syzkaller login: [ 42.846588] sshd (243) used greatest stack depth: 24088 bytes left Warning: Permanently added '[localhost]:8113' (ECDSA) to the list of known hosts. 2022/09/16 07:26:10 fuzzer started 2022/09/16 07:26:10 dialing manager at localhost:36559 [ 44.931679] cgroup: Unknown subsys name 'net' [ 45.063205] cgroup: Unknown subsys name 'rlimit' 2022/09/16 07:26:23 syscalls: 2215 2022/09/16 07:26:23 code coverage: enabled 2022/09/16 07:26:23 comparison tracing: enabled 2022/09/16 07:26:23 extra coverage: enabled 2022/09/16 07:26:23 setuid sandbox: enabled 2022/09/16 07:26:23 namespace sandbox: enabled 2022/09/16 07:26:23 Android sandbox: enabled 2022/09/16 07:26:23 fault injection: enabled 2022/09/16 07:26:23 leak checking: enabled 2022/09/16 07:26:23 net packet injection: enabled 2022/09/16 07:26:23 net device setup: enabled 2022/09/16 07:26:23 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/16 07:26:23 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/16 07:26:23 USB emulation: enabled 2022/09/16 07:26:23 hci packet injection: enabled 2022/09/16 07:26:23 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220915) 2022/09/16 07:26:23 802.15.4 emulation: enabled 2022/09/16 07:26:23 fetching corpus: 50, signal 28830/30613 (executing program) 2022/09/16 07:26:23 fetching corpus: 100, signal 43309/46630 (executing program) 2022/09/16 07:26:24 fetching corpus: 150, signal 49607/54439 (executing program) 2022/09/16 07:26:24 fetching corpus: 200, signal 56296/62573 (executing program) 2022/09/16 07:26:24 fetching corpus: 250, signal 66530/74019 (executing program) 2022/09/16 07:26:24 fetching corpus: 300, signal 70641/79432 (executing program) 2022/09/16 07:26:24 fetching corpus: 350, signal 75829/85850 (executing program) 2022/09/16 07:26:24 fetching corpus: 400, signal 79210/90434 (executing program) 2022/09/16 07:26:24 fetching corpus: 450, signal 82474/94879 (executing program) 2022/09/16 07:26:24 fetching corpus: 500, signal 85312/98907 (executing program) 2022/09/16 07:26:25 fetching corpus: 550, signal 89826/104476 (executing program) 2022/09/16 07:26:25 fetching corpus: 600, signal 94607/110115 (executing program) 2022/09/16 07:26:25 fetching corpus: 650, signal 98259/114700 (executing program) 2022/09/16 07:26:25 fetching corpus: 700, signal 102813/120055 (executing program) 2022/09/16 07:26:25 fetching corpus: 750, signal 106331/124426 (executing program) 2022/09/16 07:26:25 fetching corpus: 800, signal 109980/128871 (executing program) 2022/09/16 07:26:25 fetching corpus: 850, signal 112777/132466 (executing program) 2022/09/16 07:26:26 fetching corpus: 900, signal 115758/136215 (executing program) 2022/09/16 07:26:26 fetching corpus: 950, signal 119680/140761 (executing program) 2022/09/16 07:26:26 fetching corpus: 1000, signal 121180/143122 (executing program) 2022/09/16 07:26:26 fetching corpus: 1050, signal 123165/145807 (executing program) 2022/09/16 07:26:26 fetching corpus: 1100, signal 125427/148748 (executing program) 2022/09/16 07:26:26 fetching corpus: 1150, signal 126753/150898 (executing program) 2022/09/16 07:26:26 fetching corpus: 1200, signal 127956/152944 (executing program) 2022/09/16 07:26:26 fetching corpus: 1250, signal 129157/154986 (executing program) 2022/09/16 07:26:27 fetching corpus: 1300, signal 131667/158034 (executing program) 2022/09/16 07:26:27 fetching corpus: 1350, signal 133410/160438 (executing program) 2022/09/16 07:26:27 fetching corpus: 1400, signal 135343/162963 (executing program) 2022/09/16 07:26:27 fetching corpus: 1450, signal 137965/166028 (executing program) 2022/09/16 07:26:27 fetching corpus: 1500, signal 140009/168595 (executing program) 2022/09/16 07:26:27 fetching corpus: 1550, signal 141812/170963 (executing program) 2022/09/16 07:26:27 fetching corpus: 1600, signal 143799/173390 (executing program) 2022/09/16 07:26:28 fetching corpus: 1650, signal 145017/175190 (executing program) 2022/09/16 07:26:28 fetching corpus: 1700, signal 146724/177353 (executing program) 2022/09/16 07:26:28 fetching corpus: 1750, signal 148023/179217 (executing program) 2022/09/16 07:26:28 fetching corpus: 1800, signal 148901/180739 (executing program) 2022/09/16 07:26:28 fetching corpus: 1850, signal 150519/182855 (executing program) 2022/09/16 07:26:28 fetching corpus: 1900, signal 152225/184960 (executing program) 2022/09/16 07:26:28 fetching corpus: 1950, signal 153142/186496 (executing program) 2022/09/16 07:26:29 fetching corpus: 2000, signal 154366/188162 (executing program) 2022/09/16 07:26:29 fetching corpus: 2050, signal 156243/190379 (executing program) 2022/09/16 07:26:29 fetching corpus: 2100, signal 158317/192754 (executing program) 2022/09/16 07:26:29 fetching corpus: 2150, signal 159297/194209 (executing program) 2022/09/16 07:26:29 fetching corpus: 2200, signal 161204/196341 (executing program) 2022/09/16 07:26:29 fetching corpus: 2250, signal 162297/197856 (executing program) 2022/09/16 07:26:29 fetching corpus: 2300, signal 163342/199343 (executing program) 2022/09/16 07:26:29 fetching corpus: 2350, signal 164418/200832 (executing program) 2022/09/16 07:26:30 fetching corpus: 2400, signal 165591/202392 (executing program) 2022/09/16 07:26:30 fetching corpus: 2450, signal 166860/204001 (executing program) 2022/09/16 07:26:30 fetching corpus: 2500, signal 167778/205304 (executing program) 2022/09/16 07:26:30 fetching corpus: 2550, signal 169628/207197 (executing program) 2022/09/16 07:26:30 fetching corpus: 2600, signal 171245/208927 (executing program) 2022/09/16 07:26:30 fetching corpus: 2650, signal 172238/210236 (executing program) 2022/09/16 07:26:30 fetching corpus: 2700, signal 172774/211266 (executing program) 2022/09/16 07:26:31 fetching corpus: 2750, signal 174061/212686 (executing program) 2022/09/16 07:26:31 fetching corpus: 2800, signal 175800/214403 (executing program) 2022/09/16 07:26:31 fetching corpus: 2850, signal 177048/215830 (executing program) 2022/09/16 07:26:31 fetching corpus: 2900, signal 178252/217226 (executing program) 2022/09/16 07:26:31 fetching corpus: 2950, signal 180008/218815 (executing program) 2022/09/16 07:26:31 fetching corpus: 3000, signal 180881/219940 (executing program) 2022/09/16 07:26:31 fetching corpus: 3050, signal 181564/220967 (executing program) 2022/09/16 07:26:32 fetching corpus: 3100, signal 182227/221921 (executing program) 2022/09/16 07:26:32 fetching corpus: 3150, signal 183132/223064 (executing program) 2022/09/16 07:26:32 fetching corpus: 3200, signal 184043/224218 (executing program) 2022/09/16 07:26:32 fetching corpus: 3250, signal 184839/225274 (executing program) 2022/09/16 07:26:32 fetching corpus: 3300, signal 185746/226388 (executing program) 2022/09/16 07:26:32 fetching corpus: 3350, signal 186450/227376 (executing program) 2022/09/16 07:26:32 fetching corpus: 3400, signal 187129/228314 (executing program) 2022/09/16 07:26:33 fetching corpus: 3450, signal 187939/229298 (executing program) 2022/09/16 07:26:33 fetching corpus: 3500, signal 188791/230296 (executing