Warning: Permanently added '[localhost]:19055' (ECDSA) to the list of known hosts. 2022/09/25 15:50:24 fuzzer started 2022/09/25 15:50:25 dialing manager at localhost:38881 syzkaller login: [ 38.024919] cgroup: Unknown subsys name 'net' [ 38.099749] cgroup: Unknown subsys name 'rlimit' 2022/09/25 15:50:38 syscalls: 2215 2022/09/25 15:50:38 code coverage: enabled 2022/09/25 15:50:38 comparison tracing: enabled 2022/09/25 15:50:38 extra coverage: enabled 2022/09/25 15:50:38 setuid sandbox: enabled 2022/09/25 15:50:38 namespace sandbox: enabled 2022/09/25 15:50:38 Android sandbox: enabled 2022/09/25 15:50:38 fault injection: enabled 2022/09/25 15:50:38 leak checking: enabled 2022/09/25 15:50:38 net packet injection: enabled 2022/09/25 15:50:38 net device setup: enabled 2022/09/25 15:50:38 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/25 15:50:38 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/25 15:50:38 USB emulation: enabled 2022/09/25 15:50:38 hci packet injection: enabled 2022/09/25 15:50:38 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923) 2022/09/25 15:50:38 802.15.4 emulation: enabled 2022/09/25 15:50:38 fetching corpus: 50, signal 29993/31790 (executing program) 2022/09/25 15:50:38 fetching corpus: 100, signal 39549/42961 (executing program) 2022/09/25 15:50:38 fetching corpus: 150, signal 46562/51492 (executing program) 2022/09/25 15:50:39 fetching corpus: 200, signal 51534/57976 (executing program) 2022/09/25 15:50:39 fetching corpus: 250, signal 57110/64890 (executing program) 2022/09/25 15:50:39 fetching corpus: 300, signal 63559/72630 (executing program) 2022/09/25 15:50:39 fetching corpus: 350, signal 66764/77163 (executing program) 2022/09/25 15:50:39 fetching corpus: 400, signal 71101/82706 (executing program) 2022/09/25 15:50:39 fetching corpus: 450, signal 74207/87034 (executing program) 2022/09/25 15:50:39 fetching corpus: 500, signal 77671/91667 (executing program) 2022/09/25 15:50:39 fetching corpus: 550, signal 80255/95464 (executing program) 2022/09/25 15:50:39 fetching corpus: 600, signal 84206/100382 (executing program) 2022/09/25 15:50:40 fetching corpus: 650, signal 86306/103607 (executing program) 2022/09/25 15:50:40 fetching corpus: 700, signal 92043/110038 (executing program) 2022/09/25 15:50:40 fetching corpus: 750, signal 94205/113223 (executing program) 2022/09/25 15:50:40 fetching corpus: 800, signal 95743/115834 (executing program) 2022/09/25 15:50:40 fetching corpus: 850, signal 98184/119219 (executing program) 2022/09/25 15:50:40 fetching corpus: 900, signal 99038/121161 (executing program) 2022/09/25 15:50:40 fetching corpus: 950, signal 100897/123979 (executing program) 2022/09/25 15:50:40 fetching corpus: 1000, signal 102185/126278 (executing program) 2022/09/25 15:50:40 fetching corpus: 1050, signal 104454/129408 (executing program) 2022/09/25 15:50:40 fetching corpus: 1100, signal 105633/131571 (executing program) 2022/09/25 15:50:41 fetching corpus: 1150, signal 108154/134862 (executing program) 2022/09/25 15:50:41 fetching corpus: 1200, signal 109991/137431 (executing program) 2022/09/25 15:50:41 fetching corpus: 1250, signal 110916/139339 (executing program) 2022/09/25 15:50:41 fetching corpus: 1300, signal 112859/142018 (executing program) 2022/09/25 15:50:41 fetching corpus: 1350, signal 115042/144923 (executing program) 2022/09/25 15:50:41 fetching corpus: 1400, signal 118034/148403 (executing program) 2022/09/25 15:50:41 fetching corpus: 1450, signal 119511/150646 (executing program) 2022/09/25 15:50:42 fetching corpus: 1500, signal 120819/152775 (executing program) 2022/09/25 15:50:42 fetching corpus: 1550, signal 122932/155429 (executing program) 2022/09/25 15:50:42 fetching corpus: 1600, signal 124733/157885 (executing program) 2022/09/25 15:50:42 fetching corpus: 1650, signal 126070/159923 (executing program) 2022/09/25 15:50:42 fetching corpus: 1700, signal 127010/161650 (executing program) 2022/09/25 15:50:42 fetching corpus: 1750, signal 128373/163658 (executing program) 2022/09/25 15:50:42 fetching corpus: 1800, signal 130593/166265 (executing program) 2022/09/25 15:50:42 fetching corpus: 1850, signal 132142/168348 (executing program) 2022/09/25 15:50:42 fetching corpus: 1900, signal 133200/170031 (executing program) 2022/09/25 15:50:43 fetching corpus: 1950, signal 134738/172058 (executing program) 2022/09/25 15:50:43 fetching corpus: 2000, signal 136113/174016 (executing program) 2022/09/25 15:50:43 fetching corpus: 2050, signal 136934/175489 (executing program) 2022/09/25 15:50:43 fetching corpus: 2100, signal 137762/176995 (executing program) 2022/09/25 15:50:43 fetching corpus: 2150, signal 139035/178779 (executing program) 2022/09/25 15:50:43 fetching corpus: 2200, signal 140292/180553 (executing program) 2022/09/25 15:50:43 fetching corpus: 2250, signal 143223/183472 (executing program) 2022/09/25 15:50:43 fetching corpus: 2300, signal 144204/184982 (executing program) 2022/09/25 15:50:44 fetching corpus: 2350, signal 145307/186557 (executing program) 2022/09/25 15:50:44 fetching corpus: 2400, signal 146369/188118 (executing program) 2022/09/25 15:50:44 fetching corpus: 2450, signal 147303/189584 (executing program) 2022/09/25 15:50:44 fetching corpus: 2500, signal 147722/190709 (executing program) 2022/09/25 15:50:44 fetching corpus: 2550, signal 148729/192206 (executing program) 2022/09/25 15:50:44 fetching corpus: 2600, signal 149846/193715 (executing program) 2022/09/25 15:50:44 fetching corpus: 2650, signal 151157/195340 (executing program) 2022/09/25 15:50:44 fetching corpus: 2700, signal 151874/196633 (executing program) 2022/09/25 15:50:44 fetching corpus: 2750, signal 152679/197933 (executing program) 2022/09/25 15:50:45 fetching corpus: 2800, signal 153238/199103 (executing program) 2022/09/25 15:50:45 fetching corpus: 2850, signal 154474/200602 (executing program) 2022/09/25 15:50:45 fetching corpus: 2900, signal 155283/201855 (executing program) 2022/09/25 15:50:45 fetching corpus: 2950, signal 157086/203618 (executing program) 2022/09/25 15:50:45 fetching corpus: 3000, signal 158183/204971 (executing program) 2022/09/25 15:50:45 fetching corpus: 3050, signal 159002/206188 (executing program) 2022/09/25 15:50:45 fetching corpus: 3100, signal 159829/207419 (executing program) 2022/09/25 15:50:45 fetching corpus: 3150, signal 160423/208490 (executing program) 2022/09/25 15:50:45 fetching corpus: 3200, signal 161703/209975 (executing program) 2022/09/25 15:50:46 fetching corpus: 3250, signal 162681/211201 (executing program) 2022/09/25 15:50:46 fetching corpus: 3300, signal 163502/212382 (executing program) 2022/09/25 15:50:46 fetching corpus: 3350, signal 164446/213622 (executing program) 2022/09/25 15:50:46 fetching corpus: 3400, signal 165398/214806 (executing program) 2022/09/25 15:50:46 fetching corpus: 3450, signal 166484/216011 (executing program) 2022/09/25 15:50:46 fetching corpus: 3500, signal 167398/217114 (executing program) 2022/09/25 15:50:46 fetching corpus: 3550, signal 168277/218200 (executing program) 2022/09/25 15:50:46 fetching corpus: 3600, signal 170290/219880 (executing program) 2022/09/25 15:50:47 fetching corpus: 3650, signal 171938/221225 (executing program) 2022/09/25 15:50:47 fetching corpus: 3700, signal 172826/222277 (executing program) 2022/09/25 15:50:47 fetching corpus: 3750, signal 174116/223433 (executing program) 2022/09/25 15:50:47 fetching corpus: 3800, signal 174697/224282 (executing program) 2022/09/25 15:50:47 fetching corpus: 3850, signal 175781/225336 (executing program) 2022/09/25 15:50:47 fetching corpus: 3900, signal 176328/226198 (executing program) 2022/09/25 15:50:47 fetching corpus: 3950, signal 177131/227166 (executing program) 2022/09/25 15:50:47 fetching corpus: 4000, signal 178122/228233 (executing program) 2022/09/25 15:50:47 fetching