Warning: Permanently added '[localhost]:62970' (ECDSA) to the list of known hosts. 2022/10/04 10:12:25 fuzzer started 2022/10/04 10:12:25 dialing manager at localhost:35095 syzkaller login: [ 40.503052] cgroup: Unknown subsys name 'net' [ 40.599910] cgroup: Unknown subsys name 'rlimit' 2022/10/04 10:12:38 syscalls: 2215 2022/10/04 10:12:38 code coverage: enabled 2022/10/04 10:12:38 comparison tracing: enabled 2022/10/04 10:12:38 extra coverage: enabled 2022/10/04 10:12:38 setuid sandbox: enabled 2022/10/04 10:12:38 namespace sandbox: enabled 2022/10/04 10:12:38 Android sandbox: enabled 2022/10/04 10:12:38 fault injection: enabled 2022/10/04 10:12:38 leak checking: enabled 2022/10/04 10:12:38 net packet injection: enabled 2022/10/04 10:12:38 net device setup: enabled 2022/10/04 10:12:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/04 10:12:38 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/04 10:12:38 USB emulation: enabled 2022/10/04 10:12:38 hci packet injection: enabled 2022/10/04 10:12:38 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/04 10:12:38 802.15.4 emulation: enabled 2022/10/04 10:12:38 fetching corpus: 50, signal 21272/23124 (executing program) 2022/10/04 10:12:39 fetching corpus: 100, signal 32518/36115 (executing program) 2022/10/04 10:12:39 fetching corpus: 150, signal 38917/44195 (executing program) 2022/10/04 10:12:39 fetching corpus: 200, signal 46426/53289 (executing program) 2022/10/04 10:12:39 fetching corpus: 250, signal 52928/61290 (executing program) 2022/10/04 10:12:39 fetching corpus: 300, signal 56767/66667 (executing program) 2022/10/04 10:12:39 fetching corpus: 350, signal 61840/73176 (executing program) 2022/10/04 10:12:39 fetching corpus: 400, signal 65888/78598 (executing program) 2022/10/04 10:12:39 fetching corpus: 450, signal 69083/83213 (executing program) 2022/10/04 10:12:39 fetching corpus: 500, signal 71726/87268 (executing program) 2022/10/04 10:12:40 fetching corpus: 550, signal 74721/91623 (executing program) 2022/10/04 10:12:40 fetching corpus: 600, signal 78401/96543 (executing program) 2022/10/04 10:12:40 fetching corpus: 650, signal 81744/101150 (executing program) 2022/10/04 10:12:40 fetching corpus: 700, signal 84906/105539 (executing program) 2022/10/04 10:12:40 fetching corpus: 750, signal 88829/110560 (executing program) 2022/10/04 10:12:40 fetching corpus: 800, signal 90677/113703 (executing program) 2022/10/04 10:12:40 fetching corpus: 850, signal 94662/118747 (executing program) 2022/10/04 10:12:40 fetching corpus: 900, signal 97543/122694 (executing program) 2022/10/04 10:12:41 fetching corpus: 950, signal 101267/127392 (executing program) 2022/10/04 10:12:41 fetching corpus: 1000, signal 104133/131276 (executing program) 2022/10/04 10:12:41 fetching corpus: 1050, signal 106689/134838 (executing program) 2022/10/04 10:12:41 fetching corpus: 1100, signal 108771/137954 (executing program) 2022/10/04 10:12:41 fetching corpus: 1150, signal 112779/142606 (executing program) 2022/10/04 10:12:41 fetching corpus: 1200, signal 115286/145993 (executing program) 2022/10/04 10:12:41 fetching corpus: 1250, signal 118815/150328 (executing program) 2022/10/04 10:12:42 fetching corpus: 1300, signal 121245/153599 (executing program) 2022/10/04 10:12:42 fetching corpus: 1350, signal 123382/156654 (executing program) 2022/10/04 10:12:42 fetching corpus: 1400, signal 124660/158928 (executing program) 2022/10/04 10:12:42 fetching corpus: 1450, signal 125255/160627 (executing program) 2022/10/04 10:12:42 fetching corpus: 1500, signal 126007/162465 (executing program) 2022/10/04 10:12:42 fetching corpus: 1550, signal 127265/164698 (executing program) 2022/10/04 10:12:42 fetching corpus: 1600, signal 129239/167430 (executing program) 2022/10/04 10:12:42 fetching corpus: 1650, signal 132238/170981 (executing program) 2022/10/04 10:12:43 fetching corpus: 1700, signal 133777/173307 (executing program) 2022/10/04 10:12:43 fetching corpus: 1750, signal 135573/175886 (executing program) 2022/10/04 10:12:43 fetching corpus: 1800, signal 137694/178667 (executing program) 2022/10/04 10:12:43 fetching corpus: 1850, signal 140560/181970 (executing program) 2022/10/04 10:12:43 fetching corpus: 1900, signal 141645/183937 (executing program) 2022/10/04 10:12:43 fetching corpus: 1950, signal 143035/186096 (executing program) 2022/10/04 10:12:43 fetching corpus: 2000, signal 143949/187867 (executing program) 2022/10/04 10:12:43 fetching corpus: 2050, signal 144965/189725 (executing program) 2022/10/04 10:12:43 fetching corpus: 2100, signal 146011/191578 (executing program) 2022/10/04 10:12:44 fetching corpus: 2150, signal 147375/193637 (executing program) 2022/10/04 10:12:44 fetching corpus: 2200, signal 148258/195319 (executing program) 2022/10/04 10:12:44 fetching corpus: 2250, signal 149075/196998 (executing program) 2022/10/04 10:12:44 fetching corpus: 2300, signal 150240/198897 (executing program) 2022/10/04 10:12:44 fetching corpus: 2350, signal 151639/201019 (executing program) 2022/10/04 10:12:44 fetching corpus: 2400, signal 152638/202791 (executing program) 2022/10/04 10:12:44 fetching corpus: 2450, signal 154595/205219 (executing program) 2022/10/04 10:12:44 fetching corpus: 2500, signal 155513/206884 (executing program) 2022/10/04 10:12:44 fetching corpus: 2550, signal 156066/208300 (executing program) 2022/10/04 10:12:45 fetching corpus: 2600, signal 157124/210047 (executing program) 2022/10/04 10:12:45 fetching corpus: 2650, signal 158281/211849 (executing program) 2022/10/04 10:12:45 fetching corpus: 2700, signal 159399/213602 (executing program) 2022/10/04 10:12:45 fetching corpus: 2750, signal 160125/215124 (executing program) 2022/10/04 10:12:45 fetching corpus: 2800, signal 161796/217259 (executing program) 2022/10/04 10:12:45 fetching corpus: 2850, signal 162476/218747 (executing program) 2022/10/04 10:12:45 fetching corpus: 2900, signal 163129/220135 (executing program) 2022/10/04 10:12:45 fetching corpus: 2950, signal 164732/222147 (executing program) 2022/10/04 10:12:45 fetching corpus: 3000, signal 165403/223526 (executing program) 2022/10/04 10:12:46 fetching corpus: 3050, signal 166050/224907 (executing program) 2022/10/04 10:12:46 fetching corpus: 3100, signal 167100/226490 (executing program) 2022/10/04 10:12:46 fetching corpus: 3150, signal 168331/228191 (executing program) 2022/10/04 10:12:46 fetching corpus: 3200, signal 169047/229581 (executing program) 2022/10/04 10:12:46 fetching corpus: 3250, signal 169944/231097 (executing program) 2022/10/04 10:12:46 fetching corpus: 3300, signal 170308/232225 (executing program) 2022/10/04 10:12:46 fetching corpus: 3350, signal 171061/233601 (executing program) 2022/10/04 10:12:46 fetching corpus: 3400, signal 172325/235212 (executing program) 2022/10/04 10:12:46 fetching corpus: 3450, signal 173290/236746 (executing program) 2022/10/04 10:12:47 fetching corpus: 3500, signal 173820/237938 (executing program) 2022/10/04 10:12:47 fetching corpus: 3550, signal 174715/239335 (executing program) 2022/10/04 10:12:47 fetching corpus: 3600, signal 175604/240695 (executing program) 2022/10/04 10:12:47 fetching corpus: 3650, signal 176820/242327 (executing program) 2022/10/04 10:12:47 fetching corpus: 3700, signal 177343/243551 (executing program) 2022/10/04 10:12:47 fetching corpus: 3750, signal 178336/245016 (executing program) 2022/10/04 10:12:47 fetching corpus: 3800, signal 179336/246430 (executing program) 2022/10/04 10:12:47 fetching corpus: 3850, signal 179804/247544 (executing program) 2022/10/04 10:12:48 fetching corpus: 3900, signal 180641/248876 (executing program) 2022/10/04 10:12:48 fetching corpus: 3950, signal 181274/250075 (executing program) 2022/10/04 10:12:48 fetching corpus: 4000, signal 182010/251342 (executing program) 2022/10/04 10:12:48 fetching corpus: 4050, signal 182755/252566 (executing program) 2022/10/04 10:12:48 fetching corpus: 4100, signal 184778/254389 (executing program) 2022/10/04 10:12:48 fetching corpus: 4150, signal 185738/255725 (executing program) 2022/10/04 10:12:48 fetching corpus: 4200, signal 186350/256876 (executing program) 2022/10/04 10:12:48 fetching corpus: 4250, signal 187207/258155 (executing program) 2022/10/04 10:12:49 fetching corpus: 4300, signal 187646/259217 (executing program) 2022/10/04 10:12:49 fetching corpus: 4350, signal 188112/260261 (executing program) 2022/10/04 10:12:49 fetching