program) 2022/09/16 07:26:33 fetching corpus: 3550, signal 189786/231460 (executing program) 2022/09/16 07:26:33 fetching corpus: 3600, signal 190341/232346 (executing program) 2022/09/16 07:26:33 fetching corpus: 3650, signal 191679/233481 (executing program) 2022/09/16 07:26:33 fetching corpus: 3700, signal 192327/234355 (executing program) 2022/09/16 07:26:33 fetching corpus: 3750, signal 193055/235242 (executing program) 2022/09/16 07:26:33 fetching corpus: 3800, signal 193965/236235 (executing program) 2022/09/16 07:26:34 fetching corpus: 3850, signal 194979/237302 (executing program) 2022/09/16 07:26:34 fetching corpus: 3900, signal 195713/238209 (executing program) 2022/09/16 07:26:34 fetching corpus: 3950, signal 196341/238996 (executing program) 2022/09/16 07:26:34 fetching corpus: 4000, signal 197042/239764 (executing program) 2022/09/16 07:26:34 fetching corpus: 4050, signal 198379/240958 (executing program) 2022/09/16 07:26:34 fetching corpus: 4100, signal 199342/241855 (executing program) 2022/09/16 07:26:34 fetching corpus: 4150, signal 200128/242696 (executing program) 2022/09/16 07:26:34 fetching corpus: 4200, signal 200907/243519 (executing program) 2022/09/16 07:26:35 fetching corpus: 4250, signal 201707/244375 (executing program) 2022/09/16 07:26:35 fetching corpus: 4300, signal 202525/245178 (executing program) 2022/09/16 07:26:35 fetching corpus: 4350, signal 203070/245838 (executing program) 2022/09/16 07:26:35 fetching corpus: 4400, signal 203929/246643 (executing program) 2022/09/16 07:26:35 fetching corpus: 4450, signal 205256/247580 (executing program) 2022/09/16 07:26:35 fetching corpus: 4500, signal 205977/248304 (executing program) 2022/09/16 07:26:35 fetching corpus: 4550, signal 207389/249406 (executing program) 2022/09/16 07:26:35 fetching corpus: 4600, signal 208118/250109 (executing program) 2022/09/16 07:26:36 fetching corpus: 4650, signal 208983/250833 (executing program) 2022/09/16 07:26:36 fetching corpus: 4700, signal 209974/251582 (executing program) 2022/09/16 07:26:36 fetching corpus: 4750, signal 210632/252292 (executing program) 2022/09/16 07:26:36 fetching corpus: 4800, signal 211361/252911 (executing program) 2022/09/16 07:26:36 fetching corpus: 4850, signal 212184/253559 (executing program) 2022/09/16 07:26:36 fetching corpus: 4900, signal 213137/254219 (executing program) 2022/09/16 07:26:36 fetching corpus: 4950, signal 213896/254856 (executing program) 2022/09/16 07:26:37 fetching corpus: 5000, signal 214661/255493 (executing program) 2022/09/16 07:26:37 fetching corpus: 5050, signal 215389/256080 (executing program) 2022/09/16 07:26:37 fetching corpus: 5100, signal 216231/256684 (executing program) 2022/09/16 07:26:37 fetching corpus: 5150, signal 216510/257148 (executing program) 2022/09/16 07:26:37 fetching corpus: 5200, signal 217118/257647 (executing program) 2022/09/16 07:26:37 fetching corpus: 5250, signal 218247/258261 (executing program) 2022/09/16 07:26:37 fetching corpus: 5300, signal 218804/258757 (executing program) 2022/09/16 07:26:37 fetching corpus: 5350, signal 219381/259237 (executing program) 2022/09/16 07:26:38 fetching corpus: 5400, signal 220623/259848 (executing program) 2022/09/16 07:26:38 fetching corpus: 5450, signal 221167/260325 (executing program) 2022/09/16 07:26:38 fetching corpus: 5500, signal 222407/260929 (executing program) 2022/09/16 07:26:38 fetching corpus: 5550, signal 222910/261352 (executing program) 2022/09/16 07:26:38 fetching corpus: 5600, signal 223552/261773 (executing program) 2022/09/16 07:26:38 fetching corpus: 5650, signal 223845/262178 (executing program) 2022/09/16 07:26:38 fetching corpus: 5700, signal 224307/262602 (executing program) 2022/09/16 07:26:39 fetching corpus: 5750, signal 225375/263136 (executing program) 2022/09/16 07:26:39 fetching corpus: 5800, signal 225859/263492 (executing program) 2022/09/16 07:26:39 fetching corpus: 5850, signal 226839/263954 (executing program) 2022/09/16 07:26:39 fetching corpus: 5900, signal 227618/264352 (executing program) 2022/09/16 07:26:39 fetching corpus: 5950, signal 228124/264724 (executing program) 2022/09/16 07:26:39 fetching corpus: 6000, signal 228535/265062 (executing program) 2022/09/16 07:26:39 fetching corpus: 6050, signal 229117/265409 (executing program) 2022/09/16 07:26:39 fetching corpus: 6100, signal 229875/265769 (executing program) 2022/09/16 07:26:40 fetching corpus: 6150, signal 230516/266109 (executing program) 2022/09/16 07:26:40 fetching corpus: 6200, signal 230816/266443 (executing program) 2022/09/16 07:26:40 fetching corpus: 6250, signal 231331/266835 (executing program) 2022/09/16 07:26:40 fetching corpus: 6300, signal 231742/267125 (executing program) 2022/09/16 07:26:40 fetching corpus: 6350, signal 232342/267443 (executing program) 2022/09/16 07:26:40 fetching corpus: 6400, signal 232789/267748 (executing program) 2022/09/16 07:26:40 fetching corpus: 6450, signal 233687/268071 (executing program) 2022/09/16 07:26:40 fetching corpus: 6500, signal 234110/268318 (executing program) 2022/09/16 07:26:41 fetching corpus: 6550, signal 234618/268350 (executing program) 2022/09/16 07:26:41 fetching corpus: 6600, signal 235018/268357 (executing program) 2022/09/16 07:26:41 fetching corpus: 6650, signal 235714/268363 (executing program) 2022/09/16 07:26:41 fetching corpus: 6700, signal 236203/268368 (executing program) 2022/09/16 07:26:41 fetching corpus: 6750, signal 236955/268370 (executing program) 2022/09/16 07:26:41 fetching corpus: 6800, signal 237810/268370 (executing program) 2022/09/16 07:26:41 fetching corpus: 6850, signal 238514/268370 (executing program) 2022/09/16 07:26:42 fetching corpus: 6900, signal 238884/268372 (executing program) 2022/09/16 07:26:42 fetching corpus: 6950, signal 240119/268381 (executing program) 2022/09/16 07:26:42 fetching corpus: 7000, signal 240427/268402 (executing program) 2022/09/16 07:26:42 fetching corpus: 7050, signal 240895/268405 (executing program) 2022/09/16 07:26:42 fetching corpus: 7100, signal 241251/268409 (executing program) 2022/09/16 07:26:42 fetching corpus: 7150, signal 241870/268415 (executing program) 2022/09/16 07:26:42 fetching corpus: 7200, signal 242609/268455 (executing program) 2022/09/16 07:26:43 fetching corpus: 7250, signal 243251/268462 (executing program) 2022/09/16 07:26:43 fetching corpus: 7300, signal 243684/268480 (executing program) 2022/09/16 07:26:43 fetching corpus: 7350, signal 244131/268481 (executing program) 2022/09/16 07:26:43 fetching corpus: 7400, signal 244497/268486 (executing program) 2022/09/16 07:26:43 fetching corpus: 7450, signal 245067/268488 (executing program) 2022/09/16 07:26:43 fetching corpus: 7500, signal 245608/268492 (executing program) 2022/09/16 07:26:43 fetching corpus: 7550, signal 246253/268507 (executing program) 2022/09/16 07:26:43 fetching corpus: 7600, signal 246766/268517 (executing program) 2022/09/16 07:26:44 fetching corpus: 7650, signal 247186/268523 (executing program) 2022/09/16 07:26:44 fetching corpus: 7700, signal 