syzkaller login: [ 33.823176] sshd (245) used greatest stack depth: 24768 bytes left Warning: Permanently added '[localhost]:46993' (ECDSA) to the list of known hosts. 2022/09/15 23:17:44 fuzzer started 2022/09/15 23:17:45 dialing manager at localhost:36559 [ 36.119711] cgroup: Unknown subsys name 'net' [ 36.231017] cgroup: Unknown subsys name 'rlimit' 2022/09/15 23:17:59 syscalls: 2215 2022/09/15 23:17:59 code coverage: enabled 2022/09/15 23:17:59 comparison tracing: enabled 2022/09/15 23:17:59 extra coverage: enabled 2022/09/15 23:17:59 setuid sandbox: enabled 2022/09/15 23:17:59 namespace sandbox: enabled 2022/09/15 23:17:59 Android sandbox: enabled 2022/09/15 23:17:59 fault injection: enabled 2022/09/15 23:17:59 leak checking: enabled 2022/09/15 23:17:59 net packet injection: enabled 2022/09/15 23:17:59 net device setup: enabled 2022/09/15 23:17:59 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/15 23:17:59 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/15 23:17:59 USB emulation: enabled 2022/09/15 23:17:59 hci packet injection: enabled 2022/09/15 23:17:59 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220915) 2022/09/15 23:17:59 802.15.4 emulation: enabled 2022/09/15 23:17:59 fetching corpus: 50, signal 35506/37221 (executing program) 2022/09/15 23:17:59 fetching corpus: 100, signal 45415/48704 (executing program) 2022/09/15 23:18:00 fetching corpus: 150, signal 58160/62810 (executing program) 2022/09/15 23:18:00 fetching corpus: 200, signal 66422/72390 (executing program) 2022/09/15 23:18:00 fetching corpus: 250, signal 70435/77748 (executing program) 2022/09/15 23:18:00 fetching corpus: 300, signal 76774/85278 (executing program) 2022/09/15 23:18:00 fetching corpus: 350, signal 80366/90098 (executing program) 2022/09/15 23:18:00 fetching corpus: 400, signal 84323/95215 (executing program) 2022/09/15 23:18:00 fetching corpus: 450, signal 86180/98311 (executing program) 2022/09/15 23:18:00 fetching corpus: 500, signal 89939/103125 (executing program) 2022/09/15 23:18:01 fetching corpus: 550, signal 93292/107544 (executing program) 2022/09/15 23:18:01 fetching corpus: 600, signal 96762/112010 (executing program) 2022/09/15 23:18:01 fetching corpus: 650, signal 100378/116605 (executing program) 2022/09/15 23:18:01 fetching corpus: 700, signal 104454/121480 (executing program) 2022/09/15 23:18:01 fetching corpus: 750, signal 109304/127007 (executing program) 2022/09/15 23:18:01 fetching corpus: 800, signal 114081/132310 (executing program) 2022/09/15 23:18:02 fetching corpus: 850, signal 118290/137096 (executing program) 2022/09/15 23:18:02 fetching corpus: 900, signal 122668/141959 (executing program) 2022/09/15 23:18:02 fetching corpus: 950, signal 125258/145271 (executing program) 2022/09/15 23:18:02 fetching corpus: 1000, signal 126717/147533 (executing program) 2022/09/15 23:18:02 fetching corpus: 1050, signal 128303/149915 (executing program) 2022/09/15 23:18:02 fetching corpus: 1100, signal 130367/152634 (executing program) 2022/09/15 23:18:02 fetching corpus: 1150, signal 131880/154894 (executing program) 2022/09/15 23:18:02 fetching corpus: 1200, signal 133996/157634 (executing program) 2022/09/15 23:18:03 fetching corpus: 1250, signal 136303/160499 (executing program) 2022/09/15 23:18:03 fetching corpus: 1300, signal 137906/162726 (executing program) 2022/09/15 23:18:03 fetching corpus: 1350, signal 140223/165528 (executing program) 2022/09/15 23:18:03 fetching corpus: 1400, signal 142188/167956 (executing program) 2022/09/15 23:18:03 fetching corpus: 1450, signal 143644/169995 (executing program) 2022/09/15 23:18:03 fetching corpus: 1500, signal 145702/172506 (executing program) 2022/09/15 23:18:03 fetching corpus: 1550, signal 147101/174490 (executing program) 2022/09/15 23:18:03 fetching corpus: 1600, signal 148631/176472 (executing program) 2022/09/15 23:18:04 fetching corpus: 1650, signal 150832/178960 (executing program) 2022/09/15 23:18:04 fetching corpus: 1700, signal 152227/180825 (executing program) 2022/09/15 23:18:04 fetching corpus: 1750, signal 153706/182795 (executing program) 2022/09/15 23:18:04 fetching corpus: 1800, signal 155025/184626 (executing program) 2022/09/15 23:18:04 fetching corpus: 1850, signal 156542/186486 (executing program) 2022/09/15 23:18:04 fetching corpus: 1900, signal 157914/188252 (executing program) 2022/09/15 23:18:04 fetching corpus: 1950, signal 159915/190464 (executing program) 2022/09/15 23:18:05 fetching corpus: 2000, signal 161313/192244 (executing program) 2022/09/15 23:18:05 fetching corpus: 2050, signal 162467/193798 (executing program) 2022/09/15 23:18:05 fetching corpus: 2100, signal 163452/195231 (executing program) 2022/09/15 23:18:05 fetching corpus: 2150, signal 164832/196937 (executing program) 2022/09/15 23:18:05 fetching corpus: 2200, signal 165824/198366 (executing program) 2022/09/15 23:18:05 fetching corpus: 2250, signal 167044/199906 (executing program) 2022/09/15 23:18:05 fetching corpus: 2300, signal 168565/201617 (executing program) 2022/09/15 23:18:05 fetching corpus: 2350, signal 169663/203120 (executing program) 2022/09/15 23:18:06 fetching corpus: 2400, signal 170848/204569 (executing program) 2022/09/15 23:18:06 fetching corpus: 2450, signal 171579/205705 (executing program) 2022/09/15 23:18:06 fetching corpus: 2500, signal 172824/207276 (executing program) 2022/09/15 23:18:06 fetching corpus: 2550, signal 173795/208524 (executing program) 2022/09/15 23:18:06 fetching corpus: 2600, signal 174557/209684 (executing program) 2022/09/15 23:18:06 fetching corpus: 2650, signal 175193/210745 (executing program) 2022/09/15 23:18:06 fetching corpus: 2700, signal 175888/211854 (executing program) 2022/09/15 23:18:06 fetching corpus: 2750, signal 177310/213371 (executing program) 2022/09/15 23:18:07 fetching corpus: 2800, signal 178567/214771 (executing program) 2022/09/15 23:18:07 fetching corpus: 2850, signal 179693/216026 (executing program) 2022/09/15 23:18:07 fetching corpus: 2900, signal 181352/217557 (executing program) 2022/09/15 23:18:07 fetching corpus: 2950, signal 182362/218774 (executing program) 2022/09/15 23:18:07 fetching corpus: 3000, signal 183215/219850 (executing program) 2022/09/15 23:18:07 fetching corpus: 3050, signal 184612/221305 (executing program) 2022/09/15 23:18:07 fetching corpus: 3100, signal 185650/222514 (executing program) 2022/09/15 23:18:08 fetching corpus: 3150, signal 186987/223774 (executing program) 2022/09/15 23:18:08 fetching corpus: 3200, signal 187577/224663 (executing program) 2022/09/15 23:18:08 fetching corpus: 3250, signal 188239/225604 (executing program) 2022/09/15 23:18:08 fetching corpus: 3300, signal 189624/226853 (executing program) 2022/09/15 23:18:08 fetching corpus: 3350, signal 190550/227869 (executing program) 2022/09/15 23:18:08 fetching corpus: 3400, signal 191478/228870 (executing program) 2022/09/15 23:18:08 fetching corpus: 3450, signal 192115/229743 (executing program) 2022/09/15 23:18:08 fetching corpus: 3500, signal 193207/230792 (executing program) 2022/09/15 23:18:09 fetching corpus: 3550, signal 193813/231674 (executing program) 2022/09/15 23:18:09 fetching corpus: 3600, signal 194891/232703 (executing program) 2022/09/15 23:18:09 fetching