Warning: Permanently added '[localhost]:49589' (ECDSA) to the list of known hosts. 2022/09/15 07:34:51 fuzzer started 2022/09/15 07:34:51 dialing manager at localhost:33849 syzkaller login: [ 45.850883] cgroup: Unknown subsys name 'net' [ 45.935912] cgroup: Unknown subsys name 'rlimit' 2022/09/15 07:35:06 syscalls: 2215 2022/09/15 07:35:06 code coverage: enabled 2022/09/15 07:35:06 comparison tracing: enabled 2022/09/15 07:35:06 extra coverage: enabled 2022/09/15 07:35:06 setuid sandbox: enabled 2022/09/15 07:35:06 namespace sandbox: enabled 2022/09/15 07:35:06 Android sandbox: enabled 2022/09/15 07:35:06 fault injection: enabled 2022/09/15 07:35:06 leak checking: enabled 2022/09/15 07:35:06 net packet injection: enabled 2022/09/15 07:35:06 net device setup: enabled 2022/09/15 07:35:06 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/15 07:35:06 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/15 07:35:06 USB emulation: enabled 2022/09/15 07:35:06 hci packet injection: enabled 2022/09/15 07:35:06 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220914) 2022/09/15 07:35:06 802.15.4 emulation: enabled 2022/09/15 07:35:06 fetching corpus: 50, signal 33543/35295 (executing program) 2022/09/15 07:35:06 fetching corpus: 100, signal 45897/49240 (executing program) 2022/09/15 07:35:07 fetching corpus: 150, signal 56709/61467 (executing program) 2022/09/15 07:35:07 fetching corpus: 200, signal 64994/71138 (executing program) 2022/09/15 07:35:07 fetching corpus: 250, signal 76060/83369 (executing program) 2022/09/15 07:35:07 fetching corpus: 300, signal 81719/90266 (executing program) 2022/09/15 07:35:07 fetching corpus: 350, signal 86903/96624 (executing program) 2022/09/15 07:35:07 fetching corpus: 400, signal 93112/103856 (executing program) 2022/09/15 07:35:08 fetching corpus: 450, signal 96201/108096 (executing program) 2022/09/15 07:35:08 fetching corpus: 500, signal 99534/112521 (executing program) 2022/09/15 07:35:08 fetching corpus: 550, signal 103475/117443 (executing program) 2022/09/15 07:35:08 fetching corpus: 600, signal 106095/121118 (executing program) 2022/09/15 07:35:08 fetching corpus: 650, signal 108702/124739 (executing program) 2022/09/15 07:35:08 fetching corpus: 700, signal 112351/129235 (executing program) 2022/09/15 07:35:08 fetching corpus: 750, signal 116236/133992 (executing program) 2022/09/15 07:35:08 fetching corpus: 800, signal 118141/136862 (executing program) 2022/09/15 07:35:08 fetching corpus: 850, signal 121993/141456 (executing program) 2022/09/15 07:35:09 fetching corpus: 900, signal 124106/144444 (executing program) 2022/09/15 07:35:09 fetching corpus: 950, signal 126128/147308 (executing program) 2022/09/15 07:35:09 fetching corpus: 1000, signal 129200/151032 (executing program) 2022/09/15 07:35:09 fetching corpus: 1050, signal 133365/155721 (executing program) 2022/09/15 07:35:09 fetching corpus: 1100, signal 135364/158476 (executing program) 2022/09/15 07:35:09 fetching corpus: 1150, signal 137794/161537 (executing program) 2022/09/15 07:35:09 fetching corpus: 1200, signal 139481/163976 (executing program) 2022/09/15 07:35:10 fetching corpus: 1250, signal 142463/167438 (executing program) 2022/09/15 07:35:10 fetching corpus: 1300, signal 144008/169701 (executing program) 2022/09/15 07:35:10 fetching corpus: 1350, signal 145767/172092 (executing program) 2022/09/15 07:35:10 fetching corpus: 1400, signal 146942/173962 (executing program) 2022/09/15 07:35:10 fetching corpus: 1450, signal 148634/176272 (executing program) 2022/09/15 07:35:10 fetching corpus: 1500, signal 150451/178705 (executing program) 2022/09/15 07:35:10 fetching corpus: 1550, signal 151622/180606 (executing program) 2022/09/15 07:35:11 fetching corpus: 1600, signal 153315/182860 (executing program) 2022/09/15 07:35:11 fetching corpus: 1650, signal 154656/184786 (executing program) 2022/09/15 07:35:11 fetching corpus: 1700, signal 155480/186298 (executing program) 2022/09/15 07:35:11 fetching corpus: 1750, signal 157593/188805 (executing program) 2022/09/15 07:35:11 fetching corpus: 1800, signal 159182/190888 (executing program) 2022/09/15 07:35:11 fetching corpus: 1850, signal 161179/193197 (executing program) 2022/09/15 07:35:11 fetching corpus: 1900, signal 162867/195279 (executing program) 2022/09/15 07:35:11 fetching corpus: 1950, signal 164992/197721 (executing program) 2022/09/15 07:35:12 fetching corpus: 2000, signal 165794/199131 (executing program) 2022/09/15 07:35:12 fetching corpus: 2050, signal 166737/200639 (executing program) 2022/09/15 07:35:12 fetching corpus: 2100, signal 168355/202635 (executing program) 2022/09/15 07:35:12 fetching corpus: 2150, signal 169238/204031 (executing program) 2022/09/15 07:35:12 fetching corpus: 2200, signal 170217/205478 (executing program) 2022/09/15 07:35:12 fetching corpus: 2250, signal 172245/207654 (executing program) 2022/09/15 07:35:12 fetching corpus: 2300, signal 175607/210674 (executing program) 2022/09/15 07:35:12 fetching corpus: 2350, signal 177224/212526 (executing program) 2022/09/15 07:35:13 fetching corpus: 2400, signal 179395/214728 (executing program) 2022/09/15 07:35:13 fetching corpus: 2450, signal 180804/216387 (executing program) 2022/09/15 07:35:13 fetching corpus: 2500, signal 182653/218299 (executing program) 2022/09/15 07:35:13 fetching corpus: 2550, signal 183476/219574 (executing program) 2022/09/15 07:35:13 fetching corpus: 2600, signal 185140/221321 (executing program) 2022/09/15 07:35:13 fetching corpus: 2650, signal 185938/222539 (executing program) 2022/09/15 07:35:13 fetching corpus: 2700, signal 186653/223697 (executing program) 2022/09/15 07:35:14 fetching corpus: 2750, signal 187940/225189 (executing program) 2022/09/15 07:35:14 fetching corpus: 2800, signal 189121/226563 (executing program) 2022/09/15 07:35:14 fetching corpus: 2850, signal 190011/227804 (executing program) 2022/09/15 07:35:14 fetching corpus: 2900, signal 190914/229008 (executing program) 2022/09/15 07:35:14 fetching corpus: 2950, signal 192422/230547 (executing program) 2022/09/15 07:35:14 fetching corpus: 3000, signal 193435/231775 (executing program) 2022/09/15 07:35:14 fetching corpus: 3050, signal 194479/232988 (executing program) 2022/09/15 07:35:14 fetching corpus: 3100, signal 195416/234139 (executing program) 2022/09/15 07:35:15 fetching corpus: 3150, signal 196687/235456 (executing program) 2022/09/15 07:35:15 fetching corpus: 3200, signal 197615/236621 (executing program) 2022/09/15 07:35:15 fetching corpus: 3250, signal 198347/237607 (executing program) 2022/09/15 07:35:15 fetching corpus: 3300, signal 199065/238598 (executing program) 2022/09/15 07:35:15 fetching corpus: 3350, signal 199698/239533 (executing program) 2022/09/15 07:35:15 fetching corpus: 3400, signal 200882/240762 (executing program) 2022/09/15 07:35:15 fetching corpus: 3450, signal 202170/242033 (executing program) 2022/09/15 07:35:16 fetching corpus: 3500, signal 203361/243169 (executing program) 2022/09/15 07:35:16 fetching corpus: 3550, signal 204326/244188 (executing program) 2022/09/15 07:35:16 fetching corpus: 3600, signal 205082/245099 (executing program) 2022/09/15 07:35:16 fetching corpus: 3650, signal 205935/246097 (executing program) 2022/09/15 07:35:16 fetching corpus: 3700, signal 206480/246895 (executing program) 2022/09/15 07:35:16 fetching corpus: 3750, signal 207216/247767 (executing program) 2022/09/15 07:35:16 fetching corpus: 3800, signal 208049/248751 (executing program) 2022/09/15 07:35:16 fetching corpus: 3850, signal 208686/249555 (executing program) 2022/09/15 07:35:17 fetching corpus: 3900, signal 209433/250437 (executing program) 2022/09/15 07:35:17 fetching corpus: 3950, signal 210659/251552 (executing program) 2022/09/15 07:35:17 fetching corpus: 4000, signal 211806/252517 (executing program) 2022/09/15 07:35:17 fetching corpus: 4050, signal 213037/253565 (executing program) 2022/09/15 07:35:17 fetching corpus: 4100, signal 213985/254422 (executing program) 2022/09/15 07:35:17 fetching corpus: 4150, signal 214882/255244 (executing program) 2022/09/15 07:35:18 fetching corpus: 4200, signal 215672/256034 (executing program) 2022/09/15 07:35:18 fetching corpus: 4250, signal 216540/256897 (executing program) 2022/09/15 07:35:18 fetching corpus: 4300, signal 217187/257597 (executing program) 2022/09/15 07:35:18 fetching corpus: 4350, signal 217797/258290 (executing program) 2022/09/15 07:35:18 fetching corpus: 4400, signal 218261/258913 (executing program) 2022/09/15 07:35:18 fetching corpus: 4450, signal 218987/259655 (executing program) 2022/09/15 07:35:18 fetching corpus: 4500, signal 219850/260392 (executing program) 2022/09/15 07:35:18 fetching corpus: 4550, signal 220734/261134 (executing program) 2022/09/15 07:35:18 fetching corpus: 4600, signal 221358/261819 (executing program) 2022/09/15 07:35:19 fetching corpus: 4650, signal 222115/262509 (executing program) 2022/09/15 07:35:19 fetching corpus: 4700, signal 223199/263456 (executing program) 2022/09/15 07:35:19 fetching corpus: 4750, signal 223828/264063 (executing program) 2022/09/15 07:35:19 fetching corpus: 4800, signal 224623/264768 (executing program) 2022/09/15 07:35:19 fetching corpus: 4850, signal 225158/265358 (executing program) 2022/09/15 07:35:19 fetching corpus: 4900, signal 225688/265913 (executing program) 2022/09/15 07:35:19 fetching corpus: 4950, signal 226404/266471 (executing program) 2022/09/15 07:35:19 fetching corpus: 5000, signal 226765/266976 (executing program) 2022/09/15 07:35:20 fetching corpus: 5050, signal 