Warning: Permanently added '[localhost]:23412' (ECDSA) to the list of known hosts. 2022/10/07 00:46:11 fuzzer started 2022/10/07 00:46:11 dialing manager at localhost:37161 syzkaller login: [ 37.319615] cgroup: Unknown subsys name 'net' [ 37.399178] cgroup: Unknown subsys name 'rlimit' 2022/10/07 00:46:26 syscalls: 2215 2022/10/07 00:46:26 code coverage: enabled 2022/10/07 00:46:26 comparison tracing: enabled 2022/10/07 00:46:26 extra coverage: enabled 2022/10/07 00:46:26 setuid sandbox: enabled 2022/10/07 00:46:26 namespace sandbox: enabled 2022/10/07 00:46:26 Android sandbox: enabled 2022/10/07 00:46:26 fault injection: enabled 2022/10/07 00:46:26 leak checking: enabled 2022/10/07 00:46:26 net packet injection: enabled 2022/10/07 00:46:26 net device setup: enabled 2022/10/07 00:46:26 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/07 00:46:26 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/07 00:46:26 USB emulation: enabled 2022/10/07 00:46:26 hci packet injection: enabled 2022/10/07 00:46:26 wifi device emulation: failed to parse kernel version (6.0.0-next-20221006) 2022/10/07 00:46:26 802.15.4 emulation: enabled 2022/10/07 00:46:26 fetching corpus: 50, signal 17830/19636 (executing program) 2022/10/07 00:46:26 fetching corpus: 100, signal 27211/30658 (executing program) 2022/10/07 00:46:26 fetching corpus: 150, signal 36081/40988 (executing program) 2022/10/07 00:46:26 fetching corpus: 200, signal 43259/49481 (executing program) 2022/10/07 00:46:26 fetching corpus: 250, signal 47037/54633 (executing program) 2022/10/07 00:46:26 fetching corpus: 300, signal 56897/65414 (executing program) 2022/10/07 00:46:27 fetching corpus: 350, signal 60805/70495 (executing program) 2022/10/07 00:46:27 fetching corpus: 400, signal 65095/75853 (executing program) 2022/10/07 00:46:27 fetching corpus: 450, signal 69306/81052 (executing program) 2022/10/07 00:46:27 fetching corpus: 500, signal 73942/86567 (executing program) 2022/10/07 00:46:27 fetching corpus: 550, signal 78692/92091 (executing program) 2022/10/07 00:46:27 fetching corpus: 600, signal 81392/95636 (executing program) 2022/10/07 00:46:27 fetching corpus: 650, signal 83612/98736 (executing program) 2022/10/07 00:46:27 fetching corpus: 700, signal 85949/101875 (executing program) 2022/10/07 00:46:27 fetching corpus: 750, signal 87747/104572 (executing program) 2022/10/07 00:46:27 fetching corpus: 800, signal 90257/107839 (executing program) 2022/10/07 00:46:28 fetching corpus: 850, signal 91161/109673 (executing program) 2022/10/07 00:46:28 fetching corpus: 900, signal 92472/111861 (executing program) 2022/10/07 00:46:28 fetching corpus: 950, signal 93837/114077 (executing program) 2022/10/07 00:46:28 fetching corpus: 1000, signal 96042/116903 (executing program) 2022/10/07 00:46:28 fetching corpus: 1050, signal 97278/118964 (executing program) 2022/10/07 00:46:28 fetching corpus: 1100, signal 99898/122022 (executing program) 2022/10/07 00:46:28 fetching corpus: 1150, signal 102367/124930 (executing program) 2022/10/07 00:46:28 fetching corpus: 1200, signal 103458/126722 (executing program) 2022/10/07 00:46:28 fetching corpus: 1250, signal 104845/128741 (executing program) 2022/10/07 00:46:29 fetching corpus: 1300, signal 106398/130836 (executing program) 2022/10/07 00:46:29 fetching corpus: 1350, signal 107575/132672 (executing program) 2022/10/07 00:46:29 fetching corpus: 1400, signal 108522/134271 (executing program) 2022/10/07 00:46:29 fetching corpus: 1450, signal 109325/135757 (executing program) 2022/10/07 00:46:29 fetching corpus: 1500, signal 110853/137761 (executing program) 2022/10/07 00:46:29 fetching corpus: 1550, signal 112391/139705 (executing program) 2022/10/07 00:46:29 fetching corpus: 1600, signal 113560/141393 (executing program) 2022/10/07 00:46:29 fetching corpus: 1650, signal 114471/142833 (executing program) 2022/10/07 00:46:29 fetching corpus: 1700, signal 115485/144332 (executing program) 2022/10/07 00:46:29 fetching corpus: 1750, signal 116283/145708 (executing program) 2022/10/07 00:46:30 fetching corpus: 1800, signal 118230/147819 (executing program) 2022/10/07 00:46:30 fetching corpus: 1850, signal 119107/149168 (executing program) 2022/10/07 00:46:30 fetching corpus: 1900, signal 120666/150940 (executing program) 2022/10/07 00:46:30 fetching corpus: 1950, signal 123256/153307 (executing program) 2022/10/07 00:46:30 fetching corpus: 2000, signal 125551/155484 (executing program) 2022/10/07 00:46:30 fetching corpus: 2050, signal 126170/156611 (executing program) 2022/10/07 00:46:30 fetching corpus: 2100, signal 128538/158769 (executing program) 2022/10/07 00:46:30 fetching corpus: 2150, signal 129453/160041 (executing program) 2022/10/07 00:46:30 fetching corpus: 2200, signal 131432/161918 (executing program) 2022/10/07 00:46:31 fetching corpus: 2250, signal 132692/163260 (executing program) 2022/10/07 00:46:31 fetching corpus: 2300, signal 134564/164972 (executing program) 2022/10/07 00:46:31 fetching corpus: 2350, signal 135484/166102 (executing program) 2022/10/07 00:46:31 fetching corpus: 2400, signal 137078/167589 (executing program) 2022/10/07 00:46:31 fetching corpus: 2450, signal 138086/168766 (executing program) 2022/10/07 00:46:31 fetching corpus: 2500, signal 140492/170564 (executing program) 2022/10/07 00:46:31 fetching corpus: 2550, signal 140958/171404 (executing program) 2022/10/07 00:46:31 fetching corpus: 2600, signal 141979/172459 (executing program) 2022/10/07 00:46:31 fetching corpus: 2650, signal 142859/173485 (executing program) 2022/10/07 00:46:31 fetching corpus: 2700, signal 143240/174197 (executing program) 2022/10/07 00:46:32 fetching corpus: 2750, signal 143814/175054 (executing program) 2022/10/07 00:46:32 fetching corpus: 2800, signal 144556/175927 (executing program) 2022/10/07 00:46:32 fetching corpus: 2850, signal 145231/176784 (executing program) 2022/10/07 00:46:32 fetching corpus: 2900, signal 145926/177669 (executing program) 2022/10/07 00:46:32 fetching corpus: 2950, signal 146997/178680 (executing program) 2022/10/07 00:46:32 fetching corpus: 3000, signal 148198/179675 (executing program) 2022/10/07 00:46:32 fetching corpus: 3050, signal 148789/180393 (executing program) 2022/10/07 00:46:32 fetching corpus: 3100, signal 150066/181388 (executing program) 2022/10/07 00:46:32 fetching corpus: 3150, signal 150944/182166 (executing program) 2022/10/07 00:46:33 fetching corpus: 3200, signal 151982/183028 (executing program) 2022/10/07 00:46:33 fetching corpus: 3250, signal 152493/183692 (executing program) 2022/10/07 00:46:33 fetching corpus: 3300, signal 152990/184357 (executing program) 2022/10/07 00:46:33 fetching corpus: 3350, signal 153599/185039 (executing program) 2022/10/07 00:46:33 fetching corpus: 3400, signal 154076/185691 (executing program) 2022/10/07 00:46:33 fetching corpus: 3450, signal 154925/186452 (executing program) 2022/10/07 00:46:33 fetching corpus: 3500, signal 155599/187120 (executing program) 2022/10/07 00:46:33 fetching corpus: 3550, signal 156813/187926 (executing program) 2022/10/07 00:46:33 fetching corpus: 3600, signal 157480/188536 (executing program) 2022/10/07 00:46:33 fetching corpus: 3650, signal 158014/189097 (executing program) 2022/10/07 00:46:33 fetching corpus: 3700, signal 159086/189745 (executing program) 2022/10/07 00:46:34 fetching corpus: 3750, signal 159864/190343 (executing program) 2022/10/07 00:46:34 fetching corpus: 3800, signal 160542/190939 (executing program) 2022/10/07 00:46:34 fetching corpus: 3850, signal 161317/191523 (executing program) 2022/10/07 00:46:34 fetching corpus: 3900, signal 161901/192054 (executing program) 2022/10/07 00:46:34 fetching corpus: 3950, signal 162290/192532 (executing program) 2022/10/07 00:46:34 fetching corpus: 4000, signal 162907/193052 (executing program) 2022/10/07 00:46:34 fetching corpus: 4050, signal 163650/193581 (executing program) 2022/10/07 00:46:34 fetching corpus: 4100, signal 164178/194076 (executing program) 2022/10/07 00:46:34 fetching corpus: 4150, signal 164626/194526 (executing program) 2022/10/07 00:46:34 fetching corpus: 4200, signal 165247/194973 (executing program) 2022/10/07 00:46:35 fetching corpus: 4250, signal 165764/195459 (executing program) 2022/10/07 00:46:35 fetching corpus: 4300, signal 166105/195850 (executing program) 2022/10/07 00:46:35 fetching corpus: 4350, signal 166862/196340 (executing program) 2022/10/07 00:46:35 fetching corpus: 4400, signal 167443/196755 (executing program) 2022/10/07 00:46:35 fetching corpus: 4450, signal 168350/197210 (executing program) 2022/10/07 00:46:35 fetching corpus: 4500, signal 168824/197590 (executing program) 2022/10/07 00:46:35 fetching corpus: 4550, signal 169477/197993 (executing program) 2022/10/07 00:46:35 fetching corpus: 4600, signal 170151/198486 (executing program) 2022/10/07 00:46:35 fetching corpus: 4650, signal 170718/198820 (executing program) 2022/10/07 00:46:35 fetching corpus: 4700, signal 171253/199178 (executing program) 2022/10/07 00:46:36 fetching corpus: 4750, signal 171888/199504 (executing program) 2022/10/07 00:46:36 fetching corpus: 4800, signal 172493/199857 (executing program) 2022/10/07 00:46:36 fetching corpus: 4850, signal 173207/200149 (executing program) 2022/10/07 00:46:36 fetching corpus: 4900, signal 174134/200425 (executing program) 2022/10/07 00:46:36 fetching corpus: 4950, signal 175499/200701 (executing program) 2022/10/07 00:46:36 fetching corpus: 5000, signal 176331/200895 (executing program) 2022/10/07 00:46:36 fetching corpus: 5050, signal 177232/200905 (executing program) 2022/10/07 00:46:36 fetching corpus: 5100, signal 178451/201044 (executing program) 2022/10/07 00:46:36 fetching corpus: 5150, signal 179090/201053 (executing program) 2022/10/07 00:46:37 fetching corpus: 5200, signal 179603/201053 (executing program) 2022/10/07 00:46:37 fetching corpus: 5250, signal 180522/201087 (executing program) 2022/10/07 00:46:37 fetching corpus: 5300, signal 181088/201088 (executing program) 2022/10/07 00:46:37 fetching corpus: 5350, signal 181674/201088 (executing program) 2022/10/07 00:46:37 fetching corpus: 5393, signal 182849/201088 (executing program) 2022/10/07 00:46:37 fetching corpus: 5393, signal 182849/201088 (executing program) 2022/10/07 00:46:40 starting 8 fuzzer processes 00:46:40 executing program 0: arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) arch_prctl$ARCH_SET_CPUID(0x1012, 0x0) arch_prctl$ARCH_SET_CPUID(0x1012, 0x1) 00:46:40 executing program 1: recvfrom(0xffffffffffffffff, &(0x7f0000000000)=""/186, 0xba, 0x0, &(0x7f00000000c0)=@un=@abs={0x1, 0x0, 0x4e24}, 0x80) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x2, 0x4e21, @remote}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000180)="f3be5b6d8963d2b04804a9b183e502", 0xf}], 0x1, &(0x7f0000000200)=[@ip_ttl={{0x14, 0x0, 0x2, 0xfffffffa}}], 0x18}, 0x40) ioctl$sock_inet_SIOCGIFDSTADDR(0xffffffffffffffff, 0x8917, &(0x7f0000000280)={'wg0\x00', {0x2, 0x0, @loopback}}) r0 = syz_genetlink_get_family_id$batadv(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x24, r0, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x7}]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0) r1 = open(&(0x7f0000000400)='./file0\x00', 0x50d000, 0xc0) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x24, r0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_MODE={0x5, 0x33, 0x6}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x8}]}, 0x24}}, 0x4004004) sendmsg$ETHTOOL_MSG_PAUSE_SET(r1, &(0x7f0000000600)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x24, 0x0, 0x10, 0x70bd27, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}, @ETHTOOL_A_PAUSE_RX={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x4040000) sendmsg$DEVLINK_CMD_RATE_DEL(r1, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x3c, 0x0, 0x300, 0x10000, 0x25dfdbfe, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_PORT_INDEX={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x10) sendmsg$inet(r1, &(0x7f0000000a00)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000740)="d48b75364b7ec755f93fbefde9040e2483e105ad51730dc7f1dba53367b7b2b4d50935f0e0b2f57c899292d5ef196d8d597d7e9cef830778f5fd6ef2610ff29a238f4a2c3e441b983493b820226c716a75b7e6477020e3fdd0b5dc561dea1bab77bb90880a2675c7", 0x68}, {&(0x7f00000007c0)="5e36d3f4920ab91b922206010fa82477c8c945f265774ea6d66099be7bdf58ff12ae26b34f37446b9da4c0f2fe983085f3d0e1dd5f5feaa6ed658bb26a5806097f165f92bcc940e4a3726a7d052c598dfef6ea995d694bd5c9145261e5102fe285b0b5fb08aaa0d9ae647c9ec40dd65cb7086bc6f709e36ff0141cbbecb6be6f6b67ac3db8e66970c707c67465c5c418510ec8c438916e5ec0a2c2a9d89f034ed62d6697d9af9237b334ba3df08661639baf6fc93d4713857e4b9e7e7a44b9d086011953525a78792e12c2b4c165bfda1319f5", 0xd3}], 0x2, &(0x7f0000000900)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x7fffffff}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x1}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x80}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x1f}}, @ip_ttl={{0x14, 0x0, 0x2, 0x3ff}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x3614}}, @ip_ttl={{0x14, 0x0, 0x2, 0x400}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x4}}], 0xd8}, 0x8010) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000b00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x34, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b80), r1) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x2c, r2, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xb160}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x40) r3 = openat$cgroup_ro(r1, &(0x7f0000000c80)='hugetlb.2MB.usage_in_bytes\x00', 0x0, 0x0) accept4$packet(r3, &(0x7f0000000cc0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000d00)=0x14, 0x400) sendmsg$NL80211_CMD_START_NAN(0xffffffffffffffff, &(0x7f0000000e00)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000d80)={0x38, 0x0, 0x400, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7ba9, 0x5c}}}}, [@NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x7}]}, 0x38}, 0x1, 0x0, 0x0, 0x1000}, 0x8000) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000e40)={r4, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x10) r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ec0), r1) sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f00000010c0)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001080)={&(0x7f0000000f00)={0x154, r5, 0x300, 0x70bd2a, 0x25dfdbff, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xdc, 0xa9, @random="1e3f504325795b0f6796bfcc99195ccb44200a19aac334af9fd9eb43db0751a897a12620b1a534737d03b9810607a0d81d76d063eeff21f63aa44ef87ce4055813126e7782e69f6069b51d5bd068a502922487d49714fb3488ab32e7b8897227c4e6b4e6b8f98c0868d9cdae8c9f29f2d0ca63231756a6a10dd5674ea4b74854f6914bd4abeb2a80dd0bf965c46cab1d0be3e0f4ef610c6b4006e178789dc0438efb06117c94e009487449a8532d8f9ea06615f92f9bdfd7b2693a385f05a383604e45f7022a50d5248fa33001bc3f886893ae57aa51bf10"}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@pci={{0x8}, {0x11}}]}, 0x154}, 0x1, 0x0, 0x0, 0x81}, 0x80401) sendmsg$NL80211_CMD_REGISTER_BEACONS(r1, &(0x7f00000011c0)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x14, 0x0, 0x400, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @void, @void}}, ["", "", "", "", "", "", ""]}, 0x14}}, 0x0) 00:46:40 executing program 2: getsockopt$WPAN_WANTLQI(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0xa}}, './file0\x00'}) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x2}}, './file0/file0\x00'}) r4 = accept$packet(r2, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f00000001c0)=0x14) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000200)='wlan0\x00', 0x10) r5 = openat(r3, &(0x7f0000000240)='./file0\x00', 0x0, 0x118) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000280)) r6 = syz_open_dev$vcsa(&(0x7f0000000480), 0x8d, 0x200000) getsockopt$inet6_tcp_buf(r6, 0x6, 0x1a, &(0x7f00000004c0)=""/158, &(0x7f0000000580)=0x9e) chdir(&(0x7f00000005c0)='./file0\x00') prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r5) bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000600)={0x1f, 0x3ff, @none, 0x5}, 0xe) r7 = accept4$packet(r0, &(0x7f0000000640)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000680)=0x14, 0x800) getsockopt$IP_VS_SO_GET_TIMEOUT(r7, 0x0, 0x486, &(0x7f00000006c0), &(0x7f0000000700)=0xc) open_by_handle_at(r5, &(0x7f0000000740)=@xfs={0x1c, 0x81, {0x72e4, 0x4, 0x1, 0x7}}, 0x200000) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000007c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_PMKSA(r5, &(0x7f00000008c0)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x71c3a72ef68d64f}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x58, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x3, 0x4e}}}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "d5d3349f8e02c835b4fd4a586c96b9d7"}, @NL80211_ATTR_PMK={0x14, 0xfe, "b74a1ce65866510dccd5a08a60cbbb0c"}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x5b0f}]}, 0x58}}, 0x8800) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000a80)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000a40)={&(0x7f0000000980)={0x94, 0x0, 0x900, 0x70bd2d, 0x3, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x42}}}}, [@mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MNTR_FLAGS={0x8, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @broadcast}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "92ee07bde350d703cfea683be12a8c2e93459b13e2d74fa7"}, @NL80211_ATTR_MNTR_FLAGS={0xc, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}]}], @NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x94}, 