Warning: Permanently added '[localhost]:19983' (ECDSA) to the list of known hosts. 2022/09/24 18:49:01 fuzzer started 2022/09/24 18:49:01 dialing manager at localhost:38881 syzkaller login: [ 36.203111] cgroup: Unknown subsys name 'net' [ 36.303448] cgroup: Unknown subsys name 'rlimit' 2022/09/24 18:49:16 syscalls: 2215 2022/09/24 18:49:16 code coverage: enabled 2022/09/24 18:49:16 comparison tracing: enabled 2022/09/24 18:49:16 extra coverage: enabled 2022/09/24 18:49:16 setuid sandbox: enabled 2022/09/24 18:49:16 namespace sandbox: enabled 2022/09/24 18:49:16 Android sandbox: enabled 2022/09/24 18:49:16 fault injection: enabled 2022/09/24 18:49:16 leak checking: enabled 2022/09/24 18:49:16 net packet injection: enabled 2022/09/24 18:49:16 net device setup: enabled 2022/09/24 18:49:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/24 18:49:16 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/24 18:49:16 USB emulation: enabled 2022/09/24 18:49:16 hci packet injection: enabled 2022/09/24 18:49:16 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923) 2022/09/24 18:49:16 802.15.4 emulation: enabled 2022/09/24 18:49:17 fetching corpus: 50, signal 30156/31902 (executing program) 2022/09/24 18:49:17 fetching corpus: 100, signal 42927/46227 (executing program) 2022/09/24 18:49:17 fetching corpus: 150, signal 51747/56504 (executing program) 2022/09/24 18:49:17 fetching corpus: 200, signal 61021/67034 (executing program) 2022/09/24 18:49:17 fetching corpus: 250, signal 63599/70977 (executing program) 2022/09/24 18:49:17 fetching corpus: 300, signal 66884/75575 (executing program) 2022/09/24 18:49:17 fetching corpus: 350, signal 70689/80603 (executing program) 2022/09/24 18:49:17 fetching corpus: 400, signal 76163/87123 (executing program) 2022/09/24 18:49:17 fetching corpus: 450, signal 80321/92350 (executing program) 2022/09/24 18:49:18 fetching corpus: 500, signal 82312/95549 (executing program) 2022/09/24 18:49:18 fetching corpus: 550, signal 87353/101538 (executing program) 2022/09/24 18:49:18 fetching corpus: 600, signal 92393/107405 (executing program) 2022/09/24 18:49:18 fetching corpus: 650, signal 94278/110373 (executing program) 2022/09/24 18:49:18 fetching corpus: 700, signal 96872/113949 (executing program) 2022/09/24 18:49:18 fetching corpus: 750, signal 99100/117135 (executing program) 2022/09/24 18:49:18 fetching corpus: 800, signal 101499/120419 (executing program) 2022/09/24 18:49:18 fetching corpus: 850, signal 103392/123217 (executing program) 2022/09/24 18:49:19 fetching corpus: 900, signal 106525/127023 (executing program) 2022/09/24 18:49:19 fetching corpus: 950, signal 109995/131070 (executing program) 2022/09/24 18:49:19 fetching corpus: 1000, signal 111873/133730 (executing program) 2022/09/24 18:49:19 fetching corpus: 1050, signal 113043/135806 (executing program) 2022/09/24 18:49:19 fetching corpus: 1100, signal 114291/137898 (executing program) 2022/09/24 18:49:19 fetching corpus: 1150, signal 115312/139800 (executing program) 2022/09/24 18:49:19 fetching corpus: 1200, signal 118461/143364 (executing program) 2022/09/24 18:49:19 fetching corpus: 1250, signal 120057/145673 (executing program) 2022/09/24 18:49:20 fetching corpus: 1300, signal 122360/148522 (executing program) 2022/09/24 18:49:20 fetching corpus: 1350, signal 124217/150950 (executing program) 2022/09/24 18:49:20 fetching corpus: 1400, signal 125199/152734 (executing program) 2022/09/24 18:49:20 fetching corpus: 1450, signal 126003/154335 (executing program) 2022/09/24 18:49:20 fetching corpus: 1500, signal 127749/156639 (executing program) 2022/09/24 18:49:20 fetching corpus: 1550, signal 129203/158695 (executing program) 2022/09/24 18:49:20 fetching corpus: 1600, signal 130010/160259 (executing program) 2022/09/24 18:49:20 fetching corpus: 1650, signal 131975/162667 (executing program) 2022/09/24 18:49:21 fetching corpus: 1700, signal 134428/165401 (executing program) 2022/09/24 18:49:21 fetching corpus: 1750, signal 135185/166877 (executing program) 2022/09/24 18:49:21 fetching corpus: 1800, signal 137456/169365 (executing program) 2022/09/24 18:49:21 fetching corpus: 1850, signal 138356/170886 (executing program) 2022/09/24 18:49:21 fetching corpus: 1900, signal 139278/172416 (executing program) 2022/09/24 18:49:21 fetching corpus: 1950, signal 140376/174130 (executing program) 2022/09/24 18:49:21 fetching corpus: 2000, signal 141524/175791 (executing program) 2022/09/24 18:49:21 fetching corpus: 2050, signal 142351/177211 (executing program) 2022/09/24 18:49:21 fetching corpus: 2100, signal 143491/178820 (executing program) 2022/09/24 18:49:22 fetching corpus: 2150, signal 145824/181118 (executing program) 2022/09/24 18:49:22 fetching corpus: 2200, signal 146767/182559 (executing program) 2022/09/24 18:49:22 fetching corpus: 2250, signal 148012/184128 (executing program) 2022/09/24 18:49:22 fetching corpus: 2300, signal 148938/185525 (executing program) 2022/09/24 18:49:22 fetching corpus: 2350, signal 149815/186888 (executing program) 2022/09/24 18:49:22 fetching corpus: 2400, signal 150812/188258 (executing program) 2022/09/24 18:49:22 fetching corpus: 2450, signal 152065/189813 (executing program) 2022/09/24 18:49:22 fetching corpus: 2500, signal 152943/191138 (executing program) 2022/09/24 18:49:22 fetching corpus: 2550, signal 154120/192583 (executing program) 2022/09/24 18:49:23 fetching corpus: 2600, signal 155051/193859 (executing program) 2022/09/24 18:49:23 fetching corpus: 2650, signal 156216/195271 (executing program) 2022/09/24 18:49:23 fetching corpus: 2700, signal 156992/196450 (executing program) 2022/09/24 18:49:23 fetching corpus: 2750, signal 158137/197796 (executing program) 2022/09/24 18:49:23 fetching corpus: 2800, signal 159043/198999 (executing program) 2022/09/24 18:49:23 fetching corpus: 2850, signal 159870/200175 (executing program) 2022/09/24 18:49:23 fetching corpus: 2900, signal 160714/201339 (executing program) 2022/09/24 18:49:23 fetching corpus: 2950, signal 161322/202362 (executing program) 2022/09/24 18:49:23 fetching corpus: 3000, signal 162321/203529 (executing program) 2022/09/24 18:49:24 fetching corpus: 3050, signal 164368/205295 (executing program) 2022/09/24 18:49:24 fetching corpus: 3100, signal 165321/206408 (executing program) 2022/09/24 18:49:24 fetching corpus: 3150, signal 166282/207537 (executing program) 2022/09/24 18:49:24 fetching corpus: 3200, signal 167381/208689 (executing program) 2022/09/24 18:49:24 fetching corpus: 3250, signal 168429/209843 (executing program) 2022/09/24 18:49:24 fetching corpus: 3300, signal 169068/210791 (executing program) 2022/09/24 18:49:24 fetching corpus: 3350, signal 169601/211698 (executing program) 2022/09/24 18:49:25 fetching corpus: 3400, signal 170482/212704 (executing program) 2022/09/24 18:49:25 fetching corpus: 3450, signal 172044/214091 (executing program) 2022/09/24 18:49:25 fetching corpus: 3500, signal 172512/214962 (executing program) 2022/09/24 18:49:25 fetching corpus: 3550, signal 173662/216025 (executing program) 2022/09/24 18:49:25 fetching corpus: 3600, signal 174798/217082 (executing program) 2022/09/24 18:49:25 fetching corpus: 3650, signal 175769/218066 (executing program) 2022/09/24 18:49:25 fetching corpus: 3700, signal 176369/218860 (executing program) 2022/09/24 18:49:25 fetching corpus: 3750, signal 177257/219797 (executing program) 2022/09/24 18:49:26 fetching corpus: 3800, signal 178149/220700 (executing program) 2022/09/24 18:49:26 fetching corpus: 3850, signal 178829/221543 (executing program) 2022/09/24 18:49:26 fetching corpus: 3900, signal 179760/222456 (executing program) 2022/09/24 18:49:26 fetching corpus: 3950, signal 181023/223430 (executing program) 2022/09/24 18:49:26 fetching corpus: 4000, signal 182414/224451 (executing program) 2022/09/24 18:49:26 fetching corpus: 4050, signal 183147/225231 (executing program) 2022/09/24 18:49:26 fetching corpus: 4100, signal 183818/225964 (executing program) 2022/09/24 18:49:26 fetching corpus: 4150, signal 184389/226633 (executing program) 2022/09/24 18:49:27 fetching corpus: 4200, signal 185861/227638 (executing program) 2022/09/24 18:49:27 fetching corpus: 4250, signal 186736/228334 (executing program) 2022/09/24 18:49:27 fetching corpus: 4300, signal 187559/229033 (executing program) 2022/09/24 18:49:27 fetching corpus: 4350, signal 188250/229702 (executing program) 2022/09/24 18:49:27 fetching corpus: 4400, signal 188776/230336 (executing program) 2022/09/24 18:49:27 fetching corpus: 4450, signal 189813/231073 (executing program) 2022/09/24 18:49:27 fetching corpus: 4500, signal 190433/231718 (executing program) 2022/09/24 18:49:28 fetching corpus: 4550, signal 191009/232304 (executing program) 2022/09/24 18:49:28 fetching corpus: 4600, signal 191373/232843 (executing program) 2022/09/24 18:49:28 fetching corpus: 4650, signal 192057/233476 (executing program) 2022/09/24 18:49:28 fetching corpus: 4700, signal 192812/234084 (executing program) 2022/09/24 18:49:28 fetching corpus: 4750, signal 193673/234689 (executing program) 2022/09/24 18:49:28 fetching corpus: 4800, signal 194260/235194 (executing program) 2022/09/24 18:49:28 fetching corpus: 4850, signal 194851/235743 (executing program) 2022/09/24 18:49:28 fetching corpus: 4900, signal 195303/236269 (executing program) 2022/09/24 18:49:28 fetching corpus: 4950, signal 196270/236888 (executing program) 2022/09/24 18:49:28 fetching corpus: 5000, signal 196948/237457 (executing program) 2022/09/24 18:49:29 fetching corpus: 5050, signal 197396/237955 (executing program) 2022/09/24 18:49:29 fetching corpus: 5100, signal 198165/238521 (executing program) 2022/09/24 18:49:29 fetching corpus: 5150, signal 199070/239046 (executing program) 2022/09/24 18:49:29 fetching corpus: 5200, signal 199663/239507 (executing program) 2022/09/24 18:49:29 fetching corpus: 5250, signal 200073/239928 (executing program) 2022/09/24 18:49:29 fetching corpus: 5300, signal 200509/240377 (executing program) 2022/09/24 18:49:29 fetching corpus: 5350, signal 201059/240805 (executing program) 2022/09/24 18:49:29 fetching corpus: 5400, signal 201675/241260 (executing program) 2022/09/24 18:49:29 fetching corpus: 5450, signal 202380/241676 (executing program) 2022/09/24 18:49:30 