227417/267575 (executing program) 2022/09/15 07:35:20 fetching corpus: 5100, signal 227959/268147 (executing program) 2022/09/15 07:35:20 fetching corpus: 5150, signal 228490/268716 (executing program) 2022/09/15 07:35:20 fetching corpus: 5200, signal 229207/269289 (executing program) 2022/09/15 07:35:20 fetching corpus: 5250, signal 229710/269776 (executing program) 2022/09/15 07:35:20 fetching corpus: 5300, signal 230452/270369 (executing program) 2022/09/15 07:35:20 fetching corpus: 5350, signal 231002/270863 (executing program) 2022/09/15 07:35:20 fetching corpus: 5400, signal 231867/271464 (executing program) 2022/09/15 07:35:21 fetching corpus: 5450, signal 232417/271935 (executing program) 2022/09/15 07:35:21 fetching corpus: 5500, signal 232976/272427 (executing program) 2022/09/15 07:35:21 fetching corpus: 5550, signal 233562/272912 (executing program) 2022/09/15 07:35:21 fetching corpus: 5600, signal 234062/273445 (executing program) 2022/09/15 07:35:21 fetching corpus: 5650, signal 234503/273843 (executing program) 2022/09/15 07:35:21 fetching corpus: 5700, signal 235339/274336 (executing program) 2022/09/15 07:35:21 fetching corpus: 5750, signal 236234/274806 (executing program) 2022/09/15 07:35:22 fetching corpus: 5800, signal 236658/275179 (executing program) 2022/09/15 07:35:22 fetching corpus: 5850, signal 237450/275587 (executing program) 2022/09/15 07:35:22 fetching corpus: 5900, signal 238053/275982 (executing program) 2022/09/15 07:35:22 fetching corpus: 5950, signal 238505/276367 (executing program) 2022/09/15 07:35:22 fetching corpus: 6000, signal 239022/276797 (executing program) 2022/09/15 07:35:22 fetching corpus: 6050, signal 239548/277163 (executing program) 2022/09/15 07:35:22 fetching corpus: 6100, signal 240151/277549 (executing program) 2022/09/15 07:35:22 fetching corpus: 6150, signal 240957/277937 (executing program) 2022/09/15 07:35:22 fetching corpus: 6200, signal 241590/278313 (executing program) 2022/09/15 07:35:23 fetching corpus: 6250, signal 241944/278644 (executing program) 2022/09/15 07:35:23 fetching corpus: 6300, signal 242447/278980 (executing program) 2022/09/15 07:35:23 fetching corpus: 6350, signal 242962/279318 (executing program) 2022/09/15 07:35:23 fetching corpus: 6400, signal 243490/279641 (executing program) 2022/09/15 07:35:23 fetching corpus: 6450, signal 244151/279958 (executing program) 2022/09/15 07:35:23 fetching corpus: 6500, signal 244679/280306 (executing program) 2022/09/15 07:35:23 fetching corpus: 6550, signal 245245/280566 (executing program) 2022/09/15 07:35:24 fetching corpus: 6600, signal 245525/280835 (executing program) 2022/09/15 07:35:24 fetching corpus: 6650, signal 246061/281160 (executing program) 2022/09/15 07:35:24 fetching corpus: 6700, signal 246458/281413 (executing program) 2022/09/15 07:35:24 fetching corpus: 6750, signal 246990/281686 (executing program) 2022/09/15 07:35:24 fetching corpus: 6800, signal 247742/281728 (executing program) 2022/09/15 07:35:24 fetching corpus: 6850, signal 248425/281745 (executing program) 2022/09/15 07:35:24 fetching corpus: 6900, signal 248948/281770 (executing program) 2022/09/15 07:35:25 fetching corpus: 6950, signal 249248/281770 (executing program) 2022/09/15 07:35:25 fetching corpus: 7000, signal 249728/281788 (executing program) 2022/09/15 07:35:25 fetching corpus: 7050, signal 250168/281789 (executing program) 2022/09/15 07:35:25 fetching corpus: 7100, signal 250713/281790 (executing program) 2022/09/15 07:35:25 fetching corpus: 7150, signal 251314/281791 (executing program) 2022/09/15 07:35:25 fetching corpus: 7200, signal 251983/281815 (executing program) 2022/09/15 07:35:25 fetching corpus: 7250, signal 252541/281815 (executing program) 2022/09/15 07:35:25 fetching corpus: 7300, signal 252832/281815 (executing program) 2022/09/15 07:35:26 fetching corpus: 7350, signal 253301/281819 (executing program) 2022/09/15 07:35:26 fetching corpus: 7400, signal 253820/281825 (executing program) 2022/09/15 07:35:26 fetching corpus: 7450, signal 254288/281838 (executing program) 2022/09/15 07:35:26 fetching corpus: 7500, signal 255070/281858 (executing program) 2022/09/15 07:35:26 fetching corpus: 7550, signal 255484/281866 (executing program) 2022/09/15 07:35:26 fetching corpus: 7600, signal 255877/281894 (executing program) 2022/09/15 07:35:26 fetching corpus: 7650, signal 256330/281919 (executing program) 2022/09/15 07:35:26 fetching corpus: 7700, signal 256805/281936 (executing program) 2022/09/15 07:35:27 fetching corpus: 7750, signal 257275/281946 (executing program) 2022/09/15 07:35:27 fetching corpus: 7800, signal 257655/281978 (executing program) 2022/09/15 07:35:27 fetching corpus: 7850, signal 258191/281992 (executing program) 2022/09/15 07:35:27 fetching corpus: 7900, signal 258540/282030 (executing program) 2022/09/15 07:35:27 fetching corpus: 7950, signal 258923/282030 (executing program) 2022/09/15 07:35:27 fetching corpus: 8000, signal 259270/282031 (executing program) 2022/09/15 07:35:27 fetching corpus: 8050, signal 259789/282125 (executing program) 2022/09/15 07:35:27 fetching corpus: 8100, signal 260202/282139 (executing program) 2022/09/15 07:35:28 fetching corpus: 8150, signal 260550/282143 (executing program) 2022/09/15 07:35:28 fetching corpus: 8200, signal 260976/282147 (executing program) 2022/09/15 07:35:28 fetching corpus: 8250, signal 261638/282182 (executing program) 2022/09/15 07:35:28 fetching corpus: 8300, signal 262208/282187 (executing program) 2022/09/15 07:35:28 fetching corpus: 8350, signal 262680/282193 (executing program) 2022/09/15 07:35:28 fetching corpus: 8400, signal 263123/282193 (executing program) 2022/09/15 07:35:28 fetching corpus: 8450, signal 263712/282199 (executing program) 2022/09/15 07:35:28 fetching corpus: 8500, signal 264001/282269 (executing program) 2022/09/15 07:35:29 fetching corpus: 8525, signal 264248/282270 (executing program) 2022/09/15 07:35:29 fetching corpus: 8525, signal 264248/282270 (executing program) 2022/09/15 07:35:31 starting 8 fuzzer processes 07:35:31 executing program 0: clock_gettime(0x0, &(0x7f0000000040)={0x0, 0x0}) io_getevents(0x0, 0x5, 0x2, &(0x7f0000000000)=[{}, {}], &(0x7f0000000080)={r0, r1+60000000}) clock_gettime(0x4, &(0x7f00000000c0)) futex(&(0x7f0000000100)=0x1, 0x7, 0x0, &(0x7f0000000140)={0x0, 0x3938700}, &(0x7f0000000180)=0x2, 0x1) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) semtimedop(0xffffffffffffffff, &(0x7f00000001c0)=[{0x3, 0x1}, {0x0, 0x1, 0x1000}, {0x7, 0x7, 0x1800}, {0x2, 0x8000}, {0x0, 0x8, 0x1000}], 0x5, &(0x7f0000000240)={r2, r3+60000000}) io_getevents(0x0, 0x1, 0x6, &(0x7f0000000280)=[{}, {}, {}, {}, {}, {}], 0x0) r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000000, 0x110, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r4, &(0x7f0000000340)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x300ea7c2d36b19f7, 0x0, 0x0, 0xf44b4d2ed779463}, 0x9) rt_sigtimedwait(&(0x7f0000000380)={[0x3]}, &(0x7f00000003c0), &(0x7f0000000440)={0x0, 0x3938700}, 0x8) io_getevents(0x0, 0x6, 0x2, &(0x7f0000000480)=[{}, {}], 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r6 = syz_open_dev$vcsu(&(0x7f00000004c0), 0xb, 0x84140) r7 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000500), 0x82, 0x0) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) r9 = openat$zero(0xffffffffffffff9c, &(0x7f0000000540), 0x40, 0x0) r10 = openat(0xffffffffffffffff, &(0x7f0000000580)='./file0\x00', 0x1, 0x60) syz_io_uring_submit(0x0, r4, &(0x7f0000000600)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0xff, &(0x7f00000005c0)=[r6, r7, 0xffffffffffffffff, r8, r9, r10], 0x6, 0x0, 0x0, {0x0, r5}}, 0x6) clock_gettime(0x7, &(0x7f0000000640)) clock_gettime(0x69b72c99ebe98cd9, &(0x7f0000000680)) 07:35:31 executing program 1: r0 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000380)={&(0x7f0000000080)={0x2d0, r0, 0x4, 0x70bd2a, 0x25dfdbfd, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_PEERS={0x94, 0x8, 0x0, 0x1, [{0x90, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0xffff, @mcast2, 0xfffffff9}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x8001}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x1}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_FLAGS={0x8}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0x7, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x75da}}]}]}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e23}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_PEERS={0x1d4, 0x8, 0x0, 0x1, [{0xc0, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @loopback}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @loopback}}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0x7, @remote, 0x81e}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e22, @local}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e22, 0x6, @remote, 0x8}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, {0x50, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @loopback}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @multicast1}}]}, {0x60, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e24, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}, 0xcc48}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "96e789edca82b40eee61326ac43230708ce43df98455143cb808da0ff433a983"}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_FLAGS={0x8, 0x3, 0x2}]}, {0x60, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "9cf0d73a450b63a303c001bcfbd013837bd0b147932d1708cede1dd973421b72"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e21, @local}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @multicast2}}, @WGPEER_A_FLAGS={0x8, 