Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:25473' (ECDSA) to the list of known hosts. 2022/09/18 06:58:57 fuzzer started 2022/09/18 06:58:58 dialing manager at localhost:36051 syzkaller login: [ 35.955462] cgroup: Unknown subsys name 'net' [ 36.040071] cgroup: Unknown subsys name 'rlimit' 2022/09/18 06:59:12 syscalls: 2215 2022/09/18 06:59:12 code coverage: enabled 2022/09/18 06:59:12 comparison tracing: enabled 2022/09/18 06:59:12 extra coverage: enabled 2022/09/18 06:59:12 setuid sandbox: enabled 2022/09/18 06:59:12 namespace sandbox: enabled 2022/09/18 06:59:12 Android sandbox: enabled 2022/09/18 06:59:12 fault injection: enabled 2022/09/18 06:59:12 leak checking: enabled 2022/09/18 06:59:12 net packet injection: enabled 2022/09/18 06:59:12 net device setup: enabled 2022/09/18 06:59:12 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/18 06:59:12 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/18 06:59:12 USB emulation: enabled 2022/09/18 06:59:12 hci packet injection: enabled 2022/09/18 06:59:12 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220916) 2022/09/18 06:59:12 802.15.4 emulation: enabled 2022/09/18 06:59:12 fetching corpus: 50, signal 30300/32061 (executing program) 2022/09/18 06:59:12 fetching corpus: 100, signal 42659/46037 (executing program) 2022/09/18 06:59:13 fetching corpus: 150, signal 49045/53959 (executing program) 2022/09/18 06:59:13 fetching corpus: 200, signal 56986/63364 (executing program) 2022/09/18 06:59:13 fetching corpus: 250, signal 64843/72514 (executing program) 2022/09/18 06:59:13 fetching corpus: 300, signal 71108/79990 (executing program) 2022/09/18 06:59:13 fetching corpus: 350, signal 74149/84364 (executing program) 2022/09/18 06:59:13 fetching corpus: 400, signal 80543/91852 (executing program) 2022/09/18 06:59:13 fetching corpus: 450, signal 87400/99653 (executing program) 2022/09/18 06:59:14 fetching corpus: 500, signal 90568/103993 (executing program) 2022/09/18 06:59:14 fetching corpus: 550, signal 95337/109777 (executing program) 2022/09/18 06:59:14 fetching corpus: 600, signal 100172/115508 (executing program) 2022/09/18 06:59:14 fetching corpus: 650, signal 102544/118908 (executing program) 2022/09/18 06:59:14 fetching corpus: 700, signal 105529/122833 (executing program) 2022/09/18 06:59:14 fetching corpus: 750, signal 109333/127452 (executing program) 2022/09/18 06:59:15 fetching corpus: 800, signal 111752/130827 (executing program) 2022/09/18 06:59:15 fetching corpus: 850, signal 115317/135143 (executing program) 2022/09/18 06:59:15 fetching corpus: 900, signal 116846/137645 (executing program) 2022/09/18 06:59:15 fetching corpus: 950, signal 118732/140468 (executing program) 2022/09/18 06:59:15 fetching corpus: 1000, signal 121394/143872 (executing program) 2022/09/18 06:59:15 fetching corpus: 1050, signal 125126/148148 (executing program) 2022/09/18 06:59:15 fetching corpus: 1100, signal 128061/151771 (executing program) 2022/09/18 06:59:16 fetching corpus: 1150, signal 129169/153786 (executing program) 2022/09/18 06:59:16 fetching corpus: 1200, signal 130587/156023 (executing program) 2022/09/18 06:59:16 fetching corpus: 1250, signal 132445/158585 (executing program) 2022/09/18 06:59:16 fetching corpus: 1300, signal 133630/160629 (executing program) 2022/09/18 06:59:16 fetching corpus: 1350, signal 137096/164414 (executing program) 2022/09/18 06:59:16 fetching corpus: 1400, signal 138579/166611 (executing program) 2022/09/18 06:59:16 fetching corpus: 1450, signal 139892/168692 (executing program) 2022/09/18 06:59:16 fetching corpus: 1500, signal 141693/171079 (executing program) 2022/09/18 06:59:16 fetching corpus: 1550, signal 144459/174207 (executing program) 2022/09/18 06:59:17 fetching corpus: 1600, signal 145951/176340 (executing program) 2022/09/18 06:59:17 fetching corpus: 1650, signal 147466/178421 (executing program) 2022/09/18 06:59:17 fetching corpus: 1700, signal 148609/180204 (executing program) 2022/09/18 06:59:17 fetching corpus: 1750, signal 149387/181742 (executing program) 2022/09/18 06:59:17 fetching corpus: 1800, signal 150865/183780 (executing program) 2022/09/18 06:59:17 fetching corpus: 1850, signal 152473/185879 (executing program) 2022/09/18 06:59:17 fetching corpus: 1900, signal 153615/187614 (executing program) 2022/09/18 06:59:17 fetching corpus: 1950, signal 154603/189231 (executing program) 2022/09/18 06:59:18 fetching corpus: 2000, signal 155736/190914 (executing program) 2022/09/18 06:59:18 fetching corpus: 2050, signal 157366/192950 (executing program) 2022/09/18 06:59:18 fetching corpus: 2100, signal 158743/194806 (executing program) 2022/09/18 06:59:18 fetching corpus: 2150, signal 160020/196606 (executing program) 2022/09/18 06:59:18 fetching corpus: 2200, signal 161211/198273 (executing program) 2022/09/18 06:59:18 fetching corpus: 2250, signal 162706/200161 (executing program) 2022/09/18 06:59:18 fetching corpus: 2300, signal 163912/201843 (executing program) 2022/09/18 06:59:18 fetching corpus: 2350, signal 164863/203343 (executing program) 2022/09/18 06:59:19 fetching corpus: 2400, signal 165661/204705 (executing program) 2022/09/18 06:59:19 fetching corpus: 2450, signal 166964/206347 (executing program) 2022/09/18 06:59:19 fetching corpus: 2500, signal 168204/207963 (executing program) 2022/09/18 06:59:19 fetching corpus: 2550, signal 169552/209622 (executing program) 2022/09/18 06:59:19 fetching corpus: 2600, signal 171763/211789 (executing program) 2022/09/18 06:59:19 fetching corpus: 2650, signal 172770/213170 (executing program) 2022/09/18 06:59:19 fetching corpus: 2700, signal 174137/214739 (executing program) 2022/09/18 06:59:20 fetching corpus: 2750, signal 175785/216451 (executing program) 2022/09/18 06:59:20 fetching corpus: 2800, signal 177015/217959 (executing program) 2022/09/18 06:59:20 fetching corpus: 2850, signal 177566/219046 (executing program) 2022/09/18 06:59:20 fetching corpus: 2900, signal 178556/220288 (executing program) 2022/09/18 06:59:20 fetching corpus: 2950, signal 179392/221503 (executing program) 2022/09/18 06:59:20 fetching corpus: 3000, signal 180607/222879 (executing program) 2022/09/18 06:59:20 fetching corpus: 3050, signal 181680/224178 (executing program) 2022/09/18 06:59:21 fetching corpus: 3100, signal 182656/225413 (executing program) 2022/09/18 06:59:21 fetching corpus: 3150, signal 183758/226696 (executing program) 2022/09/18 06:59:21 fetching corpus: 3200, signal 184675/227833 (executing program) 2022/09/18 06:59:21 fetching corpus: 3250, signal 185752/229058 (executing program) 2022/09/18 06:59:21 fetching corpus: 3300, signal 186809/230269 (executing program) 2022/09/18 06:59:21 fetching corpus: 3350, signal 187325/231203 (executing program) 2022/09/18 06:59:21 fetching corpus: 3400, signal 188139/232247 (executing program) 2022/09/18 06:59:21 fetching corpus: 3450, signal 189114/233497 (executing program) 2022/09/18 06:59:22 fetching corpus: 3500, signal 189915/234524 (executing program) 2022/09/18 06:59:22 fetching corpus: 3550, signal 190654/235466 (executing program) 2022/09/18 06:59:22 fetching corpus: 3600, signal 191581/236549 (executing program) 2022/09/18 06:59:22 fetching corpus: 3650, signal 192139/237417 (executing program) 2022/09/18 06:59:22 fetching corpus: 3700, signal 192935/238443 (executing program) 2022/09/18 06:59:22 fetching corpus: 3750, signal 193904/239483 (executing program) 2022/09/18 06:59:22 fetching corpus: 3800, signal 194467/240355 (executing program) 2022/09/18 06:59:22 fetching corpus: 3850, signal 195221/241382 (executing program) 2022/09/18 06:59:22 fetching corpus: 3900, signal 196177/242411 (executing program) 2022/09/18 06:59:23 fetching corpus: 3950, signal 196926/243349 (executing program) 2022/09/18 06:59:23 fetching corpus: 4000, signal 198265/244459 (executing program) 2022/09/18 06:59:23 fetching corpus: 4050, signal 199149/245416 (executing program) 2022/09/18 06:59:23 fetching corpus: 4100, signal 200191/246439 (executing program) 2022/09/18 06:59:23 fetching corpus: 4150, signal 200984/247324 (executing program) 2022/09/18 06:59:23 fetching corpus: 4200, signal 201987/248215 (executing program) 2022/09/18 06:59:23 fetching corpus: 4250, signal 202763/249069 (executing program) 2022/09/18 06:59:24 fetching corpus: 4300, signal 203615/250016 (executing program) 2022/09/18 06:59:24 fetching corpus: 4350, signal 204279/250771 (executing program) 2022/09/18 06:59:24 fetching corpus: 4400, signal 205410/251703 (executing program) 2022/09/18 06:59:24 fetching corpus: 4450, signal 205791/252389 (executing program) 2022/09/18 06:59:24 fetching corpus: 4500, signal 206611/253197 (executing program) 2022/09/18 06:59:24 fetching corpus: 4550, signal 207146/253897 (executing program) 2022/09/18 06:59:24 fetching corpus: 4600, signal 207919/254655 (executing program) 2022/09/18 06:59:24 fetching corpus: 4650, signal 208545/255333 (executing program) 2022/09/18 06:59:25 fetching corpus: 4700, signal 209488/256191 (executing program) 2022/09/18 06:59:25 fetching corpus: 4750, signal 210403/256960 (executing program) 2022/09/18 06:59:25 fetching corpus: 4800, signal 211084/257707 (executing program) 2022/09/18 06:59:25 fetching corpus: 4850, signal 211791/258418 (executing program) 2022/09/18 06:59:25 fetching corpus: 4900, signal 212621/259141 (executing program) 