Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:42715' (ECDSA) to the list of known hosts. 2022/10/03 20:05:48 fuzzer started 2022/10/03 20:05:48 dialing manager at localhost:35095 syzkaller login: [ 35.523608] cgroup: Unknown subsys name 'net' [ 35.621775] cgroup: Unknown subsys name 'rlimit' 2022/10/03 20:06:03 syscalls: 2215 2022/10/03 20:06:03 code coverage: enabled 2022/10/03 20:06:03 comparison tracing: enabled 2022/10/03 20:06:03 extra coverage: enabled 2022/10/03 20:06:03 setuid sandbox: enabled 2022/10/03 20:06:03 namespace sandbox: enabled 2022/10/03 20:06:03 Android sandbox: enabled 2022/10/03 20:06:03 fault injection: enabled 2022/10/03 20:06:03 leak checking: enabled 2022/10/03 20:06:03 net packet injection: enabled 2022/10/03 20:06:03 net device setup: enabled 2022/10/03 20:06:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/03 20:06:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/03 20:06:03 USB emulation: enabled 2022/10/03 20:06:03 hci packet injection: enabled 2022/10/03 20:06:03 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/03 20:06:03 802.15.4 emulation: enabled 2022/10/03 20:06:03 fetching corpus: 50, signal 13913/15823 (executing program) 2022/10/03 20:06:03 fetching corpus: 100, signal 33380/36955 (executing program) 2022/10/03 20:06:03 fetching corpus: 150, signal 45531/50644 (executing program) 2022/10/03 20:06:03 fetching corpus: 200, signal 49318/56021 (executing program) 2022/10/03 20:06:04 fetching corpus: 250, signal 52904/61175 (executing program) 2022/10/03 20:06:04 fetching corpus: 300, signal 58293/68006 (executing program) 2022/10/03 20:06:04 fetching corpus: 350, signal 62058/73186 (executing program) 2022/10/03 20:06:04 fetching corpus: 400, signal 64890/77452 (executing program) 2022/10/03 20:06:04 fetching corpus: 450, signal 72135/85848 (executing program) 2022/10/03 20:06:04 fetching corpus: 500, signal 77247/92137 (executing program) 2022/10/03 20:06:04 fetching corpus: 550, signal 80818/96922 (executing program) 2022/10/03 20:06:04 fetching corpus: 600, signal 86494/103616 (executing program) 2022/10/03 20:06:05 fetching corpus: 650, signal 90379/108606 (executing program) 2022/10/03 20:06:05 fetching corpus: 700, signal 92023/111531 (executing program) 2022/10/03 20:06:05 fetching corpus: 750, signal 94092/114785 (executing program) 2022/10/03 20:06:05 fetching corpus: 800, signal 95673/117611 (executing program) 2022/10/03 20:06:05 fetching corpus: 850, signal 99245/122177 (executing program) 2022/10/03 20:06:05 fetching corpus: 900, signal 101574/125611 (executing program) 2022/10/03 20:06:05 fetching corpus: 950, signal 103402/128561 (executing program) 2022/10/03 20:06:05 fetching corpus: 1000, signal 105726/131894 (executing program) 2022/10/03 20:06:05 fetching corpus: 1050, signal 107872/135056 (executing program) 2022/10/03 20:06:06 fetching corpus: 1100, signal 109215/137523 (executing program) 2022/10/03 20:06:06 fetching corpus: 1150, signal 110941/140270 (executing program) 2022/10/03 20:06:06 fetching corpus: 1200, signal 112317/142740 (executing program) 2022/10/03 20:06:06 fetching corpus: 1250, signal 115703/146835 (executing program) 2022/10/03 20:06:06 fetching corpus: 1300, signal 116843/149029 (executing program) 2022/10/03 20:06:06 fetching corpus: 1350, signal 119288/152326 (executing program) 2022/10/03 20:06:06 fetching corpus: 1400, signal 121800/155585 (executing program) 2022/10/03 20:06:06 fetching corpus: 1450, signal 123308/158064 (executing program) 2022/10/03 20:06:06 fetching corpus: 1500, signal 124692/160367 (executing program) 2022/10/03 20:06:07 fetching corpus: 1550, signal 125520/162214 (executing program) 2022/10/03 20:06:07 fetching corpus: 1600, signal 126707/164359 (executing program) 2022/10/03 20:06:07 fetching corpus: 1650, signal 128121/166664 (executing program) 2022/10/03 20:06:07 fetching corpus: 1700, signal 129783/169157 (executing program) 2022/10/03 20:06:07 fetching corpus: 1750, signal 132836/172685 (executing program) 2022/10/03 20:06:07 fetching corpus: 1800, signal 134801/175352 (executing program) 2022/10/03 20:06:08 fetching corpus: 1850, signal 135852/177283 (executing program) 2022/10/03 20:06:08 fetching corpus: 1900, signal 137529/179657 (executing program) 2022/10/03 20:06:08 fetching corpus: 1950, signal 139142/181955 (executing program) 2022/10/03 20:06:08 fetching corpus: 2000, signal 140149/183782 (executing program) 2022/10/03 20:06:08 fetching corpus: 2050, signal 141095/185594 (executing program) 2022/10/03 20:06:08 fetching corpus: 2100, signal 141781/187201 (executing program) 2022/10/03 20:06:08 fetching corpus: 2150, signal 143053/189248 (executing program) 2022/10/03 20:06:08 fetching corpus: 2200, signal 143798/190858 (executing program) 2022/10/03 20:06:08 fetching corpus: 2250, signal 145061/192865 (executing program) 2022/10/03 20:06:09 fetching corpus: 2300, signal 145811/194435 (executing program) 2022/10/03 20:06:09 fetching corpus: 2350, signal 146605/196051 (executing program) 2022/10/03 20:06:09 fetching corpus: 2400, signal 147782/197901 (executing program) 2022/10/03 20:06:09 fetching corpus: 2450, signal 149015/199760 (executing program) 2022/10/03 20:06:09 fetching corpus: 2500, signal 150162/201541 (executing program) 2022/10/03 20:06:09 fetching corpus: 2550, signal 151419/203413 (executing program) 2022/10/03 20:06:09 fetching corpus: 2600, signal 152781/205348 (executing program) 2022/10/03 20:06:10 fetching corpus: 2650, signal 154200/207284 (executing program) 2022/10/03 20:06:10 fetching corpus: 2700, signal 155317/209029 (executing program) 2022/10/03 20:06:10 fetching corpus: 2750, signal 156236/210626 (executing program) 2022/10/03 20:06:10 fetching corpus: 2800, signal 157496/212430 (executing program) 2022/10/03 20:06:10 fetching corpus: 2850, signal 158905/214263 (executing program) 2022/10/03 20:06:10 fetching corpus: 2900, signal 160062/215943 (executing program) 2022/10/03 20:06:10 fetching corpus: 2950, signal 161510/217796 (executing program) 2022/10/03 20:06:10 fetching corpus: 3000, signal 162587/219399 (executing program) 2022/10/03 20:06:10 fetching corpus: 3050, signal 163314/220791 (executing program) 2022/10/03 20:06:11 fetching corpus: 3100, signal 164280/222283 (executing program) 2022/10/03 20:06:11 fetching corpus: 3150, signal 165748/224083 (executing program) 2022/10/03 20:06:11 fetching corpus: 3200, signal 166658/225575 (executing program) 2022/10/03 20:06:11 fetching corpus: 3250, signal 167914/227221 (executing program) 2022/10/03 20:06:11 fetching corpus: 3300, signal 168544/228525 (executing program) 2022/10/03 20:06:11 fetching corpus: 3350, signal 169857/230239 (executing program) 2022/10/03 20:06:12 fetching corpus: 3400, signal 170835/231673 (executing program) 2022/10/03 20:06:12 fetching corpus: 3450, signal 171788/233113 (executing program) 2022/10/03 20:06:12 fetching corpus: 3500, signal 172415/234341 (executing program) 2022/10/03 20:06:12 fetching corpus: 3550, signal 173816/235970 (executing program) 2022/10/03 20:06:12 fetching corpus: 3600, signal 174407/237145 (executing program) 2022/10/03 20:06:12 fetching corpus: 3650, signal 175542/238640 (executing program) 2022/10/03 20:06:12 fetching corpus: 3700, signal 175960/239724 (executing program) 2022/10/03 20:06:12 fetching corpus: 3750, signal 176718/241001 (executing program) 2022/10/03 20:06:12 fetching corpus: 3800, signal 177591/242367 (executing program) 2022/10/03 20:06:13 fetching corpus: 3850, signal 178126/243466 (executing program) 2022/10/03 20:06:13 fetching corpus: 3900, signal 179131/244844 (executing program) 2022/10/03 20:06:13 fetching corpus: 3950, signal 179705/245966 (executing program) 2022/10/03 20:06:13 fetching corpus: 4000, signal 181113/247437 (executing program) 2022/10/03 20:06:13 fetching corpus: 4050, signal 182595/248982 (executing program) 2022/10/03 20:06:13 fetching corpus: 4100, signal 183200/250159 (executing program) 2022/10/03 20:06:13 fetching corpus: 4150, signal 183877/251264 (executing program) 2022/10/03 20:06:13 fetching corpus: 4200, signal 184389/252288 (executing program) 2022/10/03 20:06:14 fetching corpus: 4250, signal 185009/253444 (executing program) 2022/10/03 20:06:14 fetching corpus: 4300, signal 185631/254497 (executing program) 2022/10/03 20:06:14 fetching corpus: 4350, signal 186107/255500 (executing program) 2022/10/03 20:06:14 fetching corpus: 4400, signal 187051/256764 (executing program) 2022/10/03 20:06:14 fetching corpus: 4450, signal 188082/257966 (executing program) 2022/10/03 20:06:14 fetching corpus: 4500, signal 188766/259043 (executing program) 2022/10/03 20:06:14 fetching corpus: 4550, signal 189272/260018 (executing program) 2022/10/03 20:06:14 fetching corpus: 4600, signal 189773/260986 (executing program) 2022/10/03 20:06:14 fetching corpus: 4650, signal 190405/262003 (executing program) 2022/10/03 20:06:15 fetching corpus: 4700, signal 191206/263179 (executing program) 2022/10/03 20:06:15 fetching corpus: 4750, signal 191760/264174 (executing program) 2022/10/03 20:06:15 fetching corpus: 4800, signal 192396/265173 (executing program) 2022/10/03 20:06:15 