Warning: Permanently added '[localhost]:16571' (ECDSA) to the list of known hosts. 2022/09/17 01:39:00 fuzzer started 2022/09/17 01:39:00 dialing manager at localhost:36051 syzkaller login: [ 40.536024] cgroup: Unknown subsys name 'net' [ 40.618779] cgroup: Unknown subsys name 'rlimit' 2022/09/17 01:39:16 syscalls: 2215 2022/09/17 01:39:16 code coverage: enabled 2022/09/17 01:39:16 comparison tracing: enabled 2022/09/17 01:39:16 extra coverage: enabled 2022/09/17 01:39:16 setuid sandbox: enabled 2022/09/17 01:39:16 namespace sandbox: enabled 2022/09/17 01:39:16 Android sandbox: enabled 2022/09/17 01:39:16 fault injection: enabled 2022/09/17 01:39:16 leak checking: enabled 2022/09/17 01:39:16 net packet injection: enabled 2022/09/17 01:39:16 net device setup: enabled 2022/09/17 01:39:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/17 01:39:16 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/17 01:39:16 USB emulation: enabled 2022/09/17 01:39:16 hci packet injection: enabled 2022/09/17 01:39:16 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220916) 2022/09/17 01:39:16 802.15.4 emulation: enabled 2022/09/17 01:39:16 fetching corpus: 50, signal 29093/30853 (executing program) 2022/09/17 01:39:16 fetching corpus: 100, signal 44917/48204 (executing program) 2022/09/17 01:39:16 fetching corpus: 150, signal 56078/60763 (executing program) 2022/09/17 01:39:16 fetching corpus: 200, signal 67382/73297 (executing program) 2022/09/17 01:39:17 fetching corpus: 250, signal 74394/81486 (executing program) 2022/09/17 01:39:17 fetching corpus: 300, signal 78564/86929 (executing program) 2022/09/17 01:39:17 fetching corpus: 350, signal 82279/91841 (executing program) 2022/09/17 01:39:17 fetching corpus: 400, signal 87663/98262 (executing program) 2022/09/17 01:39:17 fetching corpus: 450, signal 92583/104145 (executing program) 2022/09/17 01:39:17 fetching corpus: 500, signal 96145/108734 (executing program) 2022/09/17 01:39:17 fetching corpus: 550, signal 99978/113509 (executing program) 2022/09/17 01:39:17 fetching corpus: 600, signal 103131/117593 (executing program) 2022/09/17 01:39:18 fetching corpus: 650, signal 107931/123116 (executing program) 2022/09/17 01:39:18 fetching corpus: 700, signal 111672/127630 (executing program) 2022/09/17 01:39:18 fetching corpus: 750, signal 115977/132598 (executing program) 2022/09/17 01:39:18 fetching corpus: 800, signal 117718/135305 (executing program) 2022/09/17 01:39:18 fetching corpus: 850, signal 121808/139987 (executing program) 2022/09/17 01:39:18 fetching corpus: 900, signal 124134/143050 (executing program) 2022/09/17 01:39:19 fetching corpus: 950, signal 127038/146522 (executing program) 2022/09/17 01:39:19 fetching corpus: 1000, signal 128891/149150 (executing program) 2022/09/17 01:39:19 fetching corpus: 1050, signal 130542/151504 (executing program) 2022/09/17 01:39:19 fetching corpus: 1100, signal 132010/153769 (executing program) 2022/09/17 01:39:19 fetching corpus: 1150, signal 133654/156129 (executing program) 2022/09/17 01:39:19 fetching corpus: 1200, signal 135296/158421 (executing program) 2022/09/17 01:39:19 fetching corpus: 1250, signal 136586/160412 (executing program) 2022/09/17 01:39:19 fetching corpus: 1300, signal 138996/163281 (executing program) 2022/09/17 01:39:19 fetching corpus: 1350, signal 141811/166424 (executing program) 2022/09/17 01:39:20 fetching corpus: 1400, signal 143534/168685 (executing program) 2022/09/17 01:39:20 fetching corpus: 1450, signal 145231/170882 (executing program) 2022/09/17 01:39:20 fetching corpus: 1500, signal 146769/172943 (executing program) 2022/09/17 01:39:20 fetching corpus: 1550, signal 148376/175033 (executing program) 2022/09/17 01:39:20 fetching corpus: 1600, signal 149541/176716 (executing program) 2022/09/17 01:39:20 fetching corpus: 1650, signal 152394/179678 (executing program) 2022/09/17 01:39:21 fetching corpus: 1700, signal 153667/181432 (executing program) 2022/09/17 01:39:21 fetching corpus: 1750, signal 155172/183357 (executing program) 2022/09/17 01:39:21 fetching corpus: 1800, signal 156529/185126 (executing program) 2022/09/17 01:39:21 fetching corpus: 1850, signal 157703/186779 (executing program) 2022/09/17 01:39:21 fetching corpus: 1900, signal 159009/188481 (executing program) 2022/09/17 01:39:21 fetching corpus: 1950, signal 160213/190134 (executing program) 2022/09/17 01:39:21 fetching corpus: 2000, signal 161908/192095 (executing program) 2022/09/17 01:39:21 fetching corpus: 2050, signal 163480/193948 (executing program) 2022/09/17 01:39:22 fetching corpus: 2100, signal 164335/195280 (executing program) 2022/09/17 01:39:22 fetching corpus: 2150, signal 165810/197021 (executing program) 2022/09/17 01:39:22 fetching corpus: 2200, signal 166885/198470 (executing program) 2022/09/17 01:39:22 fetching corpus: 2250, signal 168111/199989 (executing program) 2022/09/17 01:39:22 fetching corpus: 2300, signal 169522/201623 (executing program) 2022/09/17 01:39:22 fetching corpus: 2350, signal 170749/203161 (executing program) 2022/09/17 01:39:22 fetching corpus: 2400, signal 172000/204593 (executing program) 2022/09/17 01:39:22 fetching corpus: 2450, signal 173951/206492 (executing program) 2022/09/17 01:39:23 fetching corpus: 2500, signal 175807/208259 (executing program) 2022/09/17 01:39:23 fetching corpus: 2550, signal 176816/209504 (executing program) 2022/09/17 01:39:23 fetching corpus: 2600, signal 178059/210920 (executing program) 2022/09/17 01:39:23 fetching corpus: 2650, signal 179274/212265 (executing program) 2022/09/17 01:39:23 fetching corpus: 2700, signal 181183/214095 (executing program) 2022/09/17 01:39:23 fetching corpus: 2750, signal 182423/215421 (executing program) 2022/09/17 01:39:24 fetching corpus: 2800, signal 183822/216768 (executing program) 2022/09/17 01:39:24 fetching corpus: 2850, signal 184759/217912 (executing program) 2022/09/17 01:39:24 fetching corpus: 2900, signal 186191/219256 (executing program) 2022/09/17 01:39:24 fetching corpus: 2950, signal 187400/220482 (executing program) 2022/09/17 01:39:24 fetching corpus: 3000, signal 188228/221473 (executing program) 2022/09/17 01:39:24 fetching corpus: 3050, signal 190092/223036 (executing program) 2022/09/17 01:39:24 fetching corpus: 3100, signal 190666/223860 (executing program) 2022/09/17 01:39:24 fetching corpus: 3150, signal 191887/225038 (executing program) 2022/09/17 01:39:25 fetching corpus: 3200, signal 193077/226117 (executing program) 2022/09/17 01:39:25 fetching corpus: 3250, signal 193589/226862 (executing program) 2022/09/17 01:39:25 fetching corpus: 3300, signal 194465/227808 (executing program) 2022/09/17 01:39:25 fetching corpus: 3350, signal 195465/228790 (executing program) 2022/09/17 01:39:25 fetching corpus: 3400, signal 196388/229757 (executing program) 2022/09/17 01:39:25 fetching corpus: 3450, signal 196799/230446 (executing program) 2022/09/17 01:39:25 fetching corpus: 3500, signal 197503/231234 (executing program) 2022/09/17 01:39:25 fetching corpus: 3550, signal 198127/232017 (executing program) 2022/09/17 01:39:26 fetching corpus: 3600, signal 199024/232906 (executing program) 2022/09/17 01:39:26 fetching corpus: 3650, signal 199886/233718 (executing program) 2022/09/17 01:39:26 fetching corpus: 3700, signal 201709/234989 (executing program) 2022/09/17 01:39:26 fetching corpus: 3750, signal 202206/235609 (executing program) 2022/09/17 01:39:26 fetching corpus: 3800, signal 202715/236270 (executing program) 2022/09/17 01:39:26 fetching corpus: 3850, signal 203858/237199 (executing program) 2022/09/17 01:39:26 fetching corpus: 3900, signal 204793/238016 (executing program) 2022/09/17 01:39:26 fetching corpus: 3950, signal 205454/238758 (executing program) 2022/09/17 01:39:27 fetching corpus: 4000, signal 206358/239556 (executing program) 2022/09/17 01:39:27 fetching corpus: 4050, signal 207333/240302 (executing program) 2022/09/17 01:39:27 fetching corpus: 4100, signal 208026/240960 (executing program) 2022/09/17 01:39:27 fetching corpus: 4150, signal 209172/241715 (executing program) 2022/09/17 01:39:27 fetching corpus: 4200, signal 209642/242254 (executing program) 2022/09/17 01:39:27 fetching corpus: 4250, signal 210167/242835 (executing program) 2022/09/17 01:39:27 fetching corpus: 4300, signal 211153/243536 (executing program) 2022/09/17 01:39:27 fetching corpus: 4350, signal 211882/244148 (executing program) 2022/09/17 01:39:27 fetching corpus: 4400, signal 212908/244859 (executing program) 2022/09/17 01:39:28 fetching corpus: 4450, signal 213734/245465 (executing program) 2022/09/17 01:39:28 fetching corpus: 4500, signal 214048/245939 (executing program) 2022/09/17 01:39:28 fetching corpus: 4550, signal 214615/246451 (executing program) 2022/09/17 01:39:28 fetching corpus: 4600, signal 215205/247001 (executing program) 2022/09/17 01:39:28 fetching corpus: 4650, signal 215942/247686 (executing program) 2022/09/17 01:39:28 fetching corpus: 4700, signal 216928/248274 (executing program) 2022/09/17 01:39:29 fetching corpus: 4750, signal 217541/248772 (executing program) 2022/09/17 01:39:29 fetching corpus: 4800, signal 218186/249255 (executing program) 2022/09/17 01:39:29 fetching corpus: 4850, signal 218958/249750 (executing program) 2022/09/17 01:39:29 fetching corpus: 4900, signal 220059/250433 (executing program) 2022/09/17 01:39:29 fetching corpus: 4950, signal 221257/251009 (executing program) 2022/09/17 01:39:29 fetching corpus: 5000, signal 221915/251439 (executing program) 2022/09/17 01:39:29 fetching corpus: 5050, signal 222718/251876 (executing program) 2022/09/17 01:39:30 fetching corpus: 5100, signal 223749/252444 (executing program) 2022/09/17 01:39:30 fetching corpus: 5150, signal 224487/252884 (executing program) 2022/09/17 01:39:30 fetching corpus: 5200, signal 225022/253261 (executing program) 2022/09/17 01:39:30 fetching corpus: 5250, signal 225617/253603 (executing program) 2022/09/17 01:39:30 fetching corpus: 5300, signal 226448/254024 (executing program) 2022/09/17 01:39:30 fetching corpus: 5350, signal 227177/254430 (executing program) 2022/09/17 01:39:30 fetching corpus: 5400, signal 227581/254763 (executing program) 2022/09/17 01:39:30 fetching corpus: 5450, signal 228180/255099 (executing program) 2022/09/17 01:39:31 fetching corpus: 5500, signal 228804/255460 (executing program) 2022/09/17 01:39:31 fetching corpus: 5550, signal 229544/255799 (executing program) 2022/09/17 01:39:31 fetching corpus: 5600, signal 230436/256147 (executing program) 2022/09/17 01:39:31 fetching corpus: 5650, signal 230999/256464 (executing program) 2022/09/17 01:39:31 fetching corpus: 5700, signal 231526/256742 (executing program) 2022/09/17 01:39:31 fetching corpus: 5750, signal 232122/257044 (executing program) 2022/09/17 01:39:31 fetching corpus: 5800, signal 232833/257388 (executing program) 2022/09/17 01:39:32 fetching corpus: 5850, signal 233279/257645 (executing program) 2022/09/17 01:39:32 fetching corpus: 5900, signal 234196/257958 (executing program) 2022/09/17 01:39:32 fetching corpus: 5950, signal 234854/258212 (executing program) 2022/09/17 01:39:32 fetching corpus: 6000, signal 235165/258430 (executing program) 2022/09/17 01:39:32 fetching corpus: 6050, signal 235730/258657 (executing program) 2022/09/17 01:39:32 fetching corpus: 6100, signal 236216/258905 (executing program) 2022/09/17 01:39:32 fetching corpus: 6150, signal 236755/259096 (executing program) 2022/09/17 01:39:33 fetching corpus: 6200, signal 237241/259266 (executing program) 2022/09/17 01:39:33 fetching corpus: 6250, signal 237835/259455 (executing program) 2022/09/17 01:39:33 fetching corpus: 6300, signal 238366/259634 (executing program) 2022/09/17 01:39:33 fetching corpus: 6350, signal 238827/259759 (executing program) 2022/09/17 01:39:33 fetching corpus: 6400, signal 239634/259759 (executing program) 2022/09/17 01:39:33 fetching corpus: 6450, signal 240300/259760 (executing program) 2022/09/17 01:39:33 fetching corpus: 6500, signal 240887/259762 (executing program) 2022/09/17 01:39:34 fetching corpus: 6550, signal 241278/259766 (executing program) 2022/09/17 01:39:34 fetching corpus: 6600, signal 241634/259773 (executing program) 2022/09/17 01:39:34 fetching corpus: 6650, signal 242023/259776 (executing program) 2022/09/17 01:39:34 fetching corpus: 6700, signal 242459/259779 (executing program) 2022/09/17 01:39:34 fetching corpus: 6750, signal 242712/259779 (executing program) 2022/09/17 01:39:34 fetching corpus: 6800, signal 243089/259779 (executing program) 2022/09/17 01:39:34 fetching corpus: 6830, signal 243333/259779 (executing program) 2022/09/17 01:39:34 fetching corpus: 6830, signal 243333/259779 (executing program) 2022/09/17 01:39:37 starting 8 fuzzer processes 01:39:37 executing program 2: sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000040)={0x124, 0x0, 0x20, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x34, 0xc, 0x0, 0x1, [{0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2b83}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xd118fa2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x52f1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3764ce2f}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6fe056bc}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_MLSCATLST={0xd4, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6ba3a3e}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4be682c6}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x74cc7ff3}]}, {0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x61543bbe}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa320}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1708bf83}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1c65}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1dba}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4aec}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x35e00388}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3a3b020e}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x30ea7d09}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2cf7}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5fd1deae}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x7e836c0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x43449304}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x8093}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x50540b3d}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xaca0}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5ad2ceb0}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4ef1}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x97ed}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1bc0d573}]}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x4044880}, 0x4) sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x34, 0x0, 0x10, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x75}, @val={0x8}, @void}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x2044002) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000400)={&(0x7f0000000340)={0xa4, 0x0, 0x200, 0x70bd25, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_DEVKEY={0x80, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x4464}, @NL802154_DEVKEY_ATTR_ID={0x3c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x100}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x7}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x4}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0x100}}, @NL802154_DEVKEY_ATTR_ID={0x24, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xffffec34}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x401}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x4}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0xa4}, 0x1, 0x0, 0x0, 0xebc209af37b42c1}, 0x44800) sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000480), 0xc, &(0x7f00000006c0)={&(0x7f00000004c0)={0x1c4, 0x0, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_MLSLVLLST={0xb0, 0x8, 0x0, 0x1, [{0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfd}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x62}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe5}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x124fee9c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b19d29a}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x98}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7fdd9627}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5d376bf}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4ac9469b}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x17}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x10c91bab}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x20}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bb1ce1c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x710afcca}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6e4c418f}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_MLSLVLLST={0x58, 