Warning: Permanently added '[localhost]:23964' (ECDSA) to the list of known hosts. 2022/09/23 00:22:44 fuzzer started 2022/09/23 00:22:44 dialing manager at localhost:40289 syzkaller login: [ 36.492846] cgroup: Unknown subsys name 'net' [ 36.583303] cgroup: Unknown subsys name 'rlimit' 2022/09/23 00:22:58 syscalls: 2215 2022/09/23 00:22:58 code coverage: enabled 2022/09/23 00:22:58 comparison tracing: enabled 2022/09/23 00:22:58 extra coverage: enabled 2022/09/23 00:22:58 setuid sandbox: enabled 2022/09/23 00:22:58 namespace sandbox: enabled 2022/09/23 00:22:58 Android sandbox: enabled 2022/09/23 00:22:58 fault injection: enabled 2022/09/23 00:22:58 leak checking: enabled 2022/09/23 00:22:58 net packet injection: enabled 2022/09/23 00:22:58 net device setup: enabled 2022/09/23 00:22:58 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/23 00:22:58 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/23 00:22:58 USB emulation: enabled 2022/09/23 00:22:58 hci packet injection: enabled 2022/09/23 00:22:58 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220921) 2022/09/23 00:22:58 802.15.4 emulation: enabled 2022/09/23 00:22:58 fetching corpus: 50, signal 28561/30361 (executing program) 2022/09/23 00:22:58 fetching corpus: 100, signal 41278/44615 (executing program) 2022/09/23 00:22:58 fetching corpus: 150, signal 53029/57675 (executing program) 2022/09/23 00:22:58 fetching corpus: 200, signal 58073/64119 (executing program) 2022/09/23 00:22:58 fetching corpus: 250, signal 61037/68521 (executing program) 2022/09/23 00:22:58 fetching corpus: 300, signal 64636/73462 (executing program) 2022/09/23 00:22:59 fetching corpus: 350, signal 69707/79717 (executing program) 2022/09/23 00:22:59 fetching corpus: 400, signal 74162/85304 (executing program) 2022/09/23 00:22:59 fetching corpus: 450, signal 79399/91567 (executing program) 2022/09/23 00:22:59 fetching corpus: 500, signal 82109/95399 (executing program) 2022/09/23 00:22:59 fetching corpus: 550, signal 84648/99045 (executing program) 2022/09/23 00:22:59 fetching corpus: 600, signal 86944/102409 (executing program) 2022/09/23 00:22:59 fetching corpus: 650, signal 89457/105924 (executing program) 2022/09/23 00:22:59 fetching corpus: 700, signal 91318/108852 (executing program) 2022/09/23 00:23:00 fetching corpus: 750, signal 94463/112885 (executing program) 2022/09/23 00:23:00 fetching corpus: 800, signal 96255/115690 (executing program) 2022/09/23 00:23:00 fetching corpus: 850, signal 98418/118788 (executing program) 2022/09/23 00:23:00 fetching corpus: 900, signal 101120/122370 (executing program) 2022/09/23 00:23:00 fetching corpus: 950, signal 104873/126746 (executing program) 2022/09/23 00:23:00 fetching corpus: 1000, signal 106905/129613 (executing program) 2022/09/23 00:23:00 fetching corpus: 1050, signal 109461/132855 (executing program) 2022/09/23 00:23:01 fetching corpus: 1100, signal 112670/136701 (executing program) 2022/09/23 00:23:01 fetching corpus: 1150, signal 114077/138902 (executing program) 2022/09/23 00:23:01 fetching corpus: 1200, signal 116203/141768 (executing program) 2022/09/23 00:23:01 fetching corpus: 1250, signal 117521/143887 (executing program) 2022/09/23 00:23:01 fetching corpus: 1300, signal 119215/146281 (executing program) 2022/09/23 00:23:01 fetching corpus: 1350, signal 121790/149340 (executing program) 2022/09/23 00:23:01 fetching corpus: 1400, signal 124074/152197 (executing program) 2022/09/23 00:23:01 fetching corpus: 1450, signal 126048/154703 (executing program) 2022/09/23 00:23:02 fetching corpus: 1500, signal 128193/157441 (executing program) 2022/09/23 00:23:02 fetching corpus: 1550, signal 129936/159710 (executing program) 2022/09/23 00:23:02 fetching corpus: 1600, signal 131453/161821 (executing program) 2022/09/23 00:23:02 fetching corpus: 1650, signal 132870/163781 (executing program) 2022/09/23 00:23:02 fetching corpus: 1700, signal 134381/165864 (executing program) 2022/09/23 00:23:02 fetching corpus: 1750, signal 136405/168283 (executing program) 2022/09/23 00:23:02 fetching corpus: 1800, signal 138626/170756 (executing program) 2022/09/23 00:23:02 fetching corpus: 1850, signal 140614/173107 (executing program) 2022/09/23 00:23:03 fetching corpus: 1900, signal 143398/175952 (executing program) 2022/09/23 00:23:03 fetching corpus: 1950, signal 144148/177271 (executing program) 2022/09/23 00:23:03 fetching corpus: 2000, signal 145253/178852 (executing program) 2022/09/23 00:23:03 fetching corpus: 2050, signal 146369/180482 (executing program) 2022/09/23 00:23:03 fetching corpus: 2100, signal 147418/182105 (executing program) 2022/09/23 00:23:03 fetching corpus: 2150, signal 148324/183493 (executing program) 2022/09/23 00:23:03 fetching corpus: 2200, signal 149712/185242 (executing program) 2022/09/23 00:23:03 fetching corpus: 2250, signal 150507/186520 (executing program) 2022/09/23 00:23:03 fetching corpus: 2300, signal 151662/188026 (executing program) 2022/09/23 00:23:04 fetching corpus: 2350, signal 153071/189717 (executing program) 2022/09/23 00:23:04 fetching corpus: 2400, signal 153735/190890 (executing program) 2022/09/23 00:23:04 fetching corpus: 2450, signal 154545/192127 (executing program) 2022/09/23 00:23:04 fetching corpus: 2500, signal 155877/193692 (executing program) 2022/09/23 00:23:04 fetching corpus: 2550, signal 157201/195187 (executing program) 2022/09/23 00:23:04 fetching corpus: 2600, signal 158118/196455 (executing program) 2022/09/23 00:23:04 fetching corpus: 2650, signal 158614/197521 (executing program) 2022/09/23 00:23:04 fetching corpus: 2700, signal 159588/198813 (executing program) 2022/09/23 00:23:04 fetching corpus: 2750, signal 160764/200190 (executing program) 2022/09/23 00:23:04 fetching corpus: 2800, signal 161379/201277 (executing program) 2022/09/23 00:23:05 fetching corpus: 2850, signal 162530/202625 (executing program) 2022/09/23 00:23:05 fetching corpus: 2900, signal 163420/203837 (executing program) 2022/09/23 00:23:05 fetching corpus: 2950, signal 164371/205077 (executing program) 2022/09/23 00:23:05 fetching corpus: 3000, signal 164697/205911 (executing program) 2022/09/23 00:23:05 fetching corpus: 3050, signal 165103/206817 (executing program) 2022/09/23 00:23:05 fetching corpus: 3100, signal 166290/208091 (executing program) 2022/09/23 00:23:05 fetching corpus: 3150, signal 167328/209267 (executing program) 2022/09/23 00:23:05 fetching corpus: 3200, signal 169004/210718 (executing program) 2022/09/23 00:23:05 fetching corpus: 3250, signal 170491/212054 (executing program) 2022/09/23 00:23:06 fetching corpus: 3300, signal 171411/213161 (executing program) 2022/09/23 00:23:06 fetching corpus: 3350, signal 172143/214108 (executing program) 2022/09/23 00:23:06 fetching corpus: 3400, signal 173297/215267 (executing program) 2022/09/23 00:23:06 fetching corpus: 3450, signal 174166/216274 (executing program) 2022/09/23 00:23:06 fetching corpus: 3500, signal 174983/217321 (executing program) 2022/09/23 00:23:06 fetching corpus: 3550, signal 175835/218267 (executing program) 2022/09/23 00:23:06 fetching corpus: 3600, signal 176947/219300 (executing program) 2022/09/23 00:23:06 fetching corpus: 3650, signal 177965/220329 (executing program) 2022/09/23 00:23:07 fetching corpus: 3700, signal 178982/221330 (executing program) 2022/09/23 00:23:07 fetching corpus: 3750, signal 179603/222188 (executing program) 2022/09/23 00:23:07 fetching corpus: 3800, signal 