Warning: Permanently added '[localhost]:27700' (ECDSA) to the list of known hosts. 2022/10/04 21:08:37 fuzzer started 2022/10/04 21:08:37 dialing manager at localhost:46847 syzkaller login: [ 44.207689] cgroup: Unknown subsys name 'net' [ 44.327955] cgroup: Unknown subsys name 'rlimit' 2022/10/04 21:08:51 syscalls: 2215 2022/10/04 21:08:51 code coverage: enabled 2022/10/04 21:08:51 comparison tracing: enabled 2022/10/04 21:08:51 extra coverage: enabled 2022/10/04 21:08:51 setuid sandbox: enabled 2022/10/04 21:08:51 namespace sandbox: enabled 2022/10/04 21:08:51 Android sandbox: enabled 2022/10/04 21:08:51 fault injection: enabled 2022/10/04 21:08:51 leak checking: enabled 2022/10/04 21:08:51 net packet injection: enabled 2022/10/04 21:08:51 net device setup: enabled 2022/10/04 21:08:51 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/04 21:08:51 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/04 21:08:51 USB emulation: enabled 2022/10/04 21:08:51 hci packet injection: enabled 2022/10/04 21:08:51 wifi device emulation: failed to parse kernel version (6.0.0-next-20221004) 2022/10/04 21:08:51 802.15.4 emulation: enabled 2022/10/04 21:08:51 fetching corpus: 50, signal 24283/26050 (executing program) 2022/10/04 21:08:51 fetching corpus: 100, signal 34389/37720 (executing program) 2022/10/04 21:08:52 fetching corpus: 150, signal 41278/46045 (executing program) 2022/10/04 21:08:52 fetching corpus: 200, signal 45523/51689 (executing program) 2022/10/04 21:08:52 fetching corpus: 250, signal 50462/57930 (executing program) 2022/10/04 21:08:52 fetching corpus: 300, signal 59442/67867 (executing program) 2022/10/04 21:08:52 fetching corpus: 350, signal 62571/72157 (executing program) 2022/10/04 21:08:52 fetching corpus: 400, signal 68865/79376 (executing program) 2022/10/04 21:08:52 fetching corpus: 450, signal 72658/84086 (executing program) 2022/10/04 21:08:52 fetching corpus: 500, signal 77580/89770 (executing program) 2022/10/04 21:08:52 fetching corpus: 550, signal 81303/94255 (executing program) 2022/10/04 21:08:53 fetching corpus: 600, signal 83743/97567 (executing program) 2022/10/04 21:08:53 fetching corpus: 650, signal 87049/101598 (executing program) 2022/10/04 21:08:53 fetching corpus: 700, signal 89157/104522 (executing program) 2022/10/04 21:08:53 fetching corpus: 750, signal 92279/108347 (executing program) 2022/10/04 21:08:53 fetching corpus: 800, signal 93833/110708 (executing program) 2022/10/04 21:08:53 fetching corpus: 850, signal 96046/113585 (executing program) 2022/10/04 21:08:53 fetching corpus: 900, signal 99036/117042 (executing program) 2022/10/04 21:08:53 fetching corpus: 950, signal 100665/119346 (executing program) 2022/10/04 21:08:53 fetching corpus: 1000, signal 103134/122327 (executing program) 2022/10/04 21:08:53 fetching corpus: 1050, signal 105775/125441 (executing program) 2022/10/04 21:08:54 fetching corpus: 1100, signal 106922/127307 (executing program) 2022/10/04 21:08:54 fetching corpus: 1150, signal 108520/129416 (executing program) 2022/10/04 21:08:54 fetching corpus: 1200, signal 109851/131365 (executing program) 2022/10/04 21:08:54 fetching corpus: 1250, signal 111044/133147 (executing program) 2022/10/04 21:08:54 fetching corpus: 1300, signal 113151/135603 (executing program) 2022/10/04 21:08:54 fetching corpus: 1350, signal 115353/138064 (executing program) 2022/10/04 21:08:54 fetching corpus: 1400, signal 117359/140332 (executing program) 2022/10/04 21:08:54 fetching corpus: 1450, signal 120126/143162 (executing program) 2022/10/04 21:08:55 fetching corpus: 1500, signal 121592/144942 (executing program) 2022/10/04 21:08:55 fetching corpus: 1550, signal 123209/146793 (executing program) 2022/10/04 21:08:55 fetching corpus: 1600, signal 124730/148750 (executing program) 2022/10/04 21:08:55 fetching corpus: 1650, signal 125672/150116 (executing program) 2022/10/04 21:08:55 fetching corpus: 1700, signal 127611/152119 (executing program) 2022/10/04 21:08:55 fetching corpus: 1750, signal 129534/154109 (executing program) 2022/10/04 21:08:55 fetching corpus: 1800, signal 130717/155541 (executing program) 2022/10/04 21:08:55 fetching corpus: 1850, signal 132778/157587 (executing program) 2022/10/04 21:08:55 fetching corpus: 1900, signal 134445/159258 (executing program) 2022/10/04 21:08:56 fetching corpus: 1950, signal 136066/160894 (executing program) 2022/10/04 21:08:56 fetching corpus: 2000, signal 136752/161963 (executing program) 2022/10/04 21:08:56 fetching corpus: 2050, signal 137848/163265 (executing program) 2022/10/04 21:08:56 fetching corpus: 2100, signal 138999/164538 (executing program) 2022/10/04 21:08:56 fetching corpus: 2150, signal 140749/166110 (executing program) 2022/10/04 21:08:56 fetching corpus: 2200, signal 141632/167191 (executing program) 2022/10/04 21:08:56 fetching corpus: 2250, signal 142579/168309 (executing program) 2022/10/04 21:08:56 fetching corpus: 2300, signal 143574/169471 (executing program) 2022/10/04 21:08:56 fetching corpus: 2350, signal 145196/170889 (executing program) 2022/10/04 21:08:57 fetching corpus: 2400, signal 146151/171916 (executing program) 2022/10/04 21:08:57 fetching corpus: 2450, signal 146857/172810 (executing program) 2022/10/04 21:08:57 fetching corpus: 2500, signal 147658/173748 (executing program) 2022/10/04 21:08:57 fetching corpus: 2550, signal 148297/174574 (executing program) 2022/10/04 21:08:57 fetching corpus: 2600, signal 148980/175431 (executing program) 2022/10/04 21:08:57 fetching corpus: 2650, signal 150306/176540 (executing program) 2022/10/04 21:08:57 fetching corpus: 2700, signal 151012/177338 (executing program) 2022/10/04 21:08:57 fetching corpus: 2750, signal 151666/178077 (executing program) 2022/10/04 21:08:57 fetching corpus: 2800, signal 152603/179000 (executing program) 2022/10/04 21:08:57 fetching corpus: 2850, signal 153203/179733 (executing program) 2022/10/04 21:08:58 fetching corpus: 2900, signal 153793/180433 (executing program) 2022/10/04 21:08:58 fetching corpus: 2950, signal 154430/181164 (executing program) 2022/10/04 21:08:58 fetching corpus: 3000, signal 155245/181943 (executing program) 2022/10/04 21:08:58 fetching corpus: 3050, signal 156113/182718 (executing program) 2022/10/04 21:08:58 fetching corpus: 3100, signal 156932/183485 (executing program) 2022/10/04 21:08:58 fetching corpus: 3150, signal 159406/184768 (executing program) 2022/10/04 21:08:58 fetching corpus: 3200, signal 160165/185446 (executing program) 2022/10/04 21:08:58 fetching corpus: 3250, signal 160766/186015 (executing program) 2022/10/04 21:08:58 fetching corpus: 3300, signal 161694/186691 (executing program) 2022/10/04 21:08:59 fetching corpus: 3350, signal 162276/187297 (executing program) 2022/10/04 21:08:59 fetching corpus: 3400, signal 163522/188080 (executing program) 2022/10/04 21:08:59 fetching corpus: 3450, signal 164683/188845 (executing program) 2022/10/04 21:08:59 fetching corpus: 3500, signal 165615/189473 (executing program) 2022/10/04 21:08:59 fetching corpus: 3550, signal 166135/189933 (executing program) 2022/10/04 21:08:59 fetching corpus: 3600, signal 167475/190625 (executing program) 2022/10/04 21:08:59 fetching corpus: 3650, signal 169239/191443 (executing program) 2022/10/04 21:08:59 fetching corpus: 3700, signal 169731/191898 (executing program) 2022/10/04 21:08:59 fetching corpus: 3750, signal 170659/192444 (executing program) 2022/10/04 21:09:00 fetching corpus: 3800, signal 171108/192824 (executing program) 2022/10/04 21:09:00 fetching corpus: 3850, signal 171550/193219 (executing program) 2022/10/04 21:09:00 fetching corpus: 3900, signal 172158/193610 (executing program) 2022/10/04 21:09:00 fetching corpus: 3950, signal 173055/194052 (executing program) 2022/10/04 21:09:00 fetching corpus: 4000, signal 174126/194588 (executing program) 2022/10/04 21:09:00 fetching corpus: 4050, signal 174747/194963 (executing program) 2022/10/04 21:09:00 fetching corpus: 4100, signal 175440/195351 (executing program) 2022/10/04 21:09:00 fetching corpus: 4150, signal 176239/195716 (executing program) 2022/10/04 21:09:00 fetching corpus: 4200, signal 176888/196054 (executing program) 2022/10/04 21:09:01 fetching corpus: 4250, signal 177563/196376 (executing program) 2022/10/04 21:09:01 fetching corpus: 4300, signal 178413/196705 (executing program) 2022/10/04 21:09:01 fetching corpus: 4350, signal 178905/196956 (executing program) 2022/10/04 21:09:01 fetching corpus: 4400, signal 179529/197255 (executing program) 2022/10/04 21:09:01 fetching corpus: 4450, signal 180148/197500 (executing program) 2022/10/04 21:09:01 fetching corpus: 4500, signal 181453/197791 (executing program) 2022/10/04 21:09:01 fetching corpus: 4550, signal 181998/198009 (executing program) 2022/10/04 21:09:01 fetching corpus: 4600, signal 182363/198282 (executing program) 2022/10/04 21:09:01 fetching corpus: 4650, signal 182941/198504 (executing program) 2022/10/04 21:09:02 fetching corpus: 4700, signal 183692/198693 (executing program) 2022/10/04 21:09:02 fetching corpus: 4750, signal 184245/198877 (executing program) 2022/10/04 21:09:02 fetching corpus: 4800, signal 184658/199041 (executing program) 2022/10/04 21:09:02 fetching corpus: 4850, signal 185338/199239 (executing program) 2022/10/04 21:09:02 fetching corpus: 4900, signal 185692/199377 (executing program) 2022/10/04 21:09:02 fetching corpus: 4950, signal 186632/199427 (executing program) 2022/10/04 21:09:02 fetching corpus: 4978, signal 187233/199427 (executing program) 2022/10/04 21:09:02 fetching corpus: 4978, signal 187233/199427 (executing program) 2022/10/04 21:09:05 starting 8 fuzzer processes 21:09:05 executing program 0: sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0xa, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0x2}, [@NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x1ff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x2000c080) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_DISASSOCIATE(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x38, r0, 0x4, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8b, 0x46}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x85}, 0x84) sendmsg$NL80211_CMD_DEL_KEY(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x4c, r0, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x2}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_IDX={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0xc000841}, 0x40000) ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, &(0x7f00000003c0)=@req={0x28, &(0x7f0000000380)={'veth0_to_hsr\x00', @ifru_mtu}}) sendmsg(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000400)=@phonet={0x23, 0x1, 0x81, 0x9}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000480)="3d9ec23b43cecdbd35ffce58465783e472769f69d0ad2f670ad9e5dab0f6dcfd", 0x20}], 0x1, &(0x7f0000000500)=[{0xb0, 0x0, 