Warning: Permanently added '[localhost]:12155' (ECDSA) to the list of known hosts. 2022/09/14 17:20:54 fuzzer started 2022/09/14 17:20:54 dialing manager at localhost:33849 syzkaller login: [ 41.061169] cgroup: Unknown subsys name 'net' [ 41.150451] cgroup: Unknown subsys name 'rlimit' 2022/09/14 17:21:08 syscalls: 2215 2022/09/14 17:21:08 code coverage: enabled 2022/09/14 17:21:08 comparison tracing: enabled 2022/09/14 17:21:08 extra coverage: enabled 2022/09/14 17:21:08 setuid sandbox: enabled 2022/09/14 17:21:08 namespace sandbox: enabled 2022/09/14 17:21:08 Android sandbox: enabled 2022/09/14 17:21:08 fault injection: enabled 2022/09/14 17:21:08 leak checking: enabled 2022/09/14 17:21:08 net packet injection: enabled 2022/09/14 17:21:08 net device setup: enabled 2022/09/14 17:21:08 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/14 17:21:08 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/14 17:21:08 USB emulation: enabled 2022/09/14 17:21:08 hci packet injection: enabled 2022/09/14 17:21:08 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220914) 2022/09/14 17:21:08 802.15.4 emulation: enabled 2022/09/14 17:21:08 fetching corpus: 50, signal 22449/24281 (executing program) 2022/09/14 17:21:08 fetching corpus: 100, signal 44110/47450 (executing program) 2022/09/14 17:21:08 fetching corpus: 150, signal 55614/60332 (executing program) 2022/09/14 17:21:08 fetching corpus: 200, signal 63690/69756 (executing program) 2022/09/14 17:21:08 fetching corpus: 250, signal 69762/77085 (executing program) 2022/09/14 17:21:09 fetching corpus: 300, signal 73232/81880 (executing program) 2022/09/14 17:21:09 fetching corpus: 350, signal 79187/89002 (executing program) 2022/09/14 17:21:09 fetching corpus: 400, signal 83483/94480 (executing program) 2022/09/14 17:21:09 fetching corpus: 450, signal 90215/102134 (executing program) 2022/09/14 17:21:09 fetching corpus: 500, signal 94336/107274 (executing program) 2022/09/14 17:21:09 fetching corpus: 550, signal 97056/111055 (executing program) 2022/09/14 17:21:09 fetching corpus: 600, signal 100654/115660 (executing program) 2022/09/14 17:21:10 fetching corpus: 650, signal 103941/119892 (executing program) 2022/09/14 17:21:10 fetching corpus: 700, signal 107647/124451 (executing program) 2022/09/14 17:21:10 fetching corpus: 750, signal 110589/128266 (executing program) 2022/09/14 17:21:10 fetching corpus: 800, signal 114294/132756 (executing program) 2022/09/14 17:21:10 fetching corpus: 850, signal 116781/136096 (executing program) 2022/09/14 17:21:10 fetching corpus: 900, signal 119289/139397 (executing program) 2022/09/14 17:21:11 fetching corpus: 950, signal 123001/143783 (executing program) 2022/09/14 17:21:11 fetching corpus: 1000, signal 126067/147575 (executing program) 2022/09/14 17:21:11 fetching corpus: 1050, signal 127614/150001 (executing program) 2022/09/14 17:21:11 fetching corpus: 1100, signal 131736/154582 (executing program) 2022/09/14 17:21:11 fetching corpus: 1150, signal 135263/158581 (executing program) 2022/09/14 17:21:11 fetching corpus: 1200, signal 137561/161488 (executing program) 2022/09/14 17:21:12 fetching corpus: 1250, signal 139995/164451 (executing program) 2022/09/14 17:21:12 fetching corpus: 1300, signal 141841/166945 (executing program) 2022/09/14 17:21:12 fetching corpus: 1350, signal 144584/170101 (executing program) 2022/09/14 17:21:12 fetching corpus: 1400, signal 147857/173679 (executing program) 2022/09/14 17:21:12 fetching corpus: 1450, signal 149998/176280 (executing program) 2022/09/14 17:21:12 fetching corpus: 1500, signal 151921/178692 (executing program) 2022/09/14 17:21:12 fetching corpus: 1550, signal 154116/181309 (executing program) 2022/09/14 17:21:13 fetching corpus: 1600, signal 155851/183528 (executing program) 2022/09/14 17:21:13 fetching corpus: 1650, signal 158341/186288 (executing program) 2022/09/14 17:21:13 fetching corpus: 1700, signal 159746/188205 (executing program) 2022/09/14 17:21:13 fetching corpus: 1750, signal 160904/189928 (executing program) 2022/09/14 17:21:13 fetching corpus: 1800, signal 162773/192110 (executing program) 2022/09/14 17:21:13 fetching corpus: 1850, signal 164805/194366 (executing program) 2022/09/14 17:21:13 fetching corpus: 1900, signal 165965/196030 (executing program) 2022/09/14 17:21:13 fetching corpus: 1950, signal 167081/197622 (executing program) 2022/09/14 17:21:14 fetching corpus: 2000, signal 167953/199039 (executing program) 2022/09/14 17:21:14 fetching corpus: 2050, signal 169064/200581 (executing program) 2022/09/14 17:21:14 fetching corpus: 2100, signal 170902/202623 (executing program) 2022/09/14 17:21:14 fetching corpus: 2150, signal 173595/205194 (executing program) 2022/09/14 17:21:14 fetching corpus: 2200, signal 176394/207856 (executing program) 2022/09/14 17:21:14 fetching corpus: 2250, signal 178418/209942 (executing program) 2022/09/14 17:21:14 fetching corpus: 2300, signal 179693/211517 (executing program) 2022/09/14 17:21:15 fetching corpus: 2350, signal 181548/213433 (executing program) 2022/09/14 17:21:15 fetching corpus: 2400, signal 182639/214805 (executing program) 2022/09/14 17:21:15 fetching corpus: 2450, signal 183512/216090 (executing program) 2022/09/14 17:21:15 fetching corpus: 2500, signal 184817/217598 (executing program) 2022/09/14 17:21:15 fetching corpus: 2550, signal 185753/218842 (executing program) 2022/09/14 17:21:15 fetching corpus: 2600, signal 187350/220418 (executing program) 2022/09/14 17:21:15 fetching corpus: 2650, signal 188774/221879 (executing program) 2022/09/14 17:21:16 fetching corpus: 2700, signal 190578/223594 (executing program) 2022/09/14 17:21:16 fetching corpus: 2750, signal 191907/224965 (executing program) 2022/09/14 17:21:16 fetching corpus: 2800, signal 192744/226069 (executing program) 2022/09/14 17:21:16 fetching corpus: 2850, signal 193851/227324 (executing program) 2022/09/14 17:21:16 fetching corpus: 2900, signal 195003/228569 (executing program) 2022/09/14 17:21:16 fetching corpus: 2950, signal 196844/230196 (executing program) 2022/09/14 17:21:16 fetching corpus: 3000, signal 197733/231281 (executing program) 2022/09/14 17:21:17 fetching corpus: 3050, signal 199228/232680 (executing program) 2022/09/14 17:21:17 fetching corpus: 3100, signal 199932/233625 (executing program) 2022/09/14 17:21:17 fetching corpus: 3150, signal 200698/234578 (executing program) 2022/09/14 17:21:17 fetching corpus: 3200, signal 201281/235443 (executing program) 2022/09/14 17:21:17 fetching corpus: 3250, signal 202198/236447 (executing program) 2022/09/14 17:21:17 fetching corpus: 3300, signal 203080/237424 (executing program) 2022/09/14 17:21:17 fetching corpus: 3350, signal 204042/238389 (executing program) 2022/09/14 17:21:17 fetching corpus: 3400, signal 205067/239420 (executing program) 2022/09/14 17:21:18 fetching corpus: 3450, signal 205568/240159 (executing program) 2022/09/14 17:21:18 fetching corpus: 3500, signal 206763/241265 (executing program) 2022/09/14 17:21:18 fetching corpus: 3550, signal 207539/242168 (executing program) 2022/09/14 17:21:18 fetching corpus: 3600, signal 208410/243099 (executing program) 2022/09/14 17:21:18 fetching corpus: 3650, signal 209158/243927 (executing program) 2022/09/14 17:21:18 fetching corpus: 3700, signal 210584/245147 (executing program) 2022/09/14 17:21:18 fetching corpus: 3750, signal 211747/246133 (executing program) 2022/09/14 17:21:18 fetching corpus: 3800, signal 212661/247010 (executing program) 2022/09/14 17:21:19 fetching corpus: 3850, signal 213146/247644 (executing program) 2022/09/14 17:21:19 fetching corpus: 3900, signal 213883/248397 (executing program) 2022/09/14 17:21:19 fetching corpus: 3950, signal 214536/249081 (executing program) 2022/09/14 17:21:19 fetching corpus: 4000, signal 215078/249761 (executing program) 2022/09/14 17:21:19 fetching corpus: 4050, signal 215764/250458 (executing program) 2022/09/14 17:21:19 fetching corpus: 4100, signal 216585/251250 (executing program) 2022/09/14 17:21:19 fetching corpus: 4150, signal 217292/251945 (executing program) 2022/09/14 17:21:20 fetching corpus: 4200, signal 218284/252717 (executing program) 2022/09/14 17:21:20 fetching corpus: 4250, signal 218912/253375 (executing program) 2022/09/14 17:21:20 fetching corpus: 4300, signal 219734/254093 (executing program) 2022/09/14 17:21:20 fetching corpus: 4350, signal 220485/254703 (executing program) 2022/09/14 17:21:20 fetching corpus: 4400, signal 221150/255331 (executing program) 2022/09/14 17:21:20 fetching corpus: 4450, signal 221699/255923 (executing program) 2022/09/14 17:21:20 fetching corpus: 4500, signal 222629/256651 (executing program) 2022/09/14 17:21:21 fetching corpus: 4550, signal 223262/257287 (executing program) 2022/09/14 17:21:21 fetching corpus: 4600, signal 224300/257994 (executing program) 2022/09/14 17:21:21 fetching corpus: 4650, signal 224950/258583 (executing program) 2022/09/14 17:21:21 fetching corpus: 4700, signal 225665/259155 (executing program) 2022/09/14 17:21:21 fetching corpus: 4750, signal 226628/259848 (executing program) 2022/09/14 17:21:21 fetching corpus: 4800, signal 227258/260383 (executing program) 2022/09/14 17:21:21 fetching corpus: 4850, signal 227780/260839 (executing program) 2022/09/14 17:21:22 fetching corpus: 4900, signal 228457/261354 (executing program) 2022/09/14 17:21:22 fetching corpus: 4950, signal 229189/261891 (executing program) 2022/09/14 17:21:22 fetching corpus: 5000, signal 229762/262383 (executing program) 2022/09/14 17:21:22 fetching corpus: 5050, signal 230545/262972 (executing program) 2022/09/14 17:21:22 fetching corpus: 5100, signal 231012/263407 (executing program) 2022/09/14 17:21:22 fetching corpus: 5150, signal 231646/263854 (executing program) 2022/09/14 17:21:22 fetching corpus: 5200, signal 232334/264367 (executing program) 2022/09/14 17:21:23 fetching corpus: 5250, signal 232937/264785 (executing program) 2022/09/14 17:21:23 fetching corpus: 5300, signal 234028/265293 (executing program) 2022/09/14 17:21:23 fetching corpus: 5350, signal 235099/265825 (executing program) 2022/09/14 17:21:23 fetching corpus: 5400, signal 235619/266200 (executing program) 2022/09/14 17:21:23 fetching corpus: 5450, signal 236175/266608 (executing program) 2022/09/14 17:21:23 fetching corpus: 5500, signal 236607/266989 (executing program) 2022/09/14 17:21:23 fetching corpus: 5550, signal 237175/267382 (executing program) 2022/09/14 17:21:24 fetching corpus: 5600, signal 238075/267850 (executing