corpus: 3650, signal 195825/233666 (executing program) 2022/09/15 23:18:09 fetching corpus: 3700, signal 196483/234441 (executing program) 2022/09/15 23:18:09 fetching corpus: 3750, signal 197169/235206 (executing program) 2022/09/15 23:18:09 fetching corpus: 3800, signal 197918/236020 (executing program) 2022/09/15 23:18:09 fetching corpus: 3850, signal 198649/236787 (executing program) 2022/09/15 23:18:10 fetching corpus: 3900, signal 199779/237784 (executing program) 2022/09/15 23:18:10 fetching corpus: 3950, signal 200603/238638 (executing program) 2022/09/15 23:18:10 fetching corpus: 4000, signal 201107/239333 (executing program) 2022/09/15 23:18:10 fetching corpus: 4050, signal 201809/240057 (executing program) 2022/09/15 23:18:10 fetching corpus: 4100, signal 202779/240894 (executing program) 2022/09/15 23:18:10 fetching corpus: 4150, signal 203997/241885 (executing program) 2022/09/15 23:18:10 fetching corpus: 4200, signal 204709/242559 (executing program) 2022/09/15 23:18:10 fetching corpus: 4250, signal 205370/243208 (executing program) 2022/09/15 23:18:11 fetching corpus: 4300, signal 206417/243993 (executing program) 2022/09/15 23:18:11 fetching corpus: 4350, signal 206899/244637 (executing program) 2022/09/15 23:18:11 fetching corpus: 4400, signal 207875/245386 (executing program) 2022/09/15 23:18:11 fetching corpus: 4450, signal 208314/245934 (executing program) 2022/09/15 23:18:11 fetching corpus: 4500, signal 208778/246520 (executing program) 2022/09/15 23:18:11 fetching corpus: 4550, signal 209682/247219 (executing program) 2022/09/15 23:18:11 fetching corpus: 4600, signal 210470/247907 (executing program) 2022/09/15 23:18:11 fetching corpus: 4650, signal 211205/248556 (executing program) 2022/09/15 23:18:12 fetching corpus: 4700, signal 212049/249199 (executing program) 2022/09/15 23:18:12 fetching corpus: 4750, signal 213207/249986 (executing program) 2022/09/15 23:18:12 fetching corpus: 4800, signal 213923/250510 (executing program) 2022/09/15 23:18:12 fetching corpus: 4850, signal 214802/251122 (executing program) 2022/09/15 23:18:12 fetching corpus: 4900, signal 215581/251683 (executing program) 2022/09/15 23:18:12 fetching corpus: 4950, signal 216125/252206 (executing program) 2022/09/15 23:18:12 fetching corpus: 5000, signal 216436/252653 (executing program) 2022/09/15 23:18:13 fetching corpus: 5050, signal 217258/253258 (executing program) 2022/09/15 23:18:13 fetching corpus: 5100, signal 217915/253798 (executing program) 2022/09/15 23:18:13 fetching corpus: 5150, signal 218530/254291 (executing program) 2022/09/15 23:18:13 fetching corpus: 5200, signal 219171/254777 (executing program) 2022/09/15 23:18:13 fetching corpus: 5250, signal 219959/255404 (executing program) 2022/09/15 23:18:13 fetching corpus: 5300, signal 220634/255834 (executing program) 2022/09/15 23:18:13 fetching corpus: 5350, signal 221446/256303 (executing program) 2022/09/15 23:18:14 fetching corpus: 5400, signal 222042/256770 (executing program) 2022/09/15 23:18:14 fetching corpus: 5450, signal 222591/257174 (executing program) 2022/09/15 23:18:14 fetching corpus: 5500, signal 223181/257602 (executing program) 2022/09/15 23:18:14 fetching corpus: 5550, signal 223898/258124 (executing program) 2022/09/15 23:18:14 fetching corpus: 5600, signal 224872/258580 (executing program) 2022/09/15 23:18:14 fetching corpus: 5650, signal 225742/259001 (executing program) 2022/09/15 23:18:15 fetching corpus: 5700, signal 226229/259384 (executing program) 2022/09/15 23:18:15 fetching corpus: 5750, signal 226945/259773 (executing program) 2022/09/15 23:18:15 fetching corpus: 5800, signal 227604/260113 (executing program) 2022/09/15 23:18:15 fetching corpus: 5850, signal 228405/260501 (executing program) 2022/09/15 23:18:15 fetching corpus: 5900, signal 228787/260813 (executing program) 2022/09/15 23:18:15 fetching corpus: 5950, signal 229346/261151 (executing program) 2022/09/15 23:18:15 fetching corpus: 6000, signal 229837/261526 (executing program) 2022/09/15 23:18:15 fetching corpus: 6050, signal 230366/261793 (executing program) 2022/09/15 23:18:16 fetching corpus: 6100, signal 230862/262073 (executing program) 2022/09/15 23:18:16 fetching corpus: 6150, signal 231931/262373 (executing program) 2022/09/15 23:18:16 fetching corpus: 6200, signal 232800/262715 (executing program) 2022/09/15 23:18:16 fetching corpus: 6250, signal 233600/262986 (executing program) 2022/09/15 23:18:16 fetching corpus: 6300, signal 234122/263242 (executing program) 2022/09/15 23:18:16 fetching corpus: 6350, signal 234615/263471 (executing program) 2022/09/15 23:18:16 fetching corpus: 6400, signal 235195/263680 (executing program) 2022/09/15 23:18:17 fetching corpus: 6450, signal 235855/263684 (executing program) 2022/09/15 23:18:17 fetching corpus: 6500, signal 236616/263729 (executing program) 2022/09/15 23:18:17 fetching corpus: 6550, signal 237485/263731 (executing program) 2022/09/15 23:18:17 fetching corpus: 6600, signal 237897/263740 (executing program) 2022/09/15 23:18:17 fetching corpus: 6650, signal 238674/263746 (executing program) 2022/09/15 23:18:17 fetching corpus: 6700, signal 239645/263762 (executing program) 2022/09/15 23:18:17 fetching corpus: 6750, signal 240185/263785 (executing program) 2022/09/15 23:18:18 fetching corpus: 6800, signal 240672/263791 (executing program) 2022/09/15 23:18:18 fetching corpus: 6850, signal 241335/263879 (executing program) 2022/09/15 23:18:18 fetching corpus: 6900, signal 241744/263887 (executing program) 2022/09/15 23:18:18 fetching corpus: 6950, signal 242221/263888 (executing program) 2022/09/15 23:18:18 fetching corpus: 7000, signal 242781/263890 (executing program) 2022/09/15 23:18:18 fetching corpus: 7050, signal 243263/263894 (executing program) 2022/09/15 23:18:18 fetching corpus: 7100, signal 243768/263899 (executing program) 2022/09/15 23:18:18 fetching corpus: 7150, signal 244237/263923 (executing program) 2022/09/15 23:18:19 fetching corpus: 7200, signal 244656/263944 (executing program) 2022/09/15 23:18:19 fetching corpus: 7250, signal 245041/263962 (executing program) 2022/09/15 23:18:19 fetching corpus: 7300, signal 245519/263981 (executing program) 2022/09/15 23:18:19 fetching corpus: 7350, signal 245926/263996 (executing program) 2022/09/15 23:18:19 fetching corpus: 7400, signal 246839/263996 (executing program) 2022/09/15 23:18:19 fetching corpus: 7450, signal 247360/264008 (executing program) 2022/09/15 23:18:19 fetching corpus: 7500, signal 247900/264030 (executing program) 2022/09/15 23:18:20 fetching corpus: 7526, signal 248183/264034 (executing program) 2022/09/15 23:18:20 fetching corpus: 7526, signal 248183/264034 (executing program) 2022/09/15 23:18:22 starting 8 fuzzer processes 23:18:22 executing program 1: ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000040), &(0x7f0000000080)=0x4) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'ip6gre0\x00', &(0x7f0000000100)={'ip6gre0\x00', r0, 0x29, 0x0, 0xc8, 0x7, 0x1c, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @loopback, 0x7, 0x7800, 0x80000000, 0x7}}) sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xd0, 0x0, 0x4, 0x70bd2a, 