180424/223050 (executing program) 2022/09/23 00:23:07 fetching corpus: 3850, signal 181011/223817 (executing program) 2022/09/23 00:23:07 fetching corpus: 3900, signal 181542/224583 (executing program) 2022/09/23 00:23:07 fetching corpus: 3950, signal 182070/225305 (executing program) 2022/09/23 00:23:07 fetching corpus: 4000, signal 182775/226086 (executing program) 2022/09/23 00:23:07 fetching corpus: 4050, signal 183372/226865 (executing program) 2022/09/23 00:23:07 fetching corpus: 4100, signal 184135/227688 (executing program) 2022/09/23 00:23:07 fetching corpus: 4150, signal 185069/228640 (executing program) 2022/09/23 00:23:08 fetching corpus: 4200, signal 185708/229347 (executing program) 2022/09/23 00:23:08 fetching corpus: 4250, signal 186158/230047 (executing program) 2022/09/23 00:23:08 fetching corpus: 4300, signal 186972/230815 (executing program) 2022/09/23 00:23:08 fetching corpus: 4350, signal 187325/231437 (executing program) 2022/09/23 00:23:08 fetching corpus: 4400, signal 187627/232017 (executing program) 2022/09/23 00:23:08 fetching corpus: 4450, signal 188581/232775 (executing program) 2022/09/23 00:23:08 fetching corpus: 4500, signal 189197/233442 (executing program) 2022/09/23 00:23:08 fetching corpus: 4550, signal 189812/234114 (executing program) 2022/09/23 00:23:08 fetching corpus: 4600, signal 190691/234792 (executing program) 2022/09/23 00:23:09 fetching corpus: 4650, signal 192179/235936 (executing program) 2022/09/23 00:23:09 fetching corpus: 4700, signal 192645/236518 (executing program) 2022/09/23 00:23:09 fetching corpus: 4750, signal 193300/237124 (executing program) 2022/09/23 00:23:09 fetching corpus: 4800, signal 193852/237701 (executing program) 2022/09/23 00:23:09 fetching corpus: 4850, signal 194597/238353 (executing program) 2022/09/23 00:23:09 fetching corpus: 4900, signal 195227/238901 (executing program) 2022/09/23 00:23:09 fetching corpus: 4950, signal 195720/239441 (executing program) 2022/09/23 00:23:09 fetching corpus: 5000, signal 197346/240179 (executing program) 2022/09/23 00:23:10 fetching corpus: 5050, signal 198836/240866 (executing program) 2022/09/23 00:23:10 fetching corpus: 5100, signal 199347/241334 (executing program) 2022/09/23 00:23:10 fetching corpus: 5150, signal 199818/241813 (executing program) 2022/09/23 00:23:10 fetching corpus: 5200, signal 200378/242287 (executing program) 2022/09/23 00:23:10 fetching corpus: 5250, signal 200858/242767 (executing program) 2022/09/23 00:23:10 fetching corpus: 5300, signal 201485/243248 (executing program) 2022/09/23 00:23:10 fetching corpus: 5350, signal 202293/243931 (executing program) 2022/09/23 00:23:10 fetching corpus: 5400, signal 202672/244345 (executing program) 2022/09/23 00:23:10 fetching corpus: 5450, signal 203190/244751 (executing program) 2022/09/23 00:23:10 fetching corpus: 5500, signal 203745/245217 (executing program) 2022/09/23 00:23:10 fetching corpus: 5550, signal 204368/245660 (executing program) 2022/09/23 00:23:11 fetching corpus: 5600, signal 205138/246068 (executing program) 2022/09/23 00:23:11 fetching corpus: 5650, signal 205487/246453 (executing program) 2022/09/23 00:23:11 fetching corpus: 5700, signal 206135/246862 (executing program) 2022/09/23 00:23:11 fetching corpus: 5750, signal 206923/247277 (executing program) 2022/09/23 00:23:11 fetching corpus: 5800, signal 208201/248195 (executing program) 2022/09/23 00:23:11 fetching corpus: 5850, signal 208536/248595 (executing program) 2022/09/23 00:23:11 fetching corpus: 5900, signal 209201/249076 (executing program) 2022/09/23 00:23:11 fetching corpus: 5950, signal 210277/249426 (executing program) 2022/09/23 00:23:11 fetching corpus: 6000, signal 210941/249807 (executing program) 2022/09/23 00:23:12 fetching corpus: 6050, signal 211435/249960 (executing program) 2022/09/23 00:23:12 fetching corpus: 6100, signal 212188/249960 (executing program) 2022/09/23 00:23:12 fetching corpus: 6150, signal 212710/249968 (executing program) 2022/09/23 00:23:12 fetching corpus: 6200, signal 213160/250000 (executing program) 2022/09/23 00:23:12 fetching corpus: 6250, signal 213682/250018 (executing program) 2022/09/23 00:23:12 fetching corpus: 6300, signal 214095/250021 (executing program) 2022/09/23 00:23:12 fetching corpus: 6350, signal 214914/250022 (executing program) 2022/09/23 00:23:13 fetching corpus: 6400, signal 215754/250027 (executing program) 2022/09/23 00:23:13 fetching corpus: 6450, signal 216247/250060 (executing program) 2022/09/23 00:23:13 fetching corpus: 6500, signal 216993/250074 (executing program) 2022/09/23 00:23:13 fetching corpus: 6550, signal 217459/250076 (executing program) 2022/09/23 00:23:13 fetching corpus: 6600, signal 217911/250076 (executing program) 2022/09/23 00:23:13 fetching corpus: 6650, signal 218675/250080 (executing program) 2022/09/23 00:23:13 fetching corpus: 6700, signal 219212/250135 (executing program) 2022/09/23 00:23:13 fetching corpus: 6742, signal 219477/250135 (executing program) 2022/09/23 00:23:13 fetching corpus: 6742, signal 219477/250135 (executing program) 2022/09/23 00:23:15 starting 8 fuzzer processes 00:23:15 executing program 1: setsockopt$inet6_tcp_TCP_QUEUE_SEQ(0xffffffffffffffff, 0x6, 0x15, &(0x7f0000000000)=0x6b, 0x4) r0 = openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)='blkio.throttle.read_iops_device\x00', 0x2, 0x0) fsetxattr$security_evm(r0, &(0x7f0000000080), &(0x7f00000000c0)=@v1={0x2, "098892b6b7e3dc03"}, 0x9, 0xe4f70d29c36f1678) r1 = openat$incfs(0xffffffffffffffff, &(0x7f0000000100)='.log\x00', 0x8000, 0x0) ioctl$VT_WAITACTIVE(r1, 0x5607) ioctl$VT_DISALLOCATE(r1, 0x5608) ioctl$KDSIGACCEPT(r1, 0x4b4e, 0x34) r2 = open_tree(r1, &(0x7f0000000140)='./file0\x00', 0xa00) ioctl$KDSKBMODE(r2, 0x4b45, &(0x7f0000000180)=0x2) readlinkat(r1, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)=""/38, 0x26) sendmsg$netlink(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000240)=@proc={0x10, 0x0, 0x25dfdbfb, 0x4000000}, 0xc, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x40000}, 0x20004000) mount$9p_unix(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x1020010, &(0x7f00000003c0)={'trans=unix,', {[{@version_L}, {@privport}, {@nodevmap}, {@afid={'afid', 0x3d, 0x7ff}}, {@aname={'aname', 0x3d, '.log\x00'}}, {@access_client}, {@mmap}], [{@func={'func', 0x3d, 'FILE_CHECK'}}, {@obj_role={'obj_role', 0x3d, '((%$+()'}}, {@func={'func', 0x3d, 'FIRMWARE_CHECK'}}]}}) ioctl$VT_DISALLOCATE(r2, 0x5608) preadv(r0, &(0x7f0000001680)=[{&(0x7f0000000480)=""/150, 0x96}, {&(0x7f0000000540)=""/235, 0xeb}, {&(0x7f0000000640)=""/4096, 0x1000}, {&(0x7f0000001640)=""/31, 0x1f}], 0x4, 0x1000, 0x961) ioctl$VT_DISALLOCATE(r2, 0x5608) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000016c0)='limits\x00') ioctl$PIO_CMAP(r3, 0x4b71, &(0x7f0000001700)={0x9, 0x6, 0x88, 0x9, 0x1, 0x800}) ioctl$TCSETAW(r1, 0x5407, &(0x7f0000001740)={0x1000, 0x8c4, 0x6, 0x1, 0x19, "397ecb8493e80381"}) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000001780), 0x105880, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f00000017c0)=[@sack_perm, @timestamp, @window={0x3, 0x5, 0x1}, @window={0x3, 0xe1, 0x4}], 0x4) 00:23:15 executing program 6: ioctl$BTRFS_IOC_QUOTA_RESCAN(0xffffffffffffffff, 0x4040942c, &(0x7f0000000000)={0x0, 0x0, [0x91, 0x54, 0x401, 0x3, 0x6, 0x16]}) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0) r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x0, @fixed}, &(0x7f0000000080)=0xe, 