0x1, 0x0, 0x0, 0x24001000}, 0x20000000) 00:46:40 executing program 3: semctl$SETALL(0x0, 0x0, 0x11, &(0x7f0000000000)=[0x600]) semget$private(0x0, 0x0, 0x1e) r0 = semget(0x0, 0x1, 0x1) semctl$SETVAL(r0, 0x0, 0x10, &(0x7f0000000040)=0x7) r1 = semget$private(0x0, 0x4, 0x541) r2 = semget(0x1, 0xf76ca3134779df0e, 0x400) semctl$IPC_RMID(r2, 0x0, 0x0) r3 = semget$private(0x0, 0x0, 0x20) semctl$GETPID(r3, 0x1, 0xb, &(0x7f0000000080)=""/167) r4 = semget(0x0, 0x0, 0x2) semctl$IPC_RMID(r4, 0x0, 0x0) r5 = semget(0x3, 0x2, 0x11) semtimedop(r5, &(0x7f0000000140)=[{0x3, 0x6}, {0x0, 0x9, 0x800}], 0x2, &(0x7f0000000180)={0x0, 0x3938700}) clock_gettime(0x3, &(0x7f00000001c0)) semctl$SEM_INFO(0xffffffffffffffff, 0x0, 0x13, &(0x7f0000000200)=""/105) semctl$IPC_RMID(r1, 0x0, 0x0) semget$private(0x0, 0x2, 0x8) semctl$IPC_RMID(0xffffffffffffffff, 0x0, 0x0) semget$private(0x0, 0x4, 0x8) semtimedop(r1, &(0x7f0000000280)=[{0x0, 0x7, 0x1000}, {0x1, 0x7f, 0x1800}, {0x3, 0x401}, {0x0, 0x6}, {0x0, 0x696}], 0x5, &(0x7f0000000300)) 00:46:40 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f00000000c0), 0x4, 0x400c00) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000100)) open_by_handle_at(r0, &(0x7f0000000140)=@reiserfs_3={0xc, 0x3, {0x0, 0x9, 0x1}}, 0x101000) r1 = syz_genetlink_get_family_id$batadv(0xfffffffffffffffe, r0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r1, 0x200, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x20004000) r2 = memfd_secret(0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r2, 0x40605346, &(0x7f0000000280)={0x8, 0x0, {0x0, 0x0, 0x40000, 0x1, 0x72b6}, 0x8000}) tee(r0, r0, 0x1, 0x5) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) readv(r3, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/84, 0x54}], 0x1) ioctl$TUNSETPERSIST(r2, 0x400454cb, 0x0) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x50, 0x0, 0x9, 0x101, 0x0, 0x0, {0xa}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x20}}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x2}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1}}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x40000) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000005c0)={{{@in=@remote, @in6=@local}}, {{@in=@private}, 0x0, @in6=@empty}}, &(0x7f00000006c0)=0xe8) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000700), 0x80080, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000740)={0x4000001a}) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000780)=0x2) r5 = pidfd_getfd(r0, r2, 0x0) r6 = syz_genetlink_get_family_id$gtp(&(0x7f0000000800), r0) sendmsg$GTP_CMD_GETPDP(r5, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x14, r6, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x20000086) getpeername(0xffffffffffffffff, &(0x7f0000000940)=@nl=@proc, &(0x7f00000009c0)=0x80) [ 64.669946] audit: type=1400 audit(1665103600.307:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 00:46:40 executing program 6: sendmsg$NL80211_CMD_TDLS_OPER(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x708, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_TDLS_OPERATION={0x5}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x4}]}, 0x30}}, 0x4000000) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1050829d}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x34, 0x0, 0x0, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x9}, @NL80211_ATTR_USE_RRM={0x4}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0xc6d}, @NL80211_ATTR_PRIVACY={0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x4004) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x82003010}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x0, 0x20, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x10) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/profiling', 0x200200, 0x4a) sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x2c, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000004}, 0x80) mount$9p_fd(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x8000, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@mmap}], [{@subj_role}, {@smackfsfloor={'smackfsfloor', 0x3d, '\xff\xff\xff\xff\xff\xff'}}]}}) sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000780)={&(0x7f0000000580)={0x1e8, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0xbc, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x16abc88b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x11a85f97}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1cfdf00f}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x23e3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xc19d}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e20ad3c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbb9}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe514}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7dd0b1a6}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6a4e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc56a6ac}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf65d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7f5a}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18aeb087}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9576}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xbc6b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4a0098fe}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xab02}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x995f}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x192c5f66}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4143}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xbc, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3f}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x83}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xcf}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x42}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6f22f6c7}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6c66238c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x44}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x1c}]}, {0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7d}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2207731b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x82}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbe}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b71fbcf}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1bed9bd6}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5, 0x3, 0x2}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5}]}]}, 0x1e8}, 0x1, 0x0, 0x0, 0x20000010}, 0x20048000) r1 = dup3(0xffffffffffffffff, r0, 0x0) readv(r1, &(0x7f0000001900)=[{&(0x7f0000000800)=""/58, 0x3a}, {&(0x7f0000000840)=""/4096, 0x1000}, {&(0x7f0000001840)=""/95, 0x5f}, {&(0x7f00000018c0)=""/24, 0x18}], 0x4) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001940), 0x240000, 0x0) sendmsg$NL80211_CMD_DISASSOCIATE(r2, &(0x7f0000001a80)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001a40)={&(0x7f00000019c0)={0x44, 0x0, 0x800, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x10}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_MAC={0xa}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000050}, 0x4000000) sendmsg$NL80211_CMD_LEAVE_OCB(r1, &(0x7f0000001b80)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x10118508}, 0xc, &(0x7f0000001b40)={&(0x7f0000001b00)={0x20, 0x0, 0x1, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x800, 0x10}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x24008081}, 0x4000005) r3 = syz_open_dev$vcsn(&(0x7f0000001c80), 0x101, 0x0) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000002300)={&(0x7f0000001cc0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000022c0)={&(0x7f0000001d00)={0x590, 0x0, 0x0, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME={0x2e7, 0x33, @probe_response={@wo_ht={{0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, {0x1}, @broadcast, @device_a, @from_mac, {0x4, 0x81}}, 0xfff, @random=0x80, 0x8400, @val={0x0, 0x20, @random="e4119822a2a44c2def06ea7290f2ae817712bdd57610e04066c9b127e21718c3"}, @void, @void, @val={0x4, 0x6, {0x3f, 0x80, 0x20, 0xd3e}}, @void, @val={0x2d, 0x1a, {0x8, 0x3, 0x7, 0x0, {0x2, 0x2, 0x0, 0x1}, 0x800, 0x9, 0x81}}, @void, @void, [{0xdd, 0x24, "04650eca11a92605ed8e8ef7fe4313a95d5c76b9efc42be365938bde2bd8bf7091ee8454"}, {0xdd, 0x7b, "86232a6593addd229ad4aec510b2e486fc5263024685d23bbbe993f94b56328d111c2c622a537bcc2a4583103701db938f3bd0ae366f6ce997fc129bdfe77d39da3f4e149ef85526a54c36f0b5f3a4729ecf03d33beba1ba50520a27d7a50aa871e843e5e4bfdf7c43c2ee01a73fc090ed276b55b167d53685300f"}, {0xdd, 0x1a, "289e01ae1e7659e4d0dbdd0a758e1c6fa280cd051de61b0479c6"}, {0xdd, 