2022/09/18 06:59:25 fetching corpus: 4950, signal 213617/259903 (executing program) 2022/09/18 06:59:25 fetching corpus: 5000, signal 214210/260504 (executing program) 2022/09/18 06:59:25 fetching corpus: 5050, signal 214605/261082 (executing program) 2022/09/18 06:59:26 fetching corpus: 5100, signal 215067/261667 (executing program) 2022/09/18 06:59:26 fetching corpus: 5150, signal 215460/262233 (executing program) 2022/09/18 06:59:26 fetching corpus: 5200, signal 215891/262829 (executing program) 2022/09/18 06:59:26 fetching corpus: 5250, signal 216617/263446 (executing program) 2022/09/18 06:59:26 fetching corpus: 5300, signal 217139/264019 (executing program) 2022/09/18 06:59:26 fetching corpus: 5350, signal 217980/264645 (executing program) 2022/09/18 06:59:26 fetching corpus: 5400, signal 218580/265225 (executing program) 2022/09/18 06:59:27 fetching corpus: 5450, signal 219183/265804 (executing program) 2022/09/18 06:59:27 fetching corpus: 5500, signal 219772/266297 (executing program) 2022/09/18 06:59:27 fetching corpus: 5550, signal 220463/266861 (executing program) 2022/09/18 06:59:27 fetching corpus: 5600, signal 220943/267408 (executing program) 2022/09/18 06:59:27 fetching corpus: 5650, signal 221472/267904 (executing program) 2022/09/18 06:59:27 fetching corpus: 5700, signal 222089/268404 (executing program) 2022/09/18 06:59:27 fetching corpus: 5750, signal 222899/268927 (executing program) 2022/09/18 06:59:27 fetching corpus: 5800, signal 223661/269444 (executing program) 2022/09/18 06:59:28 fetching corpus: 5850, signal 224115/269925 (executing program) 2022/09/18 06:59:28 fetching corpus: 5900, signal 224756/270398 (executing program) 2022/09/18 06:59:28 fetching corpus: 5950, signal 225344/270971 (executing program) 2022/09/18 06:59:28 fetching corpus: 6000, signal 225666/271367 (executing program) 2022/09/18 06:59:28 fetching corpus: 6050, signal 226741/271897 (executing program) 2022/09/18 06:59:28 fetching corpus: 6100, signal 227139/272335 (executing program) 2022/09/18 06:59:28 fetching corpus: 6150, signal 227591/272753 (executing program) 2022/09/18 06:59:29 fetching corpus: 6200, signal 228184/273207 (executing program) 2022/09/18 06:59:29 fetching corpus: 6250, signal 228569/273642 (executing program) 2022/09/18 06:59:29 fetching corpus: 6300, signal 229158/274021 (executing program) 2022/09/18 06:59:29 fetching corpus: 6350, signal 229816/274428 (executing program) 2022/09/18 06:59:29 fetching corpus: 6400, signal 230442/274820 (executing program) 2022/09/18 06:59:29 fetching corpus: 6450, signal 231021/275192 (executing program) 2022/09/18 06:59:29 fetching corpus: 6500, signal 231682/275580 (executing program) 2022/09/18 06:59:29 fetching corpus: 6550, signal 232489/276014 (executing program) 2022/09/18 06:59:29 fetching corpus: 6600, signal 232969/276371 (executing program) 2022/09/18 06:59:30 fetching corpus: 6650, signal 234379/276782 (executing program) 2022/09/18 06:59:30 fetching corpus: 6700, signal 235061/277141 (executing program) 2022/09/18 06:59:30 fetching corpus: 6750, signal 235706/277468 (executing program) 2022/09/18 06:59:30 fetching corpus: 6800, signal 236040/277769 (executing program) 2022/09/18 06:59:30 fetching corpus: 6850, signal 236509/277897 (executing program) 2022/09/18 06:59:30 fetching corpus: 6900, signal 236982/278028 (executing program) 2022/09/18 06:59:30 fetching corpus: 6950, signal 237498/278148 (executing program) 2022/09/18 06:59:30 fetching corpus: 7000, signal 237853/278205 (executing program) 2022/09/18 06:59:31 fetching corpus: 7050, signal 238509/278415 (executing program) 2022/09/18 06:59:31 fetching corpus: 7100, signal 239056/278456 (executing program) 2022/09/18 06:59:31 fetching corpus: 7150, signal 239549/278461 (executing program) 2022/09/18 06:59:31 fetching corpus: 7200, signal 240150/278462 (executing program) 2022/09/18 06:59:31 fetching corpus: 7250, signal 240515/278462 (executing program) 2022/09/18 06:59:31 fetching corpus: 7300, signal 241564/278494 (executing program) 2022/09/18 06:59:31 fetching corpus: 7350, signal 242037/278511 (executing program) 2022/09/18 06:59:31 fetching corpus: 7400, signal 242280/278511 (executing program) 2022/09/18 06:59:32 fetching corpus: 7450, signal 243096/278592 (executing program) 2022/09/18 06:59:32 fetching corpus: 7500, signal 243448/278592 (executing program) 2022/09/18 06:59:32 fetching corpus: 7550, signal 243898/278593 (executing program) 2022/09/18 06:59:32 fetching corpus: 7600, signal 244775/278598 (executing program) 2022/09/18 06:59:32 fetching corpus: 7632, signal 245182/278612 (executing program) 2022/09/18 06:59:32 fetching corpus: 7632, signal 245182/278612 (executing program) 2022/09/18 06:59:34 starting 8 fuzzer processes 06:59:34 executing program 0: r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000000)='.pending_reads\x00', 0xc400, 0x185) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000040)={0x7, 0x3, 0x9, 0xe865, 0x19, "4fe06498c2d482f7"}) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r0, 0x4008941a, &(0x7f0000000080)) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), r0) sendmsg$TIPC_CMD_SHOW_STATS(r0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xb94acac29e31dd9}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x2, 0x70bd2a, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008080}, 0x44080) sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, 0x0, 0x515, 0x70bd26, 0x25dfdbfc, {}, ["", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x200000c0}, 0x20044044) ioctl$BTRFS_IOC_DEFRAG_RANGE(r0, 0x40309410, &(0x7f0000000300)={0xffffffffffffffe1, 0x2, 0x3, 0x0, 0x2, [0x7fff, 0x0, 0x8001, 0x9]}) sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x7c, 0x15, 0xa, 0x801, 0x0, 0x0, {0xc, 0x0, 0x2}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}]}, 0x7c}, 0x1, 0x0, 0x0, 0x1}, 0x4000800) r2 = syz_io_uring_complete(0x0) sendmsg$IPSET_CMD_RENAME(r2, &(0x7f0000000540)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000500)={&(0x7f00000004c0)={0x3c, 0x5, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x9}, [@IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME2={0x9, 0x3, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000020}, 0x44080) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000580), 0x408143, 0x0) fremovexattr(r0, &(0x7f00000005c0)=@random={'trusted.', '#\'\x00'}) r4 = socket$inet_udplite(0x2, 0x2, 0x88) fcntl$notify(r4, 0x402, 0x25) sendmsg$NL80211_CMD_GET_WOWLAN(r0, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x14, 0x0, 0x1, 0x70bd26, 0x25dfdbfc, {{}, {@void, @void, @void}}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0xf3c2737c649aa1e3}, 0x84) ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000700)={0x0, 0x1f, 0x20, 0x3f, 0x9}) r5 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000780), 0x1, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f0000000740), r5) r6 = syz_open_procfs(0x0, &(0x7f00000007c0)='fdinfo/3\x00') ioctl$AUTOFS_DEV_IOCTL_FAIL(r6, 0xc0189377, &(0x7f0000000800)={{0x1, 0x1, 0x18, r5, {0x2, 0x7fff}}, './file0\x00'}) 06:59:34 executing program 2: r0 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x21c0, 0x0) ioctl$HIDIOCGCOLLECTIONINDEX(r0, 0x40184810, &(0x7f0000000040)={0x2, 0x1, 0x80, 0x0, 0x8, 0x3f}) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000000080)={@rand_addr=' \x01\x00'}, 0x14) r1 = accept$unix(r0, &(0x7f00000000c0)=@abs, &(0x7f0000000140)=0x6e) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000180)={r1, 0x1, 0x29a1800000000000, 0xffffffffffff6f6d}) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000001c0)={{{@in=@remote, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private2}, 0x0, @in6=@initdev}}, &(0x7f00000002c0)=0xe8) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000300)={@loopback, r3}, 0x14) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000340)={@loopback, r3}, 0x14) setsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000380)={@private2, r3}, 0x14) fcntl$setflags(r0, 0x2, 0xc8ae4702c64f0066) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000480)={{{@in=@broadcast, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@broadcast}}, &(0x7f0000000580)=0xe8) setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f00000005c0)={@private2, r4}, 0x14) r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000640), r0) sendmsg$TIPC_CMD_DISABLE_BEARER(r0, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x300000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x30, r5, 0x800, 0x70bd28, 0x25dfdbfc, {{}, {}, {0x14, 0x13, @l2={'eth', 0x3a, 'ip6gretap0\x00'}}}, ["", "", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x48804}, 0x20044885) clock_gettime(0x0, &(0x7f0000003200)={0x0, 0x0}) recvmmsg$unix(r2, &(0x7f0000003180)=[{{&(0x7f0000000740), 0x6e, &(0x7f0000001c40)=[{&(0x7f00000007c0)=""/60, 0x3c}, {&(0x7f0000000800)=""/249, 0xf9}, {&(0x7f0000000900)=""/240, 0xf0}, {&(0x7f0000000a00)=""/24, 0x18}, {&(0x7f0000000a40)=""/246, 0xf6}, {&(0x7f0000000b40)=""/240, 0xf0}, {&(0x7f0000000c40)=""/4096, 0x1000}], 0x7, &(0x7f0000001cc0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}, {{&(0x7f0000001d00), 0x6e, &(0x7f0000003080)=[{&(0x7f0000001d80)=""/4096, 0x1000}, {&(0x7f0000002d80)=""/235, 0xeb}, {&(0x7f0000002e80)=""/167, 0xa7}, {&(0x7f0000002f40)=""/52, 