0x80000) getsockopt$sock_buf(r0, 0x1, 0x37, &(0x7f00000000c0)=""/174, &(0x7f0000000180)=0xae) r1 = inotify_init1(0x800) close_range(r1, r0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r2, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0xd29fa23c3082e228}, 0xc, &(0x7f00000003c0)={&(0x7f0000000200)={0x188, 0x0, 0x100, 0x70bd25, 0x25dfdbfc, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x81}, {0x8, 0x15, 0xd156}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x8}, {0x6, 0x11, 0x8}, {0x8, 0x15, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x80000001}, {0x6, 0x11, 0x800}, {0x8, 0x15, 0x8000}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x4}, {0x6, 0x11, 0x6}, {0x8, 0x15, 0x6}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x80000001}, {0x6, 0x11, 0x6}, {0x8, 0x15, 0xffffffff}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x9c1d}, {0x6, 0x11, 0x7f}, {0x8, 0x15, 0x7fff}}]}, 0x188}, 0x1, 0x0, 0x0, 0x80}, 0x90) ioctl$sock_inet_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000440)) r3 = socket$netlink(0x10, 0x3, 0xe) setsockopt$netlink_NETLINK_PKTINFO(r3, 0x10e, 0x3, &(0x7f0000000480)=0x6, 0x4) fcntl$getownex(r2, 0x10, &(0x7f00000004c0)={0x0, 0x0}) r5 = syz_open_procfs(r4, &(0x7f0000000500)='net/igmp6\x00') ioctl$PTP_SYS_OFFSET(r5, 0x43403d05, &(0x7f0000000540)={0x14}) sendmsg$BATADV_CMD_GET_MESH(r5, &(0x7f0000000940)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000900)={&(0x7f00000008c0)={0x24, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x4000010) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r5, 0xc018937e, &(0x7f0000000980)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x1}}, './file0\x00'}) ioctl$BTRFS_IOC_START_SYNC(r6, 0x80089418, &(0x7f00000009c0)) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000a00), &(0x7f0000000a40)='./file0\x00', 0x8, 0x2) r7 = openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000a80), 0x2, 0x0) io_submit(0x0, 0x2, &(0x7f0000000d00)=[&(0x7f0000000b80)={0x0, 0x0, 0x0, 0x6, 0x6e73, r7, &(0x7f0000000ac0)="0f2fc0923ed85d7c1bbafb641e7347c6559ce50c43f007f2e99e785b694acb623f75746fa6041055e5b1a3b283af78357f414b99191faf63e5abc992ffb69b3334162a92ccc3782c634bddc0cb48597026eeaa4bff9236d0b7a72549487e5502ee1cd2dfc08bf4cee4e8339b448d3f188bf094c4ea2fe04f1ef7310536ef7baf59575bd42d", 0x85, 0x1, 0x0, 0x3}, &(0x7f0000000cc0)={0x0, 0x0, 0x0, 0x3, 0x6e, r2, &(0x7f0000000bc0)="c1d60017d0927c57f55e0df716469f5699a71c203a2f246ed38e3d94dd31248d9a69b28b24bd497c28448004a54ab66e123000ba61c6ec008ff8ef885e57b86f3a0393eb8cdcdb53b21cea6d42cd67a226556e9fe70e76e05fe6bc5a2eaed780857fa42b229fd2298cbe6717d50fd53173ffc1a169d8efccfab02a697e41e9b5299c8b9aa022cf52eb5b6e24f5d7dc6655dbb2560106fefc317e9da7be414a6efbd6d7678c2877039f7969b0ba53cb2110a4d5f43f8b9ce07f2ffb2a44c0436786af5eba09a9d2e3ce7856c0b102daebda39c55b4de61123e1796aadab43", 0xde, 0x3, 0x0, 0x2, r5}]) 00:23:15 executing program 0: alarm(0x0) alarm(0x800) alarm(0x7f) alarm(0x80000001) alarm(0xfffffffffa94e5d1) alarm(0xaec8) alarm(0x7fffffff) alarm(0x1) alarm(0x2) alarm(0x8) alarm(0x0) alarm(0x7) alarm(0xfffffffffffffffc) alarm(0xfffffffffffffff7) alarm(0x7) alarm(0xfff) alarm(0x3) alarm(0x5) alarm(0x7) alarm(0xd8) 00:23:15 executing program 2: r0 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0) ioctl$BTRFS_IOC_SEND(0xffffffffffffffff, 0x40489426, &(0x7f0000000080)={{r0}, 0x1, &(0x7f0000000040)=[0x81], 0x3, 0x0, [0x7, 0x7, 0x6, 0x7fff]}) r1 = dup(r0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000100), 0x281, 0x0) r3 = syz_open_dev$rtc(&(0x7f0000000500), 0x8, 0x86482) r4 = ioctl$TUNGETDEVNETNS(r2, 0x54e3, 0x0) r5 = fork() lstat(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = pidfd_getfd(r1, r0, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000000600)={{{@in=@empty, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@private}, 0x0, @in6=@mcast1}}, &(0x7f0000000700)=0xe8) r10 = geteuid() sendmmsg$unix(r1, &(0x7f0000000b00)=[{{&(0x7f0000000140)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000480)=[{&(0x7f00000001c0)="19711bfafe86a4ff145f6c49b934e597cd6dc33c5c536419c03c7d4184cd9fcf8cc964e8e6b694b27308887d0d1c803ad537fc65fc0ce652d352acc23fc6c38452c69cf9e82b2f8d239d44f4090e1093a4cee1bfee55", 0x56}, {&(0x7f0000000240)="80bc74f400", 0x5}, {&(0x7f0000000280)="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", 0xff}, {&(0x7f0000000380)="d25897a60cbe72fb308db19701b1f611d0a25daa7665e94c46", 0x19}, {&(0x7f00000003c0)="d89b49b468605ccc46f9192d85a9bf706a923ef7b69103c28aae1623b7a04d4704211555a49bbb26c8deb178995e2c8a05a0799655954b0e81ebac6c1d515a524718230b3df807b4a7e6106ad413e097d04a0e69339d891b1f543a4c84d43d21383b3f9840fb7795f8cdd20fddc7", 0x6e}, {&(0x7f0000000440)="6ae08ac08566f909aaaa22705aec2007", 0x10}], 0x6, &(0x7f0000000740)=[@rights={{0x14, 0x1, 0x1, [r0]}}, @rights={{0x30, 0x1, 0x1, [r1, r2, r1, r0, r3, 0xffffffffffffffff, r0, r4]}}, @cred={{0x1c, 0x1, 0x2, {r5, 0xffffffffffffffff, r6}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r7, 0xffffffffffffffff, r2]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r9, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, r10, 0xee00}}}], 0xc8, 0xc0}}, {{&(0x7f0000000840)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000900)=[{&(0x7f00000008c0)="3bed9e461fd1518c325addd91653ec58a404671d7e36c91444caaeb501b6416bb08a241e7ad1db7ddcc6624c159aa30dc4fa3435", 0x34}], 0x1, 0x0, 0x0, 0x24000800}}, {{&(0x7f0000000940)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000ac0)=[{&(0x7f00000009c0)="aab243444a1bcd4a1b0f7be1f5ad958b96a9b91228f8ea38146510667be2bb0e421c2e5b74f6493d942d0a7fb5c428350d98fc7f91e797f261e155981cebe2bf77fec3497b46b99dd66cd0e9213e73d34dde822ad0c10979fdd5361deee1217abe124fb040a4278d777a9030335fc440f4d8da6e58405b1774ee6a7849a4afd7f555f4c42359439433a2c8beae5051f5eeb2803b7a50237b253c1500236b09e4705d828a26c9f854da8b57ecd62ddba028309e44cbb31d312abd8122f6190e78b099243ae4a0023f29287b0e453973203352bd31edc73ea734a782c165460478cc19c6aedcbec7", 0xe7}], 0x1}}], 0x3, 0x4008000) r11 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000bc0), 0x400, 0x0) setsockopt$inet_pktinfo(r11, 0x0, 0x8, &(0x7f0000000c00)={r8, @multicast1, @private=0xa010100}, 0xc) r12 = memfd_secret(0x80000) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r12, 0xc0189372, &(0x7f0000000c40)={{0x1, 0x1, 0x18, r3, {0x20}}, './file0\x00'}) setsockopt$inet6_IPV6_XFRM_POLICY(r12, 0x29, 0x23, &(0x7f0000000c80)={{{@in=@rand_addr=0x64010102, @in=@dev={0xac, 0x14, 0x14, 0x43}, 0x4e22, 0x0, 0x4e20, 0x8, 0x2, 0xa0, 0x80, 0x73, r8, r10}, {0x7, 0x10000, 0x9, 0x2, 0x4, 0x7ff, 0x2, 0x5}, {0x6, 0x2, 0x4, 0x8}, 0xfffffffc, 0x6e6bb8, 0x0, 0x1, 0x2, 0x2}, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4d3, 0x32}, 0x2, @in=@loopback, 0x0, 0x4, 0x2, 0x28, 0x3, 0x80, 0x20}}, 0xe8) r13 = syz_open_dev$vcsn(&(0x7f0000000d80), 0x8000, 0x80000) ioctl$sock_inet6_SIOCSIFDSTADDR(r13, 0x8918, &(0x7f0000000dc0)={@initdev={0xfe, 0x88, '\x00', 0x5, 0x0}, 0xd, r8}) sendto$packet(0xffffffffffffffff, &(0x7f0000000ec0)="710bf21894dd011e95", 0x9, 0x800, 0x0, 0x0) 00:23:15 executing program 3: r0 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000040), 0x647, 0x2800) ioctl$BTRFS_IOC_QGROUP_CREATE(r1, 0x4010942a, &(0x7f0000000080)={0x0, 0x1}) ioctl$DVD_AUTH(r0, 0x5390, &(0x7f00000000c0)=@type=0x8) pipe2$9p(&(0x7f0000000100)={0xffffffffffffffff}, 0x84000) r3 = fsmount(0xffffffffffffffff, 0x1, 0xf6) r4 = fcntl$dupfd(r2, 