Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:48295' (ECDSA) to the list of known hosts. 2022/10/07 05:03:14 fuzzer started 2022/10/07 05:03:14 dialing manager at localhost:37161 syzkaller login: [ 36.942760] cgroup: Unknown subsys name 'net' [ 37.025627] cgroup: Unknown subsys name 'rlimit' 2022/10/07 05:03:27 syscalls: 2215 2022/10/07 05:03:27 code coverage: enabled 2022/10/07 05:03:27 comparison tracing: enabled 2022/10/07 05:03:27 extra coverage: enabled 2022/10/07 05:03:27 setuid sandbox: enabled 2022/10/07 05:03:27 namespace sandbox: enabled 2022/10/07 05:03:27 Android sandbox: enabled 2022/10/07 05:03:27 fault injection: enabled 2022/10/07 05:03:27 leak checking: enabled 2022/10/07 05:03:27 net packet injection: enabled 2022/10/07 05:03:27 net device setup: enabled 2022/10/07 05:03:27 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/07 05:03:27 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/07 05:03:27 USB emulation: enabled 2022/10/07 05:03:27 hci packet injection: enabled 2022/10/07 05:03:27 wifi device emulation: failed to parse kernel version (6.0.0-next-20221006) 2022/10/07 05:03:27 802.15.4 emulation: enabled 2022/10/07 05:03:28 fetching corpus: 50, signal 31853/33510 (executing program) 2022/10/07 05:03:28 fetching corpus: 100, signal 42639/45783 (executing program) 2022/10/07 05:03:28 fetching corpus: 150, signal 49468/53967 (executing program) 2022/10/07 05:03:28 fetching corpus: 200, signal 54430/60264 (executing program) 2022/10/07 05:03:28 fetching corpus: 250, signal 59733/66767 (executing program) 2022/10/07 05:03:28 fetching corpus: 300, signal 63422/71663 (executing program) 2022/10/07 05:03:28 fetching corpus: 350, signal 67239/76605 (executing program) 2022/10/07 05:03:28 fetching corpus: 400, signal 72148/82446 (executing program) 2022/10/07 05:03:28 fetching corpus: 450, signal 76708/87940 (executing program) 2022/10/07 05:03:28 fetching corpus: 500, signal 78826/91073 (executing program) 2022/10/07 05:03:29 fetching corpus: 550, signal 82130/95203 (executing program) 2022/10/07 05:03:29 fetching corpus: 600, signal 83602/97694 (executing program) 2022/10/07 05:03:29 fetching corpus: 650, signal 85585/100558 (executing program) 2022/10/07 05:03:29 fetching corpus: 700, signal 87498/103325 (executing program) 2022/10/07 05:03:29 fetching corpus: 750, signal 89474/106149 (executing program) 2022/10/07 05:03:29 fetching corpus: 800, signal 92230/109575 (executing program) 2022/10/07 05:03:29 fetching corpus: 850, signal 94041/112208 (executing program) 2022/10/07 05:03:29 fetching corpus: 900, signal 95849/114812 (executing program) 2022/10/07 05:03:29 fetching corpus: 950, signal 98004/117643 (executing program) 2022/10/07 05:03:30 fetching corpus: 1000, signal 99596/119979 (executing program) 2022/10/07 05:03:30 fetching corpus: 1050, signal 100949/122059 (executing program) 2022/10/07 05:03:30 fetching corpus: 1100, signal 103143/124825 (executing program) 2022/10/07 05:03:30 fetching corpus: 1150, signal 105227/127417 (executing program) 2022/10/07 05:03:30 fetching corpus: 1200, signal 107000/129698 (executing program) 2022/10/07 05:03:30 fetching corpus: 1250, signal 108279/131626 (executing program) 2022/10/07 05:03:30 fetching corpus: 1300, signal 111235/134807 (executing program) 2022/10/07 05:03:30 fetching corpus: 1350, signal 112816/136828 (executing program) 2022/10/07 05:03:30 fetching corpus: 1400, signal 114527/139008 (executing program) 2022/10/07 05:03:31 fetching corpus: 1450, signal 115757/140775 (executing program) 2022/10/07 05:03:31 fetching corpus: 1500, signal 116831/142420 (executing program) 2022/10/07 05:03:31 fetching corpus: 1550, signal 118366/144339 (executing program) 2022/10/07 05:03:31 fetching corpus: 1600, signal 120063/146364 (executing program) 2022/10/07 05:03:31 fetching corpus: 1650, signal 121367/148068 (executing program) 2022/10/07 05:03:31 fetching corpus: 1700, signal 122087/149402 (executing program) 2022/10/07 05:03:31 fetching corpus: 1750, signal 123566/151183 (executing program) 2022/10/07 05:03:31 fetching corpus: 1800, signal 124427/152565 (executing program) 2022/10/07 05:03:31 fetching corpus: 1850, signal 126399/154615 (executing program) 2022/10/07 05:03:32 fetching corpus: 1900, signal 127443/156055 (executing program) 2022/10/07 05:03:32 fetching corpus: 1950, signal 128932/157706 (executing program) 2022/10/07 05:03:32 fetching corpus: 2000, signal 130085/159196 (executing program) 2022/10/07 05:03:32 fetching corpus: 2050, signal 130858/160398 (executing program) 2022/10/07 05:03:32 fetching corpus: 2100, signal 131692/161554 (executing program) 2022/10/07 05:03:32 fetching corpus: 2150, signal 133888/163518 (executing program) 2022/10/07 05:03:32 fetching corpus: 2200, signal 135147/164932 (executing program) 2022/10/07 05:03:32 fetching corpus: 2250, signal 136285/166260 (executing program) 2022/10/07 05:03:32 fetching corpus: 2300, signal 137045/167362 (executing program) 2022/10/07 05:03:32 fetching corpus: 2350, signal 138047/168588 (executing program) 2022/10/07 05:03:33 fetching corpus: 2400, signal 138567/169521 (executing program) 2022/10/07 05:03:33 fetching corpus: 2450, signal 139530/170685 (executing program) 2022/10/07 05:03:33 fetching corpus: 2500, signal 140463/171769 (executing program) 2022/10/07 05:03:33 fetching corpus: 2550, signal 141608/173009 (executing program) 2022/10/07 05:03:33 fetching corpus: 2600, signal 142146/173869 (executing program) 2022/10/07 05:03:33 fetching corpus: 2650, signal 142862/174842 (executing program) 2022/10/07 05:03:33 fetching corpus: 2700, signal 143511/175755 (executing program) 2022/10/07 05:03:33 fetching corpus: 2750, signal 144231/176685 (executing program) 2022/10/07 05:03:33 fetching corpus: 2800, signal 145297/177757 (executing program) 2022/10/07 05:03:33 fetching corpus: 2850, signal 146132/178664 (executing program) 2022/10/07 05:03:33 fetching corpus: 2900, signal 146777/179562 (executing program) 2022/10/07 05:03:33 fetching corpus: 2950, signal 148062/180707 (executing program) 2022/10/07 05:03:34 fetching corpus: 3000, signal 149075/181688 (executing program) 2022/10/07 05:03:34 fetching corpus: 3050, signal 149744/182535 (executing program) 2022/10/07 05:03:34 fetching corpus: 3100, signal 150586/183378 (executing program) 2022/10/07 05:03:34 fetching corpus: 3150, signal 151541/184291 (executing program) 2022/10/07 05:03:34 fetching corpus: 3200, signal 152415/185189 (executing program) 2022/10/07 05:03:34 fetching corpus: 3250, signal 152844/185840 (executing program) 2022/10/07 05:03:34 fetching corpus: 3300, signal 153804/186660 (executing program) 2022/10/07 05:03:34 fetching corpus: 3350, signal 154606/187505 (executing program) 2022/10/07 05:03:34 fetching corpus: 3400, signal 155247/188260 (executing program) 2022/10/07 05:03:34 fetching corpus: 3450, signal 155677/188868 (executing program) 2022/10/07 05:03:35 fetching corpus: 3500, signal 156341/189604 (executing program) 2022/10/07 05:03:35 fetching corpus: 3550, signal 157399/190412 (executing program) 2022/10/07 05:03:35 fetching corpus: 3600, signal 158217/191080 (executing program) 2022/10/07 05:03:35 fetching corpus: 3650, signal 159267/191843 (executing program) 2022/10/07 05:03:35 fetching corpus: 3700, signal 160053/192515 (executing program) 2022/10/07 05:03:35 fetching corpus: 3750, signal 160727/193107 (executing program) 2022/10/07 05:03:35 fetching corpus: 3800, signal 161360/193721 (executing program) 2022/10/07 05:03:35 fetching corpus: 3850, signal 161906/194284 (executing program) 2022/10/07 05:03:35 fetching corpus: 3900, signal 162403/194854 (executing program) 2022/10/07 05:03:35 fetching corpus: 3950, signal 163734/195571 (executing program) 2022/10/07 05:03:36 fetching corpus: 4000, signal 164163/196065 (executing program) 2022/10/07 05:03:36 fetching corpus: 4050, signal 165134/196698 (executing program) 2022/10/07 05:03:36 fetching corpus: 4100, signal 165895/197225 (executing program) 2022/10/07 05:03:36 fetching corpus: 4150, signal 167311/197809 (executing program) 2022/10/07 05:03:36 fetching corpus: 4200, signal 167897/198303 (executing program) 2022/10/07 05:03:36 fetching corpus: 4250, signal 168690/198848 (executing program) 2022/10/07 05:03:36 fetching corpus: 4300, signal 168987/199244 (executing program) 2022/10/07 05:03:36 fetching corpus: 4350, signal 170263/199773 (executing program) 2022/10/07 05:03:36 fetching corpus: 