Warning: Permanently added '[localhost]:25698' (ECDSA) to the list of known hosts. 2022/09/25 17:09:42 fuzzer started 2022/09/25 17:09:42 dialing manager at localhost:38881 syzkaller login: [ 44.024098] cgroup: Unknown subsys name 'net' [ 44.187622] cgroup: Unknown subsys name 'rlimit' 2022/09/25 17:09:56 syscalls: 2215 2022/09/25 17:09:56 code coverage: enabled 2022/09/25 17:09:56 comparison tracing: enabled 2022/09/25 17:09:56 extra coverage: enabled 2022/09/25 17:09:56 setuid sandbox: enabled 2022/09/25 17:09:56 namespace sandbox: enabled 2022/09/25 17:09:56 Android sandbox: enabled 2022/09/25 17:09:56 fault injection: enabled 2022/09/25 17:09:56 leak checking: enabled 2022/09/25 17:09:56 net packet injection: enabled 2022/09/25 17:09:56 net device setup: enabled 2022/09/25 17:09:56 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/25 17:09:56 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/25 17:09:56 USB emulation: enabled 2022/09/25 17:09:56 hci packet injection: enabled 2022/09/25 17:09:56 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923) 2022/09/25 17:09:56 802.15.4 emulation: enabled 2022/09/25 17:09:56 fetching corpus: 50, signal 28334/30087 (executing program) 2022/09/25 17:09:57 fetching corpus: 100, signal 39061/42456 (executing program) 2022/09/25 17:09:57 fetching corpus: 150, signal 44449/49421 (executing program) 2022/09/25 17:09:57 fetching corpus: 200, signal 49638/56109 (executing program) 2022/09/25 17:09:57 fetching corpus: 250, signal 54953/62843 (executing program) 2022/09/25 17:09:57 fetching corpus: 300, signal 64363/73415 (executing program) 2022/09/25 17:09:57 fetching corpus: 350, signal 67119/77500 (executing program) 2022/09/25 17:09:57 fetching corpus: 400, signal 71065/82661 (executing program) 2022/09/25 17:09:57 fetching corpus: 450, signal 76342/88996 (executing program) 2022/09/25 17:09:58 fetching corpus: 500, signal 79031/92899 (executing program) 2022/09/25 17:09:58 fetching corpus: 550, signal 82562/97488 (executing program) 2022/09/25 17:09:58 fetching corpus: 600, signal 85314/101337 (executing program) 2022/09/25 17:09:58 fetching corpus: 650, signal 87613/104787 (executing program) 2022/09/25 17:09:58 fetching corpus: 700, signal 90589/108769 (executing program) 2022/09/25 17:09:58 fetching corpus: 750, signal 93791/112901 (executing program) 2022/09/25 17:09:58 fetching corpus: 800, signal 96114/116276 (executing program) 2022/09/25 17:09:58 fetching corpus: 850, signal 98954/119965 (executing program) 2022/09/25 17:09:59 fetching corpus: 900, signal 102652/124358 (executing program) 2022/09/25 17:09:59 fetching corpus: 950, signal 103873/126601 (executing program) 2022/09/25 17:09:59 fetching corpus: 1000, signal 105961/129549 (executing program) 2022/09/25 17:09:59 fetching corpus: 1050, signal 107097/131679 (executing program) 2022/09/25 17:09:59 fetching corpus: 1100, signal 109509/134853 (executing program) 2022/09/25 17:09:59 fetching corpus: 1150, signal 111540/137682 (executing program) 2022/09/25 17:09:59 fetching corpus: 1200, signal 114641/141336 (executing program) 2022/09/25 17:09:59 fetching corpus: 1250, signal 116474/143948 (executing program) 2022/09/25 17:10:00 fetching corpus: 1300, signal 117915/146214 (executing program) 2022/09/25 17:10:00 fetching corpus: 1350, signal 119836/148831 (executing program) 2022/09/25 17:10:00 fetching corpus: 1400, signal 121141/150982 (executing program) 2022/09/25 17:10:00 fetching corpus: 1450, signal 122331/152990 (executing program) 2022/09/25 17:10:00 fetching corpus: 1500, signal 125297/156369 (executing program) 2022/09/25 17:10:00 fetching corpus: 1550, signal 126400/158253 (executing program) 2022/09/25 17:10:00 fetching corpus: 1600, signal 127667/160222 (executing program) 2022/09/25 17:10:00 fetching corpus: 1650, signal 128459/161841 (executing program) 2022/09/25 17:10:00 fetching corpus: 1700, signal 129717/163731 (executing program) 2022/09/25 17:10:01 fetching corpus: 1750, signal 130314/165161 (executing program) 2022/09/25 17:10:01 fetching corpus: 1800, signal 131868/167280 (executing program) 2022/09/25 17:10:01 fetching corpus: 1850, signal 133369/169284 (executing program) 2022/09/25 17:10:01 fetching corpus: 1900, signal 135253/171506 (executing program) 2022/09/25 17:10:01 fetching corpus: 1950, signal 136429/173315 (executing program) 2022/09/25 17:10:01 fetching corpus: 2000, signal 137355/174880 (executing program) 2022/09/25 17:10:01 fetching corpus: 2050, signal 138803/176804 (executing program) 2022/09/25 17:10:01 fetching corpus: 2100, signal 139516/178204 (executing program) 2022/09/25 17:10:01 fetching corpus: 2150, signal 141270/180282 (executing program) 2022/09/25 17:10:02 fetching corpus: 2200, signal 142472/182040 (executing program) 2022/09/25 17:10:02 fetching corpus: 2250, signal 143389/183549 (executing program) 2022/09/25 17:10:02 fetching corpus: 2300, signal 144721/185365 (executing program) 2022/09/25 17:10:02 fetching corpus: 2350, signal 145341/186709 (executing program) 2022/09/25 17:10:02 fetching corpus: 2400, signal 145963/188026 (executing program) 2022/09/25 17:10:02 fetching corpus: 2450, signal 147466/189881 (executing program) 2022/09/25 17:10:02 fetching corpus: 2500, signal 148699/191551 (executing program) 2022/09/25 17:10:02 fetching corpus: 2550, signal 149118/192669 (executing program) 2022/09/25 17:10:03 fetching corpus: 2600, signal 150721/194480 (executing program) 2022/09/25 17:10:03 fetching corpus: 2650, signal 151549/195825 (executing program) 2022/09/25 17:10:03 fetching corpus: 2700, signal 152603/197300 (executing program) 2022/09/25 17:10:03 fetching corpus: 2750, signal 153646/198725 (executing program) 2022/09/25 17:10:03 fetching corpus: 2800, signal 154286/199915 (executing program) 2022/09/25 17:10:03 fetching corpus: 2850, signal 155112/201136 (executing program) 2022/09/25 17:10:03 fetching corpus: 2900, signal 156052/202452 (executing program) 2022/09/25 17:10:03 fetching corpus: 2950, signal 157295/203881 (executing program) 2022/09/25 17:10:03 fetching corpus: 3000, signal 158139/205161 (executing program) 2022/09/25 17:10:04 fetching corpus: 3050, signal 160638/207248 (executing program) 2022/09/25 17:10:04 fetching corpus: 3100, signal 162003/208787 (executing program) 2022/09/25 17:10:04 fetching corpus: 3150, signal 163202/210116 (executing program) 2022/09/25 17:10:04 fetching corpus: 3200, signal 164051/211370 (executing program) 2022/09/25 17:10:04 fetching corpus: 3250, signal 164842/212476 (executing program) 2022/09/25 17:10:04 fetching corpus: 3300, signal 165826/213730 (executing program) 2022/09/25 17:10:04 fetching corpus: 3350, signal 166723/214916 (executing program) 2022/09/25 17:10:04 fetching corpus: 3400, signal 167849/216126 (executing program) 2022/09/25 17:10:05 fetching corpus: 3450, signal 168340/217072 (executing program) 2022/09/25 17:10:05 fetching corpus: 3500, signal 170402/218742 (executing program) 2022/09/25 17:10:05 fetching corpus: 3550, signal 171224/219786 (executing program) 2022/09/25 17:10:05 fetching corpus: 3600, signal 171829/220758 (executing program) 2022/09/25 17:10:05 fetching corpus: 3650, signal 173252/222043 (executing program) 2022/09/25 17:10:05 fetching corpus: 3700, signal 173995/223073 (executing program) 2022/09/25 17:10:05 fetching corpus: 3750, signal 175258/224251 (executing program) 2022/09/25 17:10:06 fetching corpus: 3800, signal 175991/225195 (executing program) 2022/09/25 17:10:06 fetching corpus: 3850, signal 176711/226136 (executing program) 2022/09/25 17:10:06 fetching corpus: 3900, signal 177298/227042 (executing program) 2022/09/25 17:10:06 fetching corpus: 3950, signal 177742/227848 (executing program) 2022/09/25 17:10:06 fetching corpus: 4000, signal 178562/228786 (executing program) 2022/09/25 17:10:06 fetching corpus: 4050, signal 