247543/268535 (executing program) 2022/09/16 07:26:44 fetching corpus: 7750, signal 248094/268545 (executing program) 2022/09/16 07:26:44 fetching corpus: 7800, signal 248750/268592 (executing program) 2022/09/16 07:26:44 fetching corpus: 7809, signal 248823/268592 (executing program) 2022/09/16 07:26:44 fetching corpus: 7809, signal 248823/268592 (executing program) 2022/09/16 07:26:47 starting 8 fuzzer processes 07:26:47 executing program 1: r0 = shmget$private(0x0, 0x3000, 0x100, &(0x7f0000ffa000/0x3000)=nil) r1 = shmget$private(0x0, 0x3000, 0x78000000, &(0x7f0000ff8000/0x3000)=nil) r2 = shmget$private(0x0, 0x3000, 0x80, &(0x7f0000ff9000/0x3000)=nil) shmat(r2, &(0x7f0000ffe000/0x1000)=nil, 0x1000) shmat(r0, &(0x7f0000ffd000/0x3000)=nil, 0x2000) shmat(r1, &(0x7f0000ff8000/0x1000)=nil, 0x2000) r3 = shmget$private(0x0, 0x3000, 0x80, &(0x7f0000ffd000/0x3000)=nil) r4 = shmget$private(0x0, 0x3000, 0x54000200, &(0x7f0000ffc000/0x3000)=nil) shmctl$IPC_STAT(r1, 0x2, &(0x7f0000000000)=""/62) shmget(0x0, 0x2000, 0x800, &(0x7f0000ffe000/0x2000)=nil) shmat(r1, &(0x7f0000ffe000/0x2000)=nil, 0x1000) shmctl$IPC_RMID(r4, 0x0) shmctl$IPC_RMID(r3, 0x0) shmat(r3, &(0x7f0000ffd000/0x3000)=nil, 0x1000) shmget$private(0x0, 0x1000, 0x200, &(0x7f0000ffc000/0x1000)=nil) r5 = shmget$private(0x0, 0x4000, 0x1000, &(0x7f0000ffc000/0x4000)=nil) shmat(r5, &(0x7f0000ff6000/0x4000)=nil, 0x1800) shmget(0x2, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil) shmat(0xffffffffffffffff, &(0x7f0000ffa000/0x1000)=nil, 0x0) shmat(r4, &(0x7f0000ffc000/0x1000)=nil, 0x2000) 07:26:47 executing program 2: r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x400, 0x41) fcntl$getflags(0xffffffffffffffff, 0x3) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) getdents(r1, &(0x7f0000000080)=""/69, 0x45) r2 = openat2(r0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)={0x8001, 0x0, 0x12}, 0x18) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000180)={0xc42b, {{0xa, 0x4e24, 0x9, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x1}}, {{0xa, 0x4e24, 0x4a, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}}}, 0x108) ioctl$sock_inet6_udp_SIOCOUTQ(r1, 0x5411, &(0x7f00000002c0)) getdents(r0, &(0x7f0000000300)=""/28, 0x1c) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000440)={'ip_vti0\x00', &(0x7f0000000340)={'gre0\x00', 0x0, 0x20, 0x10, 0x4, 0x80000000, {{0x31, 0x4, 0x0, 0x1, 0xc4, 0x64, 0x0, 0x1, 0x2, 0x0, @local, @broadcast, {[@ssrr={0x89, 0x17, 0x4, [@broadcast, @broadcast, @multicast1, @empty, @rand_addr=0x64010102]}, @cipso={0x86, 0x56, 0x2, [{0x1, 0x2}, {0x0, 0x10, "30181d45caf6557efa4cbed86b03"}, {0x5, 0xe, "7034957d0f45d70a23cfb023"}, {0x2, 0x10, "b38777c780f63e5001e11c4ef169"}, {0x1, 0x5, "ed4df8"}, {0x6, 0xc, "52263a17bcd054858d28"}, {0x6, 0xf, "d666361a3127a6f19a0dbb4c95"}]}, @noop, @timestamp_prespec={0x44, 0x14, 0x89, 0x3, 0x4, [{@multicast1, 0x9111}, {@multicast1, 0x4}]}, @timestamp_addr={0x44, 0xc, 0xd1, 0x1, 0x5, [{@local, 0x5}]}, @noop, @lsrr={0x83, 0xb, 0xb9, [@dev={0xac, 0x14, 0x14, 0x3e}, @multicast1]}, @timestamp_addr={0x44, 0x14, 0xfd, 0x1, 0x1, [{@multicast2}, {@broadcast, 0x2231}]}, @noop]}}}}}) setsockopt$inet6_mreq(r2, 0x29, 0x6, &(0x7f0000000480)={@loopback, r3}, 0x14) getdents64(r1, &(0x7f00000004c0)=""/168, 0xa8) r4 = fspick(r0, &(0x7f0000000580)='./file0\x00', 0x1) write$binfmt_aout(r4, &(0x7f00000005c0)={{0x108, 0x1, 0x1b, 0x19f, 0x269, 0x1ff, 0x17c, 0x4}, "f0d5154a23bc907b7d2c529166bce5dd0a3cabb714a30c36b002278b1cc5e8ff150b962f3d0e9a0edaab654f5c83583fa46601e15264722ef1ca990b642b386a851dca10eb079c6a6000143c6b92a99f3a31bc89f9c37f0a23d4d22284dedb53f963619720e609530fefcd841fd8d149823b86c8175e67a928d077737e", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x59d) flistxattr(r1, &(0x7f0000000b80)=""/79, 0x4f) getdents(r1, &(0x7f0000000c00)=""/72, 0x48) r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000c80), 0x80, 0x0) getsockname$packet(r1, &(0x7f0000000d00)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000d40)=0x14) sendmsg$ETHTOOL_MSG_TSINFO_GET(r5, &(0x7f0000000ec0)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000d80)={0xf4, 0x0, 0x2, 0x1, 0x25dfdbfc, {}, [@HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'lo\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_macvtap\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip_vti0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x20000004}, 0x4040014) r7 = openat(0xffffffffffffffff, &(0x7f0000000f00)='./file0\x00', 0x8000, 0x14c) ioctl$BTRFS_IOC_WAIT_SYNC(r7, 0x40089416, 0x0) 07:26:47 executing program 3: r0 = syz_open_dev$vcsu(&(0x7f0000000000), 0x0, 0x10401) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8}}, './file0\x00'}) r2 = fsmount(r0, 0x0, 0x0) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0x18, r4, {0x20}}, './file0\x00'}) ioctl$RTC_UIE_ON(r5, 0x7003) syz_io_uring_setup(0x5488, &(0x7f0000000140)={0x0, 0x575b, 0x0, 0x3, 0xe9, 0x0, r5}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=0x0) syz_io_uring_submit(0x0, r6, &(0x7f0000000240)=@IORING_OP_CLOSE={0x13, 0x3, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r2, 0x8010671f, &(0x7f0000000340)={&(0x7f0000000280)=""/163, 0xa3}) r7 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000380), 0x40240, 0x0) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r7, 0x6628) r8 = memfd_secret(0x0) ioctl$EXT4_IOC_SWAP_BOOT(r8, 0x6611) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x10040, 0x0) r10 = dup(r9) ioctl$TUNSETIFF(r10, 0x400454ca, &(0x7f0000000440)={'netpci0\x00'}) r11 = ioctl$TIOCGPTPEER(r2, 0x5441, 0xae19) close_range(r11, 0xffffffffffffffff, 0x2) 07:26:47 executing program 4: r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x2) ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000040)) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000080), 0x44603, 0x0) write(r0, &(0x7f00000000c0)="685820898b3aee62f63e94", 0xb) r2 = dup3(r0, r0, 0x0) ioctl$TIOCMSET(r2, 0x5418, &(0x7f0000000100)) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000140)={0x40, 0x4, 0x3f, 0x1ff, 0x11, "33d1a61ed106e61fbb6f2bc63a811fc8712c36"}) ioctl$TIOCPKT(r1, 0x5420, &(0x7f0000000180)=0x7fff) r3 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xfff) r4 = perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0x7, 0x31, 0xff, 0x0, 0x0, 0x0, 0x5200, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x4, @perf_bp={&(0x7f00000001c0), 0x3}, 0x10628, 0x87b3, 0x500000, 0x1, 0x4, 0xfffffffd, 0x200, 0x0, 0x25, 0x0, 0x8}, 0x0, 0x1, r2, 0x8) ioctl$TCSETSF2(r2, 0x402c542d, &(0x7f0000000280)={0xffffff7f, 0x3ff, 0x10000, 0x2, 0x1, "b2201c27a470fc9aba1ea5401eb27c3c091375", 0x8, 0x8}) ioctl$PIO_UNISCRNMAP(r0, 0x4b6a, &(0x7f00000002c0)="e713dac17d01a6de0e110d7cdc6cd73c") ioctl$TIOCSIG(r1, 0x40045436, 0x22) r5 = dup3(r4, r0, 0x0) r6 = dup2(r5, r0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r6, 0xc0189374, &(0x7f0000000300)={{0x1, 0x1, 0x18, r6, {0x6}}, './file0\x00'}) ioctl$GIO_CMAP(r7, 0x4b70, &(0x7f0000000340)) ioctl$TIOCSSOFTCAR(r3, 