4400, signal 171194/200228 (executing program) 2022/10/07 05:03:37 fetching corpus: 4450, signal 171613/200592 (executing program) 2022/10/07 05:03:37 fetching corpus: 4500, signal 172747/201050 (executing program) 2022/10/07 05:03:37 fetching corpus: 4550, signal 172970/201376 (executing program) 2022/10/07 05:03:37 fetching corpus: 4600, signal 173806/201788 (executing program) 2022/10/07 05:03:37 fetching corpus: 4650, signal 174479/202135 (executing program) 2022/10/07 05:03:37 fetching corpus: 4700, signal 175175/202470 (executing program) 2022/10/07 05:03:37 fetching corpus: 4750, signal 175574/202800 (executing program) 2022/10/07 05:03:37 fetching corpus: 4800, signal 176090/203113 (executing program) 2022/10/07 05:03:37 fetching corpus: 4850, signal 176966/203460 (executing program) 2022/10/07 05:03:37 fetching corpus: 4900, signal 177347/203758 (executing program) 2022/10/07 05:03:38 fetching corpus: 4950, signal 177772/204056 (executing program) 2022/10/07 05:03:38 fetching corpus: 5000, signal 178402/204345 (executing program) 2022/10/07 05:03:38 fetching corpus: 5050, signal 178732/204599 (executing program) 2022/10/07 05:03:38 fetching corpus: 5100, signal 179257/204779 (executing program) 2022/10/07 05:03:38 fetching corpus: 5150, signal 179537/204817 (executing program) 2022/10/07 05:03:38 fetching corpus: 5200, signal 179869/204827 (executing program) 2022/10/07 05:03:38 fetching corpus: 5250, signal 180316/204827 (executing program) 2022/10/07 05:03:38 fetching corpus: 5300, signal 180582/204827 (executing program) 2022/10/07 05:03:38 fetching corpus: 5350, signal 181011/204848 (executing program) 2022/10/07 05:03:38 fetching corpus: 5400, signal 181435/204849 (executing program) 2022/10/07 05:03:38 fetching corpus: 5450, signal 182084/204849 (executing program) 2022/10/07 05:03:39 fetching corpus: 5500, signal 182313/204849 (executing program) 2022/10/07 05:03:39 fetching corpus: 5550, signal 182778/204851 (executing program) 2022/10/07 05:03:39 fetching corpus: 5600, signal 182948/204861 (executing program) 2022/10/07 05:03:39 fetching corpus: 5650, signal 183360/204864 (executing program) 2022/10/07 05:03:39 fetching corpus: 5689, signal 183703/204864 (executing program) 2022/10/07 05:03:39 fetching corpus: 5689, signal 183703/204864 (executing program) 2022/10/07 05:03:42 starting 8 fuzzer processes 05:03:42 executing program 0: getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000000)={{{@in6=@mcast1, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@remote}, 0x0, @in6=@ipv4={""/10, ""/2, @private}}}, &(0x7f0000000100)=0xe8) ioctl$sock_ifreq(0xffffffffffffffff, 0x8947, &(0x7f0000000180)={'ipvlan0\x00', @ifru_data=&(0x7f0000000140)="2ad7d8ea7ad115f76c840ecd69cf0a2c506bba6655b043b7b10d879a54106f23"}) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0), 0x4000, 0x0) sendmsg$ETHTOOL_MSG_FEATURES_SET(r1, &(0x7f0000000dc0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000240)={0xb20, 0x0, 0x2a, 0x70bd2d, 0x25dfdbfb, {}, [@ETHTOOL_A_FEATURES_WANTED={0x27c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xb0, 0x3, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1000}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x80000001}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8001}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '\'*\x00'}]}]}, @ETHTOOL_A_BITSET_MASK={0xfa, 0x5, "cca9d3e251462b27960914a80c29655d8d000a9ea6ac34cc5d5ac5e0e7f2d4d2fb0c0ccd3694560c7a1aacbe2d0e9f82227b595ee5b349cbd6f7fcc13e82f9618ad4fbc4cc5c7ccadde568cb6b5138afa02210633d2611ecd6e2161fc8bb59b7671e33ea53706b076f8ecc14f5fd67f1f17bff685f551ecce5a42f500eda1b22bf6aacfc9737e79d5902c8ea0bfe8873cba4d4f8a592d70bd4c22e858c06107433e9d30cb142fac1a7c9120d88c0fb567330bc12e76e97493ee1265160f6cddf6267af3abcee241d0cac3fed2a3d1cc44fe89baa21b848fc4673075d9ee0a4b541f8ac9f1a3f2530ee56c3ff42149ed12dfed2a3a374"}, @ETHTOOL_A_BITSET_VALUE={0x13, 0x4, "23d853c83757a240a8e610bc7e3e7b"}, @ETHTOOL_A_BITSET_VALUE={0x7e, 0x4, "058b63073ab62a95235023f14706fc257bc401c4c5e91dcfb078505e1358a0e8b68e9821ccfcd1d9ecde2b4bf444211e0adf72e3fb838ab2bed44738c44d0aeeec3b1e965e3ca7a1b6d0e29d8149a534aeef7a324753625890496cd00c730ac4efb988fac29341683fe1a3c353333219d5c1462e69e9ac2f2e32"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x29, 0x5, "9a033a825e693c126fe0bb675f7a18a8ae587ef0c796819d34bba0ba1427bc9d7ad87c9534"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x900000}]}, @ETHTOOL_A_FEATURES_WANTED={0x20, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x13, 0x4, "87c14c5aaa9012e27e68d8f94cc950"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x3}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @ETHTOOL_A_FEATURES_WANTED={0x4d8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0xa8, 0x3, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, ')+x(\\[}\xb7(..}\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x400}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ipvlan0\x00'}]}, {0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7ff}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x8, 0x2, '*%&\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x400}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8001}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_BITS={0x94, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x62f24efe}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8c}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '-\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}, {0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x40, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, '&+)}\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ipvlan0\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x751}, @ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '}]\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}]}, @ETHTOOL_A_BITSET_MASK={0xff, 0x5, "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"}, @ETHTOOL_A_BITSET_VALUE={0x29, 0x4, "05f0d641f3b19fefd8d5da741eb3ac8e711179d4d8b7f64279a8afa2f23a7f8c2d9fa1f0bc"}, @ETHTOOL_A_BITSET_MASK={0xb1, 0x5, "db0f4a073eb8f17006f4e28cd7ba21dd549390ddf10491ed318f43e394640df184cd1cab691b9b149b1c7b0d08a46a4ec518198e79a8a5277a5374ef76327476b56d6495d77331c20c81a85d3c221bcda600a85fa209838830690f34e70ba97f9c544336dfd0b07940619109e7e2045998e1f9d56512753ab5babe533bdfc4f3074648cb663e86681d1b521853ac8d73d7d6edcfe23641a6ac15bbe7f52efaf5f7c5df80d6428f021774d619e4"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0xef, 0x5, "305eb6e8146728339485f0f7e41ff153fbb95016972c40d2fd75553d9b9e053ac01c5ad39de4ea919b098f2ce910ae6c2ff01a5d7fe67ebd0defc144813672df118b3acb4e7c0420a6ec89fb28f49b26dcd8c38c806d99f6064be08fdb04700b464dcce816316138f5c64bc2484833f9b4e84c712026132cc955ebb21d9199907d07f11f47e752ac979102a1de460c56399fdc6288b010064c3f7a449b4eff5a0ccc58b363fea165807c92ea5ca3b44341842488c1684033c0501f90957647db358e7abd735ccffb6b3026b19fcfc0d6dbfac8bee4084c9a4e152992322adbfa137ca4afeb9f907100b0a6"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x3}, @ETHTOOL_A_BITSET_VALUE={0xbc, 0x4, "3e9db401f257f6b491b075b17bfe852b80f8c76e2c07101af12a75f8551d18cc49a5f9a7e802e4abe24e4f019cd52a14e8b746522be22a45a7abd55449e2e4c0b043fd905bf4486a7fd19187cb357535d89211764e2ec62243087d15cbdbd1e1e6198f4928272714e667c7992a40c6ff51a9ca5fea72286b4bb1cc4e155cc6f11bcb3b998a3ce598a4c0224c9445c6d957c7fc2cf2695087c0819aceeada8c2c23bfa242ce03a6f4ee582e1063c05b0e8bf76cb4a143e1e6"}]}, @ETHTOOL_A_FEATURES_WANTED={0x19c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x27, 0x4, "d88e32f726d5e9327946365cdf296bbba43193c3e93d33e50c3874e88ae4d8ccd81a23"}, @ETHTOOL_A_BITSET_MASK={0x38, 0x5, "9975b12f25895a543eab8357509ec07d91a038d1a2ba29d2492b07ac3ede0e743878501c970f4d2e4153e8ff9c73b4ce495df75b"}, @ETHTOOL_A_BITSET_VALUE={0xeb, 0x4, "c66355d1ee69009c65e432872c61c40354fdfe8edcc2d973c3faf71ef8ecff409d123bd6a6ca4b0ec16496f3d200a7d0cb614fccc69cb7fba4e32ddf926a053a5f25d82c1ce53eff6f57d2ddfdae3a7c22e164fdfef3dafc3e3b558f456965253245c61e4fb138a7f8d08048b44c47f66bd5b2024008cb5252b69a9c49339fd17adcc18bd016d20a8079b51ee896ddf5df7eb77ad89caa59c6a6ef1ad37124ad892eb3cd9dabf2f087f78e34ca6b0c87e7e0734709588d72ffb2cadb894c3ec111cbdb5d7bcd5ee50c7a8c85b613e5705cd4a1b3b4ec44a0c2f1aa6924a95498b850b00302be1e"}, @ETHTOOL_A_BITSET_BITS={0x3c, 