fetching corpus: 5500, signal 203243/242102 (executing program) 2022/09/24 18:49:30 fetching corpus: 5550, signal 203683/242481 (executing program) 2022/09/24 18:49:30 fetching corpus: 5600, signal 204389/242917 (executing program) 2022/09/24 18:49:30 fetching corpus: 5650, signal 205150/243337 (executing program) 2022/09/24 18:49:30 fetching corpus: 5700, signal 205870/243743 (executing program) 2022/09/24 18:49:30 fetching corpus: 5750, signal 206804/244305 (executing program) 2022/09/24 18:49:30 fetching corpus: 5800, signal 207470/244645 (executing program) 2022/09/24 18:49:31 fetching corpus: 5850, signal 208351/245029 (executing program) 2022/09/24 18:49:31 fetching corpus: 5900, signal 208736/245359 (executing program) 2022/09/24 18:49:31 fetching corpus: 5950, signal 209141/245675 (executing program) 2022/09/24 18:49:31 fetching corpus: 6000, signal 210186/246078 (executing program) 2022/09/24 18:49:31 fetching corpus: 6050, signal 210717/246375 (executing program) 2022/09/24 18:49:31 fetching corpus: 6100, signal 210926/246483 (executing program) 2022/09/24 18:49:31 fetching corpus: 6150, signal 211345/246483 (executing program) 2022/09/24 18:49:31 fetching corpus: 6200, signal 211959/246488 (executing program) 2022/09/24 18:49:31 fetching corpus: 6250, signal 212787/246489 (executing program) 2022/09/24 18:49:31 fetching corpus: 6300, signal 213068/246489 (executing program) 2022/09/24 18:49:32 fetching corpus: 6350, signal 213938/246490 (executing program) 2022/09/24 18:49:32 fetching corpus: 6400, signal 214627/246532 (executing program) 2022/09/24 18:49:32 fetching corpus: 6450, signal 214985/246548 (executing program) 2022/09/24 18:49:32 fetching corpus: 6459, signal 215010/246548 (executing program) 2022/09/24 18:49:32 fetching corpus: 6459, signal 215010/246548 (executing program) 2022/09/24 18:49:35 starting 8 fuzzer processes 18:49:35 executing program 0: ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) fcntl$getown(r0, 0x9) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000040)={0xffffffffffff8001, 0x4, 0x7, 0x8, 0x3, [{0x202e, 0xac, 0x3, '\x00', 0x2002}, {0x8, 0x9, 0x400, '\x00', 0x2680}, {0x1, 0xffffffffffffff01, 0x6, '\x00', 0x200c}]}) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x40000, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r2, 0xc0046686, &(0x7f0000000180)={0x3, 0x10, "44e9e8ad3c647e80e8ba6fb7a498f639"}) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000001c0), 0x804080, 0x0) ioctl$FS_IOC_READ_VERITY_METADATA(r3, 0xc0286687, &(0x7f0000000300)={0x0, 0x7, 0xc4, &(0x7f0000000200)=""/196}) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000340)={{0x1, 0x1, 0x18, r3, {0x800, 0xff}}, './file0\x00'}) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r4, 0xc0506617, &(0x7f0000000380)={@id={0x2, 0x0, @d}, 0x40, 0x0, '\x00', @a}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = signalfd4(r5, &(0x7f0000000440)={[0x7f]}, 0x8, 0x80800) r7 = openat(r6, &(0x7f0000000480)='./file0\x00', 0x20000, 0x80) ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000004c0), 0x800084, 0x0) epoll_ctl$EPOLL_CTL_DEL(r8, 0x2, r7) signalfd4(r8, &(0x7f0000000500)={[0x2]}, 0x8, 0x800) r9 = getuid() mount$9p_unix(&(0x7f0000000540)='./file0\x00', &(0x7f0000000580)='./file0\x00', &(0x7f00000005c0), 0x42404, &(0x7f0000001a80)={'trans=unix,', {[{@cache_loose}, {@fscache}, {@privport}, {@access_uid={'access', 0x3d, r9}}], [{@fsname={'fsname', 0x3d, '@\x00'}}, {@smackfsfloor={'smackfsfloor', 0x3d, '/dev/hwrng\x00'}}, {@uid_eq={'uid', 0x3d, 0xee00}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@subj_type={'subj_type', 0x3d, '\\'}}, {@pcr={'pcr', 0x3d, 0x18}}]}}) openat(0xffffffffffffff9c, &(0x7f0000001b40)='./file0\x00', 0x10000, 0x159) write$hidraw(r1, &(0x7f0000001b80)="b11a4669bc67edf0756d85c6585197e9718364bcebe3596798d34e563b708db18702c6353bf6bfcd0860e68c9cbf541a3479d9c6040feb1fc63e37b27a966f6c3ff1695a0a3764b65c6807cf8748847f87cd15e84b178bc7e2895c945d20493c7d0786a6c6a7ba2478b5d0c2325493aa34594955c0d4552ea737c24551f7c915a6c065c72b894e22ee68a83a664aafcc98d4a35f42", 0x95) 18:49:35 executing program 1: ioctl$BLKDISCARD(0xffffffffffffffff, 0x1277, &(0x7f0000000000)=0x1) ioctl$IOC_PR_PREEMPT_ABORT(0xffffffffffffffff, 0x401870cc, &(0x7f0000000040)={0x7, 0x0, 0x0, 0x81}) r0 = syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xb2, 0x1, &(0x7f0000000200)=[{&(0x7f0000000100)="8e266116df23c283bad1864aad78e42ba91a744ea7ccc129088506c07ba23e4e2fac288168a9c2c02fce3a29e42f8b05c8d349212d6050a4c91fa8227df58a372a5ba539ceb8d056c351f641159c6c7bd4b1414503a8bf88d41418f07c26b431e8fc5b25a9c5c775e79ae43b66446b635592ef73a457b116711adb5f6136e0bfd22d439e5b6798e37a1c62847c551666146fe3519533acc1ff72c76445922f8f60aca48edbbd85dca3d8384dff9438571025370c458d3e292946059ec5fd23ccc5ced4646781d2eda7eda5ce83f0e2dec48a6c1647ac50f04427b081f58fa7e636d12b21c379c035429fbdda", 0xec, 0x71a}], 0x1000400, &(0x7f0000000240)={[{@session={'session', 0x3d, 0x35}}, {@check_relaxed}, {@check_strict}, {@overriderock}], [{@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}, {@euid_eq}, {@obj_role={'obj_role', 0x3d, ','}}, {@subj_type={'subj_type', 0x3d, '-'}}, {@appraise_type}, {@uid_gt={'uid>', 0xee00}}, {@permit_directio}, {@dont_measure}, {@subj_user={'subj_user', 0x3d, '&'}}]}) ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000340)={0x0, 0xffff}) ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, &(0x7f0000001340)={0x1, 0x6}) ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f0000001380)) lstat(&(0x7f0000001640)='./file0\x00', &(0x7f0000001680)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = syz_mount_image$iso9660(&(0x7f00000013c0), &(0x7f0000001400)='./file0\x00', 0x1ff, 0x2, &(0x7f0000001600)=[{&(0x7f0000001440)="1df1e8062b4c57ad4c2fbcfa618a1880b0553c6df9d02d66cf7c798f9799aa3d085d56b181b43c58c7a38b57b005e5678412f8e912fb29ddd08129c2f5e81fc057d25fd62554a5b90c8cbffe52f754b6185314958ac27cf09adeaead1b5f89b33f3cefbe387ea6bdc33ba5005575a4da39bf89df2c14c08ad7bc62ab8ae69f23df3671f5567b511c45c396cddd6b13b3701be7e19d32be5e947862637517886c283fbfeaf794d513e5f2", 0xaa, 0x9}, {&(0x7f0000001500)="332f53dd2a49a6bd2695f236f72953d073c679fb23f02b2c4d63fcd5d2011e01ac1aca14b204d6929c2669d9d53a8bb7b8e50046ad4e0fd46ae26ce13b55da0a8d402f93f653947a7492f9bb5b3dfa202603716e3eb7f26a1b2e1bb4f6c4c1e547d5179230142af76e5c1d4a05533828d3d231f731fb880c084b3260ed5cfc344a73f31dfc88ed990ca7331638dafa7f748f1f9d43e32538f52bee896bd0b9a59238a34289a938a8803117b068686e9277b54b764994aa3339391646fedaa515c3b8", 0xc2, 0x5}], 0x1040, &(0x7f0000001700)={[{@check_strict}, {@map_normal}, {@nojoliet}, {@nocompress}, {@unhide}], [{@fowner_eq={'fowner', 0x3d, r1}}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@dont_appraise}]}) ioctl$BLKSECTGET(0xffffffffffffffff, 0x1267, &(0x7f00000017c0)) r3 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000001800)='./binderfs2/binder-control\x00', 0x800, 0x0) fsetxattr$security_selinux(r3, &(0x7f0000001840), &(0x7f0000001880)='system_u:object_r:gpg_agent_exec_t:s0\x00', 0x26, 0x0) write$binfmt_aout(r0, &(0x7f00000018c0)={{0xcc, 0x1, 0x7, 0x205, 0x22f, 0x91, 0x2c5, 0xffffff01}, "cdf4dd626e77e08ba6c06e48482392a9eaf2ed2ada71510948ca29e267888e59becd3b946a3ec7650852b3d10f94ffb1b74fd393f1e0a34e8b552803cc69729f90ebf93f9d9703aed9c606d9688b5240824ea47ea7e4867decabe761837c16eeab8d9964ef9936f667657b93a1c8e919c4cee4ae1ca3af6426acc8d1aff13ce2036c743af812f75aba2c6b81de927df9299a861617389945ef58288d094f28e149bb035b5ad366980313505a1b60bdadadcea46ba7815a926be1a6fb43bf16fdb200b5fa2e72931c9c24fc8faaa14ef60dcc2255d3bb4f38d7348974f4518e19ff82a051d3", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xa05) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r2, 0xc0096616, &(0x7f0000002300)={0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000002340)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1, 0x8}}, './file0\x00'}) fsetxattr$trusted_overlay_nlink(r4, &(0x7f0000002380), &(0x7f00000023c0)={'L+', 0x83}, 0x16, 0x3) copy_file_range(r4, 0x0, r2, &(0x7f0000002400)=0x9, 0x4, 0x0) ioctl$IOC_PR_REGISTER(r4, 0x401870c8, &(0x7f0000002440)={0x8001, 0x2}) r5 = accept(r4, &(0x7f0000002480)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, &(0x7f0000002500)=0x80) getsockopt$inet_opts(r5, 0x0, 0xb, &(0x7f0000002540)=""/118, &(0x7f00000025c0)=0x76) ftruncate(0xffffffffffffffff, 0xffffffffffff8000) 18:49:35 executing program 2: preadv(0xffffffffffffffff, &(0x7f00000004c0)=[{&(0x7f0000000000)=""/225, 0xe1}, {&(0x7f0000000100)=""/247, 0xf7}, {&(0x7f0000000200)=""/170, 0xaa}, {&(0x7f00000002c0)=""/231, 0xe7}, {&(0x7f00000003c0)=""/76, 0x4c}, {&(0x7f0000000440)=""/101, 0x65}], 0x6, 0x5, 0x8) ioctl$F2FS_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0xf50f, 0x0) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(0xffffffffffffffff, 0xf505, 0x0) r0 = fcntl$getown(0xffffffffffffffff, 0x9) write$hidraw(0xffffffffffffffff, &(0x7f0000000540)="a675adcfb39c4fcbdce1b8cd5aa82b8c4dfc367cf1f19749f76c928f1aa0fd0286c512", 0x23) r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000580), 0x1, 0x0) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f00000005c0)) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001b80)={&(0x7f00000009c0)=@abs, 0x6e, &(0x7f0000001ac0)=[{&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000001a40)=""/95, 0x5f}], 0x2, &(0x7f0000001b00)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}, 0x40000000) sendmsg$NL80211_CMD_REQ_SET_REG(r4, &(0x7f0000001d00)={&(0x7f0000001bc0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000001cc0)={&(0x7f0000001c00)={0xac, 0x0, 0x800, 0x70bd2b, 0x25dfdbfe, {}, [@NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x4c}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x63}, @NL80211_ATTR_REG_RULES={0x80, 0x22, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x9d0}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x6}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7f}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x3}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x81}]}, {0x4c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0xffffffff}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x80000000}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x8000}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1000}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7f}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x20}, @NL80211_ATTR_REG_RULE_FLAGS={0x8}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7f}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x101}]}]}]}, 