Warning: Permanently added '[localhost]:40668' (ECDSA) to the list of known hosts. 2022/10/04 09:38:10 fuzzer started 2022/10/04 09:38:11 dialing manager at localhost:35095 syzkaller login: [ 45.531034] cgroup: Unknown subsys name 'net' [ 45.631888] cgroup: Unknown subsys name 'rlimit' 2022/10/04 09:38:26 syscalls: 2215 2022/10/04 09:38:26 code coverage: enabled 2022/10/04 09:38:26 comparison tracing: enabled 2022/10/04 09:38:26 extra coverage: enabled 2022/10/04 09:38:26 setuid sandbox: enabled 2022/10/04 09:38:26 namespace sandbox: enabled 2022/10/04 09:38:26 Android sandbox: enabled 2022/10/04 09:38:26 fault injection: enabled 2022/10/04 09:38:26 leak checking: enabled 2022/10/04 09:38:26 net packet injection: enabled 2022/10/04 09:38:26 net device setup: enabled 2022/10/04 09:38:26 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/04 09:38:26 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/04 09:38:26 USB emulation: enabled 2022/10/04 09:38:26 hci packet injection: enabled 2022/10/04 09:38:26 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/04 09:38:26 802.15.4 emulation: enabled 2022/10/04 09:38:26 fetching corpus: 50, signal 24146/25993 (executing program) 2022/10/04 09:38:26 fetching corpus: 100, signal 37410/40964 (executing program) 2022/10/04 09:38:26 fetching corpus: 150, signal 43116/48295 (executing program) 2022/10/04 09:38:27 fetching corpus: 200, signal 47916/54711 (executing program) 2022/10/04 09:38:27 fetching corpus: 250, signal 52505/60875 (executing program) 2022/10/04 09:38:27 fetching corpus: 300, signal 58504/68300 (executing program) 2022/10/04 09:38:27 fetching corpus: 350, signal 61486/72787 (executing program) 2022/10/04 09:38:27 fetching corpus: 400, signal 64386/77196 (executing program) 2022/10/04 09:38:27 fetching corpus: 450, signal 70180/84248 (executing program) 2022/10/04 09:38:27 fetching corpus: 500, signal 73968/89298 (executing program) 2022/10/04 09:38:27 fetching corpus: 550, signal 77090/93736 (executing program) 2022/10/04 09:38:27 fetching corpus: 600, signal 79352/97323 (executing program) 2022/10/04 09:38:28 fetching corpus: 650, signal 81647/100937 (executing program) 2022/10/04 09:38:28 fetching corpus: 700, signal 83714/104330 (executing program) 2022/10/04 09:38:28 fetching corpus: 750, signal 85260/107220 (executing program) 2022/10/04 09:38:28 fetching corpus: 800, signal 88643/111688 (executing program) 2022/10/04 09:38:28 fetching corpus: 850, signal 90342/114665 (executing program) 2022/10/04 09:38:28 fetching corpus: 900, signal 92680/118213 (executing program) 2022/10/04 09:38:28 fetching corpus: 950, signal 94793/121467 (executing program) 2022/10/04 09:38:28 fetching corpus: 1000, signal 97079/124807 (executing program) 2022/10/04 09:38:29 fetching corpus: 1050, signal 99222/128030 (executing program) 2022/10/04 09:38:29 fetching corpus: 1100, signal 101615/131464 (executing program) 2022/10/04 09:38:29 fetching corpus: 1150, signal 102867/133909 (executing program) 2022/10/04 09:38:29 fetching corpus: 1200, signal 105813/137803 (executing program) 2022/10/04 09:38:29 fetching corpus: 1250, signal 107685/140693 (executing program) 2022/10/04 09:38:29 fetching corpus: 1300, signal 110001/143955 (executing program) 2022/10/04 09:38:29 fetching corpus: 1350, signal 112308/147225 (executing program) 2022/10/04 09:38:29 fetching corpus: 1400, signal 113460/149436 (executing program) 2022/10/04 09:38:29 fetching corpus: 1450, signal 115022/151991 (executing program) 2022/10/04 09:38:30 fetching corpus: 1500, signal 118114/155818 (executing program) 2022/10/04 09:38:30 fetching corpus: 1550, signal 120327/158842 (executing program) 2022/10/04 09:38:30 fetching corpus: 1600, signal 122407/161708 (executing program) 2022/10/04 09:38:30 fetching corpus: 1650, signal 124173/164329 (executing program) 2022/10/04 09:38:30 fetching corpus: 1700, signal 126025/167037 (executing program) 2022/10/04 09:38:30 fetching corpus: 1750, signal 129522/171011 (executing program) 2022/10/04 09:38:30 fetching corpus: 1800, signal 131542/173742 (executing program) 2022/10/04 09:38:30 fetching corpus: 1850, signal 134025/176805 (executing program) 2022/10/04 09:38:31 fetching corpus: 1900, signal 136453/179836 (executing program) 2022/10/04 09:38:31 fetching corpus: 1950, signal 137918/182089 (executing program) 2022/10/04 09:38:31 fetching corpus: 2000, signal 139285/184259 (executing program) 2022/10/04 09:38:31 fetching corpus: 2050, signal 139829/185778 (executing program) 2022/10/04 09:38:31 fetching corpus: 2100, signal 140379/187276 (executing program) 2022/10/04 09:38:31 fetching corpus: 2150, signal 141335/189115 (executing program) 2022/10/04 09:38:31 fetching corpus: 2200, signal 143212/191622 (executing program) 2022/10/04 09:38:31 fetching corpus: 2250, signal 145621/194465 (executing program) 2022/10/04 09:38:32 fetching corpus: 2300, signal 147191/196719 (executing program) 2022/10/04 09:38:32 fetching corpus: 2350, signal 148702/198820 (executing program) 2022/10/04 09:38:32 fetching corpus: 2400, signal 150636/201311 (executing program) 2022/10/04 09:38:32 fetching corpus: 2450, signal 152870/203869 (executing program) 2022/10/04 09:38:32 fetching corpus: 2500, signal 153921/205617 (executing program) 2022/10/04 09:38:32 fetching corpus: 2550, signal 154988/207366 (executing program) 2022/10/04 09:38:32 fetching corpus: 2600, signal 155850/208939 (executing program) 2022/10/04 09:38:32 fetching corpus: 2650, signal 156655/210461 (executing program) 2022/10/04 09:38:33 fetching corpus: 2700, signal 157622/212129 (executing program) 2022/10/04 09:38:33 fetching corpus: 2750, signal 158877/213953 (executing program) 2022/10/04 09:38:33 fetching corpus: 2800, signal 159527/215384 (executing program) 2022/10/04 09:38:33 fetching corpus: 2850, signal 160114/216750 (executing program) 2022/10/04 09:38:33 fetching corpus: 2900, signal 161048/218311 (executing program) 2022/10/04 09:38:33 fetching corpus: 2950, signal 162349/220218 (executing program) 2022/10/04 09:38:33 fetching corpus: 3000, signal 163165/221699 (executing program) 2022/10/04 09:38:33 fetching corpus: 3050, signal 164517/223514 (executing program) 2022/10/04 09:38:34 fetching corpus: 3100, signal 165597/225163 (executing program) 2022/10/04 09:38:34 fetching corpus: 3150, signal 166089/226460 (executing program) 2022/10/04 09:38:34 fetching corpus: 3200, signal 167037/228036 (executing program) 2022/10/04 09:38:34 fetching corpus: 3250, signal 168075/229595 (executing program) 2022/10/04 09:38:34 fetching corpus: 3300, signal 168945/231058 (executing program) 2022/10/04 09:38:34 fetching corpus: 3350, signal 169648/232459 (executing program) 2022/10/04 09:38:34 fetching corpus: 3400, signal 171091/234268 (executing program) 2022/10/04 09:38:34 fetching corpus: 3450, signal 171651/235568 (executing program) 2022/10/04 09:38:35 fetching corpus: 3500, signal 172209/236811 (executing program) 2022/10/04 09:38:35 fetching corpus: 3550, signal 173669/238580 (executing program) 2022/10/04 09:38:35 fetching corpus: 3600, signal 174376/239884 (executing program) 2022/10/04 09:38:35 fetching corpus: 3650, signal 174968/241092 (executing program) 2022/10/04 09:38:35 fetching corpus: 3700, signal 175929/242463 (executing program) 2022/10/04 09:38:35 fetching corpus: 3750, signal 176932/243875 (executing program) 2022/10/04 09:38:35 fetching corpus: 3800, signal 177636/245156 (executing program) 2022/10/04 09:38:35 fetching corpus: 3850, signal 178283/246389 (executing program) 2022/10/04 09:38:35 fetching corpus: 3900, signal 178801/247554 (executing program) 2022/10/04 09:38:36 fetching corpus: 3950, signal 179327/248712 (executing program) 2022/10/04 09:38:36 fetching corpus: 4000, signal 180110/249963 (executing program) 2022/10/04 09:38:36 fetching corpus: 4050, signal 181398/251496 (executing program) 2022/10/04 09:38:36 fetching corpus: 4100, signal 181772/252534 (executing program) 2022/10/04 09:38:36 fetching corpus: 4150, signal 182619/253771 (executing program) 2022/10/04 09:38:36 fetching corpus: 4200, signal 183386/255035 (executing program) 2022/10/04 09:38:36 fetching corpus: 4250, signal 184321/256418 (executing program) 2022/10/04 09:38:36 fetching corpus: 4300, signal 184964/257578 (executing program) 2022/10/04 09:38:37 fetching corpus: 4350, signal 185753/258773 (executing program) 2022/10/04 09:38:37 fetching corpus: 4400, signal 186478/259914 (executing program) 2022/10/04 09:38:37 fetching corpus: 4450, signal 186913/260922 (executing program) 2022/10/04 09:38:37 fetching corpus: 4500, signal 187571/262060 (executing program) 2022/10/04 09:38:37 fetching corpus: 4550, signal 188285/263212 (executing program) 2022/10/04 09:38:37 fetching corpus: 4600, signal 188937/264326 (executing program) 2022/10/04 09:38:37 fetching corpus: 4650, signal 189527/265370 (executing program) 2022/10/04 09:38:37 fetching corpus: 4700, signal 191440/266984 (executing program) 2022/10/04 09:38:38 fetching corpus: 4750, signal 192309/268175 (executing program) 2022/10/04 09:38:38 fetching corpus: 4800, signal 192881/269206 (executing program) 2022/10/04 09:38:38 fetching corpus: 4850, signal 193641/270378 (executing program) 2022/10/04 09:38:38 fetching corpus: 4900, signal 194091/271346 (executing program) 2022/10/04 09:38:38 fetching corpus: 4950, signal 194501/272279 (executing program) 2022/10/04 09:38:38 fetching corpus: 5000, signal 194776/273165 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/273977 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/274762 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/275539 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/276320 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/277095 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/277872 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/278651 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/279428 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/280227 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/281034 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/281823 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/282601 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/283394 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/284151 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/284935 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/285770 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/286570 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/287381 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/288165 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/288906 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/289680 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/290486 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/291277 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/292065 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/292793 (executing program) 2022/10/04 09:38:38 