fetching corpus: 4850, signal 192982/266191 (executing program) 2022/10/03 20:06:15 fetching corpus: 4900, signal 193820/267265 (executing program) 2022/10/03 20:06:15 fetching corpus: 4950, signal 194234/268168 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/269117 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/269855 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/270577 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/271331 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/272075 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/272822 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/273576 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/274343 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/275090 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/275831 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/276601 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/277329 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/278051 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/278795 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/279519 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/280281 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/281013 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/281713 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/282423 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/283169 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/283892 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/284646 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/285405 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/286148 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/286919 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/287683 (executing program) 2022/10/03 20:06:15 fetching corpus: 5000, signal 194785/288418 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/289179 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/289872 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/290642 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/291327 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/292154 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/292897 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/293620 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/294370 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/295098 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/295837 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/296572 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/297314 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/298050 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/298810 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/299560 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/300289 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/301034 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/301798 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/302541 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/303253 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/304012 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/304761 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/305500 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/306223 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/306940 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/307701 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/308104 (executing program) 2022/10/03 20:06:16 fetching corpus: 5000, signal 194785/308104 (executing program) 2022/10/03 20:06:18 starting 8 fuzzer processes 20:06:18 executing program 0: ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'veth1_to_batadv\x00'}) io_uring_enter(0xffffffffffffffff, 0x5104, 0xc11c, 0x3, &(0x7f0000000040)={[0x9]}, 0x8) r0 = open_tree(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x1000) io_uring_enter(r0, 0x7f67, 0x200e, 0x0, &(0x7f00000000c0)={[0x9]}, 0x8) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f0000000100), 0x6e, &(0x7f0000001500)=[{&(0x7f0000000180)=""/56, 0x38}, {&(0x7f00000001c0)=""/43, 0x2b}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/85, 0x55}, {&(0x7f0000001280)=""/106, 0x6a}, {&(0x7f0000001300)}, {&(0x7f0000001340)=""/68, 0x44}, {&(0x7f00000013c0)=""/36, 0x24}, {&(0x7f0000001400)=""/242, 0xf2}], 0x9, &(0x7f00000015c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @cred={{0x1c}}], 0xa0}, 0x100) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000001700)={0x2, &(0x7f00000016c0)=[{0x3, 0x5, 0x50, 0x6}, {0x200, 0x3, 0x5, 0x8}]}) fallocate(r4, 0x21, 0x7, 0x2) r5 = io_uring_setup(0x38b9, &(0x7f0000001740)={0x0, 0xf0d2, 0x1, 0x0, 0x2fe}) r6 = openat2(0xffffffffffffff9c, &(0x7f00000017c0)='./file0\x00', &(0x7f0000001800)={0x2, 0x140, 0x4}, 0x18) ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r6, 0x40082102, &(0x7f0000001840)) sendmsg$nl_netfilter(r1, &(0x7f0000001d40)={&(0x7f0000001880)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001d00)={&(0x7f00000018c0)={0x420, 0x2, 0x4, 0x201, 0x70bd27, 0x25dfdbff, {0x5, 0x0, 0x2}, [@nested={0x259, 0x94, 0x0, 0x1, [@generic="11f6cd0084022d3cac0ed3c0cfa121661b54a8562c410d6db8e36ec0c6a1caa763dc8acdad875e652d1709b0db7b8905815f4197eb63de9b08a8da0dcc855f88960d098379d2836b67d40ce6e2f5fbf4a674488b6f1f116efe4b5e1592e25ec0647ca69c96e4c9a13bbb9dc092092c22c3e789c12514fa76be5d13b148db570b0de845199fcc873d1bbc281cd9526360977ad550c5e4e0653209851f8e35218390f193253aa3effaa7316c359f6915914f31ba682a4f0c0fcccf90fa1677d8ab9eda4d20cadac0275b048f39ebd66d13a91705d139ae9b9a08c45be9", @typed={0x8, 0x44, 0x0, 0x0, @ipv4=@remote}, @generic="7fbc4b71c67697be191eb758ca14965409cc299a4e4f0fed7ba22255d55755083c796f494b82f592778201fa176c17734cf715d1877327deb66b239c20fc0844a578b287011ab6c89028ce389555cc04f69b344961efd32e073f", @generic="316677be2f52c1d826370f0cd92ba33e67627ec621385c076d538312290d43372ed9418bfc52bdae7651575404bdcafa432bbb4879058738988a717837143bbe0760b947980ff857071e0ee04ee2310b80d75435b69af8521ab8eea2427fbcce640b8aad925e9b49fa0cb418a902d2ed423005ce5b9028471059769d00d4ff12ff28b6c4898578a3305b9977856656576f8a68fd710a3832d58d2170b48510738931a63c674839e6f73f7811f420", @generic="6c5b5a7407be28b34681e22925298850e6dbbee1754f615fcc4979ac6108b18900d3c856f1cafe62f263dbf019a07b9b538a1b4ef0fb9267fc3d3f4ef90db93ba0864f4ce3ca6f812764e0e410e7087272dcbf7f99699b35aed85574bdc073b0adf553cf261fc25c29"]}, @nested={0x19b, 0x4d, 0x0, 0x1, [@typed={0x14, 0x57, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0xed, 0x0}}}, @generic="1f23fb690d80e0ee498b8dbf41dda6197cd1daa2794723ee17ee76d349db2ae284c13aca5ca18dded26147694a110f0538e0ded55654659f93804c5c2891421aea6c2454ec5c", @generic="5adb7fc2d172ca9143fce3d792418f7330c2edc894ece088f8b96d86a2bd0b3002bf532acd59dc5f209a2e73b8268d58bdd381eca9a5c22652025391aef8b6239fc7be875dbbc3702c3a8c71d4b0f0419d5f6ee7726df79c37118dfee3b47489c07611a0a15af7bb1cde5d1ec103320b539620439bbda94106404083973ddbfb9ec77ca9e81ae8b9aa22297b78c99318c9b9e96fc21972a1b7eea1e74db2fe6b7b81557bf9b2fd54da1265cd14672c79", @typed={0x14, 0x5, 0x0, 0x0, @ipv6=@local}, @typed={0x8, 0x5f, 0x0, 0x0, @u32=0xb597a37}, @typed={0x8, 0x1e, 0x0, 0x0, @ipv4=@empty}, @typed={0x4, 0x72}, @generic="9ccfbe7b893733d9141e60e2be3c95d62d197ab275de9c8c01971def10132218d1c9c9d2b051dc31b9c34d104b85f7a4628c3efa41e65cb0065f8c6f3b8c6ce68869a2d66bd5b3d8758b13cf88c2a1dd7dd2edd27fc99f5365ad0ab54b558b470dd55ff3cc"]}, @typed={0xc, 0x89, 0x0, 0x0, @u64=0x6}, @typed={0x8, 0x3e, 0x0, 0x0, @uid=r3}]}, 0x420}, 0x1, 0x0, 0x0, 0x800}, 0x4c840) write$binfmt_elf32(r1, &(0x7f0000001d80)={{0x7f, 0x45, 0x4c, 0x46, 0x8, 0x6, 0xf9, 0x5, 0x7, 0x3, 0x3e, 0x20, 0x142, 0x38, 0x360, 0x1, 0x5, 0x20, 0x1, 0x100, 0x0, 0x7ff}, [{0x7, 0x2, 0x9, 0xff, 0xfcd, 0xa791, 0xffffffff, 0x7ff}, {0x1, 0x100, 0x8, 0x3, 0x2b4b, 0x5, 0x81, 0xffff0001}], "931ce5ea332097bc5af7d4b5fcb24d5e6590cb175db9d766a2efaf9d4453", ['\x00', '\x00']}, 0x296) r7 = mq_open(&(0x7f0000002040)='}%,)\x00', 0x2, 0xae83f8a9163abdfa, &(0x7f0000002080)={0x8, 0x4, 0xb6d, 0x5}) close_range(r7, r2, 0x0) fsetxattr$trusted_overlay_origin(r4, &(0x7f00000020c0), &(0x7f0000002100), 0x2, 0x0) r8 = open(&(0x7f0000002140)='./file0/file0\x00', 0x101a00, 0x8) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r8, 0xc0502100, &(0x7f0000002180)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r2, 0x40082102, &(0x7f0000002200)=r9) signalfd(r5, &(0x7f0000002240)={[0xfff]}, 0x8) 20:06:18 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) sendfile(r0, 0xffffffffffffffff, &(0x7f0000000000)=0x7, 0x1) bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x400, @none, 0x4, 0x2}, 0xe) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0) setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f0000000080)=0x2, 0x1) setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f00000000c0)={0x40, 0x7}, 0x2) ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f0000000100)={0x6, 0x5}) r1 = syz_open_dev$usbmon(&(0x7f0000000140), 0x1, 0x101080) fallocate(r1, 0x1, 0xfffffffffffffff7, 0x9) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x5f3a6) write$evdev(0xffffffffffffffff, &(0x7f0000000180)=[{{0x77359400}, 