178963/229600 (executing program) 2022/09/25 17:10:06 fetching corpus: 4100, signal 180369/230749 (executing program) 2022/09/25 17:10:06 fetching corpus: 4150, signal 181252/231702 (executing program) 2022/09/25 17:10:07 fetching corpus: 4200, signal 182025/232598 (executing program) 2022/09/25 17:10:07 fetching corpus: 4250, signal 182424/233321 (executing program) 2022/09/25 17:10:07 fetching corpus: 4300, signal 182941/234142 (executing program) 2022/09/25 17:10:07 fetching corpus: 4350, signal 183658/234927 (executing program) 2022/09/25 17:10:07 fetching corpus: 4400, signal 184380/235733 (executing program) 2022/09/25 17:10:07 fetching corpus: 4450, signal 185037/236548 (executing program) 2022/09/25 17:10:07 fetching corpus: 4500, signal 185969/237432 (executing program) 2022/09/25 17:10:07 fetching corpus: 4550, signal 187242/238394 (executing program) 2022/09/25 17:10:08 fetching corpus: 4600, signal 187852/239135 (executing program) 2022/09/25 17:10:08 fetching corpus: 4650, signal 188459/239862 (executing program) 2022/09/25 17:10:08 fetching corpus: 4700, signal 190072/240846 (executing program) 2022/09/25 17:10:08 fetching corpus: 4750, signal 190957/241620 (executing program) 2022/09/25 17:10:08 fetching corpus: 4800, signal 191597/242310 (executing program) 2022/09/25 17:10:08 fetching corpus: 4850, signal 192278/243046 (executing program) 2022/09/25 17:10:08 fetching corpus: 4900, signal 192809/243658 (executing program) 2022/09/25 17:10:08 fetching corpus: 4950, signal 193727/244423 (executing program) 2022/09/25 17:10:09 fetching corpus: 5000, signal 194768/245156 (executing program) 2022/09/25 17:10:09 fetching corpus: 5050, signal 195198/245801 (executing program) 2022/09/25 17:10:09 fetching corpus: 5100, signal 195829/246412 (executing program) 2022/09/25 17:10:09 fetching corpus: 5150, signal 196265/247030 (executing program) 2022/09/25 17:10:09 fetching corpus: 5200, signal 196923/247692 (executing program) 2022/09/25 17:10:09 fetching corpus: 5250, signal 197284/248270 (executing program) 2022/09/25 17:10:09 fetching corpus: 5300, signal 197892/248852 (executing program) 2022/09/25 17:10:09 fetching corpus: 5350, signal 198170/249405 (executing program) 2022/09/25 17:10:10 fetching corpus: 5400, signal 198579/249957 (executing program) 2022/09/25 17:10:10 fetching corpus: 5450, signal 199343/250536 (executing program) 2022/09/25 17:10:10 fetching corpus: 5500, signal 199902/251141 (executing program) 2022/09/25 17:10:10 fetching corpus: 5550, signal 200433/251661 (executing program) 2022/09/25 17:10:10 fetching corpus: 5600, signal 201001/252175 (executing program) 2022/09/25 17:10:10 fetching corpus: 5650, signal 201310/252692 (executing program) 2022/09/25 17:10:10 fetching corpus: 5700, signal 201783/253214 (executing program) 2022/09/25 17:10:10 fetching corpus: 5750, signal 202611/253737 (executing program) 2022/09/25 17:10:10 fetching corpus: 5800, signal 203244/254241 (executing program) 2022/09/25 17:10:10 fetching corpus: 5850, signal 203610/254691 (executing program) 2022/09/25 17:10:11 fetching corpus: 5900, signal 204127/255189 (executing program) 2022/09/25 17:10:11 fetching corpus: 5950, signal 205217/255771 (executing program) 2022/09/25 17:10:11 fetching corpus: 6000, signal 205870/256262 (executing program) 2022/09/25 17:10:11 fetching corpus: 6050, signal 206672/256700 (executing program) 2022/09/25 17:10:11 fetching corpus: 6100, signal 207153/257147 (executing program) 2022/09/25 17:10:11 fetching corpus: 6150, signal 207530/257564 (executing program) 2022/09/25 17:10:11 fetching corpus: 6200, signal 208273/258066 (executing program) 2022/09/25 17:10:11 fetching corpus: 6250, signal 208540/258464 (executing program) 2022/09/25 17:10:11 fetching corpus: 6300, signal 209188/258939 (executing program) 2022/09/25 17:10:12 fetching corpus: 6350, signal 210195/259316 (executing program) 2022/09/25 17:10:12 fetching corpus: 6400, signal 210624/259704 (executing program) 2022/09/25 17:10:12 fetching corpus: 6450, signal 211010/259765 (executing program) 2022/09/25 17:10:12 fetching corpus: 6500, signal 211411/259770 (executing program) 2022/09/25 17:10:12 fetching corpus: 6550, signal 212006/259773 (executing program) 2022/09/25 17:10:12 fetching corpus: 6600, signal 212605/259773 (executing program) 2022/09/25 17:10:12 fetching corpus: 6650, signal 213167/259773 (executing program) 2022/09/25 17:10:12 fetching corpus: 6700, signal 213483/259776 (executing program) 2022/09/25 17:10:13 fetching corpus: 6750, signal 213918/259776 (executing program) 2022/09/25 17:10:13 fetching corpus: 6800, signal 214479/259788 (executing program) 2022/09/25 17:10:13 fetching corpus: 6850, signal 214902/259789 (executing program) 2022/09/25 17:10:13 fetching corpus: 6900, signal 215296/259797 (executing program) 2022/09/25 17:10:13 fetching corpus: 6950, signal 215820/259811 (executing program) 2022/09/25 17:10:13 fetching corpus: 6991, signal 216233/259815 (executing program) 2022/09/25 17:10:13 fetching corpus: 6991, signal 216233/259815 (executing program) 2022/09/25 17:10:16 starting 8 fuzzer processes 17:10:16 executing program 0: r0 = fsmount(0xffffffffffffffff, 0x0, 0x70) fchdir(r0) r1 = openat$cgroup_ro(r0, &(0x7f0000000000)='blkio.bfq.io_wait_time_recursive\x00', 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x178010, r1, 0x0) r2 = openat$cgroup_pressure(r0, &(0x7f0000000040)='memory.pressure\x00', 0x2, 0x0) fcntl$setflags(r2, 0x2, 0x0) fcntl$notify(0xffffffffffffffff, 0x402, 0x80000020) ioctl$BTRFS_IOC_LOGICAL_INO(r0, 0xc0389424, &(0x7f00000000c0)={0xc9bb, 0x18, '\x00', 0x1, &(0x7f0000000080)=[0x0, 0x0, 0x0]}) ioctl$FIONCLEX(r2, 0x5450) ioctl$BTRFS_IOC_LOGICAL_INO(r1, 0xc0389424, &(0x7f0000000140)={0x4, 0x30, '\x00', 0x1, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) ioctl$FIONCLEX(r2, 0x5450) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f0000000180)) accept4$bt_l2cap(r1, &(0x7f0000000200)={0x1f, 0x0, @fixed}, &(0x7f0000000240)=0xe, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r3, 0xf504, 0x0) r4 = socket$inet(0x2, 0x6, 0x10000) write(r4, &(0x7f0000000280)="029c6dd340916a67909b96d78a3976de257b02cfed0c07e87d41c0450858a9d5999229d8a641bab7ae673c64b5f3c1c4323eb7", 0x33) ioctl$FS_IOC_ENABLE_VERITY(r4, 0x40806685, &(0x7f0000000380)={0x1, 0x1, 0x1000, 0x1e, &(0x7f00000002c0)="3662896e0d46563151a913256c2e00edc0f9b3c461a5da8269cd153045b3", 0x44, 0x0, &(0x7f0000000300)="c3c3dc5d45978656d58fa746434095ad69fbba609f0957e01d57225eca806225bb702abc9f641a9c5591276d43d162686fdffed7ed9445c8a329b27db6f9202970872ad4"}) syz_io_uring_setup(0x558f, &(0x7f0000000400)={0x0, 0x8cd4, 0x1, 0x1, 0x185, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000480), &(0x7f00000004c0)) sendfile(r4, r2, &(0x7f0000000500)=0x6f9, 0x358c) 17:10:16 executing program 1: iopl(0xcd) iopl(0x0) iopl(0x8) iopl(0x6) iopl(0x4) iopl(0xb8) iopl(0x2) iopl(0x9) iopl(0x9f) iopl(0x35) iopl(0x3) iopl(0x6) iopl(0x0) iopl(0x7) iopl(0x2) iopl(0x72) iopl(0x4) iopl(0x6a) iopl(0x1) iopl(0x5) [ 77.507180] audit: type=1400 audit(1664125816.143:6): avc: denied { execmem } for pid=287 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 17:10:16 executing program 2: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x200080, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000002, 0x2010, r0, 0x0) write$cgroup_freezer_state(r0, &(0x7f0000000040)='FROZEN\x00', 0x7) ioctl$BLKROGET(r0, 0x125e, &(0x7f0000000080)) r2 = syz_io_uring_setup(0x311, &(0x7f00000000c0)={0x0, 0x3e0e, 0x0, 0x2, 0x191, 0x0, r0}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000180)) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x0, 0x20010, r0, 0x0) syz_io_uring_setup(0x7a10, &(0x7f00000001c0)={0x0, 0x83be, 0x8, 0x2, 0xfa}, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000fed000/0x12000)=nil, &(0x7f0000000240), &(0x7f0000000280)=0x0) clock_gettime(0x0, &(0x7f00000002c0)={0x0, 0x0}) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000340)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, &(0x7f0000000300)={r5, r6+60000000}, 0x1, 0x0, 0x1, {0x0, r7}}, 0xffff) r8 = syz_io_uring_complete(r1) r9 = openat(r8, &(0x7f0000000380)='./file0\x00', 0x10000, 0x180) execveat(r8, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000640)=[&(0x7f0000000400)='-&/\x00', &(0x7f0000000440)='FROZEN\x00', &(0x7f0000000480)='FROZEN\x00', &(0x7f00000004c0)='/dev/vcsu\x00', &(0x7f0000000500)='/}/\\-+%#:}@^+]\x00', &(0x7f0000000540)='\x00', &(0x7f0000000580)='#[\x00', &(0x7f00000005c0)=']\\^%*]\x00', &(0x7f0000000600)='FROZEN\x00'], &(0x7f00000008c0)=[&(0x7f00000006c0)='],\x00', &(0x7f0000000700)='\\/\'.