Warning: Permanently added '[localhost]:39478' (ECDSA) to the list of known hosts. 2022/09/12 18:18:13 fuzzer started 2022/09/12 18:18:13 dialing manager at localhost:38027 syzkaller login: [ 41.612884] cgroup: Unknown subsys name 'net' [ 41.718108] cgroup: Unknown subsys name 'rlimit' 2022/09/12 18:18:28 syscalls: 2215 2022/09/12 18:18:28 code coverage: enabled 2022/09/12 18:18:28 comparison tracing: enabled 2022/09/12 18:18:28 extra coverage: enabled 2022/09/12 18:18:28 setuid sandbox: enabled 2022/09/12 18:18:28 namespace sandbox: enabled 2022/09/12 18:18:28 Android sandbox: enabled 2022/09/12 18:18:28 fault injection: enabled 2022/09/12 18:18:28 leak checking: enabled 2022/09/12 18:18:28 net packet injection: enabled 2022/09/12 18:18:28 net device setup: enabled 2022/09/12 18:18:28 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/12 18:18:28 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/12 18:18:28 USB emulation: enabled 2022/09/12 18:18:28 hci packet injection: enabled 2022/09/12 18:18:28 wifi device emulation: failed to parse kernel version (6.0.0-rc5-next-20220912) 2022/09/12 18:18:28 802.15.4 emulation: enabled 2022/09/12 18:18:28 fetching corpus: 0, signal 0/2000 (executing program) 2022/09/12 18:18:29 fetching corpus: 50, signal 40181/43583 (executing program) 2022/09/12 18:18:29 fetching corpus: 100, signal 51199/56027 (executing program) 2022/09/12 18:18:29 fetching corpus: 150, signal 61350/67461 (executing program) 2022/09/12 18:18:29 fetching corpus: 200, signal 65454/72989 (executing program) 2022/09/12 18:18:29 fetching corpus: 250, signal 72017/80790 (executing program) 2022/09/12 18:18:29 fetching corpus: 300, signal 77488/87436 (executing program) 2022/09/12 18:18:29 fetching corpus: 350, signal 81916/93066 (executing program) 2022/09/12 18:18:29 fetching corpus: 400, signal 84999/97319 (executing program) 2022/09/12 18:18:30 fetching corpus: 450, signal 89197/102512 (executing program) 2022/09/12 18:18:30 fetching corpus: 500, signal 94252/108540 (executing program) 2022/09/12 18:18:30 fetching corpus: 550, signal 98338/113579 (executing program) 2022/09/12 18:18:30 fetching corpus: 600, signal 104115/120052 (executing program) 2022/09/12 18:18:30 fetching corpus: 650, signal 108507/125277 (executing program) 2022/09/12 18:18:30 fetching corpus: 700, signal 111898/129522 (executing program) 2022/09/12 18:18:30 fetching corpus: 750, signal 114561/133047 (executing program) 2022/09/12 18:18:31 fetching corpus: 800, signal 116764/136170 (executing program) 2022/09/12 18:18:31 fetching corpus: 850, signal 120625/140716 (executing program) 2022/09/12 18:18:31 fetching corpus: 900, signal 123013/143856 (executing program) 2022/09/12 18:18:31 fetching corpus: 950, signal 125125/146715 (executing program) 2022/09/12 18:18:31 fetching corpus: 1000, signal 128737/150919 (executing program) 2022/09/12 18:18:31 fetching corpus: 1050, signal 132172/154852 (executing program) 2022/09/12 18:18:31 fetching corpus: 1100, signal 133719/157150 (executing program) 2022/09/12 18:18:32 fetching corpus: 1150, signal 134943/159177 (executing program) 2022/09/12 18:18:32 fetching corpus: 1200, signal 137326/162164 (executing program) 2022/09/12 18:18:32 fetching corpus: 1250, signal 138593/164190 (executing program) 2022/09/12 18:18:32 fetching corpus: 1300, signal 140175/166431 (executing program) 2022/09/12 18:18:32 fetching corpus: 1350, signal 142519/169319 (executing program) 2022/09/12 18:18:32 fetching corpus: 1400, signal 144669/171967 (executing program) 2022/09/12 18:18:32 fetching corpus: 1450, signal 145880/173842 (executing program) 2022/09/12 18:18:32 fetching corpus: 1500, signal 147948/176315 (executing program) 2022/09/12 18:18:33 fetching corpus: 1550, signal 149935/178728 (executing program) 2022/09/12 18:18:33 fetching corpus: 1600, signal 151366/180701 (executing program) 2022/09/12 18:18:33 fetching corpus: 1650, signal 153059/182918 (executing program) 2022/09/12 18:18:33 fetching corpus: 1700, signal 155302/185470 (executing program) 2022/09/12 18:18:33 fetching corpus: 1750, signal 156792/187401 (executing program) 2022/09/12 18:18:33 fetching corpus: 1800, signal 158310/189363 (executing program) 2022/09/12 18:18:33 fetching corpus: 1850, signal 159687/191264 (executing program) 2022/09/12 18:18:33 fetching corpus: 1900, signal 161470/193362 (executing program) 2022/09/12 18:18:34 fetching corpus: 1950, signal 162853/195179 (executing program) 2022/09/12 18:18:34 fetching corpus: 2000, signal 164186/196906 (executing program) 2022/09/12 18:18:34 fetching corpus: 2050, signal 165368/198569 (executing program) 2022/09/12 18:18:34 fetching corpus: 2100, signal 166396/200035 (executing program) 2022/09/12 18:18:34 fetching corpus: 2150, signal 167784/201736 (executing program) 2022/09/12 18:18:34 fetching corpus: 2200, signal 169069/203372 (executing program) 2022/09/12 18:18:34 fetching corpus: 2250, signal 170057/204804 (executing program) 2022/09/12 18:18:35 fetching corpus: 2300, signal 171105/206268 (executing program) 2022/09/12 18:18:35 fetching corpus: 2350, signal 172203/207723 (executing program) 2022/09/12 18:18:35 fetching corpus: 2400, signal 173640/209441 (executing program) 2022/09/12 18:18:35 fetching corpus: 2450, signal 175218/211153 (executing program) 2022/09/12 18:18:35 fetching corpus: 2500, signal 176205/212470 (executing program) 2022/09/12 18:18:35 fetching corpus: 2550, signal 177665/214078 (executing program) 2022/09/12 18:18:35 fetching corpus: 2600, signal 179209/215762 (executing program) 2022/09/12 18:18:36 fetching corpus: 2650, signal 180325/217114 (executing program) 2022/09/12 18:18:36 fetching corpus: 2700, signal 181129/218303 (executing program) 2022/09/12 18:18:36 fetching corpus: 2750, signal 182201/219598 (executing program) 2022/09/12 18:18:36 fetching corpus: 2800, signal 183223/220882 (executing program) 2022/09/12 18:18:36 fetching corpus: 2850, signal 184528/222275 (executing program) 2022/09/12 18:18:36 fetching corpus: 2900, signal 185341/223381 (executing program) 2022/09/12 18:18:36 fetching corpus: 2950, signal 186396/224709 (executing program) 2022/09/12 18:18:37 fetching corpus: 3000, signal 187413/225930 (executing program) 2022/09/12 18:18:37 fetching corpus: 3050, signal 188323/227078 (executing program) 2022/09/12 18:18:37 fetching corpus: 3100, signal 189122/228131 (executing program) 2022/09/12 18:18:37 fetching corpus: 3150, signal 189743/229145 (executing program) 2022/09/12 18:18:37 fetching corpus: 3200, signal 191001/230419 (executing program) 2022/09/12 18:18:37 fetching corpus: 3250, signal 191880/231461 (executing program) 2022/09/12 18:18:37 fetching corpus: 3300, signal 192527/232425 (executing program) 2022/09/12 18:18:38 fetching corpus: 3350, signal 193602/233557 (executing program) 2022/09/12 18:18:38 fetching corpus: 3400, signal 194398/234536 (executing program) 2022/09/12 18:18:38 fetching corpus: 3450, signal 195352/235562 (executing program) 2022/09/12 18:18:38 fetching corpus: 3500, signal 196499/236710 (executing program) 2022/09/12 18:18:38 fetching corpus: 3550, signal 197191/237604 (executing program) 2022/09/12 18:18:38 fetching corpus: 3600, signal 198341/238670 (executing program) 2022/09/12 18:18:38 fetching corpus: 3650, signal 199087/239565 (executing program) 2022/09/12 18:18:39 fetching corpus: 3700, signal 199824/240424 (executing program) 2022/09/12 18:18:39 fetching corpus: 3750, signal 200723/241366 (executing program) 2022/09/12 18:18:39 fetching corpus: 3800, signal 201347/242199 (executing program) 2022/09/12 18:18:39 fetching corpus: 3850, signal 202202/243143 (executing program) 2022/09/12 18:18:39 fetching corpus: 3900, signal 203045/243997 (executing program) 2022/09/12 18:18:39 fetching corpus: 3950, signal 204311/244997 (executing program) 2022/09/12 18:18:39 fetching corpus: 4000, signal 205360/245893 (executing program) 2022/09/12 18:18:39 fetching corpus: 4050, signal 206209/246742 (executing program) 2022/09/12 18:18:40 fetching corpus: 4100, signal 207049/247608 (executing program) 2022/09/12 18:18:40 fetching corpus: 4150, signal 207817/248423 (executing program) 2022/09/12 18:18:40 fetching corpus: 4200, signal 208373/249097 (executing program) 2022/09/12 18:18:40 fetching corpus: 4250, signal 209343/249924 (executing program) 2022/09/12 18:18:40 fetching corpus: 4300, signal 210082/250615 (executing program) 2022/09/12 18:18:40 fetching corpus: 4350, signal 210857/251355 (executing program) 2022/09/12 18:18:40 fetching corpus: 4400, signal 211714/252127 (executing program) 2022/09/12 18:18:41 fetching corpus: 4450, signal 212121/252724 (executing program) 2022/09/12 18:18:41 fetching corpus: 4500, signal 213047/253476 (executing program) 2022/09/12 18:18:41 fetching corpus: 4550, signal 213649/254095 (executing program) 2022/09/12 18:18:41 fetching corpus: 4600, signal 214097/254703 (executing program) 2022/09/12 18:18:41 fetching corpus: 4650, signal 214737/255315 (executing program) 2022/09/12 18:18:41 fetching corpus: 4700, signal 215493/256005 (executing program) 2022/09/12 18:18:41 fetching corpus: 4750, signal 216080/256604 (executing program) 2022/09/12 18:18:41 fetching corpus: 4800, signal 217038/257313 (executing program) 2022/09/12 18:18:41 fetching corpus: 4850, signal 217420/257838 (executing program) 2022/09/12 18:18:42 fetching corpus: 4900, signal 218110/258413 (executing program) 2022/09/12 18:18:42 fetching corpus: 4950, signal 219181/259110 (executing program) 2022/09/12 18:18:42 fetching corpus: 5000, signal 220121/259797 (executing program) 2022/09/12 18:18:42 fetching corpus: 5050, signal 220755/260372 (executing program) 2022/09/12 18:18:42 fetching corpus: 5100, signal 221295/260859 (executing program) 2022/09/12 18:18:42 fetching corpus: 5150, signal 222332/261489 (executing program) 2022/09/12 18:18:43 fetching corpus: 5200, signal 222877/261987 (executing program) 2022/09/12 18:18:43 fetching corpus: 5250, signal 223463/262470 (executing program) 2022/09/12 18:18:43 fetching corpus: 5300, signal 224210/263099 (executing program) 2022/09/12 18:18:43 fetching corpus: 5350, signal 225128/263681 (executing program) 2022/09/12 18:18:43 fetching corpus: 5400, signal 225536/264095 (executing program) 2022/09/12 18:18:43 fetching corpus: 5450, signal 226286/264575 (executing program) 2022/09/12 18:18:43 fetching corpus: 5500, signal 226918/265064 (executing program) 2022/09/12 18:18:44 fetching corpus: 5550, signal 227629/265528 (executing program) 2022/09/12 18:18:44 fetching corpus: 5600, signal 228492/266025 (executing program) 2022/09/12 18:18:44 fetching corpus: 5650, signal 229142/266476 (executing program) 2022/09/12 18:18:44 fetching corpus: 5700, signal 229624/266880 (executing program) 2022/09/12 18:18:44 fetching corpus: 5750, signal 230069/267278 (executing program) 2022/09/12 18:18:44 fetching corpus: 5800, signal 230596/267676 (executing program) 2022/09/12 18:18:44 fetching corpus: 5850, signal 231084/268065 (executing program) 2022/09/12 18:18:44 fetching corpus: 5900, signal 231506/268419 (executing program) 2022/09/12 18:18:44 fetching corpus: 5950, signal 232108/268831 (executing program) 2022/09/12 18:18:45 fetching corpus: 6000, signal 232634/269204 (executing program) 2022/09/12 18:18:45 fetching corpus: 6050, signal 233711/269703 (executing program) 2022/09/12 18:18:45 fetching corpus: 6100, signal 234184/270024 (executing program) 2022/09/12 18:18:45 fetching