0x3, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x2}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfffffff8}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xde37}]}]}, @ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}]}]}]}, @ETHTOOL_A_FEATURES_WANTED={0x19c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0xc2, 0x5, "721555504f4e25720256cbb9fccb85e6b01f27052fb3ff9bc9051126f29be2704b906ad9f09b7398931c67a8147ed810409060eba744890b3d40872b48ac13986165f3bee43ea19cf2a4ec6792446810bd0409c6e67f1402dc70591850b97abee34d18d5e07f1bb308b9e1a2c3c9ce54a8f1208ca195949e9d534c577ac7077cb68f48d14d752c65a7eb122f392ec885168b654a2cd0c418ad9faf4de9171ec6ec357f9cd82994ba50503994378665a6ff7fb34276033fe6ae114b610df7"}, @ETHTOOL_A_BITSET_MASK={0xca, 0x5, "aa5f661f8686cead014e1b4d61f8bf13ed68484f6c68cb0f046819f802c016676f612b0a1d8c1b162ec91480e4ed24d54f86a5ab41284f5e0f50793618409e21d0c693c69f9399b9b84af872a63879ab223eb7250e683bfd40282c4ae9041c26930c76d80e8c000844ea88e1b1e9a2a5b09665bfa75581fe9ce77e80e00cf2b0b76de04107e123b40ada1618d3c08bcceb0123e09b61fbbe4590f2a28ce0e56dc3e572efff1bacaea89523e0e31592def42f31535a008a62ea7716154a13c7d28fe19d5ff0f0"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0xb56e}]}, @ETHTOOL_A_FEATURES_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0xb20}, 0x1, 0x0, 0x0, 0x10}, 0x4000081) r2 = fsmount(r1, 0x1, 0x5) getsockopt$inet6_mreq(r2, 0x29, 0x15, &(0x7f0000000e00)={@private0, 0x0}, &(0x7f0000000e40)=0x14) r4 = creat(&(0x7f0000000e80)='./file0\x00', 0x80) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000f00)={'batadv0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000001000)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f40)={0x44, 0x0, 0x8, 0x70bd27, 0x25dfdbff, {}, [@HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x4012}, 0x4) ioctl$sock_inet_SIOCDELRT(r2, 0x890c, &(0x7f0000001040)={0x0, {0x2, 0x4e20, @remote}, {0x2, 0x4e23, @loopback}, {0x2, 0x4e20, @rand_addr=0x64010100}, 0x2, 0x0, 0x0, 0x0, 0x2, 0x0, 0x10001, 0x7fff, 0xffff}) r6 = accept$inet6(r1, 0x0, &(0x7f00000010c0)) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r6, 0x8008f511, &(0x7f0000001100)) r7 = socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$BTRFS_IOC_TREE_SEARCH(r7, 0xd0009411, &(0x7f0000001140)={{0x0, 0x101, 0x2, 0x2, 0x6, 0x8, 0x9, 0x8, 0xff, 0x2, 0x8, 0x4, 0x7b7, 0x1}}) r8 = getuid() getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000002540)={0x0, 0x0}, &(0x7f0000002580)=0xc) fstat(r2, &(0x7f00000025c0)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f0000002140)='ext2\x00', &(0x7f0000002180)='./file1\x00', 0xffff, 0x4, &(0x7f00000024c0)=[{&(0x7f00000021c0)="7ce70e0826a2d68c09e7b2dcf3822a1f6844200018a6553e992e6a5efc895a7e1eaaa17ccfa16541cc65d5c4", 0x2c, 0x5}, {&(0x7f0000002200)="07fb4f0f17e7bf49a2cc3ec1a8d43319d235828e72645b20b61560a7dfda7922979a8fc8f519868ad26cb85912f39f19e0276f1af2c045865f436963985bb6dcf75af4bdc42d262caa1f2f1d980eda526bdf54df9f1ad587fe58bf6291f17fd50ec807648c7a352d7bc35e81226a4073e3d884dec9ee6483a7aca0ae2a2002e2597e0fea2a8df901d7eb612b06e9996ee24ffbfd15de0f5b4ea2b86d9540ce009dfa2c77733de5ff15db62750743c15fc684d647e3039b7af87b1a7c7ae71f6f56a8305a307a186dc85f", 0xca, 0x80000000}, {&(0x7f0000002300)="f0b7354974cc17f7a7828d4389649516d12f028211c449853d3ce6d2b5404b1ae597bd3d7500f909dbd474ba9a9fd7e71b2ece531aeab41a67cfd501f2a23806b8cb33e3abd25e39a7bb4e940b4f40f67c71bc2756a0201e617d9daf87ab60bd12c89563022f3fc601b32dcac3791d19dd70760ad5333662cfcc9cd0ea8c74d823c4c3d77fc4324e592e7228eac69116bbfa97a3a0fda11b7348a71241564abd17a62cc4c033eb33ab70a5e5a83ba848468768cf280cfe534cad99371bcf351f87057c21005e34f8a31b5730982861f3568e0ceac68ed14d3c2986dba8", 0xdd}, {&(0x7f0000002400)="c879816beec14bf54689a4c462c1ee9432d093df68f07ba33e8e50c9d6606e585c80c2fa02137f93dd137a59f4b2f1bf44b244a21ab07cbecf4467c3b54d728f1a00c3ec969526d6d1e1b0e555b710c346619613ca6fc36e96714b434cf60552a7a658dd75d0324ee4c901efe0ce889dfae4bb126523a25d9c32f1168385596e034a224a3ec9c1beb0a051b6fbabf700c1ffb89944", 0x95, 0x80000001}], 0x8000, &(0x7f0000002640)={[{@noauto_da_alloc}, {@sysvgroups}, {@sb={'sb', 0x3d, 0xffffffffffff4542}}, {@resuid={'resuid', 0x3d, r8}}, {@mblk_io_submit}, {@init_itable_val={'init_itable', 0x3d, 0x7}}, {@minixdf}, {@grpjquota_path={'grpjquota', 0x3d, './file0'}}, {@data_writeback}], [{@uid_lt={'uid<', r10}}, {@obj_role={'obj_role', 0x3d, 'wg0\x00'}}, {@smackfsdef={'smackfsdef', 0x3d, 'ipvlan1\x00'}}, {@uid_eq={'uid', 0x3d, r0}}, {@euid_lt={'euid<', r11}}, {@obj_user={'obj_user', 0x3d, '\\*^/^]'}}]}) r12 = syz_open_procfs(r9, &(0x7f0000002780)='net/hci\x00') ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r12, 0x89f2, &(0x7f00000029c0)={'syztnl0\x00', &(0x7f0000002900)={'syztnl0\x00', 0x0, 0x10, 0x20, 0x1d7, 0x3, {{0x1f, 0x4, 0x1, 0x1, 0x7c, 0x66, 0x0, 0x56, 0x29, 0x0, @remote, @rand_addr=0x64010101, {[@timestamp_addr={0x44, 0x24, 0x7d, 0x1, 0x1, [{@broadcast, 0x401}, {@private=0xa010101, 0x7}, {@broadcast, 0x9}, {@rand_addr=0x64010102, 0x3}]}, @lsrr={0x83, 0xb, 0xe9, [@dev={0xac, 0x14, 0x14, 0xf}, @broadcast]}, @cipso={0x86, 0x38, 0x1, [{0x0, 0x2}, {0x5, 0x9, "49942fe5d5f2ee"}, {0x7, 0xb, "8834b111a32264ce44"}, {0x6, 0x2}, {0x6, 0x5, "6fe780"}, {0x0, 0xc, "3b291404918a3ac07c85"}, {0x7, 0x9, "9336f96bfcbf83"}]}]}}}}}) 05:03:42 executing program 1: write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000000)=@unlock_all, 0xb) ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000080)={0x0, @ethernet={0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, @qipcrtr={0x2a, 0xffffffffffffffff, 0x4000}, @phonet={0x23, 0x40, 0x9, 0x6}, 0x8, 0x0, 0x0, 0x0, 0x7, &(0x7f0000000040)='vlan1\x00', 0x180, 0x5, 0x6}) r0 = dup(0xffffffffffffffff) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x8004f50c, &(0x7f0000000100)) getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0xd2, &(0x7f0000000140)=""/214, &(0x7f0000000240)=0xd6) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000280), 0x90000, 0x0) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), r0) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x70, r2, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_PRIVFLAGS_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x400d0}, 0x901) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000440), 0x40002, 0x0) sendmsg$NFT_MSG_GETOBJ(r3, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x38, 0x13, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x7}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000001}, 0x44) r4 = syz_io_uring_complete(0x0) sendmsg$IPSET_CMD_FLUSH(r4, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x24, 0x4, 0x6, 0x5, 0x0, 0x0, {0x7, 0x0, 0x7}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x24008004}, 0x80) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0) sendmsg$TIPC_CMD_SHOW_STATS(r5, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x1c, 0x0, 0x4, 0x70bd29, 0x25dfdbfd}, 0x1c}, 0x1, 0x0, 0x0, 0x20000800}, 0x40000) sendmsg$ETHTOOL_MSG_PAUSE_GET(r4, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x2c, r2, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}]}]}, 0x2c}}, 0x20040000) setsockopt$inet6_IPV6_ADDRFORM(r4, 0x29, 0x1, &(0x7f00000008c0), 0x4) ioctl$FIONCLEX(r1, 0x5450) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000940), r3) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000980)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_MESH_CONFIG(r0, &(0x7f0000000a40)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000a00)={&(0x7f00000009c0)={0x28, r6, 0x300, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x7, 0x37}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 05:03:42 executing program 2: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r0, 0x400, 0x3f, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x6, 0x7f}}}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_REASON_CODE={0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x4801}, 0x4008012) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000140)={0xffffffffffffffff, 0x7, 0xff, 0x6}) sendmsg$TIPC_NL_MEDIA_SET(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x6c, 0x0, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffffffa}]}, @TIPC_NLA_SOCK_CON={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xad}, @TIPC_NLA_CON_FLAG={0x8}]}]}, @TIPC_NLA_PUBL={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffffff8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x80) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x6c, r0, 