Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:55799' (ECDSA) to the list of known hosts. 2022/09/21 00:36:44 fuzzer started 2022/09/21 00:36:45 dialing manager at localhost:34957 syzkaller login: [ 39.419145] cgroup: Unknown subsys name 'net' [ 39.500647] cgroup: Unknown subsys name 'rlimit' 2022/09/21 00:37:00 syscalls: 2215 2022/09/21 00:37:00 code coverage: enabled 2022/09/21 00:37:00 comparison tracing: enabled 2022/09/21 00:37:00 extra coverage: enabled 2022/09/21 00:37:00 setuid sandbox: enabled 2022/09/21 00:37:00 namespace sandbox: enabled 2022/09/21 00:37:00 Android sandbox: enabled 2022/09/21 00:37:00 fault injection: enabled 2022/09/21 00:37:00 leak checking: enabled 2022/09/21 00:37:00 net packet injection: enabled 2022/09/21 00:37:00 net device setup: enabled 2022/09/21 00:37:00 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/21 00:37:00 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/21 00:37:00 USB emulation: enabled 2022/09/21 00:37:00 hci packet injection: enabled 2022/09/21 00:37:00 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220920) 2022/09/21 00:37:00 802.15.4 emulation: enabled 2022/09/21 00:37:00 fetching corpus: 50, signal 24739/26526 (executing program) 2022/09/21 00:37:00 fetching corpus: 100, signal 41902/45227 (executing program) 2022/09/21 00:37:00 fetching corpus: 150, signal 49405/54190 (executing program) 2022/09/21 00:37:00 fetching corpus: 200, signal 57042/63153 (executing program) 2022/09/21 00:37:00 fetching corpus: 250, signal 62276/69689 (executing program) 2022/09/21 00:37:01 fetching corpus: 300, signal 67797/76411 (executing program) 2022/09/21 00:37:01 fetching corpus: 350, signal 71353/81191 (executing program) 2022/09/21 00:37:01 fetching corpus: 400, signal 77377/88204 (executing program) 2022/09/21 00:37:01 fetching corpus: 450, signal 81404/93246 (executing program) 2022/09/21 00:37:01 fetching corpus: 500, signal 83545/96570 (executing program) 2022/09/21 00:37:01 fetching corpus: 550, signal 89168/103002 (executing program) 2022/09/21 00:37:01 fetching corpus: 600, signal 93061/107766 (executing program) 2022/09/21 00:37:01 fetching corpus: 650, signal 96282/111878 (executing program) 2022/09/21 00:37:01 fetching corpus: 700, signal 98736/115176 (executing program) 2022/09/21 00:37:02 fetching corpus: 750, signal 102210/119386 (executing program) 2022/09/21 00:37:02 fetching corpus: 800, signal 105578/123507 (executing program) 2022/09/21 00:37:02 fetching corpus: 850, signal 107695/126434 (executing program) 2022/09/21 00:37:02 fetching corpus: 900, signal 111533/130830 (executing program) 2022/09/21 00:37:02 fetching corpus: 950, signal 114485/134359 (executing program) 2022/09/21 00:37:02 fetching corpus: 1000, signal 115821/136513 (executing program) 2022/09/21 00:37:02 fetching corpus: 1050, signal 118278/139554 (executing program) 2022/09/21 00:37:03 fetching corpus: 1100, signal 120332/142280 (executing program) 2022/09/21 00:37:03 fetching corpus: 1150, signal 121680/144363 (executing program) 2022/09/21 00:37:03 fetching corpus: 1200, signal 124447/147592 (executing program) 2022/09/21 00:37:03 fetching corpus: 1250, signal 125481/149360 (executing program) 2022/09/21 00:37:03 fetching corpus: 1300, signal 127488/151907 (executing program) 2022/09/21 00:37:03 fetching corpus: 1350, signal 129491/154355 (executing program) 2022/09/21 00:37:03 fetching corpus: 1400, signal 131697/157012 (executing program) 2022/09/21 00:37:03 fetching corpus: 1450, signal 132557/158564 (executing program) 2022/09/21 00:37:03 fetching corpus: 1500, signal 134373/160832 (executing program) 2022/09/21 00:37:04 fetching corpus: 1550, signal 135680/162682 (executing program) 2022/09/21 00:37:04 fetching corpus: 1600, signal 137150/164606 (executing program) 2022/09/21 00:37:04 fetching corpus: 1650, signal 138423/166369 (executing program) 2022/09/21 00:37:04 fetching corpus: 1700, signal 140315/168583 (executing program) 2022/09/21 00:37:04 fetching corpus: 1750, signal 141613/170404 (executing program) 2022/09/21 00:37:04 fetching corpus: 1800, signal 142519/171825 (executing program) 2022/09/21 00:37:04 fetching corpus: 1850, signal 143944/173617 (executing program) 2022/09/21 00:37:04 fetching corpus: 1900, signal 144948/175080 (executing program) 2022/09/21 00:37:04 fetching corpus: 1950, signal 146523/176952 (executing program) 2022/09/21 00:37:04 fetching corpus: 2000, signal 148066/178761 (executing program) 2022/09/21 00:37:05 fetching corpus: 2050, signal 149734/180666 (executing program) 2022/09/21 00:37:05 fetching corpus: 2100, signal 151011/182309 (executing program) 2022/09/21 00:37:05 fetching corpus: 2150, signal 152261/183862 (executing program) 2022/09/21 00:37:05 fetching corpus: 2200, signal 153166/185162 (executing program) 2022/09/21 00:37:05 fetching corpus: 2250, signal 153955/186379 (executing program) 2022/09/21 00:37:05 fetching corpus: 2300, signal 155076/187779 (executing program) 2022/09/21 00:37:05 fetching corpus: 2350, signal 156911/189606 (executing program) 2022/09/21 00:37:05 fetching corpus: 2400, signal 158783/191455 (executing program) 2022/09/21 00:37:06 fetching corpus: 2450, signal 159856/192779 (executing program) 2022/09/21 00:37:06 fetching corpus: 2500, signal 161350/194394 (executing program) 2022/09/21 00:37:06 fetching corpus: 2550, signal 162237/195561 (executing program) 2022/09/21 00:37:06 fetching corpus: 2600, signal 163782/197111 (executing program) 2022/09/21 00:37:06 fetching corpus: 2650, signal 165153/198500 (executing program) 2022/09/21 00:37:06 fetching corpus: 2700, signal 166050/199655 (executing program) 2022/09/21 00:37:06 fetching corpus: 2750, signal 166815/200683 (executing program) 2022/09/21 00:37:06 fetching corpus: 2800, signal 167708/201788 (executing program) 2022/09/21 00:37:07 fetching corpus: 2850, signal 169333/203229 (executing program) 2022/09/21 00:37:07 fetching corpus: 2900, signal 170111/204261 (executing program) 2022/09/21 00:37:07 fetching corpus: 2950, signal 170840/205240 (executing program) 2022/09/21 00:37:07 fetching corpus: 3000, signal 171968/206392 (executing program) 2022/09/21 00:37:07 fetching corpus: 3050, signal 173154/207564 (executing program) 2022/09/21 00:37:07 fetching corpus: 3100, signal 173800/208457 (executing program) 2022/09/21 00:37:07 fetching corpus: 3150, signal 174501/209350 (executing program) 2022/09/21 00:37:08 fetching corpus: 3200, signal 175540/210396 (executing program) 2022/09/21 00:37:08 fetching corpus: 3250, signal 176314/211357 (executing program) 2022/09/21 00:37:08 fetching corpus: 3300, signal 176961/212211 (executing program) 2022/09/21 00:37:08 fetching corpus: 3350, signal 179106/213680 (executing program) 2022/09/21 00:37:08 fetching corpus: 3400, signal 180698/214924 (executing program) 2022/09/21 00:37:08 fetching corpus: 3450, signal 181853/215926 (executing program) 2022/09/21 00:37:08 fetching corpus: 3500, signal 183197/217011 (executing program) 2022/09/21 00:37:09 fetching corpus: 3550, signal 184328/217942 (executing program) 2022/09/21 00:37:09 fetching corpus: 3600, signal 185189/218789 (executing program) 2022/09/21 00:37:09 fetching corpus: 3650, signal 185938/219533 (executing program) 2022/09/21 00:37:09 fetching corpus: 3700, signal 186970/220439 (executing program) 2022/09/21 00:37:09 fetching corpus: 3750, signal 187883/221293 (executing program) 2022/09/21 00:37:09 fetching corpus: 3800, signal 188736/222051 (executing program) 2022/09/21 00:37:09 fetching corpus: 3850, signal 189929/222965 (executing program) 2022/09/21 00:37:09 fetching corpus: 3900, signal 190681/223664 (executing program) 2022/09/21 00:37:10 fetching corpus: 3950, signal 191807/224498 (executing program) 2022/09/21 00:37:10 fetching corpus: 4000, signal 192522/225160 (executing program) 2022/09/21 00:37:10 fetching corpus: 4050, signal 193226/225814 (executing program) 2022/09/21 00:37:10 fetching corpus: 4100, signal 194214/226489 (executing program) 2022/09/21 00:37:10 fetching corpus: 4150, signal 194710/227058 (executing program) 2022/09/21 00:37:10 fetching corpus: 4200, signal 195833/227751 (executing program) 2022/09/21 00:37:10 fetching corpus: 4250, signal 196604/228338 (executing program) 2022/09/21 00:37:11 fetching corpus: 4300, signal 197359/228917 (executing program) 2022/09/21 00:37:11 fetching corpus: 4350, signal 198096/229491 (executing program) 2022/09/21 00:37:11 fetching corpus: 4400, signal 198782/230037 (executing program) 2022/09/21 00:37:11 fetching corpus: 4450, signal 199419/230586 (executing program) 2022/09/21 00:37:11 fetching corpus: 4500, signal 201281/231415 (executing program) 2022/09/21 00:37:11 fetching corpus: 4550, signal 201889/231916 (executing program) 2022/09/21 00:37:11 fetching corpus: 4600, signal 202801/232444 (executing program) 2022/09/21 00:37:11 fetching corpus: 4650, signal 203665/232946 (executing program) 2022/09/21 00:37:12 fetching corpus: 4700, signal 204287/233401 (executing program) 2022/09/21 00:37:12 fetching corpus: 4750, signal 204840/233845 (executing program) 2022/09/21 00:37:12 fetching corpus: 4800, signal 205277/234300 (executing program) 2022/09/21 00:37:12 fetching corpus: 4850, signal 205721/234685 (executing program) 2022/09/21 00:37:12 fetching corpus: 4900, signal 206464/235116 (executing program) 2022/09/21 00:37:12 fetching corpus: 4949, signal 207295/235525 (executing program) 2022/09/21 00:37:12 fetching corpus: 4999, signal 208094/235952 (executing program) 2022/09/21 00:37:12 fetching corpus: 5049, signal 208605/236373 (executing program) 2022/09/21 00:37:13 fetching