Warning: Permanently added '[localhost]:29312' (ECDSA) to the list of known hosts. 2022/09/21 14:41:14 fuzzer started 2022/09/21 14:41:14 dialing manager at localhost:40289 syzkaller login: [ 40.402213] cgroup: Unknown subsys name 'net' [ 40.477850] cgroup: Unknown subsys name 'rlimit' 2022/09/21 14:41:27 syscalls: 2215 2022/09/21 14:41:27 code coverage: enabled 2022/09/21 14:41:27 comparison tracing: enabled 2022/09/21 14:41:27 extra coverage: enabled 2022/09/21 14:41:27 setuid sandbox: enabled 2022/09/21 14:41:27 namespace sandbox: enabled 2022/09/21 14:41:27 Android sandbox: enabled 2022/09/21 14:41:27 fault injection: enabled 2022/09/21 14:41:27 leak checking: enabled 2022/09/21 14:41:27 net packet injection: enabled 2022/09/21 14:41:27 net device setup: enabled 2022/09/21 14:41:27 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/21 14:41:27 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/21 14:41:27 USB emulation: enabled 2022/09/21 14:41:27 hci packet injection: enabled 2022/09/21 14:41:27 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220921) 2022/09/21 14:41:27 802.15.4 emulation: enabled 2022/09/21 14:41:28 fetching corpus: 50, signal 38378/40071 (executing program) 2022/09/21 14:41:28 fetching corpus: 100, signal 43663/46912 (executing program) 2022/09/21 14:41:28 fetching corpus: 150, signal 56529/61034 (executing program) 2022/09/21 14:41:28 fetching corpus: 200, signal 61426/67261 (executing program) 2022/09/21 14:41:28 fetching corpus: 250, signal 67835/74835 (executing program) 2022/09/21 14:41:28 fetching corpus: 300, signal 73655/81720 (executing program) 2022/09/21 14:41:28 fetching corpus: 350, signal 78390/87466 (executing program) 2022/09/21 14:41:28 fetching corpus: 400, signal 82116/92174 (executing program) 2022/09/21 14:41:28 fetching corpus: 450, signal 85338/96391 (executing program) 2022/09/21 14:41:29 fetching corpus: 500, signal 89344/101317 (executing program) 2022/09/21 14:41:29 fetching corpus: 550, signal 91545/104470 (executing program) 2022/09/21 14:41:29 fetching corpus: 600, signal 96105/109713 (executing program) 2022/09/21 14:41:29 fetching corpus: 650, signal 100505/114697 (executing program) 2022/09/21 14:41:29 fetching corpus: 700, signal 103202/118161 (executing program) 2022/09/21 14:41:29 fetching corpus: 750, signal 105864/121534 (executing program) 2022/09/21 14:41:29 fetching corpus: 800, signal 107682/124166 (executing program) 2022/09/21 14:41:30 fetching corpus: 850, signal 109832/127000 (executing program) 2022/09/21 14:41:30 fetching corpus: 900, signal 111665/129565 (executing program) 2022/09/21 14:41:30 fetching corpus: 950, signal 113595/132198 (executing program) 2022/09/21 14:41:30 fetching corpus: 1000, signal 116908/136015 (executing program) 2022/09/21 14:41:30 fetching corpus: 1050, signal 118806/138435 (executing program) 2022/09/21 14:41:30 fetching corpus: 1100, signal 120536/140734 (executing program) 2022/09/21 14:41:30 fetching corpus: 1150, signal 123439/143930 (executing program) 2022/09/21 14:41:30 fetching corpus: 1200, signal 124980/145985 (executing program) 2022/09/21 14:41:30 fetching corpus: 1250, signal 126323/147885 (executing program) 2022/09/21 14:41:31 fetching corpus: 1300, signal 127673/149725 (executing program) 2022/09/21 14:41:31 fetching corpus: 1350, signal 130496/152671 (executing program) 2022/09/21 14:41:31 fetching corpus: 1400, signal 132440/155018 (executing program) 2022/09/21 14:41:31 fetching corpus: 1450, signal 135004/157716 (executing program) 2022/09/21 14:41:31 fetching corpus: 1500, signal 136424/159536 (executing program) 2022/09/21 14:41:31 fetching corpus: 1550, signal 138064/161463 (executing program) 2022/09/21 14:41:31 fetching corpus: 1600, signal 139319/163078 (executing program) 2022/09/21 14:41:31 fetching corpus: 1650, signal 140440/164585 (executing program) 2022/09/21 14:41:32 fetching corpus: 1700, signal 141661/166151 (executing program) 2022/09/21 14:41:32 fetching corpus: 1750, signal 143551/168140 (executing program) 2022/09/21 14:41:32 fetching corpus: 1800, signal 144885/169745 (executing program) 2022/09/21 14:41:32 fetching corpus: 1850, signal 145842/171074 (executing program) 2022/09/21 14:41:32 fetching corpus: 1900, signal 148332/173311 (executing program) 2022/09/21 14:41:32 fetching corpus: 1950, signal 149790/174894 (executing program) 2022/09/21 14:41:32 fetching corpus: 2000, signal 151539/176617 (executing program) 2022/09/21 14:41:32 fetching corpus: 2050, signal 152838/178109 (executing program) 2022/09/21 14:41:33 fetching corpus: 2100, signal 154233/179584 (executing program) 2022/09/21 14:41:33 fetching corpus: 2150, signal 155712/181109 (executing program) 2022/09/21 14:41:33 fetching corpus: 2200, signal 156878/182368 (executing program) 2022/09/21 14:41:33 fetching corpus: 2250, signal 158151/183730 (executing program) 2022/09/21 14:41:33 fetching corpus: 2300, signal 159434/185055 (executing program) 2022/09/21 14:41:33 fetching corpus: 2350, signal 161040/186465 (executing program) 2022/09/21 14:41:33 fetching corpus: 2400, signal 161848/187463 (executing program) 2022/09/21 14:41:34 fetching corpus: 2450, signal 162832/188495 (executing program) 2022/09/21 14:41:34 fetching corpus: 2500, signal 164035/189719 (executing program) 2022/09/21 14:41:34 fetching corpus: 2550, signal 165354/190940 (executing program) 2022/09/21 14:41:34 fetching corpus: 2600, signal 166487/192069 (executing program) 2022/09/21 14:41:34 fetching corpus: 2650, signal 167727/193164 (executing program) 2022/09/21 14:41:34 fetching corpus: 2700, signal 169017/194339 (executing program) 2022/09/21 14:41:34 fetching corpus: 2750, signal 169890/195228 (executing program) 2022/09/21 14:41:34 fetching corpus: 2800, signal 171121/196282 (executing program) 2022/09/21 14:41:35 fetching corpus: 2850, signal 171799/197112 (executing program) 2022/09/21 14:41:35 fetching corpus: 2900, signal 172796/198029 (executing program) 2022/09/21 14:41:35 fetching corpus: 2950, signal 174151/199127 (executing program) 2022/09/21 14:41:35 fetching corpus: 3000, signal 175252/199996 (executing program) 2022/09/21 14:41:35 fetching corpus: 3050, signal 176483/201003 (executing program) 2022/09/21 14:41:35 fetching corpus: 3100, signal 176979/201614 (executing program) 2022/09/21 14:41:35 fetching corpus: 3150, signal 177921/202406 (executing program) 2022/09/21 14:41:36 fetching corpus: 3200, signal 178710/203124 (executing program) 2022/09/21 14:41:36 fetching corpus: 3250, signal 179917/204014 (executing program) 2022/09/21 14:41:36 fetching corpus: 3300, signal 180667/204679 (executing program) 2022/09/21 14:41:36 fetching corpus: 3350, signal 181607/205413 (executing program) 2022/09/21 14:41:36 fetching corpus: 3400, signal 182185/205989 (executing program) 2022/09/21 14:41:36 fetching corpus: 3450, signal 183123/206728 (executing program) 2022/09/21 14:41:36 fetching corpus: 3500, signal 184268/207446 (executing program) 2022/09/21 14:41:37 fetching corpus: 3550, signal 185921/208336 (executing program) 2022/09/21 14:41:37 fetching corpus: 3600, signal 186402/208798 (executing program) 2022/09/21 14:41:37 fetching corpus: 3650, signal 187410/209446 (executing program) 2022/09/21 14:41:37 fetching corpus: 3700, signal 188554/210231 (executing program) 2022/09/21 14:41:37 fetching corpus: 3750, signal 189307/210754 (executing program) 2022/09/21 14:41:37 fetching corpus: 3800, signal 189776/211203 (executing program) 2022/09/21 14:41:37 fetching corpus: 3850, signal 190401/211606 (executing program) 2022/09/21 14:41:37 fetching corpus: 3900, signal 190862/211998 (executing program) 2022/09/21 14:41:38 fetching corpus: 3950, signal 192322/212949 (executing program) 2022/09/21 14:41:38 fetching corpus: 4000, signal 192895/213346 (executing program) 2022/09/21 14:41:38 fetching corpus: 4050, signal 194361/214027 (executing program) 2022/09/21 14:41:38 fetching corpus: 4100, signal 195054/214454 (executing program) 2022/09/21 14:41:38 fetching corpus: 4150, signal 195747/214870 (executing program) 2022/09/21 14:41:38 fetching corpus: 4200, signal 196862/215435 (executing program) 2022/09/21 14:41:38 fetching corpus: 4250, signal 198218/215942 (executing program) 2022/09/21 14:41:38 fetching corpus: 4300, signal 198840/216252 (executing program) 2022/09/21 14:41:38 fetching corpus: 4350, signal 199676/216615 (executing program) 2022/09/21 14:41:39 fetching corpus: 4400, signal 200208/216893 (executing program) 2022/09/21 14:41:39 fetching corpus: 4450, signal 200771/217201 (executing program) 2022/09/21 14:41:39 fetching corpus: 4500, signal 201755/217764 (executing program) 2022/09/21 14:41:39 fetching corpus: 4550, signal 202344/218001 (executing program) 2022/09/21 14:41:39 fetching corpus: 4600, signal 203204/218277 (executing program) 2022/09/21 14:41:39 fetching corpus: 4650, signal 204510/218621 (executing program) 2022/09/21 14:41:39 fetching corpus: 4700, signal 205339/218902 (executing program) 2022/09/21 14:41:40 fetching corpus: 4750, signal 206168/219129 (executing program) 2022/09/21 14:41:40 fetching corpus: 4800, signal 206987/219344 (executing program) 2022/09/21 14:41:40 fetching corpus: 4850, signal 207515/219519 (executing program) 2022/09/21 14:41:40 fetching corpus: 4900, signal 207928/219673 (executing program) 2022/09/21 14:41:40 fetching corpus: 4950, signal 208672/219851 (executing program) 2022/09/21 14:41:40 fetching corpus: 5000, signal 209271/219981 (executing program) 2022/09/21 14:41:40 fetching corpus: 5050, signal 210112/220193 (executing program) 2022/09/21 14:41:40 fetching corpus: 5100, signal 210712/220469 (executing program) 2022/09/21 14:41:40 fetching corpus: 5150, signal 211087/220578 (executing program) 2022/09/21 14:41:41 fetching corpus: 5200, signal 211684/220674 (executing program) 2022/09/21 14:41:41 fetching corpus: 5250, signal 212860/220762 (executing program) 2022/09/21 14:41:41 fetching corpus: 5300, signal 213352/220766 (executing program) 2022/09/21 14:41:41 fetching corpus: 5350, signal 214154/220792 (executing program) 2022/09/21 14:41:41 fetching corpus: 5386, signal 214565/220844 (executing program) 2022/09/21 14:41:41 fetching corpus: 5386, signal 214565/220844 (executing program) 2022/09/21 14:41:43 starting 8 fuzzer processes 14:41:43 executing program 0: ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000000)=0x0) r1 = signalfd(0xffffffffffffffff, &(0x7f0000000040)={[0xef6]}, 0x8) ioctl$BTRFS_IOC_SYNC(r1, 0x9408, 0x0) ioctl$EVIOCGVERSION(r1, 0x80044501, &(0x7f0000000080)=""/150) ioctl$TIOCGISO7816(r1, 0x80285442, &(0x7f0000000140)) clone3(&(0x7f00000012c0)={0x888000, &(0x7f0000000180), &(0x7f00000001c0), &(0x7f0000000200)=0x0, {0x18}, &(0x7f0000000240)=""/4096, 0x1000, &(0x7f0000001240)=""/44, &(0x7f0000001280)=[r0], 0x1, {r1}}, 0x58) ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f0000001380)={0x1, &(0x7f0000001340)=[{}]}) r3 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f00000013c0), 0x113301, 0x0) waitid$P_PIDFD(0x3, r3, &(0x7f0000001400), 0x20000000, &(0x7f0000001480)) r4 = fork() ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000001540)=r4) ioctl$TIOCSISO7816(r1, 0xc0285443, &(0x7f0000001580)={0x1, 0x8, 0x80, 0xfe, 0x7}) r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000015c0), 0x0, 0x0) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001640), r1) sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000001780)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001740)={&(0x7f0000001680)={0xac, r6, 0x8, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_FRAME={0x1e, 0x33, @deauth={@wo_ht={{0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x7f}, @device_b, @device_a, @initial, {0xc, 0x4}}, 0x1d, @void}}, @NL80211_ATTR_FRAME={0x1f, 0x33, @action_no_ack={@wo_ht={{0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x6}, @device_b, @broadcast, @from_mac=@broadcast, {0xf, 0x9}}, @ntf_ch_w={0x7, 0x0, 0x1}}}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x971}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xfffffffd}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2a}], @NL80211_ATTR_CSA_C_OFFSETS_TX={0x10, 0xcd, [0x0, 0x4, 0x372c, 0xd8d5, 0x1f, 0xfc78]}]}, 0xac}, 0x1, 0x0, 0x0, 0x1004}, 0x60000080) fork() prlimit64(r2, 0xd, &(0x7f00000017c0)={0x2, 0x5}, 0x0) r7 = pidfd_getfd(r5, r5, 0x0) ptrace$getregset(0x4204, 0x0, 0x200, &(0x7f00000018c0)={&(0x7f0000001800)=""/154, 0x9a}) ioctl$TCSBRKP(r7, 0x5425, 0x1) 14:41:43 executing program 1: sendmsg$inet(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000000)={0x2, 0x4e21, @remote}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000040)="8af6c12bba24da326c1dc2afe3b1", 0xe}, {&(0x7f0000000080)="ae9560563f893b32ff7f881e", 0xc}, {&(0x7f00000000c0)="a883ed9a389fc2252eb29f32ddb295d6adad09a64cf50f6e920e4a466a12e7a9fa8f72cd5fc81f74e3bdbed5802cb03412a604364f343fcc636bffbdbc76234ea4acce82c51ce2b0da70916d8b1d09dedcb47ccd53fb6b9924f56463a56a497f9da100f17f630671d6ba60d651046aafece6b4c2457def00138f87d99a2dc7113b74aaf9aeebcefbbf41f27a5ece839b04d9bf1b8b845737e95ca4838b7a12c28ac6409f11e0f6da506831bdf7a5fecb5c36e2af2f08b515334c57ad4345492302ffbd123d6840945db01ef86387ddbf6da2a92be7eef3a00a6a17da006b", 0xde}], 0x3, &(0x7f0000000200)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x3}}, @ip_retopts={{0x88, 0x0, 0x7, {[@cipso={0x86, 0x32, 0x3, [{0x2, 0xc, "c5f3401458fbdcee048c"}, {0x0, 0x9, "6b50bf1dc4741f"}, {0x2, 0x3, "19"}, {0x0, 0xa, "5caf0f7469f61c77"}, {0x7, 0xa, "d469e5b0836925a7"}]}, @rr={0x7, 0x7, 0xe, [@multicast1]}, @timestamp={0x44, 0x14, 0x16, 0x0, 0x7, [0x8, 0x4, 0x2, 0xffff3916]}, @noop, @noop, @rr={0x7, 0x23, 0x9, [@local, @initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010101, @dev={0xac, 0x14, 0x14, 0x12}, @loopback, @multicast1, @remote]}, @ra={0x94, 0x4}, @end]}}}, @ip_retopts={{0x14, 0x0, 0x7, {[@ra={0x94, 0x4}]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @dev={0xac, 0x14, 0x14, 0x16}}}}], 0xd8}, 0x409d0) r0 = creat(&(0x7f0000000340)='./file0\x00', 0x80) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000380), &(0x7f00000003c0)=0x30) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000400)) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000600), 0x881, 0x0) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x38, 0x2, 0x6, 0x801, 0x0, 0x0, {0xc, 0x0, 0x5}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0x3}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x3}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x20044845}, 0x20004091) lseek(r1, 0x8, 0x1) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000007c0)={'wlan1\x00', 0x0}) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000800)=0x0) r5 = syz_open_procfs$userns(0x0, &(0x7f0000000d00)) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000d40)={'wlan1\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000d80)={'wlan0\x00', 0x0}) ioctl$AUTOFS_DEV_IOCTL_FAIL(r1, 0xc0189377, &(0x7f0000000dc0)={{0x1, 0x1, 0x18, r0, {0x7f, 0x7}}, './file0/file0\x00'}) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e00)={0x68, r2, 0x800, 0x70bd2c, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x4d}, @val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_PID={0x8, 0x52, r4}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r5}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r7}, @NL80211_ATTR_NETNS_FD={0x8, 0xdb, r8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x6f}, @NL80211_ATTR_IFINDEX={0x8}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x401, 0x6d}}]}, 0x68}, 0x1, 0x0, 0x0, 0x20000000}, 0x20048811) sendmsg$802154_dgram(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000f00)="5d6fd6d836b7d3a78b4a5b5af53b8fcdc578a7fb1fc5548f76a707d854d07c6baa7ca3dadf0acaceb55fd2eb204e12e5d445167fbae35e6cd4ca66c9", 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x6000005) getsockopt$inet6_int(r0, 0x29, 0x3c, &(0x7f0000000fc0), &(0x7f0000001000)=0x4) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001140)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000001040)="a34b85957bead111b50976cee77b64d16184e497304e5eafa748db635c83576871b9d11ffe1c408ce7bffa50d3bda1acb1b6812e85b2e833d466520f3e622ba948955a99a35516b7e67d0d71a0ede8892744d5a22e476ae9718984da49d0ab185a5901f94d1a889a6b053818f80929a150cdb87a8cf5083affe753b1118d714e9be840d66f6d793b643649e9b39dbf7ec023525cba464315cfe9c5b8b455137496d84a44833c20334d6f1a50e716ce76a4c5bd16eb2d36d1a41e662d4efdefe1a4", 0xc1}, 0x68) r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x4, 0x810, r1, 0x10000000) syz_io_uring_submit(0x0, r9, &(0x7f0000001200)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x2, 0x0, 0x9, 0x1, &(0x7f00000011c0)="56713aa818fd329c0c07b0602b23acd7155691", 0x29e, 0x0, 0x1, {0x3}}, 0x3) 14:41:43 executing program 2: sendmsg$NL802154_CMD_SET_CCA_MODE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x20, 0x0, 0x1, 0x70bd28, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4014) r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x7c, r0, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_RATE_SAMPLE_INTERVAL={0x8, 0x17, 0x80}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0x8}, @ETHTOOL_A_COALESCE_HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}, @ETHTOOL_A_COALESCE_USE_ADAPTIVE_RX={0x5, 0xb, 0x1}, @ETHTOOL_A_COALESCE_RX_MAX_FRAMES={0x8, 0x3, 0x18be}, @ETHTOOL_A_COALESCE_PKT_RATE_HIGH={0x8, 0x12, 0x401}, @ETHTOOL_A_COALESCE_PKT_RATE_HIGH={0x8, 0x12, 0x3}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_IRQ={0x8, 0x9, 0x4}]}, 0x7c}, 0x1, 0x0, 0x0, 0x40}, 0x4085) sendmsg$TIPC_NL_MON_PEER_GET(0xffffffffffffffff, &(0x7f0000000a00)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000009c0)={&(0x7f00000002c0)={0x6d8, 0x0, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xffff}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x61}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x7ff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x9}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x328a}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7f}]}, @TIPC_NLA_NODE={0x154, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xb5, 