corpus: 6150, signal 234583/270368 (executing program) 2022/09/12 18:18:45 fetching corpus: 6200, signal 235056/270728 (executing program) 2022/09/12 18:18:45 fetching corpus: 6250, signal 235333/270998 (executing program) 2022/09/12 18:18:46 fetching corpus: 6300, signal 235674/271318 (executing program) 2022/09/12 18:18:46 fetching corpus: 6350, signal 236026/271604 (executing program) 2022/09/12 18:18:46 fetching corpus: 6400, signal 236725/271973 (executing program) 2022/09/12 18:18:46 fetching corpus: 6450, signal 237530/272291 (executing program) 2022/09/12 18:18:46 fetching corpus: 6500, signal 238061/272563 (executing program) 2022/09/12 18:18:46 fetching corpus: 6550, signal 238699/272865 (executing program) 2022/09/12 18:18:46 fetching corpus: 6600, signal 239191/273118 (executing program) 2022/09/12 18:18:47 fetching corpus: 6650, signal 239584/273172 (executing program) 2022/09/12 18:18:47 fetching corpus: 6700, signal 240069/273175 (executing program) 2022/09/12 18:18:47 fetching corpus: 6750, signal 240949/273204 (executing program) 2022/09/12 18:18:47 fetching corpus: 6800, signal 241367/273248 (executing program) 2022/09/12 18:18:47 fetching corpus: 6850, signal 241958/273268 (executing program) 2022/09/12 18:18:47 fetching corpus: 6900, signal 242235/273270 (executing program) 2022/09/12 18:18:47 fetching corpus: 6950, signal 242587/273271 (executing program) 2022/09/12 18:18:48 fetching corpus: 7000, signal 243131/273275 (executing program) 2022/09/12 18:18:48 fetching corpus: 7050, signal 243596/273281 (executing program) 2022/09/12 18:18:48 fetching corpus: 7100, signal 244267/273325 (executing program) 2022/09/12 18:18:48 fetching corpus: 7150, signal 244966/273329 (executing program) 2022/09/12 18:18:48 fetching corpus: 7200, signal 245484/273351 (executing program) 2022/09/12 18:18:48 fetching corpus: 7250, signal 246192/273351 (executing program) 2022/09/12 18:18:48 fetching corpus: 7300, signal 246571/273352 (executing program) 2022/09/12 18:18:49 fetching corpus: 7350, signal 247220/273479 (executing program) 2022/09/12 18:18:49 fetching corpus: 7400, signal 247631/273484 (executing program) 2022/09/12 18:18:49 fetching corpus: 7450, signal 248083/273503 (executing program) 2022/09/12 18:18:49 fetching corpus: 7500, signal 248475/273505 (executing program) 2022/09/12 18:18:49 fetching corpus: 7550, signal 249020/273514 (executing program) 2022/09/12 18:18:49 fetching corpus: 7600, signal 249638/273519 (executing program) 2022/09/12 18:18:49 fetching corpus: 7650, signal 250301/273525 (executing program) 2022/09/12 18:18:50 fetching corpus: 7700, signal 250734/273538 (executing program) 2022/09/12 18:18:50 fetching corpus: 7750, signal 251681/273553 (executing program) 2022/09/12 18:18:50 fetching corpus: 7800, signal 252264/273634 (executing program) 2022/09/12 18:18:50 fetching corpus: 7850, signal 252829/273645 (executing program) 2022/09/12 18:18:50 fetching corpus: 7900, signal 253524/273731 (executing program) 2022/09/12 18:18:50 fetching corpus: 7950, signal 253987/273796 (executing program) 2022/09/12 18:18:51 fetching corpus: 8000, signal 254445/273800 (executing program) 2022/09/12 18:18:51 fetching corpus: 8050, signal 254813/273816 (executing program) 2022/09/12 18:18:51 fetching corpus: 8100, signal 255689/273941 (executing program) 2022/09/12 18:18:51 fetching corpus: 8150, signal 256257/273958 (executing program) 2022/09/12 18:18:51 fetching corpus: 8200, signal 256586/273963 (executing program) 2022/09/12 18:18:51 fetching corpus: 8250, signal 256871/273976 (executing program) 2022/09/12 18:18:52 fetching corpus: 8300, signal 257145/273993 (executing program) 2022/09/12 18:18:52 fetching corpus: 8350, signal 257479/274010 (executing program) 2022/09/12 18:18:52 fetching corpus: 8400, signal 258074/274034 (executing program) 2022/09/12 18:18:52 fetching corpus: 8450, signal 258698/274034 (executing program) 2022/09/12 18:18:52 fetching corpus: 8500, signal 259045/274049 (executing program) 2022/09/12 18:18:52 fetching corpus: 8550, signal 259474/274050 (executing program) 2022/09/12 18:18:52 fetching corpus: 8600, signal 259904/274056 (executing program) 2022/09/12 18:18:53 fetching corpus: 8650, signal 260336/274081 (executing program) 2022/09/12 18:18:53 fetching corpus: 8700, signal 260615/274085 (executing program) 2022/09/12 18:18:53 fetching corpus: 8750, signal 261047/274112 (executing program) 2022/09/12 18:18:53 fetching corpus: 8800, signal 261606/274126 (executing program) 2022/09/12 18:18:53 fetching corpus: 8850, signal 261977/274128 (executing program) 2022/09/12 18:18:53 fetching corpus: 8900, signal 263116/274216 (executing program) 2022/09/12 18:18:53 fetching corpus: 8950, signal 263536/274235 (executing program) 2022/09/12 18:18:53 fetching corpus: 8958, signal 263563/274235 (executing program) 2022/09/12 18:18:53 fetching corpus: 8958, signal 263563/274235 (executing program) 2022/09/12 18:18:56 starting 8 fuzzer processes 18:18:56 executing program 0: clone(0x2808500, 0x0, 0x0, 0x0, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="d37d275185131c29b00baa16945b7db719fc0ddb924676c9e24002c6f2dbbec0d89c4e44f9004af7d358dbb3ed72fe") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") clone(0x100, &(0x7f00000007c0)="e92751b71a3460cb6fd3f51263a57f955aa29e720b541f66e00653535f3fd47bf8e503536b619460ec290725608a68966e5af7b0ea97f65a84c3eac512adb5c26ac830f3fccf05e196a8685dd48f0354ae", &(0x7f0000000840), &(0x7f0000000880), &(0x7f00000008c0)="3f51c1614671574380ec8c0352342a8fdf580bfc76030250ee35c3d69d6ec7341cce6d48e00fddc6363d8fef8f11c325509fbdaddfde71435b4c790e149b7ecae93601613e5ab6ce4377768b443a35923af1cb1da436873d7933b5bfba924afe4c56bdacec8c132999d66ee756b7faf2d8ee998acd5f56428f40110742f4efe9") clone(0x4208000, &(0x7f0000000940)="07c6720af94a320dafb520fe1dc2a75f9ec6baf6ccee614acf59e29f61646835917bee02c567585286a02d2051011108b8a622c06810e6af1f31f209650826a26decb2cccb29490f59dc3bd10f232686bffb2175c7dcb1ed0b6eadbd6f63cdd9f26ba0589f5b415aeb044448a9eba163ebfb6ab5cd20ea712000923460c86d134668f35ad9f2d76caaf40b4d930816fd18edafd69dd09bbb4e7c6265d4fee18df5a3280251ace51cbb7342333242b8639bb92ba6dd6e0cf18a2895742be16ab0a5801892ab73579522b249cd", &(0x7f0000000a40), &(0x7f0000000a80), &(0x7f0000000ac0)="7820e67ca3cc1a4c812754bb478dd81b4b176420691ed4e8a5ea255bc5e6414d8f5b794a04") clone(0x8000000, &(0x7f0000000b00)="49150ea4bc5ad6e05b28182859fad8344c5081a244991f82da112a7d8c9f5d868cc8c59f5ced6bbdcc8486a99a9983885aa9d5b9a4a27c68661dad2bfb7c02eab6ca4efcfd5aaa0d5e70bf5527164efe790e34cf065cd6ded2e7e14ebdb7422b216c9220f8b0fdf518899b5cc3b44601025548f0194592441255fc62de4b6dd2bef07c18729f7fccc39e0440b4e7d3f44dbb47ba19c6536590f85fb8f49c77ea41f4d4362738312aa874134f6bf53b11b98ded14fe61a88783a4362f02489af94422887a6d7261a00becdcc7ab21bb7206c689eaeef3432225057ef8500e38bc22ef24", &(0x7f0000000c00), &(0x7f0000000c40), &(0x7f0000000c80)="221f951bef645c46632c2641e7a05c63d734fbe9811586fffa6e39ea8e60dd6e0f0f7962db8216c845876fc47300d14d6ba0634ebb94eca451f08708dfbdcdd44194a4747cd8f61a327955d9c8f5c3daa5233c809b73881d1328082cfb34e28e70a8129c1556186119bc691e6ea02b42364e5f02eaf41e157083087f02140b8cffd005a4f61d5608e618388182438056d8b7eb00c4f846c2ef051aaf486ccb327233a7fd73e60414f57f598dff22bfb1bfcd040c675655c0a71987710328202fa0610783df7b5c720bb7bbb1e81544a0d866e4761d44e8a7b1122d485559") clone(0x2000000, &(0x7f0000000d80)="f9efa865df926232404ca434bf68236661a07bc15b9e382d7398870e4d27256bf88cf48588e07f4188f394fc7c5aff6e657dd327035bd0a60b663da1e4b1402aa14ca8f780ea0504843a5bcc8c2897e0d733e31c082384973960922d6cba64c5386c2bd5", &(0x7f0000000e00), &(0x7f0000000e40), &(0x7f0000000e80)="4fec0154f44231979abef89dde69c4ca7e0167dcc117788c730dbdf135de6c54b8ab7cdb396176276126784580876a4f77b9fdc3286a66f2264c182196e69e294e914353a3e2d1acb8946eed014cdb5e60859a4781a16bc5bfbf52c5d531501f5fa37a75d1bbdf437b56e7a9301d217e222c23b655cecedbe98dcdda07f21782b0c53a21a77dde9dd7b461e50a5c2a74c2a72b6345") 18:18:56 executing program 2: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_netfilter(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={0x14, 0x0, 0x0, 0x5}, 0x14}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0, 0xc0002100}, 0x0) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) 18:18:56 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0, 0x820, &(0x7f0000000340)=ANY=[]) utime(&(0x7f0000000640)='./file1\x00', 0x0) 18:18:56 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0x40505331, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x6}) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xa0014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x100000) 18:18:56 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x4042, 0x0) pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x8040000) 18:18:56 executing program 5: rt_sigprocmask(0x0, 0x0, 0x0, 0x0) 18:18:56 executing program 6: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = gettid() sendmsg$netlink(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000014c0)={0x10}, 0x10}], 0x1, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {r1}}}], 0x20}, 0x0) [ 84.084937] audit: type=1400 audit(1663006736.203:6): avc: denied { execmem } for pid=282 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:18:56 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0) signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0) [ 85.247429] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.248519] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.250048] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.253246] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.254481] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 85.255810] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.261526] Bluetooth: hci0: HCI_REQ-0x0c1a [ 85.391174] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.392271] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 85.393357] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 85.394526] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.398143] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 85.398691] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.399306] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 85.399874] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 85.400436] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.401550] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 85.405081] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 85.406633] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 85.407459] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 85.408142] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.409214] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.410391] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.410577] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 85.411272] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 85.413853] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.414759] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 85.415429] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 85.416465] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 85.416605] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.418192] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 85.418294] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 85.419584] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 85.419854] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 