corpus: 5099, signal 209672/236762 (executing program) 2022/09/21 00:37:13 fetching corpus: 5149, signal 210861/237368 (executing program) 2022/09/21 00:37:13 fetching corpus: 5199, signal 211392/237705 (executing program) 2022/09/21 00:37:13 fetching corpus: 5249, signal 211843/238005 (executing program) 2022/09/21 00:37:13 fetching corpus: 5299, signal 213113/238407 (executing program) 2022/09/21 00:37:13 fetching corpus: 5349, signal 213999/238726 (executing program) 2022/09/21 00:37:13 fetching corpus: 5399, signal 214703/239044 (executing program) 2022/09/21 00:37:14 fetching corpus: 5449, signal 215365/239332 (executing program) 2022/09/21 00:37:14 fetching corpus: 5499, signal 215860/239587 (executing program) 2022/09/21 00:37:14 fetching corpus: 5549, signal 216280/239849 (executing program) 2022/09/21 00:37:14 fetching corpus: 5599, signal 217042/240122 (executing program) 2022/09/21 00:37:14 fetching corpus: 5649, signal 218136/240412 (executing program) 2022/09/21 00:37:14 fetching corpus: 5699, signal 218598/240618 (executing program) 2022/09/21 00:37:14 fetching corpus: 5749, signal 219318/240819 (executing program) 2022/09/21 00:37:14 fetching corpus: 5799, signal 219859/241003 (executing program) 2022/09/21 00:37:15 fetching corpus: 5849, signal 220260/241189 (executing program) 2022/09/21 00:37:15 fetching corpus: 5899, signal 220766/241449 (executing program) 2022/09/21 00:37:15 fetching corpus: 5949, signal 221067/241590 (executing program) 2022/09/21 00:37:15 fetching corpus: 5999, signal 221632/241591 (executing program) 2022/09/21 00:37:15 fetching corpus: 6049, signal 222423/241598 (executing program) 2022/09/21 00:37:15 fetching corpus: 6099, signal 223021/241598 (executing program) 2022/09/21 00:37:15 fetching corpus: 6149, signal 223364/241598 (executing program) 2022/09/21 00:37:15 fetching corpus: 6199, signal 223781/241601 (executing program) 2022/09/21 00:37:16 fetching corpus: 6249, signal 224713/241604 (executing program) 2022/09/21 00:37:16 fetching corpus: 6299, signal 225107/241609 (executing program) 2022/09/21 00:37:16 fetching corpus: 6349, signal 225488/241609 (executing program) 2022/09/21 00:37:16 fetching corpus: 6399, signal 226132/241610 (executing program) 2022/09/21 00:37:16 fetching corpus: 6449, signal 226591/241610 (executing program) 2022/09/21 00:37:16 fetching corpus: 6463, signal 226906/241610 (executing program) 2022/09/21 00:37:16 fetching corpus: 6463, signal 226906/241610 (executing program) 2022/09/21 00:37:19 starting 8 fuzzer processes 00:37:19 executing program 0: sendmsg$NL80211_CMD_TDLS_OPER(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x300, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x80}, 0x1) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x100) sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x4c, 0x0, 0x800, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e23}, @IPVS_SVC_ATTR_AF={0x6, 0x1, 0xa}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x80}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000000) r1 = memfd_secret(0x80000) sendmsg$NFNL_MSG_ACCT_NEW(r1, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x7c, 0x0, 0x7, 0x401, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFACCT_FILTER={0x54, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x1}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xa52}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8000}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x9}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7ff}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x8}]}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x7ff}]}, 0x7c}, 0x1, 0x0, 0x0, 0x10}, 0x20000000) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r1) sendmsg$NL80211_CMD_SET_WDS_PEER(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x38, r2, 0x400, 0x70bd26, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x3, 0x4f}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x38}, 0x1, 0x0, 0x0, 0x40800}, 0x8804) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x4841}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, r3, 0x2, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x28001}, 0x20000880) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_ASSOCIATE_REQ(r4, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x102004}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x24, r3, 0x200, 0x70bd25, 0x25dfdbff, {}, [@IEEE802154_ATTR_CHANNEL={0x5, 0x7, 0x1a}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0xbe}]}, 0x24}}, 0x20000000) sendmsg$IEEE802154_DISASSOCIATE_REQ(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x24, r3, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@IEEE802154_ATTR_REASON={0x5, 0x12, 0xc}, @IEEE802154_ATTR_REASON={0x5, 0x12, 0x72}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0) r5 = openat(r0, &(0x7f0000000840)='./file0\x00', 0x480000, 0x1c4) sendmsg$IPSET_CMD_TYPE(r5, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000940)={&(0x7f00000008c0)={0x50, 0xd, 0x6, 0x5, 0x0, 0x0, {0x7, 0x0, 0x3}, [@IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x5}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000010}, 0x4010) pipe2(&(0x7f00000009c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x6000) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r6, &(0x7f0000000ac0)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000a80)={&(0x7f0000000a40)={0x30, 0x3, 0x8, 0x101, 0x0, 0x0, {0x1, 0x0, 0xa}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x1}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x806}, @CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @icmpv6}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0xb1950f32f7560911}]}, 0x30}}, 0x40) recvmsg(r7, &(0x7f0000002100)={&(0x7f0000000b00)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f0000002000)=[{&(0x7f0000000b80)=""/123, 0x7b}, {&(0x7f0000000c00)=""/4096, 0x1000}, {&(0x7f0000001c00)=""/117, 0x75}, {&(0x7f0000001c80)=""/28, 0x1c}, {&(0x7f0000001cc0)=""/71, 0x47}, {&(0x7f0000001d40)=""/254, 0xfe}, {&(0x7f0000001e40)=""/143, 0x8f}, {&(0x7f0000001f00)=""/214, 0xd6}], 0x8, &(0x7f0000002080)=""/104, 0x68}, 0x10101) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000002180)={{0x1, 0x1, 0x18, r1, {0xfffffff7}}, './file0\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000002140), r8) sendmsg$NL80211_CMD_LEAVE_OCB(r1, &(0x7f0000002280)={&(0x7f00000021c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000002240)={&(0x7f0000002200)={0x20, 0x0, 0x4, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x8, 0x6e}}}}, ["", "", "", "", "", ""]}, 0x20}}, 0x20008040) 00:37:19 executing program 1: ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x80000000}}, './file0\x00'}) r1 = syz_genetlink_get_family_id$team(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000140)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl2\x00', 0x0, 0x29, 0x2, 0x6, 0x8, 0x22, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x700, 0x700, 0x3, 0x8001}}) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f00000002c0)={'sit0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x4, 0x15, 0xe7, 0x9, 0x11, @private1, @ipv4={'\x00', '\xff\xff', @empty}, 0xf6ef, 0x8, 0x3, 0xee1}}) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f0000000380)={'syztnl0\x00', &(0x7f0000000300)={'syztnl0\x00', 0x0, 0x2f, 0x2, 0x20, 0x4123, 0x18, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, 0x8000, 0x8, 0x10000}}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000400)={'erspan0\x00', &(0x7f00000003c0)={'syztnl1\x00', 0x0, 0x20, 0x1, 0x100, 0x1, {{0x8, 0x4, 0x3, 0x2f, 0x20, 0x67, 0x0, 0x2, 0x4, 0x0, @local, @loopback, {[@end, @rr={0x7, 0xb, 0x4b, [@empty, @initdev={0xac, 0x1e, 0x1, 0x0}]}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f00000004c0)={'syztnl1\x00', &(0x7f0000000440)={'ip6gre0\x00', 0x0, 0x2f, 0x4, 0x0, 0x2b02, 0x6b, @local, @local, 0x8000, 0x1, 0x80, 0x1ff}}) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000580)={'ip_vti0\x00', &(0x7f0000000500)={'gretap0\x00', 0x0, 0x10, 0x7800, 0x2, 0x400, {{0xe, 0x4, 0x2, 0x14, 0x38, 0x68, 0x0, 0x4, 0x29, 0x0, @broadcast, @remote, {[@rr={0x7, 0xb, 0xe1, [@local, @multicast2]}, @noop, @end, @timestamp_addr={0x44, 0x14, 0x93, 0x1, 0xb, [{@rand_addr=0x64010102, 0xfffffc00}, {@multicast1, 0x3}]}]}}}}}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f00000005c0)={{{@in6=@ipv4={""/10, ""/2, @initdev}, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@private2}}, &(0x7f00000006c0)=0xe8) sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f0000000e80)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000700)={0x724, r1, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [{{0x8, 0x1, r2}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3f}}}]}}, {{0x8, 0x1, r3}, {0xa4, 0x2, 0x0, 0x1, [{0x64, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x34, 0x4, [{0x8000, 0x3, 0x2, 0x9}, {0x8001, 0x80, 0xaa, 0x1}, {0x2, 0x8, 0xcf, 0x8000}, {0x8001, 0x6, 0x0, 0x6}, {0x3, 0x0, 0x40, 0x80}, {0x101, 0x40, 0x0, 0x9}]}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8}, {0x200, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r4}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0xffff8001}}}, {0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xffffffbe}}, {0x8}}}]}}, {{0x8}, {0xf4, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x280}}}, {0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0x5, 0x0, 0x81, 