fetching corpus: 5014, signal 194825/293621 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/294411 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/295198 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/295947 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/296755 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/297555 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/298336 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/299127 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/299909 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/300701 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/301448 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/302227 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/302979 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/303777 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/304541 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/305302 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/306095 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/306873 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/307650 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/308450 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/309235 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/310005 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/310750 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/311510 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/312299 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/313070 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/313876 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/314689 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/315491 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/316227 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/317020 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/317794 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/318298 (executing program) 2022/10/04 09:38:39 fetching corpus: 5014, signal 194825/318298 (executing program) 2022/10/04 09:38:42 starting 8 fuzzer processes 09:38:42 executing program 0: execve(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140)=[&(0x7f0000000040)='+&\x00', &(0x7f0000000080)='\x00', &(0x7f00000000c0)='\x00', &(0x7f0000000100)='\x00'], &(0x7f0000000280)=[&(0x7f0000000180)='${&)\x00', &(0x7f00000001c0)='\x00', &(0x7f0000000200)='\x00', &(0x7f0000000240)='^]\x00']) lremovexattr(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)=@random={'os2.', '${&)\x00'}) write$P9_RREADDIR(0xffffffffffffffff, &(0x7f0000000340)={0x122, 0x29, 0x1, {0x8b, [{{0x40, 0x4, 0x1}, 0x2, 0x3, 0x7, './file0'}, {{0x2, 0x2, 0x8}, 0x20, 0x9, 0x7, './file0'}, {{0x4, 0x3, 0x3}, 0x10000, 0x7, 0x7, './file0'}, {{0x10}, 0x1f, 0x1, 0x7, './file0'}, {{0x10, 0x0, 0x4}, 0x0, 0x1, 0x7, './file0'}, {{0x0, 0x1}, 0xfff, 0x7f, 0x7, './file0'}, {{0x10, 0x2, 0x7}, 0x9, 0x80, 0x7, './file0'}, {{0x1, 0x4, 0x5}, 0x5, 0x8, 0x7, './file0'}, {{0x40, 0x7, 0x4}, 0x40, 0x0, 0x7, './file0'}]}}, 0x122) lremovexattr(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)=@random={'security.', 'os2.'}) r0 = socket(0x21, 0x5, 0x4) recvmsg(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000500)=""/7, 0x7}, {&(0x7f0000000540)=""/150, 0x96}, {&(0x7f0000000600)=""/20, 0x14}], 0x3}, 0x12000) r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) r2 = openat(r1, &(0x7f00000006c0)='./file0\x00', 0x100, 0x2) ioctl$sock_SIOCSPGRP(r1, 0x8902, &(0x7f0000000700)=0xffffffffffffffff) pivot_root(&(0x7f0000000740)='./file0\x00', &(0x7f0000000780)='./file0\x00') mknodat$null(r2, &(0x7f00000007c0)='./file0\x00', 0x1, 0x103) syz_io_uring_setup(0x6230, &(0x7f0000000800)={0x0, 0x8340, 0x1, 0x1, 0x1d9, 0x0, r2}, &(0x7f0000ff4000/0x9000)=nil, &(0x7f0000ff4000/0x4000)=nil, &(0x7f0000000880), &(0x7f00000008c0)=0x0) syz_io_uring_submit(0x0, r3, &(0x7f0000000940)=@IORING_OP_OPENAT={0x12, 0x1, 0x0, r1, 0x0, &(0x7f0000000900)='./file0\x00', 0x20, 0x307900, 0x23456}, 0x6a05) lsetxattr$trusted_overlay_opaque(&(0x7f0000000980)='./file0\x00', &(0x7f00000009c0), &(0x7f0000000a00), 0x2, 0x3) r4 = ioctl$TUNGETDEVNETNS(r2, 0x54e3, 0x0) fsetxattr$security_ima(r4, &(0x7f0000000a40), &(0x7f0000000a80)=@md5={0x1, "31959145d788b61a78d1abfe9af2b660"}, 0x11, 0x3) fsync(r4) openat2$dir(0xffffffffffffff9c, &(0x7f0000000ac0)='./file0\x00', &(0x7f0000000b00)={0x8000, 0xd0, 0x2}, 0x18) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b80), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x2c, r5, 0x2, 0x70bd2d, 0x25dfdbff, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x4000005) 09:38:42 executing program 1: r0 = semget$private(0x0, 0x2, 0x608) semctl$SETALL(r0, 0x0, 0x11, &(0x7f0000000000)=[0x8001, 0x1, 0x8001, 0x4, 0x3]) r1 = semget(0x1, 0x4, 0x48) semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000000040)=[0x20, 0x0]) semtimedop(r0, &(0x7f0000000080)=[{0x0, 0xd5fd, 0x800}, {0x3, 0x100, 0x1000}, {0x2, 0x3, 0x800}, {0x3, 0x0, 0x1800}, {0x4, 0x3, 0x1000}, {0x4, 0x1, 0x800}, {0x4, 0x2, 0x1000}, {0x1, 0x45, 0x1800}, {0x1, 0x7, 0x1000}, {0x2, 0x7}], 0xa, &(0x7f00000000c0)={0x77359400}) r2 = semget(0x0, 0x3, 0x40) semctl$GETZCNT(r2, 0x0, 0xf, &(0x7f0000000100)=""/29) semtimedop(r2, &(0x7f0000000140)=[{0x1, 0x2, 0x1000}, {0x3, 0x6, 0x1800}, {0x0, 0x5, 0x400}, {0x2, 0x3}, {0x4, 0x3f}, {0x4, 0x1}, {0x0, 0x2, 0x800}, {0x2, 0x4, 0x800}, {0x0, 0x200, 0x1000}, {0x3, 0x78ed, 0x800}], 0xa, &(0x7f0000000180)) semctl$GETNCNT(r0, 0x4, 0xe, &(0x7f00000001c0)=""/140) r3 = semget(0x2, 0x3, 0x2) semctl$GETZCNT(r3, 0x224dfedf57ccc6b6, 0xf, &(0x7f0000000280)=""/4096) semtimedop(r0, &(0x7f0000001280)=[{0x0, 0xf5}, {0x0, 0x7a20}, {0x3, 0x2, 0x800}, {0x4, 0x6, 0x800}], 0x4, &(0x7f00000012c0)) r4 = semget(0x2, 0x3, 0x44) semctl$IPC_RMID(r4, 0x0, 0x0) semtimedop(r0, &(0x7f0000001300)=[{0x3, 0xfffc, 0x800}, {0x2, 0x4, 0x1c00}, {0x3, 0x4, 0x800}, {0x1, 0xc77e}, {0x3, 0x8}, {0x2, 0x5}, {0x1, 0x6, 0x1800}], 0x7, &(0x7f0000001340)) r5 = semget$private(0x0, 0x3, 0x201) semctl$IPC_STAT(r5, 0x0, 0x2, &(0x7f0000001380)=""/4096) semctl$IPC_RMID(r3, 0x0, 0x0) semtimedop(r2, &(0x7f0000002380)=[{0x4, 0x200}, {0x3, 0x0, 0x1800}], 0x2, &(0x7f00000023c0)={0x77359400}) semtimedop(0x0, &(0x7f0000002400)=[{0x2, 0x300, 0x800}, {0x3, 0xffb1, 0x1800}], 0x2, &(0x7f0000002440)) 09:38:42 executing program 2: ioctl$EXT4_IOC_ALLOC_DA_BLKS(0xffffffffffffffff, 0x660c) ioctl$sock_inet_SIOCGIFADDR(0xffffffffffffffff, 0x8915, &(0x7f0000000000)={'ipvlan1\x00', {0x2, 0x0, @empty}}) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(0xffffffffffffffff, 0x4008941a, &(0x7f0000000040)) sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x240}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x5c, 0xa, 0xa, 0x101, 0x0, 0x0, {0xe, 0x0, 0x6}, [@NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x4}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x35}, @NFTA_SET_EXPR={0x34, 0x11, 0x0, 0x1, @redir={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_REDIR_FLAGS={0x8, 0x3, 0x1, 0x0, 0x11}, @NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x9}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000081}, 0x0) r0 = syz_open_dev$rtc(&(0x7f00000001c0), 0x9, 0x200001) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) r2 = dup2(r0, r0) sendmsg$DEVLINK_CMD_RATE_GET(r2, &(0x7f0000000380)={&(0x7f0000000200), 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0xc4, 0x0, 0x4, 0x70bd27, 0x25dfdbff, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0x90, 0xa8, @random="be223adc94705da9bda7ea552cbff0d699d0ad460522a42250cdc6a53142ee5014da7ace2a83642c629123c3b357bdeb288942424a69035a02963077b9d34c2e0e8be5aeecbc65b9acc9c3ebd97f21726a5af71d32f3e230cba11c01c8c7427a64055080a470a36e4e649945f32726f4dcfd745fce78310cde1090d250340262e91de6f690b9f2ee3755defe"}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x84}, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r3, 0xf50f, 0x0) syz_genetlink_get_family_id$tipc(&(0x7f0000000480), r2) r4 = io_uring_setup(0x7abc, &(0x7f00000004c0)={0x0, 0x575b, 0x0, 0x3, 0x3b2}) write$binfmt_elf32(r4, &(0x7f0000000540)={{0x7f, 0x45, 0x4c, 0x46, 0x8, 0x6, 0x60, 0x7, 0x2, 0x2, 0x6, 0x10000, 0x2f3, 0x38, 0x3a4, 0x8001, 0x8000, 0x20, 0x2, 0xff09, 0x8bd, 0x1}, [{0x60000000, 0x4, 0x7, 0x401, 0x1ff, 0xffffffff, 0xfffffff7, 0x28}], "e5a7f43e6196045d5649d333eeac4ce20091e776f44e4f31a8e361552e7b2dfb3aafaf20dcaef143931eb8ece5ec5da4d4f732d2", ['\x00', '\x00', '\x00', '\x00']}, 0x48c) fsetxattr$security_capability(r4, &(0x7f0000000a00), &(0x7f0000000a40)=@v2={0x2000000, [{0xffff, 0x2ec0}, {0x10001, 0x4a0000}]}, 0x14, 0x3) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000000a80)={0x3, 'batadv_slave_0\x00', {0x7}, 0x80}) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000b00), r1) sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000c40)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000b40)={0xb8, r5, 0x400, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1b8b}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x2}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x1ff}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x10000}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xffff}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x20}]}, @TIPC_NLA_SOCK={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}]}, @TIPC_NLA_SOCK_CON={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80000000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80000000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}]}]}]}, 0xb8}, 0x1, 0x0, 0x0, 0x40}, 0x40) r6 = pidfd_getfd(r2, r3, 0x0) io_uring_register$IORING_REGISTER_FILES(r6, 0x2, &(0x7f0000000c80)=[r2, r0, r4], 0x3) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000d40)={0x3, &(0x7f0000000d00)=[{0x2, 0x1, 0x20, 0xbb}, {0x4, 0x1, 0x8, 0x1}, {0x200, 0x81, 0x4, 0x47c9}]}, 0x10) 09:38:42 executing program 3: syz_usb_connect$cdc_ecm(0x0, 0x58, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x46, 0x1, 0x1, 0x1c, 0x10, 0x0, [{{0x9, 0x4, 0x0, 0x20, 0x3, 0x2, 0x6, 0x0, 0x80, {{0x8, 0x24, 0x6, 0x0, 0x0, "1bdccc"}, {0x5, 0x24, 0x0, 0x9}, {0xd, 0x24, 0xf, 0x1, 0x100, 0x0, 0x3ff, 0x6}, [@mbim_extended={0x8, 0x24, 0x1c, 0x1, 0x4, 0x7}]}, {[], {{0x9, 0x5, 0x82, 0x2, 0x400, 0x8, 0x3, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x3, 0x80, 0xff}}}}}]}}]}}, &(0x7f0000000480)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x110, 0x7, 0x80, 0xff, 0x20, 0x2}, 0x4d, &(0x7f00000000c0)={0x5, 0xf, 0x4d, 0x5, [@wireless={0xb, 0x10, 0x1, 0xc, 0x6, 0x9, 0x6e, 0xeed, 0x7}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0xe, 0x4, 0x2, 0x1}, @wireless={0xb, 0x10, 0x1, 0x2, 0x0, 0x40, 0x0, 0x7, 0x7f}, @ss_container_id={0x14, 0x10, 0x4, 0x75, "a2566f9c034aaa636f5486569129fac0"}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "dd4a467eb964e147969ebb1a9ad7ed7f"}]}, 0x6, [{0x93, &(0x7f0000000140)=@string={0x93, 