Warning: Permanently added '[localhost]:4446' (ECDSA) to the list of known hosts. 2022/09/30 05:23:19 fuzzer started 2022/09/30 05:23:19 dialing manager at localhost:40535 syzkaller login: [ 43.988305] cgroup: Unknown subsys name 'net' [ 44.132765] cgroup: Unknown subsys name 'rlimit' 2022/09/30 05:23:34 syscalls: 2215 2022/09/30 05:23:34 code coverage: enabled 2022/09/30 05:23:34 comparison tracing: enabled 2022/09/30 05:23:34 extra coverage: enabled 2022/09/30 05:23:34 setuid sandbox: enabled 2022/09/30 05:23:34 namespace sandbox: enabled 2022/09/30 05:23:34 Android sandbox: enabled 2022/09/30 05:23:34 fault injection: enabled 2022/09/30 05:23:34 leak checking: enabled 2022/09/30 05:23:34 net packet injection: enabled 2022/09/30 05:23:34 net device setup: enabled 2022/09/30 05:23:34 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 05:23:34 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 05:23:34 USB emulation: enabled 2022/09/30 05:23:34 hci packet injection: enabled 2022/09/30 05:23:34 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 05:23:34 802.15.4 emulation: enabled 2022/09/30 05:23:34 fetching corpus: 50, signal 26066/27808 (executing program) 2022/09/30 05:23:34 fetching corpus: 100, signal 38998/42229 (executing program) 2022/09/30 05:23:34 fetching corpus: 150, signal 49191/53741 (executing program) 2022/09/30 05:23:34 fetching corpus: 200, signal 55897/61678 (executing program) 2022/09/30 05:23:34 fetching corpus: 250, signal 59749/66800 (executing program) 2022/09/30 05:23:34 fetching corpus: 300, signal 63831/72064 (executing program) 2022/09/30 05:23:34 fetching corpus: 350, signal 67241/76570 (executing program) 2022/09/30 05:23:34 fetching corpus: 400, signal 70257/80653 (executing program) 2022/09/30 05:23:35 fetching corpus: 450, signal 73026/84468 (executing program) 2022/09/30 05:23:35 fetching corpus: 500, signal 75843/88280 (executing program) 2022/09/30 05:23:35 fetching corpus: 550, signal 82762/95703 (executing program) 2022/09/30 05:23:35 fetching corpus: 600, signal 85824/99651 (executing program) 2022/09/30 05:23:35 fetching corpus: 650, signal 88409/103031 (executing program) 2022/09/30 05:23:35 fetching corpus: 700, signal 91033/106417 (executing program) 2022/09/30 05:23:35 fetching corpus: 750, signal 93198/109361 (executing program) 2022/09/30 05:23:35 fetching corpus: 800, signal 96574/113326 (executing program) 2022/09/30 05:23:35 fetching corpus: 850, signal 98876/116274 (executing program) 2022/09/30 05:23:36 fetching corpus: 900, signal 100703/118771 (executing program) 2022/09/30 05:23:36 fetching corpus: 950, signal 102955/121605 (executing program) 2022/09/30 05:23:36 fetching corpus: 1000, signal 103999/123452 (executing program) 2022/09/30 05:23:36 fetching corpus: 1050, signal 106331/126300 (executing program) 2022/09/30 05:23:36 fetching corpus: 1100, signal 109698/129909 (executing program) 2022/09/30 05:23:36 fetching corpus: 1150, signal 111253/131977 (executing program) 2022/09/30 05:23:36 fetching corpus: 1200, signal 113033/134248 (executing program) 2022/09/30 05:23:36 fetching corpus: 1250, signal 115149/136763 (executing program) 2022/09/30 05:23:37 fetching corpus: 1300, signal 116926/138991 (executing program) 2022/09/30 05:23:37 fetching corpus: 1350, signal 118924/141319 (executing program) 2022/09/30 05:23:37 fetching corpus: 1400, signal 120920/143631 (executing program) 2022/09/30 05:23:37 fetching corpus: 1450, signal 121920/145156 (executing program) 2022/09/30 05:23:37 fetching corpus: 1500, signal 123652/147171 (executing program) 2022/09/30 05:23:37 fetching corpus: 1550, signal 125290/149134 (executing program) 2022/09/30 05:23:37 fetching corpus: 1600, signal 126722/150871 (executing program) 2022/09/30 05:23:37 fetching corpus: 1650, signal 128428/152758 (executing program) 2022/09/30 05:23:37 fetching corpus: 1700, signal 131207/155375 (executing program) 2022/09/30 05:23:38 fetching corpus: 1750, signal 132297/156809 (executing program) 2022/09/30 05:23:38 fetching corpus: 1800, signal 133492/158289 (executing program) 2022/09/30 05:23:38 fetching corpus: 1850, signal 134410/159575 (executing program) 2022/09/30 05:23:38 fetching corpus: 1900, signal 135858/161122 (executing program) 2022/09/30 05:23:38 fetching corpus: 1950, signal 137131/162565 (executing program) 2022/09/30 05:23:38 fetching corpus: 2000, signal 138571/164119 (executing program) 2022/09/30 05:23:38 fetching corpus: 2050, signal 139598/165396 (executing program) 2022/09/30 05:23:38 fetching corpus: 2100, signal 140187/166384 (executing program) 2022/09/30 05:23:38 fetching corpus: 2150, signal 141406/167697 (executing program) 2022/09/30 05:23:38 fetching corpus: 2200, signal 143411/169555 (executing program) 2022/09/30 05:23:39 fetching corpus: 2250, signal 145098/171221 (executing program) 2022/09/30 05:23:39 fetching corpus: 2300, signal 145986/172288 (executing program) 2022/09/30 05:23:39 fetching corpus: 2350, signal 147003/173451 (executing program) 2022/09/30 05:23:39 fetching corpus: 2400, signal 148402/174702 (executing program) 2022/09/30 05:23:39 fetching corpus: 2450, signal 149568/175812 (executing program) 2022/09/30 05:23:39 fetching corpus: 2500, signal 150348/176773 (executing program) 2022/09/30 05:23:39 fetching corpus: 2550, signal 151480/177838 (executing program) 2022/09/30 05:23:39 fetching corpus: 2600, signal 152401/178794 (executing program) 2022/09/30 05:23:40 fetching corpus: 2650, signal 153746/179908 (executing program) 2022/09/30 05:23:40 fetching corpus: 2700, signal 154815/180900 (executing program) 2022/09/30 05:23:40 fetching corpus: 2750, signal 155790/181833 (executing program) 2022/09/30 05:23:40 fetching corpus: 2800, signal 156450/182589 (executing program) 2022/09/30 05:23:40 fetching corpus: 2850, signal 157265/183423 (executing program) 2022/09/30 05:23:40 fetching corpus: 2900, signal 158815/184535 (executing program) 2022/09/30 05:23:40 fetching corpus: 2950, signal 159691/185539 (executing program) 2022/09/30 05:23:40 fetching corpus: 3000, signal 160486/186304 (executing program) 2022/09/30 05:23:40 fetching corpus: 3050, signal 163330/187994 (executing program) 2022/09/30 05:23:41 fetching corpus: 3100, signal 165060/189042 (executing program) 2022/09/30 05:23:41 fetching corpus: 3150, signal 165776/189684 (executing program) 2022/09/30 05:23:41 fetching corpus: 3200, signal 166947/190536 (executing program) 2022/09/30 05:23:41 fetching corpus: 3250, signal 167919/191211 (executing program) 2022/09/30 05:23:41 fetching corpus: 3300, signal 169379/192079 (executing program) 2022/09/30 05:23:41 fetching corpus: 3350, signal 169953/192640 (executing program) 2022/09/30 05:23:41 fetching corpus: 3400, signal 171200/193390 (executing program) 2022/09/30 05:23:41 fetching corpus: 3450, signal 171772/193895 (executing program) 2022/09/30 05:23:42 fetching corpus: 3500, signal 172294/194407 (executing program) 2022/09/30 05:23:42 fetching corpus: 3550, signal 172958/194959 (executing program) 2022/09/30 05:23:42 fetching corpus: 3600, signal 173594/195451 (executing program) 2022/09/30 05:23:42 fetching corpus: 3650, signal 174494/196052 (executing program) 2022/09/30 05:23:42 fetching corpus: 3700, signal 175327/196568 (executing program) 2022/09/30 05:23:42 fetching corpus: 3750, signal 175966/196991 (executing program) 2022/09/30 05:23:42 fetching corpus: 3800, signal 176835/197507 (executing program) 2022/09/30 05:23:42 fetching corpus: 3850, signal 177366/197866 (executing program) 2022/09/30 05:23:42 fetching corpus: 3900, signal 178297/198452 (executing program) 2022/09/30 05:23:43 fetching corpus: 3950, signal 178681/198769 (executing program) 2022/09/30 05:23:43 fetching corpus: 4000, signal 179483/199190 (executing program) 2022/09/30 05:23:43 fetching corpus: 4050, signal 180129/199551 (executing program) 2022/09/30 05:23:43 fetching corpus: 4100, signal 181072/200004 (executing program) 2022/09/30 05:23:43 fetching corpus: 4150, signal 182384/200477 (executing program) 2022/09/30 05:23:43 fetching corpus: 4200, signal 182908/200775 (executing program) 2022/09/30 05:23:43 fetching corpus: 4250, signal 183512/201083 (executing program) 2022/09/30 05:23:43 fetching corpus: 4300, signal 184617/201556 (executing program) 2022/09/30 05:23:44 fetching corpus: 