program) 2022/09/14 17:21:24 fetching corpus: 5650, signal 238578/268193 (executing program) 2022/09/14 17:21:24 fetching corpus: 5700, signal 239288/268598 (executing program) 2022/09/14 17:21:24 fetching corpus: 5750, signal 239813/268908 (executing program) 2022/09/14 17:21:24 fetching corpus: 5800, signal 240176/269208 (executing program) 2022/09/14 17:21:24 fetching corpus: 5850, signal 240629/269524 (executing program) 2022/09/14 17:21:24 fetching corpus: 5900, signal 241339/269852 (executing program) 2022/09/14 17:21:25 fetching corpus: 5950, signal 241831/270153 (executing program) 2022/09/14 17:21:25 fetching corpus: 6000, signal 242250/270451 (executing program) 2022/09/14 17:21:25 fetching corpus: 6050, signal 242774/270787 (executing program) 2022/09/14 17:21:25 fetching corpus: 6100, signal 243235/271036 (executing program) 2022/09/14 17:21:25 fetching corpus: 6150, signal 243795/271305 (executing program) 2022/09/14 17:21:25 fetching corpus: 6199, signal 244290/271572 (executing program) 2022/09/14 17:21:25 fetching corpus: 6249, signal 244741/271801 (executing program) 2022/09/14 17:21:25 fetching corpus: 6299, signal 245201/272065 (executing program) 2022/09/14 17:21:26 fetching corpus: 6349, signal 245638/272304 (executing program) 2022/09/14 17:21:26 fetching corpus: 6399, signal 246897/272553 (executing program) 2022/09/14 17:21:26 fetching corpus: 6449, signal 247308/272791 (executing program) 2022/09/14 17:21:26 fetching corpus: 6499, signal 247854/272976 (executing program) 2022/09/14 17:21:26 fetching corpus: 6549, signal 248484/272992 (executing program) 2022/09/14 17:21:26 fetching corpus: 6599, signal 249045/273040 (executing program) 2022/09/14 17:21:26 fetching corpus: 6649, signal 249559/273057 (executing program) 2022/09/14 17:21:27 fetching corpus: 6699, signal 249944/273057 (executing program) 2022/09/14 17:21:27 fetching corpus: 6749, signal 250304/273072 (executing program) 2022/09/14 17:21:27 fetching corpus: 6799, signal 250939/273131 (executing program) 2022/09/14 17:21:27 fetching corpus: 6849, signal 251452/273132 (executing program) 2022/09/14 17:21:27 fetching corpus: 6899, signal 251996/273132 (executing program) 2022/09/14 17:21:27 fetching corpus: 6949, signal 252529/273134 (executing program) 2022/09/14 17:21:27 fetching corpus: 6999, signal 253031/273143 (executing program) 2022/09/14 17:21:27 fetching corpus: 7049, signal 253425/273156 (executing program) 2022/09/14 17:21:28 fetching corpus: 7099, signal 253976/273206 (executing program) 2022/09/14 17:21:28 fetching corpus: 7149, signal 254574/273324 (executing program) 2022/09/14 17:21:28 fetching corpus: 7199, signal 255043/273335 (executing program) 2022/09/14 17:21:28 fetching corpus: 7249, signal 255359/273341 (executing program) 2022/09/14 17:21:28 fetching corpus: 7299, signal 255829/273344 (executing program) 2022/09/14 17:21:28 fetching corpus: 7349, signal 256323/273393 (executing program) 2022/09/14 17:21:28 fetching corpus: 7399, signal 256896/273430 (executing program) 2022/09/14 17:21:28 fetching corpus: 7449, signal 257425/273462 (executing program) 2022/09/14 17:21:28 fetching corpus: 7499, signal 257917/273482 (executing program) 2022/09/14 17:21:28 fetching corpus: 7549, signal 258443/273507 (executing program) 2022/09/14 17:21:29 fetching corpus: 7599, signal 258913/273507 (executing program) 2022/09/14 17:21:29 fetching corpus: 7649, signal 259470/273507 (executing program) 2022/09/14 17:21:29 fetching corpus: 7699, signal 259968/273511 (executing program) 2022/09/14 17:21:29 fetching corpus: 7749, signal 260413/273516 (executing program) 2022/09/14 17:21:29 fetching corpus: 7799, signal 260879/273527 (executing program) 2022/09/14 17:21:29 fetching corpus: 7849, signal 261584/273529 (executing program) 2022/09/14 17:21:29 fetching corpus: 7899, signal 262226/273534 (executing program) 2022/09/14 17:21:30 fetching corpus: 7949, signal 262737/273540 (executing program) 2022/09/14 17:21:30 fetching corpus: 7984, signal 263004/273540 (executing program) 2022/09/14 17:21:30 fetching corpus: 7984, signal 263004/273540 (executing program) 2022/09/14 17:21:32 starting 8 fuzzer processes 17:21:32 executing program 0: ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x58, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r0}, @void}}, [@crypto_settings=[@NL80211_ATTR_WPA_VERSIONS={0x8}, @NL80211_ATTR_AKM_SUITES={0x20, 0x4c, [0xfac12, 0xfac0d, 0xfac12, 0xfac14, 0xfac06, 0xfac05, 0xfac07]}], @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_PBSS={0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x40}, @NL80211_ATTR_USE_RRM={0x4}]}, 0x58}, 0x1, 0x0, 0x0, 0x20040000}, 0x8040) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8000}}, './file0\x00'}) sendmsg$NFT_BATCH(r1, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000580)={&(0x7f0000000200)={{0x14}, [@NFT_MSG_NEWRULE={0x34, 0x6, 0xa, 0x201, 0x0, 0x0, {0xc, 0x0, 0x7}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_RULE_COMPAT={0x4c, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x1a}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_FLAGS={0x8}, @NFTA_RULE_COMPAT_PROTO_IPV6={0x8, 0x1, 0x1, 0x0, 0x21}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0xdada}, @NFTA_RULE_COMPAT_PROTO_BRIDGE={0x8, 0x1, 0x1, 0x0, 0x15}, @NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x2f}, @NFTA_RULE_COMPAT_FLAGS={0x8}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_NEWOBJ={0x20, 0x12, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x2}, @NFT_OBJECT_SECMARK=@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}}, @NFT_MSG_DELFLOWTABLE={0x60, 0x18, 0xa, 0x201, 0x0, 0x0, {0x7, 0x0, 0xa}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x5}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_HOOK={0x24, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'bridge_slave_0\x00'}]}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}, @NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELTABLE={0x44, 0x2, 0xa, 0x801, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x53}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x60, 0x2, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x2}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELRULE={0x134, 0x8, 0xa, 0x0, 0x0, 0x0, {0xf, 0x0, 0xa}, [@NFTA_RULE_USERDATA={0xf5, 0x7, 0x1, 0x0, "4f9693b69dc89f73f05a7f887b41286b0bf75f340b3d571dec7e068dbb58b5efb7f917aad2c2436377ae2f95fccc04a4854e700100b3b7f4882cd2b82c8d81f94d3593cda15652ffa2935e2bb86c42d04afe3e2d929c284a2f3adeb05f25edd26595ac1a3e8304796ba5d1dd2dbf240a5e6ee99844315256d66a8d7f82c90e08be0414948d95835bd3d22247a17dfc1d3a1801517b7dd240068d844c591eb4634e28a1c4ff4455571c96ad1b9d68f09998da939c438f1893eb1cedd7d7b07bb80fb4a9de8769dac235454c0995bd011b9b22ccb6f07486c635781308b0fc6bd163fea2fcdfa1768a19ef966abfda6264b5"}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_RULE_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWSET={0x2c, 0x9, 0xa, 0x804, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @target={{0xb}, @void}}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x2}]}], {0x14}}, 0x34c}, 0x1, 0x0, 0x0, 0x20000810}, 0x20001090) setsockopt$netlink_NETLINK_RX_RING(r1, 0x10e, 0x6, &(0x7f0000000600)={0x0, 0x1, 0x3ff, 0x200}, 0x10) syz_genetlink_get_family_id$batadv(&(0x7f0000000640), r1) r2 = accept$inet(r1, 0x0, &(0x7f0000000680)) clock_gettime(0x0, &(0x7f00000006c0)={0x0, 0x0}) setsockopt$sock_timeval(r2, 0x1, 0x42, &(0x7f0000000700)={r3, r4/1000+10000}, 0x10) recvmmsg(r1, &(0x7f00000022c0)=[{{&(0x7f0000000740)=@tipc, 0x80, &(0x7f00000008c0)=[{&(0x7f00000007c0)=""/128, 0x80}, {&(0x7f0000000840)=""/87, 0x57}], 0x2, &(0x7f0000000900)=""/55, 0x37}, 0x1}, {{&(0x7f0000000940)=@ieee802154={0x24, @short}, 0x80, &(0x7f0000000b80)=[{&(0x7f00000009c0)=""/50, 0x32}, {&(0x7f0000000a00)=""/52, 0x34}, {&(0x7f0000000a40)=""/199, 0xc7}, {&(0x7f0000000b40)=""/5, 0x5}], 0x4}, 0xfc}, {{&(0x7f0000000bc0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000001c40)=[{&(0x7f0000000c40)=""/4096, 0x1000}], 0x1, &(0x7f0000001c80)=""/86, 0x56}, 0xe8}, {{&(0x7f0000001d00)=@qipcrtr, 0x80, &(0x7f0000001e40)=[{&(0x7f0000001d80)=""/18, 0x12}, {&(0x7f0000001dc0)=""/101, 0x65}], 0x2, &(0x7f0000001e80)=""/170, 0xaa}, 0x9}, {{&(0x7f0000001f40)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, 0x80, &(0x7f0000002080)=[{&(0x7f0000001fc0)=""/148, 0x94}], 0x1, &(0x7f00000020c0)=""/140, 0x8c}, 0x800}, {{&(0x7f0000002180)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000002240)=[{&(0x7f0000002200)=""/27, 0x1b}], 0x1, &(0x7f0000002280)=""/52, 0x34}, 0x4}], 0x6, 0x0, &(0x7f0000002440)={0x77359400}) r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000002480), 0x111200, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002500), r1) sendmsg$NL80211_CMD_SET_REG(r6, &(0x7f00000025c0)={&(0x7f00000024c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000002580)={&(0x7f0000002540)={0x2c, r7, 0x20, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x48}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000000}, 0x8000) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002640), r6) sendmsg$NL80211_CMD_LEAVE_IBSS(r5, &(0x7f0000002700)={&(0x7f0000002600)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000026c0)={&(0x7f0000002680)={0x20, r8, 0x400, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x4, 0x4b}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x50}, 0x800) r9 = syz_mount_image$vfat(&(0x7f0000002740), &(0x7f0000002780)='./file0\x00', 0x0, 0x8, &(0x7f0000002d40)=[{&(0x7f00000027c0)="82a6c6d2cdbcb4ff99742f7387b0ff478043652f3d77a3e2dd17fa79cc2c3270be2dbcaaaaf2a18bd92e915f313a5f6303339ed934b2efcf4eb66d8e5471d584d7e534b2aabcc70ff92009880632d21d929cdf0f993a2cfd0dcd6f728142", 0x5e, 0x1f}, {&(0x7f0000002840)="54d5080571158fb7f7e5b64c1e78058d18366da94f38fe3b2e7842c153e1ce7f0dec791f31c26faac9c3cbb4c06cd279022a8ee79c903375af866fe0acaffd6496d1d3572dc63f4100c7796ef148c25c53b3a5b4a0c0d107d712cce5a47839fc95281ac7a1d7c311b05c40b388ad9e7c4dd2aee18f0edcea1c9d9ec7b73721c3bc9583b11209b191e9dc4f75fd5d25aeee30a562f0bbc157fc1db43b310b0c8190555765bcf6ddd3d8669273f9cc22a914f642a73d8fbc2ae50fb9b96bc4a643c804bed03c30c9c06df7ab0af8f4903368e19ac31c21f868bdc62b8e0b9f45c40b33b3e02f92ff4a9dc340d82d31650932a8", 0xf2, 0x779c}, {&(0x7f0000002940)="7d04043b478a2eca41f35eed3f0b83e2cd2190b62559d7db1bca64f7ed503bb0e5931e6f6e88f1175e508d0c6e0cdf82d1a0a31cf5bbe621043a8af647ab4229319f537ee3f0114c4021e183616d1f24928cc112094aa4934beb4b303c861e22506abaf8a5cc2a07038e4c77bf7b31477d540ae8b979b5b292da3d2c901f6a5e7b567ecaf836ba5e574187e610805d", 