0x3, 0x7}]}]}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x5000c}, 0xd0) sendmsg(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000400)=@llc={0x1a, 0x6, 0x20, 0x8, 0x5, 0x0, @multicast}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000480)="f6188c71b1a3fa5e992bdf3e856b6ec719523cd88769b9cbe51893597e2ef35efc6d0408b162694d86e5ffe0ef91de92b5432b0bb652bb7d7e2f0db87e9baacef974b064a4ca7a41b5c7aeee807547af39d9fdbc573b0a", 0x57}, {&(0x7f0000000500)="54e832d083a173da607cf8e3fc7e70c897760e9fd109f9838d10d5caa1c5ffa80d", 0x21}, {&(0x7f0000000540)="1563a93ae2b0e572efdee2e59012e48a446754dd03f515d9cf8d125da8f64ba8618ea08096ce42", 0x27}, {&(0x7f0000000580)="cc0f6383a60f29cc25c1806040daffdf8df08e7aee65e08d528868b07ed66bd8aa2b99365730838d20e615c11b091d17ca8b73c4433a5234506060862571cb7487f5d1c187f0c107efb7bbed99bf036b4da9f4013d354b8780b746d7421aa5b7e722dd280cea930187f4e3941d98bbe6d7ecaed7922301ad0b5c3c7985e1fe0e27f8479a5d736a", 0x87}, {&(0x7f0000000640)="501c04538987ea05212389aa7e23a6879f5a24ab203d045bfc0631dac0df3685f358517794d05a0b98bf8467ff3579bc8e0babb96e75c0df52c475170d7c25c9ee9d3501bd0b73a4711bd716d040e6fddf7dedaf802ba31d1118cd09e65aa547282a74aa93bdaeb91dc1a3969be0572c174801797cd24e1419a4c75e2bdc5f51c72afb5accb166eae8d7c5c181a03e5595a7f802407566e35c88d5f1d8d506", 0x9f}, {&(0x7f0000000700)="e657a40d00479782795619990136397665ad9fb306629637e1e76c7e231695bd57f9f742b0f4b043dccf29df5370ba37c719640c21bafe3058d61003a03489771a88ff23293d5ba4f988f3dc8ef7e09b1f36513346af9ac8d00ad76c", 0x5c}, {&(0x7f0000000780)="fc8f440df13733469899be51be4000b350b41b33661aebc84cba4ef28a7456ec25db598b98cb1472da933132b6f7c2f6a5fb4cd52efc3a4a1e2af32f1887b69415756584538d5438d1f368750ae92ad2a0ff9e4e43f0728560adb6a98684110895cfa82dff5bb0d68fb378d8dfce55abcdf5efeb48845da79e36ea46d5ba55e96f840b7429f4a2fd4b744b009fb6bfcec00df7d83c79fd61f67697ca7b23cc656b7299c7401e73da78b0eb548210e92092ced53686f2905a7c0cbdbe6e76052b4f4f353a", 0xc4}], 0x7, &(0x7f0000000900)=[{0xe8, 0x101, 0x9, "813a81c45113775652059c4ea1d3d1fb12c7f9f1fcb034ed953963638b08e4074e8661a94ec373b2d57c1514c3a3b8fba53d4e1cbfba73de03233e27ccedfaea6d5bb894e708f4ce895ac64175fced4d0fb88781100fed068205d67342bb2e2f3f811072bba83d7ec52732b9abda57133eb632ad1aab12dd422ba13b74c42f19f67373ab4cd5ee96455ec13eaa3946d7f48826384912960e0a2bd94f0d236b2d41f0e5325b58b6076a74570e64c2adfd458ac046541d1c2c06351fbf9148619528f28035094767726382c72669a55c04c1ca024be1eb19"}], 0xe8}, 0x80) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000a40), 0x400400, 0x0) sendmsg$TIPC_CMD_GET_NETID(r1, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x1c, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x14000081) sendmsg$NL80211_CMD_GET_KEY(r1, &(0x7f0000000c40)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x40, 0x0, 0x10, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_DEFAULT_TYPES={0x4}, @NL80211_ATTR_KEY={0x18, 0x50, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_TYPE={0x8, 0x7, 0x2}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}]}, @NL80211_ATTR_KEY_SEQ={0x4}, @NL80211_ATTR_KEY_SEQ={0xc, 0xa, "c0bf5e0465abdf93"}]}, 0x40}, 0x1, 0x0, 0x0, 0x4c010}, 0x4000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000c80)='./file0\x00', 0x10400, 0x82) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000d00), r1) sendmsg$NL80211_CMD_GET_MPP(r2, &(0x7f0000000dc0)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000d80)={&(0x7f0000000d40)={0x34, r3, 0x300, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x2, 0x48}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040}, 0x8000) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000e40)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_PROBE_MESH_LINK(r2, &(0x7f0000000f00)={&(0x7f0000000e00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x34, r3, 0x200, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x6, 0x4b}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x800) pipe(&(0x7f0000000f40)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r5, 0xf504, 0x0) r7 = socket$netlink(0x10, 0x3, 0x4) r8 = pidfd_getfd(r6, r1, 0x0) dup3(r7, r8, 0x0) ioctl$TIOCGPGRP(r6, 0x540f, &(0x7f0000000f80)=0x0) kcmp$KCMP_EPOLL_TFD(r9, 0x0, 0x7, r6, &(0x7f0000000fc0)={r8}) r10 = creat(&(0x7f0000001000)='./file0\x00', 0x108) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r10, 0xc018937e, &(0x7f0000001780)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x1}}, './file0\x00'}) 07:35:31 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x7, 0x100c0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @out_args}, './file0\x00'}) ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f0000000080)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$int_in(r0, 0x5452, &(0x7f00000002c0)=0x9) io_uring_register$IORING_UNREGISTER_BUFFERS(r0, 0x1, 0x0, 0x0) ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000300)=0x2) r2 = socket$inet_icmp(0x2, 0x2, 0x1) setsockopt$SO_BINDTODEVICE_wg(r2, 0x1, 0x19, &(0x7f0000000340)='wg2\x00', 0x4) setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000380)={0x7fff, {{0xa, 0x4e21, 0x5, @mcast2, 0x11a}}}, 0x88) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0\x00'}) pwrite64(r3, &(0x7f0000000480)="2a09c99e05e73e2f2c18e277d8b890b4573eea03b371e9116ded6ba7fde2bc873d2e5d7db14d5f6c22038e3bcc4a4f0d525ff036a8c34cfb219778eafaba51b0cd311d4992d45143a1365822882fdcd7f9abce44a516d47dfb3717532243fe6d266755ac43a065ceebe2f98175a45f17a788943fbedf4b4c480cb222d48e5b2833cd9c4d99e4fa49cdc1956c2e53b6ba8b10cebee69cd901ed0a5abb5803f9f2e5d4098d86f976c2f0dc8e76d7f5f05ec5d782e0fe2a590cdf19318787dc02d20d628ab43a063d43f6c70a718057e634727ed9e93ef36edcd9b45cfd3bb297327ac531fc7fc0b9cd3c3c2d7916f5bffc530c09a9d4c9", 0xf6, 0x3) ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000000580)=0x5) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000600), r1) sendmsg$ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x20, r4, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0xda8273c2c4f9107e}, 0x400c881) ioctl$AUTOFS_DEV_IOCTL_FAIL(r3, 0xc0189377, &(0x7f0000000700)={{0x1, 0x1, 0x18, r1, {0x7, 0x153e}}, './file0\x00'}) ioctl$SIOCGSTAMP(r5, 0x8906, &(0x7f0000000740)) pwritev(r1, &(0x7f0000000880)=[{&(0x7f0000000780)="964757547bbaf6ac51756aa5c902aa665ec7a79eebd7ab2b49a3a1f7b2494dc5a900c6689934186a7b96ba13ac7b6ae0e13fb9d3785b65a000b659ddead1e8e5d9b0885fc60fc4fc42abed6420c5e384ce23adf13227d8c54ea43b92aca41bcf1a2b9ac7c8da2f3b04c7", 0x6a}, {&(0x7f0000000800)="c684746ecc90fd0d998c1f9d23a426f2cff53f23c16a1f8ea312", 0x1a}, {&(0x7f0000000840)="e5ea12b0bde5c260cf5c1806d837e4e862688482a4346b46b3bee0a26b", 0x1d}], 0x3, 0x3ff, 0x7) r6 = syz_mount_image$nfs(&(0x7f00000008c0), &(0x7f0000000900)='./file0\x00', 0x3dc, 0x3, &(0x7f0000000b00)=[{&(0x7f0000000940)="54b230b58c8b79924cdb1210de54ce5dfd676d7c26c77612e89d4e1819e6d7eda3dcee3ff3905d3745969f3732a643a39e3aa46481ed52259352dfc8afb845b79268efcc66b4b0fd01439bc313957eb8a269ddf60d60db07209d4dc5f7ef639926fcfd7fec575c69e8bc216858bf0a46af2a9cccfad009ff175de1722990c73026f89511e9e353586bdfbb006d5fc77f18f06e879e562c7b082f4b616b8bb8a81c18a42283333235f6ad0719a84c7dea30bc6d8b83708210fce97ca8d2cd20", 0xbf, 0x1}, {&(0x7f0000000a00)="382b4775c6eac422065697678987301d195be1416ec097a24820", 0x1a, 0x1f}, {&(0x7f0000000a40)="26cd680ed481d195d702712aa46a66d34be599ec3d56594a677aa77b4f9913ac89e136c0ecb9366c3f92b268ec9aa198efab678e4c70d716bcac777807abe0436b0139007b1367beae6eeaa91ec852bc53520a26f9d03e5bec038b0000643f140fd9665a1e872b90af40010b61064882eaaa3162b90d3b17ccb38f9421184fb4802bfa81d29afa498f", 0x89, 0x6}], 0x1000002, &(0x7f0000000b80)={[{'\x00'}, {'ethtool\x00'}, {}, {'-\\('}, {'\x00'}, {'/dev/vcsa#\x00'}, {'/dev/vcsa#\x00'}, {':!,#%/^\'/'}], [{@obj_role={'obj_role', 0x3d, '/dev/vcsa#\x00'}}, {@fsuuid={'fsuuid', 0x3d, {[0x34, 0x39, 0x38, 0x30, 0x32, 0x63, 0x61, 0x38], 0x2d, [0x35, 0x38, 0x62, 0x38], 0x2d, [0x35, 0x30, 0x61, 0x65], 0x2d, [0x39, 0x30, 0x38, 0x39], 0x2d, [0x33, 0x36, 0x36, 0x39, 0x32, 0x30, 0x65, 0x36]}}}, {@permit_directio}, {@defcontext={'defcontext', 0x3d, 'root'}}]}) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000c40)={0x0, r6, 0x6, 0x5, 0x8a, 0x5}) [ 85.874266] audit: type=1400 audit(1663227331.958:6): avc: denied { execmem } for pid=287 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 07:35:31 executing program 3: r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ff5000/0x8000)=nil, 0x8000, 0x2000004, 0x30, 0xffffffffffffffff, 0x8000000) r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0) syz_io_uring_submit(r0, 0x0, &(0x7f0000000140)=@IORING_OP_READ=@pass_buffer={0x16, 0x5, 0x4000, @fd=r1, 0x2, &(0x7f0000000040)=""/245, 0xf5, 0xd}, 0x3) syz_io_uring_submit(r0, 0x0, &(0x7f00000001c0)=@IORING_OP_OPENAT={0x12, 0x3, 0x0, r1, 0x0, &(0x7f0000000180)='./file0\x00', 0xc, 0x80000, 0x23456}, 0x81) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r0, 0x0, &(0x7f0000000340)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000300)='./file0\x00', 0x2, 0x400, 0x0, {0x0, r2}}, 0x101) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000008, 0x1010, r1, 0x10000000) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r1) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000380), 0x208002, 0x0) syz_io_uring_submit(r0, r3, &(0x7f0000000400)=@IORING_OP_FILES_UPDATE={0x14, 0x5, 0x0, 0x0, 0x9, &(0x7f00000003c0)=[r4, r1, r1, r1], 0x4, 0x0, 0x0, {0x0, r2}}, 0x5) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000440), 0x400800, 0x0) r6 = inotify_init1(0x80000) io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f00000004c0)={0x3f, 0x0, &(0x7f0000000480)=[r5, r6]}, 0x2) r7 = openat$sr(0xffffffffffffff9c, &(0x7f0000000500), 0x800, 0x0) pipe2(&(0x7f0000000540)={0xffffffffffffffff}, 0x4000) io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000580)={'rose0\x00'}) fchmodat(r8, &(0x7f00000005c0)='./file0\x00', 0x1) mknod(&(0x7f0000000600)='./file0\x00', 0x200, 0x7) ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, &(0x7f0000000680)={0x6, 0x200, 0x5, 0x40, 0x7, [{0x800, 0x4, 0x80, '\x00', 0x4}, {0xfff, 0x226f, 0xea1, '\x00', 0x1500}, {0xbf9, 0xaf, 0x3, '\x00', 0x1180}, {0x7f, 0x9, 0x9, '\x00', 0x1001}, {0x8, 0x9, 0x8000, '\x00', 0x1100}, {0x0, 0xffffffff80000000, 0x8000, '\x00', 0x102}, {0x8000, 0xfff, 0x8, '\x00', 0x8}]}) 07:35:31 executing program 5: ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(0xffffffffffffffff, 0x8008f513, &(0x7f0000000000)) sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x3, 0x0, 0x9}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000090}, 0x80) sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000180)={0x228, 0x13, 0x100, 0x70bd29, 0x25dfdbff, {0x0, 0x20, 0x81, 0x3, {0x4e23, 0x4e23, [0x7fffffff, 0x6, 0x401, 0x1], [0x1000, 0x0, 0x1, 0x5], 0x0, [0x4, 0xcb]}, 0x4, 0x400}, [@INET_DIAG_REQ_BYTECODE={0x18, 0x1, "86cc89ffef9c2ea2057b4dda15a35fb1ca280686"}, @INET_DIAG_REQ_BYTECODE={0xac, 0x1, "7c5e0ccd10791862299e809428390539b4f882aefcdd122979b6dd0292d85e3c2b33dbabe373d8a1c37a25e14fddc07c3ecf0b9f772d2eec89c4c3e1010e17bbbf624e166531261b70b6419d1a6fa9fc658b812f35653f42484591048d156b6d548e04a7a12dd048cdd85687cab2969b4cbe2edbbd4d1a01cb29277bd6ab914ceb35a606f40aacbb47f0b0e2541d59bce36cf121d351e7822223097e98086d2cb3592755d84b65c3"}, @INET_DIAG_REQ_BYTECODE={0xac, 0x1, "42ee2e0638c6391b4bae90372fb20f7b976be57c5537d7ef05f75ab07994fcfa935b82fb76552cdd291d77b783c16f4ded62e9f6416fbf0eb9af83e716988d85861d7100bcb5b09de74bc4429fd8aeaa439c7b63d9a3925d1ca6c9e18ca10726b3d554fc6f5d8247dbdbc904c3e3b666046f28dfa6d56012960dca2db3dcc3deb840b41a90a2b49ed00e0491f2df2e5a6a6b338a77c97834b9706811a3886a42a4e8a9ee190e3896"}, @INET_DIAG_REQ_BYTECODE={0x16, 0x1, "d3cdb7092809be70e372c3fe1653cd37e463"}, @INET_DIAG_REQ_BYTECODE={0x52, 0x1, "7855fdeb65dd92f04d14fca6f259d09e7df7f3dd147e2dce299ddb9bb59232f5b363c21ace4fe6f1fe42c143917b045cc50e26c8b3624a853c1e9147d6efc29d4e29230c399ceefece21bc10ebd6"}]}, 0x228}}, 0x20000040) r0 = syz_io_uring_complete(0x0) sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, 0x0, 0x1, 0x70bd28, 0x25dfdbff, {}, [@ETHTOOL_A_PAUSE_TX={0x5, 0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40034}, 0x44) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000540)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, '\x00'}) sendmsg$NL80211_CMD_GET_MESH_CONFIG(r1, &(0x7f0000000640)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x20, 0x0, 0x10, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8, 0x66}}}}, ["", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x41) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f00000006c0), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_CHANNEL(r2, &(0x7f00000007c0)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x44, r3, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_PAGE={0x5, 0x7, 0x1b}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x11) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r1, &(0x7f0000000b00)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000840)={0x268, 0x0, 0x4, 0x70bd2a, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0xffffffff, 0x55}}}}, [@NL80211_ATTR_FRAME={0x240, 0x33, @data_frame={@qos_no_ht={{@type00={{0x0, 0x2, 0xe, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, @device_b, @device_a, @initial, {0x7, 0x715}}, {0x6}}, {@type01={{0x0, 0x2, 0x8, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1}, {0x40}, @device_a, @initial, @random="397ac3c5edc7", {0x7, 0x4}}, {0x9, 0x1, 0x2, 0x1, 0x40}}}, @a_msdu=[{@device_b, @broadcast, 0x66, "c2dc7d4a3ac9d6e4e9e5290fb9c80bd6cd778071cdad0baf629eb82fc13c5b11f62535316f1e5051e7ebe7bc16d459c3340073b2fd355a0242314a5c46a0ea00d2a5a0f35be9fa91226ea2ab7b9c1311d9288dfced1d9ab841c7a762f9249c3fcfeba228ad28"}, {@device_b, @device_a, 0x4f, "1bdd3d2296e5dc4b1327a723231a437dd5169be2944c68fa0b3c828b6263cad48a9b1e856c137edfa1087475477f625bc83f1870576083e8f027f502d88f6448b553dbe5cb2dfc97c8c2fd03950bc6"}, {@broadcast, @device_b, 0x29, "0165f859215b579fb563ba95bc733a97fdd48f711cdd08f95e325b8b138d9dfcec6cef807beb2112f2"}, {@device_b, @broadcast, 0x42, "b4d945129ec2d626cb5da370b944419832269f7aa996696f99d684b412e847d08449c2b95a183c8d8dda23371898d7eb5fb18971618c584e805de981ad5be684daa5"}, {@broadcast, @device_b, 0x55, "1271c8b84e5490820e9695072bd42201d45a3c5c2915ee6b0c619710f845387d3b9be7cfd06cb8d16dcbec8df9a1fde03f61aa2668d2f391f1dff69c94a7d7bde5dd497d2ec126012d1c3208b0679007863d18ea50"}, {@device_b, @broadcast, 0x37, "e752f0671f3763ef3cbd0e68272603a3f5c2a6a2abab039341df022b615a400e17b2466b8845ae1a791e69a4b04c39c0eff1afea678907"}]}}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x16}]}, 0x268}, 0x1, 0x0, 0x0, 0x24000000}, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000b80), r2) sendmsg$NL802154_CMD_GET_SEC_KEY(r4, &(0x7f0000000c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0xf0e275148c8f600c}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x20, r5, 0x4, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}}, 0x24000010) ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000cc0)={'wpan4\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r2, &(0x7f0000000d80)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x2c, 0x0, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xffff}, @IEEE802154_ATTR_PAN_ID={0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x800) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000dc0)={0xffffffffffffffff}) ioctl$sock_inet_SIOCGIFDSTADDR(r7, 0x8917, &(0x7f0000000e00)={'dummy0\x00'}) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_DEL_DEV(r8, &(0x7f0000000f80)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000f40)={&(0x7f0000000ec0)={0x54, 0x0, 0x20, 0x70bd2c, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000080}, 0x90) 07:35:31 executing program 4: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xa000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x74, 0x0, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy3\x00'}]}, 0x74}, 0x1, 0x0, 0x0, 0x80}, 0x84) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x20, 0x0, 0x310, 0x70bd26, 0x25dfdbfc, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x20}}, 0x4040001) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r2) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000002c0), r3) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000340), r0) sendmsg$IEEE802154_LLSEC_LIST_DEV(r1, &(0x7f0000000400)={&(0x7f0000000300), 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, r4, 0x800, 0x70bd28, 0x25dfdbff, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40080}, 0x2000c001) r5 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000480), r2) sendmsg$NET_DM_CMD_START(r1, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x14, r5, 0x8, 0x70bd25, 0x25dfdbfb, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4044004}, 0x4) r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r3) sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000580), 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x50, r6, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x7fffffff}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x1}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x4}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x81}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x10000}]}, 0x50}, 0x1, 0x0, 0x0, 0x40004}, 0xb1) sendmsg$NL80211_CMD_GET_REG(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x30, 0x0, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_DFS_REGION={0x5}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'b\x00'}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x8}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x30}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000840), r1) sendmsg$IEEE802154_LLSEC_DEL_KEY(r7, &(0x7f0000000900)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000880)={0x3c, r8, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x4}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa3}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa2}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x9}]}, 0x3c}, 0x1, 0x0, 0x0, 0xc0}, 0x0) 07:35:32 executing program 7: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BLKDISCARD(r0, 0x1277, &(0x7f0000000040)=0x1) openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x48140) ioctl$BLKSECTGET(r1, 0x1267, &(0x7f00000000c0)) ioctl$IOC_PR_RELEASE(r1, 0x401070ca, &(0x7f0000000100)={0x9, 0x2}) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x3ff}}, './file0\x00'}) ioctl$BLKTRACESTOP(r2, 0x1275, 0x0) r3 = perf_event_open$cgroup(&(0x7f00000001c0)={0x3, 0x80, 0x1, 0x5, 0x9, 0x3, 0x0, 0x2, 0x800, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x2, @perf_bp={&(0x7f0000000180), 0xe}, 0x22, 0x8, 0x8000, 0x7, 0x10000, 0xc49, 0x6, 0x0, 0x7f, 0x0, 0x6}, 0xffffffffffffffff, 0x1, r1, 0x1) ioctl$EXT4_IOC_GETSTATE(r3, 0x40046629, &(0x7f0000000240)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, r1, {0xee01, 0xee01}}, './file0\x00'}) ioctl$BTRFS_IOC_SET_FEATURES(r4, 