0x8, 0x0, 0x1, [{0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x6ae123ae}]}, {0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x56}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x56}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2a}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x36e7e8ec}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x79bd8b61}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x40cf793f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xc0}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x375352d9}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}, @NLBL_CIPSOV4_A_MLSCATLST={0x40, 0xc, 0x0, 0x1, [{0x3c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6785826b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1980}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xb9e7cec}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x418c}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x133f55c3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x72c9f145}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb94c}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0x28, 0xc, 0x0, 0x1, [{0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x320708f4}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe798}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2befe719}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf14e}]}]}]}, 0x1c4}}, 0x4000000) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000004b40)=[{{&(0x7f0000000740)=@abs, 0x6e, &(0x7f00000008c0)=[{&(0x7f00000007c0)=""/201, 0xc9}], 0x1}}, {{0x0, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000900)=""/121, 0x79}, {&(0x7f0000000980)=""/149, 0x95}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000001a40)=""/202, 0xca}, {&(0x7f0000001b40)=""/214, 0xd6}, {&(0x7f0000001c40)=""/153, 0x99}, {&(0x7f0000001d00)=""/117, 0x75}, {&(0x7f0000001d80)}, {&(0x7f0000001dc0)=""/1, 0x1}], 0x9, &(0x7f0000001ec0)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{0x0, 0x0, &(0x7f00000023c0)=[{&(0x7f0000001f00)=""/60, 0x3c}, {&(0x7f0000001f40)=""/132, 0x84}, {&(0x7f0000002000)=""/85, 0x55}, {&(0x7f0000002080)=""/205, 0xcd}, {&(0x7f0000002180)=""/180, 0xb4}, {&(0x7f0000002240)=""/157, 0x9d}, {&(0x7f0000002300)=""/74, 0x4a}, {&(0x7f0000002380)=""/49, 0x31}], 0x8}}, {{&(0x7f0000002440), 0x6e, &(0x7f00000038c0)=[{&(0x7f00000024c0)=""/82, 0x52}, {&(0x7f0000002540)=""/40, 0x28}, {&(0x7f0000002580)=""/111, 0x6f}, {&(0x7f0000002600)=""/4096, 0x1000}, {&(0x7f0000003600)=""/193, 0xc1}, {&(0x7f0000003700)=""/223, 0xdf}, {&(0x7f0000003800)=""/141, 0x8d}], 0x7, &(0x7f0000003940)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0}}, {{&(0x7f0000003a00), 0x6e, &(0x7f0000003e40)=[{&(0x7f0000003a80)=""/89, 0x59}, {&(0x7f0000003b00)=""/71, 0x47}, {&(0x7f0000003b80)=""/133, 0x85}, {&(0x7f0000003c40)=""/96, 0x60}, {&(0x7f0000003cc0)=""/127, 0x7f}, {&(0x7f0000003d40)=""/229, 0xe5}], 0x6, &(0x7f0000003ec0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x110}}, {{&(0x7f0000004000)=@abs, 0x6e, &(0x7f00000040c0)=[{&(0x7f0000004080)=""/29, 0x1d}], 0x1, &(0x7f0000004100)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{0x0, 0x0, &(0x7f0000004640)=[{&(0x7f0000004140)=""/90, 0x5a}, {&(0x7f00000041c0)=""/161, 0xa1}, {&(0x7f0000004280)=""/65, 0x41}, {&(0x7f0000004300)=""/98, 0x62}, {&(0x7f0000004380)=""/255, 0xff}, {&(0x7f0000004480)=""/220, 0xdc}, {&(0x7f0000004580)=""/133, 0x85}], 0x7, &(0x7f00000046c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x158}}, {{0x0, 0x0, &(0x7f0000004ac0)=[{&(0x7f0000004840)=""/203, 0xcb}, {&(0x7f0000004940)=""/131, 0x83}, {&(0x7f0000004a00)=""/151, 0x97}], 0x3, &(0x7f0000004b00)=[@cred={{0x1c}}], 0x20}}], 0x8, 0x10023, &(0x7f0000004d40)={0x77359400}) r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000004dc0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_PORT_SPLIT(r6, &(0x7f0000005040)={&(0x7f0000004d80)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000005000)={&(0x7f0000004e00)={0x1e0, r9, 0x400, 0x70bd29, 0x25dfdbfc, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x8}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0x9, 0x7}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0x9, 0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0x9, 0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x2}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x6}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x2}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0x9, 0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x8}}]}, 0x1e0}, 0x1, 0x0, 0x0, 0x8000}, 0x40) r10 = syz_genetlink_get_family_id$ipvs(&(0x7f00000050c0), r2) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000005280)={&(0x7f0000005080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000005240)={&(0x7f0000005100)={0x124, r10, 0x8, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0x58, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'ovf\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@loopback}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x6c}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e20}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'fo\x00'}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x43}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffff9}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_DAEMON={0x60, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @private=0xa010101}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffffffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}, @IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x6, 0x20}}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}]}, 0x124}, 0x1, 0x0, 0x0, 0x20004000}, 0x4000015) openat(r5, &(0x7f00000052c0)='./file0\x00', 0xa100, 0x2) sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, &(0x7f00000053c0)={&(0x7f0000005300)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000005380)={&(0x7f0000005340)={0x20, 0x7, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x5}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000004) r11 = openat$vcs(0xffffffffffffff9c, &(0x7f0000005400), 0x200, 0x0) sendmsg$BATADV_CMD_SET_HARDIF(r11, &(0x7f0000005540)={&(0x7f0000005440)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000005500)={&(0x7f0000005480)={0x5c, 0x0, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x8}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x7}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x5c}, 0x1, 0x0, 0x0, 0x24008800}, 0x28044000) syz_genetlink_get_family_id$ipvs(&(0x7f0000005580), r0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000005600)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000005700)={&(0x7f00000055c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000056c0)={&(0x7f0000005640)={0x48, 0x0, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r12}, @NL802154_ATTR_PID={0x8, 0x1c, r8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_PID={0x8, 0x1c, r3}]}, 0x48}, 0x1, 0x0, 0x0, 0x4040}, 0x20000001) sendmsg$TIPC_NL_NAME_TABLE_GET(r4, &(0x7f0000005900)={&(0x7f0000005740)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000058c0)={&(0x7f0000005780)={0x120, 0x0, 0x200, 0x70bd29, 0x25dfdbfc, {}, [@TIPC_NLA_PUBL={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xb96}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x800}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x80000000}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x5}]}, @TIPC_NLA_MEDIA={0x40, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3ff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ee37e86}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}]}, @TIPC_NLA_MEDIA={0x60, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xa976}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MON={0x24, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffff76e}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7ff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}]}]}, 0x120}, 0x1, 0x0, 0x0, 0x4080}, 0x0) r13 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000004, 0x10, r7, 0x10000000) syz_io_uring_submit(0x0, r13, &(0x7f0000005940)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x40) write(r1, &(0x7f0000005980)="6793e5b0540381650a5e600d64793476c535ffa8042c0f78c198a7d7e983ede3661845d57a92098bc307efd02e0606a5df5786dcd3d485dc46a78acbfda747cd8b195efeb9f0833edf989c91e33c323c02431504f3d508288fb7441295b37878f4b8f3b2a86d55369854", 