Warning: Permanently added '[localhost]:2856' (ECDSA) to the list of known hosts. 2022/09/30 12:05:35 fuzzer started 2022/09/30 12:05:35 dialing manager at localhost:40535 syzkaller login: [ 36.164652] cgroup: Unknown subsys name 'net' [ 36.261018] cgroup: Unknown subsys name 'rlimit' 2022/09/30 12:05:49 syscalls: 2215 2022/09/30 12:05:49 code coverage: enabled 2022/09/30 12:05:49 comparison tracing: enabled 2022/09/30 12:05:49 extra coverage: enabled 2022/09/30 12:05:49 setuid sandbox: enabled 2022/09/30 12:05:49 namespace sandbox: enabled 2022/09/30 12:05:49 Android sandbox: enabled 2022/09/30 12:05:49 fault injection: enabled 2022/09/30 12:05:49 leak checking: enabled 2022/09/30 12:05:49 net packet injection: enabled 2022/09/30 12:05:49 net device setup: enabled 2022/09/30 12:05:49 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 12:05:49 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 12:05:49 USB emulation: enabled 2022/09/30 12:05:49 hci packet injection: enabled 2022/09/30 12:05:49 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 12:05:49 802.15.4 emulation: enabled 2022/09/30 12:05:49 fetching corpus: 50, signal 28991/30748 (executing program) 2022/09/30 12:05:50 fetching corpus: 100, signal 35873/39251 (executing program) 2022/09/30 12:05:50 fetching corpus: 150, signal 42769/47632 (executing program) 2022/09/30 12:05:50 fetching corpus: 200, signal 49486/55722 (executing program) 2022/09/30 12:05:50 fetching corpus: 250, signal 53426/61032 (executing program) 2022/09/30 12:05:50 fetching corpus: 300, signal 57933/66841 (executing program) 2022/09/30 12:05:50 fetching corpus: 350, signal 65682/75587 (executing program) 2022/09/30 12:05:50 fetching corpus: 400, signal 72929/83685 (executing program) 2022/09/30 12:05:50 fetching corpus: 450, signal 75257/87172 (executing program) 2022/09/30 12:05:51 fetching corpus: 500, signal 79108/92029 (executing program) 2022/09/30 12:05:51 fetching corpus: 550, signal 81235/95285 (executing program) 2022/09/30 12:05:51 fetching corpus: 600, signal 84945/99932 (executing program) 2022/09/30 12:05:51 fetching corpus: 650, signal 87940/103863 (executing program) 2022/09/30 12:05:51 fetching corpus: 700, signal 90791/107589 (executing program) 2022/09/30 12:05:51 fetching corpus: 750, signal 92828/110537 (executing program) 2022/09/30 12:05:51 fetching corpus: 800, signal 95739/114204 (executing program) 2022/09/30 12:05:51 fetching corpus: 850, signal 97625/116950 (executing program) 2022/09/30 12:05:51 fetching corpus: 900, signal 100747/120706 (executing program) 2022/09/30 12:05:52 fetching corpus: 950, signal 103103/123795 (executing program) 2022/09/30 12:05:52 fetching corpus: 1000, signal 105137/126515 (executing program) 2022/09/30 12:05:52 fetching corpus: 1050, signal 107110/129195 (executing program) 2022/09/30 12:05:52 fetching corpus: 1100, signal 109869/132450 (executing program) 2022/09/30 12:05:52 fetching corpus: 1150, signal 111668/134888 (executing program) 2022/09/30 12:05:52 fetching corpus: 1200, signal 113623/137408 (executing program) 2022/09/30 12:05:52 fetching corpus: 1250, signal 115488/139895 (executing program) 2022/09/30 12:05:52 fetching corpus: 1300, signal 117282/142263 (executing program) 2022/09/30 12:05:52 fetching corpus: 1350, signal 118678/144305 (executing program) 2022/09/30 12:05:52 fetching corpus: 1400, signal 119800/146134 (executing program) 2022/09/30 12:05:53 fetching corpus: 1450, signal 121548/148373 (executing program) 2022/09/30 12:05:53 fetching corpus: 1500, signal 124245/151312 (executing program) 2022/09/30 12:05:53 fetching corpus: 1550, signal 126684/154014 (executing program) 2022/09/30 12:05:53 fetching corpus: 1600, signal 127900/155781 (executing program) 2022/09/30 12:05:53 fetching corpus: 1650, signal 129144/157494 (executing program) 2022/09/30 12:05:53 fetching corpus: 1700, signal 130208/159115 (executing program) 2022/09/30 12:05:53 fetching corpus: 1750, signal 131611/160900 (executing program) 2022/09/30 12:05:53 fetching corpus: 1800, signal 133188/162819 (executing program) 2022/09/30 12:05:54 fetching corpus: 1850, signal 134432/164488 (executing program) 2022/09/30 12:05:54 fetching corpus: 1900, signal 135220/165827 (executing program) 2022/09/30 12:05:54 fetching corpus: 1950, signal 135818/167016 (executing program) 2022/09/30 12:05:54 fetching corpus: 2000, signal 138399/169524 (executing program) 2022/09/30 12:05:54 fetching corpus: 2050, signal 140288/171700 (executing program) 2022/09/30 12:05:54 fetching corpus: 2100, signal 141481/173202 (executing program) 2022/09/30 12:05:54 fetching corpus: 2150, signal 141960/174220 (executing program) 2022/09/30 12:05:54 fetching corpus: 2200, signal 143659/175961 (executing program) 2022/09/30 12:05:54 fetching corpus: 2250, signal 144858/177396 (executing program) 2022/09/30 12:05:55 fetching corpus: 2300, signal 145740/178682 (executing program) 2022/09/30 