Warning: Permanently added '[localhost]:49725' (ECDSA) to the list of known hosts. 2022/10/03 23:35:18 fuzzer started 2022/10/03 23:35:19 dialing manager at localhost:35095 syzkaller login: [ 43.996396] cgroup: Unknown subsys name 'net' [ 44.089295] cgroup: Unknown subsys name 'rlimit' 2022/10/03 23:35:33 syscalls: 2215 2022/10/03 23:35:33 code coverage: enabled 2022/10/03 23:35:33 comparison tracing: enabled 2022/10/03 23:35:33 extra coverage: enabled 2022/10/03 23:35:33 setuid sandbox: enabled 2022/10/03 23:35:33 namespace sandbox: enabled 2022/10/03 23:35:33 Android sandbox: enabled 2022/10/03 23:35:33 fault injection: enabled 2022/10/03 23:35:33 leak checking: enabled 2022/10/03 23:35:33 net packet injection: enabled 2022/10/03 23:35:33 net device setup: enabled 2022/10/03 23:35:33 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/03 23:35:33 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/03 23:35:33 USB emulation: enabled 2022/10/03 23:35:33 hci packet injection: enabled 2022/10/03 23:35:33 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/03 23:35:33 802.15.4 emulation: enabled 2022/10/03 23:35:33 fetching corpus: 50, signal 19600/21459 (executing program) 2022/10/03 23:35:33 fetching corpus: 100, signal 30440/34034 (executing program) 2022/10/03 23:35:34 fetching corpus: 150, signal 39326/44576 (executing program) 2022/10/03 23:35:34 fetching corpus: 200, signal 46071/52885 (executing program) 2022/10/03 23:35:34 fetching corpus: 250, signal 55110/63311 (executing program) 2022/10/03 23:35:34 fetching corpus: 300, signal 60404/70049 (executing program) 2022/10/03 23:35:34 fetching corpus: 350, signal 67095/78068 (executing program) 2022/10/03 23:35:34 fetching corpus: 400, signal 70449/82813 (executing program) 2022/10/03 23:35:34 fetching corpus: 450, signal 74102/87791 (executing program) 2022/10/03 23:35:34 fetching corpus: 500, signal 76828/91852 (executing program) 2022/10/03 23:35:35 fetching corpus: 550, signal 78297/94721 (executing program) 2022/10/03 23:35:35 fetching corpus: 600, signal 81908/99496 (executing program) 2022/10/03 23:35:35 fetching corpus: 650, signal 85206/104014 (executing program) 2022/10/03 23:35:35 fetching corpus: 700, signal 87946/107983 (executing program) 2022/10/03 23:35:35 fetching corpus: 750, signal 94796/115631 (executing program) 2022/10/03 23:35:35 fetching corpus: 800, signal 97622/119545 (executing program) 2022/10/03 23:35:35 fetching corpus: 850, signal 100418/123422 (executing program) 2022/10/03 23:35:36 fetching corpus: 900, signal 103670/127621 (executing program) 2022/10/03 23:35:36 fetching corpus: 950, signal 105363/130465 (executing program) 2022/10/03 23:35:36 fetching corpus: 1000, signal 107935/134031 (executing program) 2022/10/03 23:35:36 fetching corpus: 1050, signal 108955/136233 (executing program) 2022/10/03 23:35:36 fetching corpus: 1100, signal 110328/138714 (executing program) 2022/10/03 23:35:36 fetching corpus: 1150, signal 112211/141634 (executing program) 2022/10/03 23:35:36 fetching corpus: 1200, signal 113721/144225 (executing program) 2022/10/03 23:35:36 fetching corpus: 1250, signal 115267/146842 (executing program) 2022/10/03 23:35:36 fetching corpus: 1300, signal 116733/149318 (executing program) 2022/10/03 23:35:37 fetching corpus: 1350, signal 118307/151881 (executing program) 2022/10/03 23:35:37 fetching corpus: 1400, signal 120274/154787 (executing program) 2022/10/03 23:35:37 fetching corpus: 1450, signal 121756/157252 (executing program) 2022/10/03 23:35:37 fetching corpus: 1500, signal 124234/160521 (executing program) 2022/10/03 23:35:37 fetching corpus: 1550, signal 125979/163096 (executing program) 2022/10/03 23:35:37 fetching corpus: 1600, signal 127895/165815 (executing program) 2022/10/03 23:35:37 fetching corpus: 1650, signal 129711/168461 (executing program) 2022/10/03 23:35:37 fetching corpus: 1700, signal 131657/171139 (executing program) 2022/10/03 23:35:38 fetching corpus: 1750, signal 132363/172848 (executing program) 2022/10/03 23:35:38 fetching corpus: 1800, signal 134228/175458 (executing program) 2022/10/03 23:35:38 fetching corpus: 1850, signal 135941/177889 (executing program) 2022/10/03 23:35:38 fetching corpus: 1900, signal 137657/180300 (executing program) 2022/10/03 23:35:38 fetching corpus: 1950, signal 139834/183029 (executing program) 2022/10/03 23:35:38 fetching corpus: 2000, signal 141124/185098 (executing program) 2022/10/03 23:35:38 fetching corpus: 2050, signal 141869/186753 (executing program) 2022/10/03 23:35:38 fetching corpus: 2100, signal 143368/188958 (executing program) 2022/10/03 23:35:39 fetching corpus: 2150, signal 145303/191413 (executing program) 2022/10/03 23:35:39 fetching corpus: 2200, signal 147150/193852 (executing program) 2022/10/03 23:35:39 fetching corpus: 2250, signal 148087/195588 (executing program) 2022/10/03 23:35:39 fetching corpus: 2300, signal 149022/197265 (executing program) 2022/10/03 23:35:39 fetching corpus: 2350, signal 150470/199400 (executing program) 2022/10/03 23:35:39 fetching corpus: 2400, signal 151830/201319 (executing program) 2022/10/03 23:35:39 fetching corpus: 2450, signal 152999/203172 (executing program) 2022/10/03 23:35:39 fetching corpus: 2500, signal 154484/205174 (executing program) 2022/10/03 23:35:40 fetching corpus: 2550, signal 155548/206899 (executing program) 2022/10/03 23:35:40 fetching corpus: 2600, signal 156245/208321 (executing program) 2022/10/03 23:35:40 fetching corpus: 2650, signal 157453/210139 (executing program) 2022/10/03 23:35:40 fetching corpus: 2700, signal 158321/211666 (executing program) 2022/10/03 23:35:40 fetching corpus: 2750, signal 159241/213251 (executing program) 2022/10/03 23:35:40 fetching corpus: 2800, signal 160012/214789 (executing program) 2022/10/03 23:35:40 fetching corpus: 2850, signal 161095/216418 (executing program) 2022/10/03 23:35:40 fetching corpus: 2900, signal 162198/218039 (executing program) 2022/10/03 23:35:40 fetching corpus: 2950, signal 162889/219438 (executing program) 2022/10/03 23:35:41 fetching corpus: 3000, signal 164738/221574 (executing program) 2022/10/03 23:35:41 fetching corpus: 3050, signal 166484/223521 (executing program) 2022/10/03 23:35:41 fetching corpus: 3100, signal 167175/224962 (executing program) 2022/10/03 23:35:41 fetching corpus: 3150, signal 167983/226361 (executing program) 2022/10/03 23:35:41 fetching corpus: 3200, signal 168599/227697 (executing program) 2022/10/03 23:35:41 fetching corpus: 3250, signal 169374/229048 (executing program) 2022/10/03 23:35:41 fetching corpus: 3300, signal 170133/230429 (executing program) 2022/10/03 23:35:41 fetching corpus: 3350, signal 170828/231734 (executing program) 2022/10/03 23:35:42 fetching corpus: 3400, signal 171967/233357 (executing program) 2022/10/03 23:35:42 fetching corpus: 3450, signal 173306/235029 (executing program) 2022/10/03 23:35:42 fetching corpus: 3500, signal 173713/236150 (executing program) 2022/10/03 23:35:42 fetching corpus: 3550, signal 174270/237332 (executing program) 2022/10/03 23:35:42 fetching corpus: 3600, signal 174904/238545 (executing program) 2022/10/03 23:35:42 fetching corpus: 3650, signal 175969/239967 (executing program) 2022/10/03 23:35:42 fetching corpus: 3700, signal 176803/241318 (executing program) 2022/10/03 23:35:42 fetching corpus: 3750, signal 177375/242499 (executing program) 2022/10/03 23:35:42 fetching corpus: 3800, signal 178097/243749 (executing program) 2022/10/03 23:35:43 fetching corpus: 3850, signal 179045/245106 (executing program) 2022/10/03 23:35:43 fetching corpus: 3900, signal 179836/246319 (executing program) 2022/10/03 23:35:43 fetching corpus: 3950, signal 180401/247464 (executing program) 2022/10/03 23:35:43 fetching corpus: 4000, signal 181023/248539 (executing program) 2022/10/03 23:35:43 fetching corpus: 4050, signal 181927/249796 (executing program) 2022/10/03 23:35:43 fetching corpus: 4100, signal 182358/250841 (executing program) 2022/10/03 23:35:43 fetching corpus: 4150, signal 182958/251937 (executing program) 2022/10/03 23:35:43 fetching corpus: 4200, signal 183261/252938 (executing program) 2022/10/03 23:35:43 fetching corpus: 4250, signal 