85.421463] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 85.421820] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 85.422881] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.424727] Bluetooth: hci2: HCI_REQ-0x0c1a [ 85.430358] Bluetooth: hci5: HCI_REQ-0x0c1a [ 85.438280] Bluetooth: hci3: HCI_REQ-0x0c1a [ 85.443998] Bluetooth: hci4: HCI_REQ-0x0c1a [ 85.445558] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 85.463148] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 85.465400] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 85.466791] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 85.468323] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 85.473035] Bluetooth: hci7: HCI_REQ-0x0c1a [ 85.476189] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 85.489006] Bluetooth: hci6: HCI_REQ-0x0c1a [ 87.271625] Bluetooth: hci0: command 0x0409 tx timeout [ 87.335002] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 87.462222] Bluetooth: hci2: command 0x0409 tx timeout [ 87.463017] Bluetooth: hci4: command 0x0409 tx timeout [ 87.463828] Bluetooth: hci3: command 0x0409 tx timeout [ 87.464423] Bluetooth: hci5: command 0x0409 tx timeout [ 87.526191] Bluetooth: hci7: command 0x0409 tx timeout [ 87.527090] Bluetooth: hci6: command 0x0409 tx timeout [ 89.318351] Bluetooth: hci0: command 0x041b tx timeout [ 89.511119] Bluetooth: hci5: command 0x041b tx timeout [ 89.512052] Bluetooth: hci3: command 0x041b tx timeout [ 89.512838] Bluetooth: hci4: command 0x041b tx timeout [ 89.513666] Bluetooth: hci2: command 0x041b tx timeout [ 89.575088] Bluetooth: hci6: command 0x041b tx timeout [ 89.575913] Bluetooth: hci7: command 0x041b tx timeout [ 91.366991] Bluetooth: hci0: command 0x040f tx timeout [ 91.559026] Bluetooth: hci2: command 0x040f tx timeout [ 91.559524] Bluetooth: hci4: command 0x040f tx timeout [ 91.560879] Bluetooth: hci3: command 0x040f tx timeout [ 91.561694] Bluetooth: hci5: command 0x040f tx timeout [ 91.621988] Bluetooth: hci7: command 0x040f tx timeout [ 91.622472] Bluetooth: hci6: command 0x040f tx timeout [ 92.647014] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 93.414012] Bluetooth: hci0: command 0x0419 tx timeout [ 93.607017] Bluetooth: hci5: command 0x0419 tx timeout [ 93.607490] Bluetooth: hci3: command 0x0419 tx timeout [ 93.607894] Bluetooth: hci4: command 0x0419 tx timeout [ 93.609517] Bluetooth: hci2: command 0x0419 tx timeout [ 93.669999] Bluetooth: hci6: command 0x0419 tx timeout [ 93.670423] Bluetooth: hci7: command 0x0419 tx timeout [ 95.491366] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 95.531182] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 95.539404] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 95.546080] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 95.547039] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 95.547745] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 95.552725] Bluetooth: hci1: HCI_REQ-0x0c1a [ 97.575047] Bluetooth: hci1: command 0x0409 tx timeout [ 99.623044] Bluetooth: hci1: command 0x041b tx timeout [ 101.671075] Bluetooth: hci1: command 0x040f tx timeout [ 103.718984] Bluetooth: hci1: command 0x0419 tx timeout 18:19:50 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0, 0x820, &(0x7f0000000340)=ANY=[]) utime(&(0x7f0000000640)='./file1\x00', 0x0) [ 138.398560] audit: type=1400 audit(1663006790.516:7): avc: denied { open } for pid=3728 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 138.400074] audit: type=1400 audit(1663006790.517:8): avc: denied { kernel } for pid=3728 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 18:19:50 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0, 0x820, &(0x7f0000000340)=ANY=[]) utime(&(0x7f0000000640)='./file1\x00', 0x0) [ 138.417557] ------------[ cut here ]------------ [ 138.417577] [ 138.417580] ====================================================== [ 138.417583] WARNING: possible circular locking dependency detected [ 138.417587] 6.0.0-rc5-next-20220912 #1 Not tainted [ 138.417594] ------------------------------------------------------ [ 138.417597] syz-executor.4/3729 is trying to acquire lock: [ 138.417603] ffffffff853fa878 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 138.417642] [ 138.417642] but task is already holding lock: [ 138.417644] ffff88801d65bc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 138.417672] [ 138.417672] which lock already depends on the new lock. [ 138.417672] [ 138.417675] [ 138.417675] the existing dependency chain (in reverse order) is: [ 138.417678] [ 138.417678] -> #3 (&ctx->lock){....}-{2:2}: [ 138.417692] _raw_spin_lock+0x2a/0x40 [ 138.417709] __perf_event_task_sched_out+0x53b/0x18d0 [ 138.417721] __schedule+0xedd/0x2470 [ 138.417731] schedule+0xda/0x1b0 [ 138.417740] futex_wait_queue+0xf5/0x1e0 [ 138.417751] futex_wait+0x28e/0x690 [ 138.417761] do_futex+0x2ff/0x380 [ 138.417770] __x64_sys_futex+0x1c6/0x4d0 [ 138.417780] do_syscall_64+0x3b/0x90 [ 138.417794] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.417811] [ 138.417811] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 138.417825] _raw_spin_lock_nested+0x30/0x40 [ 138.417839] raw_spin_rq_lock_nested+0x1e/0x30 [ 138.417853] task_fork_fair+0x63/0x4d0 [ 138.417870] sched_cgroup_fork+0x3d0/0x540 [ 138.417884] copy_process+0x3f9e/0x6df0 [ 138.417895] kernel_clone+0xe7/0x890 [ 138.417904] user_mode_thread+0xad/0xf0 [ 138.417914] rest_init+0x24/0x250 [ 138.417931] arch_call_rest_init+0xf/0x14 [ 138.417953] start_kernel+0x4c1/0x4e6 [ 138.417970] secondary_startup_64_no_verify+0xe0/0xeb [ 138.417985] [ 138.417985] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 138.417998] _raw_spin_lock_irqsave+0x39/0x60 [ 138.418013] try_to_wake_up+0xab/0x1920 [ 138.418026] up+0x75/0xb0 [ 138.418038] __up_console_sem+0x6e/0x80 [ 138.418054] console_unlock+0x46a/0x590 [ 138.418070] do_con_write+0xc05/0x1d50 [ 138.418082] con_write+0x21/0x40 [ 138.418092] n_tty_write+0x4d4/0xfe0 [ 138.418107] file_tty_write.constprop.0+0x49c/0x8f0 [ 138.418121] vfs_write+0x9c3/0xd90 [ 138.418140] ksys_write+0x127/0x250 [ 138.418157] do_syscall_64+0x3b/0x90 [ 138.418169] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.418186] [ 138.418186] -> #0 ((console_sem).lock){....}-{2:2}: [ 138.418200] __lock_acquire+0x2a02/0x5e70 [ 138.418217] lock_acquire+0x1a2/0x530 [ 138.418233] _raw_spin_lock_irqsave+0x39/0x60 [ 138.418247] down_trylock+0xe/0x70 [ 138.418260] __down_trylock_console_sem+0x3b/0xd0 [ 138.418276] vprintk_emit+0x16b/0x560 [ 138.418293] vprintk+0x84/0xa0 [ 138.418309] _printk+0xba/0xf1 [ 138.418327] report_bug.cold+0x72/0xab [ 138.418339] handle_bug+0x3c/0x70 [ 138.418351] exc_invalid_op+0x14/0x50 [ 138.418364] asm_exc_invalid_op+0x16/0x20 [ 138.418381] group_sched_out.part.0+0x2c7/0x460 [ 138.418391] ctx_sched_out+0x8f1/0xc10 [ 138.418401] __perf_event_task_sched_out+0x6d0/0x18d0 [ 138.418413] __schedule+0xedd/0x2470 [ 138.418422] schedule+0xda/0x1b0 [ 138.418431] futex_wait_queue+0xf5/0x1e0 [ 138.418441] futex_wait+0x28e/0x690 [ 138.418451] do_futex+0x2ff/0x380 [ 138.418460] __x64_sys_futex+0x1c6/0x4d0 [ 138.418477] do_syscall_64+0x3b/0x90 [ 138.418489] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.418506] [ 138.418506] other info that might help us debug this: [ 138.418506] [ 138.418509] Chain exists of: [ 138.418509] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 138.418509] [ 138.418524] Possible unsafe locking scenario: [ 138.418524] [ 138.418526] CPU0 CPU1 [ 138.418529] ---- ---- [ 138.418531] lock(&ctx->lock); [ 138.418537] lock(&rq->__lock); [ 138.418543] lock(&ctx->lock); [ 138.418550] lock((console_sem).lock); [ 138.418555] [ 138.418555] *** DEADLOCK *** [ 138.418555] [ 138.418557] 2 locks held by syz-executor.4/3729: [ 138.418564] #0: ffff88806ce37cd8 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 138.418589] #1: ffff88801d65bc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 138.418617] [ 138.418617] stack backtrace: [ 138.418620] CPU: 0 PID: 3729 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220912 #1 [ 138.418633] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 138.418641] Call Trace: [ 138.418644] [ 138.418648] dump_stack_lvl+0x8b/0xb3 [ 138.418663] check_noncircular+0x263/0x2e0 [ 138.418680] ? format_decode+0x26c/0xb50 [ 138.418695] ? print_circular_bug+0x450/0x450 [ 138.418713] ? enable_ptr_key_workfn+0x20/0x20 [ 138.418727] ? perf_trace_lock+0x308/0x560 [ 138.418741] ? format_decode+0x26c/0xb50 [ 138.418757] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 138.418776] __lock_acquire+0x2a02/0x5e70 [ 138.418800] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 138.418824] lock_acquire+0x1a2/0x530 [ 138.418842] ? down_trylock+0xe/0x70 [ 138.418857] ? rcu_read_unlock+0x40/0x40 [ 138.418880] ? vprintk+0x84/0xa0 [ 138.418899] _raw_spin_lock_irqsave+0x39/0x60 [ 138.418914] ? down_trylock+0xe/0x70 [ 138.418928] down_trylock+0xe/0x70 [ 138.418942] ? vprintk+0x84/0xa0 [ 138.418959] __down_trylock_console_sem+0x3b/0xd0 [ 138.418977] vprintk_emit+0x16b/0x560 [ 138.418997] vprintk+0x84/0xa0 [ 138.419016] _printk+0xba/0xf1 [ 138.419033] ? record_print_text.cold+0x16/0x16 [ 138.419057] ? report_bug.cold+0x66/0xab [ 138.419072] ? group_sched_out.part.0+0x2c7/0x460 [ 138.419083] report_bug.cold+0x72/0xab [ 138.419099] handle_bug+0x3c/0x70 [ 138.419112] exc_invalid_op+0x14/0x50 [ 138.419127] asm_exc_invalid_op+0x16/0x20 [ 138.419144] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 138.419157] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 138.419169] RSP: 0018:ffff8880355c78f8 EFLAGS: 00010006 [ 138.419178] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 138.419186] RDX: ffff88801efc3580 RSI: ffffffff81566027 RDI: 0000000000000005 [ 138.419194] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 138.419201] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88801d65bc00 [ 138.419209] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 138.419222] ? group_sched_out.part.0+0x2c7/0x460 [ 138.419235] ? group_sched_out.part.0+0x2c7/0x460 [ 138.419249] ctx_sched_out+0x8f1/0xc10 [ 138.419262] __perf_event_task_sched_out+0x6d0/0x18d0 [ 138.419278] ? lock_is_held_type+0xd7/0x130 [ 138.419298] ? __perf_cgroup_move+0x160/0x160 [ 138.419309] ? set_next_entity+0x304/0x550 [ 138.419331] ? lock_is_held_type+0xd7/0x130 [ 138.419350] __schedule+0xedd/0x2470 [ 138.419364] ? io_schedule_timeout+0x150/0x150 [ 138.419375] ? futex_wait_setup+0x166/0x230 [ 138.419390] schedule+0xda/0x1b0 [ 138.419401] futex_wait_queue+0xf5/0x1e0 [ 138.419414] futex_wait+0x28e/0x690 [ 138.419427] ? futex_wait_setup+0x230/0x230 [ 138.419441] ? wake_up_q+0x8b/0xf0 [ 138.419454] ? do_raw_spin_unlock+0x4f/0x220 [ 138.419474] ? futex_wake+0x158/0x490 [ 138.419493] ? fd_install+0x1f9/0x640 [ 138.419510] do_futex+0x2ff/0x380 [ 138.419521] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 138.419538] __x64_sys_futex+0x1c6/0x4d0 [ 138.419552] ? __x64_sys_futex_time32+0x480/0x480 [ 138.419565] ? syscall_enter_from_user_mode+0x1d/0x50 [ 138.419583] ? syscall_enter_from_user_mode+0x1d/0x50 [ 138.419604] do_syscall_64+0x3b/0x90 [ 138.419618] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.419636] RIP: 0033:0x7f08805f1b19 [ 138.419644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 138.419655] RSP: 002b:00007f087db67218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 138.419666] RAX: ffffffffffffffda RBX: 00007f0880704f68 RCX: 