0x406, r3) sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x8, 0x70bd26, 0x3, {{}, {@void, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1c}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4850}, 0x1) ioctl$CDROMRESUME(r0, 0x5302) r5 = signalfd4(r0, &(0x7f0000000240)={[0x5]}, 0x8, 0x800) sendmsg$NL80211_CMD_START_P2P_DEVICE(r3, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x20, 0x0, 0x400, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x8, 0x3}}}}, ["", "", "", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0xc804}, 0x2880) ioctl$DVD_READ_STRUCT(0xffffffffffffffff, 0x5390, &(0x7f0000000380)) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, &(0x7f0000000bc0)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000c00)=0x0) ioctl$BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000c40)={'\x00', 0xff80, 0x7, 0x0, 0x4, 0xffffffffffffff01, r7}) ioctl$CDROM_SET_OPTIONS(r4, 0x5320, 0x1e) ioctl$CDROMREADRAW(r5, 0x5314, &(0x7f0000000cc0)={0x3f, 0xc9, 0x7, 0x6, 0x9, 0x6}) r8 = socket$inet_tcp(0x2, 0x1, 0x0) bind(r8, &(0x7f0000001740)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x6}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x80) io_cancel(0x0, &(0x7f00000018c0)={0x0, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, &(0x7f0000001800)="8ee9a2e45f7a638cbf683de7a1861c4a85b1e6f1f41ccc41c238a823ba4fcaa715c2d4fe51675a8fa335bab3e5951a2fa6ebb750cb2f7ed6083a2fa726e2aa7331d905d1d5555dee4c88cd9ecd99ee717d980cc490411c9e95f81e86efdb58a80abc10b94e271fdbe4e99232e0296dafd118276f2d1938bd692b19de9295561c9ded51e14adf0ec8e91ad0b8cfa69d01da4f99f4b6", 0x95, 0x1000, 0x0, 0x1, r3}, &(0x7f0000001900)) 00:23:15 executing program 4: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x5]}, 0x8) sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x9c, 0x0, 0x20, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x5c}}}}, [@NL80211_ATTR_IE={0x6c, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x0, 0xa7, 0x74}}, @mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x1, 0x1, 0x1, 0x0, 0x0, 0x21}}, @ssid={0x0, 0x6, @default_ibss_ssid}, @mic={0x8c, 0x10, {0xf59, "279d308d90ff", @short="ccd47b15595fba90"}}, @link_id={0x65, 0x12, {@initial, @broadcast, @device_b}}, @peer_mgmt={0x75, 0x8, {0x0, 0x6, @val=0x4f7, @val=0x36, @void}}, @prep={0x83, 0x1f, @not_ext={{}, 0x2, 0x2, @device_a, 0xffffffff, "", 0x9, 0x1, @broadcast, 0x5}}]}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x63}]}, 0x9c}}, 0x4) r1 = signalfd(r0, &(0x7f00000001c0)={[0x4]}, 0x8) getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f0000000200), &(0x7f0000000280)=0x68) setsockopt$inet6_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f00000002c0)=0x1, 0x4) ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000300)={0x0, 0x5, 0x81, 0x100000001, 0x7f, 0x5a}) r2 = accept4$bt_l2cap(r0, &(0x7f0000000340), &(0x7f0000000380)=0xe, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x891b, &(0x7f00000003c0)={'veth0_to_bond\x00', {0x2, 0x0, @initdev}}) r3 = syz_open_dev$mouse(&(0x7f0000000400), 0x9, 0x80000) read$snapshot(r3, &(0x7f0000000440)=""/207, 0xcf) r4 = syz_open_dev$char_usb(0xc, 0xb4, 0x6) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000700)={0x60, 0x0, &(0x7f0000000600)=[@dead_binder_done, @transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000540)={@flat=@handle={0x73682a85, 0x100, 0x3}, @fda={0x66646185, 0x9, 0x1, 0x1d}, @fd={0x66642a85, 0x0, r4}}, &(0x7f00000005c0)={0x0, 0x18, 0x38}}}, @request_death={0x400c630e, 0x3}], 0x42, 0x0, &(0x7f0000000680)="e00e9281f0d3baa6a56500012fe017fe621569641232d1950b28c8f9b90c27ad805077e8d29284378a8dedbacd6e1dabccd4a1ed2652b82059324fc4b9381779155e"}) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000740)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000780)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCBRDELBR(r5, 0x89a1, &(0x7f00000007c0)='veth1_to_team\x00') ioctl$EVIOCSABS0(0xffffffffffffffff, 0x401845c0, &(0x7f0000000800)={0x9, 0x800, 0x440db93b, 0x1, 0x1d0, 0x9}) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000880)={{{@in=@initdev, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@remote}, 0x0, @in=@broadcast}}, &(0x7f0000000980)=0xe8) lstat(&(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) recvmmsg$unix(r3, &(0x7f0000004280)=[{{0x0, 0x0, &(0x7f0000002c00)=[{&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000001bc0)=""/4096, 0x1000}, {&(0x7f0000002bc0)=""/8, 0x8}], 0x3, &(0x7f0000002c40)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{&(0x7f0000002cc0), 0x6e, &(0x7f0000002dc0)=[{&(0x7f0000002d40)=""/76, 0x4c}], 0x1, &(0x7f0000002e00)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x28}}, {{0x0, 0x0, &(0x7f0000004080)=[{&(0x7f0000002e40)=""/28, 0x1c}, {&(0x7f0000002e80)=""/39, 0x27}, {&(0x7f0000002ec0)=""/204, 0xcc}, {&(0x7f0000002fc0)=""/4096, 0x1000}, {&(0x7f0000003fc0)=""/179, 0xb3}], 0x5}}, {{0x0, 0x0, &(0x7f0000004200)=[{&(0x7f0000004100)=""/100, 0x64}, {&(0x7f0000004180)=""/73, 0x49}], 0x2, &(0x7f0000004240)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}], 0x20}}], 0x4, 0x2040, &(0x7f0000004380)={0x0, 0x989680}) fsetxattr$system_posix_acl(r4, &(0x7f0000000840)='system.posix_acl_access\x00', &(0x7f00000043c0)={{}, {0x1, 0x4}, [{0x2, 0x4}, {0x2, 0x6}, {0x2, 0x6, 0xffffffffffffffff}, {0x2, 0x6, r6}, {0x2, 0x4, 0xee01}, {0x2, 0x7, 0xee01}], {0x4, 0x1}, [{0x8, 0x4, 0xee00}, {0x8, 0x2, 0xee01}, {0x8, 0x2, r7}, {0x8, 0x0, 0xffffffffffffffff}, {0x8, 0x2, r8}, {0x8, 0x0, 0xee01}, {0x8, 0x5}], {}, {0x20, 0x2}}, 0x8c, 0x0) 00:23:15 executing program 5: ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8}}, './file0\x00'}) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x7, @private2={0xfc, 0x2, '\x00', 0x7}, 0x9c1}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0xa3d}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0x5}}, './file0\x00'}) r3 = openat$cgroup_ro(r0, &(0x7f0000000100)='net_prio.prioidx\x00', 0x0, 0x0) getsockopt$inet6_int(r3, 0x29, 0x1a, &(0x7f0000000140), &(0x7f0000000180)=0x4) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r3, 0xc018937d, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) r5 = signalfd(0xffffffffffffffff, &(0x7f0000000200)={[0x5]}, 0x8) sendmsg$inet6(r5, &(0x7f00000006c0)={&(0x7f0000000240)={0xa, 0x4e23, 0x7ff, @loopback, 0xc2e1}, 0x1c, &(0x7f0000000380)=[{&(0x7f0000000280)="f927d841a8370b1fa0dc669318bcade6fe13ea8358ba42776f57434ed1e6c7be5fab0a6a2dc37992ae0c49afb715ee0db36ffefb7b9ff1897ccb22ac6a4aef44e0e29ad153377c50670284be8d8eded1be596ca7bf0221d7fa4df35a9a6a4cdbb18aa586ff5ef7b5494ad8df9cfa623c1fa19fd837c05b8b0d8cf4fbd74de636a185176666fc4241075520726a088ac861cd6220602a349566400d4d9f626088231c92d965fcb562a82b", 0xaa}, {&(0x7f0000000340)="c0a80dd4", 0x4}], 0x2, &(0x7f00000003c0)=[@rthdr={{0xa8, 0x29, 0x39, {0x2e, 0x12, 0x0, 0x48, 0x0, [@remote, @dev={0xfe, 0x80, '\x00', 0xe}, @remote, @loopback, @private1, @remote, @remote, @mcast2, @mcast1]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x55}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x2b, 0x0, '\x00', [@ra={0x5, 0x2, 0x9}]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x33, 0x0, '\x00', [@pad1]}}}, @rthdr={{0x28, 0x29, 0x39, {0x33, 0x2, 0x1, 0x1f, 0x0, [@remote]}}}, @hoplimit_2292={{0x14}}, @dstopts={{0x170, 0x29, 0x37, {0x88, 0x2a, '\x00', [@generic={0x6, 