0x0, "ada9784abfae63b2dcdba9dd30f691c10725c284f90545b72104aa43c65f894b87f7ba6c61d93f0ad653bec0ec82291ea627104269a248095267f5bef6cfdacc5116336046c65bf0d07a1befbf76742c1a7851f6032086df079346e1e4c5f6968e64950eccea2d925597652166840847af3c4d0af74e8e3b67d846bc4f9f1ed555ecc845b7da3693c38aa9037b6161b4509644e17c3315040e54c0d7ba4634"}, {0x20, 0x112, 0x2, "bbe9696c5028f55721"}, {0x80, 0x10d, 0x9, "e4713e759959ab858b8a2efe3fbb3692b80ef7af5646f8967cca4613d3add7d0172b67997f5795fd1b02403f66da20a2ddd52577362a55f32b6bd5f213e47206a5a892d8bbde3dc87dd7fa3e8a3033dd2a8e7d680d76cde2cf1f8a8746d01eaf6e8a3185edb1ff0712db"}, {0x40, 0x108, 0x1ff, "e29462d37fd872b7a03efd6b44ac727840c47a63918cafe2bd9296293744ff3add88aeb75a33685204047c9f"}], 0x190}, 0x8880) r1 = openat2(0xffffffffffffffff, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x5b9000, 0x40}, 0x18) sendmsg$NL80211_CMD_JOIN_OCB(r1, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x40, r0, 0x10, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1, 0xd}}}}, [@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x154}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x80000001}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x8010}, 0x4000010) setxattr$trusted_overlay_opaque(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0), &(0x7f0000000900), 0x2, 0x1) copy_file_range(0xffffffffffffffff, &(0x7f0000000940)=0xfffffffffffffff9, r1, 0x0, 0xf, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000980)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0) sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f0000000ac0)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a00)={0x48, 0x0, 0x19, 0x70bd2a, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffff9ebb}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xd2}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x10001}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x800}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x20040001) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b40), r2) sendmsg$NL80211_CMD_SET_WIPHY(r1, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x2c, r3, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8, 0x40, 0xfffffffc}, @NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8, 0x61, 0x8}, @NL80211_ATTR_TXQ_QUANTUM={0x8, 0x10c, 0x200}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20048051}, 0x40) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000c80), 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000cc0)={{0x1, 0x1, 0x18, r2, {r2}}, './file0\x00'}) recvmmsg$unix(r2, &(0x7f0000002b00)=[{{&(0x7f0000000d00)=@abs, 0x6e, &(0x7f00000022c0)=[{&(0x7f0000000d80)=""/146, 0x92}, {&(0x7f0000000e40)}, {&(0x7f0000000e80)=""/189, 0xbd}, {&(0x7f0000000f40)=""/134, 0x86}, {&(0x7f0000001000)=""/20, 0x14}, {&(0x7f0000001040)=""/129, 0x81}, {&(0x7f0000001100)=""/152, 0x98}, {&(0x7f00000011c0)=""/50, 0x32}, {&(0x7f0000001200)=""/4096, 0x1000}, {&(0x7f0000002200)=""/184, 0xb8}], 0xa, &(0x7f0000002380)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f0000002440), 0x6e, &(0x7f0000002780)=[{&(0x7f00000024c0)=""/29, 0x1d}, {&(0x7f0000002500)=""/72, 0x48}, {&(0x7f0000002580)=""/230, 0xe6}, {&(0x7f0000002680)=""/76, 0x4c}, {&(0x7f0000002700)=""/127, 0x7f}], 0x5, &(0x7f0000002800)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000002840), 0x6e, &(0x7f0000002980)=[{&(0x7f00000028c0)=""/146, 0x92}], 0x1, &(0x7f00000029c0)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x118}}], 0x3, 0x22, &(0x7f0000002bc0)={0x77359400}) r7 = dup2(r1, 0xffffffffffffffff) r8 = signalfd4(0xffffffffffffffff, &(0x7f0000002c00)={[0x7fff]}, 0x8, 0x0) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000002d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x201000}, 0xc, &(0x7f0000002d00)={&(0x7f0000002c40)={0x90, r4, 0x100, 0x70bd26, 0x25dfdbff, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x8001}, @NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r5}, {0x8, 0x1, r2}, {0x8, 0x1, r6}, {0x8, 0x1, r7}, {0x8, 0x1, r8}, {0x8, 0x1, r2}, {0x8, 0x1, r1}, {0x8, 0x1, r1}, {0x8, 0x1, r2}]}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x1000}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x90}}, 0x40000) 21:09:05 executing program 1: getpeername$unix(0xffffffffffffffff, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0x6e) r0 = memfd_secret(0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x101200, 0x100) ioctl$sock_inet_SIOCSIFBRDADDR(0xffffffffffffffff, 0x891a, &(0x7f0000000100)={'gretap0\x00', {0x2, 0x0, @dev}}) r2 = socket$inet6(0xa, 0x800, 0x24) fstat(r2, &(0x7f0000000140)) r3 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x101000, 0x8c) ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, &(0x7f0000000200)=0x5) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, r2) ioctl$PIO_UNIMAP(r1, 0x4b67, &(0x7f0000000280)={0x4, &(0x7f0000000240)=[{0x7, 0x9}, {0x401, 0x82}, {0x6, 0x6}, {0xa2, 0x3}]}) r4 = openat$incfs(r1, &(0x7f00000002c0)='.log\x00', 0x29800, 0x188) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000002600)={{0x1, 0x1, 0x18, r4, {0x7f}}, './file0\x00'}) ioctl$TCGETS2(r5, 0x802c542a, &(0x7f0000002640)) ioctl$FIBMAP(r5, 0x1, &(0x7f0000002680)=0x5) pipe2(&(0x7f00000026c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$PIO_UNISCRNMAP(r7, 0x4b6a, &(0x7f0000002700)="d42b6921c2b6f504b57f8178b0fe2d1160ced0394d0f60feaadd8e1cab81ffa0f147eed23c99d183e91f0072f89f5144df435bde2639493592b1393517f3052f59a055f3022172ec4022dcd0f212d104831c3ef4b4b710ffc96ebeda8b10edb02b2b8d493f136cadc84d6ca7e794cf1c39ce38dc1db4f26940d15b3a52811f6993e626a2d467756c0f47d6bcb742d1c41416ac33f5f68bd9e1aa3f2dc358ebd62c08868d14b0e07b71e2144f4e7bb8954ba38ee28969fe51e51ee38a5f") unlinkat(r3, &(0x7f00000027c0)='./file0\x00', 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) r8 = signalfd(r6, &(0x7f0000002800)={[0xb0]}, 0x8) close_range(r8, r6, 0x0) 21:09:05 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x204800, 0xf0) getpeername$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000080)=0x1c) connect(r0, &(0x7f00000000c0)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80) openat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0xcdb6d22bce1b8c1, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x10000, 0x100) r2 = openat$incfs(r1, &(0x7f00000001c0)='.log\x00', 0x80c0, 0x2) openat$incfs(r0, &(0x7f0000000200)='.pending_reads\x00', 0x141002, 0x2) fstat(r2, &(0x7f0000000240)) ioctl$sock_SIOCGSKNS(r2, 0x894c, &(0x7f00000002c0)) r3 = syz_io_uring_complete(0x0) ioctl$sock_SIOCGIFBR(r3, 0x8940, &(0x7f0000000380)=@get={0x1, &(0x7f0000000300)=""/68, 0x100}) open_tree(r2, &(0x7f00000003c0)='./file1\x00', 0x1001) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='attr/prev\x00') r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000440), 0x400001) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000480)={"f3aecbba16b754a8287058900798388b", 0x0, 0x0, {0x10000, 0x5}, {0x0, 0x7}, 0x3, [0x7, 0x1d, 0x3, 0x8, 0x9, 0x0, 0x3, 0xffffffff, 0x7ff, 0xffffffff, 0x8d, 0x0, 0x100, 0x6, 0x7d4b, 0x271]}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000580)={"68f9d390d3d0b62bcc09aa5a39a57ae5", 0x0, 0x0, {0x9, 0x20}, {0xffffffff, 0x4}, 0x10000000, [0x100000001, 0x20, 0x0, 0xe235, 0xa7b, 0x6, 0x0, 0x1, 0x7, 0x2, 0x0, 0x5, 0x2, 0x3ff, 0x7, 0x3]}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r5, 0xc0c89425, &(0x7f0000000680)={"62d8a07ffd12ba5f827ced8ffb46513d", r6, r7, {0x5, 0xfffffff9}, {0x2, 0x6}, 0x7, [0x4ab, 0x9, 0xf1f, 0x3, 0x1, 0x7fffffff, 0x10001, 0x7e, 0x0, 0x4, 0x0, 0x5, 0x20, 0x3, 0x5]}) sendmsg$SEG6_CMD_SET_TUNSRC(r3, &(0x7f0000000840)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000800)={&(0x7f00000007c0)={0x28, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@SEG6_ATTR_DST={0x14, 0x1, @mcast2}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000041}, 0x4046800) sendmsg$TIPC_CMD_GET_LINKS(r2, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x24, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {{}, {}, {0x8, 0x11, 0x51}}, ["", "", "", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x40000000}, 0x40840) move_mount(0xffffffffffffff9c, &(0x7f0000000980)='./file1\x00', r4, &(0x7f00000009c0)='./file1\x00', 0x0) [ 71.668608] audit: type=1400 audit(1664917745.143:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 21:09:05 executing program 3: sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x800, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4064010}, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r0) socketpair(0xf, 0x2, 0x100, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r0) sendmsg$NL80211_CMD_JOIN_OCB(r2, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x44, r3, 0x20, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x38c}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x16}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x3}]}, 0x44}, 0x1, 0x0, 0x0, 0x40851}, 0x4000) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/devices/msr', 0xbc6d2e25b43ce264, 0x60) sendmsg$IPVS_CMD_DEL_SERVICE(r4, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffff800}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), 0xffffffffffffffff) sendmsg$IEEE802154_SCAN_REQ(r5, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x44, r6, 0x100, 0x70bd26, 0x25dfdbff, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x10}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x10}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x17}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x16}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x12}, @IEEE802154_ATTR_DURATION={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x20090) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f00000005c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) sendmsg$NL80211_CMD_GET_WIPHY(r7, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x28, r3, 0x300, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x32}, @void, @val={0xc, 0x99, {0xa0, 0x47}}}}, ["", "", "", ""]}, 0x28}}, 0x8000) sendmsg$ETHTOOL_MSG_WOL_SET(r1, &(0x7f00000008c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000880)={&(0x7f0000000740)={0x124, 0x0, 0x100, 0x70bd29, 0x25dfdbfd, {}, [@ETHTOOL_A_WOL_SOPASS={0x21, 0x3, "dbd8b41dfc184f25d70cc34cf36774d47f0bfa299fc1d647e5f4e7f344"}, @ETHTOOL_A_WOL_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}, @ETHTOOL_A_WOL_SOPASS={0xd3, 0x3, "f49b241bae72302e8d383d90f29775b6569d2122ba878dece8120492aa1c7ac1584fcbd94884a7482f00571e3e1d39de541557e501220eb558a9e9a9a7b3c41d089d3e82772d5e11ca59b0d3bcc752ce25cc294183eb502506fea6ada8d88daaf484613d050b3358c5d3f26311d4650f80cd1a4bbb33d6804bf258bc6bbb393ff650e1bc738c968ac1046c2068c5fb5d1beb887e380e3b25a51b2689abf34408c16f47974afa0dfc7836c1688f2a1c28bc8ca31b07bcac72177eb1f0f9fca8699bd460c057c337fdbf56810a6d8ba4"}]}, 0x124}, 0x1, 0x0, 0x0, 0x10}, 0x0) r8 = socket(0x28, 0x800, 