Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:32929' (ECDSA) to the list of known hosts. 2022/09/28 08:02:34 fuzzer started 2022/09/28 08:02:35 dialing manager at localhost:35827 syzkaller login: [ 36.912781] cgroup: Unknown subsys name 'net' [ 37.026597] cgroup: Unknown subsys name 'rlimit' 2022/09/28 08:02:51 syscalls: 2215 2022/09/28 08:02:51 code coverage: enabled 2022/09/28 08:02:51 comparison tracing: enabled 2022/09/28 08:02:51 extra coverage: enabled 2022/09/28 08:02:51 setuid sandbox: enabled 2022/09/28 08:02:51 namespace sandbox: enabled 2022/09/28 08:02:51 Android sandbox: enabled 2022/09/28 08:02:51 fault injection: enabled 2022/09/28 08:02:51 leak checking: enabled 2022/09/28 08:02:51 net packet injection: enabled 2022/09/28 08:02:51 net device setup: enabled 2022/09/28 08:02:51 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/28 08:02:51 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/28 08:02:51 USB emulation: enabled 2022/09/28 08:02:51 hci packet injection: enabled 2022/09/28 08:02:51 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220927) 2022/09/28 08:02:51 802.15.4 emulation: enabled 2022/09/28 08:02:51 fetching corpus: 50, signal 22468/24247 (executing program) 2022/09/28 08:02:51 fetching corpus: 100, signal 39352/42627 (executing program) 2022/09/28 08:02:51 fetching corpus: 150, signal 50982/55585 (executing program) 2022/09/28 08:02:51 fetching corpus: 200, signal 58480/64338 (executing program) 2022/09/28 08:02:51 fetching corpus: 250, signal 62098/69228 (executing program) 2022/09/28 08:02:52 fetching corpus: 300, signal 64467/72914 (executing program) 2022/09/28 08:02:52 fetching corpus: 350, signal 70866/80268 (executing program) 2022/09/28 08:02:52 fetching corpus: 400, signal 75929/86280 (executing program) 2022/09/28 08:02:52 fetching corpus: 450, signal 80468/91783 (executing program) 2022/09/28 08:02:52 fetching corpus: 500, signal 81998/94473 (executing program) 2022/09/28 08:02:52 fetching corpus: 550, signal 84340/97838 (executing program) 2022/09/28 08:02:52 fetching corpus: 600, signal 87012/101443 (executing program) 2022/09/28 08:02:52 fetching corpus: 650, signal 89526/104888 (executing program) 2022/09/28 08:02:52 fetching corpus: 700, signal 95417/111278 (executing program) 2022/09/28 08:02:53 fetching corpus: 750, signal 98905/115404 (executing program) 2022/09/28 08:02:53 fetching corpus: 800, signal 101237/118492 (executing program) 2022/09/28 08:02:53 fetching corpus: 850, signal 104267/122146 (executing program) 2022/09/28 08:02:53 fetching corpus: 900, signal 106599/125150 (executing program) 2022/09/28 08:02:53 fetching corpus: 950, signal 110113/129124 (executing program) 2022/09/28 08:02:53 fetching corpus: 1000, signal 111965/131639 (executing program) 2022/09/28 08:02:53 fetching corpus: 1050, signal 113737/134064 (executing program) 2022/09/28 08:02:54 fetching corpus: 1100, signal 115885/136816 (executing program) 2022/09/28 08:02:54 fetching corpus: 1150, signal 117901/139361 (executing program) 2022/09/28 08:02:54 fetching corpus: 1200, signal 118987/141117 (executing program) 2022/09/28 08:02:54 fetching corpus: 1250, signal 121191/143702 (executing program) 2022/09/28 08:02:54 fetching corpus: 1300, signal 122330/145466 (executing program) 2022/09/28 08:02:54 fetching corpus: 1350, signal 123471/147226 (executing program) 2022/09/28 08:02:54 fetching corpus: 1400, signal 125096/149336 (executing program) 2022/09/28 08:02:54 fetching corpus: 1450, signal 127163/151697 (executing program) 2022/09/28 08:02:54 fetching corpus: 1500, signal 127997/153109 (executing program) 2022/09/28 08:02:54 fetching corpus: 1550, signal 129850/155307 (executing program) 2022/09/28 08:02:55 fetching corpus: 1600, signal 132618/158092 (executing program) 2022/09/28 08:02:55 fetching corpus: 1650, signal 135066/160559 (executing program) 2022/09/28 08:02:55 fetching corpus: 1700, signal 136978/162690 (executing program) 2022/09/28 08:02:55 fetching corpus: 1750, signal 138059/164145 (executing program) 2022/09/28 08:02:55 fetching corpus: 1800, signal 139612/165933 (executing program) 2022/09/28 08:02:55 fetching corpus: 1850, signal 141000/167604 (executing program) 2022/09/28 08:02:55 fetching corpus: 1900, signal 143092/169691 (executing program) 2022/09/28 08:02:55 fetching corpus: 1950, signal 144579/171381 (executing program) 2022/09/28 08:02:56 fetching corpus: 2000, signal 146614/173372 (executing program) 2022/09/28 08:02:56 fetching corpus: 2050, signal 147681/174673 (executing program) 2022/09/28 08:02:56 fetching corpus: 2100, signal 149047/176122 (executing program) 2022/09/28 08:02:56 fetching corpus: 2150, signal 150610/177686 (executing program) 2022/09/28 08:02:56 fetching corpus: 2200, signal 151404/178870 (executing program) 2022/09/28 08:02:56 fetching corpus: 2250, signal 152055/179913 (executing program) 2022/09/28 08:02:56 fetching corpus: 2300, signal 153746/181506 (executing program) 2022/09/28 08:02:56 fetching corpus: 2350, signal 154607/182566 (executing program) 2022/09/28 08:02:56 fetching corpus: 2400, signal 155554/183679 (executing program) 2022/09/28 08:02:57 fetching corpus: 2450, signal 156191/184599 (executing program) 2022/09/28 08:02:57 fetching corpus: 2500, signal 156845/185540 (executing program) 2022/09/28 08:02:57 fetching corpus: 2550, signal 157540/186467 (executing program) 2022/09/28 08:02:57 fetching corpus: 2600, signal 158523/187572 (executing program) 2022/09/28 08:02:57 fetching corpus: 2650, signal 159725/188752 (executing program) 2022/09/28 08:02:57 fetching corpus: 2700, signal 160276/189603 (executing program) 2022/09/28 08:02:57 fetching corpus: 2750, signal 161054/190493 (executing program) 2022/09/28 08:02:57 fetching corpus: 2800, signal 162081/191528 (executing program) 2022/09/28 08:02:57 fetching corpus: 2850, signal 162961/192507 (executing program) 2022/09/28 08:02:57 fetching corpus: 2900, signal 164058/193537 (executing program) 2022/09/28 08:02:58 fetching corpus: 2950, signal 164725/194350 (executing program) 2022/09/28 08:02:58 fetching corpus: 3000, signal 166221/195489 (executing program) 2022/09/28 08:02:58 fetching corpus: 3050, signal 166661/196143 (executing program) 2022/09/28 08:02:58 fetching corpus: 3100, signal 166970/196730 (executing program) 2022/09/28 08:02:58 fetching corpus: 3150, signal 167961/197622 (executing program) 2022/09/28 08:02:58 fetching corpus: 3200, signal 169582/198725 (executing program) 2022/09/28 08:02:58 fetching corpus: 3250, signal 170626/199576 (executing program) 2022/09/28 08:02:58 fetching corpus: 3300, signal 171640/200421 (executing program) 2022/09/28 08:02:59 fetching corpus: 3350, signal 172346/201122 (executing program) 2022/09/28 08:02:59 fetching corpus: 3400, signal 173492/202117 (executing program) 2022/09/28 08:02:59 fetching corpus: 3450, signal 174567/202942 (executing program) 2022/09/28 08:02:59 fetching corpus: 3500, signal 175073/203520 (executing program) 2022/09/28 08:02:59 fetching corpus: 3550, signal 176127/204254 (executing program) 2022/09/28 08:02:59 fetching corpus: 3600, signal 177060/204918 (executing program) 2022/09/28 08:02:59 fetching corpus: 3650, signal 177721/205569 (executing program) 2022/09/28 08:02:59 fetching corpus: 3700, signal 178419/206193 (executing program) 2022/09/28 08:02:59 fetching corpus: 3750, signal 179283/206862 (executing program) 2022/09/28 08:03:00 fetching corpus: 3800, signal 180281/207541 (executing program) 2022/09/28 08:03:00 fetching corpus: 3850, signal 181658/208262 (executing program) 2022/09/28 08:03:00 fetching corpus: 3900, signal 182698/208900 (executing program) 2022/09/28 08:03:00 fetching corpus: 3950, signal 183657/209497 (executing program) 2022/09/28 08:03:00 fetching corpus: 4000, signal 184695/210103 (executing program) 2022/09/28 08:03:00 fetching corpus: 4050, signal 186263/210848 (executing program) 2022/09/28 08:03:00 fetching corpus: 4100, signal 186945/211313 (executing program) 2022/09/28 08:03:01 fetching corpus: 4150, signal 187362/211716 (executing program) 2022/09/28 08:03:01 fetching corpus: 4200, signal 188405/212222 (executing program) 2022/09/28 08:03:01 fetching corpus: 4250, signal 189251/212667 (executing program) 2022/09/28 08:03:01 fetching corpus: 4300, signal 189968/213095 (executing program) 2022/09/28 08:03:01 fetching corpus: 4350, signal 190716/213523 (executing program) 2022/09/28 08:03:01 fetching corpus: 4400, signal 191223/213920 (executing program) 2022/09/28 08:03:01 fetching corpus: 4450, signal 192002/214346 (executing program) 2022/09/28 08:03:01 fetching corpus: 4500, signal 192681/214720 (executing program) 2022/09/28 08:03:01 fetching corpus: 4550, signal 193311/215098 (executing program) 2022/09/28 08:03:02 fetching corpus: 4600, signal 193963/215411 (executing program) 2022/09/28 08:03:02 fetching corpus: 4650, signal 194442/215710 (executing program) 2022/09/28 08:03:02 fetching corpus: 4700, signal 194859/215991 (executing program) 2022/09/28 08:03:02 fetching corpus: 4750, signal 195410/216327 (executing program) 2022/09/28 08:03:02 fetching corpus: 4800, signal 196180/216620 (executing program) 2022/09/28 08:03:02 fetching corpus: 4850, signal 196832/216896 (executing program) 2022/09/28 08:03:02 fetching corpus: 4900, signal 