Warning: Permanently added '[localhost]:62261' (ECDSA) to the list of known hosts.
2022/09/20 00:17:39 fuzzer started
2022/09/20 00:17:40 dialing manager at localhost:42121
syzkaller login: [   42.979231] cgroup: Unknown subsys name 'net'
[   43.079183] cgroup: Unknown subsys name 'rlimit'
2022/09/20 00:17:53 syscalls: 2215
2022/09/20 00:17:53 code coverage: enabled
2022/09/20 00:17:53 comparison tracing: enabled
2022/09/20 00:17:53 extra coverage: enabled
2022/09/20 00:17:53 setuid sandbox: enabled
2022/09/20 00:17:53 namespace sandbox: enabled
2022/09/20 00:17:53 Android sandbox: enabled
2022/09/20 00:17:53 fault injection: enabled
2022/09/20 00:17:53 leak checking: enabled
2022/09/20 00:17:53 net packet injection: enabled
2022/09/20 00:17:53 net device setup: enabled
2022/09/20 00:17:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/20 00:17:53 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/20 00:17:53 USB emulation: enabled
2022/09/20 00:17:53 hci packet injection: enabled
2022/09/20 00:17:53 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220919                                          )
2022/09/20 00:17:53 802.15.4 emulation: enabled
2022/09/20 00:17:54 fetching corpus: 50, signal 27603/29376 (executing program)
2022/09/20 00:17:54 fetching corpus: 100, signal 42524/45835 (executing program)
2022/09/20 00:17:54 fetching corpus: 150, signal 50305/55085 (executing program)
2022/09/20 00:17:54 fetching corpus: 200, signal 56829/62993 (executing program)
2022/09/20 00:17:54 fetching corpus: 250, signal 63356/70815 (executing program)
2022/09/20 00:17:54 fetching corpus: 300, signal 73155/81687 (executing program)
2022/09/20 00:17:55 fetching corpus: 350, signal 78165/87830 (executing program)
2022/09/20 00:17:55 fetching corpus: 400, signal 81606/92426 (executing program)
2022/09/20 00:17:55 fetching corpus: 450, signal 87319/99167 (executing program)
2022/09/20 00:17:55 fetching corpus: 500, signal 92709/105451 (executing program)
2022/09/20 00:17:55 fetching corpus: 550, signal 94621/108492 (executing program)
2022/09/20 00:17:55 fetching corpus: 600, signal 97061/111943 (executing program)
2022/09/20 00:17:55 fetching corpus: 650, signal 99453/115255 (executing program)
2022/09/20 00:17:55 fetching corpus: 700, signal 101933/118691 (executing program)
2022/09/20 00:17:56 fetching corpus: 750, signal 103982/121699 (executing program)
2022/09/20 00:17:56 fetching corpus: 800, signal 107410/125839 (executing program)
2022/09/20 00:17:56 fetching corpus: 850, signal 111492/130471 (executing program)
2022/09/20 00:17:56 fetching corpus: 900, signal 113392/133209 (executing program)
2022/09/20 00:17:56 fetching corpus: 950, signal 115540/136090 (executing program)
2022/09/20 00:17:56 fetching corpus: 1000, signal 119434/140426 (executing program)
2022/09/20 00:17:56 fetching corpus: 1050, signal 121795/143539 (executing program)
2022/09/20 00:17:56 fetching corpus: 1100, signal 125755/147916 (executing program)
2022/09/20 00:17:57 fetching corpus: 1150, signal 127264/150161 (executing program)
2022/09/20 00:17:57 fetching corpus: 1200, signal 129931/153271 (executing program)
2022/09/20 00:17:57 fetching corpus: 1250, signal 130960/155064 (executing program)
2022/09/20 00:17:57 fetching corpus: 1300, signal 132297/157021 (executing program)
2022/09/20 00:17:57 fetching corpus: 1350, signal 134161/159435 (executing program)
2022/09/20 00:17:57 fetching corpus: 1400, signal 135918/161708 (executing program)
2022/09/20 00:17:57 fetching corpus: 1450, signal 137304/163646 (executing program)
2022/09/20 00:17:57 fetching corpus: 1500, signal 139182/166035 (executing program)
2022/09/20 00:17:58 fetching corpus: 1550, signal 141463/168638 (executing program)
2022/09/20 00:17:58 fetching corpus: 1600, signal 143333/170910 (executing program)
2022/09/20 00:17:58 fetching corpus: 1650, signal 145144/173060 (executing program)
2022/09/20 00:17:58 fetching corpus: 1700, signal 146371/174831 (executing program)
2022/09/20 00:17:58 fetching corpus: 1750, signal 148954/177484 (executing program)
2022/09/20 00:17:58 fetching corpus: 1800, signal 150306/179268 (executing program)
2022/09/20 00:17:58 fetching corpus: 1850, signal 151337/180791 (executing program)
2022/09/20 00:17:58 fetching corpus: 1900, signal 152142/182136 (executing program)
2022/09/20 00:17:59 fetching corpus: 1950, signal 153722/184035 (executing program)
2022/09/20 00:17:59 fetching corpus: 2000, signal 155245/185831 (executing program)
2022/09/20 00:17:59 fetching corpus: 2050, signal 156770/187588 (executing program)
2022/09/20 00:17:59 fetching corpus: 2100, signal 158354/189408 (executing program)
2022/09/20 00:17:59 fetching corpus: 2150, signal 159269/190730 (executing program)
2022/09/20 00:17:59 fetching corpus: 2200, signal 160451/192207 (executing program)
2022/09/20 00:17:59 fetching corpus: 2250, signal 162233/194125 (executing program)
2022/09/20 00:17:59 fetching corpus: 2300, signal 164029/195978 (executing program)
2022/09/20 00:18:00 fetching corpus: 2350, signal 165404/197519 (executing program)
2022/09/20 00:18:00 fetching corpus: 2400, signal 166488/198874 (executing program)
2022/09/20 00:18:00 fetching corpus: 2450, signal 167663/200250 (executing program)
2022/09/20 00:18:00 fetching corpus: 2500, signal 169208/201831 (executing program)
2022/09/20 00:18:00 fetching corpus: 2550, signal 170374/203155 (executing program)
2022/09/20 00:18:00 fetching corpus: 2600, signal 171787/204643 (executing program)
2022/09/20 00:18:00 fetching corpus: 2650, signal 173495/206294 (executing program)
2022/09/20 00:18:00 fetching corpus: 2700, signal 174223/207354 (executing program)
2022/09/20 00:18:01 fetching corpus: 2750, signal 175418/208666 (executing program)
2022/09/20 00:18:01 fetching corpus: 2800, signal 176361/209791 (executing program)
2022/09/20 00:18:01 fetching corpus: 2850, signal 177653/211074 (executing program)
2022/09/20 00:18:01 fetching corpus: 2900, signal 179115/212433 (executing program)
2022/09/20 00:18:01 fetching corpus: 2950, signal 179888/213414 (executing program)
2022/09/20 00:18:01 fetching corpus: 3000, signal 181691/214943 (executing program)
2022/09/20 00:18:01 fetching corpus: 3050, signal 182529/215977 (executing program)
2022/09/20 00:18:02 fetching corpus: 3100, signal 183657/217072 (executing program)
2022/09/20 00:18:02 fetching corpus: 3150, signal 184474/218051 (executing program)
2022/09/20 00:18:02 fetching corpus: 3200, signal 185648/219182 (executing program)
2022/09/20 00:18:02 fetching corpus: 3250, signal 186379/220047 (executing program)
2022/09/20 00:18:02 fetching corpus: 3300, signal 187187/220957 (executing program)
2022/09/20 00:18:02 fetching corpus: 3350, signal 188127/221882 (executing program)
2022/09/20 00:18:02 fetching corpus: 3400, signal 188853/222739 (executing program)
2022/09/20 00:18:02 fetching corpus: 3450, signal 189418/223441 (executing program)
2022/09/20 00:18:02 fetching corpus: 3500, signal 190463/224406 (executing program)
2022/09/20 00:18:03 fetching corpus: 3550, signal 191008/225113 (executing program)
2022/09/20 00:18:03 fetching corpus: 3600, signal 191880/225941 (executing program)
2022/09/20 00:18:03 fetching corpus: 3650, signal 193378/227020 (executing program)
2022/09/20 00:18:03 fetching corpus: 3700, signal 194238/227862 (executing program)
2022/09/20 00:18:03 fetching corpus: 3750, signal 195253/228753 (executing program)
2022/09/20 00:18:03 fetching corpus: 3800, signal 196438/229629 (executing program)
2022/09/20 00:18:04 fetching corpus: 3850, signal 197446/230486 (executing program)
2022/09/20 00:18:04 fetching corpus: 3900, signal 198867/231449 (executing program)
2022/09/20 00:18:04 fetching corpus: 3950, signal 199632/232155 (executing program)
2022/09/20 00:18:04 fetching corpus: 4000, signal 200867/233028 (executing program)
2022/09/20 00:18:04 fetching corpus: 4050, signal 201839/233769 (executing program)
2022/09/20 00:18:04 fetching corpus: 4100, signal 202858/234536 (executing program)
2022/09/20 00:18:04 fetching corpus: 4150, signal 203802/235267 (executing program)
2022/09/20 00:18:05 fetching corpus: 4200, signal 204732/235915 (executing program)
2022/09/20 00:18:05 fetching corpus: 4250, signal 205537/236548 (executing program)
2022/09/20 00:18:05 fetching corpus: 4300, signal 205990/237046 (executing program)
2022/09/20 00:18:05 fetching corpus: 4350, signal 206731/237637 (executing program)
2022/09/20 00:18:05 fetching corpus: 4400, signal 207509/238227 (executing program)
2022/09/20 00:18:05 fetching corpus: 4450, signal 208019/238713 (executing program)
2022/09/20 00:18:05 fetching corpus: 4500, signal 208595/239230 (executing program)
2022/09/20 00:18:05 fetching corpus: 4550, signal 209461/239776 (executing program)
2022/09/20 00:18:05 fetching corpus: 4600, signal 210563/240397 (executing program)
2022/09/20 00:18:06 fetching corpus: 4650, signal 210899/240802 (executing program)
2022/09/20 00:18:06 fetching corpus: 4700, signal 211622/241267 (executing program)
2022/09/20 00:18:06 fetching corpus: 4750, signal 212095/241673 (executing program)
2022/09/20 00:18:06 fetching corpus: 4800, signal 212487/242092 (executing program)
2022/09/20 00:18:06 fetching corpus: 4850, signal 213003/242532 (executing program)
2022/09/20 00:18:06 fetching corpus: 4900, signal 213672/242999 (executing program)
2022/09/20 00:18:06 fetching corpus: 4950, signal 214690/243518 (executing program)
2022/09/20 00:18:06 fetching corpus: 5000, signal 215184/243910 (executing program)
2022/09/20 00:18:06 fetching corpus: 5050, signal 215840/244321 (executing program)
2022/09/20 00:18:07 fetching corpus: 5100, signal 216286/244711 (executing program)
2022/09/20 00:18:07 fetching corpus: 5150, signal 216870/245144 (executing program)
2022/09/20 00:18:07 fetching corpus: 5200, signal 217402/245531 (executing program)
2022/09/20 00:18:07 fetching corpus: 5250, signal 217714/245870 (executing program)
2022/09/20 00:18:07 fetching corpus: 5300, signal 218903/246386 (executing program)
2022/09/20 00:18:07 fetching corpus: 5350, signal 219350/246705 (executing program)
2022/09/20 00:18:07 fetching corpus: 5400, signal 220024/247077 (executing program)
2022/09/20 00:18:08 fetching corpus: 5450, signal 220814/247467 (executing program)
2022/09/20 00:18:08 fetching corpus: 5500, signal 221072/247751 (executing program)
2022/09/20 00:18:08 fetching corpus: 5550, signal 221458/248044 (executing program)
2022/09/20 00:18:08 fetching corpus: 5600, signal 222206/248347 (executing program)
2022/09/20 00:18:08 fetching corpus: 5650, signal 223227/248718 (executing program)
2022/09/20 00:18:08 fetching corpus: 5700, signal 224315/249050 (executing program)
2022/09/20 00:18:08 fetching corpus: 5750, signal 224765/249372 (executing program)
2022/09/20 00:18:08 fetching corpus: 5800, signal 225682/249643 (executing program)
2022/09/20 00:18:09 fetching corpus: 5850, signal 226365/249890 (executing program)
2022/09/20 00:18:09 fetching corpus: 5900, signal 226882/250116 (executing program)
2022/09/20 00:18:09 fetching corpus: 5950, signal 227473/250366 (executing program)
2022/09/20 00:18:09 fetching corpus: 6000, signal 228534/250584 (executing program)
2022/09/20 00:18:09 fetching corpus: 6050, signal 228934/250794 (executing program)
2022/09/20 00:18:09 fetching corpus: 6100, signal 229324/251001 (executing program)
2022/09/20 00:18:09 fetching corpus: 6150, signal 229834/251185 (executing program)
2022/09/20 00:18:09 fetching corpus: 6200, signal 230517/251350 (executing program)
2022/09/20 00:18:09 fetching corpus: 6250, signal 230995/251356 (executing program)
2022/09/20 00:18:10 fetching corpus: 6300, signal 231405/251359 (executing program)
2022/09/20 00:18:10 fetching corpus: 6350, signal 232237/251362 (executing program)
2022/09/20 00:18:10 fetching corpus: 6400, signal 232606/251365 (executing program)
2022/09/20 00:18:10 fetching corpus: 6450, signal 233023/251365 (executing program)
2022/09/20 00:18:10 fetching corpus: 6500, signal 233735/251365 (executing program)
2022/09/20 00:18:10 fetching corpus: 6550, signal 234468/251392 (executing program)
2022/09/20 00:18:10 fetching corpus: 6600, signal 235383/251392 (executing program)
2022/09/20 00:18:10 fetching corpus: 6650, signal 235988/251397 (executing program)
2022/09/20 00:18:11 fetching corpus: 6700, signal 236896/251410 (executing program)
2022/09/20 00:18:11 fetching corpus: 6741, signal 237267/251425 (executing program)
2022/09/20 00:18:11 fetching corpus: 6741, signal 237267/251425 (executing program)
2022/09/20 00:18:13 starting 8 fuzzer processes
00:18:14 executing program 0:
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000000)={<r0=>0x0, 0x1, 0x0, 0x1})
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000400)={r0, 0x1, 0x0, [0x100, 0x10001, 0x401, 0x2, 0x401], [0x1, 0x8, 0x6, 0x6, 0x3, 0xffffffff, 0x9, 0xfffffffffffffff9, 0x4b1, 0x6, 0xfffffffffffffffd, 0x9, 0x9, 0x7, 0x0, 0x70, 0x1cc4, 0x8, 0x80000000, 0x2, 0x32, 0x15a, 0x1ff, 0x58, 0x9, 0x2, 0xffff, 0x1000, 0x1, 0x4, 0x1f, 0x7, 0x7cc, 0x401, 0x101, 0x1, 0x6, 0x3, 0x0, 0x100000, 0x1f, 0x4, 0x95cb, 0x7, 0xe7b7, 0x6, 0x1, 0x20a, 0x4, 0x0, 0x7, 0x0, 0x7f, 0x3, 0x5, 0x5, 0xf5, 0x8, 0x4, 0x40, 0x5, 0x8, 0x6, 0xaef, 0x9, 0x1cb28000, 0x47, 0xc, 0x20, 0x0, 0xffffffffaf87176e, 0x8, 0x1f, 0x7, 0x9, 0x8000, 0x9b, 0x100000000, 0xffff, 0xfffffffffffffc00, 0x1ff, 0xe6b, 0x1, 0x7fffffff, 0x1, 0x7f, 0x90a0, 0x7, 0x900, 0xff, 0x2, 0x9f, 0x2, 0x4, 0x0, 0xfffffffffffffffa, 0x0, 0x1, 0x8437, 0x80000001, 0x100000001, 0x2, 0x7, 0x80000001, 0xffffffff, 0x1000, 0x8, 0xfffffffffffffffc, 0x4, 0x1f, 0xffffffff, 0x10000, 0x8, 0x0, 0x4, 0x8, 0x0, 0x0, 0x5, 0x5, 0x6]})
ioctl$AUTOFS_IOC_EXPIRE_MULTI(0xffffffffffffffff, 0x40049366, &(0x7f0000000840)=0x4)
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000880), 0x68c80, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000900)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MESH_CONFIG(r1, &(0x7f0000000a00)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000940)={0x58, 0x0, 0x10, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x5, 0x35}}}}, [@NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL={0x6, 0x19, 0x2}, @NL80211_MESHCONF_FORWARDING={0x5}, @NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL={0x6, 0xc, 0x400}]}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x1, 0x31}}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x58}}, 0x4040050)
r3 = openat(r1, &(0x7f0000000a40)='./file0\x00', 0x80, 0xa8)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000ac0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_KEY(r3, &(0x7f0000000bc0)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b00)={0x48, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "b0ef51671c704517fc08ff7685"}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "e1e40a38489b0145529ce874ee"}, @NL80211_ATTR_KEY_DEFAULT={0x4}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000000}, 0xc000)
ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000c00))
r5 = openat$full(0xffffffffffffff9c, &(0x7f0000000d00), 0x100, 0x0)
getsockname$packet(r1, &(0x7f0000000d80)={0x11, 0x0, <r6=>0x0}, &(0x7f0000000dc0)=0x14)
ioctl$sock_ipv6_tunnel_SIOCGETPRL(r3, 0x89f4, &(0x7f0000000e80)={'syztnl0\x00', &(0x7f0000000e00)={'syztnl2\x00', <r7=>0x0, 0x2b, 0x4, 0x7, 0x1000, 0xb, @private1, @private2, 0x7800, 0x8000, 0x873, 0x2}})
sendmsg$ETHTOOL_MSG_DEBUG_GET(r5, &(0x7f0000001040)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000001000)={&(0x7f0000000ec0)={0x138, 0x0, 0x0, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ipvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000000)
r8 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000010c0), 0xffffffffffffffff)
sendmsg$NLBL_CALIPSO_C_LIST(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0xf113335f2d31e3c6}, 0xc, &(0x7f0000001140)={&(0x7f0000001100)={0x24, r8, 0x826, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NLBL_CALIPSO_C_ADD(0xffffffffffffffff, &(0x7f00000012c0)={&(0x7f00000011c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001280)={&(0x7f0000001200)={0x44, r8, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x84}, 0x44880)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000001300)={<r9=>r3, 0x80000001, 0x7, 0x94})
bind$802154_dgram(r9, &(0x7f0000001340)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0302}}}, 0x14)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r3, &(0x7f0000001480)={&(0x7f0000001380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001440)={&(0x7f0000001400)={0x38, 0x0, 0x20, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xd4, 0x20}}}}, [@NL80211_ATTR_FRAME={0xe, 0x33, @ctrl_frame=@cts={{}, {0x3f}}}]}, 0x38}}, 0x4000090)