12:05:55 fetching corpus: 2350, signal 146820/180040 (executing program) 2022/09/30 12:05:55 fetching corpus: 2400, signal 148063/181491 (executing program) 2022/09/30 12:05:55 fetching corpus: 2450, signal 149083/182771 (executing program) 2022/09/30 12:05:55 fetching corpus: 2500, signal 150405/184199 (executing program) 2022/09/30 12:05:55 fetching corpus: 2550, signal 151535/185468 (executing program) 2022/09/30 12:05:55 fetching corpus: 2600, signal 152413/186630 (executing program) 2022/09/30 12:05:55 fetching corpus: 2650, signal 153430/187807 (executing program) 2022/09/30 12:05:56 fetching corpus: 2700, signal 154467/188986 (executing program) 2022/09/30 12:05:56 fetching corpus: 2750, signal 155877/190500 (executing program) 2022/09/30 12:05:56 fetching corpus: 2800, signal 156417/191413 (executing program) 2022/09/30 12:05:56 fetching corpus: 2850, signal 159185/193544 (executing program) 2022/09/30 12:05:56 fetching corpus: 2900, signal 160486/194799 (executing program) 2022/09/30 12:05:56 fetching corpus: 2950, signal 162101/196160 (executing program) 2022/09/30 12:05:56 fetching corpus: 3000, signal 163037/197152 (executing program) 2022/09/30 12:05:56 fetching corpus: 3050, signal 164182/198338 (executing program) 2022/09/30 12:05:57 fetching corpus: 3100, signal 165490/199486 (executing program) 2022/09/30 12:05:57 fetching corpus: 3150, signal 166367/200422 (executing program) 2022/09/30 12:05:57 fetching corpus: 3200, signal 167269/201390 (executing program) 2022/09/30 12:05:57 fetching corpus: 3250, signal 168180/202324 (executing program) 2022/09/30 12:05:57 fetching corpus: 3300, signal 168828/203148 (executing program) 2022/09/30 12:05:57 fetching corpus: 3350, signal 169388/203911 (executing program) 2022/09/30 12:05:57 fetching corpus: 3400, signal 170261/204718 (executing program) 2022/09/30 12:05:57 fetching corpus: 3450, signal 171220/205640 (executing program) 2022/09/30 12:05:57 fetching corpus: 3500, signal 172101/206498 (executing program) 2022/09/30 12:05:58 fetching corpus: 3550, signal 172917/207302 (executing program) 2022/09/30 12:05:58 fetching corpus: 3600, signal 173653/208042 (executing program) 2022/09/30 12:05:58 fetching corpus: 3650, signal 174297/208749 (executing program) 2022/09/30 12:05:58 fetching corpus: 3700, signal 175377/209679 (executing program) 2022/09/30 12:05:58 fetching corpus: 3750, signal 175813/210294 (executing program) 2022/09/30 12:05:58 fetching corpus: 3800, signal 176475/210929 (executing program) 2022/09/30 12:05:58 fetching corpus: 3850, signal 177234/211610 (executing program) 2022/09/30 12:05:58 fetching corpus: 3900, signal 178047/212296 (executing program) 2022/09/30 12:05:58 fetching corpus: 3950, signal 178970/212990 (executing program) 2022/09/30 12:05:59 fetching corpus: 4000, signal 180110/213756 (executing program) 2022/09/30 12:05:59 fetching corpus: 4050, signal 180690/214341 (executing program) 2022/09/30 12:05:59 fetching corpus: 4100, signal 181775/215138 (executing program) 2022/09/30 12:05:59 fetching corpus: 4150, signal 182389/215691 (executing program) 2022/09/30 12:05:59 fetching corpus: 4200, signal 183174/216290 (executing program) 2022/09/30 12:05:59 fetching corpus: 4250, signal 183671/216826 (executing program) 2022/09/30 12:05:59 fetching corpus: 4300, signal 184279/217355 (executing program) 2022/09/30 12:05:59 fetching corpus: 4350, signal 185055/217928 (executing program) 2022/09/30 12:06:00 fetching corpus: 4400, signal 185480/218410 (executing program) 2022/09/30 12:06:00 fetching corpus: 4450, signal 185837/218871 (executing program) 2022/09/30 12:06:00 fetching corpus: 4500, signal 186361/219334 (executing program) 2022/09/30 12:06:00 fetching corpus: 4550, signal 186887/219775 (executing program) 2022/09/30 12:06:00 fetching corpus: 4600, signal 187710/220284 (executing program) 2022/09/30 12:06:00 fetching corpus: 4650, signal 188093/220701 (executing program) 2022/09/30 12:06:00 fetching corpus: 4700, signal 188657/221166 (executing program) 2022/09/30 12:06:00 fetching corpus: 4750, signal 189353/221647 (executing program) 2022/09/30 12:06:00 fetching corpus: 4800, signal 190122/222113 (executing program) 2022/09/30 12:06:01 fetching corpus: 4850, signal 190666/222520 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/222841 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/223191 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/223536 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/223880 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/224217 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/224542 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/224869 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/225186 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/225510 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/225870 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/226196 