0x40309439, &(0x7f00000002c0)={0x2, 0x2, 0x4}) ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f00000003c0)={0x1, 0x3, 0x1000, 0x7b, &(0x7f0000000300)="3c4420194775ea5b46adf3eb8d8f7d80075180f20819237ddd6566722b94259169d3a515df9c24f035ed93a7e77fe6764525177aa945a5b0584c4626c8d3535c96a0b6f62dec26d23789608dcd4282a08de90e5886c5c2302565ce600e3fa9a087318510cdd7bf49f15a33d082b7499230073bb9f70f6b6fa5e990", 0x1a, 0x0, &(0x7f0000000380)="4a703912941d0df77fa5869a1c4cf130ccc32740853e05879bdb"}) sendfile(0xffffffffffffffff, r2, &(0x7f0000000440), 0x3) pipe2(&(0x7f0000000480)={0xffffffffffffffff}, 0x84000) ioctl$VFAT_IOCTL_READDIR_SHORT(r5, 0x82307202, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) syncfs(r2) r6 = openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000700), 0x2, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(r6, 0x8004f50e, &(0x7f0000000740)) io_uring_register$IORING_UNREGISTER_BUFFERS(r1, 0x1, 0x0, 0x0) 07:35:32 executing program 6: r0 = open(&(0x7f0000000000)='./file0\x00', 0x50000, 0x20) sendmsg$NL80211_CMD_GET_COALESCE(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {{}, {@void, @void, @void}}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40054}, 0x20000000) r1 = accept4(r0, &(0x7f0000000140)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, &(0x7f00000001c0)=0x80, 0x80000) sendmsg$NL80211_CMD_GET_MPP(r1, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000240)={0x68, 0x0, 0x400, 0x70bd2a, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x1, 0x3b}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x68}, 0x1, 0x0, 0x0, 0x10}, 0x8800) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000400), 0x12000, 0x0) r4 = perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x80, 0x0, 0x0, 0x80, 0x0, 0xfff, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000000340), 0x8}, 0x8101, 0xffffffffffffff71, 0x3, 0x3, 0xfffffffffffffff7, 0x24dc, 0x4c05, 0x0, 0xff, 0x0, 0xa0000000}, 0x0, 0x7, r3, 0xb) r5 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r5, 0x80089419, &(0x7f0000000440)) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000480)=@buf) ioctl$NS_GET_OWNER_UID(r3, 0xb704, &(0x7f00000004c0)=0x0) r7 = accept4(r0, &(0x7f0000000ec0)=@qipcrtr, &(0x7f0000000f40)=0x80, 0x800) ioctl$F2FS_IOC_GET_FEATURES(r7, 0x8004f50c, &(0x7f0000000f80)) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000001180)={{{@in6=@mcast2, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@empty}}, &(0x7f0000001280)=0xe8) recvmmsg(r3, &(0x7f0000006740)=[{{&(0x7f00000012c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000003480)=[{&(0x7f0000001340)=""/56, 0x38}, {&(0x7f0000001380)=""/183, 0xb7}, {&(0x7f0000001440)=""/4096, 0x1000}, {&(0x7f0000002440)=""/4096, 0x1000}, {&(0x7f0000003440)=""/8, 0x8}], 0x5, &(0x7f0000003500)=""/37, 0x25}, 0x5}, {{&(0x7f0000003540)=@in6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f00000036c0)=[{&(0x7f00000035c0)=""/98, 0x62}, {&(0x7f0000003640)=""/116, 0x74}], 0x2, &(0x7f0000003700)=""/172, 0xac}, 0x8}, {{0x0, 0x0, &(0x7f00000038c0)=[{&(0x7f00000037c0)=""/72, 0x48}, {&(0x7f0000003840)=""/112, 0x70}], 0x2, &(0x7f0000003900)=""/255, 0xff}, 0x55f}, {{&(0x7f0000003a00)=@ax25={{0x3, @bcast}, [@netrom, @remote, @remote, @remote, @bcast, @null, @bcast, @default]}, 0x80, &(0x7f0000004cc0)=[{&(0x7f0000003a80)}, {&(0x7f0000003ac0)=""/187, 0xbb}, {&(0x7f0000003b80)=""/58, 0x3a}, {&(0x7f0000003bc0)=""/4096, 0x1000}, {&(0x7f0000004bc0)=""/228, 0xe4}], 0x5, &(0x7f0000004d40)=""/219, 0xdb}, 0x8}, {{&(0x7f0000004e40)=@llc, 0x80, &(0x7f0000004f80)=[{&(0x7f0000004ec0)=""/140, 0x8c}], 0x1, &(0x7f0000004fc0)=""/4096, 0x1000}, 0x3}, {{&(0x7f0000005fc0)=@nl=@proc, 0x80, &(0x7f0000006480)=[{&(0x7f0000006040)=""/91, 0x5b}, {&(0x7f00000060c0)=""/254, 0xfe}, {&(0x7f00000061c0)=""/206, 0xce}, {&(0x7f00000062c0)=""/200, 0xc8}, {&(0x7f00000063c0)=""/77, 0x4d}, {&(0x7f0000006440)=""/27, 0x1b}], 0x6}, 0x80}, {{0x0, 0x0, &(0x7f0000006700)=[{&(0x7f0000006500)=""/249, 0xf9}, {&(0x7f0000006600)=""/169, 0xa9}, {&(0x7f00000066c0)=""/12, 0xc}], 0x3}, 0x9}], 0x7, 0x0, &(0x7f0000006900)={0x77359400}) r10 = syz_open_dev$hidraw(&(0x7f0000006940), 0xfffffffffffffc01, 0x100) r11 = socket$unix(0x1, 0x1, 0x0) r12 = syz_mount_image$iso9660(&(0x7f0000006980), &(0x7f00000069c0)='./file0\x00', 0xffffffff80000000, 0x4, &(0x7f0000007b80)=[{&(0x7f0000006a00)="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", 0x1000, 0x6}, {&(0x7f0000007a00)="2a1792cf5ed75b29bb535e218a30a0e7e31fd46690ed5a174899ad8bc955961ab6fe027dc2cb23695c2eb3f703755c3c46712a6d69349081acd5418a5df8c6e79dfa8ffe015e352e411e3e93566a9f6264333e9777f3e429ce0dd2ada8d8f4cfe451975c405f7a5e1cdf08def19a7717dee0cac3b83f0256d7489776d660a21d7209a666f46b1b9451240bc2ad2712cf0c67471baecf9c3730e031dcf95e3902d04a69930c7857470034e3", 0xab, 0xffffffff}, {&(0x7f0000007ac0)="8cf04a86c66837d19d54753ca474914531c64df70cb364addf431e2b3fb83da4bcd6ad10556f7ed9ddbf7719d2d1fc4c1e6b258400881debdfafe315b85667247185f0a315e7ad81ef25b545", 0x4c, 0x9}, {&(0x7f0000007b40)="620b2b57087ad8c556aea139f96d27d9beeae13a", 0x14, 0xff}], 0x12c1020, &(0x7f0000007c00)={[{@overriderock}, {@dmode={'dmode', 0x3d, 0xfffffffffffffff9}}, {@mode={'mode', 0x3d, 0x3}}, {@uid={'uid', 0x3d, r6}}, {@unhide}, {@unhide}, {@map_normal}, {@overriderock}], [{@measure}, {@smackfsdef={'smackfsdef', 0x3d, '\xff\xff\xff\xff\xff\xff'}}]}) sendmsg$unix(r0, &(0x7f0000007d80)={&(0x7f0000000fc0)=@abs={0x1, 0x0, 0x4e21}, 0x6e, &(0x7f0000001140)=[{&(0x7f0000001040)="1d3ab33445a7da6cc6b5a260cdaeaa76afcbd482b6978e3874c94d0fb0", 0x1d}, {&(0x7f0000001080)="7536f5b682f529e15557991a23aae7f3aa417b8a4384581382174f910069f937defc4c84ed614b62ef10795857c273b6832c53aa", 0x34}, {&(0x7f00000010c0)="c234a382e8cf03e1cf1b783bc8cef601b21db351379bbf685ffabd1fbff1ed42b1c8e66caf3e6a7557b479c7dafeb2f49df28be3d5706026aa216930d52154401f68cb493b215709159857cf684c9c50c61e760068641920d5dd5458", 0x5c}], 0x3, &(0x7f0000007cc0)=[@cred={{0x1c, 0x1, 0x2, {0x0, r8}}}, @rights={{0x2c, 0x1, 0x1, [r9, r3, r2, r10, r7, r0, r11]}}, @rights={{0x1c, 0x1, 0x1, [r3, r12, r0]}}, @rights={{0x14, 0x1, 0x1, [r4]}}], 0x88, 0x8000}, 0x20000010) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r1, &(0x7f0000007f80)={&(0x7f0000007dc0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000007f40)={&(0x7f0000007e00)={0x110, 0x0, 0x20, 0x70bd25, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc, 0x8f, 0x10000000}, {0xc, 0x90, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc, 0x90, 0x1}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc, 0x8f, 0x1}, {0xc, 0x90, 0x6}}, {@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x2}, {0xc, 0x8f, 0x3}, {0xc, 0x90, 0x4}}]}, 0x110}, 0x1, 0x0, 0x0, 0x4005}, 0x400c000) write(0xffffffffffffffff, &(0x7f0000008000)="a32d892dd265d996382e4158e90a00cdcc3c861cc70d774851928e0c0bfcc8d68799140e5ddabc33965527385c9254095b373c6bd671b8c23cffb5ef7552e52e74f48eada7b2479f5db5", 0x4a) [ 87.120192] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 87.124066] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 87.125692] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 87.128762] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 87.130732] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 87.134357] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 87.144025] Bluetooth: hci0: HCI_REQ-0x0c1a [ 87.177587] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 87.180130] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 87.181966] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 87.184137] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 87.188070] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 87.189640] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 87.191890] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 87.193408] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 87.195541] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 87.197266] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 87.201358] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 87.202655] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 87.202885] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 87.204760] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 87.211140] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 87.212573] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 87.214129] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 87.215528] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 87.227359] Bluetooth: hci2: HCI_REQ-0x0c1a [ 87.239421] Bluetooth: hci1: HCI_REQ-0x0c1a [ 87.240616] Bluetooth: hci3: HCI_REQ-0x0c1a [ 87.303517] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 87.305022] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 87.307261] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 87.308344] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 87.311215] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 87.312672] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 87.328385] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 87.331174] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 87.333082] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 87.334309] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 87.338775] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 87.340382] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 87.347204] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 87.348727] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 