0xac}}, 0x200000c0) ioctl$BTRFS_IOC_DEV_REPLACE(0xffffffffffffffff, 0xca289435, &(0x7f0000001dc0)={0x0, 0x9, @start={0x0, 0x1, "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", "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"}, [0x478a, 0x7e0, 0x9, 0x6, 0x1, 0x2, 0xffffffffffffff2b, 0x6, 0xdf, 0x8, 0x2, 0x2, 0x7ff, 0xfffffffffffffffe, 0xffffffff00000001, 0x4, 0x8, 0x100, 0xfffffffffffffffe, 0x10001, 0x80, 0x6, 0x8, 0xffffffffffffffe1, 0x4, 0x9, 0x0, 0x550d777e, 0x4, 0x3f, 0x5, 0x80000001, 0x6, 0x81, 0x9, 0x6, 0x1, 0x7, 0xffffffff, 0x3ff, 0xff, 0x0, 0x1, 0x4, 0xff, 0xfffffffffffffff7, 0x9, 0x0, 0x509, 0x5, 0x7, 0xc2, 0x2, 0x40, 0x8, 0x20, 0xf5f, 0x7, 0x7, 0x8, 0xfffffffffffffffd, 0x2, 0xfffffffffffff736, 0x294b]}) ioctl$BTRFS_IOC_SNAP_CREATE_V2(r8, 0x50009417, &(0x7f0000002800)={{r1}, 0x0, 0x4949e02b4b82346d, @inherit={0x68, &(0x7f0000001d40)={0x0, 0x4, 0x5, 0x1, {0x4, 0x400, 0xac, 0x2, 0x7fffffff}, [0x40, 0x7f, 0x8, 0x1]}}, @devid=r9}) ioctl$FICLONERANGE(r2, 0x4020940d, &(0x7f0000003800)={{r3}, 0x1000, 0x4, 0x8}) socketpair(0x11, 0x1, 0x1, &(0x7f0000003840)={0xffffffffffffffff}) sendmsg$NL80211_CMD_GET_COALESCE(r10, &(0x7f0000003940)={&(0x7f0000003880)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000003900)={&(0x7f00000038c0)={0x1c, 0x0, 0xb91c83c07aa1af5c, 0x70bd27, 0x25dfdbff, {{}, {@void, @val={0x8}, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0x80) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r5, 0xc0189375, &(0x7f0000003980)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) sendfile(r7, r11, &(0x7f00000039c0)=0x3745, 0x80000000) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r5, 0xc0189373, &(0x7f0000003a00)={{0x1, 0x1, 0x18, r7, {0x3ff}}, './file0\x00'}) openat$cgroup_ro(r12, &(0x7f0000003a40)='io.stat\x00', 0x0, 0x0) r13 = getpid() clone3(&(0x7f0000003d80)={0x4646b23788a5a40a, &(0x7f0000003a80), &(0x7f0000003ac0), &(0x7f0000003b00), {0x3a}, &(0x7f0000003b40)=""/235, 0xeb, &(0x7f0000003c40)=""/109, &(0x7f0000003d40)=[r6, r6, r13, 0x0, r0], 0x5, {r8}}, 0x58) 18:49:35 executing program 4: r0 = timerfd_create(0x6, 0x80800) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) timerfd_gettime(r0, &(0x7f0000000040)) sendfile(r0, r0, &(0x7f0000000080)=0x800, 0x6) r2 = dup2(r0, r1) fallocate(r2, 0x7, 0x40, 0x66) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) io_setup(0x3, &(0x7f0000000180)=0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r1, {0x635}}, './file0\x00'}) io_submit(r5, 0x1, &(0x7f0000000300)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x1, r6, &(0x7f0000000200)="b64edb4ceca5312169a18b9f5b78124b28b7223c348bbba14ba61fdf66e081bdca16e05b3918784717ce3e56e351c6e27229336de6eb90aab972156b043553ba3a6902b6a19dd40744dae4c4c72a376558d29028d51360138f4dd8f5b4454112544ad3ee68c24e1654eb12cab46b7ca33ed5c9cacf7754711f418135c183ac1578bade061ff51aaf21430353f821028523bf839fb576b30bdc463fb2b1a1725db61e73b2134a1534e7a9c9584edc12d64990ebe6", 0xb4, 0x9, 0x0, 0x2, r1}]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, r1, {r3, r4}}, './file0\x00'}) sendfile(r7, r0, &(0x7f0000000380)=0x9, 0x100000000) mount$bind(&(0x7f00000003c0)='./file1\x00', &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x10000, 0x0) r8 = syz_open_dev$hiddev(&(0x7f0000000480), 0xffffffff, 0x80080) signalfd4(r8, &(0x7f00000004c0)={[0x7]}, 0x8, 0x0) sendmsg(r6, &(0x7f0000000d80)={&(0x7f0000000500)=@l2tp={0x2, 0x0, @broadcast, 0x2}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000580)="d00de669ed967eca3d27f690f5255b925616fe2ab40f7cd77c1c327150be7f8d6bed23bac89bd625a1520f649255c00729cd125c06c10321d4ba64aa5e6a8efe5d729c8f3ba159", 0x47}, {&(0x7f0000000600)="f9d0c3c9df0edc6ee5ad7e36b1a91c125b9f1ad61ceb8515c6ded4daf4af1fac70d460bb3d1ea9be58bcf84568f6ff0e39c45cf3fb9b36894aeafcaec727e8525c186ab3221c999b2190dc420b44a2b042033383bbbfc932349977b6950f2f547b8b0f53fddf3a62f22a2def96d95bfb0d60bcd16de6afb3069637283121463fdccb540c182e00f2d6c2d02e7a48ba917869c6495290beb2eb66919003edf0414eb0e01e06d583d55c9e72cac06e3fc146107c70abed7073e13e1a70681e6c8037f879b0c8f6591b359d8c2acb0986de739cafd48b3c1413e0140a0f489450c33300b0a6a2d0544e604dee3681c1b64c0c8179fe59", 0xf5}], 0x2, &(0x7f0000000740)=[{0x50, 0x117, 0x1, "8f2231b835c2ca6f2064776da5048446a8b87d2450eec22f816c9e74f7336647b1e58a886828549ba89eaa6b0390ccb156957cc0cbbf36129aff645d10af"}, {0xb8, 0x134, 0x40, "581d64c38ff7523f048f56565ad698ebcd8bd197d19f7cc5845ec6ee2092d72f8860fc94c4fdad69e5a609b1bbf5004e6ba99fefeb27574d5ee4deea0a826a1cc267066e8b5113e62b8a93ea154e66972497ea907bb61d3781de958ebb0a274a33cd747e5d7f32d829cb454555ee15c90598b76c2d07b9ac1850dda87b2fe7c8ed087978f4616ba1199a25ffcb3c13fbd001736d413718a33519981bfc15a82ebda603"}, {0x98, 0x88, 0x48b, "903b6d18214a222cf7d8f9c06e4eca10ab0d6902c51b2cb8069e2fb4949b947a6c044bd43b4e18773efd441a902aa5b6053072f6768ce31d377ec44cbe13f45f06179da58ede1c3dd39d203818745a8ee756ae49903b4ce8abc7e15433d3c3f26d372b413174a4d076b5387268b576b3c2ea7757ac987e50a0790ee59a906737eac57f"}, {0xd0, 0x115, 0xb7, "5d416744d679361153fb260cc63c679bd5cfe584a009ade2ef2937ce359a5851991ae057b3c2af4f95ee17edc5e33696379d31acaee04fa960c8bfa5a141624ed19b737e671f339ef0d54a7223e758fb3cd405367a6bca243bd094e3df9143a5d945229231202c9da9333806885c4bc5894cc37c87c24a771d06ab6de133966f26f43c28dd8b03893c9c5ff66541a54744c07303c31dfbb9b8e3d1a8b5930737444ef7405fe81b632387879294dec32b555da701c744d6dad153"}, {0xc0, 0x19f, 0x40, "6c4c22348658b81a6cabeb5c7c2ff4a4263c142930a5cffd28984c73e080003426ef4ae512756641bdcc67864b66892e53a513abacb8ef73820d2d84e39225407ff05e64e6b96c0bf3f234a814975bede67e7f8d280b33441f25ec7728523f75d4f4b4050e57ba651e979ac570ac8eb98f06d171619641b1b97a3a62698e7680fcd5b3347ca65174bda4db73c2cb7eb14fc6637ff82df7daca7030b20de83e631f87c9c7c2928496f957"}, {0x108, 0x105, 0x7, "c2cf496074bfaca856e545b0a18d79087295286e344c39ecf824889dd35308d174f1a6030745c265819600bf983c1fa28faa87f1e8fc6194ef9fef12c5d0f42b90d9424e25aaca782f42abc25354f4f7ac65e0285ff61b1bd3003813b00b7bd7c821ec328670f6bf97cb486ce223802fba5b4a8603590a42e96d631e6ba4b496a3256ac547d5690c142a82c602f1c64cc421127e5bd8bc77151edf0dec46d1b397ba7d5e782a1e75da893c2b639cb7f2f6de82e6060a9d4324c1d18f154e0299a09ebff150e41741188c653468dea2da3056519ef220bf11dba0a0ca7c23e27a71e4412744a3297b7d70ae6edb8694981a"}, {0x68, 0x10b, 0x4000000, "36758eabf929bb332a03702329b055ea5f8eec32251d1afbe83d14c889833686ebff9defca9065433983b457c348c46d6836e863b8977f492ad7f485ae34aaf3d143a7ffda70103eac79e85639170c18703d"}, {0xe0, 0x105, 0x14, "e85eb24b593852ad24e8d3fade39cfbaf0f682b4306ad05930817eb155a7b32e6bf369b6150e7d86a0e3ab5ad187c047357124e32e2e6eb9d923a7e26196ab85fec23930dd61dcd5fb2f74e6a18370c84b5a0e7a580b50d4ea0963879ba4cf2d636778c6e898c6dcaa7e527d7ec325f5f77f5f33140f06e07dbdb76b63a7a2bbb9d97b894f9220cad3ac20a5a2a401e01fbbdb87c834ddf03419794b3d13d85d95ed5b14bda44d959fb7e222f036b4320dc8063b83e6655f4853cef0741cb2e3405cbcd1ef8374d6d694364a"}, {0x58, 0x11, 0x7, "413f4e0a1ead467fd675988ad0e72f165a9361f079dde5dcc3115332bc99053a83706967ffef52ef4b5cb7f5646100a5a887bd28f00a298d49e26d75d8bbbdee61c0e1"}, {0x38, 0x104, 0x8000, "2210d4617643e333eca872c7a7120c46bf956f6f9d453f497176d30c05664f740871bdde83ed2012"}], 0x610}, 0x40000) timerfd_settime(r7, 0x1, &(0x7f0000000dc0)={{0x77359400}}, &(0x7f0000000e00)) r9 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000e40), 0x40000, 0x0) r10 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000e80)='./binderfs2/binder0\x00', 0x800, 0x0) poll(&(0x7f0000000ec0)=[{r0, 0x1004}, {r9, 0x720}, {r0, 0x140}, {r8, 0x8010}, {r10, 0x2540}], 0x5, 0x8) 18:49:35 executing program 3: setxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=@random={'osx.', '!\x00'}, &(0x7f0000000080)='-@,+,].\x00', 0x8, 0x0) mount$9p_rdma(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x81404, &(0x7f0000000180)={'trans=rdma,', {'port', 0x3d, 0x4e20}, 0x2c, {[{@common=@cache_loose}, {@sq={'sq', 0x3d, 0x80000000}}, {@rq={'rq', 0x3d, 0xe077}}, {@sq={'sq', 0x3d, 0xff}}], [{@dont_measure}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}, {@uid_gt={'uid>', 0xffffffffffffffff}}]}}) mount$9p_rdma(&(0x7f0000000240), &(0x7f0000000280)='.\x00', &(0x7f00000002c0), 0x34000, &(0x7f0000000300)={'trans=rdma,', {'port', 0x3d, 0x4e24}, 0x2c, {[{@timeout={'timeout', 0x3d, 0x6f86}}], [{@smackfstransmute}, {@obj_user={'obj_user', 0x3d, '!\xe8#\x8b\\%'}}]}}) readlinkat(0xffffffffffffffff, &(0x7f0000000380)='\x00', &(0x7f00000003c0)=""/171, 0xab) renameat2(0xffffffffffffffff, &(0x7f0000000480)='./file0\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x0) lchown(&(0x7f0000000500)='./file0\x00', 0xee00, 0xee01) ioctl$VFAT_IOCTL_READDIR_SHORT(0xffffffffffffffff, 0x82307202, &(0x7f0000000540)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) stat(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0)) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000840)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x40}}, './file0\x00'}) renameat(r0, &(0x7f0000000880)='./file0\x00', 0xffffffffffffffff, &(0x7f00000008c0)='./file0\x00') fchdir(r0) ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000b40)={{'\x00', 0x1}, {0x2}, 0x50, 0x0, 0x0, &(0x7f0000000900)='./file0\x00', &(0x7f0000000940)='./file0\x00', &(0x7f0000000980)="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", 0x135, 0x0, &(0x7f0000000ac0)={0x2, 0x4d, {0x1, 0xc, 0x2d, "67c492110a550c582ab4f71c0cb20ef2ca17d5cb91f6fd3bfb00676544cbb6a0b5005f7ec451d9d465b6bf61ee", 0x13, "1e332b7b12c22f471a5a577c27acf8b9c4f0f0"}, 0xf, "79ebd1e8aa377afc2596872b615331"}, 0x68}) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000bc0)=0x4) r1 = signalfd(r0, &(0x7f0000000c00), 0x8) ioctl$BTRFS_IOC_INO_PATHS(r1, 0xc0389423, &(0x7f0000000c80)={0x611, 0x30, [0x0, 0x8, 0x3, 0x85], &(0x7f0000000c40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) recvmsg$unix(r1, &(0x7f0000001000)={&(0x7f0000000cc0), 0x6e, &(0x7f0000000f80)=[{&(0x7f0000000d40)=""/36, 0x24}, {&(0x7f0000000d80)=""/37, 0x25}, {&(0x7f0000000dc0)=""/146, 0x92}, {&(0x7f0000000e80)=""/202, 0xca}], 0x4, &(0x7f0000000fc0)=[@cred={{0x1c}}], 0x20}, 0x2142) listxattr(&(0x7f0000001040)='./file1\x00', &(0x7f0000001080)=""/95, 0x5f) execveat(r1, &(0x7f0000001100)='./file0\x00', &(0x7f0000001280)=[&(0x7f0000001140)='!