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/226534 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/226877 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/227185 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/227454 (executing program) 2022/09/30 12:06:01 fetching corpus: 4872, signal 190746/227454 (executing program) 2022/09/30 12:06:03 starting 8 fuzzer processes 12:06:03 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpuacct.usage_all\x00', 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x4040004, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@uname={'uname', 0x3d, '-{'}}, {@dfltgid={'dfltgid', 0x3d, 0xee00}}, {@uname={'uname', 0x3d, '$@\']:'}}, {@privport}], [{@context={'context', 0x3d, 'staff_u'}}]}}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x3ff}}, './file0/file0\x00'}) write$binfmt_aout(r1, &(0x7f00000001c0)={{0x10b, 0x9, 0x2, 0xcf, 0xc4, 0x4, 0x37b, 0x1}, "4d6cb7676d03de6a4f88cc6fba1197", ['\x00']}, 0x12f) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000004c0)={0x0}, &(0x7f0000000500)=0xc) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000540)=0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000580)=0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000005c0)={0x0}, &(0x7f0000000600)=0xc) r6 = openat$cgroup_ro(r0, &(0x7f0000000680)='blkio.bfq.idle_time\x00', 0x0, 0x0) clone3(&(0x7f00000006c0)={0x10000, &(0x7f0000000300)=0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000380)=0x0, {0x3}, &(0x7f00000003c0)=""/41, 0x29, &(0x7f0000000400)=""/161, &(0x7f0000000640)=[r2, r3, 0xffffffffffffffff, 0xffffffffffffffff, r4, 0x0, r5, 0x0, 0x0], 0x9, {r6}}, 0x58) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r6, 0x40047211, &(0x7f0000000740)=0x2) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000780)=0xf4) clone3(&(0x7f0000001940)={0x8208100, &(0x7f00000007c0), &(0x7f0000000800), &(0x7f0000000840), {0x26}, &(0x7f0000000880)=""/4096, 0x1000, &(0x7f0000001880)=""/123, &(0x7f0000001900)=[r5, r8, r4, r2, r3], 0x5, {r6}}, 0x58) pwritev(r7, &(0x7f0000001ac0)=[{&(0x7f00000019c0)="b3eb8fd88e4ac939e54dc91c3842886550271f5b302ae17065a8d669f8e01283485477829b053f73dc2ed167ad22b103d1c5278f6b919821b53ed12bed31d82d256f0809748e1fea8e6dcb49342c093d15aeb65685d1c71743ae3eecb9e67b2c9ead4b0a3fe06cf6e1e68dd7a48f84ae6b35ca0a69466328317d19b81c4ec0a72bc4e751a18e1c05a0fb0a1a25d5daa0a04ca54cf73da4441919d5282a82e43362910674019feb5ce21f466eac9df708f4a8e51100819154b698678ecbd7fc321011c034f2a0b3501bb0dffec137f777bd9bed47", 0xd4}], 0x1, 0xfffffa39, 0x40) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r6, 0x84009422, &(0x7f0000001b00)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) getsockopt$sock_buf(r1, 0x1, 0x3b, &(0x7f0000001f00)=""/227, &(0x7f0000002000)=0xe3) ioctl$BTRFS_IOC_QUOTA_RESCAN_STATUS(r7, 0x8040942d, &(0x7f0000002040)) r9 = getpid() ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000002200)=0x0) clone3(&(0x7f0000002280)={0x124021000, &(0x7f0000002080), &(0x7f00000020c0), &(0x7f0000002100), {0x1c}, &(0x7f0000002140)=""/78, 0x4e, &(0x7f00000021c0)=""/47, &(0x7f0000002240)=[r8, r9, r10], 0x3, {r6}}, 0x58) 12:06:03 executing program 1: sendmsg$AUDIT_GET_FEATURE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x3fb, 0x4, 0x70bd28, 0x25dfdbff, "", ["", "", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x8015}, 0x400c1) sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xdc, 0x0, 0x400, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_SCAN_SUPP_RATES={0xa0, 0x7d, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x9b, 0x1, "077ce07e2537b9f1574dbd2ede0211df0edd4b093ca412bc197463ba691b26ee0ce54420135d1242e5b09edc9f198054c5522a40064c2dd48b0de418d420a2a882b3c5b341050f03af1e25c24c5cf3f869de48e4763c50b47554e4ae58681152c286f1f00b41ac2b84d38a4e1032e1f20e20e6e8b6572037fe82201b1df0509b80ca7210000b469d8609c60c97e341d9bcd1a34655377e"}]}, @NL80211_ATTR_BSSID={0xa, 0xf5, @random="ed60407dc9ea"}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0xfff}, @NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI={0x5, 0xf6, 0x21}, @NL80211_ATTR_SCHED_SCAN_MATCH={0x4}]}, 0xdc}, 0x1, 0x0, 0x0, 0x10}, 0x10) sendmsg$TIPC_CMD_GET_MAX_PORTS(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000044}, 0x10) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_VERSION(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x74, 0x0, 0x2, 0x70bd2a, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @private=0xa010100}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x2}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @remote}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x3}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @loopback}]}, 0x74}, 0x1, 0x0, 0x0, 0x20000000}, 0x48045) sendmsg$NL80211_CMD_DEL_TX_TS(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x5c, 0x0, 0x100, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TSID={0x5, 0xd2, 