0x34}, {&(0x7f0000002f80)=""/252, 0xfc}], 0x5, &(0x7f0000003100)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}], 0x2, 0x40000021, &(0x7f0000003240)={r6, r7+10000000}) getsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f0000003280)={{{@in=@local, @in6=@private1}}, {{@in=@multicast2}, 0x0, @in=@private}}, &(0x7f0000003380)=0xe8) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r9, 0xc018937a, &(0x7f00000033c0)={{0x1, 0x1, 0x18, r2, {0x5}}, './file0\x00'}) mknodat$loop(r10, &(0x7f0000003400)='./file0\x00', 0xc000, 0x0) ioctl$HIDIOCGCOLLECTIONINFO(0xffffffffffffffff, 0xc0104811, &(0x7f0000003440)={0x0, 0x4, 0x6, 0x5}) 06:59:34 executing program 3: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r0, 0x10, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0xf}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x5}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x8}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x1}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, 0x0, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20000) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$TIPC_NL_MON_PEER_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, r1, 0x100, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x9, 0x1, @l2={'eth', 0x3a, '\x00'}}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4004}, 0x1) r2 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x800, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$IPVS_CMD_DEL_SERVICE(r2, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x4c, r3, 0x800, 0x70bd25, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffff}, @IPVS_CMD_ATTR_DEST={0x28, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@loopback}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x8}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24040001}, 0x20000055) io_setup(0x3, &(0x7f0000000580)=0x0) io_submit(r4, 0x4, &(0x7f0000000900)=[&(0x7f0000000640)={0x0, 0x0, 0x0, 0x3, 0x0, r2, &(0x7f00000005c0)="431ccb4ed7a823988501d3309561ccc3948655dfc68827af4041cff4cdb3752381ff081297cf69341d2e88f7d0a3c76a9ce4e8f0fc93b740ec7ba69a157d4e8f24b12a836807b0a21ed4118dd3fb89c163acfb9faabb00e3a1991b74d91c977af695", 0x62, 0x1, 0x0, 0x3}, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x5, 0xfffa, r2, &(0x7f0000000680)="05e0d0413c894a57662d0cb4e3e85aab938853e48bff65f5056c9c10c9ff64a8a3162d9ecb0b54085019e425d1e372b10f3db675af75d3f00b765ae91d030e0127d8b1d33e891ed77dd8894e54ce81cf81ca822f2838234cd630a7a3a2cb7547b520dc7972820c58657007cfe365c4bebf0b50d4c1c3394b2643f3ab63ce", 0x7e, 0x0, 0x0, 0x1}, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x5, 0x6, r2, &(0x7f0000000740)="c2d39ef48fdff9fb311c1517d81d2fcb1ad23553eceb7c84c743d08f45b3fb500d53579bc7653be23ecdfa8a6b862d8bbdb7d11f04f9b77a4bab92faffccff43b75c5e3d7d5f8e111140842e970080afa4e2d462f999c9056ae42a4d7cdecf499b7391c744eb77140591b3134e0cc2ba315f54286dbd03a998a49df6820d9245a2c0acdf14183830c55a8000e8c0c6a9447ffc918e2ee5df443ceafb9abfec107171f5578a6b4643e21ebd4155dd04ad33f1c8923f59e5ad66cb686fa5604191da3abd773ff0b3fe90264ecd7b0bc829dcf941b7b826efc9f069db8303cac92f72707d1f64bb6105ec41590e98c03cf87cb41eb8c8ca1d", 0xf7, 0x3f, 0x0, 0x2, r2}, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x6, 0x4, r2, &(0x7f0000000880)="a67fbfe493a937624f8cea237f9cee571ffb510dbcbfe4b7d363ec98793389caa29469df9b", 0x25, 0x20, 0x0, 0x2, r2}]) r5 = syz_open_dev$evdev(&(0x7f0000000940), 0x1, 0x511300) fstatfs(r5, &(0x7f0000000980)=""/8) r6 = socket$netlink(0x10, 0x3, 0x4) fcntl$getown(r6, 0x9) r7 = syz_open_dev$vcsa(&(0x7f00000009c0), 0x6, 0x161400) flistxattr(r7, &(0x7f0000000a00)=""/236, 0xec) r8 = openat2(r2, &(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40)={0x100, 0x140}, 0x18) sendmsg$NL80211_CMD_VENDOR(r8, &(0x7f0000000cc0)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000bc0)={0xa0, r0, 0x200, 0x70bd28, 0xbb08, {{}, {@void, @void, @val={0xc, 0x99, {0x5, 0x79}}}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x3}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x8000}, @NL80211_ATTR_VENDOR_DATA={0x4}, @NL80211_ATTR_VENDOR_SUBCMD={0x8}, @NL80211_ATTR_VENDOR_DATA={0x61, 0xc5, "637489ed9a573d7d8fd52f330c48eb13a4c03c72e16ae209a8f942478611b0f4ce3b6b1cc875e503e33595ace22928b02818ad19f661f482e77a1940b0fcbc724a43089f909c5367b48dcce24b3d232103394be617ac7fbc7b937a28d5"}]}, 0xa0}, 0x1, 0x0, 0x0, 0x28008804}, 0x4000) ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0) write(r6, &(0x7f0000000d00)="7f0de239b325c1c31b527a76d88982bd3c0f269d13d72789ebb1f8b9065fc091bc83d12fbe0fc41933b6dfe5715127c485b72c5c9c15ddb69a077ab634ae4f84f01a90f9c2fc19f76db09e885b362566f041f607c203418a89694879c19dd9dbe51eb2ec1a6796a3164476c075f3fc10f361f724f12fb545223afb360fb923e6", 0x80) 06:59:34 executing program 1: getsockname(0xffffffffffffffff, &(0x7f0000000000)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000080)=0x80) mount$9p_tcp(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x1040002, &(0x7f0000000180)={'trans=tcp,', {'port', 0x3d, 0x4e23}, 0x2c, {[{@afid={'afid', 0x3d, 0x7}}, {@access_uid={'access', 0x3d, 0xee00}}, {@debug={'debug', 0x3d, 0x80000001}}, {@afid={'afid', 0x3d, 0x1}}, {@noextend}], [{@measure}, {@func={'func', 0x3d, 'FILE_CHECK'}}, {@subj_role={'subj_role', 0x3d, '\\%'}}, {@subj_type={'subj_type', 0x3d, '(\xe09\\{'}}, {@smackfstransmute={'smackfstransmute', 0x3d, ',\xd9}!:,'}}, {@subj_role={'subj_role', 0x3d, '@\\#-(['}}, {@fsname={'fsname', 0x3d, '--*,:'}}, {@uid_gt}, {@measure}]}}) setxattr$trusted_overlay_origin(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), &(0x7f0000000340), 0x2, 0x3) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001f00)=[{{&(0x7f0000000380)={0xa, 0x4e22, 0x7, @private2, 0xfffffbff}, 0x1c, &(0x7f0000000440)=[{&(0x7f00000003c0)}, {&(0x7f0000000400)="5fbddde81df234b49789a5ace837ecf3692b146eb34a79d01570a4b3f05e82c9c26915406cb40b1389", 0x29}], 0x2, &(0x7f0000000480)=[@rthdr={{0x28, 0x29, 0x39, {0x0, 0x2, 0x1, 0x84, 0x0, [@rand_addr=' \x01\x00']}}}, @rthdrdstopts={{0x138, 0x29, 0x37, {0x33, 0x23, '\x00', [@hao={0xc9, 0x10, @private0}, @ra={0x5, 0x2, 0x7ff}, @hao={0xc9, 0x10, @private1}, @pad1, @pad1, @enc_lim={0x4, 0x1, 0x95}, @calipso={0x7, 0x38, {0x1, 0xc, 0x4, 0xfffd, [0xfffffffffffffff8, 0x9, 0x2, 0xffffffff, 0x1fffffffc000000, 0x9]}}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @generic={0x26, 0x9d, "f628bc2d1270d660451c66c4d7d90ad0902af7d332d059739ab70c4cb4dfeb56319737b6a9fef7658e730641531d774c4af8954d5d34c6de77de9c61f3f9915f861c60de3904acf4abaffa4959cec72ee1356b7d122697e161c199cff41146b0858f7767e9521e47c7e043269bf1a47e1dbf71603ad6079ddd5694e00e3cd1928da29215240f65f22f3684303eb904dd9d65ea5fd96090d6d743749c6a"}]}}}, @dstopts_2292={{0x90, 0x29, 0x4, {0x2f, 0xe, '\x00', [@padn={0x1, 0x2, [0x0, 0x0]}, @padn={0x1, 0x1, [0x0]}, @generic={0x6, 0x33, "a1cbac179b1908f4b9b35f3e1433928c3f4d2b94f4f98edfe76a3507aa64dca93b30b63673db62ae79486c07660eb5b0c2a3f0"}, @padn, @calipso={0x7, 0x20, {0x1, 0x6, 0x0, 0x90, [0x5, 0x5, 0x3]}}, @hao={0xc9, 0x10, @remote}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x9}}], 0x208}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f00000006c0)="acf957fbf463aadcbbea22524135be6c47ec4ae53521a028743a99c53637a38e83ef22bd4cf38a1feccd27ecbc2a3f09971333112ff3971686cac9b378e0f9dfbe21fcce2f58e595286da129a42ea7501a8d84fc367f9434f084158a69d77bec34b8700e15a583cc1dc0cbd113b2a4c4bf66662b4f472eca681af0b860a78e89ef93b42c918f9f5a4cdd9bb70e91ae7fe37d6572e32539dd4811705f08f99bd2b623c8a0aac93fa51645e11512f9a919177b50", 0xb3}, {&(0x7f0000000780)="e03ad73ac37a9a8b7b2dfd960cbc", 0xe}, {&(0x7f00000007c0)="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", 0x1000}], 0x3}}, {{&(0x7f0000001800)={0xa, 0x4e24, 0x5, @ipv4={'\x00', '\xff\xff', @private=0xa010101}}, 0x1c, &(0x7f0000001cc0)=[{&(0x7f0000001840)="96cd38e9f5dab677f6dc65ab5d7a8893469b5a237209878a452c583a4e5bd408cef7c40a12507c70304f09d31355ab586e51038cda4273e71e145517b1c39ab83fa196ae20de7d795c201cf8776bfac25b7b85507c896fb67b1fc46fc5261dc42cc3d12b855d9b1d2940d4c5151e8050c6baf5401cdeb034aac0637c46fc77c4e73697f705520483dd37a0976d7071807be849ba732929b745d9cb422905641894c8a82be2b7a47896506665ae64e3d520365f3fd24169f411695acf3b53885a67cc8965ecda2c093aaf2029790d6c4330db321bd5c6e1ffbaf51dcd9e8ced8b7a9851", 0xe3}, {&(0x7f0000001940)="34cc2293c2c27fd2523caf9cd90741690b7549ddc493bc6dcb7b4c8cc3b7d023ef73", 0x22}, {&(0x7f0000001980)="0f70a4ad32fdfede408413da3a9cf17f367385b17ba004f3ccddbdf74004ae8ffa1845c0937248502fb83a76c827fc168e519fd0eef1fd65739f8413ac5f45faacca879eb7cb48366f443bc8a17a4103a93c9ffccec33ce73ff0aa7b0c8f47f0759081370d82dd13e6", 0x69}, {&(0x7f0000001a00)="8cb2cbce3ab10e4fa29ab27915d1d8d3de3405eef9d522c5423bda18d426c84768b7106aa31ba4015d14e78073f0d1150e2517ce1edf121e670016f54b6a6ea7648289b6daca09673f85e9978663f3164d358d3eae18ac3e0af1", 0x5a}, {&(0x7f0000001a80)="8f575f61e8b1b0f5a46979a3894a5b1a8b607d76126dffce57b8e72db9d7d3426868f75e1a9437e0fe734afac9a7e5b1ab7120955be3c9c1299b62f53647641217297ce9de87e54c63c69986988b11dd8b974bc5f4aa99f96c2e37f394abd89314b43e7139910345ba8a48f16276aea6be7fcf1f0d97443edab6b076a58bcfb9c5ff3936bd37b01cbfb86b358404322b49fab2bf7ddfec6124c432436a1e5f5a497735c038e7813fd0648a050447e8263761d18bdcbb9ee18f5d67bdf39d", 0xbe}, {&(0x7f0000001b40)="45c0f1f38a1da0bd70db04e4d18838b2a341a388d408e10f16675cd89a38fcfc6087902de9869444fcd74a2bd1417aa8058bd1a5564fccf84a5a2dfa7a29b4651428c00e990984aa8f7025408836fb1193db3c9989491d", 