@\x00', &(0x7f0000000740)='FROZEN\x00', &(0x7f0000000780)='\x00', &(0x7f00000007c0)='FROZEN\x00', &(0x7f0000000800)=',\x00', &(0x7f0000000840)='~]\x00', &(0x7f0000000880)='&\x00'], 0x100) clock_gettime(0x6, &(0x7f0000000900)) ioctl$IOC_PR_RESERVE(r0, 0x401070c9, &(0x7f0000000940)={0x3, 0x3, 0x1}) openat$vcs(0xffffffffffffff9c, &(0x7f0000000980), 0xc800, 0x0) syz_io_uring_setup(0x1aa4, &(0x7f00000009c0)={0x0, 0x4771, 0x1, 0x2, 0x1c4}, &(0x7f0000ff2000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000a40), &(0x7f0000000a80)) lseek(r2, 0x2, 0x3) openat(r9, &(0x7f0000000ac0)='./file0\x00', 0x608001, 0x0) ioctl$SIOCGSTAMPNS(0xffffffffffffffff, 0x8907, &(0x7f0000000b80)) 17:10:16 executing program 3: fcntl$notify(0xffffffffffffffff, 0x402, 0x10) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x80801, 0x0) r1 = accept$unix(r0, &(0x7f0000000040)=@abs, &(0x7f00000000c0)=0x6e) r2 = openat$cgroup_ro(r0, &(0x7f0000000100)='devices.list\x00', 0x0, 0x0) recvfrom$unix(r2, &(0x7f0000000140)=""/173, 0xad, 0x40000100, &(0x7f0000000200)=@abs={0x0, 0x0, 0x4e20}, 0x6e) pipe2(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) r4 = dup3(r1, r3, 0x0) r5 = syz_open_dev$char_usb(0xc, 0xb4, 0xffffffff80000000) r6 = syz_mount_image$iso9660(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x9, 0x2, &(0x7f0000001440)=[{&(0x7f0000000340)="e8639aa2fc9241c1e664326c29539a5723da3e85e8ac4485c3c500cb756f567a856804a15c43ac2e38d8c80dcecbae58dabf9516b0ec74302a3cfe34ff7eaa2e826b69a327fa622bbfb3dc23e20ea13976bb6599c04089ad336256c6ca5b619ca68a91c0a6f2c23f39c8be723ea3d7827c7ba981cbcdc9d4cd73c30dedd1616b75f31cc23259f17248d50c4f145ec2674d7eea8ae3bfcc2ed8f53f80a13593438b821aedb362d7d5875c4c5765ba5b7d28e0c79ea5abae486f9bebec87c9bcfb4c5dc4ca94d95b18f212e8c7f15a605e30dc4b5e7a6813896cb8c74d81b9240ca44c01b95c8f7abfe06aece0", 0xec, 0x9}, {&(0x7f0000000440)="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", 0x1000, 0x36}], 0x10000, &(0x7f0000001480)={[{@map_normal}, {@map_acorn}, {@map_normal}, {@map_off}, {@overriderock}], [{@smackfstransmute={'smackfstransmute', 0x3d, '[(:^'}}, {@appraise_type}, {@dont_measure}, {@uid_lt={'uid<', 0xee00}}]}) sendfile(r5, r6, 0x0, 0x1ad) signalfd4(r1, &(0x7f0000001540)={[0x8001]}, 0x8, 0x80800) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000001580)={0x7b, 0x7fffffff, 0x4, 0x2, 0x9}) r7 = openat2(0xffffffffffffff9c, &(0x7f00000015c0)='./file0/file0\x00', &(0x7f0000001600)={0x8000, 0xa1, 0x17}, 0x18) dup2(0xffffffffffffffff, r7) ioctl$INCFS_IOC_CREATE_FILE(r2, 0xc058671e, &(0x7f0000001940)={{'\x00', 0x1}, {0x1000}, 0x31, 0x0, 0x0, &(0x7f0000001640)='./file0/file0\x00', &(0x7f0000001680)='./file0\x00', &(0x7f00000016c0)="c62e43826c23343f896064b597d7fa86c25c7926a5adaec5462a99962dffd39f49375133b017b90e07e3d6cc4ac7bec1e0427339d83299f43367dc702c0f6a862e76f9b2f7b861c4cfc0ed2cb2811a66b6701d2ff7a906b9c8abe33b4d4caaa3c24eab4039752bd068146f68a77c327f47f209ac316b683bd13f64918586f75733571e2dfe3b062ddda92279d1471e325f2c22c825c998ea113bd249", 0x9c, 0x0, &(0x7f0000001780)={0x2, 0x109, {0x0, 0xc, 0xbc, "e29401d6d6b3bbb9aa8f0a19cf68116392549f31384405d6eae9b928f0a95842473221999458ea61f04f18f2a1bb44e2dad7a3b6f4629d91125feba6b87ed989d3d6d0e8d74598a84f6ae66a599c3a7bff2c3051ec38e1e7c074fe771454960650fdecd4eee099bb69206f0a8f0908e1572e3bf6f4ec128a8bfeccc43392938b9f9b88c61b3ead2a0c7d8d2594d529e8d213130a5ba7e4a42bc988fd250dfc9a3c4874c8643fe4dd7c23949220d2bd9994828e269d2da94d989cfa12", 0x40, "fad4d0d2382a664883b2a407d075db34f4a6f1a2c3e521436ad41c944e9942e80b8d5a799050e4182f9eff105b30eab66490cd384498be831c6edad15ca1952a"}, 0xa1, "0ef906fd180c1c9322f80874f1344c5c2d6422ace5b25737045dea23cc409296a8fbed6e9d13d2fa9b49a03af12cf970786b3eb5b22de4e5200aac34a567c847e060a6de729d6dafb4db92e564a51db99c76d9e568ff0469c07c5866b38c0dbacb8909cd2ce9d578d52a42c4bed424f46ec4c3191adc090261c8bfd464adbc972148cd40efc0cfb876ca238186380a76ec7024441129dddfeeea8111ba29e40d8e"}, 0x1b6}) write(0xffffffffffffffff, &(0x7f00000019c0)="1ac5ac66a124aecaa0e950148c6f36fa1870594f153f06b8b6ceb0fe915ee4709681d445ba217a7e80fd7191e119dfa4db70bf13852756095bd2ec041a361ee4531079845b44668d1384844cf49fcb0f7be25e60b01788859908687f7048205cecc2570648f199b700bfc5c4f058e16fa3ac3740e08c95a28ff315f921c0df8190696bbf4a3ec71363293fdc78637f2240f86e494a276fb4716c935b4f5eb66728df94d189906caaf990f0ae70b6bd32f5dc54fd61004e9e4db09824b9aff9cb9628cfc4efa00f6bba411131c0bf618e53336d17176b27905d5871053dfa5179bb608fa98f966fc4ffc2a38c52e2186270dc0060c1dd4cbc59fb89aa", 0xfc) r8 = syz_io_uring_complete(0x0) openat(r8, &(0x7f0000001ac0)='./file0/file0\x00', 0x100, 0x4) fspick(r6, &(0x7f0000001b00)='./file0\x00', 0x0) fcntl$dupfd(r4, 0x0, r5) 17:10:16 executing program 4: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/blk_cgroup', 0x640000, 0x84) r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x6) r2 = dup2(r1, r0) ioctl$KDGKBMODE(r1, 0x4b44, &(0x7f0000000040)) r3 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x3015400) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000080), &(0x7f00000000c0)=0xc) r4 = dup3(r1, r2, 0x80000) ioctl$KDSETKEYCODE(r4, 0x4b4d, &(0x7f0000000100)={0x7fff, 0x80000000}) write$binfmt_aout(r0, &(0x7f0000000140)={{0xcc, 0xc1, 0x18, 0xf4, 0x2d6, 0x8, 0x3d1, 0xfff}, "79fd3ffd1b8c9f9d50339f605d6a7764b1402f08a8ce3f21fa6b01967d6c36d3b0be103a26d2e7932fc785ecc030ff77a6", ['\x00', '\x00']}, 0x251) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r0, {0x1, 0x1}}, './file0\x00'}) ioctl$KDFONTOP_SET_DEF(r5, 0x4b72, &(0x7f0000000800)={0x2, 0x1, 0x20, 0xc, 0xa8, &(0x7f0000000400)="4147b47f65d455602844ee9fb5d1d803d1d2824a71fc18d2b8877518624a4c4a455f5465a33ac528e40c89d2be8dbf837f67578a39a276ba99faee15c1fa87c9af3e40910c4cf4a696863d58797fbe3bc488fdc80a6f62f1694a67972b7d2b49aff3a26349d1946a0d38de2a7c528ade4473b6af63dd1c03ac19e2c8320d544ca0811936e959773f944d864329d5c7bc52a4f232c598c97d3023d262967704a82fc0b0d89e98fe221305f95192e725642cab3626147ece13487ad45da3c2c0ccfd27f92bdf690754585dd87ef26310e25daf53c5517eb56b175ce673cdaa30f43d89325d4be2d531b247cbff27d3267783e8f42594b2824e0fbbe3a36008079c5906101ad75a778a3afcb59c46398f45d45aadab76d29479f0328d202deeeda7fc4ac22d223aee04285c4c4928957766f113317610767ea02af5339c513e0e28f37b8201f67fa0b27be6bfb2b3cde11e36b366c2fb5e3071a41ef66fb07f22139579e46aded10151f0da432bde423afa13068c1880a60f688c5eea8c42957d682930bd34fe2e2751b8cdd7e60f53b614fceeae3b49d6db9550374a430da3e24846702d917c8d071bc66626747691a9c6ff74dcea9581a85658f193a76c130c68eb83f620e70f9caccd6ada59cc3f88d0c5ef95b1f52f7ceae4b746fbd8cc6655832022e6d2567254e8b37740d25fdcaaf27c874de9eb7f256551a7296a9e38d7b8b2f09cf3d4d47cba1051600f97dcb85b694136ecbeeea652bfe976cd46b136ea7e18f1bcbdab3a6b3b084f4f2f51ed3401842e65ef29161194c920140f3478de65414709ed2d499f271e0715ba3addc75ad6e711735d8465b6077cee2d022365eb32cc9650be58b693beac418883f3e517c35566f7a3bad865f3a6762a8c7f5a676b305346cef4741630a9190118fccf80baf6d674e8c14ca6e298e0961c65523c7fbb883e7d721c8d8fc3c3ccdea6d044393700df7e70652dfe51f2a1da58baa1d825bc29ecb68e371b0ffaf6f251dca13259fe041349c5b0320d67208b2852de257f0b6d6e11376bfb70d09f88b9fa7652e87e9bd4a377ba150db8d7070b6aa35525e6e70d932b5fa23a118f026483eed8051bc2e71cf78f6df523cf64dadf5595219ff41346042a3edcd9de290ee53e436a6f7229c29751afd6fa7f238e77665ed0113a21db5ddd94f0f43a87b760d28ad6fa8c3c3c0582ca7f0f1d5793e4d774ad4189fe98811a524eb67e73d67d1396a99e2bcaaf8b43b3eb9a2f307f3ea744e69054fbcb1725af1c3bee917e938cdd7ca6d2e7f8e9a8b281e8282a0b775282b176762663a80b599566c2b45318b9ff7a19b8af229113fc4043e5df7420b5ae170802306f4ba959dd942c9ced5f46ba59cccb91781478c35ea4775e1b8199d530872556cb169d9642611d358817011a6f56e703be4882af0813b3e7cf"}) io_setup(0x7, &(0x7f0000000840)=0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000900)={0xffffffffffffffff}) r8 = open(&(0x7f0000000980)='./file0\x00', 0x210040, 0x41) r9 = open$dir(&(0x7f0000001a40)='./file0\x00', 0x20b7538cbb06c6df, 0x80) r10 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000001ec0), 0xc940) io_submit(r6, 0xa, &(0x7f0000002240)=[&(0x7f00000008c0)={0x0, 0x0, 0x0, 0x7, 0x1e, r4, &(0x7f0000000880)="c014b86eb586d2e93a34aca029c974", 0xf, 0x101, 0x0, 0x0, r2}, &(0x7f00000009c0)={0x0, 0x0, 0x0, 0x8, 0x0, r7, &(0x7f0000000940)="50576a90209567b45e55960453664a6535eb9492021bec1c6481c2d6aad5b96b0c60e046c32b70666fe3d4d3e76ad41b", 0x30, 0x10001, 0x0, 0x0, r8}, &(0x7f0000001a00)={0x0, 0x0, 0x0, 0x6, 0x1, r2, &(0x7f0000000a00)="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", 0x1000, 0x0, 0x0, 0x2, r5}, &(0x7f0000001b40)={0x0, 0x0, 0x0, 0x8, 0x9, r9, &(0x7f0000001a80)="1c59656e1552ea0a806e2d9722bc5d989a5caa1a257ac030d0ecf0bfb3fe1945db3276ff100b07f672b8c91e5b86bb74bde42e7e5171a4f5d941d5eff0b985f5846c5baed642f15bea782b5e56cb4dddd905dbf4efdd444f038b5182a1ce8e3f284aefcae9f6398e70de63a4a9972c1eddd1bfad708dbfbbc15fce8df3b993d6c3ea4c46e0911588be04530923762149fec92d2ed0b86eda1aec2502", 0x9c, 0x8, 0x0, 0x2}, &(0x7f0000001c40)={0x0, 0x0, 0x0, 0x3, 0x2, r3, &(0x7f0000001b80)="74e9cded4191da1f006d567da3db5e333a11f7ce74e032b14fab4e39701d3d8b66142a4bfafe6ea1170a74e9f1290755593a7f468f9975d40568d0c8dca5d12a106fa7f744b3c2e2b06ce5d9aec0a678bf7531e5d526ea859828af0eeee515e73e889c72bd33f0e6ee3e5be9541373f447ad75c083eda594c46c9615e68471283949200e11db4f70192b0f619ed54472d11e341b1af4884f06aa0a16620b", 0x9e, 0x1000, 0x0, 0x3, r5}, &(0x7f0000001d80)={0x0, 0x0, 0x0, 0x5, 0x7f, r5, &(0x7f0000001c80)="15e6a1791e614d5ee7f68f92d9b24c3cdede75f6d9cb023080eaa112cb45080a94dea76c2d917373f1ca4b3e43bfea4b6f7cdef84627a30aec1ee7605521e61f4590d988822818d65e2504a87f94bdc72cfbf627930aa6820cc97094879982409337b12af64c512e2d6db9895a88e0d549ea4299dc779a54369fd55c36c01948a884daa478b7f6fe4ca1a044fd0a5456cbab23b20db69e1861c1992785216fa0570ef5f351b80fd8727155d645bf23d39ad9961b64fd2875ce9a708b6472a5534238fdacd1a6372296daffa364d1377459f66559951497d13829aae695bd67bd0715b44f3f2d33257db68656be9415f5bbdb963cc487882a27", 0xf9, 0x6, 0x0, 0x0, r0}, &(0x7f0000001e80)={0x0, 0x0, 0x0, 0x2, 0x100, r2, &(0x7f0000001dc0)="8c5218d3cd533a29cf8e81028b6fa10a6d52fa5fc79ea5bb0252d79574e36a619dbb0a1dec6cb801e903d97a12a1f32ce5d06b8c706b9d0be61c2a68497bcac89386f45bcbae966d2593a80e3ef9b56aa472d871fc4b05cffb918ab5d8980718618036b8bcddc085df94f3aa89a24a7851f468a8f130221c92543287b2971372ea86071a5772eb7ed3dca4c8d5c473801fdd426e196adc42e1172dcbacd41cd45998a7a04266e440a3faa0df091783a8256835f3a4e386", 0xb7, 0x1, 0x0, 0x0, r5}, &(0x7f0000001fc0)={0x0, 0x0, 0x0, 0x2, 0xce, r10, &(0x7f0000001f00)="dd4eb37e7128401487e1ed53cbb773b6c660daa8dbaa64504ad82b1c58b4171a5846ee545b0d7576611df38b83a03a2994a1b340e7412d26fbb70d058ecceb6acd13b9fa222e160572646a51a47a989ea67e49210a3ebd75395080dd29dd7943ec5bd6f31c58f163d1fd15b002056490ccb3da0adec431979784413074583af2f17a3630", 0x84, 0x3ff, 0x0, 0x2, r2}, &(0x7f0000002100)={0x0, 0x0, 0x0, 0x3, 0x20, r3, &(0x7f0000002000)="ec10971d9a7d7eb3803a9a4d3bdc90c3cd1da42ccb079c5a6d529e3868c8f3476799e9a5c8486cb3196f9ca9bb3a151c951f9bad2b7b20da94c3ed23e251df796e5d084069f4d3f72b36711e94e7db18a35bb604dc919dbc06f89a132f90fd1b9d963c93f8ea99337de7306670c05a0b266f68e1e03c4242cd968bcfb7f463b9a4d14e9d0fadff252f2e478bb266d37bbf74f16f0718b1f3136115dadaba691d4532bd8ccd4a2620a90ab9c315ac0f6f98181e83e5e0cc1a81cfba5e7ef5ad6eeee9816904ee676a46c57bfe0ba9", 0xce, 0x5, 0x0, 0x0, r4}, &(0x7f0000002200)={0x0, 0x0, 0x0, 0x5, 0x6, r4, &(0x7f0000002140)="24113f9fdfb1bffcc45d7f5d1ebe7de05c3fc7f9a4bd128883221787b829915976de40b9392cd1b03b32d2adc0266398de24908faa9ee34022431612b887a635b68003c6e8aa5f9a7fc544b97e15d2bcbcd7867fedce75c1b99edb70cb08ba156d13408fc0d0d26d4c7b68f9588c09d50bc2701e88d53e5633b83ff3661fe9a011f1a774273a92b3f9e0e347a8f27ce38b6e9dba8cec3696a3", 0x99, 0x9, 0x0, 0x5}]) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f00000022c0)={{0x1, 0x1, 0x18, r10}, './file0\x00'}) ioctl$CDROMREADCOOKED(r11, 0x5315, &(0x7f0000002300)) ioctl$sock_ifreq(0xffffffffffffffff, 0x8990, &(0x7f0000002d80)={'ip6gretap0\x00', @ifru_ivalue}) 17:10:16 executing program 5: r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_misc(r0, &(0x7f0000000000)={'syz1', "95f9174666bf734ec7fbe78537b60cded3b0e7203d9793e6cd0d46fea26a2158d7eada44fde0e4360dd82c627fc7d4b15b7a64abfdff11466651cacfd0cf67e6f6c1de4762ef539b46d8f39fb7e527cb08aed3122e9a4de6de3d2e"}, 0x5f) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x110000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x57}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x40020}, 0x4040040) r1 = dup2(r0, r0) sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r1, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000002c0)={&(0x7f00000001c0)={0xd4, 0x0, 0x100, 0x70bd2b, 0x4, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x5}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6d}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x81}}]}, 0xd4}, 0x1, 0x0, 0x0, 0x410}, 0x14) ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000340)={0x0, 0x1, 0x26}) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000740)=0x7f) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000780)={0x0, 0x3, 0x0, 0x80}) setsockopt$bt_hci_HCI_FILTER(r1, 0x0, 0x2, &(0x7f00000007c0)={0x9, [0xffff, 0x7fffffff], 0xff}, 0x10) r2 = ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) ioctl$INCFS_IOC_CREATE_FILE(r2, 0xc058671e, &(0x7f0000000c00)={{}, {0x2}, 0x110, 0x0, 0x0, &(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='./file0\x00', &(0x7f0000000880)="2513a1e6cad149eb6b8e95fec433159c7dce65a037f87da0f6f208afe366fc9c2644e5ba5edc84dab03cb7b245e6d826903988f6cb603666e54e8c2d6b8afe70fb8871f2c405a04cdd2cc2e21531e80ae29d67acdbeaa8503de6e890b3b41fda22b9fcd5dc25f28d64fb650740dff4360337fe4c72d3fcb47c4d512e7025a95981c1d191e96d5a5ba42ee91e2106b461450f79105950929502dd31fa01efd6daa2d24c2b63e8e461dab3252696dc7aec9108977d0cadc2c798da8c0cab65aac666f3812620c8bb810eaad2935ef9893df74271c2202b1aca4a52ba2f125cafaca348adf53f42239ad98f2ea01c89d3f248206d2cb6d7638d85006d22bb041488fccfaee081d9f237620879954ca90bab75d1236b486dd5daef7ddbe984479c6075ac3b8adfaeea9e445e2bdfa9ae4eb444acf1cf6b", 0x135, 0x0, &(0x7f00000009c0)={0x2, 0x18e, {0x1, 0xc, 0x8d, "944254ae8cf1ab75fdedee6f6a2c242bf71db5a4e825c370c78e7d9e491144bb4233e3003499dcae2aa1f36ab016731c9340c5717123839f1fa49aba27e326352805dcccf29209ab65604452a37028c4e4f27e80c48cbdb851fa981126904a91b97ec7d77f6365856c8930dc70bcb7f5825c21b6298a532529623149b46672d8a5814082c36701e4d705f82e04", 0xf4, "865e77e04ca682805a87642683abba7d114bd8b961fffbbdeea4ce0dba64b16ddcf9a6ffdf8dad53beefc6d9d9df1ceffc42dcb85cc2f17ac07419c4401a80646c7ab79b373abb0980da25a03b19a2ca2c4795019637102646d840a5f8fad0a9595a03f1b32cdcc89ba18db07c0807077d88f4b34a7f1c89956e1828983a39e0cdf28264dcc8147d02f70ab156fa607ecc1fa1c3dbb8890b8e411079e82cde0f09ef58cf60ce993a13a6a841e95db8c6568290dcecb657dde17ca37e4bf7df966c1c012c6c057b89d40b9cc729a02f9e944fe3637a08357f82bdf247763de87360c3a188a975e70f406f15d96dc3594c6ba9a137"}, 0x6f, "265f304b1cf096441a6db2b89ab743bac1b473b8d4ba747c56a764ac07d0610d78136ac7e2bfcab295d89e170039ff71780b173f3764109795ab6fcbcf81a1b1dad8b7a7d328b38c054286d9bcc84a645a6f866d36e15d1ba68c10d2257d022bbce2294996a6afe6eb352826d0d2f8"}, 