4350, signal 185348/201860 (executing program) 2022/09/30 05:23:44 fetching corpus: 4400, signal 185740/202105 (executing program) 2022/09/30 05:23:44 fetching corpus: 4450, signal 186467/202387 (executing program) 2022/09/30 05:23:44 fetching corpus: 4500, signal 187003/202655 (executing program) 2022/09/30 05:23:44 fetching corpus: 4550, signal 187606/202882 (executing program) 2022/09/30 05:23:44 fetching corpus: 4600, signal 187982/203091 (executing program) 2022/09/30 05:23:44 fetching corpus: 4650, signal 188436/203280 (executing program) 2022/09/30 05:23:44 fetching corpus: 4700, signal 188927/203457 (executing program) 2022/09/30 05:23:45 fetching corpus: 4750, signal 189578/203647 (executing program) 2022/09/30 05:23:45 fetching corpus: 4800, signal 190078/203801 (executing program) 2022/09/30 05:23:45 fetching corpus: 4850, signal 190549/203955 (executing program) 2022/09/30 05:23:45 fetching corpus: 4871, signal 190739/204086 (executing program) 2022/09/30 05:23:45 fetching corpus: 4871, signal 190739/204224 (executing program) 2022/09/30 05:23:45 fetching corpus: 4871, signal 190739/204355 (executing program) 2022/09/30 05:23:45 fetching corpus: 4871, signal 190739/204383 (executing program) 2022/09/30 05:23:45 fetching corpus: 4871, signal 190739/204383 (executing program) 2022/09/30 05:23:48 starting 8 fuzzer processes 05:23:48 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xa001, 0x0) epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, 0xffffffffffffffff) r1 = syz_mount_image$nfs4(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, 0x9, &(0x7f00000006c0)=[{&(0x7f00000000c0)="1b1ff240d61b9fa5b1b75c583fba4cfd06e0403dcd86e7de3eb875763f932101f101e2e18a5c22caf5c304aff7162e96065ed34aa374110528598dbf0b8ef55d585f75d06b53a480d40325bbdfdbb503141159887ced090a40994f18ad9346947e63f20e", 0x64, 0x80000000}, {&(0x7f0000000140)="255c41225b591c735c89d6ba17c390207106d479128f89867ec671ff605606e8483e559caf79fd6a8d882c3c55b311b84b6ab14c028c35b0db2e7ece5d202fa796f9ad2e7896bb6ee2f34b01c3a77f35dcd66752c7c4868c7fde0da19942c551e7ecea841055dd25d3acae169ce6a1457011fd006869d4ee5d28f6421ce269a3df0c76de9a728ac35055f6c9a497b093f00e683975955b4c5a55fd7f4aa2bda6c39a8b797f5897575da4afa915987be3bce4f6c6c424a3d052649465d585db75d2d00bf8736d6662f57b75b2ba857b6bd6199ef05c4c6d80bed5683ebb", 0xdd, 0x4}, {&(0x7f0000000240)="d799f2eceb63be9688404522ed98af1acd9f31", 0x13, 0x7}, {&(0x7f0000000280)="4d173976d6a7c66bbd70c4bbbc29afafd91932303d4ddd7c2931c4a813198bbb6cea014ea5a48bd2ccb4bda4bec5d4fba6cfe834df10b9cab58aed3a4c3d7045221de2691bb57ed6b600dbb3f6709f5499c4c58e23fcb74effd0298acf21658125dd750b395c24e5877ab9d105f8d1b6f6fd934b4c949c87c1c8c62cee57eed20087990fa736904b2f04d2bbec9d01c4d0a668167e39f75da4c839c1e4a6b943de5b3599108f89f55273eea725b1c6add2e5094f61e53a261e2ce5", 0xbb, 0x6}, {&(0x7f0000000340)="efc666ef77492629f5ff19d6367826b95f2dc787320420e467", 0x19, 0x3f}, {&(0x7f0000000380)="8b262bd333997793025dfd1929bf6dc168ea05176f0d8c901576f2e080ff6eeb9e905b0a6db7f71f89fad519fbe0393b67d889a7f61a", 0x36, 0xf4a}, {&(0x7f00000003c0)="379c21271f9e43c9d16ca74ac7fbe05ea704195b3e20583e79c2eb8fdb8184ec49f0694146a394f77ae68c88f2b66476e87fa88cc0729b5e6458308e31bf2006b07e55d3c15b590045e6e4f5a296e349844becae6b05402bd0664fd89e3f3be8e8fc0d99f24e50f368430aff8b4cf14b5caac2c5fb0b3250894abe306b67a01644f6d0b2cb86bb85c2a84e3878bb319cebd7540f82d151fb49bef38bfeb9d2f3d4723b184cf2d8944651181081132becc7cf594b388451ec4235b9a01c06c6d50c62f9bdc870395dbf", 0xc9, 0x9}, {&(0x7f00000004c0)="6f01bc87208dee75134d00babfed5af93ae7439d6ecdb13c3a2a0e6dc43ce364b163b5ffdbbf1c8b855f80b08fceb14533db45f009ec9508416c04aaca7e09e6ba93e98ea8de74ab088dae0b742348ab717e9d0b48298417d4010230b1c819340716909b5187eed6581ea2daa02c2c3b1daeea65fd842d5788130809a764ef5d538efb7f0586036c19d0a251e0a3e589ee0f1eb86229aafff0a462f5a786731af8a1c6c324df899d31d9882d1d6db50c00da8179c5d6bf29c0299f57f430f5c312fc45cf82f4118aa627297316eec66b", 0xd0, 0x401}, {&(0x7f00000005c0)="1b74e98891051f8870f9fce0131ec6eb342418971b22d223571a89500a3f3d8a43f98946851c440f03bf9e8501311e047961fd7e6cf29e5ff9f60efa0e351326d9fad2a0c93dbcdf740e61ca54fd676ea866b187b3034a5428addb28d0be3562bbd7a76aeefc78cd66df65d470e20f8fb3106e2a32b4940de6671c272071760905a7d8cbe2e4b09577960d19d4ba998dc6e2833020b3b8c46221fd5249a778d12d389dbada679413a755e07f8f13dfd7b671b0f9f02e27fa74b51a1e4850d5d9c01b694cc0018c8d076a5cd9ba6823c1dc343d772c73bd0b62e30d66b9d70483be617be481e39d8ba86741eb60352382f1b7d1", 0xf3, 0x4}], 0x800001, &(0x7f00000007c0)={[{'\\-'}, {}], [{@dont_hash}, {@obj_user}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@uid_gt={'uid>', 0xee00}}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x34, 0x37, 0x0, 0x62, 0x36, 0x37, 0x32], 0x2d, [0x64, 0x39, 0x65, 0x39], 0x2d, [0x65, 0xa, 0x30, 0x34], 0x2d, [0x30, 0x0, 0x38, 0x38], 0x2d, [0x64, 0x37, 0x35, 0x39, 0x33, 0x36, 0x38, 0x62]}}}, {@uid_lt}]}) ioctl$BTRFS_IOC_INO_LOOKUP(r1, 0xd0009412, &(0x7f0000000880)={0x0, 0x9}) pwritev2(r1, &(0x7f0000001b40)=[{&(0x7f0000001880)="58975ecc1597544bdc603c2e02d7e8bbe3025ef892f4586288cc8f8d946c720a2b13b3865dd13c24c40de60690607ad39cfe359455902f22259802a811bc014b760d64c519b8bd368afb5f3506728a343ee8d58c2e490e2713dcfe6fef832659d59e20528cca571820389b999cdf73", 0x6f}, {&(0x7f0000001900)="2ecbd4cd38609324511c1a95665afe5fe2ec53ac1cf227a06996e5aaae5d80af387f36cb2e1befc6c8c87e1c02ee339093b582a3fd9a4703ee8b9191458228166c6d7269d479dc9f5104e784c3233336c5f09fb7474465a5a2", 0x59}, {&(0x7f0000001980)="d30c9a64a9a9072cd31a8eab55b3b957621d8cd76896de2abb5fbedb613003e2bb94a63adf59d9327f9d2a4dbb5ac35ed98ec9548acd7ca437e8aff948b668e4ec014fbe6ccfae2427085b4a8b6ee297e4ce23ff2a7e6a08fd5e09619871724502eaa1392c8840f65f0306473d06ba4924dcf59a", 0x74}, {&(0x7f0000001a00)="cd615d5bc352dc10a6cfa9a1568df3d9f89073a83bf44f632e6cffe958061edc0322cf437d28bf707b112dc43277dbbaaf8b344c5eb0c70d59ead672", 0x3c}, {&(0x7f0000001a40)="a2d851f6c20f09d200b8210fc13f4a4321772e0ea9f8b77ecd8bed162d87d914758d3db939bbd1c300c9d3e8ac5b725e1cf661418e5a2cb2057eaddb8c14619d74f974cbad8c04da6a6602a94049cb484b673f8fb9ca9689142bb0b3c22589ea31fcf226cd686306bc97cd162605b7b4a05dfdd5c4b767d4ee1511d521008e81421deb055712116dfb8f778603aeb4048b7d0f5244a3a6787a71bfb325f7937a9e5051d5dfa2124371072cad3caba84014efcc061e7027be4d91dddbffa615f89835bafb38ad07528b20659d3ef258c05369a5b33b222fbefcac1528400023a38b2e436dd4e569", 0xe7}], 0x5, 0x1ff, 0x7605bd5e, 0x8) r2 = openat(0xffffffffffffffff, &(0x7f0000001bc0)='./file0\x00', 0x8080, 0x36) pipe2$9p(&(0x7f0000001c00)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RFLUSH(r4, &(0x7f0000001c40)={0x7, 0x6d, 0x2}, 0x7) ioctl$FIOCLEX(r3, 0x5451) getdents(r0, &(0x7f0000001c80)=""/129, 0x81) ioctl$BTRFS_IOC_SEND(r2, 0x40489426, &(0x7f0000001d80)={{r4}, 0x5, &(0x7f0000001d40)=[0xffffffffffffff01, 0x2, 0xfffffffffffffffb, 0x4, 0x9], 0x9, 0x2, [0x1, 0xfffffffffffffff9, 0x3, 0x3f]}) ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f0000001e00)) ioctl$TIOCGRS485(r0, 0x542e, &(0x7f0000001e40)) r5 = accept$unix(r0, 0x0, &(0x7f0000001e80)) pidfd_getfd(r0, r5, 0x0) ioctl$AUTOFS_IOC_SETTIMEOUT(r4, 0x80049367, &(0x7f0000001ec0)=0x5) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000001f00)={{0x1, 0x1, 0x18, r2, {0x1}}, '\x00'}) fstat(r6, &(0x7f0000001f40)) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000001fc0)={{0x1, 0x1, 0x18, r1, @in_args={0x1}}, './file0\x00'}) ioctl$CDROMREADALL(r7, 0x5318, &(0x7f0000002000)) 05:23:48 executing program 1: ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0xab1, 0x9, 0x3}) ioctl$FITHAW(r0, 0xc0045878) fcntl$addseals(r0, 0x409, 0x2) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000040)=0x4) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000080)=0x4) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r0, 0x8008f513, &(0x7f00000000c0)) r1 = socket$inet(0x2, 0xdec7e3919896cd3c, 0x4) pwrite64(r1, &(0x7f0000000100)="d1fb009fbb468d5528385643b28b6e1bf4e7145bc783ef901ef865f7d16bf3f47b8b9d0bdfbbb0de6bf24d1c2cabf5dd9759d57a0462613ff1725a735ac42fc92b5d1cf678cd3c0ccc58de4648222204ce3f08b5cc6778bd5ab3f14bd9b1cab09914d7f36efdec257e", 0x69, 0x7) r2 = openat(r0, &(0x7f0000000180)='./file0\x00', 0x40100, 0x14) ioctl$PTP_PEROUT_REQUEST2(r2, 0x40383d0c, &(0x7f00000001c0)={{0x4, 0xfffffff8}, {0x3, 0x7ff}, 0x39, 0x1}) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f0000000200)={{0x2, 