184501/254298 (executing program) 2022/10/03 23:35:44 fetching corpus: 4300, signal 184930/255337 (executing program) 2022/10/03 23:35:44 fetching corpus: 4350, signal 185372/256352 (executing program) 2022/10/03 23:35:44 fetching corpus: 4400, signal 185988/257457 (executing program) 2022/10/03 23:35:44 fetching corpus: 4450, signal 186609/258509 (executing program) 2022/10/03 23:35:44 fetching corpus: 4500, signal 187728/259757 (executing program) 2022/10/03 23:35:44 fetching corpus: 4550, signal 189423/261252 (executing program) 2022/10/03 23:35:44 fetching corpus: 4600, signal 190576/262463 (executing program) 2022/10/03 23:35:44 fetching corpus: 4650, signal 190998/263381 (executing program) 2022/10/03 23:35:45 fetching corpus: 4700, signal 191497/264357 (executing program) 2022/10/03 23:35:45 fetching corpus: 4750, signal 191783/265236 (executing program) 2022/10/03 23:35:45 fetching corpus: 4800, signal 192291/266205 (executing program) 2022/10/03 23:35:45 fetching corpus: 4850, signal 193190/267298 (executing program) 2022/10/03 23:35:45 fetching corpus: 4900, signal 193743/268300 (executing program) 2022/10/03 23:35:45 fetching corpus: 4950, signal 194129/269197 (executing program) 2022/10/03 23:35:45 fetching corpus: 5000, signal 194700/270152 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/270953 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/271691 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/272468 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/273213 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/273943 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/274714 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/275508 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/276260 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/276960 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/277699 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/278479 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/279254 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/279983 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/280757 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/281500 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/282262 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/283063 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/283855 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/284621 (executing program) 2022/10/03 23:35:45 fetching corpus: 5001, signal 194785/285389 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/286131 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/286877 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/287622 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/288386 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/289137 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/289927 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/290705 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/291444 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/292224 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/292999 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/293774 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/294563 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/295300 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/296085 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/296827 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/297577 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/298339 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/299057 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/299779 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/300579 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/301350 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/302115 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/302870 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/303610 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/304346 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/305052 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/305783 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/306552 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/307316 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/308075 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/308847 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/309599 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/310359 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/311122 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/311188 (executing program) 2022/10/03 23:35:46 fetching corpus: 5001, signal 194785/311188 (executing program) 2022/10/03 23:35:49 starting 8 fuzzer processes 23:35:49 executing program 0: r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, r0, 0x0, 0x70bd25, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x38}, 0x1, 0x0, 0x0, 0x2000c000}, 0x4084) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), r2) sendmsg$NL802154_CMD_SET_CCA_MODE(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r0, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x1}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_CCA_OPT={0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x1}, 0x20020000) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000340)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_GET_WPAN_PHY(r2, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x54, r3, 0x800, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000000}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r1}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x4040080) syz_genetlink_get_family_id$nl802154(&(0x7f0000000480), r2) syz_genetlink_get_family_id$nl802154(&(0x7f00000004c0), r2) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000540), r2) sendmsg$NL802154_CMD_SET_CCA_MODE(r2, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x24, r5, 0x20, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0xc001}, 0x1) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r6, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x7c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x800}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x708}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x2}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x10000}]}, 0x7c}}, 0x8005) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_ACCEPT(r7, &(0x7f0000000880)={&(0x7f0000000780), 0xc, &(0x7f0000000840)={&(0x7f00000007c0)={0x58, 0x0, 0x4, 0x70bd25, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @loopback}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @ipv4={'\x00', '\xff\xff', @loopback}}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f00000008c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x400}}, './file0\x00'}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r8, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x30, 0x0, 0x4, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x52}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xff}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000001}, 0x20000010) sendmsg$NFT_MSG_GETGEN(r8, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x14, 0x10, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x6}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x8081) sendmsg$NL802154_CMD_GET_WPAN_PHY(r2, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x2810092}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x1c, 0x0, 0x20, 0x70bd28, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48000}, 0x20000000) 23:35:49 executing program 1: sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x44, 0x0, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x3}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x13}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x3}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x40) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f0000000200)={'ip6_vti0\x00', &(0x7f0000000180)={'ip6gre0\x00', 0x0, 0x29, 0x3, 0x4, 0xffff, 0x40, @remote, @mcast1, 0x8000, 0x0, 