0xb4, "fcbe18203615f0e04622d47ea8238d2e6ed70e17c5d496d0ba35e027497f25f0de95b77f1ebf3e72a7f228b1074e7144f7c07b8cff5c1dcecb42b6a5fe8182bb1d3cbaa01d223920b9cbfc3e4b176630aba09c3f3e9b41d3f9dbc5fb5acf401b5105fad31eab6a4d6be94c76a65d5779298dd7d473d79a8955e1fc3ff594508ea153c03267b2c4c78f92726c23702d1921e889b68a23f5add9d6dce8a202dda11da0e7c6c108c40757b5a503b719d45c65d7fc30"}, {0xdd, 0xdd, "ef837f220ecede047ff1628a054fab04ecfa18e7a3f6b3dc793ec9d15648ece368d3de867ae90a861df65edbb4a04761af59cac063d2dfdd8e6f8e248f010ed103bfd436a65e8f74addd6b25e372dadc15dd22a58dabb34232290e573ac3da611dd04d0d460f9ad10fa58195e38dd5b4d63784e6080a6197e926c6e2f96351edb90f1ca148a41503ae4ba7574c71ed369e2f42975692dbe6018266a4f3e8e8bf3a67ed5fda7755ea1ee80063a7d2e7066513fba080dfae43017fe64eb53c65a19d1abc35365527965d80322270bbe88f4e91c15d37f3e3ef6fb2fc2971"}, {0xdd, 0x23, "a76fc2e3664e27d53be33392b0bb77b283a4d719ef91ff5e545a0d6413a9279c50e683"}]}}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_FRAME={0x26c, 0x33, @probe_request={@wo_ht={{0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}, {0x80}, @broadcast, @device_b, @random="194692265953", {0x7, 0x3}}, @void, @void, @void, @val={0x2d, 0x1a, {0x1000, 0x1, 0x0, 0x0, {0x1, 0x80, 0x0, 0x4, 0x0, 0x0, 0x1, 0x2, 0x1}, 0x1, 0x2, 0xff}}, @val={0x72, 0x6}, [{0xdd, 0xf6, "25af8a92cbbb49d71a760a1db933bb5e9d9e20e3c09a86da08d8c8055d3b6c07fd058458f6f717287b68b8c19bf423ea00059e229637666d747ad8498f436e3c85c66b8d1dfcbe21ccd9b75b9147675bb8759e0cac6c9c4794d1d1c4736c012e7eb55880db8072d14bfd4bac5f6ad373bfd21ab05955e183bf1475083933fa34c1ccc131e687ad29815041cd58806f52daf9322e1e50d6afc4c6699d98a5eb0d938cf868bf4e4b86815c12f21d6f0efb5581d0ac373bbffb7808e46fc58bcdeec3ce2a57506a87a1ab7a31df65c4c6f93b502ab8c7edd65f43862ed7c8386bb913ba77fb33db2561ec8f14f125880a169411ee7f3193"}, {0xdd, 0x7d, "32649ad548012bfd6bc8e092ffdff08fcc152f384a9a4c0c9a5c68fdf09ebcb2f68ce7405ec16611dfd149f117d549b56af698526a827ba1cf1429da8bdba5fe303fef4581fc2d4b98eec5e97830cabe6234e765318b13528975b7357449300e0378e69d289df9379f7721725060842f530b39b1d246788468d341803f"}, {0xdd, 0xb3, "52635fa700ebb22202d39a96a70a1de861b190c46f6a4f5b5829426308f86811109ed28fb5b76235c969e42a47c26e5fcf6ed9607c0b3a3568c8dc9c51fe07fd34e0b7ca365ea0fab4d52aba9c4f69221558caf253f04136cb27db2f05143d5923f1b40fc1096f9cc91abb5c0fffd801528d6157b25bcb995a913c902e398dc605d5a7187fdbaf4522a842786b02ddbe85424b630cf1fcfaeee436379e5d4832ebb2b7e763a7e6f7d2ffbf390d8820fe8fa6dd"}]}}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xa, 0xcd, [0x0, 0x2, 0x800]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xc0b}]}, 0x590}, 0x1, 0x0, 0x0, 0x8000}, 0x2000c01c) r4 = openat$cgroup_ro(r0, &(0x7f0000002340)='cpuset.effective_cpus\x00', 0x0, 0x0) sendmsg$NL80211_CMD_JOIN_IBSS(r4, &(0x7f0000002600)={&(0x7f0000002380)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000025c0)={&(0x7f00000023c0)={0x1cc, 0x0, 0x300, 0x70bd2a, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_KEYS={0x1a8, 0x51, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_KEY_CIPHER={0x8}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_TYPE={0x8, 0x7, 0x2}, @NL80211_KEY_TYPE={0x8}, @NL80211_KEY_DEFAULT_TYPES={0x24, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}]}, {0x60, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_SEQ={0x13, 0x4, "a8fe1fdfbfd9110f8fcb9cf5309c2f"}, @NL80211_KEY_SEQ={0xf, 0x4, "fe92759fb94b1f45183110"}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "dbbe971a6aa1744e9142dfd354"}, @NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "02c7d3e2cc"}, @NL80211_KEY_DEFAULT_MGMT={0x4}]}, {0x60, 0x0, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "58b7f0490f4ff44865b14bbeaa"}, @NL80211_KEY_SEQ={0x13, 0x4, "f3c4cf6ae38554dc9c67a888400c50"}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "3ce30a363a"}, @NL80211_KEY_MODE={0x5}, @NL80211_KEY_DEFAULT_TYPES={0x18, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_KEY_SEQ={0x14, 0x4, "81f200753ab4fc992db418dbd8841df8"}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}, {0x60, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_SEQ={0x12, 0x4, "e2dbaac67d223f6286bca4210a3d"}, @NL80211_KEY_TYPE={0x8}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_TYPE={0x8, 0x7, 0x1}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "07c099a610"}, @NL80211_KEY_SEQ={0xf, 0x4, "20709be6dc2ea401a81483"}]}]}, @NL80211_ATTR_BEACON_INTERVAL={0x8}]}, 0x1cc}, 0x1, 0x0, 0x0, 0xe7900ec9b72ff3c8}, 0x4000004) r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000002640), 0x153200, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000002680)={0x0, r5, 0x0, 0x3, 0x4, 0x7ff}) ioctl$PIO_SCRNMAP(r0, 0x4b41, &(0x7f00000026c0)="4f27ee89b34e9c6d8340c4cc6ec5d4e8fcd00ab261d4913b8a4936c0249bdc1e21add06bd2e2797f297e00645269498b341efe4d5aec6787c6a48ae91a947086d8105a9402e1603fe9ef3aa23760abb40b00d8c704d08f13f179a7fb5aa6dd6b5f9929e16d17b657ead10f07930d30015e3fc224f3be1d92b816128c8e9285d766f67126cd2120d3fe30e0fcf7ea682241785bcfecc14e2120508bbdeab5269f587f21c37dc3bcd0908f503a91af6527965ea7a6f902d95b2820acfe00d506472d524a7ca41f750df24306d6428470ecfe47b087d6fd0ae3e96a50e31c41b3feef") mount$9p_fd(0x0, &(0x7f00000027c0)='./file1\x00', &(0x7f0000002800), 0x4, &(0x7f0000002880)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@version_9p2000}], [{@fsmagic={'fsmagic', 0x3d, 0xffffffffffffc194}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfsdef={'smackfsdef', 0x3d, 'mmap'}}, {@permit_directio}, {@euid_gt={'euid>', 0xee01}}, {@appraise}, {@fsmagic={'fsmagic', 0x3d, 0xfffffffffffffffc}}, {@dont_appraise}]}}) 00:46:40 executing program 7: write(0xffffffffffffffff, &(0x7f0000000000)="75b9fa459fd81e79be7120d9eaa9844ad2c9cbc22283fb", 0x17) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@ETHTOOL_A_RINGS_RX_MINI={0x8, 0x7, 0xffffff09}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x7f}, @ETHTOOL_A_RINGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x39ad38229229fbcf}, 0x4000000) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x94, 0x0, 0x500, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x146}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xf}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x80}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15b8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x47}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x30}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x12}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x3}]}, 0x94}, 0x1, 0x0, 0x0, 0x800}, 0x4000) preadv(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/206, 0xce}], 0x1, 0xd85, 0xab) r0 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000400)='./binderfs2/binder-control\x00', 0x0, 0x0) fcntl$setpipe(r0, 0x407, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000500), 0x2, 0x0) r3 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000540)='/proc/self/attr/current\x00', 0x2, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000580)=0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000005c0)='./file0\x00', &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x800) statx(0xffffffffffffff9c, &(0x7f0000000680)='./file0\x00', 0x4000, 0x2, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = getpgrp(0x0) sendmsg$netlink(r1, &(0x7f0000000880)={&(0x7f0000000440)=@kern={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000004c0)=[{&(0x7f0000000480)={0x1c, 0x12, 0x100, 0x70bd2a, 0x25dfdbff, "", [@typed={0xc, 0x66, 0x0, 0x0, @u64=0x3}]}, 0x1c}], 0x1, &(0x7f00000007c0)=[@rights={{0x24, 0x1, 0x1, [r0, r0, r0, 0xffffffffffffffff, r0]}}, @rights={{0x24, 0x1, 0x1, [r2, r0, r0, r3, r0]}}, @cred={{0x1c, 0x1, 0x2, {r4, r5, r6}}}, @rights={{0x24, 0x1, 0x1, [r0, r7, r0, r0, r0]}}, @cred={{0x1c, 0x1, 0x2, {r8, 0xee01, 0xffffffffffffffff}}}], 0xb8, 0x10}, 0x4008001) r9 = openat$sr(0xffffffffffffff9c, &(0x7f00000008c0), 0xc5300, 0x0) r10 = fsmount(r9, 0x0, 0x9) r11 = getpid() ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f0000000c80)=r11) perf_event_open(&(0x7f0000000d00)={0x0, 0x80, 0x3, 0x0, 0x59, 0x4, 0x0, 0x8, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000000cc0), 0xe}, 0x1000, 0x80000001, 0x80000000, 0x0, 0x5, 0x4, 0x40, 0x0, 0x6}, 0x0, 0xffffffffffffffff, r9, 0x2) 00:46:40 executing program 5: r0 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IEEE802154_START_REQ(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, r0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x3}, @IEEE802154_ATTR_SF_ORD={0x5, 0x18, 0xfe}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0xe}, @IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x3}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa1}, @IEEE802154_ATTR_BCN_ORD={0x5, 0x17, 0x20}]}, 0x44}, 0x1, 0x0, 0x0, 0x8085}, 0x86b7f4d3ec5f651d) sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x50, 