0x3, "b22e2edfe41c674eedfe4be67bf4f795ed02df0d0e1750e0ea4d31907352a105281fba64ade7a5f21c7e6f9fbdb59679f8dba6c453c95f1f5166f2c309760399c53ae71c3e08d5b8ae89a2c0fef5b582e502b6ed5e322e6fa7a9c5508df65824e661e9ff5ce0e1264668b076826b22fc9d97789423f80f0153dd4034ba37974cc947918ce9ad17a5d4af99f1e7ba5bfc4e"}}, {0xbd, &(0x7f0000000200)=@string={0xbd, 0x3, "f3fda453f9dfbf72bb567ce030277d06628b96b1333c5ae9cf4d206b41bd3553b29e08b239469b833141ae2332220c76e3291446d7ee0ec5931b2081c59b56c83e70c3dd74e24c52e7c226c54b3040ddcba1eea4d2d5551a458d83bf204098e10135d6b8a6e5f260994321607209b0c573ee8e0bf43873b42fb477845613cec6a275565e151d27e995397673c9b224137de05115ba63a1c36d7dd1392403997d54a553a3518290fe0eb840e576af305849802fcabb8d46a4ade31f"}}, {0x4, &(0x7f00000002c0)=@lang_id={0x4, 0x3, 0x421}}, {0xcf, &(0x7f0000000300)=@string={0xcf, 0x3, "34503eb29da8e2abc4effa555f512098f8f78ba945360e4eeaf1fef5d4f063ff42a0c2f4f312316a2efdc12a640ff4579828f6fce3cf84b2fb3ae224a8c2b2aa84af88fb83cf6cdef3f2b1e21a5bc994ee8ab1b1159a3d12f2a37a7bfd29e046bc5b12540eaabc3bb2f68527fcd6dc0f3c0b6d4ccb111270192b14068981c0734befe3d057f91d468e6f227378e7766534ef9f3fbe59b42b1f2ff5d453b69605eae0b8300a047ff642b521ee95ca68f007ce24f1713418d939fed7594419113b64f6880ae75de72ccf776a88e8"}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x422}}, {0x3d, &(0x7f0000000440)=@string={0x3d, 0x3, "4e285e2743c16941ba32ec683e84d0701d0a4f97fa31ed98014a63ef00d68432c9cb3037ff4ecc840b526460124de34cdaf685a820758ddca12be6"}}]}) syz_usb_connect$cdc_ncm(0x5, 0x95, &(0x7f0000000500)={{0x12, 0x1, 0x110, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x83, 0x2, 0x1, 0x5, 0x0, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x9, 0x24, 0x6, 0x0, 0x1, "d81abbd0"}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x3a6b, 0x7, 0x0, 0x80}, {0x6, 0x24, 0x1a, 0x1, 0x3a}, [@mbim={0xc, 0x24, 0x1b, 0x5, 0x0, 0x7, 0x0, 0x7, 0x2}, @country_functional={0x12, 0x24, 0x7, 0x40, 0x4, [0x3, 0x4, 0x6, 0x9, 0x2, 0x9]}, @obex={0x5, 0x24, 0x15, 0xe2}]}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x5, 0x2}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200, 0x5, 0x9, 0x6b}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x6, 0xbb, 0x8}}}}}}}]}}, &(0x7f0000000800)={0xa, &(0x7f00000005c0)={0xa, 0x6, 0x201, 0xc8, 0x6, 0x34, 0x8, 0x1}, 0x7d, &(0x7f0000000600)={0x5, 0xf, 0x7d, 0x5, [@generic={0x4c, 0x10, 0x3, "5c9f7e2fda0540f521fa5df483575817ceeded0334398a3537bdc4c5201fc2905aa1464807dd7d0e4bdd4ce319a27b7ee2bfa0897afa77f21c370ef8b601deeccf16e0e581ba0a77c1"}, @ss_container_id={0x14, 0x10, 0x4, 0x2, "ce214d848bf1c99eb048ace20374d34b"}, @ptm_cap={0x3}, @wireless={0xb, 0x10, 0x1, 0xc, 0x92, 0xee, 0x3, 0x401, 0xfb}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x7, 0xda, 0x8, 0x6}]}, 0x4, [{0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x3001}}, {0x3b, &(0x7f00000006c0)=@string={0x3b, 0x3, "71516523b16c608f530fe3c76aa2a9f486ad17816015dcc29fd49eabf2a19ebc69390cee1d03611b819f1430ca74a755071f730cd5efb8911d"}}, {0xa1, &(0x7f0000000700)=@string={0xa1, 0x3, "684c1933cf97fed7552fec37c144ee39cc9531297e055364a0e31826e65baa7669b87e02646738e3649eafb644c15553be5d213f89212f68ab5dc66b82b29131267912d20db50e9aaad0ee6b07db9030a2ec63707f201291c5eb99e2e80aa04cccd2a8968aef19528c40633e4bcab9f46add83146e0b3de2416960ba1d30a3e499a126fafa097db2baf7633e82f80808f1dbcb69299203c52e196d3189249f"}}, {0x26, &(0x7f00000007c0)=@string={0x26, 0x3, "84eaf067cde791fc6f21b45b50f7f348a06de16555c97e8da4b2fac3c238bb36a3a8228f"}}]}) syz_usb_connect$uac1(0x5, 0xb4, &(0x7f0000000880)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xa2, 0x3, 0x1, 0x5, 0x80, 0x81, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x8, 0x80}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xa, 0x24, 0x2, 0x2, 0xfffe, 0x8, 0x5, '/'}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x8f6, 0x2, 0x3f, "73cf"}]}, {{0x9, 0x5, 0x1, 0x9, 0x3ff, 0x1, 0x3, 0xfb, {0x7, 0x25, 0x1, 0x80, 0xd, 0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_continuous={0x8, 0x24, 0x2, 0x1, 0x40, 0x1, 0x4, 0xd0}, @format_type_i_discrete={0x9, 0x24, 0x2, 0x1, 0x1, 0x4, 0x4, 0x1, "c9"}, @format_type_i_discrete={0xc, 0x24, 0x2, 0x1, 0x4, 0x2, 0x75, 0xff, "debd4595"}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0xd0, 0x3, 0x9, 0x8, "b123"}, @as_header={0x7, 0x24, 0x1, 0x3f, 0xd0}]}, {{0x9, 0x5, 0x82, 0x9, 0x40, 0xb4, 0x3, 0x4, {0x7, 0x25, 0x1, 0x80, 0x6, 0x5}}}}}}}]}}, &(0x7f0000000a40)={0xa, &(0x7f0000000940)={0xa, 0x6, 0x300, 0x8, 0x84, 0x5, 0x40, 0xd4}, 0x68, &(0x7f0000000980)={0x5, 0xf, 0x68, 0x5, [@ssp_cap={0x24, 0x10, 0xa, 0xfb, 0x6, 0x4, 0x0, 0x5, [0xc01e, 0x60c0, 0xf, 0xff0030, 0xff3f, 0xf]}, @ssp_cap={0x20, 0x10, 0xa, 0xe9, 0x5, 0x0, 0xf000, 0x0, [0x3f30, 0x1f40, 0xff00, 0xc000, 0xffc0c0]}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x4, 0x6a, 0xfa, 0x1}, @wireless={0xb, 0x10, 0x1, 0xc, 0x31, 0xff, 0x81, 0x6}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x3, 0x7f, 0x1, 0x6}]}, 0x1, [{0x4, &(0x7f0000000a00)=@lang_id={0x4, 0x3, 0x380a}}]}) syz_usb_connect$cdc_ncm(0x5, 0x96, &(0x7f0000000a80)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x84, 0x2, 0x1, 0x3, 0xc0, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xb, 0x24, 0x6, 0x0, 0x1, "8d9cd1f9ee63"}, {0x5, 0x24, 0x0, 0xfffa}, {0xd, 0x24, 0xf, 0x1, 0x401, 0x6c, 0x1, 0x81}, {0x6, 0x24, 0x1a, 0x1, 0x2}, [@acm={0x4, 0x24, 0x2, 0x5}, @country_functional={0xa, 0x24, 0x7, 0x6, 0x3, [0x77, 0x5]}, @network_terminal={0x7, 0x24, 0xa, 0x4, 0x1, 0x7, 0x1}, @obex={0x5, 0x24, 0x15, 0x5}, @country_functional={0x8, 0x24, 0x7, 0x0, 0xfffd, [0x6]}]}, {{0x9, 0x5, 0x81, 0x3, 0x10, 0x80, 0x20, 0x8}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200, 0xff, 0x7, 0x9}}, {{0x9, 0x5, 0x3, 0x2, 0x3bf, 0x7f, 0x4, 0xa}}}}}}}]}}, &(0x7f0000000e00)={0xa, &(0x7f0000000b40)={0xa, 0x6, 0x110, 0x1f, 0x5, 0x8, 0x10, 0x7}, 0x1c, &(0x7f0000000b80)={0x5, 0xf, 0x1c, 0x2, [@ptm_cap={0x3}, @ssp_cap={0x14, 0x10, 0xa, 0x4, 0x2, 0x800, 0x11000, 0x30f5, [0xf, 0x30]}]}, 0x5, [{0x4, &(0x7f0000000bc0)=@lang_id={0x4, 0x3, 0x40f}}, {0xb3, &(0x7f0000000c00)=@string={0xb3, 0x3, "b78e084db9c4ffed9852fea58ef247955524a533811960a3187d06361e867cbbf669a6e8d4a6b3eecaad293d2abcbfd34333e8e0157789fba14c119f6e1c14a307d6ea2d13bce77253e237a94854020314b41a58687026420861d7f8547cb208a45068d96c6bada62fb0388e276b1b0ded534123c5d94b373304cd5f5021f94d6d3634553ab9509f1e0d78d578b2e1e6db0fd9e88c92d15d06d82cf0758820fd9170a87f94a940a7878896cc5b07980543"}}, {0x4, &(0x7f0000000cc0)=@lang_id={0x4, 0x3, 0x406}}, {0x4, &(0x7f0000000d00)=@lang_id={0x4, 0x3, 0x420}}, {0xa1, &(0x7f0000000d40)=@string={0xa1, 0x3, "2cfacae21a0274ce92e0e67204ff114cfb15cc18897c4ca08bbf6c7615be6d47e367a08bca5e617aee81c53fc567a0334ceb9d3075d7075f285ae348c36794423f79da43f1d42653b5e3ca9e9922230af2c82038cd448cf25ffc1ac9ee7486090bbbd4f415ed4efef13ec61a34d31ae212c4a493a0ae8daf141b388f4a5ba53d224bc90f952e7e65ae030ba35a11f39deeedbb3f0dc8019ff0f8a40fc52f7f"}}]}) syz_usb_connect$uac1(0x0, 0x9b, &(0x7f0000000e80)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x89, 0x3, 0x1, 0x0, 0x0, 0x1, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x6, 0x7}, [@mixer_unit={0x5, 0x24, 0x4, 0x3, 0x58}, @input_terminal={0xc, 0x24, 0x2, 0x2, 0x205, 0x6, 0x9, 0x3, 0x7}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0xe7, 0x4, 0x5}, @format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x7, 0x8001, 0x8}, @format_type_i_discrete={0x9, 0x24, 0x2, 0x1, 0x80, 0x1, 0x4, 0xc9, '3'}]}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x15, 0xc9, 0x4, {0x7, 0x25, 0x1, 0x80, 0xff, 0x9}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x7ff, 0x4, 0x5, 0xff, {0x7, 0x25, 0x1, 0x82, 0x20, 0xe4b}}}}}}}]}}, &(0x7f0000001300)={0xa, &(0x7f0000000f40)={0xa, 0x6, 0x201, 0x3, 0x4, 0xf8, 0x10, 0x6}, 0x9e, &(0x7f0000000f80)={0x5, 0xf, 0x9e, 0x4, [@ssp_cap={0x20, 0x10, 0xa, 0x1, 0x5, 0x9ae, 0xf00f, 0x1000, [0x3f17, 0xc03f, 0xc0, 0x1e, 0x0]}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x9, 0xc, 0x1f}, @ssp_cap={0x24, 0x10, 0xa, 0x6, 0x6, 0x8, 0xf000, 0x5, [0xff0000, 0xff0000, 0xc7, 0xff, 0xff3f00, 0xff0000]}, @generic={0x4e, 0x10, 0x3, "1879c23a4e091d92c30be17f00b9987afc6049d95f2a235fe0a3d2da1c490aa89277a93985bbbb8ff9d16b08993886b978a6200f70b2c553feeb4eddda9834604f5bbaf3386d42064c061f"}]}, 0x5, [{0xf0, &(0x7f0000001040)=@string={0xf0, 0x3, "7514ba174463cecdb1fb5ea9cecff193658b8bbda69ec0789c655a5805c3a7b02b04db24952b041a3a30e4714f4abcee8645272fde04fe0205408134cdb7f43e3e7c55a416ac0c74569c9e012e3bacbe7419dec75cc87fc535aba92a3e82eb431305d53505a98227520d80a546e25cba9deb1310042b3c30e0e6b2dca08678d8e56049715712fcf421b7d0027690e38fb89cb213fde64603d02acb44015152ac353f24a5b12ce56a00ba36404e5a908990ff0b97b5686d4e0b6be560e957eec1c52f9f188605754eb89f982e6478b60a2866bfefe23a87ed9ac586c609e88d1a51d732424ce091bbf6f85cccc7b2"}}, {0x4, &(0x7f0000001140)=@lang_id={0x4, 0x3, 0x816}}, {0x4, &(0x7f0000001180)=@lang_id={0x4, 0x3, 0x82c}}, {0x2b, &(0x7f00000011c0)=@string={0x2b, 0x3, "84f087a006d9682eaffdc24b7bd8607e5ab661b9d56b6932ab93e0f66a6021808198162c653adbca98"}}, {0xdf, &(0x7f0000001200)=@string={0xdf, 0x3, "623237753f126356474d4262e64ab3229b9ad387adbfcc473c4fdec8fa9e191ea088fa3326411c17388eb0dec61ef282436c51671f313883122d2814957d3b6be659b6db3ad0c0104ec195df5e221abab856cb448a55fa42fc23916c0d1942133ddf347acb706a41d21e5a4703a7d35f090dedb813abef56df69c64969f8058c195a9985e23ddadaf9be1685965d037fa0036023a44195b9636cc18ebee8e995d23826c476e58e42b9159a2237b09c7d53f640116a2aa24b49b18b051f449c2ce408d5ccd69e5b7e60f0041767f655ef1c872ac30ea94b941120ccbe03"}}]}) syz_usb_connect(0x2, 0x18c, &(0x7f0000001380)={{0x12, 0x1, 0x200, 0x78, 0x6c, 0x6d, 0xc0, 0xbb4, 0xa68, 0xbaab, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x17a, 0x1, 0x8, 0x7, 0x30, 0x1, [{{0x9, 0x4, 0x62, 0x6, 0x9, 0xc5, 0xe5, 0xaa, 0x9, [], [{{0x9, 0x5, 0x0, 0x0, 0x400, 0x0, 0x39, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x2, 0x7fff}]}}, {{0x9, 0x5, 0x2, 0x0, 0x400, 0x1, 0x6, 0x1}}, {{0x9, 0x5, 0xb, 0x0, 0x200, 0x7, 0x7, 0x7f, [@generic={0x76, 0x7, "a3e6db5aa04c36b445c1f6934da8419a89700eab1e860de73ca03eae3751f339272c61e2aedcc37d2889924c81b6d16345ee7f903d15f07b4f8864cbf1bf4da844af80a5172acfa65eb301602b37a463242db34aab8de6435baf98bae5d928ab267eca5e8544627fa31e80b8e49b033407270224"}, @generic={0x10, 0xb, "ca9460b6e9fb9fd13d4d4334d071"}]}}, {{0x9, 0x5, 0x4, 0x0, 0x40, 0x4, 0xdb, 0x40}}, {{0x9, 0x5, 0x8, 0x11, 0x20, 0x1f, 0x3, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x82, 0x9a, 0x3}, @generic={0x37, 0x4, "15d886187b5c2ea137ce5e1ae6feba33ef2efe1de02e38a96f1b289045f3006e4620f65c3ca69f2ba131f742e587005bc283adc750"}]}}, {{0x9, 0x5, 0x4, 0x102efd293d803d70, 0x8, 0x1f, 0x7, 0xb}}, {{0x9, 0x5, 0x8c, 0xc, 0x200, 0x1, 0x2, 0xde}}, {{0x9, 0x5, 0xf, 0x1, 0x40, 0x20, 0xd5, 0x80}}, {{0x9, 0x5, 0x9, 0xc, 0x10, 0x0, 0x9, 0x40, [@generic={0x4c, 0xc, "8d04db4f2ce5bbaef6b420acbb7538890e071ee11cdac239204284f179e0873ddf5674e659a1c00aa3917492435ff472e80ba3f35e74f9f4d7aa70fc464ef8a51d65dc6f5959f580109c"}]}}]}}]}}]}}, &(0x7f0000001740)={0xa, &(0x7f0000001540)={0xa, 0x6, 0x200, 0x1f, 0x9, 0x0, 0x20, 0x7}, 0x5, &(0x7f0000001580)={0x5, 0xf, 0x5}, 