0x78, "5d1f155e5da0709bf75666fadf53a4fff04924139eb2d136e0990d228b5b6815bc319647756295804fc44854a14eedee6005ca71535f08b4c0993a64147d489474d3dead5e7b947be032516e8289ead130cc03e5c8ea7d2ea1c75872e5ea82b6276de5583c0c33bf3b91182fcbebdfdb7d03eebc3cabb67c"}, @calipso={0x7, 0x40, {0x3, 0xe, 0x20, 0x3, [0x6, 0x8, 0xffffffffffffffc1, 0x1480, 0x3, 0x3ffc000000000000, 0x7ff]}}, @generic={0xfc, 0x95, "ff96fc0d1fe342867a0c36a043e09b8a30ba350f44648fb322050c310387e4f23e478b252a27845d85991cd33a08f1a414fa98955a588408270eb286c5cd4e921219b8c4dbf99d5bf4f19e8408d37be9a8d713d81ad9574c89282dc37a56d9bdf5c0837223658846f09bafb631bbdef164eeb066510bf58bd95056f1f24ec9272e979711e9112fc69ccc7d4721632767cced2e1656"}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x6}}, @dontfrag={{0x14, 0x29, 0x3e, 0x3}}], 0x2e0}, 0x20000001) r6 = signalfd(r4, &(0x7f0000000700)={[0x8000]}, 0x8) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x4000010, r6, 0x0) fsetxattr$trusted_overlay_origin(r2, &(0x7f0000000740), &(0x7f0000000780), 0x2, 0x2) r7 = memfd_create(&(0x7f00000007c0)='trusted.overlay.origin\x00', 0x7) fsetxattr$security_selinux(r7, &(0x7f0000000800), &(0x7f0000000840)='system_u:object_r:dhcp_state_t:s0\x00', 0x22, 0x1) read$hiddev(r0, &(0x7f0000000880)=""/250, 0xfa) truncate(&(0x7f0000000980)='./file0\x00', 0x20) r8 = syz_open_dev$vcsn(&(0x7f00000009c0), 0x7, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r8, 0xc018937d, &(0x7f0000000a00)={{0x1, 0x1, 0x18, r5, {0xffff}}, './file0\x00'}) r9 = syz_genetlink_get_family_id$batadv(&(0x7f0000000a80), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_DAT_CACHE(r8, &(0x7f0000000b80)={&(0x7f0000000a40), 0xc, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x50, r9, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0xce}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="a7a3ada0b121"}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x81}, 0x2004c090) 00:23:15 executing program 7: r0 = add_key(&(0x7f0000000000)='blacklist\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="82474847908a3debbad98487cb91ab6e64f424aabb3751926d0e2733abca94fc2177c305e792ce791fb001806df9a43d9ef110d34d912971522c7a0af9824f0185a4886efb988760b0b7aec0927f1c65b82655515168ea2b1a1fc60f79c16cf12c6b9da8e197a153400cea8a2244a2e59c0a3b74efa98137b89ca46a913ee69ed390aa479272762ffea1fd9990336b3490960610e84fa414c36bc511ea78af5035a3a82a5f053a021aa2f09929cc13463a2b0e37119c97a17ebb61f85e5aaf8b6cc514d584247d986329540784008f243dea95bb6e7f3d587f78f5ce43aee3bc10cbe935e57af9ca23d6ffe3", 0xec, 0xfffffffffffffffa) keyctl$update(0x2, r0, &(0x7f0000000180)="e4ddf0a754211ec24b038461d4a098f967469fa483ef3cde79223385c095d7ebc06094a4e25c4ef7df64420acb0184ac7a3fe8708305c20bdd985f0e4104a5404c4b1668958e32041ff1bff8f2eb4ed987d1dd70dff262c1858e7b5a25ee3dfd23ff34014321bc3a7bf06d12ececae5b4e53023446efb7a09cf0b6847e3e159abb898b53b56811da277b8435609b4a", 0x8f) keyctl$chown(0x4, r0, 0xee01, 0xee01) r1 = request_key(&(0x7f0000000240)='dns_resolver\x00', &(0x7f0000000280)={'syz', 0x2}, &(0x7f00000002c0)='\x00', 0xfffffffffffffffe) keyctl$invalidate(0x15, r1) r2 = add_key(&(0x7f0000000300)='syzkaller\x00', &(0x7f0000000340)={'syz', 0x2}, &(0x7f0000000380), 0x0, r0) keyctl$describe(0x6, r2, &(0x7f00000003c0)=""/4096, 0x1000) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, 0x0, &(0x7f00000013c0)=@secondary) keyctl$setperm(0x5, r1, 0x2800) keyctl$KEYCTL_MOVE(0x1e, r0, r2, 0xfffffffffffffff9, 0x1) r3 = request_key(&(0x7f00000014c0)='id_resolver\x00', &(0x7f0000001500)={'syz', 0x0}, &(0x7f0000001540)='dns_resolver\x00', 0x0) add_key$fscrypt_provisioning(&(0x7f0000001400), &(0x7f0000001440)={'syz', 0x0}, &(0x7f0000001480)={0x1, 0x0, @d}, 0x18, r3) r4 = add_key(&(0x7f0000001580)='logon\x00', &(0x7f00000015c0)={'syz', 0x3}, 0x0, 0x0, r2) r5 = add_key$fscrypt_provisioning(&(0x7f0000001600), &(0x7f0000001640)={'syz', 0x3}, &(0x7f0000001680)={0x2, 0x0, @a}, 0x48, r4) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r5, &(0x7f0000001700)='big_key\x00', 0x0) r6 = request_key(&(0x7f0000001740)='id_resolver\x00', &(0x7f0000001780)={'syz', 0x0}, &(0x7f00000017c0)='--#]^,],}:/\x00', 0xfffffffffffffff8) keyctl$KEYCTL_MOVE(0x1e, r5, r2, r6, 0x0) keyctl$describe(0x6, r0, &(0x7f0000001800)=""/49, 0x31) r7 = add_key$fscrypt_v1(&(0x7f0000001840), &(0x7f0000001880)={'fscrypt:', @auto=[0x62, 0x30, 0x6a, 0x36, 0x30, 0x61, 0x66, 0x35, 0x5b, 0x33, 0x32, 0x0, 0x65, 0x65, 0x35, 0x31]}, &(0x7f00000018c0)={0x0, "1c7f4cc6276963f2ce3cb507824264d07b9b21d653b85171992c301bb5bd73336517c6c111f91239dcb4a729959678c7f372c7b015acee0873e52f288511b616", 0x3b}, 0x48, r3) keyctl$setperm(0x5, r7, 0x10000000) [ 67.257832] audit: type=1400 audit(1663892595.750:6): avc: denied { execmem } for pid=286 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 [ 68.460859] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 68.462232] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 68.464936] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 68.473098] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 68.475196] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 68.477106] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 68.482358] Bluetooth: hci0: HCI_REQ-0x0c1a [ 68.517062] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 68.519946] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 68.521642] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 68.523125] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 68.524733] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 68.536089] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 68.537784] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 68.539737] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 68.541254] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 68.542916] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 68.546056] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 68.547537] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 68.549573] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 68.551637] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 68.553049] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 68.554321] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 68.559031] Bluetooth: hci3: HCI_REQ-0x0c1a [ 68.559400] Bluetooth: hci5: HCI_REQ-0x0c1a [ 68.571675] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 68.580820] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 68.583289] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 68.589177] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 68.591187] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 68.595049] Bluetooth: hci1: HCI_REQ-0x0c1a [ 68.595157] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 68.598727] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 68.600876] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 68.602342] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 68.603858] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 68.603994] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 68.606140] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 68.612017] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 68.617442] Bluetooth: hci6: HCI_REQ-0x0c1a [ 68.629884] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 68.631371] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 68.635914] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 68.637212] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 68.649811] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 