corpus: 4400, signal 188416/261220 (executing program) 2022/10/04 10:12:49 fetching corpus: 4450, signal 188736/262194 (executing program) 2022/10/04 10:12:49 fetching corpus: 4500, signal 189292/263231 (executing program) 2022/10/04 10:12:49 fetching corpus: 4550, signal 189911/264305 (executing program) 2022/10/04 10:12:49 fetching corpus: 4600, signal 190521/265441 (executing program) 2022/10/04 10:12:49 fetching corpus: 4650, signal 191010/266467 (executing program) 2022/10/04 10:12:49 fetching corpus: 4700, signal 191566/267533 (executing program) 2022/10/04 10:12:49 fetching corpus: 4750, signal 191998/268529 (executing program) 2022/10/04 10:12:50 fetching corpus: 4800, signal 192685/269620 (executing program) 2022/10/04 10:12:50 fetching corpus: 4850, signal 193355/270676 (executing program) 2022/10/04 10:12:50 fetching corpus: 4900, signal 193797/271652 (executing program) 2022/10/04 10:12:50 fetching corpus: 4950, signal 194266/272614 (executing program) 2022/10/04 10:12:50 fetching corpus: 5000, signal 194719/273564 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/274371 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/275133 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/275882 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/276665 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/277402 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/278181 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/278985 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/279735 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/280491 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/281274 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/282019 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/282794 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/283618 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/284360 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/285150 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/285964 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/286726 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/287503 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/288262 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/289036 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/289836 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/290606 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/291376 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/292164 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/292912 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/293720 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/294483 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/295283 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/296081 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/296821 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/297636 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/298374 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/299126 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/299881 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/300683 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/301457 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/302255 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/303078 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/303876 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/304653 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/305440 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/306269 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/307075 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/307846 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/308679 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/309453 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/310222 (executing program) 2022/10/04 10:12:50 fetching corpus: 5015, signal 194826/311004 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/311760 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/312534 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/313316 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/314085 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/314848 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/315642 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/316425 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/317201 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/317988 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/318630 (executing program) 2022/10/04 10:12:51 fetching corpus: 5015, signal 194826/318630 (executing program) 2022/10/04 10:12:53 starting 8 fuzzer processes 10:12:53 executing program 0: arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x1) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x2) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x9) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x6) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0xffffffffffffffff) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x7ff) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x0) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x65) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x800) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x9) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0xfff) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x1f) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x2) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x7bc) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x3ff) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x5) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x9) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x8001) arch_prctl$ARCH_MAP_VDSO_64(0x2003, 0x1) 10:12:53 executing program 1: ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, &(0x7f0000000000)={0x2, 0x10001}) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000200)={'syztnl1\x00', &(0x7f0000000180)={'sit0\x00', r0, 0x4, 0x0, 0xff, 0x7fffffff, 0x44, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8, 0x10, 0x9, 0x1000}}) socketpair(0x0, 0x80000, 0xffff0677, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000280)={'veth0\x00', 0x0}) r4 = dup2(r1, r1) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f00000002c0)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r0}, 0x14) r5 = socket$packet(0x11, 0x2, 0x300) bind$packet(r5, &(0x7f0000000300)={0x11, 0x1b, r0, 0x1, 0x3, 0x6, @multicast}, 0x14) ioctl$EXT4_IOC_CHECKPOINT(r2, 0x4004662b, &(0x7f0000000340)=0x3) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000380)={@mcast2}, 0x14) ioctl$sock_SIOCINQ(r1, 0x541b, &(0x7f00000003c0)) setsockopt$inet6_IPV6_PKTINFO(r4, 0x29, 0x32, &(0x7f0000000400)={@mcast1, r3}, 0x14) r6 = dup3(r2, 0xffffffffffffffff, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r6, 0x89f9, &(0x7f00000004c0)={'ip6tnl0\x00', &(0x7f0000000440)={'sit0\x00', r0, 0x29, 0x56, 0x2, 0x3, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1, 0x1, 0x80, 0x8, 0x7ff}}) r7 = syz_genetlink_get_family_id$team(&(0x7f0000000540), r6) sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)={0x90, r7, 0x300, 0x70bd2a, 0x25dfdbfb, {}, [{{0x8}, {0x74, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}]}}]}, 0x90}, 0x1, 0x0, 0x0, 0x4040080}, 0x40010) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r4, 0x89f4, &(0x7f0000000780)={'sit0\x00', &(0x7f0000000700)={'ip6_vti0\x00', r0, 0x4, 0x84, 0x0, 0xe47f, 0x2, @empty, @private1, 0x80, 0x700, 0x4, 0x9}}) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r4, 0x89f7, &(0x7f0000000840)={'ip6tnl0\x00', &(0x7f00000007c0)={'ip6_vti0\x00', 0x0, 0x4, 0x1f, 0x0, 0x6, 0x21, @loopback, @remote, 0x8000, 0x80, 0x8ae, 0xb05}}) sendmsg$ETHTOOL_MSG_RINGS_SET(r6, &(0x7f0000000980)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000940)={&(0x7f0000000880)={0x94, 0x0, 0x300, 0x70bd25, 0x25dfdbfb, {}, [@ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x5}, @ETHTOOL_A_RINGS_HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_RINGS_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x20040000}, 0x24000000) 10:12:53 executing program 2: sendmsg$IPCTNL_MSG_TIMEOUT_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x1, 0x8, 0x201, 0x0, 0x0, {0x3, 0x0, 