Warning: Permanently added '[localhost]:18266' (ECDSA) to the list of known hosts.
2022/09/30 08:03:35 fuzzer started
2022/09/30 08:03:36 dialing manager at localhost:40535
syzkaller login: [   45.878211] cgroup: Unknown subsys name 'net'
[   45.970940] cgroup: Unknown subsys name 'rlimit'
2022/09/30 08:03:51 syscalls: 2215
2022/09/30 08:03:51 code coverage: enabled
2022/09/30 08:03:51 comparison tracing: enabled
2022/09/30 08:03:51 extra coverage: enabled
2022/09/30 08:03:51 setuid sandbox: enabled
2022/09/30 08:03:51 namespace sandbox: enabled
2022/09/30 08:03:51 Android sandbox: enabled
2022/09/30 08:03:51 fault injection: enabled
2022/09/30 08:03:51 leak checking: enabled
2022/09/30 08:03:51 net packet injection: enabled
2022/09/30 08:03:51 net device setup: enabled
2022/09/30 08:03:51 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/09/30 08:03:51 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/09/30 08:03:51 USB emulation: enabled
2022/09/30 08:03:51 hci packet injection: enabled
2022/09/30 08:03:51 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929                                          )
2022/09/30 08:03:51 802.15.4 emulation: enabled
2022/09/30 08:03:51 fetching corpus: 50, signal 30317/32041 (executing program)
2022/09/30 08:03:51 fetching corpus: 100, signal 43986/47159 (executing program)
2022/09/30 08:03:51 fetching corpus: 150, signal 48717/53338 (executing program)
2022/09/30 08:03:52 fetching corpus: 200, signal 54838/60768 (executing program)
2022/09/30 08:03:52 fetching corpus: 250, signal 60288/67459 (executing program)
2022/09/30 08:03:52 fetching corpus: 300, signal 67316/75502 (executing program)
2022/09/30 08:03:52 fetching corpus: 350, signal 70503/79852 (executing program)
2022/09/30 08:03:52 fetching corpus: 400, signal 73299/83803 (executing program)
2022/09/30 08:03:52 fetching corpus: 450, signal 77736/89160 (executing program)
2022/09/30 08:03:52 fetching corpus: 500, signal 79991/92510 (executing program)
2022/09/30 08:03:52 fetching corpus: 550, signal 83980/97310 (executing program)
2022/09/30 08:03:53 fetching corpus: 600, signal 87838/101943 (executing program)
2022/09/30 08:03:53 fetching corpus: 650, signal 89950/104981 (executing program)
2022/09/30 08:03:53 fetching corpus: 700, signal 92624/108460 (executing program)
2022/09/30 08:03:53 fetching corpus: 750, signal 96646/113048 (executing program)
2022/09/30 08:03:53 fetching corpus: 800, signal 98709/115878 (executing program)
2022/09/30 08:03:53 fetching corpus: 850, signal 100948/118858 (executing program)
2022/09/30 08:03:53 fetching corpus: 900, signal 103201/121781 (executing program)
2022/09/30 08:03:53 fetching corpus: 950, signal 104912/124232 (executing program)
2022/09/30 08:03:53 fetching corpus: 1000, signal 106789/126774 (executing program)
2022/09/30 08:03:54 fetching corpus: 1050, signal 108519/129157 (executing program)
2022/09/30 08:03:54 fetching corpus: 1100, signal 110568/131798 (executing program)
2022/09/30 08:03:54 fetching corpus: 1150, signal 112526/134275 (executing program)
2022/09/30 08:03:54 fetching corpus: 1200, signal 115568/137658 (executing program)
2022/09/30 08:03:54 fetching corpus: 1250, signal 117615/140181 (executing program)
2022/09/30 08:03:54 fetching corpus: 1300, signal 119156/142264 (executing program)
2022/09/30 08:03:54 fetching corpus: 1350, signal 120388/144063 (executing program)
2022/09/30 08:03:54 fetching corpus: 1400, signal 121956/146142 (executing program)
2022/09/30 08:03:55 fetching corpus: 1450, signal 123486/148090 (executing program)
2022/09/30 08:03:55 fetching corpus: 1500, signal 125511/150375 (executing program)
2022/09/30 08:03:55 fetching corpus: 1550, signal 126804/152084 (executing program)
2022/09/30 08:03:55 fetching corpus: 1600, signal 127469/153386 (executing program)
2022/09/30 08:03:55 fetching corpus: 1650, signal 129029/155288 (executing program)
2022/09/30 08:03:55 fetching corpus: 1700, signal 130922/157384 (executing program)
2022/09/30 08:03:55 fetching corpus: 1750, signal 132876/159616 (executing program)
2022/09/30 08:03:55 fetching corpus: 1800, signal 134122/161241 (executing program)
2022/09/30 08:03:55 fetching corpus: 1850, signal 135090/162566 (executing program)
2022/09/30 08:03:56 fetching corpus: 1900, signal 136561/164215 (executing program)
2022/09/30 08:03:56 fetching corpus: 1950, signal 138058/165911 (executing program)
2022/09/30 08:03:56 fetching corpus: 2000, signal 139070/167281 (executing program)
2022/09/30 08:03:56 fetching corpus: 2050, signal 140251/168748 (executing program)
2022/09/30 08:03:56 fetching corpus: 2100, signal 141442/170164 (executing program)
2022/09/30 08:03:56 fetching corpus: 2150, signal 142343/171374 (executing program)
2022/09/30 08:03:56 fetching corpus: 2200, signal 144090/173036 (executing program)
2022/09/30 08:03:56 fetching corpus: 2250, signal 145188/174324 (executing program)
2022/09/30 08:03:56 fetching corpus: 2300, signal 145992/175435 (executing program)
2022/09/30 08:03:57 fetching corpus: 2350, signal 146964/176614 (executing program)
2022/09/30 08:03:57 fetching corpus: 2400, signal 148408/178043 (executing program)
2022/09/30 08:03:57 fetching corpus: 2450, signal 149604/179458 (executing program)
2022/09/30 08:03:57 fetching corpus: 2500, signal 150318/180469 (executing program)
2022/09/30 08:03:57 fetching corpus: 2550, signal 153457/182826 (executing program)
2022/09/30 08:03:57 fetching corpus: 2600, signal 155046/184227 (executing program)
2022/09/30 08:03:57 fetching corpus: 2650, signal 156091/185313 (executing program)
2022/09/30 08:03:57 fetching corpus: 2700, signal 157269/186426 (executing program)
2022/09/30 08:03:58 fetching corpus: 2750, signal 158418/187559 (executing program)
2022/09/30 08:03:58 fetching corpus: 2800, signal 159909/188824 (executing program)
2022/09/30 08:03:58 fetching corpus: 2850, signal 160840/189801 (executing program)
2022/09/30 08:03:58 fetching corpus: 2900, signal 162147/190885 (executing program)
2022/09/30 08:03:58 fetching corpus: 2950, signal 162779/191681 (executing program)
2022/09/30 08:03:58 fetching corpus: 3000, signal 163424/192428 (executing program)
2022/09/30 08:03:58 fetching corpus: 3050, signal 164580/193433 (executing program)
2022/09/30 08:03:58 fetching corpus: 3100, signal 164997/194109 (executing program)
2022/09/30 08:03:59 fetching corpus: 3150, signal 166104/195026 (executing program)
2022/09/30 08:03:59 fetching corpus: 3200, signal 167191/195954 (executing program)
2022/09/30 08:03:59 fetching corpus: 3250, signal 167850/196661 (executing program)
2022/09/30 08:03:59 fetching corpus: 3300, signal 168807/197462 (executing program)
2022/09/30 08:03:59 fetching corpus: 3350, signal 169466/198153 (executing program)
2022/09/30 08:03:59 fetching corpus: 3400, signal 170521/199061 (executing program)
2022/09/30 08:03:59 fetching corpus: 3450, signal 170877/199608 (executing program)
2022/09/30 08:03:59 fetching corpus: 3500, signal 172185/200472 (executing program)
2022/09/30 08:03:59 fetching corpus: 3550, signal 172821/201085 (executing program)
2022/09/30 08:04:00 fetching corpus: 3600, signal 173773/201791 (executing program)
2022/09/30 08:04:00 fetching corpus: 3650, signal 174540/202426 (executing program)
2022/09/30 08:04:00 fetching corpus: 3700, signal 175804/203154 (executing program)
2022/09/30 08:04:00 fetching corpus: 3750, signal 176442/203711 (executing program)
2022/09/30 08:04:00 fetching corpus: 3800, signal 177855/204550 (executing program)
2022/09/30 08:04:00 fetching corpus: 3850, signal 178584/205119 (executing program)
2022/09/30 08:04:00 fetching corpus: 3900, signal 179015/205570 (executing program)
2022/09/30 08:04:00 fetching corpus: 3950, signal 179682/206061 (executing program)
2022/09/30 08:04:00 fetching corpus: 4000, signal 180451/206536 (executing program)
2022/09/30 08:04:01 fetching corpus: 4050, signal 181027/207002 (executing program)
2022/09/30 08:04:01 fetching corpus: 4100, signal 181518/207427 (executing program)
2022/09/30 08:04:01 fetching corpus: 4150, signal 182017/207833 (executing program)
2022/09/30 08:04:01 fetching corpus: 4200, signal 182566/208219 (executing program)
2022/09/30 08:04:01 fetching corpus: 4250, signal 183054/208636 (executing program)
2022/09/30 08:04:01 fetching corpus: 4300, signal 183823/209064 (executing program)
2022/09/30 08:04:01 fetching corpus: 4350, signal 184474/209436 (executing program)
2022/09/30 08:04:01 fetching corpus: 4400, signal 185004/209838 (executing program)
2022/09/30 08:04:01 fetching corpus: 4450, signal 185844/210257 (executing program)
2022/09/30 08:04:02 fetching corpus: 4500, signal 186480/210651 (executing program)
2022/09/30 08:04:02 fetching corpus: 4550, signal 186898/210972 (executing program)
2022/09/30 08:04:02 fetching corpus: 4600, signal 187740/211351 (executing program)
2022/09/30 08:04:02 fetching corpus: 4650, signal 188218/211682 (executing program)
2022/09/30 08:04:02 fetching corpus: 4700, signal 188859/212001 (executing program)
2022/09/30 08:04:02 fetching corpus: 4750, signal 189389/212324 (executing program)
2022/09/30 08:04:02 fetching corpus: 4800, signal 189972/212621 (executing program)
2022/09/30 08:04:02 fetching corpus: 4850, signal 190562/212939 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/213219 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/213448 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/213702 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/213912 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/214134 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/214338 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/214577 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/214821 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/214930 (executing program)
2022/09/30 08:04:02 fetching corpus: 4872, signal 190746/214930 (executing program)
2022/09/30 08:04:05 starting 8 fuzzer processes
08:04:05 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x200400, 0x0)
fstat(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f00000000c0))
socketpair(0x6, 0xa, 0x9, &(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$bt_hci_HCI_TIME_STAMP(r3, 0x0, 0x3, &(0x7f0000000300)=0x8, 0x4)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nbd(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NBD_CMD_STATUS(r5, &(0x7f0000000480)={&(0x7f0000000340), 0xc, &(0x7f0000000440)={&(0x7f00000003c0)={0x78, r6, 0x0, 0x70bd29, 0x25dfdbfc, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x6c80000000000000}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x3e9b}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x7f}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [{0x8, 0x1, r3}, {0x8, 0x1, r4}]}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x4}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xfff}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x78}, 0x1, 0x0, 0x0, 0x40085}, 0x4010)
r7 = openat$cgroup_freezer_state(r0, &(0x7f0000000540), 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), 0x2000001, &(0x7f0000000580)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r7}, 0x2c, {[{@afid={'afid', 0x3d, 0x6}}, {@cache_fscache}, {@cache_fscache}, {@nodevmap}, {@aname={'aname', 0x3d, '!-%:/'}}, {@cache_none}], [{@pcr={'pcr', 0x3d, 0x4}}, {@obj_role={'obj_role', 0x3d, '\'@.\'&*,'}}, {@uid_lt={'uid<', r1}}, {@subj_type}, {@pcr={'pcr', 0x3d, 0x28}}, {@hash}]}})
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000680), r8)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_NEW_INTERFACE(r9, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x30, 0x0, 0x10, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, {0xaaaaaaaaaaaa0102}}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000000)
readv(r4, &(0x7f00000008c0)=[{&(0x7f00000007c0)=""/242, 0xf2}], 0x1)
r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000940), r8)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r10, &(0x7f0000000a00)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x1c, r11, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040000}, 0x4008882)
sendmsg$NLBL_MGMT_C_ADDDEF(r9, &(0x7f0000000b40)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x6c, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @dev={0xfe, 0x80, '\x00', 0x21}}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @loopback}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @NLBL_MGMT_A_CV4DOI={0x8}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @mcast2}]}, 0x6c}, 0x1, 0x0, 0x0, 0x21}, 0x1)