0x0, 0x1, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8000, 0x66}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000}, 0x4000040) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_DELFLOWTABLE={0x48, 0x18, 0xa, 0x2, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x81}]}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x101, 0x0, 0x0, {0xc, 0x0, 0xa}, @NFT_OBJECT_CT_EXPECT=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}}, @NFT_MSG_NEWFLOWTABLE={0x60, 0x16, 0xa, 0x401, 0x0, 0x0, {0xc, 0x0, 0x2}, [@NFTA_FLOWTABLE_FLAGS={0x8}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x1}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xf0}, 0x1, 0x0, 0x0, 0x4000080}, 0x800) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$IEEE802154_SCAN_REQ(r1, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x24, r2, 0x300, 0x70bd2a, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DURATION={0x5, 0x15, 0xfb}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x16}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x40400a0) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000600), r1) sendmsg$IEEE802154_LLSEC_LIST_KEY(r1, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x14, r3, 0x400, 0x70bd25, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8800}, 0x4000000) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_SCAN_REQ(r4, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, r3, 0x20, 0x70bd2d, 0x25dfdbff, {}, [@IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0xa4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000840), 0xffffffffffffffff) sendmsg$IEEE802154_SCAN_REQ(r4, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x1c, r5, 0x300, 0x70bd2b, 0x25dfdbfb, {}, [@IEEE802154_ATTR_PAGE={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000011}, 0x10) sendmsg$NLBL_UNLABEL_C_LIST(r4, &(0x7f0000000a40)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000980)={0x7c, 0x0, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast1}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @empty}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @remote}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @private=0xa010100}, @NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:fsadm_exec_t:s0\x00'}]}, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x8080) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_SCAN_REQ(r6, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x34, r2, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0xfa}, @IEEE802154_ATTR_DURATION={0x5, 0x15, 0x1}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x2}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x9}]}, 0x34}, 0x1, 0x0, 0x0, 0x40080}, 0x10) sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000cc0)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x98, 0x9, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x9}, [@IPSET_ATTR_DATA={0x7c, 0x7, 0x0, 0x1, [@IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0xfc8e}, @IPSET_ATTR_IP_TO={0x18, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}}, @IPSET_ATTR_IFACE={0x14, 0x17, 'veth0_to_bond\x00'}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x7}, @IPSET_ATTR_SKBMARK={0xc, 0x1b, 0x1, 0x0, 0x1}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x1000}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x8568}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}, @IPSET_ATTR_NAMEREF={0x9, 0x13, 'syz0\x00'}]}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x98}, 0x1, 0x0, 0x0, 0x10}, 0x40000) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000d00), r7) sendmsg$NL802154_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e00)={0x54, 0x0, 0x300, 0x70bd2b, 0x25dfdbfc, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x18}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x13}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x8) [ 66.060508] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.062116] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.064328] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.065360] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.068657] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.071168] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.075211] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.076743] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.079053] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.081991] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.083210] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 66.085064] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 66.089646] Bluetooth: hci0: HCI_REQ-0x0c1a [ 66.094331] Bluetooth: hci1: HCI_REQ-0x0c1a [ 66.136610] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 66.137203] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 66.138043] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 66.141754] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 66.143463] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 66.147730] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 66.150221] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 66.151684] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 66.153388] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 66.155023] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.159619] Bluetooth: hci5: HCI_REQ-0x0c1a [ 66.159757] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.161485] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 66.166796] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.168433] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 66.170048] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 66.171588] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 66.173046] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 66.174335] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 66.179746] Bluetooth: hci6: HCI_REQ-0x0c1a [ 66.180501] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.180533] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 66.188074] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 66.189436] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.195569] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 66.197137] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.201461] Bluetooth: hci7: HCI_REQ-0x0c1a [ 66.206040] Bluetooth: hci2: HCI_REQ-0x0c1a [ 68.147292] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 68.147309] Bluetooth: hci1: command 0x0409 tx timeout [ 68.148682] Bluetooth: hci0: command 0x0409 tx timeout [ 68.149140] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 68.211151] Bluetooth: hci5: command 0x0409 tx timeout [ 68.211749] Bluetooth: hci2: command 0x0409 tx timeout [ 68.212342] Bluetooth: hci7: command 0x0409 tx timeout [ 68.212903] Bluetooth: hci6: command 0x0409 tx timeout [ 70.194916] Bluetooth: hci1: command 0x041b tx timeout [ 70.195350] Bluetooth: hci0: command 0x041b tx timeout [ 70.258959] Bluetooth: hci6: command 0x041b tx timeout [ 70.259364] Bluetooth: hci7: command 0x041b tx timeout [ 70.259715] Bluetooth: hci2: command 0x041b tx timeout [ 70.260106] Bluetooth: hci5: command 0x041b tx timeout [ 71.181463] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 71.184302] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 71.187655] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 71.192601] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 71.199556] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 71.204738] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 71.208002] Bluetooth: hci4: HCI_REQ-0x0c1a [ 72.243870] Bluetooth: hci0: command 0x040f tx timeout [ 72.243903] Bluetooth: hci1: command 0x040f tx timeout [ 72.307888] Bluetooth: hci5: command 0x040f tx timeout [ 72.307918] Bluetooth: hci2: command 0x040f tx timeout [ 72.308262] Bluetooth: hci7: command 0x040f tx timeout [ 72.308650] Bluetooth: hci6: command 0x040f tx timeout [ 73.011080] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 73.267921] Bluetooth: hci4: command 0x0409 tx timeout [ 74.290936] Bluetooth: hci0: command 0x0419 tx timeout [ 74.290994] Bluetooth: hci1: command 0x0419 tx timeout [ 74.354847] Bluetooth: hci6: command 0x0419 tx timeout [ 74.355890] Bluetooth: hci7: command 0x0419 tx timeout [ 74.356033] Bluetooth: hci2: command 0x0419 tx timeout [ 74.356295] Bluetooth: hci5: command 0x0419 tx timeout [ 75.315871] Bluetooth: hci4: command 0x041b tx timeout [ 77.362908] Bluetooth: hci4: command 0x040f tx timeout [ 77.618928] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 79.410876] Bluetooth: hci4: command 0x0419 tx timeout [ 