0xb}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x8}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xe}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x9}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8040001}, 0x40) sendmsg$NL80211_CMD_DEL_STATION(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000006c0)={&(0x7f0000000680)={0x3c, 0x0, 0x300, 0x70bd26, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x71}}}}, [@NL80211_ATTR_STA_WME={0x14, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x1}, @NL80211_STA_WME_UAPSD_QUEUES={0x5, 0x1, 0x80}]}, @NL80211_ATTR_VLAN_ID={0x6, 0x11a, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008020}, 0x873725325152ced4) sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000bc0)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000b80)={&(0x7f0000000780)={0x3d0, 0x0, 0x100, 0x7ff, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x9}], @NL80211_ATTR_CSA_IES={0x39c, 0xb9, 0x0, 0x1, [@NL80211_ATTR_CSA_C_OFF_BEACON={0x6, 0xba, [0x7]}, @NL80211_ATTR_CSA_C_OFF_BEACON={0x10, 0xba, [0x7f, 0x1, 0x4, 0x45, 0x4, 0x40]}, @beacon_params=[@NL80211_ATTR_IE_PROBE_RESP={0x92, 0x7f, [@mic={0x8c, 0x18, {0xc0d, "1377cdba04c5", @long="4a6cdd47c9d55197d1306aefa8c3bd65"}}, @cf={0x4, 0x6, {0x41, 0x8, 0x8, 0x200}}, @ext_channel_switch={0x3c, 0x4, {0x1, 0x8, 0x38, 0x9a}}, @prep={0x83, 0x1f, @not_ext={{}, 0x2, 0xf7, @broadcast, 0x80000001, "", 0x5effaa58, 0x401, @broadcast, 0x400000}}, @mesh_chsw={0x76, 0x6, {0x8, 0x9, 0x23, 0xeb25}}, @preq={0x82, 0x3b, @not_ext={{}, 0x5, 0xa2, 0x1ff, @device_a, 0xffffffff, "", 0x4, 0x8000, 0x3, [{{0x0, 0x0, 0x1}, @device_b, 0x9}, {{}, @device_a, 0x7}, {{0x0, 0x0, 0x1}}]}}]}, @NL80211_ATTR_IE={0xc, 0x2a, [@channel_switch={0x25, 0x3, {0x0, 0x2, 0xe3}}, @dsss={0x3, 0x1, 0x8c}]}], @NL80211_ATTR_CSA_C_OFF_BEACON={0xa, 0xba, [0xdf, 0x1ff, 0x3f]}, @NL80211_ATTR_CSA_C_OFF_PRESP={0x8, 0xbb, [0xff, 0x8000]}, @NL80211_ATTR_CSA_C_OFF_BEACON={0xe, 0xba, [0xe6, 0x8, 0x8000, 0x6, 0x40]}, @NL80211_ATTR_CSA_C_OFF_BEACON={0x12, 0xba, [0x1f, 0x4, 0x0, 0x1, 0xff01, 0x7, 0x9]}, @NL80211_ATTR_CSA_C_OFF_BEACON={0x16, 0xba, [0x200, 0x2, 0x80, 0x8, 0x7ff, 0x1, 0x8001, 0x80, 0x98e]}, @NL80211_ATTR_CSA_C_OFF_PRESP={0x12, 0xbb, [0x8, 0x9, 0x80, 0x100, 0x2, 0x2, 0x8001]}, @beacon_params=[@NL80211_ATTR_BEACON_TAIL={0x63, 0xf, [@channel_switch={0x25, 0x3, {0x2, 0x88, 0x2}}, @chsw_timing={0x68, 0x4, {0xfff7, 0x26}}, @mic={0x8c, 0x18, {0x3d7, "e7f774b61bf8", @long="52072c4698bd6c62898ce5a7b96fd475"}}, @chsw_timing={0x68, 0x4, {0x3}}, @ssid={0x0, 0x6, @default_ap_ssid}, @prep={0x83, 0x25, @ext={{}, 0x7, 0x6, @device_b, 0x8, @device_a, 0x8, 0xc2a}}, @channel_switch={0x25, 0x3, {0x0, 0x84, 0x4}}]}, @NL80211_ATTR_IE={0x1b4, 0x2a, [@random={0x3f, 0xc5, "85f6b55bd25011d3983cd2836f25bee249eeaeeccd9deb4008e7511fe3a455d3da99bd40a82836931097780e210f73f76da473d173ad685ca43e097b4c223c48b72a0e914b7494abfc187a8c3cb9631d999d0292ab65a7a652767c0805e7f3a2992f979959d37402134d9da828c1a10be73582e4cb9a163666d319e4d94e4856ae625a921f221d0a54b5c18da905fcc726f58f6fbb221b7af2670d1e825da40826d85ee39119757cb36ddd79982e0d9289646a84948a57fd81195da2e66f0c4197763e84de"}, @prep={0x83, 0x25, @ext={{}, 0x6, 0x8, @device_b, 0x8, @device_a, 0x6, 0x8, @device_b, 0x3}}, @preq={0x82, 0x67, @not_ext={{0x0, 0x0, 0x1}, 0x0, 0x40, 0x3, @device_a, 0x4e, "", 0x9, 0x84d7, 0x7, [{{0x1}, @broadcast, 0x6ef00000}, {{}, @broadcast, 0x5b8e}, {{}, @device_a, 0x1}, {{0x1, 0x0, 0x1}, @device_b, 0x10000}, {{0x0, 0x0, 0x1}, @device_a, 0x6}, {{0x1, 0x0, 0x1}, @broadcast}, {{0x1}, @device_a, 0x7ff}]}}, @mesh_config={0x71, 0x7, {0xffffffffffffffff, 0xffffffffffffffff, 0x1, 0x0, 0x0, 0x2, 0x29}}, @dsss={0x3, 0x1, 0x68}, @ht={0x2d, 0x1a, {0x519c5ac383e76f5, 0x3, 0x4, 0x0, {0x40, 0x7, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x2}, 0x1, 0x80, 0x20}}, @chsw_timing={0x68, 0x4, {0x8, 0xcd}}, @rann={0x7e, 0x15, {{0x0, 0x67}, 0x81, 0x1, @device_a, 0x7, 0x10001, 0x4}}, @link_id={0x65, 0x12, {@from_mac=@broadcast, @device_a, @broadcast}}]}, @NL80211_ATTR_BEACON_TAIL={0x63, 0xf, [@cf={0x4, 0x6, {0xff, 0x0, 0x5, 0x2}}, @supported_rates={0x1, 0x7, [{0xb, 0x1}, {0x36}, {0x16}, {0x6c}, {0x18}, {0x1b}, {0x18}]}, @sec_chan_ofs={0x3e, 0x1, 0x2}, @tim={0x5, 0x15, {0x8, 0x3a, 0x9, "8f28e12e5bb3802fdd9d7f0719f9d62d4e94"}}, @challenge={0x10, 0x1, 0xae}, @rann={0x7e, 0x15, {{0x1, 0x2}, 0x4, 0x6a, @device_b, 0x9, 0x10001, 0x8}}, @erp={0x2a, 0x1, {0x0, 0x1, 0x1}}, @rann={0x7e, 0x15, {{0x1, 0x9}, 0xfa, 0x1f, @broadcast, 0x40, 0x76a}}]}]]}]}, 0x3d0}, 0x1, 0x0, 0x0, 0x400c1}, 0x4048881) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000c40), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000c80)={'wpan3\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_DEV(r1, &(0x7f0000000d80)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000d40)={&(0x7f0000000cc0)={0x58, r2, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r3}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0x100}}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5, 