00:18:14 executing program 1:
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f0000000080)=[@cred={{0x1c, 0x1, 0x2, {<r0=>0x0, <r1=>0x0, <r2=>0x0}}}, @rights={{0x18, 0x1, 0x1, [<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {<r7=>0x0, <r8=>0x0}}}], 0x78}}], 0x1, 0x10003, &(0x7f0000000140))
sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000780)={&(0x7f0000000180)={0x5ec, 0xf, 0x7, 0x3, 0x70bd2b, 0x25dfdbff, {0x2, 0x0, 0x4}, [@generic="21ec2a9248ecc2632dfee1fc5e5ecbf3944a51f03be6c43f967a89a70d67cbc7a27ce2a955f1e2123e0432080b487a724f2a7aa116a82ae5a11a59d25df919489757a4db69e060c21040a458906e3617b22175ed13952e6fbcf528c36f15bedf7dad", @nested={0x22e, 0x48, 0x0, 0x1, [@generic="b84b9353baa1006f75bccfc9ee95ad6472e528b8aab5fae0ad49c1e053f9f469a09d5e74f6dbfa95d81ea71ea91a36de36abd1006e46a66d6453db4a520cf8061a47ca575d56219b51e875d0c96886a43127acdbb1f8c125db3c780c9ff00b098265f89d5004e9b26b8a7cf5d6e47adfc383dcc9b965bc60633c3360bd287d14b3e26df4061c4d536216054d06aa57798c5cfb64e993", @generic="7cd0b74a7bfad6d31182630decd198700dbfe191a3aa6a03c06e2b169d71a67255f53ea0da5b23e915bc2076297e9b0e09840dbbbe7a76620787910d8eb22e2fc4d94127122c5ffc09df0cf782ed6d1e4f9fa72b5ea3c93ee23e6e4dd7d99f9626babb1ee89ac4d10385bb341be1ac2457c3efefbb5aa6395aff054d3f619451e1bb5ea067fc6f1646047d75d6315ad083dfe6e973e8877677ff390d3cd43669225d69ef698472c38b42853bdef9d4193159d0d2bdc64c5ac3a2279a3fc673f365e41e64e194fb0ec1c9c60cbe5b90dd", @typed={0x8, 0x3a, 0x0, 0x0, @uid=r1}, @generic="59c57ad51b0e4a02215ff3231bcb0dab24326eb32447a5cb52c71a38f979f49367b3e55c588f491c2b37032675ff1b6f63f31947c09589fabb83e89d3e8b51413e45d24b3a86d94498bf1069be3ae1f4b05e2bcb378acbd92f827c9e8827bd0194327789bf3e12c064d6bc3545c5f5028f99a5019ede70d28f3795c822f7c7a321abaa2a80ee550abe3783d5b772c5f5885ede5b21503f11ba9294208a410356bd8d2920affb4f6964d9df5292b2d89930a308efdedf2676a9762603"]}, @nested={0x180, 0x5b, 0x0, 0x1, [@generic="b3114607e0367a747c079e08da9fde01f9c887604f842ff02bfe42f138ecf3f7abb82c7aa69b3d90e112c68955dbb0432434c596de7b02b1a7de43b9a4dad838277b5e6ee305a02ccedc33253e9a6c931427d490101cd0bfb80ef91156cfbdf11c7458b816447d9fc215f0ac585e98c04ff214cf51d1e820640de9eb11c0d0ef489604dd9e3aa9bcdff18eaac168765be4b910b40533c238b808233be6ef630e413391c1c1025d8d2630e5851559145d10a0e9df174bba1c2b1c797edb144451869c6e2aaaa83cb7b9321d85ce9878aae7e4d2", @typed={0x4, 0x63}, @typed={0x8, 0x23, 0x0, 0x0, @u32=0x1ff}, @generic="b65e3d0abf8c4acd6d6615bfa5ea8cd998f3659c2b2f011eeb21cf3bb0815c4de4b3ef4bad616e8cb985c775e250fed74ebd3d2dff34ab139656e360302bef06e921796edae6dfbbaeab8300ea801f5a81a39cf06d52361e89f83c19bc766c30adccadea296d1123ec9a41b1d4d9fa4b0b6cd46cd1283ee6a360403f606f23f439dee8f9e716f1114977d47fcb89c57aa521a5c7ccc84ef3807ec5a986"]}, @generic="ca2af3b009b58c9126f26535e774e6e77f5dd4760301275c8836c6f875a75eb51d704c10bd1880895d2c0f4cd330937ab2b4163402c4b183dcd7dead6f7df4773e9376b544df0137e5c8d882202933a260a9e8eee0ddf8c2e63d2f9e74b086bab50a48febd4c54dac2302e054443b7fc1b7b921c816335880d86480c3883c27353f236ed38a2c0d94200a50aba2c40d5408bbf1c0121da100878380e8b006e6c387d699885f3e9e89538ca5c920ed8005995518f56e1b2f6c75468190d72de6c379faa82f9", @typed={0x14, 0x50, 0x0, 0x0, @ipv6=@mcast2}, @generic="940a3934287f7bfc98d2aec2602ada9b0cf86bdb16bf32cabffbbf716ccdc18d9b08446267417c56c8840a856d28ccb9a64007f536634345dea2fe4f324a7648a1b9fb837552b7339ef6796e2a46c1f244d0e0efdd3df24720ca0d1ca56f55d8cf7c71fb611dbb50f7879b9f28f5d2b3fa19e0b57ce71939d468cc3d381ebb3be5f1f57ddeb5e361ecab84e5cfde44ec3af677fef0a0d13eadeb9a905d57d2aa657aab104651fe60e31995fa6e30c6b4bb257bb0f3b4743a7ca571770485b14da8bd14c2a37226021ee4ffe920763be05a3d13ba720a877766f5d364f9b719f024140be36712f14ce2bfe5df1e"]}, 0x5ec}, 0x1, 0x0, 0x0, 0x48000}, 0x4000)
r9 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000800)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0)
fchown(r9, r8, 0x0)
perf_event_open(&(0x7f0000000880)={0x0, 0x80, 0xc1, 0x2, 0x2b, 0x0, 0x0, 0x100, 0x2000, 0xf, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000840), 0x1}, 0x1222, 0xffffffff80000000, 0x80000000, 0x2, 0x8, 0x7fffffff, 0x7, 0x0, 0x1ff, 0x0, 0x7ff}, 0x0, 0x4, r5, 0x8)
r10 = syz_mount_image$tmpfs(&(0x7f0000000900), &(0x7f0000000940)='./file0\x00', 0x4, 0x1, &(0x7f0000000a00)=[{&(0x7f0000000980)="5bcc7d1d863bc15ab9a940a9c34a7254609bae65df20516939dd1aa24fa7d8798ceb169fc7dc00ae3758becee5dc6271497f1039a97e54454d5444781f6cdb28ef744cc72f9273e7ad9dcc0ee9a9f53f965d5300613e2dc8019b29f3ef", 0x5d, 0xff}], 0x2000001, &(0x7f0000000a40)={[{@uid={'uid', 0x3d, r1}}, {@huge_within_size}, {@mode={'mode', 0x3d, 0x6}}, {@gid={'gid', 0x3d, r2}}, {@huge_never}], [{@appraise}, {@subj_user={'subj_user', 0x3d, '^{'}}, {@fsname={'fsname', 0x3d, ']\\,[@\\'}}, {@fowner_eq={'fowner', 0x3d, r8}}, {@uid_gt={'uid>', r1}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/proc/sys/net/ipv4/tcp_rmem\x00'}}, {@seclabel}]})
r11 = openat(r10, &(0x7f0000000b40)='./file0\x00', 0x10000, 0x0)
r12 = signalfd4(r3, &(0x7f0000000b80)={[0x8]}, 0x8, 0x0)
setsockopt$packet_int(r12, 0x107, 0xe, &(0x7f0000000bc0)=0x100, 0x4)
r13 = memfd_secret(0x0)
fsetxattr$trusted_overlay_origin(r13, &(0x7f0000000c00), &(0x7f0000000c40), 0x2, 0x2)
fremovexattr(r6, &(0x7f0000000c80)=@known='system.posix_acl_default\x00')
ioctl$KDFONTOP_COPY(r4, 0x4b72, &(0x7f00000010c0)={0x3, 0x1, 0x8, 0x4, 0x1ad, &(0x7f0000000cc0)})
write$binfmt_aout(r5, &(0x7f0000001100)={{0x107, 0xd2, 0x7f, 0x8d, 0x1cb, 0x7fffffff, 0x1db, 0x51}, "c8471c7a79ff36c2a2b76075eb4948093f73f265a361ddc7acd3193288cdf297c544048cb1bddc962d4063ed6c59c16e3e195ccda419f2ec0e8ba1f70837ee7dddf5c7e730b0b70b6215f74a6b842c016574c299446d23eea7d933410e4b9e852fc2175bf44df00388d155cd3e98f69ee6523084c6e8612994b336b441edf65e74e81dae5c8b2017a0dd06ffc067a19af06a8d4932c116e6d535ba2438636b54c774ca920675dc5e", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xac8)
syz_mount_image$tmpfs(&(0x7f0000001c00), &(0x7f0000001c40)='./file0\x00', 0x8, 0x1, &(0x7f0000001d00)=[{&(0x7f0000001c80)="e604e80fa92a634c3da5d271523defdd97b0ca3f8952783bccde9ffed0714d23546b959d2240321c21b27a4d5d6fd573d82595428cf161aa28708fe36de8c8239ecc7d908523d7f0d337cbeeb901f19bcebe4c8b071bd6cd501338bd5607", 0x5e, 0xffff}], 0x10000, &(0x7f0000001d40)={[{@huge_always}], [{@dont_measure}, {@obj_user={'obj_user', 0x3d, 'appraise'}}, {@smackfsroot}, {@fowner_eq={'fowner', 0x3d, r8}}, {@permit_directio}]})
ioctl$TIOCSWINSZ(r13, 0x5414, &(0x7f0000001dc0)={0x4, 0x7, 0x8, 0xee17})
perf_event_open(&(0x7f0000001e40)={0x4, 0x80, 0x3, 0x80, 0x9, 0x4, 0x0, 0x2, 0x40d5, 0x9, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0xfffff800, 0x2, @perf_bp={&(0x7f0000001e00), 0x15}, 0xc2d3, 0x4b0d, 0x6, 0x0, 0x800, 0x3, 0x5757, 0x0, 0x3, 0x0, 0x3}, r0, 0x9, r11, 0x3)
perf_event_open(&(0x7f0000001ec0)={0x2, 0x80, 0x2, 0x7, 0x20, 0x0, 0x0, 0x2, 0x1000, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_config_ext={0x2aa, 0x8}, 0x9, 0x100000000, 0x2, 0x9, 0x40, 0xfffe0000, 0x7, 0x0, 0x4, 0x0, 0x80}, r7, 0xb, r6, 0x8)
r14 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000001f40)='/proc/self/attr/fscreate\x00', 0x2, 0x0)
sendfile(r11, r14, &(0x7f0000001f80)=0x3, 0x6)

