Warning: Permanently added '[localhost]:28880' (ECDSA) to the list of known hosts. 2022/09/26 23:11:45 fuzzer started 2022/09/26 23:11:45 dialing manager at localhost:38881 syzkaller login: [ 36.100014] cgroup: Unknown subsys name 'net' [ 36.205902] cgroup: Unknown subsys name 'rlimit' 2022/09/26 23:11:59 syscalls: 2215 2022/09/26 23:11:59 code coverage: enabled 2022/09/26 23:11:59 comparison tracing: enabled 2022/09/26 23:11:59 extra coverage: enabled 2022/09/26 23:11:59 setuid sandbox: enabled 2022/09/26 23:11:59 namespace sandbox: enabled 2022/09/26 23:11:59 Android sandbox: enabled 2022/09/26 23:11:59 fault injection: enabled 2022/09/26 23:11:59 leak checking: enabled 2022/09/26 23:11:59 net packet injection: enabled 2022/09/26 23:11:59 net device setup: enabled 2022/09/26 23:11:59 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/26 23:11:59 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/26 23:11:59 USB emulation: enabled 2022/09/26 23:11:59 hci packet injection: enabled 2022/09/26 23:11:59 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923) 2022/09/26 23:11:59 802.15.4 emulation: enabled 2022/09/26 23:11:59 fetching corpus: 50, signal 27228/29029 (executing program) 2022/09/26 23:12:00 fetching corpus: 100, signal 38564/41990 (executing program) 2022/09/26 23:12:00 fetching corpus: 150, signal 46874/51827 (executing program) 2022/09/26 23:12:00 fetching corpus: 200, signal 55943/62279 (executing program) 2022/09/26 23:12:00 fetching corpus: 250, signal 59971/67715 (executing program) 2022/09/26 23:12:00 fetching corpus: 300, signal 62334/71535 (executing program) 2022/09/26 23:12:00 fetching corpus: 350, signal 67757/78215 (executing program) 2022/09/26 23:12:00 fetching corpus: 400, signal 71674/83415 (executing program) 2022/09/26 23:12:01 fetching corpus: 450, signal 73610/86667 (executing program) 2022/09/26 23:12:01 fetching corpus: 500, signal 77479/91671 (executing program) 2022/09/26 23:12:01 fetching corpus: 550, signal 81124/96460 (executing program) 2022/09/26 23:12:01 fetching corpus: 600, signal 83523/100001 (executing program) 2022/09/26 23:12:01 fetching corpus: 650, signal 85565/103204 (executing program) 2022/09/26 23:12:01 fetching corpus: 700, signal 90626/109106 (executing program) 2022/09/26 23:12:01 fetching corpus: 750, signal 92227/111875 (executing program) 2022/09/26 23:12:01 fetching corpus: 800, signal 93653/114451 (executing program) 2022/09/26 23:12:02 fetching corpus: 850, signal 96489/118268 (executing program) 2022/09/26 23:12:02 fetching corpus: 900, signal 100001/122561 (executing program) 2022/09/26 23:12:02 fetching corpus: 950, signal 101407/124986 (executing program) 2022/09/26 23:12:02 fetching corpus: 1000, signal 103431/127962 (executing program) 2022/09/26 23:12:02 fetching corpus: 1050, signal 105323/130812 (executing program) 2022/09/26 23:12:02 fetching corpus: 1100, signal 106313/132856 (executing program) 2022/09/26 23:12:02 fetching corpus: 1150, signal 108492/135911 (executing program) 2022/09/26 23:12:02 fetching corpus: 1200, signal 109833/138238 (executing program) 2022/09/26 23:12:02 fetching corpus: 1250, signal 111862/141096 (executing program) 2022/09/26 23:12:03 fetching corpus: 1300, signal 113354/143464 (executing program) 2022/09/26 23:12:03 fetching corpus: 1350, signal 115069/145998 (executing program) 2022/09/26 23:12:03 fetching corpus: 1400, signal 117462/149031 (executing program) 2022/09/26 23:12:03 fetching corpus: 1450, signal 120002/152152 (executing program) 2022/09/26 23:12:03 fetching corpus: 1500, signal 121417/154390 (executing program) 2022/09/26 23:12:03 fetching corpus: 1550, signal 122695/156480 (executing program) 2022/09/26 23:12:03 fetching corpus: 1600, signal 123414/158147 (executing program) 2022/09/26 23:12:03 fetching corpus: 1650, signal 124565/160087 (executing program) 2022/09/26 23:12:03 fetching corpus: 1700, signal 125330/161736 (executing program) 2022/09/26 23:12:04 fetching corpus: 1750, signal 127072/164152 (executing program) 2022/09/26 23:12:04 fetching corpus: 1800, signal 130608/167826 (executing program) 2022/09/26 23:12:04 fetching corpus: 1850, signal 132023/169953 (executing program) 2022/09/26 23:12:04 fetching corpus: 1900, signal 133043/171707 (executing program) 2022/09/26 23:12:04 fetching corpus: 1950, signal 134009/173469 (executing program) 2022/09/26 23:12:04 fetching corpus: 2000, signal 135018/175178 (executing program) 2022/09/26 23:12:04 fetching corpus: 2050, signal 135885/176796 (executing program) 2022/09/26 23:12:04 fetching corpus: 2100, signal 137188/178716 (executing program) 2022/09/26 23:12:04 fetching corpus: 2150, signal 138913/180894 (executing program) 2022/09/26 23:12:05 fetching corpus: 2200, signal 140305/182856 (executing program) 2022/09/26 23:12:05 fetching corpus: 2250, signal 142042/184919 (executing program) 2022/09/26 23:12:05 fetching corpus: 2300, signal 143073/186584 (executing program) 2022/09/26 23:12:05 fetching corpus: 2350, signal 144074/188191 (executing program) 2022/09/26 23:12:05 fetching corpus: 2400, signal 145095/189732 (executing program) 2022/09/26 23:12:05 fetching corpus: 2450, signal 146039/191248 (executing program) 2022/09/26 23:12:05 fetching corpus: 2500, signal 147277/192956 (executing program) 2022/09/26 23:12:05 fetching corpus: 2550, signal 148265/194545 (executing program) 2022/09/26 23:12:05 fetching corpus: 2600, signal 149162/196031 (executing program) 2022/09/26 23:12:06 fetching corpus: 2650, signal 150705/197909 (executing program) 2022/09/26 23:12:06 fetching corpus: 2700, signal 151605/199338 (executing program) 2022/09/26 23:12:06 fetching corpus: 2750, signal 152578/200818 (executing program) 2022/09/26 23:12:06 fetching corpus: 2800, signal 153220/202084 (executing program) 2022/09/26 23:12:06 fetching corpus: 2850, signal 154167/203586 (executing program) 2022/09/26 23:12:06 fetching corpus: 2900, signal 154872/204872 (executing program) 2022/09/26 23:12:06 fetching corpus: 2950, signal 155432/206084 (executing program) 2022/09/26 23:12:06 fetching corpus: 3000, signal 156179/207385 (executing program) 2022/09/26 23:12:07 fetching corpus: 3050, signal 159024/209852 (executing program) 2022/09/26 23:12:07 fetching corpus: 3100, signal 159795/211056 (executing program) 2022/09/26 23:12:07 fetching corpus: 3150, signal 160632/212335 (executing program) 2022/09/26 23:12:07 fetching corpus: 3200, signal 161790/213828 (executing program) 2022/09/26 23:12:07 fetching corpus: 3250, signal 162798/215143 (executing program) 2022/09/26 23:12:07 fetching corpus: 3300, signal 164055/216633 (executing program) 2022/09/26 23:12:07 fetching corpus: 3350, signal 165776/218315 (executing program) 2022/09/26 23:12:07 fetching corpus: 3400, signal 166217/219311 (executing program) 2022/09/26 23:12:08 fetching corpus: 3450, signal 166627/220296 (executing program) 2022/09/26 23:12:08 fetching corpus: 3500, signal 167537/221549 (executing program) 2022/09/26 23:12:08 fetching corpus: 3550, signal 168696/222848 (executing program) 2022/09/26 23:12:08 fetching corpus: 3600, signal 169495/223987 (executing program) 2022/09/26 23:12:08 fetching corpus: 3650, signal 171371/225608 (executing program) 2022/09/26 23:12:08 fetching corpus: 3700, signal 172237/226740 (executing program) 2022/09/26 23:12:08 fetching corpus: 3750, signal 173254/227936 (executing program) 2022/09/26 23:12:08 fetching corpus: 3800, signal 173914/228994 (executing program) 2022/09/26 23:12:09 fetching corpus: 3850, signal 174746/230086 (executing program) 2022/09/26 23:12:09 fetching corpus: 3900, signal 175474/231123 (executing program) 2022/09/26 23:12:09 fetching corpus: 3950, signal 176021/232071 (executing program) 2022/09/26 23:12:09 fetching corpus: 4000, signal 176565/233030 (executing program) 2022/09/26 23:12:09 fetching corpus: 4050, signal 176967/233908 (executing program) 2022/09/26 23:12:09 fetching corpus: 4100, signal 177814/234969 (executing program) 2022/09/26 23:12:09 fetching corpus: 4150, signal 178637/235978 (executing program) 2022/09/26 23:12:09 fetching corpus: 4200, signal 179288/236929 (executing program) 2022/09/26 23:12:09 fetching corpus: 4250, signal 179679/237753 (executing program) 2022/09/26 23:12:10 fetching corpus: 4300, signal 180765/238837 (executing program) 2022/09/26 23:12:10 fetching corpus: 4350, signal 181921/239920 (executing program) 2022/09/26 23:12:10 fetching corpus: 4400, signal 182559/240837 (executing program) 2022/09/26 23:12:10 fetching corpus: 4450, signal 183156/241714 (executing program) 2022/09/26 23:12:10 fetching corpus: 4500, signal 183920/242617 (executing program) 2022/09/26 