0x4e23, @local}, {0x0, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1d}}, 0x2, {0x2, 0x4e23, @private=0xa010100}, 'macsec0\x00'}) read$ptp(r2, &(0x7f0000000280)=""/41, 0x29) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {0x6}}, './file0\x00'}) setsockopt$IPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x41, &(0x7f0000000300)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68) ioctl$sock_inet_SIOCDARP(r2, 0x8953, &(0x7f0000000380)={{0x2, 0x4e22, @remote}, {0x1, @link_local}, 0x0, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x2e}}, 'batadv_slave_1\x00'}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000400)={{0x1, 0x1, 0x18, r1, {r2}}, './file0\x00'}) accept$unix(r4, 0x0, &(0x7f0000000440)) lseek(r4, 0x7, 0x2) r6 = signalfd4(r5, &(0x7f0000000480)={[0x7]}, 0x8, 0x101800) sendmsg$NFULNL_MSG_CONFIG(r6, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x6c, 0x1, 0x4, 0x801, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x7f}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}, @NFULA_CFG_MODE={0xa, 0x2, {0x0, 0x1}}, @NFULA_CFG_MODE={0xa, 0x2, {0x0, 0x2}}, @NFULA_CFG_MODE={0xa, 0x2, {0x6, 0x1}}, @NFULA_CFG_MODE={0xa, 0x2, {0x4, 0x2}}, @NFULA_CFG_MODE={0xa, 0x2, {0x7, 0x2}}, @NFULA_CFG_MODE={0xa, 0x2, {0xfffffffb, 0x2}}]}, 0x6c}, 0x1, 0x0, 0x0, 0xc0800}, 0x40000c1) 05:23:48 executing program 2: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000080)=""/110, 0x6e}, {&(0x7f0000000100)=""/253, 0xfd}, {&(0x7f0000000200)=""/107, 0x6b}, {&(0x7f0000000280)=""/10, 0xa}, {&(0x7f00000002c0)=""/215, 0xd7}], 0x5, &(0x7f0000000440)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x118}, 0x80010142) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x4, 0x3f, 0x53, 0x3f, 0x0, 0x4, 0x8100, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_config_ext={0xa4, 0x7}, 0x40000, 0x5469, 0x0, 0x5, 0x7c7a, 0x5, 0xf1d, 0x0, 0x7, 0x0, 0x7}, 0x0, 0x2, r3, 0x3) r8 = signalfd(r6, &(0x7f00000005c0)={[0x7ff]}, 0x8) r9 = fcntl$getown(0xffffffffffffffff, 0x9) r10 = openat$full(0xffffffffffffff9c, &(0x7f00000006c0), 0x1a100, 0x0) perf_event_open(&(0x7f0000000640)={0x0, 0x80, 0x0, 0x0, 0x17, 0xe2, 0x0, 0x4, 0x100, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000000600), 0x5}, 0x2, 0x7, 0x7ff, 0x1, 0x4, 0x7fff, 0x80, 0x0, 0x0, 0x0, 0xb48}, r9, 0x7, r10, 0x2) mount$9p_fd(0x0, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740), 0x24002, &(0x7f0000000780)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@debug={'debug', 0x3d, 0x3}}, {@privport}, {@nodevmap}, {@aname={'aname', 0x3d, '/dev/full\x00'}}], [{@smackfshat={'smackfshat', 0x3d, '/dev/full\x00'}}, {@smackfshat={'smackfshat', 0x3d, '-'}}, {@obj_user={'obj_user', 0x3d, '{@'}}, {@pcr={'pcr', 0x3d, 0x14}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@smackfsdef={'smackfsdef', 0x3d, '}'}}]}}) pipe2(&(0x7f0000000880), 0x0) perf_event_open(&(0x7f0000000900)={0x1, 0x80, 0x1, 0x2, 0x5, 0xc7, 0x0, 0x7, 0xb29a97d46586f59d, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={&(0x7f00000008c0), 0x9}, 0x5a409, 0x8, 0x5, 0x5, 0xb66, 0x401, 0x6, 0x0, 0x80000000, 0x0, 0x101}, r1, 0xb, 0xffffffffffffffff, 0x8) r11 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000a00), 0x800, 0x0) perf_event_open(&(0x7f0000000980)={0x1, 0x80, 0x0, 0x3, 0x0, 0x3, 0x0, 0x97b, 0x41600, 0x4, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x7ff, 0x1, @perf_config_ext={0x6, 0xe3}, 0x104, 0x1, 0x7, 0x1, 0x9d1, 0x0, 0x1000, 0x0, 0x8, 0x0, 0x5}, r9, 0x5, r11, 0x2) r12 = openat$null(0xffffffffffffff9c, &(0x7f0000000a40), 0x400080, 0x0) signalfd(r12, &(0x7f0000000a80)={[0x4]}, 0x8) signalfd4(r8, &(0x7f0000000ac0)={[0x2]}, 0x8, 0x800) fcntl$getownex(r7, 0x10, &(0x7f0000000bc0)={0x0, 0x0}) r14 = syz_io_uring_complete(0x0) perf_event_open(&(0x7f0000000b40)={0x4, 0x80, 0x7f, 0xcf, 0x8, 0x8, 0x0, 0x4ee7, 0x2, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x7, @perf_bp={&(0x7f0000000b00), 0x6}, 0x200, 0xffff, 0x7f, 0x3, 0x2, 0x3, 0x141e, 0x0, 0x10000, 0x0, 0x800}, r13, 0xffffffffffffffff, r14, 0xa) r15 = getpgrp(r9) perf_event_open(&(0x7f0000000c40)={0x0, 0x80, 0x80, 0x7, 0x5, 0xe1, 0x0, 0x2, 0x48209, 0xc, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, @perf_bp={&(0x7f0000000c00), 0x2}, 0x1004, 0x9, 0x6, 0x4, 0x20, 0x7, 0x6, 0x0, 0x20, 0x0, 0x6}, r15, 0xa, r4, 0x8) openat(0xffffffffffffffff, &(0x7f0000000cc0)='./file0\x00', 0x10000, 0x58) 05:23:48 executing program 3: r0 = dup(0xffffffffffffffff) ioctl$KIOCSOUND(r0, 0x4b2f, 0x800) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x9b, @multicast1, 0x4e22, 0x3, 'ovf\x00', 0x2, 0x8000, 0xf}, 0x2c) fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000040)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_READ=@pass_buffer={0x16, 0x1, 0x0, @fd_index=0x8, 0x7f, &(0x7f0000000080)=""/163, 0xa3}, 0x1b) ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000180)={0x8, 0x5, 0x1, 0x2, 0x5, [{0x401, 0x9, 0x5, '\x00', 0x40a}, {0x1f, 0x0, 0x80000000, '\x00', 0x4}, {0xff, 0x7ff, 0x1, '\x00', 0x2400}, {0x8, 0x5, 0xdea, '\x00', 0x2683}, {0x2e, 0xfffffffffffffffe, 0x6, '\x00', 0x2600}]}) r1 = signalfd(r0, &(0x7f0000000740)={[0x5]}, 0x8) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000800)={&(0x7f0000000780)={0x5c, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7fffffff}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0x8, 0x1, r0}, {0x8, 0x1, r1}, {0x8, 0x1, r0}]}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x3}, @NBD_ATTR_SOCKETS={0xc, 0x7, 0x0, 0x1, [{0x8, 0x1, r0}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x40084}, 0x0) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000880)={'veth1_to_hsr\x00'}) ioctl$TIOCGISO7816(r0, 0x80285442, &(0x7f00000008c0)) ppoll(&(0x7f0000000900)=[{r0, 0x80}], 0x1, &(0x7f0000000940), &(0x7f0000000980)={[0x2]}, 0x8) ioctl$TIOCGICOUNT(r0, 0x545d, 0x0) r2 = getpgrp(0xffffffffffffffff) r3 = perf_event_open(&(0x7f00000009c0)={0x4, 0x80, 0x0, 0x20, 0x5, 0x8, 0x0, 0x5, 0x8600, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x2, @perf_config_ext={0x100000001, 0x6}, 0x3000, 0x401, 0x9, 0x2, 0x5, 0x8, 0x5, 0x0, 0x1b, 0x0, 0xd6}, r2, 0xe, 0xffffffffffffffff, 0x9) r4 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x4) ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000a40)={{0x1, 0x1, 0x18, r4, {0x216f}}, './file0\x00'}) ioctl$FIGETBSZ(r3, 0x2, &(0x7f0000000a80)) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0x5, &(0x7f0000000ac0)=0x3, 0x4) ioctl$TIOCSRS485(r0, 0x542f, &(0x7f0000000b00)={0x630a486d, 0xfff, 0x69d}) ioctl$VT_GETSTATE(r5, 0x5603, &(0x7f0000000b40)={0x6, 0x7, 0x5}) [ 72.733744] audit: type=1400 audit(1664515428.341:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 05:23:48 executing program 4: ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000000)={0x0, 0x0}) get_robust_list(r0, &(0x7f00000001c0)=&(0x7f0000000180)={&(0x7f00000000c0)={&(0x7f0000000080)}, 0x0, &(0x7f0000000140)={&(0x7f0000000100)}}, &(0x7f0000000200)=0x18) r1 = syz_io_uring_complete(0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000240)) getsockopt$inet6_int(r1, 0x29, 0x24, &(0x7f00000002c0), &(0x7f0000000300)=0x4) fallocate(r1, 0x10, 0x0, 0x0) ioctl$RTC_AIE_OFF(r1, 0x7002) ioctl$RTC_WKALM_RD(r1, 0x80287010, &(0x7f0000000340)) ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000003c0)={0x1, &(0x7f0000000380)=[{0x8001, 0xff, 0x6, 0xe928}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000400)) ioctl$BTRFS_IOC_BALANCE_CTL(0xffffffffffffffff, 0x40049421, 0x2) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000480)) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000500)) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000580), 0x8000, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000005c0)={'wlan1\x00'}) mount(&(0x7f0000000600)=@nullb, &(0x7f0000000640)='\x00', &(0x7f0000000680)='hugetlbfs\x00', 0x100040, &(0x7f00000006c0)='\x00') read$ptp(r1, &(0x7f0000000700)=""/80, 0x50) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r3, 0xc018937d, &(0x7f0000000780)={{0x1, 0x1, 0x18, r1, {0x80000001}}, './file0\x00'}) mount(&(0x7f00000007c0)=@filename='./file0\x00', &(0x7f0000000800)='./file0\x00', &(0x7f0000000840)='pipefs\x00', 0x8000, &(0x7f0000000880)=')\x00') 05:23:48 executing program 5: ioctl$SNDRV_TIMER_IOCTL_GINFO(0xffffffffffffffff, 0xc0f85403, &(0x7f0000000000)={{0x0, 0x3, 0x200, 0x0, 0x78000000}, 