0x7fff) sendmsg$IPSET_CMD_RENAME(r8, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)={0x68, 0x5, 0x6, 0x401, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x8811) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r9 = dup3(r8, r4, 0x80000) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r9, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x68, 0x0, 0x2, 0x70bd29, 0x25dfdbff, {{}, {}, {0x4c, 0x18, {0xff, @media='ib\x00'}}}, ["", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x4000}, 0x810) syz_genetlink_get_family_id$nl802154(&(0x7f0000000b80), 0xffffffffffffffff) 21:09:05 executing program 5: r0 = msgget$private(0x0, 0x70) msgrcv(r0, &(0x7f0000000000)={0x0, ""/224}, 0xe8, 0x3, 0x800) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000100)=""/143) r1 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x2000, 0x86) readv(r1, &(0x7f0000000300)=[{&(0x7f0000000200)=""/133, 0x85}, {&(0x7f00000002c0)=""/3, 0x3}], 0x2) readv(r1, &(0x7f0000001580)=[{&(0x7f0000000340)=""/81, 0x51}, {&(0x7f00000003c0)=""/86, 0x56}, {&(0x7f0000000440)=""/84, 0x54}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/143, 0x8f}], 0x5) msgsnd(r0, &(0x7f0000001600)={0x0, "9b02ac7ec6d92508b0e23e3afd6180e7b14abe92e0bca2"}, 0x1f, 0x0) msgget(0x2, 0x13) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000001640), 0x440240, 0x0) lstat(&(0x7f0000001980)='./file0\x00', &(0x7f00000019c0)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f0000001680)='ext4\x00', &(0x7f00000016c0)='./file0\x00', 0x1, 0x4, &(0x7f0000001900)=[{&(0x7f0000001700)="47ac543621b3cd9133c982fee30d4d9edb519e73fcd98cf9360d1ba3690ade02629d9c4feb0c27721fd8dc7963dcf6e7c4", 0x31, 0xfffffffffffff001}, {&(0x7f0000001740)="202e1d62d942b7f1c6f166d2bf04ccc3f09dd4e691717070d8e52bca71d1658b22125794fb807913dc97e1bb80a6b2dbe6545c5cffc9425106b48fb8d061f8f4ad0d4dc608a87af7c78816e41b7dc0b8fe1f000afb4933f6e4bca1e7eb4595dcba9462c1a6c8a2b744e9427cceca033b4a5401c85bcc27f6127c16c40835f98df80240ed0542f63716cd79bf9d0cc28107bfbc995df2e100565e89d269a1d5085566049d342cebb6762196bceffdad5c4f31990ed2ab0276c328a334d4", 0xbd, 0x3ff}, {&(0x7f0000001800)="ba85a9623b83c3484b8bca4aab1f30e5c5641af4b3815ad2e9e4e10d31abeae57867cb0feddb3b1cc564278c20cb85fcdb429d99aa59b19ad6c7afc9c9eb5f0910a161a6dc1999c994e87e", 0x4b, 0x3f}, {&(0x7f0000001880)="c540d655ef1c8792346cf344fa6639039c5a180697d3178955b89721ed2c2745b4b92a39cb851fd134a9e0f3987b55be31f2d91b511a9922cf7c35feaa78b9d7bf5b27e7f3ddb2b4a663f08d19dd0d9e8492cddeeb11a79bcc", 0x59, 0x80000001}], 0x2000, &(0x7f0000001a40)={[{@nodelalloc}, {@sb={'sb', 0x3d, 0xa1ff}}, {@noblock_validity}, {@nouid32}, {@nomblk_io_submit}, {@noload}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@uid_lt={'uid<', r3}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@subj_user={'subj_user', 0x3d, '/dev/sr0\x00'}}, {@obj_type={'obj_type', 0x3d, '/dev/sr0\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0xff}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@obj_role={'obj_role', 0x3d, '@:{S'}}, {@subj_role}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/sr0\x00'}}]}) recvmmsg(r2, &(0x7f0000004640)=[{{&(0x7f0000001b80)=@nfc, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000001c00)=""/178, 0xb2}], 0x1}, 0x2}, {{&(0x7f0000001d00)=@ax25={{0x3, @rose}, [@default, @bcast, @remote, @default, @null, @rose, @default, @null]}, 0x80, &(0x7f0000001e80)=[{&(0x7f0000001d80)=""/244, 0xf4}], 0x1, &(0x7f0000001ec0)=""/206, 0xce}}, {{&(0x7f0000001fc0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000003740)=[{&(0x7f0000002040)=""/234, 0xea}, {&(0x7f0000002140)=""/198, 0xc6}, {&(0x7f0000002240)=""/131, 0x83}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f0000003300)=""/219, 0xdb}, {&(0x7f0000003400)=""/106, 0x6a}, {&(0x7f0000003480)=""/44, 0x2c}, {&(0x7f00000034c0)=""/198, 0xc6}, {&(0x7f00000035c0)=""/115, 0x73}, {&(0x7f0000003640)=""/238, 0xee}], 0xa, &(0x7f0000003800)=""/210, 0xd2}, 0xc1}, {{0x0, 0x0, &(0x7f00000039c0)=[{&(0x7f0000003900)=""/59, 0x3b}, {&(0x7f0000003940)=""/103, 0x67}], 0x2, &(0x7f0000003a00)=""/189, 0xbd}, 0x8}, {{&(0x7f0000003ac0)=@caif=@dbg, 0x80, &(0x7f0000003cc0)=[{&(0x7f0000003b40)=""/28, 0x1c}, {&(0x7f0000003b80)=""/134, 0x86}, {&(0x7f0000003c40)=""/109, 0x6d}], 0x3}, 0x200}, {{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000003d00)=""/239, 0xef}], 0x1, &(0x7f0000003e40)=""/169, 0xa9}, 0xf7}, {{&(0x7f0000003f00)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000003f80)=""/56, 0x38}], 0x1, &(0x7f0000004000)=""/51, 0x33}, 0x80000000}, {{&(0x7f0000004040)=@in={0x2, 0x0, @local}, 0x80, &(0x7f00000044c0)=[{&(0x7f00000040c0)=""/163, 0xa3}, {&(0x7f0000004180)=""/251, 0xfb}, {&(0x7f0000004280)=""/21, 0x15}, {&(0x7f00000042c0)=""/240, 0xf0}, {&(0x7f00000043c0)=""/106, 0x6a}, {&(0x7f0000004440)=""/14, 0xe}, {&(0x7f0000004480)=""/2, 0x2}], 0x7, &(0x7f0000004540)=""/197, 0xc5}}], 0x8, 0x101, &(0x7f0000004840)) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000004880)) r5 = fcntl$dupfd(r1, 0x0, r2) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000004900)={0x172, 0x0, {0x3, 0x1, 0xc72d, 0x0, 0x6c}, 0x6}) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000004b80)={{{@in=@initdev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@local}}, &(0x7f0000004c80)=0xe8) syz_mount_image$tmpfs(&(0x7f0000004980), &(0x7f00000049c0)='./file0\x00', 0x7, 0x2, &(0x7f0000004b40)=[{&(0x7f0000004a00)="5847394e31348e873d674fa8b7475a4c48812a5c84b8fb3140cab8c1acae7c50eecab2568a48c75deded54f7775bd6c28d1fc1aecac60eb2e727257e92e85b1e87e8b9bab0573882522b81ee6503ca2f5f7fd44f103377aff38e7ccfc737f55f9282fcfb06819779b7c7e9c44882319a2c6bf76fd259cc362cf64a156b31359bc5a22994f79c824651fad268fb1fc06152ff05e1da41b03fa63d076ea4c6e44000e923429c8d7c804cbd1edd7b681d184389bcb3f4a2912a676e00295f90ca7331fc1d8db9fdea8668e7ac2a647baba209a883c4865fb89103daaa39fe5ef064b12c260e56b2", 0xe6, 0xb08}, {&(0x7f0000004b00), 0x0, 0xffffffffffffffff}], 0x40020, &(0x7f0000004cc0)={[{@huge_never}, {@mpol={'mpol', 0x3d, {'bind', '=static'}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x70, 0x65, 0x34, 0x25, 0x33, 0x0, 0x56, 0x39]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x36, 0x33, 0x6b, 0x6d]}}, {@huge_within_size}], [{@uid_gt={'uid>', r6}}]}) r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000004d40), 0x400081, 0x0) getsockname(r7, &(0x7f0000004d80)=@nfc_llcp, &(0x7f0000004e00)=0x80) write$binfmt_aout(r7, &(0x7f0000004e40)={{0x10b, 0x20, 0x1, 0x233, 0x76, 0x6, 0x14, 0x7ff}, "ca62938174d920ed2fd2af5b266a1214067283c0f7a513c01fa2060a58a1647fbacd0ca808b60cf00aa73eefa8282e27c841575e6c7972adbacfc8aa812fe84216d15d5d0de5fed3ef51f98abda2a98f17c690e565af021bb66528fe45588a71626ce22a7ae1b769c62bfe397d4e0232800bcaf7e21240835aa7407f703901775deaa33fefbdfb66daaaaf3cd477ba6b6d23152647d9bf578c13b1d73bde35", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xabf) 21:09:05 executing program 4: setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4) r0 = fcntl$dupfd(0xffffffffffffffff, 0x2e0a94a306947969, 0xffffffffffffffff) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000080)=0xffffffffffffffff, 0x4) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={r0, 0x40000000, 0x7, 0x8001}) ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000100)={'wg2\x00', 0x0}) r3 = syz_open_dev$usbmon(&(0x7f0000000140), 0x1, 0x0) ioctl$int_in(r3, 0x5452, &(0x7f0000000180)=0xfffffffffffffffa) r4 = socket$inet_tcp(0x2, 0x1, 0x0) fsetxattr$trusted_overlay_nlink(r4, &(0x7f00000001c0), &(0x7f0000000200)={'L+', 0x10001}, 0x16, 0x1) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'ip6_vti0\x00', r2, 0x29, 0x1, 0x4, 0xffff, 0x4, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x700, 0x80, 0x6, 0x4}}) ioctl$EVIOCGREP(r1, 0x80084503, &(0x7f0000000300)=""/223) ioctl$MON_IOCG_STATS(r1, 0x80089203, &(0x7f0000000400)) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000440)="4326972a502f708f314e05f69b293c4f", 0x10) mq_getsetattr(r1, &(0x7f0000000480)={0x3, 0x1, 0x9, 0x2}, &(0x7f00000004c0)) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000500), 0x4) r5 = openat$null(0xffffffffffffff9c, &(0x7f0000000540), 0x470683, 0x0) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r5, 0x40189429, &(0x7f0000000580)={0x1, 0x99, 0x8001}) r6 = creat(&(0x7f00000005c0)='./file0\x00', 0x0) getsockopt$inet_tcp_int(r6, 0x6, 0x36, &(0x7f0000000600), &(0x7f0000000640)=0x4) 21:09:05 executing program 6: setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1d, &(0x7f0000000000)=0x7ff, 0x4) getsockopt$bt_l2cap_L2CAP_CONNINFO(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040), &(0x7f0000000080)=0x6) recvmmsg(0xffffffffffffffff, &(0x7f0000000740)=[{{&(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev}}}, 0x80, &(0x7f0000000180)=[{&(0x7f0000000140)=""/7, 0x7}], 0x1, &(0x7f00000001c0)=""/234, 0xea}, 0x1000}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000002c0)=""/10, 0xa}, {&(0x7f0000000300)=""/60, 0x3c}, {&(0x7f0000000340)=""/176, 0xb0}, {&(0x7f0000000400)=""/181, 0xb5}, {&(0x7f00000004c0)=""/51, 0x33}, {&(0x7f0000000500)=""/95, 0x5f}, {&(0x7f0000000580)=""/69, 0x45}, {&(0x7f0000000600)=""/151, 0x97}], 0x8}, 0x2}], 0x2, 0x1, 0x0) connect$bt_l2cap(r0, &(0x7f00000007c0)={0x1f, 0x8, @none, 0x6}, 0xe) setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000800)=0x4, 0x2) bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000840)={0x1f, 0x5, @any, 0x6, 0x2}, 0xe) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r1, 0x8983, &(0x7f0000000880)) r2 = open_tree(0xffffffffffffffff, &(0x7f00000008c0)='./file0\x00', 0x88000) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000940)={0x4, &(0x7f0000000900)=[{0x5, 0x3f, 0x15}, {0xa2, 0x15, 0x5, 0x3}, {0x7ff, 0x4, 0xfd, 0x9}, {0x20, 0x1, 0x20, 0x200}]}, 0x10) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000980)={0x0, 0x0, 0x1, 0x0, '\x00', [{0x3, 0x9, 0x1000, 0x4, 0x4, 0x4}, {0x8, 0x400, 0x0, 0x7f, 0x8, 0xfffffffffffffffc}], ['\x00']}) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000c00)={{{@in=@initdev, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@private}}, &(0x7f0000000d00)=0xe8) getresuid(&(0x7f0000000d40), &(0x7f0000000d80)=0x0, &(0x7f0000000dc0)=0x0) syz_mount_image$iso9660(&(0x7f0000000a80), &(0x7f0000000ac0)='./file0\x00', 0x9, 0x1, &(0x7f0000000bc0)=[{&(0x7f0000000b00)="3fbf0e2962bf7d9b66133304b1fb76372bf634b1404b98ef221fe84718da81f8c77d39e290e831838740aae8728f7faca1bdc5de6cb4d668b700ed10484092d8ac4718da0067c7f534bc673d997739c4ab73a4e764ce2a504ef97b5348f7aeee0ff4705f6290e9a28f84d7e36330219eb463d82de74109f4d1294865448001c0654739398fdf53646c78fd63942aee674326ed5a7cebbde6388a52b9bcf1b949c9cbc9750ae546297d52e5f44d75dfc4637cde82ae55f6500040aaf5", 0xbc, 0x8}], 0x2302090, &(0x7f0000000e00)={[{@check_relaxed}, {@map_off}, {@nojoliet}, {@check_strict}, {}, {}, {@mode={'mode', 0x3d, 0x29}}], [{@euid_eq={'euid', 0x3d, r3}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@uid_eq={'uid', 