Warning: Permanently added '[localhost]:16383' (ECDSA) to the list of known hosts. 2022/09/28 10:14:31 fuzzer started 2022/09/28 10:14:32 dialing manager at localhost:35827 syzkaller login: [ 36.333959] cgroup: Unknown subsys name 'net' [ 36.425253] cgroup: Unknown subsys name 'rlimit' 2022/09/28 10:14:46 syscalls: 2215 2022/09/28 10:14:46 code coverage: enabled 2022/09/28 10:14:46 comparison tracing: enabled 2022/09/28 10:14:46 extra coverage: enabled 2022/09/28 10:14:46 setuid sandbox: enabled 2022/09/28 10:14:46 namespace sandbox: enabled 2022/09/28 10:14:46 Android sandbox: enabled 2022/09/28 10:14:46 fault injection: enabled 2022/09/28 10:14:46 leak checking: enabled 2022/09/28 10:14:46 net packet injection: enabled 2022/09/28 10:14:46 net device setup: enabled 2022/09/28 10:14:46 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/28 10:14:46 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/28 10:14:46 USB emulation: enabled 2022/09/28 10:14:46 hci packet injection: enabled 2022/09/28 10:14:46 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220927) 2022/09/28 10:14:46 802.15.4 emulation: enabled 2022/09/28 10:14:46 fetching corpus: 50, signal 25582/27334 (executing program) 2022/09/28 10:14:46 fetching corpus: 100, signal 37881/41164 (executing program) 2022/09/28 10:14:46 fetching corpus: 150, signal 45910/50644 (executing program) 2022/09/28 10:14:46 fetching corpus: 200, signal 49031/55215 (executing program) 2022/09/28 10:14:46 fetching corpus: 250, signal 54785/62256 (executing program) 2022/09/28 10:14:46 fetching corpus: 300, signal 62324/70896 (executing program) 2022/09/28 10:14:47 fetching corpus: 350, signal 66281/76026 (executing program) 2022/09/28 10:14:47 fetching corpus: 400, signal 70600/81444 (executing program) 2022/09/28 10:14:47 fetching corpus: 450, signal 74267/86203 (executing program) 2022/09/28 10:14:47 fetching corpus: 500, signal 77447/90450 (executing program) 2022/09/28 10:14:47 fetching corpus: 550, signal 80725/94761 (executing program) 2022/09/28 10:14:47 fetching corpus: 600, signal 83863/98825 (executing program) 2022/09/28 10:14:47 fetching corpus: 650, signal 86897/102722 (executing program) 2022/09/28 10:14:47 fetching corpus: 700, signal 92063/108451 (executing program) 2022/09/28 10:14:48 fetching corpus: 750, signal 94515/111753 (executing program) 2022/09/28 10:14:48 fetching corpus: 800, signal 96702/114765 (executing program) 2022/09/28 10:14:48 fetching corpus: 850, signal 99122/117910 (executing program) 2022/09/28 10:14:48 fetching corpus: 900, signal 101875/121352 (executing program) 2022/09/28 10:14:48 fetching corpus: 950, signal 103642/123905 (executing program) 2022/09/28 10:14:48 fetching corpus: 1000, signal 105757/126773 (executing program) 2022/09/28 10:14:48 fetching corpus: 1050, signal 107475/129177 (executing program) 2022/09/28 10:14:48 fetching corpus: 1100, signal 109603/131949 (executing program) 2022/09/28 10:14:48 fetching corpus: 1150, signal 111168/134207 (executing program) 2022/09/28 10:14:49 fetching corpus: 1200, signal 113498/137028 (executing program) 2022/09/28 10:14:49 fetching corpus: 1250, signal 117300/140926 (executing program) 2022/09/28 10:14:49 fetching corpus: 1300, signal 119407/143532 (executing program) 2022/09/28 10:14:49 fetching corpus: 1350, signal 120612/145341 (executing program) 2022/09/28 10:14:49 fetching corpus: 1400, signal 122405/147651 (executing program) 2022/09/28 10:14:49 fetching corpus: 1450, signal 124513/150114 (executing program) 2022/09/28 10:14:49 fetching corpus: 1500, signal 126064/152112 (executing program) 2022/09/28 10:14:49 fetching corpus: 1550, signal 127563/154096 (executing program) 2022/09/28 10:14:49 fetching corpus: 1600, signal 129240/156138 (executing program) 2022/09/28 10:14:50 fetching corpus: 1650, signal 131616/158699 (executing program) 2022/09/28 10:14:50 fetching corpus: 1700, signal 132967/160501 (executing program) 2022/09/28 10:14:50 fetching corpus: 1750, signal 134279/162232 (executing program) 2022/09/28 10:14:50 fetching corpus: 1800, signal 137414/165158 (executing program) 2022/09/28 10:14:50 fetching corpus: 1850, signal 139290/167145 (executing program) 2022/09/28 10:14:50 fetching corpus: 1900, signal 140543/168761 (executing program) 2022/09/28 10:14:50 fetching corpus: 1950, signal 141598/170206 (executing program) 2022/09/28 10:14:51 fetching corpus: 2000, signal 143990/172491 (executing program) 2022/09/28 10:14:51 fetching corpus: 2050, signal 145068/173911 (executing program) 2022/09/28 10:14:51 fetching corpus: 2100, signal 146260/175435 (executing program) 2022/09/28 10:14:51 fetching corpus: 2150, signal 148416/177469 (executing program) 2022/09/28 10:14:51 fetching corpus: 2200, signal 149948/179064 (executing program) 2022/09/28 10:14:51 fetching corpus: 2250, signal 151062/180374 (executing program) 2022/09/28 10:14:51 fetching corpus: 2300, signal 151917/181560 (executing program) 2022/09/28 10:14:51 fetching corpus: 2350, signal 153254/182983 (executing program) 2022/09/28 10:14:51 fetching corpus: 2400, signal 154765/184477 (executing program) 2022/09/28 10:14:52 fetching corpus: 2450, signal 156045/185807 (executing program) 2022/09/28 10:14:52 fetching corpus: 2500, signal 157255/187084 (executing program) 2022/09/28 10:14:52 fetching corpus: 2550, signal 157923/188026 (executing program) 2022/09/28 10:14:52 fetching corpus: 2600, signal 159069/189245 (executing program) 2022/09/28 10:14:52 fetching corpus: 2650, signal 160344/190532 (executing program) 2022/09/28 10:14:52 fetching corpus: 2700, signal 162261/192068 (executing program) 2022/09/28 10:14:52 fetching corpus: 2750, signal 162835/192893 (executing program) 2022/09/28 10:14:52 fetching corpus: 2800, signal 163782/193943 (executing program) 2022/09/28 10:14:52 fetching corpus: 2850, signal 164587/194898 (executing program) 2022/09/28 10:14:52 fetching corpus: 2900, signal 166010/196066 (executing program) 2022/09/28 10:14:53 fetching corpus: 2950, signal 167085/197106 (executing program) 2022/09/28 10:14:53 fetching corpus: 3000, signal 167872/197992 (executing program) 2022/09/28 10:14:53 fetching corpus: 3050, signal 168669/198828 (executing program) 2022/09/28 10:14:53 fetching corpus: 3100, signal 169139/199537 (executing program) 2022/09/28 10:14:53 fetching corpus: 3150, signal 169936/200367 (executing program) 2022/09/28 10:14:53 fetching corpus: 3200, signal 170492/201096 (executing program) 2022/09/28 10:14:53 fetching corpus: 3250, signal 171544/201988 (executing program) 2022/09/28 10:14:53 fetching corpus: 3300, signal 172428/202836 (executing program) 2022/09/28 10:14:53 fetching corpus: 3350, signal 173549/203755 (executing program) 