87.350605] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 87.350897] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 87.352939] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 87.353351] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 87.356382] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 87.356886] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 87.359312] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 87.360512] Bluetooth: hci7: HCI_REQ-0x0c1a [ 87.361337] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 87.366128] Bluetooth: hci4: HCI_REQ-0x0c1a [ 87.415082] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 87.419484] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 87.423793] Bluetooth: hci5: HCI_REQ-0x0c1a [ 87.446921] Bluetooth: hci6: HCI_REQ-0x0c1a [ 89.202119] Bluetooth: hci0: command 0x0409 tx timeout [ 89.264902] Bluetooth: hci3: command 0x0409 tx timeout [ 89.266335] Bluetooth: hci1: command 0x0409 tx timeout [ 89.267193] Bluetooth: hci2: command 0x0409 tx timeout [ 89.394058] Bluetooth: hci4: command 0x0409 tx timeout [ 89.394520] Bluetooth: hci7: command 0x0409 tx timeout [ 89.456904] Bluetooth: hci5: command 0x0409 tx timeout [ 89.520966] Bluetooth: hci6: command 0x0409 tx timeout [ 91.248985] Bluetooth: hci0: command 0x041b tx timeout [ 91.313053] Bluetooth: hci2: command 0x041b tx timeout [ 91.313987] Bluetooth: hci1: command 0x041b tx timeout [ 91.314784] Bluetooth: hci3: command 0x041b tx timeout [ 91.441011] Bluetooth: hci7: command 0x041b tx timeout [ 91.441954] Bluetooth: hci4: command 0x041b tx timeout [ 91.504938] Bluetooth: hci5: command 0x041b tx timeout [ 91.568926] Bluetooth: hci6: command 0x041b tx timeout [ 93.296962] Bluetooth: hci0: command 0x040f tx timeout [ 93.360943] Bluetooth: hci3: command 0x040f tx timeout [ 93.361744] Bluetooth: hci1: command 0x040f tx timeout [ 93.363015] Bluetooth: hci2: command 0x040f tx timeout [ 93.488887] Bluetooth: hci4: command 0x040f tx timeout [ 93.489699] Bluetooth: hci7: command 0x040f tx timeout [ 93.553162] Bluetooth: hci5: command 0x040f tx timeout [ 93.617104] Bluetooth: hci6: command 0x040f tx timeout [ 95.344900] Bluetooth: hci0: command 0x0419 tx timeout [ 95.408882] Bluetooth: hci2: command 0x0419 tx timeout [ 95.409358] Bluetooth: hci1: command 0x0419 tx timeout [ 95.409768] Bluetooth: hci3: command 0x0419 tx timeout [ 95.536870] Bluetooth: hci7: command 0x0419 tx timeout [ 95.537343] Bluetooth: hci4: command 0x0419 tx timeout [ 95.600865] Bluetooth: hci5: command 0x0419 tx timeout [ 95.664896] Bluetooth: hci6: command 0x0419 tx timeout [ 143.788418] loop2: detected capacity change from 0 to 1 [ 143.808421] loop2: detected capacity change from 0 to 1 07:36:29 executing program 2: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0xa6f4, 0x2, &(0x7f0000000240)=[{&(0x7f0000000680)="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", 0xfe0, 0x483e}, {&(0x7f0000000200)="84f446a627a0b79c96e18fb3b522ae2bd2776c4056b0", 0x16, 0x8}], 0x41400, &(0x7f0000000300)=ANY=[@ANYBLOB='check=strict,dots,dots,dmask=000000000000000001736\"1,measur,rootcontext=uncned_u,hash,uid=', @ANYRESDEC=r0, @ANYBLOB=',euid>', @ANYRESDEC=0x0, @ANYBLOB=',smackfsdef=vfat\x00,pcr=00000000000000000025,\x00']) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8223}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x4d031, 0xffffffffffffffff, 0x0) modify_ldt$write2(0x11, &(0x7f0000000000), 0x10) [ 143.936936] audit: type=1400 audit(1663227390.025:7): avc: denied { open } for pid=3734 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 143.938506] audit: type=1400 audit(1663227390.026:8): avc: denied { kernel } for pid=3734 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 143.967603] ------------[ cut here ]------------ [ 143.967628] [ 143.967631] ====================================================== [ 143.967635] WARNING: possible circular locking dependency detected [ 143.967640] 6.0.0-rc5-next-20220914 #1 Not tainted [ 143.967646] ------------------------------------------------------ [ 143.967650] syz-executor.2/3735 is trying to acquire lock: [ 143.967656] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 143.967696] [ 143.967696] but task is already holding lock: [ 143.967699] ffff88800d78a820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 143.967727] [ 143.967727] which lock already depends on the new lock. [ 143.967727] [ 143.967730] [ 143.967730] the existing dependency chain (in reverse order) is: [ 143.967733] [ 143.967733] -> #3 (&ctx->lock){....}-{2:2}: [ 143.967747] _raw_spin_lock+0x2a/0x40 [ 143.967765] __perf_event_task_sched_out+0x53b/0x18d0 [ 143.967777] __schedule+0xedd/0x2470 [ 143.967788] preempt_schedule_common+0x45/0xc0 [ 143.967800] __cond_resched+0x17/0x30 [ 143.967812] __mutex_lock+0xa3/0x14d0 [ 143.967824] __do_sys_perf_event_open+0x1eec/0x32c0 [ 143.967836] do_syscall_64+0x3b/0x90 [ 143.967850] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.967868] [ 143.967868] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 143.967882] _raw_spin_lock_nested+0x30/0x40 [ 143.967896] raw_spin_rq_lock_nested+0x1e/0x30 [ 143.967910] task_fork_fair+0x63/0x4d0 [ 143.967926] sched_cgroup_fork+0x3d0/0x540 [ 143.967940] copy_process+0x4183/0x6e20 [ 143.967951] kernel_clone+0xe7/0x890 [ 143.967961] user_mode_thread+0xad/0xf0 [ 143.967971] rest_init+0x24/0x250 [ 143.967987] arch_call_rest_init+0xf/0x14 [ 143.968000] start_kernel+0x4c1/0x4e6 [ 143.968009] secondary_startup_64_no_verify+0xe0/0xeb [ 143.968024] [ 143.968024] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 143.968040] _raw_spin_lock_irqsave+0x39/0x60 [ 143.968057] try_to_wake_up+0xab/0x1920 [ 143.968070] up+0x75/0xb0 [ 143.968081] __up_console_sem+0x6e/0x80 [ 143.968097] console_unlock+0x46a/0x590 [ 143.968113] vt_ioctl+0x2822/0x2ca0 [ 143.968125] tty_ioctl+0x7c4/0x1700 [ 143.968136] __x64_sys_ioctl+0x19a/0x210 [ 143.968152] do_syscall_64+0x3b/0x90 [ 143.968165] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.968181] [ 143.968181] -> #0 ((console_sem).lock){....}-{2:2}: [ 143.968195] __lock_acquire+0x2a02/0x5e70 [ 143.968211] lock_acquire+0x1a2/0x530 [ 143.968226] _raw_spin_lock_irqsave+0x39/0x60 [ 143.968241] down_trylock+0xe/0x70 [ 143.968253] __down_trylock_console_sem+0x3b/0xd0 [ 143.968269] vprintk_emit+0x16b/0x560 [ 143.968285] vprintk+0x84/0xa0 [ 143.968300] _printk+0xba/0xf1 [ 143.968318] report_bug.cold+0x72/0xab [ 143.968330] handle_bug+0x3c/0x70 [ 143.968362] exc_invalid_op+0x14/0x50 [ 143.968374] asm_exc_invalid_op+0x16/0x20 [ 143.968390] group_sched_out.part.0+0x2c7/0x460 [ 143.968401] ctx_sched_out+0x8f1/0xc10 [ 143.968410] __perf_event_task_sched_out+0x6d0/0x18d0 [ 143.968422] __schedule+0xedd/0x2470 [ 143.968432] preempt_schedule_common+0x45/0xc0 [ 143.968443] __cond_resched+0x17/0x30 [ 143.968453] __mutex_lock+0xa3/0x14d0 [ 143.968464] __do_sys_perf_event_open+0x1eec/0x32c0 [ 143.968476] do_syscall_64+0x3b/0x90 [ 143.968489] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.968505] [ 143.968505] other info that might help us debug this: [ 143.968505] [ 143.968508] Chain exists of: [ 143.968508] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 143.968508] [ 143.968523] Possible unsafe locking scenario: [ 143.968523] [ 143.968526] CPU0 CPU1 [ 143.968528] ---- ---- [ 143.968530] lock(&ctx->lock); [ 143.968536] lock(&rq->__lock); [ 143.968543] lock(&ctx->lock); [ 143.968549] lock((console_sem).lock); [ 143.968555] [ 143.968555] *** DEADLOCK *** [ 143.968555] [ 143.968557] 2 locks held by syz-executor.2/3735: [ 143.968564] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 143.968590] #1: ffff88800d78a820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 143.968617] [ 143.968617] stack backtrace: [ 143.968620] CPU: 0 PID: 3735 Comm: syz-executor.2 Not tainted 6.0.0-rc5-next-20220914 #1 [ 143.968633] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 143.968642] Call Trace: [ 143.968645] [ 143.968650] dump_stack_lvl+0x8b/0xb3 [ 143.968664] check_noncircular+0x263/0x2e0 [ 143.968681] ? format_decode+0x26c/0xb50 [ 143.968696] ? print_circular_bug+0x450/0x450 [ 143.968713] ? enable_ptr_key_workfn+0x20/0x20 [ 143.968727] ? lock_release+0x547/0x750 [ 143.968743] ? format_decode+0x26c/0xb50 [ 143.968758] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 143.968775] __lock_acquire+0x2a02/0x5e70 [ 143.968797] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 143.968819] lock_acquire+0x1a2/0x530 [ 143.968835] ? down_trylock+0xe/0x70 [ 143.968850] ? rcu_read_unlock+0x40/0x40 [ 143.968870] ? vprintk+0x84/0xa0 [ 143.968887] _raw_spin_lock_irqsave+0x39/0x60 [ 143.968903] ? down_trylock+0xe/0x70 [ 143.968916] down_trylock+0xe/0x70 [ 143.968929] ? vprintk+0x84/0xa0 [ 143.968945] __down_trylock_console_sem+0x3b/0xd0 [ 143.968962] vprintk_emit+0x16b/0x560 [ 143.968981] vprintk+0x84/0xa0 [ 143.968998] _printk+0xba/0xf1 [ 143.969015] ? record_print_text.cold+0x16/0x16 [ 143.969037] ? report_bug.cold+0x66/0xab [ 143.969051] ? group_sched_out.part.0+0x2c7/0x460 [ 143.969062] report_bug.cold+0x72/0xab [ 143.969077] handle_bug+0x3c/0x70 [ 143.969090] exc_invalid_op+0x14/0x50 [ 143.969104] asm_exc_invalid_op+0x16/0x20 [ 143.969121] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 143.969135] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 143.969146] RSP: 0018:ffff8880206bf978 EFLAGS: 00010006 [ 143.969156] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 143.969163] RDX: ffff88802062d040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 143.969171] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 