\x00', &(0x7f0000001180)='-@,+,].\x00', &(0x7f00000011c0)='\x00', &(0x7f0000001200)='\xd9\'&\x00', &(0x7f0000001240)='/\\*\x00'], &(0x7f0000001540)=[&(0x7f00000012c0)='--/\x00', &(0x7f0000001300)='127.0.0.1\x00', &(0x7f0000001340)='\x00', &(0x7f0000001380)='smackfstransmute', &(0x7f00000013c0)='rq', &(0x7f0000001400)='\x00', &(0x7f0000001440)='[-\x00', &(0x7f0000001480)='[{:8%})\x00', &(0x7f00000014c0)='osx.', &(0x7f0000001500)='127.0.0.1\x00'], 0x1000) recvmsg$unix(r1, &(0x7f0000001840)={&(0x7f00000015c0)=@abs, 0x6e, &(0x7f0000001740)=[{&(0x7f0000001640)=""/85, 0x55}, {&(0x7f00000016c0)=""/76, 0x4c}], 0x2, &(0x7f0000001780)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xa8}, 0x40) openat(r2, &(0x7f0000001880)='./file1\x00', 0x20c00, 0x180) [ 69.773113] audit: type=1400 audit(1664045375.423:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 18:49:35 executing program 5: r0 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x3) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000000), 0x6e, &(0x7f0000000380)=[{&(0x7f0000000080)=""/33, 0x21}, {&(0x7f00000000c0)=""/18, 0x12}, {&(0x7f0000000100)=""/205, 0xcd}, {&(0x7f0000000200)=""/95, 0x5f}, {&(0x7f0000000280)=""/100, 0x64}, {&(0x7f0000000300)=""/119, 0x77}], 0x6, &(0x7f0000000400)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}, 0x2000) ioctl$PIO_UNIMAPCLR(r0, 0x4b68, &(0x7f00000004c0)={0xf38, 0x3, 0x4fb6}) ioctl$EXT4_IOC_CHECKPOINT(r2, 0x4004662b, &(0x7f0000000500)=0x2) r3 = open(&(0x7f0000000540)='./file0\x00', 0x400, 0x4) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000580), 0x111003, 0x0) ioctl$PTP_SYS_OFFSET(r4, 0x43403d05, &(0x7f00000005c0)={0x14}) perf_event_open(&(0x7f0000000900)={0x0, 0x80, 0x5, 0x1, 0xf8, 0x80, 0x0, 0x7, 0x4402, 0xa, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0x4, 0x20}, 0x19109, 0x9, 0x7ff, 0x0, 0x5, 0xffffff81, 0x7f, 0x0, 0x2, 0x0, 0x6}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0) pread64(r4, &(0x7f0000000980)=""/153, 0x99, 0x9) setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000a40)={0x80000001, {{0x2, 0x4e21, @multicast2}}, {{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}}}, 0x108) perf_event_open(&(0x7f0000000b80)={0x3, 0x80, 0x7f, 0x0, 0xf9, 0x9, 0x0, 0xffffffffffffbfde, 0x2000, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x14000000, 0x4, @perf_config_ext={0x4, 0x5f5543bf}, 0x104, 0x7, 0x3, 0x0, 0x0, 0x8, 0x203a, 0x0, 0xffffffff, 0x0, 0x3}, 0x0, 0x8, 0xffffffffffffffff, 0x3) read$snapshot(r2, &(0x7f0000000c00), 0x0) ioctl$BTRFS_IOC_ADD_DEV(r1, 0x5000940a, &(0x7f0000000c40)={{r3}, "f9377ccef683961816e982a335175bc3c54eefea2b120ea627211330a05e5d4e5ce3cffdcac9a3784e864031fd24ef9a2fce18827322f2ace6926d0c3366f95362ad64afa405c3b11b59b2d4f60359543b51b6e034dc95f9e431479f23fbb976b3c754844caf3fe003cd9e8c9a30926ad7e57b04a3cbe66735ea9685366b6f4e855e3017bfb7e3419a87284c37a3ab4b3a05147f03bb5de16363ef64040643a46bed6b961bb8c397a1e62db052adaf3e75323d6856cc28b412594a4cd3393528b1d472d423591d33e2ebe110ca9e8eab14a383405d3807e3b33a1c98a4472890b282f6498e18802939af5fba2206b3eaca9c8fd8e6598f23006fd78357bff9f2377f6b1c33f6e19abe33f39e8af1f9e8e6c0b5b576d0efd4237e09b3fdf2ec267c12744be7d9fab756e8f7220f46b69c0874841911fff4921f87923f141e50491da7da909d8068e5bebc93251596316e8ed8f2b6ea7a5ea61d1860c3ee8a5bf4c47ac235e8a45e639c0289c9a423676d86b60fbcea682bdbf8debc0fc780f6c368004fbcb68e549dc49ebfd16031c9b60b7f46edd446768658f0b35ea989c2a5f478fa5e49e111d85bc2aa274c6547d21061e1b00aad63c07a582d206af072e0e169f62de7b67ef442587e247bd51ea4ec4b7258fcd4b3d55f1671d1701959f4b99efe48c0849e8655b7fcefd3b00fefa2e313ea9450e38bb08cf8a2c2d24db467741d708a4588281ecf3fb9e3a84f918c94ffcc38f6e29cee4ccb52029b7d2a8199cecc0a2b6ea55814e7baeec10958e526eda63af92036196b55ed01fecdcfb98dce4bc6a35f524e3e9a83c1c4392437d97558271c7f35b937ad7ecc0a822aa50aa7e83a80927490a0bc95da494e2143b364ed47f64a8584b03229270272c35156b4d9858ee07a623910ba34b61b26928083c3dea83b3b2f31abf33859852b63702eebf297f792df0ac5a96202ddfdf7ab582e3adedbf609a361ce2305dbfb9a65e62d60498d668e18e5c751fd5a4ac65c6d99f9cd1db3ded8ddb590eb23a3031c63310fdf154d5c8862a9741c6494f9ce1d02041e6601ea451c00f617557add0e792ea257e88472de3d4a507111c3e6a4dc743cb2f99a82691b13f219d00166ff692226552ac487cf5d95f1904792cd04da2b04110f22df75ac8c011652bbdbdb6f7bbeba2359e6792678f3b5e9976c4865b4a556c660c125c2f243bbb770a4a2f6a84e08b73d68add6386fc5f269eb5bc01db92955b6f39a53ba88c66fca34b7fe4cc642aea16e7bd3426fde9e7b38d570c6d979200001f47825d8840038cd6c112143478ef9f7c356c08969c8130456261966503e15ab3fceb434bef7a277b9e140d3984177f8926c06f18a7262b2a921d1968b2586454b28ac4847c1c34b161924284d6be1519ea93ee759a22e22490a387786666e3e10e60c3237c1590df32d67e315f6c2c4956d69653ee965dcbebf84dc061763dc9ffea83bc352f22cdcd1c32abaa63cf2018e96e810bdbd4cd85765f6d92b89daf9a0ceaf4a840030cc4c9bb0a29865dadb65803c1005f59feec603cca146d4e6df1ce84b4169500c8ab8f0f92d7fe52f01dea69b924c4305a36f2f9e30a4a58a33ffd8d3edef7402b927ca4828cfaecada54417c911e54f1215d3846e779c80dc368d4413cad58080621366939cb6f3f9c783aea11a9371242c5383ec37c4831a54123cb0c936d1eab3e6199f8c5ceb667d5a8fd83df3b55dca628371d1ec6282bbb9408644dc4b86682a65f770688bf56055c63636d5343cfd9f7cd63889a13fc92e2976c84069f5135fdd06f18457804ba480f1035b80565226746be0cff652663906e403a83cbc2eb1fce6a6da67cc26750a6950d194f9a76ca91476e8514d0b61e820bb4c0dab00a67450c2788113da215ea14df7ecf4ece50b916a482aaf7db5b97928be204191c695ab425b8b224296d5a5c054ff4e8fef5a3f2c7014e4b14d1bf6b93b2426ec69584c9f52c74e8c9f0691b80bc79dce52bdb584aae2477665658ce4df930609c1cf36a405f42333c5c8a2bd41aa06ebac68d309a8d94018ebbf5a1824dd909eb1441f501e5f508ddb1e8bd757fc9dec9f88befafb86809225e6f6d4e13f254296d6be6bf8c41fc6e2a72a7e0869a282c5c207f77077d387bdde1639c3bc055f01c3f5b5d805d6abd1c4b6080885cc66a9b4e0e85c38546b8ee0607b3ad71e6a6f50088360491d22c551be1a2ec2cec9382abf4f0b2f1a46eaf976759592f68bf9e17fc29bf24be0e9e77243ad60ae4e881eeab7a6598f84ad54cab6dec72fcb5b266b0d869171760409981f767a1c39df96f72180258b1cd6530ac4f312cc6ac28b04a2eba02dce2fce27c28e08b9ad4bd6fb052d02515b6783bee1cb189c57795ce73bd248a89f8a3665ec3ede8f66369bd3a3e273e5f1b879ef37be0a4595eb4f30c15ca8f73a8294e42e588f148388a44e69b8b18f5e1b19fd8327839f0a911205a9d7993bd4b9eef8ec23f35508d7054e4aecc50aad1b06720ffe88cbb5f9595ecefb7a4f57266ef8a9aae7d858e2ee0bba48e259f8d8828dfcd9e349b27049413dc3b2b5aefb572e6420989180fde131e4e5f304d6635b968a55b52af93f2f9b27cb009f601d11305bb9d2808608c01a0973cbbb6a0a60bfb2ad9273fe1b8f106f0f36a534059e6816472519464fc7172b03d8f7ba8ce81d304c2298de36c63dc1994c4bf0173fb3ec59ecca3903d701ed0438bb9fa6408963c029095011ac99638640dc82aa18c1a6debff571631ac73f6671c65e49035f240c706055fbe1ee2f2f14b68cc75e3a34370c9a24f01a7bb0e6315a3446795e2f527f7b7debd533a121074e2e64acc1f94ab551e1c84696a09c1f1fa13a36c3d88f29fd26c81da9443f1ff8c075bdb3c3ba0564782ecc6307a83b833b1680872d873b86999d024e1a09996035176469e5e967dfd93b3f443cb45454db95f23c0fa355db3857ac4d2aa8f5b9f77d9dc99ee3f847e0bb47271b9f9e885d4e234af407bf218259fe85f20f5a678d2eb068b84879f92db2fc777ca763a22424761992ed658f8896484a7774210bbd0c3af24bf31afbd0f8f60538f0a39326e99db5498f5078c41a83a99ddf40299577189426c46e77917efc544fcd15c589d774dfa06dfe8b50a7de184dc0e7f7ca67e112d59e28ba4fecf3136e54ba218cdfd2232d5703675cbff4bd6761040f7a027e3bec280c2cc744d6da50a37252b5b2139e8d01e71cdb4eaf8278f934be99d7a01302b71e9033b2abb19bc82501b13a54e571ddff9b5fb76f9dbfa09f7605d00aaedfbcabcf0f3deb6c06db98e78b4f04e78169787260fb30d91bd5e0390eba9eee5ff2f85eb23d95e729efa3a2d4fdffadc827bfbe314a1a061285eef5bebc46dcf5ebe018147055b8ced46943300fbcad42ab822c7976f43a4b3f6d129d8b42da3a2b8ee67d69c82d207a88f76f0892c557f12e043af0841dd0498013a04819e96f1c0fd68194348d1d599aba240636db31c9486c93209f6b63766249cb183f8b26c58734cb17bf092c26b89274a285116f0836f6e1161ac4acaa90aa48cc83ce8d1a213c7b33c1e1b1a01ca3a5ba8bd20c15315c3e63ee3a60a17ff50cce73ca6d4d07688fe605def8eabf83079d36c42f8317649c1590cae0a07ea1d91f74992c8e68248b7a331073f0fac3cc8f2e29f15f2829aad4718c8d1e19b75c3810fe2236bb5a3ab791e1653ae58163358e677d79e01f26cfe6ea2639d8741882b1b357cd9c27ed0dbd11ae5e191a1c3f437464316279b516ce6fb268449e5a94799286ba7b5b57a8bb30ee9f8448a89fb7427d8ff6c74e29a6f2d6263480650cd231a950491ecf72279fbd6ed1ed61d3931df11e3d9220701a269c67c127e8e46eef13bbc2761f9f980c12c718867e4131d2788c551fdb1352368d4d22659eafa4c1147a0407efd71b53b5403dc793e671cd4ded92e556fedd5fc101c9a22ace4eb2a67a9cd2db3ab82df7766709dc71ae24385bd858005e0e539fd0d279fae8b01c62483d67418f28ff1f9ad20b71bb32a1e02fe5b4e480279a7177f074d63abb1a51fd7bef6e81bed2200f70df696fc6ae00195386a8da3a0adaa9f98f691358811e8c1a23d1c27172a24b4b99be6d7823814758ebef4c9b6cb23dc42eea16de13210ff061a7a072c53b5b5fdfed6f7bfafc0f2cec469881d706ded89303377e074575eeb8f4e400d0d289c9097e64aa9a69691e7a68d9884a159c6480a9a8b088f9d13652128628e90af5baf1379591b19aa5d83bed13c9d34b7fd9b601b11b6bfdf772d289a34082a11634917e31650cc2428e3f0873f4ebad4563ee0faddfd0d94db414799b8bfab95bbbedb85199808bfed72ff36aa62ba459c032221c0cc4e9cf90a37fbf672a7a4863572c700a1f14994f2e7d6c43c5a9b0352ad80579cfcc015c60e8a661e93a8e2b962f521cc72f8359ba435cbc1f73a0047daded3a33eb0771d37caeb932e59a3cf12c9fe7780435e0a639629d521320ed14a922f694a1f97be456226d0f5dbd0180ae1830df624929ab46193d0fe35512ac07fe5dae31b7695793e879f701fc604bd881aefb8125951578dbce370abafde19c2017f257f590fb8815fb26982ea670cfed2d24ba6c4aeb68d0e5eb515f941595a138186c15f13fe49844b872dfc87255c90398fbf4beb0fc209616b8d596a99e50631e5d0b514da12013a25a7f22c5c192cbc0ff16efe48493c228627a8394d21740bd3c4e74e6bf9b76b8e2cce03e7353ee75414edf6bb6d1e5e467acbe01f6d1411e9918912ef598b00915e777c90149c2b7ad5ef6b35fc60622eb043046647e14c331cc5624e50b8ab385daa9d0ff4c01629fc36f72217af25903c80427d9dcac49c041ad32355261bcecf52c6ecfebd4e6c497ae50648dbcde874e21d7cb592282dcee38982cf4eb5d0f54248c1bde9c6dc7853e0231dde35490fb8bc95f2112cd77ab5966d7ea4e70725644bc5f0453a949b0e170481372bd646c4d8087adf04e24baddf28beba62146a12f717511ac242798f247d8666f5b874b62dbb9d3c0491eeaadb394fcf178a071df150e48eadc877b75ba27297a293ebeffdc7e722bb5a22578f26abd7ccd2e1d7bcb3a63d8db53148a51fa796eb238cc82f1ef9ecfdc7cc411591ef754970a9c3e3c336bde0361175799a2fa745d5e79d58776d12aac056163604eebb0bf8ea6e1e897fe0e90c208ec598f9b272f1d560ccbecfc10fb322066df3198a57c91771f30a7d3fbc0d30f602a9e89281b6d2210046449ab90f820f89706c676f76ca2e45139d820521626988bf4e9046f0d13d1c269460287653958aab0fb00d8eecdfca86946a926f3585182d9754c61916f6aedef55a8f592b59547a2a522d06a75ecfb98c87d62875e66141bb8fb8986595d377fd2cfdddb80f09620426d7157e7973b5d58cf517eb3f0169f63340c239e636b35263b32c218670dd012500257d53fbfb99b96d611fd00e1d350a8ce2cb233116c628c34e154446eea4f31e182014ed8bae337bbd13b750d89a51e0d6c9135dc8ca68a3b0eb254f8c9b69cdedc814f972a32a219c2e555f7f40104133a024bc40fd8bb4aef36ffabe4f64419ebfd84702fdb61523a019c2da1177d1d195f791601e8f284e9643e65b35e924df2e4fb114e36f158efeed4586d0ce961fb9ce948df5eab521e7c5b8d877f9c9a39b6e4c11e7ab8924ac4ab8a25a3441490f2f5c68505806968a08a86e53b223956cdc"}) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$AUTOFS_IOC_READY(r5, 