0x4, [{0x4, &(0x7f00000015c0)=@lang_id={0x4, 0x3, 0x444}}, {0xa6, &(0x7f0000001600)=@string={0xa6, 0x3, "39410d5aee9daa7db5426ff4f55a7d8f7755348fdb3fcdd6a4f7bd54319c8f6baaad91ca887ee45d67bcb7b77136944fb36a569e56c4c037033f532cff71b12756566e6b3084a9fe07a285601c08b015c4c3fd84d056b1f28a5c23e8326d978f5d3850c18f67268ee17c6dede058bc41f714aa77eadbcf6526ab9af465f25543ca43bd0774b54013e0ec41b6354bae883ee6a651b6af02cdf74341f35933c4ca3b2e1c24"}}, {0x4, &(0x7f00000016c0)=@lang_id={0x4, 0x3, 0x2809}}, {0x4, &(0x7f0000001700)=@lang_id={0x4, 0x3, 0x2801}}]}) syz_usb_connect$uac1(0x3, 0xbf, &(0x7f00000017c0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x40, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xad, 0x3, 0x1, 0x3f, 0x10, 0x1, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0xff}, [@feature_unit={0x11, 0x24, 0x6, 0x2, 0x6, 0x5, [0x2, 0x5, 0x3, 0x6, 0x1], 0x8}, @mixer_unit={0x7, 0x24, 0x4, 0x6, 0x20, 'Y\b'}, @processing_unit={0xd, 0x24, 0x7, 0x1, 0x2, 0x5e, "5201265e8c00"}, @selector_unit={0x6, 0x24, 0x5, 0x5, 0x9, "8c"}, @processing_unit={0x9, 0x24, 0x7, 0x5, 0x5, 0x7, "c970"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x8, 0x8, 0x81, 0x6, {0x7, 0x25, 0x1, 0x2, 0x2, 0xcb1}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0xa61, 0xd31, 0x5}, @format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0x40, 0x1, 0x40, 0xf9, "f6b36264c308494e76"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x2, 0x3, 0x20, {0x7, 0x25, 0x1, 0x0, 0xa7, 0x2}}}}}}}]}}, &(0x7f0000001d40)={0xa, &(0x7f0000001880)={0xa, 0x6, 0x300, 0xff, 0x1, 0x1, 0x48, 0x20}, 0x1fd, &(0x7f00000018c0)={0x5, 0xf, 0x1fd, 0x6, [@ss_container_id={0x14, 0x10, 0x4, 0x0, "2881c68f375f4f4f021a1fdd1ba64ec1"}, @generic={0x10, 0x10, 0x2, "51033691e62be48fb7a47ee569"}, @generic={0xb4, 0x10, 0x4, "9dfb28208e61ea65a262a2351a384467d831e6b3be3ebecad524a9150aed94774a6e93d9ea2d2882ff51eb4d138056b954c3be418db103c3d5fa6270de10bbf6537406f46c3374c811f2a86ed1f9622bd100b6daff1b176bd9bf96884cf694198d6e64d865eae49efaee5ceaea087c872a407f8ca6e5d0fd3177e1ca1e5bed5f2d5cd90effb76d3ca3b9596b531eb449b2f181497a08ff2874681141fa4c8f339c84a296cacbfc00c54e57d1bccd1fa249"}, @ssp_cap={0x14, 0x10, 0xa, 0x2, 0x2, 0x8, 0x0, 0x515, [0x0, 0xff3fc0]}, @generic={0xf8, 0x10, 0x3, "770340619fef64c66e4d61216be798b52bb138d67cc3735dec1b6306605cf28344eb79cf35f0287ed730e1f82d6a31657fe05332e92e4be6e2fb3d4b043a650b319da57225a0ac12591e907a92483e30c195ff48ba297daaa495b5d9390d3757025436eed89022fa8f0adaa2f432b170e8b0d3ec01a53105fe87c49b27165d424f00a36f73ad9d9894f44184722c086e9b3dcf4b5acadf997012b82678e2deb017791f33257bac37ff522f51ef2963e274e0825717388ebb1de79efa46b6f8e96b3c45dd32a9fa39b78304bd280b0c18c6a448fb2e5bff77e89fbedcd2d2405a703c463f93c4e4dd6105df1eb494293758e1295f10"}, @ss_container_id={0x14, 0x10, 0x4, 0x5, "53e3df9b15eb74b074dea1690a5a407e"}]}, 0x6, [{0x4, &(0x7f0000001ac0)=@lang_id={0x4, 0x3, 0x40a}}, {0xfc, &(0x7f0000001b00)=@string={0xfc, 0x3, "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"}}, {0x43, &(0x7f0000001c00)=@string={0x43, 0x3, "e26356ea741a1938655c1ba30e287262d923e57a6b8fd05346215f4fd7b89dd8c640c7174351659fc0b070d2e654cad4d5ad9423f2404fc7f5bde2053c8d83c701"}}, {0x4, &(0x7f0000001c80)=@lang_id={0x4, 0x3, 0x40}}, {0x4, &(0x7f0000001cc0)=@lang_id={0x4, 0x3, 0x809}}, {0x36, &(0x7f0000001d00)=@string={0x36, 0x3, "b040384c0b9ab3bb365fad2ba3b2e836b18776080d7f52fceff95d9874d6f7adbae4a9fbec9d8aeacf7964c444680b79e19b8065"}}]}) syz_usb_connect$hid(0x3, 0x36, &(0x7f0000001dc0)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x40, 0x46d, 0xc294, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x4, 0x60, 0x4, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x3, 0x1, 0x0, 0x5, {0x9, 0x21, 0x4, 0x1, 0x1, {0x22, 0x65e}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x5, 0x5, 0x5}}}}}]}}]}}, &(0x7f0000002040)={0xa, &(0x7f0000001e00)={0xa, 0x6, 0x310, 0x6, 0xff, 0x7f, 0xff, 0x5}, 0x24, &(0x7f0000001e40)={0x5, 0xf, 0x24, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x8, "a5fa0e76d620ebdde03292791b2eecd1"}, @wireless={0xb, 0x10, 0x1, 0x2, 0xc8, 0x2, 0x3, 0x9, 0x8}]}, 0x5, [{0x4, &(0x7f0000001e80)=@lang_id={0x4, 0x3, 0x807}}, {0x4, &(0x7f0000001ec0)=@lang_id={0x4, 0x3, 0x801}}, {0x72, &(0x7f0000001f00)=@string={0x72, 0x3, "8578ab1ea52916f068a51daef24224bd03cd253e2c46d02aebf3e370a0a4adafabb53af6be0190f47cf06600672be31e300ddd324fc445ebd7d8d90e6b858c25ea4cd445fc2d691fb8a4266a427ff88d0960c85014f0ca1513dc2d539b66d883a9607c6c9b18ba47441444aa3fff29d8"}}, {0x47, &(0x7f0000001f80)=@string={0x47, 0x3, "6329434209f9a4187bc21a94944c9b47f7becfd9f9619822cc195628f33fda1cf9cc3c5dfd282097ec80f73470f1250c6cdbf0734869012da9d264b4606cd059b2a39eb84f"}}, {0x4, &(0x7f0000002000)=@lang_id={0x4, 0x3, 0x457}}]}) r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f00000020c0)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0) syz_usb_connect$uac1(0x2, 0xc9, &(0x7f0000002100)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xb7, 0x3, 0x1, 0x8, 0x60, 0x5, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x0, 0x18}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x8, 0x19, 0x1005}, @format_type_i_discrete={0x10, 0x24, 0x2, 0x1, 0x80, 0x4, 0x9, 0x7, "155787d018438fba"}, @format_type_i_discrete={0x9, 0x24, 0x2, 0x1, 0x0, 0x3, 0x34, 0x3, '<'}]}, {{0x9, 0x5, 0x1, 0x9, 0x20, 0x3f, 0x5, 0x4, {0x7, 0x25, 0x1, 0x1, 0x1, 0x7ff}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0xff, 0x2, 0x4}, @format_type_i_discrete={0xf, 0x24, 0x2, 0x1, 0xff, 0x4, 0x8, 0x40, "d759859fe68555"}, @format_type_ii_discrete={0x10, 0x24, 0x2, 0x2, 0xa1a, 0xfc, 0x4d, "c022025495c5c9"}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x55d, 0x7, 0x0, "70a7"}, @as_header={0x7, 0x24, 0x1, 0x0, 0x0, 0x1001}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x2, 0x2, 0x0, {0x7, 0x25, 0x1, 0x1, 0x2, 0xc12a}}}}}}}]}}, &(0x7f00000025c0)={0xa, &(0x7f0000002200)={0xa, 0x6, 0x201, 0x40, 0x7f, 0x5, 0xff}, 0x97, &(0x7f0000002240)={0x5, 0xf, 0x97, 0x4, [@ext_cap={0x7, 0x10, 0x2, 0x10, 0x2, 0x7, 0x7}, @wireless={0xb, 0x10, 0x1, 0x4, 0x3, 0x7f, 0x7a, 0x1, 0x9}, @generic={0x76, 0x10, 0xa, "bb970d503eb438467a97b3bfbd2de98e1794af34c5ff4773659f7f39de91a2d20fdf0e0cd7b250569714fca281a653c520b8a1cc99e7aee041d644feb7b488015c0800e83c3f815aa417d86b26fd0cbd494b5394a248373d9a4a0e69825a602b88d58531ab5e9137816a7867dcad08ddebaf91"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x4, 0x81, 0x9, 0x4}]}, 0x7, [{0x2e, &(0x7f0000002300)=@string={0x2e, 0x3, "5c7cef0be35f7bdfea6d7f66f4adc8c11a4ddfd2ff79bd2866c247cd76513f5c8c58c35909b43ec123f1d27d"}}, {0x4, &(0x7f0000002340)=@lang_id={0x4, 0x3, 0x44d}}, {0x3e, &(0x7f0000002380)=@string={0x3e, 0x3, "23cc13fdbcf96f34cf7d9b4ae7a3bfce6478294f4178ba47dc27e693157e67fa8060cbc4f693d800054839b0f778140cc8de8742421f25e3c573fde0"}}, {0x4, &(0x7f00000023c0)=@lang_id={0x4, 0x3, 0x44a}}, {0x8e, &(0x7f0000002400)=@string={0x8e, 0x3, "645fbc6888014e43b5b3ba9f2777b8bdbd05f1078e3d560be2bb2ff26b4cbda435dc0946bae3e84ceef360196401788af77d5fe3bc5227dea28aeec9205bc8c170dc46744e94803deab9806f1873045e58aeb6ab6b57c4471f404404544f6e7f995c53ae593f5aa042be3f3533a8c4700564e86153dc5c46064be2295868fc53f4ca1fc6afd06d674ccc97f0"}}, {0x4c, &(0x7f00000024c0)=@string={0x4c, 0x3, "cbc5af5bdd70f245d3a0b6608981b668ae48e9e9f7b6980dff5e865594f5e944616099fc48c697365d29d1fd6654a038f3fb5c7a774e1c3c85dac1bcb3301353391585a0601052a361c2"}}, {0x6f, &(0x7f0000002540)=@string={0x6f, 0x3, "418e01c257a47632a943af2db9f74e3901a9d44762dcdeeff01aa93f2fa2401a354740007351e338921d5eadb0bf880d2eb7feeed8e4690027592d619fc72ff8544fffcbf810765f702ac54945723c7a63759ee926621b27b0749f58a7e0b1bde8b24a592df92352999eddbc0d"}}]}) r1 = eventfd(0xa8d) eventfd(0x0) eventfd(0x8) syz_usb_connect$hid(0x1, 0x3f, &(0x7f0000002640)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc211, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x0, 0x40, 0x53, [{{0x9, 0x4, 0x0, 0x96, 0x2, 0x3, 0x1, 0x1, 0x1, {0x9, 0x21, 0x0, 0x80, 0x1, {0x22, 0x818}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x69, 0x7f, 0xd3}}, [{{0x9, 0x5, 0x2, 0x3, 0x8, 0x0, 0x6, 0x5}}]}}}]}}]}}, &(0x7f0000002940)={0xa, &(0x7f0000002680)={0xa, 0x6, 0x310, 0xc3, 0x0, 0x80, 0xff, 0xff}, 0x12, &(0x7f00000026c0)={0x5, 0xf, 0x12, 0x2, [@ptm_cap={0x3}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x1, 0x6, 0x1, 0x8}]}, 0x7, [{0x4, &(0x7f0000002700)=@lang_id={0x4, 0x3, 0x1404}}, {0x4, &(0x7f0000002740)=@lang_id={0x4, 0x3, 0x843}}, {0x4, &(0x7f0000002780)=@lang_id={0x4, 0x3, 0x40f}}, {0x4, &(0x7f00000027c0)=@lang_id={0x4, 0x3, 0x480a}}, {0x14, &(0x7f0000002800)=@string={0x14, 0x3, "4bba762b5bedb2f6ee40a36af394c53c6d54"}}, {0x90, &(0x7f0000002840)=@string={0x90, 0x3, "f0d84b4a0425b374180c5f5835ce171880090ce2e7b7470de1b5eec6b983253c3b75dcd9feb0f03d339408635995b7c887ec3d414aa3ddc99473de59e29c8209e96973552b348720c7f375e1d982a55835a191d1fe53e2e217b2b94569e8748053b13e46bfa0cc82505168f8633cc166187b0ca4ee401fdf1028b14aeb50d1064238628b6bb5278255f30055b457"}}, {0x4, &(0x7f0000002900)=@lang_id={0x4}}]}) write$eventfd(0xffffffffffffffff, &(0x7f00000029c0)=0x3, 0x8) syz_usb_connect(0x0, 0x43a, &(0x7f0000002a00)={{0x12, 0x1, 0x420, 0xb0, 0x81, 0x40, 0x40, 0xbb4, 0xa12, 0xd75, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x428, 0x1, 0x2, 0x1, 0x40, 0x3, [{{0x9, 0x4, 0x7c, 0x6, 0x9, 0x30, 0xa0, 0x45, 0x8, [], [{{0x9, 0x5, 0x0, 0x0, 0x400, 0x2a, 0x8, 0x8, [@generic={0x9d, 0x3c, "0f33bceffde90a343b1518e7d410ae4316b94f1e4cb1d44c04c4fa35af700f6cd9f87edd2ba314eeb6eafc85aa4530c60c2df6af020cbb0df409f094fdbac987906901612161d58e7ae4bce01320664b6317e692504bf4bf449187a3e77fcef56972e0c6586bd24e6853d31a33728deee937e6139bf6d9a8496b215237c6f03c86bef8301ce766cbf2472fa901b5b665ff8dc4fb6f7af0ce587f74"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x66, 0x152a}]}}, {{0x9, 0x5, 0x4, 0xc, 0x3ff, 0x3, 0x28, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x40, 0x4}, @generic={0x47, 0x3, "99eadbeb021f1b34a833cb462e7f30b3e570c571a46af1792c5a7c5a9d0dfcc264c3263aade4201697bdf3f8b3c16144816ae73ac8c7aa74cc6b467ee14aaf38f2fef4ce9c"}]}}, {{0x9, 0x5, 0xc, 0x4, 0x10, 0x6, 0x5, 0x4, [@generic={0xa7, 0x0, "cf885421082d24f36f34cfbb38efe3288a213b68b295ad1cf1451d688d12cc708b6b40cf7c0f4c05dcd18ce845ada8cabf2c162ed1adb9651fd42a475cbafb204d730d18acadc1b06e2402c5f4095173d63139059aef79545922c550880123d4b809c206092ee1d9445dd92e296de49405153390a92f65db3361b700a19ac8365ffcf3340eecf89bd6cb027bb8b80e4f4642ab7ce3bd2faffd8e4d68628be247e00e825974"}, @generic={0xf5, 0x22, "10a72e4bd7c4cfe05b8e47563f53b1c4780123de41650f46bc5b716cc519bc35ccf3cbc8da092b5243d778cc4838f6dc062707396a183949aa9c0492140d16b47a88e9ad73b906bc982dbf22040db1aabaea223212977f6a75627fd25ea9c7ae4444fcd91fa6a0d3dd7929b76a6a7e2c475cbc2009fe660cc7836306edcbc8aebed8d89e821b43dc381d410fcc6589a30f343833c08d3890a73b334adbb53d68c3065e3734055e63a06c0542f6c8e944c3febbe6b6f791716d3ee2a82d3cf9c216f00c0b9f1d5dfde3d72b4465b011f51aaa6b53fd454f7810fb5722630ab8b658ffc7c323f862aeffba511a4b6ea2d4c8527d"}]}}, {{0x9, 0x5, 0xc, 0x0, 0x200, 0x7a, 0x40, 0x80}}, {{0x9, 0x5, 0xb, 0x8, 0x200, 0x3, 0x1, 