0x6a) 01:39:37 executing program 1: prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x2) prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x0) prctl$PR_SET_FPEMU(0xa, 0x1) prctl$PR_SET_FPEMU(0xa, 0x2) prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x2) prctl$PR_SET_FPEMU(0xa, 0x1) prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x0) prctl$PR_SET_FPEMU(0xa, 0x4) prctl$PR_SET_FPEMU(0xa, 0x1) prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x5) prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x3) prctl$PR_SET_FPEMU(0xa, 0x1) 01:39:37 executing program 0: sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000140)={&(0x7f0000000040)={0xd4, 0x3, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x5}, [@CTA_NAT_DST={0x88, 0xd, 0x0, 0x1, [@CTA_NAT_PROTO={0x1c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_PROTO={0x1c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private2={0xfc, 0x2, '\x00', 0x1}}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @broadcast}]}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x4}, @CTA_TUPLE_MASTER={0x30, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_ZONE={0x6}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x40d4}, 0x800) sendmsg$DEVLINK_CMD_PORT_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x60, 0x0, 0x300, 0x70bd29, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x200480d1}, 0x40080c0) sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x64, 0x13, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x6}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x64}, 0x1, 0x0, 0x0, 0x20008044}, 0x880) r0 = syz_open_dev$vcsa(&(0x7f0000000440), 0x2e84, 0x8000) sendmsg$NL80211_CMD_STOP_SCHED_SCAN(r0, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x34, 0x0, 0x10, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8c6, 0x55}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x3f}]}, 0x34}, 0x1, 0x0, 0x0, 0x20040010}, 0x20004000) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000005c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000700)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000600)={0xa8, 0x0, 0x16fbf73143075d00, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r1}, @val={0xc, 0x99, {0x68000000, 0x27}}}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x35, 0x2a, [@mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x0, 0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x40}}, @mesh_id={0x72, 0x6}, @gcr_ga={0xbd, 0x6, @broadcast}, @peer_mgmt={0x75, 0x16, {0x1, 0x6, @val=0x18e, @void, @val="e1c0874e6ff6d36d9b4aa62b46175447"}}]}, @NL80211_ATTR_MAC={0xa, 0x6, @random="a6d3cfb013f3"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_IE={0x12, 0x2a, [@chsw_timing={0x68, 0x4, {0x2, 0x80}}, @peer_mgmt={0x75, 0x6, {0x1, 0x15ce, @val, @void, @void}}]}, @NL80211_ATTR_MAC={0xa}]}, 0xa8}, 0x1, 0x0, 0x0, 0x10}, 0x20004800) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000740)=0x7fffffff, 0x4) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000780), 0x88040, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), r0) sendmsg$NL80211_CMD_DEAUTHENTICATE(r2, &(0x7f0000000900)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000840)={0x78, r3, 0x200, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1, 0x2a}}}}, [@NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3ff}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3}, @NL80211_ATTR_SSID={0x1a, 0x34, @random="bdcaca292d609860b201b57669f85e76fc9cb9d343b8"}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x8c8b}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1941}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}]}, 0x78}, 0x1, 0x0, 0x0, 0x810}, 0x1) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0) r4 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) fgetxattr(r4, &(0x7f0000000940)=@known='com.apple.system.Security\x00', &(0x7f0000000980)=""/224, 0xe0) ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f0000000a80)=""/189) r5 = accept$inet6(r2, &(0x7f0000000b40)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @remote}}, &(0x7f0000000b80)=0x1c) setsockopt$inet6_int(r5, 0x29, 0x7, &(0x7f0000000bc0)=0x4, 0x4) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000d40)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c40)={0x84, 0x0, 0x9f8ecd6686f06cac, 0x70bd2b, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e24}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e20}, @MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @mcast1}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @private=0xa010102}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e21}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x7}]}, 0x84}, 0x1, 0x0, 0x0, 0x80}, 0x80) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000d80)={{0x1, 0x1, 0x18, r2, {0x5}}, './file0\x00'}) sendmsg$TEAM_CMD_OPTIONS_GET(r6, &(0x7f0000001500)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000014c0)={&(0x7f0000001040)={0x448, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [{{0x8}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x1b0, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x400}}, {0x8}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x8000, 0x9a, 0x8, 0x4}, {0x2, 0x20, 0x20}, {0x3, 0x4, 0x1, 0x1ff}]}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x390}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xffff}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}]}}, {{0x8}, {0x22c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}, {0x3c, 0x1, @enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xf16}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x448}, 0x1, 0x0, 0x0, 0x4000041}, 0x40018) [ 76.580762] audit: type=1400 audit(1663378777.099:6): avc: denied { execmem } for pid=285 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 01:39:37 executing program 4: prctl$PR_SET_SECUREBITS(0x1c, 0x0) prctl$PR_SET_SECUREBITS(0x1c, 0x9) prctl$PR_SET_SECUREBITS(0x1c, 0x8) prctl$PR_SET_SECUREBITS(0x1c, 0xd) prctl$PR_SET_SECUREBITS(0x1c, 0xe) prctl$PR_SET_SECUREBITS(0x1c, 0x0) prctl$PR_SET_SECUREBITS(0x1c, 0x39) prctl$PR_SET_SECUREBITS(0x1c, 0x22) prctl$PR_SET_SECUREBITS(0x1c, 0x20) prctl$PR_SET_SECUREBITS(0x1c, 0x1) prctl$PR_SET_SECUREBITS(0x1c, 0x2) prctl$PR_SET_SECUREBITS(0x1c, 0x24) prctl$PR_SET_SECUREBITS(0x1c, 0x12) prctl$PR_SET_SECUREBITS(0x1c, 0x0) prctl$PR_SET_SECUREBITS(0x1c, 0x22) prctl$PR_SET_SECUREBITS(0x1c, 0x0) prctl$PR_SET_SECUREBITS(0x1c, 0x1) prctl$PR_SET_SECUREBITS(0x1c, 0xb) prctl$PR_SET_SECUREBITS(0x1c, 0x16) prctl$PR_SET_SECUREBITS(0x1c, 0xc) 01:39:37 executing program 3: r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) write(r0, &(0x7f0000000000)="529b04f12df105273de98cd27e564d1e0bb7a04aaa6b87a1128466ac555e3e35325aa3dbe70c8049773bd1356e98b575d7be85d4bca877a53599b7a4ad7c4aa9f57951f41e7bfb333ab8f50a6e1a30d7f80d076cbf0ecfb709e705d6bf4b4cc66091", 0x62) ioctl$KDENABIO(r0, 0x4b36) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/module/sky2', 0x501440, 0x8a) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={r1, 0x2, 0x40, 0x4}) ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0xc020662a, &(0x7f0000000100)={0x401, 0x20, 0x3, 0x4, 0x5, [{0x400, 0x1, 0x885, '\x00', 0x82}, {0xfffffffffffffff8, 0x1, 0x401, '\x00', 0x240a}, {0x4, 0x0, 0x2}, {0x5, 0x401, 0x9, '\x00', 0x80}, {0x9, 0x4, 0x2, '\x00', 0x200c}]}) r3 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$TCGETA(r3, 0x5405, &(0x7f0000000240)) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000280)=0xe) ioctl$TIOCL_SELLOADLUT(0xffffffffffffffff, 0x541c, &(0x7f00000002c0)={0x5, 0x1, 0x3, 0x8, 0xffffffffffffffff}) r4 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x20) ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f0000000300)=0x5) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r2, &(0x7f0000000400)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x1c, 0x0, 0x8, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x45}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48010}, 0x0) r5 = accept4$inet6(r2, 0x0, &(0x7f0000000440), 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r5) r6 = perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x2, 0xc, 0x0, 0x80, 0x0, 0x7, 0x22400, 0x8, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7ff, 0x1, @perf_config_ext={0xffff, 0x7fff}, 