0x46d, 0x8}}) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000240)={@dev, @initdev, 0x0}, &(0x7f0000000280)=0xc) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000340)={'tunl0\x00', &(0x7f00000002c0)={'tunl0\x00', 0x0, 0x20, 0x10, 0x401, 0x7df29a21, {{0xf, 0x4, 0x0, 0x2e, 0x3c, 0x68, 0x0, 0x1, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0x35}, @rand_addr=0x64010100, {[@timestamp_prespec={0x44, 0x14, 0xcf, 0x3, 0x8, [{@remote, 0xfffff075}, {@broadcast, 0xeac}]}, @generic={0x88, 0x11, "b8eb2a7dbe5d950181bff6485c544c"}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000400)={'sit0\x00', &(0x7f0000000380)={'ip6tnl0\x00', 0x0, 0x2f, 0xf9, 0x8f, 0x9, 0x0, @empty, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x700, 0x20, 0xd, 0x6}}) sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x32009001}, 0xc, &(0x7f00000005c0)={&(0x7f0000000440)={0x154, 0x0, 0x2, 0x70bd29, 0x25dfdbfc, {}, [@HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}]}, @HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'rose0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x154}, 0x1, 0x0, 0x0, 0x200080c0}, 0x40) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000640)={'wg0\x00'}) sendmsg$BATADV_CMD_GET_HARDIF(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x34, 0x0, 0x0, 0x70bd26, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x6}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x200}]}, 0x34}, 0x1, 0x0, 0x0, 0x4860}, 0x2000c090) sendto$packet(0xffffffffffffffff, &(0x7f0000000780)="77b7fbb20a8e0c9de8591fb1ae540fad6f6fe898efa2d271347bd167668ef96b1897f9c2b0e96e1b86e29806b23eee6767447360bc0e01b0db0737121b16342d061f0c179da615c6cdac", 0x4a, 0x8d5, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000800)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x7fffffff) sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000940)={&(0x7f0000000880)={0x94, 0x0, 0x1, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x401}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffff8000}, @IPVS_CMD_ATTR_DEST={0x58, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x400}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e21}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xdbc}]}, 0x94}, 0x1, 0x0, 0x0, 0x41}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000d80)={{0x1, 0x1, 0x18, r4, {0xffffffffffffffff}}, './file0\x00'}) statx(0xffffffffffffff9c, &(0x7f0000000dc0)='./file0\x00', 0x2000, 0x63faf68559f14c5a, &(0x7f0000000e00)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$tmpfs(&(0x7f00000009c0), &(0x7f0000000a00)='./file0\x00', 0x6, 0x5, &(0x7f0000000d00)=[{&(0x7f0000000a40)="ecedfa00e7ac94a39fcadb2678cbe577c2f46c78a9f65a856982f1acde5e44da37a3aaf7681c406c9bb4296e9c946423a8f0e6838ca5924bce85e938b01b91a3fb2e2fc2b344cb0b6fd1de616e8e3d84f89110ecb938ff9ff63d501e982367950d0e5fc698e20686cc5be7ef2b695a4f4399a1db10d15ea605707cf32106700d8849f1592690bec6a01862bbd02d15d6edf2b45a4252dfc2240223b39b1ca584c26075a5f55982abfaf57ff1b01c0d57e350f59b88e4224d34f943edecdbcc9026e590541e4f52646b6da0e798861d7bcf47e28aab5f", 0xd6, 0x4}, {&(0x7f0000000b40)="7c750f830264dc6a6b9d166f34159fb863e4478fa8258434840d75a1f8696c37bfb69d416e62070b0c7a1d9c2b", 0x2d, 0x4}, {&(0x7f0000000b80)="e5581398e06f458d0de5610910d198b6b15cd3bc1c5717946b33ccb315715ff16cd1b0167534de12b07af61b69848983f2cafe7cf4356b705843f2ba13ca7dd04d9e30b9860f363ab8246f12dfeb612daa00e6a8e2cd9b591fcad9e78a2d30db928f0d97cc", 0x65}, {&(0x7f0000000c00)="801cd903c2fa5c984df502eb37f0d78388f75d1fb5de797c4153a6aa5fa7b1520845a21d3309756b0b1768a1", 0x2c, 0xc45}, {&(0x7f0000000c40)="a3cef032398006cfeef84e02f52584a1ff2e605fbdfca2948d9bd4b6b6d4026efc6c188d1512d226ec19aca6fafe09cbb02691a5e6551060541fc5420f330588737003bc7707a54b1e3c6bbc06c894ab3134942904f8a83e0337487835389f1db5bffc177adc321f0adbcd72e0e3c6697f30ff0277b6a409919840ccb751fdfff147733970bfcceba205", 0x8a, 0x8}], 0x301000, &(0x7f0000000f00)={[{@uid={'uid', 0x3d, r5}}, {@huge_advise}, {@uid={'uid', 0x3d, r6}}], [{@obj_role={'obj_role', 0x3d, '\xe3#.*$\\&\x00'}}, {@appraise_type}]}) r7 = creat(&(0x7f0000000f80)='./file0\x00', 0x1f9) mknodat$loop(r7, &(0x7f0000000fc0)='./file0\x00', 0x4, 0x0) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt(r8, 0x8, 0x3, &(0x7f0000001000)=""/255, &(0x7f0000001100)=0xff) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000012c0)={&(0x7f00000011c0)={0xe4, 0x0, 0x800, 0x70bd2d, 0x25dfdbff, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0xb8, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x612af17a}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3c358ec0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1f4ef150}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x45}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4e366b2}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x19b190ef}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x30fb20eb}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xc397c80}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x62}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3e}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xdbc46d0}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4b077e03}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xbac9810}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x74cdf412}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb8}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x48c0abf2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x43}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x39}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0xe4}, 0x1, 0x0, 0x0, 0x4c005}, 0x4008008) 23:35:49 executing program 2: r0 = accept$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000040)=0x14) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000080)) ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f00000000c0)=0x6) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r2, 0x400, 0x70bd2b, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4000000) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff}) fstat(r3, &(0x7f0000000280)) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001a40)=[{{&(0x7f0000000300), 0x6e, &(0x7f0000000580)=[{&(0x7f0000000380)=""/59, 0x3b}, {&(0x7f00000003c0)=""/151, 0x97}, {&(0x7f0000000480)=""/255, 0xff}], 0x3}}, {{&(0x7f00000005c0), 0x6e, &(0x7f00000018c0)=[{&(0x7f0000000640)=""/109, 0x6d}, {&(0x7f00000006c0)=""/219, 0xdb}, {&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/25, 0x19}, {&(0x7f0000001800)=""/152, 0x98}], 0x5, &(0x7f0000001940)=[@cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xd0}}], 0x2, 0x2, &(0x7f0000001ac0)={0x77359400}) read$char_usb(r5, &(0x7f0000001b00)=""/191, 0xbf) ioctl$PTP_PIN_SETFUNC(r7, 0x40603d07, &(0x7f0000001bc0)={'\x00', 0x1, 0x1, 0x9}) r9 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r10 = fspick(0xffffffffffffff9c, &(0x7f0000001c40)='./file0\x00', 0x1) r11 = socket$inet6_udplite(0xa, 0x2, 0x88) poll(&(0x7f0000001c80)=[{r9, 0x1}, {r8, 0x170c}, {r10}, {r11, 0x2004}], 0x4, 0xe1e7) r12 = syz_open_dev$vcsn(&(0x7f0000001cc0), 0x100000001, 0x4000) ioctl$sock_SIOCDELRT(r6, 0x890c, &(0x7f0000001d40)={0x0, @ethernet={0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, @llc={0x1a, 0x103, 0x30, 0x5, 0x1f, 0x9a, @random="7bf216643706"}, @can={0x1d, r1}, 0x5, 0x0, 0x0, 0x0, 0x7, &(0x7f0000001d00)='sit0\x00', 0xffff, 0x200}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r12, 0x89f8, &(0x7f0000001e40)={'ip6tnl0\x00', &(0x7f0000001dc0)={'syztnl0\x00', r13, 0x4, 0x4, 0x7f, 0x81, 0x0, @remote, @dev={0xfe, 0x80, '\x00', 0x34}, 0x7, 0x10}}) r14 = accept$packet(r4, 0x0, &(0x7f0000001e80)) getsockopt$IP_VS_SO_GET_INFO(r14, 0x0, 0x481, &(0x7f0000001ec0), &(0x7f0000001f00)=0xc) pread64(0xffffffffffffffff, &(0x7f0000001f80)=""/105, 0x69, 0x2) 23:35:49 executing program 3: r0 = semget(0x1, 0x1, 0x35) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x0, 0x7, 0x5, 0xffff, 0x1, 0x0, 0x5, 0x6]) r1 = semget(0x0, 0x0, 0x228) semctl$IPC_RMID(r1, 0x0, 0x0) r2 = semget(0x3, 0x2, 0x4) semctl$SETALL(r2, 0x0, 0x11, &(0x7f0000000040)=[0x4, 0x395, 0x2]) semctl$GETPID(r1, 0x0, 