197414/217182 (executing program) 2022/09/28 08:03:03 fetching corpus: 4950, signal 198262/217453 (executing program) 2022/09/28 08:03:03 fetching corpus: 5000, signal 198987/217945 (executing program) 2022/09/28 08:03:03 fetching corpus: 5050, signal 200037/218218 (executing program) 2022/09/28 08:03:03 fetching corpus: 5100, signal 200793/218445 (executing program) 2022/09/28 08:03:03 fetching corpus: 5150, signal 201182/218663 (executing program) 2022/09/28 08:03:03 fetching corpus: 5200, signal 201724/218874 (executing program) 2022/09/28 08:03:03 fetching corpus: 5250, signal 202152/219056 (executing program) 2022/09/28 08:03:03 fetching corpus: 5300, signal 203527/219333 (executing program) 2022/09/28 08:03:03 fetching corpus: 5350, signal 204031/219501 (executing program) 2022/09/28 08:03:03 fetching corpus: 5400, signal 204434/219662 (executing program) 2022/09/28 08:03:04 fetching corpus: 5450, signal 204921/219690 (executing program) 2022/09/28 08:03:04 fetching corpus: 5500, signal 205433/219718 (executing program) 2022/09/28 08:03:04 fetching corpus: 5550, signal 206163/219719 (executing program) 2022/09/28 08:03:04 fetching corpus: 5600, signal 206567/219719 (executing program) 2022/09/28 08:03:04 fetching corpus: 5650, signal 207087/219785 (executing program) 2022/09/28 08:03:04 fetching corpus: 5700, signal 207850/219785 (executing program) 2022/09/28 08:03:04 fetching corpus: 5750, signal 208570/219785 (executing program) 2022/09/28 08:03:04 fetching corpus: 5800, signal 208993/219787 (executing program) 2022/09/28 08:03:04 fetching corpus: 5850, signal 209344/219788 (executing program) 2022/09/28 08:03:04 fetching corpus: 5855, signal 209426/219788 (executing program) 2022/09/28 08:03:04 fetching corpus: 5855, signal 209426/219788 (executing program) 2022/09/28 08:03:07 starting 8 fuzzer processes 08:03:07 executing program 0: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0xea71]}, 0x8) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000040)={0x0, 0x1, 0x6, @multicast}, 0x10) r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.throttle.io_serviced\x00', 0x0, 0x0) sendto$packet(r1, &(0x7f00000000c0)="fb402378c1f263c2972fff7eb54c15805d5b59c9e592d58b6f193a5ee2ff09e62f7b3a1bab9eac27104e750577bad2ea5c28c0dcaa961cfa84daf98a2cb7e2d216b45f58cfd000c042946671d2c8e6b4b3f55237b401bd236cec104dec3d4024376e8d7c39e313be478f464dc8d25ed81ce75d792943f46c66e1c7734a5669c54d3cb4897b67ec6b1fa482606a6cf8d24d2dbbfa6a36468a1bb5be37a472911ded1c9c78bd4239f0389182ab91af41199df5780d6e6426d8bad50f6f6b71e5fc4883d63e5d0b45761a3033fe1ffe", 0xce, 0x80, &(0x7f00000001c0)={0x11, 0x1c, 0x0, 0x1, 0x9}, 0x14) getsockopt$inet_buf(r0, 0x0, 0x2f, &(0x7f0000000200)=""/4096, &(0x7f0000001200)=0x1000) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x89f6, &(0x7f00000012c0)={'ip6gre0\x00', &(0x7f0000001240)={'ip6_vti0\x00', 0x0, 0x4, 0x6b, 0x6, 0x3f, 0x16, @private1, @private2, 0x80, 0x700, 0xffffffff, 0x3f}}) r3 = socket(0x1a, 0x2, 0x81) r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001340), r0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r0, 0x89f9, &(0x7f0000001400)={'syztnl1\x00', &(0x7f0000001380)={'sit0\x00', r2, 0x4, 0x1f, 0x6, 0x4, 0x38, @ipv4={'\x00', '\xff\xff', @empty}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x10, 0x7800, 0x8001, 0x7f}}) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000001440)={{{@in6=@private2, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@private2}}, &(0x7f0000001540)=0xe8) sendmsg$ETHTOOL_MSG_PAUSE_GET(r3, &(0x7f00000016c0)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x40c40080}, 0xc, &(0x7f0000001680)={&(0x7f0000001580)={0xe8, r4, 0x100, 0x70bd27, 0x25dfdbfe, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x4}]}, 0xe8}, 0x1, 0x0, 0x0, 0x4004801}, 0x40000) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r1, 0x89fb, &(0x7f00000017c0)={'syztnl0\x00', &(0x7f0000001740)={'ip6tnl0\x00', r6, 0x4, 0x81, 0x9, 0x2, 0x8, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x7800, 0x7800, 0x3d1, 0x1000}}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000001880)={'ip_vti0\x00', &(0x7f0000001840)={'gre0\x00', r5, 0x1, 0x20, 0xffff, 0x800, {{0x6, 0x4, 0x0, 0x8, 0x18, 0x66, 0x0, 0x9, 0x2f, 0x0, @local, @private=0xa010102, {[@ra={0x94, 0x4, 0x1}]}}}}}) accept4$packet(r1, &(0x7f00000018c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000001900)=0x14, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(r0, 0x89f7, &(0x7f00000019c0)={'syztnl0\x00', &(0x7f0000001940)={'ip6_vti0\x00', r2, 0x2f, 0x5, 0x2, 0xfffffff8, 0x2, @empty, @remote, 0x80, 0x20, 0x61d, 0x60}}) getsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000001a00)={{{@in6=@remote, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in=@dev}}, &(0x7f0000001b00)=0xe8) sendmsg$ETHTOOL_MSG_FEATURES_SET(r3, &(0x7f0000001c40)={&(0x7f0000001700)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b40)={0xbc, r4, 0x8, 0x70bd2a, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}, @ETHTOOL_A_FEATURES_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @ETHTOOL_A_FEATURES_HEADER={0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bond\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}]}, @ETHTOOL_A_FEATURES_HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}]}, 0xbc}, 0x1, 0x0, 0x0, 0x20004080}, 0x4040084) r12 = signalfd4(r0, &(0x7f0000001c80)={[0x3]}, 0x8, 0x80800) sendmsg$ETHTOOL_MSG_DEBUG_GET(r12, &(0x7f0000001d80)={&(0x7f0000001cc0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000001d40)={&(0x7f0000001d00)={0x28, r4, 0x200, 0x70bd2a, 0x25dfdbfb, {}, [@HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x48004}, 0x24044880) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000001e00)={0x0, 0x1, 0x6, @random="3b23912004a6"}, 0x10) 08:03:07 executing program 1: prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_OFF(0x3b, 0x0) 08:03:07 executing program 2: r0 = open(&(0x7f0000000000)='./file0\x00', 0x248200, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000600)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000100)={0x494, r1, 0x800, 0x70bd29, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x401, 0x13}}}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x108}, @NL80211_ATTR_SCAN_SUPP_RATES={0x108, 0x7d, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x103, 0x0, "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"}]}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x7f}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_SCAN_SUPP_RATES={0xec, 0x7d, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x28, 0x0, "266bdc1aac756b11765c718de8af8e655506a4e7c782ef1fce55a8a8112c57bc3ee09722"}, @NL80211_BAND_6GHZ={0x69, 0x3, "090744a80c1c46ddea18c80a6d00fdf75e402dfbb8e8a459db592cfce9183d81776cff9c900cff7cb7ade11e592b3757fb5f3ef3e6eeaafce7e205848f8605304d5f88943f58513fdca10f4fd551c4633310dc2ead8a7a73763db59e4464a8fa8cacd3ca71"}, @NL80211_BAND_5GHZ={0x7, 0x1, "0b3ff5"}, @NL80211_BAND_2GHZ={0x49, 0x0, "25ae1b504b984c6788050ae44a54daa3b149d251dee5306a8ac9f70cea8ffeb1eb2890ec68ec8b4a61fe3686034796426046cf67b92e425c68103a0440e1a5f72fac2ea680"}]}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x8}, @NL80211_ATTR_SCAN_SUPP_RATES={0x23c, 0x7d, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x75, 0x3, "a55208a8376bd154d0f4ef2fa4da3b36846efcd661bbe3e20cd4374cd9cda776b5b3352fcfb1b84007c9cc66fa1ea80b9fb6748750201765c463ccd0e7218734ad693aaad738007da8e28957bf59062ebf8b7c8c915c9feb0acbcbf67fa61b7671099add7955057d2a72aa55d90021f696"}, @NL80211_BAND_2GHZ={0xbd, 0x0, "92ea71a223781e5374adec134c6bca5dbbd713005a61b71e667ee1dddbf8084d0c622b3089ea1ae0399c2bde48e1fc0a36211711df46de34e776d9fe215b748bf9e5fab29d79eba0125589e51ed6f266b43470e342b6393f5ead19b3c7c45e1025df0d5b8eff2938bef2dd9cef4979a0718abdb2ab1fd2a421938ffdcf7c34cd3ccb1baab635c23db3bab42528761ce107ccd72cb51301553504c283ca2fa0e494ff341a21116912ea9095763512f4931aeb447f9e8cc0cc0f"}, @NL80211_BAND_6GHZ={0xfe, 0x3, "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"}]}]}, 0x494}, 0x1, 0x0, 0x0, 0x20040054}, 0x4000000) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000a00)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000680)={0x334, r1, 0x300, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x138, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x40, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x1f, 0x2, [{0x6, 0x9}, {0x5, 0x2}, {0x6, 0x1}, {0x2, 0x2}, {0x5, 0x3}, {0x1, 0x9}, {0x7, 0x4}, {0x6, 0x1}, {0x5, 0xa}, {0x4}, {0x0, 0x7}, {0x1}, {0x2, 0xa}, {0x1, 0xa}, {0x0, 0xa}, {0x5, 0xa}, {0x6, 0x3}, {0x0, 0x4}, {0x0, 0x9}, {0x7, 0x2}, {0x1, 0x6}, {0x6, 0x6}, {0x3, 0x7}, {0x1, 0x4}, {0x2, 0x9}, {0x6}, {0x7, 0x4}]}, @NL80211_TXRATE_HT={0x1c, 0x2, [{0x0, 0x9}, {0x4, 0x6}, {0x0, 0x4}, {0x7, 0xa}, {0x7}, {0x1, 0x3}, {0x2, 0xa}, {}, {0x2, 0x6}, {0x0, 0x4}, {0x3, 0x1}, {0x7, 0x5}, {0x4, 0xa}, {0x5, 0x3}, {0x2, 0xa}, {0x4, 0x9}, {0x2, 0x9}, {0x0, 0x4}, {0x1, 0x6}, {0x6, 0x8}, {0x3, 0x9}, {0x2, 0x4}, {0x3, 0x3}, {0x7, 0x3}]}]}, @NL80211_BAND_5GHZ={0xf4, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x47, 0x2, [{0x7, 0x5}, {0x6, 0x8}, {0x1, 0x8}, {0x4, 0x7}, {0x3, 0xa}, {0x2, 0x5}, {0x2, 0xa}, {0x1, 0xa}, {0x5, 0xa}, {0x6, 0x9}, {0x2, 0x8}, {0x5, 0x6}, {0x3, 0x4}, {0x1, 0x1}, {0x1, 