Warning: Permanently added '[localhost]:9351' (ECDSA) to the list of known hosts. 2022/09/16 03:55:28 fuzzer started 2022/09/16 03:55:28 dialing manager at localhost:36559 syzkaller login: [ 44.171835] cgroup: Unknown subsys name 'net' [ 44.278539] cgroup: Unknown subsys name 'rlimit' 2022/09/16 03:55:42 syscalls: 2215 2022/09/16 03:55:42 code coverage: enabled 2022/09/16 03:55:42 comparison tracing: enabled 2022/09/16 03:55:42 extra coverage: enabled 2022/09/16 03:55:42 setuid sandbox: enabled 2022/09/16 03:55:42 namespace sandbox: enabled 2022/09/16 03:55:42 Android sandbox: enabled 2022/09/16 03:55:42 fault injection: enabled 2022/09/16 03:55:42 leak checking: enabled 2022/09/16 03:55:42 net packet injection: enabled 2022/09/16 03:55:42 net device setup: enabled 2022/09/16 03:55:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/16 03:55:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/16 03:55:42 USB emulation: enabled 2022/09/16 03:55:42 hci packet injection: enabled 2022/09/16 03:55:42 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220915) 2022/09/16 03:55:42 802.15.4 emulation: enabled 2022/09/16 03:55:42 fetching corpus: 50, signal 32461/34218 (executing program) 2022/09/16 03:55:43 fetching corpus: 100, signal 47391/50637 (executing program) 2022/09/16 03:55:43 fetching corpus: 150, signal 55492/60203 (executing program) 2022/09/16 03:55:43 fetching corpus: 200, signal 62506/68557 (executing program) 2022/09/16 03:55:43 fetching corpus: 250, signal 69507/76838 (executing program) 2022/09/16 03:55:43 fetching corpus: 300, signal 74421/83014 (executing program) 2022/09/16 03:55:43 fetching corpus: 350, signal 78327/88149 (executing program) 2022/09/16 03:55:44 fetching corpus: 400, signal 82877/93847 (executing program) 2022/09/16 03:55:44 fetching corpus: 450, signal 89113/101020 (executing program) 2022/09/16 03:55:44 fetching corpus: 500, signal 92138/105170 (executing program) 2022/09/16 03:55:44 fetching corpus: 550, signal 95321/109376 (executing program) 2022/09/16 03:55:44 fetching corpus: 600, signal 100173/115086 (executing program) 2022/09/16 03:55:44 fetching corpus: 650, signal 104321/120108 (executing program) 2022/09/16 03:55:45 fetching corpus: 700, signal 108569/125129 (executing program) 2022/09/16 03:55:45 fetching corpus: 750, signal 111675/129100 (executing program) 2022/09/16 03:55:45 fetching corpus: 800, signal 114933/133057 (executing program) 2022/09/16 03:55:45 fetching corpus: 850, signal 116459/135491 (executing program) 2022/09/16 03:55:45 fetching corpus: 900, signal 120340/139950 (executing program) 2022/09/16 03:55:45 fetching corpus: 950, signal 121644/142162 (executing program) 2022/09/16 03:55:45 fetching corpus: 1000, signal 124468/145681 (executing program) 2022/09/16 03:55:45 fetching corpus: 1050, signal 126799/148710 (executing program) 2022/09/16 03:55:45 fetching corpus: 1100, signal 128350/151045 (executing program) 2022/09/16 03:55:46 fetching corpus: 1150, signal 131320/154559 (executing program) 2022/09/16 03:55:46 fetching corpus: 1200, signal 132870/156879 (executing program) 2022/09/16 03:55:46 fetching corpus: 1250, signal 134368/159117 (executing program) 2022/09/16 03:55:46 fetching corpus: 1300, signal 136267/161679 (executing program) 2022/09/16 03:55:46 fetching corpus: 1350, signal 138396/164337 (executing program) 2022/09/16 03:55:46 fetching corpus: 1400, signal 140010/166558 (executing program) 2022/09/16 03:55:46 fetching corpus: 1450, signal 141631/168767 (executing program) 2022/09/16 03:55:46 fetching corpus: 1500, signal 143375/171053 (executing program) 2022/09/16 03:55:47 fetching corpus: 1550, signal 144817/173107 (executing program) 2022/09/16 03:55:47 fetching corpus: 1600, signal 146842/175565 (executing program) 2022/09/16 03:55:47 fetching corpus: 1650, signal 149100/178177 (executing program) 2022/09/16 03:55:47 fetching corpus: 1700, signal 151194/180693 (executing program) 2022/09/16 03:55:47 fetching corpus: 1750, signal 152863/182788 (executing program) 2022/09/16 03:55:47 fetching corpus: 1800, signal 153928/184463 (executing program) 2022/09/16 03:55:48 fetching corpus: 1850, signal 155595/186584 (executing program) 2022/09/16 03:55:48 fetching corpus: 1900, signal 157605/188850 (executing program) 2022/09/16 03:55:48 fetching corpus: 1950, signal 158509/190351 (executing program) 2022/09/16 03:55:48 fetching corpus: 2000, signal 159694/192013 (executing program) 2022/09/16 03:55:48 fetching corpus: 2050, signal 160983/193699 (executing program) 2022/09/16 03:55:48 fetching corpus: 2100, signal 162554/195569 (executing program) 2022/09/16 03:55:48 fetching corpus: 2150, signal 163751/197150 (executing program) 2022/09/16 03:55:48 fetching corpus: 2200, signal 164546/198432 (executing program) 2022/09/16 03:55:48 fetching corpus: 2250, signal 165749/199977 (executing program) 2022/09/16 03:55:49 fetching corpus: 2300, signal 166712/201377 (executing program) 2022/09/16 03:55:49 fetching corpus: 2350, signal 167755/202785 (executing program) 2022/09/16 03:55:49 fetching corpus: 2400, signal 170574/205350 (executing program) 2022/09/16 03:55:49 fetching corpus: 2450, signal 171319/206514 (executing program) 2022/09/16 03:55:49 fetching corpus: 2500, signal 172756/208128 (executing program) 2022/09/16 03:55:49 fetching corpus: 2550, signal 173773/209428 (executing program) 2022/09/16 03:55:49 fetching corpus: 2600, signal 174826/210754 (executing program) 2022/09/16 03:55:49 fetching corpus: 2650, signal 175881/212011 (executing program) 2022/09/16 03:55:50 fetching corpus: 2700, signal 177153/213402 (executing program) 2022/09/16 03:55:50 fetching corpus: 2750, signal 178393/214799 (executing program) 2022/09/16 03:55:50 fetching corpus: 2800, signal 179264/215937 (executing program) 2022/09/16 03:55:50 fetching corpus: 2850, signal 179947/216959 (executing program) 2022/09/16 03:55:50 fetching corpus: 2900, signal 180776/218050 (executing program) 2022/09/16 03:55:50 fetching corpus: 2950, signal 181692/219218 (executing program) 2022/09/16 03:55:51 fetching corpus: 3000, signal 182870/220494 (executing program) 2022/09/16 03:55:51 fetching corpus: 3050, signal 184172/221859 (executing program) 2022/09/16 03:55:51 fetching corpus: 3100, signal 185246/223080 (executing program) 2022/09/16 03:55:51 fetching corpus: 3150, signal 186025/224143 (executing program) 2022/09/16 03:55:51 fetching corpus: 3200, signal 186648/225090 (executing program) 2022/09/16 03:55:51 fetching corpus: 3250, signal 187355/226058 (executing program) 2022/09/16 03:55:51 fetching corpus: 3300, signal 188357/227146 (executing program) 2022/09/16 03:55:51 fetching corpus: 3350, signal 189837/228487 (executing program) 2022/09/16 03:55:52 fetching corpus: 3400, signal 190719/229497 (executing program) 2022/09/16 03:55:52 fetching corpus: 3450, signal 191816/230636 (executing program) 2022/09/16 03:55:52 fetching corpus: 3500, signal 193093/231743 (executing program) 2022/09/16 03:55:52 fetching corpus: 3550, signal 193754/232591 (executing program) 2022/09/16 03:55:52 fetching corpus: 3600, signal 194734/233594 (executing program) 2022/09/16 03:55:52 fetching corpus: 3650, signal 195710/234566 (executing program) 2022/09/16 03:55:52 fetching corpus: 3700, signal 197215/235754 (executing program) 2022/09/16 03:55:53 fetching corpus: 3750, signal 198255/236704 (executing program) 2022/09/16 03:55:53 fetching corpus: 3800, signal 199123/237606 (executing program) 2022/09/16 03:55:53 fetching corpus: 3850, signal 199759/238369 (executing program) 2022/09/16 03:55:53 fetching corpus: 3900, signal 200475/239164 (executing program) 2022/09/16 03:55:53 fetching corpus: 3950, signal 201420/240195 (executing program) 2022/09/16 03:55:53 fetching corpus: 4000, signal 202407/241070 (executing program) 2022/09/16 03:55:53 fetching corpus: 4050, signal 203034/241809 (executing program) 2022/09/16 03:55:53 fetching corpus: 4100, signal 203730/242557 (executing program) 2022/09/16 03:55:54 fetching corpus: 4150, signal 204530/243333 (executing program) 2022/09/16 03:55:54 fetching corpus: 4200, signal 205431/244103 (executing program) 2022/09/16 03:55:54 fetching corpus: 4250, signal 206045/244785 (executing program) 2022/09/16 03:55:54 fetching corpus: 4300, signal 207151/245728 (executing program) 2022/09/16 03:55:54 fetching corpus: 4350, signal 207905/246465 (executing program) 2022/09/16 03:55:54 fetching corpus: 4400, signal 208622/247126 (executing program) 2022/09/16 03:55:54 fetching corpus: 4450, signal 209302/247791 (executing program) 2022/09/16 03:55:54 fetching corpus: 4500, signal 209875/248442 (executing program) 2022/09/16 03:55:55 fetching corpus: 4550, signal 210801/249163 (executing program) 2022/09/16 03:55:55 fetching corpus: 4600, signal 211618/249869 (executing program) 2022/09/16 03:55:55 fetching corpus: 4650, signal 212236/250471 (executing program) 2022/09/16 03:55:55 fetching corpus: 4700, signal 212821/251050 (executing program) 2022/09/16 03:55:55 fetching corpus: 4750, signal 213977/251820 (executing program) 2022/09/16 03:55:55 fetching corpus: 4800, signal 214356/252315 (executing program) 2022/09/16 03:55:55 fetching corpus: 4850, signal 215011/252903 (executing program) 2022/09/16 03:55:56 fetching corpus: 4900, signal 215907/253479 (executing program) 2022/09/16 03:55:56 fetching corpus: 4950, signal 216700/254055 (executing program) 2022/09/16 03:55:56 fetching corpus: 5000, signal 217232/254527 (executing program) 2022/09/16 03:55:56 fetching corpus: 5050, signal 217988/255091 (executing program) 2022/09/16 03:55:56 fetching corpus: 5100, signal 218639/255621 (executing program) 2022/09/16 03:55:56 fetching corpus: 5150, signal 219509/256199 (executing program) 2022/09/16 03:55:56 fetching corpus: 5200, signal 219864/256636 (executing program) 2022/09/16 03:55:56 fetching corpus: 5250, signal 220379/257072 (executing program) 2022/09/16 03:55:57 fetching corpus: 5300, signal 220803/257509 (executing program) 2022/09/16 03:55:57 fetching corpus: 5350, signal 221196/257954 (executing program) 2022/09/16 03:55:57 fetching corpus: 5400, signal 221810/258410 (executing program) 2022/09/16 03:55:57 fetching corpus: 5450, signal 222616/258936 (executing program) 2022/09/16 03:55:57 fetching corpus: 5500, signal 223280/259383 (executing program) 2022/09/16 03:55:57 fetching corpus: 5550, signal 223817/259821 (executing program) 2022/09/16 03:55:57 fetching corpus: 5600, signal 224260/260218 (executing program) 2022/09/16 03:55:57 fetching corpus: 5650, signal 224794/260699 (executing program) 2022/09/16 03:55:58 fetching corpus: 5700, signal 225549/261084 (executing program) 2022/09/16 03:55:58 fetching corpus: 5750, signal 226338/261474 (executing program) 2022/09/16 03:55:58 fetching corpus: 5800, signal 227726/261927 (executing program) 2022/09/16 03:55:58 fetching corpus: 5850, signal 228397/262353 (executing program) 2022/09/16 03:55:58 fetching corpus: 5900, signal 228892/262688 (executing program) 2022/09/16 03:55:58 fetching corpus: 5950, signal 229255/262960 (executing program) 2022/09/16 03:55:58 fetching corpus: 6000, signal 229792/263275 (executing program) 2022/09/16 03:55:59 fetching corpus: 6050, signal 230277/263593 (executing program) 2022/09/16 03:55:59 fetching corpus: 6100, signal 231778/263973 (executing program) 2022/09/16 03:55:59 fetching corpus: 6150, signal 232157/264272 (executing program) 2022/09/16 03:55:59 fetching corpus: 6200, signal 232512/264539 (executing program) 2022/09/16 03:55:59 fetching corpus: 6250, signal 233434/264852 (executing program) 2022/09/16 03:55:59 fetching corpus: 6300, signal 234169/265119 (executing program) 2022/09/16 03:55:59 fetching corpus: 6350, signal 235151/265416 (executing program) 2022/09/16 03:56:00 fetching corpus: 6400, signal 235611/265698 (executing program) 2022/09/16 03:56:00 fetching corpus: 6450, signal 236242/265926 (executing program) 2022/09/16 03:56:00 fetching corpus: 6500, signal 236755/265931 (executing program) 2022/09/16 03:56:00 fetching corpus: 6550, signal 237313/266016 (executing program) 2022/09/16 03:56:00 fetching corpus: 6600, signal 237921/266021 (executing program) 2022/09/16 03:56:00 fetching corpus: 6650, signal 238494/266084 (executing program) 2022/09/16 03:56:00 fetching corpus: 6700, signal 239143/266093 (executing program) 2022/09/16 03:56:00 fetching corpus: 6750, signal 239609/266095 (executing program) 2022/09/16 03:56:01 fetching corpus: 6800, signal 240067/266104 (executing program) 2022/09/16 03:56:01 fetching corpus: 6850, signal 240543/266106 (executing program) 2022/09/16 03:56:01 fetching corpus: 6900, signal 241045/266111 (executing program) 2022/09/16 03:56:01 fetching corpus: 6950, signal 241361/266127 (executing program) 2022/09/16 03:56:01 fetching corpus: 7000, signal 242032/266138 (executing program) 2022/09/16 03:56:01 fetching corpus: 7050, signal 242723/266167 (executing program) 2022/09/16 03:56:01 fetching corpus: 7100, signal 243018/266177 (executing program) 2022/09/16 03:56:01 fetching corpus: 7150, signal 243424/266261 (executing program) 2022/09/16 03:56:02 fetching corpus: 7200, signal 243815/266268 (executing program) 2022/09/16 03:56:02 fetching corpus: 7250, signal 244236/266278 (executing program) 2022/09/16 03:56:02 fetching corpus: 7300, signal 244751/266294 (executing program) 2022/09/16 03:56:02 fetching corpus: 7350, signal 245389/266424 (executing program) 2022/09/16 03:56:02 fetching corpus: 7400, signal 245770/266432 (executing program) 2022/09/16 03:56:02 fetching corpus: 7450, signal 246202/266445 (executing program) 2022/09/16 03:56:02 fetching corpus: 7500, signal 246730/266450 (executing program) 2022/09/16 03:56:02 fetching corpus: 7550, signal 247121/266450 (executing program) 2022/09/16 03:56:03 fetching corpus: 7600, signal 247771/266451 (executing program) 2022/09/16 03:56:03 fetching corpus: 7650, signal 248112/266506 (executing program) 2022/09/16 03:56:03 fetching corpus: 7700, signal 248454/266512 (executing program) 2022/09/16 03:56:03 fetching corpus: 7723, signal 248541/266514 (executing program) 2022/09/16 03:56:03 fetching corpus: 7723, signal 248541/266514 (executing program) 2022/09/16 03:56:06 starting 8 fuzzer processes 03:56:06 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)={@local, @multicast2, 0x1, 0x8, [@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @empty, @private=0xa010102, @initdev={0xac, 0x1e, 0x1, 0x0}, @empty, @private=0xa010101, @local]}, 0x30) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000040)) r1 = memfd_create(&(0x7f0000000080)=':/+\x00', 0x5) r2 = socket$inet6(0xa, 0x3, 0x8) poll(&(0x7f00000000c0)=[{r0, 0x2000}, {0xffffffffffffffff, 0x1180}, {r1, 0x4210}, {r2, 0xe120}], 0x4, 0xfffffffe) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000100)={@ipv4={'\x00', '\xff\xff', @multicast2}, 0x37}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r2, 0x89f6, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000140)={'ip6gre0\x00', 0x0, 0x2f, 0xe4, 0x8, 0x7, 0x10, @private0, @local, 0x7800, 0x8, 0x8000, 0x7ff}}) r4 = mq_open(&(0x7f0000000200)='ip6gre0\x00', 0x40, 0x120, &(0x7f0000000240)={0x6, 0x8, 0x7, 0x2f9}) ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000280)={0x3, 0x6, 0x9, 0x83a}) ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000380)={'lo\x00', &(0x7f00000002c0)=@ethtool_flash={0x33, 0x7ff, './file0\x00'}}) setsockopt$inet_tcp_int(r0, 0x6, 0x9, &(0x7f00000003c0)=0xb2d4, 0x4) r5 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r5, 0x8982, &(0x7f0000000400)={0x6, 'veth0_to_batadv\x00', {0x101}, 0x1}) socket$packet(0x11, 0x2, 0x300) r6 = openat2(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480)={0x4000, 0x120, 0x18}, 0x18) ioctl$F2FS_IOC_GET_FEATURES(r6, 0x8004f50c, &(0x7f00000004c0)) r7 = socket$nl_sock_diag(0x10, 0x3, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000500)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x2000, @fd=r7, 0x3, 0x3f, 0x800, 0x2, 0x0, {0x2}}, 0x0) 03:56:06 executing program 1: setxattr$incfs_metadata(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)="f4f52a08b686644e2a7bcda7e3d2f6a3312c960a8c2cc69f8589b8626c058d5b1c0b494b3ccfb2fdaf5adfb6fb884646e10682e468f053044efa217256f61f4854f633d5102eefff304d9beb47d2d35130201a0c848063a17e849d150fe2d43b5a9b6ff64fc0a13117b61802ef8098599869acb7b97484986892a1a43c3940985359ffbef5fe0ed0421eceaf7f06a3d195cd6aca2ec833fb2933b8e6a9cf6435c8480b6ed49b65a4754054f3c78fc054f423bc471c4dd8e2fc", 0xb9, 0x1) setxattr$trusted_overlay_origin(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0), 0x2, 0x3) futimesat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={{0x77359400}, {0x0, 0x2710}}) futimesat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0)={{0x0, 0x2710}, {0x77359400}}) r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) ioctl$BTRFS_IOC_BALANCE(r1, 0x5000940c, 0x0) r2 = mmap$binder(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x1, 0x11, r1, 0x4) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000001800)={0x108, 0x0, &(0x7f0000001600)=[@reply_sg={0x40486312, {0x2, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x68, 0x18, &(0x7f00000003c0)={@fd={0x66642a85, 0x0, r1}, @ptr={0x70742a85, 0x1, &(0x7f0000000340)=""/33, 0x21, 0x0, 0x1a}, @ptr={0x70742a85, 0x1, &(0x7f0000000380)=""/49, 0x31, 0x0, 0x1d}}, &(0x7f0000000440)={0x0, 0x18, 0x40}}}, @acquire={0x40046305, 0x1}, @register_looper, @reply_sg={0x40486312, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000001480)={@ptr={0x70742a85, 0x1, &(0x7f0000000480)=""/4096, 0x1000, 0x2, 0xc}, @flat=@handle={0x73682a85, 0xb, 0x1}, @flat=@weak_handle={0x77682a85, 0x180b, 0x3}}, &(0x7f0000001500)={0x0, 0x28, 0x40}}, 0x1000}, @reply_sg={0x40486312, {0x3, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x48, 0x18, &(0x7f0000001540)={@flat=@binder={0x73622a85, 0x10a, 0x1}, @flat=@weak_handle={0x77682a85, 0x115, 0x2}, @fd={0x66642a85, 0x0, r0}}, &(0x7f00000015c0)={0x0, 0x18, 0x30}}}, @free_buffer={0x40086303, r2}, @dead_binder_done], 0xc0, 0x0, &(0x7f0000001740)="1b56e665d270c1d1cb5742cedca6205e6cfd5cc17e567985ae53a7a1dfa0a7b3f870eccaa87d90f551bc885d4495bc199245ac33092bb3958cfb744591323a2f93cca39713da1e09152528afb219c492cb1fb9026117d2c53b9b8221548d2f88b19b068c1e56d60cf3e1eb45e67e28d040ebd90068fb35c3cf4d0bdeceb83b493b89f29f4c0c579461300db607002cfc0ee424f2665a3f4e03525f3e0d01d31b0f7b4fd1206f7c75ecd7d8c37054ca13119a22d2eb32a343625abc418157ab7c"}) execveat(r0, &(0x7f0000001840)='./file0\x00', &(0x7f0000001980)=[&(0x7f0000001880)='[{\\\x00', &(0x7f00000018c0)='y\x00', &(0x7f0000001900)='\x00', &(0x7f0000001940)='!\x00'], &(0x7f0000001a00)=[&(0x7f00000019c0)='user.incfs.metadata\x00'], 0x1000) ioctl$BTRFS_IOC_SPACE_INFO(r0, 0xc0109414, &(0x7f0000001a40)={0x535, 0xcbe, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) r3 = dup3(r1, r1, 0x0) sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000009880)={&(0x7f0000009780)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000009840)={&(0x7f00000097c0)={0x54, 0x2, 0x3, 0x3, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x2}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x38}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x47}}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x8, 0x2}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x6}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x20}]}, 0x54}, 0x1, 0x0, 0x0, 0x804}, 0x4080) setxattr$trusted_overlay_redirect(&(0x7f00000098c0)='./file0\x00', &(0x7f0000009900), &(0x7f0000009940)='./file0\x00', 0x8, 0x2) getpeername(r0, &(0x7f0000009980)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast2}}}, &(0x7f0000009a00)=0x80) openat$binderfs(0xffffffffffffff9c, &(0x7f0000009a40)='./binderfs/custom0\x00', 0x516398ac6a17ba70, 0x0) setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000009a80)={0x2, '\x00', 0x2}, 0x18) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000009ac0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000009b00), 0x10c02, 0x0) dup3(r4, r5, 0x0) 03:56:06 executing program 2: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000040)=0x100000000) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0xaec5adb4c10db01f, 0x0) r2 = openat$cgroup(r0, &(0x7f00000000c0)='syz1\x00', 0x200002, 0x0) getsockopt$WPAN_SECURITY_LEVEL(r1, 0x0, 0x2, &(0x7f0000000100), &(0x7f0000000140)=0x4) r3 = syz_open_dev$ptys(0xc, 0x3, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f0000000180)=0x10000) ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) r4 = eventfd2(0x0, 0x0) r5 = signalfd4(r4, &(0x7f00000001c0)={[0x32f]}, 0x8, 0x0) r6 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$EXT4_IOC_MIGRATE(r6, 0x6609) ioctl$BLKIOOPT(0xffffffffffffffff, 0x1279, &(0x7f0000000200)) ioctl$AUTOFS_IOC_CATATONIC(r2, 0x9362, 0x0) getsockopt$SO_BINDTODEVICE(r5, 0x1, 0x19, &(0x7f0000000240), 0x10) r7 = syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), r1) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)={0xd0, r7, 0x300, 0x70bd29, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8}, {0xc, 0x8f, 0x43c}, {0xc, 0x90, 0x101}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}, {0xc}, {0xc, 0x90, 0x3}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x2}, {0xc}, {0xc, 0x90, 0x7}}]}, 0xd0}, 0x1, 0x0, 0x0, 0xc050}, 0x4048854) creat(&(0x7f0000000480)='./file0\x00', 0x1) r8 = openat$autofs(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r8, 0xc0189377, &(0x7f0000000500)={{0x1, 0x1, 0x18, r4, {0x32, 0x7fff}}, './file0\x00'}) [ 81.105754] audit: type=1400 audit(1663300566.075:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 03:56:06 executing program 3: r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r0, 0x2, 0x70bd27, 0x25dfdbff, {{}, {}, {0x14, 0x18, {0x3f, @bearer=@udp='udp:syz1\x00'}}}, ["", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4001}, 