corpus: 4050, signal 178634/229046 (executing program) 2022/09/25 15:50:47 fetching corpus: 4100, signal 179351/229959 (executing program) 2022/09/25 15:50:48 fetching corpus: 4150, signal 180025/230780 (executing program) 2022/09/25 15:50:48 fetching corpus: 4200, signal 180669/231668 (executing program) 2022/09/25 15:50:48 fetching corpus: 4250, signal 181078/232407 (executing program) 2022/09/25 15:50:48 fetching corpus: 4300, signal 181766/233212 (executing program) 2022/09/25 15:50:48 fetching corpus: 4350, signal 182350/233996 (executing program) 2022/09/25 15:50:48 fetching corpus: 4400, signal 182865/234736 (executing program) 2022/09/25 15:50:48 fetching corpus: 4450, signal 183433/235486 (executing program) 2022/09/25 15:50:48 fetching corpus: 4500, signal 183747/236165 (executing program) 2022/09/25 15:50:48 fetching corpus: 4550, signal 184697/237069 (executing program) 2022/09/25 15:50:49 fetching corpus: 4600, signal 185251/237819 (executing program) 2022/09/25 15:50:49 fetching corpus: 4650, signal 186527/238730 (executing program) 2022/09/25 15:50:49 fetching corpus: 4700, signal 186975/239381 (executing program) 2022/09/25 15:50:49 fetching corpus: 4750, signal 187858/240190 (executing program) 2022/09/25 15:50:49 fetching corpus: 4800, signal 188304/240871 (executing program) 2022/09/25 15:50:49 fetching corpus: 4850, signal 189053/241581 (executing program) 2022/09/25 15:50:49 fetching corpus: 4900, signal 189735/242302 (executing program) 2022/09/25 15:50:49 fetching corpus: 4950, signal 190056/242957 (executing program) 2022/09/25 15:50:49 fetching corpus: 5000, signal 190996/243647 (executing program) 2022/09/25 15:50:50 fetching corpus: 5050, signal 191590/244301 (executing program) 2022/09/25 15:50:50 fetching corpus: 5100, signal 192011/244920 (executing program) 2022/09/25 15:50:50 fetching corpus: 5150, signal 192485/245510 (executing program) 2022/09/25 15:50:50 fetching corpus: 5200, signal 193301/246173 (executing program) 2022/09/25 15:50:50 fetching corpus: 5250, signal 194793/246920 (executing program) 2022/09/25 15:50:50 fetching corpus: 5300, signal 195202/247489 (executing program) 2022/09/25 15:50:50 fetching corpus: 5350, signal 195954/248113 (executing program) 2022/09/25 15:50:50 fetching corpus: 5400, signal 196931/248734 (executing program) 2022/09/25 15:50:51 fetching corpus: 5450, signal 198263/249462 (executing program) 2022/09/25 15:50:51 fetching corpus: 5500, signal 199142/250087 (executing program) 2022/09/25 15:50:51 fetching corpus: 5550, signal 199530/250629 (executing program) 2022/09/25 15:50:51 fetching corpus: 5600, signal 200199/251185 (executing program) 2022/09/25 15:50:51 fetching corpus: 5650, signal 200572/251674 (executing program) 2022/09/25 15:50:51 fetching corpus: 5700, signal 201039/252177 (executing program) 2022/09/25 15:50:51 fetching corpus: 5750, signal 201473/252673 (executing program) 2022/09/25 15:50:51 fetching corpus: 5800, signal 202217/253175 (executing program) 2022/09/25 15:50:51 fetching corpus: 5850, signal 203559/253753 (executing program) 2022/09/25 15:50:52 fetching corpus: 5900, signal 205042/254273 (executing program) 2022/09/25 15:50:52 fetching corpus: 5950, signal 205333/254740 (executing program) 2022/09/25 15:50:52 fetching corpus: 6000, signal 205944/255227 (executing program) 2022/09/25 15:50:52 fetching corpus: 6050, signal 206577/255682 (executing program) 2022/09/25 15:50:52 fetching corpus: 6100, signal 207128/256150 (executing program) 2022/09/25 15:50:52 fetching corpus: 6150, signal 207388/256561 (executing program) 2022/09/25 15:50:52 fetching corpus: 6200, signal 208207/256982 (executing program) 2022/09/25 15:50:52 fetching corpus: 6250, signal 208744/257386 (executing program) 2022/09/25 15:50:53 fetching corpus: 6300, signal 209165/257788 (executing program) 2022/09/25 15:50:53 fetching corpus: 6350, signal 209503/258187 (executing program) 2022/09/25 15:50:53 fetching corpus: 6400, signal 210141/258416 (executing program) 2022/09/25 15:50:53 fetching corpus: 6450, signal 210754/258493 (executing program) 2022/09/25 15:50:53 fetching corpus: 6500, signal 211428/258499 (executing program) 2022/09/25 15:50:53 fetching corpus: 6550, signal 211819/258499 (executing program) 2022/09/25 15:50:53 fetching corpus: 6600, signal 212220/258500 (executing program) 2022/09/25 15:50:53 fetching corpus: 6650, signal 212717/258564 (executing program) 2022/09/25 15:50:53 fetching corpus: 6700, signal 213273/258564 (executing program) 2022/09/25 15:50:54 fetching corpus: 6750, signal 213740/258564 (executing program) 2022/09/25 15:50:54 fetching corpus: 6800, signal 214264/258566 (executing program) 2022/09/25 15:50:54 fetching corpus: 6850, signal 214771/258638 (executing program) 2022/09/25 15:50:54 fetching corpus: 6900, signal 215413/258659 (executing program) 2022/09/25 15:50:54 fetching corpus: 6950, signal 216032/258659 (executing program) 2022/09/25 15:50:54 fetching corpus: 6965, signal 216196/258659 (executing program) 2022/09/25 15:50:54 fetching corpus: 6965, signal 216196/258659 (executing program) 2022/09/25 15:50:57 starting 8 fuzzer processes 15:50:57 executing program 0: getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000080)={{{@in, @in, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@ipv4={""/10, ""/2, @multicast2}}}}, &(0x7f0000000180)=0xe8) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@dev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6=@mcast2}}, &(0x7f00000002c0)=0xe8) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x1810802, &(0x7f0000000300)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@uname={'uname', 0x3d, '&)!'}}, {@access_uid={'access', 0x3d, 0xee00}}], [{@uid_eq={'uid', 0x3d, 0xee01}}, {@subj_role={'subj_role', 0x3d, '-@-,\'+:!'}}, {@dont_measure}, {@fsmagic={'fsmagic', 0x3d, 0x5}}, {@euid_gt={'euid>', r0}}, {@dont_appraise}, {@euid_gt={'euid>', r2}}]}}) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000400)={r1, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x10) sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x54, 0x0, 0x20, 0x70bd2d, 0x25dfdbfc, {}, [@FOU_ATTR_IFINDEX={0x8, 0xb, r1}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @mcast2}, @FOU_ATTR_IPPROTO={0x5, 0x3, 0x21}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_LOCAL_V6={0x14, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x54}}, 0x20008000) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000600)={'ip6tnl0\x00', &(0x7f0000000580)={'syztnl2\x00', r1, 0x29, 0xff, 0x1, 0x30000, 0x1, @empty, @private1={0xfc, 0x1, '\x00', 0x1}, 0x80, 0x7800, 0x1, 0x2}}) r3 = signalfd(0xffffffffffffffff, &(0x7f0000000640)={[0x3]}, 0x8) io_uring_setup(0x49d7, &(0x7f0000000680)={0x0, 0xd6d1, 0x2, 0x1, 0x115, 0x0, r3}) r4 = perf_event_open$cgroup(&(0x7f0000000700)={0x2, 0x80, 0x8, 0x2, 0x4, 0xff, 0x0, 0x3, 0x40002, 0x4, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8d, 0x0, @perf_config_ext={0x101, 0xfffffffffffffffb}, 0x804, 0x2, 0x1f, 0x9, 0xffffffffffffffff, 0x4, 0x3f, 0x0, 0xfffffffc, 0x0, 0x80000000}, r3, 0x6, r3, 0x0) signalfd(r4, &(0x7f0000000780)={[0x9]}, 0x8) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r5, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x6c, 0x0, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x12d}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x5}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x3}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x8000}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x6c}, 0x1, 0x0, 0x0, 0x40080}, 0x8) r6 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000980), 0x80000, 0x0) recvmsg$unix(r3, &(0x7f0000002040)={&(0x7f00000009c0), 0x6e, &(0x7f0000001e80)=[{&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000001a40)=""/126, 0x7e}, {&(0x7f0000001ac0)=""/157, 