00007f08805f1b19 [ 138.419674] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0880704f68 [ 138.419681] RBP: 00007f0880704f60 R08: 0000000000000000 R09: 0000000000000000 [ 138.419689] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0880704f6c [ 138.419696] R13: 00007ffd9be0e47f R14: 00007f087db67300 R15: 0000000000022000 [ 138.419711] [ 138.481382] WARNING: CPU: 0 PID: 3729 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 138.482070] Modules linked in: [ 138.482318] CPU: 0 PID: 3729 Comm: syz-executor.4 Not tainted 6.0.0-rc5-next-20220912 #1 [ 138.482933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 138.483763] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 138.484170] Code: 5e 41 5f e9 3b b7 ef ff e8 36 b7 ef ff 65 8b 1d ab 15 ac 7e 31 ff 89 de e8 d6 b3 ef ff 85 db 0f 84 8a 00 00 00 e8 19 b7 ef ff <0f> 0b e9 a5 fe ff ff e8 0d b7 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 138.485525] RSP: 0018:ffff8880355c78f8 EFLAGS: 00010006 [ 138.485926] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 138.486476] RDX: ffff88801efc3580 RSI: ffffffff81566027 RDI: 0000000000000005 [ 138.487000] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 138.487523] R10: 0000000000000000 R11: ffffffff865aa01b R12: ffff88801d65bc00 [ 138.488051] R13: ffff88806ce3d100 R14: ffffffff8547c660 R15: 0000000000000002 [ 138.488578] FS: 00007f087db67700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 138.489167] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 138.489598] CR2: 00007f8e0ac5c028 CR3: 000000000ff30000 CR4: 0000000000350ef0 [ 138.490125] Call Trace: [ 138.490319] [ 138.490501] ctx_sched_out+0x8f1/0xc10 [ 138.490802] __perf_event_task_sched_out+0x6d0/0x18d0 [ 138.491229] ? lock_is_held_type+0xd7/0x130 [ 138.491562] ? __perf_cgroup_move+0x160/0x160 [ 138.491905] ? set_next_entity+0x304/0x550 [ 138.492231] ? lock_is_held_type+0xd7/0x130 [ 138.492565] __schedule+0xedd/0x2470 [ 138.492850] ? io_schedule_timeout+0x150/0x150 [ 138.493196] ? futex_wait_setup+0x166/0x230 [ 138.493521] schedule+0xda/0x1b0 [ 138.493781] futex_wait_queue+0xf5/0x1e0 [ 138.494087] futex_wait+0x28e/0x690 [ 138.494367] ? futex_wait_setup+0x230/0x230 [ 138.494706] ? wake_up_q+0x8b/0xf0 [ 138.494981] ? do_raw_spin_unlock+0x4f/0x220 [ 138.495316] ? futex_wake+0x158/0x490 [ 138.495611] ? fd_install+0x1f9/0x640 [ 138.495897] do_futex+0x2ff/0x380 [ 138.496160] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 138.496584] __x64_sys_futex+0x1c6/0x4d0 [ 138.496891] ? __x64_sys_futex_time32+0x480/0x480 [ 138.497256] ? syscall_enter_from_user_mode+0x1d/0x50 [ 138.497644] ? syscall_enter_from_user_mode+0x1d/0x50 [ 138.498034] do_syscall_64+0x3b/0x90 [ 138.498309] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 138.498706] RIP: 0033:0x7f08805f1b19 [ 138.498985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 138.500280] RSP: 002b:00007f087db67218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 138.500833] RAX: ffffffffffffffda RBX: 00007f0880704f68 RCX: 00007f08805f1b19 [ 138.501355] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f0880704f68 [ 138.501892] RBP: 00007f0880704f60 R08: 0000000000000000 R09: 0000000000000000 [ 138.502438] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0880704f6c [ 138.502982] R13: 00007ffd9be0e47f R14: 00007f087db67300 R15: 0000000000022000 [ 138.503521] [ 138.503701] irq event stamp: 2118 [ 138.503961] hardirqs last enabled at (2117): [] syscall_enter_from_user_mode+0x1d/0x50 [ 138.504665] hardirqs last disabled at (2118): [] __schedule+0x1225/0x2470 [ 138.505295] softirqs last enabled at (1920): [] __irq_exit_rcu+0x11b/0x180 [ 138.505935] softirqs last disabled at (1915): [] __irq_exit_rcu+0x11b/0x180 [ 138.506593] ---[ end trace 0000000000000000 ]--- 18:19:50 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0, 0x820, &(0x7f0000000340)=ANY=[]) utime(&(0x7f0000000640)='./file1\x00', 0x0) 18:19:50 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_SELLOADLUT(r0, 0x541c, &(0x7f0000000000)) 18:19:50 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_SELLOADLUT(r0, 0x541c, &(0x7f0000000000)) 18:19:50 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_SELLOADLUT(r0, 0x541c, &(0x7f0000000000)) 18:19:50 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_SELLOADLUT(r0, 0x541c, &(0x7f0000000000)) 18:19:51 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) [ 139.002165] audit: type=1400 audit(1663006791.120:9): avc: denied { write } for pid=3775 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 139.409249] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3819 comm=syz-executor.6 [ 139.417302] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3821 comm=syz-executor.6 [ 139.761754] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3858 comm=syz-executor.2 [ 139.764969] hrtimer: interrupt took 31098 ns [ 139.775621] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3859 comm=syz-executor.2 18:19:53 executing program 0: clone(0x2808500, 0x0, 0x0, 0x0, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="d37d275185131c29b00baa16945b7db719fc0ddb924676c9e24002c6f2dbbec0d89c4e44f9004af7d358dbb3ed72fe") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") clone(0x100, &(0x7f00000007c0)="e92751b71a3460cb6fd3f51263a57f955aa29e720b541f66e00653535f3fd47bf8e503536b619460ec290725608a68966e5af7b0ea97f65a84c3eac512adb5c26ac830f3fccf05e196a8685dd48f0354ae", &(0x7f0000000840), &(0x7f0000000880), &(0x7f00000008c0)="3f51c1614671574380ec8c0352342a8fdf580bfc76030250ee35c3d69d6ec7341cce6d48e00fddc6363d8fef8f11c325509fbdaddfde71435b4c790e149b7ecae93601613e5ab6ce4377768b443a35923af1cb1da436873d7933b5bfba924afe4c56bdacec8c132999d66ee756b7faf2d8ee998acd5f56428f40110742f4efe9") clone(0x4208000, &(0x7f0000000940)="07c6720af94a320dafb520fe1dc2a75f9ec6baf6ccee614acf59e29f61646835917bee02c567585286a02d2051011108b8a622c06810e6af1f31f209650826a26decb2cccb29490f59dc3bd10f232686bffb2175c7dcb1ed0b6eadbd6f63cdd9f26ba0589f5b415aeb044448a9eba163ebfb6ab5cd20ea712000923460c86d134668f35ad9f2d76caaf40b4d930816fd18edafd69dd09bbb4e7c6265d4fee18df5a3280251ace51cbb7342333242b8639bb92ba6dd6e0cf18a2895742be16ab0a5801892ab73579522b249cd", &(0x7f0000000a40), &(0x7f0000000a80), &(0x7f0000000ac0)="7820e67ca3cc1a4c812754bb478dd81b4b176420691ed4e8a5ea255bc5e6414d8f5b794a04") clone(0x8000000, &(0x7f0000000b00)="49150ea4bc5ad6e05b28182859fad8344c5081a244991f82da112a7d8c9f5d868cc8c59f5ced6bbdcc8486a99a9983885aa9d5b9a4a27c68661dad2bfb7c02eab6ca4efcfd5aaa0d5e70bf5527164efe790e34cf065cd6ded2e7e14ebdb7422b216c9220f8b0fdf518899b5cc3b44601025548f0194592441255fc62de4b6dd2bef07c18729f7fccc39e0440b4e7d3f44dbb47ba19c6536590f85fb8f49c77ea41f4d4362738312aa874134f6bf53b11b98ded14fe61a88783a4362f02489af94422887a6d7261a00becdcc7ab21bb7206c689eaeef3432225057ef8500e38bc22ef24", &(0x7f0000000c00), &(0x7f0000000c40), &(0x7f0000000c80)="221f951bef645c46632c2641e7a05c63d734fbe9811586fffa6e39ea8e60dd6e0f0f7962db8216c845876fc47300d14d6ba0634ebb94eca451f08708dfbdcdd44194a4747cd8f61a327955d9c8f5c3daa5233c809b73881d1328082cfb34e28e70a8129c1556186119bc691e6ea02b42364e5f02eaf41e157083087f02140b8cffd005a4f61d5608e618388182438056d8b7eb00c4f846c2ef051aaf486ccb327233a7fd73e60414f57f598dff22bfb1bfcd040c675655c0a71987710328202fa0610783df7b5c720bb7bbb1e81544a0d866e4761d44e8a7b1122d485559") clone(0x2000000, &(0x7f0000000d80)="f9efa865df926232404ca434bf68236661a07bc15b9e382d7398870e4d27256bf88cf48588e07f4188f394fc7c5aff6e657dd327035bd0a60b663da1e4b1402aa14ca8f780ea0504843a5bcc8c2897e0d733e31c082384973960922d6cba64c5386c2bd5", &(0x7f0000000e00), &(0x7f0000000e40), &(0x7f0000000e80)="4fec0154f44231979abef89dde69c4ca7e0167dcc117788c730dbdf135de6c54b8ab7cdb396176276126784580876a4f77b9fdc3286a66f2264c182196e69e294e914353a3e2d1acb8946eed014cdb5e60859a4781a16bc5bfbf52c5d531501f5fa37a75d1bbdf437b56e7a9301d217e222c23b655cecedbe98dcdda07f21782b0c53a21a77dde9dd7b461e50a5c2a74c2a72b6345") 18:19:53 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:53 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x4042, 0x0) pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x8040000) 18:19:53 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0x40505331, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x6}) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xa0014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x100000) 18:19:53 executing program 6: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = gettid() sendmsg$netlink(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000014c0)={0x10}, 0x10}], 0x1, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {r1}}}], 0x20}, 0x0) 18:19:53 executing program 2: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_netfilter(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={0x14, 0x0, 0x0, 0x5}, 0x14}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0, 0xc0002100}, 0x0) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) 18:19:53 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x4042, 0x0) pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x8040000) 18:19:53 executing program 5: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) [ 141.659604] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3993 comm=syz-executor.2 [ 141.678525] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4000 comm=syz-executor.6 18:19:53 executing program 6: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = gettid() sendmsg$netlink(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000014c0)={0x10}, 0x10}], 0x1, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {r1}}}], 0x20}, 0x0) [ 141.748433] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4009 comm=syz-executor.6 18:19:53 executing program 2: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_netfilter(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={0x14, 0x0, 0x0, 0x5}, 0x14}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0, 0xc0002100}, 0x0) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) 18:19:53 executing program 6: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = gettid() sendmsg$netlink(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000014c0)={0x10}, 0x10}], 0x1, &(0x7f0000000780)=[@cred={{0x1c, 0x1, 0x2, {r1}}}], 0x20}, 0x0) 18:19:53 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) [ 141.813553] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4012 comm=syz-executor.2 18:19:53 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x4042, 0x0) pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x8040000) [ 141.853588] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4015 comm=syz-executor.6 18:19:54 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x4042, 0x0) pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x8040000) 18:19:54 executing program 2: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_netfilter(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={0x14, 0x0, 0x0, 0x5}, 0x14}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0, 0xc0002100}, 0x0) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) 18:19:54 executing program 5: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) [ 141.955242] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4024 comm=syz-executor.2 18:19:54 executing program 0: clone(0x2808500, 0x0, 0x0, 