0x36, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x1}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x8}, @IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0x81}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x40880}, 0x0) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x38, 0x0, 0x8, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x801) r4 = openat$incfs(0xffffffffffffffff, &(0x7f0000000ec0)='.pending_reads\x00', 0x200000, 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f40), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000f80)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_LEAVE_IBSS(r4, &(0x7f0000001040)={&(0x7f0000000f00)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000001000)={&(0x7f0000000fc0)={0x28, r5, 0x400, 0x70bd27, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x401, 0x7c}}}}, [""]}, 0x28}, 0x1, 0x0, 0x0, 0x8080}, 0x0) syz_genetlink_get_family_id$nl802154(&(0x7f0000001080), r1) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001100), r4) sendmsg$NL80211_CMD_CONNECT(r4, &(0x7f00000011c0)={&(0x7f00000010c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000001180)={&(0x7f0000001140)={0x24, r7, 0x100, 0x70bd27, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0xfff, 0x29}}}}, [@NL80211_ATTR_USE_RRM={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0xc080}, 0x2000000) 12:06:03 executing program 2: recvmsg$unix(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)=@abs, 0x6e, &(0x7f0000000140)=[{&(0x7f0000000080)=""/134, 0x86}], 0x1, &(0x7f0000000180)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}, 0x12020) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(r3, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, 0x0, 0x20c, 0x70bd25, 0x25dfdbfe, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4004) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$NLBL_CALIPSO_C_LIST(r7, &(0x7f0000000480)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x3c, r8, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000000}, 0x20004045) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$devlink(&(0x7f0000000500), r6) sendmsg$DEVLINK_CMD_RELOAD(r9, &(0x7f0000000600)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000000540)={0x60, r10, 0x300, 0x70bd2a, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x8}}, {@pci={{0x8}, {0x11}}, @DEVLINK_ATTR_NETNS_ID={0x8, 0x8c, 0x3}}]}, 0x60}, 0x1, 0x0, 0x0, 0x8000090}, 0x800) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'batadv_slave_0\x00', 0x0}) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000007c0)={'ip_vti0\x00', &(0x7f00000006c0)={'syztnl2\x00', 0x0, 0x80, 0x700, 0x101, 0x80000001, {{0x29, 0x4, 0x0, 0x0, 0xa4, 0x66, 0x0, 0x81, 0x4, 0x0, @empty, @broadcast, {[@end, @generic={0x86, 0xa, "fde7839731bdc1f8"}, @cipso={0x86, 0x4b, 0xffffffffffffffff, [{0x5, 0x4, "801b"}, {0x1, 0xd, "18d2dc84ce0bdc6dfadaae"}, {0x5, 0x7, "3f2c1178f6"}, {0x7, 0xd, "b03af0c9f32654626876e4"}, {0x7, 0x5, "003ba7"}, {0x2, 0x5, "544485"}, {0x6, 0xf, "4fc026d59af725203f31df2cc5"}, {0x7, 0x7, "868c0d19d2"}]}, @rr={0x7, 0x7, 0x2d, [@empty]}, @cipso={0x86, 0x14, 0x1, [{0x6, 0x4, "60cc"}, {0x7, 0xa, "fa6a9410e2b35842"}]}, @timestamp_addr={0x44, 0x1c, 0x18, 0x1, 0x6, [{@private=0xa010101, 0x7}, {@loopback, 0x9}, {@multicast2, 0x4}]}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCGETPRL(r4, 0x89f4, &(0x7f0000000880)={'syztnl2\x00', &(0x7f0000000800)={'syztnl0\x00', 0x0, 0x29, 0x6, 0x2, 0x484, 0x0, @loopback, @loopback, 0x40, 0x40, 0x6, 0x4}}) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r1, 0x89fa, &(0x7f0000000940)={'syztnl2\x00', &(0x7f00000008c0)={'syztnl2\x00', 0x0, 0x4, 0x8, 0x0, 0x1, 0x22, @local, @local, 0x7800, 0x1, 0x80, 0x7}}) sendmsg$ETHTOOL_MSG_FEATURES_GET(r0, &(0x7f0000000ac0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x2100400}, 0xc, &(0x7f0000000a80)={&(0x7f0000000980)={0xd4, 0x0, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @HEADER={0x30, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r12}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x20000800}, 0x800) setxattr$trusted_overlay_opaque(&(0x7f0000000b00)='./file0\x00', &(0x7f0000000b40), &(0x7f0000000b80), 0x2, 0x3) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000bc0)={{0x1, 0x1, 0x18, r9}, './file0/file0\x00'}) sendmsg$NL80211_CMD_ASSOCIATE(r15, &(0x7f0000000d80)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000d40)={&(0x7f0000000c40)={0xe4, 0x0, 0x10, 0x70bd2a, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_IE={0x9c, 0x2a, [@measure_req={0x26, 0x6f, {0x6, 0x3, 0x2, "b4ab738a7ba11c1ff7978902f8a1865589b49496f4bc23a3f39c4a7dc1422c2cc7f14e47117f0611f7fc00440f03c0a6f9e1666a35c1283116986b3f5c6881662c10b70f9f0916d5ea5345b4990bf7bcb33ba0a64dcbbdbcb628cb7231931e46b19b7a8fb1fc5cc9ad986a75"}}, @link_id={0x65, 0x12, {@from_mac=@device_b, @device_b, @device_b}}, @chsw_timing={0x68, 