0x8f, 0x5}, {&(0x7f0000002a00)="dbdf7c798b28e8d2eeefedf4bd9b53111c06f7ac6c7237ddd9d01335108feeff79e54595184033fb37c4879a49b8bc8f68d668e50aa71d527002b1609d93397fbd3de235eef56e7edd3c8b590d224ad4c248417b9a29b76ce2020c5273c3006fc986a9a45dcd448a13a6eae564a3a6d8232e4eea7366a2f77d900620e6e1534203fbf773631c1bfcb62ed56fac6ae5b7b80815", 0x93, 0x4b1b}, {&(0x7f0000002ac0)="25dc17458934d465f1a2be8a3f98af9d3cfe43ec53d7571d9326badc645e9c604c5362938ffd83e2d2dbb3a47185e0961b0ebcb92303e331e689a59728dd83f0664e1b62053ebdc4b980cf1216fd61f661d8ab77223ca401f845dfd630f459a959e0d34b91cdf00e56f12c0d", 0x6c, 0xffffffffffffffc1}, {&(0x7f0000002b40)="7a52a257c336b14a47714007b1dcd8ff847f3f1d82510910cb38aab5a050a956467581e784e46204e71c679d1f76b35202a746e509a724751d3317ea92c7ee731ecb44e37c3a623a473ec7acc47e0a9878b8def39eee0e8de3c81b662bbf637c7dc35fb784dfc893fa5be54d15b2eb79d0821f5c6242374ae9eb9f237f33c4b7e15bc725f5aabe09d88d04a8d3d9017e37f392ba97c9b526e0961f060ca944d4d297a6cad0efef48ca584ce39d2f183935e96be6b637e0689ae3ea7a1e", 0xbd, 0x8000}, {&(0x7f0000002c00)="c6013c06f0f2ead78387fad08122398a2a464df27957667ab2934b2cd09803a0b2ba1956b247faafb2ac33ebac3b6e117583733d9a6b2d146c7251517c7515bf9a3fec865097790c8e6aeeb7d9c17914a06b43ec3e6b0eb56b247643fa7065ffa513f885b15f68322ae783d694ec45ff3be0cfe05221fb76b73a391328a3657e8e", 0x81, 0x10001}, {&(0x7f0000002cc0)="9b079d33d2692e1fd59b50e4b3bc2a760ab095b7c4b2231e1dd1c7944b71557cbcb1be977b0c79124bb6eb4e247e98f621eed48f5e14a3d5de226b5d606169b3ac4fdaa4628003cc2b2262c7f014559ca8ef5f75bca31b29eae006e98db54ea2a11622b970bbd553ec71307012eb1a8b9fd8e1e977bd58c749ed", 0x7a, 0xffffffffffff23fc}], 0x900440, &(0x7f0000002e00)={[{@shortname_winnt}, {@numtail}, {@shortname_lower}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@shortname_mixed}, {@shortname_lower}, {@utf8no}], [{@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@dont_appraise}, {@seclabel}, {@smackfsfloor={'smackfsfloor', 0x3d, 'syz1\x00'}}, {@permit_directio}, {@fowner_eq}]}) ioctl$FS_IOC_GETVERSION(r9, 0x80087601, &(0x7f0000002f00)) syz_open_dev$tty20(0xc, 0x4, 0x0) r10 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000002f40)='./binderfs/binder-control\x00', 0x800, 0x0) ioctl$BTRFS_IOC_RESIZE(r10, 0x50009403, &(0x7f0000002f80)={{}, {@void, @max}}) 17:21:32 executing program 1: sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x400, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x15) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, r0, 0x100, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x1}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x8010) r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000300)='.pending_reads\x00', 0x301042, 0x204) perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x9, 0xe2, 0x7, 0x8, 0x0, 0x2, 0x35000, 0x8, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0xd52, 0x2, @perf_bp={&(0x7f0000000240), 0x1}, 0x3c4, 0x9, 0x52, 0x0, 0x9, 0x8, 0x1, 0x0, 0xc37, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r1, 0x2) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000340), 0x70000, 0x0) r3 = openat(r2, &(0x7f0000000380)='./file0\x00', 0x402000, 0x120) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r2) sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x30, r4, 0x0, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0xffffff42, 0x4f}}}}, [@NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x1}, @NL80211_ATTR_TWT_RESPONDER={0x4}, @NL80211_ATTR_TWT_RESPONDER={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0xc0c0}, 0x4008054) pwrite64(r3, &(0x7f0000000500)="d923229f3d8049cf419b4479cd657d0ce5aa06e7b0b97cd44cd275aea466f99011e5e3c66bca285f4df66997120ea73f6f005604ee12887c3408ff797de30421a2e062b3f1101942a48c90732b146930bf727280daadafd02bcabfb226b13d534a95dee95d07dd10df093e6da53636e59cd87c00d1fdcea719a73a4efc8873aad96820931bffbc50dfab7201ff", 0x8d, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000005c0), r1) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000640), r2) sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000800)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x21600040}, 0xc, &(0x7f00000007c0)={&(0x7f0000000680)={0x140, r5, 0x4, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0xad45, 0x6e}}}}, [@NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x1}, @NL80211_ATTR_HE_BSS_COLOR={0x18, 0x11b, 0x0, 0x1, [@NL80211_HE_BSS_COLOR_ATTR_COLOR={0x5, 0x1, 0x28}, @NL80211_HE_BSS_COLOR_ATTR_DISABLED={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}, @NL80211_HE_BSS_COLOR_ATTR_PARTIAL={0x4}]}, @crypto_settings=[@NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x884c}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_CIPHER_SUITE_GROUP={0x8}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_TX_RATES={0xd8, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x78, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x30, 0x2, [{0x0, 0x1}, {0x2, 0x7}, {0x2, 0x3}, {0x6}, {0x5}, {0x1, 0x5}, {0x3, 0x4}, {0x7, 0x3}, {0x0, 0x6}, {0x4, 0x3}, {0x7, 0x5}, {0x7, 0x9}, {0x4, 0x1}, {0x3, 0x6}, {0x5, 0x6}, {0x1, 0x5}, {0x5}, {0x4, 0x6}, {0x7, 0x4}, {0x6, 0x9}, {0x2, 0x5}, {0x0, 0x3}, {0x7, 0x1}, {0x4, 0x3}, {0x0, 0x6}, {0x7}, {0x5, 0x9}, {0x6, 0x6}, {0x2, 0x8}, {0x0, 0x5}, {0x0, 0x4}, {0x4, 0x5}, {0x0, 0x6}, {0x1, 0x5}, {0x0, 0x5}, {0x4, 0x7}, {0x4, 0x5}, {0x5, 0x5}, {0x1, 0x3}, {0x0, 0xa}, {0x0, 0x6}, {0x4, 0x1}, {0x1, 0x4}, {0x3}]}, @NL80211_TXRATE_HT={0x34, 0x2, [{0x4, 0x5}, {0x4, 0xa}, {0x0, 0x7}, {0x1, 0x7}, {0x3, 0x4}, {0x7, 0x7}, {0x1, 0x2}, {0x1, 0x8}, {0x0, 0x2}, {0x4, 0x8}, {0x2}, {0x1, 0x5}, {0x7, 0x3}, {0x6, 0x4}, {0x0, 0x4}, {0x2, 0x3}, {0x5, 0xa}, {0x0, 0x9}, {0x0, 0x3}, {0x7, 0x3}, {0x2, 0x5}, {0x1, 0x3}, {0x6, 0x1}, {0x1, 0x6}, {0x5}, {0x3, 0x8}, {0x7, 0x9}, {0x1, 0x8}, {0x2, 0x4}, {}, {0x7, 0x3}, {0x0, 0xa}, {0x6, 0x4}, {0x7, 0x3}, {0x4, 0x1}, {0x5, 0x8}, {0x4, 0x9}, {0x2, 0x7}, {0x2}, {0x1}, {0x1, 0x5}, {0x0, 0x2}, {0x5, 0x9}, {0x6, 0x2}, {0x6, 0x8}, {0x1, 0x8}, {0x7, 0x1}, {0x4, 0x2}]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_60GHZ={0x20, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x12, 0x30, 0x0, 0xd5b02d45213e9d9e, 0x1d, 0x24, 0x48, 0xc, 0x6c, 0x24, 0x8, 0x1b, 0x36, 0x5, 0x18, 0xc]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_2GHZ={0x30, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x16, 0x1, [0xb, 0x18, 0x9, 0x9, 0x18, 0x6c, 0x9, 0x3e, 0x3, 0x36, 0x30, 0x4, 0x2, 0x6, 0xc, 0x18, 0x18, 0xc]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x100, 0xb8c, 0x9, 0xfffd, 0x4, 0x4, 0xe1b]}}]}]}]}, 0x140}}, 0x0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000880), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000008c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r2, &(0x7f0000000980)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x28, r6, 0x100, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x20040831) syz_genetlink_get_family_id$nl80211(&(0x7f00000009c0), r3) ioctl$CDROM_NEXT_WRITABLE(r1, 0x5394, &(0x7f0000000a00)) r8 = accept4(r3, &(0x7f0000000a40)=@sco={0x1f, @none}, &(0x7f0000000ac0)=0x80, 0x80000) sendmsg$NL80211_CMD_STOP_AP(r8, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x14, r0, 0x20, 0x70bd2b, 0x25dfdbfe, {{}, {@void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40000044}, 0x40800) 17:21:32 executing program 2: madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x73) madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x64) shmat(0x0, &(0x7f0000ffd000/0x3000)=nil, 0x1000) r0 = shmget$private(0x0, 0x2000, 0x40, &(0x7f0000ffe000/0x2000)=nil) shmat(r0, &(0x7f0000fff000/0x1000)=nil, 0x7000) shmget$private(0x0, 0x4000, 0x1, &(0x7f0000ffc000/0x4000)=nil) mincore(&(0x7f0000ffa000/0x3000)=nil, 0x3000, &(0x7f0000000000)=""/81) madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xf) shmat(r0, &(0x7f0000ffd000/0x3000)=nil, 0x2000) mmap$binder(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x800) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x15) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000000, 0x20010, 0xffffffffffffffff, 0x10000000) r1 = shmget(0x0, 0x1000, 0x2, &(0x7f0000ffd000/0x1000)=nil) shmat(r1, &(0x7f0000fff000/0x1000)=nil, 0x3000) r2 = dup(0xffffffffffffffff) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x1110, r2, 0x8000000) shmat(r1, &(0x7f0000ffc000/0x4000)=nil, 0x6000) madvise(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0xf) r3 = shmget$private(0x0, 0x3000, 0x80, &(0x7f0000ff9000/0x3000)=nil) shmat(r3, &(0x7f0000ffa000/0x4000)=nil, 0x3000) 17:21:32 executing program 3: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'}) syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r1) r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000200)={&(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff9000/0x7000)=nil, &(0x7f00000000c0)="d941de020a5671283987a2bea9e2e8274e792eb168848b97abf8e2f4c6af18a31d67f65854fcea350d54d09ff2259e58d4b651ac9b184e1a760a91a40eaefc7e4c1e6ef413612f96bcdaaec8ba10ec4f43235a36589e1c699bec95db2ea27129e99ffe3e31a1302907c057bff0f0d593f46017ca59ea37ef1e27d2511956db79221182e049cf380024f252030421c8aeec41c7f1cd26796f4c0f75aa1b8f908691cd45fe215001af33e39cf92dc6fabc9f5e75d88f48cbcf86c0809d0c407c068c12b5aa1903cea2c3cb09d527b097cbc7552ab6d566bcd482737d97f09ee77d28eb9f", 0xe3, r3}, 0x68) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000a80), 0x26002, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f0000000ac0)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000b00), 0x400000, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r6, 0xc0189376, &(0x7f0000000b40)={{0x1, 0x1, 0x18, r5, {0x400}}, './file0\x00'}) sendmsg$GTP_CMD_GETPDP(r5, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x14, 0x0, 0x2, 0x70bd25, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x4004804}, 0x40) r7 = socket$inet_icmp(0x2, 0x2, 0x1) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001380)=@IORING_OP_SEND={0x1a, 0x3, 0x0, r7, 0x0, &(0x7f00000012c0)="d9f9defb9cd9f1e97ea2b56915ba5ba43df73165c51afc711ca4e02fdcaec30285721bc5fa73ec211d9cb4e1cd0447c815a4bad8ba124ee69e6090fadb9903588f7d14e9c7727e2b401d7aa3fb813225ef75326c91b0c91ebc2fa8189bf5367f0fef5f0346c832e9ab0f63f9139e2f339f2228a36de6c90017767981817ac77e3b726537", 0x84, 0x40001, 0x1}, 0x7) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x4, 0xccf17316cc5f09b9, r6, 0x0) syz_io_uring_submit(r8, 