff88801d8e78f8 EFLAGS: 00010006 [ 117.352509] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 117.352524] RDX: ffff888036be8000 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 117.352539] RBP: ffff8880323b8000 R08: 0000000000000005 R09: 0000000000000001 [ 117.352553] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800dcdc800 [ 117.352568] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 117.352589] ? group_sched_out.part.0+0x2c7/0x460 [ 117.352629] ? group_sched_out.part.0+0x2c7/0x460 [ 117.352668] ctx_sched_out+0x8f1/0xc10 [ 117.352707] __perf_event_task_sched_out+0x6d0/0x18d0 [ 117.352735] ? lock_is_held_type+0xd7/0x130 [ 117.352762] ? __perf_cgroup_move+0x160/0x160 [ 117.352783] ? set_next_entity+0x304/0x550 [ 117.352822] ? lock_is_held_type+0xd7/0x130 [ 117.352850] __schedule+0xedd/0x2470 [ 117.352884] ? io_schedule_timeout+0x150/0x150 [ 117.352914] ? futex_wait_setup+0x166/0x230 [ 117.352943] schedule+0xda/0x1b0 [ 117.352973] futex_wait_queue+0xf5/0x1e0 [ 117.352997] futex_wait+0x28e/0x690 [ 117.353022] ? futex_wait_setup+0x230/0x230 [ 117.353049] ? wake_up_q+0x8b/0xf0 [ 117.353075] ? do_raw_spin_unlock+0x4f/0x220 [ 117.353113] ? futex_wake+0x158/0x490 [ 117.353145] ? fd_install+0x1f9/0x640 [ 117.353174] do_futex+0x2ff/0x380 [ 117.353196] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 117.353228] __x64_sys_futex+0x1c6/0x4d0 [ 117.353254] ? __x64_sys_futex_time32+0x480/0x480 [ 117.353279] ? syscall_enter_from_user_mode+0x1d/0x50 [ 117.353307] ? syscall_enter_from_user_mode+0x1d/0x50 [ 117.353338] do_syscall_64+0x3b/0x90 [ 117.353373] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 117.353400] RIP: 0033:0x7f551c001b19 [ 117.353415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 117.353437] RSP: 002b:00007f5519577218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 117.353458] RAX: ffffffffffffffda RBX: 00007f551c114f68 RCX: 00007f551c001b19 [ 117.353473] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f551c114f68 [ 117.353487] RBP: 00007f551c114f60 R08: 0000000000000000 R09: 0000000000000000 [ 117.353501] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f551c114f6c [ 117.353515] R13: 00007fffe5cc12ff R14: 00007f5519577300 R15: 0000000000022000 [ 117.353540] [ 117.468083] WARNING: CPU: 1 PID: 3619 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 117.469438] Modules linked in: [ 117.469915] CPU: 1 PID: 3619 Comm: syz-executor.6 Not tainted 6.0.0-rc7-next-20220930 #1 [ 117.471074] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 117.472707] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 117.473516] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 117.476133] RSP: 0018:ffff88801d8e78f8 EFLAGS: 00010006 [ 117.476906] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 117.477935] RDX: ffff888036be8000 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 117.478974] RBP: ffff8880323b8000 R08: 0000000000000005 R09: 0000000000000001 [ 117.480020] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800dcdc800 [ 117.481057] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 117.482091] FS: 00007f5519577700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 117.483249] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 117.484108] CR2: 00007f36c7ab1090 CR3: 000000001021e000 CR4: 0000000000350ee0 [ 117.485136] Call Trace: [ 117.485515] [ 117.485856] ctx_sched_out+0x8f1/0xc10 [ 117.486431] __perf_event_task_sched_out+0x6d0/0x18d0 [ 117.487172] ? lock_is_held_type+0xd7/0x130 [ 117.487800] ? __perf_cgroup_move+0x160/0x160 [ 117.488430] ? set_next_entity+0x304/0x550 [ 117.489034] ? lock_is_held_type+0xd7/0x130 [ 117.489644] __schedule+0xedd/0x2470 [ 117.490181] ? io_schedule_timeout+0x150/0x150 [ 117.490841] ? futex_wait_setup+0x166/0x230 [ 117.491469] schedule+0xda/0x1b0 [ 117.491978] futex_wait_queue+0xf5/0x1e0 [ 117.492568] futex_wait+0x28e/0x690 [ 117.493090] ? futex_wait_setup+0x230/0x230 [ 117.493703] ? wake_up_q+0x8b/0xf0 [ 117.494213] ? do_raw_spin_unlock+0x4f/0x220 [ 117.494876] ? futex_wake+0x158/0x490 [ 117.495424] ? fd_install+0x1f9/0x640 [ 117.496026] do_futex+0x2ff/0x380 [ 117.496552] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 