Warning: Permanently added '[localhost]:51324' (ECDSA) to the list of known hosts. 2022/09/27 20:29:34 fuzzer started 2022/09/27 20:29:34 dialing manager at localhost:38881 syzkaller login: [ 38.711110] cgroup: Unknown subsys name 'net' [ 38.792235] cgroup: Unknown subsys name 'rlimit' 2022/09/27 20:29:48 syscalls: 2215 2022/09/27 20:29:48 code coverage: enabled 2022/09/27 20:29:48 comparison tracing: enabled 2022/09/27 20:29:48 extra coverage: enabled 2022/09/27 20:29:48 setuid sandbox: enabled 2022/09/27 20:29:48 namespace sandbox: enabled 2022/09/27 20:29:48 Android sandbox: enabled 2022/09/27 20:29:48 fault injection: enabled 2022/09/27 20:29:48 leak checking: enabled 2022/09/27 20:29:48 net packet injection: enabled 2022/09/27 20:29:48 net device setup: enabled 2022/09/27 20:29:48 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/27 20:29:48 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/27 20:29:48 USB emulation: enabled 2022/09/27 20:29:48 hci packet injection: enabled 2022/09/27 20:29:48 wifi device emulation: failed to parse kernel version (6.0.0-rc6-next-20220923) 2022/09/27 20:29:48 802.15.4 emulation: enabled 2022/09/27 20:29:49 fetching corpus: 50, signal 23756/25577 (executing program) 2022/09/27 20:29:49 fetching corpus: 100, signal 32979/36495 (executing program) 2022/09/27 20:29:49 fetching corpus: 150, signal 40251/45404 (executing program) 2022/09/27 20:29:49 fetching corpus: 200, signal 46411/53078 (executing program) 2022/09/27 20:29:49 fetching corpus: 250, signal 50557/58726 (executing program) 2022/09/27 20:29:49 fetching corpus: 300, signal 54616/64237 (executing program) 2022/09/27 20:29:49 fetching corpus: 350, signal 62277/73124 (executing program) 2022/09/27 20:29:49 fetching corpus: 400, signal 67217/79314 (executing program) 2022/09/27 20:29:50 fetching corpus: 450, signal 72082/85366 (executing program) 2022/09/27 20:29:50 fetching corpus: 500, signal 74624/89218 (executing program) 2022/09/27 20:29:50 fetching corpus: 550, signal 77553/93372 (executing program) 2022/09/27 20:29:50 fetching corpus: 600, signal 81624/98575 (executing program) 2022/09/27 20:29:50 fetching corpus: 650, signal 83822/101970 (executing program) 2022/09/27 20:29:50 fetching corpus: 700, signal 87080/106309 (executing program) 2022/09/27 20:29:50 fetching corpus: 750, signal 91143/111341 (executing program) 2022/09/27 20:29:50 fetching corpus: 800, signal 92274/113648 (executing program) 2022/09/27 20:29:51 fetching corpus: 850, signal 96109/118342 (executing program) 2022/09/27 20:29:51 fetching corpus: 900, signal 97372/120771 (executing program) 2022/09/27 20:29:51 fetching corpus: 950, signal 101162/125340 (executing program) 2022/09/27 20:29:51 fetching corpus: 1000, signal 103453/128609 (executing program) 2022/09/27 20:29:51 fetching corpus: 1050, signal 105190/131366 (executing program) 2022/09/27 20:29:51 fetching corpus: 1100, signal 107826/134870 (executing program) 2022/09/27 20:29:51 fetching corpus: 1150, signal 110196/138076 (executing program) 2022/09/27 20:29:51 fetching corpus: 1200, signal 114063/142518 (executing program) 2022/09/27 20:29:52 fetching corpus: 1250, signal 115935/145207 (executing program) 2022/09/27 20:29:52 fetching corpus: 1300, signal 118464/148390 (executing program) 2022/09/27 20:29:52 fetching corpus: 1350, signal 120381/151076 (executing program) 2022/09/27 20:29:52 fetching corpus: 1400, signal 121990/153573 (executing program) 2022/09/27 20:29:52 fetching corpus: 1450, signal 123035/155540 (executing program) 2022/09/27 20:29:52 fetching corpus: 1500, signal 124043/157446 (executing program) 2022/09/27 20:29:52 fetching corpus: 1550, signal 125494/159697 (executing program) 2022/09/27 20:29:52 fetching corpus: 1600, signal 128024/162838 (executing program) 2022/09/27 20:29:52 fetching corpus: 1650, signal 129759/165207 (executing program) 2022/09/27 20:29:53 fetching corpus: 1700, signal 131239/167313 (executing program) 2022/09/27 20:29:53 fetching corpus: 1750, signal 132289/169155 (executing program) 2022/09/27 20:29:53 fetching corpus: 1800, signal 133188/170906 (executing program) 2022/09/27 20:29:53 fetching corpus: 1850, signal 134656/173064 (executing program) 2022/09/27 20:29:53 fetching corpus: 1900, signal 136320/175345 (executing program) 2022/09/27 20:29:53 fetching corpus: 1950, signal 137463/177174 (executing program) 2022/09/27 20:29:53 fetching corpus: 2000, signal 139229/179424 (executing program) 2022/09/27 20:29:53 fetching corpus: 2050, signal 141783/182292 (executing program) 2022/09/27 20:29:53 fetching corpus: 2100, signal 142593/183839 (executing program) 2022/09/27 20:29:54 fetching corpus: 2150, signal 143800/185644 (executing program) 2022/09/27 20:29:54 fetching corpus: 2200, signal 144690/187240 (executing program) 2022/09/27 20:29:54 fetching corpus: 2250, signal 145445/188723 (executing program) 2022/09/27 20:29:54 fetching corpus: 2300, signal 146325/190272 (executing program) 2022/09/27 20:29:54 fetching corpus: 2350, signal 147089/191741 (executing program) 2022/09/27 20:29:54 fetching corpus: 2400, signal 147978/193314 (executing program) 2022/09/27 20:29:54 fetching corpus: 2450, signal 149066/194944 (executing program) 2022/09/27 20:29:54 fetching corpus: 2500, signal 150243/196638 (executing program) 2022/09/27 20:29:54 fetching corpus: 2550, signal 151028/198034 (executing program) 2022/09/27 20:29:54 fetching corpus: 2600, signal 151662/199335 (executing program) 2022/09/27 20:29:55 fetching corpus: 2650, signal 152824/200957 (executing program) 2022/09/27 20:29:55 fetching corpus: 2700, signal 153333/202165 (executing program) 2022/09/27 20:29:55 fetching corpus: 2750, signal 153705/203327 (executing program) 2022/09/27 20:29:55 fetching corpus: 2800, signal 154437/204693 (executing program) 2022/09/27 20:29:55 fetching corpus: 2850, signal 154905/205887 (executing program) 2022/09/27 20:29:55 fetching corpus: 2900, signal 156517/207780 (executing program) 2022/09/27 20:29:55 fetching corpus: 2950, signal 157117/209023 (executing program) 2022/09/27 20:29:55 fetching corpus: 3000, signal 157808/210302 (executing program) 2022/09/27 20:29:55 fetching corpus: 3050, signal 158813/211830 (executing program) 2022/09/27 20:29:56 fetching corpus: 3100, signal 160530/213658 (executing program) 2022/09/27 20:29:56 fetching corpus: 3150, signal 161719/215199 (executing program) 2022/09/27 20:29:56 fetching corpus: 3200, signal 162851/216668 (executing program) 2022/09/27 20:29:56 fetching corpus: 3250, signal 164025/218144 (executing program) 2022/09/27 20:29:56 fetching corpus: 3300, signal 164563/219262 (executing program) 2022/09/27 20:29:56 fetching corpus: 3350, signal 165579/220667 (executing program) 2022/09/27 20:29:56 fetching corpus: 3400, signal 166253/221841 (executing program) 2022/09/27 20:29:56 fetching corpus: 3450, signal 166860/222929 (executing program) 2022/09/27 20:29:57 fetching corpus: 3500, signal 168216/224478 (executing program) 2022/09/27 20:29:57 fetching corpus: 3550, signal 168717/225517 (executing program) 2022/09/27 20:29:57 fetching corpus: 3600, signal 169510/226708 (executing program) 2022/09/27 20:29:57 fetching corpus: 3650, signal 170258/227867 (executing program) 2022/09/27 20:29:57 fetching corpus: 3700, signal 171486/229269 (executing program) 2022/09/27 20:29:57 fetching corpus: 3750, signal 172060/230286 (executing program) 2022/09/27 20:29:57 fetching corpus: 3800, signal 173277/231607 (executing program) 2022/09/27 20:29:57 fetching corpus: 3850, signal 173829/232654 (executing program) 2022/09/27 20:29:57 fetching corpus: 3900, signal 174337/233618 (executing program) 2022/09/27 20:29:57 fetching corpus: 3950, signal 175066/234688 (executing program) 2022/09/27 20:29:58 fetching corpus: 4000, signal 175827/235747 (executing program) 2022/09/27 20:29:58 fetching corpus: 4050, signal 176322/236736 (executing program) 2022/09/27 20:29:58 fetching corpus: 4100, signal 177013/237734 (executing program) 2022/09/27 20:29:58 fetching corpus: 4150, signal 177543/238720 (executing program) 2022/09/27 20:29:58 fetching corpus: 4200, signal 178044/239662 (executing program) 2022/09/27 20:29:58 fetching corpus: 4250, signal 179109/240808 (executing program) 2022/09/27 20:29:58 fetching corpus: 4300, signal 179764/241882 (executing program) 2022/09/27 20:29:58 fetching corpus: 4350, signal 180373/242810 (executing program) 2022/09/27 20:29:58 fetching corpus: 4400, signal 180822/243713 (executing program) 2022/09/27 20:29:58 fetching corpus: 4450, signal 181752/244764 (executing program) 2022/09/27 20:29:59 fetching corpus: 4500, signal 182428/245693 (executing program) 2022/09/27 20:29:59 fetching corpus: 4550, signal 183055/246660 (executing program) 2022/09/27 20:29:59 fetching corpus: 4600, signal 183550/247529 (executing program) 2022/09/27 20:29:59 fetching corpus: 4650, signal 184023/248355 (executing program) 2022/09/27 20:29:59 fetching corpus: 4700, signal 184884/249287 (executing program) 2022/09/27 20:29:59 fetching corpus: 4750, signal 185755/250235 (executing program) 2022/09/27 20:29:59 fetching corpus: 4800, signal 186199/251040 (executing program) 2022/09/27 20:29:59 fetching corpus: 4850, signal 186844/251947 (executing program) 2022/09/27 20:30:00 fetching corpus: 4900, signal 187526/252848 (executing program) 2022/09/27 20:30:00 fetching corpus: 4950, signal 187869/253607 (executing program) 2022/09/27 20:30:00 fetching corpus: 5000, signal 188541/254456 (executing program) 2022/09/27 20:30:00 fetching corpus: 5050, signal 189091/255235 (executing program) 2022/09/27 20:30:00 fetching corpus: 5100, signal 190121/256206 (executing program) 2022/09/27 20:30:00 fetching corpus: 5150, signal 190911/257064 (executing program) 2022/09/27 20:30:00 fetching corpus: 5200, signal 191343/257856 (executing program) 2022/09/27 20:30:00 fetching corpus: 5250, signal 191968/258659 (executing program) 2022/09/27 20:30:00 fetching corpus: 5300, signal 192453/259418 (executing program) 2022/09/27 20:30:01 fetching corpus: 5350, signal 192889/260095 (executing program) 2022/09/27 20:30:01 fetching corpus: 5400, signal 193480/260854 (executing program) 2022/09/27 20:30:01 fetching corpus: 5450, signal 193904/261594 (executing program) 2022/09/27 20:30:01 fetching corpus: 5500, signal 196010/262669 (executing program) 2022/09/27 20:30:01 fetching corpus: 5550, signal 196458/263361 (executing program) 2022/09/27 20:30:01 fetching corpus: 5600, signal 196821/264015 (executing program) 2022/09/27 20:30:01 fetching corpus: 5650, signal 197249/264707 (executing program) 2022/09/27 20:30:01 fetching corpus: 5700, signal 197493/265288 (executing program) 2022/09/27 20:30:02 fetching corpus: 5750, signal 198242/266020 (executing program) 2022/09/27 20:30:02 fetching corpus: 5800, signal 199354/266819 (executing program) 2022/09/27 20:30:02 fetching corpus: 5850, signal 200287/267517 (executing program) 2022/09/27 20:30:02 fetching corpus: 5900, signal 200762/268155 (executing program) 2022/09/27 20:30:02 fetching corpus: 5950, signal 201068/268744 (executing program) 2022/09/27 20:30:02 fetching corpus: 6000, signal 201568/269389 (executing program) 2022/09/27 20:30:02 fetching corpus: 6050, signal 201961/269994 (executing program) 2022/09/27 20:30:02 fetching corpus: 6100, signal 202696/270658 (executing program) 2022/09/27 20:30:03 fetching corpus: 6150, signal 203053/271306 (executing program) 2022/09/27 20:30:03 fetching corpus: 6200, signal 203752/271939 (executing program) 2022/09/27 20:30:03 fetching corpus: 6250, signal 204029/272548 (executing program) 2022/09/27 20:30:03 fetching corpus: 6300, signal 204895/273175 (executing program) 2022/09/27 20:30:03 fetching corpus: 6350, signal 205277/273747 (executing program) 2022/09/27 20:30:03 fetching corpus: 6400, signal 205760/274326 (executing program) 2022/09/27 20:30:03 fetching corpus: 6450, signal 206112/274846 (executing program) 2022/09/27 20:30:03 fetching corpus: 6500, signal 206326/275417 (executing program) 2022/09/27 20:30:03 fetching corpus: 6550, signal 206842/275961 (executing program) 2022/09/27 20:30:04 fetching corpus: 6600, signal 207427/276487 (executing program) 2022/09/27 20:30:04 fetching corpus: 6650, signal 207795/276985 (executing program) 2022/09/27 20:30:04 fetching corpus: 6700, signal 208421/277537 (executing program) 2022/09/27 20:30:04 fetching corpus: 6750, signal 208830/278126 (executing program) 2022/09/27 20:30:04 fetching corpus: 6800, signal 209442/278727 (executing program) 2022/09/27 20:30:04 fetching corpus: 6850, signal 210164/279246 (executing program) 2022/09/27 20:30:04 fetching corpus: 6900, signal 210667/279729 (executing program) 2022/09/27 20:30:04 fetching corpus: 6950, signal 211086/279874 (executing program) 2022/09/27 20:30:04 fetching corpus: 7000, signal 211413/279874 (executing program) 2022/09/27 20:30:05 fetching corpus: 7050, signal 211705/279874 (executing program) 2022/09/27 20:30:05 fetching corpus: 7100, signal 212165/279875 (executing program) 2022/09/27 20:30:05 fetching corpus: 7150, signal 212489/279875 (executing program) 2022/09/27 20:30:05 fetching corpus: 7200, signal 212774/279877 (executing program) 2022/09/27 20:30:05 fetching corpus: 7250, signal 213032/279877 (executing program) 2022/09/27 20:30:05 fetching corpus: 7300, signal 213411/279877 (executing program) 2022/09/27 20:30:05 fetching corpus: 7350, signal 213782/279877 (executing program) 2022/09/27 20:30:05 fetching corpus: 7400, signal 214234/279877 (executing program) 2022/09/27 20:30:05 fetching corpus: 7450, signal 214759/279877 (executing program) 2022/09/27 20:30:06 fetching corpus: 7500, signal 215088/279881 (executing program) 2022/09/27 20:30:06 fetching corpus: 7550, signal 215426/279881 (executing program) 2022/09/27 20:30:06 fetching corpus: 7600, signal 215839/279883 (executing program) 2022/09/27 20:30:06 fetching corpus: 7650, signal 216402/279883 (executing program) 2022/09/27 20:30:06 fetching corpus: 7700, signal 217133/279887 (executing program) 2022/09/27 20:30:06 fetching corpus: 7750, signal 217945/279890 (executing program) 2022/09/27 20:30:06 fetching corpus: 7796, signal 218352/279890 (executing program) 2022/09/27 20:30:06 fetching corpus: 7796, signal 218352/279890 (executing program) 2022/09/27 20:30:09 starting 8 fuzzer processes 20:30:09 executing program 0: r0 = msgget$private(0x0, 0x882) msgsnd(r0, &(0x7f0000000000)={0x3, "34d3faaf38f7d3938fb691ed1464097baae822f406fe7a729d77"}, 0x22, 0x0) r1 = msgget(0x1, 0x82) r2 = msgget(0x1, 0x4) msgctl$IPC_INFO(r2, 0x3, &(0x7f0000000040)=""/55) msgsnd(r1, &(0x7f0000000080)={0x0, "dfde71186cf7b82cf4553e0883b2b80a3bc8b5fe620e9ddd160635404252298cc7536983a4ced5a72b7ffe13443e07b46ffa6322eec1de30a0a5b4f7edf4865f4cfd821bc74e47782250e2210627"}, 0x56, 0x800) msgrcv(0x0, &(0x7f0000000100)={0x0, ""/4096}, 0x1008, 0x0, 0x1000) msgrcv(r0, &(0x7f0000001140)={0x0, ""/9}, 0x11, 0x3, 0x0) msgctl$IPC_RMID(r1, 0x0) r3 = msgget$private(0x0, 0x541) msgctl$IPC_INFO(r3, 0x3, &(0x7f0000001180)=""/89) msgrcv(r2, &(0x7f0000001200)={0x0, ""/187}, 0xc3, 0x0, 0x1000) msgsnd(r0, &(0x7f0000001300)={0x1, "d8ea78918592827545e938626509d6d00aa7b4a99c017937e8122577396d12b59ab9f0d940ace0660fc1f52f30f5d93ae494eee7acb7f6d7c764969b90e91b80e96f5fc5db73f2405940f1750e81dfb66a69a58f0d0b69c85a467c7cb8ea6a4c4b"}, 0x69, 0x0) msgctl$IPC_RMID(0xffffffffffffffff, 0x0) msgsnd(r3, &(0x7f0000001380)={0x0, "8d95e23a5066bf0875419e0825d0596ec677f46d2c7e05656074a208b824980f2d619b4adae4aaf80932cb3bf667ccddecb17bd573b7abfe3c8e0fd1edd2712478136518c99716e537424b03cea3bed49cfd2c45c3def388152688f8aee4d8c05001c5c4590069d4695d131a3d350e97649f52204157007694cbbd6d1e0b2f7459d718cce9ad200cb51699abaffa230b8689033ee0eee97bcf731a9a258b9f0cf02adb36f4555c4264aebde9ff581d84cfc958c2ef56505b4ab900ee5b8a23e08d0304024f69c923858ef56715da583de7f57b70c6cc08d174258368e0b409c3815a8e14ec254778b349fa20377d2170734305"}, 0xfb, 0x800) r4 = msgget$private(0x0, 0x4) msgrcv(r4, &(0x7f0000001480)={0x0, ""/194}, 0xca, 0x2, 0x0) msgsnd(r2, &(0x7f0000001580)={0x2, "6f791853fdb428a6a7450f96db7aa8dedec9ab4c0603768145ce920207d9ff3711b57ef301a29493eb14897351cdb1347cd162fb7a9ac48dfcb733ee71c296e34b86890b8312b938bfebee24f37e983d0c137c7f0e31d6426bc9140bd223b9b78a643a1f47f93dc56ba093"}, 0x73, 0x800) msgrcv(r3, &(0x7f0000001600)={0x0, ""/78}, 0x56, 0x0, 0x0) msgrcv(r1, &(0x7f0000001680)={0x0, ""/136}, 0x90, 0x1, 0x2000) 20:30:09 executing program 1: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000), 0x8) r1 = gettid() sendmsg$AUDIT_SET(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x38, 0x3e9, 0x62a, 0x70bd2d, 0x25dfdbfc, {0x0, 0x1, 0x0, r1, 0x6, 0x40, 0x7ff, 0xe6, 0x0, 0x2}, [""]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x40883) sendmsg$NLBL_CIPSOV4_C_LIST(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)={0x154, 0x0, 0x8, 0x70bd2a, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_MLSLVLLST={0xcc, 0x8, 0x0, 0x1, [{0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x46}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7cbbc753}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x16de5c44}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x60be9fd5}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3d}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x11097ace}]}, {0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3bb5d50}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x4d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x89}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x111e7a3c}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x5b2f83ab}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x3ab5ac93}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xab}]}, {0xc, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd5}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x6}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x7601576a}]}, {0x24, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xf977dca}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x25}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x16afbb85}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xf9}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_MLSLVLLST={0x54, 0x8, 0x0, 0x1, [{0x3c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x774c5e72}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x12}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x59d68d54}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x515554ba}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x24}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x21}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x3a}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x154}, 0x1, 0x0, 0x0, 0x4006081}, 0x4) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0xc3b208a51ae9c64d}, 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x80, 0x0, 0x20, 0x70bd28, 0x25dfdbfc, {}, [@TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x401}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xfffffffb}]}, @TIPC_NLA_LINK={0x1c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_LINK={0x34, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8001}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x60004012}, 0x80) kcmp(r1, r1, 0x6, 0xffffffffffffffff, r0) pipe2$9p(&(0x7f00000004c0)={0xffffffffffffffff}, 0x80000) r3 = signalfd(r2, &(0x7f0000000500)={[0x3]}, 0x8) timer_create(0x6, &(0x7f0000000700)={0x0, 0x4, 0x1, @thr={&(0x7f0000000540)="4727e6acee9e19653e22db364d82188304faf3ad4cfd8c4b5ac64f20f773386c7552610738c3b93a92088fc105e4b144227d89aaab76743e2e61aa7c39d40309263a0540862c00964d3872d239407392901e7608be428c54707946be18f55d583fbcd4f246241bda5a8d70ab0310fe764cf83b25268205c39ef2b8f7d567467e0976fb945c46b3b2da3603406ab59e273b3a8166f8070391d17c1e", &(0x7f0000000600)="b7c1fbb5ecad8db8a1a7448e8450c00927ba1899a8b457d18bcf1ad89ce2b3571891b4c09f62a01b8574eaca6c667ad48cde40e9bdc5cb4e3850717bdb248188e9273b97c83faffa7efa2797b26251195b3ecc3541df60c90aa88eba66464c1bc2e3594ca148adca0969f80fa5f15684276ceafcd221278c7970ad1bc6f3789b1f5051713f57519345ad23e8847b2af40c5715f036081cf2901f60e6ef92d710c339bb9603f30171e01b5ad68d8e19261f975845d6cab20b9b889d515343de65e543329e05dde2e31e9c0a871a525691f0e475b0611cb18a56955fd9"}}, &(0x7f0000000740)=0x0) fgetxattr(r0, &(0x7f0000000780)=@random={'system.', 'syz1\x00'}, &(0x7f00000007c0)=""/8, 0x8) sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f00000008c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x2c, 0x0, 0x4e639c73ee0bca3c, 0x70bd28, 0x25dfdbff, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffffffff}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x8}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x8000}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20048054) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000900)={{0x1, 