0x2, 0x86, 0x1}, {{0x77359400}, 0x17, 0x1ff, 0xfffffff8}, {{}, 0x17, 0x8, 0x27}, {{0x77359400}, 0x2, 0x4, 0x7}, {{0x0, 0xea60}, 0x0, 0xfa16, 0x8001}, {{0x0, 0xea60}, 0x11, 0x6, 0x4}, {{}, 0x3, 0x5, 0x476e}], 0xa8) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000240)={{0x1, 0x1, 0x18, r1, {0x6}}, './file0\x00'}) ioctl$EXT4_IOC_CHECKPOINT(r2, 0x4004662b, &(0x7f0000000280)=0x2) r3 = fsmount(r2, 0x1, 0x88) ioctl$EVIOCGID(r3, 0x80084502, &(0x7f00000002c0)=""/82) setsockopt$bt_hci_HCI_DATA_DIR(r2, 0x0, 0x1, &(0x7f0000000340)=0xde5, 0x4) ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000000380)={{0x1, 0x1, 0x18, r1, {0xfff}}, './file0/file0\x00'}) fsconfig$FSCONFIG_SET_PATH(r4, 0x3, &(0x7f00000003c0)='/dev/usbmon#\x00', &(0x7f0000000400)='./file1\x00', 0xffffffffffffffff) ioctl$MON_IOCX_GETX(r1, 0x4018920a, &(0x7f0000000500)={&(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000480)=""/100, 0x64}) unlinkat(0xffffffffffffffff, &(0x7f0000000580)='./file0/file0\x00', 0x0) 20:06:18 executing program 2: r0 = semget(0x1, 0x0, 0x400) r1 = semget(0x1, 0x0, 0x40) semctl$GETPID(r1, 0x3, 0xb, &(0x7f0000000000)=""/137) r2 = semget(0x2, 0x1, 0xa0) semctl$SETALL(r1, 0x0, 0x11, &(0x7f00000000c0)=[0x3c89, 0x4, 0x696, 0x7]) semctl$GETZCNT(r0, 0x1, 0xf, &(0x7f0000000100)=""/10) semctl$GETZCNT(r0, 0x2, 0xf, &(0x7f0000000140)=""/43) r3 = semget(0x1, 0x2, 0x6) semctl$GETPID(r3, 0x4, 0xb, &(0x7f0000000180)=""/4096) semctl$IPC_STAT(r2, 0x0, 0x2, &(0x7f0000001180)=""/4096) semctl$GETZCNT(r3, 0x0, 0xf, &(0x7f0000002180)=""/220) semctl$SETVAL(r3, 0x2, 0x10, &(0x7f0000002280)=0x1) r4 = semget$private(0x0, 0x2, 0x5b7) semtimedop(r4, &(0x7f00000022c0)=[{0x3, 0xfffb, 0x800}, {0x2, 0x7, 0x800}, {0x2, 0xc5, 0x800}, {0x1, 0xc32}, {0x0, 0xff}, {0x2, 0xfffb, 0x800}, {0x0, 0xfffc, 0x800}, {0x1, 0x200, 0x1000}, {0x0, 0xfffa, 0x800}], 0x9, &(0x7f0000002300)) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000002340)=[0x210, 0x1]) semtimedop(r4, &(0x7f0000002380)=[{0x3, 0x1, 0x2000}], 0x1, &(0x7f00000023c0)) semtimedop(r2, &(0x7f0000002400)=[{0x3, 0x1f, 0x1000}, {0x4, 0xfffd, 0x800}, {0x1, 0x0, 0x2800}, {0x3, 0x9, 0x1000}], 0x4, &(0x7f0000002440)) r5 = semget$private(0x0, 0x1, 0x8) semtimedop(r5, &(0x7f0000002480)=[{0x6, 0xf800, 0x800}, {0x1, 0x401, 0x1800}, {0x3, 0x5}, {0x3, 0x8000, 0x800}], 0x4, &(0x7f00000024c0)) semtimedop(0xffffffffffffffff, &(0x7f0000002500)=[{0x3, 0x2eb0, 0x1800}, {0x2, 0x0, 0x1000}, {0x2, 0x5, 0x1800}, {0x3, 0x3, 0x1000}, {0x1, 0x8, 0x1000}], 0x5, &(0x7f0000002540)) 20:06:18 executing program 3: ioctl$CDROM_SET_OPTIONS(0xffffffffffffffff, 0x5320, 0x1) ioctl$DVD_AUTH(0xffffffffffffffff, 0x5390, &(0x7f0000000000)=@lsasf={0x8, 0x2, 0x1}) ioctl$CDROMCLOSETRAY(0xffffffffffffffff, 0x5319) fstat(0xffffffffffffffff, &(0x7f0000000040)) fstat(0xffffffffffffffff, &(0x7f00000000c0)) fcntl$F_SET_RW_HINT(0xffffffffffffffff, 0x40c, &(0x7f0000000140)=0x4) ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000180)) fcntl$setpipe(0xffffffffffffffff, 0x407, 0x9) r0 = fcntl$getown(0xffffffffffffffff, 0x9) ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f00000001c0)=0x4) r1 = syz_open_dev$sg(&(0x7f00000003c0), 0x9, 0x501000) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000940)=[{{&(0x7f0000000200)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000280)="91b723707c5cf9abce0b48c88d7634372ce8c397a7d776d1343081119df69bfffd581cac4677ceebd4b1f5638b6f7429b1d34cbe41321f0cd1f321bc8b35463e647ab20caf3e9716c7e4c9bc60e2a13307c16dad644857ad4e96f3bdeef2c533a1faa67f685e3c3716e4e67b6bcc9930e835715a7e6f196162ccd21157c8448150c3c20bc2b18a7a30c6ff91205e836a2fb38e0ef6126eb656c41add8aaaeea13ddf6b75d837652dd61e570ccaa299eee8999f579c0c6fa75156df8ce12fb02b90b5db77", 0xc4}], 0x1, &(0x7f0000000400)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r1, 0xffffffffffffffff]}}], 0x20, 0x440c0}}, {{&(0x7f0000000440)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f00000008c0)=[{&(0x7f00000004c0)="87aaa68d0110b86e6c3f9a596f048df2576f65b1c6e3a956a5da8170a4f59e4f88473b3177a4f1986b403656cd6f34306580a1", 0x33}, {&(0x7f0000000500)="b5f64db6776a8b328062d390d18ed7abedc546e038fa", 0x16}, {&(0x7f0000000540)="f771db7dd1a6caf958f906e5a01f4edc5615e11719a66b8d", 0x18}, {&(0x7f0000000580)="c9c68b75537dd167d0051246924e04d953d908f8d9debb24e3575f91d8948e7c4bd1edb073d76a150157b704abb91d5bcaf4ce63fa015f0df301136a73a5900f65f2d7ea104ddf901314a1bec21d5ba9f9ea49ef017549ee976d6e6774cd1607f3143d2a8f75420517d24bbb140b0057a329f6ab1b12831d79266b01c3f079589498d850603b010b9a0b25eee13baf670c370cfd2cdced56aa6fe8dac38401ca57171cf9273175ef0e4ae7618bd3f88ece5b10a9c90b59e95db18068e2f1ae7fb338b5db4989bbf3a9d288f3814346f8318b81a776546dd2ddd5c2a63b4a0caa36dbef5c6431144f556345fa1b69223f8b", 0xf1}, {&(0x7f0000000680)="d4a66da612a9ba6961a02f70d71ad1a05f7a4cb0e01571c318d32f2add9e7780d8deed459082d95e04d38123e625cc29b56413016348d1129e87d3259312b5b66cd4ba0c49081924b210027409188bc120e9f42441", 0x55}, {&(0x7f0000000700)="e9db04cd477cd6be657b1a78c0fc491218418c750a5bb71c01593e8d70e8313172367ea08124da3dbcafd4c6704785d9ca0a1e6f0ef9ee1088a6bc71bfb706d6779c28de866bb72f5c2bdd9bfa82a5c4457d471f0f5e8deb8a0e0b9d823a25c352a33696e5d506f88e15be2dc8ec41feb3033f26913d6fc9d2277ce11c14982607ae348b77cbc42edf18f374fd03bdb4a2f2e19b1b502a5e09dfc4bf7fcc1fc6c67de7626ce6cb5c8febdcbadc5673fd6988a8bc98fb0b9248", 0xb9}, {&(0x7f00000007c0)="58d88d64c0067bb1e07c0f6fefe8c187e158b9635c83146581aa0eabb03e5f8e21d4988f555189f88e72584c8b89f5e58f3af3bed7e4670b1fa01eceaddeaf37deefd2137cac16e7152866671735ca0c3ee800897245cdce93d2f12a3b36e3ea7ed342db611d1ae04e125490fabc7d21e4cf7a09c600b3c9716fd44e1426c5d51d274c3193e766e863dc5de912e7b3b073d222797c07ab8dd05d55c77d3bbbf1af9c4167e1a0274109594d8f61d3fda30bf1a1999069ab2aaa2200956ed11bd5ff13a85509b45be25088e98bdc5645f60787", 0xd2}], 0x7, 0x0, 0x0, 0x810}}], 0x2, 0x4) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f00000009c0)={0x0, 0x0, 0x5, 0x5}) r2 = creat(&(0x7f0000000a00)='./file0\x00', 0x80) ioctl$TIOCL_GETSHIFTSTATE(r2, 0x541c, &(0x7f0000000a40)={0x6, 0x3f}) ioctl$HIDIOCINITREPORT(r2, 0x4805, 0x0) r3 = syz_open_procfs(r0, &(0x7f0000000a80)='gid_map\x00') ioctl$FAT_IOCTL_GET_VOLUME_ID(r1, 0x80047213, &(0x7f0000000ac0)) ioctl$KDSKBLED(r3, 0x4b65, 0x3) write$cgroup_type(0xffffffffffffffff, &(0x7f0000000b40), 0x9) [ 65.080663] audit: type=1400 audit(1664827578.210:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 20:06:18 executing program 4: r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0xe, 0x80000) r1 = accept4(r0, &(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @remote}}}, &(0x7f0000000100)=0x80, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000140)={{0x0, 0x10001, 0xb5, 0xffffffff00000001, 0x401, 0x9, 0x8, 0x101, 0x7, 0x6, 0x7ff, 0x7f, 0x0, 0xffffffffffff8000, 0x4}}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f0000001200)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000011c0)={&(0x7f0000001180)={0x40, 0x0, 0x10, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8001, 0x7}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xe14}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x3}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xcf6e}]}, 0x40}, 0x1, 0x0, 0x0, 0x2000c005}, 0x24000001) bind$bt_l2cap(r1, &(0x7f0000001240)={0x1f, 0x3ff, @any, 0x5}, 0xe) setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000001280)={0x3, 0x2a3, 0x8000, 0xd8, 0x8c, 0x3, 0xd542}, 0xc) r3 = socket$unix(0x1, 0x5, 0x0) recvfrom(r3, &(0x7f0000002680)=""/4096, 0x1000, 0x2041, 0x0, 0x0) r4 = pidfd_getfd(0xffffffffffffffff, r2, 0x0) sendmsg$NL80211_CMD_SET_WOWLAN(r4, &(0x7f0000004d40)={&(0x7f0000003680)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000004d00)={&(0x7f00000036c0)={0x1608, 0x0, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x2a}, @val={0x8}, @void}}, [@NL80211_ATTR_WOWLAN_TRIGGERS={0x30, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_NET_DETECT={0x28, 0x12, 0x0, 0x1, [@NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_SCAN_SSIDS={0x14, 0x2d, 0x0, 0x1, [{0xe, 0x0, @random="52fc577dcc047ca6be70"}]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_SCHED_SCAN_INTERVAL={0x8, 0x77, 0x6}]}, @NL80211_WOWLAN_TRIG_DISCONNECT={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x44, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE={0x4}, @NL80211_WOWLAN_TRIG_RFKILL_RELEASE={0x4}, @NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST={0x4}, @NL80211_WOWLAN_TRIG_TCP_CONNECTION={0x30, 0xe, 0x0, 0x1, [@NL80211_WOWLAN_TCP_SRC_IPV4={0x8, 0x1, @multicast1}, @NL80211_WOWLAN_TCP_DST_MAC={0xa, 0x3, @broadcast}, @NL80211_WOWLAN_TCP_DST_MAC={0xa, 0x3, @broadcast}, @NL80211_WOWLAN_TCP_DST_MAC={0xa}]}, @NL80211_WOWLAN_TRIG_MAGIC_PKT={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x1570, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_PKT_PATTERN={0x156c, 0x4, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x1}]}, {0x310, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_MASK={0xa8, 