0x9d}, {&(0x7f0000001b80)=""/172, 0xac}, {&(0x7f0000001c40)=""/60, 0x3c}, {&(0x7f0000001c80)=""/96, 0x60}, {&(0x7f0000001d00)=""/60, 0x3c}, {&(0x7f0000001d40)=""/28, 0x1c}, {&(0x7f0000001d80)=""/249, 0xf9}], 0x9, &(0x7f0000001f40)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0xd8}, 0x2000) mount$9p_fd(0x0, &(0x7f0000000900)='./file0\x00', &(0x7f0000000940), 0x40000, &(0x7f0000002080)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@cache_fscache}, {@access_any}], [{@obj_user={'obj_user', 0x3d, 'access'}}, {@measure}, {@uid_lt={'uid<', r10}}]}}) syz_genetlink_get_family_id$nbd(&(0x7f0000002140), r5) getsockopt$inet_pktinfo(r9, 0x0, 0x8, &(0x7f0000002180)={0x0, @initdev, @empty}, &(0x7f00000021c0)=0xc) r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000002240)={0x1, &(0x7f0000002200)=[{0x2, 0x5, 0x6, 0x100}]}) sendfile(r7, r11, 0x0, 0x7) signalfd(r8, &(0x7f0000002280)={[0x6]}, 0x8) 15:50:57 executing program 1: r0 = eventfd(0x1) ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000000)={0x0, "04a82873c0c3c5b91204bf388d545b36"}) ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, &(0x7f0000001000)={0xc2307917d9f2288c, 0x1, {0xe58, @usage=0x3f, 0x0, 0x4, 0x400, 0x80, 0x0, 0x3e2f, 0x20, @usage, 0x9, 0x8001, [0x4, 0x9, 0x6, 0x7, 0x4, 0x8000000]}, {0x20980000, @struct={0x80, 0x8}, 0x0, 0xfffffffffffffffd, 0x81, 0x9, 0x40, 0x9, 0x400, @struct={0x718, 0x800}, 0x2, 0x8, [0x7ff, 0x81, 0x368883cb, 0x2, 0xdb6, 0x7]}, {0x2, @usage=0x3538, 0x0, 0x6, 0x8, 0x3, 0x3, 0x9, 0x93, @struct={0xcf2b, 0x3}, 0x9, 0x401, [0x4, 0x80, 0x79f, 0x101, 0xd10, 0x63]}, {0x1, 0x3, 0x6}}) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000001400)={0x8, 0x6, {0x10001, @struct={0x59a, 0x20000}, r1, 0xff, 0x3, 0x4, 0x6, 0x4, 0x0, @usage=0x5, 0x3, 0x8aa, [0x0, 0xffff, 0x0, 0xd38, 0x8866, 0x7]}, {0x1, @usage=0xe1, 0x0, 0x1e11, 0x3f, 0x897, 0x3, 0x3, 0x487, @usage=0x8f44, 0x8001, 0xe6, [0x6, 0x5219, 0xffffffff, 0x20, 0x7, 0x2]}, {0x50, @usage=0x9, r2, 0xf9, 0x80000000, 0x6, 0x6, 0x7, 0x10, @struct={0x8, 0x3ff}, 0x8, 0x1, [0x3, 0x8000, 0x2f9, 0x80000000, 0x1, 0x7ad]}, {0x383e, 0x6817, 0x4}}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000001800)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) io_uring_register$IORING_REGISTER_EVENTFD(r3, 0x4, &(0x7f0000001840)=r0, 0x1) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000001880)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) io_uring_register$IORING_REGISTER_EVENTFD(r4, 0x4, &(0x7f00000018c0)=r0, 0x1) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$BTRFS_IOC_INO_PATHS(r5, 0xc0389423, &(0x7f0000001940)={0x3, 0x38, [0x63b, 0xfffffffffffffff7, 0x560000000000, 0x4], &(0x7f0000001900)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) pwritev2(r4, &(0x7f0000001ac0)=[{&(0x7f0000001980)="ffcf37459f424ee21b694efb65ef3e11e55645d3d09ba4f63a7e645e9d25141721808a957cef2929525976", 0x2b}, {&(0x7f00000019c0)="178b09b6d259bcda76ac7577e89c211f1a501125c55c3c38e25578702899e568c090152a12bf0911fac9e4ebb62e83009e242ba73732e7b7304d03b9acab5af53c6f08bd8b28da2e0b489be7e70ed7525e38642d46388e2349b5562b23ef8d4e828c8a72fc67b67e36e7e00102c77cb9f77e4cc1d70d632530b572f9a45995b13030a1d17e0f4d57667638553cb2c3d8495aab4d48cdf1d4d4e847a543ec7b768490fb33e428a73fccd283b14e496e105ae3b26f6acfa14f84b74d9109bedd5671b4eb3e4b79d60a21a7de7217a5241de4a33e5e8229f6f1db7407dd1c165879a500f69f170fcded338bc5de", 0xec}], 0x2, 0x200, 0xffff, 0x18) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r7 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001b00), 0x40, 0x0) fcntl$dupfd(r6, 0x406, r7) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r0, 0x40049366, &(0x7f0000001b40)=0x4) fcntl$getownex(r6, 0x10, &(0x7f0000001b80)={0x0, 0x0}) pidfd_open(r8, 0x0) r9 = syz_io_uring_complete(0x0) fsetxattr$trusted_overlay_redirect(r9, &(0x7f0000001bc0), &(0x7f0000001c00)='./file0\x00', 0x8, 0x2) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000001c40)='trusted.overlay.redirect\x00') 15:50:57 executing program 2: msync(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1) prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x3000)=nil) move_pages(0x0, 0x2, &(0x7f0000000000)=[&(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil], 0x0, &(0x7f0000000040)=[0x0, 0x0, 0x0], 0x2) r0 = syz_io_uring_setup(0x408e, &(0x7f0000000080)={0x0, 0x95ff, 0x1, 0x2, 0x16f}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x200000e, 0x40010, r0, 0x10000000) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r3, &(0x7f0000001180)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x5, 0x3, &(0x7f0000000180)="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", 0xfc7c, 0x0, 0x1, {0x1, r4}}, 0x2) r5 = syz_io_uring_setup(0x5b7f, &(0x7f00000011c0)={0x0, 0x6cdd, 0x0, 0x0, 0x171, 0x0, r0}, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000f09000/0x2000)=nil, &(0x7f0000001240), &(0x7f0000001280)) r6 = memfd_create(&(0x7f00000012c0)='\x00', 0x7) ioctl$INCFS_IOC_FILL_BLOCKS(r6, 0x80106720, &(0x7f0000002980)={0x9, &(0x7f0000002840)=[{0x4, 0x5d, &(0x7f0000001300)="5ac3d54455236029a7700dd43271c57cf5dc44dc831900585d51e4a1ce630134eaf2f56c4cb31647e725a8f64d1a5fd71198ff44f17bb48d94b733f5967692aee5af56d3f6080b8add4f7e43db97a28af4dc2331942297b959aba69acd"}, {0x0, 0xfa, &(0x7f0000001380)="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", 0x1}, {0x7, 0xee, &(0x7f0000001480)="17e3b5844de947aeb78a143c4c8b707d403a853603d5701c227817dd57dd7abf4b04a73fc430010747c61cf60105487bfaaa3c8d81fffb0a1e79b7842e73148c613899055fef163fa7960656510d230c05b2798dd295e64db3d8be2cf7e612438397994536848e32591fbb16e10a1c20667cb578d228b7b553afecf63546b0b4da394b5fd463a35cc67620ede1c2cf330b279c030f7ce56015f195a40e2137ae7df2dac9beda9296337fe173c73bac2e364d5ca766200c6389152a1c8c9632cbd2f1562d207be5e151dde5fb4f744a3756590d3e06af49d283932ad2db5c2a29e40b5343c75aefe56e35e360fb22", 0x1, 0x1}, {0x800, 0xb8, &(0x7f0000001580)="c109b55271991ef49cf4abbd8fec2793c2055ecbda2d4337620d8e9bac3c917ceb32cece3d6af96be7afd15ec6342ad482cad6e2f6bd070b99aad1baf81a329a6a12b404e7331cccbb4abc20bb2768b63713db5d5d225adcbb1e07ffa735bd6a13cb19be764c9b0dd84db55b1f0f4dd22f6e6b729517b3fc6239d3d2ee33c442ebd69ddc8df3284ff6f8f6c43f177873f7ac6530978729fe22dcee3bbacfed8eb64123d1d1c9e65b1bb1f12364130d4613658e2768d0d633"}, {0x7, 0x7d, &(0x7f0000001640)="2cff5faaab2f70716b59d90d05a10f3c10697f5a934cf0b601cba6ea965286664e3734a6e59ea454d6f1ca49051d32e5c2157eb7845b6777158cab2ab1065b48448f611de121a386a0cc3c07bcb66edafa40dd45e2001a9b8627289ef628805cdc725c8c983cac2c12db15c531b70a97da72d343704bf73cf2eae69210"}, {0x4, 0x1000, &(0x7f00000016c0)="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"}, {0x2, 0xfe, &(0x7f00000026c0)="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", 0x0, 0x1}, {0x4, 0x39, &(0x7f00000027c0)="57be3abc6ccf35491c492c14a3622b03eb51b4f9d28adda7a64d89617ebbb4f860807d9ec5b58c8e407bb5cdd0eacabf23cb719c207c5f7687", 0x0, 0x1}, {0x41, 0x23, &(0x7f0000002800)="9a43c885c5a25babe09e369691a631bfca07c5d0fc83f29984c1758dfb0578ac4d0788", 0x1}]}) accept$unix(0xffffffffffffffff, 0x0, &(0x7f00000029c0)) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002a40), 0xffffffffffffffff) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000002b00)={&(0x7f0000002a00)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000002ac0)={&(0x7f0000002a80)={0x38, r7, 0x10c, 0x70bd26, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x2b}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x58}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x38}]}, 0x38}, 0x1, 0x0, 0x0, 0x8010}, 0x4000030) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) r9 = socket$unix(0x1, 0x1, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000005300)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r5, 0x9, {0x0, r5}, 0x1, 0x8, 0x1, {0x0, r8, r9}}, 