0x1, 0x18, r3, {0xff}}, './file0\x00'}) fsetxattr$security_evm(r5, &(0x7f0000000940), &(0x7f0000000980)=@sha1={0x1, "d14295cf7f2e2541be8b43a70b8416857d2b16d3"}, 0x15, 0x0) timer_settime(r4, 0x0, &(0x7f00000009c0), &(0x7f0000000a00)) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000a80)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r5, &(0x7f0000000bc0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000b80)={&(0x7f0000000ac0)={0xbc, 0x0, 0x0, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_SCHED_SCAN_MULTI={0x4}, @NL80211_ATTR_IE={0x7e, 0x2a, [@supported_rates={0x1, 0x4, [{0x12, 0x1}, {0xc, 0x1}, {0x18, 0x1}, {0x9, 0x1}]}, @preq={0x82, 0x72, @not_ext={{0x0, 0x0, 0x1}, 0x8, 0x0, 0x2, @device_a, 0x8001, "", 0x5, 0x3ff, 0x8, [{{0x1}, @device_a, 0x1000}, {{}, @broadcast, 0x8}, {{}, @device_a, 0xac}, {{0x1, 0x0, 0x1}, @device_b, 0x1}, {{}, @broadcast, 0x4}, {{0x0, 0x0, 0x1}, @device_a, 0x193}, {{0x0, 0x0, 0x1}, @broadcast}, {{0x1, 0x0, 0x1}, @device_b, 0x5}]}}]}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0xd, 0x4}}, @NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0x5, 0x8}}, @NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x6}]}, 0xbc}, 0x1, 0x0, 0x0, 0x24040000}, 0x0) r7 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) ioctl$F2FS_IOC_FLUSH_DEVICE(r7, 0x4008f50a, &(0x7f0000000c00)={0x4, 0x6}) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c80), r3) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000d80)={&(0x7f0000000c40)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x68, r8, 0x800, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x16, 0xcd, [0x8cfd, 0xffff, 0x101, 0x1, 0x0, 0x1, 0x3ff, 0x2, 0x400]}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x10e6}, @NL80211_ATTR_FRAME={0x34, 0x33, @action={@wo_ht={{0x0, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x5}, @broadcast, @device_a, @from_mac=@device_b, {0x3, 0x521}}, @sp_mp_confirm={0xf, 0x2, {0x10, @default, {0x1, 0x8, [{0x5}, {0x6c, 0x1}, {0x16}, {0x16, 0x1}, {0x60}, {0x0, 0x1}, {0x6c}, {0x60}]}, @val={0x72, 0x6}, @void}}}}]}, 0x68}, 0x1, 0x0, 0x0, 0x20000000}, 0x20001154) 20:30:09 executing program 6: sysfs$2(0x2, 0x200, &(0x7f0000000000)=""/162) sysfs$2(0x2, 0xce7c, &(0x7f00000000c0)=""/42) sysfs$2(0x2, 0x4, &(0x7f0000000100)=""/156) sysfs$2(0x2, 0x8001, &(0x7f00000001c0)=""/174) sysfs$2(0x2, 0x5, &(0x7f0000000280)=""/181) sysfs$2(0x2, 0x9, &(0x7f0000000340)=""/127) sysfs$2(0x2, 0x20, &(0x7f00000003c0)=""/17) sysfs$2(0x2, 0x1, &(0x7f0000000400)=""/4096) sysfs$2(0x2, 0x7, &(0x7f0000001400)=""/233) sysfs$2(0x2, 0x8, &(0x7f0000001500)=""/108) sysfs$2(0x2, 0x9, &(0x7f0000001580)=""/62) sysfs$2(0x2, 0x4, &(0x7f00000015c0)=""/148) sysfs$2(0x2, 0x7f, &(0x7f0000001680)) sysfs$2(0x2, 0x5, &(0x7f00000016c0)=""/121) sysfs$2(0x2, 0x9, &(0x7f0000001740)=""/141) sysfs$2(0x2, 0xd5d3795, &(0x7f0000001800)=""/106) sysfs$2(0x2, 0x0, &(0x7f0000001880)=""/203) sysfs$2(0x2, 0x49, &(0x7f0000001980)=""/56) sysfs$2(0x2, 0x3, &(0x7f00000019c0)=""/94) sysfs$2(0x2, 0xc345, &(0x7f0000001a40)=""/219) 20:30:09 executing program 4: waitid(0x1, 0xffffffffffffffff, 0xffffffffffffffff, 0x4, &(0x7f0000000000)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0)={0x0}, &(0x7f0000000100)=0xc) wait4(r0, &(0x7f0000000140), 0x2, &(0x7f0000000180)) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_SIOCGSKNS(r1, 0x894c, &(0x7f0000000240)=0x6) waitid(0x1, r0, &(0x7f0000000280), 0x2, &(0x7f0000000300)) setsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f00000003c0)={@rand_addr=0x64010100, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc) ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000400)={'wg0\x00'}) wait4(r0, &(0x7f0000000440), 0x80000000, &(0x7f0000000480)) sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x58, 0x0, 0x8, 0x70bd2c, 0x25dfdbff, {}, [@GTPA_TID={0xc, 0x3, 0x1}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_TID={0xc, 0x3, 0x4}, @GTPA_NET_NS_FD={0x8}, @GTPA_FLOW={0x6, 0x6, 0x4}, @GTPA_O_TEI={0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x10}, 0x20040001) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000680)={{0x1, 0x1, 0x18, r1, {0x1eaf}}, './file0\x00'}) getsockopt$inet_int(r2, 0x0, 0x12, &(0x7f00000006c0), &(0x7f0000000700)=0x4) setsockopt$WPAN_WANTACK(r2, 0x0, 0x0, &(0x7f0000000740)=0x1, 0x4) lsetxattr$trusted_overlay_nlink(&(0x7f0000000780)='./file0\x00', &(0x7f00000007c0), &(0x7f0000000800)={'U-', 0x8000}, 0x16, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000980)=@IORING_OP_STATX={0x15, 0x2, 0x0, r2, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000940)='./file0\x00', 0x3, 0x0, 0x1}, 0x80000000) ptrace$getsig(0x4202, r0, 0x7, &(0x7f00000009c0)) bind(r1, &(0x7f0000000a40)=@nfc={0x27, 0x1, 0x1, 0x2}, 0x80) ptrace$getsig(0x4202, r0, 0xfffffffffffeffff, &(0x7f0000000ac0)) r5 = fsopen(&(0x7f0000001100)='exfat\x00', 0x1) sendmsg$unix(r2, &(0x7f0000001980)={&(0x7f0000000b40)=@abs={0x1, 0x0, 0x4e23}, 0x6e, &(0x7f0000001080)=[{&(0x7f0000000bc0)="65825581bbe6d33f4f86f80abf3c5653e9c5d2c81a17c9262f80eab0fce57ec1efb1770da5dc48f82c0c145dc681dbf8a6201c65efbbb743b9a67ecff66336a78f3d6c2b74751194f4bf0de2e12d09fec1ce77e81f624497bc02b43e617dd5a66ed8460ea4ffcb5bda7ade4f2f5b9469fad5f513c84a0b3ad7f78c86726099330fe5869ae098a1dc34fdcd12cfffc17f06fe9487", 0x94}, {&(0x7f0000000c80)="c507b01b16c0556ae56528302cd06841bc0f61417f04a89dd16a10c7a17e410537d501442faeb4d910e6002a480909ebce711612553d10a9a8417944d9f65f0e8e5e848411bc887fe7449df7153ec9fbb16e049a0b72d4d5074f7810dfd882fa67fc71e4b6aacf7301c09ef09304b1837f17d84accf94cc3b2fbf5293b54f3b136f0f2689f57efc1736e68", 0x8b}, {&(0x7f0000000d40)="6b43032d57dc3dd5990c9fa4ef75a219a249f8d7fcf31a2f97618be3c3090b68bdc14020a2525a2297fdd29142f1f74fe01e1273747e2968d092c6394da73fa175f3bad6b3087fec571a1705eb5860ad028aca20", 0x54}, {&(0x7f0000000dc0)="e151e2d2fdd02371a9ca7d1437bbd2b8d43181da4bb9684eeda1d7d72fd2be4ec26174600b8da427bc36c44cab0cfb90a81df0077fbf7f884ed781b2bae81dfb4682496f127fb7767001f2ecaa81073501ae552490ee8df97a8acf46bef8363dd28cf932ae93d48290b75fd42df6da", 0x6f}, {&(0x7f0000000e40)="0241cc942ba74c727072fcf9443d119b780bf441e303c53e9ac9990be4fe140cc7c880a3433c2456", 0x28}, {&(0x7f0000000e80)="69d0d8d402664e6d20c752ad01292a29aac5dfe53be13364ba0df36c3746bb3fdb1ba28017fb4825f04cf0dc488a5cfca8a7cf6769dce9d97ced1bc6507bf5e2ff05b06cdb2c6354e6c3addd22206d996c7f3d65bf237c8c0b16c1566a9b233ac06304646a190ac97cf9fe3df6fab7d634871ef0bd4989f21936122c600e36bbb68bc91b0ad91117b7e4ddc4ff36cb973db4a07ccc5f352f8276c48901ce804e604a5c0d7ec35edfc6cd24871933", 0xae}, {&(0x7f0000000f40)="384d56dbeb4344079380c07b3cc9e337077a969ae2650916886e911c6604448c0b053d930cff31431ae1bd1c7c6685480d9a0ee00e676afcc0fc108d2f80d43d7948e6af6de21bbbe26245ca766fcade3b92b3ed1dadc8abeb4d4610253d0bc0be0de97daba8c8b2fabeb2bc8f88afaebc8167652325d15cd04cbd67e8b5c0dae68d77561e4ac036cf2573d7b087cde05f519eda6b9c88ca0f", 0x99}, {&(0x7f0000001000)="cf93ce2ccbfefd2f8e27597d2218a08f59105f010bd62c273292e5140a6b2d9a6dc97a17fe399d710abef93e1f13a087eed1b3ca4fb6b551482d4cfb259ed0eda12ed80e10ad6019dd", 0x49}], 0x8, &(0x7f0000001880)=[@cred={{0x1c, 0x1, 0x2, {r0, r3, r4}}}, @rights={{0x28, 0x1, 0x1, [r5, 0xffffffffffffffff, r2, r2, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [r1, r1]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, r2, r1, r1, r1, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0, 0xc0}, 0x10044) 20:30:09 executing program 2: ioctl$LOOP_CLR_FD(0xffffffffffffffff, 0x4c01) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x5c9800, 0x0) pread64(r0, &(0x7f0000000040)=""/54, 0x36, 0x401) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x124, 0x0, 0x100, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_REKEY_DATA={0xc, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x8}]}, @NL80211_ATTR_REKEY_DATA={0x90, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x2}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x6}, @NL80211_REKEY_DATA_KCK={0x14, 0x2, @kck="b35c7de5cd9da6eac88ae716cbd0db64"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="5d67019dbfc9d9f29a92b70c73adee702ec2e5603506ac70"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="43decb5ad78ce377bc2ca03f502d5e7b2cb6d205691fdd2c"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="7af055f4da57216ea9ecc7ec429c6399da0243ff5b8c9b74"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xc8}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "7c03436a0e1d2d15"}]}, @NL80211_ATTR_REKEY_DATA={0x18, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="e5cd9ff74caca15632b02df4a721958d"}]}, @NL80211_ATTR_REKEY_DATA={0x5c, 0x7a, 0x0, 0x1, [@NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "ec95ccfec790fd2e"}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0xf6554c0}, @NL80211_REKEY_DATA_AKM={0x8, 0x4, 0x5}, @NL80211_REKEY_DATA_KEK={0x14, 0x1, @kek="376e7679968ec05535b6c7ef33ce4bbe"}, @NL80211_REKEY_DATA_REPLAY_CTR={0xc, 0x3, "f22716ea0326a6b6"}, @NL80211_REKEY_DATA_KCK={0x1c, 0x2, @kck_ext="96e2242bd4e7aa60158e56afe3adde19273d69d4cfb9ac22"}]}]}, 0x124}}, 0x80) r1 = socket$netlink(0x10, 0x3, 0xe) write$binfmt_aout(r1, &(0x7f0000000280)={{0xcc, 0x1, 0x2, 0x205, 0xb7, 0x10000, 0x1b7, 0x3}, "4cef3f202aac15a302ba3c8dc717e89feac87408015ffebb40622dbf9b6f99ca04d70f4bd3fe7896741f9922f0ac43cf3b69974eee2f9cb3b61f33129b5b9b8f493dd25a4c9f47539ae68f3e5ba918c6175836bc1ecd7355df3040576df937bcc92ca1986f0ad6e064f7a02f6c05ea28653ec2056d8477458ab4bfbf2dd0db4322b23a301914798d2acc833c2ca0af01fa99344b5b2cb1ec0f869b4cfae9ab512194a4bfd6f07dc3690e6700f49bdafbaebaf121b36d6cb9b476ed09e8bd0a497b311b170f31da52", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xae8) ioctl$sock_inet_SIOCSIFNETMASK(r1, 0x891c, &(0x7f0000000d80)={'veth0_virt_wifi\x00', {0x2, 0x0, @multicast1}}) r2 = syz_open_dev$vcsn(&(0x7f0000000dc0), 0x7, 0x2140) fcntl$lock(r2, 0x7, &(0x7f0000000e00)={0x1, 0x2, 0xe3, 0x0, 0xffffffffffffffff}) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000f00)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x28, 0x0, 0x100, 0x70bd2b, 0x25dfdbfc, {}, [@BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @multicast}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x20000011) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x9, 0x10, r2, 0x8000000) r4 = syz_io_uring_complete(r3) ioctl$LOOP_GET_STATUS(r0, 0x4c03, &(0x7f0000000f40)) io_uring_register$IORING_UNREGISTER_EVENTFD(r4, 