0x0, &(0x7f00000013c0)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd_index, 0x0, 0x0, 0x7, 0x5, 0x1, {0x0, 0x0, r6}}, 0x4) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000001500)={'tunl0\x00', &(0x7f0000001440)={'syztnl1\x00', 0x0, 0x1, 0x20, 0x2, 0x8, {{0x23, 0x4, 0x3, 0x3f, 0x8c, 0x64, 0x0, 0x2, 0x29, 0x0, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@end, @timestamp_addr={0x44, 0x34, 0x81, 0x1, 0x7, [{@multicast2, 0x400}, {@empty, 0x5}, {@rand_addr=0x64010102}, {@broadcast, 0x3}, {@local, 0x8}, {@broadcast}]}, @generic={0x44, 0x10, "f636db72d1eeb4dc76bcd2390b23"}, @end, @generic={0x86, 0xe, "d67b2fc831e5fd42442f3c1d"}, @lsrr={0x83, 0x23, 0x64, [@empty, @multicast2, @broadcast, @rand_addr=0x64010100, @multicast1, @private=0xa010100, @rand_addr=0x64010101, @loopback]}]}}}}}) sendmsg$GTP_CMD_NEWPDP(r6, &(0x7f0000001600)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001540)={0x44, 0x0, 0x200, 0x70bd27, 0x25dfdbfd, {}, [@GTPA_O_TEI={0x8}, @GTPA_I_TEI={0x8, 0x8, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @multicast2}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @remote}, @GTPA_LINK={0x8, 0x1, r9}]}, 0x44}, 0x1, 0x0, 0x0, 0x21}, 0x4800) syz_io_uring_setup(0x47c0, &(0x7f0000001640)={0x0, 0x4f23, 0x10, 0x2, 0x241, 0x0, r2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000016c0), &(0x7f0000001700)) r10 = fsmount(r2, 0x0, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r10, 0x8916, &(0x7f0000001740)={@private0, 0x58, r9}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xfe) 17:21:32 executing program 4: ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7}}, './file0\x00'}) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000680)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000640)={&(0x7f00000000c0)={0x54c, r1, 0x200, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x2a}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x12dc}, @NL80211_ATTR_FRAME={0xa5, 0x33, @action={@wo_ht={{0x0, 0x0, 0xd, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, {0xee}, @broadcast, @device_b, @from_mac, {0x4, 0x8}}, @tdls_teardown={0xc, 0x3, {0x42, {0x37, 0x6f, {0x0, 0x2, "734f056631e45b7c9fc19f9efe425e93", "2d1798913f06180f98295f5a1dd5888836bedb6076b719cb27e500931c52652e", "7a7011defb9f353493220fab9d234aed2e46fe7ea987906dffd00a80c1470aa3", [{0x2, 0x8, "cc49a7925b8b4498"}, {0x4, 0x11, "fa4700af8dde110cbac9786cda33e77e03"}]}}, {0x65, 0x12, {@random="0182fff25735", @device_a, @device_b}}}}}}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xa, 0xcd, [0x101, 0x5, 0x6]}, @NL80211_ATTR_FRAME={0x3d0, 0x33, @reassoc_req={@wo_ht={{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {0xba}, @broadcast, @device_a, @from_mac=@device_b, {0x1, 0x8}}, 0x8800, 0x4, @broadcast, {0x0, 0x6, @default_ap_ssid}, @void, @val={0x2d, 0x1a, {0x20, 0x3, 0x1, 0x0, {0x8d, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x6, 0x6, 0x4}}, [{0xdd, 0x82, "2738a9edb9436a1e791ff420f23930e617c7402aae49144893ba59bdcf5ccd23a2c9714ed9d5171fb1f61670647c65cba83f3157fa3864c18a6978cbceb6be72da782b2ea0045481575ab1e0b7db2c61c314e84e453501e333d4583389feb222ecca0d573f480949f7a764abf6cc9f53bf90a4452079bbe92d907a262ef6fd5648db"}, {0xdd, 0x26, "0ef7d5796af28d8f6c2d20fa564c1bd66b387d9cadc4565b6890618f980fa4166769cbb76213"}, {0xdd, 0x9a, "8e6c82560eb56ebf5229bfbd29f92e8b53af9e1b9583ca51ff124a8de779e7befa7968e8d861eb931b9a2852a07e06dc659062d744bf6b446234d2565f3c7a59bbdae7a156d6591de0f5579669fc64d9dbc1e5740f2edccbcf7fd635dd2b45efde5f41657f62ce572a53126e150f8a3df6473d45fb04cff94cfff288182d26fdaa0cdc161877b50bba739c51b8b60f62bfc45f29d2798411d1f5"}, {0xdd, 0xef, "8763f7161990af01b3655ee0b5f70f737c079ddbc07e1679176d73067c5344b354d3bf334644fc75aa7a89363890f5250d33863a9e24ca11668c2b1cc120cd3b127c74ff857737a68605baa15360be03d728592d24f80048d3161d6ce80b7bbed11124e0fc3bc27f8da7d8237457b8e51395972a1fce68b94ed985af65f8c5e5ff2aa28e4ee24e0ebad850818b61530626fc3a496c2740c4474a555a09b390f317e2f912146ec53fab2d06311cb5dc4dac1b6cca952031fbd80bd49093b5a696584950184ff70ba48d7b11d96b2839c1db3f68b190e62c02d70ee67e71bed6c0976364ab1ac142c88fd2bc751302fd"}, {0xdd, 0x52, "6a272af2e73aa9868a92a6ed97fad6b19ffe4751a45b7438f2bece4215e71d15eccf3d51399cbaf6cf7d59d5ec3066b63883f388be40286182bb9a37ac0182b0a0e2d60fb64a4f8092a9e82fa666898a9952"}, {0xdd, 0x5f, "210b9ff0eca72a989909c83be7d9fea366478a5a3cf9ad119ebab355bbf039e14e8d0818009fbc63af48d0c346cdc74819bfd6b1221b1bbc64dbe034eaeaaf72aed9c7946fddf572eb13f627f8d7299b0b21c9d025fbf654e19693295a43c2"}, {0xdd, 0x96, "b383d3f7b678e64e80725aa1ac7e69551396d2e97fc97f8da0a9d84cec2ee76a975efe4f50dea0c5e49dffb76a8c8f6edf7a2423f910b3a99a3ae11a78be8eed6b2981a7c45f55c673c8f50ef2050234d335f0476a623a10dab0440ecc49be94c7667fea3c57935eaf8d61e3bb60d3373f077194031f412d0df44c11a2d19c6b12212290c8eafcbaa3ac80c13984c21021ae82ad224f"}]}}, @NL80211_ATTR_FRAME={0x51, 0x33, @reassoc_req={@with_ht={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x3f}, @broadcast, @broadcast, @from_mac, {0x1, 0x1}}, @ver_80211n={0x0, 0x3, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1}}, 0x25d340c14daaf49e, 0x69b8, @device_b, {0x0, 0x18, @random="0ed02210db6a2485b9f92c0af0c04e53430a4773b8206bde"}, @void, @void, [{0xdd, 0xb, "2d370b29a265dd1424cbc8"}]}}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xd69}, @NL80211_ATTR_FRAME={0x37, 0x33, @action_no_ack={@with_ht={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x6}, @device_a, @broadcast, @random="bf86dd63d331", {0x4, 0x3f}}, @ver_80211n={0x0, 0xcc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}}, @tdls_setup_req={0xc, 0x0, "", 0xf7, @void, @void, @void, @val={0x65, 0x12}}}}]}, 0x54c}, 0x1, 0x0, 0x0, 0x80}, 0x4801) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000740), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000800)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x20, r3, 0x1, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x3, 0x2d}}}}, ["", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x20004001}, 0x24000000) ioctl$FS_IOC_FSGETXATTR(r0, 0x801c581f, &(0x7f0000000840)={0x8000, 0xdd, 0x1, 0x8001, 0x8a}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000008c0), r2) sendmsg$NL80211_CMD_GET_COALESCE(r0, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x14, r4, 0x4, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @void, @void}}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000a00)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a40)={0xac, r3, 0x400, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MAC_ADDRS={0x58, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}, {0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}]}, 0xac}, 0x1, 0x0, 0x0, 0x20000082}, 0x20000080) fallocate(r2, 0x74, 0x3, 0x2) pipe2(&(0x7f0000000b80)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) setsockopt$inet6_udp_encap(r6, 0x11, 0x64, &(0x7f0000000bc0)=0x4, 0x4) syz_genetlink_get_family_id$nl80211(&(0x7f0000000c00), r7) socket$inet_icmp_raw(0x2, 0x3, 0x1) recvmmsg(r0, &(0x7f0000007f40)=[{{&(0x7f0000000c40)=@caif, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000cc0)=""/183, 0xb7}, {&(0x7f0000000d80)=""/123, 0x7b}, {&(0x7f0000000e00)=""/48, 0x30}], 0x3, &(0x7f0000000e80)=""/112, 0x70}, 0x5}, {{&(0x7f0000000f00)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private0}}}, 0x80, &(0x7f0000003440)=[{&(0x7f0000000f80)=""/10, 0xa}, {&(0x7f0000000fc0)=""/240, 0xf0}, {&(0x7f00000010c0)=""/105, 0x69}, {&(0x7f0000001140)=""/78, 0x4e}, {&(0x7f00000011c0)=""/121, 0x79}, {&(0x7f0000001240)=""/171, 0xab}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/165, 0xa5}, {&(0x7f00000023c0)=""/67, 0x43}, {&(0x7f0000002440)=""/4096, 0x1000}], 0xa, &(0x7f0000003500)=""/100, 0x64}, 0x9}, {{&(0x7f0000003580)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, &(0x7f0000003840)=[{&(0x7f0000003600)=""/185, 0xb9}, {&(0x7f00000036c0)=""/188, 0xbc}, {&(0x7f0000003780)=""/36, 0x24}, {&(0x7f00000037c0)=""/70, 0x46}], 0x4, &(0x7f0000003880)=""/4096, 0x1000}, 0xd7ca}, {{&(0x7f0000004880)=@alg, 0x80, &(0x7f0000004c00)=[{&(0x7f0000004900)=""/162, 0xa2}, {&(0x7f00000049c0)=""/187, 0xbb}, {&(0x7f0000004a80)=""/60, 0x3c}, {&(0x7f0000004ac0)}, {&(0x7f0000004b00)=""/227, 0xe3}], 0x5, &(0x7f0000004c80)=""/4096, 0x1000}}, {{0x0, 0x0, &(0x7f0000006c80)=[{&(0x7f0000005c80)=""/4096, 0x1000}], 0x1}, 0x8}, {{&(0x7f0000006cc0)=@vsock={0x28, 0x0, 0x0, @hyper}, 0x80, &(0x7f0000007e00)=[{&(0x7f0000006d40)=""/4096, 0x1000}, {&(0x7f0000007d40)=""/14, 0xe}, {&(0x7f0000007d80)=""/98, 0x62}], 0x3, &(0x7f0000007e40)=""/221, 0xdd}, 0xff}], 0x6, 0x0, &(0x7f00000080c0)={0x77359400}) setsockopt$inet_tcp_int(r8, 0x6, 0x17, &(0x7f0000008100), 0x4) sendmsg$NL80211_CMD_VENDOR(r8, &(0x7f0000008200)={&(0x7f0000008140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000081c0)={&(0x7f0000008180)={0x3c, r1, 0x800, 0x70bd26, 0x25dfdbfe, {{}, {@void, @val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x4}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x1}, @NL80211_ATTR_VENDOR_DATA={0xe, 0xc5, "909fcaffec12b303eb98"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x48000}, 0x0) setsockopt$sock_int(r6, 0x1, 0x3c, &(0x7f0000008240)=0x9, 0x4) 17:21:32 executing program 5: ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(0xffffffffffffffff, 0x80083313, &(0x7f0000000000)) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000f40)=[{{&(0x7f0000000040), 0x6e, &(0x7f0000000180)=[{&(0x7f00000000c0)=""/190, 0xbe}], 0x1, &(0x7f00000001c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000240)=""/132, 0x84}, {&(0x7f0000000300)=""/236, 0xec}, {&(0x7f0000000400)=""/39, 0x27}, {&(0x7f0000000440)=""/211, 0xd3}], 0x4}}, {{&(0x7f0000000580)=@abs, 0x6e, &(0x7f0000000700)=[{&(0x7f0000000600)=""/249, 0xf9}], 0x1, &(0x7f0000000740)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x178}}, {{&(0x7f00000008c0)=@abs, 0x6e, &(0x7f0000000c80)=[{&(0x7f0000000940)=""/182, 0xb6}, {&(0x7f0000000a00)=""/118, 0x76}, {&(0x7f0000000a80)=""/146, 0x92}, {&(0x7f0000000b40)=""/135, 0x87}, {&(0x7f0000000c00)=""/84, 0x54}], 0x5, &(0x7f0000000d00)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{&(0x7f0000000dc0), 0x6e, &(0x7f0000000f00)=[{&(0x7f0000000e40)=""/130, 0x82}], 0x1}}], 0x5, 0x0, &(0x7f0000001080)={0x0, 0x3938700}) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r3, 0x80083313, &(0x7f00000010c0)) r7 = openat$vcs(0xffffffffffffff9c, &(0x7f0000001100), 0x8000, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000001140)={{0x1, 0x1, 