0x0, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="d37d275185131c29b00baa16945b7db719fc0ddb924676c9e24002c6f2dbbec0d89c4e44f9004af7d358dbb3ed72fe") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") clone(0x100, &(0x7f00000007c0)="e92751b71a3460cb6fd3f51263a57f955aa29e720b541f66e00653535f3fd47bf8e503536b619460ec290725608a68966e5af7b0ea97f65a84c3eac512adb5c26ac830f3fccf05e196a8685dd48f0354ae", &(0x7f0000000840), &(0x7f0000000880), &(0x7f00000008c0)="3f51c1614671574380ec8c0352342a8fdf580bfc76030250ee35c3d69d6ec7341cce6d48e00fddc6363d8fef8f11c325509fbdaddfde71435b4c790e149b7ecae93601613e5ab6ce4377768b443a35923af1cb1da436873d7933b5bfba924afe4c56bdacec8c132999d66ee756b7faf2d8ee998acd5f56428f40110742f4efe9") clone(0x4208000, &(0x7f0000000940)="07c6720af94a320dafb520fe1dc2a75f9ec6baf6ccee614acf59e29f61646835917bee02c567585286a02d2051011108b8a622c06810e6af1f31f209650826a26decb2cccb29490f59dc3bd10f232686bffb2175c7dcb1ed0b6eadbd6f63cdd9f26ba0589f5b415aeb044448a9eba163ebfb6ab5cd20ea712000923460c86d134668f35ad9f2d76caaf40b4d930816fd18edafd69dd09bbb4e7c6265d4fee18df5a3280251ace51cbb7342333242b8639bb92ba6dd6e0cf18a2895742be16ab0a5801892ab73579522b249cd", &(0x7f0000000a40), &(0x7f0000000a80), &(0x7f0000000ac0)="7820e67ca3cc1a4c812754bb478dd81b4b176420691ed4e8a5ea255bc5e6414d8f5b794a04") clone(0x8000000, &(0x7f0000000b00)="49150ea4bc5ad6e05b28182859fad8344c5081a244991f82da112a7d8c9f5d868cc8c59f5ced6bbdcc8486a99a9983885aa9d5b9a4a27c68661dad2bfb7c02eab6ca4efcfd5aaa0d5e70bf5527164efe790e34cf065cd6ded2e7e14ebdb7422b216c9220f8b0fdf518899b5cc3b44601025548f0194592441255fc62de4b6dd2bef07c18729f7fccc39e0440b4e7d3f44dbb47ba19c6536590f85fb8f49c77ea41f4d4362738312aa874134f6bf53b11b98ded14fe61a88783a4362f02489af94422887a6d7261a00becdcc7ab21bb7206c689eaeef3432225057ef8500e38bc22ef24", &(0x7f0000000c00), &(0x7f0000000c40), &(0x7f0000000c80)="221f951bef645c46632c2641e7a05c63d734fbe9811586fffa6e39ea8e60dd6e0f0f7962db8216c845876fc47300d14d6ba0634ebb94eca451f08708dfbdcdd44194a4747cd8f61a327955d9c8f5c3daa5233c809b73881d1328082cfb34e28e70a8129c1556186119bc691e6ea02b42364e5f02eaf41e157083087f02140b8cffd005a4f61d5608e618388182438056d8b7eb00c4f846c2ef051aaf486ccb327233a7fd73e60414f57f598dff22bfb1bfcd040c675655c0a71987710328202fa0610783df7b5c720bb7bbb1e81544a0d866e4761d44e8a7b1122d485559") clone(0x2000000, &(0x7f0000000d80)="f9efa865df926232404ca434bf68236661a07bc15b9e382d7398870e4d27256bf88cf48588e07f4188f394fc7c5aff6e657dd327035bd0a60b663da1e4b1402aa14ca8f780ea0504843a5bcc8c2897e0d733e31c082384973960922d6cba64c5386c2bd5", &(0x7f0000000e00), &(0x7f0000000e40), &(0x7f0000000e80)="4fec0154f44231979abef89dde69c4ca7e0167dcc117788c730dbdf135de6c54b8ab7cdb396176276126784580876a4f77b9fdc3286a66f2264c182196e69e294e914353a3e2d1acb8946eed014cdb5e60859a4781a16bc5bfbf52c5d531501f5fa37a75d1bbdf437b56e7a9301d217e222c23b655cecedbe98dcdda07f21782b0c53a21a77dde9dd7b461e50a5c2a74c2a72b6345") 18:19:54 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:54 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0x40505331, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x6}) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xa0014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x100000) 18:19:54 executing program 5: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:54 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x4042, 0x0) pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x8040000) 18:19:54 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x4042, 0x0) pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x8040000) 18:19:54 executing program 0: clone(0x2808500, 0x0, 0x0, 0x0, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="d37d275185131c29b00baa16945b7db719fc0ddb924676c9e24002c6f2dbbec0d89c4e44f9004af7d358dbb3ed72fe") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") clone(0x100, &(0x7f00000007c0)="e92751b71a3460cb6fd3f51263a57f955aa29e720b541f66e00653535f3fd47bf8e503536b619460ec290725608a68966e5af7b0ea97f65a84c3eac512adb5c26ac830f3fccf05e196a8685dd48f0354ae", &(0x7f0000000840), &(0x7f0000000880), &(0x7f00000008c0)="3f51c1614671574380ec8c0352342a8fdf580bfc76030250ee35c3d69d6ec7341cce6d48e00fddc6363d8fef8f11c325509fbdaddfde71435b4c790e149b7ecae93601613e5ab6ce4377768b443a35923af1cb1da436873d7933b5bfba924afe4c56bdacec8c132999d66ee756b7faf2d8ee998acd5f56428f40110742f4efe9") clone(0x4208000, &(0x7f0000000940)="07c6720af94a320dafb520fe1dc2a75f9ec6baf6ccee614acf59e29f61646835917bee02c567585286a02d2051011108b8a622c06810e6af1f31f209650826a26decb2cccb29490f59dc3bd10f232686bffb2175c7dcb1ed0b6eadbd6f63cdd9f26ba0589f5b415aeb044448a9eba163ebfb6ab5cd20ea712000923460c86d134668f35ad9f2d76caaf40b4d930816fd18edafd69dd09bbb4e7c6265d4fee18df5a3280251ace51cbb7342333242b8639bb92ba6dd6e0cf18a2895742be16ab0a5801892ab73579522b249cd", &(0x7f0000000a40), &(0x7f0000000a80), &(0x7f0000000ac0)="7820e67ca3cc1a4c812754bb478dd81b4b176420691ed4e8a5ea255bc5e6414d8f5b794a04") clone(0x8000000, &(0x7f0000000b00)="49150ea4bc5ad6e05b28182859fad8344c5081a244991f82da112a7d8c9f5d868cc8c59f5ced6bbdcc8486a99a9983885aa9d5b9a4a27c68661dad2bfb7c02eab6ca4efcfd5aaa0d5e70bf5527164efe790e34cf065cd6ded2e7e14ebdb7422b216c9220f8b0fdf518899b5cc3b44601025548f0194592441255fc62de4b6dd2bef07c18729f7fccc39e0440b4e7d3f44dbb47ba19c6536590f85fb8f49c77ea41f4d4362738312aa874134f6bf53b11b98ded14fe61a88783a4362f02489af94422887a6d7261a00becdcc7ab21bb7206c689eaeef3432225057ef8500e38bc22ef24", &(0x7f0000000c00), &(0x7f0000000c40), &(0x7f0000000c80)="221f951bef645c46632c2641e7a05c63d734fbe9811586fffa6e39ea8e60dd6e0f0f7962db8216c845876fc47300d14d6ba0634ebb94eca451f08708dfbdcdd44194a4747cd8f61a327955d9c8f5c3daa5233c809b73881d1328082cfb34e28e70a8129c1556186119bc691e6ea02b42364e5f02eaf41e157083087f02140b8cffd005a4f61d5608e618388182438056d8b7eb00c4f846c2ef051aaf486ccb327233a7fd73e60414f57f598dff22bfb1bfcd040c675655c0a71987710328202fa0610783df7b5c720bb7bbb1e81544a0d866e4761d44e8a7b1122d485559") clone(0x2000000, &(0x7f0000000d80)="f9efa865df926232404ca434bf68236661a07bc15b9e382d7398870e4d27256bf88cf48588e07f4188f394fc7c5aff6e657dd327035bd0a60b663da1e4b1402aa14ca8f780ea0504843a5bcc8c2897e0d733e31c082384973960922d6cba64c5386c2bd5", &(0x7f0000000e00), &(0x7f0000000e40), &(0x7f0000000e80)="4fec0154f44231979abef89dde69c4ca7e0167dcc117788c730dbdf135de6c54b8ab7cdb396176276126784580876a4f77b9fdc3286a66f2264c182196e69e294e914353a3e2d1acb8946eed014cdb5e60859a4781a16bc5bfbf52c5d531501f5fa37a75d1bbdf437b56e7a9301d217e222c23b655cecedbe98dcdda07f21782b0c53a21a77dde9dd7b461e50a5c2a74c2a72b6345") 18:19:54 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_GET_CLIENT_POOL(r2, 0x40505331, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x6}) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xa0014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x100000) 18:19:55 executing program 6: clone(0x2808500, 0x0, 0x0, 0x0, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="d37d275185131c29b00baa16945b7db719fc0ddb924676c9e24002c6f2dbbec0d89c4e44f9004af7d358dbb3ed72fe") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") clone(0x100, &(0x7f00000007c0)="e92751b71a3460cb6fd3f51263a57f955aa29e720b541f66e00653535f3fd47bf8e503536b619460ec290725608a68966e5af7b0ea97f65a84c3eac512adb5c26ac830f3fccf05e196a8685dd48f0354ae", &(0x7f0000000840), &(0x7f0000000880), &(0x7f00000008c0)="3f51c1614671574380ec8c0352342a8fdf580bfc76030250ee35c3d69d6ec7341cce6d48e00fddc6363d8fef8f11c325509fbdaddfde71435b4c790e149b7ecae93601613e5ab6ce4377768b443a35923af1cb1da436873d7933b5bfba924afe4c56bdacec8c132999d66ee756b7faf2d8ee998acd5f56428f40110742f4efe9") clone(0x4208000, &(0x7f0000000940)="07c6720af94a320dafb520fe1dc2a75f9ec6baf6ccee614acf59e29f61646835917bee02c567585286a02d2051011108b8a622c06810e6af1f31f209650826a26decb2cccb29490f59dc3bd10f232686bffb2175c7dcb1ed0b6eadbd6f63cdd9f26ba0589f5b415aeb044448a9eba163ebfb6ab5cd20ea712000923460c86d134668f35ad9f2d76caaf40b4d930816fd18edafd69dd09bbb4e7c6265d4fee18df5a3280251ace51cbb7342333242b8639bb92ba6dd6e0cf18a2895742be16ab0a5801892ab73579522b249cd", &(0x7f0000000a40), &(0x7f0000000a80), &(0x7f0000000ac0)="7820e67ca3cc1a4c812754bb478dd81b4b176420691ed4e8a5ea255bc5e6414d8f5b794a04") clone(0x8000000, &(0x7f0000000b00)="49150ea4bc5ad6e05b28182859fad8344c5081a244991f82da112a7d8c9f5d868cc8c59f5ced6bbdcc8486a99a9983885aa9d5b9a4a27c68661dad2bfb7c02eab6ca4efcfd5aaa0d5e70bf5527164efe790e34cf065cd6ded2e7e14ebdb7422b216c9220f8b0fdf518899b5cc3b44601025548f0194592441255fc62de4b6dd2bef07c18729f7fccc39e0440b4e7d3f44dbb47ba19c6536590f85fb8f49c77ea41f4d4362738312aa874134f6bf53b11b98ded14fe61a88783a4362f02489af94422887a6d7261a00becdcc7ab21bb7206c689eaeef3432225057ef8500e38bc22ef24", &(0x7f0000000c00), &(0x7f0000000c40), &(0x7f0000000c80)="221f951bef645c46632c2641e7a05c63d734fbe9811586fffa6e39ea8e60dd6e0f0f7962db8216c845876fc47300d14d6ba0634ebb94eca451f08708dfbdcdd44194a4747cd8f61a327955d9c8f5c3daa5233c809b73881d1328082cfb34e28e70a8129c1556186119bc691e6ea02b42364e5f02eaf41e157083087f02140b8cffd005a4f61d5608e618388182438056d8b7eb00c4f846c2ef051aaf486ccb327233a7fd73e60414f57f598dff22bfb1bfcd040c675655c0a71987710328202fa0610783df7b5c720bb7bbb1e81544a0d866e4761d44e8a7b1122d485559") clone(0x2000000, &(0x7f0000000d80)="f9efa865df926232404ca434bf68236661a07bc15b9e382d7398870e4d27256bf88cf48588e07f4188f394fc7c5aff6e657dd327035bd0a60b663da1e4b1402aa14ca8f780ea0504843a5bcc8c2897e0d733e31c082384973960922d6cba64c5386c2bd5", &(0x7f0000000e00), &(0x7f0000000e40), &(0x7f0000000e80)="4fec0154f44231979abef89dde69c4ca7e0167dcc117788c730dbdf135de6c54b8ab7cdb396176276126784580876a4f77b9fdc3286a66f2264c182196e69e294e914353a3e2d1acb8946eed014cdb5e60859a4781a16bc5bfbf52c5d531501f5fa37a75d1bbdf437b56e7a9301d217e222c23b655cecedbe98dcdda07f21782b0c53a21a77dde9dd7b461e50a5c2a74c2a72b6345") 18:19:55 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:55 executing program 2: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:55 executing program 5: clone(0x13000000, 0x0, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)="8482b87a0f1c33136bd555121b5a6f8f70acfa2cc77b074ec5ac8789b41e4835cb06f0743e62322ae8eb3c9376140d41650e8092083f3c17f3112084519269b8980d4649965d853f58a8df14362903c78e07a16ce0de0331be12492c0708f16c5d17efb5d8ff96bf2dcae31d1fe0d406c395b13a83c63bb383223264742f10fa98046a27b45c") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") 18:19:55 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000400)={&(0x7f0000000000), 0xc, &(0x7f00000003c0)={&(0x7f00000001c0)=@allocspi={0x1e4, 0x16, 0x1, 0x0, 0x0, {{{@in=@broadcast, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@rand_addr=' \x01\x00', 0x0, 0xff}, @in=@local}}, [@sa={0xe4, 0x6, {{@in=@multicast2, @in=@loopback}, {@in=@private}, @in6=@remote}}, @tfcpad={0x8}]}, 0x1e4}}, 0x0) 18:19:55 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$bt_hci(r0, 0x0, 0x18, 0x0, &(0x7f00000000c0)) 18:19:55 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) inotify_rm_watch(0xffffffffffffffff, 0x0) 18:19:55 executing program 0: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, 0x0, &(0x7f0000016840)) 18:19:55 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000400)={&(0x7f0000000000), 0xc, &(0x7f00000003c0)={&(0x7f00000001c0)=@allocspi={0x1e4, 0x16, 0x1, 0x0, 0x0, {{{@in=@broadcast, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@rand_addr=' \x01\x00', 0x0, 0xff}, @in=@local}}, [@sa={0xe4, 0x6, {{@in=@multicast2, @in=@loopback}, {@in=@private}, @in6=@remote}}, @tfcpad={0x8}]}, 0x1e4}}, 0x0) 18:19:55 executing program 6: clone(0x2808500, 0x0, 0x0, 