0x7}, {0x5, 0x8}, {0x0, 0x8}, {0x5, 0x3}, {0x2}, {0x0, 0x8}, {0x1, 0x9}, {0x0, 0x3}, {0x0, 0xa}, {0x7, 0x3}, {0x6, 0x1}, {0x5}, {0x0, 0x4}, {0x2, 0x4}, {0x6, 0x8}, {0x5, 0x1}, {0x7, 0xa}, {0x7, 0x1}, {0x4}, {0x1, 0x9}, {0x6, 0x3}, {0x1, 0x9}, {0x7, 0x2}, {0x6, 0xa}, {0x6, 0x7}, {0x2, 0xa}, {0x0, 0x4}, {0x1, 0x2}, {0x5, 0x9}, {0x1, 0x6}, {0x6, 0x2}, {0x4, 0x2}, {0x1, 0x4}, {0x0, 0x7}, {0x0, 0x7}, {0x1, 0x2}, {0x6, 0x2}, {0x0, 0x2}, {0x6, 0x4}, {0x0, 0x2}, {0x1, 0x1}, {0x3, 0x6}, {0x5, 0x4}, {0x4, 0x8}, {0x6, 0x2}, {0x5, 0x9}, {0x7, 0x2}, {0x2, 0x3}, {0x4, 0x4}, {0x7, 0x6}, {0x3, 0x6}, {0x1, 0x5}, {0x1, 0x3}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x9, 0x6, 0x7, 0x7, 0x6, 0x6, 0x8]}}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x6c, 0x9, 0x9, 0x5, 0x1, 0x24, 0x0, 0x36, 0x12, 0x30, 0xd, 0x24, 0x12, 0x0, 0x4, 0xc, 0x4, 0xc, 0x3, 0x12, 0x2, 0x36, 0x24, 0xc, 0x30, 0x30, 0x1, 0xc, 0x0, 0x12, 0x1, 0x60]}, @NL80211_TXRATE_HT={0x41, 0x2, [{0x3, 0x2}, {0x4, 0x7}, {0x1, 0x7}, {0x1, 0x2}, {0x4, 0x5}, {0x5, 0x8}, {0x0, 0x2}, {0x3, 0xa}, {0x1, 0x3}, {0x1, 0x3}, {0x6, 0x3}, {0x7}, {0x1, 0x9}, {0x5, 0x1}, {0x2, 0x4}, {0x0, 0x5}, {0x2, 0x3}, {0x1, 0x2}, {0x6, 0x1}, {0x3, 0x2}, {0x1, 0x1}, {0x4, 0x5}, {0x5, 0xa}, {0x0, 0x1}, {0x0, 0x8}, {0x4, 0x8}, {0x4, 0x2}, {}, {0x0, 0x2}, {0x2, 0x3}, {0x6, 0x5}, {0x3, 0x9}, {0x5, 0x2}, {0x6, 0x8}, {0x0, 0x1}, {0x4, 0x2}, {0x7, 0x4}, {0x7, 0x2}, {0x0, 0x1}, {0x1, 0x2}, {0x0, 0x9}, {0x5}, {0x1, 0x3}, {0x0, 0xa}, {0x1, 0x3}, {0x5}, {0x2, 0xa}, {0x7, 0x8}, {0x0, 0x2}, {0x1, 0x7}, {0x0, 0x8}, {0x6, 0x8}, {0x7, 0x4}, {0x2, 0x7}, {0x2, 0x6}, {0x3}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x5}, {0x6, 0x2}, {0x1, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x0, 0x8, 0xffff, 0x8, 0xfff, 0x2, 0x9]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0xc, 0x16, 0x4, 0x4, 0x30, 0x9, 0x30, 0x16, 0x24]}]}]}, @NL80211_ATTR_TX_RATES={0x1e0, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x68, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4e, 0x2, [{0x2, 0x3}, {0x6, 0x2}, {0x7, 0x1}, {0x4, 0x4}, {0x7, 0x9}, {0x7, 0x7}, {0x4, 0x6}, {0x1, 0x3}, {0x5, 0x4}, {0x5, 0x6}, {0x1, 0x3}, {0x0, 0x7}, {0x0, 0x9}, {0x1, 0x5}, {0x4, 0x9}, {0x1, 0xa}, {0x0, 0x7}, {0x5, 0x3}, {0x4, 0xa}, {0x2, 0x1}, {0x0, 0x4}, {0x6, 0x9}, {0x0, 0x3}, {0x7, 0xa}, {0x6, 0x2}, {0x2}, {0x7, 0x6}, {0x0, 0x9}, {0x5, 0xa}, {0x0, 0x2}, {0x2, 0x6}, {0x1, 0x1}, {0x2, 0x1}, {0x3, 0x7}, {0x5, 0x3}, {0x3, 0x7}, {0x6, 0xa}, {0x5, 0x5}, {0x3, 0x5}, {0x0, 0x2}, {0x0, 0x7}, {0x3, 0x6}, {0x1, 0x4}, {0x6, 0xa}, {0x0, 0x9}, {0x7, 0x6}, {0x0, 0xa}, {0x1, 0xa}, {0x2, 0x6}, {0x7, 0x2}, {0x4}, {0x2, 0x4}, {0x4, 0x4}, {0x1, 0x4}, {0x2}, {0x3, 0x8}, {0x6, 0x3}, {0x7, 0x1}, {0x7, 0x4}, {0x2, 0x6}, {0x7, 0x6}, {0x6, 0xa}, {0x0, 0x5}, {0x6, 0x4}, {0x7, 0x8}, {0x6, 0x8}, {0x2, 0x6}, {0x1, 0x7}, {0x3, 0xa}, {0x7, 0x3}, {0x1, 0x5}, {0x1, 0x7}, {}, {}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xd8, 0xa7a, 0x0, 0x8, 0x3, 0x1f, 0x3, 0x7eed]}}]}, @NL80211_BAND_60GHZ={0xd0, 0x2, 0x0, 0x1, [@NL80211_TXRATE_HT={0x51, 0x2, [{0x5, 0xa}, {0x1, 0x5}, {0x0, 0x6}, {0x2, 0x2}, {0x2, 0x7}, {0x0, 0x5}, {0x1, 0x9}, {0x1, 0x3}, {0x3, 0x4}, {0x5, 0x9}, {0x3}, {0x7, 0x5}, {0x6}, {0x6, 0x8}, {0x2, 0x6}, {0x1, 0xa}, {0x6, 0x6}, {0x0, 0x2}, {0x4, 0x4}, {}, {0x5, 0x5}, {0x5, 0x4}, {}, {0x0, 0xa}, {0x2, 0x1}, {0x7, 0xa}, {0x1, 0x5}, {0x4, 0x5}, {0x5, 0x7}, {0x5, 0x8}, {0x3, 0x8}, {0x7}, {0x2, 0x1}, {0x0, 0x8}, {0x6, 0x8}, {0x4, 0xa}, {0x3, 0x1}, {0x1, 0x5}, {0x7}, {0x5, 0x2}, {0x6}, {0x3}, {0x3, 0x4}, {0x3, 0xa}, {0x3}, {0x6, 0x6}, {0x1}, {0x3, 0xa}, {0x6}, {0x6, 0x9}, {0x4, 0x9}, {0x7, 0x5}, {0x3}, {0x7, 0x2}, {0x3}, {0x1, 0x1}, {0x7}, {0x5, 0x2}, {0x4, 0x1}, {0x1, 0x4}, {0x5, 0x2}, {0x1, 0x2}, {0x6, 0x3}, {0x6, 0x6}, {0x6, 0x2}, {0x7, 0x8}, {0x6, 0x1}, {0x1, 0x7}, {0x0, 0x3}, {0x5, 0x8}, {0x3, 0x2}, {0x6}, {0x0, 0x9}, {0x0, 0x8}, {0x0, 0x9}, {0x0, 0x9}, {0x1, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0xf7a, 0x6, 0x2, 0x6, 0x48, 0x7, 0x100]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0xb, 0x1, [0x16, 0x0, 0x5, 0x1b, 0x24, 0x4, 0x1d]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x4, 0x6, 0x5, 0xfffc, 0x8, 0x4, 0x1f4]}}, @NL80211_TXRATE_HT={0xa, 0x2, [{0x5, 0x3}, {0x1, 0x2}, {0x5, 0x7}, {0x6, 0x3}, {0x6, 0x7}, {0x5, 0x9}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x81, 0x0, 0x0, 0x6000, 0x0, 0xf8eb, 0xff, 0x8000]}}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x3, 0x12, 0x16, 0x12, 0x30, 0x2, 0x6c, 0x5, 0x1, 0xc, 0x4, 0x4, 0x5]}]}, @NL80211_BAND_2GHZ={0x60, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x9, 0x1, [0x12, 0x60, 0x18, 0x36, 0x60]}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x5, 0x30, 0x36, 0x5, 0x2, 0x16, 0x6c, 0x48, 0x3, 0x4, 0x16, 0x9, 0x9, 0x30, 0x60, 0x30, 0x5, 0x2, 0x30, 0x60, 0x36, 0x4]}, @NL80211_TXRATE_HT={0x2a, 0x2, [{0x1}, {0x0, 0x3}, {0x4, 0x8}, {0x0, 0x9}, {0x3, 0x1}, {0x1, 0x6}, {0x4}, {0x3, 0x4}, {0x4, 0x3}, {0x5, 0x9}, {0x0, 0x5}, {0x6, 0x3}, {0x4, 0x8}, {0x1, 0x3}, {0x4, 0x6}, {0x0, 0xa}, {0x1, 0x4}, {0x6}, {0x2, 0x7}, {0x0, 0x6}, {0x7, 0x5}, {0x2, 0xa}, {0x3, 0x9}, {0x1, 0x9}, {0x6, 0x8}, {0x5, 0xa}, {0x6}, {0x4, 0xa}, {0x2, 0x9}, {0x1}, {0x6, 0x6}, {0x3, 0x7}, {0x4, 0x9}, {0x4, 0xa}, {0x3, 0xa}, {0x1, 0x2}, {0x0, 0x4}, {0x0, 0x8}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_5GHZ={0x44, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x24, 0x1, [0x1b, 0x6, 0x6, 0xc, 0x9, 0x24, 0x6, 0x1, 0x48, 0x18, 0x1, 0x6c, 0x6c, 0x5, 0x2, 0x48, 0x3d530330366e4fba, 0x30, 0x30, 0x4, 0x48, 0xb, 0x3, 0xb, 0x1b, 0x6c, 0x30, 0x18, 0x1, 0xb, 0x6c, 0x4]}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x1, 0xa}, {0x2, 0x1}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x735, 0xf58, 0x101, 0x7, 0x4, 0x0, 0x2]}}]}]}]}, 0x334}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000000) sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000cc0)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000c80)={&(0x7f0000000a80)={0x200, r1, 0x4, 0x70bd26, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x3a79}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @random="4d72c5c1d4a3"}, @NL80211_ATTR_SSID={0x14, 0x34, @random="466b98572528a9470dd9a6217710240c"}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_SSID={0x1a, 0x34, @random="1d276192c890e35217927733fbb2806757e79dea5f73"}, @NL80211_ATTR_LOCAL_STATE_CHANGE={0x4}, @NL80211_ATTR_IE={0x178, 0x2a, [@ext_channel_switch={0x3c, 0x4, {0x0, 0x4, 0xad, 0x3f}}, @peer_mgmt={0x75, 0x8, {0x1, 0xffff, @val=0x8, @val=0x7, @void}}, @perr={0x84, 0x7c, {0x1, 0x8, [@not_ext={{}, @device_b, 0x6, "", 0x1a}, @not_ext={{}, @device_b, 0x1, "", 0x2d}, @not_ext={{}, @device_a, 0x8, "", 0x33}, @not_ext={{}, @device_a, 0x4, "", 0x10}, @ext={{}, @device_b, 0x814, @device_a, 0x4}, @ext={{}, @device_a, 0x11de, @broadcast, 0x3d}, @not_ext={{}, @device_b, 0x6, "", 0x6}, @ext={{}, @device_b, 0x1ff, @device_b, 0xa}]}}, @mesh_id={0x72, 0x6}, @tim={0x5, 0xd1, {0x4, 0x1, 0x5, "c865185529cb2fe5f5b3aac613650d8ce964d8749a5c5d710e5e7837213c3361e89599e56a76d7df531c8b864ca95f96e919f97a419105870dd69925265bb4f3b315586341b654a4d337659179acbe85733173ee312bd900e792c2b8dae01349e497dced153b8b5fe4f1541ea495fafc2d68819eadf58a94d87198e9f86f2541c972cb72018bbe6fff2e5dcf10434b0bc0346e1ed6a2c7413c16d1e507f054a2ae586eff18a99dd6ff80c7eeb161ce4c6f61ca1a3cbde2e639c75dd056cae1ebb5ae5698cf142393d941e6c8c7a9"}}, @sec_chan_ofs={0x3e, 0x1, 0x1}, @mesh_id={0x72, 0x6}]}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0xecc}]}, 0x200}, 0x1, 0x0, 0x0, 0x40011}, 0x0) fsetxattr$security_ima(r0, &(0x7f0000000d00), &(0x7f0000000d40)=@v2={0x5, 0x0, 0x12, 0xa2, 0x9, "498e6d4cf72446ec06"}, 0x12, 0x2) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000d80), 0x200000, 0x0) sendmsg$NL80211_CMD_SET_KEY(r3, &(0x7f0000000f00)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0xbae25ae2f3a1b278}, 0xc, &(0x7f0000000ec0)={&(0x7f0000000e00)={0x98, r1, 0x100, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY={0x40, 0x50, 0x0, 0x1, [@NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}, @NL80211_KEY_SEQ={0x10, 0x4, "05e571da9af39a33c362db49"}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_MODE={0x5, 0x9, 0x2}]}, @NL80211_ATTR_KEY_SEQ={0xe, 0xa, "626ace2e2a73238c03f1"}, @NL80211_ATTR_KEY_CIPHER={0x8}, @NL80211_ATTR_KEY_DEFAULT={0x4}, @NL80211_ATTR_MAC={0xa}]}, 0x98}, 0x1, 0x0, 0x0, 0x24000881}, 0x40000) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000f80)={{0x1, 0x1, 0x18, r3, {0xa9ad}}, './file0\x00'}) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), r4) sendmsg$TIPC_CMD_GET_NETID(r0, &(0x7f0000001080)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001040)={&(0x7f0000001000)={0x1c, 0x0, 0x400, 0x70bd25, 0x25dfdbfd, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004}, 0x4004800) r6 = socket$inet6(0xa, 0x6, 0x8) ioctl$BTRFS_IOC_SNAP_DESTROY(r3, 0x5000940f, &(0x7f00000010c0)={{r6}, "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"}) r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000002100), 0x400, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000020c0), r7) sendmsg$NL80211_CMD_DEAUTHENTICATE(r3, &(0x7f0000002200)={&(0x7f0000002140)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000021c0)={&(0x7f0000002180)={0x38, r5, 0xf00, 