0x18, r7, {r6}}, './file0\x00'}) stat(&(0x7f0000001180)='./file0\x00', &(0x7f00000011c0)) readv(r4, &(0x7f0000001440)=[{&(0x7f0000001240)=""/162, 0xa2}, {&(0x7f0000001300)=""/62, 0x3e}, {&(0x7f0000001340)=""/181, 0xb5}, {&(0x7f0000001400)=""/20, 0x14}], 0x4) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000006100)=[{{&(0x7f0000001480), 0x6e, &(0x7f0000001ac0)=[{&(0x7f0000001500)=""/162, 0xa2}, {&(0x7f00000015c0)=""/178, 0xb2}, {&(0x7f0000001680)=""/146, 0x92}, {&(0x7f0000001740)=""/240, 0xf0}, {&(0x7f0000001840)=""/190, 0xbe}, {&(0x7f0000001900)=""/243, 0xf3}, {&(0x7f0000001a00)=""/4, 0x4}, {&(0x7f0000001a40)=""/1, 0x1}, {&(0x7f0000001a80)=""/29, 0x1d}], 0x9, &(0x7f0000001b80)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}, {{&(0x7f0000001c80)=@abs, 0x6e, &(0x7f0000002d00)=[{&(0x7f0000001d00)=""/4096, 0x1000}], 0x1, &(0x7f0000002d40)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x110}}, {{&(0x7f0000002e80)=@abs, 0x6e, &(0x7f0000002f40)=[{&(0x7f0000002f00)=""/3, 0x3}], 0x1}}, {{&(0x7f0000002f80), 0x6e, &(0x7f0000004000)=[{&(0x7f0000003000)=""/4096, 0x1000}], 0x1}}, {{0x0, 0x0, &(0x7f0000005180)=[{&(0x7f0000004040)=""/201, 0xc9}, {&(0x7f0000004140)=""/4096, 0x1000}, {&(0x7f0000005140)=""/15, 0xf}], 0x3}}, {{&(0x7f00000051c0), 0x6e, &(0x7f0000005480)=[{&(0x7f0000005240)=""/126, 0x7e}, {&(0x7f00000052c0)=""/78, 0x4e}, {&(0x7f0000005340)=""/17, 0x11}, {&(0x7f0000005380)=""/171, 0xab}, {&(0x7f0000005440)=""/6, 0x6}], 0x5, &(0x7f0000005500)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x98}}, {{&(0x7f00000055c0)=@abs, 0x6e, &(0x7f0000005900)=[{&(0x7f0000005640)=""/225, 0xe1}, {&(0x7f0000005740)=""/72, 0x48}, {&(0x7f00000057c0)=""/54, 0x36}, {&(0x7f0000005800)=""/234, 0xea}], 0x4, &(0x7f0000005940)=[@cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f0000005a00)=@abs, 0x6e, &(0x7f0000005c80)=[{&(0x7f0000005a80)=""/117, 0x75}, {&(0x7f0000005b00)=""/127, 0x7f}, {&(0x7f0000005b80)=""/31, 0x1f}, {&(0x7f0000005bc0)=""/47, 0x2f}, {&(0x7f0000005c00)=""/81, 0x51}], 0x5}}, {{&(0x7f0000005d00)=@abs, 0x6e, &(0x7f0000005e00)=[{&(0x7f0000005d80)=""/82, 0x52}], 0x1, &(0x7f0000005e40)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000005e80)=@abs, 0x6e, &(0x7f0000006040)=[{&(0x7f0000005f00)=""/6, 0x6}, {&(0x7f0000005f40)=""/79, 0x4f}, {&(0x7f0000005fc0)=""/95, 0x5f}], 0x3, &(0x7f0000006080)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}], 0xa, 0x10041, &(0x7f0000006380)={0x0, 0x3938700}) r11 = syz_genetlink_get_family_id$ipvs(&(0x7f0000006400), r0) sendmsg$IPVS_CMD_NEW_SERVICE(r10, &(0x7f00000064c0)={&(0x7f00000063c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000006480)={&(0x7f0000006440)={0x2c, r11, 0x10, 0x70bd2d, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffffffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xe33}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004000}, 0x44000) openat(r8, &(0x7f0000006500)='./file0\x00', 0x0, 0x107) getsockopt$inet_IP_IPSEC_POLICY(r9, 0x0, 0x10, &(0x7f00000069c0)={{{@in=@initdev, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast2}, 0x0, @in6=@ipv4}}, &(0x7f0000006ac0)=0xe8) newfstatat(0xffffffffffffff9c, &(0x7f0000006b80)='./file0\x00', &(0x7f0000006bc0)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_mount_image$vfat(&(0x7f0000006540), &(0x7f0000006580)='./file0\x00', 0xda, 0x6, &(0x7f0000006900)=[{&(0x7f00000065c0)="faf64d9f11f65a6b9a02132dd5b743b669e88e6a23ec949afdee850339b105309cf4e339309109fc12", 0x29, 0x9}, {&(0x7f0000006600)="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", 0xff, 0x1}, {&(0x7f0000006700)="ba2d22211e63ae5b218a6ab911107c117c767958c8087e5b9feb11f0e652b84020f282a53eb84248bc555d873bb423678cdab14d5182ab1e472fbd1748ff3d16d4d4e5739e4a469b5b2d22f35514218dfa2657058ba67305e3c07d421269dfee0d81d868211d6a95d256bbb5afb266d245fffba1b89629e0a1bf40291f163c932bfd2dae1c652e0dc51ad317748ca4ee62ac01f335da707287a905a976bf7f5b94c1403d4c4a7d959e902b6370b85c176a7ae3be2acb2b", 0xb7, 0x5}, {&(0x7f00000067c0)="80f33d771ddf4d067bf0f2505ac9871e25437ef6dab3ee9bcc4b57722fd2a30041bf845390f61d4b", 0x28, 0x6}, {&(0x7f0000006800)="b558e99bb101c2ac4dc4cb424fc65675107e30fe5eefdd90943b9b74c2b11ed832314864b3607a1f1cb083202607ddccb8e4f2d2c67ee7be9fb491849ae25f90f84913acbaf496d2146f85ff263debf15ea1b70289c936518b33b04ee423a15178904612e66e9eb9c3a5db9b29c0f37517a3a5f673edb436223fe18d1a30945450099b8bd82da9621c314d11cc0127d3b3076152a9e8c19be5365254e4fee2a3a8d721261766031af34159789926", 0xae, 0x800}, {&(0x7f00000068c0)="d4cc5ab49d2a974f02b5994fa9462b05a0cbad845c66df73c2f9df2b8ac8ec34408e1b58b51237f414fbdd92b01217806cc2a0dec815", 0x36, 0xffff}], 0x4000b, &(0x7f0000006c40)={[{@iocharset={'iocharset', 0x3d, 'cp862'}}, {@utf8no}, {@shortname_winnt}], [{@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@permit_directio}, {@uid_eq={'uid', 0x3d, r13}}, {@uid_lt={'uid<', r14}}, {@smackfshat}]}) r15 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000006d00)='./cgroup.net/syz1\x00', 0x200002, 0x0) r16 = socket(0x5, 0x4, 0x6) close_range(r15, r16, 0x2) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000006d40)={r2, 0x7, 0x1, 0xff}) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000006d80)='./cgroup/syz1\x00', 0x200002, 0x0) sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000007040)={&(0x7f0000006dc0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000007000)={&(0x7f0000006f80)={0x44, 0x0, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x80) [ 78.421606] audit: type=1400 audit(1663176092.455:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:21:32 executing program 7: ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000300)={'syztnl2\x00', &(0x7f0000000280)={'syztnl0\x00', 0x0, 0x29, 0x6, 0x3, 0xf8000000, 0x50, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast2, 0x80, 0x8000, 0x8000, 0x590}}) sendmsg$FOU_CMD_ADD(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x60, 0x0, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@FOU_ATTR_TYPE={0x5}, @FOU_ATTR_PEER_V4={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_PEER_V6={0x14, 0x9, @mcast1}, @FOU_ATTR_IFINDEX={0x8, 0xb, r0}, @FOU_ATTR_PEER_V4={0x8, 0x8, @private=0xa010102}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e20}, @FOU_ATTR_IFINDEX={0x8}]}, 0x60}, 0x1, 0x0, 0x0, 0x800}, 0x8000) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000440)={'ip_vti0\x00', 0x0}) sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000005c0)={&(0x7f00000004c0)={0xd0, 0x0, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}]}, @HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x8000}, 0x800) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f0000000640)=r0) ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000680)={0x0, 0x2, [@multicast, @local]}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000700), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_WOWLAN(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001240)={&(0x7f0000000740)={0xadc, r2, 0x300, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x1, 0x5c}}}}, [@NL80211_ATTR_WOWLAN_TRIGGERS={0xa4, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_ANY={0x4}, @NL80211_WOWLAN_TRIG_DISCONNECT={0x4}, @NL80211_WOWLAN_TRIG_RFKILL_RELEASE={0x4}, @NL80211_WOWLAN_TRIG_TCP_CONNECTION={0x90, 0xe, 0x0, 0x1, [@NL80211_WOWLAN_TCP_DATA_PAYLOAD={0x7c, 0x6, "7d2dfaa0a0b896b8e346d2e488e8e1ca8248f7bf1b3f477d6d6885faa4d3fc224e2e8e3f57ef474981cc215f4f13e9cd2de3d70a6dae0b5bf8c143a869854316a6af56f4ddb937e69299dccf482a82c1bf3d737f0d13f855c467ee885b82ce84c73546c0041c2915cbb7a737b106b1c8cd3f1b5e2876a540"}, @NL80211_WOWLAN_TCP_DST_IPV4={0x8, 0x2, @local}, @NL80211_WOWLAN_TCP_DST_IPV4={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x16}}]}, @NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x8, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x18c, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_ANY={0x4}, @NL80211_WOWLAN_TRIG_NET_DETECT={0x14, 0x12, 0x0, 0x1, [@NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x8, 0x59}}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x850}]}, @NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST={0x4}, @NL80211_WOWLAN_TRIG_ANY={0x4}, @NL80211_WOWLAN_TRIG_TCP_CONNECTION={0x15c, 0xe, 0x0, 0x1, [@NL80211_WOWLAN_TCP_DATA_PAYLOAD={0xc2, 0x6, "b6035e6257e0f2d47ca8de4eb81bd5f5517f0560c8b07f1dff144597c3e491fc9e0d160994977179c79186a715344b10c62823cd1c8bfed5001d516dcce8f047de5a14dd5f4176a281b05411ac1d342f4e1d6d3689c4eb4ae0442a1d19b37d470b1d52329004fc54618819bf3aa1410a3751617502ae1dea5da1b82dab69e9f443c1054aeeb9607e468562e59dce33a2f46c0cfcbdad356a83506d57b08729c87737856548d6e5dd5a3482445d9c447aafa532989e458d68c1ac14739b23"}, @NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN={0x51, 0x8, {0x9, 0x1, "6b839c95d252d122754658e79f00e73333ac91f98ee20d2f7bc47638657dbf4b95883d2e6cef0cbcd5f5c3a8308860373ca11f728fab01b39fdcbd08d609ac38bc9860590d"}}, @NL80211_WOWLAN_TCP_SRC_IPV4={0x8, 0x1, @loopback}, @NL80211_WOWLAN_TCP_DST_MAC={0xa, 0x3, @broadcast}, @NL80211_WOWLAN_TCP_DST_PORT={0x6, 0x5, 0x800}, @NL80211_WOWLAN_TCP_DATA_INTERVAL={0x8, 0x9, 0x4}, @NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ={0x10, 0x7, {0x8, 0xfffff001, 0x32}}, @NL80211_WOWLAN_TCP_WAKE_MASK={0xc, 0xb, "218b0f4c21072695"}]}, @NL80211_WOWLAN_TRIG_RFKILL_RELEASE={0x4}, @NL80211_WOWLAN_TRIG_MAGIC_PKT={0x4}, @NL80211_WOWLAN_TRIG_ANY={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0xc, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_DISCONNECT={0x4}, @NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE={0x4}]}, @NL80211_ATTR_WOWLAN_TRIGGERS={0x870, 0x75, 0x0, 0x1, [@NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE={0x4}, @NL80211_WOWLAN_TRIG_PKT_PATTERN={0x4}, @NL80211_WOWLAN_TRIG_PKT_PATTERN={0x684, 0x4, 0x0, 0x1, [{0x304, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_PATTERN={0xef, 0x2, "dbaeacd4c5b9d4e517b46e15cb5b0fa77a634d5a5adb06bbe2228abae0eeea8bed8b8cb12960fe9482d7138b757ac320064ca5342c218793798e958a4a6f57eceed442af3e18619498684d798a8329270e2526ba5f0fa9d9eda360adb9a1aeb8bd67646d6d7cf15b1c30015a9a3f8400a39dc4008b9169532fe06071c2be6122cf489fee062ae7dfdb53704fd3c8757863b84ae6a2307c857bda0f95e4468e8bb221ba1a114a1b25fd6aa7ddcff68c61c496d4b2cd5b5c550177f6cef5f9bedeeb95d76cc87e1287dfbd2af4ec92781134a3c0f8368ec6228a07857eb1c896a94e307627d204660eb452a9"}, @NL80211_PKTPAT_MASK={0xde, 