23:12:10 fetching corpus: 4550, signal 184826/243546 (executing program) 2022/09/26 23:12:10 fetching corpus: 4600, signal 185188/244357 (executing program) 2022/09/26 23:12:10 fetching corpus: 4650, signal 185489/245104 (executing program) 2022/09/26 23:12:10 fetching corpus: 4700, signal 186233/245954 (executing program) 2022/09/26 23:12:11 fetching corpus: 4750, signal 187043/246843 (executing program) 2022/09/26 23:12:11 fetching corpus: 4800, signal 187564/247609 (executing program) 2022/09/26 23:12:11 fetching corpus: 4850, signal 188003/248369 (executing program) 2022/09/26 23:12:11 fetching corpus: 4900, signal 188418/249093 (executing program) 2022/09/26 23:12:11 fetching corpus: 4950, signal 188632/249765 (executing program) 2022/09/26 23:12:11 fetching corpus: 5000, signal 189357/250616 (executing program) 2022/09/26 23:12:11 fetching corpus: 5050, signal 190476/251525 (executing program) 2022/09/26 23:12:11 fetching corpus: 5100, signal 191144/252326 (executing program) 2022/09/26 23:12:11 fetching corpus: 5150, signal 191774/253198 (executing program) 2022/09/26 23:12:11 fetching corpus: 5200, signal 192315/253859 (executing program) 2022/09/26 23:12:12 fetching corpus: 5250, signal 192700/254557 (executing program) 2022/09/26 23:12:12 fetching corpus: 5300, signal 193242/255283 (executing program) 2022/09/26 23:12:12 fetching corpus: 5350, signal 193932/256017 (executing program) 2022/09/26 23:12:12 fetching corpus: 5400, signal 194475/256718 (executing program) 2022/09/26 23:12:12 fetching corpus: 5450, signal 195508/257497 (executing program) 2022/09/26 23:12:12 fetching corpus: 5500, signal 196523/258263 (executing program) 2022/09/26 23:12:12 fetching corpus: 5550, signal 197185/258918 (executing program) 2022/09/26 23:12:12 fetching corpus: 5600, signal 197631/259541 (executing program) 2022/09/26 23:12:12 fetching corpus: 5650, signal 198264/260206 (executing program) 2022/09/26 23:12:13 fetching corpus: 5700, signal 198694/260834 (executing program) 2022/09/26 23:12:13 fetching corpus: 5750, signal 199305/261482 (executing program) 2022/09/26 23:12:13 fetching corpus: 5800, signal 199979/262121 (executing program) 2022/09/26 23:12:13 fetching corpus: 5850, signal 200335/262678 (executing program) 2022/09/26 23:12:13 fetching corpus: 5900, signal 200826/263285 (executing program) 2022/09/26 23:12:13 fetching corpus: 5950, signal 201253/263837 (executing program) 2022/09/26 23:12:13 fetching corpus: 6000, signal 201854/264456 (executing program) 2022/09/26 23:12:13 fetching corpus: 6050, signal 202554/265059 (executing program) 2022/09/26 23:12:13 fetching corpus: 6100, signal 202987/265620 (executing program) 2022/09/26 23:12:13 fetching corpus: 6150, signal 203234/266167 (executing program) 2022/09/26 23:12:14 fetching corpus: 6200, signal 203711/266742 (executing program) 2022/09/26 23:12:14 fetching corpus: 6250, signal 205342/267308 (executing program) 2022/09/26 23:12:14 fetching corpus: 6300, signal 205867/267874 (executing program) 2022/09/26 23:12:14 fetching corpus: 6350, signal 206600/268421 (executing program) 2022/09/26 23:12:14 fetching corpus: 6400, signal 207003/268962 (executing program) 2022/09/26 23:12:14 fetching corpus: 6450, signal 207252/269464 (executing program) 2022/09/26 23:12:14 fetching corpus: 6500, signal 207789/269961 (executing program) 2022/09/26 23:12:15 fetching corpus: 6550, signal 208553/270500 (executing program) 2022/09/26 23:12:15 fetching corpus: 6600, signal 209107/270964 (executing program) 2022/09/26 23:12:15 fetching corpus: 6650, signal 209396/271476 (executing program) 2022/09/26 23:12:15 fetching corpus: 6700, signal 210164/271941 (executing program) 2022/09/26 23:12:15 fetching corpus: 6750, signal 210772/272213 (executing program) 2022/09/26 23:12:15 fetching corpus: 6800, signal 211265/272213 (executing program) 2022/09/26 23:12:15 fetching corpus: 6850, signal 211909/272257 (executing program) 2022/09/26 23:12:15 fetching corpus: 6900, signal 212752/272458 (executing program) 2022/09/26 23:12:15 fetching corpus: 6950, signal 213065/272458 (executing program) 2022/09/26 23:12:16 fetching corpus: 7000, signal 213542/272458 (executing program) 2022/09/26 23:12:16 fetching corpus: 7050, signal 214022/272464 (executing program) 2022/09/26 23:12:16 fetching corpus: 7100, signal 214880/272467 (executing program) 2022/09/26 23:12:16 fetching corpus: 7150, signal 215835/272467 (executing program) 2022/09/26 23:12:16 fetching corpus: 7200, signal 216221/272467 (executing program) 2022/09/26 23:12:16 fetching corpus: 7250, signal 216484/272471 (executing program) 2022/09/26 23:12:16 fetching corpus: 7300, signal 217101/272471 (executing program) 2022/09/26 23:12:16 fetching corpus: 7350, signal 217465/272520 (executing program) 2022/09/26 23:12:16 fetching corpus: 7370, signal 217545/272520 (executing program) 2022/09/26 23:12:16 fetching corpus: 7370, signal 217545/272520 (executing program) 2022/09/26 23:12:19 starting 8 fuzzer processes 23:12:19 executing program 0: getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000000)=""/41, &(0x7f0000000040)=0x29) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='blkio.throttle.io_service_bytes\x00', 0x0, 0x0) ioctl$sock_inet_SIOCGIFADDR(r0, 0x8915, &(0x7f00000000c0)={'bond0\x00', {0x2, 0x0, @local}}) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0) sendfile(r1, r0, &(0x7f0000000140)=0xfffffffffffffc01, 0x1) write(r1, &(0x7f0000000180)="cd05be7024627840714233b58ae1", 0xe) sendmsg$NFQNL_MSG_VERDICT_BATCH(r0, &(0x7f0000000280)={&(0x7f00000001c0), 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x28, 0x3, 0x3, 0x401, 0x0, 0x0, {0x0, 0x0, 0xe087}, [@NFQA_MARK={0x8, 0x3, 0x1, 0x0, 0x6}, @NFQA_VERDICT_HDR={0xc, 0x2, {0xfffffffffffffffe, 0x9}}]}, 0x28}, 0x1, 0x0, 0x0, 0x31}, 0x80) r2 = fsmount(r0, 0x0, 0x7b) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f00000002c0)) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r3, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x58, 0x0, 0x4, 0x70bd2b, 0x25dfdbfe, {}, [@IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xfffe}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x7}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x7}, @IEEE802154_ATTR_SHORT_ADDR={0x6, 0x4, 0xaaa2}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000044}, 0x24000050) ioctl$BTRFS_IOC_QUOTA_RESCAN(r2, 0x4040942c, &(0x7f0000000440)={0x0, 0x2, [0x401, 0x4, 0x1, 0x1, 0x5, 0x3]}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r2) sendmsg$NL80211_CMD_SET_PMK(r2, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x84, r4, 0x200, 0x70bd27, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_PMK={0x14, 0xfe, "f4280b374f8da4e83e838009e8d201f2"}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "972fa6face63ce1c63baf3e6d58e5547"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "b8567f6e28a8e88620ed3529e582ef70"}, @NL80211_ATTR_PMKR0_NAME={0x14, 0x102, "9c1229f482c344e0b2eaccc6f642c697"}]}, 0x84}, 0x1, 0x0, 0x0, 0x2000000}, 0x80) sendmsg$AUDIT_DEL_RULE(r0, &(0x7f0000000b00)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000680)={0x440, 0x3f4, 0x200, 0x70bd2c, 0x25dfdbff, {0x1, 0x2, 0x3, [0xffffffff, 0x101, 0xef, 0x1, 0x7f, 0x1ff, 0x9, 0x6, 0x1, 0x8524, 0x100, 0x57c, 0x6, 0x5, 0x3, 0x1f, 0x400, 0xfffffff7, 0x0, 0x0, 0x1ff, 0x4, 0x5, 0x9, 0x10001, 0x8000, 0x9, 0x8, 0xcc, 0x2, 0xe804, 0x1, 0x0, 0x6, 0x30f63f3d, 0x3f, 0x81000000, 0x7, 0x9, 0x417, 0x7, 0x80000000, 0xffffffff, 0xd5b0, 0x7f, 0xc1b8, 0x2, 0x7, 0x2, 0x7ff, 0x77, 0xb8c2, 0x6, 0x3, 0x3, 0x3, 0x0, 0xd5, 0x100, 0x4, 0x8, 0x6, 0x8001, 0x10001], [0x80000001, 0x1, 0x9f1, 0x3, 0x8, 0x200, 0x20, 0x44b, 0x2, 0x7bec, 0x101, 0x5, 0x1, 0x5, 0x7, 0x800, 0xffffffff, 0xd4b5, 0xfff, 0x4, 0x80, 0x80000000, 0x8, 0x10001, 0x2b9, 0x1000, 0x6, 0x4, 0x8, 0xffff, 0x10000, 0x6, 0x8c, 0xffff5882, 0x6, 0x3f, 0x2, 0x38c, 0x2, 0x0, 0x200, 0x80000000, 0x6, 0x800, 0x40, 0x91, 0x6, 0xffffffff, 0xa1c, 0x2, 0x1, 0x1ff, 0x0, 0x7fff, 0x3, 0xffffff81, 0x4, 0x7, 0x7f, 0x12, 0xfff, 0x10001, 0x9, 0x81], [0x5, 0x1ff, 0x100, 0x5, 0x5, 0x3, 0x7fffffff, 0x8, 0x1ff, 0x0, 0x5, 0x7, 0xfffffffb, 0x0, 0x6, 0x2, 0x80, 0x2, 0x5, 0x882, 0x4, 0x6, 0x6, 0x6f, 0x5, 0x20000000, 0x40, 0x4, 0x0, 0xfffff6ab, 0x800000, 0x6, 0x81, 0x2, 0xffffff7e, 0x0, 0xfffffffa, 0xf74, 0x3, 0x2, 0x89, 0x9, 0x7fff, 0x150075e6, 0xaff, 0xffffffff, 0x7fff, 0xfffff48c, 0x6, 0x9, 0x34fa, 0x3, 0x6, 0x8001, 0xb0, 0x426, 0x8, 0x8, 0x6, 0x31, 0xffff, 0x1b8, 0x2], [0x8, 0x7ff, 0x88, 0x2, 0xbe18, 0x7ff, 0x4, 0x1, 0x3ce, 0x6, 0x1, 0x4, 0xa70, 0x6, 0x100, 0x0, 0x64ff, 0xffff30b6, 0x6, 0x4, 0xffffffc0, 0x7fff, 0xfffffffe, 0x8, 0x435, 0x9, 0x0, 0x0, 0x9, 0x2, 0x2, 