00:18:14 executing program 2:
r0 = mmap$binder(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x3)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x24, 0x0, &(0x7f0000000000)=[@free_buffer={0x40086303, r0}, @decrefs, @enter_looper, @free_buffer], 0x38, 0x0, &(0x7f0000000040)="98cd06675a80a9867a53154cac0a6c1bea7805051c0e3c6e41ef4530235d3abf80b5bcd3182e6a195b019b29422d4b9e25e62af0775ac864"})
r1 = openat$hpet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2800, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000100)={{r1}, "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"})
mprotect(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000001)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, &(0x7f0000001100)=0x1e, 0x5, 0x0)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000001140)={{r1}, 0x0, 0x1a, @unused=[0xffffffffffffffa5, 0x6, 0x7, 0x7], @devid})
preadv(r1, &(0x7f00000023c0)=[{&(0x7f0000002140)=""/186, 0xba}, {&(0x7f0000002200)=""/76, 0x4c}, {&(0x7f0000002280)=""/168, 0xa8}, {&(0x7f0000002340)=""/90, 0x5a}], 0x4, 0xce, 0x2)
r2 = syz_io_uring_complete(0x0)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002400), r2)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$LOOP_SET_FD(r2, 0x4c00, r4)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000002440)={{0x1, 0x1, 0x18, <r5=>r1, {0x3}}, './file0\x00'})
finit_module(r5, &(0x7f0000002480)='ethtool\x00', 0x0)
r6 = openat$zero(0xffffffffffffff9c, &(0x7f00000024c0), 0x100, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000002540)={{0x1, 0x1, 0x18, <r7=>r5, {0x3}}, './file0\x00'})
mount_setattr(r6, &(0x7f0000002500)='./file0\x00', 0x1800, &(0x7f0000002580)={0x1, 0x100000, 0xc0000, {r7}}, 0x20)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000002680)={'ip6gre0\x00', &(0x7f0000002600)={'sit0\x00', <r8=>0x0, 0x2f, 0x2, 0x1, 0x7f, 0x2, @private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x20, 0x80, 0x5, 0x10001}})
sendmsg$ETHTOOL_MSG_EEE_SET(r1, &(0x7f0000002a40)={&(0x7f00000025c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000002a00)={&(0x7f00000026c0)={0x33c, r3, 0x300, 0x70bd2c, 0x25dfdbfd, {}, [@ETHTOOL_A_EEE_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_ENABLED={0x5}, @ETHTOOL_A_EEE_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_EEE_MODES_OURS={0x2c4, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x47, 0x4, "f1d5a44157581106a11698bdaef13d360f0dac375d7bd59cc3a79b3903ab45399c2d4eac82826887a1a9805cd697c60498aa6311fc1d673d574e9d074b57f242194009"}, @ETHTOOL_A_BITSET_BITS={0x84, 0x3, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '}\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xee2d}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xfff}, @ETHTOOL_A_BITSET_BIT_NAME={0x6, 0x2, '#\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x7fff}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '.}\x9e,:)*\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, 'ethtool\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x6}]}, {0x10, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}]}, {0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0xc}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x38, 0x5, "6e1cfea937d53ac8bca2b0dc66bf5d3e396deeb270892e0d84539c0ec0249f1e38469215d42030b285f7c7914d5bef52d95041a1"}, @ETHTOOL_A_BITSET_MASK={0x74, 0x5, "d49a58545f39aab991e2d8f808bb076a4cbc5d8a36301c2715ab664979a27a222b4b066b235979973dbfd9aed774d81830ac74e26e9c6dd35ab84f45fe932537f7c54d47c307627915938da1a5c62bf012356a54b8c2de732c33a113807d312c0e001b4cc2ff4b336453a1e11677dde2"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x4}, @ETHTOOL_A_BITSET_MASK={0xf2, 0x5, "258dd14289ca64c3a1762d3fa414a8f5d961d81a51117f54afaa4089915204afcb96ac8860d71eeecbfe6e38983fe2e304ec65c2613282a2853f863b2d2df055ade62a419b144b422867803383a49556ae62b3f14b545564cb1620d44a7b4d792fabaa8d576c13f0754015a8672981cab06266a6894898a92adf37e8fb71894b4dc8b1e0038eeed349a4b187105167eb29bd4ad3e931bfe209cc06eb8c3c07b669d56fc58e7e7275646019ea50a8a0d1b481c342e4c31a1597b0a64b6b100c524a74dbd748ade619e2a6708707fcc781fbacd9a146a91d5ace6612bff69f9dc22e684761d371a010b5218d6d3cdc"}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x3f, 0x4, "0261663b0ee3966dbff18f3313a6115fdfd7896a46fc5ac8c83aa81113272c58af2e58156c05aaf0ffe8e08dfdd0e88de4d6f3d38ea9eb294a18fe"}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5}]}, 0x33c}, 0x1, 0x0, 0x0, 0x20000000}, 0x80)
ioctl$HIDIOCGREPORT(r7, 0x400c4807, &(0x7f0000002a80)={0x3, 0x100, 0x9})