2022/09/28 10:14:54 fetching corpus: 3400, signal 174272/204516 (executing program) 2022/09/28 10:14:54 fetching corpus: 3450, signal 175364/205434 (executing program) 2022/09/28 10:14:54 fetching corpus: 3500, signal 175946/206044 (executing program) 2022/09/28 10:14:54 fetching corpus: 3550, signal 176483/206659 (executing program) 2022/09/28 10:14:54 fetching corpus: 3600, signal 177233/207306 (executing program) 2022/09/28 10:14:54 fetching corpus: 3650, signal 178041/208037 (executing program) 2022/09/28 10:14:54 fetching corpus: 3700, signal 178823/208736 (executing program) 2022/09/28 10:14:54 fetching corpus: 3750, signal 179710/209399 (executing program) 2022/09/28 10:14:55 fetching corpus: 3800, signal 181068/210186 (executing program) 2022/09/28 10:14:55 fetching corpus: 3850, signal 181578/210738 (executing program) 2022/09/28 10:14:55 fetching corpus: 3900, signal 182530/211431 (executing program) 2022/09/28 10:14:55 fetching corpus: 3950, signal 183129/211914 (executing program) 2022/09/28 10:14:55 fetching corpus: 4000, signal 183842/212508 (executing program) 2022/09/28 10:14:55 fetching corpus: 4050, signal 184520/213037 (executing program) 2022/09/28 10:14:55 fetching corpus: 4100, signal 185381/213773 (executing program) 2022/09/28 10:14:55 fetching corpus: 4150, signal 186672/214435 (executing program) 2022/09/28 10:14:56 fetching corpus: 4200, signal 187426/214948 (executing program) 2022/09/28 10:14:56 fetching corpus: 4250, signal 188230/215471 (executing program) 2022/09/28 10:14:56 fetching corpus: 4300, signal 188960/215907 (executing program) 2022/09/28 10:14:56 fetching corpus: 4350, signal 189271/216275 (executing program) 2022/09/28 10:14:56 fetching corpus: 4400, signal 190103/216742 (executing program) 2022/09/28 10:14:56 fetching corpus: 4450, signal 190816/217188 (executing program) 2022/09/28 10:14:56 fetching corpus: 4500, signal 191351/217574 (executing program) 2022/09/28 10:14:56 fetching corpus: 4550, signal 192168/218010 (executing program) 2022/09/28 10:14:57 fetching corpus: 4600, signal 192927/218409 (executing program) 2022/09/28 10:14:57 fetching corpus: 4650, signal 193906/218848 (executing program) 2022/09/28 10:14:57 fetching corpus: 4700, signal 194922/219337 (executing program) 2022/09/28 10:14:57 fetching corpus: 4750, signal 195736/219743 (executing program) 2022/09/28 10:14:57 fetching corpus: 4800, signal 196705/220130 (executing program) 2022/09/28 10:14:57 fetching corpus: 4850, signal 197211/220435 (executing program) 2022/09/28 10:14:57 fetching corpus: 4900, signal 197859/220746 (executing program) 2022/09/28 10:14:58 fetching corpus: 4950, signal 198680/221101 (executing program) 2022/09/28 10:14:58 fetching corpus: 5000, signal 199126/221395 (executing program) 2022/09/28 10:14:58 fetching corpus: 5050, signal 199532/221647 (executing program) 2022/09/28 10:14:58 fetching corpus: 5100, signal 199985/221884 (executing program) 2022/09/28 10:14:58 fetching corpus: 5150, signal 200666/222138 (executing program) 2022/09/28 10:14:58 fetching corpus: 5200, signal 201253/222381 (executing program) 2022/09/28 10:14:58 fetching corpus: 5250, signal 201904/222619 (executing program) 2022/09/28 10:14:58 fetching corpus: 5300, signal 203159/222888 (executing program) 2022/09/28 10:14:59 fetching corpus: 5350, signal 203760/223066 (executing program) 2022/09/28 10:14:59 fetching corpus: 5400, signal 204435/223268 (executing program) 2022/09/28 10:14:59 fetching corpus: 5450, signal 204958/223453 (executing program) 2022/09/28 10:14:59 fetching corpus: 5500, signal 205625/223704 (executing program) 2022/09/28 10:14:59 fetching corpus: 5550, signal 206126/223754 (executing program) 2022/09/28 10:14:59 fetching corpus: 5600, signal 206977/223754 (executing program) 2022/09/28 10:14:59 fetching corpus: 5650, signal 207451/223798 (executing program) 2022/09/28 10:14:59 fetching corpus: 5700, signal 208100/223805 (executing program) 2022/09/28 10:15:00 fetching corpus: 5750, signal 208451/223807 (executing program) 2022/09/28 10:15:00 fetching corpus: 5800, signal 208746/223819 (executing program) 2022/09/28 10:15:00 fetching corpus: 5850, signal 208956/223820 (executing program) 2022/09/28 10:15:00 fetching corpus: 5896, signal 209653/223821 (executing program) 2022/09/28 10:15:00 fetching corpus: 5896, signal 209653/223821 (executing program) 2022/09/28 10:15:03 starting 8 fuzzer processes 10:15:03 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='cpuset.memory_pressure\x00', 0x0, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), r0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x800, 0x0) ioctl$BTRFS_IOC_SNAP_CREATE(r1, 0x50009401, &(0x7f00000000c0)={{r2}, "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"}) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000010c0), 0x220400, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000001100), 0x280000, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000001140)={{0x1, 0x1, 0x18, r1, {0x2821, 0x8}}, './file0\x00'}) fcntl$getown(r4, 0x9) r5 = accept$inet6(0xffffffffffffffff, 0x0, &(0x7f0000001180)) fsetxattr$trusted_overlay_origin(r5, &(0x7f00000011c0), &(0x7f0000001200), 0x2, 0x1) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001280), r3) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000012c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SURVEY(r0, &(0x7f0000001380)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000001340)={&(0x7f0000001300)={0x28, r6, 0x800, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0xf3c, 0x19}}}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000805) ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f00000013c0)={{0x1, 0x1, 0x18, r5, {0x8, 0x1}}, './file0\x00'}) sendmsg$NL80211_CMD_DEAUTHENTICATE(r8, &(0x7f00000014c0)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x1f3c8dd2f3229534}, 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x14, 0x0, 0x200, 0x70bd2c, 0x25dfdbff, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x4010) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000001540)={{0x1, 0x1, 0x18, r1, {0x64}}, './file0\x00'}) syz_genetlink_get_family_id$l2tp(&(0x7f0000001500), r9) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r9, 0xc018937b, &(0x7f00000015c0)={{0x1, 0x1, 0x18, r8, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) sendmsg$GTP_CMD_DELPDP(r4, &(0x7f0000001680)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001640)={&(0x7f0000001600)={0x40, 0x0, 0x0, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @empty}, @GTPA_FLOW={0x6, 0x6, 0x3}, @GTPA_VERSION={0x8}, @GTPA_TID={0xc, 0x3, 0x2}, @GTPA_NET_NS_FD={0x8, 0x7, r10}]}, 0x40}}, 0x8840) 10:15:03 executing