0x1, "aedef16d822856746da3ed14864954345009367454750e1588328ae40ffce86f29790e8b94638c38def9d7c91bcfcc2273c2512d5af76e3cb49a2e451aaf2b4f1fa384224cfe0986690b7fdfa2a16b862b1717a88c3b806887fcf0c15cdee1b5700a21966eb61538425b1da0357bb5bc4502bd7eefe349a6150fb092ea0f1f7e87e64e4e8efe18b6b247135e4a7b10f0febfac062d9fe8ad38cc5ea70d7c12bd70fa1fce"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x40}, @NL80211_PKTPAT_MASK={0xd2, 0x1, "9eca98655ff5779b0f367c1586883d6a36571e25741812a8e2d502d7a0e0144f1037f9953d8a4a8a3e0dc8f4b49bc499adf9ed1247405210c17f906b117ce5559e24732ad88fc3e0fa10c90b28e8bfdd105ebb61b04373b9a810476eae5e247883ce38d30429b3098b7e036452e7edb55cbce9e0cb0e221467411735fffe55deef342d3adaeb2f4b84d30439bfc722ec06d2f1f00802a7670386784654ee840ac38a946d4b32f2c6bd41584df723da860a4cd0ebe627685b52f8a2c53a26a7ead359fdcdd4654c199ffe04d8c220"}, @NL80211_PKTPAT_PATTERN={0xb9, 0x2, "a046003e8db521f07b09c67b83f7cabfcd79725aa8d1beb460c0ebbdb115540cde2eac5febbdd811f03a4d08b768722966b3bf6cff1b8c27489a95e45de6a19a545381d12d6a07a18664720f9947109f36a080663fd0f2b214811e664b67b5c699ba3008faf3a6abcb1478486bcae633a3c20c500072ae7dded5d2e3d4a0a5f49a664561be455eb358d113ad5a3da577804841dff4ff0240c90664ab732ee65227caebb7c2e807ac98d386da45427e60c24aa3c1fd"}, @NL80211_PKTPAT_PATTERN={0xca, 0x2, "0c0fa0939fa69ad2cecaf8fe68f91047f2d50cf24139ee7b0945fb2b2625455c06331afe02103847790f1275a8562d982ffb1861581d710b78583b67cb3e49b13c4d5f92dbc7ab2e67e86b20779a144d000b2d010c4fce8c1beeb9054094ff2c12798c7e34cb4c5915fc1458e9cb786977f9317ddb09cff0093dcc72491b12d0bcbfcca0b4848354f5e7b5d7d22a061985c7a68db6a904e56ce14de98e88d5b2000db2fec2e749ffcae250c0f172c1874c063415ed92f8613d850db017a6eae3269a52d06b72"}]}, {0x124c, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_PATTERN={0xa8, 0x2, "70ae6c0505ea120255983a5be53b963b4a057863199092f024b4f7d6a221dd5674e36dc324dd71542ac58bddbc475c6c34d43255c5a0145b65408e0be350d3cf653083cb6b2f697bcddf93032651b8ed5850906da284ada7241a8d69da8549bedfd46bed032bc341d3f81276c89044e2f4ebe5f92d67408572b96f7167ca9328a0707a996cc7f6f6b33beca5df3fbc0054d3fd1e090ff7368fa26600592f180af09c0ef9"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x8}, @NL80211_PKTPAT_MASK={0xc8, 0x1, "ca1d6302722b4301e091ad6fc3fca415bc9a751ad19df3f3ec8d9af3d01bd8491f5b2dfdaa437321033e65984e5036f8d871cb3c5aa4a79ca00421b25d7f39615a41f41c3e574dfb5d1ea151f4f29a8e0d7c371f3260333d5c4f9a04ccb101564f0759596be430bf9fdce24aada5d592161899ba10f930f5a7a9eb243f44a2dc98335ddf0e7a4f1d6b37a8d0bfa4d7feba66f887ac655cd8ef0be9b922b7a405d67765d274cb3a133d465cf864664896f508eeeac68c9c231cce32e0e9f5320dbbbe14cd"}, @NL80211_PKTPAT_MASK={0xc3, 0x1, "0e9b171f28376945bb780b0182128c435ee191a03841041a400799c5c0ab39559fef87aed560c63f57f78a017b8bcd8d259f8b1e3d0a9b100a01ae362128ccfdb87da5d6fa8c26223ad50eea837e69acd0f721ff4903a89861214839865f146327ae41d127064b2cabfb8ac6312c2644d264c461cac2760c3c18966fa0bbf48ad09a1bd4796bde364ac30c4895196da63ab322b1b2662fc200bb742747e9152e79a11d5278a8e406b05e3fd8c57da92d65b7fdaeb38890d800e3b9dadb80b6"}, @NL80211_PKTPAT_PATTERN={0x1004, 0x2, "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"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x3}]}]}]}]}, 0x1608}, 0x1, 0x0, 0x0, 0x2404c08c}, 0x4) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000004d80), 0x400200, 0x0) bind$bt_l2cap(r5, &(0x7f0000004dc0)={0x1f, 0x1ff, @any, 0x6, 0x2}, 0xe) r6 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000004e00)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) epoll_ctl$EPOLL_CTL_DEL(r4, 0x2, r6) r7 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000004e40), 0x0, 0x0) ioctl$F2FS_IOC_FLUSH_DEVICE(r7, 0x4008f50a, &(0x7f0000004e80)={0x80, 0x5}) bind$bt_l2cap(r1, &(0x7f0000004ec0)={0x1f, 0x5, @none, 0x7}, 0xe) r8 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000004f00), 0x8000, 0x0) ioctl$TUNSETVNETBE(r8, 0x400454de, &(0x7f0000004f40)) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000004fc0)={0x1f, 0x4, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x4}, 0xe) 20:06:18 executing program 5: setxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x1) clock_gettime(0x0, &(0x7f00000004c0)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000440)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000140)=""/246, 0xf6}], 0x1, &(0x7f0000000280)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000340)=""/190, 0xbe}], 0x1}}], 0x2, 0x2, &(0x7f0000000500)={r0, r1+10000000}) mknodat(r6, &(0x7f0000000540)='./file0\x00', 0x40, 0x3) statx(r7, &(0x7f0000000580)='./file0\x00', 0x0, 0x800, &(0x7f00000005c0)) r8 = openat$bsg(0xffffffffffffff9c, &(0x7f00000006c0), 0x2d0000, 0x0) recvmmsg(r8, &(0x7f0000005840)=[{{&(0x7f0000000700)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000780)=""/58, 0x3a}, {&(0x7f00000007c0)=""/239, 0xef}, {&(0x7f00000008c0)=""/122, 0x7a}, {&(0x7f0000000940)=""/167, 0xa7}, {&(0x7f0000000a00)=""/75, 0x4b}], 0x5}, 0x8}, {{&(0x7f0000000b00)=@alg, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000b80)=""/151, 0x97}, {&(0x7f0000000c40)=""/249, 0xf9}, {&(0x7f0000000d40)=""/127, 0x7f}, {&(0x7f0000000dc0)=""/104, 0x68}], 0x4}, 0x6}, {{0x0, 0x0, &(0x7f0000000ec0)=[{&(0x7f0000000e80)=""/51, 0x33}], 0x1}}, {{&(0x7f0000000f00)=@isdn, 0x80, &(0x7f0000002440)=[{&(0x7f0000000f80)}, {&(0x7f0000000fc0)=""/2, 0x2}, {&(0x7f0000001000)=""/169, 0xa9}, {&(0x7f00000010c0)=""/219, 0xdb}, {&(0x7f00000011c0)=""/34, 0x22}, {&(0x7f0000001200)=""/118, 0x76}, {&(0x7f0000001280)=""/160, 0xa0}, {&(0x7f0000001340)=""/66, 0x42}, {&(0x7f00000013c0)=""/101, 0x65}, {&(0x7f0000001440)=""/4096, 0x1000}], 0xa}, 0xf8}, {{0x0, 0x0, &(0x7f0000004800)=[{&(0x7f0000002500)=""/110, 0x6e}, {&(0x7f0000002580)=""/4096, 0x1000}, {&(0x7f0000003580)=""/72, 0x48}, {&(0x7f0000003600)=""/4096, 0x1000}, {&(0x7f0000004600)=""/211, 0xd3}, {&(0x7f0000004700)=""/132, 0x84}, {&(0x7f00000047c0)=""/13, 0xd}], 0x7}, 0x1ff}, {{0x0, 0x0, &(0x7f0000004a80)=[{&(0x7f0000004880)=""/212, 0xd4}, {&(0x7f0000004980)=""/229, 0xe5}], 0x2, &(0x7f0000004ac0)=""/84, 0x54}, 0x80000001}, {{&(0x7f0000004b40)=@alg, 0x80, &(0x7f0000004c40)=[{&(0x7f0000004bc0)=""/87, 0x57}], 0x1, &(0x7f0000004c80)=""/131, 0x83}, 0x8}, {{&(0x7f0000004d40)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @broadcast}}}, 0x80, &(0x7f0000005000)=[{&(0x7f0000004dc0)=""/124, 0x7c}, {&(0x7f0000004e40)=""/215, 0xd7}, {&(0x7f0000004f40)=""/20, 0x14}, {&(0x7f0000004f80)=""/114, 0x72}], 0x4, &(0x7f0000005040)}, 0x3}, {{&(0x7f0000005080)=@l2tp6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000005600)=[{&(0x7f0000005100)=""/177, 0xb1}, {&(0x7f00000051c0)=""/163, 0xa3}, {&(0x7f0000005280)=""/59, 0x3b}, {&(0x7f00000052c0)=""/197, 0xc5}, {&(0x7f00000053c0)=""/162, 0xa2}, {&(0x7f0000005480)=""/190, 0xbe}, {&(0x7f0000005540)=""/175, 0xaf}], 0x7, &(0x7f0000005680)=""/50, 0x32}, 0xffff}, {{&(0x7f00000056c0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000005800)=[{&(0x7f0000005740)=""/178, 0xb2}], 0x1}, 0x5}], 0xa, 0x141, &(0x7f0000005ac0)) openat$sr(0xffffffffffffff9c, &(0x7f0000005b00), 0x4, 0x0) syz_open_procfs(r3, &(0x7f0000005b40)='mountinfo\x00') r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000005b80), r10) r11 = memfd_secret(0x0) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r11, &(0x7f0000005cc0)={&(0x7f0000005bc0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000005c80)={&(0x7f0000005c00)={0x4c, 0x0, 0x1, 0x70bd25, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x8001}, {0x6, 0x11, 0x40}}]}, 0x4c}}, 0x10004) r12 = pidfd_getfd(0xffffffffffffffff, r4, 0x0) vmsplice(r12, &(0x7f0000005f00)=[{&(0x7f0000005d00)="dc18c239a1fbd6c27a2d3bb29e99f4dc09f4040d9c850845bb4c054d10d13bfc7beec9503933a0f400f0c94c7fd76da59cc3de6b21c01842182c3c8186e61d1b8638e974078f7272a33d9cdfb10e27ebd839a25287abbd4aa7c6ccfd2689f8189894870af82dfee5087e0be24f12e0f803a6bc0df806af3cf018b4788965ea6dbd5b50d5c7547a89a98a09fdaf6a18d0df2380d3f177132b527363e15839ebc3702278c52b9c714c15251836ba9f5245e64f6300d641aa9729becd97d13017af34f9b376dbe716", 0xc7}, {&(0x7f0000005e00)="8f943572b1383f158abec16d940284e8ebb31df507edd57fcea5e3b7af30ccdf5017c329f42e8955b958d792f4960aa74c5a5ded4c7803d85e7a707c41f812f8", 0x40}, {&(0x7f0000005e40)="a0009e6520544278e5f3ff59bf77a5200c0c9ac31c3c9ff4aeb8e5192a058a5976df6206a035cc1aa420982025d79e40f3bd5cb73617deb3b0e15e468bab636a0a4bf146679082da2a1351b7ac1b2c1ebbcd421b25ec1f5a63", 0x59}, {&(0x7f0000005ec0)="bbf5e66fb6f19cf3e5fd648609591416fafe95f751c3da2aa79cd648be4674b764ba3a7a4816fc1c330b440754c9179269216c28664c8fb129d40c85", 0x3c}], 0x4, 0x0) ioctl$CDROMVOLCTRL(r2, 0x530a, &(0x7f0000005f40)={0x9, 0x0, 0x1}) mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000008, 0x810, r8, 0x201e3000) fallocate(r12, 0x50, 0x3, 0x2) signalfd(r9, &(0x7f0000005f80)={[0x2]}, 0x8) ioctl$FAT_IOCTL_GET_VOLUME_ID(r5, 0x80047213, &(0x7f0000005fc0)) 20:06:18 executing program 6: mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xa65d3dac74f14396, &(0x7f0000000000)=0x17e, 0x7fffffff, 0x5) mbind(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, &(0x7f0000000040)=0x8, 0x7fff, 0x2) mlock(&(0x7f0000ffd000/0x1000)=nil, 0x1000) r0 = syz_io_uring_complete(0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x1, 0x1010, r0, 0x0) r1 = socket$inet(0x2, 0x4, 0x400) setsockopt$IPT_SO_SET_ADD_COUNTERS(r1, 0x0, 