0x80000001}]}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r5}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}, {{0x8}, {0xfc, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r6}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}]}}, {{0x8}, {0x80, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x1000}}, {0x8}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r7}}}]}}, {{0x8, 0x1, r8}, {0xc8, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x5e, 0xf8, 0x5, 0x2b0842e5}, {0x3, 0x3f, 0x4, 0x9}, {0x80, 0x9, 0x6, 0x6}]}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}]}}, {{0x8}, {0xb8, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x3ff}}}]}}]}, 0x724}, 0x1, 0x0, 0x0, 0x4008007}, 0x80) r10 = openat$cgroup_ro(r0, &(0x7f0000000ec0)='blkio.throttle.io_serviced\x00', 0x0, 0x0) sendmsg$DEVLINK_CMD_RATE_GET(r10, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001000)={&(0x7f0000000f40)={0x88, 0x0, 0x20, 0x70bd26, 0x25dfdbff, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @handle=@pci={{0x8}, {0x11}}]}, 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x4800) setsockopt$inet_IP_XFRM_POLICY(r10, 0x0, 0x11, &(0x7f0000001080)={{{@in6=@loopback, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4e20, 0x3, 0x4e21, 0x101, 0x2, 0x80, 0x0, 0x1d, 0x0, r9}, {0x2, 0x1, 0x1, 0x101, 0x7a, 0x100000001, 0x786, 0x3}, {0x7, 0xffffffffffffffc1, 0xfffffffffffff800, 0x3}, 0x8001, 0x6e6bb9, 0x2, 0x1, 0x2}, {{@in=@multicast1, 0x4d6, 0x2b}, 0xa, @in6=@dev={0xfe, 0x80, '\x00', 0x29}, 0x0, 0x3, 0x1, 0x2, 0x73f6, 0x0, 0x8000}}, 0xe8) ioctl$sock_ifreq(0xffffffffffffffff, 0x8970, &(0x7f0000001180)={'dummy0\x00', @ifru_hwaddr=@multicast}) syz_io_uring_setup(0x5983, &(0x7f00000011c0)={0x0, 0x2a64, 0x20, 0x1, 0x2d0, 0x0, r10}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000001240)=0x0, &(0x7f0000001280)=0x0) syz_io_uring_submit(0x0, r12, &(0x7f00000012c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3}}, 0xdbc3) syz_io_uring_setup(0x48c1, &(0x7f0000001300)={0x0, 0x10e8, 0x1, 0x0, 0x12e, 0x0, r10}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001380), &(0x7f00000013c0)=0x0) r14 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r11, r13, &(0x7f0000001440)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x2007, @fd_index=0x3, 0x8, &(0x7f0000001400)=""/7, 0x7, 0x1, 0x1, {0x0, r14}}, 0x34af2c64) setsockopt$inet_mreq(r0, 0x0, 0x24, &(0x7f0000001480)={@local, @remote}, 0x8) 00:37:19 executing program 2: pwritev2(0xffffffffffffffff, &(0x7f00000010c0)=[{&(0x7f0000000000)="a70a47ea3ab19d8b2659f8928b3413c6817800669c63e7c735f5c6d86cfe7940f906dc5cbd589b0db8e1d20efe90e111e5c04c835c3483e2e73bea1103c1247d8826e103172c192a028285f78027a8a7ab06c8a6dfb06fe4640318705a2968d092c37b0bffa1c200ae6fe404d7754848ad4bcea7c5410215dc6b52df2370f40d9796e096684a83ba84abc671138ccc5333edb585f48e8c99cd01b176a53ec6549437cfa16c108eea3bec", 0xaa}, {&(0x7f00000000c0)="2c8d04cd81fa49070207a2b5720685a1712a20d9b981de6bc67c5bee54a5441b0acbb954740520bccd4f3f110d1a4fde27da97d177b37aa3ab75c5539cb1699c5328404d5503d1c039d9ee4f83a6c9eb066da663c8cd1115048985b34b876cfd98b736c0c8cbca6ed009268498f4cad8d5cd832937b5ad068511b9a8936f2c9db99deb8c904efa90201e43e1552243e49cfc0db90a4f62e79bb2ee9503a32eae99d9525182309cee02eefeeb304486aaf6cdc26ff82302d57d0d00fb2f487ff2a5c98a08a547ef4010c98130bfa90b29ef4f9f74ef1d6f5c67d3cdb334f9c3d2f60ea1784e8091415e51917f9cf14cd8fb542b4b8f2281e615f04cd9143cfc91c5153d7a883d7e4100a861a695dc6bd8a6279ef14c3f23bd724049cdeacfecde803e74f2eb4b96fd6b5394fb453c24486e7646d91e5719087daa47f9c006c78435174dddc3411e0e152e40952afe58e51225a206717db567140812821a739309f0d75b41fca75f173f3002103361fcec4513517de439734d8e9807d675aa18a127276a07868a537ec8b58c6819a68626c6d2a8ba6361f2ffed649a81e1b369d9b63d5ea9e307b8b801d6f54a24c03e194743805c996d6b4e8c8d1558e4c2d0bbbdbc4f3b6f5ebf66bc4542f6c107b47d6ce6c290e4020447dc1d826202cda89c0a013560c17379a3e04abb099d45fd85f67496c75a5198bd5a8853130593727381a300311335013256fa5550f1859725fa95a801f5943c20030056d18b99b4e021efd4e9c0f40464bf881cb51fcaf25cd28ed50ad281b3e08125d840c2b650b114c2a9338fa34ba795177849aa37ab064a89ac85ad64ae2f9d00692c6bb0ef857317f22400ba84b86eb6be8488a015043411b014c2db1225939b1f56b5777d07b8ff67c58204f5419dceaa14f1c588407bbef9e1ba002dfef38e0928198243d94f061ffdbd34212bd8dcb41e27ab9e6f475ca02776f51dbd41878941d190bdd7d17e04482763db3b57b211ad4cae9ba68941e687f11c65447775edd666eea56e1b577252dfdf9225651fffd78546b1449917bb3faf235a1556cee0bfadccf4965e48c519f8f7409aac597484588b3e68414312f955160a7f4056f6849970773def849e4d49e5d54ce98431167b97c2a330c064c4062f516c378d3b51aee39de96a7307248a63c2123112a574320e8f4b063f0d3856118a6198e2f08d85a7c8711b880435c22ba6aed7fea7fe08d78895ac11083f632378f7f8b883a954747e9643a8049c5f58d87d7928966493dac0eb7dfed9851c9b0d73ece5c76a1ab849bd58c99cbc22d90f432c34233327726855fff10c907a739c3534eb5ecf92bab48f47a29d9dced60c5ced4497bda2ce7d03ea22fbe9829bb16ad45e898758654fc2cdf3486c11459b2efa03de067cec156b40c312d6b3d2de7f8900a1e08aee206882f8c19e4768dc5ceb4c19047febe63bdadea55f866346cc27c1b158462847fb25917f8257147cc7c5834db78b4deee323b114824f4d2cb16a6ce733e42333cda56620253780d231b6f297d997ac68935d013b627522211d9b8526aa08a58110ef0671216e5844e05ced32e1121ccdc207c38af9c9ff4ba9af2ed03298bcb8a98580fbc8346888377f156da37347d1502418b2d71e133959a35269591be38bd5ad273268296843a28a642e72a1c6be9447044f4921d009ad4496608ee417f7db6cf2160d4bff2b0bebf36fe76fa7bfe8a1f7b75f78e1fc9ff70d9a4c341fd5350251e87eee77dc4e387e737a4ce0a5cb81c7d5036d3f438ebc042cf789c0c6647260c1cf0ad5feb75b3d1ec88c295e67c4221f389464251ee3758eea953dc2b7b9df27cdc2619f9d7f396ffe06e2ced03d0b18719ebd59f33cb259b3a630bc0a3b9504f461e17292d169436c7a9567cde560a6d0499295290097b244a58b42c7dc231a3359b6bccd770f097e36460dc25401ffc63779d884375271cb528a59bc46a511d3df9e4c352ee0444bca5a60e96ae94402f785d4c0c5bb661c8611303cc42c3d3d3be1256b6c48c79c67aa2f9215bb60897ab3c9db857af1b3196937da1c4b3a1175c77fe0abeb9569666cada3ed74317a31c3f623c46f9dc45cee3e0291a59417b8505e75c88e712e27f40b5334dcd70419fbebc833ffe98d33969efd951d83f8dd7d8270c2df38546af215c5567ff03c43a70a33a2ba0db08340b9a60a61bfee0fa0c013627b3230b91240addab5c8a96873cc73fc09c1c76356a59cc4867729b63aeb54f71ab9d59fbb9cfcce4d6bb7c64061fc93734acd5b9afee9c5a7feed3825ee8176199b312f8cc71da68282a0979f82e48f286850a77d423353d38457dbb3409d078409fd19416d7c6d5b2861210b50b6a11614286efe28064f8a0f7c82cab78bb35c94fdc8eea48e3dff8eb25f5cfec0f093f2cf41e8ba1e9886dccee2be9425c9b75c03d0e62c3f9ea7450311c1712e0f7c1e2d261e163224e83c66e2bafa76383212110b2d3f631b437db22bf1aa02c831e78d11b3c9b97a6744006c5c9e752d61728a54f12be602e467a5c9e62ac607236e1c6b62cd82b86c8c3b3b6eb2f62612a17d5843295a9ec2c138cf0b40b820fdc867508e4843fec233b62145c104f26f840ea709222663998ae569fac9a85824124396661f0f5c8f1d768cc5f7bd3ab13bd6f7ba02c20ce4e093525e43d2f60404306ef24381fccd4f4502363d021efe276e32764d7f3e6c44231435a77d506037b02ed54ba91271508a43949e221fe5828ebed6cb0e66f65b590f17f3b72265a03a880bb681b25833e8681c2a75d0fa1228154fab0e20984d1448bb42cc773b83ae8e29a272e4af7b24a25df7a00e53c7e9888707801c69eb34ecb77ac0319f4e98223c69038f5880b894515c174a8fcd4e384045de74daf0beb4363823f01f158bf48ccc48313cf6dc6c48c7d5b29c8cd4881805bbf6eae6beff32927665c4d6fd6b9745ba0032d97a892e810847922bef5b5be27c1fd6c64db10c0ef504dbfdb7a44607b844e7916762eb6a8b8791787d35ab2c758e4dcc601e97f899784762bf16b0600d24ccd3ef331271a64d2935bd43af9f1d36c476b7b8cea93a0bdfc58bc5d7121106b696fb5d00899f980a36d76bcbd119f67e2917caa491319569b3de29bcc090b565e3947efd986ad0be97d0c650285c0435f8ca88eb01ba9e384ab9a65882ffe2a4ef29c78958495081389cf0fba610ce0d109d30f31498b6227c35e7b08d570b2be56dfea3432e1cc59c1787c7cba7031e0be01592124daa3d5f0f37f35fdd6551a9d27d495b01db4c23e57121cb6aef7740089ede76d652d1c9b2f39f4b2aa43350c978faa8cba878d5e22baafa61fe7de5056b3330493a2f1f3ca225155ce364d633a950813b57766651a9d02c099cab8c5a4e8cb271aff6ade4df032de4e21b8908cfd08d1fab1ac4bb02400afed0e504a2fa74cb92a31690854c8bf39ee06a7b97fd7ad39caa8fed6d94e8fe76ab909bfff526a8e2c3ab4ecc3d8ada2ea913f5b6dcc162cbe3d13faa982c7ecc7595f835f2c2d08f6ed5ef05c20ad12529537afb01c6ed1fb8c6a77d2ff3d7c16b27c7045e6f06a9aa883167723ba4b8811e975331cf16337e39b13a0cb2bef34d6684f485f25b6693bc0025223e497dff370674fc4008e247bc65745ee2027f75b365f18dbf15d33d5efbb10e1493b01a6a9ce365957e852a19ba5139fb1f67938f673d81f3bad96af711f81f95ae8aba7e367956c84b7bd9087e587de8038a37d4238b69e273715a6c015bdd75185e469388f9a31562650e3bca36fce5bf24cec9d9883a6247f3e38218305248fb0b31aa608ed17b7c1324ce05ece12e071374a7b72ca40b6fd877a74792b49ba0425e3cf7feea60b230733c2883786900687b7574134dd45bda134690565af939a39948842b4864691eb8a39332b5622707eaa00b32caab00f9ff7e516d554205de7801222504e80e9fb4e15f9d3244549b37ab3562f8c201ac9d3117daf6cc43745831fa03f21e5c2c242a8cc6754b9a4db2f8028e5ffefaa71b92750ccce1e2e42465dc2d7be609655575fbebacb52462bd2a07ccd77a2e34a8a64fa102c6522a9279fd66e1c421d69f070e99bfea3db1a8c55f4b0c6816f5b83817b54bddc569dbe0a7a0d4c5e44ebe7d51737ca9df07d6879b27d71aecb436d7eebed5470f63581f925182e32df06cb96443da4da9f98916afccc201c5b742440ba811f68beb784bda617d2547c64edef9f063e0a53ceeea97468a9dd2612621200787a64ee283047d44e4dbf306f5d802939765f70a899eeb7fa014f60c344929dfbda9000772653808ad9e47ab89edebe65554b9b06e1300184badcbd14a02ad9c280c72fdaf2c6212235b8ee57ddddbb0077599b8095167edc6c3adca0113304fd04671c4a02df403544d1eb26ec20fa5ffa4a24d0cec693b9c8190b4ed87dd6d26516ea680557e399ceeaeac6e5ae05b54c0baa090176d82583c2ab5929f2c31d708683ce9ae395c8c154b5db11ead76984d5c3b1c41d23560ea9921adb92e60871059f972726b01bc55a017cef12828b9f4afa2f3bf5c13453cbd98e77db183d989d76378bf9005940d7c9ebfc09c89901581c2bf9bd74443f097a2335039d7657b3febd077e33a5bed02e09df1581dec46ca1dab5d8cb8a62bced7890d0855db927129b4e92cbcfb1d271bdb3a350b0ec5bc75af2992dc141d76be52d080a082f59617ed6612eb78fedd3f0e738626062875ee732440b0e67f35a12b0e3436a9411933018e7db0512fe1666e9445e6b1f84e5b64ac60bfae55471d31c02f65e805821a4e2f116e24ab2144954d240fb17beca551b6b777fc9d9a4bdd8535d728973413d28b1b60a0b4684ee01f66a27d71561b35eb3d995a86bc66ef272a79577a3281a1f96e4d1b6950ee97a8a5db15ab7217247a3f427bea8a48bd1d932bef0c1f421bf0253dd766125c9ff617706d163b8029d70b9c6eab0234d7d676e866567e5ca3663cac0a283f552084c3b680458215736b9eba5548a239b78caf2d65fcaa223c3eaf0f9bd41c3a90ed51e3a2858cfa3f63b5eebec0d46960e7e246029ab134c1898a0f025ce3c49d4cc1e3812832850285ac9d884a6004602e7b0ecc550bf9f2f068258bda862a792da2cc9ca14ba2d1ed0d1dc4483c16b09874038fb200c0c19cb50d5df500d00b1ca684b9a1b6f12e4f475d1cef7c6c4642ea4c1c24799cd2b4c8dbd28a821729b9363c4dc1503e643978e1234e7f6962106e37e9ee36f74829ee92e678392a28ffcd2a1efac83e6d0b350bcfac1d3e767415cc2d8352f36da3b3db302997f8a29e79e7eba9adaf5989727e7a021ba5fccc28ee79d653242e633397b1b908b453844d0e35c3929b9e769b9c96a349ec0f4ee44bc6da3ff588de6c5b10f55f702ae0b46922149e9de29952f44b586c03b841712a6c7ae904b9cf694afb3a5f932afc71735b835c70cf98cece0099fe1615d723265ec01302fde6c0088a8a2afef5b84b68559672b7567fa80e505ab10f3881827d5e0dcaff8bfeaa083aec641850e5a482c94b28afea5379ca2ad3b453a18bbc297a4fb9a457413abf5cfa2e8adfcd69f1759112ecc01364af5b082cae265ef0df7d66f552cce1e9ca1105b5eefea8f7202f374a9aa3a8e89de72e966aea5864b52fa115166e7f7959b6f0f0b28b9a83c7471a29a3aa251bb079ca75747ed776a27f20bd7f3b75ea1332e250fbc5626ea560d0f1880f6cfc8e1d6d1ff8db7dfea489674433", 