0x3, "d715f9526207a228b71cae1cee69671b2334bf2b36b2ef326da36bfb980c59d431b4e9afa65b32b8194611782e37375ee377ecab4f274200feef82ff0b238fe57b5597f158336b190c44b538444be581b53e629cbd9cc6b8a6f71f869a68ee7a2a2376659cd4eb0cc04bcac78a30ca43ee5b891a9a48218ecd1ce064dfd5c2c627a2de5187f4a3315a0e29cd6b8376c0ed5fc56a34299f3b42c68aea8d13a7b725d23bc6d6905b101a3c992c9b5d69a1b0"}, @TIPC_NLA_NODE_KEY={0x3e, 0x4, {'gcm(aes)\x00', 0x16, "41bfb163d65819e6bebc3cb0f8b66ebb9b5eaf839b02"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x49, 0x4, {'gcm(aes)\x00', 0x21, "8f14485a14d797611951748da5f2fddf43e9abf187c71a0c3be096b59638cc9b42"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x401}]}, @TIPC_NLA_MEDIA={0x64, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x88}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1c000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x45}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x100}]}]}, @TIPC_NLA_NODE={0x88, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x81, 0x3, "bd4a49fc92431f9ff3d26f4f6c1b28642dd8c0877f2991359a28cd7f2c57cd3b8e1d97a051c6c66fad2122894039aac7d85a4dbfb6070f8b71dbf260553271d1e20087d5e81f429ad4044f46ca13c02ace4e000dc127accdfd1df6c4770d1ff206d8deb59e611c17094f5f50198a36b70f5573f5e46a0a286d6a00c85d"}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x7}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xffff}]}, @TIPC_NLA_MEDIA={0xd4, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x388}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x62}]}, @TIPC_NLA_MEDIA_PROP={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xd798}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x20000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xaf8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe2a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10001}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}]}]}, @TIPC_NLA_NODE={0x26c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xc1, 0x3, "433b59a31ae89fdc88f0c74bef96642a82274b62b60087085848a455a8dfb1e910e884330db23f924c8db52d0583c877db95eecbcfd120b867e3b6044b00d15697e127a8223d6564d757d2a31cbd9d4327b2aa5b8afa223ef8f51b7b22f487b4824cd1d2bb13af35a671e5986a814d2c2bdcf9477b703c2a42dea4de87790f14c9586bb4ef7e5900ebfd0693690fbd6fa13664e3716a471180694de241390ff102bd2bf744f33b98cc20775c04966cfb21f0d021fab455911c2bf16791"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xd9, 0x3, "79272717bad15ca1e04b031023eba9151dfcbda02c761cb4dcfe805f25b8a7b5700f08ba0594b4c847cfb16c1933199a62ab0a86ac8020eda7c219e3e4d28cdd36423182cf8601f8a0f916aa40b0ee613936a1d6abe4f21380b50f56703d1f40df41d8afada17e02b96768c4231f4784de98aba4c8318bbc795dc857d0d4cb9244558034b56b41548be54fb5d2b11e9c8c8967f9e861e31b3391bf4c754fd901e9bf4272b3b72c63ea2375be8c288953e11540bc1fd8b41e5f37754e3e83fd4e54ee6e6e50a62a7cc57234e812552fc418e05ecde0"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x21, 0x3, "8bb594c0c88c967f86d1e571cbf91479b1fb292c3c6c2d2318a51a73c5"}, @TIPC_NLA_NODE_KEY={0x49, 0x4, {'gcm(aes)\x00', 0x21, "74b949be2e54cc0eff294f1e3329854699ceecce103e6d78ac876f05e331da87ae"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "b25c689859edba0c5529f9fdce47a7a10d04a8ead714ec1024e7b65db118aa"}}]}, @TIPC_NLA_LINK={0xa4, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6325}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5335}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80000001}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x800}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5b04}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_MEDIA={0x38, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}]}]}, 0x6d8}, 0x1, 0x0, 0x0, 0x2000c8c8}, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a80), 0xffffffffffffffff) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x20, r1, 0x20, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x7fffffff, 0x47}}}}, ["", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0xb8a970190c1f7078}, 0xb4b02fe1172adc7f) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000bc0)={'wpan4\x00', 0x0}) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000c00)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_SET_SHORT_ADDR(0xffffffffffffffff, &(0x7f0000000d00)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c40)={0x58, 0x0, 0x2, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xaaa0}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xffff}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x4048880) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000e80)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000d80)={0x84, r1, 0x100, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8000, 0x76}}}}, [@mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "9cc09b1a21fa1feab03d83f3bc285d40aa5cb869e95175e3"}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "c845ef57efb74fb84b1e73c090e261f21348a36006580c47"}], @mon_options=[@NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}]]}, 0x84}, 0x1, 0x0, 0x0, 0x10}, 0x200420c0) sendmsg$NFT_MSG_GETRULE(r4, &(0x7f0000000f80)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000f40)={&(0x7f0000000f00)={0x34, 0x7, 0xa, 0x801, 0x0, 0x0, {0xe, 0x0, 0x1}, [@NFTA_RULE_COMPAT={0xc, 0x5, 0x0, 0x1, [@NFTA_RULE_COMPAT_PROTO_IPV4={0x8, 0x1, 0x1, 0x0, 0x84}]}, @NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x8808}, 0x8000) ioctl$sock_proto_private(r4, 0x89e5, &(0x7f0000000fc0)="c6450d83285206db211c879f08666fb6a1889e3d6d99844e1df69127b7935cfa5102a42a63bf83613fd38d6afb0f90d161d2be53f836be6044c174a26080be29a327efc0b74397") sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(0xffffffffffffffff, &(0x7f0000001100)={&(0x7f0000001040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000010c0)={&(0x7f0000001080)={0x28, 0x0, 0x200, 0x70bd2d, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0002}}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040000}, 0x10) sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, 0xfffffffffffffffd, 0x4840) sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(r4, &(0x7f0000001240)={&(0x7f0000001140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001200)={&(0x7f0000001180)={0x50, r1, 0x300, 0x70bd2b, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x50}, 0x1, 0x0, 0x0, 0x20004000}, 0x1) r5 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001280), 0x10080, 0x0) sendmsg$NL80211_CMD_DEL_KEY(r5, &(0x7f0000001380)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001340)={&(0x7f0000001300)={0x3c, r1, 0x1, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_DEFAULT_TYPES={0x10, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "60cd79ab5d"}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2008080}, 0x8000) r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001400), 0xffffffffffffffff) sendmsg$IEEE802154_LLSEC_DEL_KEY(0xffffffffffffffff, &(0x7f00000014c0)={&(0x7f00000013c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x1c, r6, 0x0, 0x70bd2b, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4040010}, 0x801) 14:41:43 executing program 3: r0 = fsmount(0xffffffffffffffff, 0x0, 0x87) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000040)=[r1], 0x1) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000440)={&(0x7f0000000140)={0x2e0, r2, 0x8, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TX_RATES={0x2c4, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x38, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x18, 0x48, 0x48, 0x3, 0x9, 0x12, 0xc, 0x1, 0x5e, 0x5, 0x12, 0x6c, 0x6, 0x16, 0x16, 0x30, 0x12, 0x48, 0x6, 0x5, 0xb, 0x37, 0x12, 0x30]}, @NL80211_TXRATE_HT={0xf, 0x2, [{0x3, 0x3}, {}, {0x6, 0x4}, {0x2, 0x8}, {0x3, 0x7}, {0x2, 0x6}, {0x4, 0x5}, {0x5, 0x1}, {0x5}, {0x1}, {0x6, 0x1}]}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x30, 0x24]}]}, @NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_60GHZ={0x8, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x4}]}, @NL80211_BAND_2GHZ={0xb8, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x48, 0x2, [{0x0, 0x2}, {0x2, 0x9}, {0x1, 0xa}, {0x3, 0x7}, {0x5, 0x1}, {0x6, 0x6}, {0x6, 0xa}, {0x0, 0x7}, {0x3, 0x4}, {0x6, 0x4}, {0x5, 0x3}, {0x5, 0x7}, {0x0, 0x3}, {0x5, 0x9}, {0x7, 0x7}, {0x7, 0x6}, {0x6, 0x2}, {0x6, 0xa}, {0x1, 0x9}, {0x1, 0x2}, {0x4, 0x1}, {0x7, 0x1}, {0x7}, {0x7, 0x7}, {0x5, 0x2}, {0x2, 0x9}, {0x0, 0xa}, {0x4, 0x6}, {0x0, 0x6}, {0x4, 0x8}, {0x0, 0x6}, {0x1, 0x3}, {0x4}, {0x6, 0x6}, {0x6, 0x9}, {0x2, 0x9}, {0x3, 0x6}, {0x1, 0x4}, {0x5}, {0x2, 0x9}, {0x3, 0xa}, {0x6, 0x2}, {0x5, 0x8}, {0x3, 0x7}, {0x6, 0x7}, {0x4, 0xa}, {0x4, 0x9}, {0x3, 0xa}, {0x3, 0x9}, {0x4, 0x6}, {0x1, 0x1}, {0x4, 0x5}, {0x1, 0x7}, {0x0, 0x9}, {0x0, 0x3}, {0x3, 0x8}, {0x2}, {0x5, 0x4}, {0x4, 0x6}, {0x7, 0x7}, {0x1, 0x8}, {0x3, 0x4}, {0x6}, {0x2, 0x1}, {0x5, 0x8}, {0x6, 0x7}, {0x7, 0x7}, {0x7, 0x6}]}, @NL80211_TXRATE_HT={0xe, 0x2, [{0x2, 0xa}, {0x7}, {0x0, 0xa}, {0x3, 0xa}, {0x6, 0x9}, {0x6, 0x6}, {0x5, 0x8}, {0x7, 0x6}, {0x1, 0x6}, {0x7, 0x9}]}, @NL80211_TXRATE_LEGACY={0x8, 0x1, [0x6c, 0x3, 0x36, 0x6c]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0x1, 0x5, 0x6, 0x7, 0x4, 0x7ff, 0x2]}}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0xe, 0x30, 0x6c, 