0x20000000) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xcc, 0x0, 0x3dd138af79ae6299, 0x70bd2d, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xc}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x4}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x880}, 0x4001) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$FOU_CMD_GET(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, r1, 0x400, 0x70bd2d, 0x25dfdbff, {}, [@FOU_ATTR_PEER_V4={0x8, 0x8, @broadcast}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000020}, 0x20004000) sendmsg$IEEE802154_START_REQ(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x44, 0x0, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0xffff}, @IEEE802154_ATTR_SF_ORD={0x5}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x9}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0x5550}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x11}, @IEEE802154_ATTR_COORD_REALIGN={0x5, 0x1b, 0x91}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x20000010) sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, &(0x7f0000001a40)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001a00)={&(0x7f00000005c0)={0x1410, 0x0, 0x200, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_TESTDATA={0x92, 0x45, "37de4127a03590582b4791029a2b42a707bd9bbf0607966811fa1b10de470fb016aed4b9e4c249a0911b1cf0b164c70040b3ff7dfd527b5b656bc9bc478697d4519deb16f3323d1d93578767afd49dfca8867b7da9b1a76ee8075147f31021159eeef205428f58141983c18a7ed4058e3146da17ab019bd03fd08fbdedfa789b070d4920da79a8ccf19d381c40a2"}, @NL80211_ATTR_TESTDATA={0xd0, 0x45, "ef383a2aded9164f65951dd4e3ae928a4d10be025d56c6f92b0f2b916aeeb1af66e2730fe1576e5be606028206ef613d1db532ca0a141e47719bf42be78afbdae4899c106d4111409a13ddbbaece2128e474b50409f633c0a807f0be4fa44bedc515e4e36b433064ce9f99cba035866a4aa95a90177066938b785b230dbe6a55cda6f94298ace696f06c01c80efbe338c67ad4c322ff2d21659898397098894d0860428e95874741e3c8d42876c49c35c0c35d6410b2d92028730e2c7a66919aafd402206cfd9a5923b34aef"}, @NL80211_ATTR_TESTDATA={0xbf, 0x45, "1cc4f1ce3e6af75ea6eae2b37ba85d124b831cb0886b2d8443f9dc879ce7ad3d9084d266a37ff2822f45c1c161793ed1f3b2f2aabbea25779201f2510cfeb54f0daee639bbe7366bf327f439428f27beaf84b13bcc47f50a872c8c2c9526ebd43ac7dcbb36e6dadd43dbbeee3ee7ef3642b3e64830e16c23709df2e79d1267223ca7c283d19c4c85a0f07d68f472f0d39ddb28db78c13e1816e081e31509a4aeba3b0d2296f3fba027ca186c81db2f5cfe74c256fb30b1c2101bb6"}, @NL80211_ATTR_TESTDATA={0x8f, 0x45, "437a5d202b8a6e7f8cc6e27c796a1f93ea4a4b6f4c621e3d8e4cfbdcf6e1e8729c2e0b3ec52a5cc3ff1c8d6eab96a0bbe89d72dc6a210e02460abc8d32cf402d2e68feff3584655a52ade97488e12a242dbe0ddf1db1070ebd99b76d606ba6b3dd9f38a13acff48483acdb059a3a2999f5f09c23ea068a5681e3add754ab7bee87097a126bbec3733a886e"}, @NL80211_ATTR_TESTDATA={0xf9, 0x45, "b53780aff757819215e63f841f7fd2c90873c54b1cfb99b9726644412887a57a976b7823e053784be8080e1961970234501e647083249e153368b38d4aa24c1a80d8d236326959849f10f34283afd5fa31eed5a4d069aa81ce33927ceb18bd9c927c7d7cf9fd222dba7aa99f9162270888e19e6dcba6edf7a6b19d36b3fa01f9858b9ebb3f67292e5ae80a61ee1f249de17d0b185452dc8c3397e8a10cc6ccdde05e700c65c4286334a3f7b955f130d359030668e27c310f0475115bd8c882c5da4f94efa2862d694d91223a02b5ee462cec2e45b64a407f55230475c1ad344965e67a8503a31dfa474811c55d978da9a8c9bc4b5e"}, @NL80211_ATTR_TESTDATA={0x1004, 0x45, "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"}, @NL80211_ATTR_TESTDATA={0x46, 0x45, "8173a464796a4975c03c64eae255126a0cbb1368297f3da0d8724b3d5eeeed61b851eed20599ae6239b487d0e8daf2619d98a368111e3eeabef57e06f458a577826d"}]}, 0x1410}, 0x1, 0x0, 0x0, 0x4}, 0x8000) sendmsg$NLBL_UNLABEL_C_LIST(0xffffffffffffffff, &(0x7f0000001bc0)={&(0x7f0000001a80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000001b80)={&(0x7f0000001ac0)={0x84, 0x0, 0x100, 0x70bd2c, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_SECCTX={0x2d, 0x7, 'system_u:object_r:devicekit_var_lib_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast1}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @empty}, @NLBL_UNLABEL_A_SECCTX={0x22, 0x7, 'system_u:object_r:hwdata_t:s0\x00'}]}, 0x84}, 0x1, 0x0, 0x0, 0x24000011}, 0x20000080) ioctl$sock_ipv6_tunnel_SIOCGETPRL(0xffffffffffffffff, 0x89f4, &(0x7f0000001cc0)={'syztnl1\x00', &(0x7f0000001c40)={'syztnl1\x00', 0x0, 0x29, 0x2a, 0x80, 0x1ff, 0x40, @local, @mcast2, 0x7, 0x40, 0x4, 0x6}}) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000001d00)={'wg0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(0xffffffffffffffff, &(0x7f0000002000)={&(0x7f0000001c00)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001fc0)={&(0x7f0000001d40)={0x24c, 0x0, 0x2, 0x70bd26, 0x25dfdbfd, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}]}]}, 0x24c}, 0x1, 0x0, 0x0, 0x4002084}, 0x801) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000002080)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r4, &(0x7f0000002140)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002100)={&(0x7f00000020c0)={0x40, 0x0, 0x20, 0x70bd28, 0x25dfdbfe, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_PAN_ID={0x6, 0x6, 0x3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r5}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa3}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x1) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000002180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xac6e}}, './file0\x00'}) sendmsg$TIPC_CMD_SET_LINK_PRI(r6, &(0x7f00000022c0)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000002280)={&(0x7f0000002200)={0x68, r0, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {}, {0x4c, 0x18, {0x7, @link='syz1\x00'}}}, ["", "", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x8000}, 0x80) socket$packet(0x11, 0x3, 0x300) ioctl$AUTOFS_IOC_EXPIRE(r6, 0x810c9365, &(0x7f0000002300)={{0x7, 0x5}, 0x100, './file0\x00'}) r7 = openat$full(0xffffffffffffff9c, &(0x7f0000002440), 0x100, 0x0) sendmsg$NL80211_CMD_TESTMODE(r7, &(0x7f0000002580)={&(0x7f0000002480), 0xc, &(0x7f0000002540)={&(0x7f00000024c0)={0x68, 0x0, 0x0, 0x70bd27, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x9, 0x13}}}}, [@NL80211_ATTR_TESTDATA={0x47, 0x45, "0ad713da8a4509d06b4e1bd3d1b7ab79e70bf9a9b9696befdd413d95c1464eaf26d4b7b60852deaa37041577578342f6a7e34cbf70535ee2134b97aa09d9bd5e289a6b"}]}, 0x68}, 0x1, 0x0, 0x0, 0x4008840}, 0x4004000) 03:56:06 executing program 4: sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) sysfs$3(0x3) 03:56:06 executing program 5: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x3}, 0x0, 0x0, 0x0) keyctl$link(0x8, r0, 0xfffffffffffffff9) r1 = add_key$user(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x1}, &(0x7f0000000100)="62387a035493c699ba09362d1cfba9ad907dd7673c9d361e324a445112f4b6ec3c5338c32668bd3dd2ccaddec315c79564f69878e9a178dbcc76c8d3f6d06fcba0e68500b3ef689afb070a332c6aaac32330790f6cb5b3483fcd3c610419f542d5cdfd0357b0c215065150538a34315a708ad7ac39b7adf378cb1340b2b81cf0c06a0dc94ad3643161b86c686d415fb93822f19850", 0x95, 0xfffffffffffffffb) r2 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x1}, 0x0, 0x0, r0) keyctl$search(0xa, r1, &(0x7f00000001c0)='blacklist\x00', &(0x7f0000000200)={'syz', 0x3}, r2) r3 = request_key(&(0x7f00000002c0)='pkcs7_test\x00', &(0x7f0000000300)={'syz', 0x2}, &(0x7f0000000340)='$:,)%@{\x00', 