0x0, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="d37d275185131c29b00baa16945b7db719fc0ddb924676c9e24002c6f2dbbec0d89c4e44f9004af7d358dbb3ed72fe") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") clone(0x100, &(0x7f00000007c0)="e92751b71a3460cb6fd3f51263a57f955aa29e720b541f66e00653535f3fd47bf8e503536b619460ec290725608a68966e5af7b0ea97f65a84c3eac512adb5c26ac830f3fccf05e196a8685dd48f0354ae", &(0x7f0000000840), &(0x7f0000000880), &(0x7f00000008c0)="3f51c1614671574380ec8c0352342a8fdf580bfc76030250ee35c3d69d6ec7341cce6d48e00fddc6363d8fef8f11c325509fbdaddfde71435b4c790e149b7ecae93601613e5ab6ce4377768b443a35923af1cb1da436873d7933b5bfba924afe4c56bdacec8c132999d66ee756b7faf2d8ee998acd5f56428f40110742f4efe9") clone(0x4208000, &(0x7f0000000940)="07c6720af94a320dafb520fe1dc2a75f9ec6baf6ccee614acf59e29f61646835917bee02c567585286a02d2051011108b8a622c06810e6af1f31f209650826a26decb2cccb29490f59dc3bd10f232686bffb2175c7dcb1ed0b6eadbd6f63cdd9f26ba0589f5b415aeb044448a9eba163ebfb6ab5cd20ea712000923460c86d134668f35ad9f2d76caaf40b4d930816fd18edafd69dd09bbb4e7c6265d4fee18df5a3280251ace51cbb7342333242b8639bb92ba6dd6e0cf18a2895742be16ab0a5801892ab73579522b249cd", &(0x7f0000000a40), &(0x7f0000000a80), &(0x7f0000000ac0)="7820e67ca3cc1a4c812754bb478dd81b4b176420691ed4e8a5ea255bc5e6414d8f5b794a04") clone(0x8000000, &(0x7f0000000b00)="49150ea4bc5ad6e05b28182859fad8344c5081a244991f82da112a7d8c9f5d868cc8c59f5ced6bbdcc8486a99a9983885aa9d5b9a4a27c68661dad2bfb7c02eab6ca4efcfd5aaa0d5e70bf5527164efe790e34cf065cd6ded2e7e14ebdb7422b216c9220f8b0fdf518899b5cc3b44601025548f0194592441255fc62de4b6dd2bef07c18729f7fccc39e0440b4e7d3f44dbb47ba19c6536590f85fb8f49c77ea41f4d4362738312aa874134f6bf53b11b98ded14fe61a88783a4362f02489af94422887a6d7261a00becdcc7ab21bb7206c689eaeef3432225057ef8500e38bc22ef24", &(0x7f0000000c00), &(0x7f0000000c40), &(0x7f0000000c80)="221f951bef645c46632c2641e7a05c63d734fbe9811586fffa6e39ea8e60dd6e0f0f7962db8216c845876fc47300d14d6ba0634ebb94eca451f08708dfbdcdd44194a4747cd8f61a327955d9c8f5c3daa5233c809b73881d1328082cfb34e28e70a8129c1556186119bc691e6ea02b42364e5f02eaf41e157083087f02140b8cffd005a4f61d5608e618388182438056d8b7eb00c4f846c2ef051aaf486ccb327233a7fd73e60414f57f598dff22bfb1bfcd040c675655c0a71987710328202fa0610783df7b5c720bb7bbb1e81544a0d866e4761d44e8a7b1122d485559") clone(0x2000000, &(0x7f0000000d80)="f9efa865df926232404ca434bf68236661a07bc15b9e382d7398870e4d27256bf88cf48588e07f4188f394fc7c5aff6e657dd327035bd0a60b663da1e4b1402aa14ca8f780ea0504843a5bcc8c2897e0d733e31c082384973960922d6cba64c5386c2bd5", &(0x7f0000000e00), &(0x7f0000000e40), &(0x7f0000000e80)="4fec0154f44231979abef89dde69c4ca7e0167dcc117788c730dbdf135de6c54b8ab7cdb396176276126784580876a4f77b9fdc3286a66f2264c182196e69e294e914353a3e2d1acb8946eed014cdb5e60859a4781a16bc5bfbf52c5d531501f5fa37a75d1bbdf437b56e7a9301d217e222c23b655cecedbe98dcdda07f21782b0c53a21a77dde9dd7b461e50a5c2a74c2a72b6345") 18:19:55 executing program 0: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, 0x0, &(0x7f0000016840)) 18:19:55 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$bt_hci(r0, 0x0, 0x18, 0x0, &(0x7f00000000c0)) 18:19:55 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc) setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f00000000c0)={@dev}, 0xc) 18:19:55 executing program 0: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, 0x0, &(0x7f0000016840)) 18:19:55 executing program 6: clone(0x2808500, 0x0, 0x0, 0x0, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="d37d275185131c29b00baa16945b7db719fc0ddb924676c9e24002c6f2dbbec0d89c4e44f9004af7d358dbb3ed72fe") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") clone(0x100, &(0x7f00000007c0)="e92751b71a3460cb6fd3f51263a57f955aa29e720b541f66e00653535f3fd47bf8e503536b619460ec290725608a68966e5af7b0ea97f65a84c3eac512adb5c26ac830f3fccf05e196a8685dd48f0354ae", &(0x7f0000000840), &(0x7f0000000880), &(0x7f00000008c0)="3f51c1614671574380ec8c0352342a8fdf580bfc76030250ee35c3d69d6ec7341cce6d48e00fddc6363d8fef8f11c325509fbdaddfde71435b4c790e149b7ecae93601613e5ab6ce4377768b443a35923af1cb1da436873d7933b5bfba924afe4c56bdacec8c132999d66ee756b7faf2d8ee998acd5f56428f40110742f4efe9") clone(0x4208000, &(0x7f0000000940)="07c6720af94a320dafb520fe1dc2a75f9ec6baf6ccee614acf59e29f61646835917bee02c567585286a02d2051011108b8a622c06810e6af1f31f209650826a26decb2cccb29490f59dc3bd10f232686bffb2175c7dcb1ed0b6eadbd6f63cdd9f26ba0589f5b415aeb044448a9eba163ebfb6ab5cd20ea712000923460c86d134668f35ad9f2d76caaf40b4d930816fd18edafd69dd09bbb4e7c6265d4fee18df5a3280251ace51cbb7342333242b8639bb92ba6dd6e0cf18a2895742be16ab0a5801892ab73579522b249cd", &(0x7f0000000a40), &(0x7f0000000a80), &(0x7f0000000ac0)="7820e67ca3cc1a4c812754bb478dd81b4b176420691ed4e8a5ea255bc5e6414d8f5b794a04") clone(0x8000000, &(0x7f0000000b00)="49150ea4bc5ad6e05b28182859fad8344c5081a244991f82da112a7d8c9f5d868cc8c59f5ced6bbdcc8486a99a9983885aa9d5b9a4a27c68661dad2bfb7c02eab6ca4efcfd5aaa0d5e70bf5527164efe790e34cf065cd6ded2e7e14ebdb7422b216c9220f8b0fdf518899b5cc3b44601025548f0194592441255fc62de4b6dd2bef07c18729f7fccc39e0440b4e7d3f44dbb47ba19c6536590f85fb8f49c77ea41f4d4362738312aa874134f6bf53b11b98ded14fe61a88783a4362f02489af94422887a6d7261a00becdcc7ab21bb7206c689eaeef3432225057ef8500e38bc22ef24", &(0x7f0000000c00), &(0x7f0000000c40), &(0x7f0000000c80)="221f951bef645c46632c2641e7a05c63d734fbe9811586fffa6e39ea8e60dd6e0f0f7962db8216c845876fc47300d14d6ba0634ebb94eca451f08708dfbdcdd44194a4747cd8f61a327955d9c8f5c3daa5233c809b73881d1328082cfb34e28e70a8129c1556186119bc691e6ea02b42364e5f02eaf41e157083087f02140b8cffd005a4f61d5608e618388182438056d8b7eb00c4f846c2ef051aaf486ccb327233a7fd73e60414f57f598dff22bfb1bfcd040c675655c0a71987710328202fa0610783df7b5c720bb7bbb1e81544a0d866e4761d44e8a7b1122d485559") clone(0x2000000, &(0x7f0000000d80)="f9efa865df926232404ca434bf68236661a07bc15b9e382d7398870e4d27256bf88cf48588e07f4188f394fc7c5aff6e657dd327035bd0a60b663da1e4b1402aa14ca8f780ea0504843a5bcc8c2897e0d733e31c082384973960922d6cba64c5386c2bd5", &(0x7f0000000e00), &(0x7f0000000e40), &(0x7f0000000e80)="4fec0154f44231979abef89dde69c4ca7e0167dcc117788c730dbdf135de6c54b8ab7cdb396176276126784580876a4f77b9fdc3286a66f2264c182196e69e294e914353a3e2d1acb8946eed014cdb5e60859a4781a16bc5bfbf52c5d531501f5fa37a75d1bbdf437b56e7a9301d217e222c23b655cecedbe98dcdda07f21782b0c53a21a77dde9dd7b461e50a5c2a74c2a72b6345") 18:19:56 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000400)={&(0x7f0000000000), 0xc, &(0x7f00000003c0)={&(0x7f00000001c0)=@allocspi={0x1e4, 0x16, 0x1, 0x0, 0x0, {{{@in=@broadcast, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@rand_addr=' \x01\x00', 0x0, 0xff}, @in=@local}}, [@sa={0xe4, 0x6, {{@in=@multicast2, @in=@loopback}, {@in=@private}, @in6=@remote}}, @tfcpad={0x8}]}, 0x1e4}}, 0x0) 18:19:56 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$bt_hci(r0, 0x0, 0x18, 0x0, &(0x7f00000000c0)) 18:19:56 executing program 5: clone(0x13000000, 0x0, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)="8482b87a0f1c33136bd555121b5a6f8f70acfa2cc77b074ec5ac8789b41e4835cb06f0743e62322ae8eb3c9376140d41650e8092083f3c17f3112084519269b8980d4649965d853f58a8df14362903c78e07a16ce0de0331be12492c0708f16c5d17efb5d8ff96bf2dcae31d1fe0d406c395b13a83c63bb383223264742f10fa98046a27b45c") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") 18:19:56 executing program 2: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:56 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:56 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc) setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f00000000c0)={@dev}, 0xc) 18:19:56 executing program 0: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, 0x0, &(0x7f0000016840)) 18:19:56 executing program 6: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$binfmt_misc(r0, &(0x7f0000001100)={'syz1'}, 0x4) 18:19:56 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$bt_hci(r0, 0x0, 0x18, 0x0, &(0x7f00000000c0)) 18:19:56 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc) setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f00000000c0)={@dev}, 0xc) 18:19:56 executing program 6: syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) chdir(&(0x7f00000001c0)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xffffff69) 18:19:56 executing program 7: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000400)={&(0x7f0000000000), 0xc, &(0x7f00000003c0)={&(0x7f00000001c0)=@allocspi={0x1e4, 0x16, 0x1, 0x0, 0x0, {{{@in=@broadcast, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee00}, {@in6=@rand_addr=' \x01\x00', 0x0, 0xff}, @in=@local}}, [@sa={0xe4, 0x6, {{@in=@multicast2, @in=@loopback}, {@in=@private}, @in6=@remote}}, @tfcpad={0x8}]}, 0x1e4}}, 0x0) 18:19:56 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x41) 18:19:57 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc) setsockopt$inet_mreqn(r0, 0x0, 0x24, &(0x7f00000000c0)={@dev}, 0xc) 18:19:57 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f00000001c0)={0x8}) r3 = signalfd4(r2, &(0x7f0000000200)={[0x80000000]}, 0x8, 0x80000) r4 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r4, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x14, 0x23, 0x1, 0x0, 0x0, "", [@typed={0x4, 0x0, 0x0, 0x0, @binary}]}, 0x14}], 0x1}, 0x0) getsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f00000001c0)=""/151, &(0x7f0000000000)=0x97) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team_slave_0\x00'}) signalfd(r3, &(0x7f0000000100)={[0xff]}, 0x8) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00'}) 18:19:57 executing program 6: syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) chdir(&(0x7f00000001c0)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xffffff69) 18:19:57 executing program 3: syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@uname={'uname', 0x3d, '%:%^'}}]}}) 18:19:57 executing program 5: clone(0x13000000, 0x0, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)="8482b87a0f1c33136bd555121b5a6f8f70acfa2cc77b074ec5ac8789b41e4835cb06f0743e62322ae8eb3c9376140d41650e8092083f3c17f3112084519269b8980d4649965d853f58a8df14362903c78e07a16ce0de0331be12492c0708f16c5d17efb5d8ff96bf2dcae31d1fe0d406c395b13a83c63bb383223264742f10fa98046a27b45c") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") 18:19:57 executing program 1: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:57 executing program 2: syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000000), 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x2) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8000, 0x7, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r1, &(0x7f00000000c0), 0xe) listen(0xffffffffffffffff, 0x0) getsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000001200), &(0x7f0000000240)=0x4) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0) openat(0xffffffffffffffff, 0x0, 0x40800, 0x40) 18:19:57 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x41) 18:19:57 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x41) 18:19:57 executing program 4: r0 = getpgrp(0x0) prlimit64(r0, 0xf, 0x0, &(0x7f00000001c0)) capget(&(0x7f0000000080)={0x20080522, r0}, &(0x7f00000000c0)={0x10001, 0x0, 0xac, 0x7, 0x0, 0x52a9}) prlimit64(0x0, 0xa, 0x0, &(0x7f0000000300)) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000680)='./file0\x00', &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000040)={'syz_tun\x00', &(0x7f0000000000)=@ethtool_channels={0x11}}) getsockopt$SO_COOKIE(r2, 0x1, 0x39, &(0x7f0000000240), &(0x7f00000002c0)=0x8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) close_range(r3, 0xffffffffffffffff, 0x0) write$binfmt_aout(r3, 