0x5, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r4, 0xc0189378, &(0x7f0000001000)={{0x1, 0x1, 0x18, r1, {r0}}, '\x00'}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000001040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0xffffffffffffffff}}, './file0\x00'}) r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001080), 0x1000, 0x0) io_uring_register$IORING_REGISTER_FILES(r5, 0x2, &(0x7f00000010c0)=[r4, r6, r2, r2, r7], 0x5) openat$sr(0xffffffffffffff9c, &(0x7f0000001100), 0x240000, 0x0) io_uring_enter(r5, 0x16d2, 0x299d, 0x1, &(0x7f0000001140)={[0x1]}, 0x8) 20:30:09 executing program 5: syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff) io_uring_setup(0x4b21, &(0x7f0000000040)={0x0, 0xa599, 0x21, 0x0, 0x308}) r0 = openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r1 = syz_open_dev$hidraw(&(0x7f0000000100), 0x1d7, 0x10000) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {r1}}, './file0\x00'}) ioctl$RNDGETENTCNT(r3, 0x80045200, &(0x7f0000000180)) r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f0000000200)={{0x1, 0x1, 0x18, r4, {0x4}}, './file0\x00'}) write$tcp_mem(r4, &(0x7f0000000240)={0x0, 0x20, 0x1, 0x20, 0x80000001}, 0x48) write$tcp_mem(r4, &(0x7f00000002c0)={0x2, 0x20, 0x7fffffff, 0x20, 0x8}, 0x48) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000340)='/sys/module/snd_intel_sdw_acpi', 0x800, 0xd3) ioctl$TIOCSSOFTCAR(r5, 0x541a, &(0x7f0000000380)=0xfffffffc) r6 = syz_mount_image$iso9660(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', 0x3, 0x4, &(0x7f0000000640)=[{&(0x7f0000000440)="a0cc52d8be7ae642a1f24394a54ad6b5e2b054e2c59ce91bece03bdc9759218241d89bb788a683ba582e447dbfa0fb211cb0420786733a86fdd3a6c9e9865e230d9788e3135e02bf7159f8d010b2bfde3b9b65c110841eb11f5ee2d32e79b65298d6775ee604c1fa83888077198ff92241078dd615735fe7780162bff9c78855132022e3d692a738cfafbed5a62b05805c896ef0d34c6d94d1333321467cbf303542944b1151c84ea9a3d42d2300b820dc86abb450bf0f965e692cec98", 0xbd, 0xffff}, {&(0x7f0000000500)="df654c84d639917292b8c2360f5530551ffb669c9ca7bdd2259fb2e6f21a10bb320bc968b231c7ba1e356c4fb2e45be8fe0ba9e85cb82015a0b585055b95fc364087cb571b278b876576542fb3d21c442aa654131cee6d1de830f8e91dd26933fad37c56a1a6fc366cc862d9bdac15b34cce1326d2d5358c053fea19e9ea61316c191eb1da2f2fe1abc44a0864c7fdb9f0206b66bbe51ca8585d981c1b", 0x9d, 0xfffffffffffffffd}, {&(0x7f00000005c0)="8a7fac3011c7aa0bac", 0x9, 0x5}, {&(0x7f0000000600)="91a1e6459eec58560bd3e38ed8b604a3af3a47d1cdffebd47a82", 0x1a, 0x1}], 0x100090, &(0x7f00000006c0)={[{@gid={'gid', 0x3d, 0xee01}}], [{@fowner_lt}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@obj_type={'obj_type', 0x3d, '/dev/hidraw#\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/hidraw#\x00'}}, {@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}]}) fcntl$notify(r6, 0x402, 0x0) r7 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000780), 0x6000c0, 0x0) preadv(r7, &(0x7f0000000c00)=[{&(0x7f00000007c0)=""/149, 0x95}, {&(0x7f0000000880)=""/44, 0x2c}, {&(0x7f00000008c0)=""/135, 0x87}, {&(0x7f0000000980)=""/250, 0xfa}, {&(0x7f0000000a80)=""/178, 0xb2}, {&(0x7f0000000b40)=""/41, 0x29}, {&(0x7f0000000b80)=""/96, 0x60}], 0x7, 0xbaf, 0x1) signalfd4(r1, &(0x7f0000000c80)={[0x3]}, 0x8, 0x800) r8 = open$dir(&(0x7f0000000cc0)='./file0\x00', 0x4200, 0x188) fadvise64(r8, 0x3, 0x1f, 0x1) io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r2, 0x7, &(0x7f0000000d00)=r3, 0x1) [ 73.237203] audit: type=1400 audit(1664310609.335:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 20:30:09 executing program 7: ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000000)) r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f0000000040)={0x7, {{0xa, 0x4e21, 0x1f, @mcast1, 0xda4b}}}, 0x88) ioctl$TCXONC(r0, 0x540a, 0x3) r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800}, 0x1c) ioctl$BTRFS_IOC_BALANCE(r1, 0x5000940c, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x3f}}, './file0\x00'}) getsockopt$inet6_udp_int(r2, 0x11, 0xa, &(0x7f0000000180), &(0x7f00000001c0)=0x4) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000001400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000013c0)={&(0x7f0000000240)={0x1178, 0x0, 0xc22, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_NODE={0x104c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3f, 0x4, {'gcm(aes)\x00', 0x17, "cec6963568ad6152a4aee598a513ab69c6b02622b9489c"}}, @TIPC_NLA_NODE_ID={0x1004, 0x3, "577b6291535742b129f2ea75716c8d86740283e87b125760d1332fb20760590241404d8b3c465e85151ba779db02cd56a660062b6ab7ab0c6016e14a7f2e010e4657bd839087eabe6636f6bc8657281751c969e0c4a73c7640c46ee8ea5766d0b49d244d71c89cecbe7794f48e0d857cfd9790b53c979cd7aabf44ba328a7156398081f674777fd912ab2e94aee85c2697a43b0f727318f1c6f46f5e7c0824326ca0e3c5ebe5d95de1fd4c4adc12deaeeea080a70ddfc194330140ff1fe34a420018d7cc6b3d4241934d68657c51b5adfb3ae230ee78b3945071a746af0b4d397f708671e2a9dc6c1a1e24a4773830e5c711d4e6829cdb05817f6bb794d4e39c8d45ea79b515faa2889d5f3f531206c0ff7cefd52a81ed75444607d829407fadcf16b15f448f1377c7913dc4394bf39ac22abd36dfaef26a4449a6f72348a863630384a278bed715826522e161eaa6e4a8f0f0a83e39a1fbfbc51ce776aac9b448ae5dfa18acf491f4bc1c2f63ad8d8f5fc36eed33eea2ab9f80c552df753706f26b94c05bdaee6957b1b4185cdb2d0ed3f8953c65da213e5edfb4be882e0eb973eea67a06cef534fc37c7e7cd5722f6ee23c45ed248e40e1b783af1c460bda59b5b1868893d9a38c58fe945fb3e7e772d5410219b3d63860c5971ff5733e38f6d779bbaae823ab21fcff56a83e93d16e4e92748dbc0feffedceccf9851aff69cdd121bc1285747b7b585628b8d6efd4b952e44ec8963affe0057497d3780990020c73442a8cb56847ffe7820f1f44585b9f03a00e41836bebaab1090438e58bb288f884cd1417a0cc97ee54dcbbeebc0eccc934c89a7820b2b6c4b8105706fe5f0a8144ff81eacaede53b8e5303313eb7cb97d90d700dc6c4246f238fbcafcecfac4eaa339273b8c646faa055adcbde67f997fe7707e74e7f38fb34465ee97366917c25c34f988875559b3a16b0456083ddcf6a21424436f96a20b13e3427d693137035276e34a285b06dc9fe4adcbb3d2b105400261445f70a4a1ccf6d95b8f7af4a85981a1776313bed20e7b35a7b33a8870d2ec77400a68f2d7172a71caab6c8ae122db51ee0fd3918a80c64c8ed094d792e9bd31aa87cbb58760c0219efed911e4f8c0bd8cd4d486af0e9882505cbe53d61bdde2005d9ef45968d5d59c4c9e110e54aeaad9e8a104f2942351dad9c876e7b20a81a981f374f8229c0587b01f9467f4ac33c01be12f517ca1617057b4fe0abc5edf72e11f4be64ced2b10155682bdb6821e7d45702e9a86f835772f98ce22e5926fdb8016d3d1de9fe102fe1eb9b0fbd4f1d6ab4a21a5d1eec4291635739ba5e644b934e913c12e5df658d0ee1d7e81716d339f3159a845fccc387990201a423ca19d3234b034d3f3650cf27d1eb6c2fee8f6bf6ac22a7f7fc7c69b08debb05fba597555e5fa764ef66dcd69da238ddc24fb70386e77fbc9959d0acd7b26805a12c33a58382bdd09ca0a634821b6036b360be037660153b58b794643feb2ba8df091e427bf47c124cc17937d669febe3f79040d5ce59c980cb733eadf02aeba649ea9b6c5609d543419eea7ebd448000952496f176600759189512cee5480f1585c31d0632a9c88fd4a71a12ee930b387a553f2ef977cd83122b0da058093a1dec8cd37f090cede0540e0afaf111af4371c6c94ff0c21ad9d7ba1ffcab2064a9356fcf20795b2ab525eba29ce59b393b492f387889208f15161d1d59a5bae55824dd985e62382a410f9b9333e8ad34379782e01a1deb58fa0a15b8c8bed06373173d0fa4f2e06805e170e2fa2cb2ae00f743cecaf12010279356f0aa394545cf215af4db5920b530f16b311e3eb04eee8fb549eac6012a27e585478e5976b629807b03ea8282d1c04a4371f58e834bd5a466c32015df2f757e484b3b0574ceb258f837d00240cc719c762a065b0358a0c529e7d584ff16390c2fa838f8ebdf541a3da15249ec6d0a720883a4ed35d41aed52106570239351b5da72ff4f4f50e958802e2e7490042bddd7f5efb03e5324cb8a17e3ce324e23fd01ab92696d31585d0ae5019f72ebdb3252bc18422b6b27e6362de116912641cd2b66f17c9060263278402d36edee62c71873858581230640f9349a470aa8ad9881941f1617075a344f844e573bd5570b3af7a464cd8db29081f1b2be50ff554872d43934e711124b8a9160070305f08c2165d182215c5ba35b4e0975de8081f47805341fe3d4190862d895ed13406178b4ac1979c6a6a4b9ec72b00d297ace3cb3f4fee13ee2052f1abba91a8b2d26e24cb2255f9250f2aec831a647fe09610fa744a52ddb5d6a64ff821f006208e0436f78caeffb571660fa7507539ca2f884b84b8157a7c2c4acd27acfad324760694858d99f3b33487a9955fd873d10d09e1b84e6199ce59c0e66f76eeda37690c1e88068d6ea6ec77df4fb5c62a6cb04714520a2615241f0ea033d5f8bde20fae9e73d548487c8db7b72a73aa40471018ed5b8cb8fbf9e0f9314783ea635ebfcbca37c8631c55a7821fe9f74107215ac122a36a3c4c877c22160a26b0de9052441ea0fb9d46d225b4284031b8097191c0da97a0a8b687a80393bb9b0429f1f8f1d87abeee1541a6b9ce97df581460d4b76317d6ae9dc39bde2c8906591752f5b3e1fae20b18f3ed948fee4adc92bb2c17cd3f7eb6aa462714da3a48bc6fc2ffbcd40c582557ccaec1faee948202a89ee668bfed141a625d89164e5f88a245dec3cf5aeda04a27d672a6ff390afdda7c6a8b4845d4d6dee8b40b169583d54afac46c822dfe9713dabc5f53b7b6d04dd82c06a217854b63f89051e464449cfb13d0cf4e90dd7356c2f43fa68ad831f30d6d55ce68ca4d571215caaa01bcaa9304ed883c4690ae3e36a9aabf84671f558e9fe6735e5f3631eb88206003fe7fc4d47fece4379ce30ef5df94f42b8fc332bd250a7dc8b4a359455d382b13a096ff9e134802fff8bae6fbb796ed601bbea4db810b1a7c205e8af4fbb2037d431569d19856dd5e238768fca3ed37a4eb590cb78cd1258e207c3a28964da5fecb0cf1b3fe3e1a47a0dc70005cd9bad1969467e2373d374e5662a95d34ff743d75b618c02a312a47898e74bdec40414f22104f29aa030f48f18e7a7ac81e6180e1bdd038a125adae3f09d5f9c547258b05746b6be538a6e4fbb46dca2aa48153cdd76e420f238341074accc9f837b2699e1ebc835f6587540b49afa1802bdca16e0ca7f991e2e3585c8d81debbbb1a72859da79ce6a5c69de06f07ff2d09119e5eae7861ad17ed00ccf612a9bac7e6363e6b301be8c1e70a4cb1020da6036afce971d2e14b98dfc6113131110c77bbd553e7a7187b6ed4cbebf2abe03cff2ac7c37a6e7095b8c37d8876061d04e5b9548464602af43bc119aabaf39b02ae13f8838bab50c63ddcc2d502a1ee40d67f6e083caeb29e85dec30e288473941874bf0b888d69baa1fc15639819631bdccedc41d69ac0233207d8d54d1a42da75469a568505f30b94e51a61f56c1f0aa6693e139ce9f805e0a464587530fac40f8fd1ead864184fe190dc3cb8533fb509490356767644aacf00a75b699845e046973b0bd3ed7042ba43279e231012587f54d7af38790284ea38b82f2b6645e9d2409e47c0887c0978c3c5250439b45e70c0d87e9c86a4684f3f724c20fea30b9f2c3ac3397f10db2762b48da384063d5c9e432edc7f30470a01aa13685356dbb679687ff6ec94a0b7a5657a1a39459aec7391d728f8fe67191722b3ba618e4d74f9a7d45948e007e8735dfca9b0d33006c993bbb638d05b43f691662e47ff267bfa1ff4f7cab20aa185d78df5143c1a7178807da0640e64d52e1c73fe9d05151f5a11f1aba8232700903b604e49ce30121a31f3634c92d4312305869c1e025cb095244b1540d82620384530c8758dc48ed1266652ca9b55773fe73ee605983f3936beb96f36a075d5068a25c01784963185c95b5afd9773420344a618ade820ba0036957f712a38229867b1f5253b9d0f5d5612b33c6db4b05dcf7992ce5468dfd48ebfdcee85c7fb8036bd18fae6eabe08ba497fbcce76527b6e0e2d4504221a0dfc4fd6d611232a526e27a5370f01e6290f062793d34a774595c47219565eac7ad2305f8aa6165419d428c6641c4623ab2803046521b1eee2b01f0eb756e69af3a3058ea774693b1a07c2973f5476d2415e