117.497425] __x64_sys_futex+0x1c6/0x4d0 [ 117.498043] ? __x64_sys_futex_time32+0x480/0x480 [ 117.498772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 117.499551] ? syscall_enter_from_user_mode+0x1d/0x50 [ 117.500335] do_syscall_64+0x3b/0x90 [ 117.500915] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 117.501705] RIP: 0033:0x7f551c001b19 [ 117.502257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 117.504945] RSP: 002b:00007f5519577218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 117.506076] RAX: ffffffffffffffda RBX: 00007f551c114f68 RCX: 00007f551c001b19 [ 117.507121] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f551c114f68 [ 117.508202] RBP: 00007f551c114f60 R08: 0000000000000000 R09: 0000000000000000 [ 117.509291] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f551c114f6c [ 117.510363] R13: 00007fffe5cc12ff R14: 00007f5519577300 R15: 0000000000022000 [ 117.511421] [ 117.511781] irq event stamp: 770 [ 117.512287] hardirqs last enabled at (769): [] syscall_enter_from_user_mode+0x1d/0x50 [ 117.513706] hardirqs last disabled at (770): [] __schedule+0x1225/0x2470 [ 117.514957] softirqs last enabled at (758): [] __irq_exit_rcu+0x11b/0x180 [ 117.516274] softirqs last disabled at (685): [] __irq_exit_rcu+0x11b/0x180 [ 117.517550] ---[ end trace 0000000000000000 ]--- [ 117.588961] hrtimer: interrupt took 16751 ns 04:46:53 executing program 2: accept4(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) setpriority(0x1, r0, 0xd5) r1 = syz_io_uring_complete(0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000100)={0x40, 0x7ff, 0x4, 0x2, 0x20, 0x2}) 04:46:53 executing program 2: accept4(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) setpriority(0x1, r0, 0xd5) r1 = syz_io_uring_complete(0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000100)={0x40, 0x7ff, 0x4, 0x2, 0x20, 0x2}) 04:46:53 executing program 2: accept4(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) setpriority(0x1, r0, 0xd5) r1 = syz_io_uring_complete(0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000100)={0x40, 0x7ff, 0x4, 0x2, 0x20, 0x2}) 04:46:53 executing program 2: accept4(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) setpriority(0x1, r0, 0xd5) r1 = syz_io_uring_complete(0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000100)={0x40, 0x7ff, 0x4, 0x2, 0x20, 0x2}) 04:46:53 executing program 2: accept4(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) setpriority(0x1, r0, 0xd5) syz_io_uring_complete(0x0) 04:46:53 executing program 2: accept4(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0) setpriority(0x1, r0, 0xd5) 04:46:53 executing program 2: accept4(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000080)=0x80, 0x800) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) setpriority(0x1, r0, 0xd5) VM DIAGNOSIS: 04:46:53 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806cf3d5e0 RCX=0000000000000000 RDX=ffff888040548000 RSI=ffffffff813bbaa7 RDI=0000000000000005 RBP=0000000000000001 RSP=ffff888037bb7958 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000003 R13=ffffed100d9e7abd R14=ffff88806cf3d5e8 R15=0000000000000001 RIP=ffffffff813bbaa9 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555555838400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f551c109d5c CR3=000000001021e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f551c0e87c0 00007f551c0e87c8 YMM02=0000000000000000 0000000000000000 00007f551c0e87e0 00007f551c0e87c0 YMM03=0000000000000000 0000000000000000 00007f551c0e87c8 00007f551c0e87c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000035 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88801d8e7340 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000035 R11=0000000000000001 R12=0000000000000035 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f5519577700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f36c7ab1090 CR3=000000001021e000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f551c0e87c0 00007f551c0e87c8 YMM02=0000000000000000 0000000000000000 00007f551c0e87e0 00007f551c0e87c0 YMM03=0000000000000000 0000000000000000 00007f551c0e87c8 00007f551c0e87c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000