0xfffffffffffffffa) r4 = add_key$keyring(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff8) add_key$user(&(0x7f0000000380), &(0x7f00000003c0)={'syz', 0x3}, &(0x7f0000000400)="687423841088838836069da5bb4b0e486fc8bd0629bf99aed7dc0c46251f43d9427b680722e0d1ef2bf6a6de4d781d", 0x2f, r4) keyctl$search(0xa, r4, &(0x7f00000004c0)='logon\x00', &(0x7f0000000500)={'syz', 0x3}, r4) request_key(&(0x7f0000000540)='syzkaller\x00', &(0x7f0000000580)={'syz', 0x3}, &(0x7f00000005c0)='pkcs7_test\x00', r3) r5 = add_key$keyring(&(0x7f0000000600), &(0x7f0000000640)={'syz', 0x0}, 0x0, 0x0, 0x0) r6 = request_key(&(0x7f0000000700)='rxrpc_s\x00', &(0x7f0000000740)={'syz', 0x1}, &(0x7f0000000780)='{\x00', r2) keyctl$search(0xa, r2, &(0x7f0000000680)='rxrpc\x00', &(0x7f00000006c0)={'syz', 0x3}, r6) add_key$fscrypt_provisioning(&(0x7f00000007c0), &(0x7f0000000800)={'syz', 0x0}, &(0x7f0000000840)={0x2, 0x0, @auto=[0x1e, 0x1f, 0x36, 0x21, 0x34, 0x24, 0x2f, 0x3b, 0x2b]}, 0x11, r5) add_key(&(0x7f0000000880)='id_resolver\x00', &(0x7f00000008c0)={'syz', 0x2}, &(0x7f0000000900)="6dc3bc2ee1d0d61b011de052ba52b07a019b2d51681ae16a8c8f89eb7e0e208a78f626ba1e29f803c063790d1d01b0f6764b7153f70dfe93f67a18b5a26aa97eaf240e5b2209755cb140537970d5ddb0e994f0439b6d0eba004275d4b855fabda437950439230a877ee3a7008e78b3abb8be6b9f1184f4bcf19dfa1886c6f3ed68dbc754576ff84508a229c685e093f82ad0a1d1a98c68a043c34fba12c133b874feabc0a9", 0xa5, 0xfffffffffffffffc) r7 = add_key$keyring(&(0x7f00000009c0), &(0x7f0000000a00)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffff9) keyctl$search(0xa, r7, &(0x7f0000000a40)='rxrpc_s\x00', &(0x7f0000000a80)={'syz', 0x1}, r4) add_key$keyring(&(0x7f0000000ac0), &(0x7f0000000b00)={'syz', 0x3}, 0x0, 0x0, r6) add_key(&(0x7f0000000b40)='logon\x00', &(0x7f0000000b80)={'syz', 0x0}, &(0x7f0000000bc0)="946a76d7c36433fd2f9e096092f5d3fbe130199c3ca47eb1895a388c98ab979fc25070d716d8ca62a0429d4ef5da", 0x2e, 0xfffffffffffffff9) request_key(&(0x7f0000000c00)='logon\x00', &(0x7f0000000c40)={'syz', 0x2}, &(0x7f0000000c80)='@,,[%[]\x00', 0xfffffffffffffffe) 03:56:06 executing program 6: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/zoneinfo\x00', 0x0, 0x0) r1 = openat(r0, 0xfffffffffffffffc, 0x800, 0x80) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, &(0x7f0000000040)={@id={0x2, 0x0, @a}}) r2 = fcntl$dupfd(r1, 0x406, r0) r3 = memfd_secret(0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f00000000c0)={r4, 0x8001, 0x0, 0xb91}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(r2, 0xc0709411, &(0x7f0000000100)={{0x0, 0x80000001, 0x40, 0x2, 0xa88, 0x4558, 0x100000000, 0x4, 0x7fffffff, 0x1, 0x4, 0x1, 0x1, 0x5a9, 0x2}, 0x28, [0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0\x00'}) getpeername$packet(r6, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000240)=0x14) r8 = openat$cgroup_netprio_ifpriomap(r5, &(0x7f00000030c0), 0x2, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000003100)='./file0\x00', &(0x7f0000003140)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x400) mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000002c0), 0x2000000, &(0x7f00000031c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@version_u}], [{@fowner_eq}, {@uid_gt}, {@smackfsroot={'smackfsroot', 0x3d, '\x00'}}, {@uid_lt={'uid<', r9}}, {@smackfsdef={'smackfsdef', 0x3d, ',#{\\-\f'}}, {@subj_role}]}}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f00000032c0)={{0x1, 0x1, 0x18, r8, {0xff}}, './file0\x00'}) r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000003340), r2) sendmsg$ETHTOOL_MSG_RINGS_SET(r10, &(0x7f0000003400)={&(0x7f0000003300)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000033c0)={&(0x7f0000003380)={0x24, r11, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x3ff}, @ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x80000000}]}, 0x24}, 0x1, 0x0, 0x0, 0x4800}, 0x40048880) r12 = socket$inet_udplite(0x2, 0x2, 0x88) fremovexattr(r12, &(0x7f0000003440)=@known='user.incfs.size\x00') ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r10, 0xc018937a, &(0x7f0000003480)={{0x1, 0x1, 0x18, r12, {0xff}}, './file0\x00'}) sendmsg$ETHTOOL_MSG_PAUSE_GET(r13, &(0x7f00000035c0)={&(0x7f00000034c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000003580)={&(0x7f0000003540)={0x34, 0x0, 0xdc7bb67af3c0d307, 0x70bd2b, 0x25dfdbfe, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20008000}, 0x20048081) 03:56:06 executing program 7: clock_gettime(0x0, &(0x7f0000000000)) clock_gettime(0x7, &(0x7f0000000040)) clock_gettime(0x5, &(0x7f0000000080)) clock_gettime(0x1, &(0x7f00000000c0)) clock_gettime(0x6, &(0x7f0000000100)) clock_gettime(0x7, &(0x7f0000000140)) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) futex(&(0x7f0000000180)=0x2, 0xb, 0x2, &(0x7f0000000200)={r0, r1+10000000}, &(0x7f0000000240)=0x2, 0x2) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x10001, 0x140) clock_gettime(0x0, &(0x7f00000002c0)) clock_gettime(0x0, &(0x7f0000000340)={0x0, 0x0}) futex(&(0x7f0000000300)=0x1, 0x0, 0x1, &(0x7f0000000380)={r3, r4+10000000}, &(0x7f00000003c0)=0x2, 0x1) syz_io_uring_setup(0xd58, &(0x7f0000000400)={0x0, 0x2bf, 0x2, 0x0, 0x1c5}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000480), &(0x7f00000004c0)=0x0) syz_io_uring_submit(0x0, r5, &(0x7f00000005c0)=@IORING_OP_SEND={0x1a, 0x5, 0x0, r2, 0x0, &(0x7f0000000500)="1999aa7393f17da68c7b1e931485ab42938dad3b68ed3218a6ad1ca572f4721496f2f09008cf86964208f6e878b8db330bd64f058ab2bd5a6d56e6d7915f7760b3e455aba370b989f1343487776a0257a8095aa70becde3fda952b472fc47cf9260f064bbcfeb7494ca5deef8474d26c399b128e562cea1b74e97a33cf4ee6f33da4fea1ef6e", 0x86, 0x8801, 0x1}, 0xffff) futex(&(0x7f0000000600), 0xa, 0x2, &(0x7f0000000640)={0x0, 0x3938700}, &(0x7f0000000680), 0x1) clock_gettime(0x0, &(0x7f00000006c0)) clock_gettime(0x4, &(0x7f0000000700)) r6 = accept4$bt_l2cap(r2, &(0x7f0000000740), &(0x7f0000000780)=0xe, 0x80000) fremovexattr(r6, &(0x7f00000007c0)=@known='com.apple.system.Security\x00') syz_io_uring_submit(0x0, r5, &(0x7f0000000840)=@IORING_OP_OPENAT={0x12, 0x1, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000800)='./file0\x00', 0x8, 0x709000, 0x23456}, 0x1) [ 82.542205] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 82.543855] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.546617] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 82.547671] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.549702] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 82.550730] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.552026] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.556036] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.557080] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.560322] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.561801] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 82.562804] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 82.565334] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.590463] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 82.592585] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 82.593832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.595666] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 82.597504] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 82.598941] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 