0x9112f70ff88f84b4, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_STA_FLAGS={0x10, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_AUTHENTICATED={0x4}]}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x2}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x9, 0x80000000}}, @NL80211_ATTR_STA_TX_POWER_SETTING={0x5, 0x113, 0x1}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x2}, @NL80211_ATTR_STA_FLAGS={0x1c, 0x11, 0x0, 0x1, [@NL80211_STA_FLAG_TDLS_PEER={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_AUTHORIZED={0x4}, @NL80211_STA_FLAG_ASSOCIATED={0x4}]}, @NL80211_ATTR_STA_VLAN={0x8, 0x14, r2}]}, 0x6c}, 0x1, 0x0, 0x0, 0x1}, 0x20000000) sendmsg$TIPC_CMD_GET_BEARER_NAMES(r1, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, 0x0, 0x2, 0x70bd2a, 0x25dfdbfc, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x15}, 0x24008800) ioctl$sock_SIOCGIFBR(r1, 0x8940, &(0x7f0000000540)=@generic={0x2, 0x7, 0x8000}) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000580)='blkio.bfq.avg_queue_size\x00', 0x0, 0x0) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000005c0), 0xa0001, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r1, 0x84009422, &(0x7f0000000680)={0x0, 0x0, {}, {}, {0x0, @usage, 0x0}}) ioctl$BTRFS_IOC_RM_DEV_V2(r3, 0x5000943a, &(0x7f0000000a80)={{r4}, 0x0, 0x8, @inherit={0x80, &(0x7f0000000600)={0x1, 0x7, 0x7, 0x8001, {0x10, 0x80, 0x40, 0x19e1, 0x10000}, [0x7, 0xbd1d, 0x401, 0x0, 0x9, 0x200, 0xff]}}, @devid=r5}) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001a80), r1) ioctl$FS_IOC_MEASURE_VERITY(r1, 0xc0046686, &(0x7f0000001ac0)={0x4, 0xe8, "b08f3f537f81cf49bf9837b3d60265bb12eb7c15276a02c7a278c924d169e551aa6d010278514d857870ccaa809d9c0dc612af1cf23e7ce2c22696bef9ee26dc5c0d1f0cb0bb355cf6a9847c5c79ca2a2e0bd883cd6a3b906524b9d01ffb29bb3be38bf902ea0ef9c635ba2cf6a8d52d7ed268daa55ffecc3fb61a0d0c20bd8cd9b19b3a0953880dbf7fb24be8ef21eaabfb3342eb4a13d86d1ebd96c5040c860ebc3ab0fde681135e673cc27ba945eee485fcbdfaa824077c5dd3b8cb592b5aff2e1c71c3f541a73bd9426f95b212d7d9e4e153472e841dd3f94dbcec6baa30035bd4dfbe659142"}) sendmsg$NL80211_CMD_UPDATE_FT_IES(r1, &(0x7f0000001c80)={&(0x7f0000001bc0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001c40)={&(0x7f0000001c00)={0x24, r6, 0x100, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MDID={0x6, 0xb1, 0x8}, @NL80211_ATTR_MDID={0x6, 0xb1, 0x8000}]}, 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x844) r7 = fcntl$dupfd(r4, 0x0, r3) sendmsg$NL80211_CMD_SET_PMKSA(r7, &(0x7f0000001dc0)={&(0x7f0000001cc0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001d80)={&(0x7f0000001d00)={0x50, r0, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x54f8370a, 0x23}}}}, [@NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x39}, @NL80211_ATTR_PMKID={0x14, 0x55, "750223f60304d402283089a94736659f"}, @NL80211_ATTR_PMKID={0x14, 0x55, "967ad18f780e097a0e2d5a7d91743106"}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, &(0x7f0000001e00)={0x96, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x7, "5f0ad3ecf8742a"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r4, 0xd000943e, &(0x7f0000002e00)={0x0, r8, "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", "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"}) sendmsg$FOU_CMD_ADD(r7, &(0x7f0000003f00)={&(0x7f0000003e00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000003ec0)={&(0x7f0000003e80)={0x1c, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e24}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x44) 05:03:42 executing program 3: ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) setsockopt$inet_int(r0, 0x0, 0x18, &(0x7f0000000040), 0x4) io_setup(0x5724a3bc, &(0x7f0000000080)=0x0) io_cancel(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3, 0xe6f5, r0, &(0x7f00000000c0)="b0a0bf4cdf9e18fa61396dfb3069f08c7d10f0e5d7a686a20c750ad95815b51ce3fb36c6d164c825d3cdd12a07cb9bc467f31fb62634c4d4185050f04d1a28809e374be22f2984e5434cc042cefc6dbe8c3855b3676b7cfd2a1933c532b621bbbbab24804df3cbe57ca5cf9918607d7e7b5596928bf670c62162db7135557b4919c2b065e28a8e9318cb28f78ac0cd35d54a9c764ffdc2d79a23b3208e242ba5159a19b92799", 0xa6, 0x0, 0x0, 0x3, r0}, &(0x7f00000001c0)) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) bind$inet(r2, &(0x7f0000000240)={0x2, 0x4e23, @loopback}, 0x10) connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x6, @rand_addr=0x10000}, 0x10) bind$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x2d}}, 0x10) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7187f200}}, './file0\x00'}) io_uring_register$IORING_REGISTER_FILES_UPDATE(r3, 0x6, &(0x7f0000000380)={0x8, 0x0, &(0x7f0000000340)}, 0x0) r4 = syz_io_uring_setup(0x6d26, &(0x7f00000003c0)={0x0, 0xb2f, 0x2, 0x0, 0x32, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000440), &(0x7f0000000480)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r4, 0x4040942c, &(0x7f00000004c0)={0x0, 0x4, [0x49a74729, 0x50186bc5, 0x2, 0x1, 0x2, 0x1f]}) r5 = fcntl$dupfd(r4, 0x0, r3) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000500)={{0x1, 0x1, 0x18, r5, {0x1}}, './file0\x00'}) ioctl$FS_IOC_SETVERSION(r6, 0x40087602, &(0x7f0000000540)=0x8) recvmsg$unix(r6, &(0x7f0000000b40)={&(0x7f0000000580)=@abs, 0x6e, &(0x7f00000009c0)=[{&(0x7f0000000600)=""/24, 0x18}, {&(0x7f0000000640)=""/221, 0xdd}, {&(0x7f0000000740)=""/194, 0xc2}, {&(0x7f0000000840)=""/71, 0x47}, {&(0x7f00000008c0)=""/76, 0x4c}, {&(0x7f0000000940)=""/91, 0x5b}], 0x6, &(0x7f0000000a40)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}, @cred={{0x1c}}], 0xd0}, 0x1) bind$inet(r8, &(0x7f0000000b80)={0x2, 0x4e22, @private=0xa010100}, 0x10) stat(&(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00)) ioctl$F2FS_IOC_GARBAGE_COLLECT(r7, 0x4004f506, &(0x7f0000000c80)) ioctl$AUTOFS_DEV_IOCTL_READY(r7, 0xc0189376, &(0x7f0000000d00)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8f34}}, './file0\x00'}) 05:03:42 executing program 4: ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(0xffffffffffffffff, 0xf504, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80000001}}, './file0\x00'}) ioctl$sock_SIOCDELRT(r0, 0x890c, &(0x7f0000000080)={0x0, @hci={0x1f, 0x1}, @tipc=@name={0x1e, 0x2, 0x0, {{0x40, 0x2}, 0x1}}, @xdp={0x2c, 0x1, 0x0, 0x3d}, 0xaba, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000040)='ip6_vti0\x00', 0x5, 0xa54d, 0x8}) close_range(r0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) r3 = dup(r1) sendmsg$IPSET_CMD_LIST(r3, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x7, 0x6, 0x101, 0x0, 0x0, {0x1}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x4800}]}, 0x1c}, 0x1, 0x0, 0x0, 0x424035c6d1a9586e}, 0x4048840) r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x40, 0x0) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000280)={0x1, 0x2000}, 0x4) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), r0) sendmsg$TIPC_NL_LINK_RESET_STATS(r3, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x80, r5, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}]}, @TIPC_NLA_LINK={0x50, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_LINK={0x10, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x8080}, 0x8005) openat$sr(0xffffffffffffff9c, &(0x7f0000000440), 0xc0000, 0x0) r6 = dup(r2) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000480)={{0x1, 0x1, 0x18, r6, {0x6}}, './file0\x00'}) fcntl$setflags(r7, 0x2, 0x1) setsockopt$inet6_IPV6_HOPOPTS(r7, 0x29, 0x36, &(0x7f00000004c0)={0x6, 0x24, '\x00', [@generic={0x11, 0x3, "cefca6"}, @generic={0x80, 0xff, "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"}, @padn={0x1, 0x1, [0x0]}, @enc_lim={0x4, 0x1, 0x7f}, @pad1, @generic={0x5, 0x10, "2b5e39ddd47f735693a1c99f55a01bce"}]}, 0x130) accept$packet(r4, 0x0, &(0x7f0000000600)) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPSET_CMD_PROTOCOL(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x24, 0x1, 0x6, 0x301, 0x0, 0x0, {0x3, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x8000) 05:03:42 executing program 5: r0 = eventfd(0x800) write$binfmt_script(r0, &(0x7f0000000000)={'#! ', './file0', [{0x20, '&'}], 0xa, "7ec23a61042b43c96b537e2af2218783ced58f1af4ba61833eba2e66500c0ce028489d42b6e8c4ffa6fbd3c7a81813b3ea99534c823695fe93843436624c03ef7d56d152ea6c23c17fc8c5dcae86542010be75c3699db6e8eae8813952911cdee719a410c49d70c3316e8482d4c9c94df68cd47d4e48e21b78488fabe50fc4fe606518965a70ff7e72d689e1ff7ce3f45d767b6305863a2ed1398b2dcdd025ecd61606f31a7c9f4abce2b7d40c9d85dc0ebe3135e1961cb2e1"}, 0xc6) r1 = open_tree(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x800) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000000280)={@mcast2, 0x0}, &(0x7f00000002c0)=0x14) sendmsg$ETHTOOL_MSG_WOL_GET(r1, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000300)={0x9c, r2, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x40448c0}, 0x40004) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000440)={@private2, 0x7d, r3}) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r1, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x1c, r2, 0x0, 0x70bd27, 0x25dfdbfd, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0x100}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004800}, 0x200000c1) sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000740)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000700)={&(0x7f00000005c0)={0x124, 0x0, 0x2, 0x70bd29, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x40, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x6}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}]}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x101}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xffff}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2d, 0x31}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}]}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x3}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x5217}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_DAEMON={0x24, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x8}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xff}, @IPVS_CMD_ATTR_DEST={0x50, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@remote}, @IPVS_DEST_ATTR_FWD_METHOD={0x8}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e20}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x9}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3d9}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x1000}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x4}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8}]}, 0x124}, 0x1, 0x0, 0x0, 0x40004}, 0x4000) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000780)) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000007c0)='/sys/module/hid_ntrig', 0x22000, 0x24) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r4, 0x89f6, &(0x7f0000000880)={'sit0\x00', &(0x7f0000000800)={'ip6gre0\x00', 0x0, 0x0, 0x9, 0x74, 0x37, 0x4a, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x37}, 0x7800, 0x7, 0x2}}) r6 = openat(r4, &(0x7f00000008c0)='./file0\x00', 0x100, 0x1) ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000000980)={'syztnl0\x00', &(0x7f0000000900)={'ip6gre0\x00', r5, 0x4, 0x1, 0x2, 0x200, 0x0, @mcast2, @mcast2, 0x8, 0x80, 0x16, 0x1000000}}) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r6, 0x89f2, &(0x7f0000000ac0)={'gretap0\x00', &(0x7f00000009c0)={'tunl0\x00', r7, 0x80, 0x700, 0xff, 0x4, {{0x2e, 0x4, 0x1, 0x0, 0xb8, 0x66, 0x0, 0xba, 0x2f, 0x0, @broadcast, @empty, {[@ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x38, 0x3, [{0x5, 0x5, "b379da"}, {0x0, 0xd, "b19dcd7655795a7d2d5299"}, {0x5, 0xc, "5dc60889ac5f625a5c70"}, {0x6, 0x9, "6c364026a46973"}, {0x5, 0x6, "3b7c5da0"}, {0x7, 0x5, "5b9f99"}]}, @ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}, @lsrr={0x83, 0x1f, 0x41, [@empty, @rand_addr=0x64010101, @remote, @broadcast, @remote, @broadcast, @private=0xa010102]}, @generic={0x82, 0x4, "a5fa"}, @cipso={0x86, 0x1b, 0x3, [{0x5, 0xc, "f63de45971e0ff93d3e8"}, {0x0, 0x3, '\a'}, {0x0, 0x6, "78909f03"}]}, @ssrr={0x89, 0x1f, 0x45, [@private=0xa010102, @rand_addr=0x64010100, @private=0xa010101, @empty, @empty, @multicast2, @local]}]}}}}}) r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000b00), r4) r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000b80), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_LBT_MODE(0xffffffffffffffff, &(0x7f0000000c80)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000c40)={&(0x7f0000000bc0)={0x4c, r9, 0x200, 0x70bd29, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_LBT_MODE={0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x40040) sendto$packet(0xffffffffffffffff, &(0x7f0000000cc0)="400dc503e374f31fbb9d80fd08a03d01989a917aea2efda9897f107d64a0bc247cecf64dfbd9f51ebe3af5d22bfd1236cd7fb975117743fa93afa5645e5b55b3d71629f8f2a4e0e5427ae20ec37ed588bdc608e5839348de4fc63a2e5376195a709444669279306d84f9c1a0a7595f30058d946e76b4e8fad94fcb409665e2e551a1ff798bd940e7a1e007dbe107c03f511ea53689ffe1db6e52fdf31f483dddc920a28213a7ffea184c3a5b02280e0b516454d3b67111894655216b444cc2ac5ed8ef31fd71f09f15f99318e770f7", 0xcf, 0x800, &(0x7f0000000dc0)={0x11, 0x1, r5, 0x1, 0x3, 0x6, @broadcast}, 0x14) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r1, &(0x7f0000000fc0)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000f80)={&(0x7f0000000e40)={0x110, r8, 0x184, 0x70bd26, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@pci={{0x8}, {0x11}}, {0x8}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}]}, 0x110}, 0x1, 0x0, 0x0, 0x20000010}, 0x0) [ 64.089932] audit: type=1400 audit(1665119022.091:6): avc: denied { execmem } for pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 05:03:42 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x13) ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000000)) setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000000040)=0x100, 0x4) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r0, 0x8983, &(0x7f0000000080)) r1 = accept4(r0, 0x0, &(0x7f00000000c0), 0x80000) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r1, 0x80489439, &(0x7f0000000100)) bind$netlink(r1, &(0x7f0000000180)={0x10, 0x0, 0x25dfdbfc, 0x2000000}, 0xc) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r1) sendmsg$NL80211_CMD_DEL_PMK(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, r2, 0x100, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x8, 0x18}}}}, [@NL80211_ATTR_MAC={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) syz_genetlink_get_family_id$fou(&(0x7f0000000300), r0) setsockopt$netlink_NETLINK_PKTINFO(r0, 0x10e, 0x3, &(0x7f0000000340), 0x4) bind$bt_sco(r1, &(0x7f0000000380)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8) sendmsg$NL80211_CMD_GET_POWER_SAVE(r0, &(0x7f0000000480)={&(0x7f00000003c0), 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x20, r2, 0x8, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0xb}}}}, ["", "", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x20044000) syz_open_dev$vcsu(&(0x7f00000004c0), 0xfffffffffffffffd, 0x0) r3 = socket$netlink(0x10, 0x3, 0x10) r4 = accept(r3, &(0x7f0000000b80)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000c00)=0x80) getsockopt$sock_int(r4, 0x1, 0x2a, &(0x7f0000000c40), &(0x7f0000000c80)=0x4) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000cc0), r1) sendmsg$IPVS_CMD_NEW_DEST(0xffffffffffffffff, &(0x7f0000000e00)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000d40)={0x50, 0x0, 0x200, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x4}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x80}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x7f}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x1) 05:03:42 executing program 7: ptrace$setsig(0x4203, 0xffffffffffffffff, 0x3, &(0x7f0000000000)={0x12, 0x5a, 0x101}) waitid(0x0, 0xffffffffffffffff, &(0x7f0000000080), 0x1, &(0x7f0000000100)) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000001c0)={0x0, 0x0}) ptrace$getsig(0x4202, r0, 0x9, &(0x7f0000000200)) waitid(0x4, r0, 0x0, 0x20000001, &(0x7f0000000280)) ptrace$getsig(0x4202, r0, 0x6, &(0x7f0000000340)) ptrace$getsig(0x4202, r0, 0x1f, &(0x7f00000003c0)) ptrace$getsig(0x4202, r0, 0x3, &(0x7f0000000440)) ptrace$getsig(0x4202, r0, 0xfff, &(0x7f00000004c0)) ptrace$getsig(0x4202, r0, 0x4, &(0x7f0000000540)) ptrace$getsig(0x4202, r0, 0x3f, &(0x7f00000005c0)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000640)=0x0) waitid(0x0, r1, &(0x7f0000000680), 0x1000000, 0x0) ptrace$getsig(0x4202, r1, 0x5, &(0x7f0000000700)) waitid$P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000780), 0x40000000, 0x0) ptrace$getsig(0x4202, r0, 0xd0, &(0x7f0000000800)) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000880)={0x0, 0x0}) ptrace$getsig(0x4202, r2, 0x3, &(0x7f00000008c0)) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003100)=[{{&(0x7f0000000940), 0x6e, &(0x7f0000002a40)=[{&(0x7f00000009c0)=""/4096, 0x1000}, {&(0x7f00000019c0)=""/4096, 0x1000}, {&(0x7f00000029c0)=""/117, 0x75}], 