0x1, "450b07033fedc2e2214d74d652755bb978bd84c12dbb5c3bc5b272a61ceb958d5d5f00e672d6091465d1dc4c551ffaf15ba77778738e8402ed3fdced70f2e7e04f14a57064023f9fb92874007728e00a64ee5e62d78a7188bd4f9ad53828b76b345aa494dbe694378cd5597647305f91927693120f96d2a164dae51302779395189ce7b2ca1836d5ccd634f238851268654ad87426b43381cca27445e0286e2f39c5b23372ad8475aea64272490fcd6003b93219d5dd0e7e0abc1cc5600b05c4189e7a65a6d25953695ab39aa5ec500af41e34ea0afd7cc79022"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x2b}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x5}, @NL80211_PKTPAT_MASK={0xaa, 0x1, "11af6399b293257999d2e5deeff078a687545d67771d71a56a45e51c17cc117f0accd039efcba229227e007b2cafc19a49930d4fc282d14fec09c57d12ada64435ab33078d0f8db7d2c17685505cd396e8f9f52b42201845b44c4cd1706161ab3e5fe7355c65efc25e5e5e5ba1803db84e32cecb71c8e5860c45f32304651709205e69c0fe49a5a1a1b485efabc2dfedd06f19ca79f52c1fbad4fd8e651f21cac547b05e9b0e"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x4c5bba34}, @NL80211_PKTPAT_MASK={0x5a, 0x1, "ece39ccd164272e903ca950746edc22730c59b701df386be1841c3afcab2dfb876be7318c96d29860bf65702ef8955c4f5f31fa590edcef4a9c6535d2d5d2801e5b7e3b7a6c386b0a5ae8c64f2c6513c99628852fc1d"}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0xd3}, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x7}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_OFFSET={0x8, 0x3, 0xdd}]}, {0x370, 0x0, 0x0, 0x1, [@NL80211_PKTPAT_PATTERN={0x74, 0x2, "1f1c3cde66c2872e62c7a5952e80adc63b7f81d7b2b66e9e7ac471569294950b689b571fd481d2fb69ed6004df95ca44a5be541cabb56c69ae7d4daa177db26499b1d3b9141a3ec17a7ced2a07377b572d293088b162c418ef923572d5641b81eef6d380e0066a566644fd9dcd673508"}, @NL80211_PKTPAT_PATTERN={0xb8, 0x2, "34c73a2a49f0fe55375d58c3d79664ef4d6cfc4e846d42eb11b12c250c53384b9c177edfb12a3ed3c21b9e77f6fa02b0691ad027d896502e8cc5cb793607ade2091138d60f8ed7bb6089b72d78310df537a668cf7a87def9ff9d46c5e052e7df8938e4185c10daa06c93afe27155b200d675091e1f3b67204ac080beeb6736a9b025f95ea4c9d6ce3c78e91a4e2250d4ccd5ae5663a5edcb8abbf2b4f2b8c529610bd2e7de18761b4646d81518e6d0bb5c7f4ede"}, @NL80211_PKTPAT_PATTERN={0x32, 0x2, "de4e7947104c28594fc755d721513a358a8bda6be9bd3477367eb73d75baa7d5e3992c0069d6b5885588cbb0add8"}, @NL80211_PKTPAT_PATTERN={0x47, 0x2, "3658a6f9c3229ac282631bed43647c24ddb49d52505b6f40bee5ace95559fc3746d0607226215fa655ed1895bcb71e7917a2a89c9eca1af63627711ef61f4910b84f54"}, @NL80211_PKTPAT_PATTERN={0x77, 0x2, "e47563cf2466a1bde19e3a89eaf2518b7d4d4799c9079b26cfaccf58e935aa9dc113ac386c8704901b8faea06489a949f550eb80e293f7945ac88c03791fa2fe9cc89c594a538f4939beefb7cccde9ed46d8c17ef4d7b4d45f30bb1c516093532c93316c08bfde0f1fc8769c02b4910216cc6f"}, @NL80211_PKTPAT_MASK={0x4f, 0x1, "d907ba5f4cd0dec758e0a96168150314aba4c17bc772b18d736c0e3fc00a58bbe0df2abf4ababae69faf965cd2ba198a8181dc5fa4f2a4382bc6f1207893c3f1041750fa1ef9315a9ec2e7"}, @NL80211_PKTPAT_MASK={0xfb, 0x1, "21bd34792c56176e84889b8450a5afaf0740b0604fd5882952a7a975a8edb33a0ff074cc77240752b14690713293566422188cf5212db17f9e4827a8fa727c68444faa5a75148e65635aa3a547a82738047e8787bfb9c0865a7260ae76505b96e6f9a2d93300d41f6c6f1003ecf4dd888bfc25d2cb945ba67c108c36cb423171466bb5a35d75c0b866144f455540b2538f168f631e187a0ba43ab4fc8496de7069922cdf384fb3b64a5fe539ccd347c53146178a938a01b31235532853770584bd1f166f26714b5b07c21ab61a15d98ab4c2e1b72e93fb4df42bfaa7f6b408e1d93ece892188f65e89c9e47e238fe66030d8400591bd2e"}]}]}, @NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE={0x4}, @NL80211_WOWLAN_TRIG_DISCONNECT={0x4}, @NL80211_WOWLAN_TRIG_MAGIC_PKT={0x4}, @NL80211_WOWLAN_TRIG_TCP_CONNECTION={0x1c8, 0xe, 0x0, 0x1, [@NL80211_WOWLAN_TCP_WAKE_PAYLOAD={0xd6, 0xa, "02e3949dce09ffce958881a010bdb3de82155e65212a708ea7b14132ccdd354b7390da0848deb9abe33ca3fab419e191ee6adf5219762b66e96ddcd8307ca9c7d6c782fb457a8860edc846a465aadbb36f98f547b0cdbd0859492e211869db238e891a8e9d792655161c08f3067a9d9c599dee1b97eee72d0b651741ea24888a7bf00337deecdd7909e1ee9b66c2a46e4250235443aec952c7d67cf9635fefb6e7e9c9e863f56696d0c0d389daed33f5c84abdad3f9187373fb86dc339e7b45216aa0053d3c8418190cba5746cbccce902af"}, @NL80211_WOWLAN_TCP_DST_MAC={0xa, 0x3, @broadcast}, @NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ={0x10, 0x7, {0xfffffff8, 0x7, 0xd20c}}, @NL80211_WOWLAN_TCP_DST_PORT={0x6, 0x5, 0x7}, @NL80211_WOWLAN_TCP_DATA_INTERVAL={0x8, 0x9, 0xffffffff}, @NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ={0x10, 0x7, {0x1, 0x10001}}, @NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN={0x3a, 0x8, {0x10001, 0x3, "e8e7a207d03299557a5d92ce55c30654cc0d602fb3c9dd6efe997700c45c476584493b3460e016c3f447b404444b"}}, @NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN={0x35, 0x8, {0x1f, 0x6, "1785a981bfbd31d4d16e3673c9b06b94c11c70f2bf92b34b384ab973a5c2c44554106b83db3d928881"}}, @NL80211_WOWLAN_TCP_WAKE_MASK={0x2f, 0xb, "2fc2992a6fe26b6401c89baf21c034051db8a07eea29a76c2cfad75018d0cfffbad3dea770eef28c689c54"}, @NL80211_WOWLAN_TCP_DST_MAC={0xa, 0x3, @broadcast}]}, @NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE={0x4}, @NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST={0x4}, @NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE={0x4}]}]}, 0xadc}, 0x1, 0x0, 0x0, 0x4040}, 0x4000080) bind(0xffffffffffffffff, &(0x7f00000012c0)=@nfc={0x27, 0x0, 0x0, 0x6}, 0x80) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000001340)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x81}}, './file0\x00'}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_REGISTER_FRAME(r3, &(0x7f0000001540)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x80021000}, 0xc, &(0x7f0000001500)={&(0x7f0000001400)={0xdc, r4, 0x400, 0x70bd26, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME_MATCH={0xaf, 0x5b, "1b50c141deae8c8196d499877da6d3f24d65e316033a13a81423fc6fca654fab6b75f0ee32fed25436b12f24a62ae2af4227ff655aaa22511455f2b2bedea4f843582d486d005afc74a49d1200504ba83201b55a1befbaf4f35d88d4627b20974408a8708f5aa9cdf3585e1aaf24dd06b409a2f2df1953042b77f49ba3c89f84dde9b3d2494ae1247f39d008db890890a11e0087d015eff31d6f99953efaca6e2073d390a936f78e929b05"}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0xc7a1}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x1}, @NL80211_ATTR_FRAME_TYPE={0x6}]}, 0xdc}, 0x1, 0x0, 0x0, 0x800}, 0x10011) getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000015c0)={{{@in6=@remote, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@empty}}, &(0x7f00000016c0)=0xe8) getsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000001700)={{{@in6=@dev, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@empty}, 0x0, @in=@broadcast}}, &(0x7f0000001800)=0xe8) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000001840)={@remote, @local, 0x0}, &(0x7f0000001880)=0xc) sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r3, &(0x7f0000001b40)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001b00)={&(0x7f00000018c0)={0x218, 0x0, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @HEADER={0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x218}, 0x1, 0x0, 0x0, 0x84}, 0x2404c080) pipe2(&(0x7f0000001b80)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r8, 0x89f8, &(0x7f0000001c40)={'syztnl0\x00', &(0x7f0000001bc0)={'ip6tnl0\x00', r6, 0x29, 0x4, 0x8, 0xff, 0x20, @remote, @mcast1, 0x40, 0x10, 0x6, 0x8}}) r9 = memfd_secret(0x0) recvfrom$unix(r9, &(0x7f0000001c80)=""/208, 0xd0, 0x100, &(0x7f0000001d80)=@abs={0x1, 0x0, 0x4e22}, 0x6e) 17:21:32 executing program 6: sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x8c, 0x0, 0x200, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}], @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x1000, 0x3, 0x3, 0x0, {0x80000001, 0x9, 0x0, 0x1f, 0x0, 0x1, 0x1, 0x2, 0x1}, 0x800, 0x10001}}, @NL80211_ATTR_SSID={0x1c, 0x34, @random="97c25b930c122bd2daf845345861c4c2a42d6d86a977c194"}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0xd, {0x4, 0x3, 0x9, 0x81}}}, @NL80211_ATTR_WIPHY_FREQ_HINT={0x8}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000010}, 0x0) clone3(&(0x7f0000001300)={0x0, &(0x7f00000001c0)=0xffffffffffffffff, &(0x7f0000000200)=0x0, &(0x7f0000000240), {0x1c}, &(0x7f0000000280)=""/4096, 0x1000, &(0x7f0000001280)=""/53, &(0x7f00000012c0)=[0xffffffffffffffff], 0x1}, 0x58) sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000001480)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001440)={&(0x7f0000001380)={0x88, 0x0, 0x400, 0x70bd29, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8}}]}, 0x88}, 0x1, 0x0, 0x0, 0x40000}, 0x20000000) r2 = signalfd4(r0, &(0x7f00000014c0)={[0xfff]}, 0x8, 0x800) sendmsg$NL80211_CMD_GET_WOWLAN(r2, &(0x7f00000015c0)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001580)={&(0x7f0000001540)={0x1c, 0x0, 0x800, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x71}, @void, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x90}, 0x40004) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r2, &(0x7f0000001700)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000016c0)={&(0x7f0000001640)={0x6c, 0x0, 0x10, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x4}, @val={0x8}, @void}}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x44}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x7, 0x18}}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x5d}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x58}}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x1000, 0x4d}}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x21}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x7, 0x4}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20000040}, 0x40000d0) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001780), r2) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r2, &(0x7f0000001840)={&(0x7f0000001740)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001800)={&(0x7f00000017c0)={0x1c, r3, 0x8, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_LINKINFO_TP_MDIX_CTRL={0x5, 0x5, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24044014}, 0x10) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000001880)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r2, 0x89f3, &(0x7f00000019c0)={'ip6_vti0\x00', &(0x7f0000001940)={'syztnl1\x00', 0x0, 0x29, 0x9c, 0x7b, 0x7fffffff, 0x1, @empty, @mcast2, 0xf800, 0x700, 0x5, 0x2}}) sendmsg$BATADV_CMD_GET_VLAN(r4, &(0x7f0000001ac0)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001a80)={&(0x7f0000001a00)={0x5c, 0x0, 0x400, 0x70bd2d, 0x25dfdbfe, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x9}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x5}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x401}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x81}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x7fffffff}]}, 