07ac104610df6d61ca29d5413b35394bfadc20f9c73852a6927a0b91fade73de8651c6ac5ee81a3ae653e95c6c440aadbd9ec402c0a1040808387a6ee8cc1e9d50e9d7df6df4e3367dc54c19a6393ddcaef3bc854d519c938f484911650e158885443f59d28dbdebd74012e1f9eccbec4e614e093c685c653a1227b88e99f813d38f67770adc86f0ece2efe93b1cd1483e76db7c5f458c9a77dcd2836da1e32af526219954c892eba0556eeb2d71f9049e36ffff78c98a19912e3fad8386e1ad34c8e95b0b5bd271898deb10e1428470df8ea39d4c1e3c7a9a0e3677d71f84f97eb6f3e2e555c6660517696fbb625e6e518215304914a360539304e4a374ee228f84beee8e7ad52d6025ee0b0af04ac144f440b10dc634e78bf36f603dbec71064f3da8812de6b0650f4085906f4864837cf41de84c23616e49737195335d7b653f66f2f56b7326a265037a0ead2ec03952b9bd270e3dc712b81f1668b2ec9bb8d12f2215a6b6e00821c5d6e30bf1007243d77566a62b91e2a110e42f4142ebf5f8af4224a5f6de2f15814746923ce333914678da73321c7b96270b4780c33479af91220e39f3ccb708d6501bca450ac9a2bd6a76e5b42c8bbc7d9f51cb34b446f9bce73418c1e20224f06606783cd871ca5e3117d93b39476beb978203ea897240bfc585da9dda61d58529f57ab9e34d65d4cbbde759c837ef00e542db42ca7ee1e408b92c482b18da89736fea1712df95595d208d0d90cd2a734eff133ff40e8d8c78b28535c0969a549ce1cb881076fffa9f0dc2ca283ccb5004e7cb21c994c9cf0f3cd778255159bee1db456e8dd450b6ad85a60bf050165a4ae732c30e3bfa571aca1ee55969b00d33c9bc47ac487be0cb969bd12008a9dae583cb48da668fad9c63e84adaf72136d7a86feb1dc5e239db4c34e57761b7bc70d4077b11f2d00f3c5829a799f8d057c26edb5d8e23b578e6f828022bc13b9aeca0fd22ce5f0c985a9351c372a08cea9c3e1e8af89a5ada4fadbade1484249f7950a5fa79106842cfdfe0484a0876697e4950176d70e0f784b9dea345572efdbc0313ad6936af7e6918471613ce8edeb2bd616c8badeee1dc9552cde23dfcd561abde04eb5f6d2a0912deb52629abdc8163275a4cedf8c7613a954dde607901d20dda1a1ffce53d28f46a292b7ab3624cbb0db107e1b51dd4a1860e7e5e82a70819292796861f3e9e9433f9e2f2aef70af9ecded75e7f0667f62e6c5e19a0a7110eb62d4dfb862461f87c4b3730482e6b54cc2fcb575aac96e98749b8236a92cc0a05eb515d2cd42e46c05b88dc6432ca1e02c8b564ab8d364b96f0ba5218e6c0745a76165f53d88e8caf090b4c86117ef792fd95123682ff01bee2a613b1701add800a7ff1499dfef5a4990e2a066be60b8c892d0b56e11c4312fcc4e03081b1ff0d84911d020306beacab5b4e2d7f1986491e760cf31af54fcd73a1cf4b2d2f7ef116b28569d616f45635d0072e63dbdae7b776b5be9f42e24e18fc9115435e844eb1cd8cacbd4d3cd770aeb4e6a3f64cc7bd6785d1b1fb104d3261"}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_LINK={0x88, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x14}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x401}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}]}, @TIPC_NLA_LINK={0x90, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x3c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xe}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x24}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1}]}]}]}, 0x1178}, 0x1, 0x0, 0x0, 0x24000000}, 0x4044) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) syz_mount_image$ext4(&(0x7f0000001440)='ext3\x00', &(0x7f0000001480)='./file0\x00', 0x5, 0x6, &(0x7f0000001880)=[{&(0x7f00000014c0)="7df9404a62f6b6c3898b1e199c4dee203b65cd0824e87e777ab2fa0c6f7be00b1db9ea6497380f19dfe0b26e8ecf35a35a9642a905dbb87082b623bd87c18f09fa11715966a9090244b5a217eb7495", 0x4f, 0x101}, {&(0x7f0000001540)="bfd256bc6d3104bc445b16931e761afbfb36596ba98e63f860f7b09443b73c02278a50dfd035a4fe0c7bf8674a0273fbfb1f2475aa38cc24f3a86612b2143f2ab305a4506c29ba53c59ed4c6ec5787dbfaaa5dae286ae195bf608db23f0a016c1ec014d0901eef7951f3ac939a332dda24b18bef24d63a6bf65ccb29f028703ce730f98a96b6c7304c1d28ab471d460feff4e097aa5e9ed41d86092488ad6ed2591398cbdf56dd5a02b6476bb0d0461279a47a890abee8be3520f08d11205d3c943b862e", 0xc4, 0x4}, {&(0x7f0000001640)="f407fc18673d3989fbf6", 0xa, 0x5}, {&(0x7f0000001680)="95d43f3bf95d40df1052964209588d60e2e6c91e5b7a6e10e976c48777369a4df02e4d57f86ae7c7db91fd9880a8fac836f73da1ea29bbc41e19cd159e90c9270cb135bc0ed5902ebe5a39032f0f11ad7654baebbeeee3a510bf8f0f5e572b742351c0053b1a8e4ed37a49814b5f3eb0521f7964ea86eb8c9b0504829d4eb65f8f8a27e9051f9391894465a77c36a17c39dd86fe86b2fa5abb3c1384b144e338f035db74700dacbab0fc42d154107ce2d209a5f3e236de409dd6cbf5ea358976b331cd536ea878b16a1517937bc4398af8ea754dcae692baf77877505596", 0xde, 0x2c4}, {&(0x7f0000001780)="682787c570d8c7fb8642147440cf05ca54c8d09e03c72b118891813731e08db2c9c411c6673db3c8d6b16fb391e1ee7ec0d93f082bf0baacd868b3af4ba8adbd4af4c54180b880fd43a7f1d7e217848315cab138fd4db11eb0b46eb854e5362b40ff24ebce88f561601ccb159cc1431ffef3fd949971b917892fc43da1e2ab6a679fc98920d0b1921e2d5405bade317ac26879a465dd1fa0295fe33836414358bda0c148dd", 0xa5, 0x6}, {&(0x7f0000001840)="1f5f8a3d1fec3cc59e2dcbe43375dfae89d791ca8f603a1fffaaab2e3a6431d79494", 0x22, 0xe2}], 0x28b000, &(0x7f0000001940)={[{@delalloc}, {@sb={'sb', 0x3d, 0x8}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@bsdgroups}, {@nolazytime}, {@jqfmt_vfsv0}, {@dax}, {@debug}, {@commit}], [{@hash}]}) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000001a00), 0x600, 0x0) getpeername$packet(0xffffffffffffffff, &(0x7f0000001a80)={0x11, 0x0, 0x0}, &(0x7f0000001ac0)=0x14) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001bc0)={'syztnl2\x00', &(0x7f0000001b00)={'gretap0\x00', 0x0, 0x1, 0x706, 0x3, 0x10001, {{0x24, 0x4, 0x1, 0x4, 0x90, 0x68, 0x0, 0x20, 0x4, 0x0, @loopback, @private=0x8, {[@lsrr={0x83, 0xb, 0xc5, [@empty, @broadcast]}, @ssrr={0x89, 0x1f, 0x9f, [@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010102, @local, @rand_addr=0x64010102, @rand_addr=0x64010100, @loopback, @loopback]}, @lsrr={0x83, 0x7, 0xf8, [@loopback]}, @timestamp_addr={0x44, 0xc, 0x6, 0x1, 0xc, [{@local, 0x4e}]}, @end, @timestamp_prespec={0x44, 0x3c, 0x8, 0x3, 0x3, [{@broadcast}, {@local, 0x7}, {@local, 0x6002}, {@dev={0xac, 0x14, 0x14, 0x3b}}, {@rand_addr=0x64010101, 0x80000000}, {@broadcast, 0x4}, {@loopback, 0xb96}]}]}}}}}) sendmsg$nl_xfrm(r4, &(0x7f0000001fc0)={&(0x7f0000001a40)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000001f80)={&(0x7f0000001c00)=@updpolicy={0x37c, 0x19, 0x4, 0x70bd2d, 0x25dfdbfd, {{@in=@empty, @in6=@dev={0xfe, 0x80, '\x00', 0x28}, 0x4e22, 0x4c, 0x4e20, 0x8, 0x2, 0xa0, 0x10, 0x32, r5, 0xee01}, {0x7, 0x1, 0x3, 0x50, 0x1, 0x34c, 0x3, 0x2}, {0x1, 0x92b2, 0x80000001, 0x8}, 0x40, 0x6e6bbb, 0x0, 0x0, 0x3, 0x1}, [@algo_auth={0xec, 0x1, {{'blake2s-256\x00'}, 0x520, "0d27391a1306aab62451dd4b3dbf74e78d9e1ed4c1caea6133837af6724c11e35245a227a5fc220e19a4c3e24d28fc14f387fb5926eb924eaf58e4a4454dee88d8036963d76f1212d96f6b9ade03f824d32a6dccd43215235617339bb32362d7133919cb499c004d8c7e90aaf15eaaa055b2683d3ca452e8a6605b612eb19d61f6a6d4aa04b10298c865cd3e89a66da7fa40b86149b2436665f325bad7bdf8fd48fd7d56"}}, @offload={0xc, 0x1c, {0x0, 0x2}}, @coaddr={0x14, 0xe, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @policy={0xac, 0x7, {{@in6=@private0, @in6=@remote, 0x4e22, 0x0, 0x4e23, 0x0, 0xa, 0x0, 0x20, 0x11}, {0x8, 0x8, 0x3, 0x8, 0x100, 0x80, 0x2, 0x5}, {0x3c, 0xf0ea, 0x4, 0x3}, 0x9, 0x6e6bbc, 0x0, 0x1, 0x0, 0x1}}, @policy={0xac, 0x7, {{@in=@remote, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4e23, 0xa96e, 0x4e24, 0xffff, 0xa, 0x180, 0x0, 0x16, r6}, {0x6, 0x1ff, 0x4, 0x20, 0xfff, 0x3, 0x2}, {0x7, 0x0, 0x80, 0x3}, 0x1, 0x6e6bb1, 0x1, 0x1, 0x1, 0x2}}, @replay_val={0x10, 0xa, {0x70bd2b, 0x70bd26, 0x4}}, @migrate={0x50, 0x11, [{@in6=@mcast2, @in6=@empty, @in=@rand_addr=0x64010101, @in=@loopback, 0x33, 0x1, 0x0, 0x3501, 0xa, 0xa}]}]}, 0x37c}}, 0x8040) sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000020c0)={&(0x7f0000002000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000002080)={&(0x7f0000002040)={0x1c, 0x1, 0x1, 0x801, 0x0, 0x0, {0x3, 0x0, 0x5}, [@CTA_MARK_MASK={0x8}]}, 0x1c}}, 0x0) preadv(r4, &(0x7f0000003280)=[{&(0x7f0000002100)=""/158, 0x9e}, {&(0x7f00000021c0)=""/4096, 0x1000}, {&(0x7f00000031c0)=""/132, 0x84}], 0x3, 0xbe2, 0x6) sendto(r3, &(0x7f00000032c0)="dc17cffb39d2ad3f22b7fd3fdd0086a5ee67f1e8434dd4444565514057cb4dbc166b0f574f475d10216b5720e519a8e591d723ad5711b4df662b25a3004d28cf7cdaec416942b7334364", 0x4a, 0x2000c841, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000003340), r0) 20:30:09 executing program 3: sendmsg$NL80211_CMD_GET_KEY(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x84004000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, 0x0, 0x20, 0x70bd2d, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac05}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "af2ffa9ca15d1a513eab3cf832"}]}, 0x4c}, 0x1, 0x0, 0x0, 0x11}, 0x0) sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0xd9ffaf24ad3b37a}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0xc0, 0x1, 0x2, 0x401, 0x0, 0x0, {0x7, 0x0, 0x2}, [@CTA_EXPECT_TUPLE={0xac, 0x2, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x14, 0x4, @private0}}}]}]}, 0xc0}, 0x1, 0x0, 0x0, 0x4000}, 0x20000040) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000002c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x58, r1, 0x8, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x9, 0x55}}}}, [@NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x213}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x2}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x1010}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x2}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x103a}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xe0}]}, 0x58}, 0x1, 0x0, 0x0, 0x801}, 0x844) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000001680)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001640)={&(0x7f00000004c0)={0x1158, r1, 0x621, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x71}, @val={0x8}, @val={0xc, 0x99, {0xfffffffe, 0x50}}}}, [@NL80211_ATTR_VENDOR_DATA={0x29, 0xc5, "8a246f0049fdc4a2a6e5a80b67daa80f1eeffe4c1e8ddbc4cedc4c4696ad12dbcf10515a95"}, @NL80211_ATTR_VENDOR_DATA={0xd, 0xc5, "537762b1774fc4f643"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffff}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x4}, @NL80211_ATTR_VENDOR_DATA={0x30, 0xc5, "be5025d60967369b443f20048f2d3a7fc18038943016cc1cd3001754f7b311868ffaa8f2eebae9b072d56144"}, @NL80211_ATTR_VENDOR_DATA={0x1004, 0xc5, "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"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xdecc}, @NL80211_ATTR_VENDOR_DATA={0x96, 0xc5, "d642f3e9a91cfb7a46763db684e55abf7c786df79be37f60a280484edfbbf2b43ecfdded22bbfc974ffa6ae19c8f7061049d3f5a7166c489fa3c108373501e0a1337d9be30bfd5710fc2b6a86ed222be8a87505d6715900de6ac0ca9de136d22bddc1f0f693e7a121da67e94f2ba666f91ac88b396dda1304f23463ff66423849e4022f85c5dc49de8384b2cffd71c87393c"}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x7}]}, 