0x70bd29, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_IE={0x24, 0x2a, [@chsw_timing={0x68, 0x4, {0x6, 0x200}}, @peer_mgmt={0x75, 0x18, {0x0, 0x1, @val=0x7, @val=0xd, @val="c9417cc59e3e31a0b7be61b43b35b4d4"}}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4048840) r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000002280), r0) ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000022c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_MAC_ACL(r7, &(0x7f0000002400)={&(0x7f0000002240)={0x10, 0x0, 0x0, 0x42}, 0xc, &(0x7f00000023c0)={&(0x7f0000002300)={0x94, r8, 0x10, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r9}, @val={0xc, 0x99, {0x3, 0x4c}}}}, [@NL80211_ATTR_ACL_POLICY={0x8}, @NL80211_ATTR_MAC_ADDRS={0x64, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}, {0xa}, {0xa, 0x6, @device_b}, {0xa, 0x6, @broadcast}, {0xa, 0x6, @broadcast}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x4000000}, 0x800) 08:03:07 executing program 4: move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040)=[0x5], &(0x7f0000000080)=[0x0, 0x0], 0x6) move_pages(0x0, 0x6, &(0x7f00000000c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil], &(0x7f0000000100)=[0xfffffff9, 0x606], &(0x7f0000000140)=[0x0, 0x0], 0x6) shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x5000) r0 = shmget$private(0x0, 0x1000, 0x2, &(0x7f0000ffc000/0x1000)=nil) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x3800) move_pages(0x0, 0x4, &(0x7f0000000180)=[&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil], &(0x7f00000001c0)=[0x5e10, 0x5], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1) move_pages(0x0, 0x2, &(0x7f0000000240)=[&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil], &(0x7f0000000280)=[0x6, 0x80000001], &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6) mincore(&(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000300)=""/103) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x10000}}, './file0\x00'}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000008, 0x13, r1, 0x0) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x1000) move_pages(0x0, 0x3, &(0x7f00000003c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000400)=[0x101, 0x6, 0xe9, 0x40, 0xaf27, 0x8001, 0x1, 0xf483, 0x100], &(0x7f0000000440)=[0x0, 0x0, 0x0], 0xa) shmat(r0, &(0x7f0000ffb000/0x1000)=nil, 0x1000) r2 = shmget(0x0, 0x1000, 0x8, &(0x7f0000ffc000/0x1000)=nil) shmat(r2, &(0x7f0000ffc000/0x3000)=nil, 0x6000) shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x4000) syz_io_uring_setup(0x4d6e, &(0x7f0000000480)={0x0, 0x42d8, 0x8, 0x0, 0x3b7, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000500), &(0x7f0000000540)) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000580)=0x0) move_pages(r3, 0x1, &(0x7f00000005c0)=[&(0x7f0000ffc000/0x4000)=nil], &(0x7f0000000600), &(0x7f0000000640)=[0x0, 0x0], 0x2) move_pages(0x0, 0x3, &(0x7f00000006c0)=[&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil], &(0x7f0000000700)=[0x993, 0x0, 0xd7, 0x0, 0x8, 0x85c7, 0xffffff00], &(0x7f0000000740)=[0x0], 0x4) 08:03:07 executing program 3: mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x8041c, &(0x7f00000000c0)={'trans=unix,', {[{@noextend}, {@noextend}, {@posixacl}, {@nodevmap}], [{@fowner_eq={'fowner', 0x3d, 0xee01}}, {@smackfsroot}, {@permit_directio}, {@subj_user={'subj_user', 0x3d, '%'}}, {@subj_role={'subj_role', 0x3d, '@}-)}\''}}, {@dont_hash}, {@smackfsroot}, {@obj_type}]}}) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) mount$9p_unix(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x40, &(0x7f0000000280)={'trans=unix,', {[{@nodevmap}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}, {@fscache}, {@version_u}], [{@uid_gt={'uid>', 0xee00}}]}}) getpeername(r0, &(0x7f0000000300)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000380)=0x80) fstat(r0, &(0x7f0000001480)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001500)={{{@in6=@mcast2, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@private0}, 0x0, @in6=@local}}, &(0x7f0000001600)=0xe8) r3 = syz_mount_image$ext4(&(0x7f00000003c0)='ext3\x00', &(0x7f0000000400)='./file0\x00', 0xe878, 0x1, &(0x7f0000001440)=[{&(0x7f0000000440)="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", 0x1000, 0x4}], 0x2004, &(0x7f0000001640)={[{@resuid={'resuid', 0x3d, r1}}], [{@uid_lt={'uid<', 0xee01}}, {@uid_eq={'uid', 0x3d, r2}}]}) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f00000016c0)) fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000001700)='subj_user', &(0x7f0000001740)='./file1\x00', r0) ioctl$FAT_IOCTL_GET_VOLUME_ID(r3, 0x80047213, &(0x7f0000001780)) r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind(r4, &(0x7f00000017c0)=@nl=@kern={0x10, 0x0, 0x0, 0x1}, 0x80) lstat(&(0x7f0000001840)='./file0\x00', &(0x7f0000001880)) r5 = fspick(r0, &(0x7f0000001900)='./file0\x00', 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r5) socketpair(0x11, 0x4, 0x7f, &(0x7f0000001940)={0xffffffffffffffff}) r7 = syz_genetlink_get_family_id$ethtool(&(0x7f00000019c0), r0) sendmsg$ETHTOOL_MSG_PAUSE_SET(r6, &(0x7f0000001a80)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001a40)={&(0x7f0000001a00)={0x14, r7, 0x2, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4040811}, 0x800) ioctl$GIO_UNIMAP(0xffffffffffffffff, 0x4b66, &(0x7f0000001b80)={0x2, &(0x7f0000001b40)=[{}, {}]}) 08:03:07 executing program 5: r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f0000000000)={0x0, 0xfffffffffffffffa, 0x5}) write$binfmt_aout(r0, &(0x7f0000000040)={{0x10b, 0x20, 0x9, 0x381, 0x25, 0x2, 0x21e, 0x1f}, "cf5a5a37"}, 0x24) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_SCRNMAP(r0, 0x4b40, &(0x7f0000000080)=""/11) lseek(r1, 0x0, 0x2) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f00000000c0)=[@window={0x3, 0x4000, 0x2}, @sack_perm, @window={0x3, 0x4, 0x5}, @timestamp, @window={0x3, 0x7, 0xfff9}, @sack_perm], 0x6) getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x1, &(0x7f0000000100)=""/255, &(0x7f0000000200)=0xff) ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000280)={0x1, &(0x7f0000000240)=[{0x0, 0x4}]}) r2 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000002c0)=0x1, 0x4) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000300)={0x0}, &(0x7f0000000340)=0xc) ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000380)=r3) setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000003c0)=0xffffffffffffffff, 0x4) readv(r2, &(0x7f0000000540)=[{&(0x7f0000000400)=""/98, 0x62}, {&(0x7f0000000480)=""/154, 0x9a}], 0x2) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) dup2(r2, 0xffffffffffffffff) r4 = signalfd(r2, &(0x7f0000000580)={[0x5]}, 0x8) ioctl$F2FS_IOC_FLUSH_DEVICE(r4, 0x4008f50a, &(0x7f00000005c0)={0x9, 0xffffffff}) signalfd4(r2, &(0x7f0000000600)={[0x7]}, 0x8, 0x800) [ 69.491595] audit: type=1400 audit(1664352187.951:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 08:03:07 executing program 6: getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)=""/153, &(0x7f00000000c0)=0x99) getsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x37, &(0x7f0000000100)=""/236, &(0x7f0000000200)=0xec) r0 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8982, &(0x7f00000002c0)={0x6, 'veth0_to_hsr\x00', {0x20}, 0x749b}) r1 = accept4(r0, &(0x7f0000000300)=@nfc, &(0x7f0000000380)=0x80, 0x1000) getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f00000003c0)={'IDLETIMER\x00'}, &(0x7f0000000400)=0x1e) r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x13, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(0x0, r2, &(0x7f0000000440)=@IORING_OP_CLOSE={0x13, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x330) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f0000000480)={0x6, 0x7, 'syz1\x00'}, &(0x7f00000004c0)=0x28) sendto$inet6(r1, &(0x7f0000000500)="9d7b4414eb59f6ea577dead18eeae8379f134f043f6daf1b8a9b5449fdce0dc32118b65c722decfe88d22709bc6697d415", 0x31, 0x4008004, &(0x7f0000000540)={0xa, 0x4e23, 0x401, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2}, 0x1c) r3 = syz_io_uring_setup(0x28ad, &(0x7f0000000580)={0x0, 0xa153, 0x10, 0x0, 0x220}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000600)=0x0, &(0x7f0000000640)) syz_io_uring_submit(r4, r2, &(0x7f0000000680)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xb}, 0xfffff000) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r1, 0x8010671f, &(0x7f0000000700)={&(0x7f00000006c0)=""/7, 0x7}) r5 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000740), 0x400000, 0x0) io_uring_register$IORING_REGISTER_FILES(r5, 0x2, 0x0, 0x0) recvmsg(r1, &(0x7f0000000980)={&(0x7f0000000780)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000800)=""/48, 0x30}], 0x1, &(0x7f0000000880)=""/215, 0xd7}, 0x12000) dup3(r3, r1, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x29, 0x44, &(0x7f00000009c0)={'icmp\x00'}, &(0x7f0000000a00)=0x1e) fsetxattr$trusted_overlay_opaque(r3, &(0x7f0000000a40), &(0x7f0000000a80), 0x2, 0x3) fsetxattr$security_ima(r5, &(0x7f0000000ac0), &(0x7f0000000b00)=@v1={0x2, "9f10"}, 0x3, 0x2) 08:03:08 executing program 7: r0 = socket$nl_audit(0x10, 0x3, 0x9) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_FLUSH_PMKSA(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x100, 