08:04:05 executing program 1:
sendmsg$DEVLINK_CMD_TRAP_GET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x50, 0x0, 0x900, 0x70bd25, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x20048880)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x6}}, './file0\x00'})
sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, 0x17, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x30, 0x0, 0x1, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x8, 0xa}}}}, [@NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x2}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x10000805}, 0x10)
r1 = accept$unix(r0, &(0x7f0000000380)=@abs, &(0x7f0000000400)=0x6e)
recvfrom$unix(r0, &(0x7f0000000440)=""/4096, 0x1000, 0x10000, &(0x7f0000001440)=@file={0x1, './file0\x00'}, 0x6e)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000001500)={0x1, &(0x7f00000014c0)=[{0x7, 0x41, 0x81, 0x1}]})
close_range(r2, r0, 0x0)
lsetxattr$trusted_overlay_opaque(&(0x7f0000001540)='./file0\x00', &(0x7f0000001580), &(0x7f00000015c0), 0x2, 0x0)
r3 = accept$unix(r1, &(0x7f0000001600), &(0x7f0000001680)=0x6e)
bind$unix(r3, &(0x7f00000016c0)=@file={0x1, './file0\x00'}, 0x6e)
r4 = syz_open_dev$vcsa(&(0x7f0000001740), 0x7, 0x20000)
connect$unix(r4, &(0x7f0000001780)=@abs={0x1, 0x0, 0x4e22}, 0x6e)
getpeername(r3, &(0x7f0000001800)=@hci, &(0x7f0000001880)=0x80)
sendmsg$DEVLINK_CMD_SB_GET(r0, &(0x7f00000019c0)={&(0x7f00000018c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001980)={&(0x7f0000001900)={0x60, 0x0, 0x2, 0x70bd26, 0x200, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x5}}]}, 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x4040)
getpeername(r1, &(0x7f0000001a00)=@l2tp6={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @broadcast}}, &(0x7f0000001a80)=0x80)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r4, 0xc0189373, &(0x7f0000001ac0)={{0x1, 0x1, 0x18, <r5=>r1, {0xfff000}}, './file0\x00'})
sendmsg$TIPC_NL_LINK_SET(r5, &(0x7f0000001d40)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001d00)={&(0x7f0000001b40)={0x190, 0x0, 0x400, 0x70bd2c, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x10001}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x10000}]}, @TIPC_NLA_NODE={0x108, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0xb7, 0x3, "3519a5d15c652f4d03abda93f1dcbf9f4754005daef52203812b7932864d9e45e336cf057412828fba689fc7bf18a0961f6ecff3aaa09e3ea2d67f0aa041bc8d8cdc2fc2159e50344d7345ea22846b48eb5da7a0dee00703822b36841e43fd802826abe717c07bc7d565549d67a449c6bcd993b67f969c516b0fc5d87e9ef7a08bee4b080ad4fa0d194da80f4a551718715619d59915533468c70c4db057d422623dd8fc29b2c6cf58d80d3483f01598061842"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x47, 0x4, {'gcm(aes)\x00', 0x1f, "5b8d20da1890845443a447d346c7ffc66687df530233d1df63c592a370ebec"}}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0xc6}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7ff}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x4}, 0x8000)
unlinkat(r0, &(0x7f0000001d80)='./file0\x00', 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000034c0)={&(0x7f00000020c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10, &(0x7f0000003440)=[{&(0x7f0000002100)="2b1ed749b51f0d3b0500f79402a6612c0f5a5c", 0x13}, {&(0x7f0000002140)="e68ad961b7ace02ceeaa6e45f4ea121cdd39af233c7e32a3a47f80bd23fb0a94a31a8d44a9d9c4bc96f98bfb106fa85b1244f7e5f11bbb075d2fe15b2cf3a3d1369e4bf82fab94c94092110170051dc66b8249e48b8f427465d5ce", 0x5b}, {&(0x7f00000021c0)="c9a572e6cd3ee191188cd8", 0xb}, {&(0x7f0000002200)="3e4dc3427886de1de394bfaca93c86be84cb69c17a3337db7d4794e7f4befdd5d6027cf5b86023ba27b15a401130e3d4d01a62781b4cfe72565d79bedb5dd5a021ffcb99fcc5761f87b492866d42fe7c3a17eee7e835f0c6b451f9f12288f2fe4bdf599341113b7a82de0c3f108fb2f7bd00ed", 0x73}, {&(0x7f0000002280)="1d7f54bf2a8bc7cc66246fb7ce064637cbfb8bf775bbfd60bf05b2c82575bf5590065da68925a9e257898ce30fb6a1c9c1a9672cbe63bba8130e0db403", 0x3d}, {&(0x7f00000022c0)="a87e17e71fd0e2465600c7c43cc7212ff7bc06be7815f1e46cd0e632f413a4fea29e86d0fbc30be05a17df4b36a0525ec5f7df466c0f9016f8659fd8aa668c285bdd9a0b26dfc6d1e5949c5daac046fed41847eb65129af28b8e8288a3db5ae9dcf7f37daa12e01204920c34223de4dc700fd8a6f95bb74d960b0959f3928ebe7866dd5875c4254052b5c32ad23d9593e05aff7738914f60b2194569d21261fb8bdda6670895b93e226242ccba5fd3d4d3f4cb7ab5714b1fea521aa8a0bb217ee7a79230fc71248eb788d406eb1197f6fcfbe53753bcb12ffbb6c048717fa5ad43b4301a8ea622d7ec9507abf4fcbd6945194542052b267c49177ae4", 0xfc}, {&(0x7f00000023c0)="d67f5e9f38bd0037f7c729c9c06e14baa8ad2272c6dc9a9ab7d9a0e347573f7976e992cb926ed5281c0244199c52014eaafe993389765cef1b3ab7d9f7a61c2b2bc07ca4c0735abaff5bec4fb1f488a03b4c975bccafca5f468e098fa6f14ddbd3427ef20ca8fc0b25ee9cfd2ae4b62051cfcd13ae", 0x75}, {&(0x7f0000002440)="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", 0x1000}], 0x8}, 0x810)

08:04:05 executing program 4:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config', 0x480001, 0x2)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000000100)={&(0x7f0000000040), 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x34, 0x7, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFTA_RULE_POSITION_ID={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x2}]}, 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x40)
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000140))
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff})
ioctl$sock_inet_SIOCGIFDSTADDR(r1, 0x8917, &(0x7f00000001c0)={'erspan0\x00', {0x2, 0x0, @remote}})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
getsockopt$sock_linger(r2, 0x1, 0xd, &(0x7f0000000240), &(0x7f0000000280)=0x8)
ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f00000002c0)='veth0_virt_wifi\x00')
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000300)={'geneve0\x00', {0x2, 0x0, @private}})
r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000340), 0x4401, 0x0)
getsockname$unix(r3, &(0x7f0000000380)=@abs, &(0x7f0000000400)=0x6e)
close(r0)
recvmmsg$unix(r0, &(0x7f0000001e80)=[{{&(0x7f0000000440)=@abs, 0x6e, &(0x7f0000001640)=[{&(0x7f00000004c0)=""/100, 0x64}, {&(0x7f0000000540)=""/208, 0xd0}, {&(0x7f0000000640)=""/4096, 0x1000}], 0x3, &(0x7f0000001680)=[@cred={{0x1c}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f00000016c0), 0x6e, &(0x7f0000001840)=[{&(0x7f0000001740)=""/183, 0xb7}, {&(0x7f0000001800)=""/16, 0x10}], 0x2}}, {{&(0x7f0000001880)=@abs, 0x6e, &(0x7f0000001c00)=[{&(0x7f0000001900)}, {&(0x7f0000001940)=""/148, 0x94}, {&(0x7f0000001a00)=""/254, 0xfe}, {&(0x7f0000001b00)=""/236, 0xec}], 0x4, &(0x7f0000001c40)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [<r4=>0xffffffffffffffff, 0xffffffffffffffff, <r5=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [<r7=>0xffffffffffffffff]}}], 0x80}}, {{&(0x7f0000001cc0), 0x6e, &(0x7f0000001e00)=[{&(0x7f0000001d40)=""/172, 0xac}], 0x1, &(0x7f0000001e40)=[@cred={{0x1c}}], 0x20}}], 0x4, 0x80, 0x0)
r8 = mq_open(&(0x7f0000001f80)='\\}$\x00', 0xc1, 0x1, &(0x7f0000001fc0)={0x6, 0x5014, 0x80})
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r6, 0xc018937c, &(0x7f0000002000)={{0x1, 0x1, 0x18, r8, {0x4}}, './file0\x00'})
ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000002040)={0x0, r8, 0x0, 0x80000001, 0x9, 0x57})
ioctl$PERF_EVENT_IOC_DISABLE(r7, 0x2401, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000002080)=0x1f, 0x4)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r4, &(0x7f00000021c0)={&(0x7f00000020c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000002180)={&(0x7f0000002100)={0x50, 0x0, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x235}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x3}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0xfff}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0xfffffffb}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x7}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x50}, 0x1, 0x0, 0x0, 0x804}, 0x20000040)
sendmsg$OSF_MSG_REMOVE(0xffffffffffffffff, &(0x7f0000002540)={&(0x7f0000002240)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000002500)={&(0x7f0000002280)={0x268, 0x1, 0x5, 0x101, 0x0, 0x0, {0x3, 0x0, 0x1}, [{{0x254, 0x1, {{0x2, 0x5}, 0x0, 0x6, 0x8, 0x9, 0x5, 'syz0\x00', "7084cb5cad8b4324371e0d6f6da0c4e2b496d064255f7040a52cb506efacf99e", "447136b6b5665096dcf9df19593e1b162fd6851f569b1f74dc9f540f2bd85322", [{0x649, 0x7f, {0x3, 0x3}}, {0x8, 0x3ff, {0x0, 0x9}}, {0xff, 0x90e, {0x2, 0x2}}, {0x3f, 0x1, {0x3, 0x5}}, {0xe62, 0x8, {0x1, 0x8}}, {0x5, 0xfffd, {0x1, 0xfff}}, {0x8000, 0x700, {0x0, 0x8}}, {0x1, 0xfffc, {0x3, 0x2}}, {0xff5, 0x6, {0x1, 0x45}}, {0x1, 0x5, {0x0, 0x7fff}}, {0x1ff, 0x2, {0x2, 0x7fffffff}}, {0x1000, 0x4, {0x1, 0x6}}, {0xf5, 0x6, {0x0, 0x8e2e}}, {0xff, 0xcf, {0x1, 0x10001}}, {0x5, 0x401, {0x0, 0x2}}, {0x7, 0x7, {0x2, 0x1ff}}, {0x7, 0x4, {0x0, 0x200}}, {0x0, 0xfffa, {0x1, 0x401}}, {0x3, 0x0, {0x70bcbe2f108e0b4, 0x3}}, {0x1, 0x7ff, {0x1, 0x3f}}, {0x8, 0x0, {0x0, 0x8}}, {0x7, 0x8, {0x3}}, {0x4, 0x80, {0x3, 0x6}}, {0x8, 0x7, {0x0, 0xfffff082}}, {0x7ae, 0x8001, {0x0, 0x3}}, {0x3ff, 0xef, {0x2, 0x5}}, {0xfbff, 0xff, {0x0, 0x83}}, {0x4, 0xffff, {0x0, 0x4}}, {0x99, 0x0, {0x3, 0x80000000}}, {0x1, 0x1, {0x1, 0xffff}}, {0x1a, 0x1, {0x1, 0x1}}, {0x1f96, 0x3, {0x2, 0xfffffe01}}, {0x6a00, 0x9, {0x1, 0x8}}, {0xa11, 0x6, {0x1, 0x6}}, {0x91b, 0x5ae4, {0x0, 0xa3c7}}, {0x8, 0x9, {0x3}}, {0x1000, 0xea1, {0x1, 0xc314}}, {0x8001, 0x5, {0x3, 0xffffffff}}, {0x7ff, 0x0, {0x2, 0x8}}, {0xbc43, 0x7, {0x2, 0x10000}}]}}}]}, 0x268}, 0x1, 0x0, 0x0, 0x20080808}, 0x4)