0x9fe19230c227ed4d, 0x2, 0x4, 0x0, 0x3, 0x402dc154, 0x3f, 0x0, 0x44a, 0x0, 0xd80}, 0x0, 0xe, 0xffffffffffffffff, 0x9) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r6, 0x84009422, &(0x7f0000000500)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000940), 0xffffffffffffffff) sendmsg$IEEE802154_SCAN_REQ(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x34, r7, 0x10, 0x70bd26, 0x25dfdbfb, {}, [@IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x15}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x4}, @IEEE802154_ATTR_SCAN_TYPE={0x5, 0x13, 0x3f}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x11}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x40000) fsetxattr$trusted_overlay_opaque(r1, &(0x7f0000000a40), &(0x7f0000000a80), 0x2, 0x3) 01:39:37 executing program 5: r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0xa0400, 0x0) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) readahead(r0, 0x4, 0x101) r1 = signalfd(r0, &(0x7f0000000040)={[0x3]}, 0x8) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000080)={{0x20, 0x81}, {0x2, 0x1f}, 0xfff, 0x3, 0x8}) ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000100)) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000001c0)={{r0}, 0x0, 0x14, @inherit={0x50, &(0x7f0000000140)={0x1, 0x1, 0x1, 0xff, {0x6, 0x1ab, 0x1, 0x40, 0x1000}, [0x1ff]}}, @name="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"}) sendmsg$AUDIT_USER(r1, &(0x7f0000001340)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001300)={&(0x7f0000001200)={0xe0, 0x3ed, 0x634, 0x70bd2c, 0x25dfdbfd, "d3f9230041dab08200eb89fd5200539bae22c837f0e0c054953036bb3483255f1020aa3ca6d112d06523761686ef1e98032622f89460bfc78e7495e2529518147c1ae0bf00aa73a7dc03c89a4790709cf4ecec430d8ba7fd86e77032d0db700a50e40d732639e28bc4ba9f871ee3ed873584831d7d83cd8b4dcb13336ba5e73e40da66c707b5fed6ec7abd091f9bb83ce89bfe9219f8d5730dab7d7dcb6ef7a698c185d5b0947dd5a5c63ee8d9afecd7574c11e2c15ddf0697675276a76e26a244d7445ebe417855f2a42ab0ab", ["", "", "", "", "", ""]}, 0xe0}, 0x1, 0x0, 0x0, 0x40}, 0x80) sendfile(0xffffffffffffffff, r1, &(0x7f0000001380)=0x10000, 0x0) r2 = syz_io_uring_setup(0x476c, &(0x7f00000013c0)={0x0, 0xc268, 0x2, 0x1, 0x97, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001440), &(0x7f0000001480)) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f00000014c0), 0x1a000, 0x0) write$bt_hci(r3, &(0x7f0000001500)={0x1, @link_key_reply={{0x40b, 0x16}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, "4973a71b9a53b541ca194b22c14a9f19"}}}, 0x1a) sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000001540), 0xc, &(0x7f00000015c0)={&(0x7f0000001580)={0x34, 0x0, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0xb}}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @rand_addr=0x64010101}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2a}]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x400c880) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001680), r3) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000016c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000001980)={&(0x7f0000001640)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001940)={&(0x7f0000001700)={0x204, r4, 0x400, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x80, 0x3a}}}}, [@NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x401}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0xb88}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x20, 0x84, 0x0, 0x1, [@NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x3f}, @NL80211_SCHED_SCAN_MATCH_ATTR_RSSI={0x8, 0x2, 0x9}, @NL80211_SCHED_SCAN_MATCH_ATTR_BSSID={0xa, 0x5, @from_mac=@broadcast}]}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x8000}, @NL80211_ATTR_SCAN_FREQUENCIES={0xc, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0xfffffff7}]}, @NL80211_ATTR_SCAN_SUPP_RATES={0x18c, 0x7d, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xcd, 0x1, "3f129c649c2eccafa403ab2878d80b6ad865219c037cb036004252e144e221f8caa53b5c14d12ad91bec4628956a8223aac2923985fed573240e527b36ee70dfc1e9a0fbe72f25ef70c88f094c779b2eda1782ddfdc8cb16ad68aad1f97fb2e3085e340396499935efcbc0493c15a78a6347b4a4fe0656b0759a4aa42401273dd8ef19721622cb5986b4e46e0a14312fa0367fc6e5c67178288d20364ab7c1a5c831cd773dc8750609936ed623bf78940b8d316e4f5fbaf233182d9b301b05ebdec18cd3c769bd82c8"}, @NL80211_BAND_5GHZ={0xb6, 0x1, "600388d0b2b2b5f3bb8ab8f08ffdbd30c46fc85c02319a6638e6dd36c106c01d357245f9f87826f821fa5022161c06f67ee0c03b886faad804cc0cf836b9861347a54970c47008f029a4387384b8ee30cc71fd9a3cf888e3ad3d4ab6f9fcde35d63a94bf877fd51bc9f2977eb439964bca053e515f667b405ab0d7f519068c989f28906eba4b7cf3699aeecdbf38b3876708e7aa629947dcca5b03058f6b0ad9254e8902fbdd8b571255df7e9f07a521e2fe"}]}, @NL80211_ATTR_SCHED_SCAN_MULTI={0x4}]}, 0x204}, 0x1, 0x0, 0x0, 0x880}, 0x400c800) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f00000019c0)={{0x1, 0x1, 0x18, r2, {0x6}}, './file0\x00'}) write$binfmt_aout(r6, &(0x7f0000001a00)={{0x1cb, 0x1, 0x3f, 0x33b, 0x184, 0x0, 0x27f, 0x10000}, "f2e7b682f6f6107205ed0fb385b506772701c1568dffae226724468f3cd2ba4f6ed587dca794df4a4f118acb2323f3033112e13474eaf5aca9c047b0e2fe32b3b710a6b2e423f3b0bba3286dc1fec59697a6d881ec9ca71f56d8b2c5f50ae8172b986d46174597441e60cc2984addf497ddd0dade44a718c03a3cb8a", ['\x00']}, 0x19c) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(0xffffffffffffffff, 0x4008941a, &(0x7f0000001bc0)) llistxattr(&(0x7f0000001c00)='./file0\x00', &(0x7f0000001c40)=""/96, 0x60) 01:39:37 executing program 6: timerfd_settime(0xffffffffffffffff, 0x1, &(0x7f0000000000)={{0x0, 0x3938700}, {0x0, 0x3938700}}, &(0x7f0000000040)) timerfd_gettime(0xffffffffffffffff, &(0x7f0000000080)) timerfd_gettime(0xffffffffffffffff, &(0x7f00000000c0)) timer_gettime(0x0, &(0x7f0000000100)) timer_settime(0x0, 0x1, &(0x7f0000000140)={{}, {0x77359400}}, &(0x7f0000000180)) r0 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x20000000, 0x0) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r0, 0x40049366, &(0x7f0000000200)=0x4) timer_settime(0x0, 0x1, &(0x7f0000000240)={{}, {0x77359400}}, &(0x7f0000000280)) timer_create(0x2, &(0x7f00000002c0)={0x0, 0x3e, 0x2}, &(0x7f0000000300)=0x0) timer_delete(r1) timerfd_gettime(r0, &(0x7f0000000340)) r2 = fcntl$dupfd(r0, 0x0, r0) timerfd_gettime(r2, &(0x7f0000000380)) timer_getoverrun(0x0) timerfd_settime(r2, 0x0, &(0x7f00000003c0)={{0x77359400}, {0x77359400}}, &(0x7f0000000400)) r3 = syz_open_dev$vcsa(&(0x7f0000000440), 0x1000000000000000, 0x101000) timerfd_gettime(r3, &(0x7f0000000480)) timer_delete(r1) ioctl$TIOCGPGRP(r3, 0x540f, &(0x7f00000015c0)=0x0) clone3(&(0x7f0000001680)={0x20000400, &(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000540), {0x33}, &(0x7f0000000580)=""/55, 0x37, &(0x7f00000005c0)=""/4096, &(0x7f0000001600)=[r4, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0], 0x6}, 0x58) 01:39:37 executing program 7: ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80000000}}, './file0\x00'}) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000040)='veth1_to_hsr\x00') getsockname(r0, &(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, &(0x7f0000000100)=0x80) r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r0) sendmsg$MPTCP_PM_CMD_DEL_ADDR(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r2, 0x2, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x84) r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000280), 0x40000, 0x0) ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000002c0)={0x0, 0x8, 0x1ff}) setxattr$trusted_overlay_upper(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380)={0x0, 0xfb, 0xbb, 0x4, 0x9, "d4f066171eb5bc4b02dcc9588e196658", "d3c2ba8d3d5cdd16f0a6be50cd8459c024f28b38b15eace4a9bbe68b325863f623dae3231a55af7c6e6e6117aa10afcf12c5ddc3e19c14a49954d94656983952ac30198fba11eedd9328ce01b9f5b318bbcacf3c6041c81052c9df20b3adb0840d0417225c8e0b3e804ce845957a57a4901cd6e3551cee23c7b92dac39479c119be6b97c55a27ca22643cd288295cdf566acf12e7c7c208ca3beaee838af3732975de9d57524"}, 0xbb, 0x3) setxattr$incfs_metadata(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480), &(0x7f00000004c0)="cddccb3daf637e49a731d1b82db95d7e4fd27ceff263e89bda0123a20225892e4c4c3fbe0656dcfc681ebedd18dcb4730b037bc9dc80f54990a4cf5310d1f0f9549bb18cacd28479648f225418cdcb7d5ce9f4d06c71c1fcb4a6cf8ccacff71ca0e1c3cc5603a6668b174c2d8acd7c375b07bae9e666e89f30355fc2d7bafa93c41ae5fc56cbbbbc0410dd8a8dd7fd704865327596cc3f5eed53f6667903511135284399b3109bb64ad2eb1ff7b8f03e3cb6d0431427a35b08bd7b3f31108398b26002f29071332ef59e164f162bfc5ff05e8e0a67ed6b4c5a0c5325c92204d5361812e374fb9defc64eb91e4a3535c08a25", 