0x209}) ioctl(r2, 0xcb2a, &(0x7f0000000c80)="d207ddc4278a0b36a823075be7fb6aec493f6dd1a6ad99a75b9cd1070a60ab77f5ffdbea42145e74f6cb752b4d38addbf554fb16eb696608c794518bb9450c0a2319c19146854888986f05d0452199a827488cb0bbbffa666c2bae70b0b95db1f086c2f90c3256c55a96b104874b9fcca546103a90908882a3b593a6a2bc43519539e1627f8a843675dfab6f12a866f2c67ed4e6d617796a5095b89566aad6c36c19d4fc275de5a51b8c572b8895eecb3065655ff4e65bfd27921cdfd7b962d7fe78a16f13d4cd4e8b2dcbec85aa2c05000119d91ddc19ffde") sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r1, &(0x7f0000000ec0)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x90, 0x0, 0x20, 0x70bd29, 0x25dfdbfb, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0x8e, 0x1}, {0xc, 0x8f, 0xffffffff}, {0xc}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x3}, {0xc, 0x8f, 0x800}, {0xc, 0x90, 0xe349}}]}, 0x90}, 0x1, 0x0, 0x0, 0x1}, 0x881) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000002140), 0x1, 0x0) sendmsg$NL80211_CMD_DEL_PMK(r3, &(0x7f0000002280)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000002240)={&(0x7f00000021c0)={0x50, 0x0, 0x0, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x40, 0x6e}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}]}, 0x50}}, 0x48012) r4 = dup2(r3, r2) r5 = openat$null(0xffffffffffffff9c, &(0x7f0000002300), 0x800, 0x0) sendmsg$GTP_CMD_GETPDP(r4, &(0x7f0000002400)={&(0x7f00000022c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000023c0)={&(0x7f0000002340)={0x54, 0x0, 0x400, 0x70bd2c, 0x25dfdbff, {}, [@GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_NET_NS_FD={0x8, 0x7, r5}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_I_TEI={0x8, 0x8, 0x1}, @GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x1}, @GTPA_PEER_ADDRESS={0x8, 0x4, @multicast1}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x400) ioctl$F2FS_IOC_RESIZE_FS(r2, 0x4008f510, &(0x7f0000002440)=0x3) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000024c0)={0x80000000, 0x4, 0x1, 'queue1\x00', 0x5}) 17:10:16 executing program 6: fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=@md5={0x1, "5dba869c8036010fc83c214cca4032f4"}, 0x11, 0x0) ioctl$BTRFS_IOC_DEV_REPLACE(0xffffffffffffffff, 0xca289435, &(0x7f0000000080)={0x1, 0xb9a, @start={0x0, 0x0, "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", "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"}, [0xfffffffffffffffc, 0x8, 0x3, 0x100000001, 0xffffffffffffec94, 0xff, 0xecf, 0x7fff, 0x400, 0x5, 0x4, 0x2, 0xffffffffffff7fff, 0xfffffffffffffe00, 0x90, 0x3, 0xffffffff, 0x0, 0x9, 0xffffffffffffffff, 0x101, 0x1ff, 0xffffffffffff8000, 0x0, 0x7, 0x6, 0xb3750d0, 0x8, 0x6, 0x43, 0x4, 0x8, 0x5, 0x4, 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x6, 0x1, 0xf4af777, 0x4, 0x3, 0x7, 0x5, 0x2, 0xffffffff00000001, 0x3, 0x4, 0x401, 0x6000000000000000, 0xffffffff, 0x6, 0x2, 0x7f, 0x401, 0x100000001, 0xffffffff, 0x6, 0x80000001, 0x8, 0xfffffffffffffffd, 0x6, 0x7]}) r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) readv(r0, &(0x7f0000000c40)=[{&(0x7f0000000ac0)=""/74, 0x4a}, {&(0x7f0000000b40)=""/208, 0xd0}], 0x2) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000e00)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000cc0)={0xf0, 0x12, 0x200, 0x70bd2b, 0x25dfdbfc, {0x1d, 0x2, 0xff, 0x4, {0x4e23, 0x4e23, [0x1, 0x1, 0x0, 0x6], [0x93fd, 0xdcd7, 0x1f, 0x9], 0x0, [0x8, 0x6]}, 0x6, 0xfdc7}, [@INET_DIAG_REQ_BYTECODE={0xa2, 0x1, "251826db3e0a013a599840eaaf21905849b90abbc1ec3d9fd96c3642042f910f29f009f5ad79c4e738f398c7a4833a8a14d26181016e889fa76a6007cc315acce512395e0eba1103419eb4122a9e8d268f7423f26b9c8871187386a2f95e27a980ee5b0454ce63642604f70839204c3542349f150f446f28389c275465caeee83957ab2f5928fef7818137ab77826f3fc0bdac5d3f61a390d0105e0cdae1"}]}, 0xf0}, 0x1, 0x0, 0x0, 0x10}, 0x14) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000e40)) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, &(0x7f0000000e80)={0x10}) r1 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000ec0)={0x20002000}) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000f00)) ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000f40)={'hsr0\x00', {0x2, 0x0, @dev}}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000f80)) r2 = socket$netlink(0x10, 0x3, 0x2) r3 = signalfd4(r2, &(0x7f0000001180)={[0x5]}, 0x8, 0x0) write(r3, &(0x7f00000011c0)="0d9fa89d019676f456e8bcbd0f63dc", 0xf) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000001200)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) write(r1, &(0x7f0000001240)="f4eb481fbfe50dde8c15773df48e1de2bde7a764aa5637a8d632e5481065aaea7ff53d6ffe5f8ff4f7bb6525eb657beb65e1be26ed937d4f85d197a7cae846b7bdc958ee9964cb6a0b2488e291bdef53da96f30b12162075dceb3216e87dd93be9a4995cf43d7b15ba6198b7ece6d02e7600f43c687475b93370", 0x7a) r4 = socket$inet6_udp(0xa, 0x2, 0x0) r5 = fcntl$dupfd(r0, 0x406, r4) write$P9_RWSTAT(r5, &(0x7f00000012c0)={0x7, 0x7f, 0x2}, 0x7) 17:10:16 executing program 7: faccessat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x10) r0 = open(&(0x7f0000000040)='./file0/file0\x00', 0x2, 0x21) r1 = open(&(0x7f0000000080)='./file0/file0\x00', 0x240000, 0x48) mount_setattr(0xffffffffffffff9c, &(0x7f00000000c0)='./file0/file0\x00', 0x8900, &(0x7f0000000100)={0x82, 0x5}, 0x20) llistxattr(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000180)=""/245, 0xf5) ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f0000000680)={0x2, 0x0, 0x18, 0x3, 0x1de, &(0x7f0000000280)="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"}) getpeername$unix(r1, &(0x7f00000006c0), &(0x7f0000000740)=0x6e) utime(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0)={0x0, 0x7}) pivot_root(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='./file0\x00') ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000880)={{0x29b, 0x4}, 0x100, './file0\x00'}) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f00000009c0)={'filter\x00', 0xfb, "67d41c46e5060123423903e9bf70186b3898f706680b8ac73c416b3e38391c6a5679b85c96d0f4b0f35349d95dae35626b3d846a18b8982571d25013eb90fb80885c1bf8480d47e5266646d98b4950e8547137388a449a684040488e578c9f50cccdeca025bd724c86cdc20e31c246920ad994a18956d256cbe1017c94ea4bf4c1589402403331578789341295d918aaef3a71202b9871512420e0f15b711649656dc2fac04a84c3ddb186cbf84ad15652546b764f7ed1473082b2d2d1deaca41e27911fb9dd0ce14636b4a1a946ed4b6307571dfb65d689458b623a37b0e6ac67c746706567ec8be9b029c3511356a696448eadf3be81aa8d84fd"}, &(0x7f0000000b00)=0x11f) mkdirat(r0, &(0x7f0000000b40)='./file0/file0\x00', 0x20) ioctl$SNAPSHOT_ALLOC_SWAP_PAGE(r1, 0x80083314, &(0x7f0000000b80)) execveat(r1, &(0x7f0000000bc0)='./file0\x00', &(0x7f0000000c80)=[&(0x7f0000000c00)='filter\x00', &(0x7f0000000c40)='\x00'], &(0x7f0000000e00)=[&(0x7f0000000cc0)='}{\x00', &(0x7f0000000d00)='-]\x00', &(0x7f0000000d40)='filter\x00', &(0x7f0000000d80)='filter\x00', &(0x7f0000000dc0)='filter\x00'], 0x1000) syz_io_uring_setup(0x169, &(0x7f0000000e40)={0x0, 0xc56a, 0x0, 0x1, 0xd9, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000ec0)=0x0, &(0x7f0000000f00)) syz_io_uring_setup(0x5185, &(0x7f0000000f40)={0x0, 0x4f12, 0x1, 0x2, 0x3a9, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000fc0), &(0x7f0000001000)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000001040)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0xffffffff) stat(&(0x7f0000001080)='./file1\x00', &(0x7f00000010c0)) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(0xffffffffffffffff, 0x8010661b, &(0x7f0000001140)) openat(r0, &(0x7f0000001180)='./file0/file0\x00', 0x121201, 0x100) [ 78.826759] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 78.839136] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 78.840723] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 