0x4, {0x6, 0xfff}}, @mesh_chsw={0x76, 0x6, {0x1, 0x4, 0xb, 0x7}}, @channel_switch={0x25, 0x3, {0x0, 0x64, 0x3}}]}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x1, {0x2, 0x9, 0x4, 0xdf}}}, @NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x200000, {0x9, 0x3, 0x8763, 0x1f}}}, @NL80211_ATTR_DISABLE_VHT={0x4}]}, 0xe4}, 0x1, 0x0, 0x0, 0x44041}, 0x4081) sendmsg$IEEE802154_LLSEC_LIST_DEVKEY(r7, &(0x7f0000000e80)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x2011089}, 0xc, &(0x7f0000000e40)={&(0x7f0000000e00)={0x14, 0x0, 0x400, 0x70bd2a, 0x25dfdbff, {}, ["", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000044}, 0x0) r16 = syz_genetlink_get_family_id$batadv(&(0x7f0000000f00), r5) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000001000)={'gretap0\x00', &(0x7f0000000f40)={'gretap0\x00', r12, 0x1, 0x80, 0xc000, 0x108, {{0x26, 0x4, 0x1, 0x6, 0x98, 0x66, 0x0, 0x73, 0x4, 0x0, @empty, @remote, {[@lsrr={0x83, 0x2b, 0x1e, [@rand_addr=0x64010102, @remote, @empty, @dev={0xac, 0x14, 0x14, 0x2c}, @local, @multicast1, @rand_addr=0x64010100, @private=0xa010100, @remote, @empty]}, @cipso={0x86, 0x18, 0x0, [{0x1, 0x12, "0282c4660c640d5b21a5a25f8be82b4f"}]}, @timestamp={0x44, 0x8, 0xf3, 0x0, 0x0, [0x72]}, @timestamp_prespec={0x44, 0x34, 0x6d, 0x3, 0x7, [{@local, 0x9}, {@dev={0xac, 0x14, 0x14, 0x3c}}, {@loopback, 0xbab9}, {@remote}, {@multicast1, 0x6}, {@dev={0xac, 0x14, 0x14, 0x6a}}]}, @ra={0x94, 0x4}]}}}}}) sendmsg$BATADV_CMD_GET_TRANSTABLE_LOCAL(0xffffffffffffffff, &(0x7f0000001100)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000010c0)={&(0x7f0000001040)={0x4c, r16, 0x20, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_BONDING_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x2}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r17}, @BATADV_ATTR_ELP_INTERVAL={0x8, 0x3a, 0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x4c}}, 0x44000) 12:06:03 executing program 3: socketpair(0xf, 0x5, 0x9, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_proto_private(r1, 0x89eb, &(0x7f0000000040)="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") r2 = signalfd(r1, &(0x7f0000001040)={[0x8000]}, 0x8) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000010c0), r1) sendmsg$TIPC_NL_LINK_SET(r2, &(0x7f00000012c0)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000001280)={&(0x7f0000001100)={0x160, r3, 0x2, 0x70bd2c, 0x25dfdbfb, {}, [@TIPC_NLA_LINK={0x60, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4495}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x400}]}, @TIPC_NLA_LINK_PROP={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7a2c61de}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1f}]}]}, @TIPC_NLA_MON={0x54, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1ff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x1}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7f}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x5}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x7fff}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xfffffffd}]}, @TIPC_NLA_SOCK={0x8c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x5cd03982}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xfffff913}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xd4f}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6b38}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x10000}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xff}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xc20}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x81}, @TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x6c0}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}]}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x7}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x1}]}]}, 0x160}, 0x1, 0x0, 0x0, 0x40000000}, 0x24000040) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000001340), r2) sendmsg$DEVLINK_CMD_GET(r1, &(0x7f00000014c0)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x16f375ec5e550665}, 0xc, &(0x7f0000001480)={&(0x7f0000001380)={0xcc, r4, 0x100, 0x70bd29, 0x25dfdbfb, {}, [@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x400c001}, 0x20000000) r5 = open(&(0x7f0000001500)='./file0\x00', 0x40001, 0x10) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, &(0x7f0000001540)=0x1a, 0x4) r6 = openat$cgroup_procs(r5, &(0x7f0000001580)='cgroup.procs\x00', 0x2, 0x0) dup2(r1, r6) ioctl$VT_RESIZE(r2, 0x5609, &(0x7f00000015c0)={0x3ff, 0x746, 0x9}) r7 = signalfd4(r0, &(0x7f0000001600)={[0x1]}, 0x8, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r7, 0x891b, &(0x7f0000001640)={'veth1\x00', {0x2, 0x0, @dev}}) signalfd(r2, &(0x7f0000001680), 0x8) r8 = inotify_init1(0x800) finit_module(r8, &(0x7f00000016c0)='\x00', 0x1) r9 = syz_open_dev$vcsn(&(0x7f0000001740), 0x4, 