0x0, 0x718) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) ioctl$TUNGETVNETHDRSZ(r4, 0x400454e2, &(0x7f00000000c0)) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000840)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r4, @ANYBLOB="000000fd6cf848e3a8c7638c6f2e000000000000000000000000012085b72a5a78111c221b903aa138f230a20106824629ea884726a3a1396d4bf1754c80f8f4753e40eec79f671fbbda5943f2bc472179038b8c38e966eeca0fa89aee46653eef60c432972c58a72335ae382fd3c020b42c41a79c69b4c3fb82702fd285871b9541044da33db2a45a2b469daf3a1c57f5f3d9562b835bd1965512f3e563e4958e9835b5b23a58afb6947679532aaf776bb725b91769d9f231acdd20ecb00c2145505e15d389a370afc9651a452174523b88eba92d130aee1f52553de958035754925e6c7962d22875966208abe44da7870553c3e984f388000000000000000000000000000000000000006c24aaf51d3d19e8de7921afaf78460ee4073e4d6cdff5f139885210ac4189332e24cf2b8fff25a8cb0d3297aa599a2bdfe0e5b13caf900874dbd215e9e65faa1e28d66446000f64dfdfbe8af56feae9184067325b2f1f5dee0d709c055d4376156959910b4c9923410773dc56e3314553a1877c2c0f8378312b13ec3008468d96d47680c48a781b9b1b6748ca37bda7ffac0497f58bc671ec59"]) prlimit64(r0, 0x0, &(0x7f0000000140)={0x7}, &(0x7f0000000180)) bind$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) setresuid(0x0, r1, 0x0) unshare(0x20000400) [ 145.174813] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 145.174813] program syz-executor.7 not setting count and/or reply_len properly 18:19:57 executing program 3: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0xa10a0, &(0x7f00000008c0)) removexattr(&(0x7f0000000080)='./file0\x00', 0x0) 18:19:57 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x41) 18:19:57 executing program 4: syz_emit_ethernet(0x7e, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @redirect={0x4, 0x0, 0x0, @multicast1, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast1, @local, {[@rr={0x7, 0x13, 0x0, [@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, @multicast2]}, @rr={0x7, 0x2b, 0x0, [@dev, @rand_addr, @private, @loopback, @empty, @remote, @empty, @loopback, @local, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}}}}, 0x0) 18:19:57 executing program 5: clone(0x13000000, 0x0, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000180)="8482b87a0f1c33136bd555121b5a6f8f70acfa2cc77b074ec5ac8789b41e4835cb06f0743e62322ae8eb3c9376140d41650e8092083f3c17f3112084519269b8980d4649965d853f58a8df14362903c78e07a16ce0de0331be12492c0708f16c5d17efb5d8ff96bf2dcae31d1fe0d406c395b13a83c63bb383223264742f10fa98046a27b45c") clone(0x800000, &(0x7f00000005c0)="85d1c678d5e9cf856043eb0bcfba252b9a344cc0b75163a3d83f6378b2e241fb111b95b4962ead3642d98078f7a594e519d40c65c215e21cabe3b39c821a93061631f99381802929087e4940d3ec", &(0x7f0000000640), &(0x7f0000000680), &(0x7f00000006c0)="26cd986a5f479e8f36901a58d9d4bab9719c08558435b344a330f53d4b1a6df8fe909bae2edb1c651646ebe6bb4a16316c19a0c6df3bd3427cf4aa1eeb8654c9d86d45ddd34d719501b442dacef459b834dc0aaa4fce7b3e040deb4f75a1c1ee7da539b372bbccdccea4f0dc89adb6df9e1e8a643d8a90f03769b7436744890e974a4fec742a5c0a7f6eddb626ed010ba88ffe0972fc2ba30a39351b52c92de7b7df3b2415df7d7f0baa7af0e2fd232c3b9449c35e3e3fcc4bc20e275c0c2182033a328dcf780aa67dae931ba4627071aa31d34b070c1aee9e") 18:19:57 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f00000001c0)={0x8}) r3 = signalfd4(r2, &(0x7f0000000200)={[0x80000000]}, 0x8, 0x80000) r4 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r4, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x14, 0x23, 0x1, 0x0, 0x0, "", [@typed={0x4, 0x0, 0x0, 0x0, @binary}]}, 0x14}], 0x1}, 0x0) getsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f00000001c0)=""/151, &(0x7f0000000000)=0x97) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team_slave_0\x00'}) signalfd(r3, &(0x7f0000000100)={[0xff]}, 0x8) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00'}) 18:19:57 executing program 3: move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4e) [ 145.379115] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 145.379115] program syz-executor.7 not setting count and/or reply_len properly 18:19:57 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x8001, &(0x7f00000008c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 18:19:57 executing program 4: syz_emit_ethernet(0x7e, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @redirect={0x4, 0x0, 0x0, @multicast1, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast1, @local, {[@rr={0x7, 0x13, 0x0, [@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, @multicast2]}, @rr={0x7, 0x2b, 0x0, [@dev, @rand_addr, @private, @loopback, @empty, @remote, @empty, @loopback, @local, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}}}}, 0x0) 18:19:57 executing program 2: r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffd000/0x2000)=nil) shmat(r0, &(0x7f0000ffb000/0x2000)=nil, 0x6000) sigaltstack(&(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000)) 18:19:57 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = dup(r0) sendmsg$nl_xfrm(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="f800000016000100000000000000000000000000000000000000000000000000ffffffff00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="7f0000010000000000000000000000000000000033"], 0xf8}}, 0x0) sendmsg$nl_xfrm(r1, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000006b00)=ANY=[@ANYBLOB="681100001c0001"], 0x1168}}, 0x0) 18:19:57 executing program 3: move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4e) 18:19:57 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x8001, &(0x7f00000008c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 18:19:57 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f00000001c0)={0x8}) r3 = signalfd4(r2, &(0x7f0000000200)={[0x80000000]}, 0x8, 0x80000) r4 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r4, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x14, 0x23, 0x1, 0x0, 0x0, "", [@typed={0x4, 0x0, 0x0, 0x0, @binary}]}, 0x14}], 0x1}, 0x0) getsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f00000001c0)=""/151, &(0x7f0000000000)=0x97) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team_slave_0\x00'}) signalfd(r3, &(0x7f0000000100)={[0xff]}, 0x8) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00'}) 18:19:57 executing program 6: syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) chdir(&(0x7f00000001c0)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xffffff69) 18:19:57 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000640)=0x1) [ 145.586752] netlink: 4436 bytes leftover after parsing attributes in process `syz-executor.0'. [ 145.606681] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 145.606681] program syz-executor.7 not setting count and/or reply_len properly 18:19:57 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1036e1, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000100)={0x69}) mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0) 18:19:57 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x8001, &(0x7f00000008c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 18:19:57 executing program 4: syz_emit_ethernet(0x7e, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @redirect={0x4, 0x0, 0x0, @multicast1, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast1, @local, {[@rr={0x7, 0x13, 0x0, [@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, @multicast2]}, @rr={0x7, 0x2b, 0x0, [@dev, @rand_addr, @private, @loopback, @empty, @remote, @empty, @loopback, @local, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}}}}, 0x0) 18:19:57 executing program 3: move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4e) 18:19:57 executing program 2: recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, 0x0, 0x0) syz_genetlink_get_family_id$batadv(&(0x7f0000008480), 0xffffffffffffffff) 18:19:57 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000640)=0x1) 18:19:57 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETSW2(r0, 0x4b4d, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, "1047c359a4f1acb11cad4ebfd27f6921c592f1"}) 18:19:58 executing program 3: move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4e) 18:19:58 executing program 4: syz_emit_ethernet(0x7e, &(0x7f0000000000)={@multicast, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @remote, @remote}, @redirect={0x4, 0x0, 0x0, @multicast1, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @multicast1, @local, {[@rr={0x7, 0x13, 0x0, [@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, @multicast2]}, @rr={0x7, 0x2b, 0x0, [@dev, @rand_addr, @private, @loopback, @empty, @remote, @empty, @loopback, @local, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}}}}, 0x0) 18:19:58 executing program 0: pipe(&(0x7f00000001c0)={0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x40000002) 18:19:58 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000140), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r3, 0x8001, &(0x7f00000008c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 18:19:58 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000640)=0x1) 18:19:58 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000500000008"], 0x125) read(r0, 0x0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f00000001c0)={0x8}) r3 = signalfd4(r2, &(0x7f0000000200)={[0x80000000]}, 0x8, 0x80000) r4 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r4, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x14, 0x23, 0x1, 0x0, 0x0, "", [@typed={0x4, 0x0, 0x0, 0x0, @binary}]}, 0x14}], 0x1}, 0x0) getsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f00000001c0)=""/151, &(0x7f0000000000)=0x97) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'team_slave_0\x00'}) signalfd(r3, &(0x7f0000000100)={[0xff]}, 0x8) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00'}) 18:19:58 executing program 6: syz_mount_image$tmpfs(&(0x7f00000006c0), &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)) chdir(&(0x7f00000001c0)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r0, &(0x7f0000000080)=ANY=[], 0xffffff69) 18:19:58 executing program 2: perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = io_uring_setup(0x454c, &(0x7f0000000240)) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x14, &(0x7f0000000040), 0x1) [ 146.007568] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 146.007568] program syz-executor.7 not setting count and/or reply_len properly 18:19:58 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capget(0x0, 0x0) 18:19:58 executing program 5: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f0000000640)=0x1) 18:19:58 executing program 2: r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACESETUP(r0, 0x2287, &(0x7f0000000000)) 18:19:58 executing program 0: syz_emit_ethernet(0x4e, &(0x7f00000001c0)={@multicast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "2ddc00", 0x18, 0x3a, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast2, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @loopback={0xff00000000000000}}}}}}}, 0x0) 18:19:58 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0xb8}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x300, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001d0001"], 0x1c}}, 0x0) 18:19:58 executing program 4: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f00000006c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(0xffffffffffffffff, &(0x7f0000000180)=""/16, 0x20000190, 0x0) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x1, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,obj_user=^,dont_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3e"]) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r4, &(0x7f00000003c0)=ANY=[], 0x820) openat(0xffffffffffffffff, &(0x7f0000000240)='./file1/file0\x00', 0x0, 0x153) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x7fffffff) sendfile(r3, r2, 0x0, 0xfffffdef) [ 146.445652] loop4: detected capacity change from 0 to 264192 [ 146.479880] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 18:19:58 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f00000010c0)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 18:19:58 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) quotactl(0xffffffff, 0x0, 0xffffffffffffffff, 0x0) 18:19:58 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f000000c340)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000140)={0x14, 0x22, 0xe21, 0x0, 0x0, "", [@generic="8e"]}, 0x14}], 0x1}, 0x0) [ 146.531576] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 18:19:58 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f00000010c0)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 18:19:58 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="2c0000001000010000000000000000000c0000ee01000000000000fb030000000c0004"], 0x2c}], 0x1}, 0x0) [ 146.588329] netlink: 'syz-executor.5': attribute type 4 has an invalid length. 