78.841878] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 78.843420] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 78.843562] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 78.847258] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 78.849002] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 78.850488] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 78.850773] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 78.851960] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 78.857035] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 78.864913] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 78.866318] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 78.868005] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 78.869290] Bluetooth: hci2: HCI_REQ-0x0c1a [ 78.873917] Bluetooth: hci1: HCI_REQ-0x0c1a [ 78.875492] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 78.888972] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 78.890746] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 78.891919] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 78.897763] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 78.898810] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 78.905293] Bluetooth: hci0: HCI_REQ-0x0c1a [ 78.913758] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 78.915361] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 78.916757] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 78.935867] Bluetooth: hci4: HCI_REQ-0x0c1a [ 78.965129] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 78.969059] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 78.970796] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 78.971905] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 78.976956] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 78.978367] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 78.982402] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 78.997332] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 78.998372] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 79.001161] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 79.002665] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 79.014001] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 79.017638] Bluetooth: hci3: HCI_REQ-0x0c1a [ 79.024330] Bluetooth: hci5: HCI_REQ-0x0c1a [ 80.902010] Bluetooth: hci2: command 0x0409 tx timeout [ 80.902955] Bluetooth: hci1: command 0x0409 tx timeout [ 80.965584] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 80.965621] Bluetooth: hci4: command 0x0409 tx timeout [ 80.966931] Bluetooth: hci0: command 0x0409 tx timeout [ 80.967070] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 81.030073] Bluetooth: hci3: command 0x0409 tx timeout [ 81.093655] Bluetooth: hci5: command 0x0409 tx timeout [ 82.960872] Bluetooth: hci1: command 0x041b tx timeout [ 82.961374] Bluetooth: hci2: command 0x041b tx timeout [ 83.013621] Bluetooth: hci0: command 0x041b tx timeout [ 83.014565] Bluetooth: hci4: command 0x041b tx timeout [ 83.077597] Bluetooth: hci3: command 0x041b tx timeout [ 83.141545] Bluetooth: hci5: command 0x041b tx timeout [ 84.379297] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 84.388580] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 84.390215] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 84.395052] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 84.396107] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 84.426290] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 84.427096] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 84.428840] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 84.430382] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 84.431897] Bluetooth: hci7: HCI_REQ-0x0c1a [ 84.448028] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 84.449952] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 84.450707] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 84.453578] Bluetooth: hci6: HCI_REQ-0x0c1a [ 84.997609] Bluetooth: hci2: command 0x040f tx timeout [ 84.997626] Bluetooth: hci1: command 0x040f tx timeout [ 85.061565] Bluetooth: hci4: command 0x040f tx timeout [ 85.061604] Bluetooth: hci0: command 0x040f tx timeout [ 85.125596] Bluetooth: hci3: command 0x040f tx timeout [ 85.189607] Bluetooth: hci5: command 0x040f tx timeout [ 86.469632] Bluetooth: hci6: command 0x0409 tx timeout [ 86.470274] Bluetooth: hci7: command 0x0409 tx timeout [ 87.045602] Bluetooth: hci2: command 0x0419 tx timeout [ 87.046809] Bluetooth: hci1: command 0x0419 tx timeout [ 87.109617] Bluetooth: hci4: command 0x0419 tx timeout [ 87.110384] Bluetooth: hci0: command 0x0419 tx timeout [ 87.173690] Bluetooth: hci3: command 0x0419 tx timeout [ 87.237714] Bluetooth: hci5: command 0x0419 tx timeout [ 88.517610] Bluetooth: hci7: command 0x041b tx timeout [ 88.518157] Bluetooth: hci6: command 0x041b tx timeout [ 90.565625] Bluetooth: hci6: command 0x040f tx timeout [ 90.566414] Bluetooth: hci7: command 0x040f tx timeout [ 92.613675] Bluetooth: hci7: command 0x0419 tx timeout [ 92.614478] Bluetooth: hci6: command 0x0419 tx timeout 17:11:08 executing program 2: syz_mount_image$tmpfs(&(0x7f0000000ac0), &(0x7f0000000b00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001b80)={[{@huge_advise}, {@mpol={'mpol', 0x3d, {'interleave', '', @val={0x3a, [0x0]}}}}]}) umount2(&(0x7f0000000000)='./file0\x00', 0x2) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000a00)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000640)=""/239, 0xef}, {&(0x7f0000000740)=""/245, 0xf5}, {&(0x7f0000000840)=""/19, 0x13}, {&(0x7f0000000880)=""/49, 0x31}, {&(0x7f0000000b40)=""/4096, 0x1000}], 0x5, &(0x7f0000000940)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}], 0x1, 0x61, &(0x7f0000000a40)={0x77359400}) r1 = getgid() r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000040)=0x4156, 0x4) sendmmsg$inet(r2, &(0x7f0000002a00)=[{{&(0x7f0000000000)={0x2, 0x4e21}, 0x10, 0x0}}], 0x1, 0x0) poll(&(0x7f0000000100)=[{r2}], 0x1, 0x0) write$binfmt_elf32(r2, &(0x7f00000000c0)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0x1, 0x0, 0xb0, 0x0, 0x3, 0x3, 0x41f0, 0x67, 0x38, 0x12b, 0x0, 0x7, 0x20, 0x1, 0x3ff, 0x0, 0x7fff}, [{0x4, 0x4, 0x81, 0x101, 0x9, 0x8, 0xffffffff, 0x8}, {0x6, 0x3, 0xa67, 0x1, 0x80, 0x6, 0x400, 0x2}], "f6dac0d1dfbd7ce456b89cc944898a2dc8eaf45315f26a9cba4a04c4c1d7e1563e32de7950ce14e21d265ab8e6b347e908d9b54d834a0fc334aa978c88075638ede341688e09f59cd2330698ba6ef9e4ed7c090c7b11da09b462284c06bf455978d3157d0b92d17515f4024a5a1661d5c75e92c77ce3a60f389bc84a33eea8a89aa66d82d2d792be92f7a09ae5ddc43bd64f40e5dcfad0ff210c8f48454cb3117949bdea2d7ab35948014e43e51c3f7c95a77bbd058b05605f8515bcd7", ['\x00', '\x00']}, 0x335) setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000001bc0)={{}, {0x1, 0x4}, [{0x2, 0x1, 0xee00}, {0x2, 0x4, 0xee01}, {0x2, 0x4, r0}], {0x4, 0x3}, [{0x8, 0x6}, {0x8, 0x0, 0xee01}, {0x8, 0x3, r1}], {}, {0x20, 0x5}}, 0x54, 0x2) [ 129.644374] tmpfs: Unsupported parameter 'huge' [ 129.662171] tmpfs: Unsupported parameter 'huge' 17:11:08 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) fcntl$notify(r0, 0x402, 0x80000030) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000080)=""/4096) 17:11:08 executing program 2: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x11, 0xffffffffffffffff, 0xa015000) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="2c7766646e6f3d014f29ef99ad8b2ee6ab88d3ddf9f64fb3263bd7d202acf75f549842835dcf4ecacd3bf6ef28ae3dc96c80ff23", @ANYRESHEX, @ANYBLOB=',\x00']) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xc0000008}) epoll_wait(0xffffffffffffffff, &(0x7f0000000300)=[{}, {}, {}], 0x3, 0x5) fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f0000000180)=']{\x00', 0x0, r0) acct(&(0x7f00000001c0)='./file1\x00') r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write$binfmt_aout(r2, &(0x7f0000001180)=ANY=[], 