0xa731, 0x7, 'id0\x00', 'timer0\x00', 0x0, 0x101, 0x8, 0x92, 0x80000001}) ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000100)={{0x2, 0x0, 0x11, 0x2, 0x3}}) ioctl$SNDRV_TIMER_IOCTL_STATUS32(0xffffffffffffffff, 0x80585414, &(0x7f0000000140)) r0 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f00000001c0)={{0xfffffffffffffffd, 0x3, 0x5, 0x2, 0x8000}, 0x4, 0x100000000, 0x4}) ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f0000000240)) clone3(&(0x7f0000001440)={0x10800000, &(0x7f0000000300), &(0x7f0000000340)=0x0, &(0x7f0000000380), {0x25}, &(0x7f00000003c0)=""/4096, 0x1000, &(0x7f00000013c0)=""/55, &(0x7f0000001400)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x7, {r0}}, 0x58) r2 = perf_event_open(&(0x7f0000000280)={0x2, 0x80, 0x1, 0x5, 0x5, 0x40, 0x0, 0x4, 0xa0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1f, 0x4, @perf_config_ext={0x1ff, 0xfffffffffffffe01}, 0xa, 0x30f32c96, 0xff, 0x5, 0x9, 0x3, 0x7f, 0x0, 0x101, 0x0, 0x401}, r1, 0xe, r0, 0x2) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000014c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EXT4_IOC_CHECKPOINT(r4, 0x4004662b, &(0x7f0000001500)=0x6) close_range(r3, r2, 0x0) r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000001540)='./binderfs/binder0\x00', 0x800, 0x0) close_range(r0, r5, 0x2) sendmsg$NFNL_MSG_ACCT_GET(r0, &(0x7f0000001680)={&(0x7f0000001580)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001640)={&(0x7f00000015c0)={0x5c, 0x1, 0x7, 0x101, 0x0, 0x0, {0x0, 0x0, 0x5}, [@NFACCT_FILTER={0x3c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x8}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xe62}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x7}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0xfffffff9}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x60}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x5}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x81}]}, @NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x9}]}]}, 0x5c}}, 0x24008c02) r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000016c0), 0x400441, 0x0) recvfrom(r6, &(0x7f0000001700)=""/147, 0x93, 0x0, &(0x7f00000017c0)=@ieee802154, 0x80) ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f0000001840)={0x1000, 0x6}) sendmsg$SMC_PNETID_DEL(r6, &(0x7f0000001940)={&(0x7f0000001880)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000001900)={&(0x7f00000018c0)={0x28, 0x0, 0x10, 0x70bd25, 0x25dfdbfc, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'syz_tun\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x14}, 0x240c0000) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000001980)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) 05:23:48 executing program 6: r0 = syz_io_uring_setup(0x438f, &(0x7f0000000000)={0x0, 0x1fe6, 0x2, 0x1, 0xa2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0)) r1 = syz_open_dev$tty1(0xc, 0x4, 0x2) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000100)=[r0, r0, r0, r1], 0x4) r2 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000000, 0x13, r0, 0x8000000) r3 = syz_io_uring_setup(0x12f8, &(0x7f0000000140)={0x0, 0x76aa, 0x4, 0x1, 0x226}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000200)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r4, &(0x7f0000000240)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x2007, @fd=r1, 0x7, 0x4, 0x1, 0x10, 0x0, {0x3, r5}}, 0x1f) r6 = syz_io_uring_setup(0x654b, &(0x7f0000000280)={0x0, 0x2dab, 0x2, 0x0, 0x2a0, 0x0, r3}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000300), &(0x7f0000000340)) r7 = signalfd4(r1, &(0x7f0000000380)={[0x3]}, 0x8, 0x800) mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x80010, r0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x4000010, r6, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) sendfile(r7, r7, &(0x7f00000003c0)=0x6, 0x1f) clock_gettime(0x0, &(0x7f0000000a40)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000a00)=[{{&(0x7f0000000400)=@abs, 0x6e, &(0x7f00000008c0)=[{&(0x7f0000000480)=""/87, 0x57}, {&(0x7f0000000500)=""/223, 0xdf}, {&(0x7f0000000600)=""/130, 0x82}, {&(0x7f00000006c0)=""/160, 0xa0}, {&(0x7f0000000780)=""/100, 0x64}, {&(0x7f0000000800)=""/181, 0xb5}], 0x6, &(0x7f0000000940)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb8}}], 0x1, 0x2002, &(0x7f0000000a80)={r8, r9+60000000}) ioctl$EVIOCSFF(r10, 0x40304580, &(0x7f0000000ac0)={0x2171a106952b9841, 0xffff, 0x1, {0x5, 0x40}, {0x4, 0x9}, @const={0x1000, {0xfff8, 0x5, 0x4}}}) fremovexattr(r10, &(0x7f0000000b00)=@random={'trusted.', '}+d!(*]+\x00'}) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r1, 0xf507, 0x0) r11 = syz_io_uring_setup(0x4f55, &(0x7f0000000b40)={0x0, 0x6a31, 0x1, 0x0, 0x257, 0x0, r10}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000bc0), &(0x7f0000000c00)) signalfd4(r11, &(0x7f0000000c40)={[0x5]}, 0x8, 0x80000) 05:23:48 executing program 7: ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000000)=0x0) ioctl$BTRFS_IOC_RM_DEV_V2(0xffffffffffffffff, 0x5000943a, &(0x7f00000000c0)={{}, r0, 0x10, @inherit={0x70, &(0x7f0000000040)={0x0, 0x5, 0x1, 0xfffffffffffffc00, {0x2, 0x7f, 0x8, 0xff, 0x8001}, [0x1, 0x0, 0x7fff, 0x4, 0x8]}}, @devid}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000010c0)={0xb6a0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x81, "9b6a3ae8b5110e"}) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f00000020c0)={{0x0, 0x4, 0x5, 0x7, 0x7, 0x1, 0x6, 0x5, 0x97c4, 0x1, 0x80000000, 0x2740, 0x9, 0x7, 0x4}, 0x20, [0x0, 0x0, 0x0, 0x0]}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000002180)={r1, r2, "c7a78331f8dd535e330faf9ad92481aaf9ba008260928de83a0c4cfb729db4ab0ab8ad7571afcfd46df3068d02b828d94afd72c68f4f2547e60d703f12aae5940823b1ad03b752b00ba768291a61397f5b3b8b3c87c37ec297ed9cd52f7fefc05cb60aca7fd838a183ed1ea1dbf3ca8007a98728db525642efa52409a0e5ef8096b6839aa6311b6d70ca0cbdfe33ce33d958ba7c0bfca17865b682c0934a2c28ff03f18c52cd25af118d3f03a57ffa9ed705ca7a7b096d6af12bf19c989b7f61d886ef895e03fd66b286010e5f761af0a97d907d21a257eabc35e364317c44f4d837b6dd7dfd52417e66722edd4bc81f14886f74134116bc856a715f273cb9e7", "814dd9096fe9e8e119f6bf0af3502d957053c0ccd2a81c478c3a5879521185afe044f3c268eefe40584a5d9d7ff6eb6ddbbc002fe2b76773ba3edbcb18d1c921250c347ce96ef76de5c56b0adf48c07a9d5123fa0cbc622419882f79f1f02063cc86c0b6eb30d036435b6aa240d5d0fbdea838423628cd521f505bc268fc2f71dc9349f5c2582f8459782fd938c44c2ccf8eaccf717453db2b58a6deee35abbf65b2bac95517d055c4a1958b24580b90b139223c241a5a63d215a6fccc8b426e1e1737f98e1d6e00d40c7aee7d3a09ba6fe7ea27dfb66ba3c822730ddebab31b4dddbe2ceb0915da860055c5c88507bbcb8ed0fb6af8ff8cea8a7b3f59917c3d8dd077dd81f76d1f836ddb8429b580449fe8bf8cc88c7629551cc7a093c5d3531bce6ad2749abc01cdbe2779dca063d388e3181d1001984f44f3b9ebed5679360aa67ebdc9ffd6466dd0fd5c1f347b834ba79cd837365d8d2fe2e0c2d286ccf2727ba4812e1c6cfcfe3d09d972acf0a3c35e14a9f1f87dcca9e10f16adf982466c8d780daf292e5b54d879350d666ef5002bb890dccfc96e97035dc3e25b75fa3087e15dda19dc7df58d91253929c0e84728317c6143b3a585449056e7da62d50f8971c3c01238fb3fc5e0270375136b4a716e7ae8334177a0bafcfb8533bea361a1035798a9c228a2fcf1a7e6377430274a7f3791a28bd56dd12c7ec5cb76930d99b3800df83803326a8519175f5bf7b8973de1ceace809b81fec3d5cafa50aa3a3e6253f4e8e8488cb36b74a11565075be26558faa7e203249021b52145641508635599c7673c62c90bcd9ff76c6ed494bbd3a423471356daa8ae59ba94afdd024b00cc220177684efedd412ff1c3d453248772a4a63f83756b75cebf85bd0e7b7217d97ef38d617067e8f0c98665d026dbd5ac4179ce8992fa39106d788940234a8a1ffd43dae33030e3d0ca3d6134b5381ed1a3d3ef605250683165a8c8d6f07df1cad3279f600efe6d12bb8d6417e48cca7eb8d64584c9a88492332e6f0fe936730d217b89af0d09334bfd2608e320d7075cbec85ee8148dbdfdc91f6dae3e113d54e61f85077035d50d6d05c28cc30d6d89a675b0b19d96751a559ce7a0ef090cbff3dacbc16330d6977666915f18dcac5dbaaf256a7fbd81572fe2da32e34ea115ea4850521880fcba159cf22cf2181a0529b035e50a7d0156a7cb354bec1283e31b054f5a2492fb39b1beee9e690b1789838496d924b90819ae653370bb005bd11e64b30b75ed093fc4ecbe3b400d4327f303f7dcad1f16ce685cf7104812b875a9a5d0ab9978cc3c6825ad43b9e0de0d85c616d9014c5e0c3d995488ff0d5af0a863a3c340efe792f06fd50ec84b0d0142bfe22d8100593caadff42cff6557bd01ae8b930c5cf95af9128e71cb72443009b86509e4d94769035cd9015136b4b8ea8697a7b136e15099d7a3d03145e741802077d94085a452b39a66cb23ef396ead3639ad0f9006bc7b8c518ec7c6b79ff40b44d76122e939d3609cbb6f4e5636f9ed3945399a3be4ce72