0x41, &(0x7f0000000080)={'mangle\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) r2 = fcntl$dupfd(r0, 0x406, r1) setsockopt$bt_BT_CHANNEL_POLICY(0xffffffffffffffff, 0x112, 0xa, &(0x7f0000000100)=0x6, 0x4) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000140)={0x2, 'tunl0\x00', 0x1}, 0x18) mlock(&(0x7f0000ffe000/0x1000)=nil, 0x1000) ioctl$sock_SIOCGIFCONF(r2, 0x8912, &(0x7f00000001c0)=@req={0x28, &(0x7f0000000180)={'veth0\x00', @ifru_hwaddr=@multicast}}) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000002c0), 0xef9c83fdf7320a1c, 0x0) ioctl$SIOCGSTAMPNS(r3, 0x8907, &(0x7f0000000300)) readv(r3, &(0x7f00000013c0)=[{&(0x7f0000000340)=""/81, 0x51}, {&(0x7f00000003c0)=""/4096, 0x1000}], 0x2) r4 = openat(r2, &(0x7f0000001400)='./file0\x00', 0x10040, 0x21) getsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0x7, &(0x7f0000001440), &(0x7f0000001480)=0x4) ioctl$sock_SIOCDELRT(r3, 0x890c, &(0x7f0000001500)={0x0, @sco={0x1f, @none}, @tipc=@id={0x1e, 0x3, 0x0, {0x4e23, 0x2}}, @can, 0xfff9, 0x0, 0x0, 0x0, 0x1, &(0x7f00000014c0)='batadv0\x00', 0x8, 0x0, 0x4}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000001580)={{0x1, 0x1, 0x18, r3, {0x2}}, './file0\x00'}) ioctl$KDFONTOP_COPY(r5, 0x4b72, &(0x7f00000019c0)={0x3, 0x0, 0xb, 0x1d, 0x4d, &(0x7f00000015c0)}) 20:06:18 executing program 7: sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x40, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'wg0\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x2000c000}, 0x80000) sendmsg$TIPC_NL_NET_GET(0xffffffffffffffff, &(0x7f0000001240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001200)={&(0x7f0000000140)={0x10bc, 0x0, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0x4}, @TIPC_NLA_NET={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x400}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8001}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_TYPE={0x8}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xa380}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x200000}]}, @TIPC_NLA_NODE={0x1010, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x1004, 0x3, "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"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x20}]}, @TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xc81c}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x80000000}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x40}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}]}]}, 0x10bc}}, 0x2404c000) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f00000013c0)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001380)={&(0x7f0000001300)={0x6c, r0, 0x400, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0xe6a5, 0x51}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x1}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xc}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x4}]}, 0x6c}, 0x1, 0x0, 0x0, 0x8050}, 0x8001) r1 = syz_open_dev$vcsa(&(0x7f0000003440), 0x834, 0x10080) sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000003600)={&(0x7f0000003480)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000035c0)={&(0x7f00000034c0)={0xf0, r0, 0x1, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x17}, @val={0x8}, @val={0xc, 0x99, {0xfffffff7, 0x5}}}}, [@NL80211_ATTR_VENDOR_DATA={0xb0, 0xc5, "7d375e5411399e040d661c6b0c584beed428eb688088e1b6602db1c6ad55cec6a1c1016ff954ad6a26ea71df9433aa2f729a74200389f218219e0bacf2a8f4756e0d1cc67fb56e0763bab80eb8d2930c5440934c566dc1a6ebbc5fe7ebbd66b295e0f357b21e3644cc955006a634b7b784e78312ad7f70053e9cdfa4de9df41022ca8cca6c567c8242e592b70b9c82c336d5ad2132aa8ba6998fc108e3ac10ecccb5bb77dc5878f5a48efd59"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x4}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x5}]}, 0xf0}, 0x1, 0x0, 0x0, 0x20040910}, 0x4000000) r2 = openat2(r1, &(0x7f0000003640)='./file0\x00', &(0x7f0000003680)={0x200}, 0x18) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000003700)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_POWER_SAVE(r2, &(0x7f00000037c0)={&(0x7f00000036c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000003780)={&(0x7f0000003740)={0x1c, r0, 0x20, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @void}}, ["", "", "", "", "", "", "", ""]}, 0x1c}}, 0x20000004) sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f00000039c0)={&(0x7f0000003800)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000003980)={&(0x7f0000003840)={0x118, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x3}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffe}]}, @TIPC_NLA_NET={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x2}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xcb8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xfff}]}, @TIPC_NLA_LINK={0xa4, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf6}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x48a1a3c3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x81}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x3004c881}, 0x4000805) sendmsg$DEVLINK_CMD_TRAP_GET(0xffffffffffffffff, &(0x7f0000003b80)={&(0x7f0000003a00)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000003b40)={&(0x7f0000003a40)={0xc4, 0x0, 0x200, 0x70bd25, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}]}, 0xc4}}, 0x854) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000003bc0)={r1, 0x20, 0x40, 0x5}) sendmsg$NL80211_CMD_REQ_SET_REG(r4, &(0x7f0000003e40)={&(0x7f0000003c00)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000003e00)={&(0x7f0000003c40)={0x194, r0, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0xa0, 0x22, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x4}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x89}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xff}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x9}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x80000000}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1f1000}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xffffff93}, @NL80211_ATTR_DFS_CAC_TIME={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x6}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xecb}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7eb}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xff}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x81}]}]}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0xc0, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8000}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x4}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xa0}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x800}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x5}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x9ec5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x100}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0xd39}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x7ff}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x2}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfffffffb}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xd6}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x90}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x800}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xfffffff8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5f7}]}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x16}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x8}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}]}, 0x194}, 0x1, 0x0, 0x0, 0x8020}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000003e80)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4, 0x6}}, './file0\x00'}) sendmsg$NFT_MSG_GETOBJ_RESET(r5, &(0x7f0000003f80)={&(0x7f0000003ec0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000003f40)={&(0x7f0000003f00)={0x38, 0x15, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000040}, 0x55) r6 = openat$random(0xffffffffffffff9c, &(0x7f0000003fc0), 0x40, 0x0) write$binfmt_aout(r6, &(0x7f0000004000)={{0xcc, 0xfe, 0x2, 0x1e6, 0x134, 0x400, 0x3c3, 0x7}, "e178a0cf190f153c068a60da3150bc37cf7cbaf20027303f58ef0b83a2e04d68b39ea06c740cd20c716f7bdd9c8ac26e43f9d53a48f0ae32bfd30379690afb3dfbf5a883160eeada63d7aa4324a18b5ce4cdafcd6f8f55abf6350556e4c7919ab55a07f3ab2d8c8bc56d76f3ccbbf286bc6420a77d47e3289e4ddd10e2d5b93201b959e89ede2c74a7cc", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xaaa) sendmsg$NL80211_CMD_GET_WOWLAN(r1, &(0x7f0000004b80)={&(0x7f0000004ac0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000004b40)={&(0x7f0000004b00)={0x1c, r0, 0x700, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x75}, @void, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000) sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000004cc0)={&(0x7f0000004bc0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000004c80)={&(0x7f0000004c00)={0x48, 0x0, 0x300, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xe96}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0xc090) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000004d00)={r6, 0x401, 0x3, 0x7}) [ 