0x3d, r5}}, {@dont_measure}]}) fchmod(r0, 0x0) sendmsg$nl_generic(r0, &(0x7f0000001180)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001140)={&(0x7f0000000f40)={0x1f8, 0x35, 0x200, 0x70bd2c, 0x25dfdbfd, {0x13}, [@nested={0x19e, 0x5a, 0x0, 0x1, [@typed={0x10, 0x50, 0x0, 0x0, @str='check=strict'}, @typed={0xc, 0x10, 0x0, 0x0, @u64=0x100}, @generic="ec11d829d543b666488734d0d2d419dc6c7615c8e71909b16a6ec50d4a059e697a6145edbe418f906b57bc302f9addf46a88d555fb0c409cf6c53b4ee8b23a0520058a779af4f888594bb431225779bed000ec60b4f53587cc6b03caca2dae9e8b9492ce45af688494255aa8ec7c2f2d0f98ccfba785d65a8bed39223dec8fcfb5d2c68f6ded62c4db8778e46b67ac090c7f44fbaf8a03458573248ab442b523bc9e972bf506c6b363e0f4991888534c7a5c211122ba6dbae69f4ece8a4ad17d64e931abc00a8e962e91286caa9797a72848c42c7f1b", @typed={0xa8, 0x96, 0x0, 0x0, @binary="3cb8ee17178a49135e7b42dba3a6abf842b5ab729f2e9b7ed18f7d2aa29aa91d616799700b94bbb64b1b9ed1aa0a9ee245959012dd2da00c33a774ba39e706bdc50f433b61015f597eb97ea9682f531df1cac4a2a5c0b2090b1f085d811efe5e5aff9d6151c09db72b83872142195884720375fe882276c08fdb1f7cd4647bb73876b26db126411635cf943f3794e4b512e5b439fdde635888d6876f2a85245f990da59d"}]}, @generic="5cfc61ac0cc7ab963f0eca4ead1c8f87c3970b16f551f76d41680194b7904b0c8a95edd9beb187d61d2296ec5af4934e1c6938caa121ce5c211b4e3a78f08b443755"]}, 0x1f8}, 0x1, 0x0, 0x0, 0x48000}, 0x20000000) connect$inet(r2, &(0x7f00000011c0)={0x2, 0x4e23, @empty}, 0x10) r6 = syz_mount_image$nfs(&(0x7f0000001240), &(0x7f0000001280)='./file0\x00', 0x10001, 0xa, &(0x7f0000001900)=[{&(0x7f00000012c0)="65746e9b58cb39fa1e69e07d6852b950867c5768b72e5dced604a8da0cdceef0b86fee019fc3960ef2047c985d6278cd3c23ddeac81d7bf763be77f083c15756ee3036c8650abac2f18a2f5f713c222d2af82f2a31ae47462b64d0aaab9162af385841db917f208fbc1f1c9407237fd433a9b2f52aa2d02644ca68351f88b870", 0x80, 0xffffffffffff6fb5}, {&(0x7f0000001340)="24f3deb6d44a636186d94600c034ef8ac3fb7005954d58c3846bcbeb867e3aac6ccc5fe43fe9971e27bb1f6e190b6a427c3fd9d624c15db436337127f728e80f55707865805bf9091c5873db0cf643f7f6d3ed504e67577d97f6b1b9a8795b3ff37f42ab9d2e3d4479c085478929a4c176a12741041f04a2ba85dbc1a875f169af9d0ea851e2d958cd048b4389b49871a5d4fc51e82ea59f2ce4ad78b9176cabb36fe15b7a47bd933d58b2ad257c4e8ff7d9a55471e3ced62d7ec9ee96", 0xbd, 0x1f}, {&(0x7f0000001400)="d95329cca32bce8545e5ab8ddaf3d834961170c63e59235804dcde52051ce8205ffea1a1c35bf0bd7e7512c1a1283c62fcd0e6f46673cb047c72413f9115f18262f367f952f66ba6d620e9a87b00f8eda3e8d3894e4488e3abb01a9e1becd9fac80ffbfa1e389dacbf50e13b609e1bd3ce4c300d6f596cf76ec3cb52c74901a9e5bd4d43d90e99ef12", 0x89, 0x3}, {&(0x7f00000014c0)="575bb628201e724b040d45a4ef7cd812ff63948d47a826eae15dd4aa108db728c32a1d38720d1ea74b3baed196ba8f20893d6c5ca6aa1dc99140a3288e9aed8838a15ebbadbcabf83287f38e765a9de780a0a05a89e14e86e561391c57ecdc1f2a52237e1a28ef06fe569eb08a78deb77b428e33b984fa60f228792093a3f76824321e63c7c295af02ad3765dd61702f9c4d40cd95155dcc3310b9cc42be8bd621ffc237afb5606d56dcd88b8ede4c1a4dc5ee62ecca3143f4003399967f46274bc7fe22bc43809a06485d0bd5a5f92718d4961bd079a9598d56417c", 0xdc, 0x2}, {&(0x7f00000015c0)="1c89da58b940c674610f9347cec9f8ef0133b323d52d8e4b83c32bad97b7e072e25dc04802ac3681e40fdf070b3ede34fd29e05261d6c809b5a984c930d583ce5f78cd2661974d29338e50774f47ebe53da68c1988eac87a87a8ba7bedd4bf71de839ed305d8e6b11c8d0ef6e79255fad196b9b3eeef295be0dfc5c1f46417965114325baac5d8e17bc7f51b1963a3", 0x8f, 0x8}, {&(0x7f0000001680), 0x0, 0x80000001}, {&(0x7f00000016c0)="c86af461f9ebcaa2c688c9e486d0c0f136aaa750762d20a88133b6c68f15cfc931ee454e2cca77e6809b28bc06496a5f5775e5d432ae", 0x36, 0x8000000}, {&(0x7f0000001700)="b750825b8a38b612711b8f091f7b7493a24d8bc9c57fb2d537ffaeda8f39889bd574f3d2ad356ba947983773a51976fb52777a98d72f5387168a4cf6449eb0ed5674ff", 0x43}, {&(0x7f0000001780)="b5ae0f8a1fdac5d8c8671e2295dffce407cdaaf412688342b2c3fe12f06724a2827e9240d17ded98157ae6b178898ad2aa24459c77f955961384874cb51b41d0a96461aa22034bed1d8ee593dd40bcd835eb4d42497e1aef0805b7fc34cd4a5db7d7c057f8a5defa3b1c3c079a83f1097f1dde4381dc85b6e34b9cce76458e8081af2221c6926f14122a8a2c6eca5423b66dbf721fade46752", 0x99, 0x5}, {&(0x7f0000001840)="54ad0fb56f24bbcf94d4122bb102d78704dc309b8dde719dd4da30049bfe40f5beb73d5e7eadfd3b4ae34db2b2d7a61512f82e519ad85b64e23acc73b717b3986fde77dd795530ebd1bf05beef38eb06240d95a4dbaeaa08d8e8efb307df16f4d66643098c12d920a543aca07a07645cdfddf9d78941970959626e677fa1b5a2dd2fe57e8a2d38fceb0c5154546d", 0x8e, 0x8000}], 0x800400, &(0x7f0000001a00)={[{'^\\,-'}, {'check=relaxed'}, {'.].\x14+'}, {'['}, {'check=strict'}], [{@uid_gt={'uid>', r3}}, {@smackfsfloor}, {@euid_lt={'euid<', r4}}]}) symlinkat(&(0x7f0000001200)='./file0\x00', r6, &(0x7f0000001a80)='./file0\x00') 21:09:05 executing program 7: syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0xc00, 0x70bd2b, 0x25dfdbff, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x4004050) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000140)={'veth0_to_hsr\x00'}) r0 = syz_genetlink_get_family_id$ipvs(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x24, r0, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x101}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffff9}]}, 0x24}, 0x1, 0x0, 0x0, 0x8004001}, 0x40080) r1 = accept$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @empty}, &(0x7f0000000300)=0x10) setsockopt$inet_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000340)=@ccm_128={{0x303}, "4db276e57cc20bde", "b7ec6ecbb95e8d861541d4e7f6f4b030", "af363a74", "236fce9182a3726d"}, 0x28) sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x44, 0x0, 0x1, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8, 0x45}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x44}, 0x1, 0x0, 0x0, 0x4008011}, 0x4000000) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000004c0)='/sys/fs/cgroup', 0x4400, 0x8c) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x14, r3, 0x305, 0x70bd25, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4044051}, 0x44000) sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000700)={&(0x7f0000000680)={0x64, 0x0, 0x4, 0x70bd29, 0x25dfdbfe, {}, [@IEEE802154_ATTR_STATUS={0x5, 0x3, 0x4}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xffff}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x80}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x80}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x42}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0x100}}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x2}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa1}]}, 0x64}, 0x1, 0x0, 0x0, 0x40048090}, 0x4000001) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000007c0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_TX_POWER(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x40, 0x0, 0x100, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_TX_POWER={0x8, 0xb, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_TX_POWER={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) sendmsg$NLBL_MGMT_C_REMOVEDEF(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000900)={0x90, 0x0, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @private=0xa010101}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private1}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_DOMAIN={0x9, 0x1, 'IPVS\x00'}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}}]}, 0x90}}, 0x4004c000) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a80), r2) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x28, r5, 0x8, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x15}}}}, ["", "", "", ""]}, 0x28}}, 0x20000800) sendmmsg$sock(r1, &(0x7f0000000e40)=[{{&(0x7f0000000b80)=@ll={0x11, 0x5, 0x0, 0x1, 0x4}, 0x80, &(0x7f0000000e00)=[{&(0x7f0000000c00)="81e6beac634199a0cce814c6e3a423fa204719387b08642aa86243c49f43e7fdaae652f573d00ec1724efce4dfdc9736d58b8152750ea3ec1a93f756d52805aec6cd73e4660eba1e49653cf2a6e5e448d0b978c29fce31bfed0135c7eea61c166aa6cb6a4b5de72ba47289193267a58f8ce75acbe0e72a1652a13c3247c1a1a7af5788cca84cd2e2e67528f56bd954e67325726d0e322be81b94ba9d05c463", 0x9f}, {&(0x7f0000000cc0)="b3b422bc35903381d02ecb82e72b4beee6eddc3f83ea287342defc318eeb4143eb438244fc6dce8db0f309b3c4d7ea7f6941932894bcb42cdd4335c26b2e0a1b1c2227628086fc7c5dcf632d4f947a66ff65ce141f109d366a9352aa665a0063a366d3b5036751040a683ff3712e4c8b6d3393fe21ac51ed9bdee12f261b70a44c4cf3e0ce65ec566c8452f82341006858134e4ba1400e2135af36b2f7ca6f3ea729834f2267e444aba1fca2d39e00cc3ad7a27c9cd6cabf63f9bb", 0xbb}, {&(0x7f0000000d80)="6760602d5a8afad22169cf6eec4a701db22181a15b6761b9063dabaa993d2e94efa6dc79d2f6a0be46fed136217b4b10fca3f10050d1d105b9415fbb40", 0x3d}, {&(0x7f0000000dc0)}], 0x4}}], 0x1, 0x40004) ioctl$sock_proto_private(r1, 0x89eb, &(0x7f0000000e80)) sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f0000000fc0)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000f00)={0x7c, r5, 0x300, 0x70bd26, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1fe, 0x62}}}}, [@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "6095e8eeb027f60b32a494ff06"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "b6273812ba"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_SEQ={0xf, 0xa, "4d3a16944c48dab3bcc8fe"}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x3}]}, 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x40) [ 72.850051] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 72.852478] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 72.854479] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 72.858661] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 72.861372] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 72.863391] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 72.869311] Bluetooth: hci0: HCI_REQ-0x0c1a [ 73.042433] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.056563] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.063204] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.067581] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.069136] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.074989] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.080241] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.096204] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.098064] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.099969] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 73.102642] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.103996] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 73.105289] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 73.106473] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.107667] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 73.108944] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.112444] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.113944] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 73.118047] Bluetooth: hci5: HCI_REQ-0x0c1a [ 73.118122] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.121967] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 