0xf0) syz_io_uring_submit(0x0, r2, &(0x7f0000005340)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd_index=0x3, 0x0, 0x0, 0x6, 0x4}, 0x8) shmget$private(0x0, 0x1000, 0x200, &(0x7f0000c35000/0x1000)=nil) ftruncate(0xffffffffffffffff, 0x401) close(0xffffffffffffffff) 15:50:57 executing program 3: r0 = request_key(&(0x7f0000000000)='pkcs7_test\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)='%@\x00', 0xfffffffffffffff9) r1 = add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @auto=[0x37, 0x36, 0x38, 0x30, 0x66, 0x31, 0x30, 0x64, 0x30, 0x34, 0x61, 0x62, 0x65, 0x63, 0x37, 0x33]}, &(0x7f0000000140)={0x0, "785cc1a00bc57b1cfdbf87dee0a9fa4e0fc02bf3afe2d77ce41a3aee3c443bfcbfb7a87d1a9b2305e485980ebd443c41ffe04d22ae82ee77caacaef72d723041", 0x19}, 0x48, 0xfffffffffffffffb) r2 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x2}, 0x0, 0x0, r1) keyctl$KEYCTL_MOVE(0x1e, r0, r0, r2, 0x0) keyctl$unlink(0x9, r1, 0xfffffffffffffffe) r3 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x3}, 0x0, 0x0, r2) lstat(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}) r5 = request_key(&(0x7f0000000380)='big_key\x00', &(0x7f00000003c0)={'syz', 0x1}, &(0x7f0000000400)='[/I\x00', r3) keyctl$get_persistent(0x16, r4, r5) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000440)='dns_resolver\x00', 0x0) add_key(&(0x7f0000000480)='logon\x00', &(0x7f00000004c0)={'syz', 0x2}, &(0x7f0000000500)="7fb92ece83a2d777e1c1d92dd6b0576ab0ae1af2dc0c25e7603217d199350fa2a00d8e1ef529aca510925ee3f1b27920312c4e88c536516bcadd6c4753b5bbdfd121651b2ec95f8951c7064efb3a22f18f14dbe376404ef542da7e69a4a00f045e102d59e24fb53e645d9bf6a25fd0fd242e0295e6735714a349d24ecd49085270f492659530e14082d3", 0x8a, r2) add_key$fscrypt_v1(&(0x7f00000005c0), &(0x7f0000000600)={'fscrypt:', @desc2}, &(0x7f0000000640)={0x0, "e63499c94a754582acbd543d874d742804d7eb0b781c3273f2dd95734acfda968ac1ef1013bbeb9aa08b0cedc37485c8447ac7800096e86ec499d34fdde80660", 0x25}, 0x48, 0xfffffffffffffffe) r6 = add_key$keyring(&(0x7f0000000740), &(0x7f0000000780)={'syz', 0x0}, 0x0, 0x0, r3) add_key(&(0x7f00000006c0)='keyring\x00', &(0x7f0000000700)={'syz', 0x3}, 0x0, 0x0, r6) r7 = add_key$user(&(0x7f00000007c0), &(0x7f0000000800)={'syz', 0x2}, &(0x7f0000000840)="0d2b054b72e5d2672596a21b62013bc3bb8e635b063e1376f9e255d2e457ecf3c7339ed2a8f22d5d018240730d32359a017d276c3b6c00945d9c8ade619af3db1d0ba0f98e6b0e1d60b4787c266aff097807995358f9db51b896cdd6", 0x5c, r3) keyctl$instantiate(0xc, r7, &(0x7f00000008c0)=@encrypted_update={'update ', 'default', 0x20, 'trusted:', 'syz'}, 0x1b, r2) keyctl$read(0xb, r0, &(0x7f0000000900)=""/62, 0x3e) r8 = request_key(&(0x7f00000009c0)='logon\x00', &(0x7f0000000a00)={'syz', 0x1}, &(0x7f0000000a40)='[/I\x00', r3) add_key$keyring(&(0x7f0000000940), &(0x7f0000000980)={'syz', 0x0}, 0x0, 0x0, r8) add_key$keyring(&(0x7f0000000a80), &(0x7f0000000ac0)={'syz', 0x3}, 0x0, 0x0, 0x0) [ 70.069365] audit: type=1400 audit(1664121057.249:6): avc: denied { execmem } for pid=282 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 15:50:57 executing program 5: sendmsg$NL80211_CMD_ADD_TX_TS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x58, 0x0, 0x400, 0x70bd25, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x1}, @NL80211_ATTR_USER_PRIO={0x5}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x1}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x1}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x3}, @NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x1f}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x40010) r0 = syz_open_dev$mouse(&(0x7f0000000140), 0x0, 0x18001) sendmsg$NL80211_CMD_SET_POWER_SAVE(r0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x50, 0x0, 0x200, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x5, 0x2a}}}}, [@NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x80) sendmsg$NL80211_CMD_DEL_STATION(r0, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x24, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_STA_LISTEN_INTERVAL={0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x51114a40e66d286a}, 0x4) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000400), r0) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f00000005c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000440)={0x12c, r1, 0x10, 0x70bd2d, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_SERVICE={0x38, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x4e67a3e7}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x29}, @IPVS_SVC_ATTR_SCHED_NAME={0x9, 0x6, 'lblc\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_DAEMON={0x48, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x5}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x20}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'wg0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x4}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x100}, @IPVS_DEST_ATTR_TUN_FLAGS={0x6, 0xf, 0xbacd}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xffffffff}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xfdc}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1ff}, @IPVS_CMD_ATTR_DAEMON={0x44, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'lo\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffffffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xfffff800}]}, 0x12c}, 0x1, 0x0, 0x0, 0x1}, 0x20000051) sendmsg$NL80211_CMD_SET_KEY(r0, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x70, 0x0, 0x2, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x20, 0x3d}}}}, [@NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "b9a40351cfb47bdde3a921dcbc"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "62acbad9647b7471c9b4a1f005"}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "04115a671e"}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x4}]}, 0x70}, 0x1, 0x0, 0x0, 0x48800}, 0x40) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000007c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r0, &(0x7f0000000900)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000800)={0xb0, r2, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xffffffff}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14b4}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x1da}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x1f}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x395}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1ff}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1dd}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x9}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1b}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1b}], @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}]}, 0xb0}, 0x1, 0x0, 0x0, 0x44010}, 0x4000) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000940), 0x0, 0x0) sendmsg$NL80211_CMD_START_AP(r4, &(0x7f0000000ac0)={&(0x7f0000000980)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000a80)={&(0x7f00000009c0)={0x98, r2, 0x100, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@acl_policy=[@NL80211_ATTR_MAC_ADDRS={0x1c, 0xa6, 0x0, 0x1, [{0xa, 0x6, @broadcast}, {0xa, 0x6, @device_b}]}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}, @NL80211_ATTR_ACL_POLICY={0x8, 0xa5, 0x1}], @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_P2P_OPPPS={0x5, 0xa3, 0x1}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_HE_OBSS_PD={0x24, 0x117, 0x0, 0x1, [@NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0xa}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0x12}, @NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET={0x5, 0x2, 0xf}, @NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET={0x5, 0x1, 0xd}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x40}, 0x8004) r5 = memfd_secret(0x0) sendmsg$NL80211_CMD_GET_MESH_CONFIG(r5, &(0x7f0000000bc0)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000b40)={0x14, r2, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, ["", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20048050) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000000c00)={{0x1, 0x1, 0x18, r4, {0x80}}, './file0\x00'}) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000c80), r4) sendmsg$DEVLINK_CMD_SB_GET(r6, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x3c, r7, 0x400, 0x70bd29, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20000080) tee(r5, r4, 0xfffffffc00000000, 0xc) r8 = socket$nl_xfrm(0x10, 0x3, 0x6) pidfd_getfd(r4, r8, 0x0) 15:50:57 executing program 4: keyctl$get_security(0x11, 0x0, &(0x7f0000000000)=""/4096, 0x1000) r0 = add_key$keyring(&(0x7f00000010c0), &(0x7f0000001100)={'syz', 0x1}, 0x0, 0x0, 0x0) request_key(&(0x7f0000001000)='blacklist\x00', &(0x7f0000001040)={'syz', 0x1}, &(0x7f0000001080)='{*\\$!