0x541a, &(0x7f0000000380)=0x6) ioctl$TIOCGPTLCK(r5, 0x80045439, &(0x7f00000003c0)) 07:26:47 executing program 0: prctl$PR_SET_FP_MODE(0x2d, 0x1) prctl$PR_SET_FP_MODE(0x2d, 0x0) prctl$PR_SET_FP_MODE(0x2d, 0x1) prctl$PR_SET_FP_MODE(0x2d, 0x1) prctl$PR_SET_FP_MODE(0x2d, 0x3) prctl$PR_SET_FP_MODE(0x2d, 0x3) prctl$PR_SET_FP_MODE(0x2d, 0x2) prctl$PR_SET_FP_MODE(0x2d, 0x0) prctl$PR_SET_FP_MODE(0x2d, 0x2) prctl$PR_SET_FP_MODE(0x2d, 0x7) prctl$PR_SET_FP_MODE(0x2d, 0x1) prctl$PR_SET_FP_MODE(0x2d, 0x2) prctl$PR_SET_FP_MODE(0x2d, 0x1) prctl$PR_SET_FP_MODE(0x2d, 0x1) prctl$PR_SET_FP_MODE(0x2d, 0x0) prctl$PR_SET_FP_MODE(0x2d, 0x3) prctl$PR_SET_FP_MODE(0x2d, 0x0) prctl$PR_SET_FP_MODE(0x2d, 0x2) prctl$PR_SET_FP_MODE(0x2d, 0x0) prctl$PR_SET_FP_MODE(0x2d, 0x3) 07:26:47 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) r10 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f00000007c0)) futex(&(0x7f0000000800)=0x2, 0x8, 0x1, &(0x7f0000000880), &(0x7f00000008c0)=0x2, 0x1) [ 81.066828] audit: type=1400 audit(1663313207.149:6): avc: denied { execmem } for pid=287 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 07:26:47 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x6000, 0x1) r1 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x400000, 0x8) r2 = dup(r1) read$char_usb(r2, &(0x7f00000000c0)=""/165, 0xa5) renameat2(r1, &(0x7f0000000180)='./file0\x00', 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x5) fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000200)='silent\x00', 0x0, 0x0) r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0) fcntl$dupfd(r3, 0x0, r4) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EXT4_IOC_CHECKPOINT(r5, 0x4004662b, &(0x7f0000000300)=0x5) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) r7 = epoll_create1(0x0) poll(&(0x7f0000000380)=[{r7}, {0xffffffffffffffff, 0x2000}, {r3, 0x8009}], 0x3, 0x800) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f00000003c0)={0xf0000014}) ftruncate(r7, 0xfff) syz_io_uring_setup(0x5938, &(0x7f0000000400)={0x0, 0x29b4, 0x20, 0x1, 0x46, 0x0, r6}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000000480), &(0x7f00000004c0)) write$tcp_mem(r1, &(0x7f0000000500)={0xfe6, 0x20, 0x800, 0x20, 0xfff}, 0x48) ioctl$BTRFS_IOC_SUBVOL_CREATE(r3, 0x5000940e, &(0x7f0000000580)={{}, "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"}) 07:26:47 executing program 6: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) ptrace$setopts(0x4200, r0, 0xfffffffffffff800, 0x100053) readv(0xffffffffffffffff, &(0x7f0000001500)=[{&(0x7f0000000080)=""/34, 0x22}, {&(0x7f00000000c0)=""/181, 0xb5}, {&(0x7f0000000180)=""/18, 0x12}, {&(0x7f00000001c0)=""/32, 0x20}, {&(0x7f0000000200)=""/189, 0xbd}, {&(0x7f00000002c0)=""/188, 0xbc}, {&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000001380)=""/191, 0xbf}, {&(0x7f0000001440)=""/144, 0x90}], 0x9) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001600), 0xffffffffffffffff) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000016c0)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001680)={&(0x7f0000001640)={0x1c, r1, 0x400, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4801}, 0x20000010) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000001700)={0x0, 'vxcan1\x00', {0x4}, 0x7}) getsockopt$inet6_tcp_buf(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000001740)=""/159, &(0x7f0000001800)=0x9f) pwritev(0xffffffffffffffff, &(0x7f0000001a80)=[{&(0x7f0000001840)="f67a26cb8e02bbd4686db9ccd1eb225f75d7e799f130f4f2290c2bb84ddfc9a456251b738d46d2ce402acfe7101aa9898751d40c502dd5bd874a53e1588c011a3fd9a62150cc205e3be8c9818b2b9a562d0eb214cf97a6968c23f25a460918b6cf20a5722885b38ee27318fd6a6565136772c84e5fbc1b56fdf77eec36141582fca0eb", 0x83}, {&(0x7f0000001900)="3cd34f20f36132fb39155b59b9065606d8e73c12a953994bc8ba70252592491e6bbd0889165557dd6b60cbf6add632ef57c8e35bdd976cf03b5b9ae891784b59c219f4344d2945ff363061feb7b9920547de1280d8fc6c9631da6b4d899bb324358cd8426200596c50a1f5dbfd1f10336bc7cd37f55733d0fb03015eacc87988331ec7b3086d504eeedc528b5c62e4cdd874", 0x92}, {&(0x7f00000019c0)="baeb36bb8ef4437d891d88bad41ab3a5bd10f91d62e03ba5bec107315322f177aec0d24d7f4a470a91b5e3ae36e49221e47578481e369ef2496c497008dd2987c4dfa271fc67ea1a055786442e7cf153731540f8ccca7de0e7e017fa45e5f950dd404e7231284efb74f1895909cc320dcc9e4f531c3dab94eb176a14ef86a3db8efb9974a91f52", 0x87}], 0x3, 0xfffffff8, 0x401) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000001ac0)={0x0, 0x0}) ptrace(0x420f, r2) r3 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000001b40), 0x2, 0x0) fallocate(0xffffffffffffffff, 0x4, 0x4, 0x2) sendto(0xffffffffffffffff, &(0x7f0000001b80)="54573e840a436a51e15faa82f2d9b6d77eb141e247c1c3ed8f6222702fff83449bd5d63d5ce0f1eab83bc158429a75e50146bd471eeb29b0253604c2cddc73e99d54f28acddf5233e41aae260adfedef53288c7115ceada2226bf33329100df16b6106fb3f995d69804b281dd97597f559b00102e7d44f840c364b796d3ba7a9a052dee44ff1e5f06d2eb3e53a70b4e161f7e9d7fa83fd5a4ba2c747e05320146558a06992f6e3cce4b737c850d7502567ba96efa2b8d2671ad4711a916d48382f99780852ec497ee69cba146f", 0xcd, 0x40001, &(0x7f0000001c80)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e24, @remote}, 0x0, 0x1, 0x0, 0x2}}, 0x80) fork() recvmmsg(0xffffffffffffffff, &(0x7f0000004f80)=[{{&(0x7f0000001d00)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, 0x80, &(0x7f0000001e40)=[{&(0x7f0000001d80)=""/137, 0x89}], 0x1, &(0x7f0000001e80)=""/158, 0x9e}, 0x9}, {{&(0x7f0000001f40)=@l2tp6={0xa, 0x0, 0x0, @local}, 0x80, &(0x7f00000041c0)=[{&(0x7f0000001fc0)=""/119, 0x77}, {&(0x7f0000002040)=""/107, 0x6b}, {&(0x7f00000020c0)=""/4096, 0x1000}, {&(0x7f00000030c0)=""/144, 0x90}, {&(0x7f0000003180)=""/63, 0x3f}, {&(0x7f00000031c0)=""/4096, 0x1000}], 0x6, &(0x7f0000004240)=""/168, 0xa8}, 0x200}, {{&(0x7f0000004300)=@in={0x2, 0x0, @multicast2}, 0x80, &(0x7f00000047c0)=[{&(0x7f0000004380)=""/115, 0x73}, {&(0x7f0000004400)=""/118, 0x76}, {&(0x7f0000004480)=""/159, 0x9f}, {&(0x7f0000004540)=""/220, 0xdc}, {&(0x7f0000004640)=""/65, 0x41}, {&(0x7f00000046c0)=""/227, 0xe3}], 0x6}, 0xfffffffc}, {{&(0x7f0000004840)=@vsock={0x28, 0x0, 0x0, @host}, 0x80, &(0x7f0000004940)=[{&(0x7f00000048c0)=""/108, 0x6c}], 0x1, &(0x7f0000004980)=""/81, 0x51}, 0xfffffc01}, {{0x0, 0x0, &(0x7f0000004e80)=[{&(0x7f0000004a00)=""/64, 0x40}, {&(0x7f0000004a40)=""/150, 0x96}, {&(0x7f0000004b00)=""/116, 0x74}, {&(0x7f0000004b80)=""/8, 0x8}, {&(0x7f0000004bc0)=""/99, 0x63}, {&(0x7f0000004c40)=""/69, 0x45}, {&(0x7f0000004cc0)=""/65, 0x41}, {&(0x7f0000004d40)=""/16, 0x10}, {&(0x7f0000004d80)=""/254, 0xfe}], 0x9, &(0x7f0000004f40)=""/4, 0x4}, 0x7}], 0x5, 0x2001, &(0x7f00000050c0)={0x0, 0x3938700}) tkill(0xffffffffffffffff, 0x31) ioctl$sock_inet_SIOCSIFNETMASK(0xffffffffffffffff, 0x891c, &(0x7f0000005100)={'wg2\x00', {0x2, 0x0, @multicast2}}) r5 = dup(r3) ioctl$PTP_SYS_OFFSET_PRECISE(r5, 0xc0403d08, &(0x7f0000005140)) sendmsg$TIPC_CMD_RESET_LINK_STATS(r4, &(0x7f0000005240)={&(0x7f0000005180)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000005200)={&(0x7f00000051c0)={0x28, 0x0, 0x20, 0x70bd2c, 