73.123097] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 73.124489] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 73.131043] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.134983] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 73.140167] Bluetooth: hci1: HCI_REQ-0x0c1a [ 73.140301] Bluetooth: hci3: HCI_REQ-0x0c1a [ 73.153990] Bluetooth: hci4: HCI_REQ-0x0c1a [ 73.183694] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.187451] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.189055] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.194751] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.196373] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 73.199098] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 73.200352] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.204702] Bluetooth: hci2: HCI_REQ-0x0c1a [ 73.214043] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 73.215808] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 73.218281] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 73.223818] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 73.226157] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 73.227913] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 73.249983] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 73.251480] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 73.253402] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 73.258301] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 73.263002] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 73.263842] Bluetooth: hci6: HCI_REQ-0x0c1a [ 73.287375] Bluetooth: hci7: HCI_REQ-0x0c1a [ 74.934422] Bluetooth: hci0: command 0x0409 tx timeout [ 75.189957] Bluetooth: hci3: command 0x0409 tx timeout [ 75.189994] Bluetooth: hci1: command 0x0409 tx timeout [ 75.191215] Bluetooth: hci5: command 0x0409 tx timeout [ 75.191957] Bluetooth: hci4: command 0x0409 tx timeout [ 75.253832] Bluetooth: hci2: command 0x0409 tx timeout [ 75.318942] Bluetooth: hci7: command 0x0409 tx timeout [ 75.319490] Bluetooth: hci6: command 0x0409 tx timeout [ 76.981835] Bluetooth: hci0: command 0x041b tx timeout [ 77.237945] Bluetooth: hci5: command 0x041b tx timeout [ 77.238810] Bluetooth: hci4: command 0x041b tx timeout [ 77.239517] Bluetooth: hci1: command 0x041b tx timeout [ 77.240264] Bluetooth: hci3: command 0x041b tx timeout [ 77.301924] Bluetooth: hci2: command 0x041b tx timeout [ 77.365943] Bluetooth: hci6: command 0x041b tx timeout [ 77.366731] Bluetooth: hci7: command 0x041b tx timeout [ 79.030816] Bluetooth: hci0: command 0x040f tx timeout [ 79.286843] Bluetooth: hci3: command 0x040f tx timeout [ 79.287289] Bluetooth: hci1: command 0x040f tx timeout [ 79.287870] Bluetooth: hci4: command 0x040f tx timeout [ 79.288413] Bluetooth: hci5: command 0x040f tx timeout [ 79.350838] Bluetooth: hci2: command 0x040f tx timeout [ 79.414906] Bluetooth: hci7: command 0x040f tx timeout [ 79.414974] Bluetooth: hci6: command 0x040f tx timeout [ 81.078808] Bluetooth: hci0: command 0x0419 tx timeout [ 81.333843] Bluetooth: hci5: command 0x0419 tx timeout [ 81.333882] Bluetooth: hci4: command 0x0419 tx timeout [ 81.334303] Bluetooth: hci1: command 0x0419 tx timeout [ 81.334696] Bluetooth: hci3: command 0x0419 tx timeout [ 81.397865] Bluetooth: hci2: command 0x0419 tx timeout [ 81.461818] Bluetooth: hci7: command 0x0419 tx timeout [ 81.463208] Bluetooth: hci6: command 0x0419 tx timeout 21:09:59 executing program 2: syz_usb_connect$printer(0x4, 0x0, 0x0, 0x0) syz_usb_connect(0x1, 0x4e, &(0x7f0000000200)={{0x12, 0x1, 0x0, 0xe1, 0x27, 0xfe, 0x0, 0x19d2, 0xffbf, 0xe73e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3c, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x9f, 0x0, 0x1, 0xff, 0xff, 0xff, 0x6, [@cdc_ecm={{0x5}, {0x5, 0x24, 0x0, 0xffff}, {0xd, 0x24, 0xf, 0x1, 0xfff}, [@call_mgmt={0x5, 0x24, 0x1, 0x2, 0x40}, @call_mgmt={0x5, 0x24, 0x1, 0x0, 0x7f}]}], [{{0x9, 0x5, 0xb, 0x0, 0x10, 0x9, 0xd8, 0x40}}]}}]}}]}}, &(0x7f0000000400)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x110, 0x3f, 0x6, 0x78, 0x20, 0xd4}, 0xf7, &(0x7f00000002c0)={0x5, 0xf, 0xf7, 0x4, [@generic={0xc9, 0x10, 0x12, "ea20eab2f12cf20d9f1103ce16b3cebf3f64692f818f3288a0845adc0d84d78ed6d181537d4e3ce0092fc96a6608ae539cce30322627f8eaa75aafcdf0fda3f753d5b8abe5060989c8374751dc1ac098cd1506e3b7066f7d7fd9adc2113efac305644dbd881c45e81565a5ef0546d654cbf3189c72afe87551e8cc74c8e75d7ec7dcea00154699ef5ed69667d52a35c663cd6d83924b980bda8f83e8147b0efff6d7cdfe94bdf71530e35dc675e06845776c3adfed42d7fd955e49851b2bd5a6f572a9fdffe8"}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0xa, 0x0, 0x3, 0x5}, @ptm_cap={0x3}, @ssp_cap={0x1c, 0x10, 0xa, 0x40, 0x4, 0x80, 0xff00, 0x43, [0xf, 0xc0, 0xff0000, 0x0]}]}, 0x1, [{0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x3409}}]}) syz_usb_connect$hid(0x5, 0x3f, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x20, 0x54c, 0x374, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x1, 0x77, 0x60, 0x6, [{{0x9, 0x4, 0x0, 0x3, 0x2, 0x3, 0x1, 0x0, 0x7c, {0x9, 0x21, 0x180, 0x40, 0x1, {0x22, 0x4f7}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x3, 0x45, 0x3}}, [{{0x9, 0x5, 0x2, 0x3, 0x200, 0x2f, 0x3f, 0x1}}]}}}]}}]}}, &(0x7f0000000180)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x201, 0xff, 0x80, 0x6, 0xff}, 0x21, &(0x7f0000000080)={0x5, 0xf, 0x21, 0x4, [@ext_cap={0x7, 0x10, 0x2, 0x8, 0x9, 0x7, 0x9}, @ext_cap={0x7, 0x10, 0x2, 0x4, 0x8, 0xf, 0xff80}, @wireless={0xb, 0x10, 0x1, 0x2, 0x25, 0xea, 0x9, 0x8, 0x4}, @ptm_cap={0x3}]}, 0x3, [{0x12, &(0x7f00000000c0)=@string={0x12, 0x3, "e6b06457872a2ba36fbe1598e5526f7e"}}, {0x4, &(0x7f0000000100)=@lang_id={0x4, 0x3, 0xfcff}}, {0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x41d}}]}) [ 125.765210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 125.766163] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 125.785066] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 125.785867] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 125.956293] loop6: detected capacity change from 0 to 264192 [ 125.957188] nfs: Unknown parameter '^\' [ 126.002619] loop6: detected capacity change from 0 to 264192 [ 126.003298] nfs: Unknown parameter '^\' 21:09:59 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14}, 0x14}}, 0x0) sendmsg$IPVS_CMD_GET_CONFIG(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14}, 0x14}}, 0x0) [ 126.113423] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3889 comm=syz-executor.6 [ 126.123984] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3889 comm=syz-executor.6 [ 126.135857] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3889 comm=syz-executor.6 [ 126.135904] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pid=3890 comm=syz-executor.6 21:09:59 executing program 6: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000004c0)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$sg(&(0x7f00000001c0), 0x2, 0x0) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c0, 0x0, 0x0, r1}) ioctl$SCSI_IOCTL_DOORLOCK(r3, 0x5380) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x220) sendfile(r2, 0xffffffffffffffff, &(0x7f0000000180)=0x80000001, 0x1) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2, r1}) r4 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c2, 0x80000000000000, 0x718c35f1}) ioctl$SCSI_IOCTL_DOORLOCK(r4, 0x5380) ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)={0x78, r5, 0x13, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x64, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_WIN={0x0, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_PROP_MTU={0x3, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x804}, 0x8085) ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2}) syz_open_procfs(0x0, 0x0) [ 126.235893] audit: type=1400 audit(1664917799.710:7): avc: denied { open } for pid=3896 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.237403] audit: type=1400 audit(1664917799.710:8): avc: denied { kernel } for pid=3896 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.248173] ------------[ cut here ]------------ [ 126.248193] [ 126.248196] ====================================================== [ 126.248200] WARNING: possible circular locking dependency detected [ 126.248204] 6.0.0-next-20221004 #1 Not tainted [ 126.248210] ------------------------------------------------------ [ 126.248213] syz-executor.6/3898 is trying to acquire lock: [ 126.248219] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 126.248260] [ 126.248260] but task is already holding lock: [ 126.248263] ffff888015f94020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.248290] [ 126.248290] which lock already depends on the new lock. [ 126.248290] [ 126.248293] [ 126.248293] the existing dependency chain (in reverse order) is: [ 126.248296] [ 126.248296] -> #3 (&ctx->lock){....}-{2:2}: [ 126.248310] _raw_spin_lock+0x2a/0x40 [ 126.248322] __perf_event_task_sched_out+0x53b/0x18d0 [ 126.248333] __schedule+0xedd/0x2470 [ 126.248348] preempt_schedule_common+0x45/0xc0 [ 126.248364] __cond_resched+0x17/0x30 [ 126.248378] __mutex_lock+0xa3/0x14d0 [ 126.248394] __do_sys_perf_event_open+0x1eec/0x32c0 [ 126.248406] do_syscall_64+0x3b/0x90 [ 126.248424] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.248437] [ 126.248437] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 126.248451] _raw_spin_lock_nested+0x30/0x40 [ 126.248462] raw_spin_rq_lock_nested+0x1e/0x30 [ 126.248476] task_fork_fair+0x63/0x4d0 [ 126.248492] sched_cgroup_fork+0x3d0/0x540 [ 126.248507] copy_process+0x4183/0x6e20 [ 126.248518] kernel_clone+0xe7/0x890 [ 126.248528] user_mode_thread+0xad/0xf0 [ 126.248539] rest_init+0x24/0x250 [ 126.248551] arch_call_rest_init+0xf/0x14 [ 126.248570] start_kernel+0x4c6/0x4eb [ 126.248586] secondary_startup_64_no_verify+0xe0/0xeb [ 126.248600] [ 126.248600] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 126.248614] _raw_spin_lock_irqsave+0x39/0x60 [ 126.248625] try_to_wake_up+0xab/0x1930 [ 126.248638] up+0x75/0xb0 [ 126.248652] __up_console_sem+0x6e/0x80 [ 126.248669] console_unlock+0x46a/0x590 [ 126.248685] con_install+0x14e/0x5d0 [ 126.248695] tty_init_dev.part.0+0xa0/0x5e0 [ 126.248708] tty_open+0xba3/0x1350 [ 126.248719] chrdev_open+0x268/0x6e0 [ 126.248732] do_dentry_open+0x6ca/0x12b0 [ 126.248744] path_openat+0x187f/0x27b0 [ 126.248754] do_filp_open+0x1b6/0x410 [ 126.248765] do_sys_openat2+0x171/0x4c0 [ 126.248781] __x64_sys_openat+0x13f/0x1f0 [ 126.248795] do_syscall_64+0x3b/0x90 [ 126.248812] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.248825] [ 126.248825] -> #0 ((console_sem).lock){....