%@%].-@\x00', r0) keyctl$join(0x1, &(0x7f0000001140)={'syz', 0x3}) keyctl$join(0x1, 0x0) keyctl$join(0x1, &(0x7f0000001180)={'syz', 0x0}) r1 = add_key$fscrypt_v1(&(0x7f00000011c0), &(0x7f0000001200)={'fscrypt:', @desc2}, &(0x7f0000001240)={0x0, "d1a3f0751c43e547718a28e5e9a2f75869bd267f5ce672e118dc58b2cb4c37d185372f1e926162eaeee54c71bca9be8058b0690def9d26b872261d598bc3d700", 0x3d}, 0x48, r0) keyctl$unlink(0x9, 0x0, r1) keyctl$join(0x1, 0x0) keyctl$join(0x1, &(0x7f00000012c0)={'syz', 0x1}) keyctl$join(0x1, &(0x7f0000001300)={'syz', 0x3}) keyctl$join(0x1, 0x0) keyctl$join(0x1, &(0x7f0000001340)={'syz', 0x3}) r2 = add_key(&(0x7f0000001380)='encrypted\x00', &(0x7f00000013c0)={'syz', 0x2}, &(0x7f0000001400)="b955c439bd9bc22b75a9cd5cc07296142227fbdc8e3bcbf10125a886650c91e4168b5eb67cf352b9d2c95d2e0501349a7b7ab170560325355f0573776855a4903fc8a3cae61f45ffc94622f5d325e3c45117609ca3d0a8d39463d76487262fd3da40e99327c82a02efb13809c3d3388422855d2adcdb2a9d8533f91ab3cf06f376fbe1b92b150b52df67176483f62e0eec66fe16bccf334273ba2ec642b2e1647bdd223892af2c02d4365e3caf4e08067bcafa0a922a067787e08a5a08b83e", 0xbf, r1) r3 = add_key$fscrypt_v1(&(0x7f0000001500), &(0x7f0000001540)={'fscrypt:', @desc4}, &(0x7f0000001580)={0x0, "c2e6df5ec88cabdc9020295e627b5b566bb33a172986a64b388c1f9f89cef85ad0e07e0e0704d35e5038262239024419045d77b0ea57258e93a59640df130715", 0x3b}, 0x48, 0xfffffffffffffffa) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f00000014c0)='asymmetric\x00', &(0x7f0000001600)=@chain={'key_or_keyring:', r3}) keyctl$instantiate(0xc, r3, 0x0, 0x0, r2) keyctl$join(0x1, &(0x7f0000001640)={'syz', 0x3}) keyctl$join(0x1, &(0x7f0000001680)={'syz', 0x1}) keyctl$join(0x1, &(0x7f00000016c0)={'syz', 0x3}) 15:50:57 executing program 6: ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_DEL_PMKSA(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r0}, @void}}, [@NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0xff}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x1ff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2400e001}, 0x4000010) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000180)={{{@in=@multicast1, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private0}, 0x0, @in=@multicast1}}, &(0x7f0000000280)=0xe8) sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x300, 0x70bd25, 0x25dfdbfe, {}, [@WGDEVICE_A_IFINDEX={0x8, 0x1, r1}, @WGDEVICE_A_IFINDEX={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x9c) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_ABORT_SCAN(r2, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x28, 0x0, 0x20, 0x70bd25, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x0, 0x54}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x80) sendmsg$TIPC_CMD_RESET_LINK_STATS(r2, &(0x7f0000000580)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x30, 0x0, 0xd14, 0x70bd26, 0x25dfdbfe, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", ""]}, 0x30}}, 0x4040800) sendmsg$SOCK_DESTROY(0xffffffffffffffff, &(0x7f0000000740)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000700)={&(0x7f0000000600)={0xcc, 0x15, 0x993, 0x70bd2d, 0x25dfdbfc, {0x2a, 0x1}, [@INET_DIAG_REQ_BYTECODE={0x26, 0x1, "bdb37730eeacace5fc40c20a9b9559d858b7780de061aebd433a6f7ce4af8f87e446"}, @INET_DIAG_REQ_BYTECODE={0x8f, 0x1, "d3cb8f12e44c5b317ac5179c4216a671b5d2db18067fc8e889dd10217dc00fa56d6fbc7341dc1bc5118e3d0bf2e6eb9250e4fd8ef177ca174fe84ebc46211b61769b897d4f895943dd83ec677a06bdee6f353c9c54ece804a8015c8933863c5a09809e9e16638016ef3276a1cf4e6c19a7834f1df786b181b1e649f7c3718530c4780fd3ec1a4fee61fb1f"}]}, 0xcc}}, 0x4004000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000780)={{0x1, 0x1, 0x18, r2, {0x3f}}, './file0\x00'}) sendmsg$NL80211_CMD_DEL_PMKSA(r4, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x48, 0x0, 0x300, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_PMK={0x14, 0xfe, "32b59d1c15fdf43a74e5cf24976d8d32"}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x8}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0xb}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x401}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x19}]}, 0x48}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000940)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r5, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x1c, 0x0, 0x100, 0x70bd2a, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4) sendmsg$NLBL_UNLABEL_C_STATICADD(r5, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x54, 0x0, 0x600, 0x70bd2b, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_SECCTX={0x29, 0x7, 'system_u:object_r:hald_acl_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @loopback}]}, 0x54}, 0x1, 0x0, 0x0, 0x20040000}, 0x15) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000b80)={0x4bf9, 0x2, 0x4, 0xfffffffd, 0x8, [{0x8, 0xb98, 0x9, '\x00', 0x88}, {0x2, 0xffffffffffff6dbe, 0x901, '\x00', 0x2000}, {0x3, 0x7, 0x4, '\x00', 0x200}, {0x401, 0x9, 0x2}, {0x81, 0x3, 0x7, '\x00', 0x901}, {0x10001, 0x0, 0x5, '\x00', 0x400}, {0xfffffffffffff000, 0x2, 0x35, '\x00', 0x402}, {0x10001, 0x4, 0x3, '\x00', 0x100}]}) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000dc0), r5) sendmsg$NLBL_MGMT_C_REMOVEDEF(r7, &(0x7f0000000e80)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x14, r8, 0x20, 0x70bd28, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20000805}, 0x10) sendmsg$NLBL_MGMT_C_REMOVEDEF(r5, &(0x7f0000000fc0)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000f80)={&(0x7f0000000f00)={0x4c, r8, 0x300, 0x70bd2c, 0x25dfdbfe, {}, [@NLBL_MGMT_A_DOMAIN={0x9, 0x1, '+]#:\x00'}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @empty}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast2}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40018d0}, 0x20000000) 15:50:57 executing program 7: lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)={0x0, 0xfb, 0x87, 0x1, 0x6, "5c7d67936bac235ab93e26013417cb1d", "0691d47a8bf1b83b463a0caf33a654ea68e84ce48a92052b1dadb2d7f462489dbc83895496546db4f9ec99e2cc64d32c7bb17d5b5388b604e082f6e351704eed4e6e068bdf46b52ecfe33fe0c051272b19d8e4a04a41f93b3eff48950385979b29de8dce07bfdd3a467efee8ec6265c15401"}, 0x87, 0x1) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/20, 0x14}, {&(0x7f0000000200)=""/11, 0xb}, {&(0x7f0000000240)=""/29, 0x1d}, {&(0x7f0000000280)=""/65, 0x41}, {&(0x7f0000000300)=""/203, 0xcb}, {&(0x7f0000000400)=""/229, 0xe5}], 0x6, &(0x7f0000000580)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}, {{&(0x7f0000000600)=@abs, 0x6e, &(0x7f0000000b40)=[{&(0x7f0000000680)=""/75, 0x4b}, {&(0x7f0000000700)=""/138, 0x8a}, {&(0x7f00000007c0)=""/194, 0xc2}, {&(0x7f00000008c0)=""/83, 0x53}, {&(0x7f0000000940)=""/77, 0x4d}, {&(0x7f00000009c0)=""/76, 0x4c}, {&(0x7f0000000a40)=""/235, 0xeb}], 0x7, &(0x7f0000000bc0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf8}}, {{&(0x7f0000000cc0), 0x6e, &(0x7f0000000d80)=[{&(0x7f0000000d40)=""/56, 0x38}], 