0x57}, {&(0x7f0000001bc0)="f48cd304ce44b518c24fddb029d3bbd17cf56202b6f90ce18daf80f9e544e1496b3129e6b8f2146532feb6b20514b1f5cac2bfac51ed4432b798feb15f59d00aca62caa6e7a46d9605bb1278378659bab18be68544b649816105fc5382170dc6f78d3b7df010c9f518fdd22b01aca632fd036842a0dcb47226a6274721c06dea68336344b63f23354eb0fc165fe7d540d3475deb3d1841b7396ec7e2998490f8fd4e5477a160ad29f988f24af0815f4b58bb5810ded86af12037ed37e7275c27a64d1b40cc737a44bbe48c7d44800be42b99bfd928a7786d16d71d5f17167b0a59283eb825db03923e", 0xe9}], 0x7}}, {{&(0x7f0000001d40)={0xa, 0x4e22, 0x80000001, @local, 0xffffffff}, 0x1c, &(0x7f0000001ec0)=[{&(0x7f0000001d80)="fc924d032d64c26772fddb0c46f5a059c33dda1efc8f3bf223d192eaae6c24a1716317665bc3efab21ce54c8b049ac09629bbf3d64cab152bce609b77e3ba94ca61a6848f456c8d2739415bee5324821e3a873bbe0cff06e", 0x58}, {&(0x7f0000001e00)="5f29edacada89bf63cdc52f56207909e73ed2961305f50fcc693549c0e9b6844677b5ac9599d51ae8c73abe85af482f34540cf4d8ae92af94af6828e1ec9d57f1ff100f157b3f1ca720d9c23cc815a73fcfb352130cd3790cd3124a732d5f0e38b12d6dd11a1af58e809f69f9392abaa7f468ac7263ac29bd1eda109b34e4e49f81a23a0dc39a5fe", 0x88}], 0x2}}], 0x4, 0x8040) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x15, &(0x7f0000002000)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', r0}, 0x14) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000002040)) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000002240)={{0x1, 0x1, 0x18, r1, {0x3}}, './file0\x00'}) r3 = accept$unix(r2, 0x0, &(0x7f0000002280)) setxattr$trusted_overlay_upper(&(0x7f00000022c0)='./file1\x00', &(0x7f0000002300), &(0x7f0000002340)={0x0, 0xfb, 0xe0, 0x3, 0xb, "f02220343ece39ba852be03dc6635e07", "a80692d85e28f0b8689efb1036505febcd7bf324564d9a2ce43de38fa53d72817ddc49d054bb0464a84972b8b8ed1ef425aaeac40f96f1ed0cff1648cb0abcceddcad92fd959262bef8a503747d69f0aca648afbc50eee3685adfd75eabeb131d477498696ac343532645816a86de1f2e1c0749ecf6318b2c49db0a51761432cd780aa9ac139a3fda152326d61d21fcac4ae7628c3d1be55068a45c1e011e49a65485f545e0a713cb0bbc33ec20e8678c9bc966c668c5bf9415a05ee0e8a4b680e9cfa3fb88fd9790a4d50"}, 0xe0, 0x3) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r2, 0x29, 0xd3, &(0x7f0000002440)={{0xa, 0x4e23, 0x101, @loopback, 0x7}, {0xa, 0x4e21, 0x2, @ipv4={'\x00', '\xff\xff', @remote}, 0x82}, 0x4, [0x7fff, 0x80000000, 0xb8, 0x5, 0x6a532706, 0x4, 0xc6, 0xfffffeff]}, 0x5c) chdir(&(0x7f00000024c0)='./file0\x00') recvmsg(0xffffffffffffffff, &(0x7f0000002800)={&(0x7f0000002500)=@l2tp={0x2, 0x0, @initdev}, 0x80, &(0x7f0000002740)=[{&(0x7f0000002580)=""/12, 0xc}, {&(0x7f00000025c0)=""/79, 0x4f}, {&(0x7f0000002640)=""/16, 0x10}, {&(0x7f0000002680)=""/111, 0x6f}, {&(0x7f0000002700)=""/52, 0x34}], 0x5, &(0x7f00000027c0)=""/30, 0x1e}, 0x100) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r2, 0x8982, &(0x7f0000002840)={0x6, 'wlan0\x00', {}, 0x7}) r4 = openat(r1, &(0x7f0000002880)='./file0\x00', 0x10000, 0x10) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f00000028c0)={{0x1, 0x1, 0x18, r3, {0x10001}}, './file0\x00'}) recvmsg(r5, &(0x7f0000002a40)={&(0x7f0000002900), 0x80, &(0x7f0000002a00)=[{&(0x7f0000002980)=""/79, 0x4f}], 0x1}, 0x40000021) getsockopt$IP_SET_OP_GET_BYINDEX(r4, 0x1, 0x53, &(0x7f0000002a80)={0x7, 0x7, 0xffffffffffffffff}, &(0x7f0000002ac0)=0x28) r6 = open$dir(&(0x7f0000002b00)='./file0\x00', 0x2100, 0x82) openat(r6, &(0x7f0000002b40)='./file1\x00', 0x30b000, 0xc4) 06:59:34 executing program 4: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000840), 0x400a00, 0x0) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f00000008c0)={0x2, &(0x7f0000000880)=[{0x4, 0x6, 0xd5, 0x80}, {0x9, 0x1, 0x3, 0x1}]}, 0x10) sendmsg$NL80211_CMD_TESTMODE(r0, &(0x7f0000000d80)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000d40)={&(0x7f0000000940)={0x3f8, 0x0, 0x20, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TESTDATA={0xa7, 0x45, "68f525c087a3c915c46da2905f9209396792b6e38828e157ae9a79a78a864a245e5a590ae321bd0169ea0577f0b90843e82095aecab3ff7152a421b734038ed86858cb520562e5b654c1f838dc2b1a581b107a732726c87d5b5b0f734904479cbc87e1964748e0b0c6655386dfbc9bdcd2c051a86741feb060c66c403d7d840947dbb29f8367628975af8420496c7ac730b983e6efe91c32175bf5ed70b3f4e93f188d"}, @NL80211_ATTR_TESTDATA={0xa3, 0x45, "8561cbc7a841e4426b911d087b20b6d82b188057317ddc1fa9d22e34ce3a1761a1eb1643c2dd516fb61e52a318c79e17a9ce1880d87abf68d5f8f645300681aeb51008a415ae2f508b0358bb5a008afb295a4ee21e0fc29a7feb245fb17b4a9f40a2f4bf220001c8d122af0fa78542b15f4af66ab8aa732f4b34722c5012f88af30ecf9243f80be210449c820843714c3c92b0e67f32123e3957f2372ba1d8"}, @NL80211_ATTR_TESTDATA={0x9d, 0x45, "1bf05f03523c7b39ea18cc374a0a72e920d16655b876b0e63a8ae7839d4f8936937db8f70463a2788b888958093833abb7a2c124611e9410939c6d6e04d96d39fae77d4a04613e03e72761a232be7f68d83a02afc4c467c3c514d82c2539e39289c57fb971cf009af7bfa0a78bc0ba2c44fe343a3edeb8533f9065eab1f048bbef09fbd682415109dfe8408a261ccdbee977d06e76c8e3f950"}, @NL80211_ATTR_TESTDATA={0xc2, 0x45, "ba200234ae1da94a86c91180507d820272001f2a67a1c72807dbb2f4b568c7602e3676c302fb4142dd387ef51e7e8299ada7d2e1454ed76f674d386256603862ffcb43083cff290c2af46f5d04a30f216a78d97ec6f2b06628865b3245e66bc5f0190b911b6268cb84747a586d41161ece3c83e685c3dae0454eaf866ec7a99c7b2388631d39419f923ee925602b27d5d45af1d81102e884607af5728ed0f9f13bef9fc357d32cd19481e6418f2538ddfc12633f489d09c324ba3ce859da"}, @NL80211_ATTR_TESTDATA={0x4f, 0x45, "7c23ebea30412070e79f6f3d2b2e454d6050b817e04bbe24f42e6a7c550917bf85e2a520b7039f56d12bef6dcdc537e4ad7506a9b4935598c4ab708948861931535466b1ff2c68d663eb2c"}, @NL80211_ATTR_TESTDATA={0xc6, 0x45, "38bcd768886997e11c442b4357428abc85aa4349beb4dd0d35bff8de0b551f96302f0f7df5991fe035c24576ff1789ff97f1ef360665e1306ee010ddbe33190133455912aba2246d0d4825d09ac965821fae0b66b282848c94c88ad4b3b48a7c40c11a47cf13bbfa6100391ecf05550834d3816587000fd065326147ee53d3988f6592b18ac9dc3330bd6bcddf3c021cae84f0c8d2c731043eb678234e2dd91b490b57726c8091e9168bd2f9ec716692851942ae3c867332634cf80a6b284904f3d3"}, @NL80211_ATTR_TESTDATA={0x11, 0x45, "3629a5d1a8e73d52c3f230a368"}]}, 0x3f8}, 0x1, 0x0, 0x0, 0x4040}, 0x280400c4) sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {0x3, 0x0, 0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004001}, 0x4) ioctl$sock_TIOCOUTQ(r0, 0x5411, &(0x7f0000000ec0)) socket$packet(0x11, 0x3, 0x300) sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000001000)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f40)={0x7c, 0x0, 0x20, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0xfffff1e0}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x7f}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}]}, @TIPC_NLA_PUBL={0x34, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7ff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x5}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x100}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}]}]}, 0x7c}}, 0x4000) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_ASSOCIATE_REQ(r1, &(0x7f0000001140)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001100)={&(0x7f0000001080)={0x5c, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {}, [@IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x10}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x2}, @IEEE802154_ATTR_COORD_HW_ADDR={0xc, 0x9, {0x100}}, @IEEE802154_ATTR_COORD_PAN_ID={0x6}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6, 0x8, 0xaaa0}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x5}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x13}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f0000001280)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001240)={&(0x7f00000011c0)={0x50, 0x0, 0x100, 0x70bd26, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x0, 0x36}}}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x50}}, 0x4051) getsockopt$packet_int(r0, 0x107, 0xe, &(0x7f00000012c0), &(0x7f0000001300)=0x4) setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000001380)={0x1, &(0x7f0000001340)=[{0x81, 0x24, 0x1, 0x80}]}, 0x10) sendmsg$IPVS_CMD_FLUSH(r0, &(0x7f00000014c0)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001480)={&(0x7f0000001400)={0x64, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_FLAGS={0x6}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7fffffff}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x800}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3ff}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0xc6}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x9}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0x3}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x804}, 0x4) sendmsg$NL80211_CMD_PROBE_CLIENT(r0, &(0x7f0000001600)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001540)={0x70, 0x0, 0x400, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x70}, 0x1, 0x0, 0x0, 0x4002090}, 0x8000) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000001640)={0x0, "804b19750055a25cf47697c8dfd83f7b"}) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000002680), r1) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000002740)={&(0x7f0000002640)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000002700)={&(0x7f00000026c0)={0x3c, r2, 0x100, 0x70bd2a, 0x3, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40004}, 