0x1}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20048001) r0 = signalfd(0xffffffffffffffff, &(0x7f0000000100)={[0xa4c]}, 0x8) sendmsg$IPCTNL_MSG_CT_GET_DYING(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x6, 0x1, 0x301, 0x0, 0x0, {0x1, 0x0, 0x9}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040004}, 0x40) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x4c, r1, 0x200, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0x1f}}}}, [@NL80211_ATTR_STA_WME={0x1c, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0xff}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x9}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x67}]}, @NL80211_ATTR_LOCAL_MESH_POWER_MODE={0x8, 0xa4, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x40080) recvmmsg$unix(r0, &(0x7f0000006140)=[{{&(0x7f00000003c0)=@abs, 0x6e, &(0x7f0000001500)=[{&(0x7f0000000440)=""/51, 0x33}, {&(0x7f0000000480)=""/116, 0x74}, {&(0x7f0000000500)=""/4096, 0x1000}], 0x3, &(0x7f0000001540)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001580)=@abs, 0x6e, &(0x7f0000001640)=[{&(0x7f0000001600)=""/52, 0x34}], 0x1, &(0x7f0000001680)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38}}, {{&(0x7f00000016c0)=@abs, 0x6e, &(0x7f0000001c40)=[{&(0x7f0000001740)=""/164, 0xa4}, {&(0x7f0000001800)=""/131, 0x83}, {&(0x7f00000018c0)=""/107, 0x6b}, {&(0x7f0000001940)=""/160, 0xa0}, {&(0x7f0000001a00)=""/58, 0x3a}, {&(0x7f0000001a40)=""/183, 0xb7}, {&(0x7f0000001b00)=""/13, 0xd}, {&(0x7f0000001b40)=""/67, 0x43}, {&(0x7f0000001bc0)=""/102, 0x66}], 0x9}}, {{&(0x7f0000001d00), 0x6e, &(0x7f0000006040)=[{&(0x7f0000001d80)=""/186, 0xba}, {&(0x7f0000001e40)=""/4096, 0x1000}, {&(0x7f0000002e40)=""/4096, 0x1000}, {&(0x7f0000003e40)=""/47, 0x2f}, {&(0x7f0000003e80)=""/4096, 0x1000}, {&(0x7f0000004e80)=""/129, 0x81}, {&(0x7f0000004f40)=""/4096, 0x1000}, {&(0x7f0000005f40)=""/245, 0xf5}], 0x8, &(0x7f00000060c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}], 0x4, 0x40000000, &(0x7f0000006240)={0x77359400}) r7 = syz_genetlink_get_family_id$ethtool(&(0x7f00000062c0), r0) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f0000006380)={&(0x7f0000006280)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000006340)={&(0x7f0000006300)={0x1c, r7, 0x8, 0x70bd28, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKMODES_SPEED={0x8, 0x5, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x2000) ioctl$FS_IOC_FSGETXATTR(r3, 0x801c581f, &(0x7f00000063c0)={0x1f, 0x32321b8e, 0x80000001, 0x400, 0x8}) r8 = fsmount(r6, 0x0, 0x98) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000006440), r5) sendmsg$NL80211_CMD_SET_MESH_CONFIG(r8, &(0x7f0000006540)={&(0x7f0000006400)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000006500)={&(0x7f0000006480)={0x58, r9, 0x4, 0x70bd29, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x6b}, @NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5, 0x11, 0x1}]}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x3, 0x3d}}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x6f}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x6c}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x6, 0x3a}}]}, 0x58}, 0x1, 0x0, 0x0, 0x80000}, 0x4000000) r10 = memfd_secret(0x0) sendmsg$NL80211_CMD_GET_REG(r10, &(0x7f0000006740)={&(0x7f0000006580)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000006700)={&(0x7f00000065c0)={0x104, r9, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@NL80211_ATTR_REG_RULES={0xe8, 0x22, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x2}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x1}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7fffffff}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x4}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x200}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x40}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x79}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x100}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x4}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x3}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x564}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xe321}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x3ff}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x80000}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x1}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x9}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1a}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xe7e1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xfff}]}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0xe}]}, 0x104}}, 0x40005) r11 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$IPSET_CMD_GET_BYNAME(r11, &(0x7f0000006840)={&(0x7f0000006780)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000006800)={&(0x7f00000067c0)={0x28, 0xe, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x48000}, 0x10) r12 = syz_genetlink_get_family_id$nl80211(&(0x7f00000068c0), r2) sendmsg$NL80211_CMD_START_SCHED_SCAN(r4, &(0x7f0000006b80)={&(0x7f0000006880)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000006b40)={&(0x7f0000006900)={0x220, r12, 0x8, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x800, 0x29}}}}, [@NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x8}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x82}, @NL80211_ATTR_SCAN_SUPP_RATES={0x78, 0x7d, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x72, 0x0, "2fdbe50b852e8312f9d761707b44af31cfacec2559c2e435567c3549346a55f9d3697ac3f760220732a5d74535d172aab32e49ee81587b869f964c3c4a83d272f0229e2dc72ad5f2bba25b805cb4c914614fa7d345fe1501fb9673bb83e383d7c67726e0b7fc020f1603869239f7"}]}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x80}, @NL80211_ATTR_IE={0x14f, 0x2a, [@ht={0x2d, 0x1a, {0x1, 0x0, 0x6, 0x0, {0x9, 0x2, 0x0, 0x3c3, 0x0, 0x1, 0x1, 0x2}, 0x400, 0x1ce5, 0x7}}, @tim={0x5, 0xfd, {0x76, 0xd9, 0x1, "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"}}, @dsss={0x3, 0x1, 0x28}, @channel_switch={0x25, 0x3, {0x0, 0x95, 0x8}}, @cf={0x4, 0x6, {0x3f, 0x5, 0x4, 0x7}}, @measure_req={0x26, 0x1e, {0x4, 0x48, 0x9c, "a3ae4846e66f37e3615931b544a70a877f9111cd231d599b2e3188"}}]}, @NL80211_ATTR_MAC={0xa}]}, 0x220}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000080) sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000006c80)={&(0x7f0000006bc0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000006c40)={&(0x7f0000006c00)={0x1c, 0x0, 0x108, 0x70bd2a, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xbd}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0xc1) sendmsg$NL80211_CMD_LEAVE_OCB(r2, &(0x7f0000006d80)={&(0x7f0000006cc0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000006d40)={&(0x7f0000006d00)={0x28, r9, 0x100, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7fffffff, 0x7d}}}}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x0) 10:12:53 executing program 3: r0 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IEEE802154_LLSEC_LIST_KEY(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r0, 0x400, 0x70bd2a, 0x25dfdbfb, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x8000) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, r1, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_STATUS={0x5, 0x3, 0x1}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xffff}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc}]}, 0x38}, 0x1, 0x0, 0x0, 0x40080}, 0x4a000) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_KEY(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x28, r2, 0x400, 0x70bd2a, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x800) sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x38, r2, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x15}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x38}, 0x1, 0x0, 0x0, 0x24040094}, 0x2000050) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000540), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_DEV(r4, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x6c, r5, 0x800, 0x70bd2d, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x6c}}, 0x4000) sendmsg$IEEE802154_LIST_PHY(r4, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x14, r0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x840) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000800)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_CHANNEL(r7, &(0x7f0000000900)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x68, r2, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_PAGE={0x5, 