0xb, &(0x7f0000000080)=""/183) semtimedop(r1, &(0x7f0000000140)=[{0x2, 0x400, 0x800}], 0x1, &(0x7f0000000180)={0x0, 0x3938700}) semctl$IPC_RMID(r2, 0x0, 0x0) semctl$IPC_RMID(r1, 0x0, 0x0) r3 = semget(0x0, 0x1, 0x40) semctl$IPC_RMID(r3, 0x0, 0x0) r4 = semget(0x1, 0x1, 0x288) semctl$GETPID(r4, 0x1, 0xb, &(0x7f00000001c0)=""/23) semctl$GETZCNT(r1, 0x4, 0xf, &(0x7f0000000200)=""/200) semget$private(0x0, 0x0, 0x84) r5 = semget$private(0x0, 0x1, 0x444) semctl$GETZCNT(r5, 0x1, 0xf, &(0x7f0000000300)=""/217) r6 = semget$private(0x0, 0x4, 0x2) semtimedop(r6, &(0x7f0000000400)=[{0x3, 0x8, 0x1c00}], 0x1, &(0x7f0000000440)) [ 74.199332] audit: type=1400 audit(1664840149.405:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 23:35:49 executing program 4: r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x24, r0, 0x400, 0x70bd26, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0xffffffff}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0) fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, &(0x7f0000000140)) ioctl(0xffffffffffffffff, 0x8, &(0x7f0000000180)="bcfc9834ac584e9cf234f481268b991136c30a871bb1b2125a247b4d530f23aea1f2e4db7e043f43a7a2790234ec69de21d5ed8c6eb24096434c138a7fff7775e87776c17cfb91cdaead78350778614363ea4621a731177ad12dd591e53103b547cd9bcd0c4115ca52eca9f5e79da47764bcb8e3878fe1f6f6846a540ec5531676b8869918c6e7e2f023e79c41226e0e46c8d1a002a7e763033298ad73ba4fe28f384f2c460de1ddf93d81d1f52999d031130a269f105e74af9f4e84ad287b05883f747d46df013cf431293e40901c47252c45434f25a94120ef668edf65b76191235e") ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000006800)={'ip6gre0\x00', &(0x7f0000006780)={'ip6_vti0\x00', 0x0, 0x29, 0xc, 0x4, 0x400, 0x32, @mcast2, @private1, 0x700, 0x8000, 0x101, 0x80}}) getpeername$packet(0xffffffffffffffff, &(0x7f0000006840)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f0000006880)=0x14) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000006940)={'syztnl1\x00', &(0x7f00000068c0)={'syztnl0\x00', 0x0, 0x2f, 0x6, 0x83, 0x8, 0x68d277d54e2ebe3f, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @loopback, 0x10, 0x0, 0x7, 0x7f0}}) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000006980)={'wg1\x00', 0x0}) sendmsg$ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000006b80)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000006b40)={&(0x7f00000069c0)={0x150, 0x0, 0x200, 0x70bd29, 0x25dfdbfe, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}]}, @HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x150}, 0x1, 0x0, 0x0, 0x8c0}, 0x4040040) ioctl$TUNGETFEATURES(0xffffffffffffffff, 0x800454cf, &(0x7f0000006bc0)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000006c00)={0xffffffffffffffff, 0x7fffffff, 0x80000001, 0x2}) r6 = openat$cgroup_freezer_state(r5, &(0x7f0000006c40), 0x2, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN(r6, 0x4040942c, &(0x7f0000006c80)={0x0, 0x100000001, [0xfffffffffffffffd, 0xce9, 0x560c, 0x62, 0x528, 0x4]}) sendto(r5, &(0x7f0000006cc0), 0x0, 0xc040, &(0x7f0000006d00)=@rc={0x1f, @any, 0x3}, 0x80) r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000006dc0), r5) sendmsg$TIPC_NL_SOCK_GET(r5, &(0x7f0000006ec0)={&(0x7f0000006d80)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000006e80)={&(0x7f0000006e00)={0x74, r7, 0x20, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3f}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x6}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xffffff2b}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3800000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x26}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8001}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x4}, 0x800) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_TDLS_MGMT(r8, &(0x7f00000072c0)={&(0x7f0000006f00)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000007280)={&(0x7f0000006f40)={0x338, 0x0, 0x100, 0x70bd29, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_IE={0x150, 0x2a, [@random_vendor={0xdd, 0x66, "5ca05836f09a50571bdd4cff0650d7686dda532120478193cbf1389f85411263693112d2d4716bb4c1378baa2c008bcff5ba4289dff0df8308f971f5adbdc89e8edab65feb2014fe0d2706c1d77038ffe7c9a2486bbc51db7384f3259d09ec677df155d1e7ff"}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x7, 0x82, 0x81}}, @fast_bss_trans={0x37, 0xd9, {0x6, 0x5, "0b14f90d8ddf9086f8f440f3fe74c5a1", "fa22e3e00428fb56c5bcd09287793bb944fcca9d44112f2ccf01ac256e32d5c7", "a5bf924f21c9b49de64b74a45a9259fa4721d6af3b24b09ab97a418a2fa4e13d", [{0x1, 0x10, "94dfdb644c257176cb6a2371146dd6b7"}, {0x2, 0x16, "b2114a074f0e22d239de3cf24a701d9687614bdbbb19"}, {0x4, 0x18, "ed02da7f9cc1a526ce7bf27e4cff615aec0a28bd7e53be2b"}, {0x2, 0x1f, "b87604add78a25f09a96a3f455f048abdfda26f6fe78e201900d90adc5a940"}, {0x3, 0x20, "e516aec1b9b60a8dbba06d71e7892e8c705978fb52ff2d3d403ef036df87db33"}]}}, @sec_chan_ofs={0x3e, 0x1, 0x1}]}, @NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_IE={0xb8, 0x2a, [@mesh_chsw={0x76, 0x6, {0x81, 0x3, 0x23}}, @ht={0x2d, 0x1a, {0x4000, 0x1, 0x5, 0x0, {0x80, 0x9, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2, 0x1}, 0x300, 0x9, 0x81}}, @tim={0x5, 0x8e, {0x1f, 0xd3, 0x84, "48a50a3969fbb582dd5e34376a40168f1a61bee121a09fa52b688ce64a436ea05df03c30ad46036581fe0e662a1304ab775af4df212c8f65a96205471b3ed00ca12688f2d3614d2fc0168aebedbfd2a1ef4efcb74393d1529a024812a15c9ffd49c60b5a8446d81258062d50cb6ff84561378d466f622c29130d7c4fdd81f5c3f4dbfa09dc7e1196e7c654"}}]}, @NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_IE={0xf1, 0x2a, [@peer_mgmt={0x75, 0x14, {0x3, 0x0, @void, @void, @val="4ae67b56d8c6e901fcc67e63c33554a0"}}, @prep={0x83, 0x1f, @not_ext={{}, 0x3f, 0x3, @device_b, 0xfffffffb, "", 0x6, 0x52, @device_a, 0x5}}, @gcr_ga={0xbd, 0x6}, @cf={0x4, 0x6, {0x1, 0x6a, 0x8f67, 0x3}}, @peer_mgmt={0x75, 0x6, {0x1, 0x2, @val=0xa977, @void, @void}}, @perr={0x84, 0x9c, {0x82, 0xa, [@not_ext={{}, @broadcast, 0x800, "", 0x2e}, @ext={{}, @broadcast, 0x1, @device_b, 0x2}, @not_ext={{}, @device_a, 0xa8, "", 0x42}, @not_ext={{}, @device_a, 0x0, "", 0x1d}, @not_ext={{}, @device_b, 0x4b, "", 0x17}, @not_ext={{}, @device_b, 0x8001, "", 0x1c}, @ext={{}, @device_a, 0x7, @device_b, 0x16}, @not_ext={{}, @broadcast, 0x5, "", 0x19}, @ext={{}, @device_a, 0x3, @broadcast, 0x10}, @ext={{}, @device_a, 0x3, @device_b, 0xe}]}}]}, @NL80211_ATTR_TDLS_INITIATOR={0x4}, @NL80211_ATTR_TDLS_PEER_CAPABILITY={0x8, 0xcb, 0x4f0f}, @NL80211_ATTR_STATUS_CODE={0x6}]}, 0x338}, 0x1, 0x0, 0x0, 0xc0000d5}, 0x844) setsockopt$packet_buf(r5, 0x107, 0x2, &(0x7f0000007300)="2dc5009e64a09189f9e53a36ff6eeb779a7185f98dc6dbe9d8ae781e34497e1de36074f9471698c8cc3afac1b043d212a4f76c7cd07d66eab257e2357b9eae689e6189", 0x43) fstat(r5, &(0x7f0000007380)) 23:35:49 executing program 5: ioctl$TIOCMSET(0xffffffffffffffff, 0x5418, &(0x7f0000000000)=0x10000) ioctl$TIOCSCTTY(0xffffffffffffffff, 0x540e, 0xe580) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000040)={{0x0, 0x8, 0x7, 0x9, 0x7, 0x200, 0x8b, 0x8, 0x8001, 0x8, 0x7c, 0x1000000000000000, 0xffffffff80000000, 0x8001, 0x6}, 0x28, [0x0, 0x0, 0x0, 0x0, 0x0]}) r0 = fsmount(0xffffffffffffffff, 0x0, 0xf4) ioctl$TIOCNXCL(r0, 0x540d) r1 = signalfd4(r0, &(0x7f0000000100)={[0x6]}, 0x8, 0x80800) r2 = openat(r0, &(0x7f0000000140)='./file0\x00', 0x10000, 0x6e) r3 = dup(r2) ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000180)={0x10000, 0x7, 0x7fffffff, 0x1, 0x15, "e77c1bb6a21a408924e5078af7c1bcba1b0518"}) r4 = creat(&(0x7f00000001c0)='./file1\x00', 0x4) fcntl$setpipe(r4, 0x407, 0x5) r5 = openat$sr(0xffffffffffffff9c, &(0x7f0000000200), 0x400, 0x0) ioctl$TIOCSISO7816(r3, 0xc0285443, &(0x7f0000000240)={0x0, 0x1, 0x5, 0x2f8, 0x4}) newfstatat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x2000) r7 = eventfd2(0x0, 0x80000) r8 = syz_open_dev$mouse(&(0x7f0000000480), 0x3, 0x4000) r9 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) r10 = memfd_create(&(0x7f0000000500)='/dev/sr0\x00', 0x2) r11 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000540), 0x602802, 0x0) sendmmsg$unix(r1, &(0x7f0000008280)=[{{&(0x7f0000000280)=@file={0x1, './file1\x00'}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000300)}, {&(0x7f0000000340)="2b508571741dfdb42bdfea83ec1a0fd4c72145", 