0x1000}], 0x2, 0x1, 0xffff9efb, 0x0) sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000001100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001400)={&(0x7f0000001140)={0x298, 0x0, 0x800, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_LINK={0x4c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_NODE={0xbc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x68, 0x3, "ffb9aef6068f44e26c9542fc89652503eb070a6340ed68c90e56c400332ca61c7a80e93975637b260e98529f626f3d51acd5bc2903dec20abcfe8eb95bdb3546818a05dd2838f08ae133a5dcc82a8c81c909c640d9ffae134e1b658672ab86d230f80b37"}, @TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "91dd1d57e6924465b5dd9548335d37f575e79feb"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x10001}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0xfffffffa}]}, @TIPC_NLA_NODE={0xe8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x6}, @TIPC_NLA_NODE_ID={0xce, 0x3, "18936423240954aa80577e492d5e0723a25111dc93e0bb08a5f74e24f1b0440086512c7604b1d722be2cb593cb2876105c1d91feb2c2bbb7af1a9b5c757e7673a8db7c402cfe6d8024547eabd75e65daf7b10ab09defc33f0f09c4029d9c4848fada9c4f704e846eb3d19fedefc1dacd8be9a329a280c171a6882979eb5082074463142525ad29c389cdfe65aed2a2ea0b694d35baf44705c330ccb839e1858637894a3bf06b275f46899a4bc894c5eae2399a77666c4a2af575d2fbdfe35fb022df19473ba02d44bb57"}]}, @TIPC_NLA_NET={0x6c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xffffffffffffffc1}, @TIPC_NLA_NET_NODEID={0xc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x401}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x400}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfc}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xdd8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x400}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}]}, @TIPC_NLA_NET={0x28, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2ab5}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x5}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x9}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8000000}]}]}, 0x298}, 0x1, 0x0, 0x0, 0x40}, 0x40001) sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f0000001540)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001500)={&(0x7f00000014c0)={0x40, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x3}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x5}, @NL802154_ATTR_CCA_OPT={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x40040d0}, 0x1) r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000015c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000001680)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)={0x28, r0, 0x800, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x80000000, 0xb}}}}, ["", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000001840)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001800)={&(0x7f0000001700)={0x100, 0x0, 0x806, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0xa8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xb4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xb39}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9cb}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_MON={0x2c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x400}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4725}]}, @TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x100}, 0x1, 0x0, 0x0, 0xc0010}, 0x40000d0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001880)='/proc/asound/seq/clients\x00', 0x0, 0x0) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r1, &(0x7f00000019c0)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001980)={&(0x7f0000001900)={0x68, 0x0, 0x218, 0x70bd26, 0x25dfdbff, {{}, {}, {0x4c, 0x18, {0x2, @media='udp\x00'}}}, ["", "", "", "", "", "", ""]}, 0x68}, 0x1, 0x0, 0x0, 0x80}, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000001ac0)='blkio.bfq.dequeue\x00', 0x0, 0x0) sendmsg$NL80211_CMD_DISCONNECT(r2, &(0x7f0000001c00)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001bc0)={&(0x7f0000001b40)={0x50, 0x0, 0x200, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x20, 0x4b}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1e}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2c}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2c}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3f}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x39}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x26}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x4040811) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000001d00)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001cc0)={&(0x7f0000001c80)={0x2c, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x8000) r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001d40), 0x20080, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r4, 0x0, 0x487, &(0x7f0000001d80), &(0x7f0000001dc0)=0x30) sendmsg$NL80211_CMD_SET_MPATH(r4, &(0x7f0000001f00)={&(0x7f0000001e00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000001e40)={0x58, r0, 0x1, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x100, 0x79}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0x20004054}, 0x40000) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001f80), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000001fc0)={'wpan4\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000002000)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r3, &(0x7f0000002100)={&(0x7f0000001f40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000020c0)={&(0x7f0000002040)={0x58, r5, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0x7}, @NL802154_ATTR_MIN_BE={0x5, 0x11, 0x5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x10}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_MAX_BE={0x5, 0x10, 0x81}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000885}, 0x240008c4) sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000002200)={&(0x7f0000002140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000021c0)={&(0x7f0000002180)={0x28, r0, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xe000, 0x1}}}}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 00:37:19 executing program 3: ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000000)={0x3ff, 0x1, 0x100}) ioctl$FIONREAD(0xffffffffffffffff, 0x541b, &(0x7f0000000040)) write$P9_RFSYNC(0xffffffffffffffff, &(0x7f0000000080)={0x7, 0x33, 0x2}, 0x7) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x40, 0x0) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000140)={0x2, &(0x7f0000000100)=[{0x8, 0xff, 0x9, 0x1f1d}, {0x7, 0xe0, 0x64, 0x8}]}, 0x10) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000280)={r0, 0x3f, 0xffffffff, 0x2}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000002c0)={&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000180)="2098365431909d15958acf86bdc2ace8760cf7a6949b875983b41249d2cb8af08c68aae2263a5cb433d73939de693c71c166f1b98021bb54d403aeec83bc08cd5fac2550b3cd15100d23cb349407a3c3a7deeedfac738d4247afc4fd14ba1b35b0813868e478e867aa47ac4795d16e341a342a960b5168fc8ee373a8acadb87e17d8f402f08065be12d824359d782fceb879cc6f644886d78be29f0949e64f269acd6940ca43b690c360b70b64c48cafcc023eedb6d9af0962f10a6518529cabe882bab1f3ae2b", 0xc7, r1}, 0x68) ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000340)=0x1) ioctl$MON_IOCX_GET(r1, 0x40189206, &(0x7f00000004c0)={&(0x7f0000000380), &(0x7f00000003c0)=""/253, 0xfd}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000500)={{0x1, 0x1, 0x18, r1, {0xee00, 0xee01}}, './file0\x00'}) write$P9_RVERSION(r2, &(0x7f0000000540)={0x13, 0x65, 0xffff, 0x6, 0x6, '9P2000'}, 0x13) r3 = syz_open_dev$tty1(0xc, 0x4, 0x3) signalfd4(r3, &(0x7f0000000580)={[0x1ff]}, 0x8, 0x80000) r4 = openat$random(0xffffffffffffff9c, &(0x7f00000005c0), 0x40200, 0x0) fcntl$addseals(r4, 0x409, 0xe) r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000600), 0x101000, 0x0) fsetxattr$security_selinux(r5, &(0x7f0000000640), &(0x7f0000000680)='system_u:object_r:nvram_device_t:s0\x00', 0x24, 0x3) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f00000006c0)={{0x1, 0x1, 0x18, r0, {r4}}, './file0\x00'}) ioctl$RNDADDENTROPY(r6, 0x40085203, &(0x7f0000000700)={0x0, 