0x7, 0xd}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0x9}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_PAGE={0x5}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0xb}]}, 0x68}, 0x1, 0x0, 0x0, 0x20040040}, 0x8040) sendmsg$NLBL_MGMT_C_REMOVEDEF(r4, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x8080000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000980)={0x58, 0x0, 0x4, 0x70bd2a, 0x25dfdbfd, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x5}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @mcast2}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @loopback}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x6538afca00e1e161}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xffffffffffffffff}]}, 0x58}, 0x1, 0x0, 0x0, 0x8000}, 0x40040c4) sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x3c, 0x0, 0x800, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x23}}}}, [@NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "c53e39b463202ad8f9047b9724"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2000000}, 0x24004855) sendmsg$IEEE802154_LLSEC_DEL_DEV(r7, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x14, r5, 0x20, 0x70bd2a, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x8) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000f80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000f40)={&(0x7f0000000cc0)={0x274, 0x0, 0x400, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x1353}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_FRAME={0x248, 0x33, @assoc_req={@with_ht={{{0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x8}, @device_b, @broadcast, @random="9d6584fe076b", {0x9, 0x92}}, @ver_80211n={0x0, 0x7f, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1}}, 0x2620, 0x4, {0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x2, [{0x36}, {0x3, 0x1}]}, @void, [{0xdd, 0x89, "1b202f89cbc727267a3640ca17825cc0cb9e062a4c5cc50d90a88a50b4591ebef10dbbd26c0646a2ebfbbd3209ab93b10e2341c6bb81a46e171936bb06b01caf7a8021acd20838e7c967acc4f5e368de5873849c3408bbc53f029649943fbf26df1267b217d349c07bb7f0a78f38effb6825c4b9caf8411c5512b5da12d8274b7ea79e3485dc08d56f"}, {0xdd, 0xac, "bdb90dc65e844eb3abd616ad65714018acd41c4d17d1ade4ecc4323165d3216bcd543bda87ef48dc5bfb2dfe6ca759a61e5b1c68cba2f77ae8c8e5e6a734286f21828bfca1bb9dcc6eb4f6ce29b7a692b8f5ddd96ae40c105389ec542d347f9f4b1ca1314f0c23613676f22b72621e5bfe17c30b53912a3879d34d47c71d502cfe6609504f3f013af2509d38d85223a0e3af9e5f70dca6a3df0963c57216f84f50283afeb9b8d098d09055c8"}, {0xdd, 0x63, "7ff28b5399f5f2ee6461f86313b660515f7134d0785e535f69c8502534caedbf9b074e91601053724a3c5957007507c9eeed371aebb920744dba3831ae251d5c87f5552a0a7c29e73a699f444cb4c4351122279939b7c1904823d9d094725b92e43145"}, {0xdd, 0x78, "cfb873e576f31f2ee1b3020819452415bc925f411dd6676f546d71b39a621e32bd58abfffff0f291ab7382379325ac560b59b826ed8715d134ba4866724f2373719aa988aab1256503c4db89958c23e37e0ec180df1e8abab133860b97d6dbc92039265ba46d1c513e4b6f01683c30daa9629c3286bdfd45"}]}}]}, 0x274}, 0x1, 0x0, 0x0, 0x1}, 0x20004000) 10:12:53 executing program 4: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80000, 0x5c) write(r0, &(0x7f0000000040)="127560efdd87fd7e2891ea934bfbd4b517d6352477d57f57fed588bc58752857887aef945ff7360a90378dff90b1eb9dbfe7f2b4915687440cee78bf40f5316f64425aa1596e92b02d811fee977114caca704dd7758b04a61b4c4bbfe0a6ad89441b8a859858fa0a845e2e29af039bb152602235ac2eaad33732fb3c255c85eff5042951640d13b507d5d6bf26c6325aac381c1bf9b64ebc45", 0x99) mknodat$loop(r0, &(0x7f0000000100)='./file0\x00', 0x2000, 0x0) unlinkat(r0, &(0x7f0000000140)='./file0\x00', 0x0) r1 = open_tree(r0, &(0x7f0000000180)='./file0\x00', 0x1100) r2 = openat(r1, &(0x7f00000001c0)='./file0\x00', 0x40a401, 0x20) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2, {0x4}}, './file0\x00'}) r4 = syz_mount_image$msdos(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x4, 0x5, &(0x7f0000000600)=[{&(0x7f00000002c0)="56e79a944451e9902489819d7293359dd0779167d2399fd264a4e8f58abeaba32367fb94de41e919002bee655843cb40df1ed17dbdb24e8c4e960ee7f46608aa468773f10c55239e35e4ef46ff0aa9862c7b33847708a60242cad210217b7a758fcb4f93c85aa67f0ade3b2e103b758c0c6d28f68f903ab57ece66f263c9d024c07887b63fa481d36d4adda61e3ad30cb819deb72a8e31f9b31c6a9e4a5fc3d44ded9f90f48ec67cbbd4c1ad4f60c56e6fb574f8ea70258617c4ab07536a83e5440475df7932118fef485cc603a356406d0a7a9713", 0xd5, 0x7fff}, {&(0x7f00000003c0)="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", 0xff, 0x8}, {&(0x7f00000004c0)="e6d0274e8c05c4ef23fd4859c04d5fa22306282e8452c392b013daae44fe148e4b5d0e6a46fdbb6f802ecaed3d8d0d46d1", 0x31, 0xf20e}, {&(0x7f0000000500)="62ff59161d1b8abe34", 0x9, 0x4be}, {&(0x7f0000000540)="4559c8d6b11f4b413e9f5074ab79b873a535a1939a0fddff9ca47bc2be73901913f85e722d0e1fc77c8e0b62cf65a5cbaa4bd81ba23e0a66a37e5051f1f64db9c542a3a26c2172f4ad06e41b275b5fb80888b2ebeb09fa6fc730e6eeda7b503fbc31cc5fecbf3c2503c32c7d749af153de4b6d8f07e8e2a2e059646f32bf8d14067262d3eb4818831d8bc64933aaae664d51", 0x92, 0x401}], 0x809000, &(0x7f0000000680)={[{@fat=@nfs}, {@fat=@errors_continue}, {@dots}, {@dots}, {@dots}, {@dots}, {@fat=@nocase}], [{@subj_user={'subj_user', 0x3d, '@\\\x17#-'}}, {@fsmagic={'fsmagic', 0x3d, 0x9}}]}) fchmodat(r4, &(0x7f0000000700)='./file0\x00', 0x5) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000740), 0x480c2, 0x0) r6 = syz_mount_image$nfs(0xffffffffffffffff, &(0x7f00000007c0)='./file0\x00', 0x8f3, 0x1, &(0x7f0000000840)=[{&(0x7f0000000800)="f8", 0x1, 0x1}], 0x844005, &(0x7f0000000880)={[{'\xe4%)+%!}&'}, {'msdos\x00'}, {'msdos\x00'}, {'msdos\x00'}, {'&'}, {'nocase'}], [{@smackfsdef={'smackfsdef', 0x3d, 'fsmagic'}}, {@uid_gt}, {@audit}]}) renameat(r5, &(0x7f0000000780)='./file0\x00', r6, &(0x7f0000000900)='./file0\x00') linkat(r2, &(0x7f0000000940)='./file0/../file0\x00', r1, &(0x7f0000000980)='./file0\x00', 0xa00) mknodat$null(r4, &(0x7f00000009c0)='./file0\x00', 0x800, 0x103) r7 = open_tree(r3, &(0x7f0000000a00)='./file0/../file0\x00', 0x1800) openat$incfs(r7, &(0x7f0000000a40)='.pending_reads\x00', 0x72a82, 0x102) r8 = openat$sr(0xffffffffffffff9c, &(0x7f0000000a80), 0x8040, 0x0) ioctl$TUNGETVNETHDRSZ(r8, 0x800454d7, &(0x7f0000000ac0)) ioctl$EXT4_IOC_MIGRATE(0xffffffffffffffff, 0x6609) preadv(r5, &(0x7f0000001100)=[{&(0x7f0000000b00)=""/246, 0xf6}, {&(0x7f0000000c00)=""/209, 0xd1}, {&(0x7f0000000d00)=""/22, 0x16}, {&(0x7f0000000d40)=""/237, 0xed}, {&(0x7f0000000e40)=""/90, 0x5a}, {&(0x7f0000000ec0)=""/74, 0x4a}, {&(0x7f0000000f40)=""/144, 0x90}, {&(0x7f0000001000)=""/113, 0x71}, {&(0x7f0000001080)=""/109, 0x6d}], 0x9, 0x0, 0x0) 10:12:53 executing program 5: prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x0) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x0) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xe) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x6) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x2) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xa) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xc) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x4) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xf) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x0) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x8) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x2) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x5f8cc8b4d2554d83) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xc) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x4) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x4) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xc) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x6) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0xc) prctl$PR_GET_SPECULATION_CTRL(0x34, 0x0, 0x0) [ 68.518269] audit: type=1400 audit(1664878373.867:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:12:53 executing program 6: ioctl$EVIOCGMTSLOTS(0xffffffffffffffff, 0x8040450a, &(0x7f0000000000)=""/4096) fallocate(0xffffffffffffffff, 0x7, 0x5, 0x5) r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000001000)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000001040)={0x8}) r1 = openat(0xffffffffffffffff, &(0x7f0000001080)='./file0\x00', 0x111880, 0x7a) write$tcp_mem(0xffffffffffffffff, &(0x7f00000010c0)={0x6, 0x20, 0x57, 0x20, 0x4}, 