82.600390] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 82.601517] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 82.602098] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.602587] Bluetooth: hci2: HCI_REQ-0x0c1a [ 82.603517] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.603694] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 82.605397] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 82.606909] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 82.607750] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.610398] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 82.611124] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 82.611991] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.612659] Bluetooth: hci1: HCI_REQ-0x0c1a [ 82.613942] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.623659] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.623863] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 82.624237] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 82.626948] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 82.627694] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 82.629292] Bluetooth: hci0: HCI_REQ-0x0c1a [ 82.633163] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 82.635240] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 82.636518] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 82.637117] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.637120] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 82.642480] Bluetooth: hci6: HCI_REQ-0x0c1a [ 82.644132] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 82.647218] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 82.653300] Bluetooth: hci5: HCI_REQ-0x0c1a [ 82.657931] Bluetooth: hci3: HCI_REQ-0x0c1a [ 82.670397] Bluetooth: hci4: HCI_REQ-0x0c1a [ 82.678881] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 82.681706] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 82.706409] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 82.709104] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 82.716840] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 82.726355] Bluetooth: hci7: HCI_REQ-0x0c1a [ 84.679104] Bluetooth: hci0: command 0x0409 tx timeout [ 84.679105] Bluetooth: hci4: command 0x0409 tx timeout [ 84.679839] Bluetooth: hci3: command 0x0409 tx timeout [ 84.680762] Bluetooth: hci5: command 0x0409 tx timeout [ 84.681696] Bluetooth: hci6: command 0x0409 tx timeout [ 84.682660] Bluetooth: hci2: command 0x0409 tx timeout [ 84.683123] Bluetooth: hci1: command 0x0409 tx timeout [ 84.742276] Bluetooth: hci7: command 0x0409 tx timeout [ 86.726313] Bluetooth: hci1: command 0x041b tx timeout [ 86.726820] Bluetooth: hci2: command 0x041b tx timeout [ 86.727295] Bluetooth: hci6: command 0x041b tx timeout [ 86.727543] Bluetooth: hci0: command 0x041b tx timeout [ 86.727778] Bluetooth: hci5: command 0x041b tx timeout [ 86.728171] Bluetooth: hci4: command 0x041b tx timeout [ 86.728975] Bluetooth: hci3: command 0x041b tx timeout [ 86.790294] Bluetooth: hci7: command 0x041b tx timeout [ 88.774249] Bluetooth: hci3: command 0x040f tx timeout [ 88.774473] Bluetooth: hci5: command 0x040f tx timeout [ 88.775257] Bluetooth: hci0: command 0x040f tx timeout [ 88.775608] Bluetooth: hci4: command 0x040f tx timeout [ 88.775649] Bluetooth: hci6: command 0x040f tx timeout [ 88.778851] Bluetooth: hci2: command 0x040f tx timeout [ 88.779358] Bluetooth: hci1: command 0x040f tx timeout [ 88.838314] Bluetooth: hci7: command 0x040f tx timeout [ 90.822261] Bluetooth: hci1: command 0x0419 tx timeout [ 90.822770] Bluetooth: hci2: command 0x0419 tx timeout [ 90.823372] Bluetooth: hci6: command 0x0419 tx timeout [ 90.824340] Bluetooth: hci4: command 0x0419 tx timeout [ 90.824773] Bluetooth: hci0: command 0x0419 tx timeout [ 90.825160] Bluetooth: hci5: command 0x0419 tx timeout [ 90.825847] Bluetooth: hci3: command 0x0419 tx timeout [ 90.886329] Bluetooth: hci7: command 0x0419 tx timeout 03:56:58 executing program 2: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x20000, 0x8, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736698fa1b00080801000240004000f801002000400000000000000000008000"/64, 0x40}, {&(0x7f0000010100)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x800}, {&(0x7f0000010200)="f8ffff00f0ffffffffffffff00"/32, 0x20, 0x1000}, {&(0x7f0000010300)="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", 0x120, 0x1800}, {&(0x7f0000010500)="2e20202020202020202020100010e770325132510000e77032510300000000002e2e202020202020202020100010e770325132510000e770325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c4530202020202020200010e770325132510000e770325104001a040000", 0x80, 0x6000}, {&(0x7f0000010600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0xa000}, {&(0x7f0000010b00)='syzkallers\x00'/32, 0x20, 0xe000}, {&(0x7f0000010c00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x16000}], 0x0, &(0x7f0000010d00)=ANY=[@ANYBLOB="06"]) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) utimensat(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={{r1, r2/1000+10000}, {r3, r4/1000+10000}}, 0x0) [ 133.540499] loop2: detected capacity change from 0 to 352 [ 133.555949] FAT-fs (loop2): Unrecognized mount option "" or missing value 03:56:58 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101280, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f00000000c0)) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000080)={r3, 0x1, 0x6, @remote}, 0x10) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={r3, 0x3, 0x6, @link_local}, 0x10) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) close_range(r0, r0, 0x0) [ 133.677854] device syz_tun entered promiscuous mode [ 133.726485] device syz_tun left promiscuous mode [ 133.737425] device syz_tun entered promiscuous mode [ 133.750858] device syz_tun left promiscuous mode 03:56:58 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101280, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f00000000c0)) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000080)={r3, 0x1, 0x6, @remote}, 0x10) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={r3, 0x3, 0x6, @link_local}, 0x10) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) close_range(r0, r0, 0x0) [ 133.896643] device syz_tun entered promiscuous mode [ 133.950941] device syz_tun left promiscuous mode 03:56:58 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101280, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f00000000c0)) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000080)={r3, 0x1, 0x6, @remote}, 0x10) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={r3, 0x3, 0x6, @link_local}, 0x10) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) close_range(r0, r0, 0x0) [ 134.068012] device syz_tun entered promiscuous mode [ 134.122837] device syz_tun left promiscuous mode 03:56:59 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101280, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f00000000c0)) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000080)={r3, 0x1, 0x6, @remote}, 0x10) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={r3, 0x3, 0x6, @link_local}, 0x10) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) close_range(r0, r0, 