0x9360, 0x800) ioctl$SNAPSHOT_S2RAM(r1, 0x330b) syz_io_uring_setup(0x1aa6, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000001c40), &(0x7f0000001c80)=0x0) r7 = signalfd(0xffffffffffffffff, &(0x7f0000001cc0)={[0x800]}, 0x8) syz_io_uring_submit(0x0, r6, &(0x7f0000002340)=@IORING_OP_WRITEV={0x2, 0x1, 0x2000, @fd_index=0xa, 0x5, &(0x7f0000002280)=[{&(0x7f0000001d00)="6a67eef0a0a8b1dbe8f4ba64415777301a6847c7c2233efdb9dcc5dce0945f8443f3be7b0b570de2230a5dd8627d8b41e5f6988fa2553b88cd67eef741eefa7ee264b6aab2505be87a9579bac81efec53ac310dd15037bbe0b7c86c71f278e306ca535f13341dbc7808ed858146edef6d5afac5eb18beaea9e03682d1bd2f75eac2b1a3dd12cb2fe58bb0239daa80d66378c8cb19101d469f5b76c232747545248e85e81cc04c56e05d02fd9790751d6170d94beb7c1d66230ebf7d4eaf08a3a5b0bbb43", 0xc4}, {&(0x7f0000001e00)="c85cc698c1a3d0597199f4e4ae44d4d4f7505cd563a08188e723a88fb3b5434233a4a5b910e8fdb1c6129f7040b55b9030858cc83b38af2e67224ce89dc6f32daf2a0c4202a417bdcab0aa6958e6", 0x4e}, {&(0x7f0000001e80)="15ce2b6eb6a40ba452a1d824c8e823637b0cd8c0769a01c1a41401dbb116e4efad463b749e8b41da562a3d8733957353a8e2547aa67469b89199b48f44033031b18ef2418431c1afb15f129c787ed168862075f96b49492b5ec104b53143830f67a54b18569f228dea45aa6bae16cc88a9774b6a", 0x74}, {&(0x7f0000001f00)="1affc5edf54f49fd8393504c63586ad05bfd7b72e8e77b25b49845698107975de351362de5519b9ae528d464bdce63bc73beddc66d36b08b7afe9f3708bc967aaee7a6c35e9e761998d78b230012fbd7effba19d5302f7f76a632d4082fee34861bc34082c09ad7ee41c6a803f5d9eb256d31208a1d127bb3e0b33e2589cfbb7a498bb7e0fde0063147c651ba8caa57a2d963157e966c40d4f9a9a795267439c5adf8b2cca39f5e56a4ed1694e9b1436bbd0a30eceb24935dbe57181bea528f67eb991ec0bddcd410622f5b1df425939d420808a5437f6df19256cf23398fc62db18f927d5c0b77b", 0xe8}, {&(0x7f0000002000)="fc568dcbce8d1e1d3d100c3f25a61ac57dae96e1e1078383d44cc0e99e9af0986e8c582550ca7fb5709f45aa3178180d0a158157300a1e0d5887eb623931301f0d88a995c7c98986286026", 0x4b}, {&(0x7f0000002080)="74002c792bad5a92236a3b77f8209a2a7d66cc53dab3f426da01e4", 0x1b}, {&(0x7f00000020c0)="747253dac5fea91f610f7c88532f54d760ed21d05168c95336914a1ab5d431cf1b83b44c43fa46ae75ca6367d1bf63a889ec2a0307cd49263513af54ffc1e72dc9bfdb1426be79231613227ae09cbe3bbb", 0x51}, {&(0x7f0000002140)="fd1ad4f02ac0026e3ee20d7b28891008e2514c4ddb495a40e4c32a437aba68aeacb96dd38f18caa12eb2ff0a7c6b1365f855f60023e97e89d87128216af5e851daa9d8a3a0b47cf01ef0bee41af6971d0c73f08f8c73a120f8ee26f12fd3ed56391c39d8bc3831c10a08e1333d467d44", 0x70}, {&(0x7f00000021c0)="c2", 0x1}, {&(0x7f0000002200)="3445b5a376dce3070b4e8f464206e26a31aad106bccac051a61878d2f2c0268a8d3b5aa3aa3ccac1bf1983194d3a44d7cdd5e98dc5a944a1c9d0f726c3cef3ecc7f733de88d408c2a03d1d68797a5f8aef703aaa798bf8338a5258ff263788c777ff07", 0x63}], 0xa, 0x13, 0x1}, 0x10a) fcntl$dupfd(r2, 0x0, r7) 18:49:35 executing program 6: ioctl$CDROMPLAYMSF(0xffffffffffffffff, 0x5303, &(0x7f0000000000)={0x93, 0x3, 0x7, 0x7, 0xf, 0x4}) clock_gettime(0x0, &(0x7f0000004900)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000004700)=[{{&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000380)=[{&(0x7f00000000c0)=""/22, 0x16}, {&(0x7f0000000100)=""/227, 0xe3}, {&(0x7f0000000200)=""/149, 0x95}, {&(0x7f00000002c0)=""/168, 0xa8}], 0x4, &(0x7f00000003c0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}}, {{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000440)=""/151, 0x97}, {&(0x7f0000000500)=""/99, 0x63}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/85, 0x55}], 0x4, &(0x7f0000001640)=[@rights={{0x10}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xc0}}, {{&(0x7f0000001700)=@abs, 0x6e, &(0x7f0000001940)=[{&(0x7f0000001780)=""/38, 0x26}, {&(0x7f00000017c0)=""/173, 0xad}, {&(0x7f0000001880)=""/178, 0xb2}], 0x3, &(0x7f0000001980)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x140}}, {{&(0x7f0000001ac0)=@abs, 0x6e, &(0x7f0000001cc0)=[{&(0x7f0000001b40)=""/174, 0xae}, {&(0x7f0000001c00)=""/4, 0x4}, {&(0x7f0000001c40)=""/114, 0x72}], 0x3, &(0x7f0000001d00)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @cred={{0x1c}}], 0x78}}, {{&(0x7f0000001d80)=@abs, 0x6e, &(0x7f0000001f40)=[{&(0x7f0000001e00)=""/104, 0x68}, {&(0x7f0000001e80)=""/32, 0x20}, {&(0x7f0000001ec0)=""/123, 0x7b}], 0x3}}, {{&(0x7f0000001f80), 0x6e, &(0x7f0000004140)=[{&(0x7f0000002000)=""/4096, 0x1000}, {&(0x7f0000003000)=""/51, 0x33}, {&(0x7f0000003040)=""/131, 0x83}, {&(0x7f0000003100)=""/4096, 0x1000}, {&(0x7f0000004100)=""/27, 0x1b}], 0x5}}, {{0x0, 0x0, &(0x7f0000004440)=[{&(0x7f00000041c0)=""/249, 0xf9}, {&(0x7f00000042c0)=""/222, 0xde}, {&(0x7f00000043c0)=""/80, 0x50}], 0x3, &(0x7f0000004480)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x90}}, {{&(0x7f0000004540), 0x6e, &(0x7f0000004680)=[{&(0x7f00000045c0)=""/147, 0x93}], 0x1, &(0x7f00000046c0)=[@cred={{0x1c}}], 0x20}}], 0x8, 0x40, &(0x7f0000004940)={r0, r1+60000000}) r13 = syz_open_dev$ttys(0xc, 0x2, 0x1) kcmp(r10, 0xffffffffffffffff, 0x3, r13, 0xffffffffffffffff) r14 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000004980), 0x8082, 0x0) ioctl$CDROMGETSPINDOWN(r14, 0x531d, &(0x7f00000049c0)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000004a80)=@IORING_OP_OPENAT2={0x1c, 0x5, 0x0, 0xffffffffffffff9c, &(0x7f0000004a00)={0x501101, 0x101, 0x1a}, &(0x7f0000004a40)='./file0\x00', 0x18, 0x0, 0x12345}, 0x80000001) ioctl$CDROM_TIMED_MEDIA_CHANGE(r8, 0x5396, &(0x7f0000004ac0)={0x1fe}) ioctl$CDROMSEEK(r2, 0x5316, &(0x7f0000004b00)={0x6, 0x8, 0x0, 0x9, 0x81, 0x94}) dup3(r6, r4, 0x0) ioctl$AUTOFS_IOC_READY(r5, 0x9360, 0x5) r15 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000004b40), 0x109000, 0x0) fcntl$F_SET_FILE_RW_HINT(r15, 0x40e, &(0x7f0000004b80)=0x4) recvmmsg(r9, &(0x7f0000005340)=[{{&(0x7f0000004bc0)=@pppoe={0x18, 0x0, {0x0, @multicast}}, 0x80, &(0x7f0000005240)=[{&(0x7f0000004c40)=""/45, 0x2d}, {&(0x7f0000004c80)=""/166, 0xa6}, {&(0x7f0000004d40)=""/1, 0x1}, {&(0x7f0000004d80)=""/181, 0xb5}, {&(0x7f0000004e40)=""/222, 0xde}, {&(0x7f0000004f40)=""/233, 0xe9}, {&(0x7f0000005040)=""/211, 0xd3}, {&(0x7f0000005140)=""/149, 0x95}, {&(0x7f0000005200)=""/9, 0x9}], 0x9, &(0x7f0000005300)=""/40, 0x28}, 0x1}], 0x1, 0x2100, 0x0) ioctl$FIBMAP(r12, 0x1, &(0x7f0000005380)=0xfff) ioctl$BTRFS_IOC_DEV_INFO(r7, 0xd000941e, &(0x7f00000053c0)={0x0, "d913ca31dc7e8f464c6df6297f330136"}) ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f00000063c0)={r16, 0x5, 0xff, 0x1}) ioctl$BTRFS_IOC_BALANCE_CTL(r11, 0x40049421, 0x7) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(0xffffffffffffffff, 0x40605346, &(0x7f0000006800)={0x0, 0x1, {0x0, 0x1, 0x0, 0x2, 0xcae}, 0xfc79}) 18:49:35 executing program 7: epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0x10000002}) readahead(0xffffffffffffffff, 0x9, 0x6) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x40010}, 0x10) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000140)={0xffffffffffffffff, 0x4, 0x400, 0x4}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000280)={'gre0\x00', &(0x7f0000000180)={'gretap0\x00', 0x0, 0x7800, 0x700, 0xa5a, 0x2, {{0x2c, 0x4, 0x3, 0x1, 0xb0, 0x67, 0x0, 0x4, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x18}, @local, {[@timestamp_prespec={0x44, 0xc, 0x91, 0x3, 0x6, [{@remote, 0xcd8b}]}, @timestamp_prespec={0x44, 0x44, 0x47, 0x3, 0x2, [{@broadcast, 0x4}, {@broadcast, 0x8}, {@rand_addr=0x64010101, 0x80000000}, {@remote, 0x1000}, {@rand_addr=0x64010101, 0x1}, {@remote, 0x1e}, {@loopback, 0x80b6}, {@loopback, 0x9}]}, @timestamp={0x44, 0x4, 0xe8, 0x0, 0x2}, @ra={0x94, 0x4}, @ssrr={0x89, 0x7, 0x98, [@empty]}, @ra={0x94, 0x4}, @rr={0x7, 0x13, 0xb2, [@private=0xa010102, @private=0xa010100, @empty, @private=0xa010102]}, @lsrr={0x83, 0x13, 0x35, [@loopback, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010101]}, @generic={0x0, 0x11, "0be17be93cbad26b98f8176fb4addc"}]}}}}}) ioctl$BTRFS_IOC_DEFRAG_RANGE(0xffffffffffffffff, 0x40309410, &(0x7f00000002c0)={0x5, 0xfffffffffffffffa, 0x3, 0x7fffffff, 0x0, [0x0, 0x3, 0x7, 0x9b]}) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x80089419, &(0x7f0000000300)) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000380)={0xc}) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r0, 0xf502, 0x0) r2 = syz_mount_image$ext4(&(0x7f00000003c0)='ext2\x00', &(0x7f0000000400)='./file0\x00', 0x3, 0x8, &(0x7f0000000980)=[{&(0x7f0000000440)="e517434ac5cb3a64a86621c4a00b9beacb9219606b2ed78189f4dd5caa26b8563914bb808310d57b863dac56756e8d3c597d8cf74114303b3aa618491ff41395d1047c612502128516bf2fe7e84bfed270e358a02cf68fc8b02ffae3ab8c4c9528c68b38c83200c29f59c3ce3bbb8fc8c34359f3f5679e8bccffc8c04086b34b62c0221326e7efe7fe5716cf57ffa3fe4c0754dcab1a8494ae7c38917a596b1b5aa82f6c8afef4faca6c8eda389335fa59024795", 0xb4, 0x4}, {&(0x7f0000000500)="ea7a37b8d863b744784742ba4d726d736c61eae6efb39877ac7fb0f9e7a160e3d71308686c561bd543b4db5fcfb73864915560ff61c2ce063eb2462c734b5add813e952458e82ff75025ae62b4dd2e743a60d9d7f83ec78c5d6862f9c0bf7adbcf90ebe82903597fbed4c73794d96767b7d27564ebb3e8dd2635247617c26cf9337a0677124c09192f1ba8b03e1cd706f54d49a4f40e8bebc09ab81adf6544c54966f37482c9219799be89452724", 0xae, 0x20000000000}, {&(0x7f00000005c0)="3f0ef2d64ea1baaec13bef6285a6438568ea472b95d35522cd711022b1b3eae3195d58827e91c98ef1387074584f805a5cc5cbc4baf21c93a80a3ab74b91006d54da715b89a7fc5ee645090e9375067662089c4c6dace58055132fd048186521162983b160050537ce28c1d6be31bffb4cd150f5283ca3b6a8b6602323d3a3786b9be60c2bc7e53b02b0d4ece370a4cd9917b8d81060bfc410972475362d8872c65cc2fde77958accd6545b0c53509052f09386bba53b7fefa39bb537d671af7bfcf2b", 0xc3, 