0x70bd28, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x0) sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0x88, 0x453, 0x2, 0x70bd26, 0x25dfdbfb, "f9f279a3aadd093d22e2af97a9d5ee4267241ee1f8845825333ebe859b8df257ecd05728623cd0e3035fe5aecd4577b80ec3a09555185bd285d8c0e4d2d43c3b816bb2f9e8f13eb7e83611ed499323639f36ff04b82b682660ace0f8558f6bb702bacf4b4e8d76b066bfd81a3aa2e29a42ad23440b0ba6", ["", "", "", ""]}, 0x88}, 0x1, 0x0, 0x0, 0x5}, 0x40040) sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x6c, 0x0, 0x8, 0x70bd25, 0x25dfdbfd, {}, [@HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000800}, 0x4000) r2 = accept4(r0, &(0x7f0000000400)=@nfc_llcp, &(0x7f0000000480)=0x80, 0x80800) ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r2, 0x8982, &(0x7f00000004c0)={0x8, 'syzkaller0\x00', {'veth1\x00'}, 0x1}) mknodat(0xffffffffffffff9c, &(0x7f0000000500)='./file0\x00', 0x4, 0x8) r3 = accept(r0, 0x0, &(0x7f0000000540)) getsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f00000005c0)={@multicast2, @private, 0x0}, &(0x7f0000000600)=0xc) ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f00000006c0)={'syztnl1\x00', &(0x7f0000000640)={'ip6_vti0\x00', 0x0, 0x2f, 0x12, 0x6, 0x200, 0x67, @private0={0xfc, 0x0, '\x00', 0x1}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x700, 0x8, 0x2, 0xddb9}}) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r3, &(0x7f0000000800)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000007c0)={&(0x7f0000000700)={0x84, 0x0, 0x8, 0x70bd27, 0x25dfdbff, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x84}, 0x1, 0x0, 0x0, 0x880}, 0x84) syz_genetlink_get_family_id$nl80211(&(0x7f0000000840), r2) socket$nl_audit(0x10, 0x3, 0x9) r6 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000880), 0x1, 0x0) getsockopt$inet_pktinfo(r6, 0x0, 0x8, &(0x7f00000008c0)={0x0, @dev, @multicast2}, &(0x7f0000000900)=0xc) mount_setattr(r6, &(0x7f0000000940)='./file0\x00', 0xa000, &(0x7f0000000980)={0x81, 0x84, 0x180000, {r6}}, 0x20) sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000a80)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x2c, r1, 0x400, 0x70bd25, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0xffffffff, 0x71}}}}, [@NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@device_b}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x84) sendmsg$NL80211_CMD_START_P2P_DEVICE(r2, &(0x7f0000000b80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000b40)={&(0x7f0000000b00)={0x20, r1, 0x300, 0x70bd2c, 0x80, {{}, {@void, @val={0xc, 0x99, {0x4, 0x4}}}}, ["", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0xc800}, 0x4) syz_mount_image$iso9660(&(0x7f0000000bc0), &(0x7f0000000c00)='./file0\x00', 0x9, 0x4, &(0x7f0000000fc0)=[{&(0x7f0000000c40)="71859853ec9149f16e30e163756901e27f7518daeb64064d22d5c6c1d27d21b43f84cbefb97aeed754f19f4be7aec24d259fb748c6af1c9bcd24f687c1e870b769f030c8109f650a1b1b425fd03a18f028d2eeafe048afebd18bcbe7d0ef154e2c11c38aec4ef1bce39b3b7465f0e0f101e8df83436b23b48df72e57666234ccb10b474306e54decac19d281cb8ef5f37ee8f428a3b6bceb571044461b4efc9499512a1a1a5337b64f9f1c82dadcf2ef22c970ed1831fb7e560469b26897ce1ad4e4670a08a933125f88c436957a016b3e0065b786fb67fa3f7d7a42865b0315cd608eacfbfddce80b574cfc1be7952885", 0xf1, 0x9}, {&(0x7f0000000d40)="db9e99819045febc1cad48cbe7b5e65b6f965fa91bab54de64747ae4eababc338ed9646a2103d0f0b2d65fd9196ec06370a541b167f402fd6e763d924b4599d435d5bd21420797fb1ce495fc684660a92b29f92cae499423e6d4a63ffd52e6ca87dfe33df53a87d68483c192e5fc3f0696446326689bdbe4b3a5ededd8dfda249ed9f657163f29", 0x87, 0xffff}, {&(0x7f0000000e00)="e0a02b54072d18572356c6e9d6b6a0406a7483780690823aebd7a59a0f4fcc72158c61971a7cb299eead65297bd6dbba84456fde40277789fa3d40bc0bab965430a53b9c286858a8dd96e71c5d810f8d29008f54d5d3b72442f53d2109036872f908bd5586c0dc4908e322a492352cb1df90389621a930d7eedc61e89201117726ff1ac5b69f723d81d403f4d8a36207cfbd2d24709669dc02431bc8d6bc91d60705c8c91f8c55b6fff990950a1dd7e95524cd5b5c077ba8e51ad0045f0c478622a3943b5ce827fc3602ed5815525f47a3cf28e89cc13a06a87f2893d0464355fa694259a6f61c064c9c5eacf7eb4a61dc5c0636", 0xf4, 0xfffffffffffffffa}, {&(0x7f0000000f00)="68c7b62e153d24dd06d98d4fadf333da610426e619d728ed3d77e48147531ed6893bc0bc5cacd353b21f80aa0dd98685e3be3a9efde073328730cbdfabb23751786c92bf55c0bad5cf21197872dac183272f5f234c5efca2fe5d340ab425d9ee02ab6ebba6fc815be3cac6360d361ee0d8c5eebf823d4ed9a38255759a32fe3cf7caec7c51fb131372149952a05eca7a198e80687b90b2825d84b94722e8df0b9d0bb5c29094f3", 0xa7, 0x8}], 0x200000, &(0x7f0000001040)={[{@iocharset={'iocharset', 0x3d, 'macromanian'}}, {@unhide}, {@nocompress}], [{@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@audit}]}) [ 70.811268] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 70.813023] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 70.815655] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 70.818482] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 70.827498] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 70.830377] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 70.835022] Bluetooth: hci0: HCI_REQ-0x0c1a [ 70.869515] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 70.871246] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 70.872958] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 70.877894] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 70.878851] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 70.879385] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 70.888942] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 70.889711] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 70.891685] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 70.893325] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 70.893405] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 70.895535] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 70.897086] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 70.898409] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 70.899660] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 70.900823] Bluetooth: hci2: HCI_REQ-0x0c1a [ 70.905437] Bluetooth: hci3: HCI_REQ-0x0c1a [ 70.913984] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 70.954759] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 70.956046] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 70.962929] Bluetooth: hci1: HCI_REQ-0x0c1a [ 70.964237] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 70.972058] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 70.973598] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 70.976368] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 70.978276] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 70.979526] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 70.984095] Bluetooth: hci7: HCI_REQ-0x0c1a [ 71.052763] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 71.058232] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 71.061019] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 71.079316] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 71.082663] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 71.084910] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 71.112155] Bluetooth: hci6: HCI_REQ-0x0c1a [ 72.899669] Bluetooth: hci0: command 0x0409 tx timeout [ 72.962208] Bluetooth: hci3: command 0x0409 tx timeout [ 72.962236] Bluetooth: hci5: Opcode 0x c03 failed: -110 [ 72.962974] Bluetooth: hci2: command 0x0409 tx timeout [ 72.964415] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 73.027203] Bluetooth: hci7: command 0x0409 tx timeout [ 73.028080] Bluetooth: hci1: command 0x0409 tx timeout [ 73.154315] Bluetooth: hci6: command 0x0409 tx timeout [ 74.947399] Bluetooth: hci0: command 0x041b tx timeout [ 75.010270] Bluetooth: hci3: command 0x041b tx timeout [ 75.011452] Bluetooth: hci2: command 0x041b tx timeout [ 75.074313] Bluetooth: hci1: command 0x041b tx timeout [ 75.075076] Bluetooth: hci7: command 0x041b tx timeout [ 75.202262] Bluetooth: hci6: command 0x041b tx timeout [ 76.081952] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 76.084782] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 76.086670] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 76.196319] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 76.198083] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 76.198985] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 76.206877] Bluetooth: hci4: HCI_REQ-0x0c1a [ 76.240644] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 76.242696] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 76.244618] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 76.248736] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 76.255304] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 76.256993] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 76.278269] Bluetooth: hci5: HCI_REQ-0x0c1a [ 76.994192] Bluetooth: hci0: command 0x040f tx timeout [ 77.058229] Bluetooth: hci2: command 0x040f tx timeout [ 77.059075] Bluetooth: hci3: command 0x040f tx timeout [ 77.122310] Bluetooth: hci7: command 0x040f tx timeout [ 77.123170] Bluetooth: hci1: command 0x040f tx timeout [ 77.250217] Bluetooth: hci6: command 0x040f tx timeout [ 78.274302] Bluetooth: hci4: command 0x0409 tx timeout [ 78.339209] Bluetooth: hci5: command 0x0409 tx timeout [ 79.042240] Bluetooth: hci0: command 