0x25dfdbfd, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x10) [ 82.314442] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.316270] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.318761] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.325600] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.328718] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.330603] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.336391] Bluetooth: hci0: HCI_REQ-0x0c1a [ 82.368184] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 82.370815] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 82.372343] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 82.378615] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 82.381355] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 82.382796] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 82.395131] Bluetooth: hci3: HCI_REQ-0x0c1a [ 82.422467] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 82.424802] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 82.427554] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 82.433044] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 82.437110] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 82.439585] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 82.449001] Bluetooth: hci2: HCI_REQ-0x0c1a [ 82.503468] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 82.506463] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 82.529373] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 82.548083] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 82.550003] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 82.554097] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 82.564005] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 82.568431] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 82.578173] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 82.586957] Bluetooth: hci5: HCI_REQ-0x0c1a [ 82.634033] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 82.637290] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 82.685142] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 82.689656] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 82.692790] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 82.694635] Bluetooth: hci6: HCI_REQ-0x0c1a [ 82.729191] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 82.744359] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 82.759147] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 82.760726] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 82.790065] Bluetooth: hci7: HCI_REQ-0x0c1a [ 84.396424] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 84.397978] Bluetooth: hci0: command 0x0409 tx timeout [ 84.460153] Bluetooth: hci2: command 0x0409 tx timeout [ 84.460934] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 84.461236] Bluetooth: hci3: command 0x0409 tx timeout [ 84.652050] Bluetooth: hci5: command 0x0409 tx timeout [ 84.715934] Bluetooth: hci6: command 0x0409 tx timeout [ 84.844070] Bluetooth: hci7: command 0x0409 tx timeout [ 86.443890] Bluetooth: hci0: command 0x041b tx timeout [ 86.507888] Bluetooth: hci3: command 0x041b tx timeout [ 86.508930] Bluetooth: hci2: command 0x041b tx timeout [ 86.699934] Bluetooth: hci5: command 0x041b tx timeout [ 86.763904] Bluetooth: hci6: command 0x041b tx timeout [ 86.891898] Bluetooth: hci7: command 0x041b tx timeout [ 88.111581] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 88.112676] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 88.114442] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 88.117290] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 88.131022] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 88.132667] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 88.143330] Bluetooth: hci4: HCI_REQ-0x0c1a [ 88.491908] Bluetooth: hci0: command 0x040f tx timeout [ 88.555952] Bluetooth: hci2: command 0x040f tx timeout [ 88.556409] Bluetooth: hci3: command 0x040f tx timeout [ 88.747880] Bluetooth: hci5: command 0x040f tx timeout [ 88.812763] Bluetooth: hci6: command 0x040f tx timeout [ 88.939909] Bluetooth: hci7: command 0x040f tx timeout [ 90.092079] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 90.156887] Bluetooth: hci4: command 0x0409 tx timeout [ 90.539890] Bluetooth: hci0: command 0x0419 tx timeout [ 90.604889] Bluetooth: hci3: command 0x0419 tx timeout [ 90.605336] Bluetooth: hci2: command 0x0419 tx timeout [ 90.795893] Bluetooth: hci5: command 0x0419 tx timeout [ 90.860932] Bluetooth: hci6: command 0x0419 tx timeout [ 90.988952] Bluetooth: hci7: command 0x0419 tx timeout [ 92.203975] Bluetooth: hci4: command 0x041b tx timeout [ 92.975627] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 92.976739] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 92.978527] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 92.981345] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 92.983313] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 92.984727] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 92.990891] Bluetooth: hci1: HCI_REQ-0x0c1a [ 94.251955] Bluetooth: hci4: command 0x040f tx timeout [ 95.019952] Bluetooth: hci1: command 0x0409 tx timeout [ 96.300932] Bluetooth: hci4: command 0x0419 tx timeout [ 97.068880] Bluetooth: hci1: command 0x041b tx timeout [ 99.117214] Bluetooth: hci1: command 0x040f tx timeout [ 101.164912] Bluetooth: hci1: command 0x0419 tx timeout 07:27:38 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) r10 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f00000007c0)) futex(&(0x7f0000000800)=0x2, 0x8, 0x1, &(0x7f0000000880), &(0x7f00000008c0)=0x2, 0x1) 07:27:38 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) r10 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f00000007c0)) futex(&(0x7f0000000800)=0x2, 0x8, 0x1, &(0x7f0000000880), &(0x7f00000008c0)=0x2, 0x1) 07:27:38 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) r10 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f00000007c0)) futex(&(0x7f0000000800)=0x2, 0x8, 0x1, &(0x7f0000000880), &(0x7f00000008c0)=0x2, 0x1) 07:27:38 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) r10 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f00000007c0)) 07:27:38 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) socket$inet_tcp(0x2, 0x1, 0x0) 07:27:39 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) [ 133.122778] audit: type=1400 audit(1663313259.205:7): avc: denied { open } for pid=3757 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 07:27:39 executing program 4: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) r10 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f00000007c0)) futex(&(0x7f0000000800)=0x2, 0x8, 0x1, &(0x7f0000000880), &(0x7f00000008c0)=0x2, 0x1) 07:27:39 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) 07:27:55 executing program 1: r0 = gettid() migrate_pages(0x0, 0xfffffffffffffffe, &(0x7f0000000200), &(0x7f0000000240)=0xfffffffffffffc01) ioprio_get$pid(0x2, r0) r1 = gettid() ioprio_get$pid(0x2, r1) prlimit64(r1, 0x7, &(0x7f0000000080)={0x3}, &(0x7f00000000c0)) splice(0xffffffffffffffff, &(0x7f0000000000)=0x24b, 0xffffffffffffffff, &(0x7f0000000040)=0x7fff, 0x8001, 0xe) syz_emit_ethernet(0xfe, &(0x7f0000000000)=ANY=[], 0x0) ioctl$GIO_UNISCRNMAP(0xffffffffffffffff, 0x4b69, &(0x7f0000000100)=""/238) [ 149.821274] audit: type=1400 audit(1663313275.904:8): avc: denied { kernel } for pid=3994 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 149.831350] ------------[ cut here ]------------ [ 149.831375] [ 149.831379] ====================================================== [ 149.831383] WARNING: possible circular locking dependency detected [ 149.831387] 6.0.0-rc5-next-20220915 #1 Not tainted [ 149.831393] ------------------------------------------------------ [ 149.831397] syz-executor.3/3996 is trying to acquire lock: [ 149.831404] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 149.831443] [ 149.831443] but task is already holding lock: [ 149.831446] ffff88800d8fa420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 149.831475] [ 149.831475] which lock already depends on the new lock. [ 149.831475] [ 149.831478] [ 149.831478] the existing dependency chain (in reverse order) is: [ 149.831481] [ 149.831481] -> #3 (&ctx->lock){....}-{2:2}: [ 149.831495] _raw_spin_lock+0x2a/0x40 [ 149.831513] __perf_event_task_sched_out+0x53b/0x18d0 [ 149.831525] __schedule+0xedd/0x2470 [ 149.831536] schedule+0xda/0x1b0 [ 149.831546] exit_to_user_mode_prepare+0x114/0x1a0 [ 149.831565] syscall_exit_to_user_mode+0x19/0x40 [ 149.831584] do_syscall_64+0x48/0x90 [ 149.831597] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 149.831616] [ 149.831616] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 149.831629] _raw_spin_lock_nested+0x30/0x40 [ 149.831644] raw_spin_rq_lock_nested+0x1e/0x30 [ 149.831657] task_fork_fair+0x63/0x4d0 [ 149.831674] sched_cgroup_fork+0x3d0/0x540 [ 149.831688] copy_process+0x4183/0x6e20 [ 149.831698] kernel_clone+0xe7/0x890 [ 149.831708] user_mode_thread+0xad/0xf0 [ 149.831718] rest_init+0x24/0x250 [ 149.831734] arch_call_rest_init+0xf/0x14 [ 149.831746] start_kernel+0x4c1/0x4e6 [ 149.831756] secondary_startup_64_no_verify+0xe0/0xeb [ 149.831771] [ 149.831771] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 149.831784] _raw_spin_lock_irqsave+0x39/0x60 [ 149.831800] try_to_wake_up+0xab/0x1920 [ 149.831813] up+0x75/0xb0 [ 149.831824] __up_console_sem+0x6e/0x80 [ 149.831840] console_unlock+0x46a/0x590 [ 149.831855] do_con_write+0xc05/0x1d50 [ 149.831867] con_write+0x21/0x40 [ 149.831877] n_tty_write+0x4d4/0xfe0 [ 149.831890] file_tty_write.constprop.0+0x49c/0x8f0 [ 149.831902] vfs_write+0x9c3/0xd90 [ 149.831920] ksys_write+0x127/0x250 [ 149.831936] do_syscall_64+0x3b/0x90 [ 149.831949] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 149.831966] [ 149.831966] -> #0 ((console_sem).lock){....}-{2:2}: [ 149.831980] __lock_acquire+0x2a02/0x5e70 [ 149.831996] lock_acquire+0x1a2/0x530 [ 149.832011] _raw_spin_lock_irqsave+0x39/0x60 [ 149.832026] down_trylock+0xe/0x70 [ 149.832038] __down_trylock_console_sem+0x3b/0xd0 [ 149.832053] vprintk_emit+0x16b/0x560 [ 149.832070] vprintk+0x84/0xa0 [ 149.832085] _printk+0xba/0xf1 [ 149.832103] report_bug.cold+0x72/0xab [ 149.832116] handle_bug+0x3c/0x70 [ 149.832128] exc_invalid_op+0x14/0x50 [ 149.832142] asm_exc_invalid_op+0x16/0x20 [ 149.832158] group_sched_out.part.0+0x2c7/0x460 [ 149.832168] ctx_sched_out+0x8f1/0xc10 [ 149.832178] __perf_event_task_sched_out+0x6d0/0x18d0 [ 149.832190] __schedule+0xedd/0x2470 [ 149.832200] schedule+0xda/0x1b0 [ 149.832209] exit_to_user_mode_prepare+0x114/0x1a0 [ 149.832228] syscall_exit_to_user_mode+0x19/0x40 [ 149.832264] do_syscall_64+0x48/0x90 [ 149.832277] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 149.832293] [ 149.832293] other info that might help us debug this: [ 149.832293] [ 149.832296] Chain exists of: [ 149.832296] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 149.832296] [ 149.832311] Possible unsafe locking scenario: [ 149.832311] [ 149.832314] CPU0 CPU1 [ 149.832316] ---- ---- [ 149.832318] lock(&ctx->lock); [ 149.832324] lock(&rq->__lock); [ 149.832331] lock(&ctx->lock); [ 149.832337] lock((console_sem).lock); [ 149.832343] [ 149.832343] *** DEADLOCK *** [ 149.832343] [ 149.832345] 2 locks held by syz-executor.3/3996: [ 149.832352] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 149.832377] #1: ffff88800d8fa420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 149.832405] [ 149.832405] stack backtrace: [ 149.832408] CPU: 0 PID: 3996 Comm: syz-executor.3 Not tainted 6.0.0-rc5-next-20220915 #1 [ 149.832420] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 149.832429] Call Trace: [ 149.832432] [ 149.832436] dump_stack_lvl+0x8b/0xb3 [ 149.832452] check_noncircular+0x263/0x2e0 [ 149.832468] ? format_decode+0x26c/0xb50 [ 149.832483] ? print_circular_bug+0x450/0x450 [ 149.832500] ? enable_ptr_key_workfn+0x20/0x20 [ 149.832515] ? format_decode+0x26c/0xb50 [ 149.832530] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 149.832548] __lock_acquire+0x2a02/0x5e70 [ 149.832569] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 149.832591] lock_acquire+0x1a2/0x530 [ 149.832607] ? down_trylock+0xe/0x70 [ 149.832621] ? rcu_read_unlock+0x40/0x40 [ 149.832641] ? vprintk+0x84/0xa0 [ 149.832659] _raw_spin_lock_irqsave+0x39/0x60 [ 149.832674] ? down_trylock+0xe/0x70 [ 149.832688] down_trylock+0xe/0x70 [ 149.832700] ? vprintk+0x84/0xa0 [ 149.832717] __down_trylock_console_sem+0x3b/0xd0 [ 149.832734] vprintk_emit+0x16b/0x560 [ 149.832752] vprintk+0x84/0xa0 [ 149.832770] _printk+0xba/0xf1 [ 149.832787] ? record_print_text.cold+0x16/0x16 [ 149.832809] ? report_bug.cold+0x66/0xab [ 149.832823] ? group_sched_out.part.0+0x2c7/0x460 [ 149.832834] report_bug.cold+0x72/0xab [ 149.832849] handle_bug+0x3c/0x70 [ 149.832863] exc_invalid_op+0x14/0x50 [ 149.832878] asm_exc_invalid_op+0x16/0x20 [ 149.832895] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 149.832908] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 149.832920] RSP: 0018:ffff88801b787c48 EFLAGS: 00010006 [ 149.832929] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 149.832936] RDX: ffff888040a78000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 149.832945] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 149.832952] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff88800d8fa400 [ 149.832960] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 149.832971] ? group_sched_out.part.0+0x2c7/0x460 [ 149.832984] ? group_sched_out.part.0+0x2c7/0x460 [ 149.832997] ctx_sched_out+0x8f1/0xc10 [ 149.833009] __perf_event_task_sched_out+0x6d0/0x18d0 [ 149.833024] ? lock_is_held_type+0xd7/0x130 [ 149.833043] ? __perf_cgroup_move+0x160/0x160 [ 149.833055] ? set_next_entity+0x304/0x550 [ 149.833072] ? update_curr+0x267/0x740 [ 149.833090] ? lock_is_held_type+0xd7/0x130 [ 149.833108] __schedule+0xedd/0x2470 [ 149.833122] ? io_schedule_timeout+0x150/0x150 [ 