0x1158}, 0x1, 0x0, 0x0, 0x20008095}, 0x4000) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001700), r0) sendmsg$NL80211_CMD_STOP_NAN(r0, &(0x7f00000017c0)={&(0x7f00000016c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001780)={&(0x7f0000001740)={0x20, r2, 0x800, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xfffffff7, 0x24}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x20000080) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001800), r0) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000001b40)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001b00)={&(0x7f0000001880)={0x278, r3, 0x300, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x18, 0xcd, [0xfff8, 0x7f46, 0xffff, 0x8, 0x5, 0x9, 0x140, 0x400, 0x1, 0x8]}, @NL80211_ATTR_FRAME={0x23e, 0x33, @assoc_req={@wo_ht={{}, {0x8}, @device_a, @device_b, @from_mac, {0x4, 0x6}}, 0xc098, 0x7f, {0x0, 0x1b, @random="85a282eee2abb3f4a1bec4486a8216617ade1cbfe6e4cd68e4f485"}, @void, @val={0x2d, 0x1a, {0x8000, 0x0, 0x0, 0x0, {0x8, 0xe1b, 0x0, 0x9, 0x0, 0x0, 0x0, 0x2, 0x1}, 0x400, 0x10000, 0x9}}, [{0xdd, 0xd7, "4b2e984c1a6241052ddc5bfd9c44e9902cd23339269fb37cd9a5b52b225e181402fa3e85c46035f00efd24b41063cf5c2177f7e7a8e758686526f7021827bd65710bcc647984040e63c013cb8cb56e798cd6d6552594066fd0b44d40f9f8709ce3073163ae7b12de2a861b884d7af36caac60bfa1df183bbb71253701439a5941628c82e05ce6ae939f3c2236f5cd583674436c40ed59336d7fa130697083734dd832650a19d4d9054e94831693a7c07a67381ecd5edfe1b89e552bb618d79b638461f213b486ae9057969666f9ac1e3f191cf00bf8881"}, {0xdd, 0x16, "b0422b645775f1e7760dcf10e4fe5ab61cb672db8f4f"}, {0xdd, 0xf2, "5237aa510aa3c15d46e904b1a4e04008823a67433bca69a53b89d1dd3c37c30369b89b963ae0c2887dc04e7c22e916776ef5857bb5170067937bf25ac2f61cf9526b6794a3ec9b54d14e96faf321692d03261c5a299eed1e73af3d20ec8f627a48c9e16cbc7bcd1ae641119fb32116f6e01edfea67abf1382a49dd15ee4daa928fd6a59c979ba568def30cdad88c4f7b09a9685b2e6b43edc5a99450f1e3013454962fb3c95a833728b22df6f71bed8ddda7c2a8b0341d892adaa47add60a3f247f1190349b2a1263fb184c638ff69b7b43fd1cf9f5f3643e3f22281e4f4dffb91230ff050c47cdd1c5dde94e45cd980952b"}]}}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x278}, 0x1, 0x0, 0x0, 0x20000004}, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001bc0), r0) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001d00)={&(0x7f0000001b80)={0x10, 0x0, 0x0, 0x49d77f4d9dc16e5}, 0xc, &(0x7f0000001cc0)={&(0x7f0000001c00)={0xa8, r4, 0x8, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x2, 0x2}}}}, [@chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x11}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1478}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}], @NL80211_ATTR_CSA_C_OFFSETS_TX={0x8, 0xcd, [0x400, 0x1]}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x19}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14c8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xc}]]}, 0xa8}, 0x1, 0x0, 0x0, 0x20000040}, 0x8000) r5 = dup2(r0, r0) openat(r5, &(0x7f0000001d40)='./file0\x00', 0x311042, 0x120) r6 = openat$hpet(0xffffffffffffff9c, &(0x7f0000001d80), 0x2300, 0x0) sendmsg$NL80211_CMD_SET_REG(r6, &(0x7f0000001e80)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001e40)={&(0x7f0000001e00)={0x2c, r2, 0x400, 0x70bd2b, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x38}, @NL80211_ATTR_USER_REG_HINT_TYPE={0x8}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x32}]}, 0x2c}, 0x1, 0x0, 0x0, 0x810}, 0x4004000) sendmsg$TIPC_CMD_SET_LINK_TOL(r0, &(0x7f0000001f80)={&(0x7f0000001ec0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001f40)={&(0x7f0000001f00)={0x38, 0x0, 0x20, 0x70bd2a, 0x25dfdbfb, {{}, {}, {0x1c, 0x18, {0x8, @bearer=@l2={'eth', 0x3a, 'bridge_slave_1\x00'}}}}, ["", "", "", "", "", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x801}, 0x10080) pipe2(&(0x7f0000001fc0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) sendmsg$NL80211_CMD_START_AP(r7, &(0x7f0000002100)={&(0x7f0000002000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000020c0)={&(0x7f0000002040)={0x54, r1, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x0, 0x52}}}}, [@NL80211_ATTR_HIDDEN_SSID={0x8, 0x7e, 0x2}, @acl_policy=[@NL80211_ATTR_MAC_ADDRS={0x1c, 0xa6, 0x0, 0x1, [{0xa}, {0xa, 0x6, @broadcast}]}], @NL80211_ATTR_SMPS_MODE={0x5, 0xd5, 0x2}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x3}]}, 0x54}, 0x1, 0x0, 0x0, 0x80001}, 0x20040814) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000029c0)={&(0x7f0000002140)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000002980)={&(0x7f0000002780)={0x1c8, 0x0, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_team\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_0\x00'}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'gretap0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x70, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}]}, 0x1c8}, 0x1, 0x0, 0x0, 0x44}, 0x0) [ 74.459740] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 74.461664] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 74.466122] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 74.470224] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 74.471918] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 74.474092] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 74.487473] Bluetooth: hci0: HCI_REQ-0x0c1a [ 74.510628] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 74.513677] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 74.515038] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 74.523238] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 74.525050] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 74.527687] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 74.533585] Bluetooth: hci1: HCI_REQ-0x0c1a [ 74.571811] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 74.577547] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 74.579035] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 74.584786] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 74.586542] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 74.589488] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 74.591499] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 74.592498] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 74.594119] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 74.596005] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 74.597726] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 74.599379] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 74.600451] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 74.601884] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 74.603200] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 74.604736] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 74.610054] Bluetooth: hci2: HCI_REQ-0x0c1a [ 74.622793] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 74.624868] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 74.627072] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 74.630251] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 74.631321] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 74.632524] Bluetooth: hci4: HCI_REQ-0x0c1a [ 74.650900] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 74.650912] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 74.654593] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 74.654611] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 74.669244] Bluetooth: hci5: HCI_REQ-0x0c1a [ 74.674175] Bluetooth: hci6: HCI_REQ-0x0c1a [ 74.688768] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 74.691559] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 74.692748] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 74.703253] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 74.703339] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 74.708181] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 74.709438] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 74.716512] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 74.717751] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 74.728156] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 74.731005] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 74.745025] Bluetooth: hci7: HCI_REQ-0x0c1a [ 74.745806] Bluetooth: hci3: HCI_REQ-0x0c1a [ 76.547542] Bluetooth: hci0: command 0x0409 tx timeout [ 76.596300] Bluetooth: hci1: command 0x0409 tx timeout [ 76.660207] Bluetooth: hci4: command 0x0409 tx timeout [ 76.661274] Bluetooth: hci2: command 0x0409 tx timeout [ 76.724095] Bluetooth: hci6: command 0x0409 tx timeout [ 76.725114] Bluetooth: hci5: command 0x0409 tx timeout [ 76.788071] Bluetooth: hci3: command 0x0409 tx timeout [ 76.789179] Bluetooth: hci7: command 0x0409 tx timeout [ 78.580022] Bluetooth: hci0: command 0x041b tx timeout [ 78.645034] Bluetooth: hci1: command 0x041b tx timeout [ 78.709041] Bluetooth: hci2: command 0x041b tx timeout [ 78.709625] Bluetooth: hci4: command 0x041b tx timeout [ 78.772023] Bluetooth: hci5: command 0x041b tx timeout [ 78.772569] Bluetooth: hci6: command 0x041b tx timeout [ 78.837066] Bluetooth: hci7: command 0x041b tx timeout [ 78.837631] Bluetooth: hci3: command 0x041b tx timeout [ 80.629046] Bluetooth: hci0: command 0x040f tx timeout [ 80.692026] Bluetooth: hci1: command 0x040f tx timeout [ 80.757056] Bluetooth: hci4: command 0x040f tx timeout [ 80.757476] Bluetooth: hci2: command 0x040f tx timeout [ 80.821074] Bluetooth: hci6: command 0x040f tx timeout [ 80.821502] Bluetooth: hci5: command 0x040f tx timeout [ 80.885010] Bluetooth: hci3: command 0x040f tx timeout [ 80.885432] Bluetooth: hci7: command 0x040f tx timeout [ 82.676989] Bluetooth: hci0: command 0x0419 tx timeout [ 82.740999] Bluetooth: hci1: command 0x0419 tx timeout [ 82.805073] Bluetooth: hci2: command 0x0419 tx timeout [ 82.805499] Bluetooth: hci4: command 0x0419 tx timeout [ 82.868011] Bluetooth: hci5: command 0x0419 tx timeout [ 82.868439] Bluetooth: hci6: command 0x0419 tx timeout [ 82.933011] Bluetooth: hci7: command 0x0419 tx timeout [ 82.933450] Bluetooth: hci3: command 0x0419 tx timeout 20:31:03 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) waitid(0x1, 0x0, 0x0, 0x8, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x26e1, 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000000)={0x0, 0x40100004, 0x10001}) openat(r0, &(0x7f0000000100)='./file1\x00', 0x1, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x80, 0x2, 0x81, 0x80, 0x1, 0x0, 0xfffffffffffffff8, 0x2, 0x8, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext={0x1000, 0x80000000}, 0x20, 0x7, 0x81, 0x8, 0x3, 0xfffffff8, 0x1, 0x0, 0x9, 0x0, 0x7f61e759}, 0x0, 0xb, r0, 0x8) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDSKBLED(r1, 0x4b65, 0x2000000) sync() [ 127.550800] audit: type=1400 audit(1664310663.648:7): avc: denied { open } for pid=3889 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.552329] audit: type=1400 audit(1664310663.648:8): avc: denied { kernel } for pid=3889 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 127.581591] ------------[ cut here ]------------ [ 127.581612] [ 127.581615] ====================================================== [ 127.581618] WARNING: possible circular locking dependency detected [ 127.581623] 6.0.0-rc6-next-20220923 #1 Not tainted [ 127.581629] ------------------------------------------------------ [ 127.581633] syz-executor.2/3890 is trying to acquire lock: [ 127.581639] ffffffff853faaf8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 127.581681] [ 127.581681] but task is already holding lock: [ 127.581684] ffff888008951c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.581713] [ 127.581713] which lock already depends on the new lock. [ 127.581713] [ 127.581716] [ 127.581716] the existing dependency chain (in reverse order) is: [ 127.581720] [ 127.581720] -> #3 (&ctx->lock){....