0x3f, 0x8000, 0x6, 0x1, 0x4, 0x4, 0x1, 0x2, 0x7fff, 0xffffffff, 0x7ff, 0x7, 0xc0e2, 0x6, 0x0, 0x757a, 0x2, 0x8, 0xfffffe00, 0x3, 0x7, 0x5, 0x3, 0xf00, 0x9, 0x3, 0x9, 0x8, 0x9, 0x400, 0x5, 0xffffffc0, 0x4], 0x1f, ['/dev/cdrom\x00', '/dev/cdrom\x00', '),\x00', '\xff\xff\xff\xff\xff\xff']}, [""]}, 0x440}, 0x1, 0x0, 0x0, 0x20000000}, 0x2044040) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000b80), r2) sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(r2, &(0x7f0000000c40)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x28, r5, 0x800, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8, 0x7b}}}}, ["", "", "", "", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20048812}, 0x4040000) openat$cdrom(0xffffffffffffff9c, &(0x7f0000000c80), 0x200000, 0x0) r6 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000cc0), 0x20000, 0x0) ioctl$CDROMEJECT(r6, 0x5309) 23:12:19 executing program 1: r0 = openat$incfs(0xffffffffffffffff, &(0x7f0000000000)='.log\x00', 0x80403, 0x20) sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x300, 0x70bd2d, 0x25dfdbfe, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r1, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x4c, 0x0, 0x8, 0x0, 0x0, 0x0, {0x5, 0x0, 0x2}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x84}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x2000c055}, 0x4) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300), 0x228405, 0x0) r3 = open_tree(r0, &(0x7f0000000480)='./file0\x00', 0x100) r4 = openat$incfs(r0, &(0x7f00000004c0)='.log\x00', 0x120280, 0x0) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000500), 0x4040, 0x0) r6 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000540)='.log\x00', 0x80, 0x92) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0xa800800}, 0xc, &(0x7f0000000640)={&(0x7f0000000580)={0x98, 0x0, 0x200, 0x70bd25, 0x25dfdbff, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8, 0x1, r3}, {0x8, 0x1, r4}, {0x8, 0x1, r1}, {0x8, 0x1, r1}, {0x8, 0x1, r1}, {0x8, 0x1, r0}, {0x8, 0x1, r5}, {0x8, 0x1, r6}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x3ff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x40}]}, 0x98}, 0x1, 0x0, 0x0, 0x2000c814}, 0x4800) ioctl$BINDER_ENABLE_ONEWAY_SPAM_DETECTION(r5, 0x40046210, &(0x7f00000006c0)) ioctl$BTRFS_IOC_ADD_DEV(r2, 0x5000940a, &(0x7f0000000700)={{r0}, "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"}) getpeername$netlink(r6, &(0x7f0000001700), &(0x7f0000001740)=0xc) syz_mount_image$nfs4(&(0x7f0000001780), &(0x7f00000017c0)='./file0\x00', 0xffff, 0x3, &(0x7f0000001940)=[{&(0x7f0000001800)="81b26319e83eb53f7eeaf700ebf15a072af711fc99127655d8320b043a41d307226bd32a5a9a3ad7509e7abc75fe2cb3010ef3a6ddd41e936b57a05e3b83f12e554d08c05b1d7cc90b80", 0x4a, 0x7fffffff}, {&(0x7f0000001880)="2da8213cdbbbf1e8bc2cfed807650ec0ddf4c5491118a760e26aebade288993258a4b6278cd4660c438717cd623f72f651fe81c7d98c0d97e345167ec49b19eed7a7dd93f62b5eeb2503a7673044b4e4f4db", 0x52, 0x1}, {&(0x7f0000001900)="226aa342f165ee358a56c9e310227eec3f47cd165febaf580b9e004a5b642ef36d3f63436caef29f7cd1ccd7ab8bb1", 0x2f}], 0x1000080, &(0x7f00000019c0)={[{'/dev/zero\x00'}, {'\x99'}, {'[@^'}, {'/dev/zero\x00'}, {'syz1\x00'}], [{@dont_hash}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@fsuuid={'fsuuid', 0x3d, {[0x36, 0x36, 0x39, 0x65, 0x37, 0x34, 0x38, 0x61], 0x2d, [0x61, 0x30, 0x36, 0x36], 0x2d, [0x63, 0x63, 0x61, 0x66], 0x2d, [0x51, 0x31, 0x61, 0x65], 0x2d, [0x35, 0x39, 0x63, 0x70, 0x39, 0x37, 0x39, 0x32]}}}, {@euid_gt}]}) openat(r6, &(0x7f0000001a80)='./file0\x00', 0x450100, 0x0) pread64(r3, &(0x7f0000001ac0)=""/137, 0x89, 0xfffffffffffffffd) sendfile(r0, r2, 0x0, 0x5) r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001b80), 0x2, 0x0) io_uring_setup(0x11b3, &(0x7f0000001bc0)={0x0, 0x9a33, 0x8, 0x1, 0x324, 0x0, r7}) ioctl$BTRFS_IOC_START_SYNC(r7, 0x80089418, &(0x7f0000001c40)) 23:12:19 executing program 2: sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xc000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x300, 0x70bd27, 0x25dfdbfd, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4) sendmsg$NL80211_CMD_GET_MESH_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x800, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x200000c0}, 0xc800) sendmsg$BATADV_CMD_TP_METER(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x2c, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x69}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x2}}, './file0\x00'}) sendmsg$NL80211_CMD_ASSOCIATE(r0, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x6c, 0x0, 0x10, 0x70bd27, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_USE_MFP={0x8, 0x42, 0x1}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0x8, {0x183, 0x0, 0xaa93, 0x5}}}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0xc, {0x40, 0x695, 0x4, 0x4}}}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0x8000, 0x1, 0x6, 0x0, {0x2a86, 0x7, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1}, 0x400, 0x1e5, 0x2}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x20040080}, 0x40001) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_PROBE_CLIENT(r0, &(0x7f0000000580)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000500)={0x40, r1, 0x420, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3ff, 0x5}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x40}, 0x1, 0x0, 0x0, 0x2000c000}, 0x0) sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r1, 0x800, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0xfc00}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x8}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1}, @NL80211_ATTR_STA_SUPPORT_P2P_PS={0x5}, @NL80211_ATTR_AIRTIME_WEIGHT={0x6, 0x112, 0x1}, @NL80211_ATTR_OPMODE_NOTIF={0x5, 0xc2, 0x99}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x342}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80d0}, 0x20000000) sendmsg$AUDIT_DEL_RULE(r0, &(0x7f0000000bc0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000740)={0x440, 0x3f4, 0x20, 0x70bd2b, 0x25dfdbfe, {0x5, 0x2, 0xa, [0xfff, 0x3f, 0x0, 0x8, 0x2, 0x5, 0x693e, 0x0, 0x5, 0x7fffffff, 0x0, 0xfffffeab, 0x8, 0x1, 0x3, 0x7f, 0x100000, 0xffff, 0x800, 0x7f, 0x5, 0x0, 0x400, 0x2, 0x8bf5, 0x1, 0xbc1, 0x6, 0xec8, 0x7, 0x6, 0x4, 0x8, 0x3, 0x7, 0x0, 0x40, 0x80, 0x200, 0x490e, 0x6, 0x6, 0x2, 0xfc, 0x5, 0x6, 0xffffff1a, 0x4, 0x0, 0xffff1038, 0x0, 0x200, 0xfff, 0x1, 0x40, 0x5, 0x20, 0x6, 0x1f, 0xffffffff, 0x3, 0x20, 0x200, 0x4000000], [0x41ff, 0xe3a, 0x3, 0xf82c, 0x2325, 0xba2, 0x9, 0x3f, 0x2, 0x1, 0x1000, 0x7f, 0x10000, 0x2, 0x4, 0x1, 0x0, 0x4, 0x6, 0x7fffffff, 0x1ff, 0x2cd, 0x9, 0x40, 0x10000, 0x7, 0x3, 0x8, 0x400, 0x2f9ce9e7, 0x8, 0xd532, 0x5, 0xffffffff, 0x1, 0x7, 0x7, 0x401, 0x7ff, 0x800, 0x2, 0x8, 0x80, 0x0, 0xfa3c, 0x8, 0x80000001, 0xfa7, 0x400, 0x40, 0x3, 0x6, 0x0, 0x0, 0x3c4, 0x3e, 0xd4, 0x1, 0x16e, 0x101, 0xfff, 0x7fff, 0x101, 0x6], [0x0, 0x4, 0x80, 0x1, 0xc0d3, 0x3ba, 0x3, 0x0, 0x3, 0x1, 0x2, 0xbc39, 0xfffffff7, 0x6, 0x9, 0x1, 0x9, 0x8, 0x8, 0x1, 0x0, 0xd5b8, 0x20, 0x8e, 0xffffffc1, 0xffffff7f, 0x0, 0x2, 0x9, 0x0, 0x7fffffff, 0x2, 0x3, 0xe3c1, 0x9, 0x197d, 0x8, 0x9, 0x80000001, 0x6, 0x2, 0x2, 0xfa9b, 0x80000001, 0x0, 0x2, 0xb4f, 0x8, 0x2b, 0x3180d1e3, 0x31, 0x2, 0x7, 0xfffffe01, 0xffff, 0x6cec7933, 0x4800, 0x1, 0x3, 0x2, 0x8, 0x9, 0xffffff00, 0x7], [0x24d000, 0xfe, 0x4, 0x7fff, 0x7, 0x5, 0xe86a, 0x962, 0x9, 0x646, 0xfffffffd, 0x10000, 0x2, 0xffffffff, 0x6b7e, 0xff, 0x5, 0x3f, 0x5, 0x6, 0x2, 0xf73, 0x4, 0x3, 0x57, 0x4000000, 0xfffffe00, 0x4, 0x3f, 0x2, 0x8001, 0x10000, 0x1f, 0x7abb, 0x9, 0x40, 0x5, 0x5, 0x74d, 0x7, 0x800, 0x7fff, 0x7fd, 0x8000, 0x8, 0x8, 0x100, 0x1000, 0xffff8788, 0x0, 0x0, 0x95b6, 0x0, 0x0, 0x200, 0x2, 0x3, 0x334a, 0x3, 0x1000, 0xfffffffd, 0x1ff, 0x9, 0x8], 0x20, ['+\\\\&)#\xc7%\x00', '\xff\xff\xff\xff\xff\xff', '.&$}!