0xf2, 0x1) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000b00)=0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000b40)='./file0\x00', &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) r6 = accept4$inet6(r3, &(0x7f0000000c00)={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @multicast2}}, &(0x7f0000000c40)=0x1c, 0x0) r7 = syz_mount_image$tmpfs(&(0x7f0000000c80), &(0x7f0000000cc0)='./file0\x00', 0x1, 0x6, &(0x7f0000001180)=[{&(0x7f0000000d00)="b912dce2e2672b02e1ed", 0xa, 0x3}, {&(0x7f0000000d40)="178f2ed55b2da6dacee18efd6226daaa82e6dce244b0fa1f8b77c73dfd7c04e1bdf5c0f613b072b5be46a5d3e9f096f48b13ed23fd7bb8464a57f1d75cbf587ac88d986853924f199b3d61824ec3d49b91602fbff1f356457e8a33496db435002803d0d72665f87b487fe7cefe2497b3398bed76c5cdd4f2d1cf166dece04a1f1c76dac4184aa0426c6ea06c24e40437474666190ab4", 0x96, 0x100}, {&(0x7f0000000e00)="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", 0xfe, 0x3}, {&(0x7f0000000f00)="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", 0xfa, 0xffffffff80000001}, {&(0x7f0000001000)="6440b4a83188232e39655139eeca76918e05d734f5117edcfbd34e59d8bd3890538df39c1b682a7af24acf21e4d3b9efe07da046804a5f1634b6243cc7c0b19b60bf8d001577f2c8cefa3ec5b44c102f1c786f242e49e623a48a50d2cc9f743c8183798056e4c24c0e6357e5e9d0332721f71cf36813d05a030f8539b050e35cc4a340caea0bfd9101fb69d98402ca2b5a9fbeb70937d4b35811cb8dedb47f68d873949c0b1337562330677a4d7efce363a2598aadfbd46db195cb636083246b894e834d943559d016339cacc071", 0xce, 0x9ebc}, {&(0x7f0000001100)="842bbde5f98f1481c3558e290bbc623c36532c60db3f707564abc665a101b03feb5113b17423abf401d6c132cf236bb209f5f3e68478fa92eeee9a40389d98aab41948a085da1c7a6edc12ffa838b00b8f07c9b8d298ef83b008729bdb12a2cb19dbf327b1f55051dc70df02c23cab5ee2", 0x71, 0x50000}], 0x40, &(0x7f0000001240)={[{@mpol={'mpol', 0x3d, {'bind', '=static', @val={0x3a, [0x37, 0x39]}}}}, {@huge_advise}, {@nr_blocks={'nr_blocks', 0x3d, [0x78, 0x65, 0x6d, 0x25, 0x35, 0x25, 0x70, 0x30]}}], [{@uid_gt}, {@dont_measure}, {@euid_lt={'euid<', 0xee01}}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x36, 0x61, 0x64, 0x32, 0x30, 0x34, 0x64], 0x2d, [0x66, 0x35, 0x19, 0x65], 0x2d, [0x63, 0x61, 0x35, 0x37], 0x2d, [0x31, 0x32, 0xb, 0x5c], 0x2d, [0x38, 0x63, 0x37, 0x34, 0x32, 0x61, 0x37, 0x30]}}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@dont_appraise}, {@seclabel}, {@dont_hash}]}) r8 = socket$unix(0x1, 0x1, 0x0) sendmmsg$unix(r3, &(0x7f00000013c0)=[{{&(0x7f00000005c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000a80)=[{&(0x7f0000000640)='N', 0x1}, {&(0x7f0000000680)="a3ae102d966120505314e4f2f52db065365026fcf982b7b7dfc3ec06b958a761664f4e20112122f91028d4983e0128e76ed37919d36e2d14831146270f684d7bac0f77160c9c76f1c596769688a5e54eb3a0108e52c28644bc4149798dc64300fd381286e4b0be4c4b8e769850e2782524a91619476636f7f87b56358eebfadb399ab8a1ce98865d9ef7f1e699a3440a1fc0b3f2aa564f93114634", 0x9b}, {&(0x7f0000000740)="3627b37c4b12bc806006b97651501be761", 0x11}, {&(0x7f0000000780)="5d69d61fca761f93ea41c053ab773ec6d32d86d7c849785ca6af654f0c21781dc578dc49e082da55dfbfd61d9000e74f44b6c4ad41902ed9d1f7e6bace8e3dc8bca219fbba5da58a054b7f41806e6fc6aca65851f8d13fa6058d9e60d045541f04b2aa3988641d7b9779bfea945d5664cda31d85267665c8fc9c3eecf0044b3cc5739d0ada24af785ba00aebdd85ce871b7a4d2e875000a2e1b219dc4419b95b73f55fb4cd48a9f34fd415d878623ea504f8292dc3aae7be67d3a7d91283bf048eee834dcf7d29636a2a0c5ce6f4ef00290c62d80b064b094c472fe387ab68e56c3c1b3227a8b2b6c4bc63f58d38da8c3175ef5f", 0xf4}, {&(0x7f0000000880)="dc162b1afdf3f9f40a7ff2794897ad334443cd8776ee1b00815b460907552939", 0x20}, {&(0x7f00000008c0)="d4856e907395918fea8be8a5d40534a31fadb43e970fea04d6ca9cd6e9545930d10b45d49a9b60df6d0e802daf2691c13622709ed251f05ffe21b9359dd69b89e431a282610037e0d44def0f2156d201ed8ebf5e50bb0d70ff0445dc89e69d9c4ef503a741cb606b93e4d3df94b0fe315dc81197635e4a82adaec71e9480a0f98f5c84c0db57f148aa6541801b46a430e87977e8c8c98909577f04215d8de64502c63daeb365a2fd7be1e4a36dd3c5202b4f3b78d30d24a010a546dfa6fefca82c344455c76819fc7b90ed8e1891305bb07d5e33bbdffc79d99224ed3e294d4d62484440d8", 0xe5}, {&(0x7f00000009c0)="3775a3b8606a55a3f15efef131079063a33894e23ba9dd94b0009c12c4179aa2ad40ff4da4902cdcd1ce60a72b2c375f2770e8869cc6ebcd4763b7d3fe4a01945a265eae1d1d52b6420733f950e5ad1d60cd143aa30076ada897390a922fbbc67fc898d9c988175bdc8fa8e149342ebeb89c97686cc8053750f9af377c1533eab9df87", 0x83}], 0x7, &(0x7f0000001340)=[@cred={{0x1c, 0x1, 0x2, {r4, r5, 0xffffffffffffffff}}}, @rights={{0x38, 0x1, 0x1, [r3, r1, 0xffffffffffffffff, r0, r0, r3, r6, r7, r3, r8]}}], 0x58, 0x800}}], 0x1, 0x0) syz_io_uring_setup(0x16bc, &(0x7f0000001400)={0x0, 0x817d, 0x0, 0x1, 0x1f0}, &(0x7f0000ff9000/0x5000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000001480), &(0x7f00000014c0)) openat(r3, &(0x7f0000001500)='./file0\x00', 0x101002, 0x30) openat2$dir(0xffffffffffffff9c, &(0x7f0000001540)='./file0\x00', &(0x7f0000001580)={0x800, 0x8ff934f9b3b741bc, 0x8}, 0x18) fcntl$getflags(r0, 0xb) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001c40)=[{{&(0x7f00000015c0), 0x6e, &(0x7f0000001880)=[{&(0x7f0000001640)=""/239, 0xef}, {&(0x7f0000001740)=""/60, 0x3c}, {&(0x7f0000001780)=""/12, 0xc}, {&(0x7f00000017c0)=""/14, 0xe}, {&(0x7f0000001800)=""/31, 0x1f}, {&(0x7f0000001840)=""/23, 0x17}], 0x6, &(0x7f0000001900)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001940), 0x6e, &(0x7f0000001b00)=[{&(0x7f00000019c0)=""/164, 0xa4}, {&(0x7f0000001a80)=""/94, 0x5e}], 0x2, &(0x7f0000001b40)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe0}}], 0x2, 0x12002, &(0x7f0000001cc0)={0x0, 0x3938700}) [ 77.831689] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 77.839323] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.840377] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.844788] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.846338] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 77.849278] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.854840] Bluetooth: hci0: HCI_REQ-0x0c1a [ 77.917730] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 77.919454] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.921233] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 77.925634] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 77.927063] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.928157] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 77.929594] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 77.932122] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.933406] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 77.934798] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 77.936066] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.945927] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 77.947225] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 77.948115] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 77.950574] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 77.951840] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 77.953799] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 77.959958] Bluetooth: hci5: HCI_REQ-0x0c1a [ 77.983338] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 77.989277] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.990382] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 77.991200] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.991639] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 77.993100] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.994320] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 77.996001] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 77.997571] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.999089] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 77.999791] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 78.001961] Bluetooth: hci4: HCI_REQ-0x0c1a [ 78.005753] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 78.008269] Bluetooth: hci3: HCI_REQ-0x0c1a [ 78.009386] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 78.015696] Bluetooth: hci1: HCI_REQ-0x0c1a [ 78.031439] Bluetooth: hci2: HCI_REQ-0x0c1a [ 79.921573] Bluetooth: hci0: command 0x0409 tx timeout [ 79.984952] Bluetooth: hci5: command 0x0409 tx timeout [ 79.985418] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 80.048014] Bluetooth: hci2: command 0x0409 tx timeout [ 80.048505] Bluetooth: hci1: command 