0x4, 0x12, 0x12, 0x3, 0x2, 0x6c, 0x9caaae8b2bd85256, 0x1, 0x1b, 0x18, 0x2, 0x18, 0x5, 0x60, 0x60, 0x30, 0xb, 0x18, 0x36, 0xb, 0x4519302f9aa97073, 0x3, 0x36, 0x18, 0x5, 0x30]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xcb, 0x2, 0xc7d, 0x8001, 0x1, 0xfff, 0x0, 0x6]}}]}, @NL80211_BAND_60GHZ={0x5c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x5, 0x4, 0x20, 0x401, 0x1ff, 0x7fff, 0x400]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x4, 0x8, 0x3ff, 0xf9, 0x7fff, 0x4, 0xff7f]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x14, 0x2, [{0x4, 0x7}, {0x1, 0x8}, {0x7, 0x4}, {0x1, 0x5}, {0x7, 0x4}, {0x4, 0x8}, {0x5, 0x6}, {0x4, 0x5}, {0x6, 0x5}, {0x6, 0x9}, {0x4, 0x7}, {0x0, 0x1}, {0x2, 0x9}, {0x6, 0x2}, {0x0, 0x9}, {0x6, 0x6}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x94, 0x1, 0x200, 0x8, 0x1000, 0x1ff, 0x9, 0xfff9]}}]}, @NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_6GHZ={0x7c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x0, 0x8, 0x3, 0x6, 0xffff, 0x2, 0xb4]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x30, 0x30, 0xc, 0x3, 0x18, 0x1, 0x60, 0x18, 0x4, 0x60, 0xc, 0x6, 0x30, 0x48, 0x12, 0x18, 0xc, 0x6c, 0x48, 0x48, 0x39, 0xc, 0x12, 0xc, 0x3, 0xc, 0x1]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x100, 0x4, 0x5, 0x4, 0x60, 0x1000, 0x0, 0x2]}}]}, @NL80211_BAND_2GHZ={0x34, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x3ff, 0x4, 0x1, 0x9, 0x8001, 0x4, 0x1]}}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x4, 0x1}, {0x2, 0x7}, {0x1, 0x8}, {0x3, 0x5}, {0x1, 0x6}, {0x2, 0x3}, {0x3, 0x7}, {0x0, 0x9}, {0x4, 0x2}, {0x6, 0x1}, {0x1, 0x6}, {0x0, 0x7}, {0x3, 0x5}, {0x5, 0x9}, {0x0, 0x1}, {0x4, 0xa}, {0x5, 0x1}, {0x5, 0x6}, {0x2, 0x7}, {0x1, 0x8}, {0x0, 0xa}, {0x4, 0x7}, {0x5, 0x9}]}]}, @NL80211_BAND_5GHZ={0x90, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x20, 0x1, [0x36, 0x0, 0x6, 0x3b, 0x24, 0x24, 0x60, 0x12, 0x16, 0xc, 0xc, 0x6c, 0x48, 0x3, 0x1b, 0x1b, 0xb, 0xc, 0x4, 0x3, 0x16, 0x16, 0x9, 0x48, 0x2, 0x16, 0x18, 0x16]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3, 0x40, 0x0, 0x1ff, 0xfff, 0x8104, 0x8, 0xfff9]}}, @NL80211_TXRATE_HT={0x50, 0x2, [{0x4}, {0x5, 0x5}, {0x6, 0x6}, {0x7, 0x7}, {0x0, 0xa}, {0x2, 0xa}, {0x7, 0x5}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x7, 0x8}, {0x7, 0x1}, {0x5, 0x7}, {0x1, 0x9}, {0x1}, {0x1}, {0x3, 0x3}, {0x3, 0xa}, {0x5, 0x1}, {0x3, 0x8}, {0x0, 0x9}, {0x2, 0xa}, {0x3, 0x7}, {0x4, 0x5}, {0x5, 0x7}, {0x1, 0x5}, {}, {0x5, 0xa}, {0x4, 0x8}, {0x3}, {0x0, 0x1}, {0x7, 0xa}, {0x5, 0x4}, {0x1, 0x6}, {0x6, 0x9}, {0x6, 0x7}, {0x6, 0x2}, {0x5, 0x6}, {0x2, 0x9}, {0x0, 0x2}, {0x6, 0x5}, {0x6, 0x1}, {0x7, 0x8}, {0x6, 0x6}, {0x0, 0x3}, {0x5, 0x5}, {0x0, 0xa}, {0x6, 0x2}, {0x4, 0x4}, {0x7, 0x1}, {0x6, 0x9}, {0x1, 0x8}, {0x1, 0x5}, {0x4, 0x7}, {0x2, 0x9}, {0x5, 0x5}, {0x7, 0x6}, {0x3, 0x8}, {0x0, 0x7}, {0x4, 0x7}, {0x2, 0x5}, {0x3, 0x3}, {0x4}, {0x5, 0xa}, {0x6, 0x2}, {0x7, 0x2}, {0x5, 0x6}, {0x4, 0x3}, {0x1, 0x3}, {0x5, 0x4}, {0x5, 0x7}, {0x3, 0x9}, {0x6, 0x4}, {0x3, 0x2}, {0x6, 0xa}, {0x5, 0x3}]}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_6GHZ={0x14, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_HT={0xa, 0x2, [{0x0, 0x2}, {0x0, 0x9}, {0x6, 0x2}, {0x0, 0x6}, {0x3, 0x7}, {0x1}]}]}]}]}, 0x2e0}, 0x1, 0x0, 0x0, 0x40800}, 0x4044) ioctl$CDROMREADMODE1(r0, 0x530d, &(0x7f00000004c0)={0x9, 0xe8, 0x8a, 0x8, 0x5e, 0x6}) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000001000)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f80)={0x3c, r2, 0x20, 0x70bd25, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8, 0x58}}}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x7}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x10, 0x3, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, @NL80211_PKTPAT_OFFSET={0x8, 0x3, 0x10000}}]}, @NL80211_ATTR_COALESCE_RULE_PKT_PATTERN={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x64000840}, 0x20000010) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001040)='/proc/consoles\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000001080)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f00000010c0)=[r4, r0, r0, r0, r5, r4, r4, 0xffffffffffffffff, r4], 0x9) r6 = syz_open_dev$hidraw(&(0x7f0000001100), 0x4fd, 0x200000) io_uring_register$IORING_REGISTER_FILES_UPDATE(r5, 0x6, &(0x7f0000001180)={0x9, 0x0, &(0x7f0000001140)=[r6]}, 0x1) r7 = syz_open_dev$vcsu(&(0x7f00000011c0), 0x3, 0x94642) fcntl$getown(r7, 0x9) ioctl$DVD_WRITE_STRUCT(r0, 0x5390, &(0x7f0000001200)=@copyright={0x1, 0x1, 0x27, 0x5}) syz_io_uring_setup(0x338e, &(0x7f0000001a40)={0x0, 0x106d, 0x0, 0x1, 0x95, 0x0, r5}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000001ac0)=0x0, &(0x7f0000001b00)) syz_io_uring_setup(0x6a32, &(0x7f0000001b40)={0x0, 0x6a1a, 0x20, 0x3, 0xb0, 0x0, r5}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000001bc0), &(0x7f0000001c00)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000001c40)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd=r5, 0x9, 0x0, 0x5, 0x5, 0x1}, 0x1) sendmsg$NL80211_CMD_ADD_TX_TS(r0, &(0x7f0000001dc0)={&(0x7f0000001c80)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001d80)={&(0x7f0000001d00)={0x58, 0x0, 0x200, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x101, 0x43}}}}, [@NL80211_ATTR_USER_PRIO={0x5}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0xff4b}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x8}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xd}]}, 0x58}}, 0x24004801) 14:41:43 executing program 4: ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, &(0x7f0000000000)=0x8700) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x101102, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) fallocate(r0, 0x3, 0x8, 0x0) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000080)) r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) io_uring_enter(r2, 0x735e, 0x7c49, 0x2, &(0x7f0000000140)={[0x3f]}, 0x8) r3 = creat(&(0x7f0000000180)='./file0\x00', 0x107) ioctl$PTP_EXTTS_REQUEST2(r3, 0x40103d0b, &(0x7f00000001c0)={0x3, 0x1}) recvmsg(r0, &(0x7f0000001340)={&(0x7f0000000200)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @private}}}, 0x80, &(0x7f0000001300)=[{&(0x7f0000000280)=""/126, 0x7e}, {&(0x7f0000000300)=""/4096, 0x1000}], 0x2}, 0x2) fallocate(r4, 0x1, 0x3, 0x7) fcntl$F_GET_FILE_RW_HINT(r2, 0x40d, &(0x7f0000001380)) ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f00000013c0)) pipe(&(0x7f0000001400)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = openat(r5, &(0x7f0000001440)='./file0\x00', 0x181101, 0x4) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000001480)=0x5) ioctl$F2FS_IOC_RESIZE_FS(r6, 0x4008f510, &(0x7f00000014c0)=0x8001) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000001500)={r1, 0xffffffff, 0x400, 0x7}) ioctl$LOOP_SET_FD(r7, 0x4c00, 0xffffffffffffffff) [ 69.297991] audit: type=1400 audit(1663771303.974:6): avc: denied { execmem } for pid=289 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 14:41:44 executing program 5: r0 = socket(0x3, 0x80000, 0x333b) ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0x8030942b, &(0x7f0000000000)={0x101, {0x35, 0x94d, 0x2, 0x100000001, 0x4}}) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r0) sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f00000000c0)={0xc0, r1, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x50, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond0\x00'}]}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x80}, @ETHTOOL_A_LINKINFO_PHYADDR={0x5, 0x3, 0x80}, @ETHTOOL_A_LINKINFO_HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x8100}, 0x2000) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000280)={0x0, 0x0}) futimesat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)={{r2, r3/1000+60000}, {r4, r5/1000+10000}}) sendmsg$NLBL_CALIPSO_C_LISTALL(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x4c, 0x0, 0x100, 0x70bd25, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000854}, 0x4044091) mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x8) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000480)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), r0) sendmsg$ETHTOOL_MSG_FEATURES_GET(r6, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x80, r7, 0x10, 0x70bd29, 0x25dfdbfe, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_hsr\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r6, 0xc0189374, &(0x7f0000000640)={{0x1, 0x1, 0x18, r6, {0x38af}}, '.