18:19:59 executing program 6: rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='.\x00') 18:19:59 executing program 2: timer_create(0x0, &(0x7f0000000d00)={0x0, 0x0, 0x4}, 0x0) 18:19:59 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_BLANKSCREEN(r0, 0x541c, &(0x7f00000003c0)) 18:19:59 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f00000010c0)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 18:19:59 executing program 7: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) setxattr$security_ima(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v2={0x0, 0x0, 0xb}, 0x9, 0x0) llistxattr(&(0x7f0000000200)='./file1\x00', 0x0, 0x0) 18:19:59 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) quotactl(0xffffffff, 0x0, 0xffffffffffffffff, 0x0) 18:19:59 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0xb8}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x300, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001d0001"], 0x1c}}, 0x0) 18:19:59 executing program 4: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f00000006c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(0xffffffffffffffff, &(0x7f0000000180)=""/16, 0x20000190, 0x0) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x1, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,obj_user=^,dont_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3e"]) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r4, &(0x7f00000003c0)=ANY=[], 0x820) openat(0xffffffffffffffff, &(0x7f0000000240)='./file1/file0\x00', 0x0, 0x153) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x7fffffff) sendfile(r3, r2, 0x0, 0xfffffdef) [ 147.373399] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. [ 147.416217] loop2: detected capacity change from 0 to 264192 18:19:59 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001100)={&(0x7f00000010c0)={0x1c, 0x1, 0x4, 0x801, 0x0, 0x0, {}, [@NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x1c}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 18:19:59 executing program 7: pipe(&(0x7f00000013c0)) 18:19:59 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f00000006c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(0xffffffffffffffff, &(0x7f0000000180)=""/16, 0x20000190, 0x0) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x1, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,obj_user=^,dont_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3e"]) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r4, &(0x7f00000003c0)=ANY=[], 0x820) openat(0xffffffffffffffff, &(0x7f0000000240)='./file1/file0\x00', 0x0, 0x153) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x7fffffff) sendfile(r3, r2, 0x0, 0xfffffdef) 18:19:59 executing program 6: r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x20, &(0x7f0000000000), 0x4) 18:19:59 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0xb8}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x300, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001d0001"], 0x1c}}, 0x0) 18:19:59 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) quotactl(0xffffffff, 0x0, 0xffffffffffffffff, 0x0) 18:19:59 executing program 5: socket(0x0, 0x0, 0x0) execveat(0xffffffffffffffff, &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, 0x0) [ 147.480353] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 18:19:59 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}}}, 0xb8}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x300, &(0x7f0000000380)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001d0001"], 0x1c}}, 0x0) [ 147.559445] process 'syz-executor.5' launched '/dev/fd/-1/./file0' with NULL argv: empty string added [ 147.576410] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'. 18:20:00 executing program 7: syz_mount_image$tmpfs(0x0, &(0x7f0000000700)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$system_posix_acl(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000340)={{}, {0x10}}, 0x24, 0x0) 18:20:00 executing program 6: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) write$binfmt_elf64(r0, &(0x7f0000000480)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000}], "", ['\x00']}, 0x178) 18:20:00 executing program 1: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) quotactl(0xffffffff, 0x0, 0xffffffffffffffff, 0x0) 18:20:00 executing program 3: syz_emit_ethernet(0x5a, &(0x7f0000000080)={@link_local, @local, @val={@void}, {@canfd={0xd, {{0x1fffffff}, 0x0, 0x0, 0x0, 0x0, "bf5ec5abb92316ffad4769f3a3cc0d360e7fbd8096835ae1c03e90cbae66998d397b9a99fd7fd97e53c3f42512daeaac857bda4c34595fb82dbb72348507f1de"}}}}, 0x0) 18:20:00 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r0, &(0x7f0000000080), 0x0, 0x7fffffc, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f0000000180)=']{\x00', 0x0, 0xffffffffffffffff) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xc, 0x10, 0xffffffffffffffff, 0x175cb000) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) sendfile(r4, r1, 0x0, 0xfffffdef) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xa0014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000180)='./file1\x00', 0x0) 18:20:00 executing program 5: perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 18:20:00 executing program 4: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f00000006c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(0xffffffffffffffff, &(0x7f0000000180)=""/16, 0x20000190, 0x0) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x1, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,obj_user=^,dont_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3e"]) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r4, &(0x7f00000003c0)=ANY=[], 0x820) openat(0xffffffffffffffff, &(0x7f0000000240)='./file1/file0\x00', 0x0, 0x153) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x7fffffff) sendfile(r3, r2, 0x0, 0xfffffdef) 18:20:00 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020801000270008000f801", 0x17}], 0x0, &(0x7f00000006c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat(r0, &(0x7f00000000c0)='./file0\x00', 0x8000, 0x102) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220) write$P9_RWSTAT(r1, &(0x7f0000000380)={0x7, 0x7f, 0x5}, 0x7) pread64(0xffffffffffffffff, &(0x7f0000000180)=""/16, 0x20000190, 0x0) openat(0xffffffffffffffff, &(0x7f00000003c0)='./file1\x00', 0x80000, 0x40) perf_event_open(&(0x7f0000000280)={0x1, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f00000001c0)=0xffffffffffffffff) mount$9p_rdma(&(0x7f0000000140), &(0x7f0000000180)='./file1/file0\x00', 0x0, 0x4202402, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=rdma,port=0x0000000000004e23,appraise,obj_user=^,dont_appraise,euid<', @ANYRESDEC=0xee01, @ANYBLOB="2c1ac587813e95c81fa7cd62cee12f3900ba62ca87fb1ecea357fb0d4d84b3fe581ff63e6c805409792d15cdce83ac2541206d5f3e"]) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) write$binfmt_aout(r4, &(0x7f00000003c0)=ANY=[], 0x820) openat(0xffffffffffffffff, &(0x7f0000000240)='./file1/file0\x00', 0x0, 0x153) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) sendfile(r4, r5, 0x0, 0x7fffffff) sendfile(r3, r2, 0x0, 0xfffffdef) [ 148.284365] loop4: detected capacity change from 0 to 264192 [ 148.295268] loop2: detected capacity change from 0 to 264192 [ 148.298885] random: crng reseeded on system resumption 18:20:00 executing program 5: ioctl$CDROMREADMODE1(0xffffffffffffffff, 0x530d, &(0x7f0000000800)={0x6, 0x0, 0x20, 0x81, 0x6, 0x89}) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000001280)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000300)) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000340)) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) r1 = epoll_create(0x4) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r2, &(0x7f0000000140)={r1, 0xffffffffffffffff, 0x3d}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000004c00)={0xc0002100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 148.325450] random: crng reseeded on system resumption 18:20:00 executing program 1: r0 = syz_mount_image$vfat(&(0x7f0000000240), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000001300)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000000040)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) unlinkat(r0, &(0x7f0000000080)='./file1\x00', 0x0) 18:20:00 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2={0xff, 0x3}}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000a80)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x9b8}}], 0x18}}], 0x2, 0x0) VM DIAGNOSIS: 18:19:50 Registers: info registers vcpu 0 RAX=000000000000006e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1e41 RDI=ffffffff8763fae0 RBP=ffffffff8763faa0 RSP=ffff8880355c7348 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006e R11=0000000000000001 R12=000000000000006e R13=ffffffff8763faa0 R14=0000000000000010 R15=ffffffff822b1e30 RIP=ffffffff822b1e99 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f087db67700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8e0ac5c028 CR3=000000000ff30000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f08806d87c0 00007f08806d87c8 YMM02=0000000000000000 0000000000000000 00007f08806d87e0 00007f08806d87c0 YMM03=0000000000000000 0000000000000000 00007f08806d87c8 00007f08806d87c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=ffff88806ce3eda0 RCX=0000000000000000 RDX=ffff8880174d3580 RSI=ffffffff813bccdb RDI=0000000000000005 RBP=0000000000000003 RSP=ffff88803461f960 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffffed100d9c7db5 R13=ffff88806ce3eda8 R14=0000000000000001 R15=dffffc0000000000 RIP=ffffffff813bccdd RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555555933400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f08806fa6dc CR3=000000000ff30000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f08806d87c0 00007f08806d87c8 YMM02=0000000000000000 0000000000000000 00007f08806d87e0 00007f08806d87c0 YMM03=0000000000000000 0000000000000000 00007f08806d87c8 00007f08806d87c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000