0x0409 tx timeout [ 80.048936] Bluetooth: hci4: command 0x0409 tx timeout [ 80.049346] Bluetooth: hci3: command 0x0409 tx timeout [ 80.051077] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 81.967949] Bluetooth: hci0: command 0x041b tx timeout [ 82.031997] Bluetooth: hci5: command 0x041b tx timeout [ 82.095935] Bluetooth: hci4: command 0x041b tx timeout [ 82.097016] Bluetooth: hci3: command 0x041b tx timeout [ 82.097837] Bluetooth: hci1: command 0x041b tx timeout [ 82.098436] Bluetooth: hci2: command 0x041b tx timeout [ 84.016984] Bluetooth: hci0: command 0x040f tx timeout [ 84.081012] Bluetooth: hci5: command 0x040f tx timeout [ 84.145041] Bluetooth: hci2: command 0x040f tx timeout [ 84.145472] Bluetooth: hci1: command 0x040f tx timeout [ 84.146039] Bluetooth: hci3: command 0x040f tx timeout [ 84.146403] Bluetooth: hci4: command 0x040f tx timeout [ 85.168967] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 85.296500] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 86.063941] Bluetooth: hci0: command 0x0419 tx timeout [ 86.127949] Bluetooth: hci5: command 0x0419 tx timeout [ 86.192053] Bluetooth: hci4: command 0x0419 tx timeout [ 86.192857] Bluetooth: hci3: command 0x0419 tx timeout [ 86.193865] Bluetooth: hci1: command 0x0419 tx timeout [ 86.195732] Bluetooth: hci2: command 0x0419 tx timeout [ 87.991235] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 87.997934] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 88.015603] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 88.035639] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 88.047253] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 88.050093] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 88.059445] Bluetooth: hci6: HCI_REQ-0x0c1a [ 88.346708] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 88.350773] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 88.372094] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 88.382364] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 88.408556] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 88.435311] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 88.453573] Bluetooth: hci7: HCI_REQ-0x0c1a [ 90.095966] Bluetooth: hci6: command 0x0409 tx timeout [ 90.479957] Bluetooth: hci7: command 0x0409 tx timeout [ 92.144949] Bluetooth: hci6: command 0x041b tx timeout [ 92.528424] Bluetooth: hci7: command 0x041b tx timeout [ 94.191976] Bluetooth: hci6: command 0x040f tx timeout [ 94.575941] Bluetooth: hci7: command 0x040f tx timeout [ 96.240787] Bluetooth: hci6: command 0x0419 tx timeout [ 96.625873] Bluetooth: hci7: command 0x0419 tx timeout 01:40:26 executing program 6: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sync() ioperm(0x0, 0x800, 0x4) r0 = gettid() syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)={[{@uid={'uid', 0x3d, 0xee00}}]}) r1 = syz_open_procfs(0x0, &(0x7f0000000f00)='mountinfo\x00') pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(r2, r1, 0x0, 0xdb8a) ioprio_set$pid(0x3, r0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x0) perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x2, 0x1, 0xfd, 0xff, 0x0, 0x8, 0x40, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_config_ext={0x200, 0x8424}, 0x400, 0x9, 0x12d1c7fc, 0x2, 0x400, 0xffff, 0x400, 0x0, 0x6, 0x0, 0x2}, r0, 0xf, r3, 0x1) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) ioperm(0x3, 0x7, 0x1) [ 126.281545] audit: type=1400 audit(1663378826.800:7): avc: denied { open } for pid=3702 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.283200] audit: type=1400 audit(1663378826.800:8): avc: denied { kernel } for pid=3702 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.305608] ------------[ cut here ]------------ [ 126.305631] [ 126.305634] ====================================================== [ 126.305637] WARNING: possible circular locking dependency detected [ 126.305641] 6.0.0-rc5-next-20220916 #1 Not tainted [ 126.305647] ------------------------------------------------------ [ 126.305651] syz-executor.6/3703 is trying to acquire lock: [ 126.305657] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 126.305695] [ 126.305695] but task is already holding lock: [ 126.305697] ffff888040694820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.305725] [ 126.305725] which lock already depends on the new lock. [ 126.305725] [ 126.305728] [ 126.305728] the existing dependency chain (in reverse order) is: [ 126.305732] [ 126.305732] -> #3 (&ctx->lock){....}-{2:2}: [ 126.305746] _raw_spin_lock+0x2a/0x40 [ 126.305764] __perf_event_task_sched_out+0x53b/0x18d0 [ 126.305776] __schedule+0xedd/0x2470 [ 126.305787] schedule+0xda/0x1b0 [ 126.305797] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.305818] syscall_exit_to_user_mode+0x19/0x40 [ 126.305837] do_syscall_64+0x48/0x90 [ 126.305852] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.305870] [ 126.305870] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 126.305884] _raw_spin_lock_nested+0x30/0x40 [ 126.305899] raw_spin_rq_lock_nested+0x1e/0x30 [ 126.305912] task_fork_fair+0x63/0x4d0 [ 126.305930] sched_cgroup_fork+0x3d0/0x540 [ 126.305944] copy_process+0x4183/0x6e20 [ 126.305955] kernel_clone+0xe7/0x890 [ 126.305964] user_mode_thread+0xad/0xf0 [ 126.305974] rest_init+0x24/0x250 [ 126.305991] arch_call_rest_init+0xf/0x14 [ 126.306004] start_kernel+0x4c1/0x4e6 [ 126.306014] secondary_startup_64_no_verify+0xe0/0xeb [ 126.306028] [ 126.306028] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 126.306042] _raw_spin_lock_irqsave+0x39/0x60 [ 126.306057] try_to_wake_up+0xab/0x1920 [ 126.306071] up+0x75/0xb0 [ 126.306082] __up_console_sem+0x6e/0x80 [ 126.306099] console_unlock+0x46a/0x590 [ 126.306115] con_install+0x14e/0x5d0 [ 126.306126] tty_init_dev.part.0+0xa0/0x610 [ 126.306140] tty_open+0xbc0/0x1370 [ 126.306151] chrdev_open+0x268/0x6e0 [ 126.306165] do_dentry_open+0x6ca/0x12b0 [ 126.306180] path_openat+0x19e1/0x2800 [ 126.306191] do_filp_open+0x1b6/0x410 [ 126.306203] do_sys_openat2+0x171/0x4c0 [ 126.306218] __x64_sys_openat+0x13f/0x1f0 [ 126.306233] do_syscall_64+0x3b/0x90 [ 126.306247] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.306265] [ 126.306265] -> #0 ((console_sem).lock){....}-{2:2}: [ 126.306278] __lock_acquire+0x2a02/0x5e70 [ 126.306295] lock_acquire+0x1a2/0x530 [ 126.306311] _raw_spin_lock_irqsave+0x39/0x60 [ 126.306326] down_trylock+0xe/0x70 [ 126.306339] __down_trylock_console_sem+0x3b/0xd0 [ 126.306355] vprintk_emit+0x16b/0x560 [ 126.306372] vprintk+0x84/0xa0 [ 126.306388] _printk+0xba/0xf1 [ 126.306407] report_bug.cold+0x72/0xab [ 126.306420] handle_bug+0x3c/0x70 [ 126.306433] exc_invalid_op+0x14/0x50 [ 126.306447] asm_exc_invalid_op+0x16/0x20 [ 126.306464] group_sched_out.part.0+0x2c7/0x460 [ 126.306475] ctx_sched_out+0x8f1/0xc10 [ 126.306484] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.306496] __schedule+0xedd/0x2470 [ 126.306506] schedule+0xda/0x1b0 [ 126.306516] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.306536] syscall_exit_to_user_mode+0x19/0x40 [ 126.306553] do_syscall_64+0x48/0x90 [ 126.306567] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.306584] [ 126.306584] other info that might help us debug this: [ 126.306584] [ 126.306587] Chain exists of: [ 126.306587] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 126.306587] [ 126.306602] Possible unsafe locking scenario: [ 126.306602] [ 126.306604] CPU0 CPU1 [ 126.306607] ---- ---- [ 126.306609] lock(&ctx->lock); [ 126.306615] lock(&rq->__lock); [ 126.306621] lock(&ctx->lock); [ 126.306627] lock((console_sem).lock); [ 126.306633] [ 126.306633] *** DEADLOCK *** [ 126.306633] [ 126.306635] 2 locks held by syz-executor.6/3703: [ 126.306642] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 126.306667] #1: ffff888040694820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.306695] [ 126.306695] stack backtrace: [ 126.306697] CPU: 1 PID: 3703 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220916 #1 [ 126.306710] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.306718] Call Trace: [ 126.306721] [ 126.306725] dump_stack_lvl+0x8b/0xb3 [ 126.306741] check_noncircular+0x263/0x2e0 [ 126.306757] ? format_decode+0x26c/0xb50 [ 126.306773] ? print_circular_bug+0x450/0x450 [ 126.306791] ? enable_ptr_key_workfn+0x20/0x20 [ 126.306805] ? __lockdep_reset_lock+0x180/0x180 [ 126.306822] ? format_decode+0x26c/0xb50 [ 126.306838] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 