80.118716] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.120588] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.121298] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.124648] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.125601] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 80.126557] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.131129] Bluetooth: hci3: HCI_REQ-0x0c1a [ 82.162899] Bluetooth: hci3: command 0x0409 tx timeout [ 84.210932] Bluetooth: hci3: command 0x041b tx timeout [ 86.258902] Bluetooth: hci3: command 0x040f tx timeout [ 88.307010] Bluetooth: hci3: command 0x0419 tx timeout 00:47:30 executing program 6: sendmsg$TIPC_NL_NODE_GET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x24000000) r0 = socket$netlink(0x10, 0x3, 0x15) sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000400)={0xbc, 0x0, 0x20, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DAEMON={0x50, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xfd}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @remote}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x64010102}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x7}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80000000}, @IPVS_CMD_ATTR_DEST={0x20, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x1}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast2}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x2}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x7e}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1f}]}, 0xbc}, 0x1, 0x0, 0x0, 0x4000800}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000004c0)='cpuset.memory_pressure\x00', 0x0, 0x0) r2 = timerfd_create(0x0, 0x0) timerfd_settime(r2, 0x0, &(0x7f0000000100)={{0x77359400}, {0x0, 0x3938700}}, 0x0) sendmsg$netlink(r1, &(0x7f0000001800)={&(0x7f0000000500)=@proc={0x10, 0x0, 0x25dfdbfc, 0x28300800}, 0xc, &(0x7f0000001780)=[{&(0x7f0000000540)={0x120c, 0x2c, 0x20, 0x70bd25, 0x25dfdbfd, "", [@nested={0x101, 0x2, 0x0, 0x1, [@generic="bb3474e394167233d8109a2cad75", @generic="78df4776e4e10f9f7e155ab6c23099f04db19c7208e3f18401d736d512691369f5adfbb5c2a2ae6b3d43aab81f40fd383b67921f76a03f9779f3f9c0f379ac72a70f5bc9b92eb3855da94e01069dc8077339436121e1014129ddc0c6a883c2265c3440374de19bca3fa0590fb92c79c0242a754b9f52ff68379ff19b62381ef0015034f646cf4a0efa43b9fe5445b4ec881b615ca0d3fddcb9bf52f2680fe210c0e636690dc55b", @typed={0x8, 0x71, 0x0, 0x0, @fd=r0}, @generic="182f67da51a702fa2afdbcbc9c390618c63a8f67579faf83833e6c6cfbcebba9456920fbfce9bd82003c13d67eace8cb8352f63704329cb1963589b6b87d11b4"]}, @nested={0x104a, 0x1f, 0x0, 0x1, [@typed={0x4, 0x13}, @generic="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", @typed={0x8, 0x8b, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="fb00b152c3a311f6f4f577722dad185f4ae02d62a85228ab3ad45e7868ee8f411376ad5dbf308dd7b0d61f4232bba92210ad", @typed={0x8, 0x19, 0x0, 0x0, @uid=0xee00}]}, @generic="890eba365e912bfb35e454c35dadcf1f1c2c477293f720202724547dd799f45310c49887f861892381f126f0f9f8c4de21c2208df2f2ab29d101f244a9342c3cddf0a8654faf2a40d78a8bd8a7e25a7e36e5b49b431d87ba4277e088ac9eb6a9387583fb337778c2fb8b7b479151b5c51bd702a34a5cdb310753213a9e84b5e85a42bf2ff22f6c7627643a1983700a13c0e0910365f094b8fc4170c9ff328f2add9a82fc55bf42aa84352f"]}, 0x120c}], 0x1, &(0x7f0000001880)=ANY=[@ANYBLOB="80000000ffffff00010000000a7ddf9a1a99fd69133b4690a032fc886b3badf5cdeb01000000", @ANYRES32=r2, @ANYRES32=r0], 0x18, 0x4000010}, 0x800) fork() timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000001840)={{}, {0x77359400}}, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/pcmcia_core', 0x0, 0x0) r4 = syz_open_dev$vcsn(&(0x7f00000019c0), 0x1, 0x400000) timerfd_settime(r4, 0x0, &(0x7f0000001a00)={{0x77359400}, {0x77359400}}, &(0x7f0000001a40)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000001940)={{0x1, 0x1, 0x18, r3, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) openat$cgroup_devices(r5, &(0x7f0000001980)='devices.deny\x00', 0x2, 0x0) mknodat$loop(r3, &(0x7f0000001580)='./file0\x00', 0x0, 0x1) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r3, 0x89f7, &(0x7f00000017c0)={'syztnl2\x00', &(0x7f00000018c0)={'syztnl0\x00', 0x0, 0x29, 0x9, 0x1, 0x2, 0x15, @rand_addr=' \x01\x00', @ipv4={'\x00', '\xff\xff', @local}, 0x7, 0x80, 0xffff, 0x100}}) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x220}, 0x1, 0x0, 0x0, 0x800}, 0x19) 00:47:30 executing program 2: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000080), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) unshare(0x20000000) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000001780)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0xf9fd) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/pcmcia_core', 0x0, 0x0) mknodat$loop(r4, &(0x7f0000001580)='./file0\x00', 0x0, 0x1) r5 = timerfd_create(0x0, 0x0) timerfd_settime(r5, 0x0, &(0x7f0000000100)={{0x77359400}, {0x0, 0x3938700}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3, {0xee00, 0xffffffffffffffff}}, './file0\x00'}) r7 = syz_open_dev$tty20(0xc, 0x4, 0x0) io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f00000001c0)=[r5, r6, r7], 0x3) io_uring_enter(r3, 0x54e0, 0x6c93, 0x3, &(0x7f0000000140)={[0x3]}, 0x8) 00:47:31 executing program 6: r0 = perf_event_open(&(0x7f0000002600)={0x0, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = timerfd_create(0x0, 0x0) timerfd_settime(r1, 0x0, &(0x7f0000000100)={{0x77359400}, {0x0, 0x3938700}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, @in_args={0x1}}, './file0\x00'}) sendfile(r1, r2, 0x0, 0x5) 00:47:31 executing program 2: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000080), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) unshare(0x20000000) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000001780)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0xf9fd) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/pcmcia_core', 0x0, 0x0) mknodat$loop(r4, &(0x7f0000001580)='./file0\x00', 0x0, 0x1) r5 = timerfd_create(0x0, 0x0) timerfd_settime(r5, 0x0, &(0x7f0000000100)={{0x77359400}, {0x0, 0x3938700}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000180)={{0x1, 0x1, 0x18, r3, {0xee00, 0xffffffffffffffff}}, './file0\x00'}) r7 = syz_open_dev$tty20(0xc, 0x4, 0x0) io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f00000001c0)=[r5, r6, r7], 0x3) io_uring_enter(r3, 0x54e0, 0x6c93, 0x3, &(0x7f0000000140)={[0x3]}, 0x8) [ 115.596063] audit: type=1400 audit(1665103651.233:7): avc: denied { open } for pid=3682 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 115.597442] audit: type=1400 audit(1665103651.234:8): avc: denied { kernel } for pid=3682 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 00:47:31 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() r1 = syz_open_procfs(r0, &(0x7f00000012c0)='smaps_rollup\x00') ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r2, &(0x7f000000c340)={0x0, 0x0, &(0x7f000000c280)}, 0x0) socket$packet(0x11, 0x3, 0x300) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000013c0)='/sys/module/pcmcia_core', 0x0, 0x0) mknodat$loop(r3, &(0x7f0000001580)='./file0\x00', 0x0, 0x1) ioctl$TUNSETOFFLOAD(r3, 0x400454d0, 0xd) r4 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_timeval(r4, 0x1, 0x49, &(0x7f0000000000)={0x77359400}, 0x10) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r1) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r5, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, r6, 0x4, 0x70bd25, 0x25dfdbfd, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x40000) 00:47:31 executing program 6: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x26, &(0x7f0000000200)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000def4655fdef4655f0100ffff53ef010001000000def4655f000000000000000001000000000000000b000000800000000800000052470000620100000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35393734373637303400"/192, 0xc0, 0x400}, {&(0x7f0000010100)="00000000000000000000000026acba7564fc4e5aa2fa9146860a2012010000000c00000000000000def4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="01000000000005000c0000000000000000000000040000004b00000000000000", 0x20, 0x560}, {&(0x7f0000010300)="030000000400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000120000002200000060000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010500)="ffff0f00ff0f00000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x880, 0x1000}, {&(0x7f0000010e00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x2000}, {&(0x7f0000010f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x2800}, {&(0x7f0000011000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x3000}, {&(0x7f0000011100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x3800}, {&(0x7f0000011200)='\x00\x00\x00\x00\x00\b\x00'/32, 0xffffffffffffffe9, 