0x401}, {&(0x7f00000006c0)="7cf081f40fbfd42b06e65ef36b4de3dbb41b83512391a35782ec3d0e39e7fd890b52d6b18cd51dc2458608665401dd4015e2", 0x32, 0x102}, {&(0x7f0000000700)="6a37762878e21909d415897913faf72f1d4e7749df119d8499982582d1ae1c7517e006e2272d150fe62ce26f41ae79b1daf00be157b1efac51eb8d7cf3b5d6c81ff49f637ed7cac9a0549c10b44c753719760ecd52ec68fbdd0193694c356c2607095e91906a2b8c080610810976d45c3671270ede130e6a15d165ff7260cd1d0f13d1bacb523f2e765f95b079baa21ece38aa2dee2b05a1886a9b2803bf4a39fbc970882d7ba5d0b480a9356b5be5b996b354f9493de289b529f1dacb9e2acb0763a5126f52aacfd3", 0xc9, 0x2}, {&(0x7f0000000800)="1d56340700832e333a3c332086e3689d898fa5cb0aab6ba90086468186f7269ee810df3c5097b03f138595dc3c205698523c2ae09a94a156ca002ae53684b94a3fcf232a1156084f2d4a2d4be50d2e71369461c452f941b82c4ad74159d8a46abebbd4156d12eeafc8000b47b306f7dfa54e73d402ef4aae369613b29812f955e80d58c6fb039a0ad7932bebb16efb367209d893739571d1e5252d293ca2583997182b10447b4e45e960888f13d205c695a7e5805e5e6d6a30e19520", 0xbc, 0x30}, {&(0x7f00000008c0)="ccc09408e8ba1f5775188964d8463ea2f4a168aa25b708d4e840a04d2b99b8a0939cbbf937320a3a7092b3e2588a132a09392f5b061e19166e54d2826886c8e513ca156ab92ccaaafc5f0a6d", 0x4c, 0xffffffffffffffb2}, {&(0x7f0000000940)="438045a87934ae05dcf8931e3106c3832efadea3", 0x14, 0x3}], 0x4, &(0x7f0000000a40)={[{@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}], [{@dont_hash}, {@euid_lt={'euid<', 0xee00}}, {@fsuuid={'fsuuid', 0x3d, {[0x31, 0x62, 0x36, 0xece01932990ddf3e, 0x39, 0x36, 0x66, 0x37], 0x2d, [0x35, 0x34, 0x32, 0x64], 0x2d, [0x0, 0x32, 0x30, 0x34], 0x2d, [0x38, 0x66, 0x35, 0x35], 0x2d, [0x31, 0x62, 0x39, 0x65, 0x39, 0x63, 0x63, 0x30]}}}, {@dont_hash}]}) mknodat$loop(r2, &(0x7f0000000ac0)='./file0\x00', 0x1000, 0x1) rename(&(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40)='./file0\x00') r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000b80), 0x204100, 0x0) setsockopt$inet_MCAST_MSFILTER(r3, 0x0, 0x30, &(0x7f0000000bc0)={0x6, {{0x2, 0x4e22, @rand_addr=0x64010100}}, 0x1, 0x1, [{{0x2, 0x4e22, @local}}]}, 0x110) setsockopt$sock_int(r3, 0x1, 0xa, &(0x7f0000000d00)=0x4, 0x4) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000d40), 0x400c0, 0x0) ioctl$TIOCL_GETKMSGREDIRECT(r4, 0x541c, &(0x7f0000000d80)) r5 = syz_open_procfs$userns(0x0, &(0x7f0000000dc0)) write(r5, &(0x7f0000000e00)="26bbee5abf27b4771ffffaf2835f80c5d9f40e645a5e67538c022349c686544222fc179be18a2964e57ac04a7f4bea905128515535cfee30f9", 0x39) [ 71.152191] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 71.154138] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.155540] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 71.156708] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 71.157849] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 71.159014] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 71.160071] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 71.161338] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 71.162719] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 71.163598] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.164448] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 71.165224] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 71.166027] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 71.166799] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 71.167562] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 71.171707] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 71.172558] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 71.173499] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.174201] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 71.175102] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 71.175863] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 71.176692] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 71.177576] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 71.184289] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 71.189878] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 71.192019] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.194292] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 71.201454] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 71.202597] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 71.203261] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 71.203334] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 71.204890] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 71.206658] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.207845] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 71.208578] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 71.209193] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 71.209896] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 71.210821] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 71.211538] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 71.212209] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 71.214224] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 71.214916] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 71.215545] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 71.216297] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 71.218241] Bluetooth: hci0: HCI_REQ-0x0c1a [ 71.225431] Bluetooth: hci6: HCI_REQ-0x0c1a [ 71.226025] Bluetooth: hci5: HCI_REQ-0x0c1a [ 71.230933] Bluetooth: hci1: HCI_REQ-0x0c1a [ 71.232650] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.233554] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 71.234168] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 71.234763] Bluetooth: hci2: HCI_REQ-0x0c1a [ 71.254121] Bluetooth: hci4: HCI_REQ-0x0c1a [ 71.254171] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 71.258436] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 71.261594] Bluetooth: hci3: HCI_REQ-0x0c1a [ 73.272880] Bluetooth: hci4: command 0x0409 tx timeout [ 73.272941] Bluetooth: hci7: command 0x0409 tx timeout [ 73.273818] Bluetooth: hci2: command 0x0409 tx timeout [ 73.274695] Bluetooth: hci5: command 0x0409 tx timeout [ 73.275288] Bluetooth: hci0: command 0x0409 tx timeout [ 73.276243] Bluetooth: hci3: command 0x0409 tx timeout [ 73.276717] Bluetooth: hci1: command 0x0409 tx timeout [ 73.277643] Bluetooth: hci6: command 0x0409 tx timeout [ 75.320529] Bluetooth: hci1: command 0x041b tx timeout [ 75.320599] Bluetooth: hci6: command 0x041b tx timeout [ 75.320980] Bluetooth: hci3: command 0x041b tx timeout [ 75.321429] Bluetooth: hci0: command 0x041b tx timeout [ 75.321809] Bluetooth: hci5: command 0x041b tx timeout [ 75.322185] Bluetooth: hci2: command 0x041b tx timeout [ 75.322603] Bluetooth: hci7: command 0x041b tx timeout [ 75.322977] Bluetooth: hci4: command 0x041b tx timeout [ 77.368446] Bluetooth: hci7: command 0x040f tx timeout [ 77.368931] Bluetooth: hci2: command 0x040f tx timeout [ 77.369350] Bluetooth: hci5: command 0x040f tx timeout [ 77.369819] Bluetooth: hci0: command 0x040f tx timeout [ 77.370237] Bluetooth: hci3: command 0x040f tx timeout [ 77.370970] Bluetooth: hci6: command 0x040f tx timeout [ 77.371395] Bluetooth: hci1: command 0x040f tx timeout [ 77.371888] Bluetooth: hci4: command 0x040f tx timeout [ 79.417783] Bluetooth: hci4: command 0x0419 tx timeout [ 79.418267] Bluetooth: hci1: command 0x0419 tx timeout [ 79.418702] Bluetooth: hci6: command 0x0419 tx timeout [ 79.419102] Bluetooth: hci3: command 0x0419 tx timeout [ 79.419547] Bluetooth: hci0: command 0x0419 tx timeout [ 79.419949] Bluetooth: hci5: command 0x0419 tx timeout [ 79.420341] Bluetooth: hci2: command 0x0419 tx timeout [ 79.420756] Bluetooth: hci7: command 0x0419 tx timeout [ 120.907116] audit: type=1400 audit(1664045426.557:7): avc: denied { open } for pid=3859 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 18:50:26 executing program 2: syslog(0x3, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x10000027f) sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="000000000000000018d8d6000000000020feff"], 0x1c}}, 0x0) perf_event_open(&(0x7f0000000440)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, 0xffffffffffffffff, 0xe, r0, 0x8) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x110, 0xffffffffffffffff, 0x0) 18:50:26 executing program 5: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000500)=[{{&(0x7f0000000280)={0xa, 0x4e22, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x40}, 0x0, &(0x7f00000004c0)=[{&(0x7f00000002c0)="840ed7cb019cc4c626bd522b9b297ab0228f"}, {&(0x7f0000000440)="f117c9546fdf673e848c4c40aae7d578e6a70ca6261a43b646cf390b39b5b5f8e490cbc2954c666512f0df544eee3737d7dfed7d929427a7110deb7349410be3c1ce5c55ab6187bb39dc6908fd34b3b34203a5184310cdcb173d03bad191e46181"}, {&(0x7f0000000300)="9fb8735a86"}]}}], 0x63, 0x24048894) faccessat2(r1, &(0x7f00000000c0)='./file0\x00', 0x8, 0x100) r2 = socket$netlink(0x10, 0x3, 0x6) sendmsg$netlink(r2, &(0x7f000000c340)={0x0, 0x0, &(0x7f000000c280)=[{&(0x7f0000001340)={0x50, 0x21, 0x1, 0x0, 0x0, "", [@nested={0x3d, 0x0, 0x0, 0x1, [@generic="58f4db24ff596a629b0dc8a7e568fe2b0f23f18e2f6d4200b3bdabe512e9c9a79d7b673561a300cc1f5694f4e0e817c3d70a9cedd8fa1829be"]}]}, 0x50}], 0x1}, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000040)={'veth1_macvtap\x00'}) setxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)=ANY=[@ANYBLOB="7472757351ba3474656440000000000000000000000000000520078ed4d6f8369e3b7659dfff6bd04c560587669e26ae832c62ea9dead616e3f6de1c682f78bb7bd9d4e981ec3e96e95812eef22cb97cd977c70b7e15398a24ffc696dc20c71c"], &(0x7f0000000080)='/:\x00', 0x3, 0x3) [ 121.047169] audit: type=1400 audit(1664045426.697:8): avc: denied { kernel } for pid=3870 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.062898] ------------[ cut here ]------------ [ 121.062917] [ 121.062920] ====================================================== [ 121.062923] WARNING: possible circular locking dependency detected [ 121.062928] 6.0.0-rc6-next-20220923 #1 Not tainted [ 121.062934] ------------------------------------------------------ [ 121.062937] syz-executor.2/3871 is trying to acquire lock: [ 121.062944] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 121.062984] [ 121.062984] but task is already holding lock: [ 121.062987] ffff88800e3cb820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 121.063016] [ 121.063016] which lock already depends on the new lock. [ 121.063016] [ 121.063018] [ 121.063018] the existing dependency chain (in reverse order) is: [ 121.063022] [ 121.063022] -> #3 (&ctx->lock){....