0x0419 tx timeout [ 79.106204] Bluetooth: hci3: command 0x0419 tx timeout [ 79.106996] Bluetooth: hci2: command 0x0419 tx timeout [ 79.170244] Bluetooth: hci1: command 0x0419 tx timeout [ 79.171031] Bluetooth: hci7: command 0x0419 tx timeout [ 79.298195] Bluetooth: hci6: command 0x0419 tx timeout [ 80.323228] Bluetooth: hci4: command 0x041b tx timeout [ 80.386175] Bluetooth: hci5: command 0x041b tx timeout [ 82.371192] Bluetooth: hci4: command 0x040f tx timeout [ 82.434214] Bluetooth: hci5: command 0x040f tx timeout [ 84.418276] Bluetooth: hci4: command 0x0419 tx timeout [ 84.482235] Bluetooth: hci5: command 0x0419 tx timeout 08:04:04 executing program 1: perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x84042, 0x0) unlink(&(0x7f0000000000)='./file1\x00') pwrite64(r0, &(0x7f00000006c0)='y', 0x1, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/pids.max\x00', 0xa281, 0x0) write$cgroup_pid(r1, &(0x7f00000000c0)=0xffffffffffffffff, 0x10) r2 = timerfd_create(0x0, 0x0) timerfd_settime(r2, 0x1, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0) close(r0) timerfd_gettime(0xffffffffffffffff, &(0x7f0000000100)) fallocate(r2, 0x1, 0x0, 0x2) 08:04:04 executing program 4: move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040)=[0x5], &(0x7f0000000080)=[0x0, 0x0], 0x6) move_pages(0x0, 0x6, &(0x7f00000000c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil], &(0x7f0000000100)=[0xfffffff9, 0x606], &(0x7f0000000140)=[0x0, 0x0], 0x6) shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x5000) r0 = shmget$private(0x0, 0x1000, 0x2, &(0x7f0000ffc000/0x1000)=nil) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x3800) move_pages(0x0, 0x4, &(0x7f0000000180)=[&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil], &(0x7f00000001c0)=[0x5e10, 0x5], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1) move_pages(0x0, 0x2, &(0x7f0000000240)=[&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil], &(0x7f0000000280)=[0x6, 0x80000001], &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6) mincore(&(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000300)=""/103) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x10000}}, './file0\x00'}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000008, 0x13, r1, 0x0) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x1000) move_pages(0x0, 0x3, &(0x7f00000003c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000400)=[0x101, 0x6, 0xe9, 0x40, 0xaf27, 0x8001, 0x1, 0xf483, 0x100], &(0x7f0000000440)=[0x0, 0x0, 0x0], 0xa) shmat(r0, &(0x7f0000ffb000/0x1000)=nil, 0x1000) r2 = shmget(0x0, 0x1000, 0x8, &(0x7f0000ffc000/0x1000)=nil) shmat(r2, &(0x7f0000ffc000/0x3000)=nil, 0x6000) shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x4000) syz_io_uring_setup(0x4d6e, &(0x7f0000000480)={0x0, 0x42d8, 0x8, 0x0, 0x3b7, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000500), &(0x7f0000000540)) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000580)=0x0) move_pages(r3, 0x1, &(0x7f00000005c0)=[&(0x7f0000ffc000/0x4000)=nil], &(0x7f0000000600), &(0x7f0000000640)=[0x0, 0x0], 0x2) move_pages(0x0, 0x3, &(0x7f00000006c0)=[&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil], &(0x7f0000000700)=[0x993, 0x0, 0xd7, 0x0, 0x8, 0x85c7, 0xffffff00], &(0x7f0000000740)=[0x0], 0x4) [ 126.394320] audit: type=1400 audit(1664352244.853:7): avc: denied { open } for pid=3781 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.395883] audit: type=1400 audit(1664352244.853:8): avc: denied { kernel } for pid=3781 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 126.412038] ------------[ cut here ]------------ [ 126.412056] [ 126.412058] ====================================================== [ 126.412062] WARNING: possible circular locking dependency detected [ 126.412066] 6.0.0-rc7-next-20220927 #1 Not tainted [ 126.412072] ------------------------------------------------------ [ 126.412075] syz-executor.1/3782 is trying to acquire lock: [ 126.412081] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 126.412125] [ 126.412125] but task is already holding lock: [ 126.412127] ffff88800eb6a420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.412155] [ 126.412155] which lock already depends on the new lock. [ 126.412155] [ 126.412158] [ 126.412158] the existing dependency chain (in reverse order) is: [ 126.412161] [ 126.412161] -> #3 (&ctx->lock){....}-{2:2}: [ 126.412175] _raw_spin_lock+0x2a/0x40 [ 126.412187] __perf_event_task_sched_out+0x53b/0x18d0 [ 126.412200] __schedule+0xedd/0x2470 [ 126.412216] schedule+0xda/0x1b0 [ 126.412231] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.412243] syscall_exit_to_user_mode+0x19/0x40 [ 126.412258] do_syscall_64+0x48/0x90 [ 126.412268] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.412282] [ 126.412282] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 126.412295] _raw_spin_lock_nested+0x30/0x40 [ 126.412308] raw_spin_rq_lock_nested+0x1e/0x30 [ 126.412321] task_fork_fair+0x63/0x4d0 [ 126.412337] sched_cgroup_fork+0x3d0/0x540 [ 126.412351] copy_process+0x4183/0x6e20 [ 126.412362] kernel_clone+0xe7/0x890 [ 126.412371] user_mode_thread+0xad/0xf0 [ 126.412381] rest_init+0x24/0x250 [ 126.412395] arch_call_rest_init+0xf/0x14 [ 126.412409] start_kernel+0x4c6/0x4eb [ 126.412421] secondary_startup_64_no_verify+0xe0/0xeb [ 126.412435] [ 126.412435] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 126.412448] _raw_spin_lock_irqsave+0x39/0x60 [ 126.412461] try_to_wake_up+0xab/0x1930 [ 126.412474] up+0x75/0xb0 [ 126.412489] __up_console_sem+0x6e/0x80 [ 126.412505] console_unlock+0x46a/0x590 [ 126.412521] vprintk_emit+0x1bd/0x560 [ 126.412537] vprintk+0x84/0xa0 [ 126.412553] _printk+0xba/0xf1 [ 126.412566] regdb_fw_cb.cold+0x6c/0xa7 [ 126.412576] request_firmware_work_func+0x12e/0x240 [ 126.412589] process_one_work+0xa17/0x16a0 [ 126.412606] worker_thread+0x637/0x1260 [ 126.412622] kthread+0x2ed/0x3a0 [ 126.412636] ret_from_fork+0x22/0x30 [ 126.412648] [ 126.412648] -> #0 ((console_sem).lock){....}-{2:2}: [ 126.412662] __lock_acquire+0x2a02/0x5e70 [ 126.412679] lock_acquire+0x1a2/0x530 [ 126.412694] _raw_spin_lock_irqsave+0x39/0x60 [ 126.412706] down_trylock+0xe/0x70 [ 126.412723] __down_trylock_console_sem+0x3b/0xd0 [ 126.412739] vprintk_emit+0x16b/0x560 [ 126.412755] vprintk+0x84/0xa0 [ 126.412770] _printk+0xba/0xf1 [ 126.412782] report_bug.cold+0x72/0xab [ 126.412792] handle_bug+0x3c/0x70 [ 126.412802] exc_invalid_op+0x14/0x50 [ 126.412812] asm_exc_invalid_op+0x16/0x20 [ 126.412825] group_sched_out.part.0+0x2c7/0x460 [ 126.412837] ctx_sched_out+0x8f1/0xc10 [ 126.412847] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.412860] __schedule+0xedd/0x2470 [ 126.412875] schedule+0xda/0x1b0 [ 126.412890] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.412901] syscall_exit_to_user_mode+0x19/0x40 [ 126.412915] do_syscall_64+0x48/0x90 [ 126.412925] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.412939] [ 126.412939] other info that might help us debug this: [ 126.412939] [ 126.412942] Chain exists of: [ 126.412942] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 126.412942] [ 126.412956] Possible unsafe locking scenario: [ 126.412956] [ 126.412959] CPU0 CPU1 [ 126.412961] ---- ---- [ 126.412963] lock(&ctx->lock); [ 126.412969] lock(&rq->__lock); [ 126.412975] lock(&ctx->lock); [ 126.412981] lock((console_sem).lock); [ 126.412987] [ 126.412987] *** DEADLOCK *** [ 126.412987] [ 126.412988] 2 locks held by syz-executor.1/3782: [ 126.412995] #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 126.413026] #1: ffff88800eb6a420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 126.413054] [ 126.413054] stack backtrace: [ 126.413056] CPU: 1 PID: 3782 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220927 #1 [ 126.413069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.413077] Call Trace: [ 126.413080] [ 126.413084] dump_stack_lvl+0x8b/0xb3 [ 126.413096] check_noncircular+0x263/0x2e0 [ 126.413113] ? format_decode+0x26c/0xb50 [ 126.413131] ? print_circular_bug+0x450/0x450 [ 126.413148] ? enable_ptr_key_workfn+0x20/0x20 [ 126.413166] ? __lockdep_reset_lock+0x180/0x180 [ 126.413182] ? format_decode+0x26c/0xb50 [ 126.413201] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 126.413219] __lock_acquire+0x2a02/0x5e70 [ 126.413241] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 126.413263] lock_acquire+0x1a2/0x530 [ 126.413280] ? down_trylock+0xe/0x70 [ 126.413299] ? lock_release+0x750/0x750 [ 126.413315] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 126.413337] ? vprintk+0x84/0xa0 [ 126.413354] _raw_spin_lock_irqsave+0x39/0x60 [ 126.413367] ? down_trylock+0xe/0x70 [ 126.413385] down_trylock+0xe/0x70 [ 126.413402] ? vprintk+0x84/0xa0 [ 126.413419] __down_trylock_console_sem+0x3b/0xd0 [ 126.413436] vprintk_emit+0x16b/0x560 [ 126.413453] ? lock_downgrade+0x6d0/0x6d0 [ 126.413471] vprintk+0x84/0xa0 [ 126.413489] _printk+0xba/0xf1 [ 126.413502] ? record_print_text.cold+0x16/0x16 [ 126.413517] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 126.413531] ? lock_downgrade+0x6d0/0x6d0 [ 126.413549] ? report_bug.cold+0x66/0xab [ 126.413560] ? group_sched_out.part.0+0x2c7/0x460 [ 126.413572] report_bug.cold+0x72/0xab [ 126.413585] handle_bug+0x3c/0x70 [ 126.413596] exc_invalid_op+0x14/0x50 [ 