0x25dfdbfb, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x5}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010101}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x6cf5c78950a6c31}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r1}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @loopback}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e22}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x6}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private0}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0xc512c8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}]}, 0xd0}, 0x1, 0x0, 0x0, 0x4000844}, 0x20000000) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000380)={{{@in6=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@private}}, &(0x7f0000000480)=0xe8) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x5c, 0x0, 0x8, 0x70bd25, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x40, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @loopback}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}]}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24040014}, 0x40081) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000003d00)={'team0\x00', 0x0}) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000003d40)={@initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}, r3}, 0xc) r4 = socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000003d80)={'batadv0\x00', 0x0}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000003dc0)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) r7 = syz_genetlink_get_family_id$batadv(&(0x7f0000003e40), r6) sendmsg$BATADV_CMD_TP_METER_CANCEL(r6, &(0x7f0000003f40)={&(0x7f0000003e00)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000003f00)={&(0x7f0000003e80)={0x5c, r7, 0x8, 0x70bd2b, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x100}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x6}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xfffffffc}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x6}]}, 0x5c}}, 0x60004000) ioctl$sock_ifreq(r6, 0x8991, &(0x7f0000003f80)={'team_slave_0\x00', @ifru_ivalue}) ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000003fc0)) pipe2(&(0x7f0000004000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r6, 0x89f8, &(0x7f00000040c0)={'ip6_vti0\x00', &(0x7f0000004040)={'syztnl1\x00', r0, 0x4, 0x7, 0x80, 0x3c7, 0x6, @dev={0xfe, 0x80, '\x00', 0x40}, @ipv4={'\x00', '\xff\xff', @local}, 0x700, 0x8000, 0x8e, 0x2}}) setsockopt$inet_mreqn(r8, 0x0, 0x20, &(0x7f0000004100)={@loopback, @multicast1, r9}, 0xc) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) fcntl$getflags(0xffffffffffffffff, 0x1) 23:18:22 executing program 0: ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'lo\x00'}) r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) sendmsg$inet(r0, &(0x7f0000000640)={&(0x7f0000000040)={0x2, 0x4e24, @rand_addr=0x64010100}, 0x10, &(0x7f00000005c0)=[{&(0x7f0000000080)="61251271904aa3ee79e3b8b1dbf7daaa190aa5b72fc333ce355f7d907bbfb79ea9be8f54afe492b0f03f856cd062e6", 0x2f}, {&(0x7f00000000c0)="275459cbee6749ff7ff58328c3326a3f7e6087a0fe343c686fe7876f188662a7de5195e11a47cd531df43bf28a360a3510d9e8099884d5f13bfb9acebd948cda0f8d1681f4642f157173094966714b9efe84254e4fa3387109ecfc779dea1d42a839059eded3a7cd7fcb6b3f2f96a86574991ac0884c8a60961995d6b775b0ffe0fd1dcd8aef28d88a928799b6820f7f3f7cc9d383bb1866bc9934c00950bce7e4bc7dc3a71fd06a9ece722f649293199e698504e6756d9d", 0xb8}, {&(0x7f0000000180)="e690511ee313d628042a2a7805ab6ec9858e8b8b6e514ce5f59a8fb37a0602f703ca51a3413563914ebae226ea7e3d95362c47f2cbe3a146ae798fcb711657ce6f88afec854299809fadd295041ec60bebeacd21ea14743802171227723e97ee77b46920f86902977ef73e2415b1f603e42d62072d2f20087f497336e6055481be4339151fe89d2f67f667271cae6276013232b7fd5df0c8166530a75380435337292353974dc69acb016121f60d9b479aaf4da3eec1", 0xb6}, {&(0x7f0000000240)="4ed178732f927bd8d5458ee7282962f89f225ba6477657de6aac0b68a0b8fcef56c2d640125603d3f4c62f5f3caffea8377f234b3918d4bd95fdddc4373687409e1d2bbb3faeeca47ee2b093f09b0f0fb4b2f9b1cd1da9b6de838cdc2e0f2d1b4a5e49b694d88c2c6f08e149e348b90a6d81e75cf59620013cfe040c080f8d893d7a7603497bec389add8819", 0x8c}, {&(0x7f0000000300)="5d6d17425ad717e83276ce8272a2fbe3304568e765920d773915a9d5967951f937270a067c7f3e7a28a6158e336afa4d3a6d7122ddc68ceede8e466cace45fe33c4e7ed2b4768014395cedf7a4749882c217e7a6ad897fc45df865eade51b7bcb77eae2f2649036c176a9362d1f7d56699003dc990de950a5f2112f5814057ef2ed31c2595686a84060ee07b9fc11133fa7d741396a2", 0x96}, {&(0x7f00000003c0)="72f6861bf6b73af15385d747b41ba06a443f642e", 0x14}, {&(0x7f0000000400)="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", 0xfe}, {&(0x7f0000000500)="21fbd9578b0853c98d98d7b2f47e2cffae6d66ffc87fd040bf4ba1019311c923388cb91a3d0284c462c90f704f8f03fbbab7e65a0722415e0c37f62325d63b3279e0b4482b4bef650adfddc4cfc45553bce8d120bbcbe7eb272fbc1d1f50c67053d4c924c4be6129337bc2e6c29230872fcd8c82c86c44dcfc1171e1a676e64a6ca474016a6188020fa6eafa6f9c68b514ad377aa39e787d427e565fd32385", 0x9f}], 0x8}, 0x4) setsockopt$bt_l2cap_L2CAP_CONNINFO(r0, 0x6, 0x2, &(0x7f0000000680)={0xd95, 'fkk'}, 0x6) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f00000006c0)={{0x0, 0x1, 0x2, 0x10000, 0x5, 0x4, 0x20, 0x3, 0x8000, 0x14d2, 0x2, 0x1000, 0x1, 0x3, 0x7}}) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f00000016c0)={{r1, 0x0, 0x280, 0x2, 0x2, 0x0, 0x7, 0x1, 0x6, 0x1f, 0x9, 0xffffffffffff3903, 0x6, 0x3, 0x401}}) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000026c0), 0x40000, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002740), r2) sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r2, &(0x7f0000002800)={&(0x7f0000002700)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000027c0)={&(0x7f0000002780)={0x1c, r3, 0x100, 0x70bd2c, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000811}, 0x35) r4 = syz_open_procfs(0x0, &(0x7f0000002840)='net/wireless\x00') ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f0000002880)=0x20000000) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000028c0)={'veth1_to_team\x00'}) ioctl$EVIOCGNAME(r2, 0x80404506, &(0x7f0000002900)=""/155) bind$bt_l2cap(r2, &(0x7f00000029c0)={0x1f, 0x6, @none, 0xfff, 0x1}, 0xe) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r2, 0x89f5, &(0x7f0000002a80)={'ip6tnl0\x00', &(0x7f0000002a00)={'sit0\x00', 0x0, 0x4, 0x1, 0x6, 0xfffffffc, 0xd5ddbceca138dc87, @rand_addr=' \x01\x00', @mcast1, 0x7, 0x80, 0x87, 0x9ca1}}) ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000002ac0)={@private1, @rand_addr=' \x01\x00', @mcast1, 0xffffffff, 0x7fff, 0x0, 0x0, 0x2, 0x9029a, r5}) getsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000002b40)={@loopback, @private}, &(0x7f0000002b80)=0xc) openat$sr(0xffffffffffffff9c, &(0x7f0000002bc0), 0x64a140, 0x0) r6 = open(&(0x7f0000002c00)='./file0\x00', 0x2, 0x120) getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r6, 0x6, 0x23, &(0x7f0000002e00)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000002c40)=""/236, 0xec, 0x0, &(0x7f0000002d40)=""/137, 0x89}, &(0x7f0000002e40)=0x40) 23:18:22 executing program 2: r0 = shmget(0x0, 0x2000, 0x1, &(0x7f0000ffc000/0x2000)=nil) shmctl$IPC_RMID(r0, 0x0) shmctl$SHM_STAT(r0, 0xd, &(0x7f0000000000)=""/207) shmctl$IPC_RMID(r0, 0x0) shmctl$SHM_STAT_ANY(r0, 0xf, &(0x7f0000000100)=""/252) r1 = shmget(0x1, 0x4000, 0x10, &(0x7f0000ffa000/0x4000)=nil) shmat(r1, &(0x7f0000ffb000/0x3000)=nil, 0x6000) r2 = shmget$private(0x0, 0x3000, 0x1000, &(0x7f0000ffc000/0x3000)=nil) shmctl$SHM_UNLOCK(r2, 0xc) shmat(r2, &(0x7f0000ffa000/0x4000)=nil, 0x4000) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x2000) shmget$private(0x0, 0x1000, 0x80, &(0x7f0000ffe000/0x1000)=nil) shmat(r2, &(0x7f0000fff000/0x1000)=nil, 0x4000) r3 = shmget$private(0x0, 0x3000, 0x20, &(0x7f0000ffd000/0x3000)=nil) shmat(r3, &(0x7f0000ffb000/0x4000)=nil, 0x4000) shmget$private(0x0, 0x3000, 0x10, &(0x7f0000ffb000/0x3000)=nil) shmget$private(0x0, 0x1000, 0x8, &(0x7f0000fff000/0x1000)=nil) shmget$private(0x0, 0x1000, 0x2, &(0x7f0000fff000/0x1000)=nil) r4 = shmget(0x0, 0x1000, 0x1000, &(0x7f0000ffd000/0x1000)=nil) shmat(r4, &(0x7f0000ffe000/0x1000)=nil, 0x4000) [ 73.279840] audit: type=1400 audit(1663283902.561:6): avc: denied { execmem } for pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 23:18:22 executing program 7: write(0xffffffffffffffff, &(0x7f0000000000)="0ec7a499d1daae5e0efd5c1a4ef73ee9d24315dc45cd964c903bee496386c36967bbf7ef4f3d2275bab62b4744153974f7a1d8b16d4063ea54c081f3f5476a16ddee4352a245933913a25eb4bbcd89665dce7b2c452e0c6896da8da004bc1387eb42a94a28f000c8ea03da3bc39117f9b265cbeb4db91f3d7bd89f102cfbb7f566855308cb", 0x85) r0 = openat$incfs(0xffffffffffffff9c, &(0x7f00000000c0)='.pending_reads\x00', 0x400a00, 0x8) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000100)="18162e192d2de7f49e9af1d3e06c9d92", 0x10) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x6}}, './file0\x00'}) ioctl$sock_inet6_tcp_SIOCOUTQ(r1, 0x5411, &(0x7f0000000180)) ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f00000001c0)=""/17) ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f0000000200)={0x8d, 0x5}) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000240)=0x4, 0x4) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) sync_file_range(r2, 0x5, 0xffff, 0x4) openat(r0, &(0x7f00000002c0)='./file0\x00', 0x109402, 0x126) ioctl$SNDRV_TIMER_IOCTL_STOP(r1, 0x54a1) socket$packet(0x11, 0x3, 0x300) ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000300)={{0x1, 0x1, 0x18, r0, {0x3870}}, './file0\x00'}) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r3, 0x408c5333, &(0x7f0000000340)={0x9, 0x2, 0x1, 'queue0\x00', 0x20}) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r3, 0x89fb, &(0x7f0000000480)={'syztnl1\x00', &(0x7f0000000400)={'ip6_vti0\x00', 0x0, 0x4, 0x20, 0x47, 0x3, 0x62, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1, 0x7800, 0x8000, 0xddb7, 0x3}}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r3, {0x0, 0xee01}}, './file0\x00'}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, &(0x7f0000000500)={0x3, 0x81, 0x10001, 0x0, 0x2}) write$P9_RCREATE(r4, &(0x7f0000000580)={0x18, 0x73, 0x1, {{0x0, 0x3, 0x2}}}, 0x18) fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f00000005c0)='$}}][]-#\x00', &(0x7f0000000600)='./file0\x00', r4) 23:18:22 executing program 4: fallocate(0xffffffffffffffff, 0x1, 0xfffffffffffffff9, 0x7) r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000000)={0x2, 0x1, 0xfffffff9, 0x3, 0x6, "df78985d415a8a80ad19032639ceb9505d9ddc", 0x5, 0x50b}) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x20002, 0x0) ioctl$TIOCCONS(r1, 0x541d) r2 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) sendfile(r2, 0xffffffffffffffff, &(0x7f0000000080)=0x2, 0xf1) r3 = openat$cgroup_ro(r0, &(0x7f00000000c0)='blkio.bfq.empty_time\x00', 0x0, 0x0) ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000100)={0x0, 0x8, 0x3}) ioctl$BTRFS_IOC_RESIZE(r2, 0x50009403, &(0x7f0000000500)={{r3}, {@val={r4}, @actul_num={@void, 0xdf56, 0x50}}}) r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000540), 0x101000, 0x0) ioctl$EXT4_IOC_MIGRATE(r5, 0x6609) r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) openat$cgroup_ro(r6, &(0x7f00000005c0)='cpuset.memory_pressure\x00', 0x0, 0x0) sendfile(r0, r3, &(0x7f0000000600)=0x5, 0xed) ioctl$TUNGETIFF(r6, 0x800454d2, &(0x7f0000000640)={'syzkaller0\x00'}) fcntl$setownex(r0, 0xf, &(0x7f0000000680)={0x1, 0xffffffffffffffff}) ioctl$TIOCMBIC(r6, 0x5417, &(0x7f00000006c0)=0x1) r7 = fspick(r0, &(0x7f0000000700)='./file0\x00', 0x1) finit_module(r7, &(0x7f0000000740)='\':@\x00', 0x0) 23:18:22 executing program 5: prctl$PR_CAPBSET_READ(0x17, 0x22) prctl$PR_CAPBSET_READ(0x17, 0x1e) prctl$PR_CAPBSET_READ(0x17, 0x22) prctl$PR_CAPBSET_READ(0x17, 0x9) prctl$PR_CAPBSET_READ(0x17, 0x10) prctl$PR_CAPBSET_READ(0x17, 0x1b) prctl$PR_CAPBSET_READ(0x17, 0x18) prctl$PR_CAPBSET_READ(0x17, 0x1f) prctl$PR_CAPBSET_READ(0x17, 0x15) prctl$PR_CAPBSET_READ(0x17, 0xc) prctl$PR_CAPBSET_READ(0x17, 0x0) prctl$PR_CAPBSET_READ(0x17, 0x0) prctl$PR_CAPBSET_READ(0x17, 0x0) prctl$PR_CAPBSET_READ(0x17, 0x11) prctl$PR_CAPBSET_READ(0x17, 0x0) prctl$PR_CAPBSET_READ(0x17, 0xb) prctl$PR_CAPBSET_READ(0x17, 0x1) prctl$PR_CAPBSET_READ(0x17, 0x2) prctl$PR_CAPBSET_READ(0x17, 0x18) prctl$PR_CAPBSET_READ(0x17, 0x8) 23:18:22 executing program 6: ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(0xffffffffffffffff, 0x402c5342, &(0x7f0000000000)={0x8, 0x7, 0x4, {0x1, 0x80000001}, 0x8b, 0x7}) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(0xffffffffffffffff, 0x408c5333, &(0x7f0000000080)={0x18, 0x85, 0x1, 'queue1\x00', 0xff}) r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000140), 0x404000, 0x0) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000180)={{0x0, 0x7f}, {0x6, 0x3}, 0x7, 0x5, 0xc1}) pwrite64(r0, &(0x7f0000000200)="36ad99d0ac097a6b962a0ce378e13904bfdf874116bdb11a16dd2fd9fb053473fb17e3b8a9c69b9ec0a9d11c1889bbb1772d5ba0cffdd7037fa8faf5cd0eeb7dd57c1fa90dc5f079356dcbf9ffa5ea12bb63a216bcff4ada51d560756d7e8171516f531126d0368db10465d64c7d478fd2efecf166ccae534eddf1bf", 0x7c, 0xfffffffffffffffe) r1 = dup2(0xffffffffffffffff, r0) write$binfmt_aout(r1, &(0x7f0000000280)={{0xcc, 0x1, 0x3, 0x32e, 0x1f2, 0x1, 0x2fb, 0x4}, "9a82d0c0cf03eb4280be04cc2c5b99812c3b5b307b55db7e62c92d4f4503de", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x73f) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x40010, r0, 0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f00000009c0)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x4000, @fd=r0, 0x6000000, 0x100000000, 0x1, 0x14, 0x1, {0x1, r3}}, 0x1) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000a00)='/proc/meminfo\x00', 0x0, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) r5 = add_key$fscrypt_provisioning(&(0x7f0000000a40), &(0x7f0000000a80)={'syz', 0x3}, &(0x7f0000000ac0)={0x2, 0x0, @a}, 0x48, 0xfffffffffffffffc) keyctl$instantiate_iov(0x14, r5, &(0x7f0000000e80)=[{&(0x7f0000000b40)="5f7f1fe120728d49ac294105fba110282a3617a413b9ad80bef11cb60ffd303d6206608088297f751e362cf6286d50ef9ee9aba3cb3c7e0e7387137d5eaa878b5ba657f3177b36c97f7bf271b4baa763f91985a236bbd01d43ec1435a9d019ad1cc8980f54a83d115d01757951f08915dbaa1ecbf602ce7c77fa7e119ee77be4a31e01442831fee599fdda39074d027144ec838548f08cd942c60fa7a180d5b36593dde678478d95df76c761559934a16053b35eaa6545ad01f44814e8a820781b50", 