}-{2:2}: [ 127.581733] _raw_spin_lock+0x2a/0x40 [ 127.581752] __perf_event_task_sched_out+0x53b/0x18d0 [ 127.581765] __schedule+0xedd/0x2470 [ 127.581778] schedule+0xda/0x1b0 [ 127.581791] futex_wait_queue+0xf5/0x1e0 [ 127.581803] futex_wait+0x28e/0x690 [ 127.581813] do_futex+0x2ff/0x380 [ 127.581823] __x64_sys_futex+0x1c6/0x4d0 [ 127.581833] do_syscall_64+0x3b/0x90 [ 127.581849] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.581861] [ 127.581861] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 127.581875] _raw_spin_lock_nested+0x30/0x40 [ 127.581893] raw_spin_rq_lock_nested+0x1e/0x30 [ 127.581906] task_fork_fair+0x63/0x4d0 [ 127.581923] sched_cgroup_fork+0x3d0/0x540 [ 127.581940] copy_process+0x4183/0x6e20 [ 127.581951] kernel_clone+0xe7/0x890 [ 127.581960] user_mode_thread+0xad/0xf0 [ 127.581970] rest_init+0x24/0x250 [ 127.581982] arch_call_rest_init+0xf/0x14 [ 127.582000] start_kernel+0x4c1/0x4e6 [ 127.582015] secondary_startup_64_no_verify+0xe0/0xeb [ 127.582030] [ 127.582030] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 127.582043] _raw_spin_lock_irqsave+0x39/0x60 [ 127.582061] try_to_wake_up+0xab/0x1930 [ 127.582074] up+0x75/0xb0 [ 127.582090] __up_console_sem+0x6e/0x80 [ 127.582109] console_unlock+0x46a/0x590 [ 127.582124] do_con_write+0xc05/0x1d50 [ 127.582137] con_write+0x21/0x40 [ 127.582147] n_tty_write+0x4d4/0xfe0 [ 127.582161] file_tty_write.constprop.0+0x49c/0x8f0 [ 127.582173] vfs_write+0x9c3/0xd90 [ 127.582191] ksys_write+0x127/0x250 [ 127.582208] do_syscall_64+0x3b/0x90 [ 127.582224] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.582236] [ 127.582236] -> #0 ((console_sem).lock){....}-{2:2}: [ 127.582249] __lock_acquire+0x2a02/0x5e70 [ 127.582266] lock_acquire+0x1a2/0x530 [ 127.582281] _raw_spin_lock_irqsave+0x39/0x60 [ 127.582307] down_trylock+0xe/0x70 [ 127.582321] __down_trylock_console_sem+0x3b/0xd0 [ 127.582337] vprintk_emit+0x16b/0x560 [ 127.582353] vprintk+0x84/0xa0 [ 127.582368] _printk+0xba/0xf1 [ 127.582380] report_bug.cold+0x72/0xab [ 127.582396] handle_bug+0x3c/0x70 [ 127.582412] exc_invalid_op+0x14/0x50 [ 127.582428] asm_exc_invalid_op+0x16/0x20 [ 127.582439] group_sched_out.part.0+0x2c7/0x460 [ 127.582450] ctx_sched_out+0x8f1/0xc10 [ 127.582459] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.582472] __schedule+0xedd/0x2470 [ 127.582485] schedule+0xda/0x1b0 [ 127.582497] futex_wait_queue+0xf5/0x1e0 [ 127.582508] futex_wait+0x28e/0x690 [ 127.582517] do_futex+0x2ff/0x380 [ 127.582526] __x64_sys_futex+0x1c6/0x4d0 [ 127.582536] do_syscall_64+0x3b/0x90 [ 127.582552] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.582564] [ 127.582564] other info that might help us debug this: [ 127.582564] [ 127.582567] Chain exists of: [ 127.582567] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 127.582567] [ 127.582582] Possible unsafe locking scenario: [ 127.582582] [ 127.582584] CPU0 CPU1 [ 127.582586] ---- ---- [ 127.582589] lock(&ctx->lock); [ 127.582594] lock(&rq->__lock); [ 127.582601] lock(&ctx->lock); [ 127.582607] lock((console_sem).lock); [ 127.582613] [ 127.582613] *** DEADLOCK *** [ 127.582613] [ 127.582615] 2 locks held by syz-executor.2/3890: [ 127.582622] #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 127.582650] #1: ffff888008951c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 127.582677] [ 127.582677] stack backtrace: [ 127.582680] CPU: 1 PID: 3890 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1 [ 127.582692] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.582700] Call Trace: [ 127.582704] [ 127.582708] dump_stack_lvl+0x8b/0xb3 [ 127.582726] check_noncircular+0x263/0x2e0 [ 127.582742] ? format_decode+0x26c/0xb50 [ 127.582758] ? print_circular_bug+0x450/0x450 [ 127.582775] ? enable_ptr_key_workfn+0x20/0x20 [ 127.582791] ? format_decode+0x26c/0xb50 [ 127.582808] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 127.582825] __lock_acquire+0x2a02/0x5e70 [ 127.582846] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 127.582868] lock_acquire+0x1a2/0x530 [ 127.582885] ? down_trylock+0xe/0x70 [ 127.582901] ? lock_release+0x750/0x750 [ 127.582921] ? vprintk+0x84/0xa0 [ 127.582938] _raw_spin_lock_irqsave+0x39/0x60 [ 127.582957] ? down_trylock+0xe/0x70 [ 127.582973] down_trylock+0xe/0x70 [ 127.582988] ? vprintk+0x84/0xa0 [ 127.583004] __down_trylock_console_sem+0x3b/0xd0 [ 127.583021] vprintk_emit+0x16b/0x560 [ 127.583039] vprintk+0x84/0xa0 [ 127.583057] _printk+0xba/0xf1 [ 127.583068] ? record_print_text.cold+0x16/0x16 [ 127.583083] ? report_bug.cold+0x66/0xab [ 127.583100] ? group_sched_out.part.0+0x2c7/0x460 [ 127.583112] report_bug.cold+0x72/0xab [ 127.583130] handle_bug+0x3c/0x70 [ 127.583147] exc_invalid_op+0x14/0x50 [ 127.583164] asm_exc_invalid_op+0x16/0x20 [ 127.583176] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.583190] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.583201] RSP: 0018:ffff888017f578f8 EFLAGS: 00010006 [ 127.583210] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.583218] RDX: ffff8880102f9ac0 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 127.583226] RBP: ffff88801d9e0000 R08: 0000000000000005 R09: 0000000000000001 [ 127.583233] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff888008951c00 [ 127.583241] R13: ffff88806cf3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 127.583252] ? group_sched_out.part.0+0x2c7/0x460 [ 127.583265] ? group_sched_out.part.0+0x2c7/0x460 [ 127.583278] ctx_sched_out+0x8f1/0xc10 [ 127.583291] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.583307] ? lock_is_held_type+0xd7/0x130 [ 127.583320] ? __perf_cgroup_move+0x160/0x160 [ 127.583332] ? set_next_entity+0x304/0x550 [ 127.583351] ? lock_is_held_type+0xd7/0x130 [ 127.583364] __schedule+0xedd/0x2470 [ 127.583381] ? io_schedule_timeout+0x150/0x150 [ 127.583396] ? futex_wait_setup+0x166/0x230 [ 127.583410] schedule+0xda/0x1b0 [ 127.583424] futex_wait_queue+0xf5/0x1e0 [ 127.583436] futex_wait+0x28e/0x690 [ 127.583449] ? futex_wait_setup+0x230/0x230 [ 127.583462] ? wake_up_q+0x8b/0xf0 [ 127.583475] ? do_raw_spin_unlock+0x4f/0x220 [ 127.583494] ? futex_wake+0x158/0x490 [ 127.583509] ? fd_install+0x1f9/0x640 [ 127.583526] do_futex+0x2ff/0x380 [ 127.583537] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 127.583553] __x64_sys_futex+0x1c6/0x4d0 [ 127.583565] ? __x64_sys_futex_time32+0x480/0x480 [ 127.583578] ? syscall_enter_from_user_mode+0x1d/0x50 [ 127.583591] ? syscall_enter_from_user_mode+0x1d/0x50 [ 127.583606] do_syscall_64+0x3b/0x90 [ 127.583624] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.583636] RIP: 0033:0x7f2d1d9fcb19 [ 127.583644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.583655] RSP: 002b:00007f2d1af72218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.583666] RAX: ffffffffffffffda RBX: 00007f2d1db0ff68 RCX: 00007f2d1d9fcb19 [ 127.583674] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2d1db0ff68 [ 127.583681] RBP: 00007f2d1db0ff60 R08: 0000000000000000 R09: 0000000000000000 [ 127.583688] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2d1db0ff6c [ 127.583695] R13: 00007fff3fb64d6f R14: 00007f2d1af72300 R15: 0000000000022000 [ 127.583708] [ 127.644494] WARNING: CPU: 1 PID: 3890 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 127.645197] Modules linked in: [ 127.645447] CPU: 1 PID: 3890 Comm: syz-executor.2 Not tainted 6.0.0-rc6-next-20220923 #1 [ 127.646059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 127.646920] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 127.647331] Code: 5e 41 5f e9 5b bb ef ff e8 56 bb ef ff 65 8b 1d 1b 26 ac 7e 31 ff 89 de e8 f6 b7 ef ff 85 db 0f 84 8a 00 00 00 e8 39 bb ef ff <0f> 0b e9 a5 fe ff ff e8 2d bb ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 127.648710] RSP: 0018:ffff888017f578f8 EFLAGS: 00010006 [ 127.649104] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 127.649654] RDX: ffff8880102f9ac0 RSI: ffffffff81564fb7 RDI: 0000000000000005 [ 127.650203] RBP: ffff88801d9e0000 R08: 0000000000000005 R09: 0000000000000001 [ 127.650740] R10: 0000000000000000 R11: ffffffff865b005b R12: ffff888008951c00 [ 127.651283] R13: ffff88806cf3d140 R14: ffffffff8547d040 R15: 0000000000000002 [ 127.651833] FS: 00007f2d1af72700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 127.652449] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 127.652890] CR2: 00007f1d6ec80620 CR3: 0000000040ff4000 CR4: 0000000000350ee0 [ 127.653434] Call Trace: [ 127.653634] [ 127.653815] ctx_sched_out+0x8f1/0xc10 [ 127.654118] __perf_event_task_sched_out+0x6d0/0x18d0 [ 127.654532] ? lock_is_held_type+0xd7/0x130 [ 127.654863] ? __perf_cgroup_move+0x160/0x160 [ 127.655212] ? set_next_entity+0x304/0x550 [ 127.655547] ? lock_is_held_type+0xd7/0x130 [ 127.655879] __schedule+0xedd/0x2470 [ 127.656166] ? io_schedule_timeout+0x150/0x150 [ 127.656527] ? futex_wait_setup+0x166/0x230 [ 127.656864] schedule+0xda/0x1b0 [ 127.657130] futex_wait_queue+0xf5/0x1e0 [ 127.657444] futex_wait+0x28e/0x690 [ 127.657727] ? futex_wait_setup+0x230/0x230 [ 127.658059] ? wake_up_q+0x8b/0xf0 [ 127.658341] ? do_raw_spin_unlock+0x4f/0x220 [ 127.658693] ? futex_wake+0x158/0x490 [ 127.658993] ? fd_install+0x1f9/0x640 [ 127.659284] do_futex+0x2ff/0x380 [ 127.659551] ? __ia32_compat_sys_get_robust_list+0x3b0/0x3b0 [ 127.659997] __x64_sys_futex+0x1c6/0x4d0 [ 127.660319] ? __x64_sys_futex_time32+0x480/0x480 [ 127.660684] ? syscall_enter_from_user_mode+0x1d/0x50 [ 127.661080] ? syscall_enter_from_user_mode+0x1d/0x50 [ 127.661484] do_syscall_64+0x3b/0x90 [ 127.661787] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 127.662184] RIP: 0033:0x7f2d1d9fcb19 [ 127.662477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 127.663834] RSP: 002b:00007f2d1af72218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 127.664412] RAX: ffffffffffffffda RBX: 00007f2d1db0ff68 RCX: 00007f2d1d9fcb19 [ 127.664955] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f2d1db0ff68 [ 127.665499] RBP: 00007f2d1db0ff60 R08: 0000000000000000 R09: 0000000000000000 [ 127.666030] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2d1db0ff6c [ 127.666566] R13: 00007fff3fb64d6f R14: 00007f2d1af72300 R15: 0000000000022000 [ 127.667095] [ 127.667286] irq event stamp: 850 [ 127.667544] hardirqs last enabled at (849): [] syscall_enter_from_user_mode+0x1d/0x50 [ 127.668247] hardirqs last disabled at (850): [] __schedule+0x1225/0x2470 [ 127.668875] softirqs last enabled at (588): [] __irq_exit_rcu+0x11b/0x180 [ 127.669520] softirqs last disabled at (553): [] __irq_exit_rcu+0x11b/0x180 [ 127.670158] ---[ end trace 0000000000000000 ]--- [ 127.789541] loop7: detected capacity change from 0 to 2 [ 127.812819] loop7: detected capacity change from 0 to 2 20:31:03 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r0, 0xf50f, 0x0) pwritev(r0, &(0x7f0000000080)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x7fffffe, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = eventfd(0x849e) r3 = perf_event_open(&(0x7f0000000200)={0x4, 0x80, 0xf9, 0x20, 0x9, 0x7f, 0x0, 0x8, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x4, 0x4, @perf_config_ext={0x24bf, 0x4}, 0x0, 0x7, 0x3, 0x6, 0x8, 0xfffffc00, 0x4, 0x0, 0xfffffff7}, 0xffffffffffffffff, 0x9, r0, 0x3) dup2(r2, r3) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0x0) sendfile(r0, r0, 0x0, 0x5f1) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000540)={0x0, 0x0}) openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x3a9900, 0x0) fcntl$setown(r1, 0x8, r4) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='environ\x00') read$hiddev(r5, 0x0, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000140)) 20:31:04 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0xd}, 0x0, 0x0, 0x0, 0x18}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x0, 0x12) sendfile(r0, r1, 0x0, 0x7fffffff) r2 = openat(r0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) sendfile(r3, r2, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000200)=ANY=[@ANYBLOB="edffffff014bed4648ffde00", @ANYRES32=r2, @ANYBLOB='B\x00\x00\x00\x00\x00\x00\x00./file1\x00']) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xf523}, 0x0, 0xffffffffffffffff, r4, 0x0) ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000040)={0x3}) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$EXT4_IOC_CHECKPOINT(r5, 0x4004662b, &(0x7f0000000340)) ioctl$BTRFS_IOC_SET_FEATURES(0xffffffffffffffff, 0x40309439, &(0x7f0000000240)={0x1, 0x0, 0xa}) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) fallocate(r6, 0xb, 0x200, 0x101) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) 20:31:04 executing program 6: sysfs$2(0x2, 0x200, &(0x7f0000000000)=""/162) sysfs$2(0x2, 0xce7c, &(0x7f00000000c0)=""/42) sysfs$2(0x2, 0x4, &(0x7f0000000100)=""/156) sysfs$2(0x2, 0x8001, &(0x7f00000001c0)=""/174) sysfs$2(0x2, 0x5, &(0x7f0000000280)=""/181) sysfs$2(0x2, 0x9, &(0x7f0000000340)=""/127) sysfs$2(0x2, 0x20, &(0x7f00000003c0)=""/17) sysfs$2(0x2, 0x1, &(0x7f0000000400)=""/4096) sysfs$2(0x2, 0x7, &(0x7f0000001400)=""/233) sysfs$2(0x2, 0x8, &(0x7f0000001500)=""/108) sysfs$2(0x2, 0x9, &(0x7f0000001580)=""/62) sysfs$2(0x2, 0x4, &(0x7f00000015c0)=""/148) sysfs$2(0x2, 0x7f, &(0x7f0000001680)) sysfs$2(0x2, 0x5, &(0x7f00000016c0)=""/121) sysfs$2(0x2, 0x9, &(0x7f0000001740)=""/141) sysfs$2(0x2, 0xd5d3795, &(0x7f0000001800)=""/106) sysfs$2(0x2, 0x0, &(0x7f0000001880)=""/203) sysfs$2(0x2, 0x49, &(0x7f0000001980)=""/56) sysfs$2(0x2, 0x3, &(0x7f00000019c0)=""/94) sysfs$2(0x2, 0xc345, &(0x7f0000001a40)=""/219) 20:31:04 executing program 3: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000240)={0x0, 0x8, [0x1, 0xebb, 0x7fffffff, 0x6, 0x0, 0x3]}) io_setup(0x3ff, &(0x7f0000000140)) io_submit(0x0, 0x4000, &(0x7f00000004c0)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x200000000000000}]) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') write$P9_RREMOVE(0xffffffffffffffff, &(0x7f00000002c0)={0x7, 0x7b, 0x1}, 0x7) io_submit(0x0, 0x0, &(0x7f0000000180)) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB]) socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) ioctl$VFAT_IOCTL_READDIR_BOTH(0xffffffffffffffff, 0x82307201, &(0x7f00000004c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) r4 = getpgid(0xffffffffffffffff) r5 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r5}, './file0\x00'}) perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7, 0x1, 0x5a, 0x0, 0x0, 0x0, 0x200, 0xd, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x8, 0x2, @perf_config_ext={0x0, 0x7fffffff}, 0x802c, 0x5d4, 0xfffffff7, 0x7, 0x7, 0xa166, 0x1f49, 0x0, 0x101, 0x0, 0x2}, r4, 0xe, r5, 0x2) dup2(r2, r3) 20:31:04 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140), 0xd}, 0x0, 0x0, 0x0, 0x18}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0x0, 0x12) sendfile(r0, r1, 0x0, 0x7fffffff) r2 = openat(r0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) sendfile(r3, r2, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000200)=ANY=[@ANYBLOB="edffffff014bed4648ffde00", @ANYRES32=r2, @ANYBLOB='B\x00\x00\x00\x00\x00\x00\x00./file1\x00']) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xf523}, 0x0, 0xffffffffffffffff, r4, 0x0) ioctl$F2FS_IOC_FLUSH_DEVICE(0xffffffffffffffff, 0x4008f50a, &(0x7f0000000040)={0x3}) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$EXT4_IOC_CHECKPOINT(r5, 0x4004662b, &(0x7f0000000340)) ioctl$BTRFS_IOC_SET_FEATURES(0xffffffffffffffff, 0x40309439, &(0x7f0000000240)={0x1, 0x0, 0xa}) r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) fallocate(r6, 0xb, 0x200, 0x101) ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) [ 128.115390] audit: type=1400 audit(1664310664.213:9): avc: denied { write } for pid=3933 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 20:31:04 executing program 6: sysfs$2(0x2, 0x200, &(0x7f0000000000)=""/162) sysfs$2(0x2, 0xce7c, &(0x7f00000000c0)=""/42) sysfs$2(0x2, 0x4, &(0x7f0000000100)=""/156) sysfs$2(0x2, 0x8001, &(0x7f00000001c0)=""/174) sysfs$2(0x2, 0x5, &(0x7f0000000280)=""/181) sysfs$2(0x2, 0x9, &(0x7f0000000340)=""/127) sysfs$2(0x2, 0x20, &(0x7f00000003c0)=""/17) sysfs$2(0x2, 0x1, &(0x7f0000000400)=""/4096) sysfs$2(0x2, 0x7, &(0x7f0000001400)=""/233) sysfs$2(0x2, 0x8, &(0x7f0000001500)=""/108) sysfs$2(0x2, 0x9, &(0x7f0000001580)=""/62) sysfs$2(0x2, 0x4, &(0x7f00000015c0)=""/148) sysfs$2(0x2, 0x7f, &(0x7f0000001680)) sysfs$2(0x2, 0x5, &(0x7f00000016c0)=""/121) sysfs$2(0x2, 0x9, &(0x7f0000001740)=""/141) sysfs$2(0x2, 0xd5d3795, &(0x7f0000001800)=""/106) sysfs$2(0x2, 0x0, &(0x7f0000001880)=""/203) sysfs$2(0x2, 0x49, &(0x7f0000001980)=""/56) sysfs$2(0x2, 0x3, &(0x7f00000019c0)=""/94) sysfs$2(0x2, 0xc345, &(0x7f0000001a40)=""/219) 20:31:04 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x1f, 0x0) sendmsg$NL80211_CMD_UPDATE_FT_IES(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000001c0)={0xec, 0x0, 0x20, 0x70bd25, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x53, 0x3}}}}, [@NL80211_ATTR_IE={0xcc, 0x2a, [@ssid={0x0, 0x6, @default_ap_ssid}, @chsw_timing={0x68, 0x4, {0xfff, 0x2}}, @cf={0x4, 0x6, {0xd9, 0x1, 0x8, 0x2800}}, @tim={0x5, 0x99, {0x81, 0xc5, 0x7, "e22208eddc7c2f6648aadeef4af822aa5f62965819fd02166aaec81bf766ffd012c0028f05e894bc84c04864c17cfbb1d4d10f3e14dcb1932a73856fe516fa464bbe74b3f324c09ac4d6851bf20f4db81c41db0a9434045083416446b38db20135f84047f75f9bc4c9f932be80d7a2f1a7098d417d66807db9b9eb7fe291083d4e2e44ce4514c5c024c5ab1f1dd83f38d2727717de0a"}}, @rann={0x7e, 0x15, {{0x0, 0x32}, 0x20, 0x8, @device_a, 0x1, 0x3, 0x2}}]}]}, 0xec}, 0x1, 0x0, 0x0, 0x200000d0}, 0x4) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="01009b7999fe4010d77d7361"], 0x18}}, 0x0) [ 128.532695] loop5: detected capacity change from 0 to 16383 [ 128.584650] loop5: detected capacity change from 0 to 16383 VM DIAGNOSIS: 20:31:03 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806cf3d460 RCX=0000000000000000 RDX=ffff8880102f8000 RSI=ffffffff813bbc04 RDI=0000000000000005 RBP=0000000000000003 RSP=ffff8880414af948 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=ffffed100d9e7a8d R13=0000000000000001 R14=ffff88806cf3d468 R15=dffffc0000000000 RIP=ffffffff813bbc06 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555556c03400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f2d1db0955c CR3=0000000040ff4000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f2d1dae37c0 00007f2d1dae37c8 YMM02=0000000000000000 0000000000000000 00007f2d1dae37e0 00007f2d1dae37c0 YMM03=0000000000000000 0000000000000000 00007f2d1dae37c8 00007f2d1dae37c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000037 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822b17e1 RDI=ffffffff87645be0 RBP=ffffffff87645ba0 RSP=ffff888017f57348 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000037 R11=0000000000000001 R12=0000000000000037 R13=ffffffff87645ba0 R14=0000000000000010 R15=ffffffff822b17d0 RIP=ffffffff822b1839 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f2d1af72700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1d6ec80620 CR3=0000000040ff4000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f2d1dae37c0 00007f2d1dae37c8 YMM02=0000000000000000 0000000000000000 00007f2d1dae37e0 00007f2d1dae37c0 YMM03=0000000000000000 0000000000000000 00007f2d1dae37c8 00007f2d1dae37c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000