}-{2:2}: [ 126.248838] __lock_acquire+0x2a02/0x5e70 [ 126.248855] lock_acquire+0x1a2/0x530 [ 126.248871] _raw_spin_lock_irqsave+0x39/0x60 [ 126.248882] down_trylock+0xe/0x70 [ 126.248898] __down_trylock_console_sem+0x3b/0xd0 [ 126.248914] vprintk_emit+0x16b/0x560 [ 126.248930] vprintk+0x84/0xa0 [ 126.248946] _printk+0xba/0xf1 [ 126.248958] report_bug.cold+0x72/0xab [ 126.248974] handle_bug+0x3c/0x70 [ 126.248984] exc_invalid_op+0x14/0x50 [ 126.248993] asm_exc_invalid_op+0x16/0x20 [ 126.249006] group_sched_out.part.0+0x2c7/0x460 [ 126.249024] ctx_sched_out+0x8f1/0xc10 [ 126.249040] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.249051] __schedule+0xedd/0x2470 [ 126.249073] preempt_schedule_common+0x45/0xc0 [ 126.249089] __cond_resched+0x17/0x30 [ 126.249103] __mutex_lock+0xa3/0x14d0 [ 126.249118] __do_sys_perf_event_open+0x1eec/0x32c0 [ 126.249129] do_syscall_64+0x3b/0x90 [ 126.249146] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.249159] [ 126.249159] other info that might help us debug this: [ 126.249159] [ 126.249162] Chain exists of: [ 126.249162] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 126.249162] [ 126.249177] Possible unsafe locking scenario: [ 126.249177] [ 126.249179] CPU0 CPU1 [ 126.249182] ---- ---- [ 126.249184] lock(&ctx->lock); [ 126.249190] lock(&rq->__lock); [ 126.249196] lock(&ctx->lock); [ 126.249202] lock((console_sem).lock); [ 126.249208] [ 126.249208] *** DEADLOCK *** [ 126.249208] [ 126.249210] 2 locks held by syz-executor.6/3898: [ 126.249217] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 126.249246] #1: ffff888015f94020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.249272] [ 126.249272] stack backtrace: [ 126.249275] CPU: 1 PID: 3898 Comm: syz-executor.6 Not tainted 6.0.0-next-20221004 #1 [ 126.249288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.249296] Call Trace: [ 126.249299] [ 126.249303] dump_stack_lvl+0x8b/0xb3 [ 126.249322] check_noncircular+0x263/0x2e0 [ 126.249338] ? format_decode+0x26c/0xb50 [ 126.249355] ? print_circular_bug+0x450/0x450 [ 126.249372] ? simple_strtoul+0x30/0x30 [ 126.249387] ? __lockdep_reset_lock+0x180/0x180 [ 126.249404] ? format_decode+0x26c/0xb50 [ 126.249421] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 126.249439] __lock_acquire+0x2a02/0x5e70 [ 126.249460] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 126.249483] lock_acquire+0x1a2/0x530 [ 126.249499] ? down_trylock+0xe/0x70 [ 126.249517] ? lock_release+0x750/0x750 [ 126.249535] ? find_held_lock+0x2c/0x110 [ 126.249552] ? vprintk+0x84/0xa0 [ 126.249569] _raw_spin_lock_irqsave+0x39/0x60 [ 126.249581] ? down_trylock+0xe/0x70 [ 126.249598] down_trylock+0xe/0x70 [ 126.249614] ? vprintk+0x84/0xa0 [ 126.249630] __down_trylock_console_sem+0x3b/0xd0 [ 126.249648] vprintk_emit+0x16b/0x560 [ 126.249666] vprintk+0x84/0xa0 [ 126.249684] _printk+0xba/0xf1 [ 126.249695] ? record_print_text.cold+0x16/0x16 [ 126.249710] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 126.249724] ? lock_downgrade+0x6d0/0x6d0 [ 126.249742] ? report_bug.cold+0x66/0xab [ 126.249760] ? group_sched_out.part.0+0x2c7/0x460 [ 126.249778] report_bug.cold+0x72/0xab [ 126.249798] handle_bug+0x3c/0x70 [ 126.249807] exc_invalid_op+0x14/0x50 [ 126.249818] asm_exc_invalid_op+0x16/0x20 [ 126.249831] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.249852] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.249863] RSP: 0018:ffff88803f60f978 EFLAGS: 00010006 [ 126.249872] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.249880] RDX: ffff888021415040 RSI: ffffffff81566da7 RDI: 0000000000000005 [ 126.249888] RBP: ffff88803f6b8000 R08: 0000000000000005 R09: 0000000000000001 [ 126.249896] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888015f94000 [ 126.249903] R13: ffff88806cf3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 126.249914] ? group_sched_out.part.0+0x2c7/0x460 [ 126.249934] ? group_sched_out.part.0+0x2c7/0x460 [ 126.249954] ctx_sched_out+0x8f1/0xc10 [ 126.249973] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.249987] ? lock_is_held_type+0xd7/0x130 [ 126.250002] ? __perf_cgroup_move+0x160/0x160 [ 126.250013] ? set_next_entity+0x304/0x550 [ 126.250030] ? update_curr+0x267/0x740 [ 126.250049] ? lock_is_held_type+0xd7/0x130 [ 126.250063] __schedule+0xedd/0x2470 [ 126.250081] ? io_schedule_timeout+0x150/0x150 [ 126.250097] ? find_held_lock+0x2c/0x110 [ 126.250113] ? lock_is_held_type+0xd7/0x130 [ 126.250126] ? __cond_resched+0x17/0x30 [ 126.250142] preempt_schedule_common+0x45/0xc0 [ 126.250159] __cond_resched+0x17/0x30 [ 126.250174] __mutex_lock+0xa3/0x14d0 [ 126.250192] ? lock_is_held_type+0xd7/0x130 [ 126.250205] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 126.250218] ? mutex_lock_io_nested+0x1310/0x1310 [ 126.250235] ? lock_release+0x3b2/0x750 [ 126.250253] ? __up_read+0x192/0x730 [ 126.250268] ? up_write+0x520/0x520 [ 126.250284] __do_sys_perf_event_open+0x1eec/0x32c0 [ 126.250300] ? perf_compat_ioctl+0x130/0x130 [ 126.250317] ? syscall_enter_from_user_mode+0x1d/0x50 [ 126.250331] ? syscall_enter_from_user_mode+0x1d/0x50 [ 126.250347] do_syscall_64+0x3b/0x90 [ 126.250365] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.250379] RIP: 0033:0x7f6c155a7b19 [ 126.250387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.250398] RSP: 002b:00007f6c12b1d188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 126.250409] RAX: ffffffffffffffda RBX: 00007f6c156baf60 RCX: 00007f6c155a7b19 [ 126.250417] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 126.250424] RBP: 00007f6c15601f6d R08: 0000000000000000 R09: 0000000000000000 [ 126.250432] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 126.250439] R13: 00007fff8b8ba68f R14: 00007f6c12b1d300 R15: 0000000000022000 [ 126.250452] [ 126.288594] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 126.288798] WARNING: CPU: 1 PID: 3898 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 126.289323] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 126.289461] Modules linked in: [ 126.290053] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 126.290306] CPU: 1 PID: 3898 Comm: syz-executor.6 Not tainted 6.0.0-next-20221004 #1 [ 126.290706] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 126.290826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.317513] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.317922] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 2b 08 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.319240] RSP: 0018:ffff88803f60f978 EFLAGS: 00010006 [ 126.319633] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.320154] RDX: ffff888021415040 RSI: ffffffff81566da7 RDI: 0000000000000005 [ 126.320688] RBP: ffff88803f6b8000 R08: 0000000000000005 R09: 0000000000000001 [ 126.321219] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888015f94000 [ 126.321745] R13: ffff88806cf3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 126.322264] FS: 00007f6c12b1d700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 126.322853] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.323286] CR2: 00007f141ba34270 CR3: 000000000db24000 CR4: 0000000000350ee0 [ 126.323809] Call Trace: [ 126.324001] [ 126.324174] ctx_sched_out+0x8f1/0xc10 [ 126.324476] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.324863] ? lock_is_held_type+0xd7/0x130 [ 126.325196] ? __perf_cgroup_move+0x160/0x160 [ 126.325532] ? set_next_entity+0x304/0x550 [ 126.325864] ? update_curr+0x267/0x740 [ 126.326164] ? lock_is_held_type+0xd7/0x130 [ 126.326491] __schedule+0xedd/0x2470 [ 126.326783] ? io_schedule_timeout+0x150/0x150 [ 126.327130] ? find_held_lock+0x2c/0x110 [ 126.327433] ? lock_is_held_type+0xd7/0x130 [ 126.327757] ? __cond_resched+0x17/0x30 [ 126.328063] preempt_schedule_common+0x45/0xc0 [ 126.328409] __cond_resched+0x17/0x30 [ 126.328700] __mutex_lock+0xa3/0x14d0 [ 126.329000] ? lock_is_held_type+0xd7/0x130 [ 126.329333] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 126.329720] ? mutex_lock_io_nested+0x1310/0x1310 [ 126.330092] ? lock_release+0x3b2/0x750 [ 126.330395] ? __up_read+0x192/0x730 [ 126.330680] ? up_write+0x520/0x520 [ 126.330960] __do_sys_perf_event_open+0x1eec/0x32c0 [ 126.331338] ? perf_compat_ioctl+0x130/0x130 [ 126.331669] ? syscall_enter_from_user_mode+0x1d/0x50 [ 126.332059] ? syscall_enter_from_user_mode+0x1d/0x50 [ 126.332444] do_syscall_64+0x3b/0x90 [ 126.332734] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.333134] RIP: 0033:0x7f6c155a7b19 [ 126.333411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.334730] RSP: 002b:00007f6c12b1d188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 126.335285] RAX: ffffffffffffffda RBX: 00007f6c156baf60 RCX: 00007f6c155a7b19 [ 126.335811] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 126.336328] RBP: 00007f6c15601f6d R08: 0000000000000000 R09: 0000000000000000 [ 126.336841] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 126.337366] R13: 00007fff8b8ba68f R14: 00007f6c12b1d300 R15: 0000000000022000 [ 126.337896] [ 126.338070] irq event stamp: 468 [ 126.338324] hardirqs last enabled at (467): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 126.339027] hardirqs last disabled at (468): [] __schedule+0x1225/0x2470 [ 126.339632] softirqs last enabled at (46): [] __irq_exit_rcu+0x11b/0x180 [ 126.340246] softirqs last disabled at (19): [] __irq_exit_rcu+0x11b/0x180 [ 126.340855] ---[ end trace 0000000000000000 ]--- [ 126.364903] loop5: detected capacity change from 0 to 264192 [ 126.372540] loop5: detected capacity change from 0 to 16383 [ 126.381215] loop5: detected capacity change from 0 to 264192 [ 126.392437] loop5: detected capacity change from 0 to 16383 21:09:59 executing program 5: r0 = msgget$private(0x0, 0x70) msgrcv(r0, &(0x7f0000000000)={0x0, ""/224}, 0xe8, 0x3, 0x800) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000100)=""/143) r1 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x2000, 0x86) readv(r1, &(0x7f0000000300)=[{&(0x7f0000000200)=""/133, 0x85}, {&(0x7f00000002c0)=""/3, 0x3}], 0x2) readv(r1, &(0x7f0000001580)=[{&(0x7f0000000340)=""/81, 0x51}, {&(0x7f00000003c0)=""/86, 0x56}, {&(0x7f0000000440)=""/84, 0x54}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/143, 0x8f}], 0x5) msgsnd(r0, &(0x7f0000001600)={0x0, "9b02ac7ec6d92508b0e23e3afd6180e7b14abe92e0bca2"}, 0x1f, 0x0) msgget(0x2, 0x13) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000001640), 0x440240, 0x0) lstat(&(0x7f0000001980)='./file0\x00', &(0x7f00000019c0)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f0000001680)='ext4\x00', &(0x7f00000016c0)='./file0\x00', 0x1, 0x4, &(0x7f0000001900)=[{&(0x7f0000001700)="47ac543621b3cd9133c982fee30d4d9edb519e73fcd98cf9360d1ba3690ade02629d9c4feb0c27721fd8dc7963dcf6e7c4", 0x31, 0xfffffffffffff001}, {&(0x7f0000001740)="202e1d62d942b7f1c6f166d2bf04ccc3f09dd4e691717070d8e52bca71d1658b22125794fb807913dc97e1bb80a6b2dbe6545c5cffc9425106b48fb8d061f8f4ad0d4dc608a87af7c78816e41b7dc0b8fe1f000afb4933f6e4bca1e7eb4595dcba9462c1a6c8a2b744e9427cceca033b4a5401c85bcc27f6127c16c40835f98df80240ed0542f63716cd79bf9d0cc28107bfbc995df2e100565e89d269a1d5085566049d342cebb6762196bceffdad5c4f31990ed2ab0276c328a334d4", 