program 1: syslog(0x1, &(0x7f0000000000)=""/4096, 0x1000) syslog(0x9, &(0x7f0000001000)=""/147, 0x93) syslog(0x3, 0x0, 0x0) syslog(0x4, &(0x7f00000010c0)=""/9, 0x9) syslog(0x3, &(0x7f0000001100)=""/115, 0x73) syslog(0x0, &(0x7f0000001180)=""/172, 0xac) syslog(0x0, &(0x7f0000001240)=""/178, 0xb2) syslog(0x2, &(0x7f0000001300)=""/45, 0x2d) syslog(0x3, 0x0, 0x0) syslog(0x1, &(0x7f0000001340)=""/89, 0x59) syslog(0xb3c3bff7, &(0x7f00000013c0)=""/82, 0x52) syslog(0xa, &(0x7f0000001440)=""/63, 0x3f) syslog(0x0, &(0x7f0000001480)=""/229, 0xe5) syslog(0x3, 0x0, 0x0) syslog(0x4, &(0x7f0000001580)=""/124, 0x7c) syslog(0x2, 0x0, 0x0) syslog(0xa, &(0x7f0000001600)=""/244, 0xf4) syslog(0xa, 0x0, 0x0) syslog(0x1, 0x0, 0x0) syslog(0x4, 0x0, 0x0) 10:15:03 executing program 2: ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xb7a}}, './file0\x00'}) sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x44, 0x0, 0x2, 0x70bd27, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x2}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x10000}, @IPVS_CMD_ATTR_DAEMON={0x20, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x2004c001}, 0x40) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, @in_args={0x2}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, {0x7}}, './file0\x00'}) close_range(r2, r1, 0x2) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0x7}}, './file0\x00'}) close_range(r2, r4, 0x0) fsetxattr$trusted_overlay_opaque(r0, &(0x7f0000000280), &(0x7f00000002c0), 0x2, 0x0) write$binfmt_aout(r2, &(0x7f0000000300)={{0x10b, 0x20, 0x2, 0x239, 0x1c5, 0x2, 0x263, 0x8}, "79d01036dc566036ecc50bbb8276d890b07aa80f39aad82ff605fbacfdd2b347725432c4d3c232461cc441ec30813101f43ec0af496de9fa23335e30182c2bc0b68e26e994fdf321bcb0a1df2c45790e220b848e655e1bd803f92c7eec5ba155df9ae0b4442657da16f2a5", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x98b) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000cc0)='/sys/bus/clockevents', 0x8000, 0x40) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000000d00)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000e40)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000d80)={0x50, 0x3, 0x8, 0x305, 0x0, 0x0, {0x5, 0x0, 0x9}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_ESTABLISHED={0x8, 0x4, 0x1, 0x0, 0x7}]}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x8000}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x5}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xc6}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x88f5}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x24000000}, 0x20004000) getsockopt$netlink(r5, 0x10e, 0x3, &(0x7f0000000e80)=""/63, &(0x7f0000000ec0)=0x3f) r7 = signalfd4(0xffffffffffffffff, &(0x7f0000000f00)={[0x4]}, 0x8, 0x800) r8 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000f40), 0x0, 0x0) dup2(r7, r8) fcntl$setstatus(r2, 0x4, 0x40000) pread64(r6, &(0x7f0000000f80)=""/110, 0x6e, 0x6) 10:15:03 executing program 3: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x10041, 0x0) ioctl$SG_GET_COMMAND_Q(r0, 0x2270, &(0x7f0000000040)) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000080), &(0x7f00000000c0)={0x0, 0xfb, 0x102, 0x0, 0x20, "a3c7cbcb15dadeab27a840de01faeef7", "96ba3c63c4a01e1ae23e2a6e5238473055665e1b6c91dde516e1ad7a261c04a68b2c7ee07bc2b93c8516cc123477ce4b60af4f4f96791a503df8c11f8a1b3d0d098b44e7ae968e8185056198cc3e6f8cd0b10155e1d3b9c27920bd15b47b2c650ea6d53d14546f94d0b1f00b0dc69aa91f8c51b436476f6d412595b78637171009b20d93a40ef87b53b6936d163e902a1c4a0d6baadf097c9af6c40c09ecadd9a7833de31b497db5edd089d0fc0ac5bcd948d4c15fbe6d82a99d241f1252e713932b59265a7ad0bab2d92e2d951779c2500958bdc418a0e2b31dfc02b7624af57b08e8aacb439d1746035e4d4f"}, 0x102, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000200)=@abs, 0x6e, &(0x7f0000000700)=[{&(0x7f0000000280)=""/91, 0x5b}, {&(0x7f0000000300)=""/97, 0x61}, {&(0x7f0000000380)=""/69, 0x45}, {&(0x7f0000000400)=""/148, 0x94}, {&(0x7f00000004c0)=""/89, 0x59}, {&(0x7f0000000540)=""/195, 0xc3}, {&(0x7f0000000640)=""/183, 0xb7}], 0x7, &(0x7f0000000780)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x38}, 0x60000001) r2 = signalfd(r1, &(0x7f0000000800)={[0x7]}, 0x8) getdents(r0, &(0x7f0000000840)=""/126, 0x7e) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$setpipe(r3, 0x407, 0x1) io_uring_enter(r2, 0x5527, 0x8fb1, 0x2, &(0x7f00000008c0)={[0x3]}, 0x8) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000900)={@in={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x0, 0x0, 0x2, 0x0, "def934bd7eefc5c25cf0609b3856127161ddb59be35dc8aa3eedc7aa01a1bb379fbfbf2470eb05bd1a4a980c6b7e974d4e9d154ca05b2ea3b0ac313b2333b5cc433f910d4107af37c27890f976c70552"}, 0xd8) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000a00), 0x353200, 0x0) r5 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r5, 0xf503, 0x0) r6 = epoll_create1(0x80000) pread64(r6, &(0x7f0000000a40)=""/4096, 0x1000, 0xffffffffffff358f) ioctl$KDSKBMODE(r0, 0x4b45, &(0x7f0000001a40)=0x3) ioctl$TIOCEXCL(r2, 0x540c) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000001a80)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) dup2(r7, r4) ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000001b00)) 10:15:03 executing program 4: ioctl$CDROMREADRAW(0xffffffffffffffff, 0x5314, &(0x7f0000000000)={0x3, 0xff, 0x1, 0xe0, 0x79}) fcntl$setlease(0xffffffffffffffff, 0x400, 0x2) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000a80)='attr/exec\x00') recvmsg$unix(r0, &(0x7f0000000d40)={&(0x7f0000000ac0)=@abs, 0x6e, &(0x7f0000000cc0)=[{&(0x7f0000000b40)=""/86, 0x56}, {&(0x7f0000000bc0)=""/162, 0xa2}, {&(0x7f0000000c80)=""/30, 0x1e}], 0x3, &(0x7f0000000d00)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}, 0x0) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000d80), 0x1c703) ioctl$FIGETBSZ(r2, 0x2, &(0x7f0000000dc0)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000e00), 0x80142, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000e40)={{0x0, 0x0, 0x0, 0x3}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000e80)={0x6, 0x23, 0x100, 0x0, 0x4}) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x13, r3, 0x3eb22000) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000f00)={{0x1, 0x1, 0x18, r1, {0x80000001}}, './file0\x00'}) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000f40), 0x101500) r5 = creat(&(0x7f0000000f80)='./file0\x00', 0x15c) ioctl$SNDRV_TIMER_IOCTL_INFO(r5, 0x80e85411, &(0x7f0000000fc0)=""/214) ioctl$FS_IOC_GETFLAGS(r4, 0x80086601, &(0x7f00000010c0)) r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001100), 0x40, 0x0) fsetxattr$trusted_overlay_nlink(r6, &(0x7f0000001140), &(0x7f0000001180)={'U+', 0x2}, 0x16, 0x2) r7 = syz_open_dev$vcsn(&(0x7f00000011c0), 