68.652918] Bluetooth: hci4: HCI_REQ-0x0c1a [ 68.655148] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 68.655831] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 68.689733] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 68.700275] Bluetooth: hci2: HCI_REQ-0x0c1a [ 68.728747] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 68.732685] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 68.736356] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 68.738366] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 68.739808] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 68.744953] Bluetooth: hci7: HCI_REQ-0x0c1a [ 70.546790] Bluetooth: hci0: command 0x0409 tx timeout [ 70.610860] Bluetooth: hci1: command 0x0409 tx timeout [ 70.610975] Bluetooth: hci5: command 0x0409 tx timeout [ 70.612273] Bluetooth: hci3: command 0x0409 tx timeout [ 70.674639] Bluetooth: hci6: command 0x0409 tx timeout [ 70.675518] Bluetooth: hci4: command 0x0409 tx timeout [ 70.739591] Bluetooth: hci2: command 0x0409 tx timeout [ 70.802579] Bluetooth: hci7: command 0x0409 tx timeout [ 72.594569] Bluetooth: hci0: command 0x041b tx timeout [ 72.658540] Bluetooth: hci5: command 0x041b tx timeout [ 72.658740] Bluetooth: hci3: command 0x041b tx timeout [ 72.658948] Bluetooth: hci1: command 0x041b tx timeout [ 72.722511] Bluetooth: hci6: command 0x041b tx timeout [ 72.723584] Bluetooth: hci4: command 0x041b tx timeout [ 72.786556] Bluetooth: hci2: command 0x041b tx timeout [ 72.851517] Bluetooth: hci7: command 0x041b tx timeout [ 74.642628] Bluetooth: hci0: command 0x040f tx timeout [ 74.706615] Bluetooth: hci3: command 0x040f tx timeout [ 74.706669] Bluetooth: hci1: command 0x040f tx timeout [ 74.707359] Bluetooth: hci5: command 0x040f tx timeout [ 74.770789] Bluetooth: hci6: command 0x040f tx timeout [ 74.771610] Bluetooth: hci4: command 0x040f tx timeout [ 74.834533] Bluetooth: hci2: command 0x040f tx timeout [ 74.898517] Bluetooth: hci7: command 0x040f tx timeout [ 76.690536] Bluetooth: hci0: command 0x0419 tx timeout [ 76.766998] Bluetooth: hci1: command 0x0419 tx timeout [ 76.767485] Bluetooth: hci5: command 0x0419 tx timeout [ 76.767900] Bluetooth: hci3: command 0x0419 tx timeout [ 76.818557] Bluetooth: hci4: command 0x0419 tx timeout [ 76.818567] Bluetooth: hci6: command 0x0419 tx timeout [ 76.882555] Bluetooth: hci2: command 0x0419 tx timeout [ 76.946539] Bluetooth: hci7: command 0x0419 tx timeout 00:24:11 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan3\x00'}) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080), 0xffffffffffffffff) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/slabinfo\x00', 0x0, 0x0) readv(r2, &(0x7f0000001600)=[{&(0x7f0000000600)=""/4096, 0x1000}], 0x1) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0) sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="20002cbd7000fcdbdf25030000000c00060002000000000000000c00050026000000000000004400078008000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="0800aa64", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="080001006efbf060b600971f15aeb06b8efc91757e6f3cc8991b262506b6861534", @ANYRES32, @ANYBLOB="0c000800f700000000000000"], 0x7c}, 0x1, 0x0, 0x0, 0x4008900}, 0x10000060) futex(0x0, 0x3, 0x0, 0x0, 0x0, 0x0) pwrite64(r2, &(0x7f0000000340)="ce1c08ad6d909c5102bb02acd1ceccc54a57a4b96cec57a51cd8f483d701c4026268a5cd12d22f377b47ee377a705e14423732bef8c6ad1910c13ba3e003d298321f528624075c197a90f6b4fbd99e09497e7f4b2c213fc4c59699f305dc156bd865d02128d51e25c435c17dd284177138772a242f1c758bffa96cb55fb060dead75e2c6f1feef9704eb20926584e2075128f13ebbe74abea540e4cf73e1ff35bbf8b4", 0xa3, 0x5) clock_gettime(0x5, &(0x7f0000000000)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x77359400}, 0x1, 0x0, 0x1}, 0x2) 00:24:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x460000, 0x1a) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="0c00000065ffff"], 0x13) mount$9p_fd(0x20100900, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2201048, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0x20000000) fallocate(r0, 0x0, 0x0, 0x87ffffc) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) mknod$loop(&(0x7f0000000000)='./file1\x00', 0x400, 0x0) fallocate(r3, 0x20, 0x0, 0xffff77ff000) 00:24:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x460000, 0x1a) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="0c00000065ffff"], 0x13) mount$9p_fd(0x20100900, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2201048, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0x20000000) fallocate(r0, 0x0, 0x0, 0x87ffffc) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) mknod$loop(&(0x7f0000000000)='./file1\x00', 0x400, 0x0) fallocate(r3, 0x20, 0x0, 0xffff77ff000) 00:24:11 executing program 0: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$sock_timeval(r0, 0x1, 0x43, 0x0, &(0x7f0000001bc0)=0xfffffffffffffd94) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x44080, 0x0) sendmsg$NL80211_CMD_REQ_SET_REG(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x94, 0x0, 0x109, 0x70bd2a, 0x25dfdbfb, {}, [@NL80211_ATTR_REG_RULES={0x78, 0x22, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x913}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8000}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x5}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x400}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1f}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xffffffff}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x1f}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x4}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7ff}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xbbd}]}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x45}]}, 0x94}, 0x1, 0x0, 0x0, 0x30008000}, 0x8) 00:24:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x460000, 0x1a) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="0c00000065ffff"], 0x13) mount$9p_fd(0x20100900, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2201048, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0x20000000) fallocate(r0, 0x0, 0x0, 0x87ffffc) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) mknod$loop(&(0x7f0000000000)='./file1\x00', 0x400, 0x0) fallocate(r3, 0x20, 0x0, 0xffff77ff000) 00:24:11 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000180)={'wpan3\x00'}) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000080), 0xffffffffffffffff) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/slabinfo\x00', 0x0, 0x0) readv(r2, &(0x7f0000001600)=[{&(0x7f0000000600)=""/4096, 0x1000}], 0x1) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0) sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="20002cbd7000fcdbdf25030000000c00060002000000000000000c00050026000000000000004400078008000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="0800aa64", @ANYRES32, @ANYBLOB="08000100", @ANYRES32=r2, @ANYBLOB="08000100", @ANYRES32=r3, @ANYBLOB="08000100", @ANYRES32, @ANYBLOB="080001006efbf060b600971f15aeb06b8efc91757e6f3cc8991b262506b6861534", @ANYRES32, @ANYBLOB="0c000800f700000000000000"], 0x7c}, 0x1, 0x0, 0x0, 0x4008900}, 0x10000060) futex(0x0, 0x3, 0x0, 0x0, 0x0, 0x0) pwrite64(r2, &(0x7f0000000340)="ce1c08ad6d909c5102bb02acd1ceccc54a57a4b96cec57a51cd8f483d701c4026268a5cd12d22f377b47ee377a705e14423732bef8c6ad1910c13ba3e003d298321f528624075c197a90f6b4fbd99e09497e7f4b2c213fc4c59699f305dc156bd865d02128d51e25c435c17dd284177138772a242f1c758bffa96cb55fb060dead75e2c6f1feef9704eb20926584e2075128f13ebbe74abea540e4cf73e1ff35bbf8b4", 