[   76.562192] audit: type=1400 audit(1663633094.032:6): avc:  denied  { execmem } for  pid=284 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
00:18:14 executing program 3:
r0 = memfd_secret(0x0)
getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000000), &(0x7f0000000040)=0x2)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, <r1=>r0, {0x9}}, './file0\x00'})
ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f00000000c0)=0x8)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x20000, 0x0)
r3 = socket$nl_sock_diag(0x10, 0x3, 0x4)
r4 = io_uring_setup(0x5d73, &(0x7f0000000200)={0x0, 0x4278, 0x1, 0x2, 0x356})
r5 = syz_open_dev$evdev(&(0x7f0000000280), 0x1, 0x210000)
io_uring_register$IORING_REGISTER_FILES_UPDATE(0xffffffffffffffff, 0x6, &(0x7f0000000300)={0xca, 0x0, &(0x7f00000002c0)=[r2, r3, r4, r0, r5, r1, r0]}, 0x7)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0xf503, 0x0)
clock_gettime(0x0, &(0x7f0000000380)={<r6=>0x0, <r7=>0x0})
utimensat(0xffffffffffffff9c, &(0x7f0000000340)='./file0/file0\x00', &(0x7f00000003c0)={{r6, r7/1000+60000}}, 0x100)
ioctl$sock_inet_SIOCSIFNETMASK(r1, 0x891c, &(0x7f0000000400)={'syzkaller1\x00', {0x2, 0x0, @empty}})
r8 = syz_mount_image$msdos(&(0x7f0000000440), &(0x7f0000000480)='./file0/file0\x00', 0x3, 0x1, &(0x7f0000000500)=[{&(0x7f00000004c0)="bbe24e5e", 0x4, 0x427d0075}], 0x100000, &(0x7f0000000540)={[{@fat=@fmask={'fmask', 0x3d, 0x81}}, {@fat=@check_normal}, {@nodots}], [{@uid_eq={'uid', 0x3d, 0xee01}}, {@hash}, {@appraise_type}, {@fowner_gt={'fowner>', 0xee00}}, {@smackfsdef={'smackfsdef', 0x3d, '/dev/input/event#\x00'}}, {@fowner_gt}, {@subj_role={'subj_role', 0x3d, '#['}}]})
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r8, 0x40106614, &(0x7f0000000640))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000680)={{0x1, 0x1, 0x18, <r9=>r2, {0x0, 0xffffffffffffffff}}, './file0/file0\x00'})
io_uring_register$IORING_REGISTER_EVENTFD(r1, 0x4, &(0x7f00000006c0)=r9, 0x1)
bind$netlink(r1, &(0x7f0000000700)={0x10, 0x0, 0x25dfdbfe, 0x4}, 0xc)
setsockopt$SO_TIMESTAMPING(r9, 0x1, 0x41, &(0x7f0000000740)=0x140, 0x4)
setsockopt$inet6_MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000000880)={{0xa, 0x4e24, 0x0, @mcast1}, {0xa, 0x4e21, 0x7e8, @rand_addr=' \x01\x00', 0x8000}, 0x2, [0x6, 0x0, 0x4, 0x0, 0x3, 0x1000, 0x2, 0x629d]}, 0x5c)