08:04:06 executing program 7:
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@empty, @link_local, @void, {@arp={0x806, @generic={0x108, 0x10, 0x6, 0x2, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, "6cdf", @random="5c81cd65dd26", "78d5f253fbd22197b10b"}}}}, &(0x7f0000000040)={0x1, 0x2, [0x4e6, 0x353, 0xcd1, 0xede]})
syz_emit_ethernet(0x5a, &(0x7f0000000080)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xd}, @multicast, @val={@void, {0x8100, 0x3, 0x0, 0x1}}, {@canfd={0xd, {{}, 0x13, 0x2, 0x0, 0x0, "6ca50162995950041929e864c69c2d5a0460c6c6523219c5c54fe3d8de2c19e371ae0d7b67bff5189cecfc9bc332291a3526550961a870523449a539dfa9be9e"}}}}, &(0x7f0000000100)={0x1, 0x1, [0x60c, 0xe5b, 0xcf1, 0xedb]})
syz_extract_tcp_res(&(0x7f0000000140)={<r0=>0x41424344}, 0x10000, 0x800)
syz_emit_ethernet(0x10a, &(0x7f0000000180)={@random="9c1eeda4cae8", @local, @val={@val={0x9100, 0x1, 0x0, 0x3}, {0x8100, 0x3, 0x1}}, {@ipv4={0x800, @tcp={{0x17, 0x4, 0x1, 0xa, 0xf4, 0x64, 0x0, 0x3, 0x6, 0x0, @empty, @local, {[@noop, @lsrr={0x83, 0x17, 0xe9, [@private=0xa010100, @broadcast, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1]}, @end, @ssrr={0x89, 0x1b, 0x8e, [@broadcast, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x17}, @loopback, @dev={0xac, 0x14, 0x14, 0x2f}, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @generic={0x88, 0x9, "2f9d4648740585"}, @lsrr={0x83, 0x7, 0x31, [@loopback]}, @noop]}}, {{0x4e22, 0x4e22, 0x41424344, r0, 0x1, 0x0, 0x14, 0x1, 0x3, 0x0, 0x6, {[@mptcp=@mp_join={0x1e, 0x3, 0x3}, @eol, @fastopen={0x22, 0xd, "2bca3cd8ada4ba29cd7cfc"}, @mptcp=@add_addr={0x1e, 0xf, 0x0, 0xf, 0xda, @broadcast, 0x9, "e15ccbff04"}, @sack_perm={0x4, 0x2}, @sack={0x5, 0xe, [0x1f, 0x6, 0x0]}, @timestamp={0x8, 0xa, 0x29cbba1b, 0x13}, @nop, @nop]}}, {"003e689ab1e34b50576308d68764260a49d3a8a9a00ad1ff3df7be45736c3a24ffce1a50db23a6c02bfae790b459ac36414c07d8ed4eeeaa139fe25ce0aaca71ebdac1233fce44ad"}}}}}}, &(0x7f00000002c0)={0x1, 0x4, [0xf36, 0xb71, 0xe58, 0x38b]})
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x4c, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x3ff}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
syz_emit_ethernet(0x70, &(0x7f0000000440)={@multicast, @random="4d3303f54f38", @val={@val={0x9100, 0x7, 0x0, 0x1}, {0x8100, 0x5, 0x1, 0x2}}, {@llc_tr={0x11, {@snap={0xaa, 0x1, "9568", "3ab7cf", 0x6007, "793122e507f9d8b8316f6d64b739db38ad399ad4cfcbe05bb6a443638e5d0549c2612aeec448be0be91d5a91adb1482ae86fb77253d8fc655cbb93536814593e6d0f07b1aab94626f8d98dbbbaf4030329"}}}}}, 0x0)
syz_emit_ethernet(0x55, &(0x7f00000004c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @remote, @void, {@mpls_mc={0x8848, {[{0x559}, {0x8001, 0x0, 0x1}, {0x1}], @generic="2cdb92ace4e816f5022235ea1d37aa0f08b478c75d33e95100488b5c81992994f2ac060def870baba98b81739b87d117683de357c5f018550df127"}}}}, &(0x7f0000000540)={0x0, 0x1, [0x1c6, 0x8ae, 0xa5e, 0x60f]})
r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x5c, r1, 0x0, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x400}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x2}]}, 0x5c}}, 0x84)
r2 = socket$inet6_icmp(0xa, 0x2, 0x3a)
recvfrom(r2, &(0x7f0000000700)=""/4096, 0x1000, 0x42, &(0x7f0000001700)=@llc={0x1a, 0x3, 0x60, 0x3f, 0x0, 0x8, @remote}, 0x80)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000001780))
syz_emit_ethernet(0x46, &(0x7f00000017c0)={@broadcast, @random="4d7983ddc9b1", @val={@void, {0x8100, 0x4, 0x1, 0x3}}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x3, @random="afd0c70d7681", @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @private1={0xfc, 0x1, '\x00', 0x1}}}}}, &(0x7f0000001840)={0x1, 0x1, [0x366, 0x378, 0x4b, 0x787]})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000018c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000001980)={&(0x7f0000001880)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001940)={&(0x7f0000001900)={0x14, r3, 0x2, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000805)
r4 = openat$null(0xffffffffffffff9c, &(0x7f00000019c0), 0x100, 0x0)
connect(r4, &(0x7f0000001a00)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-arm\x00'}, 0x80)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000001a80)={<r5=>r4, 0xe06, 0x7, 0x9})
sendmsg$NL80211_CMD_GET_WIPHY(r5, &(0x7f0000001b80)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001b40)={&(0x7f0000001b00)={0x1c, r3, 0x100, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x69}, @void, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4810}, 0x0)
recvfrom(r2, &(0x7f0000001bc0)=""/143, 0x8f, 0x40012122, &(0x7f0000001c80)=@xdp={0x2c, 0x1, 0x0, 0x28}, 0x80)

08:04:06 executing program 2:
ioctl$BTRFS_IOC_SNAP_CREATE(0xffffffffffffffff, 0x50009401, &(0x7f0000000000)={{}, "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"})
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000001000)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x7ff, 0x3}}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r0, 0x3312, 0x8)
read$snapshot(0xffffffffffffffff, &(0x7f0000001040)=""/177, 0xb1)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000001100)={<r1=>r0, 0x1000, 0x2, 0x50})
recvmsg$unix(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001200)=[{&(0x7f0000001140)=""/167, 0xa7}], 0x1, &(0x7f0000001240)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r4=>0x0}}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [<r5=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r8=>0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r9=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x128}, 0x40000023)
sendto$unix(r3, &(0x7f00000013c0)="69cb0603907e0e228e39bcaa37e2c008df6670034021f0e7d62473a0dee7ced91171925e12507acb50b789446814e6c2623a1efa182b8ebede779222f14950347c3fc0eef154e7087d8d7547bd5e6baa78e4a6a9a5e1b7a9c732b249ed37890324507872a852ec65818c21947295", 0x6e, 0x640480d5, &(0x7f0000001440)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
fcntl$getownex(r6, 0x10, &(0x7f00000014c0))
ioctl$BTRFS_IOC_BALANCE_V2(r8, 0xc4009420, &(0x7f0000001500)={0x13, 0x4, {0x80000001, @usage=0x1, 0x0, 0x6a, 0x9, 0xdc, 0x1ff, 0x2, 0x40a, @struct={0x401, 0x2}, 0x9, 0x7f, [0x1ff, 0x1000, 0x100000001, 0x80000000, 0x1, 0x4]}, {0x7fffffff, @struct={0xffffff7f, 0x8}, 0x0, 0x80000000, 0x9, 0x400, 0x2, 0x2, 0x28, @struct={0x1, 0x3}, 0x5, 0xfff, [0x0, 0x2, 0xdc, 0x4, 0xfffffffffffffff9, 0x5]}, {0x9, @struct={0x7, 0x9}, 0x0, 0x8, 0x8001, 0x9, 0x4, 0x6, 0x539, @struct={0x8, 0x7f}, 0x7, 0xfff, [0x0, 0xffffffffffffff01, 0xf9f7, 0x3675, 0x40, 0x4]}, {0x6, 0x10000, 0x8}})
fremovexattr(r8, &(0x7f0000001900)=@random={'trusted.', '!--}-@\x00'})
fsetxattr$security_ima(r5, &(0x7f0000001940), &(0x7f0000001980)=@v1={0x2, "8e3207ead5f2e812954a"}, 0xb, 0x2)
read$rfkill(r3, &(0x7f00000019c0), 0x8)
ioctl$F2FS_IOC_PRECACHE_EXTENTS(r7, 0xf50f, 0x0)
r10 = openat$bsg(0xffffffffffffff9c, &(0x7f0000001a00), 0xb0400, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r10, 0xc0189375, &(0x7f0000001a40)={{0x1, 0x1, 0x18, r9}, './file0/file0\x00'})
syz_genetlink_get_family_id$SEG6(&(0x7f0000001a80), r2)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000002000)={{{@in6=@mcast1, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in6=@mcast2}, 0x0, @in6=@private1}}, &(0x7f0000002100)=0xe8)
syz_mount_image$vfat(&(0x7f0000001ac0), &(0x7f0000001b00)='./file0\x00', 0x0, 0x6, &(0x7f0000001f40)=[{&(0x7f0000001b40)="c29fa265642c6e774c0c4d27c6d3b9164c36ca0ca23751518d5ebb5d36a6b74fdbad17358c8d3e64a199f835cfef4c69a71b43c08f5132462582a4b0223301869187c6a5027b7b1431cc239407c4c69613071ed5b77201d5a0a2ccc3ebe6d0c429102ec80e1593d5e34aa34ebcdec61465ce4354f7493fc1ef1c6b3c960be2ab4c", 0x81, 0x5b5}, {&(0x7f0000001c00)="3e46cf44a69d2c8bcb0443e931d5b82bc3e1cedc8af5d0ca213f1b7786385006aef2c1738879a3f28c6e22e06b053775e06c88179856fe4c253a1600ed6bea5e0b51607c1a4eb86936e0de200ff1ad4bdaba1c67bdf4cbaf308f8eedb9b879041f4d09e4ab1fdb19c1e85facc06b7f8435d7ddddcde4d4a52149a4bd646c3f24516df76f6c50100812ee74d1afb40fc5aa9e8d9c228fb48a2a9eff67e7ed6d67863304", 0xa3, 0x3}, {&(0x7f0000001cc0)="d911c77710770da9d59c61ec9fb19b22a957eaa2591f664b29a18ee7baa1b5ae6b958dc32f38463e2dbd93eaf75547eed63d0843bcc53c4f6dab4cac7b3dac8f93fec32985f67e0c603c0938a02f36b4a8b196f926ded89ccb1c48cf78dfa977fd21", 0x62, 0xffffffff}, {&(0x7f0000001d40)="ddadecf20af9f64514e894f9d3a4d7fd31a8321510da8b236608f42f8299c245187fc5f973cec1291ef690748b8e791e61def61ad62124d81cb77c2e36b60b4522ff5c1728cece17d7c9231e505eb5f6effcb6852377a08203118e966696fb50d03fcbff663301b77d0860a2311616ae525bb72c57295250b0f663bcc48873e9999842162b1c652d9ab9033051038cee8f2c6d56fdd8ae84e30ad992e67c66b521226d493b238628c0d49b656927bfcd40c7fafcae430a00edc76af9c736aa642d892006e21ce2e2991056fe1af74409c9b403f87e4027cb66ff19fbe307bc", 0xdf, 0x10001}, {&(0x7f0000001e40)="5d21bac66d59cae4247b61bf88e6efd7199dd7010c9e52aecf961de225f21152f9b2c2b463ee698be6fb83a3650bce96e8e0ab7fdfa469000d5f70402aa3b06f6e0956b00e49ad27145bd3bd42b38fb1468a33277f6d39c59324c2206b6d10ed55bff6c3fe7b5da972aecb615b1200a4d0038c05ec2ce8abc6ba1df5a09afed8d209c08058da1f75f4c2cb3921469f07eef2e8cd2a48af6dac9e80f2425716", 0x9f, 0x8}, {&(0x7f0000001f00)="a3c1a102cf23f44c2b56dbe693bd4cb9c081ba3f5dfce4ea9166fde72a279bca2886913be356a8e7e3f1a7440a734346f4a3a2e5e944a06ca777401219d8f137", 0x40, 0x549b94c6}], 0x100008, &(0x7f0000002140)={[{@shortname_winnt}, {@nonumtail}, {@uni_xlateno}, {@uni_xlate}, {@fat=@fmask={'fmask', 0x3d, 0x8}}, {@utf8}, {@utf8no}, {@rodir}], [{@smackfshat={'smackfshat', 0x3d, './'}}, {@euid_eq={'euid', 0x3d, r11}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'security.ima\x00'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@fsmagic={'fsmagic', 0x3d, 0xffff}}, {@fsname}, {@fowner_gt={'fowner>', r4}}, {@euid_lt={'euid<', r4}}]})
ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000002280)=0x8001)