143.969179] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff88800d78a800 [ 143.969187] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 143.969198] ? group_sched_out.part.0+0x2c7/0x460 [ 143.969211] ? group_sched_out.part.0+0x2c7/0x460 [ 143.969224] ctx_sched_out+0x8f1/0xc10 [ 143.969236] __perf_event_task_sched_out+0x6d0/0x18d0 [ 143.969251] ? lock_is_held_type+0xd7/0x130 [ 143.969269] ? __perf_cgroup_move+0x160/0x160 [ 143.969281] ? set_next_entity+0x304/0x550 [ 143.969298] ? update_curr+0x267/0x740 [ 143.969316] ? lock_is_held_type+0xd7/0x130 [ 143.969334] __schedule+0xedd/0x2470 [ 143.969348] ? io_schedule_timeout+0x150/0x150 [ 143.969359] ? find_held_lock+0x2c/0x110 [ 143.969375] ? lock_is_held_type+0xd7/0x130 [ 143.969392] ? __cond_resched+0x17/0x30 [ 143.969403] preempt_schedule_common+0x45/0xc0 [ 143.969416] __cond_resched+0x17/0x30 [ 143.969427] __mutex_lock+0xa3/0x14d0 [ 143.969439] ? lock_is_held_type+0xd7/0x130 [ 143.969456] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 143.969471] ? mutex_lock_io_nested+0x1310/0x1310 [ 143.969484] ? lock_release+0x3b2/0x750 [ 143.969500] ? __up_read+0x192/0x730 [ 143.969515] ? up_write+0x480/0x480 [ 143.969531] __do_sys_perf_event_open+0x1eec/0x32c0 [ 143.969548] ? __up_read+0x192/0x730 [ 143.969561] ? perf_compat_ioctl+0x130/0x130 [ 143.969574] ? up_write+0x480/0x480 [ 143.969591] ? syscall_enter_from_user_mode+0x1d/0x50 [ 143.969609] ? syscall_enter_from_user_mode+0x1d/0x50 [ 143.969629] do_syscall_64+0x3b/0x90 [ 143.969643] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.969660] RIP: 0033:0x7f041c6ceb19 [ 143.969669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 143.969680] RSP: 002b:00007f0419c44188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 143.969690] RAX: ffffffffffffffda RBX: 00007f041c7e1f60 RCX: 00007f041c6ceb19 [ 143.969698] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080 [ 143.969706] RBP: 00007f041c728f6d R08: 0000000000000000 R09: 0000000000000000 [ 143.969713] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 143.969720] R13: 00007fffb97935af R14: 00007f0419c44300 R15: 0000000000022000 [ 143.969733] [ 144.030741] WARNING: CPU: 0 PID: 3735 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 144.031423] Modules linked in: [ 144.031667] CPU: 0 PID: 3735 Comm: syz-executor.2 Not tainted 6.0.0-rc5-next-20220914 #1 [ 144.032258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 144.033107] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 144.033511] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 144.034843] RSP: 0018:ffff8880206bf978 EFLAGS: 00010006 [ 144.035236] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 144.035762] RDX: ffff88802062d040 RSI: ffffffff81566027 RDI: 0000000000000005 [ 144.036292] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 144.036825] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff88800d78a800 [ 144.037353] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 144.037881] FS: 00007f0419c44700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 144.038473] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 144.038905] CR2: 00007f6e200d76f4 CR3: 00000000206dc000 CR4: 0000000000350ef0 [ 144.039436] Call Trace: [ 144.039629] [ 144.039803] ctx_sched_out+0x8f1/0xc10 [ 144.040098] __perf_event_task_sched_out+0x6d0/0x18d0 [ 144.040492] ? lock_is_held_type+0xd7/0x130 [ 144.040821] ? __perf_cgroup_move+0x160/0x160 [ 144.041164] ? set_next_entity+0x304/0x550 [ 144.041489] ? update_curr+0x267/0x740 [ 144.041791] ? lock_is_held_type+0xd7/0x130 [ 144.042122] __schedule+0xedd/0x2470 [ 144.042406] ? io_schedule_timeout+0x150/0x150 [ 144.042750] ? find_held_lock+0x2c/0x110 [ 144.043066] ? lock_is_held_type+0xd7/0x130 [ 144.043395] ? __cond_resched+0x17/0x30 [ 144.043696] preempt_schedule_common+0x45/0xc0 [ 144.044035] __cond_resched+0x17/0x30 [ 144.044327] __mutex_lock+0xa3/0x14d0 [ 144.044633] ? lock_is_held_type+0xd7/0x130 [ 144.044963] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 144.045354] ? mutex_lock_io_nested+0x1310/0x1310 [ 144.045715] ? lock_release+0x3b2/0x750 [ 144.046019] ? __up_read+0x192/0x730 [ 144.046301] ? up_write+0x480/0x480 [ 144.046582] __do_sys_perf_event_open+0x1eec/0x32c0 [ 144.046959] ? __up_read+0x192/0x730 [ 144.047236] ? perf_compat_ioctl+0x130/0x130 [ 144.047564] ? up_write+0x480/0x480 [ 144.047849] ? syscall_enter_from_user_mode+0x1d/0x50 [ 144.048242] ? syscall_enter_from_user_mode+0x1d/0x50 [ 144.048648] do_syscall_64+0x3b/0x90 [ 144.048937] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 144.049327] RIP: 0033:0x7f041c6ceb19 [ 144.049603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 144.050926] RSP: 002b:00007f0419c44188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 144.051488] RAX: ffffffffffffffda RBX: 00007f041c7e1f60 RCX: 00007f041c6ceb19 [ 144.052019] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080 [ 144.052550] RBP: 00007f041c728f6d R08: 0000000000000000 R09: 0000000000000000 [ 144.053071] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 144.053598] R13: 00007fffb97935af R14: 00007f0419c44300 R15: 0000000000022000 [ 144.054130] [ 144.054310] irq event stamp: 648 [ 144.054566] hardirqs last enabled at (647): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 144.055292] hardirqs last disabled at (648): [] __schedule+0x1225/0x2470 [ 144.055898] softirqs last enabled at (500): [] __irq_exit_rcu+0x11b/0x180 [ 144.056554] softirqs last disabled at (491): [] __irq_exit_rcu+0x11b/0x180 [ 144.057198] ---[ end trace 0000000000000000 ]--- [ 144.088950] loop2: detected capacity change from 0 to 83 07:36:30 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x26, &(0x7f00000005c0)=[{&(0x7f0000010000)="200000008000000006000000600000000f000000000000000100000001000000004000000040000020000000d8f4655fd8f4655f0100ffff53ef010001000000d8f4655f000000000000000001000000000000000b000000800000000800000052470000620100000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e30343636343439353900"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000c8b70d3c99374a58baa2fffdfaacb391010000000c00000000000000d8f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="01000000000005000c0000000000000000000000040000004b00000000000000", 0x20, 0x560}, {&(0x7f0000010300)="030000000400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000120000002200000060000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010500)="ffff0f00ff0f00000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x880, 0x1000}, {&(0x7f0000010e00)="0b0000000c0001022e00000002000000f40702022e2e00"/32, 0x20, 0x2000}, {&(0x7f0000010f00)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x2800}, {&(0x7f0000011000)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x3000}, {&(0x7f0000011100)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x3800}, {&(0x7f0000011200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x4000}, {&(0x7f0000011300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x4800}, {&(0x7f0000011400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x5000}, {&(0x7f0000011500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x5800}, {&(0x7f0000011600)="504d4d00504d4dffd8f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033340075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x6000}, {&(0x7f0000011700)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0xfffffffffffffeeb, 0x6800}, {&(0x7f0000011800)="0200"/32, 0x20, 0x6c00}, {&(0x7f0000011900)="0300"/32, 0x20, 0x7000}, {&(0x7f0000011a00)="0400"/32, 0x20, 0x7400}, {&(0x7f0000011b00)="0500"/32, 0x20, 0x7800}, {&(0x7f0000011c00)="00000000000000000100000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000009800"/96, 0x60, 0x7c00}, {&(0x7f0000011d00)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x8000}, {&(0x7f0000011e00)="0200"/32, 0x20, 0x8400}, {&(0x7f0000011f00)="0300"/32, 0x20, 0x8800}, {&(0x7f0000012000)="0400"/32, 0x20, 0x8c00}, {&(0x7f0000012100)="ffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0500"/2080, 0x820, 0x9000}, {&(0x7f0000012a00)="00000000000000000100000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000009800"/96, 0x60, 0x9c00}, {&(0x7f0000012b00)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d807050766696c653100"/64, 0x40, 0x10000}, {&(0x7f0000012c00)="000002ea0100000001000000270f240c000000000000000000000000000000000601f8070000000006000000779b539778617474723100000601f00700000000060000007498539778617474723200"/96, 0x60, 0x10800}, {&(0x7f0000012d00)="00000000000000000000000000000000786174747232000078617474723100000000000000000000d8f4655fd8f4655fd8f4655f00"/64, 0x40, 0x10fe0}, {&(0x7f0000012e00)="ed41000000080000d8f4655fd8f4655fd8f4655f00000000000004000400000000000800050000000af301000400000000000000000000000100000003000000", 0x40, 0x11080}, {&(0x7f0000012f00)="8081000000180000d8f4655fd8f4655fd8f4655f00000000000001000c00000010000800000000000af30100040000000000000000000000030000000d000000", 0x40, 0x11100}, {&(0x7f0000013000)="8081000000180000d8f4655fd8f4655fd8f4655f00000000000001000c00000010000800000000000af30200040000000000000000000000020000001000000002000000010000001300"/96, 0x60, 0x11180}, {&(0x7f0000013100)="c041000000400000d8f4655fd8f4655fd8f4655f00000000000002002000000000000800000000000af301000400000000000000000000000800000004000000", 0x40, 0x11500}, {&(0x7f0000013200)="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"/768, 0x300, 0x11580}, {&(0x7f0000013500)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x12000}, {&(0x7f0000013a00)='syzkallers\x00'/32, 