0x220) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(0xffffffffffffffff, 0x810c9365, &(0x7f0000000340)={{0x101, 0x7}, 0x100, './file1\x00'}) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000}, 0x0, 0xffffffffffffffff, r3, 0x0) r4 = fsopen(&(0x7f0000000040)='rpc_pipefs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r4, 0x6, 0x0, 0x0, 0x0) fsmount(r4, 0x0, 0x0) [ 129.912953] loop2: detected capacity change from 0 to 40 [ 129.932039] audit: type=1400 audit(1664125868.567:7): avc: denied { open } for pid=3708 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 129.933543] audit: type=1400 audit(1664125868.569:8): avc: denied { kernel } for pid=3708 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 129.953066] ------------[ cut here ]------------ [ 129.953088] [ 129.953091] ====================================================== [ 129.953094] WARNING: possible circular locking dependency detected [ 129.953098] 6.0.0-rc6-next-20220923 #1 Not tainted [ 129.953105] ------------------------------------------------------ [ 129.953108] syz-executor.2/3710 is trying to acquire lock: [ 129.953115] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 129.953156] [ 129.953156] but task is already holding lock: [ 129.953159] ffff88800f1ae420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 129.953188] [ 129.953188] which lock already depends on the new lock. [ 129.953188] [ 129.953191] [ 129.953191] the existing dependency chain (in reverse order) is: [ 129.953194] [ 129.953194] -> #3 (&ctx->lock){....}-{2:2}: [ 129.953208] _raw_spin_lock+0x2a/0x40 [ 129.953227] __perf_event_task_sched_out+0x53b/0x18d0 [ 129.953239] __schedule+0xedd/0x2470 [ 129.953253] schedule+0xda/0x1b0 [ 129.953265] exit_to_user_mode_prepare+0x114/0x1a0 [ 129.953277] syscall_exit_to_user_mode+0x19/0x40 [ 129.953290] do_syscall_64+0x48/0x90 [ 129.953306] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.953319] [ 129.953319] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 129.953332] _raw_spin_lock_nested+0x30/0x40 [ 129.953350] raw_spin_rq_lock_nested+0x1e/0x30 [ 129.953364] task_fork_fair+0x63/0x4d0 [ 129.953381] sched_cgroup_fork+0x3d0/0x540 [ 129.953395] copy_process+0x4183/0x6e20 [ 129.953406] kernel_clone+0xe7/0x890 [ 129.953415] user_mode_thread+0xad/0xf0 [ 129.953425] rest_init+0x24/0x250 [ 129.953436] arch_call_rest_init+0xf/0x14 [ 129.953455] start_kernel+0x4c1/0x4e6 [ 129.953470] secondary_startup_64_no_verify+0xe0/0xeb [ 129.953484] [ 129.953484] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 129.953500] _raw_spin_lock_irqsave+0x39/0x60 [ 129.953521] try_to_wake_up+0xab/0x1930 [ 129.953534] up+0x75/0xb0 [ 129.953548] __up_console_sem+0x6e/0x80 [ 129.953571] console_unlock+0x46a/0x590 [ 129.953586] vprintk_emit+0x1bd/0x560 [ 129.953602] vprintk+0x84/0xa0 [ 129.953618] _printk+0xba/0xf1 [ 129.953630] kauditd_hold_skb.cold+0x3f/0x4e [ 129.953646] kauditd_send_queue+0x233/0x290 [ 129.953661] kauditd_thread+0x5da/0x9a0 [ 129.953675] kthread+0x2ed/0x3a0 [ 129.953690] ret_from_fork+0x22/0x30 [ 129.953702] [ 129.953702] -> #0 ((console_sem).lock){....}-{2:2}: [ 129.953716] __lock_acquire+0x2a02/0x5e70 [ 129.953733] lock_acquire+0x1a2/0x530 [ 129.953748] _raw_spin_lock_irqsave+0x39/0x60 [ 129.953766] down_trylock+0xe/0x70 [ 129.953780] __down_trylock_console_sem+0x3b/0xd0 [ 129.953796] vprintk_emit+0x16b/0x560 [ 129.953812] vprintk+0x84/0xa0 [ 129.953827] _printk+0xba/0xf1 [ 129.953837] report_bug.cold+0x72/0xab [ 129.953853] handle_bug+0x3c/0x70 [ 129.953869] exc_invalid_op+0x14/0x50 [ 129.953885] asm_exc_invalid_op+0x16/0x20 [ 129.953896] group_sched_out.part.0+0x2c7/0x460 [ 129.953907] ctx_sched_out+0x8f1/0xc10 [ 129.953917] __perf_event_task_sched_out+0x6d0/0x18d0 [ 129.953929] __schedule+0xedd/0x2470 [ 129.953942] schedule+0xda/0x1b0 [ 129.953955] exit_to_user_mode_prepare+0x114/0x1a0 [ 129.953965] syscall_exit_to_user_mode+0x19/0x40 [ 129.953977] do_syscall_64+0x48/0x90 [ 129.953993] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.954005] [ 129.954005] other info that might help us debug this: [ 129.954005] [ 129.954008] Chain exists of: [ 129.954008] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 129.954008] [ 129.954022] Possible unsafe locking scenario: [ 129.954022] [ 129.954025] CPU0 CPU1 [ 129.954027] ---- ---- [ 129.954030] lock(&ctx->lock); [ 129.954035] lock(&rq->__lock); [ 129.954042] lock(&ctx->lock); [ 129.954048] lock((console_sem).lock); [ 129.954054] [ 129.954054] *** DEADLOCK *** [ 129.954054] [ 129.954056] 2 locks held by syz-executor.2/3710: [ 129.954062] #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 129.954091] #1: ffff88800f1ae420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 129.954118] [ 129.954118] stack backtrace: [ 129.954121] CPU: 1 PID: 3710 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1 [ 129.954133] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 129.954142] Call Trace: [ 129.954145] [ 129.954149] dump_stack_lvl+0x8b/0xb3 [ 129.954167] check_noncircular+0x263/0x2e0 [ 129.954184] ? format_decode+0x26c/0xb50 [ 129.954200] ? print_circular_bug+0x450/0x450 [ 129.954217] ? enable_ptr_key_workfn+0x20/0x20 [ 129.954233] ? format_decode+0x26c/0xb50 [ 129.954250] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 129.954267] __lock_acquire+0x2a02/0x5e70 [ 129.954289] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 129.954311] lock_acquire+0x1a2/0x530 [ 129.954327] ? down_trylock+0xe/0x70 [ 129.954344] ? lock_release+0x750/0x750 [ 129.954364] ? vprintk+0x84/0xa0 [ 129.954381] _raw_spin_lock_irqsave+0x39/0x60 [ 129.954400] ? down_trylock+0xe/0x70 [ 129.954416] down_trylock+0xe/0x70 [ 129.954431] ? vprintk+0x84/0xa0 [ 129.954447] __down_trylock_console_sem+0x3b/0xd0 [ 129.954464] vprintk_emit+0x16b/0x560 [ 129.954483] vprintk+0x84/0xa0 [ 129.954500] _printk+0xba/0xf1 [ 129.954511] ? record_print_text.cold+0x16/0x16 [ 129.954526] ? report_bug.cold+0x66/0xab [ 129.954544] ? group_sched_out.part.0+0x2c7/0x460 [ 129.954555] report_bug.cold+0x72/0xab [ 129.954573] handle_bug+0x3c/0x70 [ 129.954590] exc_invalid_op+0x14/0x50 [ 129.954607] asm_exc_invalid_op+0x16/0x20 [ 129.954620] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 129.954634] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 129.954645] RSP: 0018:ffff88803da87c48 EFLAGS: 00010006 [ 129.954654] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 129.954662] RDX: ffff88800f1d5040 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 129.954670] RBP: ffff88803da88000 R08: 0000000000000005 R09: 0000000000000001 [ 129.954677] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff88800f1ae400 [ 129.954685] R13: ffff88806cf3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 129.954696] ? group_sched_out.part.0+0x2c7/0x460 [ 129.954709] ? group_sched_out.part.0+0x2c7/0x460 [ 129.954722] ctx_sched_out+0x8f1/0xc10 [ 129.954735] __perf_event_task_sched_out+0x6d0/0x18d0 [ 129.954750] ? lock_is_held_type+0xd7/0x130 [ 129.954763] ? __perf_cgroup_move+0x160/0x160 [ 129.954775] ? set_next_entity+0x304/0x550 [ 129.954792] ? update_curr+0x267/0x740 [ 129.954811] ? lock_is_held_type+0xd7/0x130 [ 129.954824] __schedule+0xedd/0x2470 [ 129.954840] ? io_schedule_timeout+0x150/0x150 [ 129.954856] ? rcu_read_lock_sched_held+0x3e/0x80 [ 129.954876] schedule+0xda/0x1b0 [ 129.954891] exit_to_user_mode_prepare+0x114/0x1a0 [ 129.954903] syscall_exit_to_user_mode+0x19/0x40 [ 129.954916] do_syscall_64+0x48/0x90 [ 129.954933] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 129.954946] RIP: 0033:0x7f1f5e4a7b19 [ 129.954954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 129.954964] RSP: 002b:00007f1f5ba1d218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 129.954975] RAX: 0000000000000001 RBX: 00007f1f5e5baf68 RCX: 