e55edae6b7bb4ea7af2d74e06d49618edddbb83a18e988b9f36c9d5c1e774c5736cebfba3f6ea19ba0d148f868b634026918cccb5f0c726bdd239c902da92f036c8f63105946790067e7aba7a23a852901b6aea5971a8f3f66b0d86aaf1e2ad7318bcc1bb6ebcccd0cbb5437d286d10802bf9ebaad000f0d2e55c7ee9d7e0df16da7ad768fffa6d7f7193eb6aea718ad7e5070e0148c04d01162957a0122c310b01b08c5119926d0282e9d456d66d37262a1bc45923183d4aba53ac8ba019664819e496018588cc9e6e9f8296846f962aea45e2310ca692f9086c7ad985fe017a25b47ee5df244e2baf355843239eada8c3ac53ad3e91b8dba51d0a47ee66fdc43bd82769b14ff48c55dd2e797f5043c212370183baddac3bf2f6349fdda5f240ba0d915b3bf6f496b80f312766404340825d7cc7a23397d6d14021f8fef1cd56171f5792919bb97d64ce11de75d8c09364fde0436439ec9528078a851c7c7875603ceb8bac0cac524613dd9c146e960131d9e500ed1e10c17314e4f718445bfa67bbaa6443084a5d6530ecff83bd3317228a80957ae5469e36cf647e67383c6e8ce5dc408078ffcacbe71bc38697fba20f82db14acb4f078bb1a75981c59c70b61c929a4317f79abdbcf188c4e7aaeaed809b9460b0cc209d37d9efbc68b6de6176ef6b34637a5b4d118720ea433fd444a1c0afab6f90d075c7405eef2b5c695c47bd097adda170879f3b181d823338ed94f4472f759b86f07684b43821dcb81c52795769cbde529cffa507aca174b5ef2f80128460e598f66b20f9cee1e065b2cfec8f5c6e3e8e44ce36fb59534fb980d0b04ba012f6f4ed1fd71d02b5d07158112695cf74fb4df6c760e5e1b346a5530e3de7a2337abe21b1cd4c410dae102ed2c7cdceb06d91ed5029a6f5a586aed8733719b2b6ac61c962e33c79273f4fc0d549015fc0aecc518f04a8727b9c858d8763f4de8746f6bd852910ca6330b135fd13e49d07884bb2dff979d052dd9f3044d74f9a422525f0759b8f06c2e908929af72b840798b339dbee7886d506353ed256f3f739338bbdd28b8853ad53efff4d76d238c24fb8ff030cbdb5b2adbf1b089d5f3afeb24d25b267e529a3e6c4c737050cafac4f8260e89ffcfb31848b5c7a758a11d2eb6ed964ad4d678cb92701371dee04c953a08c4bff5333a9cc7ca0780ab06867fbe8d02572b5d1b93f937713474b509f6bbc42bff77f1216f1f194c8296233aa48aa6d6a115eb030e752463c23f197018cd64f14c433a05531b645f69f41f1082ddaa5ef7fa996127af810cdfc60237e5e82beba80da99f520758f9ee97f44fe9a014cca27567049f2e2894c301eb5a94c6b57eb6eea67b3c343ced44d12b68e139f8cf11f6afe2602840afafb1b702ef80b790f4593baea046b313aa44ec9e8617c103023d4ec1aabeef38c965f0b8735e04a3f9ec3e1c35784d82d0eb19d87d9cb7aa66c9e73523363dbbda2d07732996ffa173b2cdcc49ed44562cb75bd6bdcecba3ad85c55b21ff5f24bd5b9fd9c2e388050958780a7510dc8c1d6b94d9599c967dcaaee8e901318c45d71759e19e873881b3d803814f21d386b5a76c0fc165c32d7643f90eecf0e440e2f832e11fce59a1271bdf034f6d681d64eb8628c9a7341701e932580baf4862285ebb02f867298ecdac90ce5dc0bc8c1099c831a634b9285c793906a668886b624a8f4403c90d8ada01919b6ff45f0c723d25220577e1d2527bff815d3f21696a20bc3241ff0efa6a8151084c4eaf74204bdd21c80b16e6c4bbebafa29c5407a4bf41f68a4c2fb14e8964088a02966677164e6427de3657340593722749d71ec01abc915c38cab74104ce150e173b8a2fd3d229c5899e595a631ffc5cd217f4c8e5f7d561f06b8a8b36f316be74ec8493fcce33127ec1b1be8e924e487405b3fa41f8b8d5e98dc748a50a12c4f3e2151acbc7440570e35eff057342ee9c9444d77fa23108e8744d2d46f71256a2b78b99841561970c65a375fe93ab95bf81d9fb44371b62d26cf40c3523ce20d5b6c80e2fe43ac1866981b92bc823c79431f001c6a3beed6b60b9a04d9aa825c0b40b01868533ceaaa0ae9fc6059f119358224c8cae3eef6a692e168c80539cc19f8a5d89303f0feb5e05f504e379b7ce5a8e3a2382c30af3f6bff46d5b3eb7fb96429e980e2b979f18d227b58e0437b3975a686270e32bdd5ced45db81cfa764371cf0ec829eca5408dbaef1e62f3d4fc6eb3ce6d5c1a97d1a93b29512bf4210e6c139b4847eec22f46dc7daf79dd5adadb6e984b442911722ba9dfdabc8c796f6d59f131975558d94f39030db2d4902aebc43213ef1db05125611ccd1bd2f33f3c1fb33555fffd48c21d3f3a11811b6c675e6385dd84420126efced0809bb714c9e458f1d91b7f95036a2f41e25ffac1b8ee0681082c1fa071c5abdac18449a1be6986ed66523b099d7fc995c8799090196043367a401284bc8ca7fc9540d79b0bc0dd2b578e524816b1848e58c02e423c7e9188c29a6397a2bb285d24039745b6b28035429f8c31c53382d7401a64066f98d2edc12f5a429f3d3b850fdf997bf0a988e84765a0dafaf68445cde0ec9cda13dac1fc49dd94f735dfffa327decc4e73619089ecdc064de4e9e45b45c96178a817bab0eca1cd442f72ce3829f6c1424cd37e9dc20c86e56c0306fd3129fb5b7ef5ba576ae1f44d6f75e45e944848cdd8f154b047a7a5e6cba30c82e904728bba7f208b7506b5e1757c609608dfe3a5a71b56c705705d1d0fd8f3c517dc02446df3d48f27b45c098dcad07e318e1c13659a7ad16f2a4590722cdff9bb4d9dff2663a9fde4d97fdc71df4acb32950959a1b1a95ffb067ccc0c65e2a5e138e53ac0045ed174b51188ea03b160562b9ac32f6cd534db010bb33577aa899d56a645c31cbc14195587cbca1d3d699c25b4b67801262abbc9553c9bad858629151ba0c9746cc74e1c33bc63be898f89fad542b2a6eec2eb0fcde44774178b200d77bff0ab9dd1291c47f584ca9dcfcaff2d9b62390a642aee3eefbf785301b3536c67c873e1a14b97db5b3314100173749bba5a372f970cbb6fbf2c7de8e82390b70c9c465d7f482950d1001ccf00b3e760861702b71f4da45d926f24f63de0e3ab524df26f8fd8779c06fcea85803e77496c459f9b39e800f3951c9b7da51e6c69e05579899881b05fb6bd3f48b2ecea79ada25bc9a9eb3dab9d0babf0cbe69f0c67cd378f3d91fc3d5c8aecf67e6d05f2d983b1ed7a5119b88bb83bf6016b27e488d9a06501448b82d15f10392ed34f151fdca0830e4f22f2f7956fd5b6fa3c3f2509be8b764d3085e1d49832c65db410dc7df4cbfb298622e540e21759addc3753d43b69792682a2791c94982b1265c42a4025fe3d5d6ae18b886c1ab833c15ec67e400a29ce7d7d6c2b4488329b2f4415f0a0cb57521682c1df88e1f0fe005eaf952c23697491a2959f1c1100b6ffdf2a6e2cc03a5b4e6745bae47814ca2550189dc1c3a3c10ae87d052d5d1024a225f825cc90218c6f5d080a03e7c6aa29c2b861fff6f61bec4e530af0ea11fd672a42e1aa39c13027971b69b9c221b75f66341cc2d73eb0911f21096c3209abda44b37323fe84adff194d357eb20e4a7f5a50dd6841152ebd13464688ba379f874b4a135471c43b9a1bf4fe3f09f47c613e3b8376ae67e7cf0f64d6d02b085c0385d0d6a30e768cba0c8247b74e240f42fed0d0dcd640a04b1f1cf902527d7548af56b0b960448a3235e7f0b72e3581c8bb8746fc3a0782e536ab98c5d5a6ddf887d6c7a47ac5e313aa1909a0caa147a6c01d8"}) ioctl$SNAPSHOT_CREATE_IMAGE(0xffffffffffffffff, 0x40043311, &(0x7f0000003180)) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f00000031c0), 0x404840, 0x0) ioctl$FICLONE(r3, 0x40049409, 0xffffffffffffffff) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(r3, 0x5000943f, &(0x7f0000003280)={{}, r0, 0xa, @inherit={0x50, &(0x7f0000003200)={0x0, 0x1, 0x3, 0x7ff, {0x29, 0x3, 0x1f, 0x3f, 0x800}, [0x7fff]}}, @subvolid=0x4}) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$BTRFS_IOC_SET_FEATURES(r4, 0x40309439, &(0x7f0000004280)={0x1, 0x1, 0x1a}) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r3, 0x4018f50b, &(0x7f00000042c0)={0x0, 0xfc2, 0x7fffffff}) ioctl$SNAPSHOT_SET_SWAP_AREA(r3, 0x400c330d, &(0x7f0000004300)={0x8000, 0x6}) r5 = syz_open_dev$vcsu(&(0x7f0000004340), 0x2, 0x246000) ioctl$HIDIOCGRAWINFO(r5, 0x80084803, &(0x7f0000004380)=""/88) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r4, 0x6612) ioctl$BTRFS_IOC_GET_FEATURES(r3, 0x80189439, &(0x7f0000004400)) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r4, 0x8008f513, &(0x7f0000004440)) ioctl$F2FS_IOC_FLUSH_DEVICE(r4, 0x4008f50a, &(0x7f0000004480)={0x1ff, 0xffffffca}) execveat(r5, &(0x7f00000044c0)='./file0\x00', &(0x7f0000004580)=[&(0x7f0000004500)='\x00', &(0x7f0000004540)='/dev/hpet\x00'], &(0x7f00000047c0)=[&(0x7f00000045c0)='/dev/vcsu#\x00', &(0x7f0000004600)='/dev/hpet\x00', &(0x7f0000004640)='/dev/vcsu#\x00', &(0x7f0000004680)='/dev/vcsu#\x00', &(0x7f00000046c0)='\x00', &(0x7f0000004700)='@\x00', &(0x7f0000004740)='/dev/hpet\x00', &(0x7f0000004780)='/dev/hpet\x00'], 0x800) [ 74.110090] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 74.111858] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 74.118835] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 74.119950] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 74.121818] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 74.122866] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 74.130236] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 74.131678] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 74.140371] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 74.141455] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 74.169804] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 74.171066] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 74.174098] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 74.177047] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 74.179960] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 74.185707] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 74.188046] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 74.189217] Bluetooth: hci1: HCI_REQ-0x0c1a [ 74.189749] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 74.194683] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 74.195798] Bluetooth: hci0: HCI_REQ-0x0c1a [ 74.197325] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 74.206862] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 74.209422] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 74.216970] Bluetooth: hci7: HCI_REQ-0x0c1a [ 74.218512] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 74.223838] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 74.226062] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 74.228067] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 74.232854] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 74.233877] Bluetooth: hci6: HCI_REQ-0x0c1a [ 74.238683] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 74.241282] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 74.243069] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 74.243095] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 74.247314] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 74.249205] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 74.249308] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 74.253233] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 74.254092] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 74.255770] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 74.262530] Bluetooth: hci5: HCI_REQ-0x0c1a [ 74.262717] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 74.270207] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 74.271531] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 74.273182] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 74.275048] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 74.279009] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 74.280137] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 74.281325] Bluetooth: hci4: HCI_REQ-0x0c1a [ 74.294823] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 74.295948] Bluetooth: hci3: HCI_REQ-0x0c1a [ 74.312838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 74.319791] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 74.322818] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 74.332897] Bluetooth: hci2: HCI_REQ-0x0c1a [ 76.254993] Bluetooth: hci6: command 0x0409 tx timeout [ 76.255740] Bluetooth: hci0: command 0x0409 tx timeout [ 76.256264] Bluetooth: hci7: command 0x0409 tx timeout [ 76.256822] Bluetooth: hci1: command 0x0409 tx timeout [ 76.318636] Bluetooth: hci5: command 0x0409 tx timeout [ 76.320043] Bluetooth: hci3: command 0x0409 tx timeout [ 76.320594] Bluetooth: hci4: command 0x0409 tx timeout [ 76.383621] Bluetooth: hci2: command 0x0409 tx timeout [ 78.304645] Bluetooth: hci1: command 0x041b tx timeout [ 78.305507] Bluetooth: hci7: command 0x041b tx timeout [ 78.305918] Bluetooth: hci0: command 0x041b tx timeout [ 78.306307] Bluetooth: hci6: command 0x041b tx timeout [ 78.366858] Bluetooth: hci4: command 0x041b tx timeout [ 78.367244] Bluetooth: hci3: command 0x041b tx timeout [ 78.367675] Bluetooth: hci5: command 0x041b tx timeout [ 78.430576] Bluetooth: hci2: command 0x041b tx timeout [ 80.350864] Bluetooth: hci6: command 0x040f tx timeout [ 80.352230] Bluetooth: hci0: command 0x040f tx timeout [ 80.352965] Bluetooth: hci7: command 0x040f tx timeout [ 80.353699] Bluetooth: hci1: command 0x040f tx timeout [ 80.415049] Bluetooth: hci5: command 0x040f tx timeout [ 80.415768] Bluetooth: hci3: command 0x040f tx timeout [ 80.416426] Bluetooth: hci4: command 0x040f tx timeout [ 80.478612] Bluetooth: hci2: command 0x040f tx timeout [ 82.398612] Bluetooth: hci1: command 0x0419 tx timeout [ 82.399096] Bluetooth: hci7: command 0x0419 tx timeout [ 82.399487] Bluetooth: hci0: command 0x0419 tx timeout [ 82.400327] Bluetooth: hci6: command 0x0419 tx timeout [ 82.463810] Bluetooth: hci4: command 0x0419 tx timeout [ 82.464220] Bluetooth: hci3: command 0x0419 tx timeout [ 82.464653] Bluetooth: hci5: command 0x0419 tx timeout [ 82.527580] Bluetooth: hci2: command 0x0419 tx timeout [ 130.415839] audit: type=1400 audit(1664515486.023:7): avc: denied { open } for pid=3678 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 05:24:46 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) r1 = epoll_create(0x4) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0002000}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) io_setup(0x3ff, &(0x7f0000000140)=0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') io_submit(r5, 0x1, &(0x7f0000000280)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x3, 0x7fff}, {0x5, 0x8000}, {0x4, 0x7d}, {0x7}, {0xc, 0x1}, {0x3, 0x200}, {0x81, 0x9}]}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x1000000d}) dup2(r4, r1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) close_range(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000010074a465c20200", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66bc83a5ee9cb5338f3363b2b159afaf5e9a0ef3441bd4935ea8c851f6ccd10e269d2d6da99b9e31ea13851f5cedd29f772b26194f8fea37d26d3fc33a016f"]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) sendmsg$unix(r8, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18}, 0x0) dup2(r7, r8) [ 130.545344] audit: type=1400 audit(1664515486.153:8): avc: denied { kernel } for pid=3689 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 130.562068] ------------[ cut here ]------------ [ 130.562092] [ 130.562096] ====================================================== [ 130.562100] WARNING: possible circular locking dependency detected [ 130.562105] 6.0.0-rc7-next-20220929 #1 Not tainted [ 130.562112] ------------------------------------------------------ [ 130.562115] syz-executor.3/3691 is trying to acquire lock: [ 130.562121] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 130.562164] [ 130.562164] but task is already holding lock: [ 130.562167] ffff88800eb69420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 130.562195] [ 130.562195] which lock already depends on the new lock. [ 130.562195] [ 130.562198] [ 130.562198] the existing dependency chain (in reverse order) is: [ 130.562201] [ 130.562201] -> #3 (&ctx->lock){....}-{2:2}: [ 130.562215] _raw_spin_lock+0x2a/0x40 [ 130.562227] __perf_event_task_sched_out+0x53b/0x18d0 [ 130.562238] __schedule+0xedd/0x2470 [ 130.562252] schedule+0xda/0x1b0 [ 130.562266] exit_to_user_mode_prepare+0x114/0x1a0 [ 130.562278] syscall_exit_to_user_mode+0x19/0x40 [ 130.562291] do_syscall_64+0x48/0x90 [ 130.562309] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 130.562322] [ 130.562322] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 130.562336] _raw_spin_lock_nested+0x30/0x40 [ 130.562346] raw_spin_rq_lock_nested+0x1e/0x30 [ 130.562359] task_fork_fair+0x63/0x4d0 [ 130.562376] sched_cgroup_fork+0x3d0/0x540 [ 130.562390] copy_process+0x4183/0x6e20 [ 130.562401] kernel_clone+0xe7/0x890 [ 130.562411] user_mode_thread+0xad/0xf0 [ 130.562422] rest_init+0x24/0x250 [ 130.562433] arch_call_rest_init+0xf/0x14 [ 130.562450] start_kernel+0x4c6/0x4eb [ 130.562464] secondary_startup_64_no_verify+0xe0/0xeb [ 130.562479] [ 130.562479] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 130.562492] _raw_spin_lock_irqsave+0x39/0x60 [ 130.562503] try_to_wake_up+0xab/0x1930 [ 130.562516] up+0x75/0xb0 [ 130.562533] __up_console_sem+0x6e/0x80 [ 130.562549] console_unlock+0x46a/0x590 [ 130.562565] vprintk_emit+0x1bd/0x560 [ 130.562581] vprintk+0x84/0xa0 [ 130.562597] _printk+0xba/0xf1 [ 130.562608] kauditd_hold_skb.cold+0x3f/0x4e [ 130.562625] kauditd_send_queue+0x233/0x290 [ 130.562641] kauditd_thread+0x5f9/0x9c0 [ 130.562655] kthread+0x2ed/0x3a0 [ 130.562669] ret_from_fork+0x22/0x30 [ 130.562681] [ 130.562681] -> #0 ((console_sem).lock){....