0x5c}}, 0x4048005) r6 = openat$nvram(0xffffffffffffff9c, &(0x7f0000001b40), 0x101800, 0x0) syz_genetlink_get_family_id$fou(&(0x7f0000001b00), r6) r7 = openat$random(0xffffffffffffff9c, &(0x7f0000001b80), 0x400, 0x0) write(r7, &(0x7f0000001bc0)="e4c1a662956caf3c1de5ee8125fa012d1e4959099b24a684e33a47218e0876b3b7a6cfafa411095d7da6470a085c2be60d849df77d6c6c93794ee1eed2e975b6a43a436f4f6f79cea6dfbb661d598c532aada41005091d48eb03e9b86665869df03350cb06893a655132ae2182d90e5932fa459481e53ceca2aabf179b02d9c30fd7b4b155191104138c5cf485f3d28b9ff53d2d", 0x94) sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f0000001d40)={&(0x7f0000001c80)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001d00)={&(0x7f0000001cc0)={0x2c, 0x0, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x34}]}, 0x2c}, 0x1, 0x0, 0x0, 0x88c0}, 0x8080) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x6, 0x10, 0xffffffffffffffff, 0x8000000) r9 = openat$cgroup_netprio_ifpriomap(r2, &(0x7f0000001d80), 0x2, 0x0) syz_io_uring_submit(r8, 0x0, &(0x7f0000002180)=@IORING_OP_WRITEV={0x2, 0x0, 0x4007, @fd=r9, 0x6, &(0x7f0000002100)=[{&(0x7f0000001dc0)="a1138e9ea623821cc8f9cb2898239a00ab051cfaa951ec8b41f919ecb4cf2818a64eeb6859d605e66dda80c76c1b3d4ec237de74f0c39d09ddced8c9ff97310625a4ecc806a1d137d0a94b1932996e428fa8ba1fe189f637d5c1ff5af17eaf4f94914a7b28e9dfb3efb84ef1b39ce2d746d59e33e04b5ff200a4304b29f32c1a10c704510a98d9ce1c81bb0a4c58530b9d46d24d5f2ab3371835010cdb83d867fd270bf83180073cb81a11b3eb4c0ea8e155bb315af08442ce81e8c1c2d86e01d080c764923a8df603508fa3a79b411cf60f16716b91416e40f51bc620714f4228c504ded60202513518ae8c6c1946c7d248", 0xf2}, {&(0x7f0000001ec0)="4b48721a3f7a29bfd23418a355d9e227469d28001249437282ebe29219a872604d8618887836e90e86a5bffaad323a44035b87b0e77dfc26fcf0b6201d01a30e2885a9f77637", 0x46}, {&(0x7f0000001f40)="2645abee1eecf88dba1b764a625217e18603ef9a5b9002491021a74977f1f8ee008b9c1cfbe5cc869afb40f309ea5ddb3715b51b2e3aaf78b4e53c2a1d9f2361bd64b1542ed02e26e0e0d83d91d2f5e80ac81cea8b1428bf4a2fe82e86cf96a84cd8fe70d271429d58cf1a2a6357ea96557cf802aa877afd3914eb13ce9e3545659464b17ed8d1398543a33ebbdffef0cde6a40ac55e9eb43249e3c22901e9927413b6f8c3391de3579483605bed359bc51cfb00", 0xb4}, {&(0x7f0000002000)="b4c6f22fdc759babd9c7153e64b5df0e2ecb6b6d712e63e4f1", 0x19}, {&(0x7f0000002040)="3781695b0f42dfa246ce4f2fc24c1e91dbfbd970f34e2abc5ca59bc9625ea9b56a3a007995caa3ca331ef9ca4368d7b5ee4b174dd59e0a33aebaf8f9736ec9ac8866db2f0ab6c0ea4e70c75c47d428177e3901b38566d81a7372101592eeab91b816a537b812dbf559dfbeba86f3dd64a1838810b55e21c0bcf28abb61af809c8fc91f94cb2fbdaeb006916a27ee306c08b291b5faf71ad83347b96905ebdc81b98fb4fb39d42d90198454d699e5e90d427ed37059b028", 0xb7}], 0x5, 0x2, 0x1}, 0x1f) openat$cgroup_type(r6, &(0x7f00000021c0), 0x2, 0x0) [ 79.625973] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 79.629533] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 79.635162] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 79.642387] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 79.643979] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 79.647304] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 79.658071] Bluetooth: hci0: HCI_REQ-0x0c1a [ 79.674609] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 79.676514] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 79.678498] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 79.681988] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 79.683765] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 79.685582] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 79.690408] Bluetooth: hci1: HCI_REQ-0x0c1a [ 79.761597] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 79.763314] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 79.773781] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 79.777750] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 79.780028] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 79.782958] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 79.783893] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 79.785610] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 79.787292] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 79.787484] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 79.790124] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 79.791753] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 79.800277] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 79.801765] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 79.810179] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 79.811677] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 79.813967] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 79.816295] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 79.817560] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 79.817655] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 79.819925] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 79.824656] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 79.825984] Bluetooth: hci7: HCI_REQ-0x0c1a [ 79.827204] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 79.830479] Bluetooth: hci5: HCI_REQ-0x0c1a [ 79.840271] Bluetooth: hci6: HCI_REQ-0x0c1a [ 79.858079] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 79.859197] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 79.865136] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 79.870284] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 79.871433] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 79.881217] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 79.884196] Bluetooth: hci2: HCI_REQ-0x0c1a [ 79.884477] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 79.894668] Bluetooth: hci4: HCI_REQ-0x0c1a [ 79.899934] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 79.906144] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 79.913212] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 79.928713] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 79.940106] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 79.953669] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 79.961973] Bluetooth: hci3: HCI_REQ-0x0c1a [ 81.706498] Bluetooth: hci1: command 0x0409 tx timeout [ 81.707780] Bluetooth: hci0: command 0x0409 tx timeout [ 81.833975] Bluetooth: hci5: command 0x0409 tx timeout [ 81.897869] Bluetooth: hci6: command 0x0409 tx timeout [ 81.897929] Bluetooth: hci2: command 0x0409 tx timeout [ 81.898617] Bluetooth: hci7: command 0x0409 tx timeout [ 81.961845] Bluetooth: hci4: command 0x0409 tx timeout [ 82.025883] Bluetooth: hci3: command 0x0409 tx timeout [ 83.753923] Bluetooth: hci0: command 0x041b tx timeout [ 83.754605] Bluetooth: hci1: command 0x041b tx timeout [ 83.881931] Bluetooth: hci5: command 0x041b tx timeout [ 83.945887] Bluetooth: hci7: command 0x041b tx timeout [ 83.946358] Bluetooth: hci2: command 0x041b tx timeout [ 83.946798] Bluetooth: hci6: command 0x041b tx timeout [ 84.009867] Bluetooth: hci4: command 0x041b tx timeout [ 84.073970] Bluetooth: hci3: command 0x041b tx timeout [ 85.801876] Bluetooth: hci1: command 0x040f tx timeout [ 85.802432] Bluetooth: hci0: command 0x040f tx timeout [ 85.929860] Bluetooth: hci5: command 0x040f tx timeout [ 85.993951] Bluetooth: hci6: command 0x040f tx timeout [ 85.994441] Bluetooth: hci2: command 0x040f tx timeout [ 85.994935] Bluetooth: hci7: command 0x040f tx timeout [ 86.057950] Bluetooth: hci4: command 0x040f tx timeout [ 86.121870] Bluetooth: hci3: command 0x040f tx timeout [ 87.849873] Bluetooth: hci0: command 0x0419 tx timeout [ 87.850382] Bluetooth: hci1: command 0x0419 tx timeout [ 87.977943] Bluetooth: hci5: command 0x0419 tx timeout [ 88.041917] Bluetooth: hci7: command 0x0419 tx timeout [ 88.042361] Bluetooth: hci2: command 0x0419 tx timeout [ 88.042786] Bluetooth: hci6: command 0x0419 tx timeout [ 88.105897] Bluetooth: hci4: command 0x0419 tx timeout [ 88.169872] Bluetooth: hci3: command 0x0419 tx timeout [ 133.010409] loop0: detected capacity change from 0 to 16383 [ 133.016867] ======================================================= [ 133.016867] WARNING: The mand mount option has been deprecated and [ 133.016867] and is ignored by this kernel. Remove the mand [ 133.016867] option from the mount to silence this warning. [ 133.016867] ======================================================= 17:22:27 executing program 4: ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYRES32=0x0]) write$P9_RSTATu(0xffffffffffffffff, &(0x7f0000000140)={0xb0, 0x7d, 0x0, {{0x0, 0x97, 0x0, 0x0, {}, 0x0, 0x1a809ffd, 0x2, 0x1, 0x59, '-#', 0x6, '\x02\x02\x05\x00\x00\x00', 0x5c, '%\x00\x00\x00 &\xd6t\xe8\xa7\xe1s\xf7-\xfcM\x96\'w\xcf\x9aX\xb5\xa9\xac=\xa9\xab\xaci\x87\xf4,bzpyN\xe4\x13\xebJ\x1f5l\x83\x151\xcc\xa9d\xf1\x01\x15\xe5\x103%\x97\x96i/\x89\x99\xa4]>\x86\xaa7\x99e\x13\x91O\xde\xd5\a\xe8\x96\xfd%\x97X\xbf\x1f\xf4 \xe6\xf2d`'}, 0x4, ':\'@*', 0xee01, 0xffffffffffffffff, 0xee00}}, 0xb0) openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) syz_open_procfs(0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) syncfs(r0) [ 133.199705] audit: type=1400 audit(1663176147.233:7): avc: denied { open } for pid=3834 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 133.201176] audit: type=1400 audit(1663176147.233:8): avc: denied { kernel } for pid=3834 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 133.229766] ------------[ cut here ]------------ [ 133.229800] [ 133.229810] ====================================================== [ 133.229816] WARNING: possible circular locking dependency detected [ 133.229823] 6.0.0-rc5-next-20220914 #1 Not tainted [ 133.229834] ------------------------------------------------------ [ 133.229840] syz-executor.4/3836 is trying to acquire lock: [ 133.229851] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 133.229912] [ 133.229912] but task is already holding lock: [ 133.229917] ffff888008b0e020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 133.229966] [ 133.229966] which lock already depends on the new lock. [ 133.229966] [ 133.229972] [ 133.229972] the existing dependency chain (in reverse order) is: [ 133.229977] [ 133.229977] -> #3 (&ctx->lock){....