66.280286] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.283556] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.285065] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.288455] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.299742] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.302274] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.313553] Bluetooth: hci0: HCI_REQ-0x0c1a [ 66.337529] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.340668] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.346220] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.349237] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.351401] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.361220] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.363121] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.365820] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 66.368866] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 66.370028] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.372213] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.373634] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.378292] Bluetooth: hci2: HCI_REQ-0x0c1a [ 66.381309] Bluetooth: hci1: HCI_REQ-0x0c1a [ 66.421639] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 66.423185] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 66.425737] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 66.430403] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 66.431909] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 66.434884] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 66.436782] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 66.438107] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 66.442644] Bluetooth: hci7: HCI_REQ-0x0c1a [ 66.443637] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 66.445202] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 66.446360] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 66.448702] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 66.449901] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 66.452650] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 66.454762] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 66.456427] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 66.461628] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 66.463538] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 66.465519] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 66.468167] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 66.469678] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 66.477048] Bluetooth: hci4: HCI_REQ-0x0c1a [ 66.478691] Bluetooth: hci5: HCI_REQ-0x0c1a [ 66.492206] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 66.494207] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 66.496800] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 66.498008] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 66.506266] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 66.508778] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 66.510827] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 66.515198] Bluetooth: hci6: HCI_REQ-0x0c1a [ 66.523315] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 66.524907] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 66.531772] Bluetooth: hci3: HCI_REQ-0x0c1a [ 68.371476] Bluetooth: hci0: command 0x0409 tx timeout [ 68.435094] Bluetooth: hci1: command 0x0409 tx timeout [ 68.435805] Bluetooth: hci2: command 0x0409 tx timeout [ 68.498028] Bluetooth: hci5: command 0x0409 tx timeout [ 68.498741] Bluetooth: hci7: command 0x0409 tx timeout [ 68.499806] Bluetooth: hci4: command 0x0409 tx timeout [ 68.563024] Bluetooth: hci3: command 0x0409 tx timeout [ 68.563697] Bluetooth: hci6: command 0x0409 tx timeout [ 70.418376] Bluetooth: hci0: command 0x041b tx timeout [ 70.483019] Bluetooth: hci2: command 0x041b tx timeout [ 70.483753] Bluetooth: hci1: command 0x041b tx timeout [ 70.546079] Bluetooth: hci4: command 0x041b tx timeout [ 70.546789] Bluetooth: hci7: command 0x041b tx timeout [ 70.547483] Bluetooth: hci5: command 0x041b tx timeout [ 70.610020] Bluetooth: hci6: command 0x041b tx timeout [ 70.610674] Bluetooth: hci3: command 0x041b tx timeout [ 72.466081] Bluetooth: hci0: command 0x040f tx timeout [ 72.530120] Bluetooth: hci1: command 0x040f tx timeout [ 72.530904] Bluetooth: hci2: command 0x040f tx timeout [ 72.595021] Bluetooth: hci5: command 0x040f tx timeout [ 72.595793] Bluetooth: hci7: command 0x040f tx timeout [ 72.596550] Bluetooth: hci4: command 0x040f tx timeout [ 72.658012] Bluetooth: hci3: command 0x040f tx timeout [ 72.658811] Bluetooth: hci6: command 0x040f tx timeout [ 74.514032] Bluetooth: hci0: command 0x0419 tx timeout [ 74.577978] Bluetooth: hci2: command 0x0419 tx timeout [ 74.578480] Bluetooth: hci1: command 0x0419 tx timeout [ 74.642979] Bluetooth: hci4: command 0x0419 tx timeout [ 74.643444] Bluetooth: hci7: command 0x0419 tx timeout [ 74.643874] Bluetooth: hci5: command 0x0419 tx timeout [ 74.707089] Bluetooth: hci6: command 0x0419 tx timeout [ 74.707510] Bluetooth: hci3: command 0x0419 tx timeout 20:07:15 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_9p2000}]}}) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) stat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)) stat(0x0, &(0x7f0000000280)) 20:07:15 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = signalfd4(r0, &(0x7f0000000080)={[0xe1]}, 0x8, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00'}) ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000040)=0xa) 20:07:16 executing program 4: r0 = syz_io_uring_setup(0xfa7, &(0x7f0000000080)={0x0, 0xc89b}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000300)=0x0, &(0x7f0000000000)=0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_setup(0x2175, &(0x7f0000000680)={0x0, 0x1df2, 0xb3b01aa09491ea29, 0xfc, 0x2285}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000380), &(0x7f00000003c0)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r3, &(0x7f0000000400)=0x80, &(0x7f00000005c0)=@isdn, 0x0, 0x80800, 0x1, {0x0, r5}}, 0x3) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffdef) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup/syz1\x00', 0x200002, 0x0) r7 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000800)=[r6, r7], 0x2) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0x1, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r8 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r8, 0x6f, 0x0, 0x5) getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x1b, &(0x7f0000000540), &(0x7f0000000580)=0x4) getsockopt$IP_SET_OP_GET_FNAME(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000640)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f0000000480)=0x10) syz_io_uring_submit(r1, r4, &(0x7f0000000180)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x4}, 0x101) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000280)=@l2tp={0x2, 0x0, @loopback}}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x7d65, &(0x7f00000001c0)={0x0, 0xf798, 0x1, 0x1, 0x60, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000240)) [ 123.231351] audit: type=1400 audit(1664827636.359:7): avc: denied { open } for pid=3811 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.233902] audit: type=1400 audit(1664827636.360:8): avc: denied { kernel } for pid=3811 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.259507] ------------[ cut here ]------------ [ 123.259544] [ 123.259549] ====================================================== [ 123.259555] WARNING: possible circular locking dependency detected [ 123.259562] 6.0.0-rc7-next-20220930 #1 Not tainted [ 123.259574] ------------------------------------------------------ [ 123.259580] syz-executor.4/3813 is trying to acquire lock: [ 123.259592] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 123.259660] [ 123.259660] but task is already holding lock: [ 123.259665] ffff88800fb41820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 123.259712] [ 123.259712] which lock already depends on the new lock. [ 123.259712] [ 123.259718] [ 123.259718] the existing dependency chain (in reverse order) is: [ 123.259724] [ 123.259724] -> #3 (&ctx->lock){....}-{2:2}: [ 123.259749] _raw_spin_lock+0x2a/0x40 [ 123.259770] __perf_event_task_sched_out+0x53b/0x18d0 [ 123.259790] __schedule+0xedd/0x2470 [ 123.259816] preempt_schedule_common+0x45/0xc0 [ 123.259843] __cond_resched+0x17/0x30 [ 123.259869] __mutex_lock+0xa3/0x14d0 [ 123.259896] __do_sys_perf_event_open+0x1eec/0x32c0 [ 123.259921] do_syscall_64+0x3b/0x90 [ 123.259953] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.259976] [ 123.259976] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 123.260001] _raw_spin_lock_nested+0x30/0x40 [ 123.260020] raw_spin_rq_lock_nested+0x1e/0x30 [ 123.260044] task_fork_fair+0x63/0x4d0 [ 123.260074] sched_cgroup_fork+0x3d0/0x540 [ 123.260100] copy_process+0x4183/0x6e20 [ 123.260119] kernel_clone+0xe7/0x890 [ 123.260137] user_mode_thread+0xad/0xf0 [ 123.260155] rest_init+0x24/0x250 [ 123.260177] arch_call_rest_init+0xf/0x14 [ 123.260207] start_kernel+0x4c6/0x4eb [ 123.260235] secondary_startup_64_no_verify+0xe0/0xeb [ 123.260260] [ 123.260260] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 123.260285] _raw_spin_lock_irqsave+0x39/0x60 [ 123.260305] try_to_wake_up+0xab/0x1930 [ 123.260329] up+0x75/0xb0 [ 123.260354] __up_console_sem+0x6e/0x80 [ 123.260383] console_unlock+0x46a/0x590 [ 123.260412] do_con_write+0xc05/0x1d50 [ 123.260431] con_write+0x21/0x40 [ 123.260447] n_tty_write+0x4d4/0xfe0 [ 123.260468] file_tty_write.constprop.0+0x455/0x8a0 [ 123.260489] vfs_write+0x9c3/0xd90 [ 123.260518] ksys_write+0x127/0x250 [ 123.260546] do_syscall_64+0x3b/0x90 [ 123.260577] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.260600] [ 123.260600] -> #0 ((console_sem).lock){....