0xbd, 0x3ff}, {&(0x7f0000001800)="ba85a9623b83c3484b8bca4aab1f30e5c5641af4b3815ad2e9e4e10d31abeae57867cb0feddb3b1cc564278c20cb85fcdb429d99aa59b19ad6c7afc9c9eb5f0910a161a6dc1999c994e87e", 0x4b, 0x3f}, {&(0x7f0000001880)="c540d655ef1c8792346cf344fa6639039c5a180697d3178955b89721ed2c2745b4b92a39cb851fd134a9e0f3987b55be31f2d91b511a9922cf7c35feaa78b9d7bf5b27e7f3ddb2b4a663f08d19dd0d9e8492cddeeb11a79bcc", 0x59, 0x80000001}], 0x2000, &(0x7f0000001a40)={[{@nodelalloc}, {@sb={'sb', 0x3d, 0xa1ff}}, {@noblock_validity}, {@nouid32}, {@nomblk_io_submit}, {@noload}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@uid_lt={'uid<', r3}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@subj_user={'subj_user', 0x3d, '/dev/sr0\x00'}}, {@obj_type={'obj_type', 0x3d, '/dev/sr0\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0xff}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@obj_role={'obj_role', 0x3d, '@:{S'}}, {@subj_role}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/sr0\x00'}}]}) recvmmsg(r2, &(0x7f0000004640)=[{{&(0x7f0000001b80)=@nfc, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000001c00)=""/178, 0xb2}], 0x1}, 0x2}, {{&(0x7f0000001d00)=@ax25={{0x3, @rose}, [@default, @bcast, @remote, @default, @null, @rose, @default, @null]}, 0x80, &(0x7f0000001e80)=[{&(0x7f0000001d80)=""/244, 0xf4}], 0x1, &(0x7f0000001ec0)=""/206, 0xce}}, {{&(0x7f0000001fc0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000003740)=[{&(0x7f0000002040)=""/234, 0xea}, {&(0x7f0000002140)=""/198, 0xc6}, {&(0x7f0000002240)=""/131, 0x83}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f0000003300)=""/219, 0xdb}, {&(0x7f0000003400)=""/106, 0x6a}, {&(0x7f0000003480)=""/44, 0x2c}, {&(0x7f00000034c0)=""/198, 0xc6}, {&(0x7f00000035c0)=""/115, 0x73}, {&(0x7f0000003640)=""/238, 0xee}], 0xa, &(0x7f0000003800)=""/210, 0xd2}, 0xc1}, {{0x0, 0x0, &(0x7f00000039c0)=[{&(0x7f0000003900)=""/59, 0x3b}, {&(0x7f0000003940)=""/103, 0x67}], 0x2, &(0x7f0000003a00)=""/189, 0xbd}, 0x8}, {{&(0x7f0000003ac0)=@caif=@dbg, 0x80, &(0x7f0000003cc0)=[{&(0x7f0000003b40)=""/28, 0x1c}, {&(0x7f0000003b80)=""/134, 0x86}, {&(0x7f0000003c40)=""/109, 0x6d}], 0x3}, 0x200}, {{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000003d00)=""/239, 0xef}], 0x1, &(0x7f0000003e40)=""/169, 0xa9}, 0xf7}, {{&(0x7f0000003f00)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000003f80)=""/56, 0x38}], 0x1, &(0x7f0000004000)=""/51, 0x33}, 0x80000000}, {{&(0x7f0000004040)=@in={0x2, 0x0, @local}, 0x80, &(0x7f00000044c0)=[{&(0x7f00000040c0)=""/163, 0xa3}, {&(0x7f0000004180)=""/251, 0xfb}, {&(0x7f0000004280)=""/21, 0x15}, {&(0x7f00000042c0)=""/240, 0xf0}, {&(0x7f00000043c0)=""/106, 0x6a}, {&(0x7f0000004440)=""/14, 0xe}, {&(0x7f0000004480)=""/2, 0x2}], 0x7, &(0x7f0000004540)=""/197, 0xc5}}], 0x8, 0x101, &(0x7f0000004840)) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000004880)) r5 = fcntl$dupfd(r1, 0x0, r2) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000004900)={0x172, 0x0, {0x3, 0x1, 0xc72d, 0x0, 0x6c}, 0x6}) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000004b80)={{{@in=@initdev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@local}}, &(0x7f0000004c80)=0xe8) syz_mount_image$tmpfs(&(0x7f0000004980), &(0x7f00000049c0)='./file0\x00', 0x7, 0x2, &(0x7f0000004b40)=[{&(0x7f0000004a00)="5847394e31348e873d674fa8b7475a4c48812a5c84b8fb3140cab8c1acae7c50eecab2568a48c75deded54f7775bd6c28d1fc1aecac60eb2e727257e92e85b1e87e8b9bab0573882522b81ee6503ca2f5f7fd44f103377aff38e7ccfc737f55f9282fcfb06819779b7c7e9c44882319a2c6bf76fd259cc362cf64a156b31359bc5a22994f79c824651fad268fb1fc06152ff05e1da41b03fa63d076ea4c6e44000e923429c8d7c804cbd1edd7b681d184389bcb3f4a2912a676e00295f90ca7331fc1d8db9fdea8668e7ac2a647baba209a883c4865fb89103daaa39fe5ef064b12c260e56b2", 0xe6, 0xb08}, {&(0x7f0000004b00), 0x0, 0xffffffffffffffff}], 0x40020, &(0x7f0000004cc0)={[{@huge_never}, {@mpol={'mpol', 0x3d, {'bind', '=static'}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x70, 0x65, 0x34, 0x25, 0x33, 0x0, 0x56, 0x39]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x36, 0x33, 0x6b, 0x6d]}}, {@huge_within_size}], [{@uid_gt={'uid>', r6}}]}) r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000004d40), 0x400081, 0x0) getsockname(r7, &(0x7f0000004d80)=@nfc_llcp, &(0x7f0000004e00)=0x80) write$binfmt_aout(r7, &(0x7f0000004e40)={{0x10b, 0x20, 0x1, 0x233, 0x76, 0x6, 0x14, 0x7ff}, "ca62938174d920ed2fd2af5b266a1214067283c0f7a513c01fa2060a58a1647fbacd0ca808b60cf00aa73eefa8282e27c841575e6c7972adbacfc8aa812fe84216d15d5d0de5fed3ef51f98abda2a98f17c690e565af021bb66528fe45588a71626ce22a7ae1b769c62bfe397d4e0232800bcaf7e21240835aa7407f703901775deaa33fefbdfb66daaaaf3cd477ba6b6d23152647d9bf578c13b1d73bde35", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xabf) [ 126.483230] loop5: detected capacity change from 0 to 264192 [ 126.497353] loop5: detected capacity change from 0 to 16383 21:10:00 executing program 5: r0 = msgget$private(0x0, 0x70) msgrcv(r0, &(0x7f0000000000)={0x0, ""/224}, 0xe8, 0x3, 0x800) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000100)=""/143) r1 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x2000, 0x86) readv(r1, &(0x7f0000000300)=[{&(0x7f0000000200)=""/133, 0x85}, {&(0x7f00000002c0)=""/3, 0x3}], 0x2) readv(r1, &(0x7f0000001580)=[{&(0x7f0000000340)=""/81, 0x51}, {&(0x7f00000003c0)=""/86, 0x56}, {&(0x7f0000000440)=""/84, 0x54}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/143, 0x8f}], 0x5) msgsnd(r0, &(0x7f0000001600)={0x0, "9b02ac7ec6d92508b0e23e3afd6180e7b14abe92e0bca2"}, 0x1f, 0x0) msgget(0x2, 0x13) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000001640), 0x440240, 0x0) lstat(&(0x7f0000001980)='./file0\x00', &(0x7f00000019c0)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f0000001680)='ext4\x00', &(0x7f00000016c0)='./file0\x00', 0x1, 0x4, &(0x7f0000001900)=[{&(0x7f0000001700)="47ac543621b3cd9133c982fee30d4d9edb519e73fcd98cf9360d1ba3690ade02629d9c4feb0c27721fd8dc7963dcf6e7c4", 0x31, 0xfffffffffffff001}, {&(0x7f0000001740)="202e1d62d942b7f1c6f166d2bf04ccc3f09dd4e691717070d8e52bca71d1658b22125794fb807913dc97e1bb80a6b2dbe6545c5cffc9425106b48fb8d061f8f4ad0d4dc608a87af7c78816e41b7dc0b8fe1f000afb4933f6e4bca1e7eb4595dcba9462c1a6c8a2b744e9427cceca033b4a5401c85bcc27f6127c16c40835f98df80240ed0542f63716cd79bf9d0cc28107bfbc995df2e100565e89d269a1d5085566049d342cebb6762196bceffdad5c4f31990ed2ab0276c328a334d4", 0xbd, 0x3ff}, {&(0x7f0000001800)="ba85a9623b83c3484b8bca4aab1f30e5c5641af4b3815ad2e9e4e10d31abeae57867cb0feddb3b1cc564278c20cb85fcdb429d99aa59b19ad6c7afc9c9eb5f0910a161a6dc1999c994e87e", 0x4b, 0x3f}, {&(0x7f0000001880)="c540d655ef1c8792346cf344fa6639039c5a180697d3178955b89721ed2c2745b4b92a39cb851fd134a9e0f3987b55be31f2d91b511a9922cf7c35feaa78b9d7bf5b27e7f3ddb2b4a663f08d19dd0d9e8492cddeeb11a79bcc", 0x59, 0x80000001}], 0x2000, &(0x7f0000001a40)={[{@nodelalloc}, {@sb={'sb', 0x3d, 0xa1ff}}, {@noblock_validity}, {@nouid32}, {@nomblk_io_submit}, {@noload}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@uid_lt={'uid<', r3}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@subj_user={'subj_user', 0x3d, '/dev/sr0\x00'}}, {@obj_type={'obj_type', 0x3d, '/dev/sr0\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0xff}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@obj_role={'obj_role', 0x3d, '@:{S'}}, {@subj_role}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/sr0\x00'}}]}) recvmmsg(r2, &(0x7f0000004640)=[{{&(0x7f0000001b80)=@nfc, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000001c00)=""/178, 0xb2}], 0x1}, 0x2}, {{&(0x7f0000001d00)=@ax25={{0x3, @rose}, [@default, @bcast, @remote, @default, @null, @rose, @default, @null]}, 0x80, &(0x7f0000001e80)=[{&(0x7f0000001d80)=""/244, 0xf4}], 0x1, &(0x7f0000001ec0)=""/206, 0xce}}, {{&(0x7f0000001fc0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000003740)=[{&(0x7f0000002040)=""/234, 0xea}, {&(0x7f0000002140)=""/198, 0xc6}, {&(0x7f0000002240)=""/131, 0x83}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f0000003300)=""/219, 0xdb}, {&(0x7f0000003400)=""/106, 0x6a}, {&(0x7f0000003480)=""/44, 0x2c}, {&(0x7f00000034c0)=""/198, 0xc6}, {&(0x7f00000035c0)=""/115, 0x73}, {&(0x7f0000003640)=""/238, 0xee}], 0xa, &(0x7f0000003800)=""/210, 0xd2}, 0xc1}, {{0x0, 0x0, &(0x7f00000039c0)=[{&(0x7f0000003900)=""/59, 0x3b}, {&(0x7f0000003940)=""/103, 0x67}], 0x2, &(0x7f0000003a00)=""/189, 0xbd}, 0x8}, {{&(0x7f0000003ac0)=@caif=@dbg, 0x80, &(0x7f0000003cc0)=[{&(0x7f0000003b40)=""/28, 0x1c}, {&(0x7f0000003b80)=""/134, 0x86}, {&(0x7f0000003c40)=""/109, 0x6d}], 0x3}, 0x200}, {{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000003d00)=""/239, 0xef}], 0x1, &(0x7f0000003e40)=""/169, 0xa9}, 0xf7}, {{&(0x7f0000003f00)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000003f80)=""/56, 0x38}], 0x1, &(0x7f0000004000)=""/51, 0x33}, 0x80000000}, {{&(0x7f0000004040)=@in={0x2, 0x0, @local}, 0x80, &(0x7f00000044c0)=[{&(0x7f00000040c0)=""/163, 0xa3}, {&(0x7f0000004180)=""/251, 0xfb}, {&(0x7f0000004280)=""/21, 0x15}, {&(0x7f00000042c0)=""/240, 0xf0}, {&(0x7f00000043c0)=""/106, 0x6a}, {&(0x7f0000004440)=""/14, 0xe}, {&(0x7f0000004480)=""/2, 0x2}], 0x7, &(0x7f0000004540)=""/197, 0xc5}}], 0x8, 0x101, &(0x7f0000004840)) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000004880)) r5 = fcntl$dupfd(r1, 0x0, r2) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000004900)={0x172, 0x0, {0x3, 0x1, 0xc72d, 0x0, 0x6c}, 0x6}) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000004b80)={{{@in=@initdev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@local}}, &(0x7f0000004c80)=0xe8) syz_mount_image$tmpfs(&(0x7f0000004980), &(0x7f00000049c0)='./file0\x00', 0x7, 0x2, &(0x7f0000004b40)=[{&(0x7f0000004a00)="5847394e31348e873d674fa8b7475a4c48812a5c84b8fb3140cab8c1acae7c50eecab2568a48c75deded54f7775bd6c28d1fc1aecac60eb2e727257e92e85b1e87e8b9bab0573882522b81ee6503ca2f5f7fd44f103377aff38e7ccfc737f55f9282fcfb06819779b7c7e9c44882319a2c6bf76fd259cc362cf64a156b31359bc5a22994f79c824651fad268fb1fc06152ff05e1da41b03fa63d076ea4c6e44000e923429c8d7c804cbd1edd7b681d184389bcb3f4a2912a676e00295f90ca7331fc1d8db9fdea8668e7ac2a647baba209a883c4865fb89103daaa39fe5ef064b12c260e56b2", 0xe6, 0xb08}, {&(0x7f0000004b00), 0x0, 0xffffffffffffffff}], 0x40020, &(0x7f0000004cc0)={[{@huge_never}, {@mpol={'mpol', 0x3d, {'bind', '=static'}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x70, 0x65, 0x34, 0x25, 0x33, 0x0, 0x56, 0x39]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x36, 0x33, 0x6b, 0x6d]}}, {@huge_within_size}], [{@uid_gt={'uid>', r6}}]}) r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000004d40), 0x400081, 0x0) getsockname(r7, &(0x7f0000004d80)=@nfc_llcp, &(0x7f0000004e00)=0x80) write$binfmt_aout(r7, &(0x7f0000004e40)={{0x10b, 0x20, 0x1, 0x233, 0x76, 0x6, 0x14, 