0xe2, "411f7bea73820e188456d7d064147390ef59e05357c6a9f6d6049cc793b82f0e525d9fc32fbfaff70b80c98ac0bb8a1e8b61d9b2aebe6c0d67b578c62ea4a42051197b764ae2044aa08927ec44e4236a552c89eae0ac838f3c605fb5ec353d85d335cdecee67533d66c3eecc78253f6f5cafe7aaf6dd1187ba7ef061bb6edb1de7c77368d9e6a74f7ccb477c04187dd969b3f259d6eb02fe4a41ad4a514b76a79672cb79809ebc866fab7d40173fdcf4367ceba574f92ad28427bf6720071ed7289afd2a098523f81ddb6775da6dd7c2b64f2bbcf5501052f5e5f0f8d98003684948"}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000840)={{0x1, 0x1, 0x18}, './file0\x00'}) [ 73.784264] audit: type=1400 audit(1663720639.594:6): avc: denied { execmem } for pid=286 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 00:37:19 executing program 5: ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, 0xffffffffffffffff) ioctl$AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, &(0x7f0000000000)) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x9}}, './file0\x00'}) ioctl$LOOP_SET_FD(0xffffffffffffffff, 0x4c00, r0) sendfile(r0, r0, &(0x7f0000000080)=0x8, 0x7dbfea59) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f00000000c0)=0x3) ioctl$CDROMREADALL(r0, 0x5318, &(0x7f0000000100)) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000b80)='./file0\x00', 0x80000, 0x140) utimensat(r1, &(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c00)={{0x77359400}, {0x77359400}}, 0x0) r2 = pidfd_getfd(r0, r0, 0x0) mknodat(r2, &(0x7f0000000c40)='./file0\x00', 0x80, 0xfea3) openat(0xffffffffffffffff, &(0x7f0000000c80)='./file0\x00', 0x2, 0x10) r3 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) write$binfmt_script(r3, &(0x7f0000000cc0)={'#! ', './file0', [{0x20, '%){.$'}], 0xa, "c731ce263c71611e99ec294b05194727fbcb7c893cb05dd516e6a4de25e13a391803705c361c49b9d6da7a13ed6bcfa83040135717278aba7d3fc9db6df7f4344c5dff90a113b0c5171354b8c521ee08cdf87328c9a7ec345013"}, 0x6b) r4 = socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$BTRFS_IOC_LOGICAL_INO_V2(r4, 0xc038943b, &(0x7f0000000dc0)={0x7f, 0x48, '\x00', 0x1, &(0x7f0000000d40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000e00)={{0x1, 0x1, 0x18, r3, {0x6}}, './file0\x00'}) ioctl$DVD_AUTH(r0, 0x5390, &(0x7f0000000e40)=@lsa) r5 = accept$unix(r2, &(0x7f0000000e80), &(0x7f0000000f00)=0x6e) fdatasync(r5) 00:37:19 executing program 4: r0 = semget$private(0x0, 0x1, 0x80) r1 = semget$private(0x0, 0x1, 0x8) semctl$SETVAL(r1, 0x3, 0x10, &(0x7f0000000000)=0x200) r2 = semget$private(0x0, 0x2, 0x34) semctl$SETVAL(r2, 0x5, 0x10, &(0x7f0000000040)=0xef7) semctl$IPC_RMID(r2, 0x0, 0x0) semop(r1, &(0x7f0000000080)=[{0x3, 0x4, 0x1800}, {0x4, 0x3, 0x800}, {0x0, 0x1, 0x1000}, {0x2, 0x1, 0x1800}, {0x3, 0xfff, 0x800}, {0x3, 0x3, 0x1000}, {0x3, 0x7995, 0x800}, {0x2, 0x7, 0x1000}, {0x2, 0x3f, 0x800}], 0x9) semctl$GETNCNT(0xffffffffffffffff, 0x0, 0xe, &(0x7f00000000c0)=""/89) semctl$SETALL(r1, 0x0, 0x11, &(0x7f0000000140)=[0x20, 0x401, 0x8000, 0x8]) r3 = semget$private(0x0, 0x3, 0x44) clock_gettime(0x0, &(0x7f00000001c0)={0x0, 0x0}) semtimedop(r3, &(0x7f0000000180)=[{0x1, 0x200, 0x1000}], 0x1, &(0x7f0000000200)={r4, r5+10000000}) semtimedop(r2, &(0x7f0000000240)=[{0x2, 0x91, 0x1800}, {0x0, 0x2, 0x2800}, {0x0, 0x1}, {0x4, 0x8, 0x1800}, {0x3, 0x6, 0x1800}], 0x5, &(0x7f0000000280)={0x77359400}) semctl$GETPID(r2, 0x3, 0xb, &(0x7f00000002c0)=""/29) semop(r1, &(0x7f0000000300)=[{0x2, 0x8001, 0x1000}, {0x4, 0x1, 0x1800}, {0x3, 0x0, 0x1800}, {0x0, 0x8, 0x1000}], 0x4) semtimedop(r3, &(0x7f0000000340)=[{}, {0x0, 0x6, 0x1000}, {0x2, 0xf001, 0x800}, {0x0, 0x1, 0x800}, {0x2, 0x7f, 0x1000}, {0x4, 0xf0c0, 0x800}], 0x6, &(0x7f0000000380)) semtimedop(r0, &(0x7f00000003c0)=[{0x4, 0x6, 0x1800}, {0x7, 0x0, 0x800}, {0x3, 0x1ff, 0x18e6bf34b9c1f24d}, {0x2, 0x200, 0x800}, {0x1, 0x400}, {0x4, 0x3ff}, {0x3, 0x3, 0x2800}], 0x7, &(0x7f0000000400)) r6 = semget$private(0x0, 0x2, 0x516) semctl$IPC_RMID(r6, 0x0, 0x0) semctl$SETALL(r3, 0x0, 0x11, &(0x7f0000000440)=[0x8, 0x7f56, 0x0, 0x0]) 00:37:19 executing program 7: sendmsg$IPCTNL_MSG_CT_GET_DYING(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x6, 0x1, 0x5, 0x0, 0x0, {0x3, 0x0, 0x3}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x2000001) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x10001}}, './file0\x00'}) sendmsg$NL80211_CMD_GET_COALESCE(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, 0x0, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x17}, @val={0x8}, @void}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x4800) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$IEEE802154_LIST_PHY(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x400, 0x70bd2c, 0x25dfdbff, {}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x40000) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r2, &(0x7f00000004c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x60, r3, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'ip6erspan0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'bond_slave_1\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}]}, 0x60}, 0x1, 0x0, 0x0, 0x800}, 0x804) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000540), r2) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'wpan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f00000005c0)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_LBT_MODE(r4, &(0x7f0000000680)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000640)={&(0x7f0000000600)={0x2c, r5, 0x113, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x24008891) sendmsg$NL802154_CMD_GET_SEC_KEY(r2, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x58, r5, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x58}, 0x1, 0x0, 0x0, 0x40840}, 0x20040000) r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000800)={'wpan1\x00'}) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x44, 0x0, 0x8, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_CRIT_PROT_ID={0x6}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x2}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x3}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x3}]}, 0x44}}, 0x200000d5) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000980), r4) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r2, &(0x7f0000000b00)={&(0x7f00000009c0), 0xc, &(0x7f0000000ac0)={&(0x7f0000000a00)={0xa0, r3, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast2}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_to_hsr\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @empty}, @NLBL_UNLABEL_A_SECCTX={0x2f, 0x7, 'system_u:object_r:restorecond_var_run_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x64010100}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast2}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @dev={0xfe, 0x80, '\x00', 0x43}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'vcan0\x00'}]}, 0xa0}, 0x1, 0x0, 0x0, 0x20000004}, 0x20004080) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000b40)={'wpan1\x00'}) 00:37:19 executing program 6: keyctl$instantiate(0xc, 0x0, &(0x7f0000000000)=@encrypted_new={'new ', 'ecryptfs', 0x20, 'trusted:', '\xcf,\xf4\\!+', 0x20, 0x890}, 0x31, 0xfffffffffffffff8) r0 = request_key(&(0x7f0000000040)='rxrpc\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='-+{\x00', 0xfffffffffffffffa) r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, r0) r2 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc3}, &(0x7f0000000200)={0x0, "d29088ee173012da95dacf9fa629eb41ed396dee963a25ccd6716a897eb8c12e2e645cde1c6f05b7c24d6ef0b8523b9f5fde25b15da948055c285ed50f336731", 0x18}, 0x48, 0xfffffffffffffff9) r3 = add_key(&(0x7f0000000280)='big_key\x00', &(0x7f00000002c0)={'syz', 0x2}, 0x0, 0x0, r1) request_key(&(0x7f0000000300)='rxrpc\x00', &(0x7f0000000340)={'syz', 0x1}, &(0x7f0000000380)='\'\'\x00', r2) r4 = request_key(&(0x7f00000003c0)='cifs.idmap\x00', &(0x7f0000000400)={'syz', 0x2}, &(0x7f0000000440)='big_key\x00', r1) r5 = add_key$keyring(&(0x7f0000000480), &(0x7f00000004c0)={'syz', 0x0}, 0x0, 0x0, r4) keyctl$read(0xb, r4, &(0x7f0000000500)=""/156, 0x9c) add_key$keyring(&(0x7f00000005c0), &(0x7f0000000600)={'syz', 0x0}, 0x0, 0x0, r2) keyctl$KEYCTL_MOVE(0x1e, r5, r3, r3, 0x0) add_key$keyring(&(0x7f0000000640), &(0x7f0000000680)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffa) r6 = add_key$keyring(&(0x7f0000000780), &(0x7f00000007c0)={'syz', 0x1}, 0x0, 0x0, r3) add_key(&(0x7f00000006c0)='encrypted\x00', &(0x7f0000000700)={'syz', 0x3}, &(0x7f0000000740)="2ea3d69a8f82ae29cff391838c041aeecf7cefa436d36c21b74536923e2c1f320421d0861bde451d9ab00383a0f1a13bccb490bda41f2408f4", 0x39, r6) r7 = add_key$keyring(&(0x7f0000000800), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, r2) r8 = add_key$fscrypt_provisioning(&(0x7f0000000880), &(0x7f00000008c0)={'syz', 0x3}, &(0x7f0000000900)={0x2, 0x0, @auto=[0x23, 0x26, 0x20, 0x2b]}, 0xc, r3) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000940)='.request_key_auth\x00', 0x0) r9 = add_key(&(0x7f0000000a00)='syzkaller\x00', &(0x7f0000000a40)={'syz', 0x3}, &(0x7f0000000a80)="3d5d69a0300c029e68b964dbdeb5b3d77a911eb3f279cbb4c2f259393b42ed06d58b77a70a61d89c78570a160697139b60c57f22811155f732e619b48afb1b259bf1fbb653d16ee27a5e336aa1bd3a9eceadf4f66fe3bf311325e8dee9646cb93b2bb63ddb0ed0d250dcc2000e07b91524129adea3afa3bf391529faa2dc8eb246f3a7ffd26247821d980fb20e44ee4dcc7ee7e1841392e4ecb25e2f667cefd3b73bdd29591113bd21184bbcc85e6273883828de5b58ac3989d01fe45c2953c6e38ac39054e6248286d72953480ac335f218309b8094f7f1063367f51846d76a5de57d38dc9f9ae8a33c3e3017615fa5053cbae948", 0xf5, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000980), &(0x7f00000009c0)={'syz', 0x3}, 0x0, 0x0, r9) keyctl$reject(0x13, 0x0, 0x6, 