0x1, &(0x7f0000000dc0)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x160}}, {{&(0x7f0000000f40)=@abs, 0x6e, &(0x7f00000012c0)=[{&(0x7f0000000fc0)=""/99, 0x63}, {&(0x7f0000001040)=""/222, 0xde}, {&(0x7f0000001140)=""/65, 0x41}, {&(0x7f00000011c0)=""/193, 0xc1}], 0x4, &(0x7f0000001300)}}], 0x4, 0x12020, &(0x7f0000001440)) mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x20, &(0x7f0000001480)={[{@huge_never}, {@gid={'gid', 0x3d, r5}}, {@huge_advise}], [{@fsmagic={'fsmagic', 0x3d, 0x5c4}}, {@hash}, {@mask={'mask', 0x3d, '^MAY_READ'}}, {@obj_type={'obj_type', 0x3d, 'trusted.overlay.upper\x00'}}, {@subj_user={'subj_user', 0x3d, 'trusted.overlay.upper\x00'}}, {@permit_directio}]}) syz_io_uring_setup(0x1572, &(0x7f0000001540)={0x0, 0x7cda, 0x20, 0x1, 0x199, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000015c0), &(0x7f0000001600)) stat(&(0x7f0000001640)='./file0/file0\x00', &(0x7f0000001680)) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000001700)={{0x1, 0x1, 0x18, r8, {0x1000, 0x10000}}, './file0\x00'}) getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f00000017c0)={0x0, 0x0}, &(0x7f0000001800)=0xc) mount$tmpfs(0x0, &(0x7f0000001740)='./file0\x00', &(0x7f0000001780), 0x83, &(0x7f0000001840)={[], [{@pcr={'pcr', 0x3d, 0x35}}, {@smackfsdef={'smackfsdef', 0x3d, '[^&$'}}, {@fowner_gt={'fowner>', r13}}]}) unlinkat(r7, &(0x7f00000018c0)='./file0/file1\x00', 0x200) openat2$dir(0xffffffffffffff9c, &(0x7f0000001900)='./file0\x00', &(0x7f0000001940)={0x400240, 0x45, 0x18}, 0x18) mount_setattr(r11, &(0x7f0000001980)='./file0/file1\x00', 0x9800, &(0x7f00000019c0)={0x81, 0x84, 0x180000, {r9}}, 0x20) openat(r1, &(0x7f0000001a00)='./file0\x00', 0x80000, 0x4) write$binfmt_elf32(r10, &(0x7f0000001a40)={{0x7f, 0x45, 0x4c, 0x46, 0x3, 0x81, 0x9, 0x6, 0xcd, 0x3, 0x3, 0x280, 0x19a, 0x38, 0x22b, 0xb5, 0x6, 0x20, 0x1, 0x100, 0xb5, 0x81}, [{0x3, 0xfffff116, 0xb4, 0x81, 0x0, 0x5, 0x20, 0x6}], "017224b475ca3a2364f685f779b1c8c2aee4ce971fd5bace51e239ec101fcf94f6ccde8a946e03db6970ff3decbc9f266deb201d2c9e22537db526a0bdb023e20ae040c32d32850c31d9c62af916b2b6bc374fc5c1a844c2bae51e33db252294a65a6b4787056b20a00c9a718b0fafbc5777b9063399b0d8b87ba12236db648b1d0d95263668f25903c1072ad336c31cb2459791e7021b477e32154393ce26255fa77e53f3eaabdf0ba9ecf838744f7aed5826948dd1b627ae0cfaca8367164465a8285e5653943886089a173951ca0edc4de5149b6cf4841cfe47b35b", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x835) r14 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000002280)='./cgroup.net/syz0\x00', 0x200002, 0x0) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r14, 0x4008941a, &(0x7f00000022c0)) r15 = pidfd_getfd(r3, 0xffffffffffffffff, 0x0) recvmsg$unix(r15, &(0x7f0000002800)={&(0x7f0000002300), 0x6e, &(0x7f0000002740)=[{&(0x7f0000002380)=""/56, 0x38}, {&(0x7f00000023c0)=""/140, 0x8c}, {&(0x7f0000002480)=""/230, 0xe6}, {&(0x7f0000002580)=""/63, 0x3f}, {&(0x7f00000025c0)=""/170, 0xaa}, {&(0x7f0000002680)=""/150, 0x96}], 0x6, &(0x7f00000027c0)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x0) kcmp$KCMP_EPOLL_TFD(r16, r4, 0x7, r12, &(0x7f0000002840)={r7, 0xffffffffffffffff, 0x7}) r17 = socket$inet_icmp(0x2, 0x2, 0x1) pwrite64(r17, &(0x7f0000002880)="d1096cb391b6799120ea32676d182458d62427e2819e0936", 0x18, 0x20) [ 71.380996] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 71.384528] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 71.387034] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 71.391024] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 71.394133] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 71.396965] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 71.403642] Bluetooth: hci0: HCI_REQ-0x0c1a [ 71.437096] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 71.438606] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 71.442228] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 71.443296] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 71.447114] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 71.448406] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 71.448801] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 71.460160] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 71.461735] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 71.463887] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 71.466417] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 71.468315] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 71.469717] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 71.473766] Bluetooth: hci1: HCI_REQ-0x0c1a [ 71.504264] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 71.507266] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 71.512112] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 71.513083] Bluetooth: hci2: HCI_REQ-0x0c1a [ 71.514800] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 71.519258] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 71.527874] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 71.533153] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 71.534683] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 71.534778] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 71.541463] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 71.542885] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 71.546709] Bluetooth: hci5: HCI_REQ-0x0c1a [ 71.552675] Bluetooth: hci3: HCI_REQ-0x0c1a [ 71.579133] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 71.581270] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 71.584043] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 71.595851] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 71.596040] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 71.601101] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 71.603012] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 71.606113] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 71.622830] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 71.627164] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 71.629027] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 71.633779] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 71.635119] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 71.636449] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 71.637960] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 71.639847] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 71.641067] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 71.642776] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 71.650805] Bluetooth: hci4: HCI_REQ-0x0c1a [ 71.667687] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.669209] Bluetooth: hci6: HCI_REQ-0x0c1a [ 73.464964] Bluetooth: hci0: command 0x0409 tx timeout [ 73.527620] Bluetooth: hci2: command 0x0409 tx timeout [ 73.528614] Bluetooth: hci1: command 0x0409 tx timeout [ 73.592687] Bluetooth: hci5: command 0x0409 tx timeout [ 73.593236] Bluetooth: hci3: command 0x0409 tx timeout [ 73.719745] Bluetooth: hci4: command 0x0409 tx timeout [ 73.720889] Bluetooth: hci7: command 0x0409 tx timeout [ 73.721350] Bluetooth: hci6: command 0x0409 tx timeout [ 75.512667] Bluetooth: hci0: command 0x041b tx timeout [ 75.575647] Bluetooth: hci1: command 0x041b tx timeout [ 75.576115] Bluetooth: hci2: command 0x041b tx timeout [ 75.639626] Bluetooth: hci3: command 0x041b tx timeout [ 75.640070] Bluetooth: hci5: command 0x041b tx timeout [ 75.767639] Bluetooth: hci6: command 0x041b tx timeout [ 75.768212] Bluetooth: hci7: command 0x041b tx timeout [ 75.768746] Bluetooth: hci4: command 0x041b tx timeout [ 77.560591] Bluetooth: hci0: command 0x040f tx timeout [ 77.623602] Bluetooth: hci2: command 0x040f tx timeout [ 77.624054] Bluetooth: hci1: command 0x040f tx timeout [ 77.688594] Bluetooth: hci5: command 0x040f tx timeout [ 77.689040] Bluetooth: hci3: command 0x040f tx timeout [ 77.816662] Bluetooth: hci4: command 0x040f tx timeout [ 77.817079] Bluetooth: hci7: command 0x040f tx timeout [ 77.817459] Bluetooth: hci6: command 0x040f tx timeout [ 79.607633] Bluetooth: hci0: command 0x0419 tx timeout [ 79.671661] Bluetooth: hci1: command 0x0419 tx timeout [ 79.672101] Bluetooth: hci2: command 0x0419 tx timeout [ 79.736595] Bluetooth: hci3: command 0x0419 tx timeout [ 79.737022] Bluetooth: hci5: command 0x0419 tx timeout [ 79.863674] Bluetooth: hci6: command 0x0419 tx timeout [ 79.864105] Bluetooth: hci7: command 0x0419 tx timeout [ 79.864511] Bluetooth: hci4: command 0x0419 tx timeout 15:51:53 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) r5 = accept4(r4, &(0x7f0000000180)=@nl, &(0x7f0000000200)=0x80, 0x800) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000700)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) getpgid(0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1) [ 126.106302] audit: type=1400 audit(1664121113.286:7): avc: denied { open } for pid=3758 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.107979] audit: type=1400 audit(1664121113.286:8): avc: denied { kernel } for pid=3758 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.123488] ------------[ cut here ]------------ [ 126.123510] [ 126.123513] ====================================================== [ 126.123517] WARNING: possible circular locking dependency detected [ 126.123521] 6.0.0-rc6-next-20220923 #1 Not tainted [ 126.123527] ------------------------------------------------------ [ 126.123533] syz-executor.5/3759 is trying to acquire lock: [ 126.123539] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 126.123578] [ 126.123578] but task is already holding lock: [ 126.123580] ffff88800e85f020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.123608] [ 126.123608] which lock already depends on the new lock. [ 126.123608] [ 126.123611] [ 126.123611] the existing dependency chain (in reverse order) is: [ 126.123614] [ 126.123614] -> #3 (&ctx->lock){....}-{2:2}: [ 126.123628] _raw_spin_lock+0x2a/0x40 [ 126.123646] __perf_event_task_sched_out+0x53b/0x18d0 [ 126.123659] __schedule+0xedd/0x2470 [ 126.123672] schedule+0xda/0x1b0 [ 126.123685] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.123697] syscall_exit_to_user_mode+0x19/0x40 [ 126.123709] do_syscall_64+0x48/0x90 [ 126.123725] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.123737] [ 126.123737] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 126.123750] _raw_spin_lock_nested+0x30/0x40 [ 126.123768] raw_spin_rq_lock_nested+0x1e/0x30 [ 126.123781] task_fork_fair+0x63/0x4d0 [ 126.123797] sched_cgroup_fork+0x3d0/0x540 [ 126.123810] copy_process+0x4183/0x6e20 [ 126.123820] kernel_clone+0xe7/0x890 [ 126.123829] user_mode_thread+0xad/0xf0 [ 126.123839] rest_init+0x24/0x250 [ 126.123850] arch_call_rest_init+0xf/0x14 [ 126.123867] start_kernel+0x4c1/0x4e6 [ 126.123882] secondary_startup_64_no_verify+0xe0/0xeb [ 126.123896] [ 126.123896] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 126.123909] _raw_spin_lock_irqsave+0x39/0x60 [ 126.123927] try_to_wake_up+0xab/0x1930 [ 126.123940] up+0x75/0xb0 [ 126.123953] __up_console_sem+0x6e/0x80 [ 126.123968] console_unlock+0x46a/0x590 [ 126.123984] vprintk_emit+0x1bd/0x560 [ 126.123999] vprintk+0x84/0xa0 [ 126.124015] _printk+0xba/0xf1 [ 126.124026] kauditd_hold_skb.cold+0x3f/0x4e [ 126.124042] kauditd_send_queue+0x233/0x290 [ 126.124056] kauditd_thread+0x5da/0x9a0 [ 126.124070] kthread+0x2ed/0x3a0 [ 126.124083] ret_from_fork+0x22/0x30 [ 126.124095] [ 126.124095] -> #0 ((console_sem).lock){....}-{2:2}: [ 126.124109] __lock_acquire+0x2a02/0x5e70 [ 126.124125] lock_acquire+0x1a2/0x530 [ 126.124141] _raw_spin_lock_irqsave+0x39/0x60 [ 126.124159] down_trylock+0xe/0x70 [ 126.124173] __down_trylock_console_sem+0x3b/0xd0 [ 126.124188] vprintk_emit+0x16b/0x560 [ 126.124204] vprintk+0x84/0xa0 [ 126.124220] _printk+0xba/0xf1 [ 126.124229] report_bug.cold+0x72/0xab [ 126.124245] handle_bug+0x3c/0x70 [ 126.124260] exc_invalid_op+0x14/0x50 [ 126.124277] asm_exc_invalid_op+0x16/0x20 [ 126.124288] group_sched_out.part.0+0x2c7/0x460 [ 126.124299] ctx_sched_out+0x8f1/0xc10 [ 126.124308] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.124321] __schedule+0xedd/0x2470 [ 126.124333] schedule+0xda/0x1b0 [ 126.124346] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.124356] syscall_exit_to_user_mode+0x19/0x40 [ 126.124368] do_syscall_64+0x48/0x90 [ 126.124384] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.124396] [ 126.124396] other info that might help us debug this: [ 126.124396] [ 126.124399] Chain exists of: [ 126.124399] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 126.124399] [ 126.124413] Possible unsafe locking scenario: [ 126.124413] [ 126.124415] CPU0 CPU1 [ 126.124417] ---- ---- [ 126.124420] lock(&ctx->lock); [ 126.124425] lock(&rq->__lock); [ 126.124431] lock(&ctx->lock); [ 126.124437] lock((console_sem).lock); [ 126.124443] [ 126.124443] *** DEADLOCK *** [ 126.124443] [ 126.124445] 2 locks held by syz-executor.5/3759: [ 126.124451] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 126.124480] #1: ffff88800e85f020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.124507] [ 126.124507] stack backtrace: [ 126.124510] CPU: 0 PID: 3759 Comm: syz-executor.5 Not tainted 6.0.0-rc6-next-20220923 #1 [ 126.124522] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.124530] Call Trace: [ 126.124534] [ 126.124538] dump_stack_lvl+0x8b/0xb3 [ 126.124556] check_noncircular+0x263/0x2e0 [ 126.124572] ? format_decode+0x26c/0xb50 [ 126.124588] ? print_circular_bug+0x450/0x450 [ 126.124605] ? enable_ptr_key_workfn+0x20/0x20 [ 126.124621] ? format_decode+0x26c/0xb50 [ 126.124638] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 126.124655] __lock_acquire+0x2a02/0x5e70 [ 126.124676] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 126.124698] lock_acquire+0x1a2/0x530 [ 126.124714] ? down_trylock+0xe/0x70 [ 126.124730] ? lock_release+0x750/0x750 [ 126.124750] ? vprintk+0x84/0xa0 [ 126.124768] _raw_spin_lock_irqsave+0x39/0x60 [ 126.124786] ? down_trylock+0xe/0x70 [ 126.124802] down_trylock+0xe/0x70 [ 126.124817] ? vprintk+0x84/0xa0 [ 126.124833] __down_trylock_console_sem+0x3b/0xd0 [ 126.124850] vprintk_emit+0x16b/0x560 [ 126.124869] vprintk+0x84/0xa0 [ 126.124885] _printk+0xba/0xf1 [ 126.124897] ? record_print_text.cold+0x16/0x16 [ 126.124912] ? report_bug.cold+0x66/0xab [ 126.124929] ? group_sched_out.part.0+0x2c7/0x460 [ 126.124941] report_bug.cold+0x72/0xab [ 126.124959] handle_bug+0x3c/0x70 [ 126.124975] exc_invalid_op+0x14/0x50 [ 126.124993] asm_exc_invalid_op+0x16/0x20 [ 126.125005] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.125019] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.125030] RSP: 0018:ffff88801d947c48 EFLAGS: 00010006 [ 126.125039] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.125047] RDX: ffff8880404b0000 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 126.125054] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001 [ 126.125062] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800e85f000 [ 126.125069] R13: ffff88806ce3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 126.125080] ? group_sched_out.part.0+0x2c7/0x460 [ 126.125093] ? group_sched_out.part.0+0x2c7/0x460 [ 126.125106] ctx_sched_out+0x8f1/0xc10 [ 126.125119] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.125134] ? lock_is_held_type+0xd7/0x130 [ 126.125147] ? __perf_cgroup_move+0x160/0x160 [ 126.125159] ? set_next_entity+0x304/0x550 [ 126.125177] ? update_curr+0x267/0x740 [ 126.125195] ? lock_is_held_type+0xd7/0x130 [ 126.125208] __schedule+0xedd/0x2470 [ 126.125224] ? io_schedule_timeout+0x150/0x150 [ 126.125240] ? rcu_read_lock_sched_held+0x3e/0x80 [ 126.125260] schedule+0xda/0x1b0 [ 