0x48) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) write$binfmt_aout(r2, &(0x7f0000001140)={{0x107, 0xf4, 0x0, 0x30a, 0x279, 0x40, 0x159, 0x1}, "d38658b68e241dcefcfa37fa7c05075b9d97c5b8407ee221b883b09ad79468cdaca21d48dd90652143562efc6c5b8ab8fa778e21ca3e547696c95910ef1e93ad95e44f04de4273a35ab200c423c95835dfe802cbe9292bbbf854a26badd41811e91a9c88068e3269e7c8544f3e5f031267037928d4b3deacb77e72089042101c5107cc00d8d01049a9c50e1ad9a9a93b8a9161d3acc56b1048a88c1658da681449853b14a851bd247bfc323b5aedd394688d9b89f2884eb7b66cfd9d26e2f721aa285e7fd2163732717ebc62e8307f3c8f6b8816ef8dc9c3272c3531099c06235b", ['\x00']}, 0x201) ioctl$sock_SIOCINQ(r2, 0x541b, &(0x7f0000001380)) r3 = signalfd4(r2, &(0x7f00000013c0)={[0x2]}, 0x8, 0x800) ioctl$EVIOCGBITSW(r3, 0x80404525, &(0x7f0000001400)=""/236) fchmod(r3, 0x10) r4 = dup3(r1, r2, 0x80000) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r4, &(0x7f00000016c0)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001680)={&(0x7f0000001540)={0x104, 0x0, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x4}, {0xc, 0x8f, 0x7}, {0xc, 0x90, 0x9}}, {@pci={{0x8}, {0x11}}, {0x8}, {0xc, 0x8f, 0x8001}, {0xc}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0x40}, {0xc, 0x90, 0x240c}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x3}, {0xc, 0x8f, 0x100000001}, {0xc, 0x90, 0x7}}]}, 0x104}, 0x1, 0x0, 0x0, 0x10004080}, 0x81) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f0000001700)) connect$bt_sco(r2, &(0x7f0000001b00)={0x1f, @none}, 0x8) r5 = openat(0xffffffffffffff9c, &(0x7f0000001b40)='./file0\x00', 0x4000, 0x20) ioctl$sock_SIOCSIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r5, 0x8983, &(0x7f0000001b80)={0x3, 'bond_slave_1\x00', {0xa2}}) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000001bc0)={r3, 0x400, 0x800, 0x40}) ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000001c00)) 10:12:53 executing program 7: sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xac, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x1}, {0x6, 0x16, 0x5}, {0x5, 0x12, 0x1}, {0x6}, {0x8, 0xb, 0x70000}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x5}, {0x6, 0x16, 0x101}, {0x5}, {0x6, 0x11, 0x2}, {0x8, 0xb, 0x7f}}]}, 0xac}, 0x1, 0x0, 0x0, 0x4000000}, 0x40004040) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x94, r0, 0x400, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x44}, @val={0x8}, @void}}, [@NL80211_ATTR_VENDOR_DATA={0x4}, @NL80211_ATTR_VENDOR_DATA={0x15, 0xc5, "bd8be258f84a56bce54870335e4b05b8b4"}, @NL80211_ATTR_VENDOR_DATA={0x42, 0xc5, "b2b3899aa7ff25b58852bc33c95e81e0525e5eaa40af1ccfd4069bc611e069e1f6c972a9b0984e0243031b7534c77b6a040aca0205035acabcf359cedee4"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x8000}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x100}]}, 0x94}, 0x1, 0x0, 0x0, 0xc040}, 0x1) syz_genetlink_get_family_id$mptcp(&(0x7f0000000340), 0xffffffffffffffff) fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000380), &(0x7f00000003c0)=@md5={0x1, "c6dd3e3d3ad69cdc5fea5599f64f61e5"}, 0x11, 0x3) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000400), 0x280, 0x0) sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x48, r0, 0xd0eef5783039cbe2, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xdf08, 0x6a}}}}, [@NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x6}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1c3d}]]}, 0x48}, 0x1, 0x0, 0x0, 0x4000010}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000005c0), r1) sendmsg$TIPC_CMD_SHOW_STATS(r1, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x1c, r3, 0x400, 0x70bd25, 0x25dfdbfd, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x44051) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r2, {0xfffffffe}}, './file0\x00'}) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000740), r1) sendmsg$TIPC_CMD_SET_NETID(r4, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x24, r5, 0x2, 0x70bd26, 0x25dfdbff, {{}, {}, {0x8, 0x2, 0xac5e}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x4000) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000880)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000ac0)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000a80)={&(0x7f00000008c0)={0x184, r0, 0x200, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x77}, @val={0x8, 0x3, r6}, @val={0xc, 0x99, {0xffffffff, 0x18}}}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x9}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x80000000}, @NL80211_ATTR_VENDOR_DATA={0xb2, 0xc5, "8e326dd5f4324a442d008eaae6fdcf542660f41321d3f409e585851fcb10bc796e221a14637072586560776b54d6b7432b2ebd4e1d67ac3140e061694d9ff0c18c1717caef7740b666a49d8299515db020dcf7f0131aa05db706f446e2e21803461b3b2696899cf268706771d428334376bd459486ab7a76293d3abe8b699299d721b8cd8597f808466b0282f6eb85d1b88b11f0d8efcc6b9681de46f183e2142e760bbabc7ffb446bebc83daa1d"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x13}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x1}, @NL80211_ATTR_VENDOR_DATA={0x7d, 0xc5, "74ce6ae0658e38d5fc242a5dc088d2bb7418a5349d8e1bdaeeb4ec558c0bfe014a18e76122e57c7784cb0cb0ab7752741822da92ab0a05995bed5d6f34b15d8aa8820f785ca58d7451c48b6e1bd597047e5a453994ba45c506d0b1936440557db5d521efa664ea6416b07c9bac3de6dbf22abd7c7b2f355d79"}]}, 0x184}, 0x1, 0x0, 0x0, 0xc000}, 0x40880) sendmsg$DEVLINK_CMD_PORT_GET(r4, &(0x7f0000000cc0)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000c80)={&(0x7f0000000b40)={0x13c, 0x0, 0x200, 0x8, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0xfffffff7}}}]}, 0x13c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001140)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001100)={&(0x7f0000000d40)={0x3ac, r0, 0x10, 0x70bd29, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0xcc8}, @NL80211_ATTR_FRAME={0x3a, 0x33, @action_no_ack={@wo_ht={{0x0, 0x0, 0xe, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x2}, @device_b, @broadcast, @random="109b03b8bec3", {0xc, 0x2}}, @tdls_chsw_req={0xc, 0x5, {0xa5, 0x7b, @void, {0x65, 0x12, {@random="4fddf5bf79e7", @broadcast, @device_b}}, {0x68, 0x4, {0x3, 0x81}}}}}}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xa55}, @NL80211_ATTR_FRAME={0x31f, 0x33, @beacon={@wo_ht={{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x7f}, @device_b, @device_b, @from_mac, {0xb, 0x7d}}, 0xa00, @random=0x8, 0x300, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @void, @void, @val={0x25, 0x3, {0x0, 0x8c, 0x2}}, @void, @val={0x3c, 0x4, {0x1, 0x8, 0xb0, 0x9}}, @val={0x2d, 0x1a, {0x1, 0x1, 0x2, 0x0, {0x4, 0x7f, 0x0, 0x7, 0x0, 0x1, 0x1, 0x3, 0x1}, 0x300, 0x7, 0x8}}, @val={0x72, 0x6}, @void, @void, [{0xdd, 0x5b, "2d0288478e369dcac7deac712ad9be9687d0cac814c549f6d1dbc5cc2007a99dcb7079c32883937c6d5b49330d28167e984060fe0296b64c813a307705f1258fd6492faea584ec8dad827870bcd8c731421b09e1726260743ecd4d"}, {0xdd, 0xd6, "694bf8aaf3c139ee548bb10e45fb496f8e08e476c044eb90e2051173d294eeab3014a83fc034483e88e3ea3b6d5ae1ae9f7f273b2260c1bfb3d539ac6bb8a5f04d0fc52cadd3c388bcc650020cabdb7b9e95cff7ffab27e60b1b69f015f429ceeff689a66613af9bc3ee5759d0c8e37aea0eaf7677b540ed45ae3eb608206724a2fad37acdb720ae372dcf802a83ef98380e8c7c6d6d49fe6c6ee36a5de6f27d376a336796337f6ce9b4f836b9611c724395111e498231df0bc6426577c9a69650204a7f9191154b05028da13b74ff0b99b683daec23"}, {0xdd, 0xe6, "a3427191a543a82ccf3d5ba905dc9495c2bee7a1ac0a6f21f43e077b9a077d3351e9fbfc543cc183ed982e6be7d731db48deaebb05ffcc57ac3812d4c085d0b8e3c574712ce7215c2fb27d270d5669493954476c450aab4838ec19adf2738092d863700b9e43c74093419c8afd423bf4043ed1e11155c01461bc6e4948c151b226b2ca0628705b7e328e985cde7e4ac4077173a8f5d4f018b05d6e84bce293de741b4d3800a417389012adb944829958fa1e785b73995091d05b3578f18324d7a5ade90d258d3a88c2e0def545e6edc233dbcdca073edfe3884e33a507ec746df36fc0d32b92"}, {0xdd, 0xa1, "3cf951e6fad10602df6067fb4af0b4441caab4373454ad0237a0a0d181ac7a4ea80227a8d94e2a1be545c86e1739f62b8bbc626f2b0e59e94fb4a9a5628bfc4ef7c74f09d1a547fb2f966d272dfa580bbe62f780ad2027ad23a37bdc0ca86a231db2d6fd43194c253f0fa77f54fe9ff46f137b29a40db5cb7485bf72362f3a1f821cc85276600e405bdce0c8770af883ae4b7dfc60a2af33d18b09c9edbe0b0c0b"}]}}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x60}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x20}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}]]}, 0x3ac}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f00000011c0)={'batadv0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r1, 