08:04:06 executing program 5:
pread64(0xffffffffffffffff, &(0x7f0000000000)=""/4096, 0x1000, 0x0)
getsockopt(0xffffffffffffffff, 0x6, 0x4, &(0x7f0000001000), &(0x7f0000001040))
r0 = syz_io_uring_complete(0x0)
r1 = perf_event_open$cgroup(&(0x7f00000010c0)={0x3, 0x80, 0x5, 0x3, 0x1, 0x3f, 0x0, 0x2, 0x40000, 0xe, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x8, 0x4, @perf_bp={&(0x7f0000001080), 0x1}, 0x5000, 0x6, 0x2, 0x8, 0x101, 0x20, 0x1, 0x0, 0x401, 0x0, 0x4}, r0, 0xd, 0xffffffffffffffff, 0x2)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000009, 0x8010, r0, 0x10000000)
syz_io_uring_submit(0x0, r2, &(0x7f0000001140)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x1, 0x2000, @fd_index=0x7, 0xfff, 0x0, 0x0, 0x11, 0x1}, 0x1)
r3 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000001180), 0x40, 0x0)
open_by_handle_at(r3, &(0x7f00000011c0)=@FILEID_NILFS_WITH_PARENT={0x20, 0x62, {0x0, 0x8, 0x7, 0x400, 0x1ff}}, 0x120000)
getsockopt$IP_SET_OP_VERSION(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000001200), &(0x7f0000001240)=0x8)
r4 = pidfd_getfd(r0, r1, 0x0)
ioctl$BTRFS_IOC_DEFRAG(r4, 0x50009402, 0x0)
connect$802154_dgram(r1, &(0x7f0000001280)={0x24, @short={0x2, 0x0, 0xffff}}, 0x14)
ioctl$EXT4_IOC_SWAP_BOOT(0xffffffffffffffff, 0x6611)
ioctl$LOOP_CTL_REMOVE(r4, 0x4c81, 0x0)
copy_file_range(r3, &(0x7f00000012c0)=0x7f, r0, &(0x7f0000001300)=0x7, 0x8001, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(0xffffffffffffffff, 0x80049363, &(0x7f0000001340))
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001380)='*^\x00', &(0x7f00000013c0)='/proc/self\x00', 0x0)
setsockopt$inet6_IPV6_IPSEC_POLICY(r4, 0x29, 0x22, &(0x7f0000001400)={{{@in6=@local, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x4e22, 0x7, 0x4e23, 0x0, 0x2, 0x20, 0x80, 0x8, 0x0, 0xffffffffffffffff}, {0x40, 0x9, 0x4, 0x0, 0xb8, 0x6, 0x200, 0x7e0}, {0xbdad, 0x6, 0x1, 0xff}, 0xfffff000, 0x6e6bb9, 0x2, 0x0, 0x0, 0x3}, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x4d2, 0x2b}, 0xa, @in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x3505, 0x4, 0x1, 0x4, 0x4, 0x7fffffff, 0x5}}, 0xe8)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000001500)={{0x1, 0x1, 0x18, r4, {0xff}}, './file0\x00'})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001640)={&(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff7000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000001540)="ea39f6d063ceedef5fe39d1ab6754fa8177fa6861fe65e3b990b86d6d997612b8a866edccad08549e95bbe4842a2f28e717a0747d206bb3c00f66923d73fe549533b98cfb878f775afc1420bc6a266afc944f3d3022096c194277923b83ec971d4fd1247e7c96775983aa633c739a069771d25b6af718aa43bbbcca5a532deee120d7b4b32730f27d6329933c5a2ac93f4c95d343f1d5b7da08b95a717d45e81193c31fe245c0cb4d2790996980581b0c7aab265df24c43df5b7f6f7e1f6ea18f30d62dea08a6a77ac877d0ee0c28c5f10a58a67", 0xd4}, 0x68)

[   75.752231] audit: type=1400 audit(1664525046.061:6): avc:  denied  { execmem } for  pid=286 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
08:04:06 executing program 3:
ioctl$EVIOCGBITSW(0xffffffffffffffff, 0x80404525, &(0x7f0000000000)=""/186)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f00000000c0))
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000100)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x9}}, './file0\x00'})
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(r0, &(0x7f0000000300)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0xa0, r1, 0x1, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x2, 0xa}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x44}, @NL80211_ATTR_IE={0x25, 0x2a, [@ht={0x2d, 0x1a, {0x300, 0x1, 0x1, 0x0, {0x7, 0xff, 0x0, 0x0, 0x0, 0x1, 0x1, 0x2}, 0x800, 0x4, 0xda}}, @channel_switch={0x25, 0x3, {0x0, 0xb6}}]}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x11}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x46}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x11}]}, 0xa0}, 0x1, 0x0, 0x0, 0x220008d5}, 0x44000)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2, 0x810, r0, 0x0)
syz_io_uring_submit(r3, 0x0, &(0x7f0000000340)=@IORING_OP_SPLICE={0x1e, 0x1, 0x0, @fd=r0, 0x12, {0x0, r0}, 0x36, 0x9}, 0x80000001)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000380)={{0x1, 0x1, 0x18, <r4=>r0, {0xfffffffd}}, './file0\x00'})
fsetxattr$security_evm(r4, &(0x7f00000003c0), &(0x7f0000000400)=@sha1={0x1, "70b0f3d2447fc8f7d8378ebe061de55ab5e53185"}, 0x15, 0x3)
ioctl$EVIOCGABS2F(r4, 0x8018456f, &(0x7f0000000440)=""/223)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000540)={0x0, r4, 0x0, 0xfff, 0x8, 0x10000})
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000580)='./binderfs/custom1\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_GET_DEV_STATS(r5, 0xc4089434, &(0x7f00000005c0)={0x0, 0x8, 0x1, [0x8, 0xb1e, 0x7890601d, 0x4, 0x1], [0x8, 0x7, 0x8, 0xb3, 0x8, 0xd000000000000, 0x5, 0x5, 0x3, 0x3, 0x120000000, 0x7fff, 0x9, 0x8, 0x3f, 0x80, 0xc7, 0x7, 0x4, 0x3, 0x8, 0xebd, 0x9, 0x2, 0x1, 0x3, 0x9, 0x8000, 0x0, 0x10000, 0x2, 0x10000, 0xffffffffffff8000, 0x9, 0x100000000, 0x3f, 0x6, 0x9f0, 0x2, 0x200000000000, 0x5, 0x2, 0x9, 0xfffffffffffffffb, 0x5a8b, 0x100000001, 0xf749, 0x9, 0x2, 0x0, 0x2, 0x94, 0x100000000, 0xe0, 0x1, 0x3, 0x7, 0x0, 0x100, 0x9, 0x1f, 0x5, 0x9, 0x3, 0xfffffffffffffffe, 0x3bc, 0x3, 0x1e, 0x8, 0x401, 0x5, 0x10001, 0x3, 0x7, 0x81, 0x7fffffff, 0x6, 0x1, 0x7, 0x7fffffff, 0x1, 0x3, 0x75f9, 0xb1a2, 0xe6, 0x1ff, 0xa3, 0x0, 0x2, 0x9, 0x3, 0x45, 0xa92a, 0x0, 0x80000001, 0x4, 0xfffffffffffffff7, 0x7, 0x3f, 0xfff, 0xfd, 0x4, 0x9, 0x142, 0x81, 0x5, 0x0, 0x8, 0x7b, 0x0, 0x1, 0x5, 0x200, 0x0, 0xf0, 0x3, 0x1, 0xa35, 0x4, 0xfffffffffffff801]})
setsockopt$WPAN_WANTLQI(0xffffffffffffffff, 0x0, 0x3, &(0x7f0000000a00), 0x4)
ioctl$FITRIM(0xffffffffffffffff, 0xc0185879, &(0x7f0000000a40)={0x6, 0x9, 0x7ff})
preadv(r4, &(0x7f0000000d00)=[{&(0x7f0000000a80)=""/223, 0xdf}, {&(0x7f0000000b80)=""/67, 0x43}, {&(0x7f0000000c00)=""/140, 0x8c}, {&(0x7f0000000cc0)=""/41, 0x29}], 0x4, 0xb6e, 0x6)
pipe(&(0x7f0000000d40)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$int_out(r6, 0x5460, &(0x7f0000000d80))
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000e00)={{0x1, 0x1, 0x18}, './file0\x00'})

08:04:06 executing program 6:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'veth1_to_bond\x00', &(0x7f0000000000)=@ethtool_flash={0x33, 0xc6, './file0\x00'}})
r1 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x40000, 0x180)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000140)=0x1, 0x4)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000180)={'team0\x00', <r3=>0x0})
setsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f00000001c0)={@loopback, r3}, 0x14)
fallocate(0xffffffffffffffff, 0x0, 0x8, 0xfffffffffffffff8)
getpeername$netlink(r1, &(0x7f0000000200), &(0x7f0000000240)=0xc)
socket$inet6_udplite(0xa, 0x2, 0x88)
recvmmsg$unix(r1, &(0x7f0000000b40)=[{{&(0x7f0000000280)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000300)=""/19, 0x13}, {&(0x7f0000000340)=""/145, 0x91}, {&(0x7f0000000400)=""/20, 0x14}, {&(0x7f0000000440)=""/94, 0x5e}, {&(0x7f00000004c0)=""/48, 0x30}], 0x5, &(0x7f0000000580)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0xc0}}, {{&(0x7f0000000640), 0x6e, &(0x7f0000000980)=[{&(0x7f00000006c0)=""/213, 0xd5}, {&(0x7f00000007c0)=""/106, 0x6a}, {&(0x7f0000000840)=""/90, 0x5a}, {&(0x7f00000008c0)=""/173, 0xad}], 0x4, &(0x7f00000009c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x178}}], 0x2, 0x1, &(0x7f0000000bc0))
getsockopt$IP_VS_SO_GET_SERVICE(r6, 0x0, 0x483, &(0x7f0000000c00), &(0x7f0000000c80)=0x68)
r7 = openat2(r4, &(0x7f0000000cc0)='./file0\x00', &(0x7f0000000d00)={0x202, 0x122}, 0x18)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MESH(r7, &(0x7f0000000e40)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x2c, r8, 0x20, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4080}, 0xc004)
r9 = openat(r6, &(0x7f0000000e80)='./file0\x00', 0x400880, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r9, 0x40089413, &(0x7f0000000ec0)=0x9)
r10 = open(&(0x7f0000000f00)='./file0\x00', 0x0, 0x104)
getsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000000f40)={{{@in=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in=@initdev}, 0x0, @in=@empty}}, &(0x7f0000001040)=0xe8)
ioctl$sock_inet6_SIOCDELRT(r10, 0x890c, &(0x7f0000001080)={@private1={0xfc, 0x1, '\x00', 0x1}, @remote, @mcast1, 0x3, 0xfffb, 0x1150, 0x0, 0xfff, 0x0, r11})