0xa3, 0x5) clock_gettime(0x5, &(0x7f0000000000)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x77359400}, 0x1, 0x0, 0x1}, 0x2) 00:24:11 executing program 0: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = fork() waitid(0x2, r1, &(0x7f0000000080), 0x80000000, &(0x7f0000000100)) r2 = perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x81, 0x0, 0xc8, 0xc5, 0x0, 0x10000, 0x92980, 0xb, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x1, @perf_config_ext={0x5, 0x6}, 0x40434, 0xfffffffffffffff8, 0x3, 0x0, 0x0, 0x1, 0x100, 0x0, 0x4, 0x0, 0x6}, r1, 0xb, r0, 0x9) r3 = fork() waitid(0x2, r3, &(0x7f0000000080), 0x80000000, &(0x7f0000000100)) perf_event_open(&(0x7f0000000680)={0x9f152209e2d4d702, 0x80, 0x5, 0xe1, 0x40, 0x7, 0x0, 0x1, 0x400, 0x4, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x5, 0x1, @perf_config_ext={0x7, 0x6}, 0x2000, 0x200, 0xffffff81, 0x5, 0x20, 0x3, 0x8000, 0x0, 0x400, 0x0, 0x9}, r3, 0x6, r2, 0x2) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80000000, 0x81}, 0x703, 0x0, 0x0, 0x9, 0x7}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x20000, 0x0) r5 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x32261, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write(r5, 0x0, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) fcntl$dupfd(r5, 0x0, r6) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f80000200040000300000000", 0x21}, {0x0, 0x0, 0x10000}], 0x0, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000600)={0x0, 0x0}) recvmmsg$unix(r4, &(0x7f00000005c0)=[{{&(0x7f0000000380)=@abs, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000240)=""/21, 0x15}], 0x1, &(0x7f0000000440)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x180}}], 0x1, 0x2000, &(0x7f0000000640)={r7, r8+60000000}) perf_event_open(&(0x7f0000000300)={0x0, 0x80, 0x7f, 0x1, 0x4d, 0x8, 0x0, 0xaa74, 0x430, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_config_ext={0x5, 0x781}, 0xa1, 0x5d, 0x6, 0x7, 0xf8, 0x5, 0xfff7, 0x0, 0x7, 0x0, 0x7}, r9, 0xf, 0xffffffffffffffff, 0x1) [ 123.301219] audit: type=1400 audit(1663892651.793:7): avc: denied { open } for pid=3922 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.302631] audit: type=1400 audit(1663892651.793:8): avc: denied { kernel } for pid=3922 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 123.318898] ------------[ cut here ]------------ [ 123.318919] [ 123.318923] ====================================================== [ 123.318927] WARNING: possible circular locking dependency detected [ 123.318932] 6.0.0-rc6-next-20220921 #1 Not tainted [ 123.318940] ------------------------------------------------------ [ 123.318944] syz-executor.0/3925 is trying to acquire lock: [ 123.318950] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 123.318993] [ 123.318993] but task is already holding lock: [ 123.318996] ffff88801842bc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 123.319026] [ 123.319026] which lock already depends on the new lock. [ 123.319026] [ 123.319029] [ 123.319029] the existing dependency chain (in reverse order) is: [ 123.319032] [ 123.319032] -> #3 (&ctx->lock){....}-{2:2}: [ 123.319046] _raw_spin_lock+0x2a/0x40 [ 123.319067] __perf_event_task_sched_out+0x53b/0x18d0 [ 123.319080] __schedule+0xedd/0x2470 [ 123.319093] schedule+0xda/0x1b0 [ 123.319107] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.319119] syscall_exit_to_user_mode+0x19/0x40 [ 123.319131] do_syscall_64+0x48/0x90 [ 123.319148] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.319160] [ 123.319160] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 123.319175] _raw_spin_lock_nested+0x30/0x40 [ 123.319194] raw_spin_rq_lock_nested+0x1e/0x30 [ 123.319208] task_fork_fair+0x63/0x4d0 [ 123.319226] sched_cgroup_fork+0x3d0/0x540 [ 123.319242] copy_process+0x4183/0x6e20 [ 123.319252] kernel_clone+0xe7/0x890 [ 123.319262] user_mode_thread+0xad/0xf0 [ 123.319273] rest_init+0x24/0x250 [ 123.319284] arch_call_rest_init+0xf/0x14 [ 123.319301] start_kernel+0x4c1/0x4e6 [ 123.319315] secondary_startup_64_no_verify+0xe0/0xeb [ 123.319330] [ 123.319330] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 123.319344] _raw_spin_lock_irqsave+0x39/0x60 [ 123.319364] try_to_wake_up+0xab/0x1930 [ 123.319378] up+0x75/0xb0 [ 123.319392] __up_console_sem+0x6e/0x80 [ 123.319410] console_unlock+0x46a/0x590 [ 123.319427] vt_ioctl+0x2822/0x2ca0 [ 123.319441] tty_ioctl+0x7c4/0x1700 [ 123.319453] __x64_sys_ioctl+0x19a/0x210 [ 123.319470] do_syscall_64+0x3b/0x90 [ 123.319487] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.319499] [ 123.319499] -> #0 ((console_sem).lock){....}-{2:2}: [ 123.319513] __lock_acquire+0x2a02/0x5e70 [ 123.319532] lock_acquire+0x1a2/0x530 [ 123.319550] _raw_spin_lock_irqsave+0x39/0x60 [ 123.319569] down_trylock+0xe/0x70 [ 123.319584] __down_trylock_console_sem+0x3b/0xd0 [ 123.319602] vprintk_emit+0x16b/0x560 [ 123.319620] vprintk+0x84/0xa0 [ 123.319637] _printk+0xba/0xf1 [ 123.319648] report_bug.cold+0x72/0xab [ 123.319665] handle_bug+0x3c/0x70 [ 123.319682] exc_invalid_op+0x14/0x50 [ 123.319700] asm_exc_invalid_op+0x16/0x20 [ 123.319711] group_sched_out.part.0+0x2c7/0x460 [ 123.319722] ctx_sched_out+0x8f1/0xc10 [ 123.319732] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.319745] __schedule+0xedd/0x2470 [ 123.319759] schedule+0xda/0x1b0 [ 123.319772] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.319783] syscall_exit_to_user_mode+0x19/0x40 [ 123.319795] do_syscall_64+0x48/0x90 [ 123.319812] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.319824] [ 123.319824] other info that might help us debug this: [ 123.319824] [ 123.319827] Chain exists of: [ 123.319827] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 123.319827] [ 123.319843] Possible unsafe locking scenario: [ 123.319843] [ 123.319845] CPU0 CPU1 [ 123.319847] ---- ---- [ 123.319850] lock(&ctx->lock); [ 123.319855] lock(&rq->__lock); [ 123.319862] lock(&ctx->lock); [ 123.319869] lock((console_sem).lock); [ 123.319875] [ 123.319875] *** DEADLOCK *** [ 123.319875] [ 123.319877] 2 locks held by syz-executor.0/3925: [ 123.319884] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 123.319914] #1: ffff88801842bc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 123.319943] [ 123.319943] stack backtrace: [ 123.319946] CPU: 0 PID: 3925 Comm: syz-executor.0 Not tainted 6.0.0-rc6-next-20220921 #1 [ 123.319959] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 123.319968] Call Trace: [ 123.319971] [ 123.319976] dump_stack_lvl+0x8b/0xb3 [ 123.319995] check_noncircular+0x263/0x2e0 [ 123.320013] ? format_decode+0x26c/0xb50 [ 123.320029] ? print_circular_bug+0x450/0x450 [ 123.320048] ? enable_ptr_key_workfn+0x20/0x20 [ 123.320064] ? perf_swevent_event+0x6c/0x550 [ 123.320085] ? format_decode+0x26c/0xb50 [ 123.320103] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 123.320121] __lock_acquire+0x2a02/0x5e70 [ 123.320145] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 123.320169] lock_acquire+0x1a2/0x530 [ 123.320187] ? down_trylock+0xe/0x70 [ 123.320205] ? lock_release+0x750/0x750 [ 123.320227] ? vprintk+0x84/0xa0 [ 123.320246] _raw_spin_lock_irqsave+0x39/0x60 [ 123.320267] ? down_trylock+0xe/0x70 [ 123.320283] down_trylock+0xe/0x70 [ 123.320299] ? vprintk+0x84/0xa0 [ 123.320317] __down_trylock_console_sem+0x3b/0xd0 [ 