0x89f6, &(0x7f0000002540)={'sit0\x00', &(0x7f00000024c0)={'syztnl0\x00', 0x0, 0x4, 0x2, 0x4b, 0x80000000, 0x22, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x7800, 0x7800, 0x6, 0x5}}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f00000027c0)={&(0x7f0000001180), 0xc, &(0x7f0000002780)={&(0x7f0000002600)={0x160, 0x0, 0x20, 0x70bd2b, 0x25dfdbfb, {}, [@HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}]}, @HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x160}, 0x1, 0x0, 0x0, 0x4000005}, 0x4050) [ 69.811396] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.814194] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.815892] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.821000] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.824734] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 69.826809] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 69.833401] Bluetooth: hci0: HCI_REQ-0x0c1a [ 69.900462] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 69.904407] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 69.906667] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 69.908305] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 69.909641] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 69.911460] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 69.919239] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 69.922197] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 69.923477] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 69.924850] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 69.927657] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 69.929385] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 69.932002] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 69.933153] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 69.934353] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 69.935645] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 69.937204] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 69.940011] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 69.941045] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 69.942336] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 69.947460] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 69.948367] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 69.948846] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 69.949746] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 69.956369] Bluetooth: hci5: HCI_REQ-0x0c1a [ 69.959249] Bluetooth: hci2: HCI_REQ-0x0c1a [ 69.963735] Bluetooth: hci4: HCI_REQ-0x0c1a [ 69.964796] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 69.967711] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 69.970230] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 69.971683] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 69.977786] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 69.979225] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 69.999309] Bluetooth: hci6: HCI_REQ-0x0c1a [ 70.012137] Bluetooth: hci3: HCI_REQ-0x0c1a [ 70.060920] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 70.071417] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 70.087571] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 70.109378] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 70.122294] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 70.129182] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 70.144979] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.898433] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 71.898598] Bluetooth: hci0: command 0x0409 tx timeout [ 71.961368] Bluetooth: hci5: command 0x0409 tx timeout [ 72.025234] Bluetooth: hci3: command 0x0409 tx timeout [ 72.025284] Bluetooth: hci6: command 0x0409 tx timeout [ 72.025923] Bluetooth: hci2: command 0x0409 tx timeout [ 72.026889] Bluetooth: hci4: command 0x0409 tx timeout [ 72.155223] Bluetooth: hci7: command 0x0409 tx timeout [ 73.945118] Bluetooth: hci0: command 0x041b tx timeout [ 74.009150] Bluetooth: hci5: command 0x041b tx timeout [ 74.073162] Bluetooth: hci2: command 0x041b tx timeout [ 74.074275] Bluetooth: hci4: command 0x041b tx timeout [ 74.074297] Bluetooth: hci6: command 0x041b tx timeout [ 74.074668] Bluetooth: hci3: command 0x041b tx timeout [ 74.201214] Bluetooth: hci7: command 0x041b tx timeout [ 75.993217] Bluetooth: hci0: command 0x040f tx timeout [ 76.057250] Bluetooth: hci5: command 0x040f tx timeout [ 76.121173] Bluetooth: hci3: command 0x040f tx timeout [ 76.121629] Bluetooth: hci6: command 0x040f tx timeout [ 76.122031] Bluetooth: hci2: command 0x040f tx timeout [ 76.123050] Bluetooth: hci4: command 0x040f tx timeout [ 76.250213] Bluetooth: hci7: command 0x040f tx timeout [ 76.762138] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 78.041149] Bluetooth: hci0: command 0x0419 tx timeout [ 78.105184] Bluetooth: hci5: command 0x0419 tx timeout [ 78.169173] Bluetooth: hci4: command 0x0419 tx timeout [ 78.169214] Bluetooth: hci2: command 0x0419 tx timeout [ 78.169634] Bluetooth: hci6: command 0x0419 tx timeout [ 78.170114] Bluetooth: hci3: command 0x0419 tx timeout [ 78.297181] Bluetooth: hci7: command 0x0419 tx timeout [ 79.340957] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 79.359814] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 79.361886] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 79.368239] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 79.373224] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 79.376128] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 79.385484] Bluetooth: hci1: HCI_REQ-0x0c1a [ 81.434259] Bluetooth: hci1: command 0x0409 tx timeout [ 83.481145] Bluetooth: hci1: command 0x041b tx timeout [ 85.529340] Bluetooth: hci1: command 0x040f tx timeout [ 87.577150] Bluetooth: hci1: command 0x0419 tx timeout 10:13:49 executing program 5: r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x5, @local, 0x4}, 0x1c) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r1, 0x800448f0, &(0x7f0000000000)={0x0, 0x0, "eed1ea"}) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040), 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) pwritev(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)="1e", 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_TX_TS(r2, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x3c, r3, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x80000000}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xd}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40001}, 0x1) r4 = fsopen(&(0x7f0000000080)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0) fsmount(r4, 0x0, 0x0) ioctl$BTRFS_IOC_LOGICAL_INO(r4, 0xc0389424, &(0x7f0000000100)={0x6, 0x38, '\x00', 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) [ 124.416675] Bluetooth: hci0: HCI_REQ-0x0401 [ 124.450247] Bluetooth: hci0: HCI_REQ-0x0401 10:13:49 executing program 5: syz_emit_ethernet(0x5e, &(0x7f00000005c0)={@local, @remote, @void, {@ipv6={0x86dd, @tipc_packet={0x0, 0x6, "27ec56", 0x28, 0x6, 0x0, @loopback, @mcast2, {[], @payload_named={{{{{0x28, 0x0, 0x0, 0x0, 0x0, 0xa}}}}}}}}}}, 0x0) syz_emit_ethernet(0xc4, &(0x7f0000000000)={@broadcast, @random="3d1dd00735d1", @val={@void, {0x8100, 0x3, 0x1, 0x2}}, {@llc_tr={0x11, {@snap={0x1, 0x1, "9c9f", "732191", 0x0, "750640d449bf07dd148bc10829a44059803a223d83775faddf5a1ed00cf7e36291bc5c512c632d27e9e84ab133af4c8ae3cc93fb5151ae76edb5c5ddcfc53c596c6e0ee4ee6fdbf08a355e1e53ccaca7095790a9a170381bd0b6f566671df225ecb6655a4fdb80944fa7ab4d2427d01567b7528058bb05134acc897319f5d65c0b0fb0abec10c047f96bdf79dba133693375a6ddaa59b9e24d653399b7383ea2c113139729db8925dc"}}}}}, 0x0) 10:13:50 executing program 5: shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000140)=""/237) shmctl$SHM_STAT(0x0, 0xd, &(0x7f00000003c0)=""/123) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) finit_module(r0, 0x0, 0x0) r1 = openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x1b}, 0x18) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)=0x0) socket$inet(0x2, 0x80000, 0xffff0001) accept4(0xffffffffffffffff, &(0x7f0000000540)=@pptp={0x18, 0x2, {0x0, @loopback}}, &(0x7f0000000100)=0x80, 0x80800) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x1a, 0x3, 0x1f, 0x5, 0x0, 0x8, 0x84459, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000000), 0x1}, 