[   77.041783] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.044380] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.046031] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.050283] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.053007] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   77.054673] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.065925] Bluetooth: hci0: HCI_REQ-0x0c1a
[   77.110776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   77.112799] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   77.113691] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   77.133522] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   77.134660] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   77.135528] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   77.146274] Bluetooth: hci2: HCI_REQ-0x0c1a
[   77.167564] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   77.169058] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   77.170926] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   77.173398] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   77.174998] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   77.182613] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   77.186530] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   77.188423] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   77.192600] Bluetooth: hci5: HCI_REQ-0x0c1a
[   77.195522] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   77.197039] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[   77.198565] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   77.199290] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[   77.200364] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   77.201354] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[   77.202094] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   77.202976] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   77.205122] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   77.206624] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[   77.207463] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   77.217885] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   77.218815] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   77.219512] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   77.220852] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[   77.222099] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   77.222871] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[   77.223932] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   77.225509] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   77.228277] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   77.231340] Bluetooth: hci3: HCI_REQ-0x0c1a
[   77.232824] Bluetooth: hci7: HCI_REQ-0x0c1a
[   77.259262] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   77.260108] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   77.264757] Bluetooth: hci6: HCI_REQ-0x0c1a
[   77.303771] Bluetooth: hci4: HCI_REQ-0x0c1a
[   79.123293] Bluetooth: hci1: Opcode 0x c03 failed: -110
[   79.124011] Bluetooth: hci0: command 0x0409 tx timeout
[   79.187309] Bluetooth: hci2: command 0x0409 tx timeout
[   79.251338] Bluetooth: hci3: command 0x0409 tx timeout
[   79.251358] Bluetooth: hci7: command 0x0409 tx timeout
[   79.317192] Bluetooth: hci6: command 0x0409 tx timeout
[   79.379237] Bluetooth: hci5: command 0x0409 tx timeout
[   79.379841] Bluetooth: hci4: command 0x0409 tx timeout
[   81.172300] Bluetooth: hci0: command 0x041b tx timeout
[   81.236770] Bluetooth: hci2: command 0x041b tx timeout
[   81.299266] Bluetooth: hci7: command 0x041b tx timeout
[   81.300752] Bluetooth: hci3: command 0x041b tx timeout
[   81.363232] Bluetooth: hci6: command 0x041b tx timeout
[   81.427350] Bluetooth: hci4: command 0x041b tx timeout
[   81.428082] Bluetooth: hci5: command 0x041b tx timeout
[   82.281073] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   82.283824] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   82.285632] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   82.291543] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   82.321337] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   82.325813] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   82.346942] Bluetooth: hci1: HCI_REQ-0x0c1a
[   83.219230] Bluetooth: hci0: command 0x040f tx timeout
[   83.283240] Bluetooth: hci2: command 0x040f tx timeout
[   83.347267] Bluetooth: hci3: command 0x040f tx timeout
[   83.347753] Bluetooth: hci7: command 0x040f tx timeout
[   83.411213] Bluetooth: hci6: command 0x040f tx timeout
[   83.475275] Bluetooth: hci5: command 0x040f tx timeout
[   83.475750] Bluetooth: hci4: command 0x040f tx timeout
[   84.371248] Bluetooth: hci1: command 0x0409 tx timeout
[   85.267324] Bluetooth: hci0: command 0x0419 tx timeout
[   85.331245] Bluetooth: hci2: command 0x0419 tx timeout
[   85.395250] Bluetooth: hci7: command 0x0419 tx timeout
[   85.396011] Bluetooth: hci3: command 0x0419 tx timeout
[   85.459263] Bluetooth: hci6: command 0x0419 tx timeout
[   85.523237] Bluetooth: hci4: command 0x0419 tx timeout
[   85.523987] Bluetooth: hci5: command 0x0419 tx timeout
[   86.419879] Bluetooth: hci1: command 0x041b tx timeout
[   88.467202] Bluetooth: hci1: command 0x040f tx timeout
[   90.515247] Bluetooth: hci1: command 0x0419 tx timeout
[  135.772465] loop2: detected capacity change from 0 to 264192
[  135.799956] loop2: detected capacity change from 0 to 264192
[  138.591093] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  138.592312] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  138.594123] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  138.597120] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  138.599408] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  138.600768] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  138.604317] Bluetooth: hci2: HCI_REQ-0x0c1a
[  138.839694] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  138.894356] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  138.898689] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  138.901681] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  138.903931] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  138.905358] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  138.906488] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  138.908935] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  138.910967] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  138.912094] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  138.917072] Bluetooth: hci4: HCI_REQ-0x0c1a
[  138.917080] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  138.932467] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  138.949272] Bluetooth: hci7: HCI_REQ-0x0c1a
[  139.825400] audit: type=1400 audit(1664525110.135:7): avc:  denied  { open } for  pid=3950 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  140.627227] Bluetooth: hci2: command 0x0409 tx timeout
[  140.819247] Bluetooth: hci3: Opcode 0x c03 failed: -110
[  140.883208] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  140.948233] Bluetooth: hci4: command 0x0409 tx timeout
[  141.012274] Bluetooth: hci7: command 0x0409 tx timeout
[  142.675224] Bluetooth: hci2: command 0x041b tx timeout
[  142.995340] Bluetooth: hci4: command 0x041b tx timeout
[  143.059198] Bluetooth: hci7: command 0x041b tx timeout
[  143.127003] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  143.129078] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  143.130120] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  143.132898] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  143.134997] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  143.135725] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  143.139457] Bluetooth: hci3: HCI_REQ-0x0c1a
[  144.723257] Bluetooth: hci2: command 0x040f tx timeout
[  145.043231] Bluetooth: hci4: command 0x040f tx timeout
[  145.107215] Bluetooth: hci7: command 0x040f tx timeout
[  145.171238] Bluetooth: hci3: command 0x0409 tx timeout
[  145.235229] Bluetooth: hci6: Opcode 0x c03 failed: -110
[  146.771231] Bluetooth: hci2: command 0x0419 tx timeout
[  147.091227] Bluetooth: hci4: command 0x0419 tx timeout
[  147.155226] Bluetooth: hci7: command 0x0419 tx timeout
[  147.219242] Bluetooth: hci3: command 0x041b tx timeout
[  147.621360] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  147.624713] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  147.627791] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  147.635773] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  147.639570] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  147.641681] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  147.646556] Bluetooth: hci6: HCI_REQ-0x0c1a
[  149.267215] Bluetooth: hci3: command 0x040f tx timeout
[  149.715225] Bluetooth: hci6: command 0x0409 tx timeout
[  151.315620] Bluetooth: hci3: command 0x0419 tx timeout
[  151.763234] Bluetooth: hci6: command 0x041b tx timeout
[  153.811355] Bluetooth: hci6: command 0x040f tx timeout
[  155.859227] Bluetooth: hci6: command 0x0419 tx timeout
[  187.717011] audit: type=1400 audit(1664525158.026:8): avc:  denied  { kernel } for  pid=6207 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  187.732892] ------------[ cut here ]------------
[  187.732913] 
[  187.732916] ======================================================
08:05:58 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000140))
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x220000, 0x0)
openat(r1, &(0x7f00000003c0)='./file1\x00', 0x402, 0x1bb)
ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000000)=0xc17d)

08:05:58 executing program 6:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'veth1_to_bond\x00', &(0x7f0000000000)=@ethtool_flash={0x33, 0xc6, './file0\x00'}})
r1 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x40000, 0x180)
setsockopt$inet6_mtu(r0, 0x29, 0x17, &(0x7f0000000140)=0x1, 0x4)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000180)={'team0\x00', <r3=>0x0})
setsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f00000001c0)={@loopback, r3}, 0x14)
fallocate(0xffffffffffffffff, 0x0, 0x8, 0xfffffffffffffff8)
getpeername$netlink(r1, &(0x7f0000000200), &(0x7f0000000240)=0xc)
socket$inet6_udplite(0xa, 0x2, 0x88)
recvmmsg$unix(r1, &(0x7f0000000b40)=[{{&(0x7f0000000280)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f0000000300)=""/19, 0x13}, {&(0x7f0000000340)=""/145, 0x91}, {&(0x7f0000000400)=""/20, 0x14}, {&(0x7f0000000440)=""/94, 0x5e}, {&(0x7f00000004c0)=""/48, 0x30}], 0x5, &(0x7f0000000580)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff]}}, @cred={{0x1c}}], 0xc0}}, {{&(0x7f0000000640), 0x6e, &(0x7f0000000980)=[{&(0x7f00000006c0)=""/213, 0xd5}, {&(0x7f00000007c0)=""/106, 0x6a}, {&(0x7f0000000840)=""/90, 0x5a}, {&(0x7f00000008c0)=""/173, 0xad}], 0x4, &(0x7f00000009c0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x178}}], 0x2, 0x1, &(0x7f0000000bc0))
getsockopt$IP_VS_SO_GET_SERVICE(r6, 0x0, 0x483, &(0x7f0000000c00), &(0x7f0000000c80)=0x68)
r7 = openat2(r4, &(0x7f0000000cc0)='./file0\x00', &(0x7f0000000d00)={0x202, 0x122}, 0x18)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000d80), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MESH(r7, &(0x7f0000000e40)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x2c, r8, 0x20, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4080}, 0xc004)
r9 = openat(r6, &(0x7f0000000e80)='./file0\x00', 0x400880, 0x0)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r9, 0x40089413, &(0x7f0000000ec0)=0x9)
r10 = open(&(0x7f0000000f00)='./file0\x00', 0x0, 0x104)
getsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000000f40)={{{@in=@loopback, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0}}, {{@in=@initdev}, 0x0, @in=@empty}}, &(0x7f0000001040)=0xe8)
ioctl$sock_inet6_SIOCDELRT(r10, 0x890c, &(0x7f0000001080)={@private1={0xfc, 0x1, '\x00', 0x1}, @remote, @mcast1, 0x3, 0xfffb, 0x1150, 0x0, 0xfff, 0x0, r11})

08:05:58 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x581140, 0x0)
fallocate(r0, 0x0, 0x0, 0x87ffffc)
pwritev(r0, &(0x7f0000000000)=[{&(0x7f0000001340)="e4eb8e5355feefc9b3c48a57cf1602a197c4b0087f7e5812368dc3bab70e0418263fc620b190aa02558bcfb0e65cb7786074964845b33e3618af6ae487cb258242e1e8731eec366954e0c20a64f07e48", 0x50}], 0x1, 0x8d, 0x7bf6)
creat(&(0x7f0000000080)='./file1\x00', 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, 0x0, 0x2, 0x6767})
r2 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r2, &(0x7f0000000140)={0xa, 0x0, 0x0, @private0}, 0xfffffffffffffea8)
socketpair(0xb, 0x6, 0x101, &(0x7f0000000180)={<r3=>0xffffffffffffffff})
dup(r3)
close_range(r1, r3, 0x0)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x9, &(0x7f00000005c0)=0xe8, 0x4)
getsockopt$SO_COOKIE(r2, 0x1, 0x39, &(0x7f0000000000), &(0x7f0000000040)=0x8)
close(r2)