00:18:14 executing program 4:
shmctl$SHM_INFO(0xffffffffffffffff, 0xe, &(0x7f0000000000)=""/62)
shmctl$SHM_UNLOCK(0x0, 0xc)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x2000)
shmat(0xffffffffffffffff, &(0x7f0000ffd000/0x3000)=nil, 0x6000)
mlock2(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1)
r0 = shmget$private(0x0, 0x2000, 0x4, &(0x7f0000ffe000/0x2000)=nil)
r1 = shmget$private(0x0, 0x2000, 0x4, &(0x7f0000ffe000/0x2000)=nil)
r2 = shmget$private(0x0, 0x2000, 0x8, &(0x7f0000ffe000/0x2000)=nil)
r3 = shmget(0x3, 0x3000, 0x8, &(0x7f0000ffb000/0x3000)=nil)
shmctl$SHM_STAT_ANY(r3, 0xf, &(0x7f0000000040)=""/4096)
shmat(0x0, &(0x7f0000ffb000/0x1000)=nil, 0x3000)
shmget$private(0x0, 0x2000, 0x62, &(0x7f0000ffb000/0x2000)=nil)
shmctl$SHM_STAT(r0, 0xd, &(0x7f0000001040)=""/167)
shmat(r1, &(0x7f0000ffd000/0x2000)=nil, 0x1000)
shmat(r2, &(0x7f0000ffc000/0x4000)=nil, 0x4000)
mlock2(&(0x7f0000ff1000/0xf000)=nil, 0xf000, 0x1)
shmget$private(0x0, 0x4000, 0x4, &(0x7f0000ff8000/0x4000)=nil)
mremap(&(0x7f0000ff7000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000ff5000/0x2000)=nil)
shmctl$SHM_UNLOCK(r2, 0xc)
shmat(r2, &(0x7f0000ffc000/0x3000)=nil, 0x4000)

00:18:14 executing program 6:
r0 = memfd_secret(0x0)
ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000000)={0x9, 0x3, 0x1, 0x80})
ioctl$IOC_PR_RELEASE(0xffffffffffffffff, 0x401070ca, &(0x7f0000000040)={0xffffffffffffffc1, 0x20, 0x1})
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f00000000c0)={&(0x7f0000000080)=""/39, 0x27, 0x80, 0x52435d22})
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
write$binfmt_script(r1, &(0x7f00000001c0)={'#! ', './file0', [{}], 0xa, "08f6488df042a1c7f22e97d9c92276eb25fed1a2b971e3fa3db4360f79b2026ec9a49e9df61808c5a838f31750acc5d82484b2995609b59d86355a71b3721e5418669929c53a5aa56aab30dfe29a5baf97c528710c165c247dcf564999d2a6961e"}, 0x6d)
setsockopt$inet_group_source_req(r1, 0x0, 0x2b, &(0x7f0000000240)={0x2, {{0x2, 0x4e20, @loopback}}, {{0x2, 0x4e20, @loopback}}}, 0x108)
r2 = openat$cgroup_freezer_state(r0, &(0x7f0000000380), 0x2, 0x0)
fcntl$F_SET_RW_HINT(r2, 0x40c, &(0x7f00000003c0)=0x4)
getsockopt$IP_VS_SO_GET_DESTS(r1, 0x0, 0x484, &(0x7f0000000400)=""/213, &(0x7f0000000500)=0xd5)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)=[r0]}, 0x1)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000600)={0x2, &(0x7f00000005c0)=[{0x59e, 0x69, 0x0, 0x3}, {0xff80, 0x7f, 0x8, 0x100}]}, 0x10)
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000640), 0x200000, 0x0)
ioctl$BLKPG(r3, 0x1269, &(0x7f0000000740)={0x800, 0x10001, 0x84, &(0x7f0000000680)="8e12ed76d126e2bda454ee95f7313348ef1e0f48f6809fc7d908d8869f2bae7a550d4d40dc989030962aafc7a423565c7acddd961be5abd0c9684afb71bf0d6191759a8f360ec4631b8f8808c449c748fd2853fcfdea815c7dbeb2e4e9e815a34b451bc6bd477236f446954a0651554216bba7547f12108e53a3aac887aa5f26dd6ebaa7"})
r4 = syz_open_dev$loop(&(0x7f0000000780), 0xea4f, 0x4000)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r4, 0x4008941a, &(0x7f00000007c0))
r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000800), 0x1c1380, 0x0)
fsync(r5)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
fcntl$getownex(r6, 0x10, &(0x7f0000000840))

00:18:14 executing program 5:
ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, &(0x7f0000000000))
r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x7d)
ioctl$KDMKTONE(r0, 0x4b30, 0x3)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000080))
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x8)
r2 = dup(r1)
ioctl$TIOCGPTPEER(r2, 0x5441, 0xffffffffffffef9c)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r3=>r2, {0x719b71e9}}, './file0\x00'})
ioctl$KIOCSOUND(r3, 0x4b2f, 0x4)
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x541c, &(0x7f0000000140))
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/module/virtio_pci_modern_dev', 0x2c0200, 0x4)
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r2, 0x5000943f, &(0x7f00000001c0)={{r4}, 0x0, 0xe, @unused=[0x3, 0x9, 0xffffffffffffffff, 0x7fff], @subvolid})
ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f00000011c0)={0x3, 0x4729, 0x3ff, 0x0, 0x6a, "98db27c741fa527c79f0633b33b93b844b9e8c", 0x350, 0x377a})
ioctl$PIO_FONT(r1, 0x4b61, &(0x7f0000001200)="df4a70258cc2fb0648843e8937faaa42b11cfbf0697f9182e8a5cbc7c693cf41f8d9d4d35157f862e42bf12b0c03f5c8cbfafec5422a2b4f747b9577bdab1956f23e26f768ce34fedf9a13e9e3fe899d84faf8e6087b56aaadffdfd71675fcfb762827303cbd0460d61f6ed712451e5fa2d090d94b8278af6f0500c9b0cb8e180503488d9d2da756ade61f483978cb9be2c97e69bf631425e84f6f02d22d22f6809c813e3340fa2cb815722d687e8b5a1dba4d27d117d7e71c24fa7f688bdede6683d0df3b97847aa6a1696873a0f71961cd280aa7d4a7231adb38fb1835515e35c5a786")
r5 = syz_mount_image$tmpfs(&(0x7f0000001300), &(0x7f0000001340)='./file0\x00', 0x5488, 0x2, &(0x7f0000001580)=[{&(0x7f0000001380)="9d4429f18bbf1329b92e293072f4eb8634c846852f85ac14faf42d8f749c5d80f0a2b728ff4cd2ed4cf55066230af454ed239c12608fa410c94b5ccf4ff352a0f655733944263b7121c3a49f0935c4e03f57bbf4921dbe1a8c3cd0b9380b634565cdece8f7763e57f490f57479d3acb3d8d782f9b6f93fcd4edead62c16492aeda881043f806f5e48ab456110dd72a8e0d7d81a8872136bde08b42954ecd84c9955f74495983598609971d3a6ac78fe5e139dc86f87c459e04e36ddb3239e63c0506093606ff05f42bdb6c", 0xcb, 0x4}, {&(0x7f0000001480)="f16e8a35f2b6768d28a2dd2731f1f4c7d35b64030b8684e1b57c335bba60decfdb6486202bb67877c5c4ba8c45c338564a2cfb9dad14566b4ad43f641a30b5c51f618324d485808fb468e34f32aa1e507dbd898c9f80f7d7c82b842fb347bed14d0c6f57ed7f929027e9414bd1364f3fa01503c4cbd7ca05cfa76edc4b5c8b27f033f7afe1480e116bf487713846486bb882c577fc088ab1c992b43e53e784ee05e7933a285a53e4f97405fbbb527ea09e16c8f7f219a1212f055b2349be9f05951439c0d1f0e34ff6813c5d4ca624843a2dc2de1374e3d8f410c94dad1fdc7e4272d3f607547f", 0xe7, 0x7ff}], 0x80080, &(0x7f00000015c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x35, 0x65, 0x0, 0x32, 0x30, 0x32, 0x67, 0x38, 0x30]}}, {@size={'size', 0x3d, [0x67, 0x39, 0x25, 0x37, 0x37]}}, {@mpol={'mpol', 0x3d, {'interleave', '', @val={0x3a, [0x2d, 0x2, 0x2b, 0x34, 0x34, 0x35, 0x32, 0x32, 0x2c, 0x0]}}}}, {@gid={'gid', 0x3d, 0xffffffffffffffff}}, {@mpol={'mpol', 0x3d, {'bind', '', @void}}}, {@size={'size', 0x3d, [0x37, 0x37]}}, {@nr_inodes={'nr_inodes', 0x3d, [0x38, 0x51f4116d66a68101, 0x25]}}, {@huge_advise}, {@huge_never}, {@nr_blocks}], [{@fsmagic={'fsmagic', 0x3d, 0x6}}]})
ioctl$int_out(r5, 0x5460, &(0x7f0000001680))
ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r0, 0x5000943f, &(0x7f00000016c0)={{r5}, 0x0, 0x16, @unused=[0x9, 0x0, 0x2, 0x3f], @devid})
clone3(&(0x7f0000002880)={0x50084000, &(0x7f00000026c0)=<r6=>0xffffffffffffffff, &(0x7f0000002700), &(0x7f0000002740), {0x13}, &(0x7f0000002780)=""/31, 0x1f, &(0x7f00000027c0)=""/96, &(0x7f0000002840)=[0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff], 0x5, {r2}}, 0x58)
fstatfs(r6, &(0x7f0000002900)=""/154)