0x10000, 0x7fff, 0x2, 0x5, 0x2, 0x4, 0x5c, 0x0, 0x2, 0x0, 0x6bac}, r3, 0x8, 0xffffffffffffffff, 0x2) ioctl$SNAPSHOT_FREE(r2, 0x3305) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000011c0)=0x14) [ 124.788559] audit: type=1400 audit(1664878430.137:7): avc: denied { open } for pid=3789 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.793826] audit: type=1400 audit(1664878430.138:8): avc: denied { kernel } for pid=3789 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.822792] ------------[ cut here ]------------ [ 124.822827] [ 124.822832] ====================================================== [ 124.822839] WARNING: possible circular locking dependency detected [ 124.822846] 6.0.0-rc7-next-20220930 #1 Not tainted [ 124.822859] ------------------------------------------------------ [ 124.822865] syz-executor.5/3792 is trying to acquire lock: [ 124.822877] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 124.822971] [ 124.822971] but task is already holding lock: [ 124.822976] ffff8880090fc420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 124.823025] [ 124.823025] which lock already depends on the new lock. [ 124.823025] [ 124.823031] [ 124.823031] the existing dependency chain (in reverse order) is: [ 124.823037] [ 124.823037] -> #3 (&ctx->lock){....}-{2:2}: [ 124.823068] _raw_spin_lock+0x2a/0x40 [ 124.823089] __perf_event_task_sched_out+0x53b/0x18d0 [ 124.823111] __schedule+0xedd/0x2470 [ 124.823138] schedule+0xda/0x1b0 [ 124.823164] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.823187] syscall_exit_to_user_mode+0x19/0x40 [ 124.823211] do_syscall_64+0x48/0x90 [ 124.823244] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.823269] [ 124.823269] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 124.823296] _raw_spin_lock_nested+0x30/0x40 [ 124.823317] raw_spin_rq_lock_nested+0x1e/0x30 [ 124.823341] task_fork_fair+0x63/0x4d0 [ 124.823373] sched_cgroup_fork+0x3d0/0x540 [ 124.823400] copy_process+0x4183/0x6e20 [ 124.823420] kernel_clone+0xe7/0x890 [ 124.823438] user_mode_thread+0xad/0xf0 [ 124.823458] rest_init+0x24/0x250 [ 124.823481] arch_call_rest_init+0xf/0x14 [ 124.823513] start_kernel+0x4c6/0x4eb [ 124.823543] secondary_startup_64_no_verify+0xe0/0xeb [ 124.823570] [ 124.823570] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 124.823596] _raw_spin_lock_irqsave+0x39/0x60 [ 124.823617] try_to_wake_up+0xab/0x1930 [ 124.823643] up+0x75/0xb0 [ 124.823671] __up_console_sem+0x6e/0x80 [ 124.823701] console_unlock+0x46a/0x590 [ 124.823731] vprintk_emit+0x1bd/0x560 [ 124.823763] vprintk+0x84/0xa0 [ 124.823794] _printk+0xba/0xf1 [ 124.823816] kauditd_hold_skb.cold+0x3f/0x4e [ 124.823848] kauditd_send_queue+0x233/0x290 [ 124.823877] kauditd_thread+0x5f9/0x9c0 [ 124.823904] kthread+0x2ed/0x3a0 [ 124.823931] ret_from_fork+0x22/0x30 [ 124.823955] [ 124.823955] -> #0 ((console_sem).lock){....}-{2:2}: [ 124.823982] __lock_acquire+0x2a02/0x5e70 [ 124.824014] lock_acquire+0x1a2/0x530 [ 124.824045] _raw_spin_lock_irqsave+0x39/0x60 [ 124.824065] down_trylock+0xe/0x70 [ 124.824095] __down_trylock_console_sem+0x3b/0xd0 [ 124.824126] vprintk_emit+0x16b/0x560 [ 124.824158] vprintk+0x84/0xa0 [ 124.824189] _printk+0xba/0xf1 [ 124.824209] report_bug.cold+0x72/0xab [ 124.824240] handle_bug+0x3c/0x70 [ 124.824273] exc_invalid_op+0x14/0x50 [ 124.824306] asm_exc_invalid_op+0x16/0x20 [ 124.824329] group_sched_out.part.0+0x2c7/0x460 [ 124.824363] ctx_sched_out+0x8f1/0xc10 [ 124.824396] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.824417] __schedule+0xedd/0x2470 [ 124.824444] schedule+0xda/0x1b0 [ 124.824470] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.824491] syscall_exit_to_user_mode+0x19/0x40 [ 124.824516] do_syscall_64+0x48/0x90 [ 124.824548] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.824573] [ 124.824573] other info that might help us debug this: [ 124.824573] [ 124.824578] Chain exists of: [ 124.824578] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 124.824578] [ 124.824607] Possible unsafe locking scenario: [ 124.824607] [ 124.824611] CPU0 CPU1 [ 124.824615] ---- ---- [ 124.824620] lock(&ctx->lock); [ 124.824630] lock(&rq->__lock); [ 124.824643] lock(&ctx->lock); [ 124.824655] lock((console_sem).lock); [ 124.824666] [ 124.824666] *** DEADLOCK *** [ 124.824666] [ 124.824670] 2 locks held by syz-executor.5/3792: [ 124.824683] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 124.824740] #1: ffff8880090fc420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 124.824792] [ 124.824792] stack backtrace: [ 124.824797] CPU: 1 PID: 3792 Comm: syz-executor.5 Not tainted 6.0.0-rc7-next-20220930 #1 [ 124.824821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 124.824836] Call Trace: [ 124.824842] [ 124.824849] dump_stack_lvl+0x8b/0xb3 [ 124.824885] check_noncircular+0x263/0x2e0 [ 124.824917] ? format_decode+0x26c/0xb50 [ 124.824948] ? print_circular_bug+0x450/0x450 [ 124.824982] ? simple_strtoul+0x30/0x30 [ 124.825010] ? perf_output_begin_forward+0x705/0xb00 [ 124.825039] ? lock_downgrade+0x6d0/0x6d0 [ 124.825072] ? format_decode+0x26c/0xb50 [ 124.825106] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 124.825141] __lock_acquire+0x2a02/0x5e70 [ 124.825183] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 124.825228] lock_acquire+0x1a2/0x530 [ 124.825261] ? down_trylock+0xe/0x70 [ 124.825294] ? lock_release+0x750/0x750 [ 124.825335] ? vprintk+0x84/0xa0 [ 124.825370] _raw_spin_lock_irqsave+0x39/0x60 [ 124.825392] ? down_trylock+0xe/0x70 [ 124.825424] down_trylock+0xe/0x70 [ 124.825455] ? vprintk+0x84/0xa0 [ 124.825488] __down_trylock_console_sem+0x3b/0xd0 [ 124.825522] vprintk_emit+0x16b/0x560 [ 124.825560] vprintk+0x84/0xa0 [ 124.825594] _printk+0xba/0xf1 [ 124.825616] ? record_print_text.cold+0x16/0x16 [ 124.825648] ? report_bug.cold+0x66/0xab [ 124.825683] ? group_sched_out.part.0+0x2c7/0x460 [ 124.825719] report_bug.cold+0x72/0xab [ 124.825756] handle_bug+0x3c/0x70 [ 124.825791] exc_invalid_op+0x14/0x50 [ 124.825826] asm_exc_invalid_op+0x16/0x20 [ 124.825851] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 124.825891] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 124.825913] RSP: 0018:ffff888036fe7c48 EFLAGS: 00010006 [ 124.825931] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 124.825945] RDX: ffff888018a18000 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 124.825960] RBP: ffff888036f68000 R08: 0000000000000005 R09: 0000000000000001 [ 124.825975] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff8880090fc400 [ 124.825989] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 124.826011] ? group_sched_out.part.0+0x2c7/0x460 [ 124.826051] ? group_sched_out.part.0+0x2c7/0x460 [ 124.826090] ctx_sched_out+0x8f1/0xc10 [ 124.826128] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.826156] ? lock_is_held_type+0xd7/0x130 [ 124.826184] ? __perf_cgroup_move+0x160/0x160 [ 124.826204] ? set_next_entity+0x304/0x550 [ 124.826239] ? update_curr+0x267/0x740 [ 124.826275] ? lock_is_held_type+0xd7/0x130 [ 124.826303] __schedule+0xedd/0x2470 [ 124.826337] ? io_schedule_timeout+0x150/0x150 [ 124.826369] ? rcu_read_lock_sched_held+0x3e/0x80 [ 124.826409] schedule+0xda/0x1b0 [ 124.826438] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.826462] syscall_exit_to_user_mode+0x19/0x40 [ 124.826489] do_syscall_64+0x48/0x90 [ 124.826524] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.826550] RIP: 0033:0x7f6cc041fb19 [ 124.826566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.826587] RSP: 002b:00007f6cbd995218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.826608] RAX: 0000000000000001 RBX: 00007f6cc0532f68 RCX: 00007f6cc041fb19 [ 124.826623] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6cc0532f6c [ 124.826637] RBP: 00007f6cc0532f60 R08: 000000000000000e R09: 0000000000000000 [ 124.826651] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6cc0532f6c [ 124.826670] R13: 00007ffeaf7466df R14: 00007f6cbd995300 R15: 0000000000022000 [ 124.826695] [ 124.935082] WARNING: CPU: 1 PID: 3792 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 124.936413] Modules linked in: [ 124.936883] CPU: 1 PID: 3792 Comm: syz-executor.5 Not tainted 6.0.0-rc7-next-20220930 #1 [ 124.938043] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 124.939644] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 124.940444] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 