}-{2:2}: [ 133.230003] _raw_spin_lock+0x2a/0x40 [ 133.230032] __perf_event_task_sched_out+0x53b/0x18d0 [ 133.230055] __schedule+0xedd/0x2470 [ 133.230073] schedule+0xda/0x1b0 [ 133.230091] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.230126] syscall_exit_to_user_mode+0x19/0x40 [ 133.230157] do_syscall_64+0x48/0x90 [ 133.230181] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.230212] [ 133.230212] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 133.230237] _raw_spin_lock_nested+0x30/0x40 [ 133.230264] raw_spin_rq_lock_nested+0x1e/0x30 [ 133.230287] task_fork_fair+0x63/0x4d0 [ 133.230316] sched_cgroup_fork+0x3d0/0x540 [ 133.230341] copy_process+0x4183/0x6e20 [ 133.230360] kernel_clone+0xe7/0x890 [ 133.230377] user_mode_thread+0xad/0xf0 [ 133.230395] rest_init+0x24/0x250 [ 133.230425] arch_call_rest_init+0xf/0x14 [ 133.230445] start_kernel+0x4c1/0x4e6 [ 133.230462] secondary_startup_64_no_verify+0xe0/0xeb [ 133.230487] [ 133.230487] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 133.230512] _raw_spin_lock_irqsave+0x39/0x60 [ 133.230540] try_to_wake_up+0xab/0x1920 [ 133.230563] up+0x75/0xb0 [ 133.230584] __up_console_sem+0x6e/0x80 [ 133.230611] console_unlock+0x46a/0x590 [ 133.230640] do_con_write+0xc05/0x1d50 [ 133.230659] con_write+0x21/0x40 [ 133.230676] n_tty_write+0x4d4/0xfe0 [ 133.230698] file_tty_write.constprop.0+0x49c/0x8f0 [ 133.230720] vfs_write+0x9c3/0xd90 [ 133.230750] ksys_write+0x127/0x250 [ 133.230780] do_syscall_64+0x3b/0x90 [ 133.230804] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.230834] [ 133.230834] -> #0 ((console_sem).lock){....}-{2:2}: [ 133.230860] __lock_acquire+0x2a02/0x5e70 [ 133.230889] lock_acquire+0x1a2/0x530 [ 133.230918] _raw_spin_lock_irqsave+0x39/0x60 [ 133.230945] down_trylock+0xe/0x70 [ 133.230967] __down_trylock_console_sem+0x3b/0xd0 [ 133.230996] vprintk_emit+0x16b/0x560 [ 133.231026] vprintk+0x84/0xa0 [ 133.231054] _printk+0xba/0xf1 [ 133.231085] report_bug.cold+0x72/0xab [ 133.231107] handle_bug+0x3c/0x70 [ 133.231130] exc_invalid_op+0x14/0x50 [ 133.231154] asm_exc_invalid_op+0x16/0x20 [ 133.231183] group_sched_out.part.0+0x2c7/0x460 [ 133.231203] ctx_sched_out+0x8f1/0xc10 [ 133.231221] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.231243] __schedule+0xedd/0x2470 [ 133.231261] schedule+0xda/0x1b0 [ 133.231278] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.231312] syscall_exit_to_user_mode+0x19/0x40 [ 133.231343] do_syscall_64+0x48/0x90 [ 133.231366] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.231397] [ 133.231397] other info that might help us debug this: [ 133.231397] [ 133.231402] Chain exists of: [ 133.231402] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 133.231402] [ 133.231430] Possible unsafe locking scenario: [ 133.231430] [ 133.231434] CPU0 CPU1 [ 133.231438] ---- ---- [ 133.231442] lock(&ctx->lock); [ 133.231452] lock(&rq->__lock); [ 133.231464] lock(&ctx->lock); [ 133.231476] lock((console_sem).lock); [ 133.231486] [ 133.231486] *** DEADLOCK *** [ 133.231486] [ 133.231490] 2 locks held by syz-executor.4/3836: [ 133.231502] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 133.231550] #1: ffff888008b0e020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 133.231601] [ 133.231601] stack backtrace: [ 133.231606] CPU: 0 PID: 3836 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220914 #1 [ 133.231629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 133.231643] Call Trace: [ 133.231648] [ 133.231656] dump_stack_lvl+0x8b/0xb3 [ 133.231682] check_noncircular+0x263/0x2e0 [ 133.231712] ? format_decode+0x26c/0xb50 [ 133.231738] ? print_circular_bug+0x450/0x450 [ 133.231769] ? enable_ptr_key_workfn+0x20/0x20 [ 133.231796] ? format_decode+0x26c/0xb50 [ 133.231824] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 133.231856] __lock_acquire+0x2a02/0x5e70 [ 133.231896] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 133.231936] lock_acquire+0x1a2/0x530 [ 133.231967] ? down_trylock+0xe/0x70 [ 133.231993] ? rcu_read_unlock+0x40/0x40 [ 133.232031] ? vprintk+0x84/0xa0 [ 133.232063] _raw_spin_lock_irqsave+0x39/0x60 [ 133.232092] ? down_trylock+0xe/0x70 [ 133.232116] down_trylock+0xe/0x70 [ 133.232140] ? vprintk+0x84/0xa0 [ 133.232171] __down_trylock_console_sem+0x3b/0xd0 [ 133.232203] vprintk_emit+0x16b/0x560 [ 133.232237] vprintk+0x84/0xa0 [ 133.232269] _printk+0xba/0xf1 [ 133.232300] ? record_print_text.cold+0x16/0x16 [ 133.232340] ? report_bug.cold+0x66/0xab [ 133.232366] ? group_sched_out.part.0+0x2c7/0x460 [ 133.232387] report_bug.cold+0x72/0xab [ 133.232414] handle_bug+0x3c/0x70 [ 133.232439] exc_invalid_op+0x14/0x50 [ 133.232466] asm_exc_invalid_op+0x16/0x20 [ 133.232497] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 133.232521] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 133.232541] RSP: 0018:ffff88801b4b7c48 EFLAGS: 00010006 [ 133.232558] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 133.232572] RDX: ffff88801d871ac0 RSI: ffffffff81566027 RDI: 0000000000000005 [ 133.232595] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 133.232608] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff888008b0e000 [ 133.232622] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 133.232642] ? group_sched_out.part.0+0x2c7/0x460 [ 133.232667] ? group_sched_out.part.0+0x2c7/0x460 [ 133.232690] ctx_sched_out+0x8f1/0xc10 [ 133.232713] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.232742] ? lock_is_held_type+0xd7/0x130 [ 133.232775] ? __perf_cgroup_move+0x160/0x160 [ 133.232796] ? set_next_entity+0x304/0x550 [ 133.232828] ? update_curr+0x267/0x740 [ 133.232862] ? lock_is_held_type+0xd7/0x130 [ 133.232895] __schedule+0xedd/0x2470 [ 133.232920] ? io_schedule_timeout+0x150/0x150 [ 133.232943] ? rcu_read_lock_sched_held+0x3e/0x80 [ 133.232979] schedule+0xda/0x1b0 [ 133.233000] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.233037] syscall_exit_to_user_mode+0x19/0x40 [ 133.233069] do_syscall_64+0x48/0x90 [ 133.233095] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.233127] RIP: 0033:0x7fce18172b19 [ 133.233143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 133.233163] RSP: 002b:00007fce156e8218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 133.233184] RAX: 0000000000000001 RBX: 00007fce18285f68 RCX: 00007fce18172b19 [ 133.233199] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fce18285f6c [ 133.233215] RBP: 00007fce18285f60 R08: 000000000000000e R09: 0000000000000000 [ 133.233228] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fce18285f6c [ 133.233241] R13: 00007ffe000597af R14: 00007fce156e8300 R15: 0000000000022000 [ 133.233265] [ 133.337906] WARNING: CPU: 0 PID: 3836 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 133.339195] Modules linked in: [ 133.339651] CPU: 0 PID: 3836 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220914 #1 [ 133.340775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 133.342361] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 133.343127] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 133.345704] RSP: 0018:ffff88801b4b7c48 EFLAGS: 00010006 [ 133.346456] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 133.347447] RDX: ffff88801d871ac0 RSI: ffffffff81566027 RDI: 0000000000000005 [ 133.348434] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 133.349431] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff888008b0e000 [ 133.350455] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 133.351474] FS: 00007fce156e8700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 133.352636] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 133.353459] CR2: 00007f21b95246f4 CR3: 000000001b71c000 CR4: 0000000000350ef0 [ 133.354484] Call Trace: [ 133.354851] [ 133.355182] ctx_sched_out+0x8f1/0xc10 [ 133.355744] __perf_event_task_sched_out+0x6d0/0x18d0 [ 133.356492] ? lock_is_held_type+0xd7/0x130 [ 133.357122] ? __perf_cgroup_move+0x160/0x160 [ 133.357761] ? set_next_entity+0x304/0x550 [ 133.358382] ? update_curr+0x267/0x740 [ 133.358956] ? lock_is_held_type+0xd7/0x130 [ 133.359586] __schedule+0xedd/0x2470 [ 133.360136] ? io_schedule_timeout+0x150/0x150 [ 133.360816] ? rcu_read_lock_sched_held+0x3e/0x80 [ 133.361538] schedule+0xda/0x1b0 [ 133.362036] exit_to_user_mode_prepare+0x114/0x1a0 [ 133.362759] syscall_exit_to_user_mode+0x19/0x40 [ 133.363451] do_syscall_64+0x48/0x90 [ 133.363997] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 133.364745] RIP: 0033:0x7fce18172b19 [ 133.365282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 133.367860] RSP: 002b:00007fce156e8218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 133.368934] RAX: 0000000000000001 RBX: 00007fce18285f68 RCX: 00007fce18172b19 [ 133.369952] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fce18285f6c [ 133.370946] RBP: 00007fce18285f60 R08: 000000000000000e R09: 0000000000000000 [ 133.371945] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fce18285f6c [ 133.372959] R13: 00007ffe000597af R14: 00007fce156e8300 R15: 0000000000022000 [ 133.373949] [ 133.374278] irq event stamp: 1500 [ 133.374758] hardirqs last enabled at (1499): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 133.376073] hardirqs last disabled at (1500): [] __schedule+0x1225/0x2470 [ 133.377246] softirqs last enabled at (1238): [] __irq_exit_rcu+0x11b/0x180 [ 133.378443] softirqs last disabled at (1183): [] __irq_exit_rcu+0x11b/0x180 [ 133.379642] ---[ end trace 0000000000000000 ]--- [ 133.915828] hrtimer: interrupt took 17984 ns [ 134.443021] loop5: detected capacity change from 0 to 255 [ 134.556420] loop5: detected capacity change from 0 to 255 VM DIAGNOSIS: 17:22:27 Registers: info registers vcpu 0 RAX=0000000000000063 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b24f1 RDI=ffffffff87641b60 RBP=ffffffff87641b20 RSP=ffff88801b4b7698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000063 R11=0000000000000001 R12=0000000000000063 R13=ffffffff87641b20 R14=0000000000000010 R15=ffffffff822b24e0 RIP=ffffffff822b2549 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fce156e8700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f21b95246f4 CR3=000000001b71c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM01=0000000000000000 0000000000000000 2525252525252525 2525252525252525 YMM02=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffff888008f1d4a8 RCX=ffffffff812aaa31 RDX=1ffff1100317ddf3 RSI=ffffffff87078900 RDI=ffff888008f1d4b0 RBP=ffff888008f1d4a8 RSP=ffff888042037b90 R8 =0000000000000001 R9 =ffff888042037b53 R10=ffffed1008406f6a R11=0000000000000001 R12=ffff888008f1d4a9 R13=ffff8880094c83c8 R14=ffff888018beef98 R15=ffffffff87078900 RIP=ffffffff841052e7 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f37911fc1f0 CR3=000000001efca000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000