\x00'}) sendmsg$NL80211_CMD_NEW_KEY(r8, &(0x7f0000000740)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000700)={&(0x7f00000006c0)={0x38, 0x0, 0x100, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_DEFAULT={0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x4) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r8, 0xc0189378, &(0x7f0000000780)={{0x1, 0x1, 0x18, r8, {r0}}, './file0\x00'}) sendmsg$SEG6_CMD_SETHMAC(r9, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x28, 0x0, 0x20, 0x70bd2a, 0x25dfdbff, {}, [@SEG6_ATTR_SECRET={0x14, 0x4, [0x9, 0x8000, 0xf03, 0x1000]}]}, 0x28}, 0x1, 0x0, 0x0, 0x8011}, 0x80d0) r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000008c0)='/sys/power/image_size', 0x210003, 0x1ec) r11 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000940), r0) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000980)={{{@in6=@private1, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@initdev}, 0x0, @in=@loopback}}, &(0x7f0000000a80)=0xe8) sendmsg$ETHTOOL_MSG_RINGS_GET(r10, &(0x7f0000000b80)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x64, r11, 0x10, 0x70bd27, 0x25dfdbfe, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}]}, @HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x2000000}, 0x20040000) 14:41:44 executing program 6: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, r0, 0x800, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x6, 0x19}}}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x10, 0xcd, [0x7, 0x101, 0xffe0, 0x1, 0x7f, 0x1c]}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xc, 0xcd, [0xff0a, 0xff1e, 0x8, 0xfff]}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0xa, 0xcd, [0xad, 0x8, 0x7f]}, @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4001}, 0x0) sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180), 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0xc0, r0, 0x2, 0x70bd26, 0x25dfdbfd, {}, [@NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_REG_RULES={0x10, 0x22, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x8}]}]}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'aa\x00'}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x9}, @NL80211_ATTR_REG_RULES={0x78, 0x22, 0x0, 0x1, [{0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x200}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7f}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2daf800}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x3}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x55d1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x3f}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x992}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x2f4}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xc293}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x7}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x20}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xff}]}, {0x4}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x20040000}, 0x10) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000340)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x90, r0, 0x10, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_SSID={0x14, 0x34, @random="e756cd766a1c43c57521c1f50e20d660"}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x7}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_IE={0x31, 0x2a, [@mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x0, 0x1, 0x1, 0x2, 0x59, 0x21}}, @dsss={0x3, 0x1, 0xc}, @prep={0x83, 0x1f, @not_ext={{}, 0x5, 0xff, @device_b, 0x2, "", 0x5, 0x3, @device_b, 0x7}}]}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @random="98fb112d1223"}]}, 0x90}}, 0x4040) sendmsg$IPSET_CMD_PROTOCOL(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x3c, 0x1, 0x6, 0x401, 0x0, 0x0, {0x2, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x3c}}, 0x24000000) r2 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000600)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000780)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000740)={&(0x7f0000000640)={0xf0, r0, 0x800, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x9, 0x6}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x7}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xfffff801}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}], @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x1}, @beacon=[@NL80211_ATTR_BEACON_TAIL={0x7c, 0xf, [@rann={0x7e, 0x15, {{0x0, 0x70}, 0x3, 0x3, @broadcast, 0x1f, 0x4, 0x1}}, @preq={0x82, 0x57, @ext={{0x1}, 0x8, 0x8, 0xfffff67a, @broadcast, 0x2, @device_a, 0x3631, 0x2, 0x5, [{{0x1}, @device_b, 0x7ff}, {{0x0, 0x0, 0x1}, @device_a, 0x9}, {{0x1, 0x0, 0x1}, @device_b, 0xd2e9}, {{0x1}, @device_b, 0x9}, {{}, @device_b, 0x3}]}}, @ibss={0x6, 0x2, 0x9}, @ibss={0x6, 0x2, 0x3}]}], @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_DTIM_PERIOD={0x8, 0xd, 0x8001}]}, 0xf0}, 0x1, 0x0, 0x0, 0x40040}, 0x24008812) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r2, 0x40049366, &(0x7f00000007c0)) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) clock_gettime(0x0, &(0x7f0000006c40)={0x0, 0x0}) recvmmsg(r4, &(0x7f00000069c0)=[{{&(0x7f0000000800)=@nfc, 0x80, &(0x7f0000000a80)=[{&(0x7f0000000880)}, {&(0x7f00000008c0)=""/137, 0x89}, {&(0x7f0000000980)=""/162, 0xa2}, {&(0x7f0000000a40)}], 0x4, &(0x7f0000000ac0)=""/50, 0x32}, 0xabb4}, {{&(0x7f0000000b00)=@qipcrtr, 0x80, &(0x7f0000000c40)=[{&(0x7f0000000b80)=""/120, 0x78}, {&(0x7f0000000c00)=""/47, 0x2f}], 0x2, &(0x7f0000000c80)=""/205, 0xcd}, 0x7fff}, {{&(0x7f0000000d80)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000000f80)=[{&(0x7f0000000e00)=""/170, 0xaa}, {&(0x7f0000000ec0)=""/178, 0xb2}], 0x2, &(0x7f0000000fc0)=""/174, 0xae}, 0x76}, {{&(0x7f0000001080)=@vsock, 0x80, &(0x7f0000001180)=[{&(0x7f0000001100)=""/64, 0x40}, {&(0x7f0000001140)=""/39, 0x27}], 0x2, &(0x7f00000011c0)=""/129, 0x81}, 0x5}, {{0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000001280)=""/162, 0xa2}, {&(0x7f0000001340)=""/223, 0xdf}, {&(0x7f0000001440)=""/200, 0xc8}, {&(0x7f0000001540)=""/122, 0x7a}], 0x4, &(0x7f0000001600)=""/184, 0xb8}, 0x40}, {{&(0x7f00000016c0)=@qipcrtr, 0x80, &(0x7f0000002c40)=[{&(0x7f0000001740)=""/1, 0x1}, {&(0x7f0000001780)=""/4, 0x4}, {&(0x7f00000017c0)=""/10, 0xa}, {&(0x7f0000001800)=""/161, 0xa1}, {&(0x7f00000018c0)=""/255, 0xff}, {&(0x7f00000019c0)=""/6, 0x6}, {&(0x7f0000001a00)=""/180, 0xb4}, {&(0x7f0000001ac0)=""/177, 0xb1}, {&(0x7f0000001b80)=""/161, 0xa1}, {&(0x7f0000001c40)=""/4096, 0x1000}], 0xa, &(0x7f0000002d00)=""/4096, 0x1000}, 0xfffffffb}, {{0x0, 0x0, &(0x7f0000003e80)=[{&(0x7f0000003d00)=""/99, 0x63}, {&(0x7f0000003d80)=""/207, 0xcf}], 0x2, &(0x7f0000003ec0)=""/10, 0xa}, 0x200}, {{&(0x7f0000003f00)=@nl=@unspec, 0x80, &(0x7f0000005340)=[{&(0x7f0000003f80)=""/173, 0xad}, {&(0x7f0000004040)=""/124, 0x7c}, {&(0x7f00000040c0)=""/56, 0x38}, {&(0x7f0000004100)=""/233, 0xe9}, {&(0x7f0000004200)=""/147, 0x93}, {&(0x7f00000042c0)=""/121, 0x79}, {&(0x7f0000004340)=""/4096, 0x1000}], 0x7, &(0x7f00000053c0)=""/92, 0x5c}, 0x2}, {{&(0x7f0000005440)=@rc={0x1f, @fixed}, 0x80, &(0x7f0000005500)=[{&(0x7f00000054c0)}], 0x1, &(0x7f0000005540)=""/83, 0x53}, 0x50000000}, {{&(0x7f00000055c0)=@nl, 0x80, &(0x7f0000006900)=[{&(0x7f0000005640)=""/121, 0x79}, {&(0x7f00000056c0)=""/91, 0x5b}, {&(0x7f0000005740)=""/12, 0xc}, {&(0x7f0000005780)=""/4096, 0x1000}, {&(0x7f0000006780)=""/212, 0xd4}, {&(0x7f0000006880)=""/115, 0x73}], 0x6, &(0x7f0000006980)=""/25, 0x19}, 0x800}], 0xa, 0xa0, &(0x7f0000006c80)={r5, r6+10000000}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000006cc0)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) accept$unix(r7, &(0x7f0000006d00)=@abs, &(0x7f0000006d80)=0x6e) clock_gettime(0x3, &(0x7f0000006dc0)) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000006e40), r2) sendmsg$NL80211_CMD_SET_BSS(r7, &(0x7f0000006f40)={&(0x7f0000006e00)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000006f00)={&(0x7f0000006e80)={0x50, r8, 0x4, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0xffff, 0x1a}}}}, [@NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x1f}, @NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5, 0x1e, 0x3}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x3}, @NL80211_ATTR_AP_ISOLATE={0x5, 0x60, 0x6c}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0xf7}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0xcc}]}, 0x50}, 0x1, 0x0, 0x0, 0x44}, 0x80) r9 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000006f80), 0x81, 0x0) sendmsg$DEVLINK_CMD_RATE_NEW(r9, &(0x7f00000070c0)={&(0x7f0000006fc0)={0x10, 0x0, 0x0, 0x2002}, 0xc, &(0x7f0000007080)={&(0x7f0000007040)={0x24, 0x0, 0x0, 0x70bd25, 0x25dfdbfd, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xf, 0xa8, @name2}]}, 0x24}, 0x1, 0x0, 0x0, 0x50}, 0x8004000) 14:41:44 executing program 7: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0) ioctl$BLKREPORTZONE(r0, 0xc0101282, &(0x7f0000000040)={0x8, 0x7, 0x0, [{0x7, 0x7, 0x5, 0xff, 0xde, 0x0, 0x7f}, {0x1, 0x4, 0x40, 0x40, 0x51, 0x25, 0x1}, {0x9, 0x5, 0x6, 0x3, 0xff, 0xfb, 0x7f}, {0x5a, 0x2, 0x400, 0x5, 0xff, 0x2d, 0x7}, {0x100, 0x1, 0x2, 0x9d, 0x20, 0x9, 0x5}, {0x7, 0x6, 0x8, 0x81, 0x42, 0xff}, {0x3, 0x9, 0x6, 0x0, 0x7f, 0x4, 0xa9}]}) io_uring_enter(r0, 0x3e67, 0x6d49, 0x3, &(0x7f0000000240)={[0x8]}, 0x8) r1 = syz_io_uring_setup(0x339e, &(0x7f0000000280)={0x0, 0xa10d, 0x2, 0x3, 0xf6, 0x0, r0}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000300)=0x0, &(0x7f0000000340)) r3 = syz_io_uring_setup(0x25da, &(0x7f0000000380)={0x0, 0x2382, 0x1, 0x2, 