}-{2:2}: [ 123.260625] __lock_acquire+0x2a02/0x5e70 [ 123.260655] lock_acquire+0x1a2/0x530 [ 123.260684] _raw_spin_lock_irqsave+0x39/0x60 [ 123.260704] down_trylock+0xe/0x70 [ 123.260731] __down_trylock_console_sem+0x3b/0xd0 [ 123.260760] vprintk_emit+0x16b/0x560 [ 123.260790] vprintk+0x84/0xa0 [ 123.260819] _printk+0xba/0xf1 [ 123.260839] report_bug.cold+0x72/0xab [ 123.260868] handle_bug+0x3c/0x70 [ 123.260898] exc_invalid_op+0x14/0x50 [ 123.260929] asm_exc_invalid_op+0x16/0x20 [ 123.260951] group_sched_out.part.0+0x2c7/0x460 [ 123.260984] ctx_sched_out+0x8f1/0xc10 [ 123.261015] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.261035] __schedule+0xedd/0x2470 [ 123.261059] preempt_schedule_common+0x45/0xc0 [ 123.261087] __cond_resched+0x17/0x30 [ 123.261112] __mutex_lock+0xa3/0x14d0 [ 123.261139] __do_sys_perf_event_open+0x1eec/0x32c0 [ 123.261160] do_syscall_64+0x3b/0x90 [ 123.261190] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.261213] [ 123.261213] other info that might help us debug this: [ 123.261213] [ 123.261218] Chain exists of: [ 123.261218] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 123.261218] [ 123.261245] Possible unsafe locking scenario: [ 123.261245] [ 123.261250] CPU0 CPU1 [ 123.261254] ---- ---- [ 123.261258] lock(&ctx->lock); [ 123.261268] lock(&rq->__lock); [ 123.261280] lock(&ctx->lock); [ 123.261291] lock((console_sem).lock); [ 123.261302] [ 123.261302] *** DEADLOCK *** [ 123.261302] [ 123.261305] 2 locks held by syz-executor.4/3813: [ 123.261318] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 123.261372] #1: ffff88800fb41820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 123.261420] [ 123.261420] stack backtrace: [ 123.261425] CPU: 1 PID: 3813 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220930 #1 [ 123.261448] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 123.261462] Call Trace: [ 123.261467] [ 123.261474] dump_stack_lvl+0x8b/0xb3 [ 123.261508] check_noncircular+0x263/0x2e0 [ 123.261538] ? format_decode+0x26c/0xb50 [ 123.261567] ? print_circular_bug+0x450/0x450 [ 123.261599] ? simple_strtoul+0x30/0x30 [ 123.261625] ? __lockdep_reset_lock+0x180/0x180 [ 123.261656] ? format_decode+0x26c/0xb50 [ 123.261688] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 123.261720] __lock_acquire+0x2a02/0x5e70 [ 123.261759] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 123.261801] lock_acquire+0x1a2/0x530 [ 123.261831] ? down_trylock+0xe/0x70 [ 123.261863] ? lock_release+0x750/0x750 [ 123.261893] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 123.261932] ? vprintk+0x84/0xa0 [ 123.261965] _raw_spin_lock_irqsave+0x39/0x60 [ 123.261985] ? down_trylock+0xe/0x70 [ 123.262015] down_trylock+0xe/0x70 [ 123.262044] ? vprintk+0x84/0xa0 [ 123.262075] __down_trylock_console_sem+0x3b/0xd0 [ 123.262106] vprintk_emit+0x16b/0x560 [ 123.262137] ? lock_downgrade+0x6d0/0x6d0 [ 123.262171] vprintk+0x84/0xa0 [ 123.262203] _printk+0xba/0xf1 [ 123.262224] ? record_print_text.cold+0x16/0x16 [ 123.262249] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 123.262275] ? lock_downgrade+0x6d0/0x6d0 [ 123.262307] ? report_bug.cold+0x66/0xab [ 123.262340] ? group_sched_out.part.0+0x2c7/0x460 [ 123.262373] report_bug.cold+0x72/0xab [ 123.262408] handle_bug+0x3c/0x70 [ 123.262440] exc_invalid_op+0x14/0x50 [ 123.262473] asm_exc_invalid_op+0x16/0x20 [ 123.262496] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 123.262534] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 123.262555] RSP: 0018:ffff888040def978 EFLAGS: 00010006 [ 123.262571] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 123.262585] RDX: ffff8880186bb580 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 123.262599] RBP: ffff888040e305c8 R08: 0000000000000005 R09: 0000000000000001 [ 123.262612] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800fb41800 [ 123.262626] R13: ffff88806cf3d2c0 R14: ffffffff8547c960 R15: 0000000000000002 [ 123.262646] ? group_sched_out.part.0+0x2c7/0x460 [ 123.262683] ? group_sched_out.part.0+0x2c7/0x460 [ 123.262719] ctx_sched_out+0x8f1/0xc10 [ 123.262755] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.262780] ? lock_is_held_type+0xd7/0x130 [ 123.262806] ? __perf_cgroup_move+0x160/0x160 [ 123.262825] ? set_next_entity+0x304/0x550 [ 123.262858] ? update_curr+0x267/0x740 [ 123.262891] ? lock_is_held_type+0xd7/0x130 [ 123.262917] __schedule+0xedd/0x2470 [ 123.262948] ? io_schedule_timeout+0x150/0x150 [ 123.262976] ? find_held_lock+0x2c/0x110 [ 123.263006] ? lock_is_held_type+0xd7/0x130 [ 123.263030] ? __cond_resched+0x17/0x30 [ 123.263058] preempt_schedule_common+0x45/0xc0 [ 123.263088] __cond_resched+0x17/0x30 [ 123.263115] __mutex_lock+0xa3/0x14d0 [ 123.263146] ? irqentry_enter+0x26/0x60 [ 123.263169] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 123.263191] ? asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 123.263220] ? mutex_lock_io_nested+0x1310/0x1310 [ 123.263250] ? lockdep_hardirqs_on+0x79/0x100 [ 123.263274] ? asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 123.263306] ? __do_sys_perf_event_open+0x1ec7/0x32c0 [ 123.263332] __do_sys_perf_event_open+0x1eec/0x32c0 [ 123.263360] ? perf_compat_ioctl+0x130/0x130 [ 123.263389] ? xfd_validate_state+0x59/0x180 [ 123.263430] ? syscall_enter_from_user_mode+0x1d/0x50 [ 123.263455] ? syscall_enter_from_user_mode+0x1d/0x50 [ 123.263484] do_syscall_64+0x3b/0x90 [ 123.263516] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.263541] RIP: 0033:0x7f187420fb19 [ 123.263556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.263576] RSP: 002b:00007f1871785188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 123.263596] RAX: ffffffffffffffda RBX: 00007f1874322f60 RCX: 00007f187420fb19 [ 123.263610] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 123.263624] RBP: 00007f1874269f6d R08: 0000000000000000 R09: 0000000000000000 [ 123.263637] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 123.263650] R13: 00007ffd91d3671f R14: 00007f1871785300 R15: 0000000000022000 [ 123.263673] [ 123.377847] WARNING: CPU: 1 PID: 3813 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 123.379070] Modules linked in: [ 123.379544] CPU: 1 PID: 3813 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220930 #1 [ 123.380732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 123.382701] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 123.383654] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 123.385973] RSP: 0018:ffff888040def978 EFLAGS: 00010006 [ 123.386656] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 123.387593] RDX: ffff8880186bb580 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 123.388508] RBP: ffff888040e305c8 R08: 0000000000000005 R09: 0000000000000001 [ 123.389418] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800fb41800 [ 123.390322] R13: ffff88806cf3d2c0 R14: ffffffff8547c960 R15: 0000000000000002 [ 123.391239] FS: 00007f1871785700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 123.392290] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.393047] CR2: 00007fa36ee40000 CR3: 00000000188ec000 CR4: 0000000000350ee0 [ 123.393978] Call Trace: [ 123.394324] [ 123.394636] ctx_sched_out+0x8f1/0xc10 [ 123.395163] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.395895] ? lock_is_held_type+0xd7/0x130 [ 123.396483] ? __perf_cgroup_move+0x160/0x160 [ 123.397095] ? set_next_entity+0x304/0x550 [ 123.397680] ? update_curr+0x267/0x740 [ 123.398224] ? lock_is_held_type+0xd7/0x130 [ 123.398799] __schedule+0xedd/0x2470 [ 123.399316] ? io_schedule_timeout+0x150/0x150 [ 123.399952] ? find_held_lock+0x2c/0x110 [ 123.400517] ? lock_is_held_type+0xd7/0x130 [ 123.401095] ? __cond_resched+0x17/0x30 [ 123.401641] preempt_schedule_common+0x45/0xc0 [ 123.402278] __cond_resched+0x17/0x30 [ 123.402807] __mutex_lock+0xa3/0x14d0 [ 123.403335] ? irqentry_enter+0x26/0x60 [ 123.403885] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 123.404586] ? asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 123.405325] ? mutex_lock_io_nested+0x1310/0x1310 [ 123.405996] ? lockdep_hardirqs_on+0x79/0x100 [ 123.406620] ? asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 123.407362] ? __do_sys_perf_event_open+0x1ec7/0x32c0 [ 123.408088] __do_sys_perf_event_open+0x1eec/0x32c0 [ 123.408758] ? perf_compat_ioctl+0x130/0x130 [ 123.409367] ? xfd_validate_state+0x59/0x180 [ 123.409994] ? syscall_enter_from_user_mode+0x1d/0x50 [ 123.410688] ? syscall_enter_from_user_mode+0x1d/0x50 [ 