0x20, 0x12800}, {&(0x7f0000013b00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x15800}], 0x0, &(0x7f0000013c00)) [ 144.596417] loop2: detected capacity change from 0 to 32628 [ 144.607502] EXT4-fs (loop2): VFS: Can't find ext4 filesystem 07:36:30 executing program 2: write$selinux_attr(0xffffffffffffffff, &(0x7f0000000000)='/usr/sbin/cups-browsed\x00', 0x17) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) poll(&(0x7f0000000140)=[{}, {0xffffffffffffffff, 0x206}, {r0, 0x20}], 0x3, 0x8) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x400040, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000003c0)=ANY=[@ANYBLOB="2a99f4bad69af0222817f2e9705d86809820614069d00500969f3e211049e45e663c9252fd90ecb02500ec8040e8bd315fddbe4fa42633406418d358f6e5457da59577281098885e3d00e34a3763915358c215a90a3023003cb4e2672d6674e20be5f70dd4558d8f2944eeb96d7d21a8e6243f99efcd5ba3d397774062b83142633fab4cd17e274907ccd0359b70d84daf4160", @ANYRES32]) syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) close_range(r1, r1, 0x0) sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x34, 0x1, 0x4, 0x401, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x9071}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x2}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x5}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x9}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000080}, 0x800) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60900, 0x0) readv(r3, &(0x7f0000000300)=[{&(0x7f0000000500)=""/166, 0xa6}], 0x1) openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x7ee1b150d9b7ab93, 0x2) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, &(0x7f00000005c0)={0x4, &(0x7f0000000200)=[{0x3, 0x6}, {0x3cf0, 0x5}, {0x5}, {0x7, 0x6}]}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) open(&(0x7f00000001c0)='./file1\x00', 0x100, 0x80) 07:36:31 executing program 2: write$selinux_attr(0xffffffffffffffff, &(0x7f0000000000)='/usr/sbin/cups-browsed\x00', 0x17) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) poll(&(0x7f0000000140)=[{}, {0xffffffffffffffff, 0x206}, {r0, 0x20}], 0x3, 0x8) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4000, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x400040, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000003c0)=ANY=[@ANYBLOB="2a99f4bad69af0222817f2e9705d86809820614069d00500969f3e211049e45e663c9252fd90ecb02500ec8040e8bd315fddbe4fa42633406418d358f6e5457da59577281098885e3d00e34a3763915358c215a90a3023003cb4e2672d6674e20be5f70dd4558d8f2944eeb96d7d21a8e6243f99efcd5ba3d397774062b83142633fab4cd17e274907ccd0359b70d84daf4160", @ANYRES32]) syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) close_range(r1, r1, 0x0) sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000480)={&(0x7f0000000340)={0x34, 0x1, 0x4, 0x401, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x9071}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x2}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x5}, @NFULA_CFG_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x9}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000080}, 0x800) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60900, 0x0) readv(r3, &(0x7f0000000300)=[{&(0x7f0000000500)=""/166, 0xa6}], 0x1) openat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x7ee1b150d9b7ab93, 0x2) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, &(0x7f00000005c0)={0x4, &(0x7f0000000200)=[{0x3, 0x6}, {0x3cf0, 0x5}, {0x5}, {0x7, 0x6}]}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) open(&(0x7f00000001c0)='./file1\x00', 0x100, 0x80) 07:36:31 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000180)=ANY=[@ANYBLOB="99cc3c102b0bc809f566dad64686ad3c334995e663e16f4edd49e4ae90945afd465fc86210fd1aae4cc198ad4bdbf693e086a400000000", @ANYRES32=r1, @ANYBLOB]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r6 = getpgid(0xffffffffffffffff) r7 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r7}, './file0\x00'}) perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7, 0x1, 0x5a, 0x0, 0x0, 0x0, 0x200, 0xd, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x2, @perf_config_ext={0x0, 0x7fffffff}, 0x802c, 0x5d4, 0xfffffff7, 0x7, 0x7, 0xa166, 0x1f49, 0x0, 0x101, 0x0, 0x2}, r6, 0xe, r7, 0x2) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x115) dup2(r4, r5) [ 145.231893] audit: type=1400 audit(1663227391.320:9): avc: denied { write } for pid=3855 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 07:36:31 executing program 7: syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x3f, 0x3, &(0x7f0000000480)=[{&(0x7f0000000300)="f4ed7efa4f5d1dbf13871d905fbbd6e0759a31107dad1332f0cdbf269bf113ed3d06d6", 0x23, 0x7}, {&(0x7f0000000340)="71b945737c159b720c7729a2c23adef6c897404ffaee5b26bea234a42f51f573d1ff8507e2b8e0db893c8057c047dafaa1385c52f5a806dcf5ea0ab8e8afafd3ab0fb53fe5f43c5b0f75034e91256cbc7d34ffd25b5f62a4f25b9611ad649a3e912ffa32e63aab2b1ca57e8bd412eb929a92df35222751affdcdabfb8a13ad590f8ceb653a627a54b56cec51bcb3e2464f6d4bf142e5f59a8bac035af8f71422", 0xa0, 0x3}, {&(0x7f0000000400)="bf01f5da2731c824195749e81d849a718ee6c678e94889d331a51f011b5a9713308e508aa8432f22078bb56941c49c246e267919ee34f7176779edfd23ff535421aa14d11674a8a2164a6bbca8", 0x4d, 0x57c}], 0x808c0, &(0x7f0000000500)={[{@nodots}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@obj_type}, {@obj_role={'obj_role', 0x3d, '\'\xcb.['}}, {@context={'context', 0x3d, 'root'}}, {@uid_eq={'uid', 0x3d, 0xee00}}, {@smackfshat={'smackfshat', 0x3d, '*+)@'}}]}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f00000001c0)='./file0\x00') renameat(r1, &(0x7f0000000140)='./file0/file0\x00', r1, &(0x7f0000000180)='./file1\x00') fspick(r1, &(0x7f0000000040)='./file1\x00', 0x0) fspick(0xffffffffffffffff, &(0x7f0000000580)='./file1\x00', 0x1) perf_event_open(&(0x7f0000000140)={0x6, 0x80, 0xff, 0x7f, 0x8, 0x8, 0x0, 0x5, 0x4410, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffff80, 0x4, @perf_bp={&(0x7f0000000040), 0xa}, 0x1200, 0x81, 0x20, 0x1, 0x9, 0xf5, 0x7, 0x0, 0x8}, 0x0, 0x6, r1, 0x2) dup2(0xffffffffffffffff, 0xffffffffffffffff) [ 145.321241] loop7: detected capacity change from 0 to 5 [ 145.325620] ======================================================= [ 145.325620] WARNING: The mand mount option has been deprecated and [ 145.325620] and is ignored by this kernel. Remove the mand [ 145.325620] option from the mount to silence this warning. [ 145.325620] ======================================================= 07:36:31 executing program 2: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x3}, 0x0, 0x0, 0x200}, 0x0, 0xfffffffffffffffb, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x78b847, 0xb4) pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000) ioctl$FS_IOC_FIEMAP(r1, 0xc020660b, &(0x7f0000000380)={0x0, 0x3ff}) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r2, r0, 0x0, 0xfffffdef) 07:36:31 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000180)=ANY=[@ANYBLOB="99cc3c102b0bc809f566dad64686ad3c334995e663e16f4edd49e4ae90945afd465fc86210fd1aae4cc198ad4bdbf693e086a400000000", @ANYRES32=r1, @ANYBLOB]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r6 = getpgid(0xffffffffffffffff) r7 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r8, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r7}, './file0\x00'}) perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7, 0x1, 0x5a, 0x0, 0x0, 0x0, 0x200, 0xd, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x2, @perf_config_ext={0x0, 0x7fffffff}, 0x802c, 0x5d4, 0xfffffff7, 0x7, 0x7, 0xa166, 0x1f49, 0x0, 0x101, 0x0, 0x2}, r6, 0xe, r7, 0x2) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x115) dup2(r4, r5) [ 145.380431] loop7: detected capacity change from 0 to 5 [ 145.383095] loop2: detected capacity change from 0 to 40 [ 145.407765] loop6: detected capacity change from 0 to 264192 [ 145.422687] loop6: detected capacity change from 0 to 264192 [ 145.444565] syz-executor.2: attempt to access beyond end of device [ 145.444565] loop2: rw=2049, sector=40, nr_sectors = 4 limit=40 [ 145.445586] Buffer I/O error on dev loop2, logical block 10, lost async page write [ 150.384902] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 150.384964] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 150.448869] Bluetooth: hci7: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 07:36:30 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b24f1 RDI=ffffffff87641b60 RBP=ffffffff87641b20 RSP=ffff8880206bf3c8 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff87641b20 R14=0000000000000010 R15=ffffffff822b24e0 RIP=ffffffff822b2549 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f0419c44700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6e200d76f4 CR3=00000000206dc000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffff888017467cf8 RCX=0000000000000000 RDX=1ffff11002e8cfa4 RSI=ffffffff816cba90 RDI=0000000000000007 RBP=ffffffffffffffff RSP=ffff8880174678d8 R8 =0000000000000007 R9 =0000000000000000 R10=ffffffffffffffff R11=0000000000000001 R12=ffff888017467cf8 R13=ffffea0001b3abc0 R14=ffff888017467d20 R15=ffffea0001b3abc0 RIP=ffffffff816cbaa9 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f17da86f6f4 CR3=000000000e9e0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f17da87e470 00007f17da87df20 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 756e20796d6d7564 20736e6f6974706f YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 73253d656d616e6c 6165722073253d73 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000