0x26c}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000400)=0x0, &(0x7f0000000440)) write(r1, &(0x7f0000000480)="55e228b38c37b12c7b49d55a2c7c209938740e4cb1ae6afeb7953eead58e1629c1d2aff73191d037047b3b9318d6bdd160a46c3ac75dfe638bd74d24c9b631100e57fcafd488b195462e49b49487fdca65458ebedb59b69803e33af9b28f53e89989ae2caeb7c1fd874cc467be3fe91040f3f06ce5b8e9d44e85b14bfe86b61e45abf47e9517bb4047240957cd718fef7d3cf1014b85f596cf49f9248ba33379eafc04d74cc9778717a7de042e4f582bc2892c1d2d08b866f3", 0xb9) r5 = syz_io_uring_setup(0x1e73, &(0x7f0000000540)={0x0, 0x7121, 0x10, 0x0, 0x119, 0x0, r3}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f00000005c0), &(0x7f0000000600)=0x0) r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000640), 0x280200, 0x0) getpeername$packet(r0, &(0x7f0000000680)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000006c0)=0x14) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r6, &(0x7f0000000780)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000700)=@ll={0x11, 0x1b, r8}, 0x0, 0x0, 0x0, {0x0, r9}}, 0x100) io_setup(0x7, &(0x7f00000007c0)=0x0) r11 = open$dir(&(0x7f0000000980)='./file0\x00', 0x480000, 0xc0) r12 = dup2(r5, r7) io_submit(r10, 0x5, &(0x7f0000001bc0)=[&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x8, 0x81, r3, &(0x7f0000000800)="c7c6442cacf403da89d2f2d0127c80ab7e640d36bff3c2282320a8babec7e5f6bd9872cb53275679c1b023434399c4e08ac8b93a15e7149f02af5428f6a4e8c499519f529715885389ee360db17681646019197a1daff7e9d7ffd9b28b7a1078cf97445a7cb0ddc5663493990c74835e77cc5c49e0bd9aab688c2961d1eff5a710ef46e18ceeae84b79ac09017877f", 0x8f, 0x40000000000000, 0x0, 0x2}, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x40, r1, &(0x7f0000000900)="c63c69d25c4c9f36a65847358c02b7cf70706c8ee51a5ef80206d96d7c72ef75", 0x20, 0x9, 0x0, 0x1, r7}, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x6, 0xf000, r11, &(0x7f00000009c0)="760857f8a22ec467d0021a25d2f5306b530e143f722cf9c81d8d9b07808b7cf9db9ca81b847b498efd819e4d2f5d0ce9f42b35880110de3ca7557c44f5d3eef685c50715ab189f303cf5a2dd5595f16dcbc235812665b6e96c2d19b76780188ea243cd589c57007c5aa796b040d8f3d859069c86141e9639b8b137b0d4c7c9487d7bd453b35c71fbb85fe945e50eceb8b3854d726c28f998cdb795987e3b1c41d674ef1c1a0f59ceecef22c22e38d248ff249bf040d3d4ee802d2584a561ead2d2261ad70ff1c0ef85ba69942e0f", 0xce, 0x7, 0x0, 0x0, r12}, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0xfffa, r3, &(0x7f0000000b00)="96946f7798c311e8d81478cb330e938d82487056af9886938a1df7b90a70b7f654b64a13c3b528c241a517c139e669925753f8be91", 0x35, 0x7}, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x97, r7, &(0x7f0000000b80)="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", 0x1000, 0x40, 0x0, 0x1, r7}]) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r3, 0x8008f513, &(0x7f0000001c00)) r13 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0x1010, r12, 0x10000000) syz_io_uring_submit(r4, r13, &(0x7f0000001c40)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x1, 0x0, @fd_index=0x3, 0x3f, 0x0, 0x0, 0x4, 0x1}, 0x40) mount(&(0x7f0000001c80)=@sg0, &(0x7f0000001cc0)='./file0\x00', &(0x7f0000001d00)='sockfs\x00', 0x2062440, &(0x7f0000001d40)='/dev/vcsu\x00') syz_io_uring_submit(0x0, 0x0, &(0x7f0000001f80)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x6000, @fd_index=0x9, 0x0, 0xfffffffffffffffd, 0x5, 0x8, 0x1, {0x3}}, 0x5) [ 70.700694] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.702405] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.706006] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.707091] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.710167] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.711229] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.718356] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.721254] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.722363] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 70.727475] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.728928] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 70.733339] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.739772] Bluetooth: hci1: HCI_REQ-0x0c1a [ 70.741100] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 70.744893] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 70.762609] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 70.770603] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 70.779236] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 70.783661] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 70.784985] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 70.786069] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 70.787851] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 70.788923] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 70.804823] Bluetooth: hci0: HCI_REQ-0x0c1a [ 70.811331] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 70.815732] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 70.818253] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 70.821565] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 70.824429] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 70.825921] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 70.828154] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 70.829623] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 70.830949] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 70.833440] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 70.834869] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 70.836024] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 70.839436] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 70.841005] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 70.844961] Bluetooth: hci6: HCI_REQ-0x0c1a [ 70.852598] Bluetooth: hci3: HCI_REQ-0x0c1a [ 70.853623] Bluetooth: hci2: HCI_REQ-0x0c1a [ 70.854679] Bluetooth: hci4: HCI_REQ-0x0c1a [ 70.919410] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 70.931800] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 70.936839] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 70.938463] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 70.939852] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 70.942429] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 70.942738] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 70.950017] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 70.952658] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 70.954710] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 70.956927] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 70.959289] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 70.987937] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.044607] Bluetooth: hci5: HCI_REQ-0x0c1a [ 72.778310] Bluetooth: hci1: command 0x0409 tx timeout [ 72.905633] Bluetooth: hci4: command 0x0409 tx timeout [ 72.905753] Bluetooth: hci3: command 0x0409 tx timeout [ 72.906175] Bluetooth: hci6: command 0x0409 tx timeout [ 72.907377] Bluetooth: hci2: command 0x0409 tx timeout [ 72.907826] Bluetooth: hci0: command 0x0409 tx timeout [ 73.033615] Bluetooth: hci7: command 0x0409 tx timeout [ 73.097805] Bluetooth: hci5: command 0x0409 tx timeout [ 74.826064] Bluetooth: hci1: command 0x041b tx timeout [ 74.953580] Bluetooth: hci2: command 0x041b tx timeout [ 74.954044] Bluetooth: hci0: command 0x041b tx timeout [ 74.954454] Bluetooth: hci6: command 0x041b tx timeout [ 74.954905] Bluetooth: hci3: command 0x041b tx timeout [ 74.955324] Bluetooth: hci4: command 0x041b tx timeout [ 75.081583] Bluetooth: hci7: command 0x041b tx timeout [ 75.145550] Bluetooth: hci5: command 0x041b tx timeout [ 76.874537] Bluetooth: hci1: command 0x040f tx timeout [ 77.001589] Bluetooth: hci4: command 0x040f tx timeout [ 77.002135] Bluetooth: hci3: command 0x040f tx timeout [ 77.002932] Bluetooth: hci6: command 0x040f tx timeout [ 77.003439] Bluetooth: hci0: command 0x040f tx timeout [ 77.004027] Bluetooth: hci2: command 0x040f tx timeout [ 77.130571] Bluetooth: hci7: command 0x040f tx timeout [ 77.194575] Bluetooth: hci5: command 0x040f tx timeout [ 78.922590] Bluetooth: hci1: command 0x0419 tx timeout [ 79.050586] Bluetooth: hci2: command 0x0419 tx timeout [ 79.051057] Bluetooth: hci0: command 0x0419 tx timeout [ 79.051461] Bluetooth: hci6: command 0x0419 tx timeout [ 79.052088] Bluetooth: hci3: command 0x0419 tx timeout [ 79.052449] Bluetooth: hci4: command 0x0419 tx timeout [ 79.178541] Bluetooth: hci7: command 0x0419 tx timeout [ 79.242586] Bluetooth: hci5: command 0x0419 tx timeout 14:42:41 executing program 1: r0 = syz_mount_image$iso9660(&(0x7f0000000a40), &(0x7f0000000a80)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f0000000040)="a50251aca342e2995a6e509c8b393b303b19bca3430a111074151f2dc5215ec39d51de07a146588bbf3e39f152eff3a99d05940a07d2874e2ae287559ac2dd9608d9d24287a2f313f9690542c1dc3172286be0548adb64d531f06972f6a3f604c8367472284a7138ec88c7af86b6c5e8fd5f65aa08f833e835f2626cb7bb0175a371f8613448d55400c484f58184211dc3bbf844e40f5f1e902294ad4066d6cfef7b4826b6f596fd1f6c6eebfc6d771c755151b8ffe37bf885fbd991ba55d753130af3d2f1c49db64bfc7cd09b24a34fb7d907fe2ddd4ce8e505e0d6547d2f2b", 