}-{2:2}: [ 130.562695] __lock_acquire+0x2a02/0x5e70 [ 130.562712] lock_acquire+0x1a2/0x530 [ 130.562728] _raw_spin_lock_irqsave+0x39/0x60 [ 130.562738] down_trylock+0xe/0x70 [ 130.562761] __down_trylock_console_sem+0x3b/0xd0 [ 130.562777] vprintk_emit+0x16b/0x560 [ 130.562793] vprintk+0x84/0xa0 [ 130.562809] _printk+0xba/0xf1 [ 130.562819] report_bug.cold+0x72/0xab [ 130.562835] handle_bug+0x3c/0x70 [ 130.562851] exc_invalid_op+0x14/0x50 [ 130.562868] asm_exc_invalid_op+0x16/0x20 [ 130.562879] group_sched_out.part.0+0x2c7/0x460 [ 130.562897] ctx_sched_out+0x8f1/0xc10 [ 130.562914] __perf_event_task_sched_out+0x6d0/0x18d0 [ 130.562925] __schedule+0xedd/0x2470 [ 130.562938] schedule+0xda/0x1b0 [ 130.562951] exit_to_user_mode_prepare+0x114/0x1a0 [ 130.562962] syscall_exit_to_user_mode+0x19/0x40 [ 130.562974] do_syscall_64+0x48/0x90 [ 130.562991] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 130.563003] [ 130.563003] other info that might help us debug this: [ 130.563003] [ 130.563006] Chain exists of: [ 130.563006] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 130.563006] [ 130.563021] Possible unsafe locking scenario: [ 130.563021] [ 130.563023] CPU0 CPU1 [ 130.563025] ---- ---- [ 130.563028] lock(&ctx->lock); [ 130.563034] lock(&rq->__lock); [ 130.563040] lock(&ctx->lock); [ 130.563046] lock((console_sem).lock); [ 130.563052] [ 130.563052] *** DEADLOCK *** [ 130.563052] [ 130.563054] 2 locks held by syz-executor.3/3691: [ 130.563061] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 130.563090] #1: ffff88800eb69420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 130.563116] [ 130.563116] stack backtrace: [ 130.563119] CPU: 0 PID: 3691 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220929 #1 [ 130.563132] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 130.563140] Call Trace: [ 130.563144] [ 130.563148] dump_stack_lvl+0x8b/0xb3 [ 130.563166] check_noncircular+0x263/0x2e0 [ 130.563183] ? format_decode+0x26c/0xb50 [ 130.563200] ? print_circular_bug+0x450/0x450 [ 130.563217] ? enable_ptr_key_workfn+0x20/0x20 [ 130.563233] ? format_decode+0x26c/0xb50 [ 130.563251] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 130.563268] __lock_acquire+0x2a02/0x5e70 [ 130.563290] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 130.563312] lock_acquire+0x1a2/0x530 [ 130.563329] ? down_trylock+0xe/0x70 [ 130.563346] ? lock_release+0x750/0x750 [ 130.563366] ? vprintk+0x84/0xa0 [ 130.563384] _raw_spin_lock_irqsave+0x39/0x60 [ 130.563396] ? down_trylock+0xe/0x70 [ 130.563411] down_trylock+0xe/0x70 [ 130.563427] ? vprintk+0x84/0xa0 [ 130.563444] __down_trylock_console_sem+0x3b/0xd0 [ 130.563461] vprintk_emit+0x16b/0x560 [ 130.563480] vprintk+0x84/0xa0 [ 130.563497] _printk+0xba/0xf1 [ 130.563509] ? record_print_text.cold+0x16/0x16 [ 130.563525] ? report_bug.cold+0x66/0xab [ 130.563542] ? group_sched_out.part.0+0x2c7/0x460 [ 130.563561] report_bug.cold+0x72/0xab [ 130.563579] handle_bug+0x3c/0x70 [ 130.563597] exc_invalid_op+0x14/0x50 [ 130.563615] asm_exc_invalid_op+0x16/0x20 [ 130.563628] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 130.563648] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 130.563659] RSP: 0018:ffff88803fe8fc48 EFLAGS: 00010006 [ 130.563668] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 130.563676] RDX: ffff88800bb0d040 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 130.563684] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 130.563691] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800eb69400 [ 130.563699] R13: ffff88806ce3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 130.563710] ? group_sched_out.part.0+0x2c7/0x460 [ 130.563730] ? group_sched_out.part.0+0x2c7/0x460 [ 130.563750] ctx_sched_out+0x8f1/0xc10 [ 130.563769] __perf_event_task_sched_out+0x6d0/0x18d0 [ 130.563784] ? lock_is_held_type+0xd7/0x130 [ 130.563797] ? __perf_cgroup_move+0x160/0x160 [ 130.563808] ? set_next_entity+0x304/0x550 [ 130.563826] ? update_curr+0x267/0x740 [ 130.563844] ? lock_is_held_type+0xd7/0x130 [ 130.563858] __schedule+0xedd/0x2470 [ 130.563875] ? io_schedule_timeout+0x150/0x150 [ 130.563892] ? rcu_read_lock_sched_held+0x3e/0x80 [ 130.563912] schedule+0xda/0x1b0 [ 130.563927] exit_to_user_mode_prepare+0x114/0x1a0 [ 130.563940] syscall_exit_to_user_mode+0x19/0x40 [ 130.563953] do_syscall_64+0x48/0x90 [ 130.563971] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 130.563984] RIP: 0033:0x7fcaaa27cb19 [ 130.563992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 130.564003] RSP: 002b:00007fcaa77f2218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 130.564014] RAX: 0000000000000001 RBX: 00007fcaaa38ff68 RCX: 00007fcaaa27cb19 [ 130.564021] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcaaa38ff6c [ 130.564029] RBP: 00007fcaaa38ff60 R08: 000000000000000e R09: 0000000000000000 [ 130.564036] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fcaaa38ff6c [ 130.564043] R13: 00007ffc041fd35f R14: 00007fcaa77f2300 R15: 0000000000022000 [ 130.564056] [ 130.620181] WARNING: CPU: 0 PID: 3691 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 130.620858] Modules linked in: [ 130.621108] CPU: 0 PID: 3691 Comm: syz-executor.3 Not tainted 6.0.0-rc7-next-20220929 #1 [ 130.621717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 130.622547] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 130.622971] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 130.624322] RSP: 0018:ffff88803fe8fc48 EFLAGS: 00010006 [ 130.624721] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 130.625252] RDX: ffff88800bb0d040 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 130.625792] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 130.626334] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88800eb69400 [ 130.626864] R13: ffff88806ce3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 130.627398] FS: 00007fcaa77f2700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 130.627990] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 130.628427] CR2: 00007fe7ce188368 CR3: 000000001d6b6000 CR4: 0000000000350ef0 [ 130.628953] Call Trace: [ 130.629148] [ 130.629324] ctx_sched_out+0x8f1/0xc10 [ 130.629625] __perf_event_task_sched_out+0x6d0/0x18d0 [ 130.630019] ? lock_is_held_type+0xd7/0x130 [ 130.630344] ? __perf_cgroup_move+0x160/0x160 [ 130.630680] ? set_next_entity+0x304/0x550 [ 130.631003] ? update_curr+0x267/0x740 [ 130.631301] ? lock_is_held_type+0xd7/0x130 [ 130.631625] __schedule+0xedd/0x2470 [ 130.631908] ? io_schedule_timeout+0x150/0x150 [ 130.632262] ? rcu_read_lock_sched_held+0x3e/0x80 [ 130.632632] schedule+0xda/0x1b0 [ 130.632892] exit_to_user_mode_prepare+0x114/0x1a0 [ 130.633266] syscall_exit_to_user_mode+0x19/0x40 [ 130.633622] do_syscall_64+0x48/0x90 [ 130.633912] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 130.634296] RIP: 0033:0x7fcaaa27cb19 [ 130.634575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 130.635937] RSP: 002b:00007fcaa77f2218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 130.636509] RAX: 0000000000000001 RBX: 00007fcaaa38ff68 RCX: 00007fcaaa27cb19 [ 130.637040] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fcaaa38ff6c [ 130.637577] RBP: 00007fcaaa38ff60 R08: 000000000000000e R09: 0000000000000000 [ 130.638108] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fcaaa38ff6c [ 130.638633] R13: 00007ffc041fd35f R14: 00007fcaa77f2300 R15: 0000000000022000 [ 130.639171] [ 130.639351] irq event stamp: 512 [ 130.639610] hardirqs last enabled at (511): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 130.640310] hardirqs last disabled at (512): [] __schedule+0x1225/0x2470 [ 130.640936] softirqs last enabled at (180): [] __irq_exit_rcu+0x11b/0x180 [ 130.641567] softirqs last disabled at (175): [] __irq_exit_rcu+0x11b/0x180 [ 130.642192] ---[ end trace 0000000000000000 ]--- [ 130.893920] audit: type=1400 audit(1664515486.501:9): avc: denied { block_suspend } for pid=3689 comm="syz-executor.3" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 05:24:46 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) r1 = epoll_create(0x4) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0002000}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) io_setup(0x3ff, &(0x7f0000000140)=0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') io_submit(r5, 0x1, &(0x7f0000000280)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x3, 0x7fff}, {0x5, 0x8000}, {0x4, 0x7d}, {0x7}, {0xc, 0x1}, {0x3, 0x200}, {0x81, 0x9}]}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x1000000d}) dup2(r4, r1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) close_range(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000010074a465c20200", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66bc83a5ee9cb5338f3363b2b159afaf5e9a0ef3441bd4935ea8c851f6ccd10e269d2d6da99b9e31ea13851f5cedd29f772b26194f8fea37d26d3fc33a016f"]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) sendmsg$unix(r8, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18}, 0x0) dup2(r7, r8) 05:24:46 