0x8000) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000027c0), r0) sendmsg$TIPC_NL_KEY_FLUSH(r0, &(0x7f0000002c40)={&(0x7f0000002780)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002c00)={&(0x7f0000002800)={0x3f8, r3, 0x200, 0x70bd26, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0x84, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_NODE_ID={0x2d, 0x3, "cc613e97f78a0894c4b9fccb598cbc9c413069d9d08fe0e6f5e60c31dc09ca78dfffbb3014bf8c3f0b"}, @TIPC_NLA_NODE_KEY={0x40, 0x4, {'gcm(aes)\x00', 0x18, "b5c88fcc76a6c250431fb486ab2e8236c02c79318f1c625c"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}]}, @TIPC_NLA_NODE={0x1f8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_ID={0x47, 0x3, "89d331cd5ae3427d5a4c6b99e911f99d5c6f67dc0aefd2169f239bd5986808394c33c1744a80a2d593ae3c7c2944a929dcd1b7d2eb131159133561872186ad7a8ed17c"}, @TIPC_NLA_NODE_ID={0xc4, 0x3, "1fcdc12e7361f1ecde7090bda9642a8dc2a629cffffcbb4a0b393070443cee6483d7e17c10213615d4ba631bd546341f63282d65adf236e9f83d7f3a687ab37c3f2c43db721385184b93dbf16fe164b1f4980404707e2c908609e0b2197836b4686c250e23ecd335dccd238872ca686192136f87696524e1129cc750e3a372fced356ee35ef01cad9339049a8b9a352f8b07bba21a004d7310514a033482f11ca092746dba4e3d000fa247ceb400cfd8cd729eb59905a373786b3f0f81e8032e"}, @TIPC_NLA_NODE_ID={0xd9, 0x3, "e31ee749ed9c92a1ac4c432a08bc887dcb4a5aa8904c834d38ee4790f3e04eed8a758ced2b31bb23d6ff12908c226e781af457b811539683e695b934e1d23afcaed0312d709593a8f61d009ba07215606cf2f300891ee26e9bb2a9cd6e572b0f6bdf17928dc12066204a3e0e7b48bab946177ca6298dfd314f168fc649585d8f912bf7bbe7156ade5a8a8b4ece2d9c9c5123af48891874696978b86687541ce6414c789ad7d01e0658924c45d8f420f4fe6be4217ffa7220fd05ed95198ebdd0bbab9ef5522ff29ea5d7c2ce189899e5299b4eed19"}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_NODE={0x50, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "a36700cb7f595b946ab3cf1e72d532545f60251cb2c50cf9d94037fa"}}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xfffffff9}]}, @TIPC_NLA_NODE={0x10c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x101}, @TIPC_NLA_NODE_KEY={0x44, 0x4, {'gcm(aes)\x00', 0x1c, "496d6b8cc0b3b93152d6a10ff3451a5b9d09329fd26491ad079c707e"}}, @TIPC_NLA_NODE_ID={0x57, 0x3, "d7100243889984b26cb2bcdc5acf0b79f0f90dbe4e7f66d760645b9ea08cdd0d64f5f9ce87ba38c0f1e49517ce4e923d9e5745857716e8d006d81e63a715b7c72bae9f7a574c7c418f8e882f944005327c9ff6"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "40a73f612e1bfac781f3bab3e91d30baaaa51ae40405aa8aac1efd742f2ade88d8d5d3"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}]}]}, 0x3f8}, 0x1, 0x0, 0x0, 0x44040}, 0x0) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000002c80), 0xffffffffffffffff) [ 72.594456] audit: type=1400 audit(1663484374.794:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 06:59:34 executing program 5: ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x81000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x68, 0x0, 0x2, 0x70bd25, 0x25dfdbfb, {{}, {}, {0x4c, 0x18, {0x1, @media='ib\x00'}}}, ["", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000) r2 = socket$inet_tcp(0x2, 0x1, 0x0) recvmmsg(r2, &(0x7f00000004c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000200)=""/197, 0xc5}, {&(0x7f0000000300)=""/24, 0x18}, {&(0x7f0000000340)=""/44, 0x2c}], 0x3, &(0x7f00000003c0)=""/8, 0x8}, 0x10000}, {{&(0x7f0000000400)=@ieee802154={0x24, @short}, 0x80, &(0x7f0000000480)}}], 0x2, 0x60, 0x0) setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000540)={@remote, @private=0xa010101}, 0x8) r3 = dup(r1) getpeername$inet(r3, &(0x7f0000000580)={0x2, 0x0, @broadcast}, &(0x7f00000005c0)=0x10) r4 = dup3(r2, r1, 0x0) r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000640), r3) sendmsg$ETHTOOL_MSG_PAUSE_SET(r4, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x24, r5, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@ETHTOOL_A_PAUSE_TX={0x5}, @ETHTOOL_A_PAUSE_RX={0x5}]}, 0x24}, 0x1, 0x0, 0x0, 0x20044000}, 0x8450) ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000740)={0xb4, 0x60540f67}) r6 = socket$inet_icmp(0x2, 0x2, 0x1) getsockopt$inet_mreqn(r6, 0x0, 0x23, &(0x7f0000000780)={@multicast2, @multicast1}, &(0x7f00000007c0)=0xc) sendmsg$ETHTOOL_MSG_STRSET_GET(r4, 0xfffffffffffffffe, 0x2404c081) sendmsg$NLBL_MGMT_C_REMOVEDEF(0xffffffffffffffff, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x40, 0x0, 0x674, 0x70bd28, 0x25dfdbff, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_DOMAIN={0x7, 0x1, 'ib\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0x400c800}, 0xc8) r7 = syz_open_dev$vcsn(&(0x7f0000000900), 0x5, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r7, 0x0, 0x41, &(0x7f0000000940)={'filter\x00', 0x57, "1d4fc8d90c33328c67521c6fbacd08ec8f3b9c7f3aa09cb9f17a642e33b16de6ef2e0813c339e19ea39d45343aa4fad0074401e1d0c2e0bbcc70ec40c6ed5739d66dc4e0e5673581cab07353501c21eb49c4265f3e34ea"}, &(0x7f00000009c0)=0x7b) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r7, 0x40189429, &(0x7f0000000a00)={0x1, 0x10000, 0x1}) pread64(r0, &(0x7f0000000a40)=""/15, 0xf, 0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(0xffffffffffffffff, &(0x7f0000000e00)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x84010}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000b40)={0x248, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0x10c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x83ae}}, {0x14, 0x2, @in={0x2, 0x4e24, @remote}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x5}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1f}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e21, 0x80000000, @local}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0x6, @private1, 0x1}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x3}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x7fff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}}, {0x14, 0x2, @in={0x2, 0x4e20, @empty}}}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x401}]}]}, @TIPC_NLA_BEARER={0x98, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e22, 0x101, @mcast2, 0x348dc658}}, {0x14, 0x2, @in={0x2, 0x4e23, @private=0xa010100}}}}, @TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x9, @private0={0xfc, 0x0, '\x00', 0x1}, 0xff}}, {0x20, 0x2, @in6={0xa, 0x4e23, 0x6, @loopback, 0x5}}}}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x80}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @l2={'ib', 0x3a, 'team0\x00'}}]}, @TIPC_NLA_SOCK={0x30, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x401}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}]}, @TIPC_NLA_NODE={0x14, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xbba135b}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x8}]}, @TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfff}]}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz0\x00'}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x6}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x200}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1}]}]}, 0x248}, 0x1, 0x0, 0x0, 0x80}, 0x4004004) 06:59:34 executing program 7: r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x5, 0x14040) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x0) sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x24, 0x0, 0x800, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0x200, {0x1, 0x7, 0x3, 0x5}}}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x40400c8) close(r0) r1 = memfd_secret(0x0) fchmodat(r1, &(0x7f00000001c0)='./file0\x00', 0x4) r2 = dup2(r1, r1) unlinkat(r2, &(0x7f0000000200)='./file0\x00', 0x0) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000240), 0x4000, 0x0) ioctl$CDROM_LAST_WRITTEN(r3, 0x5395, &(0x7f0000000280)) r4 = signalfd(r1, &(0x7f00000002c0)={[0x4]}, 0x8) sendmsg$NL80211_CMD_SET_MPATH(r4, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x50, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000090}, 0x4080) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x8000, 0x20) write$binfmt_elf64(r5, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x40, 0x20, 0x3, 0x5, 0x3, 0x2, 0x6, 0xd5, 0x129, 0x40, 0x1f5, 0x8, 0x6d, 0x38, 0x2, 0x400, 0x8, 0xff4d}, [{0x3, 0x3, 0x7fffffff, 0x400, 0x6, 0xff, 0x8, 0x8}], "de342675134da01f7855c524980e3539c8c56eb590dacc6d040eecb059f16820a51b5f3de1d5b53fdf87ad5be506e9778e98daa4760e8dd5d04eb6d83bc2d9301398bdbffa584e3d51649713332cbf9689b86f83fa6ad9b07894086170991796e4f99b645fe889b9949fd6d229e14fb0bd6d2dd9a418b6d2348cd397cc92ca49c93d94006b6e310fc13c235c47f5d2a58059de846c1278c62c5d7d1b01da7242bb2411f71ee8ff1c6699c7e0ad299e6cbb8cdb9932f6dd46b040f5c109340336e7155d93cbbb5507", ['\x00', '\x00', '\x00']}, 0x440) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f00000008c0)={{0x1, 0x1, 0x18, r5, {0x900}}, './file0\x00'}) ioctl$CDROM_SET_OPTIONS(r6, 0x5320, 0x10) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r2, 0xf504, 0x0) syz_io_uring_setup(0x60e7, &(0x7f0000000900)={0x0, 0x4581, 0x20, 0x1, 0x1f5, 0x0, r6}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000980), &(0x7f00000009c0)=0x0) syz_io_uring_submit(0x0, r7, &(0x7f0000000a00)=@IORING_OP_FADVISE={0x18, 0x4, 0x0, @fd_index=0x2, 0x777f, 0x0, 0x2, 0x5}, 0x8) write(0xffffffffffffffff, &(0x7f0000000a80)="1d89ee9791bc7d6f93aea941710fbc9aa9af138df72ff28aa7f467acd3302389d1eccb34ccc54030e1a99319c4b4be90c73c8bfb4949e5ce4ccd", 0x3a) 06:59:34 executing program 6: fcntl$getflags(0xffffffffffffffff, 