0x13}], 0x2, &(0x7f0000008140)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r6, 0xffffffffffffffff}}}, @rights={{0x20, 0x1, 0x1, [r0, r4, r7, r2]}}, @rights={{0x38, 0x1, 0x1, [r2, r8, r4, r4, 0xffffffffffffffff, r1, r0, r4, r9, r2]}}, @rights={{0x28, 0x1, 0x1, [r0, r2, r10, r11, r5, r5]}}, @rights={{0x28, 0x1, 0x1, [r2, r5, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r5, 0xffffffffffffffff]}}], 0x128, 0x80}}], 0x1, 0x0) 23:35:49 executing program 7: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x20000, 0x92, 0x10}, 0x18) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000080)=[@timestamp, @timestamp, @mss, @sack_perm], 0x4) vmsplice(r0, &(0x7f0000000140)=[{&(0x7f00000000c0)="7aeece3c894a051bf605a911b7b00659047b3db9591d8843ae086fe85ab2f63ccbc6e1bc952b085f3304c8c16ae8108e905ad1b60d5ade3a0cbfc325e89ff37dc4119af5bdd6e47081f5d2af6c97928eeb2b5446ab5b897186af5f59b7bf9bfdef97b333ef2218fefd981d7c4524f9", 0x6f}], 0x1, 0x1) ioctl$INCFS_IOC_CREATE_FILE(0xffffffffffffffff, 0xc058671e, &(0x7f0000000480)={{}, {0x401}, 0x0, 0x0, 0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)="8cf78213de73486e8d3a2f524f86766ff10c3c467c23c9881621d66e1c6c8501ad3dcd7adb96267a7d802cbb704430810d97c44acee102375ded25830610b871ef8fd1e5574f33573141b28c7f97acf8babe2e929dfeb705a121b863e11d710461a2a6d66611746eb68b6765bd71b01acc8ca7bd01292179aff29789294801f5f415a43e2ac1bf514fb258637f83a0fe7c030d767590ace8c143237569808d8665a7d26bae77bd54cdd599f0f3b4ad4058ea5b271be898e675511a657bd8c21bffa03239cd53c046c86464b38236632a9be12ceef0618b6e7a267cf2d392ee306ba679c298ef3dcad2de2c66f94faba40014119ab29e117ab01ad61c5ab9cfa242db5d510cd73fa40b23a6ab3997983ec8899f66c74b19d347c82d2c16cc00fd21bd46c98e4de9203459fb0bfad546929689f5", 0x133, 0x0, &(0x7f0000000340)={0x2, 0x99, {0x1, 0xc, 0x1c, "f44b8c32de18dfe0783ed8e39aad1445d6c5fe842257ea041d74c8a8", 0x70, "048758573abb964fbf3c5208e369d2b710480a524414b30d75be5fe89d0a22eb8eba65e0ac603f9c863ed16c5592af4daf894d764448fc70e0420c06432967e587dbf1c4af9aa1f7614221a2db7d04e386041d6f3fd8fb7b54a1311d70c96dc3fdde8c4af64cb9297e114379af5e97a0"}, 0x5e, "abcc5bb8a489fcbc355d412c86c40f89cf4dc310c6bdfc51ee87cc2a6d4a31a00e1ce6505700cb60634fa60971339c824bc3f9883bd6f846c06d232425c0d909d295b758a8665575ca80690ad4d7c28769caa48c10f3815f6b068bfc1d0a"}, 0x103}) r1 = eventfd2(0x4, 0x80000) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r1, 0x8040942d, &(0x7f0000000500)) symlink(&(0x7f0000000540)='./file0/file0\x00', &(0x7f0000000580)='./file0\x00') ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r1, 0x40089413, &(0x7f00000005c0)=0x6) accept4$unix(r0, &(0x7f0000000600)=@abs, &(0x7f0000000680)=0x6e, 0x800) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000900)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x4366832b1a1dcad4}, 0xc, &(0x7f00000008c0)={&(0x7f0000000700)={0x1ac, 0x0, 0x2, 0x5, 0x0, 0x0, {0xc, 0x0, 0x5}, [@CTA_EXPECT_MASTER={0x40, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x14, 0x4, @local}}}]}, @CTA_EXPECT_FN={0x13, 0xb, 'callforwarding\x00'}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x3}, @CTA_EXPECT_NAT={0xe8, 0xa, 0x0, 0x1, [@CTA_EXPECT_NAT_TUPLE={0x80, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @empty}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_EXPECT_NAT_TUPLE={0x64, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}]}, @CTA_EXPECT_HELP_NAME={0x9, 0x6, 'pptp\x00'}, @CTA_EXPECT_HELP_NAME={0xe, 0x6, 'sip-20000\x00'}, @CTA_EXPECT_MASK={0x38, 0x3, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x16}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1b}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x40}, 0x40000) readlink(&(0x7f0000000940)='./file0/file0\x00', &(0x7f0000000980)=""/198, 0xc6) lstat(&(0x7f0000000a80)='./file0\x00', &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000b40), 0x80102, 0x0) readlinkat(r4, &(0x7f0000000b80)='./file0\x00', &(0x7f0000000bc0)=""/44, 0x2c) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000cc0)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000c80)={&(0x7f0000000c40)={0x3c, 0x0, 0x800, 0x3, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x4, 0x21}}}}, [@NL80211_ATTR_MESH_SETUP={0x10, 0x70, [@NL80211_MESH_SETUP_USERSPACE_AUTH={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5}]}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8}], @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc844}, 0x4000000) mknodat(r0, &(0x7f0000000d00)='./file0/file0\x00', 0x2, 0x200) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x5, 0x100010, r4, 0x8000000) syz_genetlink_get_family_id$ethtool(&(0x7f0000000d40), r4) lchown(&(0x7f0000000d80)='./file0\x00', r2, r3) accept(0xffffffffffffffff, &(0x7f0000000e40)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, &(0x7f0000000ec0)=0x80) 23:35:49 executing program 6: sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, 0x0, 0x800, 0x70bd2c, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x42a971d9}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x20000804) r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$TIPC_CMD_GET_LINKS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, r0, 0x300, 0x70bd2b, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x8d}}, ["", "", "", "", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x8800}, 0x40) r1 = open_tree(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x9000) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x30, r1, 0xfc117000) write$binfmt_aout(r1, &(0x7f0000000280)={{0x107, 0x2, 0x1, 0x367, 0x2c8, 0xfff, 0x95, 0x10000}, "bcf0ff5c5a945911840785afc7561d296f67f6e83e1c1104c8037a2dce504d9c5b4270ccbc39aeb7440f9c0aacb4f37d02b7", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x952) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c40), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000c80)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000d40)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x30, r2, 0x4, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x0, 0x2a}}}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x200}]}, 0x30}, 0x1, 0x0, 0x0, 0x44084}, 0x40010) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000d80)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) sendmsg$NL80211_CMD_RADAR_DETECT(r5, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e00)={0x5c, r2, 0x4, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x400}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1699}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x31}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x353}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x27}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8810}, 0x4000) r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000f00), 0x80402, 0x0) sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r6, &(0x7f00000011c0)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001180)={&(0x7f0000000f80)={0x1c4, r2, 0x8, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x7fffffff, 0x25}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0xe}, @NL80211_ATTR_IE={0x97, 0x2a, [@ht={0x2d, 0x1a, {0x2, 0x0, 0x5, 0x0, {0x8, 0x9, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, 0x1, 0x9, 0x2}}, @measure_req={0x26, 0x75, {0x8, 0x86, 0x2, "428ab3c11535abc67495b66cec9bfd7fe906fc603c9ef910717ae998bdd692d371a5226e5a96de477aa25da7f0926d5cb8269d4282af125ce565ae203ba8ad2e44ce69a6f81fdf51ddaf4decc84afa16a4de1a74ff09f9ee58fe810e07264068cbc8b9c9e631c7c1aeb47cb1c65f6ce8ba13"}}]}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x33}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_IE={0x49, 0x2a, [@peer_mgmt={0x75, 0x8, {0x0, 0x1f, @val=0xfff, @val=0x34, @void}}, @gcr_ga={0xbd, 0x6}, @ht={0x2d, 0x1a, {0x2000, 0x1, 0x6, 0x0, {0x2, 0xb7, 0x0, 0x80, 0x0, 0x1, 0x0, 0x2}, 0x1, 0x80, 0xa9}}, @mic={0x8c, 0x10, {0x3a6, "83195f21b620", @short="74aad9977d530361"}}, @channel_switch={0x25, 0x3, {0x0, 0xac, 0x9}}]}, @NL80211_ATTR_IE={0x70, 0x2a, [@link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @ht={0x2d, 0x1a, {0xc, 0x2, 0x5, 0x0, {0x0, 0x80, 0x0, 0x32d, 0x0, 0x1, 0x1, 0x3, 0x1}, 0x81e, 0x0, 0x8}}, @mesh_chsw={0x76, 0x6, {0x3, 