00:18:14 executing program 7:
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r0, 0x400, 0x70bd29, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7fffffff}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004050}, 0x40840)
sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x0, 0x4, 0x70bd27, 0x25dfdbfb, {}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x4008000)
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x28, r0, 0x20, 0x70bd27, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x4}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x11}, 0x80)
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000380)={0x118, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_FD={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_PID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8}}]}, 0x118}, 0x1, 0x0, 0x0, 0x100}, 0x4)
sendmsg$DEVLINK_CMD_TRAP_GET(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)={0x8c, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4000080}, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r1, &(0x7f0000000800)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000007c0)={&(0x7f0000000700)={0xc0, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_SEC_LEVEL={0x4c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x80}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x3f}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x32}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x6}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x5}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x1}]}, @NL802154_ATTR_SEC_LEVEL={0x14, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0xff}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x5}]}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x2}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x80}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_SEC_LEVEL={0xc, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x1}, 0x60000041)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x48, 0x0, 0x400, 0x70bd25, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x72}, {0x6, 0x11, 0x81}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x4000)
sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000a80)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000a40)={&(0x7f00000009c0)={0x54, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x5}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x6}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xf}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x5}, @NL80211_ATTR_MAC={0xa}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000085}, 0x48000)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000ac0)={'wpan4\x00', <r2=>0x0})
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x3c, 0x0, 0xb84, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x9}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8085}, 0x5)
syz_genetlink_get_family_id$team(&(0x7f0000000c00), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000c80)={0x4c, 0x0, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x1d}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x800)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000dc0)={'wpan3\x00', <r4=>0x0})
sendmsg$IEEE802154_LIST_IFACE(r3, &(0x7f0000000ec0)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x40000800}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e00)={0x58, 0x0, 0x300, 0x70bd29, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x20040004}, 0x20044094)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000f00)={{0x1, 0x1, 0x18, <r5=>0xffffffffffffffff, @out_args}, './file0\x00'})
sendmsg$IPVS_CMD_SET_SERVICE(r5, &(0x7f00000010c0)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001080)={&(0x7f0000000f80)={0xcc, r0, 0x10, 0x70bd25, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_DAEMON={0x5c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @private1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x7ff}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e20}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffffffff}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0_to_batadv\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x5}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1_virt_wifi\x00'}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}]}, 0xcc}, 0x1, 0x0, 0x0, 0x40004}, 0x10)

[   77.810221] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.812842] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.814287] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.818833] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.820883] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   77.822606] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.827598] Bluetooth: hci0: HCI_REQ-0x0c1a
[   77.862240] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   77.874373] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   77.876291] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   77.878449] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   77.881834] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   77.883843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   77.885924] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   77.887583] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   77.889196] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   77.892895] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   77.898251] Bluetooth: hci1: HCI_REQ-0x0c1a
[   77.900315] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   77.902240] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   77.917564] Bluetooth: hci2: HCI_REQ-0x0c1a
[   77.943129] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   77.945476] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   77.946971] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   77.950628] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   77.952355] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   77.953933] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   77.960652] Bluetooth: hci4: HCI_REQ-0x0c1a
[   78.007342] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   78.008431] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   78.011029] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   78.013504] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   78.015314] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   78.017382] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   78.019280] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   78.020670] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   78.022033] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   78.025262] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   78.026478] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   78.028803] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   78.030846] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   78.035680] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   78.040195] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   78.041457] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   78.042942] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   78.044448] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   78.045987] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   78.046193] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   78.050399] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   78.051773] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   78.058652] Bluetooth: hci5: HCI_REQ-0x0c1a
[   78.059415] Bluetooth: hci7: HCI_REQ-0x0c1a
[   78.064817] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   78.066200] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   78.115949] Bluetooth: hci3: HCI_REQ-0x0c1a
[   78.126484] Bluetooth: hci6: HCI_REQ-0x0c1a
[   79.890934] Bluetooth: hci0: command 0x0409 tx timeout
[   79.954579] Bluetooth: hci2: command 0x0409 tx timeout
[   79.954605] Bluetooth: hci1: command 0x0409 tx timeout
[   80.018660] Bluetooth: hci4: command 0x0409 tx timeout
[   80.082556] Bluetooth: hci7: command 0x0409 tx timeout
[   80.146566] Bluetooth: hci5: command 0x0409 tx timeout
[   80.146577] Bluetooth: hci6: command 0x0409 tx timeout
[   80.147954] Bluetooth: hci3: command 0x0409 tx timeout
[   81.938681] Bluetooth: hci0: command 0x041b tx timeout
[   82.002606] Bluetooth: hci1: command 0x041b tx timeout
[   82.003069] Bluetooth: hci2: command 0x041b tx timeout
[   82.067543] Bluetooth: hci4: command 0x041b tx timeout
[   82.131618] Bluetooth: hci7: command 0x041b tx timeout
[   82.195607] Bluetooth: hci3: command 0x041b tx timeout
[   82.196356] Bluetooth: hci6: command 0x041b tx timeout
[   82.196947] Bluetooth: hci5: command 0x041b tx timeout
[   83.987675] Bluetooth: hci0: command 0x040f tx timeout
[   84.051563] Bluetooth: hci2: command 0x040f tx timeout
[   84.052050] Bluetooth: hci1: command 0x040f tx timeout
[   84.115585] Bluetooth: hci4: command 0x040f tx timeout
[   84.178556] Bluetooth: hci7: command 0x040f tx timeout
[   84.243815] Bluetooth: hci5: command 0x040f tx timeout
[   84.244444] Bluetooth: hci6: command 0x040f tx timeout
[   84.245205] Bluetooth: hci3: command 0x040f tx timeout
[   86.034559] Bluetooth: hci0: command 0x0419 tx timeout
[   86.099699] Bluetooth: hci1: command 0x0419 tx timeout
[   86.100148] Bluetooth: hci2: command 0x0419 tx timeout
[   86.163548] Bluetooth: hci4: command 0x0419 tx timeout
[   86.227625] Bluetooth: hci7: command 0x0419 tx timeout
[   86.291616] Bluetooth: hci3: command 0x0419 tx timeout
[   86.292343] Bluetooth: hci6: command 0x0419 tx timeout
[   86.293118] Bluetooth: hci5: command 0x0419 tx timeout
00:19:08 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1c300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}, 0x81}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
r4 = gettid()
rt_sigqueueinfo(r4, 0x11, &(0x7f0000000000)={0x0, 0x0, 0xe76})
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x2, 0x0, 0x0, 0x2, 0x0, 0x4, 0x600, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x10001, 0xe34}, 0x18088, 0xac, 0x2, 0x9, 0x4, 0x5, 0x8, 0x0, 0x7, 0x0, 0x8}, r4, 0xb, r0, 0x8)
dup2(r3, 0xffffffffffffffff)