0x2, r7) [ 75.096114] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 75.097556] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 75.099142] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 75.100540] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 75.102530] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 75.104467] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 75.106473] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 75.107918] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 75.112652] Bluetooth: hci0: HCI_REQ-0x0c1a [ 75.139738] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 75.146153] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 75.153740] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 75.156938] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 75.172374] Bluetooth: hci1: HCI_REQ-0x0c1a [ 75.209159] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 75.212667] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 75.214537] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 75.217053] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 75.218292] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 75.220982] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 75.222199] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 75.223448] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 75.224776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 75.228481] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 75.229653] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 75.231583] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 75.233034] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 75.234566] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 75.234587] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 75.237143] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 75.238087] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 75.246580] Bluetooth: hci7: HCI_REQ-0x0c1a [ 75.248005] Bluetooth: hci4: HCI_REQ-0x0c1a [ 75.278619] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 75.280650] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 75.283001] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 75.284259] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 75.286054] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 75.287464] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 75.296012] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 75.297767] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 75.315522] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 75.316579] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 75.318248] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 75.322936] Bluetooth: hci3: HCI_REQ-0x0c1a [ 75.356614] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 75.360306] Bluetooth: hci2: HCI_REQ-0x0c1a [ 75.368214] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 75.391638] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 75.397625] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 75.400152] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 75.402292] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 75.404955] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 75.407977] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 75.431471] Bluetooth: hci5: HCI_REQ-0x0c1a [ 75.431762] Bluetooth: hci6: HCI_REQ-0x0c1a [ 77.169600] Bluetooth: hci0: command 0x0409 tx timeout [ 77.234344] Bluetooth: hci1: command 0x0409 tx timeout [ 77.297270] Bluetooth: hci4: command 0x0409 tx timeout [ 77.297344] Bluetooth: hci7: command 0x0409 tx timeout [ 77.361286] Bluetooth: hci3: command 0x0409 tx timeout [ 77.426282] Bluetooth: hci2: command 0x0409 tx timeout [ 77.489326] Bluetooth: hci6: command 0x0409 tx timeout [ 77.490301] Bluetooth: hci5: command 0x0409 tx timeout [ 79.218306] Bluetooth: hci0: command 0x041b tx timeout [ 79.283298] Bluetooth: hci1: command 0x041b tx timeout [ 79.345225] Bluetooth: hci7: command 0x041b tx timeout [ 79.346353] Bluetooth: hci4: command 0x041b tx timeout [ 79.409218] Bluetooth: hci3: command 0x041b tx timeout [ 79.473265] Bluetooth: hci2: command 0x041b tx timeout [ 79.537276] Bluetooth: hci6: command 0x041b tx timeout [ 79.538235] Bluetooth: hci5: command 0x041b tx timeout [ 81.265214] Bluetooth: hci0: command 0x040f tx timeout [ 81.329361] Bluetooth: hci1: command 0x040f tx timeout [ 81.393269] Bluetooth: hci4: command 0x040f tx timeout [ 81.394096] Bluetooth: hci7: command 0x040f tx timeout [ 81.457540] Bluetooth: hci3: command 0x040f tx timeout [ 81.521315] Bluetooth: hci2: command 0x040f tx timeout [ 81.585257] Bluetooth: hci5: command 0x040f tx timeout [ 81.585985] Bluetooth: hci6: command 0x040f tx timeout [ 83.313313] Bluetooth: hci0: command 0x0419 tx timeout [ 83.377292] Bluetooth: hci1: command 0x0419 tx timeout [ 83.441239] Bluetooth: hci7: command 0x0419 tx timeout [ 83.441752] Bluetooth: hci4: command 0x0419 tx timeout [ 83.505230] Bluetooth: hci3: command 0x0419 tx timeout [ 83.569232] Bluetooth: hci2: command 0x0419 tx timeout [ 83.633290] Bluetooth: hci6: command 0x0419 tx timeout [ 83.633757] Bluetooth: hci5: command 0x0419 tx timeout [ 127.112764] ieee802154 phy0 wpan0: encryption failed: -22 [ 127.130992] ieee802154 phy0 wpan0: encryption failed: -22 00:38:13 executing program 5: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) getpgrp(0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/rt6_stats\x00') r3 = eventfd2(0x1, 0x0) close(r3) ioctl$int_in(r3, 0x5421, &(0x7f0000000080)=0x7) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000001600)=ANY=[@ANYBLOB="00000d4484491d534fa508b46eb28742c1cda5000036000000ecb4f05a8924627cbd7c827740700c750ae2592ad8bcdc2e22ad3b5b52c83585b1e07f9a6f208fc3486a2fdd55231cc5ed7dd4d5000000", @ANYRES32, @ANYBLOB="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"]) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180), &(0x7f0000000340)=0xffffffffffffffde) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x5) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) mq_timedreceive(r0, &(0x7f0000001540)=""/158, 0x9e, 0x100000001, &(0x7f0000000140)={0x77359400}) sendfile(r1, r0, 0x0, 0x80000001) r4 = creat(&(0x7f0000001480)='./file1\x00', 0x8) ioctl$sock_SIOCGSKNS(r4, 0x894c, &(0x7f0000000380)=0x8) clone3(&(0x7f00000014c0)={0xd00, &(0x7f0000000300), 0x0, 0x0, {0x41}, &(0x7f00000003c0)=""/97, 0x61, &(0x7f0000000440)=""/4096, &(0x7f00000001c0)=[0x0, 0x0, 0x0], 0x3, {r4}}, 0x58) [ 127.242831] audit: type=1400 audit(1663720693.053:7): avc: denied { open } for pid=3670 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.244230] audit: type=1400 audit(1663720693.053:8): avc: denied { kernel } for pid=3670 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.262031] hrtimer: interrupt took 27441 ns [ 127.263641] ------------[ cut here ]------------ [ 127.263676] [ 127.263681] ====================================================== [ 127.263688] WARNING: possible circular locking dependency detected [ 127.263696] 6.0.0-rc6-next-20220920 #1 Not tainted [ 127.263710] ------------------------------------------------------ [ 127.263716] syz-executor.5/3671 is trying to acquire lock: [ 127.263730] ffffffff853faab8 ((console_sem).lock){-...}-{2:2}, at: down_trylock+0xe/0x70 [ 127.263801] [ 127.263801] but task is already holding lock: [ 127.263808] ffff888009a68c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.263867] [ 127.263867] which lock already depends on the new lock. [ 127.263867] [ 127.263873] [ 127.263873] the existing dependency chain (in reverse order) is: [ 127.263880] [ 127.263880] -> #3 (&ctx->lock){....}-{2:2}: [ 127.263910] _raw_spin_lock+0x2a/0x40 [ 127.263981] __perf_event_task_sched_out+0x53b/0x18d0 [ 127.264009] __schedule+0xedd/0x2470 [ 127.264036] preempt_schedule_common+0x45/0xc0 [ 127.264066] __cond_resched+0x17/0x30 [ 127.264094] __mutex_lock+0xa3/0x14d0 [ 127.264124] __do_sys_perf_event_open+0x1eec/0x32c0 [ 127.264152] do_syscall_64+0x3b/0x90 [ 127.264186] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.264229] [ 127.264229] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 127.264259] _raw_spin_lock_nested+0x30/0x40 [ 127.264297] raw_spin_rq_lock_nested+0x1e/0x30 [ 127.264324] task_fork_fair+0x63/0x4d0 [ 127.264360] sched_cgroup_fork+0x3d0/0x540 [ 127.264391] copy_process+0x4183/0x6e20 [ 127.264413] kernel_clone+0xe7/0x890 [ 127.264434] user_mode_thread+0xad/0xf0 [ 127.264457] rest_init+0x24/0x250 [ 127.264479] arch_call_rest_init+0xf/0x14 [ 127.264509] start_kernel+0x4c1/0x4e6 [ 127.264536] secondary_startup_64_no_verify+0xe0/0xeb [ 127.264565] [ 127.264565] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 127.264595] _raw_spin_lock_irqsave+0x39/0x60 [ 127.264634] try_to_wake_up+0xab/0x1930 [ 127.264663] up+0x75/0xb0 [ 127.264688] __up_console_sem+0x6e/0x80 [ 127.264722] console_unlock+0x46a/0x590 [ 127.264757] do_con_write+0xc05/0x1d50 [ 127.264781] con_write+0x21/0x40 [ 127.264800] n_tty_write+0x4d4/0xfe0 [ 127.264825] file_tty_write.constprop.0+0x49c/0x8f0 [ 127.264850] vfs_write+0x9c3/0xd90 [ 127.264884] ksys_write+0x127/0x250 [ 127.264917] do_syscall_64+0x3b/0x90 [ 127.264947] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.264985] [ 127.264985] -> #0 ((console_sem).lock){-...