(@\\)\x00', '\x00', '(#@-&\x00']}, ["", "", "", "", "", "", "", "", "", ""]}, 0x440}, 0x1, 0x0, 0x0, 0x40000}, 0x4000000) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c00), r0) r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000c40)='./file0\x00', 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r3, &(0x7f0000000d40)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x14, 0x0, 0x100, 0x70bd28, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x8000) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000dc0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_WOWLAN(r0, &(0x7f0000000e80)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x30, r2, 0x1, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8, 0x1, 0x45}, @val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x401, 0x64}}}}, ["", "", "", ""]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x40000) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f00), r0) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000001180)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001140)={&(0x7f0000000f40)={0x1d8, r5, 0x2, 0x70bd28, 0x25dfdbff, {{}, {@void, @void, @val={0xc, 0x99, {0x0, 0x40}}}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x9}, @NL80211_ATTR_VENDOR_DATA={0x29, 0xc5, "ef51d61546e5fcd808eb58f4218a9ef8fed29f57f889ef7c673f7df9fecfaf782f772cf482"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x7ff}, @NL80211_ATTR_VENDOR_DATA={0x80, 0xc5, "9b8cc99837106b39aa158f52eb0032924721da9aa2d2b422985ee539b4e48f6a2a9c60cdbe03d53a5b09c1586b568fc326c123cf849ba9de967c24149967725928642e0a6465975deb2d6d78fccb4996f2ad6cdb8203be453480ee776d379f865d6228980454e4d2548b97dbc4555a3b7d69a186e2ff4766b4b4bc77"}, @NL80211_ATTR_VENDOR_DATA={0xea, 0xc5, "7b396ee22b9c3ceebc2c73e2248b3ea4e77dd3cfcc96dfcaf199496d244dc695b374845f44464f6ed0a53293c9d60b2b467c819f4ae652808153a0e4ad76e2e203a39dc2f40a681285a22dfc2604dbf43dfdbeb93c3c6cb48269ede8e36f11c3c405af0bb526e3ecc05225d153faa98e070e8b490753e3700bedf4782a7514acd4642ba2a6f17a99c4193336f88da697fa11db8d9afe6776356edba5df2ba1b793f9bca98f84959650592cffe11b55cd5f4a2250e9c92fa24f04cc384864b9a86360d5a6fbfd001752ce0ccd4700edb8941a05612f368d3acca2808872676e56759ba3a2eb4b"}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x7}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x7}]}, 0x1d8}, 0x1, 0x0, 0x0, 0x480d1}, 0x24000814) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r3, 0xc018937e, &(0x7f00000011c0)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) write$binfmt_aout(r6, &(0x7f0000001200)={{0x107, 0x2, 0x6, 0x15b, 0x2cb, 0x62595e68, 0x3dd, 0x7fff}, "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", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1820) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000002a80), r3) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(r6, &(0x7f0000002b80)={&(0x7f0000002a40)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000002b40)={&(0x7f0000002ac0)={0x80, r7, 0x2, 0x70bd29, 0x25dfdbfd, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xbe}, {0x6, 0x11, 0xffb9}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8}, {0x6, 0x11, 0xd2f2}}]}, 0x80}, 0x1, 0x0, 0x0, 0x44804}, 0x40000) 23:12:19 executing program 3: set_thread_area(&(0x7f0000000000)={0x0, 0xffffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}) get_thread_area(&(0x7f0000000040)={0x80000001, 0x20001000, 0x0, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1, 0x1}) modify_ldt$write2(0x11, &(0x7f0000000080)={0x1, 0x100000, 0x1000, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f00000000c0)={0x668, 0x100000, 0x400, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f0000000100)={0x6, 0x100000, 0x2000, 0x0, 0x0, 0x1, 0x1, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f0000000140)={0x2, 0xffffffffffffffff, 0x4000, 0x0, 0x2, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f0000000180)={0x3ff, 0x20000000, 0x1000, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f00000001c0)={0x80000000, 0x20000000, 0x400, 0x1, 0x2, 0x1, 0x0, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f0000000200)={0x81, 0x100000, 0x1000, 0x0, 0x2, 0x1, 0x1, 0x0, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f0000000240)={0x5a, 0x20000800, 0x400, 0x0, 0x0, 0x1, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f0000000280)={0x2, 0x20001000, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1}, 0x10) set_thread_area(&(0x7f00000002c0)={0x20, 0x20000000, 0x1000, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}) modify_ldt$write(0x1, &(0x7f0000000300)={0x2, 0x20000800, 0x4000, 0x0, 0x2, 0x1, 0x0, 0x1, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f0000000340)={0x649, 0x20000000, 0x400, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1}, 0x10) get_thread_area(&(0x7f0000000380)={0x100, 0x1000, 0x4000, 0x0, 0x3, 0x1, 0x1, 0x0, 0x0, 0x1}) modify_ldt$write(0x1, &(0x7f00000003c0)={0x4, 0x0, 0x400, 0x1, 0x1, 0x1, 0x1}, 0x10) modify_ldt$write2(0x11, &(0x7f0000000400)={0x3ff, 0xffffffffdfffefff, 0x1000, 0x0, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f0000000440)={0xebf2, 0x100000, 0x2000, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1}, 0x10) modify_ldt$write2(0x11, &(0x7f0000000480)={0x7fffffff, 0x20100000, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1}, 0x10) modify_ldt$write(0x1, &(0x7f00000004c0)={0x4, 0xffffffffffffffff, 0x1000, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, 0x10) 23:12:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f00000002c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000280)={&(0x7f0000000040)={0x20c, 0x0, 0x100, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0xfc, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffc1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x100}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x20}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xc}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffff310}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x18}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1000000}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xcd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7fffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffe00}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xab55}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd3a}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x7}]}, @TIPC_NLA_BEARER={0x34, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xf, 0x1, @l2={'ib', 0x3a, 'geneve0\x00'}}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}]}, @TIPC_NLA_BEARER_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}]}, @TIPC_NLA_LINK={0x38, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_PUBL={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8001}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xffffffff}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4b0}]}, @TIPC_NLA_NODE={0x8, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x50, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1610}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x20c}, 0x1, 0x0, 0x0, 0x4000}, 0x8040) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000340), 0x10000, 0x0) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000300), r1) sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x20, 0x1, 0x4, 0x201, 0x0, 0x0, {0xc, 0x0, 0x6}, [@NFULA_CFG_MODE={0xa, 0x2, {0x5, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x2400c006}, 0x4001) r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000480)={[0x3]}, 0x8, 0x800) sendmsg$NFQNL_MSG_VERDICT(r3, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x88, 0x1, 0x3, 0x201, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFQA_EXP={0x28, 0xf, 0x0, 0x1, [@CTA_EXPECT_TIMEOUT={0x8, 0x4, 0x1, 0x0, 0x100}, @CTA_EXPECT_TUPLE={0xc, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}]}, @CTA_EXPECT_CLASS={0x8, 0x9, 0x1, 0x0, 0x4}, @CTA_EXPECT_ZONE={0x6}]}, @NFQA_VLAN={0x4c, 0x13, 0x0, 0x1, [@NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x3}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x1}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x7}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x4}, @NFQA_VLAN_PROTO={0x6, 0x1, 0x1, 0x0, 0x8100}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x100}, @NFQA_VLAN_PROTO={0x6}, @NFQA_VLAN_TCI={0x6, 0x2, 0x1, 0x0, 0x4}, @NFQA_VLAN_PROTO={0x6}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x800}, 0x4000) sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x20, 0x0, 0x8, 0x70bd29, 0x25dfdbfd, {}, [@GTPA_TID={0xc, 0x3, 0x3}]}, 0x20}, 0x1, 0x0, 0x0, 0x4}, 0x90) sendmsg$BATADV_CMD_GET_ORIGINATORS(r1, &(0x7f0000000800)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000007c0)={&(0x7f0000000780)={0x24, r2, 0x300, 0x70bd2c, 0x25dfdbff, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_ORIG_INTERVAL={0x8}]}, 0x24}}, 0x0) sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f0000000940)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000900)={&(0x7f0000000880)={0x58, r2, 0x300, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x9}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x1}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x7}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x2}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x58}}, 0x404c440) r4 = signalfd4(r3, &(0x7f0000000980)={[0x8]}, 0x8, 0x80000) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r4, 