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) r1 = epoll_create(0x4) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0002000}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) io_setup(0x3ff, &(0x7f0000000140)=0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') io_submit(r5, 0x1, &(0x7f0000000280)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x3, 0x7fff}, {0x5, 0x8000}, {0x4, 0x7d}, {0x7}, {0xc, 0x1}, {0x3, 0x200}, {0x81, 0x9}]}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x1000000d}) dup2(r4, r1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) close_range(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000010074a465c20200", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66bc83a5ee9cb5338f3363b2b159afaf5e9a0ef3441bd4935ea8c851f6ccd10e269d2d6da99b9e31ea13851f5cedd29f772b26194f8fea37d26d3fc33a016f"]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) sendmsg$unix(r8, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18}, 0x0) dup2(r7, r8) 05:24:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) r1 = epoll_create(0x4) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0002000}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) io_setup(0x3ff, &(0x7f0000000140)=0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') io_submit(r5, 0x1, &(0x7f0000000280)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x3, 0x7fff}, {0x5, 0x8000}, {0x4, 0x7d}, {0x7}, {0xc, 0x1}, {0x3, 0x200}, {0x81, 0x9}]}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x1000000d}) dup2(r4, r1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) close_range(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000010074a465c20200", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66bc83a5ee9cb5338f3363b2b159afaf5e9a0ef3441bd4935ea8c851f6ccd10e269d2d6da99b9e31ea13851f5cedd29f772b26194f8fea37d26d3fc33a016f"]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) sendmsg$unix(r8, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18}, 0x0) dup2(r7, r8) 05:24:47 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) r1 = epoll_create(0x4) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0002000}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) io_setup(0x3ff, &(0x7f0000000140)=0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') io_submit(r5, 0x1, &(0x7f0000000280)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x3, 0x7fff}, {0x5, 0x8000}, {0x4, 0x7d}, {0x7}, {0xc, 0x1}, {0x3, 0x200}, {0x81, 0x9}]}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x1000000d}) dup2(r4, r1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) close_range(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000010074a465c20200", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66bc83a5ee9cb5338f3363b2b159afaf5e9a0ef3441bd4935ea8c851f6ccd10e269d2d6da99b9e31ea13851f5cedd29f772b26194f8fea37d26d3fc33a016f"]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) sendmsg$unix(r8, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18}, 0x0) dup2(r7, r8) 05:24:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) r1 = epoll_create(0x4) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0002000}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) io_setup(0x3ff, &(0x7f0000000140)=0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') io_submit(r5, 0x1, &(0x7f0000000280)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x3, 0x7fff}, {0x5, 0x8000}, {0x4, 0x7d}, {0x7}, {0xc, 0x1}, {0x3, 0x200}, {0x81, 0x9}]}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x1000000d}) dup2(r4, r1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) close_range(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000010074a465c20200", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66bc83a5ee9cb5338f3363b2b159afaf5e9a0ef3441bd4935ea8c851f6ccd10e269d2d6da99b9e31ea13851f5cedd29f772b26194f8fea37d26d3fc33a016f"]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) sendmsg$unix(r8, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18}, 0x0) dup2(r7, r8) 05:24:47 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) r1 = epoll_create(0x4) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0002000}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) io_setup(0x3ff, &(0x7f0000000140)=0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') io_submit(r5, 0x1, &(0x7f0000000280)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x3, 0x7fff}, {0x5, 0x8000}, {0x4, 0x7d}, {0x7}, {0xc, 0x1}, {0x3, 0x200}, {0x81, 0x9}]}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x1000000d}) dup2(r4, r1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) close_range(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000010074a465c20200", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66bc83a5ee9cb5338f3363b2b159afaf5e9a0ef3441bd4935ea8c851f6ccd10e269d2d6da99b9e31ea13851f5cedd29f772b26194f8fea37d26d3fc33a016f"]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) sendmsg$unix(r8, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18}, 0x0) dup2(r7, r8) 05:24:47 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000300)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={&(0x7f0000000480), 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x1) r1 = epoll_create(0x4) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000240)={0xa0002000}) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040)) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) io_setup(0x3ff, &(0x7f0000000140)=0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') io_submit(r5, 0x1, &(0x7f0000000280)=[&(0x7f0000001300)={0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0}]) ioctl$PIO_UNIMAP(r6, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f0000000000)=[{0x3, 0x7fff}, {0x5, 0x8000}, {0x4, 0x7d}, {0x7}, {0xc, 0x1}, {0x3, 0x200}, {0x81, 0x9}]}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000180)={0x1000000d}) dup2(r4, r1) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r6, 0xf502, 0x0) close_range(0xffffffffffffffff, r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000000400)=ANY=[@ANYBLOB="01000000010074a465c20200", @ANYRES32=r0, @ANYBLOB="00000000000000002e2f66bc83a5ee9cb5338f3363b2b159afaf5e9a0ef3441bd4935ea8c851f6ccd10e269d2d6da99b9e31ea13851f5cedd29f772b26194f8fea37d26d3fc33a016f"]) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff}) sendmsg$unix(r8, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002740)=[@rights={{0x14, 0x1, 0x1, [r8]}}], 0x18}, 0x0) dup2(r7, r8) [ 137.310587] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 137.311410] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 137.374565] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 137.375597] Bluetooth: hci2: Opcode 0x c03 failed: -110 VM DIAGNOSIS: 05:24:46 Registers: info registers vcpu 0 RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88803fe8f690 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006f R11=0000000000000001 R12=000000000000006f R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fcaa77f2700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fe7ce188368 CR3=000000001d6b6000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007fcaaa3637c0 00007fcaaa3637c8 YMM02=0000000000000000 0000000000000000 00007fcaaa3637e0 00007fcaaa3637c0 YMM03=0000000000000000 0000000000000000 00007fcaaa3637c8 00007fcaaa3637c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=ffff88801d7cc360 RBX=0000000000092cc0 RCX=0000000000000000 RDX=0000000000092cc0 RSI=ffff88801d7cc360 RDI=ffff888007c4f780 RBP=0000000000000000 RSP=ffff88801d2878e0 R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=ffff888007c4f780 R13=0000000000092cc0 R14=0000000000092cc0 R15=0000000000000000 RIP=ffffffff81785da0 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f311a019540 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f311a0ea710 CR3=000000003f3d8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 000000ff00000000 00000000000000ff YMM01=0000000000000000 0000000000000000 ffffff0000ff00ff ffffffffffffff00 YMM02=0000000000000000 0000000000000000 494c4700362e322e 325f4342494c4700 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000004700 YMM04=0000000000000000 0000000000000000 4342494c4700362e 322e325f4342494c YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000