}-{2:2}: [ 127.265012] __lock_acquire+0x2a02/0x5e70 [ 127.265044] lock_acquire+0x1a2/0x530 [ 127.265075] _raw_spin_lock_irqsave+0x39/0x60 [ 127.265109] down_trylock+0xe/0x70 [ 127.265134] __down_trylock_console_sem+0x3b/0xd0 [ 127.265165] vprintk_emit+0x16b/0x560 [ 127.265197] vprintk+0x84/0xa0 [ 127.265229] _printk+0xba/0xf1 [ 127.265248] report_bug.cold+0x72/0xab [ 127.265277] handle_bug+0x3c/0x70 [ 127.265306] exc_invalid_op+0x14/0x50 [ 127.265337] asm_exc_invalid_op+0x16/0x20 [ 127.265357] group_sched_out.part.0+0x2c7/0x460 [ 127.265378] ctx_sched_out+0x8f1/0xc10 [ 127.265398] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.265423] __schedule+0xedd/0x2470 [ 127.265447] preempt_schedule_common+0x45/0xc0 [ 127.265473] __cond_resched+0x17/0x30 [ 127.265498] __mutex_lock+0xa3/0x14d0 [ 127.265524] __do_sys_perf_event_open+0x1eec/0x32c0 [ 127.265550] do_syscall_64+0x3b/0x90 [ 127.265580] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.265618] [ 127.265618] other info that might help us debug this: [ 127.265618] [ 127.265623] Chain exists of: [ 127.265623] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 127.265623] [ 127.265652] Possible unsafe locking scenario: [ 127.265652] [ 127.265656] CPU0 CPU1 [ 127.265660] ---- ---- [ 127.265665] lock(&ctx->lock); [ 127.265675] lock(&rq->__lock); [ 127.265688] lock(&ctx->lock); [ 127.265700] lock((console_sem).lock); [ 127.265711] [ 127.265711] *** DEADLOCK *** [ 127.265711] [ 127.265715] 2 locks held by syz-executor.5/3671: [ 127.265728] #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 127.265784] #1: ffff888009a68c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.265842] [ 127.265842] stack backtrace: [ 127.265846] CPU: 1 PID: 3671 Comm: syz-executor.5 Not tainted 6.0.0-rc6-next-20220920 #1 [ 127.265871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.265886] Call Trace: [ 127.265892] [ 127.265899] dump_stack_lvl+0x8b/0xb3 [ 127.265932] check_noncircular+0x263/0x2e0 [ 127.265965] ? format_decode+0x26c/0xb50 [ 127.265994] ? print_circular_bug+0x450/0x450 [ 127.266028] ? enable_ptr_key_workfn+0x20/0x20 [ 127.266056] ? __lockdep_reset_lock+0x180/0x180 [ 127.266090] ? format_decode+0x26c/0xb50 [ 127.266122] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 127.266157] __lock_acquire+0x2a02/0x5e70 [ 127.266200] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 127.266245] lock_acquire+0x1a2/0x530 [ 127.266278] ? down_trylock+0xe/0x70 [ 127.266307] ? lock_release+0x750/0x750 [ 127.266347] ? vprintk+0x84/0xa0 [ 127.266383] _raw_spin_lock_irqsave+0x39/0x60 [ 127.266418] ? down_trylock+0xe/0x70 [ 127.266445] down_trylock+0xe/0x70 [ 127.266472] ? vprintk+0x84/0xa0 [ 127.266505] __down_trylock_console_sem+0x3b/0xd0 [ 127.266539] vprintk_emit+0x16b/0x560 [ 127.266577] vprintk+0x84/0xa0 [ 127.266611] _printk+0xba/0xf1 [ 127.266632] ? record_print_text.cold+0x16/0x16 [ 127.266657] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 127.266684] ? lock_downgrade+0x6d0/0x6d0 [ 127.266719] ? report_bug.cold+0x66/0xab [ 127.266752] ? group_sched_out.part.0+0x2c7/0x460 [ 127.266775] report_bug.cold+0x72/0xab [ 127.266810] handle_bug+0x3c/0x70 [ 127.266841] exc_invalid_op+0x14/0x50 [ 127.266874] asm_exc_invalid_op+0x16/0x20 [ 127.266896] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.266923] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 0b 13 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.266945] RSP: 0018:ffff888034bb7978 EFLAGS: 00010006 [ 127.266963] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.266978] RDX: ffff888008c45040 RSI: ffffffff815662c7 RDI: 0000000000000005 [ 127.266993] RBP: ffff88801a4e8000 R08: 0000000000000005 R09: 0000000000000001 [ 127.267008] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888009a68c00 [ 127.267022] R13: ffff88806cf3d140 R14: ffffffff8547c820 R15: 0000000000000002 [ 127.267044] ? group_sched_out.part.0+0x2c7/0x460 [ 127.267071] ? group_sched_out.part.0+0x2c7/0x460 [ 127.267097] ctx_sched_out+0x8f1/0xc10 [ 127.267123] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.267154] ? lock_is_held_type+0xd7/0x130 [ 127.267179] ? __perf_cgroup_move+0x160/0x160 [ 127.267203] ? set_next_entity+0x304/0x550 [ 127.267237] ? update_curr+0x267/0x740 [ 127.267274] ? lock_is_held_type+0xd7/0x130 [ 127.267299] __schedule+0xedd/0x2470 [ 127.267329] ? io_schedule_timeout+0x150/0x150 [ 127.267357] ? find_held_lock+0x2c/0x110 [ 127.267389] ? lock_is_held_type+0xd7/0x130 [ 127.267412] ? __cond_resched+0x17/0x30 [ 127.267439] preempt_schedule_common+0x45/0xc0 [ 127.267469] __cond_resched+0x17/0x30 [ 127.267495] __mutex_lock+0xa3/0x14d0 [ 127.267526] ? lock_is_held_type+0xd7/0x130 [ 127.267548] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 127.267578] ? mutex_lock_io_nested+0x1310/0x1310 [ 127.267608] ? lock_release+0x3b2/0x750 [ 127.267642] ? __up_read+0x192/0x730 [ 127.267671] ? up_write+0x480/0x480 [ 127.267700] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 127.267741] __do_sys_perf_event_open+0x1eec/0x32c0 [ 127.267774] ? __up_read+0x192/0x730 [ 127.267802] ? perf_compat_ioctl+0x130/0x130 [ 127.267830] ? up_write+0x480/0x480 [ 127.267866] ? syscall_enter_from_user_mode+0x1d/0x50 [ 127.267891] ? syscall_enter_from_user_mode+0x1d/0x50 [ 127.267919] do_syscall_64+0x3b/0x90 [ 127.267960] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.267999] RIP: 0033:0x7f66d1d26b19 [ 127.268016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.268037] RSP: 002b:00007f66cf29c188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 127.268059] RAX: ffffffffffffffda RBX: 00007f66d1e39f60 RCX: 00007f66d1d26b19 [ 127.268074] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 127.268089] RBP: 00007f66d1d80f6d R08: 0000000000000000 R09: 0000000000000000 [ 127.268104] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 127.268118] R13: 00007ffe8067c28f R14: 00007f66cf29c300 R15: 0000000000022000 [ 127.268144] [ 127.390679] WARNING: CPU: 1 PID: 3671 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 127.391947] Modules linked in: [ 127.392415] CPU: 1 PID: 3671 Comm: syz-executor.5 Not tainted 6.0.0-rc6-next-20220920 #1 [ 127.393530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.395088] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.395840] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 0b 13 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.398356] RSP: 0018:ffff888034bb7978 EFLAGS: 00010006 [ 127.399072] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.400073] RDX: ffff888008c45040 RSI: ffffffff815662c7 RDI: 0000000000000005 [ 127.401059] RBP: ffff88801a4e8000 R08: 0000000000000005 R09: 0000000000000001 [ 127.402068] R10: 0000000000000000 R11: 0000000000000001 R12: ffff888009a68c00 [ 127.403061] R13: ffff88806cf3d140 R14: ffffffff8547c820 R15: 0000000000000002 [ 127.404075] FS: 00007f66cf29c700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 127.405207] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.406031] CR2: 00007f7db2ced260 CR3: 0000000040206000 CR4: 0000000000350ee0 [ 127.407036] Call Trace: [ 127.407403] [ 127.407735] ctx_sched_out+0x8f1/0xc10 [ 127.408315] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.409051] ? lock_is_held_type+0xd7/0x130 [ 127.409674] ? __perf_cgroup_move+0x160/0x160 [ 127.410321] ? set_next_entity+0x304/0x550 [ 127.410936] ? update_curr+0x267/0x740 [ 127.411517] ? lock_is_held_type+0xd7/0x130 [ 127.412144] __schedule+0xedd/0x2470 [ 127.412695] ? io_schedule_timeout+0x150/0x150 [ 127.413343] ? find_held_lock+0x2c/0x110 [ 127.413931] ? lock_is_held_type+0xd7/0x130 [ 127.414549] ? __cond_resched+0x17/0x30 [ 127.415124] preempt_schedule_common+0x45/0xc0 [ 127.415790] __cond_resched+0x17/0x30 [ 127.416344] __mutex_lock+0xa3/0x14d0 [ 127.416906] ? lock_is_held_type+0xd7/0x130 [ 127.417527] ? __do_sys_perf_event_open+0x1eec/0x32c0 [ 127.418279] ? mutex_lock_io_nested+0x1310/0x1310 [ 127.418980] ? lock_release+0x3b2/0x750 [ 127.419574] ? __up_read+0x192/0x730 [ 127.420146] ? up_write+0x480/0x480 [ 127.420682] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 127.421428] __do_sys_perf_event_open+0x1eec/0x32c0 [ 127.422160] ? __up_read+0x192/0x730 [ 127.422708] ? perf_compat_ioctl+0x130/0x130 [ 127.423347] ? up_write+0x480/0x480 [ 127.423895] ? syscall_enter_from_user_mode+0x1d/0x50 [ 127.424638] ? syscall_enter_from_user_mode+0x1d/0x50 [ 127.425395] do_syscall_64+0x3b/0x90 [ 127.425959] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.426726] RIP: 0033:0x7f66d1d26b19 [ 127.427266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.429874] RSP: 002b:00007f66cf29c188 EFLAGS: 00000246 ORIG_RAX: 000000000000012a [ 127.430936] RAX: ffffffffffffffda RBX: 00007f66d1e39f60 RCX: 00007f66d1d26b19 [ 127.431959] RDX: ffffffffffffffff RSI: 0000000000000000 RDI: 0000000020000280 [ 127.432982] RBP: 00007f66d1d80f6d R08: 0000000000000000 R09: 0000000000000000 [ 127.434029] R10: ffffffffffffffff R11: 0000000000000246 R12: 0000000000000000 [ 127.435067] R13: 00007ffe8067c28f R14: 00007f66cf29c300 R15: 0000000000022000 [ 127.436125] [ 127.436478] irq event stamp: 452 [ 127.436970] hardirqs last enabled at (451): [] _raw_spin_unlock_irqrestore+0x28/0x60 [ 127.438345] hardirqs last disabled at (452): [] __schedule+0x1225/0x2470 [ 127.439547] softirqs last enabled at (320): [] __irq_exit_rcu+0x11b/0x180 [ 127.440759] softirqs last disabled at (311): [] __irq_exit_rcu+0x11b/0x180 [ 127.442000] ---[ end trace 0000000000000000 ]--- 00:38:13 executing program 5: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) getpgrp(0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/rt6_stats\x00') r3 = eventfd2(0x1, 0x0) close(r3) ioctl$int_in(r3, 