0xc2}, {&(0x7f0000000c40)="b3534a3d5cc9d527e625b6198aca1aef42db9b27b1e9ff4867be97dec90d5fcf3c3cf98487cec5f38b567b19f624df6463ce3bc217be62cfcf8b864b3ffe510e5442927d0e9171975c0ba7a61828e57cbf33371bc842cac0ad183e84ca05157b1639557bb4bf2aa18dd2ac5d0c142670025fec401736d1e13b29b391b5a6abeea58d536fe9f591fecffcf6df6ccc282aa42c3b2e56c770b8438c9750ea8052518a09ad0f0223f62a9e70d3b9d509daa1f8656ac849a8", 0xb6}, {&(0x7f0000000d00)="e06dc9507e395e2c396a97ed2ac6184669259a139aa535fd6986bf0270f2562593f88cc2965906891fcef9dd49df677084c0f5e651e2b2a5a326160cb223", 0x3e}, {&(0x7f0000000d40)="0f20c31ce1aef06823c29ad08cda5d629aeecb4e11ef7d4cc7d342da620900f335b85add046819e8ef24900a6045cfa6e1d1e347e5fa168df3a864995e1e23faa118c0323fa60eea3f378c82925cfa2cfc1c804d75d7cb2657e3623c49044a25bdea248e724ca4b1e6363aca550016deffc6e5d6e9eb39bda6d29a4cce4b6f0cf82433f60c5e81b89232c1ac009d87fe269b2512e0d7a3f3c3e9db4cdea18f925b76fe4eed9bb7eed965705bc312c96cb6ce678e930bff0ac89f2bb933f35adcd2da19569203206d83a1f43fd0d5f12e7f5775f44975dd3bacf2aa6a88719fd1c5cbf107b1206bc6e901b17325adfd", 0xef}, {&(0x7f0000000e40)="1265cc15d7a762ba0e12f2af811da0888e", 0x11}], 0x5, 0x0) add_key$fscrypt_v1(&(0x7f0000000f00), &(0x7f0000000f40)={'fscrypt:', @auto=[0x51, 0x32, 0x35, 0x66, 0x0, 0x66, 0x33, 0x37, 0x33, 0x39, 0x62, 0x36, 0x35, 0x65, 0x62, 0x30]}, &(0x7f0000000f80)={0x0, "484dd8ee03282b1564b3ad38643029003e48b43e7db52740d898203912bdbeadbdc9d345a6262733422da15f405aa1ea25ef49125b702dbd7ba9f0247cd0290d", 0x15}, 0x48, 0xfffffffffffffffe) r6 = ioctl$TIOCGPTPEER(r1, 0x5441, 0xff) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r6, 0x40049366, &(0x7f0000001000)=0x1) r7 = add_key$fscrypt_v1(&(0x7f0000001040), &(0x7f0000001080)={'fscrypt:', @desc1}, &(0x7f00000010c0)={0x0, "34fd20e3ef0230aa95e83c69586d96b031981a31554da7f53fc9222c683994d8779165b7561e84b665de043d901f55d6769268979df0597e4ad0f22743f489b0", 0x1c}, 0x48, 0x0) keyctl$link(0x8, r5, r7) 23:18:22 executing program 3: alarm(0x3) alarm(0x0) alarm(0x4) alarm(0x4) alarm(0x3) alarm(0x6) alarm(0x7f) alarm(0x100000001) alarm(0x4a38) alarm(0x3ff) alarm(0x400) alarm(0x6) alarm(0xffff) alarm(0xbf7c) alarm(0x20) alarm(0x87) alarm(0x6) alarm(0x3ff) alarm(0x0) alarm(0x8) [ 74.452893] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 74.455034] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 74.456729] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 74.459741] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 74.461995] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 74.464028] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 74.468876] Bluetooth: hci0: HCI_REQ-0x0c1a [ 74.666842] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 74.668740] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 74.675272] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 74.677533] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 74.679206] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 74.682936] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 74.684242] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 74.689249] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 74.690644] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 74.694994] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 74.697542] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 74.698982] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 74.700273] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 74.704191] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 74.706739] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 74.708273] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 74.709635] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 74.711884] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 74.713712] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 74.714943] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 74.716108] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 74.717791] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 74.719066] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 74.721191] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 74.723554] Bluetooth: hci2: HCI_REQ-0x0c1a [ 74.733325] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 74.734945] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 74.740752] Bluetooth: hci5: HCI_REQ-0x0c1a [ 74.754899] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 74.756087] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 74.757071] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 74.759078] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 74.760473] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 74.766014] Bluetooth: hci7: HCI_REQ-0x0c1a [ 74.767055] Bluetooth: hci4: HCI_REQ-0x0c1a [ 74.774224] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 74.791810] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 74.793921] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 74.797670] Bluetooth: hci6: HCI_REQ-0x0c1a [ 74.804434] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 74.811823] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 74.816552] Bluetooth: hci3: HCI_REQ-0x0c1a [ 76.559685] Bluetooth: hci0: command 0x0409 tx timeout [ 76.599635] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 76.727693] Bluetooth: hci2: command 0x0409 tx timeout [ 76.790665] Bluetooth: hci5: command 0x0409 tx timeout [ 76.791632] Bluetooth: hci4: command 0x0409 tx timeout [ 76.792217] Bluetooth: hci7: command 0x0409 tx timeout [ 76.855671] Bluetooth: hci3: command 0x0409 tx timeout [ 76.856445] Bluetooth: hci6: command 0x0409 tx timeout [ 78.583720] Bluetooth: hci0: command 0x041b tx timeout [ 78.775671] Bluetooth: hci2: command 0x041b tx timeout [ 78.839672] Bluetooth: hci7: command 0x041b tx timeout [ 78.840159] Bluetooth: hci4: command 0x041b tx timeout [ 78.840856] Bluetooth: hci5: command 0x041b tx timeout [ 78.903668] Bluetooth: hci6: command 0x041b tx timeout [ 78.904256] Bluetooth: hci3: command 0x041b tx timeout [ 80.630630] Bluetooth: hci0: command 0x040f tx timeout [ 80.823649] Bluetooth: hci2: command 0x040f tx timeout [ 80.886690] Bluetooth: hci5: command 0x040f tx timeout [ 80.887152] Bluetooth: hci4: command 0x040f tx timeout [ 80.887630] Bluetooth: hci7: command 0x040f tx timeout [ 80.951622] Bluetooth: hci3: command 0x040f tx timeout [ 80.952076] Bluetooth: hci6: command 0x040f tx timeout [ 81.783677] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 82.679704] Bluetooth: hci0: command 0x0419 tx timeout [ 82.870670] Bluetooth: hci2: command 0x0419 tx timeout [ 82.935689] Bluetooth: hci7: command 0x0419 tx timeout [ 82.936197] Bluetooth: hci4: command 0x0419 tx timeout [ 82.936962] Bluetooth: hci5: command 0x0419 tx timeout [ 82.999691] Bluetooth: hci6: command 0x0419 tx timeout [ 83.000120] Bluetooth: hci3: command 0x0419 tx timeout [ 84.430310] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 84.431519] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 84.433270] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 84.472055] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 84.473093] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 84.473896] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 84.477207] Bluetooth: hci1: HCI_REQ-0x0c1a [ 86.519689] Bluetooth: hci1: command 0x0409 tx timeout [ 88.566635] Bluetooth: hci1: command 0x041b tx timeout [ 90.615627] Bluetooth: hci1: command 0x040f tx timeout [ 92.663665] Bluetooth: hci1: command 0x0419 tx timeout 23:19:14 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x100000, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0) perf_event_open(&(0x7f0000000740)={0x4, 0x80, 0x9, 0xfc, 0x8, 0x0, 0x0, 0x7ff, 0x4c, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x3, 0x1}, 0x0, 0x4, 0x9, 0x0, 0x6e8, 0x5250, 0x47, 0x0, 0x3d8, 0x0, 0x9}, 0xffffffffffffffff, 0x6, r0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x5, 0x7, 0x8e, 0x4, 0x0, 0x80000001, 0x40, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0xc3801, 0x9335, 0x1, 0x7, 0x5, 0x8, 0x0, 0x0, 0x7fffffff, 0x0, 0xb050}, 0x0, 0x6, r0, 0x9) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/slab', 0x0, 0x0) lseek(r1, 0x2000005, 0x0) getdents64(r1, &(0x7f0000000240)=""/226, 0x20000258) [ 125.139094] audit: type=1400 audit(1663283954.421:7): avc: denied { open } for pid=3791 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.140685] audit: type=1400 audit(1663283954.421:8): avc: denied { kernel } for pid=3791 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.164430] ------------[ cut here ]------------ [ 125.164451] [ 125.164453] ====================================================== [ 125.164457] WARNING: possible circular locking dependency detected [ 125.164461] 6.0.0-rc5-next-20220915 #1 Not tainted [ 125.164467] ------------------------------------------------------ [ 125.164470] syz-executor.2/3792 is trying to acquire lock: [ 125.164477] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 125.164515] [ 125.164515] but task is already holding lock: [ 125.164517] ffff888040c8a820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.164545] [ 125.164545] which lock already depends on the new lock. [ 125.164545] [ 125.164548] [ 125.164548] the existing dependency chain (in reverse order) is: [ 125.164552] [ 125.164552] -> #3 (&ctx->lock){....}-{2:2}: [ 125.164566] _raw_spin_lock+0x2a/0x40 [ 125.164587] __perf_event_task_sched_out+0x53b/0x18d0 [ 125.164600] __schedule+0xedd/0x2470 [ 125.164610] schedule+0xda/0x1b0 [ 125.164621] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.164642] syscall_exit_to_user_mode+0x19/0x40 [ 125.164660] do_syscall_64+0x48/0x90 [ 125.164675] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.164693] [ 125.164693] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 125.164706] _raw_spin_lock_nested+0x30/0x40 [ 125.164722] raw_spin_rq_lock_nested+0x1e/0x30 [ 125.164736] task_fork_fair+0x63/0x4d0 [ 125.164753] sched_cgroup_fork+0x3d0/0x540 [ 125.164767] copy_process+0x4183/0x6e20 [ 125.164777] kernel_clone+0xe7/0x890 [ 125.164787] user_mode_thread+0xad/0xf0 [ 125.164797] rest_init+0x24/0x250 [ 125.164814] arch_call_rest_init+0xf/0x14 [ 125.164827] start_kernel+0x4c1/0x4e6 [ 125.164837] secondary_startup_64_no_verify+0xe0/0xeb [ 125.164851] [ 125.164851] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 125.164865] _raw_spin_lock_irqsave+0x39/0x60 [ 125.164881] try_to_wake_up+0xab/0x1920 [ 125.164895] up+0x75/0xb0 [ 125.164906] __up_console_sem+0x6e/0x80 [ 125.164922] console_unlock+0x46a/0x590 [ 125.164939] vprintk_emit+0x1bd/0x560 [ 125.164956] vprintk+0x84/0xa0 [ 125.164972] _printk+0xba/0xf1 [ 125.164991] kauditd_hold_skb.cold+0x3f/0x4e [ 125.165006] kauditd_send_queue+0x233/0x290 [ 125.165021] kauditd_thread+0x5da/0x9a0 [ 125.165035] kthread+0x2ed/0x3a0 [ 125.165050] ret_from_fork+0x22/0x30 [ 125.165063] [ 125.165063] -> #0 ((console_sem).lock){....}-{2:2}: [ 125.165076] __lock_acquire+0x2a02/0x5e70 [ 125.165093] lock_acquire+0x1a2/0x530 [ 125.165109] _raw_spin_lock_irqsave+0x39/0x60 [ 125.165125] down_trylock+0xe/0x70 [ 125.165137] __down_trylock_console_sem+0x3b/0xd0 [ 125.165153] vprintk_emit+0x16b/0x560 [ 125.165170] vprintk+0x84/0xa0 [ 125.165186] _printk+0xba/0xf1 [ 125.165203] report_bug.cold+0x72/0xab [ 125.165216] handle_bug+0x3c/0x70 [ 125.165230] exc_invalid_op+0x14/0x50 [ 125.165243] asm_exc_invalid_op+0x16/0x20 [ 125.165260] group_sched_out.part.0+0x2c7/0x460 [ 125.165271] ctx_sched_out+0x8f1/0xc10 [ 125.165280] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.165292] __schedule+0xedd/0x2470 [ 125.165302] schedule+0xda/0x1b0 [ 125.165312] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.165332] syscall_exit_to_user_mode+0x19/0x40 [ 125.165349] do_syscall_64+0x48/0x90 [ 125.165363] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.165380] [ 125.165380] other info that might help us debug this: [ 125.165380] [ 125.165383] Chain exists of: [ 125.165383] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 125.165383] [ 125.165398] Possible unsafe locking scenario: [ 125.165398] [ 125.165401] CPU0 CPU1 [ 125.165403] ---- ---- [ 125.165405] lock(&ctx->lock); [ 125.165411] lock(&rq->__lock); [ 125.165417] lock(&ctx->lock); [ 125.165424] lock((console_sem).lock); [ 125.165430] [ 125.165430] *** DEADLOCK *** [ 125.165430] [ 125.165431] 2 locks held by syz-executor.2/3792: [ 125.165438] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 125.165464] #1: ffff888040c8a820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.165492] [ 125.165492] stack backtrace: [ 125.165495] CPU: 1 PID: 3792 Comm: syz-executor.2 Not tainted 6.0.0-rc5-next-20220915 #1 [ 125.165507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.165516] Call Trace: [ 125.165519] [ 125.165523] dump_stack_lvl+0x8b/0xb3 [ 125.165538] check_noncircular+0x263/0x2e0 [ 125.165555] ? format_decode+0x26c/0xb50 [ 125.165570] ? print_circular_bug+0x450/0x450 [ 125.165588] ? enable_ptr_key_workfn+0x20/0x20 [ 125.165603] ? format_decode+0x26c/0xb50 [ 125.165619] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 125.165637] __lock_acquire+0x2a02/0x5e70 [ 125.165659] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 125.165682] lock_acquire+0x1a2/0x530 [ 125.165699] ? down_trylock+0xe/0x70 [ 125.165714] ? rcu_read_unlock+0x40/0x40 [ 125.165735] ? vprintk+0x84/0xa0 [ 125.165753] _raw_spin_lock_irqsave+0x39/0x60 [ 125.165770] ? down_trylock+0xe/0x70 [ 125.165783] down_trylock+0xe/0x70 [ 125.165797] ? vprintk+0x84/0xa0 [ 125.165814] __down_trylock_console_sem+0x3b/0xd0 [ 125.165832] vprintk_emit+0x16b/0x560 [ 125.165851] vprintk+0x84/0xa0 [ 125.165869] _printk+0xba/0xf1 [ 125.165887] ? record_print_text.cold+0x16/0x16 [ 125.165910] ? report_bug.cold+0x66/0xab [ 125.165925] ? group_sched_out.part.0+0x2c7/0x460 [ 125.165936] report_bug.cold+0x72/0xab [ 125.165952] handle_bug+0x3c/0x70 [ 125.165966] exc_invalid_op+0x14/0x50 [ 125.165981] asm_exc_invalid_op+0x16/0x20 [ 125.165999] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.166013] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.166024] RSP: 0018:ffff88801021fc48 EFLAGS: 00010006 [ 125.166033] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.166041] RDX: ffff888039738000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 125.166048] RBP: ffff8880413d0000 R08: 0000000000000005 R09: 0000000000000001 [ 125.166056] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff888040c8a800 [ 125.166064] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 125.166075] ? group_sched_out.part.0+0x2c7/0x460 [ 