0x3) write(0xffffffffffffffff, &(0x7f0000000000)="a25d9e9431a4252c065accb065fb7c325f7a54ac0093ae32f9579efe8069f56e52f58271e3b5b3e20ea2349dbef137c33b9d1bfc4388102493d3a551ede7d27de28950b92c2b250a4d56515efc2ebfba6ed3270388ab9482f1cbdf127a6d731db3fe53baea3bca23a8aad483270ae6b34287ed7834356cfd418f49973d06507abcadff6a7c5cf21ecb3316deebe068c0ac55f1104fe3c95cecf179306698b6ab2d91f66c0f3344b048bc", 0xaa) ioctl$BINDER_THREAD_EXIT(0xffffffffffffffff, 0x40046208, 0x0) r0 = syz_open_dev$loop(&(0x7f00000000c0), 0x80000000, 0x2000c0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff}}, './file0\x00'}) ioctl$BTRFS_IOC_DEFRAG_RANGE(r0, 0x40309410, &(0x7f0000000140)={0xfff, 0x800, 0x1, 0x1c, 0x2, [0xfffffffd, 0x8000, 0x3ff, 0x80000001]}) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r1, 0x4018f50b, &(0x7f0000000180)={0x1, 0x2, 0xfffffffffffffbff}) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_ORIGINATORS(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r3, 0x200, 0x70bd27, 0x25dfdbfe, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x20000084) ioctl(r1, 0x5, &(0x7f0000000300)="9f5d7057b09396256ae4b58ec0f67a71d63cb08dfba7ceb7c77c1770d3215105ca82") setsockopt$bt_BT_POWER(r1, 0x112, 0x9, &(0x7f0000000340)=0x4, 0x1) r4 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000380), 0x100, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r4, 0xc018937c, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file1\x00'}) fstat(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) r7 = accept4$packet(r5, &(0x7f0000000500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000540)=0x14, 0x0) mount$9p_fd(0x0, &(0x7f0000000480)='./file1\x00', &(0x7f00000004c0), 0xb000c, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@uname={'uname', 0x3d, '[^]'}}, {@version_u}, {@cache_loose}, {@aname={'aname', 0x3d, '&,{'}}, {@noextend}], [{@fsname={'fsname', 0x3d, '/dev/hpet\x00'}}, {@dont_hash}, {@euid_eq={'euid', 0x3d, r6}}]}}) r8 = creat(&(0x7f0000000640)='./file1\x00', 0x80) sendmsg$NL80211_CMD_RELOAD_REGDB(r8, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x2041003}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x14, 0x0, 0x8, 0x70bd28, 0x25dfdbfc, {}, ["", "", ""]}, 0x14}}, 0x4) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r0, 0x660c) mq_notify(r8, &(0x7f00000007c0)={0x0, 0x16}) [ 73.811874] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.814020] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.815992] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.817094] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.818436] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.819599] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.823263] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.824440] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.826377] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.827544] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.828927] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 73.830118] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.835412] Bluetooth: hci1: HCI_REQ-0x0c1a [ 73.836725] Bluetooth: hci0: HCI_REQ-0x0c1a [ 73.879861] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 73.881624] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 73.883255] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 73.886417] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 73.892232] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 73.893743] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 73.899335] Bluetooth: hci2: HCI_REQ-0x0c1a [ 73.933306] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.935271] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 73.938817] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 73.940011] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.940816] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 73.942711] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.946078] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 73.949106] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.950622] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 73.951964] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 73.953934] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.954936] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 73.956037] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 73.956686] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.957642] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.959408] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 73.962274] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 73.962301] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.963579] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 73.964686] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 73.966845] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 73.970064] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 73.971756] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.973195] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.977816] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 73.983767] Bluetooth: hci4: HCI_REQ-0x0c1a [ 73.985096] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 73.999618] Bluetooth: hci3: HCI_REQ-0x0c1a [ 74.001962] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 74.027798] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 74.031421] Bluetooth: hci6: HCI_REQ-0x0c1a [ 74.034228] Bluetooth: hci5: HCI_REQ-0x0c1a [ 74.071870] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 74.078403] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 74.092079] Bluetooth: hci7: HCI_REQ-0x0c1a [ 75.891273] Bluetooth: hci0: command 0x0409 tx timeout [ 75.891274] Bluetooth: hci1: command 0x0409 tx timeout [ 76.001597] Bluetooth: hci2: command 0x0409 tx timeout [ 76.018567] Bluetooth: hci3: command 0x0409 tx timeout [ 76.019677] Bluetooth: hci4: command 0x0409 tx timeout [ 76.082602] Bluetooth: hci5: command 0x0409 tx timeout [ 76.083398] Bluetooth: hci6: command 0x0409 tx timeout [ 76.146545] Bluetooth: hci7: command 0x0409 tx timeout [ 77.938683] Bluetooth: hci1: command 0x041b tx timeout [ 77.939918] Bluetooth: hci0: command 0x041b tx timeout [ 78.002586] Bluetooth: hci2: command 0x041b tx timeout [ 78.067269] Bluetooth: hci4: command 0x041b tx timeout [ 78.068368] Bluetooth: hci3: command 0x041b tx timeout [ 78.130575] Bluetooth: hci6: command 0x041b tx timeout [ 78.131104] Bluetooth: hci5: command 0x041b tx timeout [ 78.194572] Bluetooth: hci7: command 0x041b tx timeout [ 79.986637] Bluetooth: hci0: command 0x040f tx timeout [ 79.988339] Bluetooth: hci1: command 0x040f tx timeout [ 80.050551] Bluetooth: hci2: command 0x040f tx timeout [ 80.114604] Bluetooth: hci3: command 0x040f tx timeout [ 80.115064] Bluetooth: hci4: command 0x040f tx timeout [ 80.178600] Bluetooth: hci5: command 0x040f tx timeout [ 80.179053] Bluetooth: hci6: command 0x040f tx timeout [ 80.242931] Bluetooth: hci7: command 0x040f tx timeout [ 82.034911] Bluetooth: hci1: command 0x0419 tx timeout [ 82.035769] Bluetooth: hci0: command 0x0419 tx timeout [ 82.098713] Bluetooth: hci2: command 0x0419 tx timeout [ 82.162579] Bluetooth: hci4: command 0x0419 tx timeout [ 82.163347] Bluetooth: hci3: command 0x0419 tx timeout [ 82.226615] Bluetooth: hci6: command 0x0419 tx timeout [ 82.227376] Bluetooth: hci5: command 0x0419 tx timeout [ 82.290690] Bluetooth: hci7: command 0x0419 tx timeout 07:00:31 executing program 4: r0 = timerfd_create(0x8, 0x0) timerfd_settime(r0, 0x1, &(0x7f0000000080)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timerfd_gettime(r0, &(0x7f0000000000)) pipe(&(0x7f0000000040)={0xffffffffffffffff}) timerfd_settime(r1, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000000100)) 07:00:31 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000001240)={'\x00', 0x555, 0x0, 0x273}) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='cpuset.memory_migrate\x00', 0x2, 0x0) fallocate(r1, 0x21, 0x5, 0x4) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) acct(&(0x7f0000001200)='./file1\x00') pwrite64(r2, &(0x7f00000000c0)='9', 0x1, 0x8040000) setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000540)={@in6={{0xa, 0x4e20, 0xffff, @mcast2, 0x4}}, 0x0, 0x0, 0x15, 0x0, "b25da62d685a38083e45ab1950001ca46105939b4b3d83bd945bed03b30b62897693132cb6e12788b1d58f9b2fff886055bea488ee0e2918a8c961a2684924dfa9841132b1916476e31d06d76d34a918"}, 0xd8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) sendfile(r2, r3, 0x0, 0xffff) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) openat$incfs(r4, &(0x7f0000000340)='.pending_reads\x00', 0x101280, 0x108) [ 129.351218] audit: type=1400 audit(1663484431.551:7): avc: denied { open } for pid=3811 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 129.352900] audit: type=1400 audit(1663484431.551:8): avc: denied { kernel } for pid=3811 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 129.367816] ------------[ cut here ]------------ [ 129.367841] [ 129.367845] ====================================================== [ 129.367849] WARNING: possible circular locking dependency detected [ 129.367853] 6.0.0-rc5-next-20220916 #1 Not tainted [ 129.367859] ------------------------------------------------------ [ 129.367863] syz-executor.4/3813 is trying to acquire lock: [ 129.367870] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 129.367909] [ 129.367909] but task is already holding lock: [ 129.367912] ffff88800ec23420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 129.367940] [ 129.367940] which lock already depends on the new lock. [ 129.367940] [ 129.367943] [ 129.367943] the existing dependency chain (in reverse order) is: [ 129.367946] [ 129.367946] -> #3 (&ctx->lock){....