126.413608] asm_exc_invalid_op+0x16/0x20 [ 126.413622] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.413636] Code: 5e 41 5f e9 ab a9 ef ff e8 a6 a9 ef ff 65 8b 1d 1b 0f ac 7e 31 ff 89 de e8 46 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 89 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 7d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.413647] RSP: 0018:ffff88801f6c7c48 EFLAGS: 00010006 [ 126.413656] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.413664] RDX: ffff888015edb580 RSI: ffffffff815666b7 RDI: 0000000000000005 [ 126.413672] RBP: ffff888040e10000 R08: 0000000000000005 R09: 0000000000000001 [ 126.413679] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800eb6a400 [ 126.413686] R13: ffff88806cf3d140 R14: ffffffff8547d0e0 R15: 0000000000000002 [ 126.413697] ? group_sched_out.part.0+0x2c7/0x460 [ 126.413711] ? group_sched_out.part.0+0x2c7/0x460 [ 126.413725] ctx_sched_out+0x8f1/0xc10 [ 126.413738] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.413754] ? lock_is_held_type+0xd7/0x130 [ 126.413769] ? __perf_cgroup_move+0x160/0x160 [ 126.413782] ? set_next_entity+0x304/0x550 [ 126.413799] ? update_curr+0x267/0x740 [ 126.413818] ? lock_is_held_type+0xd7/0x130 [ 126.413833] __schedule+0xedd/0x2470 [ 126.413852] ? io_schedule_timeout+0x150/0x150 [ 126.413871] ? __x64_sys_futex_time32+0x480/0x480 [ 126.413885] schedule+0xda/0x1b0 [ 126.413901] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.413914] syscall_exit_to_user_mode+0x19/0x40 [ 126.413929] do_syscall_64+0x48/0x90 [ 126.413940] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.413955] RIP: 0033:0x7f3e94e4cb19 [ 126.413963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.413974] RSP: 002b:00007f3e923c2218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.414002] RAX: 0000000000000001 RBX: 00007f3e94f5ff68 RCX: 00007f3e94e4cb19 [ 126.414010] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3e94f5ff6c [ 126.414017] RBP: 00007f3e94f5ff60 R08: 000000000000000e R09: 0000000000000000 [ 126.414025] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f3e94f5ff6c [ 126.414032] R13: 00007ffe0a1a37cf R14: 00007f3e923c2300 R15: 0000000000022000 [ 126.414045] [ 126.472543] WARNING: CPU: 1 PID: 3782 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 126.473246] Modules linked in: [ 126.473495] CPU: 1 PID: 3782 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220927 #1 [ 126.474105] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 126.474934] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 126.475344] Code: 5e 41 5f e9 ab a9 ef ff e8 a6 a9 ef ff 65 8b 1d 1b 0f ac 7e 31 ff 89 de e8 46 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 89 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 7d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 126.476693] RSP: 0018:ffff88801f6c7c48 EFLAGS: 00010006 [ 126.477092] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 126.477608] RDX: ffff888015edb580 RSI: ffffffff815666b7 RDI: 0000000000000005 [ 126.478164] RBP: ffff888040e10000 R08: 0000000000000005 R09: 0000000000000001 [ 126.478697] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800eb6a400 [ 126.479235] R13: ffff88806cf3d140 R14: ffffffff8547d0e0 R15: 0000000000000002 [ 126.479768] FS: 00007f3e923c2700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 126.480380] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 126.480824] CR2: 00007f03d43c28b0 CR3: 0000000018a3a000 CR4: 0000000000350ee0 [ 126.481370] Call Trace: [ 126.481571] [ 126.481748] ctx_sched_out+0x8f1/0xc10 [ 126.482058] __perf_event_task_sched_out+0x6d0/0x18d0 [ 126.482458] ? lock_is_held_type+0xd7/0x130 [ 126.482800] ? __perf_cgroup_move+0x160/0x160 [ 126.483149] ? set_next_entity+0x304/0x550 [ 126.483474] ? update_curr+0x267/0x740 [ 126.483773] ? lock_is_held_type+0xd7/0x130 [ 126.484105] __schedule+0xedd/0x2470 [ 126.484397] ? io_schedule_timeout+0x150/0x150 [ 126.484756] ? __x64_sys_futex_time32+0x480/0x480 [ 126.485128] schedule+0xda/0x1b0 [ 126.485398] exit_to_user_mode_prepare+0x114/0x1a0 [ 126.485771] syscall_exit_to_user_mode+0x19/0x40 [ 126.486155] do_syscall_64+0x48/0x90 [ 126.486447] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 126.486848] RIP: 0033:0x7f3e94e4cb19 [ 126.487127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 126.488496] RSP: 002b:00007f3e923c2218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 126.489071] RAX: 0000000000000001 RBX: 00007f3e94f5ff68 RCX: 00007f3e94e4cb19 [ 126.489607] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f3e94f5ff6c [ 126.490156] RBP: 00007f3e94f5ff60 R08: 000000000000000e R09: 0000000000000000 [ 126.490699] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f3e94f5ff6c [ 126.491240] R13: 00007ffe0a1a37cf R14: 00007f3e923c2300 R15: 0000000000022000 [ 126.491788] [ 126.491966] irq event stamp: 500 [ 126.492223] hardirqs last enabled at (499): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 126.492928] hardirqs last disabled at (500): [] __schedule+0x1225/0x2470 [ 126.493549] softirqs last enabled at (238): [] __irq_exit_rcu+0x11b/0x180 [ 126.494207] softirqs last disabled at (205): [] __irq_exit_rcu+0x11b/0x180 [ 126.494849] ---[ end trace 0000000000000000 ]--- 08:04:05 executing program 4: move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040)=[0x5], &(0x7f0000000080)=[0x0, 0x0], 0x6) move_pages(0x0, 0x6, &(0x7f00000000c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil], &(0x7f0000000100)=[0xfffffff9, 0x606], &(0x7f0000000140)=[0x0, 0x0], 0x6) shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x5000) r0 = shmget$private(0x0, 0x1000, 0x2, &(0x7f0000ffc000/0x1000)=nil) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x3800) move_pages(0x0, 0x4, &(0x7f0000000180)=[&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil], &(0x7f00000001c0)=[0x5e10, 0x5], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1) move_pages(0x0, 0x2, &(0x7f0000000240)=[&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil], &(0x7f0000000280)=[0x6, 0x80000001], &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6) mincore(&(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000300)=""/103) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x10000}}, './file0\x00'}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000008, 0x13, r1, 0x0) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x1000) move_pages(0x0, 0x3, &(0x7f00000003c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000400)=[0x101, 0x6, 0xe9, 0x40, 0xaf27, 0x8001, 0x1, 0xf483, 0x100], &(0x7f0000000440)=[0x0, 0x0, 0x0], 0xa) shmat(r0, &(0x7f0000ffb000/0x1000)=nil, 0x1000) r2 = shmget(0x0, 0x1000, 0x8, &(0x7f0000ffc000/0x1000)=nil) shmat(r2, &(0x7f0000ffc000/0x3000)=nil, 0x6000) shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x4000) syz_io_uring_setup(0x4d6e, &(0x7f0000000480)={0x0, 0x42d8, 0x8, 0x0, 0x3b7, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000500), &(0x7f0000000540)) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000580)=0x0) move_pages(r3, 0x1, &(0x7f00000005c0)=[&(0x7f0000ffc000/0x4000)=nil], &(0x7f0000000600), &(0x7f0000000640)=[0x0, 0x0], 0x2) move_pages(0x0, 0x3, &(0x7f00000006c0)=[&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil], &(0x7f0000000700)=[0x993, 0x0, 0xd7, 0x0, 0x8, 0x85c7, 0xffffff00], &(0x7f0000000740)=[0x0], 0x4) 08:04:05 executing program 4: move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040)=[0x5], &(0x7f0000000080)=[0x0, 0x0], 0x6) move_pages(0x0, 0x6, &(0x7f00000000c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil], &(0x7f0000000100)=[0xfffffff9, 0x606], &(0x7f0000000140)=[0x0, 0x0], 0x6) shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x5000) r0 = shmget$private(0x0, 0x1000, 0x2, &(0x7f0000ffc000/0x1000)=nil) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x3800) move_pages(0x0, 0x4, &(0x7f0000000180)=[&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil], &(0x7f00000001c0)=[0x5e10, 0x5], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1) move_pages(0x0, 0x2, &(0x7f0000000240)=[&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil], &(0x7f0000000280)=[0x6, 0x80000001], &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6) mincore(&(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000300)=""/103) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x10000}}, './file0\x00'}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000008, 0x13, r1, 0x0) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x1000) move_pages(0x0, 0x3, &(0x7f00000003c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000400)=[0x101, 0x6, 0xe9, 0x40, 0xaf27, 0x8001, 0x1, 0xf483, 0x100], &(0x7f0000000440)=[0x0, 0x0, 0x0], 0xa) shmat(r0, &(0x7f0000ffb000/0x1000)=nil, 0x1000) r2 = shmget(0x0, 0x1000, 0x8, &(0x7f0000ffc000/0x1000)=nil) shmat(r2, &(0x7f0000ffc000/0x3000)=nil, 0x6000) shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x4000) syz_io_uring_setup(0x4d6e, &(0x7f0000000480)={0x0, 0x42d8, 0x8, 0x0, 0x3b7, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000500), &(0x7f0000000540)) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000580)=0x0) move_pages(r3, 0x1, &(0x7f00000005c0)=[&(0x7f0000ffc000/0x4000)=nil], &(0x7f0000000600), &(0x7f0000000640)=[0x0, 0x0], 0x2) move_pages(0x0, 