0xe0}, {&(0x7f0000000140)="21efa5a1c7cb8de498ff9da3ca7b072aaedea4f090b944076e64eeac11f6913173d868a3c0368549d0525fd471abbf836e811968a07048dbe7e2f29aea29f5f345e4db672f6b274d080c32ab77abf75d0f723d4caa9240d77dd0e1db36394e3d70c0b367629f6a6ef5f161dacb90a12b8d7efea11d3bcb05d3c2f6235ae17fe49ed519441b838315449fb0774be295c3ad9c22d1b163247643a920b1c2654e3c49b81eb71b210dcf760c7cbc3de4716809a26fdfd5dd975397c188790e2f114631", 0xc1, 0x4f6c}], 0x10031, &(0x7f0000000280)=ANY=[@ANYBLOB="0d7475a6d098b300"]) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fcntl$notify(r2, 0x402, 0x2) write$selinux_attr(0xffffffffffffffff, &(0x7f0000000000)='/usr/sbin/cups-browsed\x00', 0x17) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = syz_open_dev$tty1(0xc, 0x4, 0x3) sendfile(r3, r4, &(0x7f00000005c0)=0xfffffffffffffff9, 0x8001) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff}) preadv(r6, &(0x7f0000000580)=[{&(0x7f0000000500)=""/101, 0x65}, {&(0x7f0000000780)=""/204, 0xcc}], 0x2, 0x80000001, 0x6) ioctl$TUNSETTXFILTER(r5, 0x400454d1, 0x0) dup3(r1, r2, 0x0) openat(r2, &(0x7f0000000600)='./file0\x00', 0x0, 0x44) syz_mount_image$iso9660(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x5, 0x3, &(0x7f0000000440)=[{&(0x7f0000000340)="5b4ace8ab120a9c0faf85b5210fc962d5e944d9dbe8598e5cdc6baf75923bc4126cf9ab51c", 0x25, 0x748b4a16}, {&(0x7f0000000380)="46d06cdceaa1", 0x6, 0x4}, {&(0x7f00000003c0)="b3432edbd31ad2037959b9b1e403f19c14ccac1c17b0acb81c3dd6d19d251f2142849e264033c8d04820f789350f154d2e4341444aa81d09fd805d391d8d6953074a14f8420e7e0e723a85fccf9a2d5777fb", 0x52, 0x2}], 0x41048, &(0x7f0000000640)={[{@unhide}, {@map_off}, {}, {@unhide}, {@session={'session', 0x3d, 0x5}}, {@iocharset={'iocharset', 0x3d, 'cp863'}}], [{@fowner_eq}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x15\xda\x9e\xe5'}}, {@fsmagic={'fsmagic', 0x3d, 0x5}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@smackfsroot={'smackfsroot', 0x3d, 'iso9660\x00'}}, {@fsuuid={'fsuuid', 0x3d, {[0x62, 0x64, 0x63, 0x64, 0x64, 0x32, 0x27b9433de9592222, 0x30], 0x2d, [0x64, 0x65, 0x32, 0x61], 0x2d, [0x38, 0x38, 0x32, 0x32], 0x2d, [0x30, 0x37, 0x0, 0x61], 0x2d, [0x66, 0x30, 0x30, 0x31, 0x38, 0x38, 0x30, 0x54]}}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@permit_directio}]}) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000000)) [ 127.023597] loop1: detected capacity change from 0 to 79 [ 127.088681] loop1: detected capacity change from 0 to 240458 [ 127.089293] ======================================================= [ 127.089293] WARNING: The mand mount option has been deprecated and [ 127.089293] and is ignored by this kernel. Remove the mand [ 127.089293] option from the mount to silence this warning. [ 127.089293] ======================================================= [ 127.127214] loop1: detected capacity change from 0 to 79 [ 127.175528] loop1: detected capacity change from 0 to 240458 14:42:41 executing program 1: r0 = syz_mount_image$iso9660(&(0x7f0000000a40), &(0x7f0000000a80)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f0000000040)="a50251aca342e2995a6e509c8b393b303b19bca3430a111074151f2dc5215ec39d51de07a146588bbf3e39f152eff3a99d05940a07d2874e2ae287559ac2dd9608d9d24287a2f313f9690542c1dc3172286be0548adb64d531f06972f6a3f604c8367472284a7138ec88c7af86b6c5e8fd5f65aa08f833e835f2626cb7bb0175a371f8613448d55400c484f58184211dc3bbf844e40f5f1e902294ad4066d6cfef7b4826b6f596fd1f6c6eebfc6d771c755151b8ffe37bf885fbd991ba55d753130af3d2f1c49db64bfc7cd09b24a34fb7d907fe2ddd4ce8e505e0d6547d2f2b", 0xe0}, {&(0x7f0000000140)="21efa5a1c7cb8de498ff9da3ca7b072aaedea4f090b944076e64eeac11f6913173d868a3c0368549d0525fd471abbf836e811968a07048dbe7e2f29aea29f5f345e4db672f6b274d080c32ab77abf75d0f723d4caa9240d77dd0e1db36394e3d70c0b367629f6a6ef5f161dacb90a12b8d7efea11d3bcb05d3c2f6235ae17fe49ed519441b838315449fb0774be295c3ad9c22d1b163247643a920b1c2654e3c49b81eb71b210dcf760c7cbc3de4716809a26fdfd5dd975397c188790e2f114631", 0xc1, 0x4f6c}], 0x10031, &(0x7f0000000280)=ANY=[@ANYBLOB="0d7475a6d098b300"]) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fcntl$notify(r2, 0x402, 0x2) write$selinux_attr(0xffffffffffffffff, &(0x7f0000000000)='/usr/sbin/cups-browsed\x00', 0x17) r3 = socket$inet_udplite(0x2, 0x2, 0x88) r4 = syz_open_dev$tty1(0xc, 0x4, 0x3) sendfile(r3, r4, &(0x7f00000005c0)=0xfffffffffffffff9, 0x8001) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff}) preadv(r6, &(0x7f0000000580)=[{&(0x7f0000000500)=""/101, 0x65}, {&(0x7f0000000780)=""/204, 0xcc}], 0x2, 0x80000001, 0x6) ioctl$TUNSETTXFILTER(r5, 0x400454d1, 0x0) dup3(r1, r2, 0x0) openat(r2, &(0x7f0000000600)='./file0\x00', 0x0, 0x44) syz_mount_image$iso9660(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x5, 0x3, &(0x7f0000000440)=[{&(0x7f0000000340)="5b4ace8ab120a9c0faf85b5210fc962d5e944d9dbe8598e5cdc6baf75923bc4126cf9ab51c", 0x25, 0x748b4a16}, {&(0x7f0000000380)="46d06cdceaa1", 0x6, 0x4}, {&(0x7f00000003c0)="b3432edbd31ad2037959b9b1e403f19c14ccac1c17b0acb81c3dd6d19d251f2142849e264033c8d04820f789350f154d2e4341444aa81d09fd805d391d8d6953074a14f8420e7e0e723a85fccf9a2d5777fb", 0x52, 0x2}], 0x41048, &(0x7f0000000640)={[{@unhide}, {@map_off}, {}, {@unhide}, {@session={'session', 0x3d, 0x5}}, {@iocharset={'iocharset', 0x3d, 'cp863'}}], [{@fowner_eq}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x15\xda\x9e\xe5'}}, {@fsmagic={'fsmagic', 0x3d, 0x5}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@smackfsroot={'smackfsroot', 0x3d, 'iso9660\x00'}}, {@fsuuid={'fsuuid', 0x3d, {[0x62, 0x64, 0x63, 0x64, 0x64, 0x32, 0x27b9433de9592222, 0x30], 0x2d, [0x64, 0x65, 0x32, 0x61], 0x2d, [0x38, 0x38, 0x32, 0x32], 0x2d, [0x30, 0x37, 0x0, 0x61], 0x2d, [0x66, 0x30, 0x30, 0x31, 0x38, 0x38, 0x30, 0x54]}}}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@permit_directio}]}) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000000)) [ 127.343358] loop1: detected capacity change from 0 to 79 [ 127.425826] loop1: detected capacity change from 0 to 240458 14:42:42 executing program 1: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB="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", @ANYRESHEX, @ANYBLOB=',\x00']) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x6, 0x0, 0x0, 0x0) chdir(&(0x7f0000000000)='./file0\x00') [ 127.595884] audit: type=1400 audit(1663771362.279:7): avc: denied { open } for pid=3862 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.597644] audit: type=1400 audit(1663771362.279:8): avc: denied { kernel } for pid=3862 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.606051] ------------[ cut here ]------------ [ 127.606075] [ 127.606079] ====================================================== [ 127.606083] WARNING: possible circular locking dependency detected [ 127.606087] 6.0.0-rc6-next-20220921 #1 Not tainted [ 127.606093] ------------------------------------------------------ [ 127.606097] syz-executor.1/3864 is trying to acquire lock: [ 127.606103] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 127.606147] [ 127.606147] but task is already holding lock: [ 127.606150] ffff88800f41dc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.606180] [ 127.606180] which lock already depends on the new lock. [ 127.606180] [ 127.606184] [ 127.606184] the existing dependency chain (in reverse order) is: [ 127.606187] [ 127.606187] -> #3 (&ctx->lock){....}-{2:2}: [ 127.606202] _raw_spin_lock+0x2a/0x40 [ 127.606222] __perf_event_task_sched_out+0x53b/0x18d0 [ 127.606236] __schedule+0xedd/0x2470 [ 127.606250] schedule+0xda/0x1b0 [ 127.606263] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.606275] syscall_exit_to_user_mode+0x19/0x40 [ 127.606289] do_syscall_64+0x48/0x90 [ 127.606306] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.606319] [ 127.606319] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 127.606333] _raw_spin_lock_nested+0x30/0x40 [ 127.606353] raw_spin_rq_lock_nested+0x1e/0x30 [ 127.606367] task_fork_fair+0x63/0x4d0 [ 127.606386] sched_cgroup_fork+0x3d0/0x540 [ 127.606402] copy_process+0x4183/0x6e20 [ 127.606413] kernel_clone+0xe7/0x890 [ 127.606423] user_mode_thread+0xad/0xf0 [ 127.606434] rest_init+0x24/0x250 [ 127.606445] arch_call_rest_init+0xf/0x14 [ 127.606463] start_kernel+0x4c1/0x4e6 [ 127.606478] secondary_startup_64_no_verify+0xe0/0xeb [ 127.606497] [ 127.606497] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 127.606512] _raw_spin_lock_irqsave+0x39/0x60 [ 127.606532] try_to_wake_up+0xab/0x1930 [ 127.606546] up+0x75/0xb0 [ 127.606561] __up_console_sem+0x6e/0x80 [ 127.606579] console_unlock+0x46a/0x590 [ 127.606596] vprintk_emit+0x1bd/0x560 [ 127.606614] vprintk+0x84/0xa0 [ 127.606632] _printk+0xba/0xf1 [ 127.606644] kauditd_hold_skb.cold+0x3f/0x4e [ 127.606662] kauditd_send_queue+0x233/0x290 [ 127.606678] kauditd_thread+0x5da/0x9a0 [ 127.606693] kthread+0x2ed/0x3a0 [ 127.606710] ret_from_fork+0x22/0x30 [ 127.606723] [ 127.606723] -> #0 ((console_sem).lock){....