0x6}}, {{0x9, 0x5, 0x5, 0x10, 0x3ff, 0x9, 0x6, 0x1, [@generic={0xc8, 0x7, "87de5b3f52b7f2226f2c8f8d238bc3d9e7d0ff8dce200d8ad47ff2e1f9353e5ec6d62dea18aeebe913812484cb7ecbd2534664aeb626bdc7a28c75818e69a29233f84fe98cd506e5b60d8adfb541f866d46480f53c794c3f4fe3d6e78b550e8c8894dc3911b100d927ec89dc211eaa271f893028c695ca0b8e877b784c6f996d49e8b3fcd04ef6be9de46a98692c17fc31751a2c4dab6772b2784c3ad13ca4106fb028761c1063ab263b28af5b39fc7ecb9e31555b8d779e651fab24c5abe77d91ba03590295"}]}}, {{0x9, 0x5, 0x2, 0xc, 0x400, 0xd6, 0x8, 0x9, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x0, 0x4}]}}, {{0x9, 0x5, 0xd, 0xc, 0x400, 0xfc, 0x1f, 0x0, [@generic={0x64, 0x22, "33d17f35583cc5a68b56d97d9f47cdeb248881353ea275230f8bf2101bbb8f9d05c8756f57d879bcccdb374f8b39e93a95253bbff31b54f73e80c1d0d9409c7735ac6ec85336df9f032790844bbcf58d2c29eb05b14b46a390de4735e40d92db872a"}]}}, {{0x9, 0x5, 0xf, 0xc, 0x200, 0x1f, 0x1, 0xcd, [@generic={0x4, 0x21, '*y'}]}}]}}]}}]}}, &(0x7f0000003140)={0xa, &(0x7f0000002e40)={0xa, 0x6, 0x250, 0x0, 0xe0, 0x3f, 0xef, 0x4}, 0x159, &(0x7f0000002e80)={0x5, 0xf, 0x159, 0x6, [@ext_cap={0x7, 0x10, 0x2, 0xa, 0x1, 0x3, 0x2}, @generic={0xf6, 0x10, 0x2, "0ea4e5a14af6420c670e2cabcbe97d8be83e2b6c0c617655588dc2c74fc6c1bd26c47f4e47fe7b1330cbafd2ab619e9b142b3bc6fa15d8b59e19549a6752ea9df541bee71ea77b50f67d222acdb6c0a9da456363ce6b9dda9402919ccfad1a1b326d0ce960f0ed606664273a0f943ec8e105ffac8efb10762db52bcc8befc1339c64f58f79f1c85a69d811a65a7db80f314644b055e5155ae7b46836227ecbda7484556940a8137db6ce6c1e089023b95bfc6f2ec9620d4ff83cd64fbc28d959ae04d03ede7c1333be43fd5113caf3eed50df45b61de150aeb77badb90f2b407b9d0b700d2283c2d7efded1f19168f409f8946"}, @ssp_cap={0x14, 0x10, 0xa, 0x0, 0x2, 0x1000, 0xf00f, 0x200, [0xff00c0, 0xf]}, @ptm_cap={0x3}, @ssp_cap={0x24, 0x10, 0xa, 0x5a, 0x6, 0x7375, 0xf000, 0x6, [0xc0cf, 0xffc0f0, 0x0, 0xff0f, 0xf, 0x3e80]}, @ssp_cap={0x1c, 0x10, 0xa, 0x2, 0x4, 0x5, 0x11000, 0x7f, [0xc000, 0xf, 0xf, 0xf]}]}, 0x2, [{0xf2, &(0x7f0000003000)=@string={0xf2, 0x3, "0cc99b37e446453b087e0805ae1b7dac871c2aa905c5ff5457a4a0aade517b4e36811459f2b40a07224f7e6fce80888fcd7668a52bb646533051785e4275189ad48bbf82ebcf234039734f61df7d1aa4e9efff5ebf476e36fb2042dee517de1c9373ff9ae3f827347de4b4658924ded3d46d32d35dc77354990c8007754c7ed9f6799b95607a1d72f4caff641465e95ed7ec07c67a92cc83ddfe29ebe01c55a2133514b987cf97b3c4df2c425a59df00a6c94e8b6b5fc13a7098b34206385e23a568a79228fdd903010c31ab90dc73aed6ec50e18b857e0652d5bf183b8bfda4533b5424c51970e8b7416813adcc99c6"}}, {0x4, &(0x7f0000003100)=@lang_id={0x4, 0x3, 0xecf6}}]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000003180)) write$selinux_attr(r0, &(0x7f0000003380)='system_u:object_r:netlabel_mgmt_exec_t:s0\x00', 0x2a) syz_usb_connect$cdc_ncm(0x2, 0x98, &(0x7f00000033c0)={{0x12, 0x1, 0x200, 0x2, 0x0, 0x0, 0xff, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x86, 0x2, 0x1, 0x0, 0x30, 0x7, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0xa, 0x24, 0x6, 0x0, 0x1, "efd187fc74"}, {0x5, 0x24, 0x0, 0x5}, {0xd, 0x24, 0xf, 0x1, 0x7, 0x200, 0x6, 0x3}, {0x6, 0x24, 0x1a, 0x8, 0x5}, [@mdlm_detail={0xa, 0x24, 0x13, 0x6, "dc4575684e9f"}, @mbim_extended={0x8, 0x24, 0x1c, 0x3, 0xf8, 0x5}, @acm={0x4, 0x24, 0x2, 0x1}, @mbim_extended={0x8, 0x24, 0x1c, 0x3, 0x2, 0x7f}, @dmm={0x7, 0x24, 0x14, 0xfffd, 0x8d2}]}, {{0x9, 0x5, 0x81, 0x3, 0x8, 0x0, 0x40, 0x8}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x3ff, 0x40, 0x80, 0x8}}, {{0x9, 0x5, 0x3, 0x2, 0x8, 0x49, 0x9, 0x7}}}}}}}]}}, &(0x7f0000003900)={0xa, &(0x7f0000003480)={0xa, 0x6, 0x250, 0x2, 0x4, 0xe4, 0xff, 0x6}, 0x123, &(0x7f00000034c0)={0x5, 0xf, 0x123, 0x6, [@ptm_cap={0x3}, @ss_container_id={0x14, 0x10, 0x4, 0x0, "d04b3c6f2c6bcb4988acf9d9fd72cc7a"}, @ss_container_id={0x14, 0x10, 0x4, 0x7, "9e6255654b75ba6fb74300cb67a63ce3"}, @generic={0xcb, 0x10, 0xa, "f09e49f5978651cc92d4931eae70c38d00ba332eee9d41bd8602bb3c3802b5a18d9fca9df57ee24a6f58ab27ad8b63970404aac1ac69b6a2c1ef0fbea5db5dcfbf480915d4bd53c805ecb5b03335dda9dcd8011eb03473377c29eb05ef3cbac119050f8fb477e317fe03dfcd079aab806cb9853359c0a6d74156fe4b7ff2644c2252577fff253ab1b991d9cf360559efe97f7e4a7940fcd6816d90937b379aeff29d7c598c5b6797a1a89c2bd913420507de903f6171b1d465038241396228e244bbc0fbe715949a"}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "60b21879caebbc239d4a3a8a1e14e5ba"}, @ssp_cap={0x14, 0x10, 0xa, 0x6f, 0x2, 0x80, 0xf000, 0x3, [0xf0, 0xc000]}]}, 0xa, [{0x4, &(0x7f0000003600)=@lang_id={0x4, 0x3, 0x44a}}, {0x4, &(0x7f0000003640)=@lang_id={0x4, 0x3, 0x455}}, {0x4, &(0x7f0000003680)=@lang_id={0x4, 0x3, 0x3409}}, {0x4, &(0x7f00000036c0)=@lang_id={0x4, 0x3, 0x425}}, {0x17, &(0x7f0000003700)=@string={0x17, 0x3, "43e6eddcde83797811e4d35e117a0b60eb250cc386"}}, {0x4, &(0x7f0000003740)=@lang_id={0x4, 0x3, 0x438}}, {0x4, &(0x7f0000003780)=@lang_id={0x4, 0x3, 0x2801}}, {0xab, &(0x7f00000037c0)=@string={0xab, 0x3, "88b24549aa248bb38382181295584b6bf683eae1642bc352f1e68a44471fce95c364e33b5196ca13efa84295cba9c20f4585207ec00465c1adf877dea59dcc0be48984ad2f904c6e335624378b8933d7715cfd38ef7b69e36d2b248a80e80a4dea6ffa63b8fd630660f5d9be337245e9096e9b1d8b47ae977373492819b1bbd0fc88a82902f18dbf0578235bc0c2dc8dfd71d76d9123663c34ab29a473fc65f93ca5df7b5508359220"}}, {0x4, &(0x7f0000003880)=@lang_id={0x4, 0x3, 0x418}}, {0x4, &(0x7f00000038c0)=@lang_id={0x4, 0x3, 0x404}}]}) io_submit(0x0, 0x1, &(0x7f0000003ac0)=[&(0x7f0000003a80)={0x0, 0x0, 0x0, 0x0, 0xfff, r0, &(0x7f0000003a00)="fa3b2831b1ff3bc6b08cc4718d7f43723d8e22dbce772f491880324f60b68cb2006a052f8e0ecc349137a071b9a3b11762153c5c4564f71ae818b33eb64601329a08f2f93f261967e065e090b12739c60119051b0f0be9ddfa6217f4", 0x5c, 0x7, 0x0, 0x1, r1}]) 09:38:42 executing program 4: ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @out_args}, './file0\x00'}) ioctl$BLKPBSZGET(r0, 0x127b, &(0x7f0000000040)) r1 = syz_open_dev$mouse(&(0x7f0000000080), 0xff52, 0x10000) statx(r1, &(0x7f00000000c0)='./file0\x00', 0x0, 0x4, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, {0x8000}}, './file0\x00'}) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000240), 0x18000, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000280)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$BLKSECTGET(r5, 0x1267, &(0x7f00000002c0)) r6 = dup2(r3, r5) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r6, 0xc018937a, &(0x7f0000000300)={{0x1, 0x1, 0x18, r4, {0x2}}, './file0\x00'}) statx(0xffffffffffffffff, &(0x7f0000000340)='.\x00', 0x6000, 0x0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0}) getdents64(0xffffffffffffff9c, &(0x7f0000000480)=""/150, 0x96) ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000540)={0x4, 0x42, 0x6, 0x3}) r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x80101) mknodat(r8, &(0x7f00000005c0)='./file0\x00', 0x10, 0x4) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r8, 0xc018937b, &(0x7f0000000600)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r7, r2}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000640)={{0x1, 0x1, 0x18, r9, {0x4f0d}}, './file0/file0\x00'}) ioctl$TIOCGSID(r4, 0x5429, &(0x7f0000000680)=0x0) fcntl$lock(r6, 0x26, &(0x7f00000006c0)={0x2, 0x2, 0x10000, 0x100000000, r10}) fsetxattr(0xffffffffffffffff, &(0x7f0000000700)=@known='trusted.overlay.origin\x00', &(0x7f0000000740)=')+{\x00', 0x4, 0x3) [ 76.409650] audit: type=1400 audit(1664876322.179:6): avc: denied { execmem } for pid=286 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 09:38:42 executing program 6: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000080)='trusted\x00', &(0x7f00000000c0)=@chain) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000100)='keyring\x00', &(0x7f0000000140)) r1 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, r0) add_key(&(0x7f0000000200)='.request_key_auth\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000280)="8a4183fe264788a9", 0x8, r1) keyctl$join(0x1, &(0x7f00000002c0)={'syz', 0x0}) r2 = add_key$keyring(&(0x7f0000000300), &(0x7f0000000340)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffff8) r3 = add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x0}, 0x0, 0x0, r2) r4 = add_key(&(0x7f0000000380)='cifs.idmap\x00', &(0x7f00000003c0)={'syz', 0x0}, &(0x7f0000000400)="7f6a706fd7009c4515a37c176b6eb81248101b4ab43f515747429a841051e873e3cab2efe9184239b6cec3db802b27b980cbc0e90acdbea7", 0x38, r3) add_key$keyring(&(0x7f00000004c0), &(0x7f0000000500)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff) keyctl$unlink(0x9, r2, r1) r5 = add_key$keyring(&(0x7f00000006c0), &(0x7f0000000700)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) add_key$user(&(0x7f0000000540), &(0x7f0000000580)={'syz', 0x3}, &(0x7f00000005c0)="686685a875f64d63785b1e04980ac518427af42a2cd0d8e8c151b272288ed4402e6c31bdeff40d471878e3cc648cc0ac011fe258e6a35301e41376589676b49b37c768f15971845b39de6a6058176199acdf2698960d2e93c504a76be740f8e18bed150e2f2c3fc18633e21f7763df116eaf9838fed8cb086d3d2581eb99f24212a6c9aae7e91ef58c2e689215791009613eb3bba14b6725fdff5aebc724bb7c0ac340c84fe9c1d04f1620cee21a31f069ad7d65dac2020540d99db6c2a805bee3cc7d153341", 0xc6, r5) r6 = request_key(&(0x7f0000000740)='ceph\x00', &(0x7f0000000780)={'syz', 0x2}, &(0x7f00000007c0)='\x00', r0) add_key$fscrypt_v1(&(0x7f0000000800), &(0x7f0000000840)={'fscrypt:', @desc2}, &(0x7f0000000880)={0x0, "6b02c07acadef105a758ea4ecd989b818105216f1a649b838a46445ab5fc10d835cf1cc917fcfcbb1ddf1d6b0ce33d25839b3c17456de58f4a698bb2c69079cc", 0x2f}, 0x48, 0xfffffffffffffffd) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000900)='rxrpc_s\x00', &(0x7f0000000940)) r7 = request_key(&(0x7f0000000a40)='big_key\x00', &(0x7f0000000a80)={'syz', 0x2}, &(0x7f0000000ac0)='\x00', r6) r8 = request_key(&(0x7f0000000980)='asymmetric\x00', &(0x7f00000009c0)={'syz', 0x2}, &(0x7f0000000a00)='ceph\x00', r7) keyctl$KEYCTL_MOVE(0x1e, r6, r4, r0, 0x0) add_key(&(0x7f0000000b00)='encrypted\x00', &(0x7f0000000b40)={'syz', 0x1}, &(0x7f0000000b80)="1950dc34f58648be49a67adc", 0xc, r8) 09:38:42 executing program 7: r0 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) fdatasync(r0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xfffffffe, 0xd41d}}, './file0\x00'}) ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000040)=0x3ff) r2 = syz_io_uring_complete(0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000000080)={0x8, 0x7, 0x0, 0x6, 0x1, 0x73, 0xfff}, 0xc) ioctl$EVIOCGRAB(r2, 0x40044590, &(0x7f00000000c0)) ioctl$EVIOCSMASK(r1, 0x40104593, &(0x7f00000001c0)={0x4, 0x9e, &(0x7f0000000100)="d18d99d94362f03ce0c35e45c7c3289b6dbd0add0a22bba94cb2ac67babddba9a51f68149ce45ee8ea792ea5b2ba1341ecd34a7a696286f7a75e62a3f21257e90aff5d48d8b16c0def37fdd5eb79065f2a2407bb0d6b402fac8cef41efb6ecffb9cae3461061464ff3684f135048072efbb96e332f4631fed8699bb2880444f1ddaf30237a5e443efa18e58bd9c5627e750e7e70f60ca152d45c8f480103"}) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) write$evdev(r2, &(0x7f0000000280)=[{{0x0, 0xea60}, 0x1f, 0x2, 0xc204}, {{0x77359400}, 0x14, 0x20}, {{r3, r4/1000+10000}, 0x5, 0xfff7, 0x7fff}, {{0x77359400}, 0x2, 0x4, 0x3f0c}, {{0x0, 0x2710}, 0x8, 0x9f, 0xbe}, {{r5, r6/1000+10000}, 0x1f, 