0x1, 0x40002) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r7, 0x400c6615, &(0x7f0000001200)) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000001240)={0x2, 0x1, 0x7f}) [ 67.308280] audit: type=1400 audit(1664360103.241:6): avc: denied { execmem } for pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 10:15:03 executing program 5: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x60, r0, 0x20, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x9, 0x49}}}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x9}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x359}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}], @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x18d}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x397}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}]]}, 0x60}}, 0x20048089) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x32602, 0x0) sendmsg$DEVLINK_CMD_TRAP_GET(r1, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x88, 0x0, 0x4, 0x70bd2d, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x88}, 0x1, 0x0, 0x0, 0x40000}, 0x7f40bbba1b6c065d) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000000340)={@empty, @local, @private2, 0xfffffffa, 0x101, 0x3, 0x100, 0x401, 0x20}) sendmsg$NL80211_CMD_SET_PMKSA(r1, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x34, r0, 0x1, 0x70bd26, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x40, 0x6f}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_FILS_CACHE_ID={0x6, 0xfd, 0x4}]}, 0x34}}, 0x4000014) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000540)={'syztnl1\x00', &(0x7f00000004c0)={'ip6tnl0\x00', 0x0, 0x29, 0x4, 0x4, 0x7f, 0x8, @mcast1, @private0, 0x80, 0x10, 0x3f, 0x1}}) sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000840)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000800)={&(0x7f00000005c0)={0x224, r0, 0x20, 0x70bd2a, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0xffff, 0x20}}}}, [@NL80211_ATTR_FRAME={0x1fb, 0x33, @probe_request={@with_ht={{{0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x1}, {0xb76}, @device_b, @device_a, @random="9670bafbb53d", {0xc, 0x7}}, @ver_80211n={0x0, 0x20, 0x3, 0x3, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}}, @void, @void, @void, @val={0x2d, 0x1a, {0x1000, 0x1, 0x1, 0x0, {0x6, 0x3, 0x0, 0x9, 0x0, 0x0, 0x0, 0x3, 0x1}, 0x8, 0x4, 0x8e}}, @void, [{0xdd, 0x1c, "15916675e8ea9b42e2320d203a2c33faaad1e8d741e24fd41f3f72dd"}, {0xdd, 0x96, "1e7fe36ee28b2489dad9f274e233635bba8d947c50e987149d4c5ecaa73d22ba3616103dca6d9f3a45ca9d7261401f88933b3f86755aedc5dda216172e81a359c6ebfd1cfba805a6b6b3f009b0b0e3390aa742699def0f6c69198947912f91ee88ed6f1a7bf8ea62f94fd897b04535a1fc89eadd94467b1cd41b98a5235beaa3149b7d534ab64839be6ef5f47d76d3884f7f58c6a12f"}, {0xdd, 0x33, "e9d2886834cbf2fdd5b84798b27b8e9f32936cfb5d3f8e69fa84292745b518927fd508046e1438fd2d99332f40bfc01b67c9bc"}, {0xdd, 0x40, "b599a41a5f8c0d28ced873522145d70eaa6b89cb2f49517c31fe77e9cc16e407cfd293e97e5a76fe37a262c4e8f7f4c76ca02c6109682df370bd45a12144372f"}, {0xdd, 0x30, "83f9c85399a93b0bfccf971f50defe0969c00ef0ec329615dc00cd0dc20642ffa8e55dc2c677672996cf8cad3cf9c539"}, {0xdd, 0x27, "eb45e7ac80b84d3527fcb8d5d61961785c277526fe404d6d9a28906f181e2c0829a4333c7f1c1c"}, {0xdd, 0x35, "548c990e97c887d5c7382f56c874066ab164a105341c1962556bbf04205503c4070e5c13b40a2b9c8b3ed32833e8982ec1b2b9f5b8"}]}}]}, 0x224}, 0x1, 0x0, 0x0, 0x894}, 0x44) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000008c0)={'wpan3\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_DEV(r2, &(0x7f0000000980)={&(0x7f0000000880)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x28, 0x0, 0x3, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x168f4c739b048d64}}]}, 0x28}, 0x1, 0x0, 0x0, 0x81}, 0x20000095) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000a00)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_PMKSA(r1, &(0x7f0000000b00)={&(0x7f00000009c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a40)={0x74, r0, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x1, 0x2}}}}, [@NL80211_ATTR_FILS_CACHE_ID={0x6}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@device_b}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0xb}, @NL80211_ATTR_SSID={0x6, 0x34, @random="81d6"}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x10}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x461}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x40000) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000b80), r2) sendmsg$IEEE802154_LLSEC_DEL_KEY(r2, &(0x7f0000000c40)={&(0x7f0000000b40), 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x20, r5, 0x800, 0x70bd2a, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0302}}]}, 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x40408c0) r6 = dup(r1) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r6, 0x89f2, &(0x7f0000000d00)={'ip6gre0\x00', &(0x7f0000000c80)={'sit0\x00', 0x0, 0x4, 0x2, 0x9, 0x1000, 0x30, @ipv4={'\x00', '\xff\xff', @remote}, @mcast2, 0x40, 0x7827, 0x7, 0x4}}) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000d80), r1) sendmsg$NL80211_CMD_RELOAD_REGDB(0xffffffffffffffff, &(0x7f0000000e40)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x14, r7, 0x2, 0x70bd25, 0x25dfdbfb, {}, ["", "", "", "", "", "", ""]}, 0x14}}, 0x40004) sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001140)={&(0x7f0000000f00)={0x23c, 0x0, 0x300, 0x70bd26, 0x25dfdbfd, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x1000}, {0x6, 0x11, 0x4}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xab}, {0x6, 0x11, 0x50}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x7}, {0x6, 0x11, 0x4}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x200}, {0x6, 0x11, 0x62b}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0xb, 0x80000001}, {0x6, 0x11, 0x8000}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xfff}, {0x6, 0x11, 0xffff}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8, 0xb, 0x401}, {0x6, 0x11, 0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8}, {0x6, 0x11, 0xa21}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x4000000}, {0x6, 0x11, 0x8c24}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}, {0x8, 0xb, 0x7f}, {0x6, 0x11, 0x8}}]}, 0x23c}, 0x1, 0x0, 0x0, 0xc010}, 0x80) 10:15:03 executing program 6: exit_group(0x7) exit_group(0x3b8b8d07) exit_group(0x0) exit_group(0x4) exit_group(0x100) exit_group(0x3) exit_group(0xd812) exit_group(0x8000) exit_group(0x3b) exit_group(0x7) exit_group(0x3) exit_group(0x454c) exit_group(0x2) exit_group(0x6) exit_group(0x7) exit_group(0x40) exit_group(0x7a331d13) exit_group(0x7f) exit_group(0x2) exit_group(0x6) 10:15:03 executing program 7: ioctl$BINDER_GET_FROZEN_INFO(0xffffffffffffffff, 0xc00c620f, &(0x7f0000000000)) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000080)={{r0}, {@val, @actul_num={@val=0x2d, 0xfff, 0x4d}}}) ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0) ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0xa, 0x2}) ioctl$FICLONE(r0, 0x40049409, r0) sendmsg$TIPC_CMD_GET_REMOTE_MNG(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x200000d1}, 0x20040011) ioctl$BTRFS_IOC_DEV_REPLACE(r0, 0xca289435, &(0x7f0000000200)={0x2, 0x7, @status={[0x28, 0x1, 0x800000, 0x0, 0x0, 0x7]}, [0x3ff, 0x4, 0x1ff, 0xfffffffffffffffd, 0x9, 0x5e, 0x8, 0x4, 0xb84, 0x1ff, 0x401, 0x7f, 0x1, 0x40, 0x8, 0x0, 0x80000001, 0x4, 0x5ed1, 0xffffffff, 0xfffffffffffffff9, 0x3f, 0x7f, 0xfffffffffffffffa, 0x1ff, 0xfffffffffffff800, 0x81, 0x7, 0x441e2ee8, 0x2, 0x4, 0x2, 0x101, 0x2, 0x1, 0x8, 0x4, 0x7ff, 0x100000000, 0x200, 0x9, 0x7fffffff, 0x8001, 0x0, 0xffff, 0x3, 0xff, 0x68fe689f, 0x8001, 0x40, 0x8, 0x500000000000, 0x8, 0x40000000000000, 0x2, 0x7ff, 0x1ff, 0x1f, 0xffffffff, 0x1ff, 0x1, 0xffffffff, 0xff, 0xc000]}) r1 = openat(r0, &(0x7f0000000c40)='./file0\x00', 0x840, 0x8) r2 = fsopen(&(0x7f0000000c80)='binfmt_misc\x00', 0x1) ioctl$BTRFS_IOC_WAIT_SYNC(r2, 0x40089416, &(0x7f0000000cc0)) r3 = pidfd_getfd(r1, r0, 0x0) setsockopt$inet_tcp_buf(r3, 0x6, 0x21, &(0x7f0000000d00)="11de0f771ced05f3d68bc26f723d9bf6a488762e60df6a303307d39c1f24812167cb080d8f7d163cd3c7b254909096e5a9b46cffbb7b51115a7e124e67bc6e49bca9d6c04b971905312ec72c7dfc296597627b0c0458694e8afb8a54dec2caef22f03271cdc440518aaaaad69e6d79062458f8865aeea34a453b462b1130f82bcdcfa26c3a13a777c4a6c1e32c8ebcaf58a0d2aae9513625e66307e09cbf22e251a5ab7e0db1f6775ad0f3ad41c25eef38b70aea65", 0xb5) mmap$binder(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x11, r3, 0x5) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000dc0)={'vxcan1\x00'}) flock(r1, 0x2) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000e00)='/proc/bus/input/devices\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000fc0)={&(0x7f0000000e40)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000e80)={0xd4, 0x0, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0x5c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x7c}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x5e}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0xb}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x4}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x20, 0xb}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast2}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x32, 0x10}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x8}, @IPVS_CMD_ATTR_SERVICE={0x18, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@dev={0xac, 0x14, 0x14, 0x24}}]}, @IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3c12}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x8}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0xe8039188760d6923}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x800}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4000004}, 0x20000005) ioctl$BTRFS_IOC_SPACE_INFO(0xffffffffffffffff, 0xc0109414, &(0x7f0000001000)={0x4a6, 0x3, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) flock(r3, 0x6) [ 68.651865] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 68.654054] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 68.657675] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 68.659051] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 68.660774] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 68.662513] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 68.666640] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 68.675395] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 68.681827] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 68.683742] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 68.692715] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 68.695394] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 68.696441] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 68.701704] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 68.711669] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 68.715407] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 68.717197] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 68.721683] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 68.723768] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 68.725638] Bluetooth: hci1: HCI_REQ-0x0c1a [ 68.726036] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 68.728391] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 68.729585] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 68.734589] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 68.747463] Bluetooth: hci0: HCI_REQ-0x0c1a [ 68.753336] Bluetooth: hci3: HCI_REQ-0x0c1a [ 68.764324] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 68.764383] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 68.765441] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 68.769668] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 68.770413] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 68.775411] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 68.776510] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 68.777818] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 68.779104] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 68.781758] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 68.782642] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 68.783910] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 68.785024] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 68.786869] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 68.787907] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 68.789978] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 68.791644] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 68.793474] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 68.794728] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 68.795777] Bluetooth: hci7: HCI_REQ-0x0c1a [ 68.800484] Bluetooth: hci5: HCI_REQ-0x0c1a [ 68.801383] Bluetooth: hci4: HCI_REQ-0x0c1a [ 68.824824] Bluetooth: hci2: HCI_REQ-0x0c1a [ 68.866919] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 68.869107] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 68.870838] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 68.878527] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 68.887601] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 68.889685] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 68.896198] Bluetooth: hci6: HCI_REQ-0x0c1a [ 70.796637] Bluetooth: hci0: command 