124.943028] RSP: 0018:ffff888036fe7c48 EFLAGS: 00010006 [ 124.943796] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 124.944822] RDX: ffff888018a18000 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 124.945848] RBP: ffff888036f68000 R08: 0000000000000005 R09: 0000000000000001 [ 124.946860] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff8880090fc400 [ 124.947904] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 124.948929] FS: 00007f6cbd995700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 124.950082] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.950920] CR2: 00007fb01aaef790 CR3: 000000001822a000 CR4: 0000000000350ee0 [ 124.951942] Call Trace: [ 124.952325] [ 124.952664] ctx_sched_out+0x8f1/0xc10 [ 124.953256] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.954005] ? lock_is_held_type+0xd7/0x130 [ 124.954644] ? __perf_cgroup_move+0x160/0x160 [ 124.955318] ? set_next_entity+0x304/0x550 [ 124.955942] ? update_curr+0x267/0x740 [ 124.956527] ? lock_is_held_type+0xd7/0x130 [ 124.957160] __schedule+0xedd/0x2470 [ 124.957722] ? io_schedule_timeout+0x150/0x150 [ 124.958405] ? rcu_read_lock_sched_held+0x3e/0x80 [ 124.959124] schedule+0xda/0x1b0 [ 124.959637] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.960346] syscall_exit_to_user_mode+0x19/0x40 [ 124.961039] do_syscall_64+0x48/0x90 [ 124.961601] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.962351] RIP: 0033:0x7f6cc041fb19 [ 124.962896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.965510] RSP: 002b:00007f6cbd995218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.966605] RAX: 0000000000000001 RBX: 00007f6cc0532f68 RCX: 00007f6cc041fb19 [ 124.967635] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6cc0532f6c [ 124.968643] RBP: 00007f6cc0532f60 R08: 000000000000000e R09: 0000000000000000 [ 124.969667] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6cc0532f6c [ 124.970697] R13: 00007ffeaf7466df R14: 00007f6cbd995300 R15: 0000000000022000 [ 124.971746] [ 124.972096] irq event stamp: 970 [ 124.972578] hardirqs last enabled at (969): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 124.973916] hardirqs last disabled at (970): [] __schedule+0x1225/0x2470 [ 124.975131] softirqs last enabled at (842): [] __irq_exit_rcu+0x11b/0x180 [ 124.976350] softirqs last disabled at (833): [] __irq_exit_rcu+0x11b/0x180 [ 124.977570] ---[ end trace 0000000000000000 ]--- [ 124.982098] SELinux: security_context_str_to_sid (root) failed with errno=-22 10:13:50 executing program 7: r0 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x101042, 0x2) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x0, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000000)={0x2, 0x0, @empty}, 0x10) sendfile(r1, r0, 0x0, 0xa000000000) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc) sendto$inet(r1, 0x0, 0x0, 0xfffffffe, 0x0, 0x0) 10:13:50 executing program 7: open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x88000) syz_mount_image$tmpfs(&(0x7f0000002300), &(0x7f0000002340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000024c0)={[], [{@defcontext={'defcontext', 0x3d, 'root'}}]}) [ 125.010663] random: crng reseeded on system resumption [ 125.017610] Restarting kernel threads ... done. [ 125.041186] audit: type=1400 audit(1664878430.390:9): avc: denied { tracepoint } for pid=3809 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 10:13:50 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x84758, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000100)={0x0, &(0x7f0000000040)}, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = dup(r0) connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) connect$inet6(r3, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) sendmmsg$inet6(r3, &(0x7f0000000500)=[{{&(0x7f0000000280)={0xa, 0x4e22, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x40}, 0x0, &(0x7f00000004c0)=[{&(0x7f00000002c0)="840ed7cb019cc4c626bd522b9b297ab0228f"}, {&(0x7f0000000440)="f117c9546fdf673e848c4c40aae7d578e6a70ca6261a43b646cf390b39b5b5f8e490cbc2954c666512f0df544eee3737d7dfed7d929427a7110deb7349410be3c1ce5c55ab6187bb39dc6908fd34b3b34203a5184310cdcb173d03bad191e46181"}, {&(0x7f0000000300)="9fb8735a86"}]}}], 0x63, 0x24048894) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000140)={'bridge_slave_1\x00'}) socket$inet6_udp(0xa, 0x2, 0x0) signalfd4(r2, &(0x7f0000000000)={[0x6]}, 0x8, 0x800) [ 125.041250] random: crng reseeded on system resumption [ 125.058088] hrtimer: interrupt took 17503 ns 10:13:50 executing program 5: shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000140)=""/237) shmctl$SHM_STAT(0x0, 0xd, &(0x7f00000003c0)=""/123) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) finit_module(r0, 0x0, 0x0) r1 = openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x1b}, 0x18) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)=0x0) socket$inet(0x2, 0x80000, 0xffff0001) accept4(0xffffffffffffffff, &(0x7f0000000540)=@pptp={0x18, 0x2, {0x0, @loopback}}, &(0x7f0000000100)=0x80, 0x80800) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x1a, 0x3, 0x1f, 0x5, 0x0, 0x8, 0x84459, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000000), 0x1}, 0x10000, 0x7fff, 0x2, 0x5, 0x2, 0x4, 0x5c, 0x0, 0x2, 0x0, 0x6bac}, r3, 0x8, 0xffffffffffffffff, 0x2) ioctl$SNAPSHOT_FREE(r2, 0x3305) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000011c0)=0x14) [ 125.105592] random: crng reseeded on system resumption [ 125.140394] Restarting kernel threads ... done. 10:13:50 executing program 5: shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff0000/0x3000)=nil, 0x4000) shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000140)=""/237) shmctl$SHM_STAT(0x0, 0xd, &(0x7f00000003c0)=""/123) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) finit_module(r0, 0x0, 0x0) r1 = openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x1b}, 0x18) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r1, 0x40042409, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)=0x0) socket$inet(0x2, 0x80000, 0xffff0001) accept4(0xffffffffffffffff, &(0x7f0000000540)=@pptp={0x18, 0x2, {0x0, @loopback}}, &(0x7f0000000100)=0x80, 0x80800) perf_event_open(&(0x7f0000000340)={0x1, 0x80, 0x1a, 0x3, 0x1f, 0x5, 0x0, 0x8, 0x84459, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000000), 0x1}, 0x10000, 0x7fff, 0x2, 0x5, 0x2, 0x4, 0x5c, 0x0, 0x2, 0x0, 0x6bac}, r3, 0x8, 0xffffffffffffffff, 0x2) ioctl$SNAPSHOT_FREE(r2, 0x3305) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000480)={&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000011c0)=0x14) [ 125.308779] random: crng reseeded on system resumption [ 125.343014] Restarting kernel threads ... [ 125.347485] loop4: detected capacity change from 0 to 242 [ 125.353171] done. [ 125.369894] loop4: detected capacity change from 0 to 4 [ 126.425113] Bluetooth: hci0: command 0x0401 tx timeout [ 128.409185] Bluetooth: hci1: command 0x0405 tx timeout [ 128.473118] Bluetooth: hci0: command 0x0401 tx timeout VM DIAGNOSIS: 10:13:50 Registers: info registers vcpu 0 RAX=ffffffff862910a4 RBX=0000000000000001 RCX=000000000002028b RDX=000000000000781a RSI=0000000000007819 RDI=ffffffff862910a4 RBP=ffff88803f05f3f8 RSP=ffff88803f05f320 R8 =0000000000000000 R9 =ffffffff85edffe0 R10=ffffed1007e0be81 R11=000000000003603d R12=ffff88803f05f3e1 R13=ffff88803f05f400 R14=ffff88803f05f3a0 R15=ffffffff81781988 RIP=ffffffff8111a3e4 RFL=00000217 [----APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000020002540 CR3=000000001d95c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 6461657268747062 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00302e6f732e6461 657268747062696c YMM03=0000000000000000 0000000000000000 2f756e672d78756e 696c2d34365f3638 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000073 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff888036fe7690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000073 R11=0000000000000001 R12=0000000000000073 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6cbd995700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb01aaef790 CR3=000000001822a000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f6cc05067c0 00007f6cc05067c8 YMM02=0000000000000000 0000000000000000 00007f6cc05067e0 00007f6cc05067c0 YMM03=0000000000000000 0000000000000000 00007f6cc05067c8 00007f6cc05067c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000