0x8, 0x7fff}], 0x90) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r2, 0xc0c89425, &(0x7f0000000340)={"0c0670e401dbadd33e869c583798f9d0", 0x0, 0x0, {0x7, 0x400}, {0xffffffff80000000, 0x561650fb}, 0xaa63, [0x3f, 0xc0ed, 0xfff, 0x40, 0x101, 0x41, 0x5, 0x9, 0x0, 0x5, 0x3, 0x5, 0xffff, 0x7ff, 0x7, 0xfffffffffffeffff]}) r7 = fcntl$getown(r2, 0x9) r8 = getpgrp(0xffffffffffffffff) r9 = openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0x40400, 0x0) kcmp$KCMP_EPOLL_TFD(r7, r8, 0x7, r0, &(0x7f0000000480)={r9, r0, 0x81}) ioctl$sock_SIOCGIFCONF(r2, 0x8912, &(0x7f00000004c0)) mq_timedreceive(r1, &(0x7f0000000500)=""/233, 0xe9, 0x3e, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000600)={{0x1, 0x1, 0x18, r9, {0x7}}, './file0\x00'}) ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f0000000640)=r7) 09:38:42 executing program 5: timerfd_settime(0xffffffffffffffff, 0x1, &(0x7f0000000000), &(0x7f0000000040)) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000100)={{r0, r1+60000000}, {r2, r3+10000000}}, &(0x7f0000000140)) r4 = epoll_create(0xfffffffa) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) epoll_pwait2(r4, &(0x7f0000000180)=[{}, {}, {}, {}, {}], 0x5, &(0x7f0000000200)={r5, r6+10000000}, &(0x7f0000000240), 0x8) clock_gettime(0x5, &(0x7f0000000280)) clock_gettime(0x0, &(0x7f00000002c0)) clock_gettime(0x0, &(0x7f0000000400)={0x0, 0x0}) io_getevents(0x0, 0x3, 0x7, &(0x7f0000000300)=[{}, {}, {}, {}, {}, {}, {}], &(0x7f0000000440)={r7, r8+60000000}) r9 = epoll_create(0x2) clock_gettime(0x2, &(0x7f0000000480)) futex(&(0x7f00000004c0)=0x1, 0x0, 0x2, &(0x7f0000000500)={0x0, 0x3938700}, &(0x7f0000000540), 0x1) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000580)=@IORING_OP_ASYNC_CANCEL={0xe, 0x3, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r10}}, 0x400) kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r9, &(0x7f00000005c0)={r4, r4, 0xd7}) clock_gettime(0x5, &(0x7f0000000600)) r11 = timerfd_create(0x2, 0x80000) pwritev2(r11, &(0x7f0000000a00)=[{&(0x7f0000000640)="f594ac95387fcedd7a23394dc5d61bae419fa2b161770543ee97a2cb1a9b5d0aec067708090f8644f04ddadb646f9b797bfd6363e123a945359f92d0391e7b748f73452c4db3034864c55b60b5a9b1fc845d8e8ccf4b9305fd48fdbc3d619293ee66f6ce80e37e0355413a7bef8465a6d7de05d582d56385954f827d58810cba0b5fe922f0", 0x85}, {&(0x7f0000000700)="49fb34d856bd6d57af09cbc03b95bbac56b0fdc2a1bbcc474182b58d47ca2fa70d9831aa036e4067e6a2cd5c43486042902df2c4fc1e9b15b83045c408ee994544c41b39755bd52d53bc7c3f80e9b9a8f1fe00fc288caa4b2f791c67b81f83e9bcd9e9407f4a4268e264a48ab9654632294ac7465b16f022a33ddddc114d07eb37c2d19d6551afa126aa1ce374fee759e6be6c243d1bda665dde6f6a9babe27c9ce88cc5271e31826ebaabad32badc26e951feeb126032fae9c59f5c50c1abf0978189a6165202918bea11cd9d9f01", 0xcf}, {&(0x7f0000000800)="34759fdf537c1b2c5f0c12da14605196bfa40503ab58232807cf5ca0f57af35e44a0cc79747dbc8b2703013a0978ae247b14b334e5004ace0340287a914b4c893b8571a0ec15a214f82df3d4e1b7ee73ddf6763d9878a876bc826fa27fb26df3ca9ada05374940be92774b15811f5fa62a475fbd98ee8b8d1160d777a716d663c48c207350b36f2e340c35865f707e981a7be7c38d9d8c64c2c2d6da24ed1f2465bd609226b28a9eb90d2b1feb6d787804d7", 0xb2}, {&(0x7f00000008c0)="a696ef9e2857ea4eec6c4d69d91caae6c4cb0b4a41d5ba7ecdc34108a757c19998a72bcc3795a9aa558bdf8a6478eb2a0cc70032e00515ff7a6942681781e6662b93541521fee1ce1b1181ce1e2a0fd8f72637804a4c6c7d7c2fedfffa4cba8e941cbd", 0x63}, {&(0x7f0000000940)="181d03f8f361da3f630d985e9b3010dee2e5e5c7ce39a81067f2ef7a20ee0926ab7f3e1841f4b5322fa8757390fa50f42bc3f610a7e9f12f239d717230a1c77987dadeffec301b5808d087df9e453c66eea5d5f4a86fba1e40ac0e284593154daf9a176fe12482c96b77a34d75af0231b847f0120a3c1a4a8ecaffbc3aef6fa1f032b521", 0x84}], 0x5, 0x2c1a8ea6, 0x7, 0xe) [ 77.760855] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 77.760864] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 77.765531] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.767383] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 77.769051] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.770596] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.776713] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.778162] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.785636] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 77.799235] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 77.804525] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 77.806072] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.809138] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 77.810594] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.813587] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.815797] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.817101] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 77.818317] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.821598] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.822016] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 77.826779] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 77.827857] Bluetooth: hci0: HCI_REQ-0x0c1a [ 77.837022] Bluetooth: hci2: HCI_REQ-0x0c1a [ 77.837157] Bluetooth: hci1: HCI_REQ-0x0c1a [ 77.846677] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.862848] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 77.871657] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 77.873036] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 77.875394] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 77.883951] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 77.887571] Bluetooth: hci3: HCI_REQ-0x0c1a [ 77.895138] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 77.898211] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 77.899449] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 77.903794] Bluetooth: hci4: HCI_REQ-0x0c1a [ 77.927688] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 77.929201] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 77.933807] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 77.938507] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 77.940501] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 77.942181] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 77.948164] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 77.950762] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 77.952046] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 77.957476] Bluetooth: hci6: HCI_REQ-0x0c1a [ 77.967811] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 77.970304] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 77.972467] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 77.987580] Bluetooth: hci7: HCI_REQ-0x0c1a [ 79.890638] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 79.891671] Bluetooth: hci0: command 0x0409 tx timeout [ 79.892199] Bluetooth: hci1: command 0x0409 tx timeout [ 79.892798] Bluetooth: hci2: command 0x0409 tx timeout [ 79.954495] Bluetooth: hci4: command 0x0409 tx timeout [ 79.955080] Bluetooth: hci3: command 0x0409 tx timeout [ 80.018404] Bluetooth: hci6: command 0x0409 tx timeout [ 80.082394] Bluetooth: hci7: command 0x0409 tx timeout [ 81.938471] Bluetooth: hci2: command 0x041b tx timeout [ 81.938935] Bluetooth: hci1: command 0x041b tx timeout [ 81.939359] Bluetooth: hci0: command 0x041b tx timeout [ 82.002390] Bluetooth: hci3: command 0x041b tx timeout [ 82.002805] Bluetooth: hci4: command 0x041b tx timeout [ 82.066384] Bluetooth: hci6: command 0x041b tx timeout [ 82.131422] Bluetooth: hci7: command 0x041b tx timeout [ 83.986568] Bluetooth: hci0: command 0x040f tx timeout [ 83.986607] Bluetooth: hci1: command 0x040f tx timeout [ 83.987465] Bluetooth: hci2: command 0x040f tx timeout [ 84.051493] Bluetooth: hci4: command 0x040f tx timeout [ 84.051517] Bluetooth: hci3: command 0x040f tx timeout [ 84.114504] Bluetooth: hci6: command 0x040f tx timeout [ 84.178397] Bluetooth: hci7: command 0x040f tx timeout [ 85.010399] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 86.034485] Bluetooth: hci1: command 0x0419 tx timeout [ 86.035106] Bluetooth: hci2: command 0x0419 tx timeout [ 86.035743] Bluetooth: hci0: command 0x0419 tx timeout [ 86.098525] Bluetooth: hci4: command 0x0419 tx timeout [ 86.099252] Bluetooth: hci3: command 0x0419 tx timeout [ 86.162416] Bluetooth: hci6: command 0x0419 tx timeout [ 86.226584] Bluetooth: hci7: command 0x0419 tx timeout [ 89.811434] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 92.610164] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 92.611232] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 92.612780] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 92.615240] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 92.616158] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 92.617503] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 92.625539] Bluetooth: hci5: HCI_REQ-0x0c1a [ 94.675466] Bluetooth: hci5: command 0x0409 tx timeout [ 96.723373] Bluetooth: hci5: command 0x041b tx timeout [ 98.771507] Bluetooth: hci5: command 0x040f tx timeout [ 100.819454] Bluetooth: hci5: command 0x0419 tx timeout 09:39:38 executing program 2: sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}, 0x40210}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x200000, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x73, 0x45, 0x8, 0x54, 0x0, 0x1, 0x0, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x10000, 0x1}, 0x32c4, 0x8, 0x2, 0x7, 0x2, 0x200, 0x8000, 0x0, 0x1d7, 0x0, 0x100}, 0x0, 0xb, r1, 0x8) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x39a}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x2bd, 0x0, 0x0, 0x0, 0x0) ioctl$FIONCLEX(r2, 0x5450) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00)) r4 = open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r3, 0xa, r4, 0x2) write$P9_RCLUNK(r4, &(0x7f00000003c0)={0x7, 0x79, 0x1}, 0x7) r5 = getpid() capget(&(0x7f0000000300)={0x19980330, r5}, &(0x7f0000000340)) perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x1, 0x5, 0x80, 0x3, 0x0, 0x7ff, 0x41201, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0xffff, 0x80}, 0x2210, 0x100000001, 0x0, 0x0, 0x933, 0x3, 0x0, 0x0, 0x1, 0x0, 0x2}, r5, 0x3, 0xffffffffffffffff, 0x8) [ 133.238516] audit: type=1400 audit(1664876379.008:7): avc: denied { open } for pid=3701 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 133.240049] audit: type=1400 audit(1664876379.008:8): avc: denied { kernel } for pid=3701 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 133.270162] ------------[ cut here ]------------ [ 133.270183] [ 133.270186] ====================================================== [ 133.270189] WARNING: possible circular locking dependency detected [ 133.270194] 6.0.0-rc7-next-20220930 #1 Not tainted [ 133.270200] ------------------------------------------------------ [ 133.270204] syz-executor.2/3702 is trying to acquire lock: [ 133.270210] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 133.270251] [ 133.270251] but task is already holding lock: [ 133.270255] ffff88800d449420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 133.270282] [ 133.270282] which lock already depends on the new lock. [ 133.270282] [ 133.270285] [ 133.270285] the existing dependency chain (in reverse order) is: [ 133.270288] [ 133.270288] -> #3 (&ctx->lock){....