[  130.701346] audit: type=1400 audit(1663633148.171:7): avc:  denied  { open } for  pid=3702 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  130.702913] audit: type=1400 audit(1663633148.171:8): avc:  denied  { kernel } for  pid=3702 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  130.734066] ------------[ cut here ]------------
[  130.734087] 
[  130.734090] ======================================================
[  130.734094] WARNING: possible circular locking dependency detected
[  130.734098] 6.0.0-rc6-next-20220919 #1 Not tainted
[  130.734104] ------------------------------------------------------
[  130.734108] syz-executor.6/3703 is trying to acquire lock:
[  130.734114] ffffffff853fa838 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  130.734154] 
[  130.734154] but task is already holding lock:
[  130.734157] ffff8880175c5420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  130.734185] 
[  130.734185] which lock already depends on the new lock.
[  130.734185] 
[  130.734188] 
[  130.734188] the existing dependency chain (in reverse order) is:
[  130.734191] 
[  130.734191] -> #3 (&ctx->lock){....}-{2:2}:
[  130.734205]        _raw_spin_lock+0x2a/0x40
[  130.734223]        __perf_event_task_sched_out+0x53b/0x18d0
[  130.734235]        __schedule+0xedd/0x2470
[  130.734246]        schedule+0xda/0x1b0
[  130.734257]        exit_to_user_mode_prepare+0x114/0x1a0
[  130.734277]        syscall_exit_to_user_mode+0x19/0x40
[  130.734294]        do_syscall_64+0x48/0x90
[  130.734308]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.734326] 
[  130.734326] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  130.734339]        _raw_spin_lock_nested+0x30/0x40
[  130.734354]        raw_spin_rq_lock_nested+0x1e/0x30
[  130.734367]        task_fork_fair+0x63/0x4d0
[  130.734384]        sched_cgroup_fork+0x3d0/0x540
[  130.734398]        copy_process+0x4183/0x6e20
[  130.734408]        kernel_clone+0xe7/0x890
[  130.734418]        user_mode_thread+0xad/0xf0
[  130.734428]        rest_init+0x24/0x250
[  130.734443]        arch_call_rest_init+0xf/0x14
[  130.734456]        start_kernel+0x4c1/0x4e6
[  130.734465]        secondary_startup_64_no_verify+0xe0/0xeb
[  130.734480] 
[  130.734480] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  130.734493]        _raw_spin_lock_irqsave+0x39/0x60
[  130.734511]        try_to_wake_up+0xab/0x1920
[  130.734524]        up+0x75/0xb0
[  130.734535]        __up_console_sem+0x6e/0x80
[  130.734551]        console_unlock+0x46a/0x590
[  130.734566]        vprintk_emit+0x1bd/0x560
[  130.734582]        vprintk+0x84/0xa0
[  130.734598]        _printk+0xba/0xf1
[  130.734615]        kauditd_hold_skb.cold+0x3f/0x4e
[  130.734629]        kauditd_send_queue+0x233/0x290
[  130.734644]        kauditd_thread+0x5da/0x9a0
[  130.734657]        kthread+0x2ed/0x3a0
[  130.734672]        ret_from_fork+0x22/0x30
[  130.734684] 
[  130.734684] -> #0 ((console_sem).lock){....}-{2:2}:
[  130.734697]        __lock_acquire+0x2a02/0x5e70
[  130.734713]        lock_acquire+0x1a2/0x530
[  130.734729]        _raw_spin_lock_irqsave+0x39/0x60
[  130.734743]        down_trylock+0xe/0x70
[  130.734755]        __down_trylock_console_sem+0x3b/0xd0
[  130.734771]        vprintk_emit+0x16b/0x560
[  130.734786]        vprintk+0x84/0xa0
[  130.734802]        _printk+0xba/0xf1
[  130.734818]        report_bug.cold+0x72/0xab
[  130.734830]        handle_bug+0x3c/0x70
[  130.734843]        exc_invalid_op+0x14/0x50
[  130.734856]        asm_exc_invalid_op+0x16/0x20
[  130.734871]        group_sched_out.part.0+0x2c7/0x460
[  130.734882]        ctx_sched_out+0x8f1/0xc10
[  130.734891]        __perf_event_task_sched_out+0x6d0/0x18d0
[  130.734903]        __schedule+0xedd/0x2470
[  130.734913]        schedule+0xda/0x1b0
[  130.734922]        exit_to_user_mode_prepare+0x114/0x1a0
[  130.734940]        syscall_exit_to_user_mode+0x19/0x40
[  130.734957]        do_syscall_64+0x48/0x90
[  130.734970]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.734986] 
[  130.734986] other info that might help us debug this:
[  130.734986] 
[  130.734989] Chain exists of:
[  130.734989]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  130.734989] 
[  130.735004]  Possible unsafe locking scenario:
[  130.735004] 
[  130.735007]        CPU0                    CPU1
[  130.735009]        ----                    ----
[  130.735011]   lock(&ctx->lock);
[  130.735017]                                lock(&rq->__lock);
[  130.735023]                                lock(&ctx->lock);
[  130.735029]   lock((console_sem).lock);
[  130.735035] 
[  130.735035]  *** DEADLOCK ***
[  130.735035] 
[  130.735037] 2 locks held by syz-executor.6/3703:
[  130.735044]  #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  130.735070]  #1: ffff8880175c5420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  130.735097] 
[  130.735097] stack backtrace:
[  130.735100] CPU: 1 PID: 3703 Comm: syz-executor.6 Not tainted 6.0.0-rc6-next-20220919 #1
[  130.735113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  130.735121] Call Trace:
[  130.735125]  <TASK>
[  130.735128]  dump_stack_lvl+0x8b/0xb3
[  130.735143]  check_noncircular+0x263/0x2e0
[  130.735159]  ? format_decode+0x26c/0xb50
[  130.735175]  ? print_circular_bug+0x450/0x450
[  130.735192]  ? enable_ptr_key_workfn+0x20/0x20
[  130.735206]  ? format_decode+0x26c/0xb50
[  130.735222]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  130.735239]  __lock_acquire+0x2a02/0x5e70
[  130.735260]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  130.735282]  lock_acquire+0x1a2/0x530
[  130.735299]  ? down_trylock+0xe/0x70
[  130.735313]  ? lock_release+0x750/0x750
[  130.735333]  ? vprintk+0x84/0xa0
[  130.735350]  _raw_spin_lock_irqsave+0x39/0x60
[  130.735366]  ? down_trylock+0xe/0x70
[  130.735379]  down_trylock+0xe/0x70
[  130.735392]  ? vprintk+0x84/0xa0
[  130.735408]  __down_trylock_console_sem+0x3b/0xd0
[  130.735425]  vprintk_emit+0x16b/0x560
[  130.735444]  vprintk+0x84/0xa0
[  130.735461]  _printk+0xba/0xf1
[  130.735478]  ? record_print_text.cold+0x16/0x16
[  130.735499]  ? report_bug.cold+0x66/0xab
[  130.735514]  ? group_sched_out.part.0+0x2c7/0x460
[  130.735525]  report_bug.cold+0x72/0xab
[  130.735540]  handle_bug+0x3c/0x70
[  130.735553]  exc_invalid_op+0x14/0x50
[  130.735568]  asm_exc_invalid_op+0x16/0x20
[  130.735585] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  130.735598] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d 5b 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  130.735609] RSP: 0018:ffff88800d10fc48 EFLAGS: 00010006
[  130.735619] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  130.735626] RDX: ffff88801cdcb580 RSI: ffffffff81566077 RDI: 0000000000000005
[  130.735634] RBP: ffff88801f180000 R08: 0000000000000005 R09: 0000000000000001
[  130.735642] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff8880175c5400
[  130.735650] R13: ffff88806cf3d140 R14: ffffffff8547c620 R15: 0000000000000002
[  130.735661]  ? group_sched_out.part.0+0x2c7/0x460
[  130.735674]  ? group_sched_out.part.0+0x2c7/0x460
[  130.735687]  ctx_sched_out+0x8f1/0xc10
[  130.735699]  __perf_event_task_sched_out+0x6d0/0x18d0
[  130.735715]  ? lock_is_held_type+0xd7/0x130
[  130.735733]  ? __perf_cgroup_move+0x160/0x160
[  130.735744]  ? set_next_entity+0x304/0x550
[  130.735761]  ? update_curr+0x267/0x740
[  130.735779]  ? lock_is_held_type+0xd7/0x130
[  130.735798]  __schedule+0xedd/0x2470
[  130.735811]  ? io_schedule_timeout+0x150/0x150
[  130.735824]  ? rcu_read_lock_sched_held+0x3e/0x80
[  130.735845]  schedule+0xda/0x1b0
[  130.735856]  exit_to_user_mode_prepare+0x114/0x1a0
[  130.735876]  syscall_exit_to_user_mode+0x19/0x40
[  130.735893]  do_syscall_64+0x48/0x90
[  130.735908]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.735925] RIP: 0033:0x7f6718e7eb19
[  130.735933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.735944] RSP: 002b:00007f67163f4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.735955] RAX: 0000000000000001 RBX: 00007f6718f91f68 RCX: 00007f6718e7eb19
[  130.735963] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6718f91f6c
[  130.735971] RBP: 00007f6718f91f60 R08: 000000000000000e R09: 0000000000000000
[  130.735978] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6718f91f6c
[  130.735985] R13: 00007fffd787c2df R14: 00007f67163f4300 R15: 0000000000022000
[  130.735998]  </TASK>
[  130.788841] WARNING: CPU: 1 PID: 3703 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  130.789444] Modules linked in:
[  130.789661] CPU: 1 PID: 3703 Comm: syz-executor.6 Not tainted 6.0.0-rc6-next-20220919 #1
[  130.790189] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  130.790918] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  130.791274] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d 5b 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  130.792447] RSP: 0018:ffff88800d10fc48 EFLAGS: 00010006
[  130.792810] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  130.793274] RDX: ffff88801cdcb580 RSI: ffffffff81566077 RDI: 0000000000000005
[  130.793741] RBP: ffff88801f180000 R08: 0000000000000005 R09: 0000000000000001
[  130.794207] R10: 0000000000000000 R11: ffffffff865ac05b R12: ffff8880175c5400
[  130.794677] R13: ffff88806cf3d140 R14: ffffffff8547c620 R15: 0000000000000002
[  130.795149] FS:  00007f67163f4700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  130.795679] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  130.796064] CR2: 00007f6bee38d820 CR3: 0000000040a4e000 CR4: 0000000000350ee0
[  130.796539] Call Trace:
[  130.796715]  <TASK>
[  130.796871]  ctx_sched_out+0x8f1/0xc10
[  130.797137]  __perf_event_task_sched_out+0x6d0/0x18d0
[  130.797487]  ? lock_is_held_type+0xd7/0x130
[  130.797781]  ? __perf_cgroup_move+0x160/0x160
[  130.798081]  ? set_next_entity+0x304/0x550
[  130.798371]  ? update_curr+0x267/0x740
[  130.798646]  ? lock_is_held_type+0xd7/0x130
[  130.798939]  __schedule+0xedd/0x2470
[  130.799195]  ? io_schedule_timeout+0x150/0x150
[  130.799503]  ? rcu_read_lock_sched_held+0x3e/0x80
[  130.799868]  schedule+0xda/0x1b0
[  130.800132]  exit_to_user_mode_prepare+0x114/0x1a0
[  130.800527]  syscall_exit_to_user_mode+0x19/0x40
[  130.800889]  do_syscall_64+0x48/0x90
[  130.801176]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  130.801580] RIP: 0033:0x7f6718e7eb19
[  130.801862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  130.803208] RSP: 002b:00007f67163f4218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  130.803781] RAX: 0000000000000001 RBX: 00007f6718f91f68 RCX: 00007f6718e7eb19
[  130.804305] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f6718f91f6c
[  130.804838] RBP: 00007f6718f91f60 R08: 000000000000000e R09: 0000000000000000
[  130.805362] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f6718f91f6c
[  130.805888] R13: 00007fffd787c2df R14: 00007f67163f4300 R15: 0000000000022000
[  130.806420]  </TASK>
[  130.806600] irq event stamp: 2628
[  130.806852] hardirqs last  enabled at (2627): [<ffffffff81340019>] exit_to_user_mode_prepare+0x109/0x1a0
[  130.807544] hardirqs last disabled at (2628): [<ffffffff8424d995>] __schedule+0x1225/0x2470
[  130.808151] softirqs last  enabled at (1176): [<ffffffff8117063b>] __irq_exit_rcu+0x11b/0x180
[  130.808802] softirqs last disabled at (1141): [<ffffffff8117063b>] __irq_exit_rcu+0x11b/0x180
[  130.809429] ---[ end trace 0000000000000000 ]---
00:19:08 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1c300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}, 0x81}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
r4 = gettid()
rt_sigqueueinfo(r4, 0x11, &(0x7f0000000000)={0x0, 0x0, 0xe76})
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x2, 0x0, 0x0, 0x2, 0x0, 0x4, 0x600, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x10001, 0xe34}, 0x18088, 0xac, 0x2, 0x9, 0x4, 0x5, 0x8, 0x0, 0x7, 0x0, 0x8}, r4, 0xb, r0, 0x8)
dup2(r3, 0xffffffffffffffff)