0x0, 0x6, 0x6}}, @random_vendor={0xdd, 0x2d, "d2e669f0c507427e6146e191d041764594f2ded48e1d9feda9183f3279e65241faac0df0cf55fc19e31baf3e71"}, @channel_switch={0x25, 0x3, {0x0, 0x9d, 0x93}}]}, @NL80211_ATTR_IE={0x10, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x1, 0x0, 0xb5, 0x53}}, @challenge={0x10, 0x1, 0xa5}, @erp={0x2a, 0x1, {0x1, 0x1, 0x1}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x1c4}, 0x1, 0x0, 0x0, 0xf71fb92de2f9580c}, 0x84) sendmsg$NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, &(0x7f0000002640)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000002600)={&(0x7f0000001240)={0x13a0, 0x0, 0x2, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0xd}, @void, @void}}, [@NL80211_ATTR_WOWLAN_TRIGGERS={0x1384, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_PKT_PATTERN={0x1368, 0x4, 0x0, 0x1, [{0x1358, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x5}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x3}, @NL80211_PKTPAT_MASK={0x101, 0x1, "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"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x800}, @NL80211_PKTPAT_MASK={0x1004, 0x1, "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"}, @NL80211_PKTPAT_MASK={0xf0, 0x1, "3ba780fc8a8dc0c429d345d9a1229ae6a10321a03ae73837a9ac4d00d411f5d21e3bda3e8ff22c64fbfe404ba8a262ce84a679e9abccee862a7e5f47902455b1aece78d3c3701ea41cedced38fa3dabda796cdbb7975e4475a2f0b4fdef2cec042fb76c064e69ffc613984e96cebbdd76cf0901ab898990a80c8349b610883b24a41e3e2aa87f43c1d3afc2c0c31d75e5f8c821527bd82c9b4b754262c6247249f9f1bb3837805e805e3e10dc9aa906a9faca40b0130f85774585c5b402ebbc304a1ee2fc5a0424e375485348420ca205d5ec099f2832dd58e40789bee2b238241af50db95070a4442219511"}, @NL80211_PKTPAT_PATTERN={0x9b, 0x2, "ced829a55aa7b609a05c8f8d3b1466c874a939f0f2db8144af24c0956e397aa0efce0c9a0c739dc2d42e391937a9d343ac8992f4d0cd327277e5118e5fbbc084ddacfa090780d079c8ef38f3aedcaed0caf3c34a7b907ee10c77aa522f2ae0fe20cacb2a14278efbeb907f9d0f50a4e36c35e559b0b118447299e628dd928aeabc80d80ed3a839e37463751f2f897a71671ee325e71771"}, @NL80211_PKTPAT_PATTERN={0xa7, 0x2, "86b193ceb7689f216abd3306f5d1e6a998ab91cbb6af991cc6eea3f4308df9df9ccfaafea5ac6eed4ea349f32dff3298314649f68661acaa633bf89ceedc37196a67893c825f5b96a96a4dbf57d2b2af292f33bb58491d2152ec571d107aec720fd38e1f3421b01c8d1e8064f147b08149e10655555dc5631c0db500f771e955b51702257b32325d136d011e7a6db043ccf7941cb6c285b22948e62726f370fda6d61a"}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x101}]}]}, @NL80211_WOWLAN_TRIG_NET_DETECT={0x8, 0x12, 0x0, 0x1, [@NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}]}, @NL80211_WOWLAN_TRIG_ANY={0x4}, @NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE={0x4}, @NL80211_WOWLAN_TRIG_RFKILL_RELEASE={0x4}, @NL80211_WOWLAN_TRIG_RFKILL_RELEASE={0x4}]}]}, 0x13a0}, 0x1, 0x0, 0x0, 0x40800}, 0x40040) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r6, &(0x7f0000002740)={&(0x7f0000002680)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002700)={&(0x7f00000026c0)={0x38, r2, 0x800, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x55}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x50}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$NL80211_CMD_SET_MAC_ACL(r5, &(0x7f0000002940)={&(0x7f0000002780)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000002900)={&(0x7f00000027c0)={0x118, r2, 0x410, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x98b9, 0x71}}}}, [@NL80211_ATTR_MAC_ADDRS={0x40, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa}, {0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}]}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_MAC_ADDRS={0x1c, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_MAC_ADDRS={0x40, 0xa6, 0x0, 0x1, [{0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @device_b}, {0xa}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_MAC_ADDRS={0x34, 0xa6, 0x0, 0x1, [{0xa}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @broadcast}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}]}, 0x118}, 0x1, 0x0, 0x0, 0x404c084}, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000029c0), r1) sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000002ac0)={&(0x7f0000002980)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000002a80)={&(0x7f0000002a00)={0x48, r7, 0x400, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x6, 0x29}}}}, [@NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0xffff}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xf}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x80}, 0x40000) readv(r1, &(0x7f0000003f40)=[{&(0x7f0000002b00)}, {&(0x7f0000002b40)=""/56, 0x38}, {&(0x7f0000002b80)=""/226, 0xe2}, {&(0x7f0000002c80)=""/234, 0xea}, {&(0x7f0000002d80)=""/248, 0xf8}, {&(0x7f0000002e80)=""/148, 0x94}, {&(0x7f0000002f40)=""/4096, 0x1000}], 0x7) [ 75.469298] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.471147] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.474464] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.477419] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.479161] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 75.481220] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.486172] Bluetooth: hci0: HCI_REQ-0x0c1a [ 75.588014] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 75.589465] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 75.592119] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 75.593166] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 75.594938] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 75.598258] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 75.602443] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 75.603518] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 75.606140] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 75.607216] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 75.608860] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 75.610730] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 75.614515] Bluetooth: hci3: HCI_REQ-0x0c1a [ 75.622383] Bluetooth: hci1: HCI_REQ-0x0c1a [ 75.659951] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 75.662473] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 75.665505] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 75.666746] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 75.668157] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 75.669578] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 75.672611] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 75.674360] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 75.676166] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 75.677532] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 75.678708] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 75.679981] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 75.684638] Bluetooth: hci2: HCI_REQ-0x0c1a [ 75.687151] Bluetooth: hci7: HCI_REQ-0x0c1a [ 75.736320] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 75.740681] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 75.754790] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 75.765284] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 75.779954] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 75.783794] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 75.793948] Bluetooth: hci6: HCI_REQ-0x0c1a [ 77.555469] Bluetooth: hci0: command 0x0409 tx timeout [ 77.683151] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 77.683321] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 77.684920] Bluetooth: hci3: command 0x0409 tx timeout [ 77.685074] Bluetooth: hci1: command 0x0409 tx timeout [ 77.747413] Bluetooth: hci7: command 0x0409 tx timeout [ 77.747436] Bluetooth: hci2: command 0x0409 tx timeout [ 77.812157] Bluetooth: hci6: command 0x0409 tx timeout [ 79.604075] Bluetooth: hci0: command 0x041b tx timeout [ 79.731240] Bluetooth: hci3: command 0x041b tx timeout [ 79.732110] Bluetooth: hci1: command 0x041b tx timeout [ 79.795101] Bluetooth: hci7: command 0x041b tx timeout [ 79.796127] Bluetooth: hci2: command 0x041b tx timeout [ 79.860295] Bluetooth: hci6: command 0x041b tx