0x5421, &(0x7f0000000080)=0x7) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000001600)=ANY=[@ANYBLOB="00000d4484491d534fa508b46eb28742c1cda5000036000000ecb4f05a8924627cbd7c827740700c750ae2592ad8bcdc2e22ad3b5b52c83585b1e07f9a6f208fc3486a2fdd55231cc5ed7dd4d5000000", @ANYRES32, @ANYBLOB="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"]) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180), &(0x7f0000000340)=0xffffffffffffffde) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x5) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) mq_timedreceive(r0, &(0x7f0000001540)=""/158, 0x9e, 0x100000001, &(0x7f0000000140)={0x77359400}) sendfile(r1, r0, 0x0, 0x80000001) r4 = creat(&(0x7f0000001480)='./file1\x00', 0x8) ioctl$sock_SIOCGSKNS(r4, 0x894c, &(0x7f0000000380)=0x8) clone3(&(0x7f00000014c0)={0xd00, &(0x7f0000000300), 0x0, 0x0, {0x41}, &(0x7f00000003c0)=""/97, 0x61, &(0x7f0000000440)=""/4096, &(0x7f00000001c0)=[0x0, 0x0, 0x0], 0x3, {r4}}, 0x58) 00:38:13 executing program 4: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) getpgrp(0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/rt6_stats\x00') r3 = eventfd2(0x1, 0x0) close(r3) ioctl$int_in(r3, 0x5421, &(0x7f0000000080)=0x7) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000001600)=ANY=[@ANYBLOB="00000d4484491d534fa508b46eb28742c1cda5000036000000ecb4f05a8924627cbd7c827740700c750ae2592ad8bcdc2e22ad3b5b52c83585b1e07f9a6f208fc3486a2fdd55231cc5ed7dd4d5000000", @ANYRES32, @ANYBLOB="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"]) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180), &(0x7f0000000340)=0xffffffffffffffde) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x5) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) mq_timedreceive(r0, &(0x7f0000001540)=""/158, 0x9e, 0x100000001, &(0x7f0000000140)={0x77359400}) sendfile(r1, r0, 0x0, 0x80000001) r4 = creat(&(0x7f0000001480)='./file1\x00', 0x8) ioctl$sock_SIOCGSKNS(r4, 0x894c, &(0x7f0000000380)=0x8) clone3(&(0x7f00000014c0)={0xd00, &(0x7f0000000300), 0x0, 0x0, {0x41}, &(0x7f00000003c0)=""/97, 0x61, &(0x7f0000000440)=""/4096, &(0x7f00000001c0)=[0x0, 0x0, 0x0], 0x3, {r4}}, 0x58) 00:38:13 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000b8c5c4d1b3cf4b38ab2e2967fb770ff3010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000d4f4655fd4f4655fd4f4655f000000000000040040", 0x1d, 0x2080}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}], 0x0, &(0x7f0000012f00)) r0 = epoll_create(0x4) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0x20000000}) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000)) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000001700)={0x0, 0x0, 0x0, 0x7, 0xffffffffffffff37, 0x0, 0x12, 0xc, 0x0, "23c2d80353e2f6a33c3e59015505ac0d65bc8b584c0564cf1252925367d826dee4aed502dc498a3d5c028f7b69f143afd05a4631a6ae553f096dd6e8a33af795", "970da5fd2a5ca37306ba38b5bc51fbc98a6fdf16294e20401cf1632175cc9150dad985aa02040d9d566fd3881b67dd89a5da4c3da629ed5abc60dce05e0c79f8", "367043bc1c4a0680996102355937587a7b0008000000000000035f223600", [0x1a5, 0x1]}) openat2(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)={0xc0001, 0x104, 0x4}, 0x18) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@random={'osx.', 'ext4\x00'}) [ 127.861650] loop5: detected capacity change from 0 to 2048 [ 127.919186] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 127.920850] ext4 filesystem being mounted at /syzkaller-testdir583254299/syzkaller.kPap35/3/file0 supports timestamps until 2038 (0x7fffffff) [ 127.932808] audit: type=1400 audit(1663720693.743:9): avc: denied { block_suspend } for pid=3709 comm="syz-executor.5" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 00:38:13 executing program 4: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r0, &(0x7f0000000240)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) getpgrp(0x0) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/rt6_stats\x00') r3 = eventfd2(0x1, 0x0) close(r3) ioctl$int_in(r3, 0x5421, &(0x7f0000000080)=0x7) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r2, 0xc0189375, &(0x7f0000001600)=ANY=[@ANYBLOB="00000d4484491d534fa508b46eb28742c1cda5000036000000ecb4f05a8924627cbd7c827740700c750ae2592ad8bcdc2e22ad3b5b52c83585b1e07f9a6f208fc3486a2fdd55231cc5ed7dd4d5000000", @ANYRES32, @ANYBLOB="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"]) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000180), &(0x7f0000000340)=0xffffffffffffffde) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x5) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) mq_timedreceive(r0, &(0x7f0000001540)=""/158, 0x9e, 0x100000001, &(0x7f0000000140)={0x77359400}) sendfile(r1, r0, 0x0, 0x80000001) r4 = creat(&(0x7f0000001480)='./file1\x00', 0x8) ioctl$sock_SIOCGSKNS(r4, 0x894c, &(0x7f0000000380)=0x8) clone3(&(0x7f00000014c0)={0xd00, &(0x7f0000000300), 0x0, 0x0, {0x41}, &(0x7f00000003c0)=""/97, 0x61, &(0x7f0000000440)=""/4096, &(0x7f00000001c0)=[0x0, 0x0, 0x0], 0x3, {r4}}, 0x58) 00:38:14 executing program 4: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0x40305839, &(0x7f0000000080)=ANY=[@ANYBLOB="0600000000007cd181000000000600000089"]) pwrite64(r1, &(0x7f0000000140)="01", 0x1, 0x7fff) pwrite64(r1, &(0x7f0000000180)="01", 0x1, 0x1000) r2 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0) fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000040)) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f0000000180)={0x0, {}, 0x0, {}, 0xffffffff, 0x12, 0x9, 0x18, "0c085ee0d43737c7cce643311ec9d0b00b3e0eb0fd5250c5cd319444c5638d84f87683c5b18016b00b3a518f9239394dfd4370da74470a7db67281a92b689c2b", "f0f8f1a18f98bc2c801089c9c49ed0283be50f8eafce21d32f972cf2a96eed7d", [0x7]}) finit_module(r2, &(0x7f0000000000)='\x00', 0x2) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000240)=0x9) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) 00:38:14 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x6, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000008000000018000000c20500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000b8c5c4d1b3cf4b38ab2e2967fb770ff3010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="010000000000050040", 0x9, 0x560}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011500)="ed41000000080000d4f4655fd4f4655fd4f4655f000000000000040040", 0x1d, 0x2080}, {&(0x7f0000012400)="504d4d00504d4dff", 0x8, 0x20000}], 0x0, &(0x7f0000012f00)) r0 = epoll_create(0x4) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000240)={0x20000000}) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000)) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000001700)={0x0, 0x0, 0x0, 0x7, 0xffffffffffffff37, 0x0, 0x12, 0xc, 0x0, "23c2d80353e2f6a33c3e59015505ac0d65bc8b584c0564cf1252925367d826dee4aed502dc498a3d5c028f7b69f143afd05a4631a6ae553f096dd6e8a33af795", "970da5fd2a5ca37306ba38b5bc51fbc98a6fdf16294e20401cf1632175cc9150dad985aa02040d9d566fd3881b67dd89a5da4c3da629ed5abc60dce05e0c79f8", "367043bc1c4a0680996102355937587a7b0008000000000000035f223600", [0x1a5, 0x1]}) openat2(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)={0xc0001, 0x104, 0x4}, 0x18) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@random={'osx.', 'ext4\x00'}) [ 128.424190] EXT4-fs (loop5): unmounting filesystem. [ 128.497241] audit: type=1400 audit(1663720694.307:10): avc: denied { write } for pid=3748 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 128.512868] loop5: detected capacity change from 0 to 2048 [ 128.553551] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 128.556132] ext4 filesystem being mounted at /syzkaller-testdir583254299/syzkaller.kPap35/4/file0 supports timestamps until 2038 (0x7fffffff) 00:38:14 executing program 4: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0x40305839, &(0x7f0000000080)=ANY=[@ANYBLOB="0600000000007cd181000000000600000089"]) pwrite64(r1, &(0x7f0000000140)="01", 0x1, 0x7fff) pwrite64(r1, &(0x7f0000000180)="01", 0x1, 0x1000) r2 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0) fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000000040)) ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f0000000180)={0x0, {}, 0x0, {}, 0xffffffff, 0x12, 0x9, 0x18, "0c085ee0d43737c7cce643311ec9d0b00b3e0eb0fd5250c5cd319444c5638d84f87683c5b18016b00b3a518f9239394dfd4370da74470a7db67281a92b689c2b", "f0f8f1a18f98bc2c801089c9c49ed0283be50f8eafce21d32f972cf2a96eed7d", [0x7]}) finit_module(r2, &(0x7f0000000000)='\x00', 0x2) ioctl$FS_IOC_SETVERSION(r0, 0x40087602, &(0x7f0000000240)=0x9) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612) [ 128.697618] EXT4-fs (loop5): unmounting filesystem. VM DIAGNOSIS: 00:38:13 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=ffff88803ff8f8c8 RCX=0000000000000000 RDX=1ffff110012e4b49 RSI=ffffffff817f1844 RDI=ffff88803ff8f8d4 RBP=ffff888009725a48 RSP=ffff88803ff8f7e0 R8 =ffffffff85ec8d82 R9 =ffffffff85ec8d86 R10=ffffed1007ff1f0d R11=ffff88803ff8f840 R12=ffff88803ff8f8c8 R13=0000000000000000 R14=ffff88800f5e5040 R15=ffff888009725950 RIP=ffffffff8135ae13 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f69e73096f4 CR3=0000000040f2a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f69e7318470 00007f69e7317f20 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 756e20796d6d7564 20736e6f6974706f YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 73253d656d616e6c 6165722073253d73 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1551 RDI=ffffffff87643ba0 RBP=ffffffff87643b60 RSP=ffff888034bb73c8 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001 R12=000000000000002e R13=ffffffff87643b60 R14=0000000000000010 R15=ffffffff822b1540 RIP=ffffffff822b15a9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f66cf29c700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f7db2ced260 CR3=0000000040206000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000