0xc018937e, &(0x7f00000009c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x4}}, './file0\x00'}) r6 = perf_event_open$cgroup(&(0x7f0000000a40)={0x2, 0x80, 0x6b, 0x85, 0x40, 0x3, 0x0, 0x0, 0x20200, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x9, 0x4, @perf_bp={&(0x7f0000000a00), 0x9}, 0x0, 0x3, 0x80000000, 0x4, 0xdcd, 0x1, 0x8, 0x0, 0x8001}, r4, 0x6, r3, 0xa) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r5, 0xc018937d, &(0x7f0000000ac0)={{0x1, 0x1, 0x18, r6, {0x3}}, './file0\x00'}) r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000b40), r4) sendmsg$BATADV_CMD_GET_MESH(r7, &(0x7f0000000c00)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000b80)={0x24, r8, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x20}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x24}}, 0x50) sendfile(r4, 0xffffffffffffffff, 0x0, 0x152) setsockopt$IP_VS_SO_SET_TIMEOUT(r5, 0x0, 0x48a, &(0x7f0000000c40)={0xffff20d9, 0x8, 0x7}, 0xc) r9 = openat(0xffffffffffffff9c, &(0x7f0000000c80)='./file0/file0\x00', 0x44900, 0x16) mmap$perf(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x2010, r9, 0x1) 23:12:19 executing program 5: r0 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NLBL_MGMT_C_REMOVEDEF(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x64, r0, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x11}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @private=0xa010102}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @local}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004810}, 0x80) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_ADDDEF(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x1c, r0, 0x21e, 0x70bd25, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000040}, 0x4) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x2c, r2, 0x200, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0x8}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_HIGH={0x8, 0x16, 0x401}, @ETHTOOL_A_COALESCE_TX_USECS_IRQ={0x8, 0x8, 0x6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20040000}, 0x4000040) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_CCA_MODE(r3, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x50, 0x0, 0x400, 0x70bd2c, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_CCA_MODE={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x1}, @NL802154_ATTR_CCA_OPT={0x8, 0xd, 0x1}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_CCA_MODE={0x8, 0xc, 0x6}]}, 0x50}, 0x1, 0x0, 0x0, 0x1}, 0x0) r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000600)={&(0x7f0000000540)={0x84, 0x0, 0x100, 0x70bd2b, 0x25dfdbfd, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8}]}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x1}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xa515}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x2}, @NBD_ATTR_TIMEOUT={0xc}]}, 0x84}}, 0x48040) r5 = syz_io_uring_complete(0x0) getpeername$packet(0xffffffffffffffff, &(0x7f00000006c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000700)=0x14) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r4, 0x89f3, &(0x7f0000000900)={'syztnl0\x00', &(0x7f0000000840)={'erspan0\x00', 0x0, 0x40, 0x700, 0x7fffffff, 0x5, {{0x1e, 0x4, 0x2, 0x4, 0x78, 0x65, 0x0, 0x3, 0x2f, 0x0, @loopback, @private=0xa010102, {[@generic={0x83, 0x12, "430f12555047fb963b8b44940a14610a"}, @end, @timestamp_prespec={0x44, 0x34, 0x6f, 0x3, 0xb, [{@loopback, 0x10000}, {@loopback, 0x5}, {@local, 0x3f}, {@rand_addr=0x64010102, 0xe915}, {@local, 0x8}, {@dev={0xac, 0x14, 0x14, 0x1f}, 0x6066}]}, @noop, @cipso={0x86, 0x19, 0xfffffffffffffffd, [{0x0, 0xf, "937fe47c4596842f85adea66f0"}, {0x6, 0x4, '1N'}]}]}}}}}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r5, &(0x7f0000000a80)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000a40)={&(0x7f0000000940)={0xd0, r2, 0x20, 0x70bd29, 0x25dfdbfd, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bond\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x6c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6tnl0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}]}, 0xd0}, 0x1, 0x0, 0x0, 0x44081}, 0x20000011) r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000b00), r3) sendmsg$NLBL_MGMT_C_VERSION(r1, &(0x7f0000000c00)={&(0x7f0000000ac0), 0xc, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x50, r8, 0x200, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x28}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @dev={0xac, 0x14, 0x14, 0x1f}}, @NLBL_MGMT_A_DOMAIN={0xc, 0x1, '$--%9\'{\x00'}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}]}, 0x50}, 0x1, 0x0, 0x0, 0x50}, 0x8000) r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000c80), r1) sendmsg$NLBL_UNLABEL_C_LIST(r9, &(0x7f0000000d40)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x14, r10, 0x100, 0x70bd27, 0x25dfdbfb}, 0x14}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000e40)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x1c, 0x0, 0x200, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x25bd52380f97e25f) [ 69.395890] audit: type=1400 audit(1664233939.353:6): avc: denied { execmem } for pid=287 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 23:12:19 executing program 6: r0 = pkey_alloc(0x0, 0x3) r1 = pkey_alloc(0x0, 0x2) r2 = pkey_alloc(0x0, 0x1) pkey_mprotect(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, r2) r3 = pkey_alloc(0x0, 0x1) pkey_free(r3) mremap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x3000, 0x4, &(0x7f0000ff9000/0x3000)=nil) r4 = shmget$private(0x0, 0x2000, 0x10, &(0x7f0000ffa000/0x2000)=nil) shmat(r4, &(0x7f0000ff8000/0x3000)=nil, 0x0) shmat(r4, &(0x7f0000ffa000/0x3000)=nil, 0x2800) r5 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x10200, 0x0) io_uring_enter(r5, 0x61f9, 0xa374, 0x2, &(0x7f0000000040)={[0x6]}, 0x8) pkey_mprotect(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x300000c, r0) r6 = shmget(0x2, 0x3000, 0x10, &(0x7f0000ffb000/0x3000)=nil) shmctl$IPC_RMID(r6, 0x0) r7 = shmget(0x3, 0x4000, 0x800, &(0x7f0000ffa000/0x4000)=nil) shmctl$IPC_RMID(r7, 0x0) pkey_mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000000, r1) pkey_free(r1) pkey_alloc(0x0, 0x1) 23:12:19 executing program 7: ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, &(0x7f0000000000)={0x1, 0x8}) readv(0xffffffffffffffff, &(0x7f00000010c0)=[{&(0x7f0000000040)=""/4096, 0x1000}, {&(0x7f0000001040)=""/128, 0x80}], 0x2) ioctl$INCFS_IOC_FILL_BLOCKS(0xffffffffffffffff, 0x80106720, &(0x7f0000002740)={0x9, &(0x7f0000002600)=[{0xff5, 0x42, &(0x7f0000001100)="c801f172788d634cbc45263ce1359eb964d056ec2f0e9dec2f75a39e16de69f9eb79819d6fe2b2fac5a19085e36e6e47b4e376171c25940de54cb1d60844208e5d69", 0x1}, {0x6, 0x1000, &(0x7f0000001180)="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", 0x0, 0x1}, {0x401, 0x79, &(0x7f0000002180)="2088b3a3a8ad72b6ec33fb86c7a0531667a812be031048ecb28bbda76fb9015ddb73a7929c8a24740b0b3b99da425f1ccccd5636b624eaf5a5ffcb332e2dfdd7d9165126f54cd1041cd87d87b5f7dd008c1dd0f0fbc367ea29590505c214d2900db098cd7466d5fc395cdb3d994be679a4db6f8fae11c0f1dd", 0x1, 0x1}, {0xfff, 0xa9, &(0x7f0000002200)="f4b9ed65da86f6717d4981886ccff115856a7ca65718e66c055d8beaccb6b17c0581cac75b390ec2c9592fbba8393e17a58ca7f01625e9d59653a44faca3a46e1f578406e6d86d021c9d3594b4a5d8008dda4b7feceb9bda76adbe50e8115e17ae27a29d3ad09a3a0bd959d6eea5e2b69c7dc54cb74d78379c56da5016afc4e1bad2b13364949aab0c20518609d94f06196faeec88f2622ef4b25d480d296fe707d9c94daae8b06775"}, {0x2, 0xba, &(0x7f00000022c0)="15f539efd59dfcc86d9ad648b6df8b1c55093803f2e7c0b94efd83fc8849c589889880d74c3dadad570597da55d995ab987bfd26fe091600fa2c4bea9cf37ec31dfe1520ecc5779ef6002a7630608ac17e91df368dc39a49ed93f1c8d6a615c8baa394efbcbcc2bbd92f99f09ddc684027f762eff4aa1ded8e2714840dd86e58dd849f13075e89f7bde40120c9fb4db4f68e347d785ea9227ef39dc72d7c157b95d30b010524fb48325f2fc9c2bd1a1cb08e6173877993c1f436", 0x1}, {0x7fff, 0x49, &(0x7f0000002380)="9f7679cc161604beba2f0ca326a9bf33c1a9cf4da6ab3b52b8d9dd2e541daf3da5c340317d27c15089313cadf6d508d80943488fc92618632dc28d18e2bcc980e8337d0135a81b8d0e", 0x0, 0x1}, {0x1, 0xb7, &(0x7f0000002400)="abb9de1abb40159dd712eff2d7488ca9c9c4ffc86a55c6be9837314d3c3d3505229a09155299d56eaa0668c1d5f9d423001592c442d2242d284d0977dbe773deb03aa99b18d1a28bcfc963c3e5b8b667fbd9e516c8c09b446b80aa8c010e9c5e37ec2d06f92a2773fafdb2b3dde78b955f05e434d197f638ed4a495bb0de73380b4eee089edc6c59774e23ed93c5165b77d1f73981b2ae0687e2a82a20793b782d2a39f59842bffe66a2cbfd1fc183841de7ba0d216432", 0x1}, {0x101, 