0x4000}, {&(0x7f0000011300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x4802}, {&(0x7f0000011400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x5000}, {&(0x7f0000011500)='\x00'/32, 0x20, 0x5800}, {&(0x7f0000011600)="504d4d00504d4dffdef4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x6000}, {&(0x7f0000000040)="111fc0d901000000803a0900803a09000010000106000000400000004137f367c605000000", 0x25, 0x6800}, {&(0x7f0000011800)="0200000000000000000000000000000000000000000000000008000000000000", 0x20, 0x6c00}, {&(0x7f0000011900)="0300"/32, 0x20, 0x7000}, {&(0x7f0000011a00)="0400"/32, 0x20, 0x7400}, {&(0x7f0000011b00)="0500"/32, 0x20, 0x7800}, {&(0x7f0000011c00)="00000000000000000100000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000009800"/96, 0x60, 0x7c00}, {&(0x7f0000011d00)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x8000}, {&(0x7f0000011e00)="0200"/32, 0x20, 0x8400}, {&(0x7f0000011f00)="0300"/32, 0x20, 0x8800}, {&(0x7f0000012000)="0400"/32, 0x20, 0x8c00}, {&(0x7f0000012100)="ffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0500"/2080, 0x820, 0x9000}, {&(0x7f0000012a00)="00000000000000000100000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000009800"/96, 0x60, 0x9c00}, {&(0x7f0000012b00)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x10000}, {&(0x7f0000012c00)="000002ea0100000001000000270f240c000000000000000000000000000000000601f8070000000006000000779b539778617474723100000601f00700000000060000007498539778617474723200"/96, 0x60, 0x107fc}, {&(0x7f0000012d00)="00000000000000000000000000000000786174747232000078617474723100000000000000000000def4655fdef4655fdef4655f00"/64, 0x40, 0x10fe0}, {&(0x7f0000012e00)="ed41000000080000def4655fdef4655fdef4655f00000000000004000400000000000800050000000af301000400000000000000000000000100000003000000", 0x40, 0x11080}, {&(0x7f0000012f00)="8081000000180000def4655fdef4655fdef4655f00000000000001000c00000010000800000000000af30100040000000000000000000000030000000d000000", 0x40, 0x11100}, {&(0x7f0000013000)="8081000000180000def4655fdef4655fdef4655f00000000000001000c00000010000800000000000af30200040000000000000000000000020000001000000002000000010000001300"/96, 0x60, 0x4000011180}, {&(0x7f0000013100)="c041000000400000def4655fdef4655fdef4655f00000000000002002000000000000800000000000af301000400000000f98000000000000800000004000000", 0x40, 0x11500}, {&(0x7f0000013200)="ed41000000080000def4655fdef4655fdef4655f00000000000002000400000000000800030000000af3010004000000000000000000000001000000200000000000000000000000000000000000000000000000000000000000000000000000000000006038208e000000000000000000000000000000000000000000000000ed8100001a040000def4655fdef4655fdef4655f00000000000001000400000000000800010000000af301000400000000000000000000000100000024000000000000000000000000000000000000000000000000000000000000000000000000000000df03f451000000000000000000000000000000000000000000000000ffa1000026000000def4655fdef4655fdef4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3539373437363730342f66696c65302f66696c65300000000000000000000000000000000000000000000077da14d0000000000000000000000000000000000000000000000000ed8100000a000000def4655fdef4655fdef4655f00000000000001000800000000000800010000000af301000400000000000000000000000100000025000000000000000000000000000000000000000000000000000000000000000000000000000000d75d3bef210000000000000000000000000000000000000000000000ed81000028230000def4655fdef4655fdef4655f00000000000002001400000000000800010000000af30100040000000000000000000000050000002600000000000000000000000000000000000000000000000000000000000000000000000000000009541ef4000000000000000000000000000000000000000000000000ed81000064000000def4655fdef4655fdef4655f00000000000001000400000000000800010000000af30100040000000000000000000000010000002b000000000000000000000000000000000000000000000000000000000000000000000000000000f3d82c1b00"/768, 0x300, 0x11580}, {&(0x7f0000013500)="73797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b15dc32978cca01f171c604ccaaf81a616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c", 0x420, 0x12000}, {&(0x7f0000013a00)='syzkallers\x00'/32, 0x20, 0x12800}, {&(0x7f0000013b00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x15800}], 0x0, &(0x7f0000013c00)) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x20, &(0x7f0000000140)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@fscache}], [{@smackfsroot}, {@smackfstransmute={'smackfstransmute', 0x3d, '*/@'}}, {@subj_role={'subj_role', 0x3d, ':^/-:+'}}, {@fsname={'fsname', 0x3d, 'ext4\x00'}}]}}) [ 115.781286] ------------[ cut here ]------------ [ 115.781308] [ 115.781312] ====================================================== [ 115.781315] WARNING: possible circular locking dependency detected [ 115.781320] 6.0.0-next-20221006 #1 Not tainted [ 115.781327] ------------------------------------------------------ [ 115.781330] syz-executor.2/3698 is trying to acquire lock: [ 115.781336] ffffffff853fac98 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 115.781377] [ 115.781377] but task is already holding lock: [ 115.781379] ffff88800f33f820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 115.781405] [ 115.781405] which lock already depends on the new lock. [ 115.781405] [ 115.781408] [ 115.781408] the existing dependency chain (in reverse order) is: [ 115.781411] [ 115.781411] -> #3 (&ctx->lock){....}-{2:2}: [ 115.781424] _raw_spin_lock+0x2a/0x40 [ 115.781436] __perf_event_task_sched_out+0x53b/0x18d0 [ 115.781447] __schedule+0xedd/0x2470 [ 115.781462] schedule+0xda/0x1b0 [ 115.781477] exit_to_user_mode_prepare+0x114/0x1a0 [ 115.781489] syscall_exit_to_user_mode+0x19/0x40 [ 115.781503] do_syscall_64+0x48/0x90 [ 115.781513] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.781527] [ 115.781527] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 115.781540] _raw_spin_lock_nested+0x30/0x40 [ 115.781552] raw_spin_rq_lock_nested+0x1e/0x30 [ 115.781565] task_fork_fair+0x63/0x4d0 [ 115.781581] sched_cgroup_fork+0x3d0/0x540 [ 115.781595] copy_process+0x4183/0x6e20 [ 115.781605] kernel_clone+0xe7/0x890 [ 115.781615] user_mode_thread+0xad/0xf0 [ 115.781625] rest_init+0x24/0x250 [ 115.781638] arch_call_rest_init+0xf/0x14 [ 115.781649] start_kernel+0x4c6/0x4eb [ 115.781659] secondary_startup_64_no_verify+0xe0/0xeb [ 115.781673] [ 115.781673] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 115.781687] _raw_spin_lock_irqsave+0x39/0x60 [ 115.781699] try_to_wake_up+0xab/0x1930 [ 115.781712] up+0x75/0xb0 [ 115.781727] __up_console_sem+0x6e/0x80 [ 115.781743] console_unlock+0x46a/0x590 [ 115.781758] vt_ioctl+0x2822/0x2ca0 [ 115.781770] tty_ioctl+0x785/0x16b0 [ 115.781782] __x64_sys_ioctl+0x19a/0x210 [ 115.781795] do_syscall_64+0x3b/0x90 [ 115.781810] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.781826] [ 115.781826] -> #0 ((console_sem).lock){....}-{2:2}: [ 115.781840] __lock_acquire+0x2a02/0x5e70 [ 115.781857] lock_acquire+0x1a2/0x530 [ 115.781872] _raw_spin_lock_irqsave+0x39/0x60 [ 115.781884] down_trylock+0xe/0x70 [ 115.781900] __down_trylock_console_sem+0x3b/0xd0 [ 115.781916] vprintk_emit+0x16b/0x560 [ 115.781932] vprintk+0x84/0xa0 [ 115.781947] _printk+0xba/0xf1 [ 115.781960] report_bug.cold+0x72/0xab [ 115.781969] handle_bug+0x3c/0x70 [ 115.781978] exc_invalid_op+0x14/0x50 [ 115.781989] asm_exc_invalid_op+0x16/0x20 [ 115.782002] group_sched_out.part.0+0x2c7/0x460 [ 115.782019] ctx_sched_out+0x8f1/0xc10 [ 115.782035] __perf_event_task_sched_out+0x6d0/0x18d0 [ 115.782046] __schedule+0xedd/0x2470 [ 115.782061] schedule+0xda/0x1b0 [ 115.782076] exit_to_user_mode_prepare+0x114/0x1a0 [ 115.782086] syscall_exit_to_user_mode+0x19/0x40 [ 115.782100] do_syscall_64+0x48/0x90 [ 115.782110] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.782123] [ 115.782123] other info that might help us debug this: [ 115.782123] [ 115.782126] Chain exists of: [ 115.782126] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 115.782126] [ 115.782140] Possible unsafe locking scenario: [ 115.782140] [ 115.782143] CPU0 CPU1 [ 115.782145] ---- ---- [ 115.782147] lock(&ctx->lock); [ 115.782152] lock(&rq->__lock); [ 115.782159] lock(&ctx->lock); [ 115.782165] lock((console_sem).lock); [ 115.782170] [ 115.782170] *** DEADLOCK *** [ 115.782170] [ 115.782172] 2 locks held by syz-executor.2/3698: [ 115.782179] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 115.782209] #1: ffff88800f33f820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 115.782235] [ 115.782235] stack backtrace: [ 115.782237] CPU: 0 PID: 3698 Comm: syz-executor.2 Not tainted 6.0.0-next-20221006 #1 [ 115.782250] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.782256] Call Trace: [ 115.782259] [ 115.782264] dump_stack_lvl+0x8b/0xb3 [ 115.782275] check_noncircular+0x263/0x2e0 [ 115.782291] ? format_decode+0x26c/0xb50 [ 115.782308] ? print_circular_bug+0x450/0x450 [ 115.782325] ? simple_strtoul+0x30/0x30 [ 