}-{2:2}: [ 133.270302] _raw_spin_lock+0x2a/0x40 [ 133.270314] __perf_event_task_sched_out+0x53b/0x18d0 [ 133.270328] __schedule+0xedd/0x2470 [ 133.270342] schedule+0xda/0x1b0 [ 133.270356] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.270369] syscall_exit_to_user_mode+0x19/0x40 [ 133.270382] do_syscall_64+0x48/0x90 [ 133.270399] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.270412] [ 133.270412] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 133.270425] _raw_spin_lock_nested+0x30/0x40 [ 133.270435] raw_spin_rq_lock_nested+0x1e/0x30 [ 133.270449] task_fork_fair+0x63/0x4d0 [ 133.270465] sched_cgroup_fork+0x3d0/0x540 [ 133.270480] copy_process+0x4183/0x6e20 [ 133.270490] kernel_clone+0xe7/0x890 [ 133.270500] user_mode_thread+0xad/0xf0 [ 133.270510] rest_init+0x24/0x250 [ 133.270522] arch_call_rest_init+0xf/0x14 [ 133.270540] start_kernel+0x4c6/0x4eb [ 133.270554] secondary_startup_64_no_verify+0xe0/0xeb [ 133.270569] [ 133.270569] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 133.270582] _raw_spin_lock_irqsave+0x39/0x60 [ 133.270593] try_to_wake_up+0xab/0x1930 [ 133.270606] up+0x75/0xb0 [ 133.270620] __up_console_sem+0x6e/0x80 [ 133.270636] console_unlock+0x46a/0x590 [ 133.270651] con_install+0x14e/0x5d0 [ 133.270670] tty_init_dev.part.0+0xa0/0x5e0 [ 133.270682] tty_open+0xba3/0x1350 [ 133.270692] chrdev_open+0x268/0x6e0 [ 133.270705] do_dentry_open+0x6ca/0x12b0 [ 133.270717] path_openat+0x187f/0x27b0 [ 133.270728] do_filp_open+0x1b6/0x410 [ 133.270738] do_sys_openat2+0x171/0x4c0 [ 133.270751] __x64_sys_openat+0x13f/0x1f0 [ 133.270764] do_syscall_64+0x3b/0x90 [ 133.270781] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.270793] [ 133.270793] -> #0 ((console_sem).lock){....}-{2:2}: [ 133.270807] __lock_acquire+0x2a02/0x5e70 [ 133.270824] lock_acquire+0x1a2/0x530 [ 133.270839] _raw_spin_lock_irqsave+0x39/0x60 [ 133.270850] down_trylock+0xe/0x70 [ 133.270864] __down_trylock_console_sem+0x3b/0xd0 [ 133.270880] vprintk_emit+0x16b/0x560 [ 133.270896] vprintk+0x84/0xa0 [ 133.270912] _printk+0xba/0xf1 [ 133.270923] report_bug.cold+0x72/0xab [ 133.270939] handle_bug+0x3c/0x70 [ 133.270956] exc_invalid_op+0x14/0x50 [ 133.270972] asm_exc_invalid_op+0x16/0x20 [ 133.270984] group_sched_out.part.0+0x2c7/0x460 [ 133.271002] ctx_sched_out+0x8f1/0xc10 [ 133.271018] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.271029] __schedule+0xedd/0x2470 [ 133.271043] schedule+0xda/0x1b0 [ 133.271056] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.271066] syscall_exit_to_user_mode+0x19/0x40 [ 133.271079] do_syscall_64+0x48/0x90 [ 133.271095] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.271107] [ 133.271107] other info that might help us debug this: [ 133.271107] [ 133.271110] Chain exists of: [ 133.271110] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 133.271110] [ 133.271125] Possible unsafe locking scenario: [ 133.271125] [ 133.271127] CPU0 CPU1 [ 133.271130] ---- ---- [ 133.271132] lock(&ctx->lock); [ 133.271138] lock(&rq->__lock); [ 133.271144] lock(&ctx->lock); [ 133.271150] lock((console_sem).lock); [ 133.271156] [ 133.271156] *** DEADLOCK *** [ 133.271156] [ 133.271158] 2 locks held by syz-executor.2/3702: [ 133.271165] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 133.271194] #1: ffff88800d449420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 133.271220] [ 133.271220] stack backtrace: [ 133.271223] CPU: 1 PID: 3702 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1 [ 133.271235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 133.271244] Call Trace: [ 133.271247] [ 133.271250] dump_stack_lvl+0x8b/0xb3 [ 133.271269] check_noncircular+0x263/0x2e0 [ 133.271285] ? format_decode+0x26c/0xb50 [ 133.271301] ? print_circular_bug+0x450/0x450 [ 133.271318] ? simple_strtoul+0x30/0x30 [ 133.271334] ? format_decode+0x26c/0xb50 [ 133.271351] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 133.271368] __lock_acquire+0x2a02/0x5e70 [ 133.271389] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 133.271411] lock_acquire+0x1a2/0x530 [ 133.271428] ? down_trylock+0xe/0x70 [ 133.271445] ? lock_release+0x750/0x750 [ 133.271465] ? vprintk+0x84/0xa0 [ 133.271483] _raw_spin_lock_irqsave+0x39/0x60 [ 133.271494] ? down_trylock+0xe/0x70 [ 133.271510] down_trylock+0xe/0x70 [ 133.271525] ? vprintk+0x84/0xa0 [ 133.271542] __down_trylock_console_sem+0x3b/0xd0 [ 133.271559] vprintk_emit+0x16b/0x560 [ 133.271577] vprintk+0x84/0xa0 [ 133.271595] _printk+0xba/0xf1 [ 133.271606] ? record_print_text.cold+0x16/0x16 [ 133.271622] ? report_bug.cold+0x66/0xab [ 133.271639] ? group_sched_out.part.0+0x2c7/0x460 [ 133.271658] report_bug.cold+0x72/0xab [ 133.271676] handle_bug+0x3c/0x70 [ 133.271693] exc_invalid_op+0x14/0x50 [ 133.271711] asm_exc_invalid_op+0x16/0x20 [ 133.271724] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 133.271744] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 133.271756] RSP: 0018:ffff88803d057c48 EFLAGS: 00010006 [ 133.271765] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 133.271772] RDX: ffff88803d029ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 133.271780] RBP: ffff88803ea10000 R08: 0000000000000005 R09: 0000000000000001 [ 133.271787] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800d449400 [ 133.271795] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 133.271806] ? group_sched_out.part.0+0x2c7/0x460 [ 133.271826] ? group_sched_out.part.0+0x2c7/0x460 [ 133.271845] ctx_sched_out+0x8f1/0xc10 [ 133.271864] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.271878] ? lock_is_held_type+0xd7/0x130 [ 133.271892] ? __perf_cgroup_move+0x160/0x160 [ 133.271903] ? set_next_entity+0x304/0x550 [ 133.271920] ? update_curr+0x267/0x740 [ 133.271938] ? lock_is_held_type+0xd7/0x130 [ 133.271952] __schedule+0xedd/0x2470 [ 133.271969] ? io_schedule_timeout+0x150/0x150 [ 133.271986] ? rcu_read_lock_sched_held+0x3e/0x80 [ 133.272006] schedule+0xda/0x1b0 [ 133.272021] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.272034] syscall_exit_to_user_mode+0x19/0x40 [ 133.272047] do_syscall_64+0x48/0x90 [ 133.272064] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.272078] RIP: 0033:0x7f3d0351cb19 [ 133.272086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 133.272097] RSP: 002b:00007f3d00a92218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 133.272107] RAX: 0000000000000001 RBX: 00007f3d0362ff68 RCX: 00007f3d0351cb19 [ 133.272115] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3d0362ff6c [ 133.272122] RBP: 00007f3d0362ff60 R08: 000000000000000e R09: 0000000000000000 [ 133.272129] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f3d0362ff6c [ 133.272136] R13: 00007ffd550358ef R14: 00007f3d00a92300 R15: 0000000000022000 [ 133.272148] [ 133.327625] WARNING: CPU: 1 PID: 3702 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 133.328285] Modules linked in: [ 133.328518] CPU: 1 PID: 3702 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220930 #1 [ 133.329090] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 133.329886] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 133.330283] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 133.331560] RSP: 0018:ffff88803d057c48 EFLAGS: 00010006 [ 133.331940] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 133.332443] RDX: ffff88803d029ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 133.332946] RBP: ffff88803ea10000 R08: 0000000000000005 R09: 0000000000000001 [ 133.333451] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800d449400 [ 133.333968] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 133.334472] FS: 00007f3d00a92700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 133.335047] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 133.335462] CR2: 00007f62a8b41000 CR3: 000000003d13a000 CR4: 0000000000350ee0 [ 133.335969] Call Trace: [ 133.336158] [ 133.336325] ctx_sched_out+0x8f1/0xc10 [ 133.336619] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.336992] ? lock_is_held_type+0xd7/0x130 [ 133.337306] ? __perf_cgroup_move+0x160/0x160 [ 133.337631] ? set_next_entity+0x304/0x550 [ 133.337945] ? update_curr+0x267/0x740 [ 133.338242] ? lock_is_held_type+0xd7/0x130 [ 133.338570] __schedule+0xedd/0x2470 [ 133.338848] ? io_schedule_timeout+0x150/0x150 [ 133.339185] ? rcu_read_lock_sched_held+0x3e/0x80 [ 133.339537] schedule+0xda/0x1b0 [ 133.339790] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.340144] syscall_exit_to_user_mode+0x19/0x40 [ 133.340483] do_syscall_64+0x48/0x90 [ 133.340761] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.341130] RIP: 0033:0x7f3d0351cb19 [ 133.341399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 133.342683] RSP: 002b:00007f3d00a92218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 133.343219] RAX: 0000000000000001 RBX: 00007f3d0362ff68 RCX: 00007f3d0351cb19 [ 133.343721] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3d0362ff6c [ 133.344229] RBP: 00007f3d0362ff60 R08: 000000000000000e R09: 0000000000000000 [ 133.344728] R10: 0000000000000004 R11: 0000000000000246 R12: 00007f3d0362ff6c [ 133.345230] R13: 00007ffd550358ef R14: 00007f3d00a92300 R15: 0000000000022000 [ 133.345744] [ 133.345923] irq event stamp: 712 [ 133.346165] hardirqs last enabled at (711): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 133.346823] hardirqs last disabled at (712): [] __schedule+0x1225/0x2470 [ 133.347408] softirqs last enabled at (482): [] __irq_exit_rcu+0x11b/0x180 [ 133.348009] softirqs last disabled at (477): [] __irq_exit_rcu+0x11b/0x180 [ 133.348618] ---[ end trace 0000000000000000 ]--- [ 133.688073] loop2: detected capacity change from 0 to 2048 [ 133.744473] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 133.745688] ext4 filesystem being mounted at /syzkaller-testdir578115356/syzkaller.3HlunZ/1/file0 supports timestamps until 2038 (0x7fffffff) [ 133.789562] capability: warning: `syz-executor.2' uses 32-bit capabilities (legacy support in use) [ 133.818163] audit: type=1400 audit(1664876379.588:9): avc: denied { write } for pid=3701 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 133.874198] EXT4-fs (loop2): unmounting filesystem. 