08:05:58 executing program 7:
syz_emit_ethernet(0x2e, &(0x7f0000000000)={@empty, @link_local, @void, {@arp={0x806, @generic={0x108, 0x10, 0x6, 0x2, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, "6cdf", @random="5c81cd65dd26", "78d5f253fbd22197b10b"}}}}, &(0x7f0000000040)={0x1, 0x2, [0x4e6, 0x353, 0xcd1, 0xede]})
syz_emit_ethernet(0x5a, &(0x7f0000000080)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xd}, @multicast, @val={@void, {0x8100, 0x3, 0x0, 0x1}}, {@canfd={0xd, {{}, 0x13, 0x2, 0x0, 0x0, "6ca50162995950041929e864c69c2d5a0460c6c6523219c5c54fe3d8de2c19e371ae0d7b67bff5189cecfc9bc332291a3526550961a870523449a539dfa9be9e"}}}}, &(0x7f0000000100)={0x1, 0x1, [0x60c, 0xe5b, 0xcf1, 0xedb]})
syz_extract_tcp_res(&(0x7f0000000140)={<r0=>0x41424344}, 0x10000, 0x800)
syz_emit_ethernet(0x10a, &(0x7f0000000180)={@random="9c1eeda4cae8", @local, @val={@val={0x9100, 0x1, 0x0, 0x3}, {0x8100, 0x3, 0x1}}, {@ipv4={0x800, @tcp={{0x17, 0x4, 0x1, 0xa, 0xf4, 0x64, 0x0, 0x3, 0x6, 0x0, @empty, @local, {[@noop, @lsrr={0x83, 0x17, 0xe9, [@private=0xa010100, @broadcast, @remote, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1]}, @end, @ssrr={0x89, 0x1b, 0x8e, [@broadcast, @private=0xa010102, @dev={0xac, 0x14, 0x14, 0x17}, @loopback, @dev={0xac, 0x14, 0x14, 0x2f}, @initdev={0xac, 0x1e, 0x0, 0x0}]}, @generic={0x88, 0x9, "2f9d4648740585"}, @lsrr={0x83, 0x7, 0x31, [@loopback]}, @noop]}}, {{0x4e22, 0x4e22, 0x41424344, r0, 0x1, 0x0, 0x14, 0x1, 0x3, 0x0, 0x6, {[@mptcp=@mp_join={0x1e, 0x3, 0x3}, @eol, @fastopen={0x22, 0xd, "2bca3cd8ada4ba29cd7cfc"}, @mptcp=@add_addr={0x1e, 0xf, 0x0, 0xf, 0xda, @broadcast, 0x9, "e15ccbff04"}, @sack_perm={0x4, 0x2}, @sack={0x5, 0xe, [0x1f, 0x6, 0x0]}, @timestamp={0x8, 0xa, 0x29cbba1b, 0x13}, @nop, @nop]}}, {"003e689ab1e34b50576308d68764260a49d3a8a9a00ad1ff3df7be45736c3a24ffce1a50db23a6c02bfae790b459ac36414c07d8ed4eeeaa139fe25ce0aaca71ebdac1233fce44ad"}}}}}}, &(0x7f00000002c0)={0x1, 0x4, [0xf36, 0xb71, 0xe58, 0x38b]})
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x4c, 0x0, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@BATADV_ATTR_GW_MODE={0x5}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x5}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x4}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x3ff}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x40000)
syz_emit_ethernet(0x70, &(0x7f0000000440)={@multicast, @random="4d3303f54f38", @val={@val={0x9100, 0x7, 0x0, 0x1}, {0x8100, 0x5, 0x1, 0x2}}, {@llc_tr={0x11, {@snap={0xaa, 0x1, "9568", "3ab7cf", 0x6007, "793122e507f9d8b8316f6d64b739db38ad399ad4cfcbe05bb6a443638e5d0549c2612aeec448be0be91d5a91adb1482ae86fb77253d8fc655cbb93536814593e6d0f07b1aab94626f8d98dbbbaf4030329"}}}}}, 0x0)
syz_emit_ethernet(0x55, &(0x7f00000004c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @remote, @void, {@mpls_mc={0x8848, {[{0x559}, {0x8001, 0x0, 0x1}, {0x1}], @generic="2cdb92ace4e816f5022235ea1d37aa0f08b478c75d33e95100488b5c81992994f2ac060def870baba98b81739b87d117683de357c5f018550df127"}}}}, &(0x7f0000000540)={0x0, 0x1, [0x1c6, 0x8ae, 0xa5e, 0x60f]})
r1 = syz_genetlink_get_family_id$batadv(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_TP_METER_CANCEL(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x5c, r1, 0x0, 0x70bd28, 0x25dfdbfe, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x3}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x400}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x2}]}, 0x5c}}, 0x84)
r2 = socket$inet6_icmp(0xa, 0x2, 0x3a)
recvfrom(r2, &(0x7f0000000700)=""/4096, 0x1000, 0x42, &(0x7f0000001700)=@llc={0x1a, 0x3, 0x60, 0x3f, 0x0, 0x8, @remote}, 0x80)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000001780))
syz_emit_ethernet(0x46, &(0x7f00000017c0)={@broadcast, @random="4d7983ddc9b1", @val={@void, {0x8100, 0x4, 0x1, 0x3}}, {@arp={0x806, @ether_ipv6={0x1, 0x86dd, 0x6, 0x10, 0x3, @random="afd0c70d7681", @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @private1={0xfc, 0x1, '\x00', 0x1}}}}}, &(0x7f0000001840)={0x1, 0x1, [0x366, 0x378, 0x4b, 0x787]})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000018c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f0000001980)={&(0x7f0000001880)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000001940)={&(0x7f0000001900)={0x14, r3, 0x2, 0x70bd25, 0x25dfdbfd, {{}, {@void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000040}, 0x4000805)
r4 = openat$null(0xffffffffffffff9c, &(0x7f00000019c0), 0x100, 0x0)
connect(r4, &(0x7f0000001a00)=@alg={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-arm\x00'}, 0x80)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000001a80)={<r5=>r4, 0xe06, 0x7, 0x9})
sendmsg$NL80211_CMD_GET_WIPHY(r5, &(0x7f0000001b80)={&(0x7f0000001ac0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001b40)={&(0x7f0000001b00)={0x1c, r3, 0x100, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x69}, @void, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4810}, 0x0)
recvfrom(r2, &(0x7f0000001bc0)=""/143, 0x8f, 0x40012122, &(0x7f0000001c80)=@xdp={0x2c, 0x1, 0x0, 0x28}, 0x80)

08:05:58 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x6, 0x20, 0xc, 0x4, 0x0, 0x80000001, 0x84200, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xe4, 0x2, @perf_bp={&(0x7f00000001c0), 0xf}, 0x30190, 0x3cd6, 0x7, 0x9, 0x2, 0x4, 0x400, 0x0, 0x7f}, 0xffffffffffffffff, 0xf, r0, 0xb)
r2 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xfa, 0x1, 0xf0, 0x8, 0x0, 0x1f, 0x1a00, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3f, 0x2, @perf_config_ext={0xa75, 0x7}, 0x2004, 0x7, 0x2, 0x3, 0xffffffffffffffe3, 0x81, 0x7fff, 0x0, 0x3, 0x0, 0x6}, 0x0, 0x5, r1, 0x2)
clone3(0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000400)=ANY=[@ANYBLOB="160606000000000000a2e5e5b2c69284421b5d43da7223ab3c49a62b4b6fc74f261add400e9905bdc95d954a01a7476e504672c02afcfd3cee6dfbd62f1f7f025c206859", @ANYRES32=<r4=>r2, @ANYBLOB="6e0077e6f97e77e66eb640f6ecc3beecc82300"])
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000200)=0x9)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x100, 0x8)
fstat(r5, &(0x7f0000000280))
ioctl$VFAT_IOCTL_READDIR_BOTH(r3, 0x82307201, &(0x7f0000000480)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r6 = getpid()
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe2, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0x12a600, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0xfe4a, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r6, 0x1, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000300)={0x3, 0x80, 0x40, 0x1, 0x3f, 0x72, 0x0, 0x2, 0x8b000, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000000040), 0x4}, 0x800, 0x8, 0x10000, 0x3, 0x49, 0x1, 0x6, 0x0, 0x369b, 0x0, 0x1}, r6, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x3f, 0x80, 0xfc, 0x41, 0x0, 0xf3, 0x1020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x9, 0x7fff}, 0x2000, 0xff, 0x7fffffff, 0x9, 0x9, 0x7f9e, 0x4a, 0x0, 0x5, 0x0, 0xa2}, r6, 0x3, 0xffffffffffffffff, 0x0)

08:05:58 executing program 5:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0)
chroot(&(0x7f0000000000)='./file0/file0\x00')
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = io_uring_setup(0x454c, &(0x7f0000000240))
setxattr$security_capability(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340), &(0x7f0000000500)=@v3={0x3000000, [{0x0, 0x72}, {0xffffffff, 0x2}]}, 0x18, 0x2)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x4800)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000340), 0x8, 0x0)
signalfd4(r4, &(0x7f00000007c0)={[0xa62]}, 0x8, 0x80000)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb, 0x7}, 0x15182, 0x7}, 0x0, 0xffffffffffffffff, r3, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r2, 0x7, &(0x7f0000000480), 0x1)
sendfile(r1, r0, 0x0, 0xfffffdef)
pipe2(&(0x7f0000000180)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x4800)
ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x2400, 0x7f)