0x3, &(0x7f0000002a80)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}, {{&(0x7f0000002b00)=@abs, 0x6e, &(0x7f0000002e40)=[{&(0x7f0000002b80)=""/198, 0xc6}, {&(0x7f0000002c80)=""/162, 0xa2}, {&(0x7f0000002d40)=""/226, 0xe2}], 0x3, &(0x7f0000002e80)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000002f00)=@abs, 0x6e, &(0x7f0000003080)=[{&(0x7f0000002f80)=""/250, 0xfa}], 0x1, &(0x7f00000030c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x40}}], 0x3, 0x61, &(0x7f00000031c0)) waitid(0x1, r3, &(0x7f0000003200), 0x20000000, &(0x7f0000003280)) [ 65.431034] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 65.434301] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 65.435756] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 65.437561] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 65.439519] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 65.440759] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 65.443601] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 65.461539] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 65.464190] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 65.465370] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 65.467238] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 65.468134] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 65.469324] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 65.471664] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 65.473662] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 65.477602] Bluetooth: hci1: HCI_REQ-0x0c1a [ 65.477998] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 65.479699] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 65.480691] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 65.485461] Bluetooth: hci3: HCI_REQ-0x0c1a [ 65.494906] Bluetooth: hci0: HCI_REQ-0x0c1a [ 65.511206] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 65.512642] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 65.515393] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 65.517516] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 65.520142] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 65.521743] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 65.523067] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 65.524295] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 65.525454] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 65.531091] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 65.532197] Bluetooth: hci5: HCI_REQ-0x0c1a [ 65.532711] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 65.534717] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 65.539566] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 65.541082] Bluetooth: hci4: HCI_REQ-0x0c1a [ 65.555947] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 65.557571] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 65.560287] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 65.562037] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 65.563355] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 65.570962] Bluetooth: hci2: HCI_REQ-0x0c1a [ 65.634727] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 65.641355] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 65.645410] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 65.658725] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 65.684093] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 65.691112] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 65.702510] Bluetooth: hci6: HCI_REQ-0x0c1a [ 67.555214] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 67.555378] Bluetooth: hci0: command 0x0409 tx timeout [ 67.556234] Bluetooth: hci5: command 0x0409 tx timeout [ 67.556988] Bluetooth: hci3: command 0x0409 tx timeout [ 67.557360] Bluetooth: hci1: command 0x0409 tx timeout [ 67.619209] Bluetooth: hci2: command 0x0409 tx timeout [ 67.619303] Bluetooth: hci4: command 0x0409 tx timeout [ 67.747114] Bluetooth: hci6: command 0x0409 tx timeout [ 69.603599] Bluetooth: hci3: command 0x041b tx timeout [ 69.604040] Bluetooth: hci1: command 0x041b tx timeout [ 69.604396] Bluetooth: hci5: command 0x041b tx timeout [ 69.604765] Bluetooth: hci0: command 0x041b tx timeout [ 69.666865] Bluetooth: hci4: command 0x041b tx timeout [ 69.667244] Bluetooth: hci2: command 0x041b tx timeout [ 69.795862] Bluetooth: hci6: command 0x041b tx timeout [ 71.651986] Bluetooth: hci0: command 0x040f tx timeout [ 71.652017] Bluetooth: hci5: command 0x040f tx timeout [ 71.652393] Bluetooth: hci1: command 0x040f tx timeout [ 71.652792] Bluetooth: hci3: command 0x040f tx timeout [ 71.715903] Bluetooth: hci2: command 0x040f tx timeout [ 71.715947] Bluetooth: hci4: command 0x040f tx timeout [ 71.843870] Bluetooth: hci6: command 0x040f tx timeout [ 72.738866] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 73.698861] Bluetooth: hci3: command 0x0419 tx timeout [ 73.699881] Bluetooth: hci1: command 0x0419 tx timeout [ 73.700269] Bluetooth: hci5: command 0x0419 tx timeout [ 73.700282] Bluetooth: hci0: command 0x0419 tx timeout [ 73.762862] Bluetooth: hci2: command 0x0419 tx timeout [ 73.764192] Bluetooth: hci4: command 0x0419 tx timeout [ 73.890854] Bluetooth: hci6: command 0x0419 tx timeout [ 77.282855] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 79.974565] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 79.976521] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 79.977741] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 79.981023] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 79.982789] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 79.984394] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 79.988162] Bluetooth: hci7: HCI_REQ-0x0c1a [ 82.018970] Bluetooth: hci7: command 0x0409 tx timeout [ 84.067863] Bluetooth: hci7: command 0x041b tx timeout [ 86.114906] Bluetooth: hci7: command 0x040f tx timeout [ 88.162853] Bluetooth: hci7: command 0x0419 tx timeout 05:04:33 executing program 2: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="2c7766646e6f3d014f29ef99ad8b2ee6ab88d3ddf9f64fb3263bd7d202acf75f549842835dcf4ecacd3bf6ef28ae3dc96c80ff23", @ANYRESHEX, @ANYBLOB=',\x00']) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xc0000008}) epoll_wait(0xffffffffffffffff, &(0x7f0000000300)=[{}, {}, {}], 0x3, 0x5) fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000180)=']{\x00', 0x0, r0) acct(&(0x7f00000001c0)='./file1\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r2, 0x810c9365, &(0x7f0000000340)={{0x101, 0x7}, 0x100, './file1\x00'}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r3, 0x6, 0x0, 0x0, 0x0) fsmount(r3, 0x0, 0x0) [ 115.469728] loop2: detected capacity change from 0 to 40 [ 115.503015] audit: type=1400 audit(1665119073.504:7): avc: denied { open } for pid=3779 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 115.504294] audit: type=1400 audit(1665119073.505:8): avc: denied { kernel } for pid=3779 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 115.526644] ------------[ cut here ]------------ [ 115.526667] [ 115.526671] ====================================================== [ 115.526675] WARNING: possible circular locking dependency detected [ 115.526679] 6.0.0-next-20221006 #1 Not tainted [ 115.526686] ------------------------------------------------------ [ 115.526689] syz-executor.2/3780 is trying to acquire lock: [ 115.526696] ffffffff853fac98 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 115.526735] [ 115.526735] but task is already holding lock: [ 115.526737] ffff8880208f1020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 115.526764] [ 115.526764] which lock already depends on the new lock. [ 115.526764] [ 115.526767] [ 115.526767] the existing dependency chain (in reverse order) is: [ 115.526770] [ 115.526770] -> #3 (&ctx->lock){....