125.166088] ? group_sched_out.part.0+0x2c7/0x460 [ 125.166101] ctx_sched_out+0x8f1/0xc10 [ 125.166113] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.166128] ? lock_is_held_type+0xd7/0x130 [ 125.166147] ? __perf_cgroup_move+0x160/0x160 [ 125.166159] ? set_next_entity+0x304/0x550 [ 125.166177] ? update_curr+0x267/0x740 [ 125.166196] ? lock_is_held_type+0xd7/0x130 [ 125.166216] __schedule+0xedd/0x2470 [ 125.166229] ? io_schedule_timeout+0x150/0x150 [ 125.166242] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.166263] schedule+0xda/0x1b0 [ 125.166275] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.166296] syscall_exit_to_user_mode+0x19/0x40 [ 125.166314] do_syscall_64+0x48/0x90 [ 125.166329] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.166347] RIP: 0033:0x7fc9bff2cb19 [ 125.166356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.166367] RSP: 002b:00007fc9bd4a2218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.166378] RAX: 0000000000000001 RBX: 00007fc9c003ff68 RCX: 00007fc9bff2cb19 [ 125.166385] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9c003ff6c [ 125.166392] RBP: 00007fc9c003ff60 R08: 000000000000000e R09: 0000000000000000 [ 125.166400] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fc9c003ff6c [ 125.166407] R13: 00007fff75b1b17f R14: 00007fc9bd4a2300 R15: 0000000000022000 [ 125.166420] [ 125.221698] WARNING: CPU: 1 PID: 3792 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 125.222366] Modules linked in: [ 125.222610] CPU: 1 PID: 3792 Comm: syz-executor.2 Not tainted 6.0.0-rc5-next-20220915 #1 [ 125.223204] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.224023] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.224425] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.225748] RSP: 0018:ffff88801021fc48 EFLAGS: 00010006 [ 125.226138] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.226656] RDX: ffff888039738000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 125.227179] RBP: ffff8880413d0000 R08: 0000000000000005 R09: 0000000000000001 [ 125.227706] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff888040c8a800 [ 125.228222] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 125.228745] FS: 00007fc9bd4a2700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 125.229329] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 125.229761] CR2: 00007fe006c138e0 CR3: 000000001efbe000 CR4: 0000000000350ee0 [ 125.230278] Call Trace: [ 125.230471] [ 125.230642] ctx_sched_out+0x8f1/0xc10 [ 125.230937] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.231329] ? lock_is_held_type+0xd7/0x130 [ 125.231655] ? __perf_cgroup_move+0x160/0x160 [ 125.231987] ? set_next_entity+0x304/0x550 [ 125.232307] ? update_curr+0x267/0x740 [ 125.232602] ? lock_is_held_type+0xd7/0x130 [ 125.232932] __schedule+0xedd/0x2470 [ 125.233214] ? io_schedule_timeout+0x150/0x150 [ 125.233555] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.233926] schedule+0xda/0x1b0 [ 125.234184] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.234556] syscall_exit_to_user_mode+0x19/0x40 [ 125.234913] do_syscall_64+0x48/0x90 [ 125.235195] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.235588] RIP: 0033:0x7fc9bff2cb19 [ 125.235866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.237193] RSP: 002b:00007fc9bd4a2218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.237749] RAX: 0000000000000001 RBX: 00007fc9c003ff68 RCX: 00007fc9bff2cb19 [ 125.238275] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fc9c003ff6c [ 125.238795] RBP: 00007fc9c003ff60 R08: 000000000000000e R09: 0000000000000000 [ 125.239331] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fc9c003ff6c [ 125.239848] R13: 00007fff75b1b17f R14: 00007fc9bd4a2300 R15: 0000000000022000 [ 125.240375] [ 125.240550] irq event stamp: 658 [ 125.240800] hardirqs last enabled at (657): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 125.241486] hardirqs last disabled at (658): [] __schedule+0x1225/0x2470 [ 125.242085] softirqs last enabled at (0): [] copy_process+0x1e15/0x6e20 [ 125.242691] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 125.243153] ---[ end trace 0000000000000000 ]--- 23:19:14 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011200)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) vmsplice(r0, &(0x7f0000000440)=[{0x0}], 0x1, 0x1) sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="18000000010205000000000000001f150000000004000280"], 0x18}}, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f00000004c0)=0x33f) r1 = open(&(0x7f0000000400)='./file1\x00', 0x101840, 0xe4) r2 = open_tree(r1, &(0x7f0000000480)='./file1\x00', 0x8100) mount_setattr(r2, &(0x7f00000000c0)='./file1\x00', 0x1000, &(0x7f0000000180)={0x8, 0x80, 0x1e0000}, 0x20) syz_mount_image$vfat(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[]) lseek(r3, 0x0, 0x3) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0xe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @remote, @broadcast}}}], 0x20}, 0x0) openat(r2, &(0x7f0000000080)='./file1\x00', 0x12080, 0x18) openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x80200, 0x2) socket$netlink(0x10, 0x3, 0x9) [ 125.441469] loop5: detected capacity change from 0 to 256 [ 125.448182] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 125.462463] tmpfs: Unknown parameter './file0' 23:19:14 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x100000, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0) perf_event_open(&(0x7f0000000740)={0x4, 0x80, 0x9, 0xfc, 0x8, 0x0, 0x0, 0x7ff, 0x4c, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffffffff, 0x0, @perf_config_ext={0x3, 0x1}, 0x0, 0x4, 0x9, 0x0, 0x6e8, 0x5250, 0x47, 0x0, 0x3d8, 0x0, 0x9}, 0xffffffffffffffff, 0x6, r0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x5, 0x7, 0x8e, 0x4, 0x0, 0x80000001, 0x40, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0xc3801, 0x9335, 0x1, 0x7, 0x5, 0x8, 0x0, 0x0, 0x7fffffff, 0x0, 0xb050}, 0x0, 0x6, r0, 0x9) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/slab', 0x0, 0x0) lseek(r1, 0x2000005, 0x0) getdents64(r1, &(0x7f0000000240)=""/226, 0x20000258) [ 125.562185] tmpfs: Unknown parameter './file0' 23:19:14 executing program 2: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) connect$inet6(r1, &(0x7f00000015c0)={0xa, 0x0, 0x400000, @loopback, 0xfffffffc}, 0x1c) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000180)={0x0, 0x0}) r3 = fcntl$dupfd(r0, 0x406, r1) r4 = open$dir(&(0x7f0000000240)='./file0\x00', 0x8000, 0x11) ioctl$EXT4_IOC_GET_ES_CACHE(r4, 0xc020662a, &(0x7f0000000280)={0x4, 0xd32e, 0x2, 0x5, 0x7, [{0x80, 0x2, 0x80000001, '\x00', 0x200}, {0x3, 0x1f, 0x6, '\x00', 0x1504}, {0x588f, 0x6, 0x3, '\x00', 0xc02}, {0x1, 0xfffffffffffffdaa, 0x3, '\x00', 0x2d02}, {0x7, 0x80, 0x3, '\x00', 0x1400}, {0x5, 0x81, 0x16, '\x00', 0x100}, {0x6, 0x8, 0x1ff, '\x00', 0x2104}]}) r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x1, 0x3, 0x3f, 0x1f, 0x0, 0x5, 0x400, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f00000001c0), 0xe}, 0x41869, 0x20, 0x0, 0x6, 0x5, 0x1d, 0x4, 0x0, 0x3, 0x0, 0x4}, r2, 0x7, r3, 0x8) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e20, 0x8000, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000002580)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000000)="d7061e52", 