0x7ff}, "ca62938174d920ed2fd2af5b266a1214067283c0f7a513c01fa2060a58a1647fbacd0ca808b60cf00aa73eefa8282e27c841575e6c7972adbacfc8aa812fe84216d15d5d0de5fed3ef51f98abda2a98f17c690e565af021bb66528fe45588a71626ce22a7ae1b769c62bfe397d4e0232800bcaf7e21240835aa7407f703901775deaa33fefbdfb66daaaaf3cd477ba6b6d23152647d9bf578c13b1d73bde35", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xabf) [ 126.575274] blktrace: Concurrent blktraces are not allowed on sg0 [ 126.581325] loop5: detected capacity change from 0 to 264192 [ 126.591328] loop5: detected capacity change from 0 to 16383 21:10:00 executing program 6: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000004c0)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$sg(&(0x7f00000001c0), 0x2, 0x0) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c0, 0x0, 0x0, r1}) ioctl$SCSI_IOCTL_DOORLOCK(r3, 0x5380) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x220) sendfile(r2, 0xffffffffffffffff, &(0x7f0000000180)=0x80000001, 0x1) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2, r1}) r4 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c2, 0x80000000000000, 0x718c35f1}) ioctl$SCSI_IOCTL_DOORLOCK(r4, 0x5380) ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)={0x78, r5, 0x13, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x64, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_WIN={0x0, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_PROP_MTU={0x3, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x804}, 0x8085) ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2}) syz_open_procfs(0x0, 0x0) [ 126.632843] blktrace: Concurrent blktraces are not allowed on sg0 21:10:00 executing program 2: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000004c0)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$sg(&(0x7f00000001c0), 0x2, 0x0) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c0, 0x0, 0x0, r1}) ioctl$SCSI_IOCTL_DOORLOCK(r3, 0x5380) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000080)=ANY=[], 0x220) sendfile(r2, 0xffffffffffffffff, &(0x7f0000000180)=0x80000001, 0x1) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2, r1}) r4 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c2, 0x80000000000000, 0x718c35f1}) ioctl$SCSI_IOCTL_DOORLOCK(r4, 0x5380) ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_NL_LINK_GET(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000400)={0x78, r5, 0x13, 0x70bd2a, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x64, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x400}, @TIPC_NLA_PROP_WIN={0x0, 0x3, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x17}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_PROP_MTU={0x3, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x804}, 0x8085) ioctl$BLKTRACESETUP(r4, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2}) syz_open_procfs(0x0, 0x0) 21:10:00 executing program 5: r0 = msgget$private(0x0, 0x70) msgrcv(r0, &(0x7f0000000000)={0x0, ""/224}, 0xe8, 0x3, 0x800) msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000100)=""/143) r1 = open$dir(&(0x7f00000001c0)='./file0\x00', 0x2000, 0x86) readv(r1, &(0x7f0000000300)=[{&(0x7f0000000200)=""/133, 0x85}, {&(0x7f00000002c0)=""/3, 0x3}], 0x2) readv(r1, &(0x7f0000001580)=[{&(0x7f0000000340)=""/81, 0x51}, {&(0x7f00000003c0)=""/86, 0x56}, {&(0x7f0000000440)=""/84, 0x54}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/143, 0x8f}], 0x5) msgsnd(r0, &(0x7f0000001600)={0x0, "9b02ac7ec6d92508b0e23e3afd6180e7b14abe92e0bca2"}, 0x1f, 0x0) msgget(0x2, 0x13) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000001640), 0x440240, 0x0) lstat(&(0x7f0000001980)='./file0\x00', &(0x7f00000019c0)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f0000001680)='ext4\x00', &(0x7f00000016c0)='./file0\x00', 0x1, 0x4, &(0x7f0000001900)=[{&(0x7f0000001700)="47ac543621b3cd9133c982fee30d4d9edb519e73fcd98cf9360d1ba3690ade02629d9c4feb0c27721fd8dc7963dcf6e7c4", 0x31, 0xfffffffffffff001}, {&(0x7f0000001740)="202e1d62d942b7f1c6f166d2bf04ccc3f09dd4e691717070d8e52bca71d1658b22125794fb807913dc97e1bb80a6b2dbe6545c5cffc9425106b48fb8d061f8f4ad0d4dc608a87af7c78816e41b7dc0b8fe1f000afb4933f6e4bca1e7eb4595dcba9462c1a6c8a2b744e9427cceca033b4a5401c85bcc27f6127c16c40835f98df80240ed0542f63716cd79bf9d0cc28107bfbc995df2e100565e89d269a1d5085566049d342cebb6762196bceffdad5c4f31990ed2ab0276c328a334d4", 0xbd, 0x3ff}, {&(0x7f0000001800)="ba85a9623b83c3484b8bca4aab1f30e5c5641af4b3815ad2e9e4e10d31abeae57867cb0feddb3b1cc564278c20cb85fcdb429d99aa59b19ad6c7afc9c9eb5f0910a161a6dc1999c994e87e", 0x4b, 0x3f}, {&(0x7f0000001880)="c540d655ef1c8792346cf344fa6639039c5a180697d3178955b89721ed2c2745b4b92a39cb851fd134a9e0f3987b55be31f2d91b511a9922cf7c35feaa78b9d7bf5b27e7f3ddb2b4a663f08d19dd0d9e8492cddeeb11a79bcc", 0x59, 0x80000001}], 0x2000, &(0x7f0000001a40)={[{@nodelalloc}, {@sb={'sb', 0x3d, 0xa1ff}}, {@noblock_validity}, {@nouid32}, {@nomblk_io_submit}, {@noload}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@uid_lt={'uid<', r3}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@subj_user={'subj_user', 0x3d, '/dev/sr0\x00'}}, {@obj_type={'obj_type', 0x3d, '/dev/sr0\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0xff}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@obj_role={'obj_role', 0x3d, '@:{S'}}, {@subj_role}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/sr0\x00'}}]}) recvmmsg(r2, &(0x7f0000004640)=[{{&(0x7f0000001b80)=@nfc, 0x80, &(0x7f0000001cc0)=[{&(0x7f0000001c00)=""/178, 0xb2}], 0x1}, 0x2}, {{&(0x7f0000001d00)=@ax25={{0x3, @rose}, [@default, @bcast, @remote, @default, @null, @rose, @default, @null]}, 0x80, &(0x7f0000001e80)=[{&(0x7f0000001d80)=""/244, 0xf4}], 0x1, &(0x7f0000001ec0)=""/206, 0xce}}, {{&(0x7f0000001fc0)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000003740)=[{&(0x7f0000002040)=""/234, 0xea}, {&(0x7f0000002140)=""/198, 0xc6}, {&(0x7f0000002240)=""/131, 0x83}, {&(0x7f0000002300)=""/4096, 0x1000}, {&(0x7f0000003300)=""/219, 0xdb}, {&(0x7f0000003400)=""/106, 0x6a}, {&(0x7f0000003480)=""/44, 0x2c}, {&(0x7f00000034c0)=""/198, 0xc6}, {&(0x7f00000035c0)=""/115, 0x73}, {&(0x7f0000003640)=""/238, 0xee}], 0xa, &(0x7f0000003800)=""/210, 0xd2}, 0xc1}, {{0x0, 0x0, &(0x7f00000039c0)=[{&(0x7f0000003900)=""/59, 0x3b}, {&(0x7f0000003940)=""/103, 0x67}], 0x2, &(0x7f0000003a00)=""/189, 0xbd}, 0x8}, {{&(0x7f0000003ac0)=@caif=@dbg, 0x80, &(0x7f0000003cc0)=[{&(0x7f0000003b40)=""/28, 0x1c}, {&(0x7f0000003b80)=""/134, 0x86}, {&(0x7f0000003c40)=""/109, 0x6d}], 0x3}, 0x200}, {{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000003d00)=""/239, 0xef}], 0x1, &(0x7f0000003e40)=""/169, 0xa9}, 0xf7}, {{&(0x7f0000003f00)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000003fc0)=[{&(0x7f0000003f80)=""/56, 0x38}], 0x1, &(0x7f0000004000)=""/51, 0x33}, 0x80000000}, {{&(0x7f0000004040)=@in={0x2, 0x0, @local}, 0x80, &(0x7f00000044c0)=[{&(0x7f00000040c0)=""/163, 0xa3}, {&(0x7f0000004180)=""/251, 0xfb}, {&(0x7f0000004280)=""/21, 0x15}, {&(0x7f00000042c0)=""/240, 0xf0}, {&(0x7f00000043c0)=""/106, 0x6a}, {&(0x7f0000004440)=""/14, 0xe}, {&(0x7f0000004480)=""/2, 0x2}], 0x7, &(0x7f0000004540)=""/197, 0xc5}}], 0x8, 0x101, &(0x7f0000004840)) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r4, 0x80489439, &(0x7f0000004880)) r5 = fcntl$dupfd(r1, 0x0, r2) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000004900)={0x172, 0x0, {0x3, 0x1, 0xc72d, 0x0, 0x6c}, 0x6}) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f0000004b80)={{{@in=@initdev, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@local}}, &(0x7f0000004c80)=0xe8) syz_mount_image$tmpfs(&(0x7f0000004980), &(0x7f00000049c0)='./file0\x00', 0x7, 0x2, &(0x7f0000004b40)=[{&(0x7f0000004a00)="5847394e31348e873d674fa8b7475a4c48812a5c84b8fb3140cab8c1acae7c50eecab2568a48c75deded54f7775bd6c28d1fc1aecac60eb2e727257e92e85b1e87e8b9bab0573882522b81ee6503ca2f5f7fd44f103377aff38e7ccfc737f55f9282fcfb06819779b7c7e9c44882319a2c6bf76fd259cc362cf64a156b31359bc5a22994f79c824651fad268fb1fc06152ff05e1da41b03fa63d076ea4c6e44000e923429c8d7c804cbd1edd7b681d184389bcb3f4a2912a676e00295f90ca7331fc1d8db9fdea8668e7ac2a647baba209a883c4865fb89103daaa39fe5ef064b12c260e56b2", 0xe6, 0xb08}, {&(0x7f0000004b00), 0x0, 0xffffffffffffffff}], 0x40020, &(0x7f0000004cc0)={[{@huge_never}, {@mpol={'mpol', 0x3d, {'bind', '=static'}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x70, 0x65, 0x34, 0x25, 0x33, 0x0, 0x56, 0x39]}}, {@nr_blocks={'nr_blocks', 0x3d, [0x36, 0x33, 0x6b, 0x6d]}}, {@huge_within_size}], [{@uid_gt={'uid>', r6}}]}) r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000004d40), 0x400081, 0x0) getsockname(r7, &(0x7f0000004d80)=@nfc_llcp, &(0x7f0000004e00)=0x80) write$binfmt_aout(r7, &(0x7f0000004e40)={{0x10b, 0x20, 0x1, 0x233, 0x76, 0x6, 0x14, 0x7ff}, "ca62938174d920ed2fd2af5b266a1214067283c0f7a513c01fa2060a58a1647fbacd0ca808b60cf00aa73eefa8282e27c841575e6c7972adbacfc8aa812fe84216d15d5d0de5fed3ef51f98abda2a98f17c690e565af021bb66528fe45588a71626ce22a7ae1b769c62bfe397d4e0232800bcaf7e21240835aa7407f703901775deaa33fefbdfb66daaaaf3cd477ba6b6d23152647d9bf578c13b1d73bde35", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xabf) [ 126.685356] loop5: detected capacity change from 0 to 264192 [ 126.696709] loop5: detected capacity change from 0 to 16383 [ 126.746203] blktrace: Concurrent blktraces are not allowed on sg0 VM DIAGNOSIS: 21:10:00 Registers: info registers vcpu 0 RAX=0000000080000001 RBX=ffff88803f68f8a8 RCX=0000000000000000 RDX=0000000000000001 RSI=ffff88803f68f8a0 RDI=0000000000000001 RBP=ffff88803f688000 RSP=ffff88803f68f4d8 R8 =ffffffff85ee0840 R9 =ffffffff85ee0844 R10=ffffed1007ed1eb8 R11=ffff88803f68f598 R12=ffff88803f68f599 R13=ffff88803f68f5b8 R14=ffff88803f68f558 R15=0000000000000005 RIP=ffffffff8111bfc6 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1862cd8810 CR3=00000000175c2000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 6461657268747062 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00302e6f732e6461 657268747062696c YMM03=0000000000000000 0000000000000000 2f756e672d78756e 696c2d34365f3638 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000066 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bd531 RDI=ffffffff8765c9a0 RBP=ffffffff8765c960 RSP=ffff88803f60f3c0 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000066 R11=0000000000000001 R12=0000000000000066 R13=ffffffff8765c960 R14=0000000000000010 R15=ffffffff823bd520 RIP=ffffffff823bd589 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6c12b1d700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f141ba34270 CR3=000000000db24000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM01=0000000000000000 0000000000000000 2f7273752f3a6e69 62732f3d48544150 YMM02=0000000000000000 0000000000000000 0000000000000000 00ff000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000ff00000000ff YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 5f45424f5250444f 4d0068563a623a6b YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000