08:05:58 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4800)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000340), 0x8, 0x0)
signalfd4(r2, &(0x7f00000007c0)={[0xa62]}, 0x8, 0x80000)
[  187.732919] WARNING: possible circular locking dependency detected
[  187.732923] 6.0.0-rc7-next-20220929 #1 Not tainted
[  187.732930] ------------------------------------------------------
[  187.732933] syz-executor.4/6208 is trying to acquire lock:
[  187.732939] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70
[  187.732982] 
[  187.732982] but task is already holding lock:
[  187.732985] ffff88800f35d020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  187.733012] 
[  187.733012] which lock already depends on the new lock.
[  187.733012] 
[  187.733015] 
[  187.733015] the existing dependency chain (in reverse order) is:
[  187.733019] 
[  187.733019] -> #3 (&ctx->lock){....}-{2:2}:
[  187.733032]        _raw_spin_lock+0x2a/0x40
[  187.733044]        __perf_event_task_sched_out+0x53b/0x18d0
[  187.733055]        __schedule+0xedd/0x2470
[  187.733069]        schedule+0xda/0x1b0
[  187.733082]        futex_wait_queue+0xf5/0x1e0
[  187.733096]        futex_wait+0x28e/0x690
[  187.733106]        do_futex+0x2ff/0x380
[  187.733115]        __x64_sys_futex+0x1c6/0x4d0
[  187.733125]        do_syscall_64+0x3b/0x90
[  187.733146]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.733159] 
[  187.733159] -> #2 (&rq->__lock){-.-.}-{2:2}:
[  187.733172]        _raw_spin_lock_nested+0x30/0x40
[  187.733183]        raw_spin_rq_lock_nested+0x1e/0x30
[  187.733196]        task_fork_fair+0x63/0x4d0
[  187.733213]        sched_cgroup_fork+0x3d0/0x540
[  187.733227]        copy_process+0x4183/0x6e20
[  187.733239]        kernel_clone+0xe7/0x890
[  187.733248]        user_mode_thread+0xad/0xf0
[  187.733258]        rest_init+0x24/0x250
[  187.733270]        arch_call_rest_init+0xf/0x14
[  187.733287]        start_kernel+0x4c6/0x4eb
[  187.733302]        secondary_startup_64_no_verify+0xe0/0xeb
[  187.733316] 
[  187.733316] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  187.733330]        _raw_spin_lock_irqsave+0x39/0x60
[  187.733341]        try_to_wake_up+0xab/0x1930
[  187.733354]        up+0x75/0xb0
[  187.733367]        __up_console_sem+0x6e/0x80
[  187.733383]        console_unlock+0x46a/0x590
[  187.733399]        vprintk_emit+0x1bd/0x560
[  187.733415]        vprintk+0x84/0xa0
[  187.733431]        _printk+0xba/0xf1
[  187.733443]        kauditd_hold_skb.cold+0x3f/0x4e
[  187.733460]        kauditd_send_queue+0x233/0x290
[  187.733475]        kauditd_thread+0x5f9/0x9c0
[  187.733489]        kthread+0x2ed/0x3a0
[  187.733504]        ret_from_fork+0x22/0x30
[  187.733516] 
[  187.733516] -> #0 ((console_sem).lock){....}-{2:2}:
[  187.733530]        __lock_acquire+0x2a02/0x5e70
[  187.733547]        lock_acquire+0x1a2/0x530
[  187.733562]        _raw_spin_lock_irqsave+0x39/0x60
[  187.733573]        down_trylock+0xe/0x70
[  187.733587]        __down_trylock_console_sem+0x3b/0xd0
[  187.733606]        vprintk_emit+0x16b/0x560
[  187.733622]        vprintk+0x84/0xa0
[  187.733638]        _printk+0xba/0xf1
[  187.733648]        report_bug.cold+0x72/0xab
[  187.733664]        handle_bug+0x3c/0x70
[  187.733680]        exc_invalid_op+0x14/0x50
[  187.733697]        asm_exc_invalid_op+0x16/0x20
[  187.733709]        group_sched_out.part.0+0x2c7/0x460
[  187.733726]        ctx_sched_out+0x8f1/0xc10
[  187.733743]        __perf_event_task_sched_out+0x6d0/0x18d0
[  187.733754]        __schedule+0xedd/0x2470
[  187.733767]        schedule+0xda/0x1b0
[  187.733780]        exit_to_user_mode_prepare+0x114/0x1a0
[  187.733792]        syscall_exit_to_user_mode+0x19/0x40
[  187.733805]        do_syscall_64+0x48/0x90
[  187.733821]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.733834] 
[  187.733834] other info that might help us debug this:
[  187.733834] 
[  187.733836] Chain exists of:
[  187.733836]   (console_sem).lock --> &rq->__lock --> &ctx->lock
[  187.733836] 
[  187.733851]  Possible unsafe locking scenario:
[  187.733851] 
[  187.733854]        CPU0                    CPU1
[  187.733856]        ----                    ----
[  187.733858]   lock(&ctx->lock);
[  187.733864]                                lock(&rq->__lock);
[  187.733871]                                lock(&ctx->lock);
[  187.733877]   lock((console_sem).lock);
[  187.733883] 
[  187.733883]  *** DEADLOCK ***
[  187.733883] 
[  187.733885] 2 locks held by syz-executor.4/6208:
[  187.733891]  #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470
[  187.733921]  #1: ffff88800f35d020 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0
[  187.733947] 
[  187.733947] stack backtrace:
[  187.733950] CPU: 1 PID: 6208 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220929 #1
[  187.733963] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  187.733971] Call Trace:
[  187.733974]  <TASK>
[  187.733978]  dump_stack_lvl+0x8b/0xb3
[  187.733997]  check_noncircular+0x263/0x2e0
[  187.734014]  ? format_decode+0x26c/0xb50
[  187.734031]  ? print_circular_bug+0x450/0x450
[  187.734048]  ? enable_ptr_key_workfn+0x20/0x20
[  187.734065]  ? format_decode+0x26c/0xb50
[  187.734083]  ? alloc_chain_hlocks+0x1ec/0x5a0
[  187.734102]  __lock_acquire+0x2a02/0x5e70
[  187.734125]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  187.734143]  ? __mutex_add_waiter+0x120/0x120
[  187.734163]  lock_acquire+0x1a2/0x530
[  187.734180]  ? down_trylock+0xe/0x70
[  187.734197]  ? lock_release+0x750/0x750
[  187.734224]  ? __lock_acquire+0x164d/0x5e70
[  187.734242]  ? vprintk+0x84/0xa0
[  187.734261]  _raw_spin_lock_irqsave+0x39/0x60
[  187.734272]  ? down_trylock+0xe/0x70
[  187.734288]  down_trylock+0xe/0x70
[  187.734304]  ? vprintk+0x84/0xa0
[  187.734321]  __down_trylock_console_sem+0x3b/0xd0
[  187.734338]  vprintk_emit+0x16b/0x560
[  187.734358]  vprintk+0x84/0xa0
[  187.734375]  _printk+0xba/0xf1
[  187.734387]  ? record_print_text.cold+0x16/0x16
[  187.734404]  ? report_bug.cold+0x66/0xab
[  187.734422]  ? group_sched_out.part.0+0x2c7/0x460
[  187.734441]  report_bug.cold+0x72/0xab
[  187.734460]  handle_bug+0x3c/0x70
[  187.734477]  exc_invalid_op+0x14/0x50
[  187.734495]  asm_exc_invalid_op+0x16/0x20
[  187.734508] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  187.734529] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  187.734540] RSP: 0018:ffff88804083fc48 EFLAGS: 00010006
[  187.734549] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  187.734557] RDX: ffff888040228000 RSI: ffffffff81565e67 RDI: 0000000000000005
[  187.734565] RBP: ffff88803f428000 R08: 0000000000000005 R09: 0000000000000001
[  187.734572] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800f35d000
[  187.734580] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002
[  187.734592]  ? group_sched_out.part.0+0x2c7/0x460
[  187.734613]  ? group_sched_out.part.0+0x2c7/0x460
[  187.734633]  ctx_sched_out+0x8f1/0xc10
[  187.734654]  __perf_event_task_sched_out+0x6d0/0x18d0
[  187.734669]  ? lock_is_held_type+0xd7/0x130
[  187.734683]  ? __perf_cgroup_move+0x160/0x160
[  187.734694]  ? set_next_entity+0x304/0x550
[  187.734711]  ? update_curr+0x267/0x740
[  187.734731]  ? lock_is_held_type+0xd7/0x130
[  187.734745]  __schedule+0xedd/0x2470
[  187.734763]  ? io_schedule_timeout+0x150/0x150
[  187.734780]  ? rcu_read_lock_sched_held+0x3e/0x80
[  187.734802]  schedule+0xda/0x1b0
[  187.734817]  exit_to_user_mode_prepare+0x114/0x1a0
[  187.734830]  syscall_exit_to_user_mode+0x19/0x40
[  187.734844]  do_syscall_64+0x48/0x90
[  187.734861]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.734874] RIP: 0033:0x7f4d06a94b19
[  187.734883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  187.734894] RSP: 002b:00007f4d0400a218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  187.734904] RAX: 0000000000000001 RBX: 00007f4d06ba7f68 RCX: 00007f4d06a94b19
[  187.734912] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4d06ba7f6c
[  187.734919] RBP: 00007f4d06ba7f60 R08: 000000000000000e R09: 0000000000000000
[  187.734926] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f4d06ba7f6c
[  187.734934] R13: 00007ffca5802ccf R14: 00007f4d0400a300 R15: 0000000000022000
[  187.734948]  </TASK>
[  187.793556] WARNING: CPU: 1 PID: 6208 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460
[  187.794251] Modules linked in:
[  187.794496] CPU: 1 PID: 6208 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220929 #1
[  187.795089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  187.795911] RIP: 0010:group_sched_out.part.0+0x2c7/0x460
[  187.796323] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00
[  187.797648] RSP: 0018:ffff88804083fc48 EFLAGS: 00010006
[  187.798043] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000
[  187.798575] RDX: ffff888040228000 RSI: ffffffff81565e67 RDI: 0000000000000005
[  187.799104] RBP: ffff88803f428000 R08: 0000000000000005 R09: 0000000000000001
[  187.799625] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800f35d000
[  187.800147] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002
[  187.800668] FS:  00007f4d0400a700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  187.801261] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  187.801689] CR2: 00007f4055a90547 CR3: 000000001d74a000 CR4: 0000000000350ee0
[  187.802223] Call Trace:
[  187.802424]  <TASK>
[  187.802597]  ctx_sched_out+0x8f1/0xc10
[  187.802902]  __perf_event_task_sched_out+0x6d0/0x18d0
[  187.803288]  ? lock_is_held_type+0xd7/0x130
[  187.803616]  ? __perf_cgroup_move+0x160/0x160
[  187.803956]  ? set_next_entity+0x304/0x550
[  187.804278]  ? update_curr+0x267/0x740
[  187.804586]  ? lock_is_held_type+0xd7/0x130
[  187.804918]  __schedule+0xedd/0x2470
[  187.805203]  ? io_schedule_timeout+0x150/0x150
[  187.805558]  ? rcu_read_lock_sched_held+0x3e/0x80
[  187.805932]  schedule+0xda/0x1b0
[  187.806193]  exit_to_user_mode_prepare+0x114/0x1a0
[  187.806578]  syscall_exit_to_user_mode+0x19/0x40
[  187.806931]  do_syscall_64+0x48/0x90
[  187.807221]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  187.807616] RIP: 0033:0x7f4d06a94b19
[  187.807898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  187.809212] RSP: 002b:00007f4d0400a218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  187.809777] RAX: 0000000000000001 RBX: 00007f4d06ba7f68 RCX: 00007f4d06a94b19
[  187.810323] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f4d06ba7f6c
[  187.810851] RBP: 00007f4d06ba7f60 R08: 000000000000000e R09: 0000000000000000
[  187.811388] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f4d06ba7f6c
[  187.811916] R13: 00007ffca5802ccf R14: 00007f4d0400a300 R15: 0000000000022000
[  187.812451]  </TASK>
[  187.812631] irq event stamp: 414
[  187.812879] hardirqs last  enabled at (413): [<ffffffff8133e8c9>] exit_to_user_mode_prepare+0x109/0x1a0
[  187.813580] hardirqs last disabled at (414): [<ffffffff8425a985>] __schedule+0x1225/0x2470
[  187.814178] softirqs last  enabled at (0): [<ffffffff8114f175>] copy_process+0x1e15/0x6e20
[  187.814786] softirqs last disabled at (0): [<0000000000000000>] 0x0
[  187.815245] ---[ end trace 0000000000000000 ]---
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f00000005c0)=ANY=[@ANYBLOB="0100000001000000180000000600ce2abe7dff9f57274b43f1353697b34407715cdeb34fc91d21b36b05ab8e6849a60addf84907fea1d83f32ea8c047c2c9fcf81c09ab68e7ca44455c5a39613d2f427d25cd959487cd7dfcb465ea1cdf12da351f482ba4d373a590a168a483df324dfcbd87f059fd023fe84b20e4fbfedb5a8fac5f42be332abe17c09562ec2956f74f4434131b4a6c07e3b1d629a89eea1554c9b375e9a2c11af9824f75d8d023a024b68bee4a8c73318c168fe2427b4eff26aab7cb35e5ce0fef0ad17", @ANYRES32=r1, @ANYBLOB="0100ee2da88e0fd124a200000200800000"])
r3 = epoll_create(0x8)
sendfile(r1, r3, &(0x7f0000000000)=0x81, 0x7)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x21, 0x0, 0x3a)

08:05:58 executing program 4:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSF2(r0, 0x402c542d, &(0x7f0000000040)={0x0, 0x88b, 0x0, 0x0, 0x0, "425bb45816f822e6b8208f9a07eeec557d2e8f"})
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f0000000100)={0x2, 0x0, 0x1, 0x4, 0x11d, &(0x7f0000000340)="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"})
openat$hpet(0xffffffffffffff9c, 0x0, 0x0, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000001140)="11975a43dcd3ad912051513fc9654ddeea5893b8cfbba61a2ce44acba1", 0x1d}], 0x1)
socket$netlink(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_ipv6_tunnel_SIOCCHGPRL(0xffffffffffffffff, 0x89f7, &(0x7f0000000300)={'ip6tnl0\x00', &(0x7f0000000200)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x5, 0x4, 0x0, @empty, @ipv4={'\x00', '\xff\xff', @empty}, 0x10, 0x0, 0x0, 0x1000}})

[  187.833733] loop5: detected capacity change from 0 to 40
08:05:58 executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4800)
r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000340), 0x8, 0x0)
signalfd4(r2, &(0x7f00000007c0)={[0xa62]}, 0x8, 0x80000)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f00000005c0)=ANY=[@ANYBLOB="0100000001000000180000000600ce2abe7dff9f57274b43f1353697b34407715cdeb34fc91d21b36b05ab8e6849a60addf84907fea1d83f32ea8c047c2c9fcf81c09ab68e7ca44455c5a39613d2f427d25cd959487cd7dfcb465ea1cdf12da351f482ba4d373a590a168a483df324dfcbd87f059fd023fe84b20e4fbfedb5a8fac5f42be332abe17c09562ec2956f74f4434131b4a6c07e3b1d629a89eea1554c9b375e9a2c11af9824f75d8d023a024b68bee4a8c73318c168fe2427b4eff26aab7cb35e5ce0fef0ad17", @ANYRES32=r1, @ANYBLOB="0100ee2da88e0fd124a200000200800000"])
r3 = epoll_create(0x8)
sendfile(r1, r3, &(0x7f0000000000)=0x81, 0x7)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x21, 0x0, 0x3a)

08:05:58 executing program 2:
r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x77, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x6, 0x20, 0xc, 0x4, 0x0, 0x80000001, 0x84200, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xe4, 0x2, @perf_bp={&(0x7f00000001c0), 0xf}, 0x30190, 0x3cd6, 0x7, 0x9, 0x2, 0x4, 0x400, 0x0, 0x7f}, 0xffffffffffffffff, 0xf, r0, 0xb)
r2 = perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0xfa, 0x1, 0xf0, 0x8, 0x0, 0x1f, 0x1a00, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3f, 0x2, @perf_config_ext={0xa75, 0x7}, 0x2004, 0x7, 0x2, 0x3, 0xffffffffffffffe3, 0x81, 0x7fff, 0x0, 0x3, 0x0, 0x6}, 0x0, 0x5, r1, 0x2)
clone3(0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000400)=ANY=[@ANYBLOB="160606000000000000a2e5e5b2c69284421b5d43da7223ab3c49a62b4b6fc74f261add400e9905bdc95d954a01a7476e504672c02afcfd3cee6dfbd62f1f7f025c206859", @ANYRES32=<r4=>r2, @ANYBLOB="6e0077e6f97e77e66eb640f6ecc3beecc82300"])
ioctl$PERF_EVENT_IOC_PERIOD(r4, 0x40082404, &(0x7f0000000200)=0x9)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x100, 0x8)
fstat(r5, &(0x7f0000000280))
ioctl$VFAT_IOCTL_READDIR_BOTH(r3, 0x82307201, &(0x7f0000000480)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r6 = getpid()
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe2, 0x0, 0xfd, 0x0, 0x0, 0x1ff, 0x12a600, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x0, 0xfe4a, 0x0, 0x8000000000000000, 0x0, 0x0, 0x0, 0x7ff}, r6, 0x1, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f0000000300)={0x3, 0x80, 0x40, 0x1, 0x3f, 0x72, 0x0, 0x2, 0x8b000, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_bp={&(0x7f0000000040), 0x4}, 0x800, 0x8, 0x10000, 0x3, 0x49, 0x1, 0x6, 0x0, 0x369b, 0x0, 0x1}, r6, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000300)={0x2, 0x80, 0x3f, 0x80, 0xfc, 0x41, 0x0, 0xf3, 0x1020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x5, 0x0, @perf_config_ext={0x9, 0x7fff}, 0x2000, 0xff, 0x7fffffff, 0x9, 0x9, 0x7f9e, 0x4a, 0x0, 0x5, 0x0, 0xa2}, r6, 0x3, 0xffffffffffffffff, 0x0)