00:19:08 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1c300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}, 0x81}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
r4 = gettid()
rt_sigqueueinfo(r4, 0x11, &(0x7f0000000000)={0x0, 0x0, 0xe76})
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x2, 0x0, 0x0, 0x2, 0x0, 0x4, 0x600, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x10001, 0xe34}, 0x18088, 0xac, 0x2, 0x9, 0x4, 0x5, 0x8, 0x0, 0x7, 0x0, 0x8}, r4, 0xb, r0, 0x8)
dup2(r3, 0xffffffffffffffff)

[  131.335978] loop3: detected capacity change from 0 to 130304
00:19:08 executing program 3:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1c300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}, 0x81}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
r4 = gettid()
rt_sigqueueinfo(r4, 0x11, &(0x7f0000000000)={0x0, 0x0, 0xe76})
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x2, 0x0, 0x0, 0x2, 0x0, 0x4, 0x600, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x10001, 0xe34}, 0x18088, 0xac, 0x2, 0x9, 0x4, 0x5, 0x8, 0x0, 0x7, 0x0, 0x8}, r4, 0xb, r0, 0x8)
dup2(r3, 0xffffffffffffffff)

00:19:08 executing program 6:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1c300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000480)}, 0x81}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000240)={0xa0002000})
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0)
r4 = gettid()
rt_sigqueueinfo(r4, 0x11, &(0x7f0000000000)={0x0, 0x0, 0xe76})
perf_event_open(&(0x7f0000000100)={0x4, 0x80, 0x2, 0x0, 0x0, 0x2, 0x0, 0x4, 0x600, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x10001, 0xe34}, 0x18088, 0xac, 0x2, 0x9, 0x4, 0x5, 0x8, 0x0, 0x7, 0x0, 0x8}, r4, 0xb, r0, 0x8)
dup2(r3, 0xffffffffffffffff)

00:19:09 executing program 6:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c)
sendmmsg(r1, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x810)
close_range(r1, 0xffffffffffffffff, 0x2)
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)
perf_event_open(&(0x7f0000000b40)={0x2, 0x80, 0x3f, 0x0, 0x7f, 0x2, 0x0, 0x6, 0x46000, 0x7, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000000b00), 0xa}, 0x48020, 0x2, 0x8c, 0x9, 0x5, 0x8, 0xf4a, 0x0, 0x6, 0x0, 0x220}, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0x2)
r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x40b01, 0x0)
ioctl$CDROMREADMODE1(r2, 0x40081271, &(0x7f0000000080)={0x0, 0x4})
perf_event_open$cgroup(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$EVIOCSKEYCODE_V2(r2, 0x40284504, &(0x7f0000000040)={0xfe, 0xc, 0x9, 0x8000, "48879c5d2b38c55cd06e67a501c33455d0d7e67e5b7c9110779e6ad40513f26b"})

00:19:09 executing program 3:
openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_GET_DUMPABLE(0x3)
prctl$PR_GET_DUMPABLE(0x3)
r0 = creat(&(0x7f0000001140)='./file0\x00', 0x1b0)
write$P9_RLERRORu(r0, &(0x7f0000001180)={0xf, 0x7, 0x0, {{0x2, '@\xe1'}}}, 0xf)
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f00000011c0))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$tmpfs(&(0x7f0000001200), &(0x7f0000001240)='./file0\x00', 0x1ff, 0x2, &(0x7f0000001340)=[{0x0, 0x0, 0x8b}, {&(0x7f00000012c0)="b94748969bb7a864383e2f21d84ce27cf62910a3c6e2255e6d7618af10bf4e6c6fb950d17cbba8dc1d52c1fe9babb4b123936a2c923328e31d3330272fa3c33f0efd721bf1c6999d60e0e8614f7937f58c", 0x51, 0x7fffffff}], 0x0, &(0x7f0000001380)={[{@mpol={'mpol', 0x3d, {'bind', '', @val={0x3a, [0x34, 0x38, 0x30, 0x31, 0x2d, 0x0, 0x2c, 0x2d, 0x34, 0x0]}}}}, {@mpol={'mpol', 0x3d, {'default', '=relative', @void}}}, {@mpol={'mpol', 0x3d, {'bind', '=relative', @val={0x3a, [0x2f, 0x16, 0x2f, 0x0, 0x32, 0x38, 0x0, 0x2c]}}}}, {@gid={'gid', 0x3d, 0xee00}}], [{@measure}, {@seclabel}, {@fsmagic={'fsmagic', 0x3d, 0x100000000}}]})
r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x20010, r0, 0x8000000)
syz_io_uring_submit(r1, 0x0, &(0x7f0000001480)=@IORING_OP_ASYNC_CANCEL={0xe, 0x0, 0x0, 0x0, 0x0, 0x12345}, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001500)={<r2=>0xffffffffffffffff})
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001980)='./cgroup.net/syz0\x00', 0x200002, 0x0)
syz_mount_image$tmpfs(&(0x7f00000019c0), &(0x7f0000001a00)='./file0\x00', 0x0, 0x4, &(0x7f0000001d80)=[{&(0x7f0000001a80)='u', 0x1}, {&(0x7f0000001b80)='z', 0x1}, {&(0x7f0000001c40)="bce501dd030b8b4a0c050d1d39d05ab8f9eabdd904878ddc7399eb4e205b3d967660066cc310534a33eb1de2b2e221364a1a48ca50c66a7bd61ceaa79ef8", 0x3e, 0x6}, {0x0, 0x0, 0x3}], 0xa00444, &(0x7f0000001f00)={[], [{@euid_gt}]})
bind$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
arch_prctl$ARCH_GET_GS(0x1004, &(0x7f0000000080))

[  131.585761] loop3: detected capacity change from 0 to 264192
[  131.586383] tmpfs: Bad value for 'mpol'
[  131.594336] =======================================================
[  131.594336] WARNING: The mand mount option has been deprecated and
[  131.594336]          and is ignored by this kernel. Remove the mand
[  131.594336]          option from the mount to silence this warning.
[  131.594336] =======================================================
00:19:09 executing program 2:
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000400)='./file0\x00', 0x0, 0x0, &(0x7f0000000480), 0x0, &(0x7f0000000080)={[{@fat=@umask={'umask', 0x3d, 0xfffffffffffffff9}}, {@nodots}, {@dots}, {@fat=@nocase}, {@nodots}, {@dots}]})

[  131.621102] tmpfs: Unknown parameter 'euid>00000000000000000000'
[  131.632027] loop3: detected capacity change from 0 to 264192
[  131.634649] tmpfs: Bad value for 'mpol'
[  131.659779] FAT-fs (loop2): bogus number of reserved sectors
[  131.660245] FAT-fs (loop2): Can't find a valid FAT filesystem
[  131.663337] tmpfs: Unknown parameter 'euid>00000000000000000000'
[  131.671399] FAT-fs (loop2): bogus number of reserved sectors
[  131.671868] FAT-fs (loop2): Can't find a valid FAT filesystem
[  133.080486] tmpfs: Unsupported parameter 'huge'
[  133.086039] loop1: detected capacity change from 0 to 255
[  133.086589] tmpfs: Unsupported parameter 'huge'
[  133.099787] tmpfs: Unsupported parameter 'huge'
[  133.106073] loop1: detected capacity change from 0 to 255
[  133.106636] tmpfs: Unsupported parameter 'huge'
[  133.264231] loop5: detected capacity change from 0 to 42
[  133.322896] loop5: detected capacity change from 0 to 42

VM DIAGNOSIS:
00:19:08  Registers:
info registers vcpu 0
RAX=dffffc0000000000 RBX=ffff88801a7e2a00 RCX=ffffffff812a3828 RDX=0000000000000000
RSI=0000000000000008 RDI=0000000000000cc0 RBP=0000000000000000 RSP=ffff88801a44fa50
R8 =0000000000000000 R9 =ffffffff85b02e57 R10=0000000000000000 R11=0000000000000001
R12=ffff888008478c80 R13=ffffffff8114bbec R14=0000000000000cc0 R15=0000000000000cc0
RIP=ffffffff817041ca RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000056514c38f080 CR3=0000000018bc6000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f
YMM01=0000000000000000 0000000000000000 2e6f747079726362 696c2f756e672d78
YMM02=0000000000000000 0000000000000000 00312e312e6f732e 6f74707972636269
YMM03=0000000000000000 0000000000000000 6c2f756e672d7875 6e696c2d34365f36
YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff822b2e71 RDI=ffffffff87641ba0 RBP=ffffffff87641b60 RSP=ffff88800d10f698
R8 =0000000000000001 R9 =000000000000000a R10=0000000000000065 R11=0000000000000001
R12=0000000000000065 R13=ffffffff87641b60 R14=0000000000000010 R15=ffffffff822b2e60
RIP=ffffffff822b2ec9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f67163f4700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f6bee38d820 CR3=0000000040a4e000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f6718f657c0 00007f6718f657c8
YMM02=0000000000000000 0000000000000000 00007f6718f657e0 00007f6718f657c0
YMM03=0000000000000000 0000000000000000 00007f6718f657c8 00007f6718f657c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000