}-{2:2}: [ 121.063035] _raw_spin_lock+0x2a/0x40 [ 121.063054] __perf_event_task_sched_out+0x53b/0x18d0 [ 121.063067] __schedule+0xedd/0x2470 [ 121.063080] schedule+0xda/0x1b0 [ 121.063093] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.063105] syscall_exit_to_user_mode+0x19/0x40 [ 121.063117] do_syscall_64+0x48/0x90 [ 121.063134] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.063146] [ 121.063146] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 121.063159] _raw_spin_lock_nested+0x30/0x40 [ 121.063177] raw_spin_rq_lock_nested+0x1e/0x30 [ 121.063191] task_fork_fair+0x63/0x4d0 [ 121.063207] sched_cgroup_fork+0x3d0/0x540 [ 121.063221] copy_process+0x4183/0x6e20 [ 121.063231] kernel_clone+0xe7/0x890 [ 121.063241] user_mode_thread+0xad/0xf0 [ 121.063251] rest_init+0x24/0x250 [ 121.063262] arch_call_rest_init+0xf/0x14 [ 121.063280] start_kernel+0x4c1/0x4e6 [ 121.063295] secondary_startup_64_no_verify+0xe0/0xeb [ 121.063309] [ 121.063309] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 121.063323] _raw_spin_lock_irqsave+0x39/0x60 [ 121.063341] try_to_wake_up+0xab/0x1930 [ 121.063353] up+0x75/0xb0 [ 121.063370] __up_console_sem+0x6e/0x80 [ 121.063386] console_unlock+0x46a/0x590 [ 121.063401] vprintk_emit+0x1bd/0x560 [ 121.063417] vprintk+0x84/0xa0 [ 121.063432] _printk+0xba/0xf1 [ 121.063443] kauditd_hold_skb.cold+0x3f/0x4e [ 121.063460] kauditd_send_queue+0x233/0x290 [ 121.063475] kauditd_thread+0x5da/0x9a0 [ 121.063489] kthread+0x2ed/0x3a0 [ 121.063503] ret_from_fork+0x22/0x30 [ 121.063515] [ 121.063515] -> #0 ((console_sem).lock){....}-{2:2}: [ 121.063529] __lock_acquire+0x2a02/0x5e70 [ 121.063545] lock_acquire+0x1a2/0x530 [ 121.063561] _raw_spin_lock_irqsave+0x39/0x60 [ 121.063579] down_trylock+0xe/0x70 [ 121.063593] __down_trylock_console_sem+0x3b/0xd0 [ 121.063608] vprintk_emit+0x16b/0x560 [ 121.063624] vprintk+0x84/0xa0 [ 121.063639] _printk+0xba/0xf1 [ 121.063649] report_bug.cold+0x72/0xab [ 121.063665] handle_bug+0x3c/0x70 [ 121.063681] exc_invalid_op+0x14/0x50 [ 121.063697] asm_exc_invalid_op+0x16/0x20 [ 121.063708] group_sched_out.part.0+0x2c7/0x460 [ 121.063719] ctx_sched_out+0x8f1/0xc10 [ 121.063729] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.063741] __schedule+0xedd/0x2470 [ 121.063754] schedule+0xda/0x1b0 [ 121.063766] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.063777] syscall_exit_to_user_mode+0x19/0x40 [ 121.063789] do_syscall_64+0x48/0x90 [ 121.063804] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.063816] [ 121.063816] other info that might help us debug this: [ 121.063816] [ 121.063819] Chain exists of: [ 121.063819] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 121.063819] [ 121.063834] Possible unsafe locking scenario: [ 121.063834] [ 121.063836] CPU0 CPU1 [ 121.063838] ---- ---- [ 121.063841] lock(&ctx->lock); [ 121.063846] lock(&rq->__lock); [ 121.063853] lock(&ctx->lock); [ 121.063859] lock((console_sem).lock); [ 121.063865] [ 121.063865] *** DEADLOCK *** [ 121.063865] [ 121.063866] 2 locks held by syz-executor.2/3871: [ 121.063873] #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 121.063902] #1: ffff88800e3cb820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 121.063929] [ 121.063929] stack backtrace: [ 121.063932] CPU: 1 PID: 3871 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1 [ 121.063944] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 121.063953] Call Trace: [ 121.063956] [ 121.063960] dump_stack_lvl+0x8b/0xb3 [ 121.063978] check_noncircular+0x263/0x2e0 [ 121.063994] ? format_decode+0x26c/0xb50 [ 121.064010] ? print_circular_bug+0x450/0x450 [ 121.064035] ? enable_ptr_key_workfn+0x20/0x20 [ 121.064051] ? format_decode+0x26c/0xb50 [ 121.064067] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 121.064085] __lock_acquire+0x2a02/0x5e70 [ 121.064106] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 121.064128] lock_acquire+0x1a2/0x530 [ 121.064144] ? down_trylock+0xe/0x70 [ 121.064161] ? lock_release+0x750/0x750 [ 121.064181] ? vprintk+0x84/0xa0 [ 121.064198] _raw_spin_lock_irqsave+0x39/0x60 [ 121.064217] ? down_trylock+0xe/0x70 [ 121.064232] down_trylock+0xe/0x70 [ 121.064247] ? vprintk+0x84/0xa0 [ 121.064264] __down_trylock_console_sem+0x3b/0xd0 [ 121.064281] vprintk_emit+0x16b/0x560 [ 121.064299] vprintk+0x84/0xa0 [ 121.064316] _printk+0xba/0xf1 [ 121.064327] ? record_print_text.cold+0x16/0x16 [ 121.064342] ? report_bug.cold+0x66/0xab [ 121.064360] ? group_sched_out.part.0+0x2c7/0x460 [ 121.064371] report_bug.cold+0x72/0xab [ 121.064389] handle_bug+0x3c/0x70 [ 121.064406] exc_invalid_op+0x14/0x50 [ 121.064423] asm_exc_invalid_op+0x16/0x20 [ 121.064435] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 121.064449] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 121.064460] RSP: 0018:ffff888018d7fc48 EFLAGS: 00010006 [ 121.064470] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 121.064477] RDX: ffff888041181ac0 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 121.064485] RBP: ffff88801b5f0000 R08: 0000000000000005 R09: 0000000000000001 [ 121.064493] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff88800e3cb800 [ 121.064501] R13: ffff88806cf3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 121.064511] ? group_sched_out.part.0+0x2c7/0x460 [ 121.064525] ? group_sched_out.part.0+0x2c7/0x460 [ 121.064538] ctx_sched_out+0x8f1/0xc10 [ 121.064550] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.064566] ? lock_is_held_type+0xd7/0x130 [ 121.064579] ? __perf_cgroup_move+0x160/0x160 [ 121.064591] ? set_next_entity+0x304/0x550 [ 121.064608] ? update_curr+0x267/0x740 [ 121.064626] ? lock_is_held_type+0xd7/0x130 [ 121.064639] __schedule+0xedd/0x2470 [ 121.064656] ? io_schedule_timeout+0x150/0x150 [ 121.064672] ? rcu_read_lock_sched_held+0x3e/0x80 [ 121.064692] schedule+0xda/0x1b0 [ 121.064706] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.064718] syscall_exit_to_user_mode+0x19/0x40 [ 121.064731] do_syscall_64+0x48/0x90 [ 121.064748] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.064761] RIP: 0033:0x7f3ba43e2b19 [ 121.064769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.064780] RSP: 002b:00007f3ba1958218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.064790] RAX: 0000000000000001 RBX: 00007f3ba44f5f68 RCX: 00007f3ba43e2b19 [ 121.064798] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3ba44f5f6c [ 121.064805] RBP: 00007f3ba44f5f60 R08: 000000000000000e R09: 0000000000000000 [ 121.064812] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f3ba44f5f6c [ 121.064819] R13: 00007ffc4af8516f R14: 00007f3ba1958300 R15: 0000000000022000 [ 121.064832] [ 121.119748] WARNING: CPU: 1 PID: 3871 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 121.120441] Modules linked in: [ 121.120688] CPU: 1 PID: 3871 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1 [ 121.121280] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 121.122105] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 121.122514] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 121.123846] RSP: 0018:ffff888018d7fc48 EFLAGS: 00010006 [ 121.124255] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 121.124787] RDX: ffff888041181ac0 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 121.125317] RBP: ffff88801b5f0000 R08: 0000000000000005 R09: 0000000000000001 [ 121.125846] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff88800e3cb800 [ 121.126372] R13: ffff88806cf3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 121.126899] FS: 00007f3ba1958700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 121.127491] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.127925] CR2: 00007f1f1de11a50 CR3: 000000003fd42000 CR4: 0000000000350ee0 [ 121.128469] Call Trace: [ 121.128668] [ 121.128845] ctx_sched_out+0x8f1/0xc10 [ 121.129143] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.129538] ? lock_is_held_type+0xd7/0x130 [ 121.129861] ? __perf_cgroup_move+0x160/0x160 [ 121.130201] ? set_next_entity+0x304/0x550 [ 121.130527] ? update_curr+0x267/0x740 [ 121.130833] ? lock_is_held_type+0xd7/0x130 [ 121.131158] __schedule+0xedd/0x2470 [ 121.131446] ? io_schedule_timeout+0x150/0x150 [ 121.131795] ? rcu_read_lock_sched_held+0x3e/0x80 [ 121.132170] schedule+0xda/0x1b0 [ 121.132437] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.132807] syscall_exit_to_user_mode+0x19/0x40 [ 121.133164] do_syscall_64+0x48/0x90 [ 121.133451] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.133843] RIP: 0033:0x7f3ba43e2b19 [ 121.134122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.135454] RSP: 002b:00007f3ba1958218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.136016] RAX: 0000000000000001 RBX: 00007f3ba44f5f68 RCX: 00007f3ba43e2b19 [ 121.136558] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3ba44f5f6c [ 121.137081] RBP: 00007f3ba44f5f60 R08: 000000000000000e R09: 0000000000000000 [ 121.137611] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f3ba44f5f6c [ 121.138137] R13: 00007ffc4af8516f R14: 00007f3ba1958300 R15: 0000000000022000 [ 121.138668] [ 121.138849] irq event stamp: 524 [ 121.139103] hardirqs last enabled at (523): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 121.139790] hardirqs last disabled at (524): [] __schedule+0x1225/0x2470 [ 121.140398] softirqs last enabled at (0): [] copy_process+0x1e15/0x6e20 [ 121.141005] softirqs last disabled at (0): [<0000000000000000>] 0x0 [ 121.141473] ---[ end trace 0000000000000000 ]--- 18:50:26 executing program 5: openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000400)='./cgroup.net/syz0\x00', 0x200002, 0x0) syz_mount_image$tmpfs(0x0, &(0x7f0000000600)='./file0\x00', 0x0, 0x0, &(0x7f0000000840), 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)=0x0) r2 = syz_io_uring_setup(0x7969, &(0x7f00000012c0), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000240)) syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r2, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x236a, &(0x7f0000000340)={0x0, 0x87da, 0x10, 0x2, 0x3a2, 