123.320342] vprintk_emit+0x16b/0x560 [ 123.320363] vprintk+0x84/0xa0 [ 123.320382] _printk+0xba/0xf1 [ 123.320393] ? record_print_text.cold+0x16/0x16 [ 123.320408] ? report_bug.cold+0x66/0xab [ 123.320427] ? group_sched_out.part.0+0x2c7/0x460 [ 123.320439] report_bug.cold+0x72/0xab [ 123.320458] handle_bug+0x3c/0x70 [ 123.320476] exc_invalid_op+0x14/0x50 [ 123.320495] asm_exc_invalid_op+0x16/0x20 [ 123.320507] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 123.320521] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 123.320533] RSP: 0018:ffff8880416bfc48 EFLAGS: 00010006 [ 123.320543] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 123.320551] RDX: ffff888041029ac0 RSI: ffffffff815663a7 RDI: 0000000000000005 [ 123.320559] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 123.320567] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88801842bc00 [ 123.320575] R13: ffff88806ce3d140 R14: ffffffff8547cf80 R15: 0000000000000002 [ 123.320586] ? group_sched_out.part.0+0x2c7/0x460 [ 123.320600] ? group_sched_out.part.0+0x2c7/0x460 [ 123.320613] ctx_sched_out+0x8f1/0xc10 [ 123.320626] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.320643] ? lock_is_held_type+0xd7/0x130 [ 123.320656] ? __perf_cgroup_move+0x160/0x160 [ 123.320669] ? set_next_entity+0x304/0x550 [ 123.320688] ? update_curr+0x267/0x740 [ 123.320708] ? lock_is_held_type+0xd7/0x130 [ 123.320721] __schedule+0xedd/0x2470 [ 123.320738] ? io_schedule_timeout+0x150/0x150 [ 123.320754] ? trace_rcu_dyntick+0x1a7/0x250 [ 123.320777] schedule+0xda/0x1b0 [ 123.320792] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.320805] syscall_exit_to_user_mode+0x19/0x40 [ 123.320817] do_syscall_64+0x48/0x90 [ 123.320836] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.320848] RIP: 0033:0x7ff4f3a06b19 [ 123.320857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.320868] RSP: 002b:00007ff4f0f7c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.320880] RAX: 0000000000000001 RBX: 00007ff4f3b19f68 RCX: 00007ff4f3a06b19 [ 123.320888] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff4f3b19f6c [ 123.320895] RBP: 00007ff4f3b19f60 R08: 000000000000000e R09: 0000000000000000 [ 123.320903] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ff4f3b19f6c [ 123.320911] R13: 00007ffc15c2bbdf R14: 00007ff4f0f7c300 R15: 0000000000022000 [ 123.320924] [ 123.374942] WARNING: CPU: 0 PID: 3925 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 123.374964] Modules linked in: [ 123.374970] CPU: 0 PID: 3925 Comm: syz-executor.0 Not tainted 6.0.0-rc6-next-20220921 #1 [ 123.374983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 123.374991] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 123.375005] Code: 5e 41 5f e9 9b b9 ef ff e8 96 b9 ef ff 65 8b 1d 2b 12 ac 7e 31 ff 89 de e8 36 b6 ef ff 85 db 0f 84 8a 00 00 00 e8 79 b9 ef ff <0f> 0b e9 a5 fe ff ff e8 6d b9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 123.375017] RSP: 0018:ffff8880416bfc48 EFLAGS: 00010006 [ 123.375027] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 123.375035] RDX: ffff888041029ac0 RSI: ffffffff815663a7 RDI: 0000000000000005 [ 123.375044] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 123.375052] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88801842bc00 [ 123.375060] R13: ffff88806ce3d140 R14: ffffffff8547cf80 R15: 0000000000000002 00:24:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x460000, 0x1a) pipe2$9p(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="0c00000065ffff"], 0x13) mount$9p_fd(0x20100900, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x2201048, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}}) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0x20000000) fallocate(r0, 0x0, 0x0, 0x87ffffc) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) mknod$loop(&(0x7f0000000000)='./file1\x00', 0x400, 0x0) fallocate(r3, 0x20, 0x0, 0xffff77ff000) [ 123.375071] FS: 00007ff4f0f7c700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 123.375084] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 123.375093] CR2: 0000559ba9272080 CR3: 000000001815a000 CR4: 0000000000350ef0 [ 123.375101] Call Trace: [ 123.375105] [ 123.375110] ctx_sched_out+0x8f1/0xc10 [ 123.375124] __perf_event_task_sched_out+0x6d0/0x18d0 [ 123.375141] ? lock_is_held_type+0xd7/0x130 [ 123.375155] ? __perf_cgroup_move+0x160/0x160 [ 123.375168] ? set_next_entity+0x304/0x550 [ 123.375188] ? update_curr+0x267/0x740 [ 123.375208] ? lock_is_held_type+0xd7/0x130 [ 123.375222] __schedule+0xedd/0x2470 [ 123.375239] ? io_schedule_timeout+0x150/0x150 [ 123.375256] ? trace_rcu_dyntick+0x1a7/0x250 [ 123.375279] schedule+0xda/0x1b0 [ 123.375294] exit_to_user_mode_prepare+0x114/0x1a0 [ 123.375308] syscall_exit_to_user_mode+0x19/0x40 [ 123.375321] do_syscall_64+0x48/0x90 [ 123.375340] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 123.375353] RIP: 0033:0x7ff4f3a06b19 [ 123.375362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 123.375374] RSP: 002b:00007ff4f0f7c218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 123.375386] RAX: 0000000000000001 RBX: 00007ff4f3b19f68 RCX: 00007ff4f3a06b19 [ 123.375394] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007ff4f3b19f6c [ 123.375403] RBP: 00007ff4f3b19f60 R08: 000000000000000e R09: 0000000000000000 [ 123.375411] R10: 0000000000000003 R11: 0000000000000246 R12: 00007ff4f3b19f6c [ 123.375419] R13: 00007ffc15c2bbdf R14: 00007ff4f0f7c300 R15: 0000000000022000 [ 123.375432] [ 123.375436] irq event stamp: 2734 [ 123.375440] hardirqs last enabled at (2733): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 123.375456] hardirqs last disabled at (2734): [] __schedule+0x1225/0x2470 [ 123.375475] softirqs last enabled at (2380): [] __irq_exit_rcu+0x11b/0x180 [ 123.375497] softirqs last disabled at (2371): [] __irq_exit_rcu+0x11b/0x180 [ 123.375518] ---[ end trace 0000000000000000 ]--- [ 123.770602] loop0: detected capacity change from 0 to 256 VM DIAGNOSIS: 00:24:12 Registers: info registers vcpu 0 RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b1c91 RDI=ffffffff87645ba0 RBP=ffffffff87645b60 RSP=ffff8880416bf698 R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001 R12=000000000000002e R13=ffffffff87645b60 R14=0000000000000010 R15=ffffffff822b1c80 RIP=ffffffff822b1ce9 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff4f0f7c700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000559ba9272080 CR3=000000001815a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007ff4f3aed7c0 00007ff4f3aed7c8 YMM02=0000000000000000 0000000000000000 00007ff4f3aed7e0 00007ff4f3aed7c0 YMM03=0000000000000000 0000000000000000 00007ff4f3aed7c8 00007ff4f3aed7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000080 RCX=0000000000000cc0 RDX=0000000000000000 RSI=0000000000092cc0 RDI=ffff888018841aec RBP=ffff8880183b7970 RSP=ffff8880183b7958 R8 =0000000000000000 R9 =ffff88800e156b00 R10=0000000000000000 R11=0000000000000001 R12=ffff888007c4f780 R13=ffffffff817bd84d R14=ffff888018841ac0 R15=0000000000092cc0 RIP=ffffffff81703b6e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555555cb5400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fc9789cd6f4 CR3=00000000302c8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 00e800a800000000 0000000000000000 YMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM02=0000000000000000 0000000000000000 00524f5252450040 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000