123.411407] do_syscall_64+0x3b/0x90 [ 123.411939] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.412643] RIP: 0033:0x7f187420fb19 [ 123.413156] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.415551] RSP: 002b:00007f1871785188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 123.416574] RAX: ffffffffffffffda RBX: 00007f1874322f60 RCX: 00007f187420fb19 [ 123.417543] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 123.418495] RBP: 00007f1874269f6d R08: 0000000000000000 R09: 0000000000000000 [ 123.419464] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 123.420414] R13: 00007ffd91d3671f R14: 00007f1871785300 R15: 0000000000022000 [ 123.421384] [ 123.421706] irq event stamp: 3848 [ 123.422158] hardirqs last enabled at (3847): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 123.423472] hardirqs last disabled at (3848): [] __schedule+0x1225/0x2470 [ 123.424593] softirqs last enabled at (3792): [] __irq_exit_rcu+0x11b/0x180 [ 123.425750] softirqs last disabled at (3745): [] __irq_exit_rcu+0x11b/0x180 [ 123.426904] ---[ end trace 0000000000000000 ]--- 20:07:16 executing program 7: r0 = syz_io_uring_setup(0xfa7, &(0x7f0000000080)={0x0, 0x4, 0x0, 0x2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)=0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_setup(0x2175, &(0x7f0000000680)={0x0, 0x1df2, 0x4, 0x102, 0x285}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000380), &(0x7f00000003c0)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r3, &(0x7f0000000400)=0x80, &(0x7f00000005c0)=@isdn, 0x0, 0x80800, 0x1, {0x0, r5}}, 0x3) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffdef) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup/syz1\x00', 0x200002, 0x0) r7 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000800)=[r6, r7], 0x2) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r8, 0x0, 0x0, 0x87ffffc) getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x1b, &(0x7f0000000540), &(0x7f0000000580)=0x4) getsockopt$IP_SET_OP_GET_FNAME(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000640)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f0000000480)=0x10) syz_io_uring_submit(r1, r4, &(0x7f0000000180)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x4}, 0x101) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000280)=@l2tp={0x2, 0x0, @loopback}}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x7d65, &(0x7f00000001c0)={0x0, 0xf798, 0x4, 0x1, 0x60, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000240)) 20:07:16 executing program 2: r0 = socket$inet(0x2, 0xa, 0x0) r1 = accept$inet(r0, 0x0, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000040)={{{@in=@remote, @in6=@empty}}, {{@in=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000000140)=0xe8) socket$inet_tcp(0x2, 0x1, 0x0) close_range(r0, r1, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) setsockopt$inet_mreqsrc(r3, 0x0, 0x26, &(0x7f0000000000)={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0xa}}, 0xc) [ 123.857859] syz-executor.2 uses obsolete (PF_INET,SOCK_PACKET) [ 123.973933] hrtimer: interrupt took 15830 ns 20:07:17 executing program 4: r0 = syz_io_uring_setup(0xfa7, &(0x7f0000000080)={0x0, 0xc89b}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000300)=0x0, &(0x7f0000000000)=0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_setup(0x2175, &(0x7f0000000680)={0x0, 0x1df2, 0xb3b01aa09491ea29, 0xfc, 0x2285}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000380), &(0x7f00000003c0)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r3, &(0x7f0000000400)=0x80, &(0x7f00000005c0)=@isdn, 0x0, 0x80800, 0x1, {0x0, r5}}, 0x3) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffdef) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup/syz1\x00', 0x200002, 0x0) r7 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000800)=[r6, r7], 0x2) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0x1, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r8 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r8, 0x6f, 0x0, 0x5) getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x1b, &(0x7f0000000540), &(0x7f0000000580)=0x4) getsockopt$IP_SET_OP_GET_FNAME(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000640)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f0000000480)=0x10) syz_io_uring_submit(r1, r4, &(0x7f0000000180)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x4}, 0x101) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000280)=@l2tp={0x2, 0x0, @loopback}}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x7d65, &(0x7f00000001c0)={0x0, 0xf798, 0x1, 0x1, 0x60, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000240)) 20:07:17 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x141042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) pipe2(&(0x7f0000000080), 0x0) sendfile(r2, r1, 0x0, 0xffff) mkdirat(r1, &(0x7f0000000040)='./file1\x00', 0x14) r3 = socket$inet_tcp(0x2, 0x1, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) getsockopt$ARPT_SO_GET_INFO(r3, 0x0, 0x60, &(0x7f00000000c0)={'filter\x00', 0x0, [0x9, 0x8000, 0x8]}, &(0x7f0000000140)=0x44) pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0) fallocate(r0, 0x3, 0x0, 0x7) 20:07:17 executing program 7: r0 = syz_io_uring_setup(0xfa7, &(0x7f0000000080)={0x0, 0x4, 0x0, 0x2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)=0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_setup(0x2175, &(0x7f0000000680)={0x0, 0x1df2, 0x4, 0x102, 0x285}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000380), &(0x7f00000003c0)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r3, &(0x7f0000000400)=0x80, &(0x7f00000005c0)=@isdn, 0x0, 0x80800, 0x1, {0x0, r5}}, 0x3) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfffffdef) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup/syz1\x00', 0x200002, 0x0) r7 = syz_open_dev$tty20(0xc, 0x4, 0x1) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000800)=[r6, r7], 0x2) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r8, 0x0, 0x0, 0x87ffffc) getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x1b, &(0x7f0000000540), &(0x7f0000000580)=0x4) getsockopt$IP_SET_OP_GET_FNAME(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000640)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f0000000480)=0x10) syz_io_uring_submit(r1, r4, &(0x7f0000000180)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x4}, 0x101) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x80, &(0x7f0000000280)=@l2tp={0x2, 0x0, @loopback}}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x7d65, &(0x7f00000001c0)={0x0, 0xf798, 0x4, 0x1, 0x60, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000240)) [ 127.702814] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 127.704280] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 127.706438] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 127.708727] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 127.710783] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 127.711987] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 127.715023] Bluetooth: hci5: HCI_REQ-0x0c1a [ 127.721292] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 127.723202] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 127.725084] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 127.727139] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 127.728442] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 127.730057] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 127.735225] Bluetooth: hci1: HCI_REQ-0x0c1a [ 129.745997] Bluetooth: hci1: command 0x0409 tx timeout [ 129.746713] Bluetooth: hci5: command 0x0409 tx timeout [ 129.810008] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 131.794032] Bluetooth: hci5: command 0x041b tx timeout [ 131.794899] Bluetooth: hci1: command 0x041b tx timeout VM DIAGNOSIS: 20:07:16 Registers: info registers vcpu 0 RAX=1ffff110026c8fa9 RBX=ffff8880126d2fa0 RCX=1ffff110024da5fa RDX=dffffc0000000000 RSI=ffff8880405bd500 RDI=ffff888013647d48 RBP=ffff8880405bd400 RSP=ffff88803ef8f948 R8 =0000000000000001 R9 =0000000000000246 R10=ffffed1007df1f17 R11=0000000000000001 R12=ffff888018962048 R13=0000000000000000 R14=ffff888013647d18 R15=ffff888018962000 RIP=ffffffff817bc706 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fca492fc540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fca493cd710 CR3=0000000017554000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ff00ffffffffffff 0000000000000000 YMM01=0000000000000000 0000000000000000 0100010001000000 ffffffffffffffff YMM02=0000000000000000 0000000000000000 0500050005000000 455441564952505f YMM03=0000000000000000 0000000000000000 0000000000000000 000000564952505f YMM04=0000000000000000 0000000000000000 0003000500050005 0005000000455441 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff888040def3c0 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006e R11=0000000000000001 R12=000000000000006e R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1871785700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa36ee40000 CR3=00000000188ec000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000