149.833135] ? rcu_read_lock_sched_held+0x3e/0x80 [ 149.833155] schedule+0xda/0x1b0 [ 149.833166] exit_to_user_mode_prepare+0x114/0x1a0 [ 149.833186] syscall_exit_to_user_mode+0x19/0x40 [ 149.833204] do_syscall_64+0x48/0x90 [ 149.833218] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 149.833235] RIP: 0033:0x7f7dc5371b19 [ 149.833244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 149.833255] RSP: 002b:00007f7dc28e7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 149.833266] RAX: 0000000000000001 RBX: 00007f7dc5484f68 RCX: 00007f7dc5371b19 [ 149.833273] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7dc5484f6c [ 149.833281] RBP: 00007f7dc5484f60 R08: 000000000000000e R09: 0000000000000000 [ 149.833288] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f7dc5484f6c [ 149.833295] R13: 00007ffd518f72ef R14: 00007f7dc28e7300 R15: 0000000000022000 [ 149.833308] [ 149.889375] WARNING: CPU: 0 PID: 3996 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 149.890054] Modules linked in: [ 149.890302] CPU: 0 PID: 3996 Comm: syz-executor.3 Not tainted 6.0.0-rc5-next-20220915 #1 [ 149.890894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 149.891733] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 149.892146] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 149.893483] RSP: 0018:ffff88801b787c48 EFLAGS: 00010006 [ 149.893859] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 149.894368] RDX: ffff888040a78000 RSI: ffffffff81566027 RDI: 0000000000000005 [ 149.894881] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 149.895399] R10: 0000000000000000 R11: ffffffff865ac01b R12: ffff88800d8fa400 [ 149.895896] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 149.896427] FS: 00007f7dc28e7700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 149.897000] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 149.897422] CR2: 0000001b2e123000 CR3: 000000000f120000 CR4: 0000000000350ef0 [ 149.897923] Call Trace: [ 149.898116] [ 149.898297] ctx_sched_out+0x8f1/0xc10 [ 149.898597] __perf_event_task_sched_out+0x6d0/0x18d0 [ 149.898980] ? lock_is_held_type+0xd7/0x130 [ 149.899322] ? __perf_cgroup_move+0x160/0x160 [ 149.899659] ? set_next_entity+0x304/0x550 [ 149.899991] ? update_curr+0x267/0x740 [ 149.900304] ? lock_is_held_type+0xd7/0x130 [ 149.900653] __schedule+0xedd/0x2470 [ 149.900938] ? io_schedule_timeout+0x150/0x150 [ 149.901287] ? rcu_read_lock_sched_held+0x3e/0x80 [ 149.901658] schedule+0xda/0x1b0 [ 149.901914] exit_to_user_mode_prepare+0x114/0x1a0 [ 149.902293] syscall_exit_to_user_mode+0x19/0x40 [ 149.902656] do_syscall_64+0x48/0x90 [ 149.902940] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 149.903338] RIP: 0033:0x7f7dc5371b19 [ 149.903620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 149.904950] RSP: 002b:00007f7dc28e7218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 149.905514] RAX: 0000000000000001 RBX: 00007f7dc5484f68 RCX: 00007f7dc5371b19 [ 149.906037] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f7dc5484f6c [ 149.906567] RBP: 00007f7dc5484f60 R08: 000000000000000e R09: 0000000000000000 [ 149.907081] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f7dc5484f6c [ 149.907608] R13: 00007ffd518f72ef R14: 00007f7dc28e7300 R15: 0000000000022000 [ 149.908130] [ 149.908335] irq event stamp: 704 [ 149.908579] hardirqs last enabled at (703): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 149.909276] hardirqs last disabled at (704): [] __schedule+0x1225/0x2470 [ 149.909907] softirqs last enabled at (420): [] __irq_exit_rcu+0x11b/0x180 [ 149.910555] softirqs last disabled at (411): [] __irq_exit_rcu+0x11b/0x180 [ 149.911193] ---[ end trace 0000000000000000 ]--- 07:27:55 executing program 2: syz_open_dev$loop(0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x32261, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r1 = getgid() ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)=ANY=[@ANYBLOB="88f4eef2d8f6d8609d7614c5838c2000e97e4decb3bddaab217a898e3a546ae87eb85973b3fba437e360d509a7995a0247b2b49821cc57540762fdd91ec5bfff0c6660edc94fb295379b168f607197b3483a701de82d324ec971f4f0f9c0f60a8d4aada10958be", @ANYRES32, @ANYRES32=0xee00, @ANYRES32=r1, @ANYBLOB='n/file0\x00']) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000000)={'lo\x00'}) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x7, 0x50, r0, 0x8000000) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x1010, 0xffffffffffffffff, 0x10000000) recvfrom$unix(0xffffffffffffffff, &(0x7f0000000380)=""/100, 0x64, 0x2100, &(0x7f0000000400)=@file={0x0, './file1\x00'}, 0x6e) write(r0, &(0x7f0000000080)="01", 0x41030) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 07:27:55 executing program 4: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) r9 = syz_open_dev$vcsa(&(0x7f0000000640), 0xde0e, 0xa8020) pread64(r9, &(0x7f0000000680)=""/241, 0xf1, 0x9) clock_gettime(0x0, &(0x7f0000000780)) r10 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCSPGRP(r10, 0x8902, &(0x7f00000007c0)) futex(&(0x7f0000000800)=0x2, 0x8, 0x1, &(0x7f0000000880), &(0x7f00000008c0)=0x2, 0x1) 07:27:55 executing program 6: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000340), 0xffffffffffffffff) syz_mount_image$iso9660(&(0x7f00000005c0), &(0x7f0000000600)='./file0\x00', 0x0, 0x0, &(0x7f0000000a40), 0x0, &(0x7f0000000b00)) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan3\x00', 0x0}) sendmsg$IEEE802154_LLSEC_GETPARAMS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000010}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, r1, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}]}, 0x34}, 0x1, 0x0, 0x0, 0x4008006}, 0x4010) ioctl$KDGETKEYCODE(r0, 0x4b4c, &(0x7f0000000c40)) 07:27:55 executing program 0: syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000002680)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000002500)=[{&(0x7f0000000080)=""/4096, 0x1000}, {&(0x7f0000001080)=""/83, 0x53}, {&(0x7f0000001100)=""/244, 0xf4}, {&(0x7f0000001200)=""/229, 0xe5}, {&(0x7f0000001300)=""/225, 0xe1}, {&(0x7f0000001400)=""/245, 0xf5}, {&(0x7f0000001500)=""/4096, 0x1000}], 0x7, &(0x7f0000002580)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd8}, 0x20012001) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000002700)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, r0, 0x0, &(0x7f00000026c0)='./file0\x00', 0x80, 0x921c0, 0x23456, {0x0, r1}}, 0x4e) 07:27:55 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/tty/ldiscs\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000040)='./file0\x00', 0x6000, 0x1) r1 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x400000, 0x8) r2 = dup(r1) read$char_usb(r2, &(0x7f00000000c0)=""/165, 0xa5) renameat2(r1, &(0x7f0000000180)='./file0\x00', 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x5) fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000200)='silent\x00', 0x0, 0x0) r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) r4 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000280), 0x2, 0x0) fcntl$dupfd(r3, 