}-{2:2}: [ 115.526783] _raw_spin_lock+0x2a/0x40 [ 115.526798] __perf_event_task_sched_out+0x53b/0x18d0 [ 115.526809] __schedule+0xedd/0x2470 [ 115.526827] schedule+0xda/0x1b0 [ 115.526841] futex_wait_queue+0xf5/0x1e0 [ 115.526853] futex_wait+0x28e/0x690 [ 115.526863] do_futex+0x2ff/0x380 [ 115.526872] __x64_sys_futex+0x1c6/0x4d0 [ 115.526882] do_syscall_64+0x3b/0x90 [ 115.526892] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.526907] [ 115.526907] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 115.526920] _raw_spin_lock_nested+0x30/0x40 [ 115.526932] raw_spin_rq_lock_nested+0x1e/0x30 [ 115.526945] task_fork_fair+0x63/0x4d0 [ 115.526960] sched_cgroup_fork+0x3d0/0x540 [ 115.526974] copy_process+0x4183/0x6e20 [ 115.526985] kernel_clone+0xe7/0x890 [ 115.526994] user_mode_thread+0xad/0xf0 [ 115.527005] rest_init+0x24/0x250 [ 115.527017] arch_call_rest_init+0xf/0x14 [ 115.527029] start_kernel+0x4c6/0x4eb [ 115.527039] secondary_startup_64_no_verify+0xe0/0xeb [ 115.527053] [ 115.527053] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 115.527066] _raw_spin_lock_irqsave+0x39/0x60 [ 115.527078] try_to_wake_up+0xab/0x1930 [ 115.527091] up+0x75/0xb0 [ 115.527106] __up_console_sem+0x6e/0x80 [ 115.527121] console_unlock+0x46a/0x590 [ 115.527137] vprintk_emit+0x1bd/0x560 [ 115.527153] vprintk+0x84/0xa0 [ 115.527168] _printk+0xba/0xf1 [ 115.527180] kauditd_hold_skb.cold+0x3f/0x4e [ 115.527198] kauditd_send_queue+0x233/0x290 [ 115.527212] kauditd_thread+0x5f9/0x9c0 [ 115.527226] kthread+0x2ed/0x3a0 [ 115.527240] ret_from_fork+0x22/0x30 [ 115.527252] [ 115.527252] -> #0 ((console_sem).lock){....}-{2:2}: [ 115.527265] __lock_acquire+0x2a02/0x5e70 [ 115.527282] lock_acquire+0x1a2/0x530 [ 115.527297] _raw_spin_lock_irqsave+0x39/0x60 [ 115.527309] down_trylock+0xe/0x70 [ 115.527325] __down_trylock_console_sem+0x3b/0xd0 [ 115.527341] vprintk_emit+0x16b/0x560 [ 115.527356] vprintk+0x84/0xa0 [ 115.527372] _printk+0xba/0xf1 [ 115.527383] report_bug.cold+0x72/0xab [ 115.527392] handle_bug+0x3c/0x70 [ 115.527402] exc_invalid_op+0x14/0x50 [ 115.527412] asm_exc_invalid_op+0x16/0x20 [ 115.527425] group_sched_out.part.0+0x2c7/0x460 [ 115.527442] ctx_sched_out+0x8f1/0xc10 [ 115.527459] __perf_event_task_sched_out+0x6d0/0x18d0 [ 115.527470] __schedule+0xedd/0x2470 [ 115.527484] schedule+0xda/0x1b0 [ 115.527499] futex_wait_queue+0xf5/0x1e0 [ 115.527509] futex_wait+0x28e/0x690 [ 115.527519] do_futex+0x2ff/0x380 [ 115.527528] __x64_sys_futex+0x1c6/0x4d0 [ 115.527538] do_syscall_64+0x3b/0x90 [ 115.527548] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.527562] [ 115.527562] other info that might help us debug this: [ 115.527562] [ 115.527564] Chain exists of: [ 115.527564] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 115.527564] [ 115.527579] Possible unsafe locking scenario: [ 115.527579] [ 115.527581] CPU0 CPU1 [ 115.527584] ---- ---- [ 115.527586] lock(&ctx->lock); [ 115.527591] lock(&rq->__lock); [ 115.527597] lock(&ctx->lock); [ 115.527603] lock((console_sem).lock); [ 115.527609] [ 115.527609] *** DEADLOCK *** [ 115.527609] [ 115.527611] 2 locks held by syz-executor.2/3780: [ 115.527617] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 115.527648] #1: ffff8880208f1020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 115.527674] [ 115.527674] stack backtrace: [ 115.527676] CPU: 0 PID: 3780 Comm: syz-executor.2 Not tainted 6.0.0-next-20221006 #1 [ 115.527689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.527695] Call Trace: [ 115.527698] [ 115.527703] dump_stack_lvl+0x8b/0xb3 [ 115.527714] check_noncircular+0x263/0x2e0 [ 115.527731] ? format_decode+0x26c/0xb50 [ 115.527747] ? print_circular_bug+0x450/0x450 [ 115.527764] ? simple_strtoul+0x30/0x30 [ 115.527781] ? format_decode+0x26c/0xb50 [ 115.527799] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 115.527817] __lock_acquire+0x2a02/0x5e70 [ 115.527838] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 115.527860] lock_acquire+0x1a2/0x530 [ 115.527877] ? down_trylock+0xe/0x70 [ 115.527895] ? lock_release+0x750/0x750 [ 115.527915] ? vprintk+0x84/0xa0 [ 115.527933] _raw_spin_lock_irqsave+0x39/0x60 [ 115.527945] ? down_trylock+0xe/0x70 [ 115.527963] down_trylock+0xe/0x70 [ 115.527980] ? vprintk+0x84/0xa0 [ 115.527996] __down_trylock_console_sem+0x3b/0xd0 [ 115.528013] vprintk_emit+0x16b/0x560 [ 115.528032] vprintk+0x84/0xa0 [ 115.528049] _printk+0xba/0xf1 [ 115.528062] ? record_print_text.cold+0x16/0x16 [ 115.528078] ? report_bug.cold+0x66/0xab [ 115.528089] ? group_sched_out.part.0+0x2c7/0x460 [ 115.528108] report_bug.cold+0x72/0xab [ 115.528120] handle_bug+0x3c/0x70 [ 115.528130] exc_invalid_op+0x14/0x50 [ 115.528141] asm_exc_invalid_op+0x16/0x20 [ 115.528156] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 115.528176] Code: 5e 41 5f e9 5b a5 ef ff e8 56 a5 ef ff 65 8b 1d 1b fe ab 7e 31 ff 89 de e8 f6 a1 ef ff 85 db 0f 84 8a 00 00 00 e8 39 a5 ef ff <0f> 0b e9 a5 fe ff ff e8 2d a5 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 115.528187] RSP: 0018:ffff88801a9e78f8 EFLAGS: 00010006 [ 115.528196] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 115.528203] RDX: ffff88801dbab580 RSI: ffffffff815677b7 RDI: 0000000000000005 [ 115.528211] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 115.528218] R10: 0000000000000000 R11: ffffffff865b601b R12: ffff8880208f1000 [ 115.528225] R13: ffff88806ce3d2c0 R14: ffffffff8547d200 R15: 0000000000000002 [ 115.528236] ? group_sched_out.part.0+0x2c7/0x460 [ 115.528256] ? group_sched_out.part.0+0x2c7/0x460 [ 115.528276] ctx_sched_out+0x8f1/0xc10 [ 115.528295] __perf_event_task_sched_out+0x6d0/0x18d0 [ 115.528309] ? lock_is_held_type+0xd7/0x130 [ 115.528324] ? __perf_cgroup_move+0x160/0x160 [ 115.528335] ? set_next_entity+0x304/0x550 [ 115.528354] ? lock_is_held_type+0xd7/0x130 [ 115.528370] __schedule+0xedd/0x2470 [ 115.528388] ? io_schedule_timeout+0x150/0x150 [ 115.528404] ? futex_wait_setup+0x166/0x230 [ 115.528419] schedule+0xda/0x1b0 [ 115.528435] futex_wait_queue+0xf5/0x1e0 [ 115.528447] futex_wait+0x28e/0x690 [ 115.528460] ? futex_wait_setup+0x230/0x230 [ 115.528473] ? wake_up_q+0x8b/0xf0 [ 115.528486] ? do_raw_spin_unlock+0x4f/0x220 [ 115.528505] ? futex_wake+0x158/0x490 [ 115.528521] ? fd_install+0x1f9/0x640 [ 115.528536] do_futex+0x2ff/0x380 [ 115.528547] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 115.528563] __x64_sys_futex+0x1c6/0x4d0 [ 115.528576] ? __x64_sys_futex_time32+0x480/0x480 [ 115.528589] ? syscall_enter_from_user_mode+0x1d/0x50 [ 115.528604] ? syscall_enter_from_user_mode+0x1d/0x50 [ 115.528621] do_syscall_64+0x3b/0x90 [ 115.528632] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.528646] RIP: 0033:0x7fac933d1b19 [ 115.528654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 115.528665] RSP: 002b:00007fac90947218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 115.528675] RAX: ffffffffffffffda RBX: 00007fac934e4f68 RCX: 00007fac933d1b19 [ 115.528683] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fac934e4f68 [ 115.528690] RBP: 00007fac934e4f60 R08: 0000000000000000 R09: 0000000000000000 [ 115.528697] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fac934e4f6c [ 115.528704] R13: 00007ffdea35a08f R14: 00007fac90947300 R15: 0000000000022000 [ 115.528717] [ 115.587587] WARNING: CPU: 0 PID: 3780 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 115.588252] Modules linked in: [ 115.588481] CPU: 0 PID: 3780 Comm: syz-executor.2 Not tainted 6.0.0-next-20221006 #1 [ 115.589016] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 115.589584] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 115.589960] Code: 5e 41 5f e9 5b a5 ef ff e8 56 a5 ef ff 65 8b 1d 1b fe ab 7e 31 ff 89 de e8 f6 a1 ef ff 85 db 0f 84 8a 00 00 00 e8 39 a5 ef ff <0f> 0b e9 a5 fe ff ff e8 2d a5 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 115.591202] RSP: 0018:ffff88801a9e78f8 EFLAGS: 00010006 [ 115.591576] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 115.592079] RDX: ffff88801dbab580 RSI: ffffffff815677b7 RDI: 0000000000000005 [ 115.592576] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 115.593069] R10: 0000000000000000 R11: ffffffff865b601b R12: ffff8880208f1000 [ 115.593579] R13: ffff88806ce3d2c0 R14: ffffffff8547d200 R15: 0000000000000002 [ 115.594078] FS: 00007fac90947700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 115.594657] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 115.595058] CR2: 0000561e42b8d848 CR3: 00000000207ca000 CR4: 0000000000350ef0 [ 115.595553] Call Trace: [ 115.595742] [ 115.595915] ctx_sched_out+0x8f1/0xc10 [ 115.596203] __perf_event_task_sched_out+0x6d0/0x18d0 [ 115.596566] ? lock_is_held_type+0xd7/0x130 [ 115.596885] ? __perf_cgroup_move+0x160/0x160 [ 115.597211] ? set_next_entity+0x304/0x550 [ 115.597533] ? lock_is_held_type+0xd7/0x130 [ 115.597834] __schedule+0xedd/0x2470 [ 115.598101] ? io_schedule_timeout+0x150/0x150 [ 115.598433] ? futex_wait_setup+0x166/0x230 [ 115.598741] schedule+0xda/0x1b0 [ 115.598993] futex_wait_queue+0xf5/0x1e0 [ 115.599286] futex_wait+0x28e/0x690 [ 115.599545] ? futex_wait_setup+0x230/0x230 [ 115.599850] ? wake_up_q+0x8b/0xf0 [ 115.600106] ? do_raw_spin_unlock+0x4f/0x220 [ 115.600429] ? futex_wake+0x158/0x490 [ 115.600711] ? fd_install+0x1f9/0x640 [ 115.600983] do_futex+0x2ff/0x380 [ 115.601231] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 115.601656] __x64_sys_futex+0x1c6/0x4d0 [ 115.601941] ? __x64_sys_futex_time32+0x480/0x480 [ 115.602290] ? syscall_enter_from_user_mode+0x1d/0x50 [ 115.602650] ? syscall_enter_from_user_mode+0x1d/0x50 [ 115.603011] do_syscall_64+0x3b/0x90 [ 115.603273] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 115.603635] RIP: 0033:0x7fac933d1b19 [ 115.603893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 115.605134] RSP: 002b:00007fac90947218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 115.605678] RAX: ffffffffffffffda RBX: 00007fac934e4f68 RCX: 00007fac933d1b19 [ 115.606181] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fac934e4f68 [ 115.606677] RBP: 00007fac934e4f60 R08: 0000000000000000 R09: 0000000000000000 [ 115.607181] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fac934e4f6c [ 115.607679] R13: 00007ffdea35a08f R14: 00007fac90947300 R15: 0000000000022000 [ 115.608173] [ 115.608338] irq event stamp: 1876 [ 115.608589] hardirqs last enabled at (1875): [] syscall_enter_from_user_mode+0x1d/0x50 [ 115.609247] hardirqs last disabled at (1876): [] __schedule+0x1225/0x2470 [ 115.609835] softirqs last enabled at (1612): [] __irq_exit_rcu+0x11b/0x180 [ 115.610435] softirqs last disabled at (1577): [] __irq_exit_rcu+0x11b/0x180 [ 115.611041] ---[ end trace 0000000000000000 ]--- [ 115.646444] loop2: detected capacity change from 0 to 40 05:04:33 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000080)={0x2, &(0x7f0000000100)=[{}, {}]}) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000b80), 0x1, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x4010, r1, 0x2cf96000) r2 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f0000000000)={0x7, 0xfd38, 0x4, 0x81}) r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x40b01, 0x0) ioctl$CDROMREADMODE1(r3, 0x40081271, &(0x7f0000000080)={0x0, 0x4}) sendmsg$FOU_CMD_GET(r3, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000b00)=ANY=[@ANYBLOB="14000000", @ANYRESOCT=r2, @ANYBLOB="df000000000000000000c00cc0626f609eb43078ab7f00eb45587236a893d1c8dfb8ffe6a56daadeac1c24fa6ebf4757d559d6a008a567f595d882eb5a28"], 0x14}, 0x1, 0x0, 0x0, 0x40d1}, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000040)={0x3, 0x4, 0x9, 0x8, 0xc, "e038c8ed67d5216e"}) [ 115.728381] Process accounting resumed 05:04:33 executing program 2: ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) write$P9_RSTATu(0xffffffffffffffff, &(0x7f00000004c0)={0x59, 0x7d, 0x2, {{0x0, 0x40, 0x1, 0x1, {0x1, 0x0, 0x6}, 0x4040000, 0x1a809ffd, 0x10001, 0x1, 0x2, '-#', 0x6, '\x02\x02\x02\x02\x02\x02', 0x5, '%}%@:'}, 0x4, ':\'@*', 0xee01, 0xffffffffffffffff, 0xee00}}, 0x59) r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) preadv(r0, 0x0, 0x0, 0x0, 0x0) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="0001aed091a9000000003900000008000300cecddf07738e79cc31c28c7354aa3b4792ea452bec7b20eb40586b75d78cee3355cb50b854776c7e988f77a37b766300e171e3f0c65a9bfefa0a9bd3a669c1c01c667842249e3ebcb58c465b0775ef", @ANYRES32=0x0, @ANYBLOB="0c0099000100000079000000"], 0x28}}, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r1 = getpid() perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x3, 0x2, 0x9, 0x6, 0x0, 0x1000, 0x40000, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x4a85, 0x0, @perf_config_ext={0x7f, 0x7}, 0x80, 0xebc, 0xf66, 0x0, 0x0, 0x0, 0x7, 0x0, 0xfffffffc, 0x0, 0x78b}, r1, 0x7, 0xffffffffffffffff, 0xa) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendto(r2, &(0x7f0000000000)="116ccf359424d1fe1a33c9435e4816a20c2a4b5b8f61dde384471d1fcf74ae3ea42a4ec67b", 0x25, 0x0, &(0x7f0000000100)=@nfc_llcp={0x27, 0x0, 0x2, 0x7, 0x20, 0xf7, "bb982cf48188f3111e20d558efb2474b9a7525f86c7f6aef853226a90503712067f9903462735bbd6ea46ab7e833feee7a2f0ff0a48ccebc97750c109e6dac", 0x1c}, 0x80) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) syncfs(r3) 05:04:33 executing program 4: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000080)={0x2, &(0x7f0000000100)=[{}, {}]}) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000b80), 0x1, 0x0) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x4010, r1, 0x2cf96000) r2 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f0000000000)={0x7, 0xfd38, 0x4, 0x81}) r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x40b01, 0x0) ioctl$CDROMREADMODE1(r3, 0x40081271, &(0x7f0000000080)={0x0, 0x4}) sendmsg$FOU_CMD_GET(r3, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000b00)=ANY=[@ANYBLOB="14000000", @ANYRESOCT=r2, @ANYBLOB="df000000000000000000c00cc0626f609eb43078ab7f00eb45587236a893d1c8dfb8ffe6a56daadeac1c24fa6ebf4757d559d6a008a567f595d882eb5a28"], 0x14}, 0x1, 0x0, 0x0, 0x40d1}, 0x0) ioctl$TCSETAF(r3, 0x5408, &(0x7f0000000040)={0x3, 0x4, 0x9, 0x8, 0xc, "e038c8ed67d5216e"}) [ 115.916212] loop0: detected capacity change from 0 to 264192 05:04:33 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x4156, 0x4) sendmmsg$inet(r0, &(0x7f0000002a00)=[{{&(0x7f0000000000)={0x2, 0x4e21}, 0x10, 0x0}}], 0x1, 0x0) recvmmsg(r0, &(0x7f0000002480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=""/203, 0xcb}}], 0x1, 0x40012000, 0x0) r1 = socket$inet_icmp(0x2, 0x2, 0x1) recvmmsg(r1, &(0x7f0000001e00)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/53, 0x35}, {&(0x7f0000000640)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/146, 0x92}], 0x3, &(0x7f00000001c0)=""/170, 0xaa}, 0x80000000}, {{&(0x7f0000000280)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000000480)=[{&(0x7f0000000300)=""/172, 0xac}, {&(0x7f00000003c0)=""/40, 0x28}, {&(0x7f0000000400)=""/59, 0x3b}, {&(0x7f0000000440)=""/42, 0x2a}, {&(0x7f0000001640)=""/240, 0xf0}], 0x5, &(0x7f0000001740)=""/252, 0xfc}, 0x6}, {{&(0x7f0000001840)=@nfc_llcp, 0x80, &(0x7f0000001c80)=[{&(0x7f00000018c0)=""/238, 0xee}, {&(0x7f00000019c0)=""/248, 0xf8}, {&(0x7f0000001ac0)=""/188, 0xbc}, {&(0x7f0000001b80)=""/98, 0x62}, {&(0x7f0000001c00)=""/66, 0x42}], 0x5, &(0x7f0000001d00)=""/231, 0xe7}, 0x3}], 0x3, 0x4, &(0x7f0000000500)={0x77359400}) r2 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_ifreq(r2, 0x8991, &(0x7f0000001ec0)={'ip6erspan0\x00', @ifru_hwaddr=@multicast}) [ 115.920437] ext2: Bad value for 'sb' 05:04:33 executing program 7: r0 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x40b01, 0x0) ioctl$CDROMREADMODE1(r0, 0x40081271, &(0x7f0000000080)={0x0, 0x4}) sendmsg$FOU_CMD_GET(r0, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000b80)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="df000000000000000000c00cc0626f609eb43078ab7f00eb45587236a893d18babf16a146d180e0081c8dfb8ffe6a56daadeac1c24fa6ebf47a567f595d882eb5a28"], 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x40001) clone3(&(0x7f0000000640)={0x3ade1de758871556, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) ioprio_set$pid(0x2, 0x0, 0x0) [ 115.930113] loop0: detected capacity change from 0 to 264192 [ 115.930656] ext2: Bad value for 'sb' VM DIAGNOSIS: 05:04:33 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823c0801 RDI=ffffffff8765c9e0 RBP=ffffffff8765c9a0 RSP=ffff88801a9e7340 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff8765c9a0 R14=0000000000000010 R15=ffffffff823c07f0 RIP=ffffffff823c0859 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fac90947700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000561e42b8d848 CR3=00000000207ca000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff00000000ff000000000000000000ff XMM01=25252525252525252525252525252525 XMM02=00007fac934b87e000007fac934b87c0 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000001 RCX=1ffff11008072eaf RDX=dffffc0000000000 RSI=1ffff11008072ea6 RDI=ffff88803e3eae20 RBP=ffff888040397578 RSP=ffff888040397450 R8 =ffffffff852c4700 R9 =ffff888040397520 R10=ffffed1008072eb1 R11=0000000000000001 R12=ffff888040397561 R13=ffff888040397580 R14=ffff888040397520 R15=ffffffff8111d7f9 RIP=ffffffff8111b332 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fb81c7441f0 CR3=000000003985c000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=756e696c2d34365f3638782f62696c2f XMM01=6461657268747062696c2f756e672d78 XMM02=00302e6f732e6461657268747062696c XMM03=2f756e672d78756e696c2d34365f3638 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000