0x4}], 0x1}}], 0x1, 0x0) r6 = signalfd(r5, &(0x7f0000000440)={[0x1]}, 0x8) getsockopt$netlink(r6, 0x10e, 0x2, &(0x7f0000000480)=""/41, &(0x7f00000004c0)=0x29) 23:19:14 executing program 5: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011200)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) vmsplice(r0, &(0x7f0000000440)=[{0x0}], 0x1, 0x1) sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="18000000010205000000000000001f150000000004000280"], 0x18}}, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f00000004c0)=0x33f) r1 = open(&(0x7f0000000400)='./file1\x00', 0x101840, 0xe4) r2 = open_tree(r1, &(0x7f0000000480)='./file1\x00', 0x8100) mount_setattr(r2, &(0x7f00000000c0)='./file1\x00', 0x1000, &(0x7f0000000180)={0x8, 0x80, 0x1e0000}, 0x20) syz_mount_image$vfat(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[]) lseek(r3, 0x0, 0x3) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0xe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r4, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @remote, @broadcast}}}], 0x20}, 0x0) openat(r2, &(0x7f0000000080)='./file1\x00', 0x12080, 0x18) openat(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x80200, 0x2) socket$netlink(0x10, 0x3, 0x9) [ 125.649727] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 23:19:14 executing program 2: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) connect$inet6(r1, &(0x7f00000015c0)={0xa, 0x0, 0x400000, @loopback, 0xfffffffc}, 0x1c) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000180)={0x0, 0x0}) r3 = fcntl$dupfd(r0, 0x406, r1) r4 = open$dir(&(0x7f0000000240)='./file0\x00', 0x8000, 0x11) ioctl$EXT4_IOC_GET_ES_CACHE(r4, 0xc020662a, &(0x7f0000000280)={0x4, 0xd32e, 0x2, 0x5, 0x7, [{0x80, 0x2, 0x80000001, '\x00', 0x200}, {0x3, 0x1f, 0x6, '\x00', 0x1504}, {0x588f, 0x6, 0x3, '\x00', 0xc02}, {0x1, 0xfffffffffffffdaa, 0x3, '\x00', 0x2d02}, {0x7, 0x80, 0x3, '\x00', 0x1400}, {0x5, 0x81, 0x16, '\x00', 0x100}, {0x6, 0x8, 0x1ff, '\x00', 0x2104}]}) r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x1, 0x3, 0x3f, 0x1f, 0x0, 0x5, 0x400, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f00000001c0), 0xe}, 0x41869, 0x20, 0x0, 0x6, 0x5, 0x1d, 0x4, 0x0, 0x3, 0x0, 0x4}, r2, 0x7, r3, 0x8) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e20, 0x8000, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000002580)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000000)="d7061e52", 0x4}], 0x1}}], 0x1, 0x0) r6 = signalfd(r5, &(0x7f0000000440)={[0x1]}, 0x8) getsockopt$netlink(r6, 0x10e, 0x2, &(0x7f0000000480)=""/41, &(0x7f00000004c0)=0x29) [ 125.706767] loop5: detected capacity change from 0 to 256 [ 125.717613] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 125.733195] tmpfs: Unknown parameter './file0' 23:19:15 executing program 2: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) connect$inet6(r1, &(0x7f00000015c0)={0xa, 0x0, 0x400000, @loopback, 0xfffffffc}, 0x1c) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000180)={0x0, 0x0}) r3 = fcntl$dupfd(r0, 0x406, r1) r4 = open$dir(&(0x7f0000000240)='./file0\x00', 0x8000, 0x11) ioctl$EXT4_IOC_GET_ES_CACHE(r4, 0xc020662a, &(0x7f0000000280)={0x4, 0xd32e, 0x2, 0x5, 0x7, [{0x80, 0x2, 0x80000001, '\x00', 0x200}, {0x3, 0x1f, 0x6, '\x00', 0x1504}, {0x588f, 0x6, 0x3, '\x00', 0xc02}, {0x1, 0xfffffffffffffdaa, 0x3, '\x00', 0x2d02}, {0x7, 0x80, 0x3, '\x00', 0x1400}, {0x5, 0x81, 0x16, '\x00', 0x100}, {0x6, 0x8, 0x1ff, '\x00', 0x2104}]}) r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x1, 0x3, 0x3f, 0x1f, 0x0, 0x5, 0x400, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f00000001c0), 0xe}, 0x41869, 0x20, 0x0, 0x6, 0x5, 0x1d, 0x4, 0x0, 0x3, 0x0, 0x4}, r2, 0x7, r3, 0x8) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e20, 0x8000, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000002580)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000000)="d7061e52", 0x4}], 0x1}}], 0x1, 0x0) r6 = signalfd(r5, &(0x7f0000000440)={[0x1]}, 0x8) getsockopt$netlink(r6, 0x10e, 0x2, &(0x7f0000000480)=""/41, &(0x7f00000004c0)=0x29) 23:19:15 executing program 2: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0) preadv(r1, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) connect$inet6(r1, &(0x7f00000015c0)={0xa, 0x0, 0x400000, @loopback, 0xfffffffc}, 0x1c) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000180)={0x0, 0x0}) r3 = fcntl$dupfd(r0, 0x406, r1) r4 = open$dir(&(0x7f0000000240)='./file0\x00', 0x8000, 0x11) ioctl$EXT4_IOC_GET_ES_CACHE(r4, 0xc020662a, &(0x7f0000000280)={0x4, 0xd32e, 0x2, 0x5, 0x7, [{0x80, 0x2, 0x80000001, '\x00', 0x200}, {0x3, 0x1f, 0x6, '\x00', 0x1504}, {0x588f, 0x6, 0x3, '\x00', 0xc02}, {0x1, 0xfffffffffffffdaa, 0x3, '\x00', 0x2d02}, {0x7, 0x80, 0x3, '\x00', 0x1400}, {0x5, 0x81, 0x16, '\x00', 0x100}, {0x6, 0x8, 0x1ff, '\x00', 0x2104}]}) r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x1, 0x3, 0x3f, 0x1f, 0x0, 0x5, 0x400, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f00000001c0), 0xe}, 0x41869, 0x20, 0x0, 0x6, 0x5, 0x1d, 0x4, 0x0, 0x3, 0x0, 0x4}, r2, 0x7, r3, 0x8) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e20, 0x8000, @empty}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000002580)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000000)="d7061e52", 0x4}], 0x1}}], 0x1, 0x0) r6 = signalfd(r5, &(0x7f0000000440)={[0x1]}, 0x8) getsockopt$netlink(r6, 0x10e, 0x2, &(0x7f0000000480)=""/41, &(0x7f00000004c0)=0x29) [ 125.833261] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) VM DIAGNOSIS: 23:19:14 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=ffff88801da9f530 RCX=0000000000000001 RDX=1ffff11003b53ea8 RSI=ffff88801da9f5c8 RDI=ffff88801da9f540 RBP=ffff88801da9f5c8 RSP=ffff88801da9f428 R8 =ffffffff85e2e7ce R9 =ffffffff85e2e7d2 R10=ffffed1003b53eb3 R11=ffff88801da9f570 R12=0000000000000008 R13=ffff88801da98000 R14=ffff88801da9f530 R15=0000000000000003 RIP=ffffffff8111b178 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f6673ce4540 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6673da18b0 CR3=00000000412be000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ff00ffffffffffff 0000000000000000 YMM01=0000000000000000 0000000000000000 0100010001000000 ffffffffffffffff YMM02=0000000000000000 0000000000000000 0500050005000000 455441564952505f YMM03=0000000000000000 0000000000000000 0000000000000000 000000564952505f YMM04=0000000000000000 0000000000000000 0003000500050005 0005000000455441 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b29f1 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff88801021f698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000003a R11=0000000000000001 R12=000000000000003a R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b29e0 RIP=ffffffff822b2a49 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fc9bd4a2700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe006c138e0 CR3=000000001efbe000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fc9c00137c0 00007fc9c00137c8 YMM02=0000000000000000 0000000000000000 00007fc9c00137e0 00007fc9c00137c0 YMM03=0000000000000000 0000000000000000 00007fc9c00137c8 00007fc9c00137c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000