0x0, r4) pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EXT4_IOC_CHECKPOINT(r5, 0x4004662b, &(0x7f0000000300)=0x5) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000340)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) r7 = epoll_create1(0x0) poll(&(0x7f0000000380)=[{r7}, {0xffffffffffffffff, 0x2000}, {r3, 0x8009}], 0x3, 0x800) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f00000003c0)={0xf0000014}) ftruncate(r7, 0xfff) syz_io_uring_setup(0x5938, &(0x7f0000000400)={0x0, 0x29b4, 0x20, 0x1, 0x46, 0x0, r6}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff7000/0x9000)=nil, &(0x7f0000000480), &(0x7f00000004c0)) write$tcp_mem(r1, &(0x7f0000000500)={0xfe6, 0x20, 0x800, 0x20, 0xfff}, 0x48) ioctl$BTRFS_IOC_SUBVOL_CREATE(r3, 0x5000940e, &(0x7f0000000580)={{}, "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"}) 07:27:55 executing program 3: r0 = add_key(&(0x7f0000000140)='id_resolver\x00', &(0x7f0000000480)={'syz', 0x0}, &(0x7f00000004c0)="87b1d48215e06632a8d18fba5ce441719c970c89c7e47128d96375ebfb381c292181e42d2c1f8d05e762e81d13cfb951eb5ffd4c7f5683357fbe31a2ffca874f167edbc346cc1f0f1f04fdeed0a85d4cb4423ec11ba2d5aba9d6b345346e9ec48a6d29839d265734af8268e0964e17638e41fe2c503f6a3ca9280f50b998de51402db117930efcaa17d1bb23ef6254335e2f78cd3db4a9e1b22d3de4d84be16fbf00655aa9c28be4ac91aa3c4ef945", 0xaf, 0xfffffffffffffffb) keyctl$setperm(0x5, r0, 0x1010800) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000a00)='hugetlbfs\x00', 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) pivot_root(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='./file0\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket(0x2c, 0x2, 0xea81) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r2) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000006c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f00000009c0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x800000}, 0xffffffffffffffe7, &(0x7f0000000740)={&(0x7f00000008c0)={0xd8, r4, 0x800, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x2c}, @val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x7f, 0x3}}}}, [@NL80211_ATTR_VENDOR_DATA={0x8f, 0xc5, "70a7364a4d05cc185f40e676ab62066b6e12bb152ae19d1dfe42eea9092c6004744323f2b293c6dbe077ab681ba96693b6297bccd2f92e19040802222a97ff68b3f3fc9115fbd10f7cfc8f36ee5f7bc55d385f4b5cc308efd2157fff1fb6eb357920999eff2a972aac6332c2e71fea0a2f779d99364fa5d095749b28103e0eb2c7080857bd7913580ca306"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x3}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x1ff}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x5}]}, 0xd8}, 0x1, 0x0, 0x0, 0x24040011}, 0x20000000) perf_event_open(&(0x7f0000000600)={0x2, 0x80, 0x94, 0x84, 0x5, 0x2a, 0x0, 0x9, 0x8013, 0xb, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f00000005c0), 0x8}, 0x7bc39bb3f88feff6, 0x9, 0x8000, 0x1, 0x9, 0x1, 0x8, 0x0, 0x200, 0x0, 0x4}, 0x0, 0xb, r1, 0xa) read(r2, &(0x7f0000000000), 0xfffffdef) setsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000180)={0x0, @private=0xa010101, @multicast1}, 0xc) sendmsg$IPVS_CMD_SET_CONFIG(r2, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="90000000eadfd9107efe0600033726abdb53857cb50c", @ANYRES16=0x0, @ANYBLOB="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"], 0x90}, 0x1, 0x0, 0x0, 0x22000850}, 0x4040) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000780)={&(0x7f0000000a80)=ANY=[@ANYBLOB="1c0200004629d18535bdb4e6f3fb7df19ddadf5857746a7ede60d8434f91b8086b9cdcb61f33dea82151dbbb1a615985948e49a04fa3c5e8d4427f1f528fee45a5ed53de5b45239507098d801d7c82ad4d7d75f91d8ed380c5b6ad911dc527bfae61db9ecb359f358f1e24b4da06217ee553416859464f39de6bbed32f3f9d166124a478286ebbcccfd792a6ee491620", @ANYRES16=0x0, @ANYBLOB="00022cbd7000ffdbdf251300000000000000255c00a834bb1700"], 0x1c}, 0x1, 0x0, 0x0, 0x44085}, 0x8001) unlinkat(r2, &(0x7f0000000000)='./file0\x00', 0x0) signalfd(0xffffffffffffffff, &(0x7f0000001d40), 0x8) 07:27:55 executing program 5: clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{0x77359400}, 0x12, 0x1}, {{r0, r1/1000+60000}, 0x11, 0x4, 0xfff}, {{0x77359400}, 0x11, 0x3, 0x1}, {{0x0, 0xea60}, 0x0, 0x5, 0x9}, {{0x0, 0x2710}, 0x2, 0x3f, 0x9}, {{0x77359400}, 0x2, 0x3ff, 0x2}], 0x90) futex(&(0x7f0000000100), 0x9, 0x1, &(0x7f0000000140), &(0x7f0000000180)=0x1, 0x2) clock_gettime(0x6, &(0x7f00000001c0)) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) futex(&(0x7f0000000200)=0x2, 0x9, 0x1, &(0x7f0000000280)={r2, r3+60000000}, &(0x7f00000002c0)=0x2, 0x0) r4 = syz_io_uring_setup(0x56ab, &(0x7f0000000300)={0x0, 0x4c5, 0x1, 0x1, 0x39e}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000380)=0x0, &(0x7f00000003c0)) r6 = mmap$IORING_OFF_SQES(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0x3, 0x4010, 0xffffffffffffffff, 0x10000000) r7 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd=r7, 0x0, 0x0, 0x80000001, 0x1, 0x0, {0x0, r8}}, 0x1ff) io_uring_enter(r4, 0x4678, 0x4fdb, 0x1, &(0x7f0000000480)={[0x769]}, 0x8) futex(&(0x7f00000004c0), 0x9, 0x0, &(0x7f0000000500), &(0x7f0000000540), 0x1) futex(&(0x7f0000000580)=0x1, 0xc, 0x2, &(0x7f00000005c0), &(0x7f0000000600)=0x2, 0x2) pread64(0xffffffffffffffff, &(0x7f0000000680)=""/241, 0xf1, 0x9) [ 149.990384] ISOFS: Unable to identify CD-ROM format. [ 150.040960] ISOFS: Unable to identify CD-ROM format. VM DIAGNOSIS: 07:27:56 Registers: info registers vcpu 0 RAX=0000000000000061 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b29f1 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff88801b787698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000061 R11=0000000000000001 R12=0000000000000061 R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b29e0 RIP=ffffffff822b2a49 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f7dc28e7700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2e123000 CR3=000000000f120000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f7dc54587c0 00007f7dc54587c8 YMM02=0000000000000000 0000000000000000 00007f7dc54587e0 00007f7dc54587c0 YMM03=0000000000000000 0000000000000000 00007f7dc54587c8 00007f7dc54587c0 YMM04=0000000000000000 0000000000000000 7141e45cba8fd1a8 3266e01582d4b187 YMM05=0000000000000000 0000000000000000 45f94e3caa91ace4 8bc2a95a6500bf6f YMM06=0000000000000000 0000000000000000 e14bd8e43d2db2e1 a9b43dcd782f5e33 YMM07=0000000000000000 0000000000000000 5462ef23bbd117aa fc0e9317b12d4051 YMM08=0000000000000000 0000000000000000 de98b9500f28a93c 6a3f502cfe418e63 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000001 RCX=ffffffff84264287 RDX=ffffed100d9c6f99 RSI=0000000000000004 RDI=ffff88806ce37cc0 RBP=ffff88806ce37cc0 RSP=ffff888032c77a98 R8 =0000000000000000 R9 =ffff88806ce37cc3 R10=ffffed100d9c6f98 R11=0000000000000001 R12=0000000000000003 R13=ffffed100d9c6f98 R14=0000000000000001 R15=1ffff1100658ef54 RIP=ffffffff84264304 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055555691e400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fcbb822ef80 CR3=000000000f1ce000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000