}-{2:2}: [ 127.606738] __lock_acquire+0x2a02/0x5e70 [ 127.606757] lock_acquire+0x1a2/0x530 [ 127.606774] _raw_spin_lock_irqsave+0x39/0x60 [ 127.606794] down_trylock+0xe/0x70 [ 127.606809] __down_trylock_console_sem+0x3b/0xd0 [ 127.606827] vprintk_emit+0x16b/0x560 [ 127.606845] vprintk+0x84/0xa0 [ 127.606862] _printk+0xba/0xf1 [ 127.606872] report_bug.cold+0x72/0xab [ 127.606889] handle_bug+0x3c/0x70 [ 127.606906] exc_invalid_op+0x14/0x50 [ 127.606924] asm_exc_invalid_op+0x16/0x20 [ 127.606936] group_sched_out.part.0+0x2c7/0x460 [ 127.606947] ctx_sched_out+0x8f1/0xc10 [ 127.606957] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.606971] __schedule+0xedd/0x2470 [ 127.606984] schedule+0xda/0x1b0 [ 127.606997] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.607008] syscall_exit_to_user_mode+0x19/0x40 [ 127.607021] do_syscall_64+0x48/0x90 [ 127.607038] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.607050] [ 127.607050] other info that might help us debug this: [ 127.607050] [ 127.607053] Chain exists of: [ 127.607053] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 127.607053] [ 127.607069] Possible unsafe locking scenario: [ 127.607069] [ 127.607071] CPU0 CPU1 [ 127.607074] ---- ---- [ 127.607077] lock(&ctx->lock); [ 127.607083] lock(&rq->__lock); [ 127.607090] lock(&ctx->lock); [ 127.607097] lock((console_sem).lock); [ 127.607103] [ 127.607103] *** DEADLOCK *** [ 127.607103] [ 127.607106] 2 locks held by syz-executor.1/3864: [ 127.607113] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 127.607143] #1: ffff88800f41dc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.607173] [ 127.607173] stack backtrace: [ 127.607176] CPU: 0 PID: 3864 Comm: syz-executor.1 Not tainted 6.0.0-rc6-next-20220921 #1 [ 127.607189] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.607198] Call Trace: [ 127.607202] [ 127.607206] dump_stack_lvl+0x8b/0xb3 [ 127.607225] check_noncircular+0x263/0x2e0 [ 127.607260] ? format_decode+0x26c/0xb50 [ 127.607279] ? print_circular_bug+0x450/0x450 [ 127.607297] ? enable_ptr_key_workfn+0x20/0x20 [ 127.607314] ? format_decode+0x26c/0xb50 [ 127.607332] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 127.607352] __lock_acquire+0x2a02/0x5e70 [ 127.607375] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 127.607399] lock_acquire+0x1a2/0x530 [ 127.607418] ? down_trylock+0xe/0x70 [ 127.607435] ? lock_release+0x750/0x750 [ 127.607457] ? vprintk+0x84/0xa0 [ 127.607477] _raw_spin_lock_irqsave+0x39/0x60 [ 127.607498] ? down_trylock+0xe/0x70 [ 127.607514] down_trylock+0xe/0x70 [ 127.607530] ? vprintk+0x84/0xa0 [ 127.607549] __down_trylock_console_sem+0x3b/0xd0 [ 127.607568] vprintk_emit+0x16b/0x560 [ 127.607588] vprintk+0x84/0xa0 [ 127.607608] _printk+0xba/0xf1 [ 127.607619] ? record_print_text.cold+0x16/0x16 [ 127.607635] ? report_bug.cold+0x66/0xab [ 127.607653] ? group_sched_out.part.0+0x2c7/0x460 [ 127.607665] report_bug.cold+0x72/0xab [ 127.607685] handle_bug+0x3c/0x70 [ 127.607703] exc_invalid_op+0x14/0x50 [ 127.607722] asm_exc_invalid_op+0x16/0x20 [ 127.607734] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.607748] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.607761] RSP: 0018:ffff88803f8ffc48 EFLAGS: 00010006 [ 127.607770] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.607779] RDX: ffff88800945b580 RSI: ffffffff815663a7 RDI: 0000000000000005 [ 127.607787] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 127.607795] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800f41dc00 [ 127.607804] R13: ffff88806ce3d140 R14: ffffffff8547cf80 R15: 0000000000000002 [ 127.607815] ? group_sched_out.part.0+0x2c7/0x460 [ 127.607829] ? group_sched_out.part.0+0x2c7/0x460 [ 127.607843] ctx_sched_out+0x8f1/0xc10 [ 127.607857] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.607873] ? lock_is_held_type+0xd7/0x130 [ 127.607886] ? __perf_cgroup_move+0x160/0x160 [ 127.607899] ? set_next_entity+0x304/0x550 [ 127.607918] ? update_curr+0x267/0x740 [ 127.607939] ? lock_is_held_type+0xd7/0x130 [ 127.607952] __schedule+0xedd/0x2470 [ 127.607969] ? io_schedule_timeout+0x150/0x150 [ 127.607986] ? rcu_read_lock_sched_held+0x3e/0x80 [ 127.608008] schedule+0xda/0x1b0 [ 127.608023] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.608036] syscall_exit_to_user_mode+0x19/0x40 [ 127.608049] do_syscall_64+0x48/0x90 [ 127.608068] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.608080] RIP: 0033:0x7fdcb9654b19 [ 127.608089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.608101] RSP: 002b:00007fdcb6bca218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.608112] RAX: 0000000000000001 RBX: 00007fdcb9767f68 RCX: 00007fdcb9654b19 [ 127.608120] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdcb9767f6c [ 127.608128] RBP: 00007fdcb9767f60 R08: 000000000000000e R09: 0000000000000000 [ 127.608136] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fdcb9767f6c [ 127.608144] R13: 00007ffe6fc18bff R14: 00007fdcb6bca300 R15: 0000000000022000 [ 127.608157] [ 127.664703] WARNING: CPU: 0 PID: 3864 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 127.665388] Modules linked in: [ 127.665638] CPU: 0 PID: 3864 Comm: syz-executor.1 Not tainted 6.0.0-rc6-next-20220921 #1 [ 127.666231] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.667066] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.667486] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.668831] RSP: 0018:ffff88803f8ffc48 EFLAGS: 00010006 [ 127.669229] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.669766] RDX: ffff88800945b580 RSI: ffffffff815663a7 RDI: 0000000000000005 [ 127.670297] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 127.670832] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800f41dc00 [ 127.671364] R13: ffff88806ce3d140 R14: ffffffff8547cf80 R15: 0000000000000002 [ 127.671898] FS: 00007fdcb6bca700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 127.672496] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.672925] CR2: 00007f21803608e0 CR3: 000000000d584000 CR4: 0000000000350ef0 [ 127.673460] Call Trace: [ 127.673654] [ 127.673828] ctx_sched_out+0x8f1/0xc10 [ 127.674127] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.674522] ? lock_is_held_type+0xd7/0x130 [ 127.674858] ? __perf_cgroup_move+0x160/0x160 [ 127.675200] ? set_next_entity+0x304/0x550 [ 127.675540] ? update_curr+0x267/0x740 [ 127.675850] ? lock_is_held_type+0xd7/0x130 [ 127.676176] __schedule+0xedd/0x2470 [ 127.676464] ? io_schedule_timeout+0x150/0x150 [ 127.676816] ? rcu_read_lock_sched_held+0x3e/0x80 [ 127.677186] schedule+0xda/0x1b0 [ 127.677450] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.677824] syscall_exit_to_user_mode+0x19/0x40 [ 127.678186] do_syscall_64+0x48/0x90 [ 127.678486] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.678877] RIP: 0033:0x7fdcb9654b19 [ 127.679165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.680514] RSP: 002b:00007fdcb6bca218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.681088] RAX: 0000000000000001 RBX: 00007fdcb9767f68 RCX: 00007fdcb9654b19 [ 127.681619] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fdcb9767f6c [ 127.682152] RBP: 00007fdcb9767f60 R08: 000000000000000e R09: 0000000000000000 [ 127.682682] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fdcb9767f6c [ 127.683219] R13: 00007ffe6fc18bff R14: 00007fdcb6bca300 R15: 0000000000022000 [ 127.683764] [ 127.683948] irq event stamp: 948 [ 127.684201] hardirqs last enabled at (947): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 127.684892] hardirqs last disabled at (948): [] __schedule+0x1225/0x2470 [ 127.685507] softirqs last enabled at (682): [] __irq_exit_rcu+0x11b/0x180 [ 127.686135] softirqs last disabled at (639): [] __irq_exit_rcu+0x11b/0x180 [ 127.686769] ---[ end trace 0000000000000000 ]--- 14:42:42 executing program 3: openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x145000, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCGETS2(r0, 0x802c542a, &(0x7f0000000440)) ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000040)={0x0, 0xfffb, 0x9, 0x81}) VM DIAGNOSIS: 14:42:42 Registers: info registers vcpu 0 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1c91 RDI=ffffffff87645ba0 RBP=ffffffff87645b60 RSP=ffff88803f8ff698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff87645b60 R14=0000000000000010 R15=ffffffff822b1c80 RIP=ffffffff822b1ce9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fdcb6bca700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f21803608e0 CR3=000000000d584000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f01e2924470 00007f01e2923f20 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 756e20796d6d7564 20736e6f6974706f YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 73253d656d616e6c 6165722073253d73 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000005 RBX=0000000000000001 RCX=ffffffff8135b09b RDX=0000000000000004 RSI=ffffffff85e7cd88 RDI=ffffffff85b7a11c RBP=ffff88803f8b76e0 RSP=ffff88803f8b7608 R8 =ffffffff85e7cda0 R9 =ffffffff85e7cda4 R10=ffffed1007f16ede R11=000000000003603d R12=ffff88803f8b76c9 R13=ffff88803f8b76e8 R14=ffff88803f8b7688 R15=ffffffff85e7cda5 RIP=ffffffff8111b60e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000020001540 CR3=000000001029a000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f6cf53707c0 00007f6cf53707c8 YMM02=0000000000000000 0000000000000000 00007f6cf53707e0 00007f6cf53707c0 YMM03=0000000000000000 0000000000000000 00007f6cf53707c8 00007f6cf53707c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000