0x0) [ 134.260539] device syz_tun entered promiscuous mode [ 134.309141] device syz_tun left promiscuous mode 03:56:59 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'lo\x00'}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000100)=0x0) r1 = getpgrp(0x0) setpriority(0x1, r1, 0x0) perf_event_open(&(0x7f0000001240)={0x3, 0x80, 0xbf, 0x0, 0x3, 0x5, 0x0, 0x6, 0x8000a, 0xb, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x8c68, 0x2, @perf_bp={&(0x7f0000000040), 0x1}, 0x0, 0x0, 0x3f, 0x2, 0x0, 0x800000, 0x3, 0x0, 0x5, 0x0, 0x1}, r1, 0xa, 0xffffffffffffffff, 0x1) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0xc0021, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x5}, 0x18e8, 0x40, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x1) r2 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$SCSI_IOCTL_DOORLOCK(r2, 0x5380) ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0) ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2, r0}) r3 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x1, 0xd6c2}) r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x4042, 0x0) pwrite64(r4, &(0x7f0000000000)='y', 0xfffffe5f, 0x8040000) ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f00000001c0)={'\x00', 0x14c5, 0x2, 0x80, 0x3, 0x9}) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000340)={'\x00', 0x80, 0x3f, 0x7fffffff, 0x0, 0x2}) syz_open_procfs(0x0, 0x0) 03:56:59 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101280, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f00000000c0)) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000080)={r3, 0x1, 0x6, @remote}, 0x10) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={r3, 0x3, 0x6, @link_local}, 0x10) close_range(r0, r0, 0x0) [ 134.424587] audit: type=1400 audit(1663300619.393:7): avc: denied { open } for pid=3848 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 134.426058] audit: type=1400 audit(1663300619.393:8): avc: denied { kernel } for pid=3848 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 134.444389] ------------[ cut here ]------------ [ 134.444410] [ 134.444413] ====================================================== [ 134.444416] WARNING: possible circular locking dependency detected [ 134.444421] 6.0.0-rc5-next-20220915 #1 Not tainted [ 134.444427] ------------------------------------------------------ [ 134.444430] syz-executor.6/3850 is trying to acquire lock: [ 134.444436] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 134.444475] [ 134.444475] but task is already holding lock: [ 134.444478] ffff88800e185420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 134.444506] [ 134.444506] which lock already depends on the new lock. [ 134.444506] [ 134.444510] [ 134.444510] the existing dependency chain (in reverse order) is: [ 134.444513] [ 134.444513] -> #3 (&ctx->lock){....}-{2:2}: [ 134.444527] _raw_spin_lock+0x2a/0x40 [ 134.444546] __perf_event_task_sched_out+0x53b/0x18d0 [ 134.444558] __schedule+0xedd/0x2470 [ 134.444568] schedule+0xda/0x1b0 [ 134.444579] exit_to_user_mode_prepare+0x114/0x1a0 [ 134.444599] syscall_exit_to_user_mode+0x19/0x40 [ 134.444619] do_syscall_64+0x48/0x90 [ 134.444633] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.444651] [ 134.444651] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 134.444665] _raw_spin_lock_nested+0x30/0x40 [ 134.444681] raw_spin_rq_lock_nested+0x1e/0x30 [ 134.444694] task_fork_fair+0x63/0x4d0 [ 134.444712] sched_cgroup_fork+0x3d0/0x540 [ 134.444726] copy_process+0x4183/0x6e20 [ 134.444737] kernel_clone+0xe7/0x890 [ 134.444746] user_mode_thread+0xad/0xf0 [ 134.444756] rest_init+0x24/0x250 [ 134.444773] arch_call_rest_init+0xf/0x14 [ 134.444786] start_kernel+0x4c1/0x4e6 [ 134.444796] secondary_startup_64_no_verify+0xe0/0xeb [ 134.444811] [ 134.444811] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 134.444824] _raw_spin_lock_irqsave+0x39/0x60 [ 134.444840] try_to_wake_up+0xab/0x1920 [ 134.444853] up+0x75/0xb0 [ 134.444865] __up_console_sem+0x6e/0x80 [ 134.444881] console_unlock+0x46a/0x590 [ 134.444897] vt_ioctl+0x2822/0x2ca0 [ 134.444911] tty_ioctl+0x7c4/0x1700 [ 134.444923] __x64_sys_ioctl+0x19a/0x210 [ 134.444939] do_syscall_64+0x3b/0x90 [ 134.444952] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.444970] [ 134.444970] -> #0 ((console_sem).lock){....}-{2:2}: [ 134.444984] __lock_acquire+0x2a02/0x5e70 [ 134.445001] lock_acquire+0x1a2/0x530 [ 134.445017] _raw_spin_lock_irqsave+0x39/0x60 [ 134.445032] down_trylock+0xe/0x70 [ 134.445045] __down_trylock_console_sem+0x3b/0xd0 [ 134.445061] vprintk_emit+0x16b/0x560 [ 134.445078] vprintk+0x84/0xa0 [ 134.445094] _printk+0xba/0xf1 [ 134.445113] report_bug.cold+0x72/0xab [ 134.445126] handle_bug+0x3c/0x70 [ 134.445139] exc_invalid_op+0x14/0x50 [ 134.445153] asm_exc_invalid_op+0x16/0x20 [ 134.445170] group_sched_out.part.0+0x2c7/0x460 [ 134.445181] ctx_sched_out+0x8f1/0xc10 [ 134.445190] __perf_event_task_sched_out+0x6d0/0x18d0 [ 134.445202] __schedule+0xedd/0x2470 [ 134.445213] schedule+0xda/0x1b0 [ 134.445222] exit_to_user_mode_prepare+0x114/0x1a0 [ 134.445242] syscall_exit_to_user_mode+0x19/0x40 [ 134.445260] do_syscall_64+0x48/0x90 [ 134.445273] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.445291] [ 134.445291] other info that might help us debug this: [ 134.445291] [ 134.445294] Chain exists of: [ 134.445294] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 134.445294] [ 134.445309] Possible unsafe locking scenario: [ 134.445309] [ 134.445311] CPU0 CPU1 [ 134.445314] ---- ---- [ 134.445316] lock(&ctx->lock); [ 134.445322] lock(&rq->__lock); [ 134.445328] lock(&ctx->lock); [ 134.445335] lock((console_sem).lock); [ 134.445341] [ 134.445341] *** DEADLOCK *** [ 134.445341] [ 134.445343] 2 locks held by syz-executor.6/3850: [ 134.445350] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 134.445375] #1: ffff88800e185420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 134.445403] [ 134.445403] stack backtrace: [ 134.445406] CPU: 1 PID: 3850 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220915 #1 [ 134.445419] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 134.445427] Call Trace: [ 134.445431] [ 134.445434] dump_stack_lvl+0x8b/0xb3 [ 134.445449] check_noncircular+0x263/0x2e0 [ 134.445466] ? format_decode+0x26c/0xb50 [ 134.445483] ? print_circular_bug+0x450/0x450 [ 134.445500] ? enable_ptr_key_workfn+0x20/0x20 [ 134.445515] ? perf_swevent_event+0x6c/0x550 [ 134.445535] ? format_decode+0x26c/0xb50 [ 134.445551] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 134.445569] __lock_acquire+0x2a02/0x5e70 [ 134.445591] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 134.445614] lock_acquire+0x1a2/0x530 [ 134.445631] ? down_trylock+0xe/0x70 [ 134.445645] ? rcu_read_unlock+0x40/0x40 [ 134.445667] ? vprintk+0x84/0xa0 [ 134.445685] _raw_spin_lock_irqsave+0x39/0x60 [ 134.445701] ? down_trylock+0xe/0x70 [ 134.445715] down_trylock+0xe/0x70 [ 134.445728] ? vprintk+0x84/0xa0 [ 134.445746] __down_trylock_console_sem+0x3b/0xd0 [ 134.445763] vprintk_emit+0x16b/0x560 [ 134.445783] vprintk+0x84/0xa0 [ 134.445801] _printk+0xba/0xf1 [ 134.445819] ? record_print_text.cold+0x16/0x16 [ 134.445842] ? report_bug.cold+0x66/0xab [ 134.445857] ? group_sched_out.part.0+0x2c7/0x460 [ 134.445868] report_bug.cold+0x72/0xab [ 134.445884] handle_bug+0x3c/0x70 [ 134.445898] exc_invalid_op+0x14/0x50 [ 134.445913] asm_exc_invalid_op+0x16/0x20 [ 134.445931] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 134.445945] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 134.445956] RSP: 0018:ffff888040237c48 EFLAGS: 00010006 [ 134.445965] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 134.445973] RDX: ffff88801ddeb580 RSI: ffffffff81566027 RDI: 0000000000000005 [ 134.445981] RBP: ffff888040248000 R08: 0000000000000005 R09: 0000000000000001 [ 134.445988] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800e185400 [ 134.445996] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 134.446007] ? group_sched_out.part.0+0x2c7/0x460 [ 134.446020] ? group_sched_out.part.0+0x2c7/0x460 [ 134.446033] ctx_sched_out+0x8f1/0xc10 [ 134.446045] __perf_event_task_sched_out+0x6d0/0x18d0 [ 134.446061] ? lock_is_held_type+0xd7/0x130 [ 134.446080] ? __perf_cgroup_move+0x160/0x160 [ 134.446092] ? set_next_entity+0x304/0x550 [ 134.446110] ? update_curr+0x267/0x740 [ 134.446129] ? lock_is_held_type+0xd7/0x130 [ 134.446148] __schedule+0xedd/0x2470 [ 134.446162] ? io_schedule_timeout+0x150/0x150 [ 134.446174] ? trace_rcu_dyntick+0x1a7/0x250 [ 134.446196] schedule+0xda/0x1b0 [ 134.446208] exit_to_user_mode_prepare+0x114/0x1a0 [ 134.446229] syscall_exit_to_user_mode+0x19/0x40 [ 134.446247] do_syscall_64+0x48/0x90 [ 134.446262] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.446284] RIP: 0033:0x7efd5d88fb19 [ 134.446292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 134.446303] RSP: 002b:00007efd5ae05218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 134.446314] RAX: 0000000000000001 RBX: 00007efd5d9a2f68 RCX: 00007efd5d88fb19 [ 134.446322] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efd5d9a2f6c [ 134.446329] RBP: 00007efd5d9a2f60 R08: 000000000000000e R09: 0000000000000000 [ 134.446336] R10: 0000000000000003 R11: 0000000000000246 R12: 00007efd5d9a2f6c [ 134.446344] R13: 00007ffefce41f1f R14: 00007efd5ae05300 R15: 0000000000022000 [ 134.446356] [ 134.502133] WARNING: CPU: 1 PID: 3850 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 134.502811] Modules linked in: [ 134.503054] CPU: 1 PID: 3850 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220915 #1 [ 134.503647] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 134.504482] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 134.504884] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 134.506232] RSP: 0018:ffff888040237c48 EFLAGS: 00010006 [ 134.506629] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 134.507163] RDX: ffff88801ddeb580 RSI: ffffffff81566027 RDI: 0000000000000005 [ 134.507704] RBP: ffff888040248000 R08: 0000000000000005 R09: 0000000000000001 [ 134.508235] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800e185400 [ 134.508765] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 134.509292] FS: 00007efd5ae05700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 134.509886] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 134.510328] CR2: 00007ff3446f06f4 CR3: 000000003ef46000 CR4: 0000000000350ee0 [ 134.510864] Call Trace: [ 134.511061] [ 134.511238] ctx_sched_out+0x8f1/0xc10 [ 134.511536] __perf_event_task_sched_out+0x6d0/0x18d0 [ 134.511928] ? lock_is_held_type+0xd7/0x130 [ 134.512262] ? __perf_cgroup_move+0x160/0x160 [ 134.512603] ? set_next_entity+0x304/0x550 [ 134.512932] ? update_curr+0x267/0x740 [ 134.513238] ? lock_is_held_type+0xd7/0x130 [ 134.513571] __schedule+0xedd/0x2470 [ 134.513860] ? io_schedule_timeout+0x150/0x150 [ 134.514208] ? trace_rcu_dyntick+0x1a7/0x250 [ 134.514555] schedule+0xda/0x1b0 [ 134.514809] exit_to_user_mode_prepare+0x114/0x1a0 [ 134.515185] syscall_exit_to_user_mode+0x19/0x40 [ 134.515555] do_syscall_64+0x48/0x90 [ 134.515855] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 134.516256] RIP: 0033:0x7efd5d88fb19 [ 134.516534] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 134.517884] RSP: 002b:00007efd5ae05218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 134.518455] RAX: 0000000000000001 RBX: 00007efd5d9a2f68 RCX: 00007efd5d88fb19 [ 134.518991] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007efd5d9a2f6c [ 134.519520] RBP: 00007efd5d9a2f60 R08: 000000000000000e R09: 0000000000000000 [ 134.520046] R10: 0000000000000003 R11: 0000000000000246 R12: 00007efd5d9a2f6c [ 134.520602] R13: 00007ffefce41f1f R14: 00007efd5ae05300 R15: 0000000000022000 [ 134.521140] [ 134.521320] irq event stamp: 668 [ 134.521574] hardirqs last enabled at (667): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 134.522272] hardirqs last disabled at (668): [] __schedule+0x1225/0x2470 [ 134.522894] softirqs last enabled at (526): [] __irq_exit_rcu+0x11b/0x180 [ 134.523540] softirqs last disabled at (517): [] __irq_exit_rcu+0x11b/0x180 [ 134.524192] ---[ end trace 0000000000000000 ]--- [ 134.534231] device syz_tun entered promiscuous mode [ 134.538639] device syz_tun left promiscuous mode 03:56:59 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101280, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$TUNSETIFINDEX(r0, 0x400454da, &(0x7f00000000c0)) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000080)={r3, 0x1, 0x6, @remote}, 0x10) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000000)={r3, 0x3, 0x6, @link_local}, 0x10) close_range(r0, r0, 0x0) [ 134.609799] device syz_tun entered promiscuous mode [ 134.610821] device syz_tun left promiscuous mode [ 134.889197] hrtimer: interrupt took 19306 ns [ 134.910593] blktrace: Concurrent blktraces are not allowed on sg0 [ 135.336814] blktrace: Concurrent blktraces are not allowed on sg0 [ 135.342246] blktrace: Concurrent blktraces are not allowed on sg0 VM DIAGNOSIS: 03:56:59 Registers: info registers vcpu 0 RAX=2abd6cbddb6b7600 RBX=1ffff1100187beba RCX=0000000000000002 RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff85406fa0 RBP=0000000000000000 RSP=ffff88800c3df5c0 R8 =0000000000000000 R9 =0000000000000000 R10=0000000080000000 R11=000000000003603d R12=0000000000000002 R13=0000000000000000 R14=ffffffff85406fa0 R15=0000000000000000 RIP=ffffffff812a3fa1 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fec55a2e368 CR3=0000000018020000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 2e6f747079726362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00312e312e6f732e 6f74707972636269 YMM03=0000000000000000 0000000000000000 6c2f756e672d7875 6e696c2d34365f36 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000030 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b29f1 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff888040237698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000030 R11=0000000000000001 R12=0000000000000030 R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b29e0 RIP=ffffffff822b2a49 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007efd5ae05700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff3446f06f4 CR3=000000003ef46000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007efd5d9767c0 00007efd5d9767c8 YMM02=0000000000000000 0000000000000000 00007efd5d9767e0 00007efd5d9767c0 YMM03=0000000000000000 0000000000000000 00007efd5d9767c8 00007efd5d9767c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000