0x3, &(0x7f00000006c0)=[&(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x2000)=nil], &(0x7f0000000700)=[0x993, 0x0, 0xd7, 0x0, 0x8, 0x85c7, 0xffffff00], &(0x7f0000000740)=[0x0], 0x4) 08:04:05 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r2, &(0x7f00000000c0)='9', 0x1, 0x8040000) setsockopt$inet6_tcp_TCP_MD5SIG(r2, 0x6, 0xe, &(0x7f0000000540)={@in6={{0xa, 0x4e20, 0xffff, @mcast2, 0x4}}, 0x0, 0x0, 0x15, 0x0, "b25da62d685a38083e45ab1950001ca46105939b4b3d83bd945bed03b30b62897693132cb6e12788b1d58f9b2fff886055bea488ee0e2918a8c961a2684924dfa9841132b1916476e31d06d76d34a918"}, 0xd8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) sendfile(r2, r3, 0x0, 0xffff) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) ioctl$SG_EMULATED_HOST(r4, 0x5390, &(0x7f0000002340)) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, 0xfffffffffffffffc) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000140)='./file1\x00', 0x3709, 0x3, &(0x7f0000000380)=[{&(0x7f0000000180)="1c2fe7f4768bbb4726372f7ae4f19dbebc055e338ef75483d768ff9661c6", 0x1e, 0x84a}, {&(0x7f00000001c0)="388cbf3d90953f6ab40ff6a75acbbf53880ed5b66aa541ae9a5f42fefb047436d6c2416285793361f23ace0e3666e47dac410a1047a20710ad0bc8781024d37ef2e3456ac7178fd2ea26d75d963423678b55bee32c0fc2696cb52f45a60b8e3635a982bbc6f643c54cfc4212fd717170f75e6fe08c5e2d007e43209704cc1e15c14da4db99a8a00e75", 0x89, 0x8}, {&(0x7f0000000300)="adbf3a6c6f8ced403e4d167f1835f0831b4a1878501e444d3fc569adb2d8dd01585c75b45e2624610b7f", 0x2a, 0xe9}], 0x200480c, &(0x7f0000000640)=ANY=[@ANYBLOB='rodir,nonumtail=0,iocharset=koi8-u,uid=', @ANYRESDEC=0x0, @ANYBLOB="2c6673636f6e746578743d7379730300000000000000923cbfbb30f882a6320d8668db5b23dc0748398b3f88e6bc185f8947200000002d5c460fcf60c29544eb0a5c231ba9245f663ec4d878ef85fe16857ff13b3a913bd6ebf6df6b88a3137553a87d2713ca0cd511dd61fc7d99aba85408a54505c77caeea9a44c177"]) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f00000004c0)={{0x1, 0x1, 0x18, r0, {0xffffffff}}, './file1\x00'}) utimensat(r5, &(0x7f0000000480)='./file1\x00', &(0x7f0000000500)={{}, {0x77359400}}, 0x100) 08:04:05 executing program 4: move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040)=[0x5], &(0x7f0000000080)=[0x0, 0x0], 0x6) move_pages(0x0, 0x6, &(0x7f00000000c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil], &(0x7f0000000100)=[0xfffffff9, 0x606], &(0x7f0000000140)=[0x0, 0x0], 0x6) shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x5000) r0 = shmget$private(0x0, 0x1000, 0x2, &(0x7f0000ffc000/0x1000)=nil) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x3800) move_pages(0x0, 0x4, &(0x7f0000000180)=[&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil], &(0x7f00000001c0)=[0x5e10, 0x5], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1) move_pages(0x0, 0x2, &(0x7f0000000240)=[&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil], &(0x7f0000000280)=[0x6, 0x80000001], &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6) mincore(&(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000300)=""/103) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x10000}}, './file0\x00'}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000008, 0x13, r1, 0x0) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x1000) move_pages(0x0, 0x3, &(0x7f00000003c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000400)=[0x101, 0x6, 0xe9, 0x40, 0xaf27, 0x8001, 0x1, 0xf483, 0x100], &(0x7f0000000440)=[0x0, 0x0, 0x0], 0xa) shmat(r0, &(0x7f0000ffb000/0x1000)=nil, 0x1000) r2 = shmget(0x0, 0x1000, 0x8, &(0x7f0000ffc000/0x1000)=nil) shmat(r2, &(0x7f0000ffc000/0x3000)=nil, 0x6000) shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x4000) syz_io_uring_setup(0x4d6e, &(0x7f0000000480)={0x0, 0x42d8, 0x8, 0x0, 0x3b7, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000500), &(0x7f0000000540)) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000580)=0x0) move_pages(r3, 0x1, &(0x7f00000005c0)=[&(0x7f0000ffc000/0x4000)=nil], &(0x7f0000000600), &(0x7f0000000640)=[0x0, 0x0], 0x2) [ 127.150931] loop1: detected capacity change from 0 to 27 [ 127.152123] hrtimer: interrupt took 22272 ns [ 127.153897] SELinux: security_context_str_to_sid (sys) failed with errno=-22 08:04:05 executing program 4: move_pages(0x0, 0x1, &(0x7f0000000000)=[&(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000040)=[0x5], &(0x7f0000000080)=[0x0, 0x0], 0x6) move_pages(0x0, 0x6, &(0x7f00000000c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil], &(0x7f0000000100)=[0xfffffff9, 0x606], &(0x7f0000000140)=[0x0, 0x0], 0x6) shmat(0x0, &(0x7f0000ffd000/0x2000)=nil, 0x5000) r0 = shmget$private(0x0, 0x1000, 0x2, &(0x7f0000ffc000/0x1000)=nil) shmat(r0, &(0x7f0000ffb000/0x4000)=nil, 0x3800) move_pages(0x0, 0x4, &(0x7f0000000180)=[&(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff8000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil], &(0x7f00000001c0)=[0x5e10, 0x5], &(0x7f0000000200)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1) move_pages(0x0, 0x2, &(0x7f0000000240)=[&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil], &(0x7f0000000280)=[0x6, 0x80000001], &(0x7f00000002c0)=[0x0, 0x0, 0x0], 0x6) mincore(&(0x7f0000ffd000/0x3000)=nil, 0x3000, &(0x7f0000000300)=""/103) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000380)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x10000}}, './file0\x00'}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000008, 0x13, r1, 0x0) shmat(r0, &(0x7f0000ffc000/0x4000)=nil, 0x1000) move_pages(0x0, 0x3, &(0x7f00000003c0)=[&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil], &(0x7f0000000400)=[0x101, 0x6, 0xe9, 0x40, 0xaf27, 0x8001, 0x1, 0xf483, 0x100], &(0x7f0000000440)=[0x0, 0x0, 0x0], 0xa) shmat(r0, &(0x7f0000ffb000/0x1000)=nil, 0x1000) r2 = shmget(0x0, 0x1000, 0x8, &(0x7f0000ffc000/0x1000)=nil) shmat(r2, &(0x7f0000ffc000/0x3000)=nil, 0x6000) shmat(r0, &(0x7f0000ffc000/0x1000)=nil, 0x4000) syz_io_uring_setup(0x4d6e, &(0x7f0000000480)={0x0, 0x42d8, 0x8, 0x0, 0x3b7, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000500), &(0x7f0000000540)) move_pages(0x0, 0x1, &(0x7f00000005c0)=[&(0x7f0000ffc000/0x4000)=nil], &(0x7f0000000600), &(0x7f0000000640)=[0x0, 0x0], 0x2) [ 127.255503] loop1: detected capacity change from 0 to 27 [ 127.262653] SELinux: security_context_str_to_sid (sys) failed with errno=-22 [ 127.271563] syz-executor.1 (3837) used greatest stack depth: 24760 bytes left [ 127.579537] loop3: detected capacity change from 0 to 116 [ 127.604294] ======================================================= [ 127.604294] WARNING: The mand mount option has been deprecated and [ 127.604294] and is ignored by this kernel. Remove the mand [ 127.604294] option from the mount to silence this warning. [ 127.604294] ======================================================= [ 127.616158] 9pnet_fd: p9_fd_create_unix (3867): problem connecting socket: ./file0: -111 [ 127.626675] loop3: detected capacity change from 0 to 116 [ 127.749388] audit: type=1107 audit(1664352246.208:9): pid=3875 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 msg='y ="⯗Bg$X%3>WW(b<_EwàU[҅<;k>6I#c6+h&`UkKNvf:B#D ' [ 127.758053] loop7: detected capacity change from 0 to 16383 [ 127.758707] SELinux: security_context_str_to_sid (system_u) failed with errno=-22 [ 127.768250] audit: type=1107 audit(1664352246.228:10): pid=3875 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 msg='y ="⯗Bg$X%3>WW(b<_EwàU[҅<;k>6I#c6+h&`UkKNvf:B#D ' [ 128.638424] audit: type=1400 audit(1664352247.098:11): avc: denied { create } for pid=3937 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1 VM DIAGNOSIS: 08:04:05 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=0000000000000001 RCX=0000000000000001 RDX=1ffff110081abf3a RSI=ffff888040d5ff48 RDI=ffff888040d5f9d0 RBP=0000000000000000 RSP=ffff888040d5f900 R8 =ffffffff86244a70 R9 =ffffffff86244a74 R10=ffffed10081abf3d R11=ffff888040d5f9c0 R12=ffff888040d5f9c1 R13=ffff888040d5f9e0 R14=ffff888040d5f980 R15=0000000000000005 RIP=ffffffff8111af9c RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f0f9e28f8c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f0f9e6e1330 CR3=0000000017f3c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM02=0000000000000000 0000000000000000 0000000000000000 000000000000004e YMM03=0000000000000000 0000000000000000 00560f96747eec00 007fff00343a3762 YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 ffffffffffff0000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000006561 6124242f6867632f YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 00560f96747eec00 007fff00343a3762 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff823ba02c RDI=ffffffff8765a980 RBP=ffffffff8765a940 RSP=ffff88801f6c7638 R8 =0000000000000004 R9 =0000000000000010 R10=0000000000000010 R11=0000000000000001 R12=0000000000002710 R13=0000000000000020 R14=fffffbfff0ecb580 R15=dffffc0000000000 RIP=ffffffff823ba081 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f3e923c2700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f03d43c28b0 CR3=0000000018a3a000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f3e94f337c0 00007f3e94f337c8 YMM02=0000000000000000 0000000000000000 00007f3e94f337e0 00007f3e94f337c0 YMM03=0000000000000000 0000000000000000 00007f3e94f337c8 00007f3e94f337c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000