0xc5, &(0x7f00000024c0)="199a16d26a44e0d0065eb1ddbb2e682e29905e1ba72be611399a8f545b1e77a613dade829aa37fef51d3a543b46082163736acb49d8c826ba4be6ae1b6c74e14e7b85b82735f1084c08509e5342bee0226c9741ee68aa6d4b7f334e6d0441e136981e798c239c0c5ec9bd4b90da8ed4fc0ba5b22d6ca32c3f99d125b32dca86ce408d926cce42076d197fb63ea15549f13188fed4c7e398eb43986936dce577699451656257c0cc35c41032e012576120fee7c75d1dcfdab82257c832ad2c26d684ed40ad9", 0x1, 0x1}, {0x401, 0x37, &(0x7f00000025c0)="5906183494b213b14b9fa3634ae95118dc2b6dd7482683c057430c3f1124daa360978b7b71b1cb066553e85a131446f19e37ccc907f6f9", 0x0, 0x1}]}) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000002780), 0x400000, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000027c0)={{0x1, 0x1, 0x18, r0, {0x7fff, 0x3d3}}, './file0\x00'}) getsockname$inet6(r1, &(0x7f0000002800)={0xa, 0x0, 0x0, @empty}, &(0x7f0000002840)=0x1c) setsockopt$netlink_NETLINK_PKTINFO(r1, 0x10e, 0x3, &(0x7f0000002880)=0xfffff800, 0x4) fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f00000028c0)='/dev/rfkill\x00', 0x0, r0) setsockopt$IP_VS_SO_SET_DELDEST(r1, 0x0, 0x488, &(0x7f0000002900)={{0x2e, @multicast2, 0x4e21, 0x2, 'rr\x00', 0x24, 0x9, 0x25}, {@remote, 0x4e21, 0x3, 0x699, 0x5f24, 0x7aa2}}, 0x44) write(r0, &(0x7f0000002980)="aff24c216ee46e6a010998bd9dfe94e149a45f9e55dffe4a5d73aff6b7204eef4bf7ee7613189bde4151ab335241bef2ee0b6539c09c70b04249c23e539d31b6c3f2b929aa86bad1a5d265109244168343587e99c7b3cc65dbacbe21e5149910cbf407aeba84d2a7c693089090832f4c4f0759e73514255670e2010109e7ec01642d85f5b59a6f2b230eba3b14a9d58970460e7fb9270f7c6e8c6c1292242481a21d2cb913ca9648fb49338030033533ab543fcaeec12dbd6917f8ec600c30f3581c4e5efdff", 0xc6) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000002a80), 0x5e200, 0x0) getresuid(&(0x7f0000002ac0)=0x0, &(0x7f0000002b00), &(0x7f0000002b40)) write$P9_RSTATu(r2, &(0x7f0000002b80)={0x78, 0x7d, 0x2, {{0x0, 0x57, 0x9, 0x1, {0x0, 0x4, 0x6}, 0x62200000, 0x2480, 0x400000, 0x5, 0x0, '', 0xc, '/dev/rfkill\x00', 0xc, '/dev/rfkill\x00', 0xc, '/dev/rfkill\x00'}, 0xc, '/dev/rfkill\x00', r3, 0xee01, 0xee01}}, 0x78) r4 = dup3(r1, r0, 0x80000) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = memfd_secret(0x80000) sendmsg$NBD_CMD_RECONFIGURE(r5, &(0x7f0000002d00)={&(0x7f0000002c00)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000002cc0)={&(0x7f0000002c40)={0x54, 0x0, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r2}, {0x8, 0x1, r2}, {0x8, 0x1, r6}, {0x8, 0x1, r2}, {0x8, 0x1, r1}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x2}]}, 0x54}, 0x1, 0x0, 0x0, 0x5}, 0x8000) r7 = openat$cgroup_freezer_state(r1, &(0x7f0000002dc0), 0x2, 0x0) io_submit(0x0, 0x5, &(0x7f0000003140)=[&(0x7f0000002d80)={0x0, 0x0, 0x0, 0x5, 0x7, r0, &(0x7f0000002d40)="43a8e87eea963a278caa939605667975e3d3f235da6830facae9a062ad7e5d2fdff3a2b8977454ca89", 0x29, 0xbb3, 0x0, 0x1, r1}, &(0x7f0000002f40)={0x0, 0x0, 0x0, 0x1, 0xb2e6, r7, &(0x7f0000002e00)="1969202edb271f485ee470fb5f953e98d492f1a68b190763af47a5f22883af7e1238ab7b515ae44bb6710e4ad7b93d8e5cc2835f8c2d288de260c81fe4b59cf11b1abef3018076437b50473889eabbf4442d9cbf6e475ea421495db64aabd0b39d899b935486650b246dbf7b991e049812ca838363f5a1815a8d818d8d4ecb026614732043ef1c2568d984742001dcffbb86fad37a12e4e8bb76742404dcdd49ecc291379451dfd54a1c91fb882c8234d5da2e9a62fa1704d6a5e7018e268898da86ef22b4d772e3a8cd86a8ae58414f73de452675ab8c312c379e790656a47e11f7b1e593b3d0d5c7a0", 0xea, 0x3ff, 0x0, 0x2}, &(0x7f0000002fc0)={0x0, 0x0, 0x0, 0x2, 0x401, r1, &(0x7f0000002f80)="87599666f42656c0b984786c96ca40ffd1be4e14abb4b74d737f032e39668051751195fc7e4c90874f689ee90ea6d53bdd2b145c3e6357a9c4", 0x39, 0x8, 0x0, 0x1, r4}, &(0x7f0000003040)={0x0, 0x0, 0x0, 0x8, 0x3, r4, &(0x7f0000003000), 0x0, 0x7, 0x0, 0x0, r6}, &(0x7f0000003100)={0x0, 0x0, 0x0, 0x1, 0x9, r0, &(0x7f0000003080)="51e33c07cf304f15813233c3a9a09ba7ce45e9893fd021430e334c70043e3fd9004ad85235588736c4d069c52b1ee56e2b5f4ab19e66a56a79f60fe0b2d455b0aee2153ed038a17a2eef4998d487e45a51bbf0a228a8b6d87fab1c6d11cd9a4d2c3059e42092bcdd", 0x68, 0x1, 0x0, 0x2, r4}]) [ 70.739944] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.742456] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 70.744877] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.752169] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.754435] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 70.756101] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.758921] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.761212] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.801516] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 70.805558] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 70.807959] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 70.810196] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 70.811190] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 70.816131] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 70.818689] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 70.822482] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 70.824063] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 70.826065] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 70.829575] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 70.831388] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 70.834069] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 70.837930] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.840765] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.844487] Bluetooth: hci5: HCI_REQ-0x0c1a [ 70.850938] Bluetooth: hci6: HCI_REQ-0x0c1a [ 70.867857] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 70.868116] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 70.869710] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 70.871346] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 70.871931] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.873408] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 70.874787] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.875454] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 70.877774] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 70.879002] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 70.879310] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 70.882664] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 70.883973] Bluetooth: hci0: HCI_REQ-0x0c1a [ 70.886806] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 70.888071] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 70.890008] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 70.893434] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 70.894580] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 70.895686] Bluetooth: hci1: HCI_REQ-0x0c1a [ 70.897089] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 70.898731] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 70.903218] Bluetooth: hci7: HCI_REQ-0x0c1a [ 70.904101] Bluetooth: hci4: HCI_REQ-0x0c1a [ 70.922559] Bluetooth: hci2: HCI_REQ-0x0c1a [ 72.809339] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 72.873918] Bluetooth: hci5: command 0x0409 tx timeout [ 72.873983] Bluetooth: hci6: command 0x0409 tx timeout [ 72.937599] Bluetooth: hci4: command 0x0409 tx timeout [ 72.938531] Bluetooth: hci2: command 0x0409 tx timeout [ 72.939418] Bluetooth: hci7: command 0x0409 tx timeout [ 72.940251] Bluetooth: hci1: command 0x0409 tx timeout [ 72.941121] Bluetooth: hci0: command 0x0409 tx timeout [ 74.921391] Bluetooth: hci5: command 0x041b tx timeout [ 74.922384] Bluetooth: hci6: command 0x041b tx timeout [ 74.988283] Bluetooth: hci0: command 0x041b tx timeout [ 74.988700] Bluetooth: hci1: command 0x041b tx timeout [ 74.989100] Bluetooth: hci7: command 0x041b tx timeout [ 74.989505] Bluetooth: hci2: command 0x041b tx timeout [ 74.989885] Bluetooth: hci4: command 0x041b tx timeout [ 75.916018] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 75.935141] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 75.945645] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 75.968547] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 75.975509] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 75.988006] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.003729] Bluetooth: hci3: HCI_REQ-0x0c1a [ 76.970377] Bluetooth: hci6: command 0x040f tx timeout [ 76.970822] Bluetooth: hci5: command 0x040f tx timeout [ 77.034487] Bluetooth: hci4: command 0x040f tx timeout [ 77.034900] Bluetooth: hci2: command 0x040f tx timeout [ 77.035321] Bluetooth: hci7: command 0x040f tx timeout [ 77.035688] Bluetooth: hci1: command 0x040f tx timeout [ 77.036047] Bluetooth: hci0: command 0x040f tx timeout [ 78.058472] Bluetooth: hci3: command 0x0409 tx timeout [ 79.017752] Bluetooth: hci5: command 0x0419 tx timeout [ 79.018914] Bluetooth: hci6: command 