0x0, r2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180), &(0x7f00000003c0)) syz_io_uring_setup(0x3c84, &(0x7f0000000000)={0x0, 0x665c, 0x8, 0x0, 0x60}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) r5 = dup(r4) connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) connect$inet6(r5, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x1}}}, 0x1c) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{&(0x7f0000000280)={0xa, 0x4e22, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x40}, 0x0, &(0x7f00000004c0)=[{&(0x7f00000002c0)="840ed7cb019cc4c626bd522b9b297ab0228f"}, {&(0x7f0000000440)="f117c9546fdf673e848c4c40aae7d578e6a70ca6261a43b646cf390b39b5b5f8e490cbc2954c666512f0df544eee3737d7dfed7d929427a7110deb7349410be3c1ce5c55ab6187bb39dc6908fd34b3b34203a5184310cdcb173d03bad191e46181"}, {&(0x7f0000000300)="9fb8735a86"}]}}], 0x63, 0x24048894) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r7 = syz_mount_image$msdos(&(0x7f0000000680), &(0x7f00000006c0)='./file0\x00', 0x4, 0x8, &(0x7f0000000cc0)=[{&(0x7f0000000700)="154a3e2e386fd817311e07b3a8868b4a724759623392a8b2eea6065507de1dc6d4a804aef7813de963ceeac81e280c3a6bff048e09644578bc6e32e96dfbe0d671497d7a7385754e027c633d67d402e507", 0x51, 0xf1}, {&(0x7f0000000780)="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", 0xfa, 0x7}, {&(0x7f0000000880)="ce", 0x1, 0xff}, {&(0x7f00000008c0)="9d05617651a2f8876e0c4b189d363c702d692ecb583bc5d3f1be87c9448d64dc65ab8b88a754bcbeaf0cd2", 0x2b, 0x9}, {&(0x7f0000000900)="587ad802be13d32399fe0991c9caef1136907c471479faebc11edbaf0614c51fe07b893f93bb4417c4017c7d766fecde5df24f85dd50e0b881512e0f2ea133b781821812d48371e47750358d223f59ab13c41838a7040aadd193e47b92c5d6d2fec843331a7b616c9ab870cd0851bb81c9742563977de8bc6ea9676d64450100bdb42f31ce68fe574d84c5cd46a59cca954fd968bb1edff88867a94d63aa1862ef1c255ca500772ebbcfb00165f2c05541c96f74e2534bd6083e04f9288446fcb8f92708890d3d9b1d0e7fce3fc959fceca0cac6a95446020f990cf5ba06d450f3087da6a9d6a5", 0xe7, 0x6}, {&(0x7f0000000a00)="ad17ccfdb6205aede02b2a86ced397c822dd67fabb91c2b79e857e1ce635230131b1e9d4de166a9215b92aadb1096c2e16b77630337e70e00f5e33e50f7f58274e80feaba9050613a6b41df4156a4d41ce75a6b3f4f89947f69a65654308747dab67d6bbc533cd40c96d07eb4d86ed97ff05594e02b20133fe114da29bd40ac46c1e6dad4aa85ac8af50ec17cee27c7c3e9e44bc5d94f1e883db662e543c0409c474a3b5fa99c44a2b915331f2456f70dbe3c47a949cd6d66299336231", 0xbd, 0x5}, {&(0x7f0000000ac0)="8cb5053aee2bc9cadf1fc07499de8441d4af27c903d34fcb3dff0b8fbdec4ff82be8bfebb832cf16ae2d401c55dcd5af2dc75516d81264cd185a", 0x3a, 0x6}, {&(0x7f0000000b00)="990e374566f3f5bf5e23e5d097ba06a46fc0c490db5a9d784ceb9d397818500fa13c0cbf63c61e2340b608bcb374fcd5acd0222f686cbd3526350a33772dc8d32b06dfed5b77d11c4bf085907d4c56e76fd8f7d22e7e62817a47b2ed5afe4e07b0b74853c9032015bfc4d76503e1afbd8346a164626c107c1650dda83696d696162bfb1ec0302951a2e8d0e34c9af6ecdd639ee0735268944451695a9b9093423be5d2a1052d953e82de37c146f7bbc7ce1d352fa2e288bf1484c91beea7dcb33ca0e183332d18ddc33e1d860712826da63167a688e43a", 0xd7, 0x2}], 0x10, &(0x7f0000000c00)={[{@dots}, {@fat=@debug}, {@nodots}], [{@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@audit}, {@dont_appraise}]}) openat(r7, &(0x7f0000000d80)='./file0\x00', 0x81, 0x20) syz_io_uring_submit(r0, r3, &(0x7f0000000140)=@IORING_OP_OPENAT={0x12, 0x5, 0x0, r5, 0x0, &(0x7f0000000100)='./file0\x00', 0xe3, 0x20040, 0x12345, {0x0, r6}}, 0xffff) rmdir(&(0x7f0000000c80)='./file0\x00') syz_io_uring_setup(0x1016, &(0x7f0000000540)={0x0, 0x306c, 0x10, 0x1, 0x207, 0x0, r2}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000005c0), &(0x7f0000000640)) 18:50:27 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x7, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2dc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x32261, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x48) fcntl$dupfd(r3, 0x406, r0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x7, 0x50, r4, 0x8000000) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x84800) fcntl$dupfd(0xffffffffffffffff, 0x406, r1) splice(0xffffffffffffffff, &(0x7f0000000000)=0x3, r5, &(0x7f0000000300)=0x8, 0x30f, 0x8) setsockopt$WPAN_WANTLQI(0xffffffffffffffff, 0x0, 0x3, &(0x7f00000003c0), 0x4) write(r0, &(0x7f0000000380)="01", 0x1) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000) r6 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x43, &(0x7f0000000400)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x4e22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, 0xfffffffd}, {{}, 0x0, @in6=@mcast2, 0x0, 0x3}}, 0xe8) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) [ 121.573266] syz-executor.2 (3871) used greatest stack depth: 24600 bytes left 18:50:27 executing program 2: syslog(0x3, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x10000027f) sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="000000000000000018d8d6000000000020feff"], 0x1c}}, 0x0) perf_event_open(&(0x7f0000000440)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, 0xffffffffffffffff, 0xe, r0, 0x8) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x110, 0xffffffffffffffff, 0x0) 18:50:27 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x7, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2dc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x32261, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x48) fcntl$dupfd(r3, 0x406, r0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x7, 0x50, r4, 0x8000000) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x84800) fcntl$dupfd(0xffffffffffffffff, 0x406, r1) splice(0xffffffffffffffff, &(0x7f0000000000)=0x3, r5, &(0x7f0000000300)=0x8, 0x30f, 0x8) setsockopt$WPAN_WANTLQI(0xffffffffffffffff, 0x0, 0x3, &(0x7f00000003c0), 0x4) write(r0, &(0x7f0000000380)="01", 0x1) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000) r6 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x43, &(0x7f0000000400)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x4e22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, 0xfffffffd}, {{}, 0x0, @in6=@mcast2, 0x0, 0x3}}, 0xe8) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) [ 121.734914] syz-executor.2 (3920) used greatest stack depth: 24536 bytes left 18:50:27 executing program 2: syslog(0x3, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1010c2, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x10000027f) sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="000000000000000018d8d6000000000020feff"], 0x1c}}, 0x0) perf_event_open(&(0x7f0000000440)={0x5, 0x80, 0x1, 0x3, 0x0, 0x5, 0x0, 0x315, 0x20, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8d90, 0x1, @perf_bp={&(0x7f0000000200), 0x1}, 0x10, 0x9, 0x269387ea, 0x5, 0x1340, 0x7, 0x2c5}, 0xffffffffffffffff, 0xe, r0, 0x8) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x110, 0xffffffffffffffff, 0x0) 18:50:27 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x7, 0x200, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x2dc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x0, 0xfffffffffffffffe, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) r3 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x32261, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x48) fcntl$dupfd(r3, 0x406, r0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x7, 0x50, r4, 0x8000000) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x84800) fcntl$dupfd(0xffffffffffffffff, 0x406, r1) splice(0xffffffffffffffff, &(0x7f0000000000)=0x3, r5, &(0x7f0000000300)=0x8, 0x30f, 0x8) setsockopt$WPAN_WANTLQI(0xffffffffffffffff, 0x0, 0x3, &(0x7f00000003c0), 0x4) write(r0, &(0x7f0000000380)="01", 0x1) mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x10010, r2, 0x10000000) r6 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x43, &(0x7f0000000400)={{{@in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x4e22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, 0xfffffffd}, {{}, 0x0, @in6=@mcast2, 0x0, 0x3}}, 0xe8) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) ioctl$BTRFS_IOC_BALANCE(0xffffffffffffffff, 0x5000940c, 0x0) [ 121.911932] syz-executor.2 (3934) used greatest stack depth: 24472 bytes left [ 122.072252] loop7: detected capacity change from 0 to 264192 [ 122.073230] EXT4-fs: Ignoring removed mblk_io_submit option [ 122.073795] ext2: Unknown parameter 'dont_hash' [ 122.079898] loop7: detected capacity change from 0 to 264192 [ 122.083094] EXT4-fs: Ignoring removed mblk_io_submit option [ 122.083703] ext2: Unknown parameter 'dont_hash' [ 122.244130] loop1: detected capacity change from 0 to 7 [ 122.245185] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 [ 122.253630] ======================================================= [ 122.253630] WARNING: The mand mount option has been deprecated and [ 122.253630] and is ignored by this kernel. Remove the mand [ 122.253630] option from the mount to silence this warning. [ 122.253630] ======================================================= [ 122.271811] loop1: detected capacity change from 0 to 7 [ 122.272498] SELinux: security_context_str_to_sid (staff_u) failed with errno=-22 VM DIAGNOSIS: 18:50:27 Registers: info registers vcpu 0 RAX=ffff8880185ff5c8 RBX=0000000000000001 RCX=ffff8880185ff5b8 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000001 RBP=ffff8880185ff578 RSP=ffff8880185ff450 R8 =ffffffff85e30d1c R9 =ffffffff85e30d20 R10=ffffed10030bfeb1 R11=000000000003603d R12=ffff8880185ff561 R13=ffff8880185ff580 R14=ffff8880185ff520 R15=ffffffff85e30d21 RIP=ffffffff8111abdc RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fbf18c9e545 CR3=0000000040984000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000073 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff888018d7f698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000073 R11=0000000000000001 R12=0000000000000073 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0 RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3ba1958700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1f1de11a50 CR3=000000003fd42000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f3ba44c97c0 00007f3ba44c97c8 YMM02=0000000000000000 0000000000000000 00007f3ba44c97e0 00007f3ba44c97c0 YMM03=0000000000000000 0000000000000000 00007f3ba44c97c8 00007f3ba44c97c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000