0x0409 tx timeout [ 70.796647] Bluetooth: hci3: command 0x0409 tx timeout [ 70.796842] Bluetooth: hci1: command 0x0409 tx timeout [ 70.860271] Bluetooth: hci4: command 0x0409 tx timeout [ 70.860882] Bluetooth: hci2: command 0x0409 tx timeout [ 70.861437] Bluetooth: hci5: command 0x0409 tx timeout [ 70.861973] Bluetooth: hci7: command 0x0409 tx timeout [ 70.924154] Bluetooth: hci6: command 0x0409 tx timeout [ 72.844212] Bluetooth: hci1: command 0x041b tx timeout [ 72.845870] Bluetooth: hci0: command 0x041b tx timeout [ 72.846176] Bluetooth: hci3: command 0x041b tx timeout [ 72.908176] Bluetooth: hci7: command 0x041b tx timeout [ 72.908667] Bluetooth: hci5: command 0x041b tx timeout [ 72.909127] Bluetooth: hci2: command 0x041b tx timeout [ 72.909541] Bluetooth: hci4: command 0x041b tx timeout [ 72.972200] Bluetooth: hci6: command 0x041b tx timeout [ 74.892186] Bluetooth: hci0: command 0x040f tx timeout [ 74.892672] Bluetooth: hci1: command 0x040f tx timeout [ 74.893169] Bluetooth: hci3: command 0x040f tx timeout [ 74.956177] Bluetooth: hci4: command 0x040f tx timeout [ 74.956630] Bluetooth: hci2: command 0x040f tx timeout [ 74.957030] Bluetooth: hci5: command 0x040f tx timeout [ 74.957475] Bluetooth: hci7: command 0x040f tx timeout [ 75.021165] Bluetooth: hci6: command 0x040f tx timeout [ 76.941181] Bluetooth: hci3: command 0x0419 tx timeout [ 76.941643] Bluetooth: hci1: command 0x0419 tx timeout [ 76.942035] Bluetooth: hci0: command 0x0419 tx timeout [ 77.005185] Bluetooth: hci7: command 0x0419 tx timeout [ 77.005645] Bluetooth: hci5: command 0x0419 tx timeout [ 77.006049] Bluetooth: hci2: command 0x0419 tx timeout [ 77.006497] Bluetooth: hci4: command 0x0419 tx timeout [ 77.069113] Bluetooth: hci6: command 0x0419 tx timeout 10:16:01 executing program 3: io_setup(0x1, &(0x7f00000009c0)) io_setup(0x9, &(0x7f0000000000)=0x0) r1 = signalfd(0xffffffffffffffff, &(0x7f00000011c0), 0x8) pipe(&(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff8000/0x8000)=nil, 0x8000, 0x1000000, 0x10, r2, 0x0) io_submit(r0, 0x1, &(0x7f00000010c0)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}]) io_getevents(r0, 0x8000, 0x9, &(0x7f0000000000)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r3, 0x84009422, &(0x7f0000000140)={0x0, 0x0, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @usage, 0x0}}) ioctl$BTRFS_IOC_RESIZE(r1, 0x50009403, &(0x7f00000005c0)=ANY=[@ANYRES32=r1, @ANYBLOB="0061c22df893590077ebb9030000f4bc5898d5c6c77fc91fdfbc1e335897f4db", @ANYRESDEC=r4, @ANYBLOB=':max']) [ 125.196660] audit: type=1400 audit(1664360161.129:7): avc: denied { map } for pid=3808 comm="syz-executor.3" path="pipe:[13687]" dev="pipefs" ino=13687 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=fifo_file permissive=1 10:16:01 executing program 3: syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x8400, &(0x7f00000000c0)=ANY=[@ANYBLOB='mpol=tnterleave=static:15-4', @ANYRESOCT=0x0]) [ 125.322016] tmpfs: Bad value for 'mpol' [ 125.326251] tmpfs: Bad value for 'mpol' 10:16:01 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x2080000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1000, 0x3ff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10005}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0xc042, 0x4) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r1, &(0x7f00000000c0)='9', 0x1, 0x8040000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4042, 0x0) sendfile(r1, r2, 0x0, 0xffff) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) r4 = openat$cgroup(r1, &(0x7f0000000200)='syz0\x00', 0x200002, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r4) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000180)={0x0, 0x1, 0x6, @broadcast}, 0x10) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f00000001c0)={'ip6_vti0\x00', &(0x7f0000000680)={'ip6_vti0\x00', 0x0, 0x4, 0x1, 0x81, 0x0, 0x54, @loopback, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x40, 0x80, 0x7ff, 0x32ee}}) sendmsg$ETHTOOL_MSG_RINGS_SET(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000800)={&(0x7f0000000740)=ANY=[@ANYBLOB="84000000", @ANYRES16=0x0, @ANYBLOB="20002dbd7000fbdbdf25100000004400018008000300000700001400020076657468315f746f5f7465616d000000140002007465616d5f736c6176655f310000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=r5, @ANYBLOB="2c00018014000200766c616e30000000000000000000000014000200767863616e3100"/44], 0x84}, 0x1, 0x0, 0x0, 0x2000c011}, 0x20000015) r6 = openat$sr(0xffffffffffffff9c, &(0x7f0000000100), 0x44b43, 0x0) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000300)={r5, 0x1, 0x6, @remote}, 0x10) ioctl$SG_EMULATED_HOST(r6, 0x5390, &(0x7f0000002340)) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r6, 0xc0189375, 0xfffffffffffffffc) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000140)='./file1\x00', 0x3709, 0x0, 0x0, 0x200480c, &(0x7f0000000400)={[{@numtail}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}], [{@uid_eq}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]}) ioctl$EXT4_IOC_CHECKPOINT(r3, 0x4004662b, 0x0) 10:16:01 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) r1 = syz_open_dev$ptys(0xc, 0x3, 0x0) dup(r1) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r2, &(0x7f00000000c0)='9', 0x1, 0x0) [ 125.456726] audit: type=1400 audit(1664360161.390:8): avc: denied { open } for pid=3830 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.458571] audit: type=1400 audit(1664360161.390:9): avc: denied { kernel } for pid=3830 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 125.482572] ------------[ cut here ]------------ [ 125.482593] [ 125.482596] ====================================================== [ 125.482600] WARNING: possible circular locking dependency detected [ 125.482604] 6.0.0-rc7-next-20220927 #1 Not tainted [ 125.482611] ------------------------------------------------------ [ 125.482614] syz-executor.3/3833 is trying to acquire lock: [ 125.482621] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 125.482663] [ 125.482663] but task is already holding lock: [ 125.482666] ffff888017582c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.482695] [ 125.482695] which lock already depends on the new lock. [ 125.482695] [ 125.482698] [ 125.482698] the existing dependency chain (in reverse order) is: [ 125.482701] [ 125.482701] -> #3 (&ctx->lock){....