09:39:39 executing program 2: sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}, 0x40210}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x200000, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x73, 0x45, 0x8, 0x54, 0x0, 0x1, 0x0, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x10000, 0x1}, 0x32c4, 0x8, 0x2, 0x7, 0x2, 0x200, 0x8000, 0x0, 0x1d7, 0x0, 0x100}, 0x0, 0xb, r1, 0x8) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x39a}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x2bd, 0x0, 0x0, 0x0, 0x0) ioctl$FIONCLEX(r2, 0x5450) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00)) r4 = open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r3, 0xa, r4, 0x2) write$P9_RCLUNK(r4, &(0x7f00000003c0)={0x7, 0x79, 0x1}, 0x7) r5 = getpid() capget(&(0x7f0000000300)={0x19980330, r5}, &(0x7f0000000340)) perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x1, 0x5, 0x80, 0x3, 0x0, 0x7ff, 0x41201, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0xffff, 0x80}, 0x2210, 0x100000001, 0x0, 0x0, 0x933, 0x3, 0x0, 0x0, 0x1, 0x0, 0x2}, r5, 0x3, 0xffffffffffffffff, 0x8) [ 134.051967] loop2: detected capacity change from 0 to 2048 [ 134.154068] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 134.164270] ext4 filesystem being mounted at /syzkaller-testdir578115356/syzkaller.3HlunZ/2/file0 supports timestamps until 2038 (0x7fffffff) 09:39:40 executing program 7: sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}, 0x40210}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x200000, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x73, 0x45, 0x8, 0x54, 0x0, 0x1, 0x0, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x10000, 0x1}, 0x32c4, 0x8, 0x2, 0x7, 0x2, 0x200, 0x8000, 0x0, 0x1d7, 0x0, 0x100}, 0x0, 0xb, r1, 0x8) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x39a}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x2bd, 0x0, 0x0, 0x0, 0x0) ioctl$FIONCLEX(r2, 0x5450) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00)) r4 = open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r3, 0xa, r4, 0x2) write$P9_RCLUNK(r4, &(0x7f00000003c0)={0x7, 0x79, 0x1}, 0x7) r5 = getpid() capget(&(0x7f0000000300)={0x19980330, r5}, &(0x7f0000000340)) perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x1, 0x5, 0x80, 0x3, 0x0, 0x7ff, 0x41201, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0xffff, 0x80}, 0x2210, 0x100000001, 0x0, 0x0, 0x933, 0x3, 0x0, 0x0, 0x1, 0x0, 0x2}, r5, 0x3, 0xffffffffffffffff, 0x8) 09:39:40 executing program 5: sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}, 0x40210}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x200000, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x73, 0x45, 0x8, 0x54, 0x0, 0x1, 0x0, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x10000, 0x1}, 0x32c4, 0x8, 0x2, 0x7, 0x2, 0x200, 0x8000, 0x0, 0x1d7, 0x0, 0x100}, 0x0, 0xb, r1, 0x8) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x39a}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x2bd, 0x0, 0x0, 0x0, 0x0) ioctl$FIONCLEX(r2, 0x5450) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00)) r4 = open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r3, 0xa, r4, 0x2) write$P9_RCLUNK(r4, &(0x7f00000003c0)={0x7, 0x79, 0x1}, 0x7) r5 = getpid() capget(&(0x7f0000000300)={0x19980330, r5}, &(0x7f0000000340)) perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x1, 0x5, 0x80, 0x3, 0x0, 0x7ff, 0x41201, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0xffff, 0x80}, 0x2210, 0x100000001, 0x0, 0x0, 0x933, 0x3, 0x0, 0x0, 0x1, 0x0, 0x2}, r5, 0x3, 0xffffffffffffffff, 0x8) [ 134.296901] EXT4-fs (loop2): unmounting filesystem. 09:39:40 executing program 2: sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}, 0x40210}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x200000, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x73, 0x45, 0x8, 0x54, 0x0, 0x1, 0x0, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x10000, 0x1}, 0x32c4, 0x8, 0x2, 0x7, 0x2, 0x200, 0x8000, 0x0, 0x1d7, 0x0, 0x100}, 0x0, 0xb, r1, 0x8) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x39a}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x2bd, 0x0, 0x0, 0x0, 0x0) ioctl$FIONCLEX(r2, 0x5450) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00)) r4 = open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r3, 0xa, r4, 0x2) write$P9_RCLUNK(r4, &(0x7f00000003c0)={0x7, 0x79, 0x1}, 0x7) r5 = getpid() capget(&(0x7f0000000300)={0x19980330, r5}, &(0x7f0000000340)) perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x1, 0x5, 0x80, 0x3, 0x0, 0x7ff, 0x41201, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0xffff, 0x80}, 0x2210, 0x100000001, 0x0, 0x0, 0x933, 0x3, 0x0, 0x0, 0x1, 0x0, 0x2}, r5, 0x3, 0xffffffffffffffff, 0x8) [ 134.391277] loop5: detected capacity change from 0 to 2048 [ 134.393308] loop7: detected capacity change from 0 to 2048 [ 134.406169] loop2: detected capacity change from 0 to 2048 [ 134.426518] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 134.428459] ext4 filesystem being mounted at /syzkaller-testdir578115356/syzkaller.3HlunZ/3/file0 supports timestamps until 2038 (0x7fffffff) [ 134.443349] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none. [ 134.443429] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 134.444265] ext4 filesystem being mounted at /syzkaller-testdir677622199/syzkaller.QwU0G6/1/file0 supports timestamps until 2038 (0x7fffffff) [ 134.450791] ext4 filesystem being mounted at /syzkaller-testdir771757482/syzkaller.FpuuVc/1/file0 supports timestamps until 2038 (0x7fffffff) [ 134.512487] EXT4-fs (loop7): unmounting filesystem. 09:39:40 executing program 7: sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}, 0x40210}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x200000, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x73, 0x45, 0x8, 0x54, 0x0, 0x1, 0x0, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x10000, 0x1}, 0x32c4, 0x8, 0x2, 0x7, 0x2, 0x200, 0x8000, 0x0, 0x1d7, 0x0, 0x100}, 0x0, 0xb, r1, 0x8) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x39a}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x2bd, 0x0, 0x0, 0x0, 0x0) ioctl$FIONCLEX(r2, 0x5450) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00)) r4 = open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r3, 0xa, r4, 0x2) write$P9_RCLUNK(r4, &(0x7f00000003c0)={0x7, 0x79, 0x1}, 0x7) r5 = getpid() capget(&(0x7f0000000300)={0x19980330, r5}, &(0x7f0000000340)) perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x1, 0x5, 0x80, 0x3, 0x0, 0x7ff, 0x41201, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0xffff, 0x80}, 0x2210, 0x100000001, 0x0, 0x0, 0x933, 0x3, 0x0, 0x0, 0x1, 0x0, 0x2}, r5, 0x3, 0xffffffffffffffff, 0x8) 09:39:40 executing program 2: sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, 0x0, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x4}, 0x40210}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x200000, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x73, 0x45, 0x8, 0x54, 0x0, 0x1, 0x0, 0x5, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x10000, 0x1}, 0x32c4, 0x8, 0x2, 0x7, 0x2, 0x200, 0x8000, 0x0, 0x1d7, 0x0, 0x100}, 0x0, 0xb, r1, 0x8) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x39a}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x2bd, 0x0, 0x0, 0x0, 0x0) ioctl$FIONCLEX(r2, 0x5450) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000dbf4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000244b8e9b57f04b59aa229cc218853f95010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000dbf4655fdbf4655fdbf4655f000000000000040040", 0x1d, 0x2080}, {0x0}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}, {0x0}], 0x0, &(0x7f0000012f00)) r4 = open_tree(r3, &(0x7f00000001c0)='./file0\x00', 0x0) perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x6, 0x20, 0x9, 0x81, 0x0, 0x400, 0x18000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x80000001, 0x4, @perf_bp={&(0x7f0000000040), 0x1}, 0x440, 0x7712, 0x4, 0x5, 0x93b, 0x4, 0xfff, 0x0, 0x7fff, 0x0, 0x4}, r3, 0xa, r4, 0x2) write$P9_RCLUNK(r4, &(0x7f00000003c0)={0x7, 0x79, 0x1}, 0x7) r5 = getpid() capget(&(0x7f0000000300)={0x19980330, r5}, &(0x7f0000000340)) perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0x1, 0x5, 0x80, 0x3, 0x0, 0x7ff, 0x41201, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0xffff, 0x80}, 0x2210, 0x100000001, 0x0, 0x0, 0x933, 0x3, 0x0, 0x0, 0x1, 0x0, 0x2}, r5, 0x3, 0xffffffffffffffff, 0x8) [ 134.649554] EXT4-fs (loop2): unmounting filesystem. [ 134.656843] EXT4-fs (loop5): unmounting filesystem. 09:39:40 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setresuid(0x0, 0x0, 0x0) lsetxattr$security_capability(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v3, 0x18, 0x0) write(r0, &(0x7f0000000080)="01", 0x1) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r1, 0x0) ioprio_set$uid(0x3, r1, 0x6000) [ 134.735854] loop7: detected capacity change from 0 to 2048 [ 134.767285] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none. [ 134.786974] ext4 filesystem being mounted at /syzkaller-testdir677622199/syzkaller.QwU0G6/2/file0 supports timestamps until 2038 (0x7fffffff) [ 134.835293] loop2: detected capacity change from 0 to 2048 [ 134.904234] EXT4-fs (loop7): unmounting filesystem. [ 134.940688] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 134.942466] ext4 filesystem being mounted at /syzkaller-testdir578115356/syzkaller.3HlunZ/4/file0 supports timestamps until 2038 (0x7fffffff) [ 135.007720] EXT4-fs (loop2): unmounting filesystem. [ 135.760763] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.767621] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.768701] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.769363] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.770175] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.774496] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.775575] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.776504] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.777929] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.778821] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.781800] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.782702] misc raw-gadget: fail, usb_gadget_register_driver returned -16 VM DIAGNOSIS: 09:39:39 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=1ffff11007d55ebb RCX=ffffffff812a241f RDX=0000000000000000 RSI=0000000000000008 RDI=ffffffff85b06ed0 RBP=0000000000000000 RSP=ffff88803eaaf5c8 R8 =0000000000000000 R9 =ffffffff85b06ed7 R10=fffffbfff0b60dda R11=0000000000000001 R12=0000000000000002 R13=0000000000000000 R14=ffffffff85407320 R15=0000000000000000 RIP=ffffffff812a242c RFL=00000247 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f084bc20368 CR3=000000000d76e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 322e6f732e6c6462 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00322e6f732e6c64 62696c2f756e672d YMM03=0000000000000000 0000000000000000 78756e696c2d3436 5f3638782f62696c YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88803d057690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000038 R11=0000000000000001 R12=0000000000000038 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3d00a92700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f62a8b41000 CR3=000000003d13a000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f3d036037c0 00007f3d036037c8 YMM02=0000000000000000 0000000000000000 00007f3d036037e0 00007f3d036037c0 YMM03=0000000000000000 0000000000000000 00007f3d036037c8 00007f3d036037c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000