115.782342] ? format_decode+0x26c/0xb50 [ 115.782360] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 115.782377] __lock_acquire+0x2a02/0x5e70 [ 115.782399] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 115.782421] lock_acquire+0x1a2/0x530 [ 115.782437] ? down_trylock+0xe/0x70 [ 115.782456] ? lock_release+0x750/0x750 [ 115.782476] ? vprintk+0x84/0xa0 [ 115.782494] _raw_spin_lock_irqsave+0x39/0x60 [ 115.782506] ? down_trylock+0xe/0x70 [ 115.782523] down_trylock+0xe/0x70 [ 115.782540] ? vprintk+0x84/0xa0 [ 115.782557] __down_trylock_console_sem+0x3b/0xd0 [ 115.782574] vprintk_emit+0x16b/0x560 [ 115.782593] vprintk+0x84/0xa0 [ 115.782610] _printk+0xba/0xf1 [ 115.782622] ? record_print_text.cold+0x16/0x16 [ 115.782639] ? report_bug.cold+0x66/0xab [ 115.782650] ? group_sched_out.part.0+0x2c7/0x460 [ 115.782669] report_bug.cold+0x72/0xab [ 115.782681] handle_bug+0x3c/0x70 [ 115.782691] exc_invalid_op+0x14/0x50 [ 115.782702] asm_exc_invalid_op+0x16/0x20 [ 115.782716] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 115.782737] Code: 5e 41 5f e9 5b a5 ef ff e8 56 a5 ef ff 65 8b 1d 1b fe ab 7e 31 ff 89 de e8 f6 a1 ef ff 85 db 0f 84 8a 00 00 00 e8 39 a5 ef ff <0f> 0b e9 a5 fe ff ff e8 2d a5 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 115.782748] RSP: 0018:ffff88803f58fc48 EFLAGS: 00010006 [ 115.782757] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 115.782764] RDX: ffff88803f56b580 RSI: ffffffff815677b7 RDI: 0000000000000005 [ 115.782772] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 115.782779] R10: 0000000000000000 R11: ffffffff865b601b R12: ffff88800f33f800 [ 115.782786] R13: ffff88806ce3d2c0 R14: ffffffff8547d200 R15: 0000000000000002 [ 115.782797] ? group_sched_out.part.0+0x2c7/0x460 [ 115.782817] ? group_sched_out.part.0+0x2c7/0x460 [ 115.782837] ctx_sched_out+0x8f1/0xc10 [ 115.782856] __perf_event_task_sched_out+0x6d0/0x18d0 [ 115.782870] ? lock_is_held_type+0xd7/0x130 [ 115.782885] ? __perf_cgroup_move+0x160/0x160 [ 115.782896] ? set_next_entity+0x304/0x550 [ 115.782913] ? update_curr+0x267/0x740 [ 115.782931] ? lock_is_held_type+0xd7/0x130 [ 115.782947] __schedule+0xedd/0x2470 [ 115.782965] ? io_schedule_timeout+0x150/0x150 [ 115.782983] ? rcu_read_lock_sched_held+0x3e/0x80 [ 115.783003] schedule+0xda/0x1b0 [ 115.783019] exit_to_user_mode_prepare+0x114/0x1a0 [ 115.783031] syscall_exit_to_user_mode+0x19/0x40 [ 115.783046] do_syscall_64+0x48/0x90 [ 115.783057] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.783071] RIP: 0033:0x7f1d1a554b19 [ 115.783079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 115.783090] RSP: 002b:00007f1d17aca218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 115.783100] RAX: 0000000000000001 RBX: 00007f1d1a667f68 RCX: 00007f1d1a554b19 [ 115.783108] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1d1a667f6c [ 115.783115] RBP: 00007f1d1a667f60 R08: 000000000000000e R09: 0000000000000000 [ 115.783122] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f1d1a667f6c [ 115.783129] R13: 00007ffcb98ea51f R14: 00007f1d17aca300 R15: 0000000000022000 [ 115.783142] [ 115.839632] WARNING: CPU: 0 PID: 3698 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 115.840283] Modules linked in: [ 115.840516] CPU: 0 PID: 3698 Comm: syz-executor.2 Not tainted 6.0.0-next-20221006 #1 [ 115.841063] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.841631] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 115.842014] Code: 5e 41 5f e9 5b a5 ef ff e8 56 a5 ef ff 65 8b 1d 1b fe ab 7e 31 ff 89 de e8 f6 a1 ef ff 85 db 0f 84 8a 00 00 00 e8 39 a5 ef ff <0f> 0b e9 a5 fe ff ff e8 2d a5 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 115.843255] RSP: 0018:ffff88803f58fc48 EFLAGS: 00010006 [ 115.843621] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 115.844118] RDX: ffff88803f56b580 RSI: ffffffff815677b7 RDI: 0000000000000005 [ 115.844615] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 115.845113] R10: 0000000000000000 R11: ffffffff865b601b R12: ffff88800f33f800 [ 115.845618] R13: ffff88806ce3d2c0 R14: ffffffff8547d200 R15: 0000000000000002 [ 115.846124] FS: 00007f1d17aca700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 115.846676] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.847079] CR2: 000055a9316cc8b8 CR3: 0000000017efa000 CR4: 0000000000350ef0 [ 115.847564] Call Trace: [ 115.847750] [ 115.847920] ctx_sched_out+0x8f1/0xc10 [ 115.848207] __perf_event_task_sched_out+0x6d0/0x18d0 [ 115.848579] ? lock_is_held_type+0xd7/0x130 [ 115.848892] ? __perf_cgroup_move+0x160/0x160 [ 115.849206] ? set_next_entity+0x304/0x550 [ 115.849511] ? update_curr+0x267/0x740 [ 115.849799] ? lock_is_held_type+0xd7/0x130 [ 115.850109] __schedule+0xedd/0x2470 [ 115.850382] ? io_schedule_timeout+0x150/0x150 [ 115.850713] ? rcu_read_lock_sched_held+0x3e/0x80 [ 115.851055] schedule+0xda/0x1b0 [ 115.851296] exit_to_user_mode_prepare+0x114/0x1a0 [ 115.851642] syscall_exit_to_user_mode+0x19/0x40 [ 115.851985] do_syscall_64+0x48/0x90 [ 115.852247] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.852614] RIP: 0033:0x7f1d1a554b19 [ 115.852897] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 115.854146] RSP: 002b:00007f1d17aca218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 115.854684] RAX: 0000000000000001 RBX: 00007f1d1a667f68 RCX: 00007f1d1a554b19 [ 115.855179] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1d1a667f6c [ 115.855672] RBP: 00007f1d1a667f60 R08: 000000000000000e R09: 0000000000000000 [ 115.856169] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f1d1a667f6c [ 115.856668] R13: 00007ffcb98ea51f R14: 00007f1d17aca300 R15: 0000000000022000 [ 115.857164] [ 115.857332] irq event stamp: 472 [ 115.857570] hardirqs last enabled at (471): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 115.858210] hardirqs last disabled at (472): [] __schedule+0x1225/0x2470 [ 115.858785] softirqs last enabled at (296): [] __irq_exit_rcu+0x11b/0x180 [ 115.859365] softirqs last disabled at (159): [] __irq_exit_rcu+0x11b/0x180 [ 115.859955] ---[ end trace 0000000000000000 ]--- 00:47:31 executing program 1: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000440)={r0, 0x2, 0x7fffffff, 0x800}) setsockopt$bt_BT_CHANNEL_POLICY(r1, 0x112, 0xa, &(0x7f0000000080)=0x7, 0x4) setsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f0000000040)=0x6, 0x2) setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x0) 00:47:31 executing program 1: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000080)=ANY=[@ANYBLOB="800000000000b3952863f8b84c0097bdfcd2670bfe850003000000"]) r1 = timerfd_create(0x0, 0x0) timerfd_settime(r1, 0x0, &(0x7f0000000100)={{0x77359400}, {0x0, 0x3938700}}, 0x0) r2 = timerfd_create(0x0, 0x0) clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4) timerfd_settime(r2, 0x1, &(0x7f0000000100)={{r3, r4+60000000}, {0x0, 0x3938700}}, 0x0) r5 = timerfd_create(0x0, 0x0) timerfd_settime(r5, 0x0, &(0x7f0000000100)={{0x77359400}, {0x0, 0x3938700}}, 0x0) close(r5) poll(&(0x7f0000000000)=[{r0, 0xa000}, {r1}, {r2, 0x1284}], 0x3, 0xffff0001) [ 116.193490] Zero length message leads to an empty skb [ 116.203129] program syz-executor.1 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 116.330117] loop6: detected capacity change from 0 to 65809 [ 116.353866] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 117.026666] program syz-executor.1 is using a deprecated SCSI ioctl, please convert it to SG_IO VM DIAGNOSIS: 00:47:31 Registers: info registers vcpu 0 RAX=0000000000000033 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823c0801 RDI=ffffffff8765c9e0 RBP=ffffffff8765c9a0 RSP=ffff88803f58f690 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000033 R11=0000000000000001 R12=0000000000000033 R13=ffffffff8765c9a0 R14=0000000000000010 R15=ffffffff823c07f0 RIP=ffffffff823c0859 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1d17aca700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055a9316cc8b8 CR3=0000000017efa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f1d1a63b7c000007f1d1a63b7c8 XMM02=00007f1d1a63b7e000007f1d1a63b7c0 XMM03=00007f1d1a63b7c800007f1d1a63b7c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000080000000 RBX=ffff88802112ba00 RCX=0000000000000000 RDX=ffffffff84110a70 RSI=ffff88802112ba00 RDI=ffff888000000000 RBP=0000000000000000 RSP=ffff88803f4978a0 R8 =ffffea0000000000 R9 =0000000000000000 R10=fffffbfff0b6106a R11=0000000000000001 R12=0000000000000000 R13=ffff888007c75000 R14=ffff888007c75000 R15=ffff88802112ba00 RIP=ffffffff81786fba RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa353eb8b70 CR3=000000001e0e0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=2e6f747079726362696c2f756e672d78 XMM02=00312e312e6f732e6f74707972636269 XMM03=6c2f756e672d78756e696c2d34365f36 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000