}-{2:2}: [ 125.482715] _raw_spin_lock+0x2a/0x40 [ 125.482728] __perf_event_task_sched_out+0x53b/0x18d0 [ 125.482747] __schedule+0xedd/0x2470 [ 125.482763] schedule+0xda/0x1b0 [ 125.482778] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.482790] syscall_exit_to_user_mode+0x19/0x40 [ 125.482805] do_syscall_64+0x48/0x90 [ 125.482815] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.482829] [ 125.482829] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 125.482843] _raw_spin_lock_nested+0x30/0x40 [ 125.482855] raw_spin_rq_lock_nested+0x1e/0x30 [ 125.482869] task_fork_fair+0x63/0x4d0 [ 125.482885] sched_cgroup_fork+0x3d0/0x540 [ 125.482900] copy_process+0x4183/0x6e20 [ 125.482910] kernel_clone+0xe7/0x890 [ 125.482920] user_mode_thread+0xad/0xf0 [ 125.482930] rest_init+0x24/0x250 [ 125.482943] arch_call_rest_init+0xf/0x14 [ 125.482958] start_kernel+0x4c6/0x4eb [ 125.482969] secondary_startup_64_no_verify+0xe0/0xeb [ 125.482983] [ 125.482983] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 125.482997] _raw_spin_lock_irqsave+0x39/0x60 [ 125.483009] try_to_wake_up+0xab/0x1930 [ 125.483022] up+0x75/0xb0 [ 125.483038] __up_console_sem+0x6e/0x80 [ 125.483053] console_unlock+0x46a/0x590 [ 125.483071] vt_ioctl+0x2822/0x2ca0 [ 125.483085] tty_ioctl+0x785/0x16b0 [ 125.483098] __x64_sys_ioctl+0x19a/0x210 [ 125.483114] do_syscall_64+0x3b/0x90 [ 125.483124] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.483138] [ 125.483138] -> #0 ((console_sem).lock){....}-{2:2}: [ 125.483152] __lock_acquire+0x2a02/0x5e70 [ 125.483169] lock_acquire+0x1a2/0x530 [ 125.483184] _raw_spin_lock_irqsave+0x39/0x60 [ 125.483196] down_trylock+0xe/0x70 [ 125.483213] __down_trylock_console_sem+0x3b/0xd0 [ 125.483228] vprintk_emit+0x16b/0x560 [ 125.483245] vprintk+0x84/0xa0 [ 125.483260] _printk+0xba/0xf1 [ 125.483273] report_bug.cold+0x72/0xab [ 125.483283] handle_bug+0x3c/0x70 [ 125.483293] exc_invalid_op+0x14/0x50 [ 125.483304] asm_exc_invalid_op+0x16/0x20 [ 125.483317] group_sched_out.part.0+0x2c7/0x460 [ 125.483328] ctx_sched_out+0x8f1/0xc10 [ 125.483338] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.483351] __schedule+0xedd/0x2470 [ 125.483366] schedule+0xda/0x1b0 [ 125.483380] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.483391] syscall_exit_to_user_mode+0x19/0x40 [ 125.483405] do_syscall_64+0x48/0x90 [ 125.483415] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.483429] [ 125.483429] other info that might help us debug this: [ 125.483429] [ 125.483432] Chain exists of: [ 125.483432] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 125.483432] [ 125.483447] Possible unsafe locking scenario: [ 125.483447] [ 125.483449] CPU0 CPU1 [ 125.483451] ---- ---- [ 125.483454] lock(&ctx->lock); [ 125.483459] lock(&rq->__lock); [ 125.483466] lock(&ctx->lock); [ 125.483472] lock((console_sem).lock); [ 125.483478] [ 125.483478] *** DEADLOCK *** [ 125.483478] [ 125.483480] 2 locks held by syz-executor.3/3833: [ 125.483487] #0: ffff88806cf37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 125.483518] #1: ffff888017582c20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 125.483546] [ 125.483546] stack backtrace: [ 125.483549] CPU: 1 PID: 3833 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220927 #1 [ 125.483562] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.483570] Call Trace: [ 125.483573] [ 125.483577] dump_stack_lvl+0x8b/0xb3 [ 125.483589] check_noncircular+0x263/0x2e0 [ 125.483605] ? format_decode+0x26c/0xb50 [ 125.483623] ? print_circular_bug+0x450/0x450 [ 125.483640] ? enable_ptr_key_workfn+0x20/0x20 [ 125.483658] ? format_decode+0x26c/0xb50 [ 125.483677] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 125.483695] __lock_acquire+0x2a02/0x5e70 [ 125.483717] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 125.483739] lock_acquire+0x1a2/0x530 [ 125.483755] ? down_trylock+0xe/0x70 [ 125.483774] ? lock_release+0x750/0x750 [ 125.483795] ? vprintk+0x84/0xa0 [ 125.483812] _raw_spin_lock_irqsave+0x39/0x60 [ 125.483825] ? down_trylock+0xe/0x70 [ 125.483843] down_trylock+0xe/0x70 [ 125.483860] ? vprintk+0x84/0xa0 [ 125.483877] __down_trylock_console_sem+0x3b/0xd0 [ 125.483894] vprintk_emit+0x16b/0x560 [ 125.483912] vprintk+0x84/0xa0 [ 125.483930] _printk+0xba/0xf1 [ 125.483943] ? record_print_text.cold+0x16/0x16 [ 125.483960] ? report_bug.cold+0x66/0xab [ 125.483971] ? group_sched_out.part.0+0x2c7/0x460 [ 125.483984] report_bug.cold+0x72/0xab [ 125.483996] handle_bug+0x3c/0x70 [ 125.484007] exc_invalid_op+0x14/0x50 [ 125.484018] asm_exc_invalid_op+0x16/0x20 [ 125.484033] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.484046] Code: 5e 41 5f e9 ab a9 ef ff e8 a6 a9 ef ff 65 8b 1d 1b 0f ac 7e 31 ff 89 de e8 46 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 89 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 7d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.484058] RSP: 0018:ffff8880406dfc48 EFLAGS: 00010006 [ 125.484067] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.484074] RDX: ffff88803f36d040 RSI: ffffffff815666b7 RDI: 0000000000000005 [ 125.484082] RBP: ffff888040b50000 R08: 0000000000000005 R09: 0000000000000001 [ 125.484089] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff888017582c00 [ 125.484097] R13: ffff88806cf3d140 R14: ffffffff8547cf80 R15: 0000000000000002 [ 125.484108] ? group_sched_out.part.0+0x2c7/0x460 [ 125.484122] ? group_sched_out.part.0+0x2c7/0x460 [ 125.484135] ctx_sched_out+0x8f1/0xc10 [ 125.484149] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.484165] ? lock_is_held_type+0xd7/0x130 [ 125.484180] ? __perf_cgroup_move+0x160/0x160 [ 125.484192] ? set_next_entity+0x304/0x550 [ 125.484210] ? update_curr+0x267/0x740 [ 125.484228] ? lock_is_held_type+0xd7/0x130 [ 125.484243] __schedule+0xedd/0x2470 [ 125.484262] ? io_schedule_timeout+0x150/0x150 [ 125.484280] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.484301] schedule+0xda/0x1b0 [ 125.484317] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.484330] syscall_exit_to_user_mode+0x19/0x40 [ 125.484345] do_syscall_64+0x48/0x90 [ 125.484356] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.484371] RIP: 0033:0x7f78ce413b19 [ 125.484379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.484390] RSP: 002b:00007f78cb989218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.484401] RAX: 0000000000000001 RBX: 00007f78ce526f68 RCX: 00007f78ce413b19 [ 125.484408] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f78ce526f6c [ 125.484416] RBP: 00007f78ce526f60 R08: 000000000000000e R09: 0000000000000000 [ 125.484423] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f78ce526f6c [ 125.484430] R13: 00007ffc8e7b8c0f R14: 00007f78cb989300 R15: 0000000000022000 [ 125.484443] [ 125.540458] WARNING: CPU: 1 PID: 3833 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 125.541162] Modules linked in: [ 125.541406] CPU: 1 PID: 3833 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220927 #1 [ 125.542010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 125.542877] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 