timeout [ 80.956501] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 80.958621] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 80.959654] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 80.962160] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 80.963578] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 80.964313] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 80.968653] Bluetooth: hci4: HCI_REQ-0x0c1a [ 81.121969] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 81.126141] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 81.135700] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 81.139841] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 81.140840] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 81.142432] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 81.156128] Bluetooth: hci5: HCI_REQ-0x0c1a [ 81.652311] Bluetooth: hci0: command 0x040f tx timeout [ 81.780084] Bluetooth: hci1: command 0x040f tx timeout [ 81.780101] Bluetooth: hci3: command 0x040f tx timeout [ 81.843117] Bluetooth: hci2: command 0x040f tx timeout [ 81.843944] Bluetooth: hci7: command 0x040f tx timeout [ 81.907562] Bluetooth: hci6: command 0x040f tx timeout [ 82.995163] Bluetooth: hci4: command 0x0409 tx timeout [ 83.187114] Bluetooth: hci5: command 0x0409 tx timeout [ 83.699136] Bluetooth: hci0: command 0x0419 tx timeout [ 83.827087] Bluetooth: hci1: command 0x0419 tx timeout [ 83.827555] Bluetooth: hci3: command 0x0419 tx timeout [ 83.891151] Bluetooth: hci7: command 0x0419 tx timeout [ 83.891670] Bluetooth: hci2: command 0x0419 tx timeout [ 83.955126] Bluetooth: hci6: command 0x0419 tx timeout [ 85.043128] Bluetooth: hci4: command 0x041b tx timeout [ 85.235239] Bluetooth: hci5: command 0x041b tx timeout [ 87.091198] Bluetooth: hci4: command 0x040f tx timeout [ 87.283207] Bluetooth: hci5: command 0x040f tx timeout [ 89.139282] Bluetooth: hci4: command 0x0419 tx timeout [ 89.331220] Bluetooth: hci5: command 0x0419 tx timeout 23:36:46 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f00000001c0)={0x123363500, &(0x7f0000000180)=0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) waitid$P_PIDFD(0x2, r1, 0x0, 0x80000009, 0x0) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_timeval(r2, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=@v3={0x3000000, [{0x0, 0x100}, {0x80, 0xffffffff}]}, 0x18, 0x2) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000007c0)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000055040)={0x6, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}], 0x3, "bc386eff17b8c9"}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r1, {0xee01, 0xee01}}, './file0\x00'}) socketpair(0x23, 0x800, 0xffffffff, &(0x7f0000000040)) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000045ec0)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}], 0x78, "de1053e7ccc9aa"}) fstat(0xffffffffffffffff, &(0x7f0000001140)) [ 131.827371] audit: type=1400 audit(1664840207.033:7): avc: denied { open } for pid=3755 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 131.828899] audit: type=1400 audit(1664840207.034:8): avc: denied { kernel } for pid=3755 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 131.855448] ------------[ cut here ]------------ [ 131.855468] [ 131.855471] ====================================================== [ 131.855474] WARNING: possible circular locking dependency detected [ 131.855478] 6.0.0-rc7-next-20220930 #1 Not tainted [ 131.855484] ------------------------------------------------------ [ 131.855487] syz-executor.3/3756 is trying to acquire lock: [ 131.855493] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 131.855532] [ 131.855532] but task is already holding lock: [ 131.855535] ffff888009759420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 131.855560] [ 131.855560] which lock already depends on the new lock. [ 131.855560] [ 131.855563] [ 131.855563] the existing dependency chain (in reverse order) is: [ 131.855566] [ 131.855566] -> #3 (&ctx->lock){....}-{2:2}: [ 131.855580] _raw_spin_lock+0x2a/0x40 [ 131.855591] __perf_event_task_sched_out+0x53b/0x18d0 [ 131.855602] __schedule+0xedd/0x2470 [ 131.855615] schedule+0xda/0x1b0 [ 131.855628] exit_to_user_mode_prepare+0x114/0x1a0 [ 131.855640] syscall_exit_to_user_mode+0x19/0x40 [ 131.855653] do_syscall_64+0x48/0x90 [ 131.855670] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.855682] [ 131.855682] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 131.855695] _raw_spin_lock_nested+0x30/0x40 [ 131.855706] raw_spin_rq_lock_nested+0x1e/0x30 [ 131.855718] task_fork_fair+0x63/0x4d0 [ 131.855734] sched_cgroup_fork+0x3d0/0x540 [ 131.855748] copy_process+0x4183/0x6e20 [ 131.855758] kernel_clone+0xe7/0x890 [ 131.855768] user_mode_thread+0xad/0xf0 [ 131.855778] rest_init+0x24/0x250 [ 131.855789] arch_call_rest_init+0xf/0x14 [ 131.855806] start_kernel+0x4c6/0x4eb [ 131.855821] secondary_startup_64_no_verify+0xe0/0xeb [ 131.855835] [ 131.855835] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 131.855848] _raw_spin_lock_irqsave+0x39/0x60 [ 131.855858] try_to_wake_up+0xab/0x1930 [ 131.855871] up+0x75/0xb0 [ 131.855885] __up_console_sem+0x6e/0x80 [ 131.855901] console_unlock+0x46a/0x590 [ 131.855919] vt_ioctl+0x2822/0x2ca0 [ 131.855931] tty_ioctl+0x785/0x16b0 [ 131.855941] __x64_sys_ioctl+0x19a/0x210 [ 131.855954] do_syscall_64+0x3b/0x90 [ 131.855970] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.855983] [ 131.855983] -> #0 ((console_sem).lock){....}-{2:2}: [ 131.855996] __lock_acquire+0x2a02/0x5e70 [ 131.856013] lock_acquire+0x1a2/0x530 [ 131.856028] _raw_spin_lock_irqsave+0x39/0x60 [ 131.856038] down_trylock+0xe/0x70 [ 131.856053] __down_trylock_console_sem+0x3b/0xd0 [ 131.856069] vprintk_emit+0x16b/0x560 [ 131.856085] vprintk+0x84/0xa0 [ 131.856100] _printk+0xba/0xf1 [ 131.856111] report_bug.cold+0x72/0xab [ 131.856127] handle_bug+0x3c/0x70 [ 131.856143] exc_invalid_op+0x14/0x50 [ 131.856160] asm_exc_invalid_op+0x16/0x20 [ 131.856171] group_sched_out.part.0+0x2c7/0x460 [ 131.856188] ctx_sched_out+0x8f1/0xc10 [ 131.856205] __perf_event_task_sched_out+0x6d0/0x18d0 [ 131.856215] __schedule+0xedd/0x2470 [ 131.856229] preempt_schedule_common+0x45/0xc0 [ 131.856243] __cond_resched+0x17/0x30 [ 131.856257] __mutex_lock+0xa3/0x14d0 [ 131.856271] __do_sys_perf_event_open+0x1eec/0x32c0 [ 131.856282] do_syscall_64+0x3b/0x90 [ 131.856299] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.856311] [ 131.856311] other info that might help us debug this: [ 131.856311] [ 131.856314] Chain exists of: [ 131.856314] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 131.856314] [ 131.856328] Possible unsafe locking scenario: [ 131.856328] [ 131.856330] CPU0 CPU1 [ 131.856332] ---- ---- [ 131.856335] lock(&ctx->lock); [ 131.856340] lock(&rq->__lock); [ 131.856346] lock(&ctx->lock); [ 131.856352] lock((console_sem).lock); [ 131.856358] [ 131.856358] *** DEADLOCK *** [ 131.856358] [ 131.856359] 2 locks held by syz-executor.3/3756: [ 131.856366] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 131.856395] #1: ffff888009759420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 131.856420] [ 131.856420] stack backtrace: [ 131.856423] CPU: 1 PID: 3756 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1 [ 131.856435] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 131.856443] Call Trace: [ 131.856446] [ 131.856450] dump_stack_lvl+0x8b/0xb3 [ 131.856468] check_noncircular+0x263/0x2e0 [ 131.856484] ? format_decode+0x26c/0xb50 [ 131.856500] ? print_circular_bug+0x450/0x450 [ 131.856516] ? simple_strtoul+0x30/0x30 [ 131.856531] ? __lockdep_reset_lock+0x180/0x180 [ 131.856547] ? format_decode+0x26c/0xb50 [ 131.856564] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 131.856582] __lock_acquire+0x2a02/0x5e70 [ 131.856603] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 131.856625] lock_acquire+0x1a2/0x530 [ 131.856641] ? down_trylock+0xe/0x70 [ 131.856658] ? lock_release+0x750/0x750 [ 131.856675] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 131.856695] ? vprintk+0x84/0xa0 [ 131.856713] _raw_spin_lock_irqsave+0x39/0x60 [ 131.856724] ? down_trylock+0xe/0x70 [ 