00007f1f5e4a7b19 [ 129.954983] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1f5e5baf6c [ 129.954990] RBP: 00007f1f5e5baf60 R08: 000000000000000e R09: 0000000000000000 [ 129.954997] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f1f5e5baf6c [ 129.955004] R13: 00007fff1c8c461f R14: 00007f1f5ba1d300 R15: 0000000000022000 [ 129.955017] [ 130.011081] WARNING: CPU: 1 PID: 3710 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 130.011757] Modules linked in: [ 130.011997] CPU: 1 PID: 3710 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1 [ 130.012578] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 130.013395] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 130.013816] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 130.015128] RSP: 0018:ffff88803da87c48 EFLAGS: 00010006 [ 130.015519] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 130.016034] RDX: ffff88800f1d5040 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 130.016558] RBP: ffff88803da88000 R08: 0000000000000005 R09: 0000000000000001 [ 130.017073] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff88800f1ae400 [ 130.017604] R13: ffff88806cf3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 130.018127] FS: 00007f1f5ba1d700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 130.018713] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.019143] CR2: 00007fd4cd0428e0 CR3: 000000003f01c000 CR4: 0000000000350ee0 [ 130.019665] Call Trace: [ 130.019866] [ 130.020039] ctx_sched_out+0x8f1/0xc10 [ 130.020333] __perf_event_task_sched_out+0x6d0/0x18d0 [ 130.020720] ? lock_is_held_type+0xd7/0x130 [ 130.021044] ? __perf_cgroup_move+0x160/0x160 [ 130.021380] ? set_next_entity+0x304/0x550 [ 130.021705] ? update_curr+0x267/0x740 [ 130.022000] ? lock_is_held_type+0xd7/0x130 [ 130.022324] __schedule+0xedd/0x2470 [ 130.022606] ? io_schedule_timeout+0x150/0x150 [ 130.022949] ? rcu_read_lock_sched_held+0x3e/0x80 [ 130.023314] schedule+0xda/0x1b0 [ 130.023571] exit_to_user_mode_prepare+0x114/0x1a0 [ 130.023936] syscall_exit_to_user_mode+0x19/0x40 [ 130.024291] do_syscall_64+0x48/0x90 [ 130.024575] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 130.024955] RIP: 0033:0x7f1f5e4a7b19 [ 130.025234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 130.026547] RSP: 002b:00007f1f5ba1d218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 130.027099] RAX: 0000000000000001 RBX: 00007f1f5e5baf68 RCX: 00007f1f5e4a7b19 [ 130.027620] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f1f5e5baf6c [ 130.028136] RBP: 00007f1f5e5baf60 R08: 000000000000000e R09: 0000000000000000 [ 130.028663] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f1f5e5baf6c [ 130.029182] R13: 00007fff1c8c461f R14: 00007f1f5ba1d300 R15: 0000000000022000 [ 130.029708] [ 130.029883] irq event stamp: 1590 [ 130.030136] hardirqs last enabled at (1589): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 130.030811] hardirqs last disabled at (1590): [] __schedule+0x1225/0x2470 [ 130.031417] softirqs last enabled at (1124): [] __irq_exit_rcu+0x11b/0x180 [ 130.032037] softirqs last disabled at (1089): [] __irq_exit_rcu+0x11b/0x180 [ 130.032659] ---[ end trace 0000000000000000 ]--- [ 130.370049] loop2: detected capacity change from 0 to 40 [ 130.374152] 9pnet_fd: Insufficient options for proto=fd [ 130.376849] Process accounting resumed [ 130.441533] Process accounting resumed 17:11:09 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000006c0), r1) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000080), r1) sendmsg$NLBL_MGMT_C_LISTDEF(r3, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="9c0706436258ac7a12be3df1cbf3b2b98868fdab2d96af92b116e0fe9e2bc16a7b4515fa660f23fe08a84108ffd5d86bd989346f29e860ef752b61fdae5ec88765b01096c4b2bb5455142d0b2dec314104e6aa0001048850ff78688b43fdd5df821c34078e53d75158b418dd0479bd880e72fc41af67f974d4ea70bcc9c4f1e21e"], 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x4) sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000700)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01060000000400000000060000040000010023285d001400050000000000000000000000ffffe0000002"], 0x30}}, 0x0) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), r5) [ 130.484206] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. [ 130.495237] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'. 17:11:09 executing program 2: gettid() gettid() perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r1 = getpid() r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101002, 0x0) pwrite64(r2, &(0x7f00000006c0)='y', 0x1, 0x80000) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x81, 0x7, 0x36, 0xff, 0x0, 0x4, 0xa3a8e2fa2ab65c0, 0x9, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x10000, 0x1, @perf_config_ext={0x2000000006, 0x2}, 0x48646, 0x100, 0x7, 0x2, 0xffffffff, 0x9, 0xb, 0x0, 0x2, 0x0, 0x8000}, r1, 0xffffffffffffffff, r2, 0x3) write(r0, &(0x7f0000000080)="01", 0x41030) 17:11:09 executing program 2: r0 = syz_mount_image$nfs(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x3, 0x0, 0x1881840, 0x0) lsetxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x8, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101002, 0x0) pwrite64(r1, &(0x7f00000006c0)='y', 0x1, 0x80000) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) 17:11:09 executing program 2: ioctl$SNAPSHOT_S2RAM(0xffffffffffffffff, 0x330b) ioctl$SNAPSHOT_ATOMIC_RESTORE(0xffffffffffffffff, 0x3304) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100), 0x8100, 0x0) r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x7fff, 0x40000) ioctl$SNAPSHOT_SET_SWAP_AREA(r0, 0x400c330d, &(0x7f0000000040)={0x8}) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000080)) sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000}, 0xc, 0x0}, 0x0) openat$cgroup_procs(r0, &(0x7f00000000c0)='cgroup.procs\x00', 0x2, 0x0) 17:11:09 executing program 2: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, &(0x7f0000000000)) connect$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x40, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x1f, 0x2}, 0xe) bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x5, @any, 0x2, 0x1}, 0xe) [ 130.855848] loop3: detected capacity change from 0 to 8 [ 130.876814] loop3: detected capacity change from 0 to 8 [ 131.356219] audit: type=1400 audit(1664125869.992:9): avc: denied { create } for pid=3846 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 VM DIAGNOSIS: 17:11:08 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=00007f90a639b000 RCX=0000000000000000 RDX=ffff888019fad040 RSI=ffffffff815a38fc RDI=ffff88800ea4bdd0 RBP=ffff88800ea4bdd0 RSP=ffff88803fcffa58 R8 =0000000000000006 R9 =00007f90a639a000 R10=00007f90a639b000 R11=0000000000000001 R12=00007f90a639a000 R13=00007f90a639a000 R14=ffff88800ea4be40 R15=00007f90a639a000 RIP=ffffffff81460b27 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f90a68926f4 CR3=000000000e3a4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f90a68a1470 00007f90a68a0f20 YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 756e20796d6d7564 20736e6f6974706f YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 73253d656d616e6c 6165722073253d73 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff88803da87698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000020 R11=0000000000000001 R12=0000000000000020 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0 RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1f5ba1d700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd4cd0428e0 CR3=000000003f01c000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 ff00000000ff0000 00000000000000ff YMM01=0000000000000000 0000000000000000 2525252525252525 2525252525252525 YMM02=0000000000000000 0000000000000000 00007f1f5e58e7e0 00007f1f5e58e7c0 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000