126.306856] __lock_acquire+0x2a02/0x5e70 [ 126.306878] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 126.306901] lock_acquire+0x1a2/0x530 [ 126.306918] ? down_trylock+0xe/0x70 [ 126.306932] ? rcu_read_unlock+0x40/0x40 [ 126.306950] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 126.306971] ? vprintk+0x84/0xa0 [ 126.306990] _raw_spin_lock_irqsave+0x39/0x60 [ 126.307008] ? down_trylock+0xe/0x70 [ 126.307024] down_trylock+0xe/0x70 [ 126.307038] ? vprintk+0x84/0xa0 [ 126.307056] __down_trylock_console_sem+0x3b/0xd0 [ 126.307073] vprintk_emit+0x16b/0x560 [ 126.307090] ? lock_downgrade+0x6d0/0x6d0 [ 126.307109] vprintk+0x84/0xa0 [ 126.307127] _printk+0xba/0xf1 [ 126.307146] ? record_print_text.cold+0x16/0x16 [ 126.307167] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 126.307181] ? lock_downgrade+0x6d0/0x6d0 [ 126.307198] ? report_bug.cold+0x66/0xab [ 126.307213] ? group_sched_out.part.0+0x2c7/0x460 [ 126.307224] report_bug.cold+0x72/0xab [ 126.307240] handle_bug+0x3c/0x70 [ 126.307254] exc_invalid_op+0x14/0x50 [ 126.307269] asm_exc_invalid_op+0x16/0x20 [ 126.307287] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.307300] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.307312] RSP: 0018:ffff88801890fc48 EFLAGS: 00010006 [ 126.307321] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.307328] RDX: ffff8880184a1ac0 RSI: ffffffff81566027 RDI: 0000000000000005 [ 126.307336] RBP: ffff8880174585c8 R08: 0000000000000005 R09: 0000000000000001 [ 126.307343] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888040694800 [ 126.307351] R13: ffff88806cf3d100 R14: ffffffff8547c7c0 R15: 0000000000000002 [ 126.307362] ? group_sched_out.part.0+0x2c7/0x460 [ 126.307375] ? group_sched_out.part.0+0x2c7/0x460 [ 126.307387] ctx_sched_out+0x8f1/0xc10 [ 126.307400] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.307415] ? lock_is_held_type+0xd7/0x130 [ 126.307435] ? __perf_cgroup_move+0x160/0x160 [ 126.307446] ? set_next_entity+0x304/0x550 [ 126.307464] ? update_curr+0x267/0x740 [ 126.307483] ? lock_is_held_type+0xd7/0x130 [ 126.307502] __schedule+0xedd/0x2470 [ 126.307516] ? io_schedule_timeout+0x150/0x150 [ 126.307529] ? rcu_read_lock_sched_held+0x3e/0x80 [ 126.307550] schedule+0xda/0x1b0 [ 126.307562] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.307583] syscall_exit_to_user_mode+0x19/0x40 [ 126.307602] do_syscall_64+0x48/0x90 [ 126.307616] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.307634] RIP: 0033:0x7fab5a35ab19 [ 126.307643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.307654] RSP: 002b:00007fab578d0218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.307665] RAX: 0000000000000001 RBX: 00007fab5a46df68 RCX: 00007fab5a35ab19 [ 126.307672] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fab5a46df6c [ 126.307679] RBP: 00007fab5a46df60 R08: 000000000000000e R09: 0000000000000000 [ 126.307686] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fab5a46df6c [ 126.307694] R13: 00007ffe1a1547bf R14: 00007fab578d0300 R15: 0000000000022000 [ 126.307707] [ 126.366504] WARNING: CPU: 1 PID: 3703 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 126.367164] Modules linked in: [ 126.367399] CPU: 1 PID: 3703 Comm: syz-executor.6 Not tainted 6.0.0-rc5-next-20220916 #1 [ 126.367977] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.368789] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.369188] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.370505] RSP: 0018:ffff88801890fc48 EFLAGS: 00010006 [ 126.370891] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.371406] RDX: ffff8880184a1ac0 RSI: ffffffff81566027 RDI: 0000000000000005 [ 126.371924] RBP: ffff8880174585c8 R08: 0000000000000005 R09: 0000000000000001 [ 126.372439] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888040694800 [ 126.372952] R13: ffff88806cf3d100 R14: ffffffff8547c7c0 R15: 0000000000000002 [ 126.373479] FS: 00007fab578d0700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 126.374067] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.374488] CR2: 0000001b2df22000 CR3: 000000003fba6000 CR4: 0000000000350ee0 [ 126.375007] Call Trace: [ 126.375193] [ 126.375365] ctx_sched_out+0x8f1/0xc10 [ 126.375656] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.376043] ? lock_is_held_type+0xd7/0x130 [ 126.376364] ? __perf_cgroup_move+0x160/0x160 [ 126.376699] ? set_next_entity+0x304/0x550 [ 126.377015] ? update_curr+0x267/0x740 [ 126.377311] ? lock_is_held_type+0xd7/0x130 [ 126.377652] __schedule+0xedd/0x2470 [ 126.377932] ? io_schedule_timeout+0x150/0x150 [ 126.378273] ? rcu_read_lock_sched_held+0x3e/0x80 [ 126.378638] schedule+0xda/0x1b0 [ 126.378893] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.379270] syscall_exit_to_user_mode+0x19/0x40 [ 126.379627] do_syscall_64+0x48/0x90 [ 126.379911] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.380298] RIP: 0033:0x7fab5a35ab19 [ 126.380569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.381890] RSP: 002b:00007fab578d0218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.382437] RAX: 0000000000000001 RBX: 00007fab5a46df68 RCX: 00007fab5a35ab19 [ 126.382947] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fab5a46df6c [ 126.383460] RBP: 00007fab5a46df60 R08: 000000000000000e R09: 0000000000000000 [ 126.383975] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fab5a46df6c [ 126.384492] R13: 00007ffe1a1547bf R14: 00007fab578d0300 R15: 0000000000022000 [ 126.385012] [ 126.385184] irq event stamp: 868 [ 126.385430] hardirqs last enabled at (867): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 126.386120] hardirqs last disabled at (868): [] __schedule+0x1225/0x2470 [ 126.386716] softirqs last enabled at (216): [] __irq_exit_rcu+0x11b/0x180 [ 126.387336] softirqs last disabled at (207): [] __irq_exit_rcu+0x11b/0x180 [ 126.387954] ---[ end trace 0000000000000000 ]--- 01:40:27 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x6) ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa567}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000000)={0x40, 0x0, 0xcf0000000}) perf_event_open(&(0x7f0000000140)={0x4, 0x80, 0x5, 0xfd, 0x1, 0x0, 0x0, 0x9, 0x40, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x5, 0x1, @perf_config_ext={0x3, 0xfffffffffffffff9}, 0x10000, 0x2959, 0xf8, 0x4, 0x5, 0xffffffc1, 0x0, 0x0, 0x1, 0x0, 0xd5}, 0xffffffffffffffff, 0x3, r0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 126.569568] audit: type=1400 audit(1663378827.088:9): avc: denied { write } for pid=3731 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 129.631026] loop7: detected capacity change from 0 to 81920 [ 129.634096] ======================================================= [ 129.634096] WARNING: The mand mount option has been deprecated and [ 129.634096] and is ignored by this kernel. Remove the mand [ 129.634096] option from the mount to silence this warning. [ 129.634096] ======================================================= [ 129.638787] SELinux: security_context_str_to_sid (user_u) failed with errno=-22 [ 129.660871] loop7: detected capacity change from 0 to 81920 [ 129.661656] SELinux: security_context_str_to_sid (user_u) failed with errno=-22 VM DIAGNOSIS: 01:40:27 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=0000000038102007 RCX=ffffffff816a3056 RDX=ffff888019fa1ac0 RSI=0000000000000000 RDI=0000000000000007 RBP=0000000038102067 RSP=ffff888035ab7738 R8 =0000000000000007 R9 =0000000000000000 R10=0000000038102007 R11=0000000000000001 R12=00007fbb3fffffff R13=dffffc0000000000 R14=00007fbb3f541000 R15=00007fbb3f740fff RIP=ffffffff814612dc RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 000055555627b400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffc4e24d8f0 CR3=00000000177fe000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b3251 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff88801890f698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001 R12=000000000000002e R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b3240 RIP=ffffffff822b32a9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fab578d0700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2df22000 CR3=000000003fba6000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fab5a4417c0 00007fab5a4417c8 YMM02=0000000000000000 0000000000000000 00007fab5a4417e0 00007fab5a4417c0 YMM03=0000000000000000 0000000000000000 00007fab5a4417c8 00007fab5a4417c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000