08:05:58 executing program 1:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000140))
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x220000, 0x0)
openat(r1, &(0x7f00000003c0)='./file1\x00', 0x402, 0x1bb)
ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000000)=0xc17d)

[  187.942160] hrtimer: interrupt took 16260 ns
[  188.026130] syz-executor.5: attempt to access beyond end of device
[  188.026130] loop5: rw=2049, sector=40, nr_sectors = 4 limit=40
[  188.027236] Buffer I/O error on dev loop5, logical block 10, lost async page write
[  188.057663] syz-executor.5: attempt to access beyond end of device
[  188.057663] loop5: rw=2049, sector=40, nr_sectors = 4 limit=40
[  188.057711] Buffer I/O error on dev loop5, logical block 10, lost async page write
[  188.883211] INFO: task rcu_gp:3 blocked for more than 143 seconds.
[  188.884332]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.885488] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.886806] task:rcu_gp          state:I stack:30328 pid:3     ppid:2      flags:0x00004000
[  188.888220] Call Trace:
[  188.888661]  <TASK>
[  188.889052]  __schedule+0x893/0x2470
[  188.889739]  ? io_schedule_timeout+0x150/0x150
[  188.890574]  ? do_raw_spin_lock+0x121/0x260
[  188.891244]  ? rwlock_bug.part.0+0x90/0x90
[  188.891716]  schedule+0xda/0x1b0
[  188.892100]  rescuer_thread+0x851/0xdb0
[  188.892561]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.893108]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.893668]  ? lockdep_hardirqs_on+0x79/0x100
[  188.894169]  ? worker_thread+0x1260/0x1260
[  188.894646]  kthread+0x2ed/0x3a0
[  188.895029]  ? kthread_complete_and_exit+0x40/0x40
[  188.895585]  ret_from_fork+0x22/0x30
[  188.895999]  </TASK>
[  188.896274] INFO: task rcu_par_gp:4 blocked for more than 143 seconds.
[  188.896974]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.897702] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.898559] task:rcu_par_gp      state:I stack:30944 pid:4     ppid:2      flags:0x00004000
[  188.899366] Call Trace:
[  188.899562]  <TASK>
[  188.899733]  __schedule+0x893/0x2470
[  188.900027]  ? io_schedule_timeout+0x150/0x150
[  188.900392]  ? do_raw_spin_lock+0x121/0x260
[  188.900718]  ? rwlock_bug.part.0+0x90/0x90
[  188.901040]  schedule+0xda/0x1b0
[  188.901317]  rescuer_thread+0x851/0xdb0
[  188.901625]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.902001]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.902409]  ? lockdep_hardirqs_on+0x79/0x100
[  188.902749]  ? worker_thread+0x1260/0x1260
[  188.903070]  kthread+0x2ed/0x3a0
[  188.903346]  ? kthread_complete_and_exit+0x40/0x40
[  188.903721]  ret_from_fork+0x22/0x30
[  188.904008]  </TASK>
[  188.904190] INFO: task slub_flushwq:5 blocked for more than 143 seconds.
[  188.904719]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.905237] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.905807] task:slub_flushwq    state:I stack:30944 pid:5     ppid:2      flags:0x00004000
[  188.906448] Call Trace:
[  188.906644]  <TASK>
[  188.906826]  __schedule+0x893/0x2470
[  188.907118]  ? io_schedule_timeout+0x150/0x150
[  188.907483]  ? do_raw_spin_lock+0x121/0x260
[  188.907812]  ? rwlock_bug.part.0+0x90/0x90
[  188.908141]  schedule+0xda/0x1b0
[  188.908429]  rescuer_thread+0x851/0xdb0
[  188.908742]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.909132]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.909562]  ? lockdep_hardirqs_on+0x79/0x100
[  188.909907]  ? worker_thread+0x1260/0x1260
[  188.910264]  kthread+0x2ed/0x3a0
[  188.910532]  ? kthread_complete_and_exit+0x40/0x40
[  188.910915]  ret_from_fork+0x22/0x30
[  188.911228]  </TASK>
[  188.911412] INFO: task netns:6 blocked for more than 143 seconds.
[  188.911869]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.912378] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.912954] task:netns           state:I stack:30944 pid:6     ppid:2      flags:0x00004000
[  188.913584] Call Trace:
[  188.913793]  <TASK>
[  188.913968]  __schedule+0x893/0x2470
[  188.914288]  ? io_schedule_timeout+0x150/0x150
[  188.914640]  ? do_raw_spin_lock+0x121/0x260
[  188.914968]  ? rwlock_bug.part.0+0x90/0x90
[  188.915320]  schedule+0xda/0x1b0
[  188.915585]  rescuer_thread+0x851/0xdb0
[  188.915896]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.916299]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.916686]  ? lockdep_hardirqs_on+0x79/0x100
[  188.917032]  ? worker_thread+0x1260/0x1260
[  188.917374]  kthread+0x2ed/0x3a0
[  188.917642]  ? kthread_complete_and_exit+0x40/0x40
[  188.918015]  ret_from_fork+0x22/0x30
[  188.918343]  </TASK>
[  188.918527] INFO: task kworker/0:0H:8 blocked for more than 143 seconds.
[  188.919022]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.919536] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.920107] task:kworker/0:0H    state:I stack:29760 pid:8     ppid:2      flags:0x00004000
[  188.920744] Workqueue:  0x0 (events_highpri)
[  188.921084] Call Trace:
[  188.921302]  <TASK>
[  188.921483]  __schedule+0x893/0x2470
[  188.921772]  ? io_schedule_timeout+0x150/0x150
[  188.922125]  schedule+0xda/0x1b0
[  188.922416]  worker_thread+0x15f/0x1260
[  188.922729]  ? process_one_work+0x16a0/0x16a0
[  188.923076]  kthread+0x2ed/0x3a0
[  188.923357]  ? kthread_complete_and_exit+0x40/0x40
[  188.923739]  ret_from_fork+0x22/0x30
[  188.924032]  </TASK>
[  188.924237] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds.
[  188.924745]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.925273] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.925845] task:mm_percpu_wq    state:I stack:30944 pid:10    ppid:2      flags:0x00004000
[  188.926502] Call Trace:
[  188.926701]  <TASK>
[  188.926879]  __schedule+0x893/0x2470
[  188.927192]  ? io_schedule_timeout+0x150/0x150
[  188.927545]  ? do_raw_spin_lock+0x121/0x260
[  188.927874]  ? rwlock_bug.part.0+0x90/0x90
[  188.928228]  schedule+0xda/0x1b0
[  188.928495]  rescuer_thread+0x851/0xdb0
[  188.928803]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.929206]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.929594]  ? lockdep_hardirqs_on+0x79/0x100
[  188.929938]  ? worker_thread+0x1260/0x1260
[  188.930296]  kthread+0x2ed/0x3a0
[  188.930558]  ? kthread_complete_and_exit+0x40/0x40
[  188.930930]  ret_from_fork+0x22/0x30
[  188.931249]  </TASK>
[  188.931432] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds.
[  188.931952]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.932485] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.933044] task:rcu_tasks_kthre state:I stack:29272 pid:11    ppid:2      flags:0x00004000
[  188.933688] Call Trace:
[  188.933887]  <TASK>
[  188.934062]  __schedule+0x893/0x2470
[  188.934392]  ? io_schedule_timeout+0x150/0x150
[  188.934745]  ? mark_held_locks+0x9e/0xe0
[  188.935053]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.935453]  schedule+0xda/0x1b0
[  188.935725]  rcu_tasks_one_gp+0x3db/0xc10
[  188.936055]  rcu_tasks_kthread+0x80/0xa0
[  188.936381]  ? rcu_tasks_postscan+0x10/0x10
[  188.936712]  kthread+0x2ed/0x3a0
[  188.936971]  ? kthread_complete_and_exit+0x40/0x40
[  188.937353]  ret_from_fork+0x22/0x30
[  188.937644]  </TASK>
[  188.937837] INFO: task kworker/1:0H:21 blocked for more than 143 seconds.
[  188.938361]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.938857] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.939442] task:kworker/1:0H    state:I stack:29376 pid:21    ppid:2      flags:0x00004000
[  188.940069] Workqueue:  0x0 (kblockd)
[  188.940381] Call Trace:
[  188.940575]  <TASK>
[  188.940746]  __schedule+0x893/0x2470
[  188.941036]  ? io_schedule_timeout+0x150/0x150
[  188.941406]  schedule+0xda/0x1b0
[  188.941675]  worker_thread+0x15f/0x1260
[  188.941991]  ? process_one_work+0x16a0/0x16a0
[  188.942371]  kthread+0x2ed/0x3a0
[  188.942639]  ? kthread_complete_and_exit+0x40/0x40
[  188.943014]  ret_from_fork+0x22/0x30
[  188.943320]  </TASK>
[  188.943502] INFO: task inet_frag_wq:23 blocked for more than 143 seconds.
[  188.944000]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.944507] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.945073] task:inet_frag_wq    state:I stack:30704 pid:23    ppid:2      flags:0x00004000
[  188.945707] Call Trace:
[  188.945904]  <TASK>
[  188.946078]  __schedule+0x893/0x2470
[  188.946395]  ? io_schedule_timeout+0x150/0x150
[  188.946749]  ? do_raw_spin_lock+0x121/0x260
[  188.947076]  ? rwlock_bug.part.0+0x90/0x90
[  188.947414]  schedule+0xda/0x1b0
[  188.947679]  rescuer_thread+0x851/0xdb0
[  188.947989]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.948389]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.948768]  ? lockdep_hardirqs_on+0x79/0x100
[  188.949109]  ? worker_thread+0x1260/0x1260
[  188.949453]  kthread+0x2ed/0x3a0
[  188.949723]  ? kthread_complete_and_exit+0x40/0x40
[  188.950098]  ret_from_fork+0x22/0x30
[  188.950424]  </TASK>
[  188.950612] INFO: task kblockd:31 blocked for more than 143 seconds.
[  188.951080]       Tainted: G        W          6.0.0-rc7-next-20220929 #1
[  188.951593] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  188.952180] task:kblockd         state:I stack:30176 pid:31    ppid:2      flags:0x00004000
[  188.952803] Call Trace:
[  188.952998]  <TASK>
[  188.953193]  __schedule+0x893/0x2470
[  188.953487]  ? io_schedule_timeout+0x150/0x150
[  188.953837]  ? do_raw_spin_lock+0x121/0x260
[  188.954182]  ? rwlock_bug.part.0+0x90/0x90
[  188.954524]  schedule+0xda/0x1b0
[  188.954787]  rescuer_thread+0x851/0xdb0
[  188.955092]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.955489]  ? _raw_spin_unlock_irqrestore+0x28/0x60
[  188.955870]  ? lockdep_hardirqs_on+0x79/0x100
[  188.956229]  ? worker_thread+0x1260/0x1260
[  188.956556]  kthread+0x2ed/0x3a0
[  188.956818]  ? kthread_complete_and_exit+0x40/0x40
[  188.957204]  ret_from_fork+0x22/0x30
[  188.957497]  </TASK>
[  188.957729] INFO: lockdep is turned off.

VM DIAGNOSIS:
08:05:58  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff88802d924000 RCX=ffffffff81a2610c RDX=ffff888031c9b580
RSI=0000000000000000 RDI=0000000000000001 RBP=ffff88801e472080 RSP=ffff8880408ef9b8
R8 =0000000000000001 R9 =0000000000000001 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=000000000000000c R14=ffff888010080000 R15=ffff88801e472080
RIP=ffffffff81460cd0 RFL=00000297 [--S-APC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000555555871400 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f8158eeb545 CR3=0000000038fec000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000ffff00000000 000000000000ffff
YMM01=0000000000000000 0000000000000000 2525252525252525 2525252525252525
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 000000ff00000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=000000000000002e RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88804083f690
R8 =0000000000000001 R9 =000000000000000a R10=000000000000002e R11=0000000000000001
R12=000000000000002e R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0
RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007f4d0400a700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f4055a90547 CR3=000000001d74a000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007f4d06b7b7c0 00007f4d06b7b7c8
YMM02=0000000000000000 0000000000000000 00007f4d06b7b7e0 00007f4d06b7b7c0
YMM03=0000000000000000 0000000000000000 00007f4d06b7b7c8 00007f4d06b7b7c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000