125.543287] Code: 5e 41 5f e9 ab a9 ef ff e8 a6 a9 ef ff 65 8b 1d 1b 0f ac 7e 31 ff 89 de e8 46 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 89 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 7d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 125.544647] RSP: 0018:ffff8880406dfc48 EFLAGS: 00010006 [ 125.545047] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 125.545581] RDX: ffff88803f36d040 RSI: ffffffff815666b7 RDI: 0000000000000005 [ 125.546128] RBP: ffff888040b50000 R08: 0000000000000005 R09: 0000000000000001 [ 125.546655] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff888017582c00 [ 125.547220] R13: ffff88806cf3d140 R14: ffffffff8547cf80 R15: 0000000000000002 [ 125.547766] FS: 00007f78cb989700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 125.548363] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 125.548788] CR2: 00005581738194c8 CR3: 000000003fac8000 CR4: 0000000000350ee0 [ 125.549317] Call Trace: [ 125.549514] [ 125.549691] ctx_sched_out+0x8f1/0xc10 [ 125.549990] __perf_event_task_sched_out+0x6d0/0x18d0 [ 125.550395] ? lock_is_held_type+0xd7/0x130 [ 125.550748] ? __perf_cgroup_move+0x160/0x160 [ 125.551090] ? set_next_entity+0x304/0x550 [ 125.551432] ? update_curr+0x267/0x740 [ 125.551747] ? lock_is_held_type+0xd7/0x130 [ 125.552101] __schedule+0xedd/0x2470 [ 125.552401] ? io_schedule_timeout+0x150/0x150 [ 125.552761] ? rcu_read_lock_sched_held+0x3e/0x80 [ 125.553158] schedule+0xda/0x1b0 [ 125.553431] exit_to_user_mode_prepare+0x114/0x1a0 [ 125.553805] syscall_exit_to_user_mode+0x19/0x40 [ 125.554172] do_syscall_64+0x48/0x90 [ 125.554468] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 125.554872] RIP: 0033:0x7f78ce413b19 [ 125.555166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 125.556511] RSP: 002b:00007f78cb989218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 125.557098] RAX: 0000000000000001 RBX: 00007f78ce526f68 RCX: 00007f78ce413b19 [ 125.557625] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f78ce526f6c [ 125.558161] RBP: 00007f78ce526f60 R08: 000000000000000e R09: 0000000000000000 [ 125.558710] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f78ce526f6c [ 125.559247] R13: 00007ffc8e7b8c0f R14: 00007f78cb989300 R15: 0000000000022000 [ 125.559806] [ 125.559981] irq event stamp: 724 [ 125.560239] hardirqs last enabled at (723): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 125.560950] hardirqs last disabled at (724): [] __schedule+0x1225/0x2470 [ 125.561551] softirqs last enabled at (610): [] __irq_exit_rcu+0x11b/0x180 [ 125.562199] softirqs last disabled at (471): [] __irq_exit_rcu+0x11b/0x180 [ 125.562858] ---[ end trace 0000000000000000 ]--- 10:16:01 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) r1 = syz_open_dev$ptys(0xc, 0x3, 0x0) dup(r1) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r2, &(0x7f00000000c0)='9', 0x1, 0x0) 10:16:01 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc042, 0x0) r1 = syz_open_dev$ptys(0xc, 0x3, 0x0) dup(r1) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x2, 0x0) pwrite64(r2, &(0x7f00000000c0)='9', 0x1, 0x0) 10:16:01 executing program 6: syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x100, @ipv4={'\x00', '\xff\xff', @broadcast}}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4) setsockopt$inet6_opts(r1, 0x29, 0x37, 0x0, 0x0) sendmmsg$inet6(r1, &(0x7f0000002fc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) r2 = dup(r0) setsockopt$inet6_opts(r2, 0x29, 0x0, 0x0, 0x0) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e23, 0xa67, @mcast2, 0x1000}, 0x1c) [ 125.859562] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 125.924359] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 10:16:01 executing program 6: r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8040, 0x0) openat(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) renameat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000240)) utimensat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setxattr$trusted_overlay_opaque(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380), 0x2, 0x1) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x185002, 0x0) perf_event_open(&(0x7f0000000340)={0x4, 0x80, 0x0, 0x0, 0x5, 0x8, 0x0, 0x8, 0x28, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_config_ext={0x8, 0xffffffffffffffff}, 0x90c, 0x7fff, 0xffffffff, 0x6, 0x7, 0x4b8, 0x11e, 0x0, 0x4, 0x0, 0x3f}, 0x0, 0x0, r1, 0x9) utimensat(r1, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={{}, {0x0, 0x2710}}, 0x100) syz_genetlink_get_family_id$nbd(&(0x7f0000000400), 0xffffffffffffffff) creat(&(0x7f0000000440)='./file0\x00', 0x0) [ 132.236152] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 134.417723] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 134.419166] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 134.421254] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 134.423943] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 134.425794] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 134.427135] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 134.431483] Bluetooth: hci0: HCI_REQ-0x0c1a VM DIAGNOSIS: 10:16:01 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffff88806ce33b60 RCX=ffffffff84250bbc RDX=ffffed100d9c676d RSI=0000000000000003 RDI=0000000000000000 RBP=ffffffff849ec700 RSP=ffff888040237a80 R8 =0000000000000000 R9 =ffff88806ce33b63 R10=ffffed100d9c676c R11=0000000000000001 R12=0000000000000000 R13=ffffffff848ccb20 R14=ffff888008524578 R15=0000000000000001 RIP=ffffffff84250f6e RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 00000000 00000000 DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555571e2400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f10e65b8360 CR3=000000000e9aa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f10e65917c0 00007f10e65917c8 YMM02=0000000000000000 0000000000000000 00007f10e65917e0 00007f10e65917c0 YMM03=0000000000000000 0000000000000000 00007f10e65917c8 00007f10e65917c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba0b1 RDI=ffffffff8765a980 RBP=ffffffff8765a940 RSP=ffff8880406df690 R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=000000000000000d R13=ffffffff8765a940 R14=0000000000000010 R15=ffffffff823ba0a0 RIP=ffffffff823ba109 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f78cb989700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00005581738194c8 CR3=000000003fac8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f78ce4fa7c0 00007f78ce4fa7c8 YMM02=0000000000000000 0000000000000000 00007f78ce4fa7e0 00007f78ce4fa7c0 YMM03=0000000000000000 0000000000000000 00007f78ce4fa7c8 00007f78ce4fa7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000