131.856740] down_trylock+0xe/0x70 [ 131.856755] ? vprintk+0x84/0xa0 [ 131.856772] __down_trylock_console_sem+0x3b/0xd0 [ 131.856789] vprintk_emit+0x16b/0x560 [ 131.856806] ? lock_downgrade+0x6d0/0x6d0 [ 131.856824] vprintk+0x84/0xa0 [ 131.856841] _printk+0xba/0xf1 [ 131.856852] ? record_print_text.cold+0x16/0x16 [ 131.856866] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 131.856880] ? lock_downgrade+0x6d0/0x6d0 [ 131.856897] ? report_bug.cold+0x66/0xab [ 131.856915] ? group_sched_out.part.0+0x2c7/0x460 [ 131.856933] report_bug.cold+0x72/0xab [ 131.856951] handle_bug+0x3c/0x70 [ 131.856968] exc_invalid_op+0x14/0x50 [ 131.856986] asm_exc_invalid_op+0x16/0x20 [ 131.856999] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 131.857018] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 131.857029] RSP: 0018:ffff88800d527978 EFLAGS: 00010006 [ 131.857038] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 131.857045] RDX: ffff888017e05040 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 131.857053] RBP: ffff88803fc105c8 R08: 0000000000000005 R09: 0000000000000001 [ 131.857060] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888009759400 [ 131.857067] R13: ffff88806cf3d2c0 R14: ffffffff8547d160 R15: 0000000000000002 [ 131.857078] ? group_sched_out.part.0+0x2c7/0x460 [ 131.857098] ? group_sched_out.part.0+0x2c7/0x460 [ 131.857117] ctx_sched_out+0x8f1/0xc10 [ 131.857136] __perf_event_task_sched_out+0x6d0/0x18d0 [ 131.857150] ? lock_is_held_type+0xd7/0x130 [ 131.857164] ? __perf_cgroup_move+0x160/0x160 [ 131.857174] ? set_next_entity+0x304/0x550 [ 131.857191] ? update_curr+0x267/0x740 [ 131.857209] ? lock_is_held_type+0xd7/0x130 [ 131.857223] __schedule+0xedd/0x2470 [ 131.857240] ? io_schedule_timeout+0x150/0x150 [ 131.857257] ? lock_is_held_type+0xd7/0x130 [ 131.857269] ? __cond_resched+0x17/0x30 [ 131.857285] preempt_schedule_common+0x45/0xc0 [ 131.857301] __cond_resched+0x17/0x30 [ 131.857315] __mutex_lock+0xa3/0x14d0 [ 131.857332] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 131.857345] ? lock_release+0x3dd/0x750 [ 131.857361] ? mutex_lock_io_nested+0x1310/0x1310 [ 131.857378] ? lock_release+0x3b2/0x750 [ 131.857395] ? __up_read+0x192/0x730 [ 131.857409] ? up_write+0x520/0x520 [ 131.857423] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 131.857437] __do_sys_perf_event_open+0x1eec/0x32c0 [ 131.857453] ? perf_compat_ioctl+0x130/0x130 [ 131.857464] ? syscall_enter_from_user_mode+0x18/0x50 [ 131.857477] ? perf_trace_preemptirq_template+0xa2/0x420 [ 131.857500] ? syscall_enter_from_user_mode+0x1d/0x50 [ 131.857514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 131.857529] do_syscall_64+0x3b/0x90 [ 131.857546] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.857559] RIP: 0033:0x7f09e76d4b19 [ 131.857583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 131.857594] RSP: 002b:00007f09e4c4a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 131.857605] RAX: ffffffffffffffda RBX: 00007f09e77e7f60 RCX: 00007f09e76d4b19 [ 131.857612] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 131.857620] RBP: 00007f09e772ef6d R08: 0000000000000000 R09: 0000000000000000 [ 131.857627] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 131.857634] R13: 00007ffe1cf1ff8f R14: 00007f09e4c4a300 R15: 0000000000022000 [ 131.857646] [ 131.919902] WARNING: CPU: 1 PID: 3756 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 131.920582] Modules linked in: [ 131.920825] CPU: 1 PID: 3756 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220930 #1 [ 131.921415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 131.922266] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 131.922675] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 131.924033] RSP: 0018:ffff88800d527978 EFLAGS: 00010006 [ 131.924435] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 131.924960] RDX: ffff888017e05040 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 131.925498] RBP: ffff88803fc105c8 R08: 0000000000000005 R09: 0000000000000001 [ 131.926035] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888009759400 [ 131.926570] R13: ffff88806cf3d2c0 R14: ffffffff8547d160 R15: 0000000000000002 [ 131.927110] FS: 00007f09e4c4a700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 131.927714] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 131.928164] CR2: 00007f09e77e4000 CR3: 0000000019c86000 CR4: 0000000000350ee0 [ 131.928700] Call Trace: [ 131.928902] [ 131.929083] ctx_sched_out+0x8f1/0xc10 [ 131.929392] __perf_event_task_sched_out+0x6d0/0x18d0 [ 131.929799] ? lock_is_held_type+0xd7/0x130 [ 131.930134] ? __perf_cgroup_move+0x160/0x160 [ 131.930478] ? set_next_entity+0x304/0x550 [ 131.930803] ? update_curr+0x267/0x740 [ 131.931107] ? lock_is_held_type+0xd7/0x130 [ 131.931440] __schedule+0xedd/0x2470 [ 131.931738] ? io_schedule_timeout+0x150/0x150 [ 131.932089] ? lock_is_held_type+0xd7/0x130 [ 131.932417] ? __cond_resched+0x17/0x30 [ 131.932725] preempt_schedule_common+0x45/0xc0 [ 131.933080] __cond_resched+0x17/0x30 [ 131.933375] __mutex_lock+0xa3/0x14d0 [ 131.933682] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 131.934073] ? lock_release+0x3dd/0x750 [ 131.934380] ? mutex_lock_io_nested+0x1310/0x1310 [ 131.934752] ? lock_release+0x3b2/0x750 [ 131.935058] ? __up_read+0x192/0x730 [ 131.935350] ? up_write+0x520/0x520 [ 131.935636] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 131.936024] __do_sys_perf_event_open+0x1eec/0x32c0 [ 131.936415] ? perf_compat_ioctl+0x130/0x130 [ 131.936753] ? syscall_enter_from_user_mode+0x18/0x50 [ 131.937151] ? perf_trace_preemptirq_template+0xa2/0x420 [ 131.937571] ? syscall_enter_from_user_mode+0x1d/0x50 [ 131.937962] ? syscall_enter_from_user_mode+0x1d/0x50 [ 131.938358] do_syscall_64+0x3b/0x90 [ 131.938647] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 131.939037] RIP: 0033:0x7f09e76d4b19 [ 131.939320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 131.940675] RSP: 002b:00007f09e4c4a188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 131.941244] RAX: ffffffffffffffda RBX: 00007f09e77e7f60 RCX: 00007f09e76d4b19 [ 131.941804] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 131.942354] RBP: 00007f09e772ef6d R08: 0000000000000000 R09: 0000000000000000 [ 131.942889] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 131.943423] R13: 00007ffe1cf1ff8f R14: 00007f09e4c4a300 R15: 0000000000022000 [ 131.943963] [ 131.944148] irq event stamp: 2538 [ 131.944410] hardirqs last enabled at (2537): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 131.945151] hardirqs last disabled at (2538): [] __schedule+0x1225/0x2470 [ 131.945793] softirqs last enabled at (1210): [] __irq_exit_rcu+0x11b/0x180 [ 131.946437] softirqs last disabled at (1175): [] __irq_exit_rcu+0x11b/0x180 [ 131.947082] ---[ end trace 0000000000000000 ]--- [ 131.981681] audit: type=1400 audit(1664840207.188:9): avc: denied { write } for pid=3765 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 132.680489] loop1: detected capacity change from 0 to 12 [ 132.761866] loop1: detected capacity change from 0 to 12 VM DIAGNOSIS: 23:36:47 Registers: info registers vcpu 0 RAX=ffffed100d9c676c RBX=ffffed100d9c676d RCX=ffffffff84253d6c RDX=0000000000000001 RSI=0000000000000004 RDI=ffff88806ce33b60 RBP=ffffed100d9c676c RSP=ffff88803fb5f7f8 R8 =0000000000000000 R9 =ffff88806ce33b63 R10=ffffed100d9c676c R11=0000000000000001 R12=4000000000000002 R13=0000000000000200 R14=ffff888007c75000 R15=ffff88800db21a00 RIP=ffffffff81787699 RFL=00000083 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8635f78610 CR3=000000003fbf6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88800d5273c0 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000066 R11=0000000000000001 R12=0000000000000066 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f09e4c4a700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f09e77e4000 CR3=0000000019c86000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f09e77bb7c0 00007f09e77bb7c8 YMM02=0000000000000000 0000000000000000 00007f09e77bb7e0 00007f09e77bb7c0 YMM03=0000000000000000 0000000000000000 00007f09e77bb7c8 00007f09e77bb7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000