126.125274] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.125286] syscall_exit_to_user_mode+0x19/0x40 [ 126.125299] do_syscall_64+0x48/0x90 [ 126.125316] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.125329] RIP: 0033:0x7f2aec708b19 [ 126.125337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.125348] RSP: 002b:00007f2ae9c7e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.125359] RAX: 0000000000000001 RBX: 00007f2aec81bf68 RCX: 00007f2aec708b19 [ 126.125366] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2aec81bf6c [ 126.125373] RBP: 00007f2aec81bf60 R08: 000000000000000e R09: 0000000000000000 [ 126.125380] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f2aec81bf6c [ 126.125388] R13: 00007ffe1cc6788f R14: 00007f2ae9c7e300 R15: 0000000000022000 [ 126.125400] [ 126.182315] WARNING: CPU: 0 PID: 3759 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 126.182999] Modules linked in: [ 126.183238] CPU: 0 PID: 3759 Comm: syz-executor.5 Not tainted 6.0.0-rc6-next-20220923 #1 [ 126.183846] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.184676] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.185084] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.186421] RSP: 0018:ffff88801d947c48 EFLAGS: 00010006 [ 126.186815] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.187362] RDX: ffff8880404b0000 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 126.187893] RBP: ffff8880086685c8 R08: 0000000000000005 R09: 0000000000000001 [ 126.188423] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800e85f000 [ 126.188956] R13: ffff88806ce3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 126.189487] FS: 00007f2ae9c7e700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 126.190086] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.190521] CR2: 00007fcc8e278020 CR3: 000000003f6ac000 CR4: 0000000000350ef0 [ 126.191056] Call Trace: [ 126.191254] [ 126.191433] ctx_sched_out+0x8f1/0xc10 [ 126.191733] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.192129] ? lock_is_held_type+0xd7/0x130 [ 126.192461] ? __perf_cgroup_move+0x160/0x160 [ 126.192800] ? set_next_entity+0x304/0x550 [ 126.193123] ? update_curr+0x267/0x740 [ 126.193425] ? lock_is_held_type+0xd7/0x130 [ 126.193757] __schedule+0xedd/0x2470 [ 126.194051] ? io_schedule_timeout+0x150/0x150 [ 126.194407] ? rcu_read_lock_sched_held+0x3e/0x80 [ 126.194783] schedule+0xda/0x1b0 [ 126.195045] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.195426] syscall_exit_to_user_mode+0x19/0x40 [ 126.195792] do_syscall_64+0x48/0x90 [ 126.196088] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.196478] RIP: 0033:0x7f2aec708b19 [ 126.196763] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.198114] RSP: 002b:00007f2ae9c7e218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.198683] RAX: 0000000000000001 RBX: 00007f2aec81bf68 RCX: 00007f2aec708b19 [ 126.199218] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2aec81bf6c [ 126.199755] RBP: 00007f2aec81bf60 R08: 000000000000000e R09: 0000000000000000 [ 126.200284] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f2aec81bf6c [ 126.200826] R13: 00007ffe1cc6788f R14: 00007f2ae9c7e300 R15: 0000000000022000 [ 126.201358] [ 126.201539] irq event stamp: 642 [ 126.201796] hardirqs last enabled at (641): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 126.202486] hardirqs last disabled at (642): [] __schedule+0x1225/0x2470 [ 126.203110] softirqs last enabled at (292): [] __irq_exit_rcu+0x11b/0x180 [ 126.203741] softirqs last disabled at (283): [] __irq_exit_rcu+0x11b/0x180 [ 126.204376] ---[ end trace 0000000000000000 ]--- [ 126.591828] audit: type=1400 audit(1664121113.770:9): avc: denied { write } for pid=3758 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 15:51:53 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) r5 = accept4(r4, &(0x7f0000000180)=@nl, &(0x7f0000000200)=0x80, 0x800) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000700)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) getpgid(0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1) 15:51:54 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) r5 = accept4(r4, &(0x7f0000000180)=@nl, &(0x7f0000000200)=0x80, 0x800) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000700)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) getpgid(0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1) 15:51:54 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) r5 = accept4(r4, &(0x7f0000000180)=@nl, &(0x7f0000000200)=0x80, 0x800) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000700)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) getpgid(0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1) 15:51:54 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) r5 = accept4(r4, &(0x7f0000000180)=@nl, &(0x7f0000000200)=0x80, 0x800) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000700)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) getpgid(0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1) 15:51:54 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) r5 = accept4(r4, &(0x7f0000000180)=@nl, &(0x7f0000000200)=0x80, 0x800) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000700)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) getpgid(0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1) 15:51:54 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) r5 = accept4(r4, &(0x7f0000000180)=@nl, &(0x7f0000000200)=0x80, 0x800) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000700)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) getpgid(0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1) 15:51:54 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x200000}]) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) r5 = accept4(r4, &(0x7f0000000180)=@nl, &(0x7f0000000200)=0x80, 0x800) ioctl$VFAT_IOCTL_READDIR_BOTH(r5, 0x82307201, &(0x7f0000000700)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) getpgid(0xffffffffffffffff) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18}, './file0\x00'}) semget$private(0x0, 0x1, 0x0) semop(0x0, &(0x7f0000000000)=[{0x0, 0x7}], 0x1) [ 127.332552] hrtimer: interrupt took 16461 ns VM DIAGNOSIS: 15:51:53 Registers: info registers vcpu 0 RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff88801d947698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000032 R11=0000000000000001 R12=0000000000000032 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0 RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f2ae9c7e700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fcc8e278020 CR3=000000003f6ac000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f2aec7ef7c0 00007f2aec7ef7c8 YMM02=0000000000000000 0000000000000000 00007f2aec7ef7e0 00007f2aec7ef7c0 YMM03=0000000000000000 0000000000000000 00007f2aec7ef7c8 00007f2aec7ef7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=296e8c9e20bfef00 RBX=ffffed1003b66f07 RCX=0000000000000000 RDX=0000000000000000 RSI=0000000000000008 RDI=ffffffff85b04690 RBP=0000000000000001 RSP=ffff88801db37828 R8 =0000000000000000 R9 =ffffffff85b04697 R10=fffffbfff0b608d2 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=ffffffff854cf898 R15=0000000000000000 RIP=ffffffff812a2185 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007ff222b43540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ff222c008b0 CR3=0000000017478000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000ff0000000000 000000000000ff00 YMM01=0000000000000000 0000000000000000 ffff00ffffffffff ffffffffffff00ff YMM02=0000000000000000 0000000000000000 4c4700362e322e32 5f4342494c470035 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000470035 YMM04=0000000000000000 0000000000000000 4342494c4700362e 322e325f4342494c YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000