0x0419 tx timeout [ 79.081611] Bluetooth: hci0: command 0x0419 tx timeout [ 79.082429] Bluetooth: hci1: command 0x0419 tx timeout [ 79.083138] Bluetooth: hci7: command 0x0419 tx timeout [ 79.083896] Bluetooth: hci2: command 0x0419 tx timeout [ 79.084635] Bluetooth: hci4: command 0x0419 tx timeout [ 80.105402] Bluetooth: hci3: command 0x041b tx timeout [ 82.153843] Bluetooth: hci3: command 0x040f tx timeout [ 84.202374] Bluetooth: hci3: command 0x0419 tx timeout [ 126.548171] audit: type=1400 audit(1664233996.505:7): avc: denied { open } for pid=3771 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 23:13:16 executing program 4: syz_mount_image$nfs(0x0, 0x0, 0x40000000000, 0x0, &(0x7f0000002900), 0x140400, 0x0) [ 126.780850] loop4: detected capacity change from 0 to 264192 23:13:16 executing program 4: r0 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x30, r0, 0x224, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x3f}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @rand_addr=' \x01\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000}, 0x4050) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000200)={{{@in6=@empty, @in, 0x0, 0x0, 0x0, 0x13fb, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@private, 0x0, 0x3c}, 0x0, @in=@empty}}, 0xe8) pipe(&(0x7f00000001c0)={0xffffffffffffffff}) fcntl$setpipe(r2, 0x407, 0x0) sendmsg$AUDIT_TRIM(r2, &(0x7f0000000340)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x3f6, 0x100, 0x70bd27, 0x25dfdbfc, "", ["", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8000}, 0x20004001) sendmmsg$inet6(r1, &(0x7f0000008e00)=[{{&(0x7f0000000040)={0xa, 0x4e23, 0x0, @empty}, 0x1c, 0x0}}], 0x1, 0x0) 23:13:16 executing program 4: pipe(&(0x7f00000001c0)={0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x0) openat(r0, &(0x7f0000000100)='./file1\x00', 0x24402, 0x4b) mount$cgroup(0x0, &(0x7f0000000840)='./file1\x00', &(0x7f0000000880), 0x0, &(0x7f0000000a00)={[{@release_agent={'release_agent', 0x3d, './file1'}}, {@release_agent={'release_agent', 0x3d, './file2'}}]}) 23:13:17 executing program 4: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, 0x0, &(0x7f0000000380)) getsockopt$IP_VS_SO_GET_DESTS(0xffffffffffffffff, 0x0, 0x484, &(0x7f0000000000)=""/182, &(0x7f00000000c0)=0xb6) [ 127.179291] loop1: detected capacity change from 0 to 264192 [ 127.190636] nfs4: Unknown parameter '/dev/zero' [ 127.214101] loop1: detected capacity change from 0 to 264192 [ 127.218201] nfs4: Unknown parameter '/dev/zero' 23:13:17 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000040)=""/32, 0x20}, {&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f0000000200)=""/7, 0x7}, {&(0x7f0000000300)=""/127, 0x7f}, {&(0x7f0000000240)=""/34, 0x22}, {&(0x7f0000000380)=""/197, 0xc5}], 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="f73f4a", @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x12001) sendfile(0xffffffffffffffff, r1, &(0x7f0000000800)=0x6, 0x0) syz_open_procfs(r0, &(0x7f0000000600)='attr/fscreate\x00') syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$trusted_overlay_opaque(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700), &(0x7f0000000740), 0x2, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x535081, 0x0) r3 = epoll_create(0x7fffffff) r4 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000040)) r5 = syz_open_dev$rtc(&(0x7f00000007c0), 0x0, 0x0) ioctl$RTC_ALM_SET(r5, 0x40247007, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)={0x8}) ioctl$RNDADDTOENTCNT(0xffffffffffffffff, 0x40045201, &(0x7f0000000780)=0xffff) fsetxattr$security_capability(r5, &(0x7f0000000640), &(0x7f0000000680)=@v2={0x2000000, [{0x0, 0x100}, {0x9, 0x200}]}, 0x14, 0x2) r6 = inotify_init1(0x0) dup2(r6, r2) 23:13:17 executing program 1: syz_mount_image$nfs4(0x0, 0x0, 0x1731c6d0, 0x0, 0x0, 0x88, 0x0) [ 127.340027] audit: type=1400 audit(1664233997.297:8): avc: denied { kernel } for pid=3840 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.357951] ------------[ cut here ]------------ [ 127.357973] [ 127.357977] ====================================================== [ 127.357980] WARNING: possible circular locking dependency detected [ 127.357984] 6.0.0-rc6-next-20220923 #1 Not tainted [ 127.357991] ------------------------------------------------------ [ 127.357994] syz-executor.4/3844 is trying to acquire lock: [ 127.358001] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 127.358041] [ 127.358041] but task is already holding lock: [ 127.358043] ffff88800d7f4820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.358072] [ 127.358072] which lock already depends on the new lock. [ 127.358072] [ 127.358075] [ 127.358075] the existing dependency chain (in reverse order) is: [ 127.358078] [ 127.358078] -> #3 (&ctx->lock){....}-{2:2}: [ 127.358092] _raw_spin_lock+0x2a/0x40 [ 127.358111] __perf_event_task_sched_out+0x53b/0x18d0 [ 127.358124] __schedule+0xedd/0x2470 [ 127.358137] schedule+0xda/0x1b0 [ 127.358150] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.358162] syscall_exit_to_user_mode+0x19/0x40 [ 127.358174] do_syscall_64+0x48/0x90 [ 127.358207] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.358219] [ 127.358219] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 127.358233] _raw_spin_lock_nested+0x30/0x40 [ 127.358251] raw_spin_rq_lock_nested+0x1e/0x30 [ 127.358267] task_fork_fair+0x63/0x4d0 [ 127.358284] sched_cgroup_fork+0x3d0/0x540 [ 127.358298] copy_process+0x4183/0x6e20 [ 127.358309] kernel_clone+0xe7/0x890 [ 127.358318] user_mode_thread+0xad/0xf0 [ 127.358329] rest_init+0x24/0x250 [ 127.358340] arch_call_rest_init+0xf/0x14 [ 127.358357] start_kernel+0x4c1/0x4e6 [ 127.358373] secondary_startup_64_no_verify+0xe0/0xeb [ 127.358387] [ 127.358387] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 127.358401] _raw_spin_lock_irqsave+0x39/0x60 [ 127.358419] try_to_wake_up+0xab/0x1930 [ 127.358431] up+0x75/0xb0 [ 127.358445] __up_console_sem+0x6e/0x80 [ 127.358461] console_unlock+0x46a/0x590 [ 127.358476] vprintk_emit+0x1bd/0x560 [ 127.358492] vprintk+0x84/0xa0 [ 127.358508] _printk+0xba/0xf1 [ 127.358519] kauditd_hold_skb.cold+0x3f/0x4e [ 127.358536] kauditd_send_queue+0x233/0x290 [ 127.358551] kauditd_thread+0x5da/0x9a0 [ 127.358565] kthread+0x2ed/0x3a0 [ 127.358580] ret_from_fork+0x22/0x30 [ 127.358592] [ 127.358592] -> #0 ((console_sem).lock){....}-{2:2}: [ 127.358605] __lock_acquire+0x2a02/0x5e70 [ 127.358622] lock_acquire+0x1a2/0x530 [ 127.358638] _raw_spin_lock_irqsave+0x39/0x60 [ 127.358656] down_trylock+0xe/0x70 [ 127.358670] __down_trylock_console_sem+0x3b/0xd0 [ 127.358685] vprintk_emit+0x16b/0x560 [ 127.358701] vprintk+0x84/0xa0 [ 127.358716] _printk+0xba/0xf1 [ 127.358726] report_bug.cold+0x72/0xab [ 127.358742] handle_bug+0x3c/0x70 [ 127.358758] exc_invalid_op+0x14/0x50 [ 127.358774] asm_exc_invalid_op+0x16/0x20 [ 127.358785] group_sched_out.part.0+0x2c7/0x460 [ 127.358796] ctx_sched_out+0x8f1/0xc10 [ 127.358806] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.358818] __schedule+0xedd/0x2470 [ 127.358831] schedule+0xda/0x1b0 [ 127.358844] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.358854] syscall_exit_to_user_mode+0x19/0x40 [ 127.358866] do_syscall_64+0x48/0x90 [ 127.358884] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.358898] [ 127.358898] other info that might help us debug this: [ 127.358898] [ 127.358901] Chain exists of: [ 127.358901] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 127.358901] [ 127.358916] Possible unsafe locking scenario: [ 127.358916] [ 127.358919] CPU0 CPU1 [ 127.358921] ---- ---- [ 127.358923] lock(&ctx->lock); [ 127.358929] lock(&rq->__lock); [ 127.358935] lock(&ctx->lock); [ 127.358942] lock((console_sem).lock); [ 127.358947] [ 127.358947] *** DEADLOCK *** [ 127.358947] [ 127.358949] 2 locks held by syz-executor.4/3844: [ 127.358956] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 127.358984] #1: ffff88800d7f4820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.359011] [ 127.359011] stack backtrace: [ 127.359014] CPU: 0 PID: 3844 Comm: syz-executor.4 Not tainted 6.0.0-rc6-next-20220923 #1 [ 127.359027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.359035] Call Trace: [ 127.359039] [ 127.359044] dump_stack_lvl+0x8b/0xb3 [ 127.359062] check_noncircular+0x263/0x2e0 [ 127.359078] ? format_decode+0x26c/0xb50 [ 127.359094] ? print_circular_bug+0x450/0x450 [ 127.359111] ? enable_ptr_key_workfn+0x20/0x20 [ 127.359127] ? format_decode+0x26c/0xb50 [ 127.359144] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 127.359161] __lock_acquire+0x2a02/0x5e70 [ 127.359182] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 127.359204] lock_acquire+0x1a2/0x530 [ 127.359220] ? down_trylock+0xe/0x70 [ 127.359237] ? lock_release+0x750/0x750 [ 127.359257] ? vprintk+0x84/0xa0 [ 127.359274] _raw_spin_lock_irqsave+0x39/0x60 [ 127.359293] ? down_trylock+0xe/0x70 [ 127.359308] down_trylock+0xe/0x70 [ 127.359323] ? vprintk+0x84/0xa0 [ 127.359340] __down_trylock_console_sem+0x3b/0xd0 [ 127.359356] vprintk_emit+0x16b/0x560 [ 127.359375] vprintk+0x84/0xa0 [ 127.359392] _printk+0xba/0xf1 [ 127.359403] ? record_print_text.cold+0x16/0x16 [ 127.359418] ? report_bug.cold+0x66/0xab [ 127.359435] ? group_sched_out.part.0+0x2c7/0x460 [ 127.359447] report_bug.cold+0x72/0xab [ 127.359465] handle_bug+0x3c/0x70 [ 127.359481] exc_invalid_op+0x14/0x50 [ 127.359499] asm_exc_invalid_op+0x16/0x20 [ 127.359511] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.359524] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.359535] RSP: 0018:ffff888041637c48 EFLAGS: 00010006 [ 127.359545] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.359552] RDX: ffff88801d6c8000 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 127.359561] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 127.359568] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800d7f4800 [ 127.359576] R13: ffff88806ce3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 127.359586] ? group_sched_out.part.0+0x2c7/0x460 [ 127.359599] ? group_sched_out.part.0+0x2c7/0x460 [ 127.359612] ctx_sched_out+0x8f1/0xc10 [ 127.359625] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.359640] ? lock_is_held_type+0xd7/0x130 [ 127.359654] ? __perf_cgroup_move+0x160/0x160 [ 127.359665] ? set_next_entity+0x304/0x550 [ 127.359683] ? update_curr+0x267/0x740 [ 127.359701] ? lock_is_held_type+0xd7/0x130 [ 127.359714] __schedule+0xedd/0x2470 [ 127.359730] ? io_schedule_timeout+0x150/0x150 [ 127.359746] ? rcu_read_lock_sched_held+0x3e/0x80 [ 127.359767] schedule+0xda/0x1b0 [ 127.359781] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.359793] syscall_exit_to_user_mode+0x19/0x40 [ 127.359806] do_syscall_64+0x48/0x90 [ 127.359823] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.359836] RIP: 0033:0x7f2b461efb19 [ 127.359844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.359855] RSP: 002b:00007f2b43765218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.359866] RAX: 0000000000000001 RBX: 00007f2b46302f68 RCX: 00007f2b461efb19 [ 127.359873] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2b46302f6c [ 127.359881] RBP: 00007f2b46302f60 R08: 000000000000000e R09: 0000000000000000 [ 127.359888] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f2b46302f6c [ 127.359895] R13: 00007ffdd8aa50df R14: 00007f2b43765300 R15: 0000000000022000 [ 127.359907] [ 127.418392] WARNING: CPU: 0 PID: 3844 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 127.419100] Modules linked in: [ 127.419355] CPU: 0 PID: 3844 Comm: syz-executor.4 Not tainted 6.0.0-rc6-next-20220923 #1 [ 127.419977] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.420834] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.421255] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.422669] RSP: 0018:ffff888041637c48 EFLAGS: 00010006 [ 127.423085] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.423638] RDX: ffff88801d6c8000 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 127.424181] RBP: ffff888008668000 R08: 0000000000000005 R09: 0000000000000001 [ 127.424726] R10: 0000000000000000 R11: ffffffff865b001b R12: ffff88800d7f4800 [ 127.425270] R13: ffff88806ce3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 127.425826] FS: 00007f2b43765700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 127.426465] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.426912] CR2: 00007f8011466028 CR3: 000000000c098000 CR4: 0000000000350ef0 [ 127.427455] Call Trace: [ 127.427657] [ 127.427839] ctx_sched_out+0x8f1/0xc10 [ 127.428144] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.428544] ? lock_is_held_type+0xd7/0x130 [ 127.428881] ? __perf_cgroup_move+0x160/0x160 [ 127.429237] ? set_next_entity+0x304/0x550 [ 127.429569] ? update_curr+0x267/0x740 [ 127.429878] ? lock_is_held_type+0xd7/0x130 [ 127.430225] __schedule+0xedd/0x2470 [ 127.430528] ? io_schedule_timeout+0x150/0x150 [ 127.430890] ? rcu_read_lock_sched_held+0x3e/0x80 [ 127.431267] schedule+0xda/0x1b0 [ 127.431540] exit_to_user_mode_prepare+0x114/0x1a0 [ 127.431926] syscall_exit_to_user_mode+0x19/0x40 [ 127.432293] do_syscall_64+0x48/0x90 [ 127.432586] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.432990] RIP: 0033:0x7f2b461efb19 [ 127.433284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.434674] RSP: 002b:00007f2b43765218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.435254] RAX: 0000000000000001 RBX: 00007f2b46302f68 RCX: 00007f2b461efb19 [ 127.435802] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f2b46302f6c [ 127.436352] RBP: 00007f2b46302f60 R08: 000000000000000e R09: 0000000000000000 [ 127.436901] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f2b46302f6c [ 127.437462] R13: 00007ffdd8aa50df R14: 00007f2b43765300 R15: 0000000000022000 [ 127.438013] [ 127.438206] irq event stamp: 554 [ 127.438474] hardirqs last enabled at (553): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 127.439197] hardirqs last disabled at (554): [] __schedule+0x1225/0x2470 [ 127.439839] softirqs last enabled at (434): [] __irq_exit_rcu+0x11b/0x180 [ 127.440494] softirqs last disabled at (383): [] __irq_exit_rcu+0x11b/0x180 [ 127.441151] ---[ end trace 0000000000000000 ]--- 23:13:17 executing program 5: r0 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ffb000/0x3000)=nil) shmat(r0, &(0x7f0000ffa000/0x1000)=nil, 0x7000) mbind(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3, 0x0, 0x0, 0x0) get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffb000/0x1000)=nil, 0x3) 23:13:17 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000005c0)={&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000480)=[{&(0x7f0000000040)=""/32, 0x20}, {&(0x7f00000001c0)=""/27, 0x1b}, {&(0x7f0000000200)=""/7, 0x7}, {&(0x7f0000000300)=""/127, 0x7f}, {&(0x7f0000000240)=""/34, 0x22}, {&(0x7f0000000380)=""/197, 0xc5}], 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="f73f4a", @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xa0}, 0x12001) sendfile(0xffffffffffffffff, r1, &(0x7f0000000800)=0x6, 0x0) syz_open_procfs(r0, &(0x7f0000000600)='attr/fscreate\x00') syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) setxattr$trusted_overlay_opaque(&(0x7f00000006c0)='./file0\x00', &(0x7f0000000700), &(0x7f0000000740), 0x2, 0x0) ptrace$setopts(0xffffffffffffffff, 0x0, 0x0, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x535081, 0x0) r3 = epoll_create(0x7fffffff) r4 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000040)) r5 = syz_open_dev$rtc(&(0x7f00000007c0), 0x0, 0x0) ioctl$RTC_ALM_SET(r5, 0x40247007, &(0x7f0000000000)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r5, &(0x7f0000000040)={0x8}) ioctl$RNDADDTOENTCNT(0xffffffffffffffff, 0x40045201, &(0x7f0000000780)=0xffff) fsetxattr$security_capability(r5, &(0x7f0000000640), &(0x7f0000000680)=@v2={0x2000000, [{0x0, 0x100}, {0x9, 0x200}]}, 0x14, 0x2) r6 = inotify_init1(0x0) dup2(r6, r2) VM DIAGNOSIS: 23:13:17 Registers: info registers vcpu 0 RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff888041637698 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000065 R11=0000000000000001 R12=0000000000000065 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0 RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f2b43765700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8011466028 CR3=000000000c098000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f2b462d67c0 00007f2b462d67c8 YMM02=0000000000000000 0000000000000000 00007f2b462d67e0 00007f2b462d67c0 YMM03=0000000000000000 0000000000000000 00007f2b462d67c8 00007f2b462d67c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=00007f18c7db1000 RCX=ffffffff816c3ad8 RDX=ffff888040430000 RSI=0000000000000000 RDI=0000000000000006 RBP=ffff8880415efce0 RSP=ffff8880415efc08 R8 =0000000000000006 R9 =00007f18c7db0000 R10=00007f18c7db1000 R11=0000000000000001 R12=00007f18c7db0000 R13=ffff888008525400 R14=0000000000000000 R15=000000e73824f000 RIP=ffffffff81460af0 RFL=00000287 [--S--PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f18c7db4368 CR3=000000001a6e2000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 322e6f732e6c6462 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 00322e6f732e6c64 62696c2f756e672d YMM03=0000000000000000 0000000000000000 78756e696c2d3436 5f3638782f62696c YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000