}-{2:2}: [ 129.367960] _raw_spin_lock+0x2a/0x40 [ 129.367978] __perf_event_task_sched_out+0x53b/0x18d0 [ 129.367998] __schedule+0xedd/0x2470 [ 129.368009] preempt_schedule_common+0x45/0xc0 [ 129.368020] __cond_resched+0x17/0x30 [ 129.368031] __mutex_lock+0xa3/0x14d0 [ 129.368043] __do_sys_perf_event_open+0x1eec/0x32c0 [ 129.368055] do_syscall_64+0x3b/0x90 [ 129.368069] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.368088] [ 129.368088] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 129.368101] _raw_spin_lock_nested+0x30/0x40 [ 129.368116] raw_spin_rq_lock_nested+0x1e/0x30 [ 129.368129] task_fork_fair+0x63/0x4d0 [ 129.368146] sched_cgroup_fork+0x3d0/0x540 [ 129.368160] copy_process+0x4183/0x6e20 [ 129.368170] kernel_clone+0xe7/0x890 [ 129.368180] user_mode_thread+0xad/0xf0 [ 129.368190] rest_init+0x24/0x250 [ 129.368206] arch_call_rest_init+0xf/0x14 [ 129.368219] start_kernel+0x4c1/0x4e6 [ 129.368229] secondary_startup_64_no_verify+0xe0/0xeb [ 129.368243] [ 129.368243] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 129.368256] _raw_spin_lock_irqsave+0x39/0x60 [ 129.368271] try_to_wake_up+0xab/0x1920 [ 129.368284] up+0x75/0xb0 [ 129.368295] __up_console_sem+0x6e/0x80 [ 129.368311] console_unlock+0x46a/0x590 [ 129.368326] vt_ioctl+0x2822/0x2ca0 [ 129.368339] tty_ioctl+0x7c4/0x1700 [ 129.368350] __x64_sys_ioctl+0x19a/0x210 [ 129.368366] do_syscall_64+0x3b/0x90 [ 129.368379] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.368396] [ 129.368396] -> #0 ((console_sem).lock){....}-{2:2}: [ 129.368410] __lock_acquire+0x2a02/0x5e70 [ 129.368426] lock_acquire+0x1a2/0x530 [ 129.368441] _raw_spin_lock_irqsave+0x39/0x60 [ 129.368456] down_trylock+0xe/0x70 [ 129.368468] __down_trylock_console_sem+0x3b/0xd0 [ 129.368484] vprintk_emit+0x16b/0x560 [ 129.368502] vprintk+0x84/0xa0 [ 129.368518] _printk+0xba/0xf1 [ 129.368535] report_bug.cold+0x72/0xab [ 129.368548] handle_bug+0x3c/0x70 [ 129.368561] exc_invalid_op+0x14/0x50 [ 129.368574] asm_exc_invalid_op+0x16/0x20 [ 129.368590] group_sched_out.part.0+0x2c7/0x460 [ 129.368601] ctx_sched_out+0x8f1/0xc10 [ 129.368610] __perf_event_task_sched_out+0x6d0/0x18d0 [ 129.368622] __schedule+0xedd/0x2470 [ 129.368632] preempt_schedule_common+0x45/0xc0 [ 129.368644] __cond_resched+0x17/0x30 [ 129.368654] __mutex_lock+0xa3/0x14d0 [ 129.368665] __do_sys_perf_event_open+0x1eec/0x32c0 [ 129.368678] do_syscall_64+0x3b/0x90 [ 129.368691] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.368707] [ 129.368707] other info that might help us debug this: [ 129.368707] [ 129.368710] Chain exists of: [ 129.368710] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 129.368710] [ 129.368725] Possible unsafe locking scenario: [ 129.368725] [ 129.368728] CPU0 CPU1 [ 129.368730] ---- ---- [ 129.368732] lock(&ctx->lock); [ 129.368738] lock(&rq->__lock); [ 129.368745] lock(&ctx->lock); [ 129.368751] lock((console_sem).lock); [ 129.368757] [ 129.368757] *** DEADLOCK *** [ 129.368757] [ 129.368759] 2 locks held by syz-executor.4/3813: [ 129.368766] #0: ffff88806cf37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 129.368791] #1: ffff88800ec23420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 129.368819] [ 129.368819] stack backtrace: [ 129.368822] CPU: 1 PID: 3813 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220916 #1 [ 129.368835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 129.368843] Call Trace: [ 129.368846] [ 129.368851] dump_stack_lvl+0x8b/0xb3 [ 129.368866] check_noncircular+0x263/0x2e0 [ 129.368882] ? format_decode+0x26c/0xb50 [ 129.368897] ? print_circular_bug+0x450/0x450 [ 129.368914] ? enable_ptr_key_workfn+0x20/0x20 [ 129.368929] ? lock_release+0x547/0x750 [ 129.368945] ? format_decode+0x26c/0xb50 [ 129.368961] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 129.368978] __lock_acquire+0x2a02/0x5e70 [ 129.369000] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 129.369022] lock_acquire+0x1a2/0x530 [ 129.369038] ? down_trylock+0xe/0x70 [ 129.369052] ? rcu_read_unlock+0x40/0x40 [ 129.369073] ? vprintk+0x84/0xa0 [ 129.369090] _raw_spin_lock_irqsave+0x39/0x60 [ 129.369106] ? down_trylock+0xe/0x70 [ 129.369119] down_trylock+0xe/0x70 [ 129.369132] ? vprintk+0x84/0xa0 [ 129.369149] __down_trylock_console_sem+0x3b/0xd0 [ 129.369166] vprintk_emit+0x16b/0x560 [ 129.369185] vprintk+0x84/0xa0 [ 129.369202] _printk+0xba/0xf1 [ 129.369219] ? record_print_text.cold+0x16/0x16 [ 129.369241] ? report_bug.cold+0x66/0xab [ 129.369256] ? group_sched_out.part.0+0x2c7/0x460 [ 129.369269] report_bug.cold+0x72/0xab [ 129.369287] handle_bug+0x3c/0x70 [ 129.369301] exc_invalid_op+0x14/0x50 [ 129.369316] asm_exc_invalid_op+0x16/0x20 [ 129.369333] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 129.369347] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 129.369358] RSP: 0018:ffff88803fdd7978 EFLAGS: 00010006 [ 129.369367] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 129.369375] RDX: ffff88801b9fb580 RSI: ffffffff81566027 RDI: 0000000000000005 [ 129.369383] RBP: ffff88803fd88000 R08: 0000000000000005 R09: 0000000000000001 [ 129.369390] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800ec23400 [ 129.369398] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 129.369409] ? group_sched_out.part.0+0x2c7/0x460 [ 129.369422] ? group_sched_out.part.0+0x2c7/0x460 [ 129.369435] ctx_sched_out+0x8f1/0xc10 [ 129.369448] __perf_event_task_sched_out+0x6d0/0x18d0 [ 129.369463] ? lock_is_held_type+0xd7/0x130 [ 129.369482] ? __perf_cgroup_move+0x160/0x160 [ 129.369493] ? set_next_entity+0x304/0x550 [ 129.369511] ? update_curr+0x267/0x740 [ 129.369529] ? lock_is_held_type+0xd7/0x130 [ 129.369547] __schedule+0xedd/0x2470 [ 129.369561] ? io_schedule_timeout+0x150/0x150 [ 129.369572] ? find_held_lock+0x2c/0x110 [ 129.369588] ? lock_is_held_type+0xd7/0x130 [ 129.369606] ? __cond_resched+0x17/0x30 [ 129.369618] preempt_schedule_common+0x45/0xc0 [ 129.369631] __cond_resched+0x17/0x30 [ 129.369642] __mutex_lock+0xa3/0x14d0 [ 129.369655] ? lock_is_held_type+0xd7/0x130 [ 129.369672] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 129.369687] ? mutex_lock_io_nested+0x1310/0x1310 [ 129.369700] ? lock_release+0x3b2/0x750 [ 129.369717] ? __up_read+0x192/0x730 [ 129.369731] ? up_write+0x480/0x480 [ 129.369748] __do_sys_perf_event_open+0x1eec/0x32c0 [ 129.369764] ? __up_read+0x192/0x730 [ 129.369778] ? perf_compat_ioctl+0x130/0x130 [ 129.369790] ? up_write+0x480/0x480 [ 129.369808] ? syscall_enter_from_user_mode+0x1d/0x50 [ 129.369826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 129.369846] do_syscall_64+0x3b/0x90 [ 129.369861] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.369878] RIP: 0033:0x7fbf1abfbb19 [ 129.369887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 129.369898] RSP: 002b:00007fbf18171188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 129.369909] RAX: ffffffffffffffda RBX: 00007fbf1ad0ef60 RCX: 00007fbf1abfbb19 [ 129.369917] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080 [ 129.369924] RBP: 00007fbf1ac55f6d R08: 0000000000000000 R09: 0000000000000000 [ 129.369931] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 129.369939] R13: 00007fffed64184f R14: 00007fbf18171300 R15: 0000000000022000 [ 129.369952] [ 129.432258] WARNING: CPU: 1 PID: 3813 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 129.432962] Modules linked in: [ 129.433213] CPU: 1 PID: 3813 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220916 #1 [ 129.433822] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 129.434671] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 129.435087] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 129.436479] RSP: 0018:ffff88803fdd7978 EFLAGS: 00010006 [ 129.436889] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 129.437442] RDX: ffff88801b9fb580 RSI: ffffffff81566027 RDI: 0000000000000005 [ 129.437986] RBP: ffff88803fd88000 R08: 0000000000000005 R09: 0000000000000001 [ 129.438532] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff88800ec23400 [ 129.439073] R13: ffff88806cf3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 129.439630] FS: 00007fbf18171700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 129.440255] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 129.440702] CR2: 00007fc44b26f028 CR3: 000000000de38000 CR4: 0000000000350ee0 [ 129.441247] Call Trace: [ 129.441447] [ 129.441630] ctx_sched_out+0x8f1/0xc10 [ 129.441933] __perf_event_task_sched_out+0x6d0/0x18d0 [ 129.442334] ? lock_is_held_type+0xd7/0x130 [ 129.442682] ? __perf_cgroup_move+0x160/0x160 [ 129.443037] ? set_next_entity+0x304/0x550 [ 129.443379] ? update_curr+0x267/0x740 [ 129.443692] ? lock_is_held_type+0xd7/0x130 [ 129.444052] __schedule+0xedd/0x2470 [ 129.444349] ? io_schedule_timeout+0x150/0x150 [ 129.444709] ? find_held_lock+0x2c/0x110 [ 129.445036] ? lock_is_held_type+0xd7/0x130 [ 129.445381] ? __cond_resched+0x17/0x30 [ 129.445693] preempt_schedule_common+0x45/0xc0 [ 129.446053] __cond_resched+0x17/0x30 [ 129.446348] __mutex_lock+0xa3/0x14d0 [ 129.446653] ? lock_is_held_type+0xd7/0x130 [ 129.447001] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 129.447402] ? mutex_lock_io_nested+0x1310/0x1310 [ 129.447779] ? lock_release+0x3b2/0x750 [ 129.448099] ? __up_read+0x192/0x730 [ 129.448392] ? up_write+0x480/0x480 [ 129.448682] __do_sys_perf_event_open+0x1eec/0x32c0 [ 129.449069] ? __up_read+0x192/0x730 [ 129.449361] ? perf_compat_ioctl+0x130/0x130 [ 129.449704] ? up_write+0x480/0x480 [ 129.450003] ? syscall_enter_from_user_mode+0x1d/0x50 [ 129.450398] ? syscall_enter_from_user_mode+0x1d/0x50 [ 129.450795] do_syscall_64+0x3b/0x90 [ 129.451088] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.451486] RIP: 0033:0x7fbf1abfbb19 [ 129.451773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 129.453149] RSP: 002b:00007fbf18171188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 129.453725] RAX: ffffffffffffffda RBX: 00007fbf1ad0ef60 RCX: 00007fbf1abfbb19 [ 129.454265] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000080 [ 129.454798] RBP: 00007fbf1ac55f6d R08: 0000000000000000 R09: 0000000000000000 [ 129.455331] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 129.455873] R13: 00007fffed64184f R14: 00007fbf18171300 R15: 0000000000022000 [ 129.456429] [ 129.456613] irq event stamp: 780 [ 129.456873] hardirqs last enabled at (779): [] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 129.457622] hardirqs last disabled at (780): [] __schedule+0x1225/0x2470 [ 129.458247] softirqs last enabled at (778): [] __irq_exit_rcu+0x11b/0x180 [ 129.458903] softirqs last disabled at (743): [] __irq_exit_rcu+0x11b/0x180 [ 129.459545] ---[ end trace 0000000000000000 ]--- [ 129.865315] Process accounting resumed 07:00:32 executing program 2: r0 = getpid() r1 = pidfd_open(r0, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe2, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0x12a600, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0xfe4a, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0x1, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x4, 0x2, 0x8, 0x7f, 0x0, 0x3ff, 0x800, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000240), 0x6}, 0x1a02, 0x8, 0x0, 0x1, 0x1, 0x3, 0x2, 0x0, 0x5, 0x0, 0x8}, 0x0, 0xe, r2, 0x8) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) r4 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) close_range(r3, r4, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) pidfd_send_signal(r1, 0x31, &(0x7f0000000140)={0xf, 0x8, 0x98}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r5, 0x10000000) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) [ 129.970177] Process accounting resumed 07:00:32 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) ioctl$PTP_PIN_SETFUNC(r0, 0x40603d07, &(0x7f0000001240)={'\x00', 0x555, 0x0, 0x273}) r1 = openat$cgroup_int(r0, &(0x7f0000000000)='cpuset.memory_migrate\x00', 0x2, 0x0) fallocate(r1, 0x21, 0x5, 0x4) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) acct(&(0x7f0000001200)='./file1\x00') pwrite64(r2, &(0x7f00000000c0)='9', 0x1, 0x8040000) setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000540)={@in6={{0xa, 0x4e20, 0xffff, @mcast2, 0x4}}, 0x0, 0x0, 0x15, 0x0, "b25da62d685a38083e45ab1950001ca46105939b4b3d83bd945bed03b30b62897693132cb6e12788b1d58f9b2fff886055bea488ee0e2918a8c961a2684924dfa9841132b1916476e31d06d76d34a918"}, 0xd8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) sendfile(r2, r3, 0x0, 0xffff) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) openat$incfs(r4, &(0x7f0000000340)='.pending_reads\x00', 0x101280, 0x108) 07:00:32 executing program 2: r0 = getpid() r1 = pidfd_open(r0, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe2, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0x12a600, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0xfe4a, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0x1, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x4, 0x2, 0x8, 0x7f, 0x0, 0x3ff, 0x800, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000240), 0x6}, 0x1a02, 0x8, 0x0, 0x1, 0x1, 0x3, 0x2, 0x0, 0x5, 0x0, 0x8}, 0x0, 0xe, r2, 0x8) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) r4 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) close_range(r3, r4, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) pidfd_send_signal(r1, 0x31, &(0x7f0000000140)={0xf, 0x8, 0x98}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r5, 0x10000000) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) [ 130.154891] Process accounting resumed 07:00:32 executing program 4: r0 = getpid() r1 = pidfd_open(r0, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe2, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0x12a600, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0xfe4a, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0x1, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x4, 0x2, 0x8, 0x7f, 0x0, 0x3ff, 0x800, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000240), 0x6}, 0x1a02, 0x8, 0x0, 0x1, 0x1, 0x3, 0x2, 0x0, 0x5, 0x0, 0x8}, 0x0, 0xe, r2, 0x8) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) r4 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) close_range(r3, r4, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) pidfd_send_signal(r1, 0x31, &(0x7f0000000140)={0xf, 0x8, 0x98}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r5, 0x10000000) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) 07:00:32 executing program 2: r0 = getpid() r1 = pidfd_open(r0, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe2, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0x12a600, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0xfe4a, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0x1, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x4, 0x2, 0x8, 0x7f, 0x0, 0x3ff, 0x800, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000240), 0x6}, 0x1a02, 0x8, 0x0, 0x1, 0x1, 0x3, 0x2, 0x0, 0x5, 0x0, 0x8}, 0x0, 0xe, r2, 0x8) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) r4 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) close_range(r3, r4, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) pidfd_send_signal(r1, 0x31, &(0x7f0000000140)={0xf, 0x8, 0x98}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r5, 0x10000000) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) 07:00:32 executing program 2: r0 = getpid() r1 = pidfd_open(r0, 0x0) r2 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe2, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0x12a600, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0xfe4a, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r0, 0x1, 0xffffffffffffffff, 0xa) perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x4, 0x2, 0x8, 0x7f, 0x0, 0x3ff, 0x800, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000240), 0x6}, 0x1a02, 0x8, 0x0, 0x1, 0x1, 0x3, 0x2, 0x0, 0x5, 0x0, 0x8}, 0x0, 0xe, r2, 0x8) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r3 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) r4 = perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) close_range(r3, r4, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) pidfd_send_signal(r1, 0x31, &(0x7f0000000140)={0xf, 0x8, 0x98}, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r5, 0x10000000) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) VM DIAGNOSIS: 07:00:31 Registers: info registers vcpu 0 RAX=000000006de03cb8 RBX=00007f02fcd5e000 RCX=0000000000000061 RDX=0000000000000001 RSI=01460e2118c02161 RDI=0000000009591eb0 RBP=0000000000000001 RSP=00007fffc20b3cd0 R8 =00007fffc20b3e10 R9 =00007f02fcd90440 R10=00007f02fcd01800 R11=0000000000000007 R12=00007f02fcd365dc R13=00007f02fcd5fa90 R14=0000000000000000 R15=0000000000000000 RIP=00007f02fcd6e627 RFL=00000297 [--S-APC] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA] SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f02fc854540 00000000 00000000 GS =0000 0000000000000000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f02fca6759e CR3=000000003feda000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 00ff000000000000 00000000000000ff YMM01=0000000000000000 0000000000000000 ff00ffffffffffff ffffffffffffff00 YMM02=0000000000000000 0000000000000000 4c4700362e322e32 5f4342494c470035 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000470035 YMM04=0000000000000000 0000000000000000 4342494c4700362e 322e325f4342494c YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000007b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b3251 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff88803fdd73c8 R8 =0000000000000001 R9 =000000000000000a R10=000000000000007b R11=0000000000000001 R12=000000000000007b R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b3240 RIP=ffffffff822b32a9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fbf18171700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc44b26f028 CR3=000000000de38000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 6f732e616d7a6c62 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00352e6f732e616d 7a6c62696c2f756e YMM03=0000000000000000 0000000000000000 672d78756e696c2d 34365f3638782f62 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000