0x8300) syz_genetlink_get_family_id$team(&(0x7f0000001700), r9) sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f00000019c0)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001980)={&(0x7f0000001800)={0x15c, r3, 0x900, 0x70bd25, 0x25dfdbff, {}, [@TIPC_NLA_BEARER={0xc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xd1d}]}, @TIPC_NLA_NODE={0x13c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x45, 0x4, {'gcm(aes)\x00', 0x1d, "7dcfd29b33a140508083af6aad1eff7cd347589d814d2d4dd371acd89d"}}, @TIPC_NLA_NODE_ID={0xee, 0x3, "1135894841499f48beacfee5dbf4b695eda800388f3a1b7debb7cb45fec2f70fdd649e82cbcab6aedbc6b01bb2a52b3a27e8fb03175c6e71f7ed5c26193715e3c5f3a6a21ba0c99fb860e3e51b2ed08b42307bf44e48c827d7fae9b164df9c79c17c758b14d5054857b5ae8920068abf1755ae0f58a6d76118787134489ce103cf891093807d6ce6c57c6e0b99451f54e8240bc358ceb4956ac357b09ff7d8584b85b72690831bb1e077e133a3f0a7ecbf1b708e2582d3448397bbd4507fd3a558bce4000d77829390532e7a1ac2f0104d3c62cc8d6e2eb380e193c7976f311fa6bfaad891d3bd5c9544"}]}]}, 0x15c}, 0x1, 0x0, 0x0, 0x64000080}, 0x8000) [ 63.625050] audit: type=1400 audit(1664539563.577:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 12:06:03 executing program 4: sched_getattr(0xffffffffffffffff, &(0x7f0000000000)={0x38}, 0x38, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f0000000080)=0xc) sched_getattr(r0, &(0x7f00000000c0)={0x38}, 0x38, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f00000009c0)=[{{&(0x7f0000000100), 0x6e, &(0x7f0000000280)=[{&(0x7f0000000180)=""/216, 0xd8}], 0x1, &(0x7f00000002c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf0}}, {{&(0x7f00000003c0), 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000440)=""/213, 0xd5}, {&(0x7f0000000540)=""/245, 0xf5}, {&(0x7f0000000640)=""/126, 0x7e}], 0x3, &(0x7f0000000700)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x40}}, {{&(0x7f0000000740)=@abs, 0x6e, &(0x7f0000000940)=[{&(0x7f00000007c0)=""/97, 0x61}, {&(0x7f0000000840)=""/232, 0xe8}], 0x2, &(0x7f0000000980)=[@cred={{0x1c}}], 0x20}}], 0x3, 0x10002, &(0x7f0000000a80)={0x77359400}) sched_getattr(r3, &(0x7f0000000ac0)={0x38}, 0x38, 0x0) r8 = fcntl$getown(r2, 0x9) sched_getattr(r8, &(0x7f0000000b00)={0x38}, 0x38, 0x0) r9 = openat$full(0xffffffffffffff9c, &(0x7f0000000b40), 0x800, 0x0) ioctl$sock_proto_private(r9, 0x89e7, &(0x7f0000000b80)="d37b1a76295be79b34ce872edf910decbc00605f873601f781a1958aa7c300ac928a5adfe9cbc52dd5605c5fe8926574078c4e1bf0ee03a894bb14a8f170f0") syz_io_uring_submit(0x0, 0x0, &(0x7f0000000bc0)=@IORING_OP_ASYNC_CANCEL, 0x8) r10 = getpid() process_vm_writev(r10, &(0x7f0000000d00)=[{&(0x7f0000000c00)=""/232, 0xe8}], 0x1, &(0x7f0000000e40)=[{&(0x7f0000000d40)=""/131, 0x83}, {&(0x7f0000000e00)=""/40, 0x28}], 0x2, 0x0) fcntl$getownex(r6, 0x10, &(0x7f0000000e80)={0x0, 0x0}) sched_setattr(r11, &(0x7f0000000ec0)={0x38, 0x0, 0x50, 0xffff, 0x7ff, 0x6, 0x4, 0x7fffffff, 0xae, 0x200}, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r4, 0xc0189371, &(0x7f0000000f00)={{0x1, 0x1, 0x18, r5}, './file0\x00'}) sendmsg$BATADV_CMD_GET_NEIGHBORS(r12, &(0x7f0000001000)={&(0x7f0000000f40)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000fc0)={&(0x7f0000000f80)={0x1c, 0x0, 0x800, 0x70bd2c, 0x25dfdbfe, {}, [@BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x83}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1f0a573e1c7a27b3}, 0x40) sched_setattr(0x0, &(0x7f0000001040)={0x38, 0x0, 0x1000007f, 0x5, 0xffff, 0x3f, 0x9, 0x1, 0x3, 0x8000}, 0x0) perf_event_open(&(0x7f0000001080)={0x3, 0x80, 0x3, 0x6, 0x8c, 0x98, 0x0, 0xf74, 0x20011, 0x5, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x10000, 0x0, @perf_config_ext={0x8000, 0x40}, 0x14244, 0x1, 0x8, 0x5, 0x2, 0x2, 0x0, 0x0, 0xfffffffe, 0x0, 0x4}, r11, 0xf, r7, 0x8) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000001100)=0x0) process_vm_writev(r13, &(0x7f0000002480)=[{&(0x7f0000001140)=""/35, 0x23}, {&(0x7f0000001180)=""/206, 0xce}, {&(0x7f0000001280)=""/4096, 0x1000}, {&(0x7f0000002280)=""/4, 0x4}, {&(0x7f00000022c0)=""/229, 0xe5}, {&(0x7f00000023c0)=""/173, 0xad}], 0x6, &(0x7f0000002600)=[{&(0x7f0000002500)=""/94, 0x5e}, {&(0x7f0000002580)=""/103, 0x67}], 0x2, 0x0) 12:06:03 executing program 5: r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x100000001, 0x400000) sendmsg$SMC_PNETID_GET(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, 0x0, 0x1, 0x70bd2d, 0x25dfdbfb, {}, [@SMC_PNETID_IBPORT={0x5, 0x4, 0x2}, @SMC_PNETID_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x804) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, 0x0, 0x400, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x20008040}, 0x8010) r1 = openat$cgroup_int(r0, &(0x7f00000002c0)='io.weight\x00', 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x8, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_any}, {@privport}], [{@fscontext={'fscontext', 0x3d, 'root'}}, {@smackfsdef}, {@euid_lt={'euid<', 0xffffffffffffffff}}]}}) fstat(r0, &(0x7f00000003c0)) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, &(0x7f0000000440)={0x3}) r2 = open(&(0x7f0000000480)='./file0\x00', 0x600000, 0x20) sendfile(r2, r0, &(0x7f00000004c0)=0x8, 0x5) r3 = pidfd_open(0x0, 0x0) fsetxattr$security_evm(r3, &(0x7f0000000500), &(0x7f0000000540)=@ng={0x4, 0xd, "258fe075da1f921d407b6c"}, 0xd, 0x3) ioctl$AUTOFS_IOC_PROTOVER(r3, 0x80049363, &(0x7f0000000580)) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f00000005c0)={{0x1, 0x1, 0x18, r2, {0x7fffffff}}, './file0\x00'}) getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f0000000600), &(0x7f0000000640)=0x4) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000680), 0x503040, 0x0) sendmsg$NL80211_CMD_GET_SURVEY(r4, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x1c, 0x0, 0x8, 0x70bd2d, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000030) fallocate(r2, 0x0, 0x6, 0x9) pidfd_send_signal(r0, 0x14, &(0x7f00000007c0)={0x25, 0x0, 0x2}, 0x0) stat(&(0x7f0000000840)='./file0\x00', &(0x7f0000000880)) pidfd_open(0x0, 0x0) 12:06:03 executing program 6: fallocate(0xffffffffffffffff, 0x8, 0x5, 0x7) r0 = syz_open_dev$sg(&(0x7f0000000000), 0x10000, 0x2000) preadv2(r0, &(0x7f0000000040), 0x0, 0xc13, 0xfffff801, 0x0) r1 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000000c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_WAIT_SYNC(r1, 0x40089416, &(0x7f00000002c0)=r2) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000300), 0x4000, 0x0) r5 = io_uring_setup(0x79a6, &(0x7f0000000340)={0x0, 0x4061, 0x919890c5ede1b1f2, 0x3, 0x2dc, 0x0, r4}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000003c0)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f00000005c0)={"0ebe55dc90f34180972daa499749acc1", r3, r2, {0x1000}, {0x20, 0x4}, 0x1, [0x2e4, 0x0, 0xea, 0x4, 0x7, 0x10000, 0x6, 0x6, 0x5, 0x6, 0x1b37, 0x9, 0x3, 0x9, 0x9cb7, 0x2]}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f00000006c0)={"df5ce7c325e3dbfc33a4ff8abd3a5463", r6, r7, {0x3ff, 0x5}, {0xd32}, 0x0, [0x0, 0x9, 0x0, 0x7fffffff, 0xfffffffffffff000, 0x2, 0x1, 0x1, 0x8, 0x3, 0x0, 0x6, 0x0, 0x100000000, 0x0, 0x100000000]}) ioctl$RTC_VL_READ(r4, 0x80047013, &(0x7f00000007c0)) ioctl$DVD_WRITE_STRUCT(r4, 0x5390, &(0x7f0000000800)=@manufact={0x4, 0x2, 0x800, "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"}) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000001040)) ioctl$PERF_EVENT_IOC_ID(r4, 0x80082407, &(0x7f0000001080)) openat$cdrom(0xffffffffffffff9c, &(0x7f00000010c0), 0x2, 0x0) r8 = syz_io_uring_setup(0x1e9b, &(0x7f0000001100)={0x0, 0xb1ee, 0x1, 0x2, 0x398}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000001180), &(0x7f00000011c0)) sendfile(r8, r1, 0x0, 0x6) ioctl$BTRFS_IOC_SCRUB_CANCEL(r5, 0x941c, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) 12:06:03 executing program 7: ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_SCHED_SCAN(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x2c, 0x0, 0x200, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r0}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY={0x4}, @NL80211_ATTR_SCAN_FREQUENCIES={0xc, 0x2c, 0x0, 0x1, [{0x8}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48801}, 0x20008054) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000140)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x101}}, './file0\x00'}) sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1001001}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x200, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x1f, 0x21}}}}, [@NL80211_ATTR_BSS_SELECT={0x8, 0xe3, 0x0, 0x1, [@NL80211_BSS_SELECT_ATTR_RSSI={0x4}]}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x7}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004018}, 0x800) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1) sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f0000000940)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000900)={&(0x7f0000000300)={0x5f0, r2, 0x300, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x4, 0x1d}}}}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @fils_params=[@NL80211_ATTR_FILS_ERP_USERNAME={0x5, 0xf9, "b0"}, @NL80211_ATTR_FILS_ERP_RRK={0x57, 0xfc, "d09617fbcdccaec4953f425aecfe1298cafef8ccf072246369369c4a045233cf5f782c021dd2819aa74b440f2cdce1d485dcbd1c1490f9cae180166bec517d244a74b25b2c6de520ef2456a545fe1b60a03364"}, @NL80211_ATTR_FILS_ERP_RRK={0xe1, 0xfc, "6e2824c633dfcd1858936ca2319927a58fdc24c3e56273b547b1fc309f8dc873ac6e9bec2930fb47a55605d4990ad29305093dc3735e58fa92ba687791486efaa379a5969206996bbbe165b83022ca630c7355a36004b957252442562d88764ce4cf9049d5c7307c8663d37f9e4e3303a1b56200e8be4534ae73b6af3f51315903d711badabe6078c5fc86c1f8d6fd79c848d6045edf642e0f1d8b861cb0eef7cc9b241a1b985b09d29c0bcb4d0cd48d8e4a88ad2ad0f6238293ecdff391a1076d2f7ad8662915730708e70bf2d83607df6373f4ad98ef3f13791e0413"}, @NL80211_ATTR_FILS_ERP_REALM={0xd4, 0xfa, "e97f3c49b1735c51759389f0452594f27f901e50d0e30261b3b81a480f8f44eabab16e64035383ee9700685102568821b3ebce5d9a54ed7563000e81812d0cd2c760d2dada53b53d2e05dddf0c760324112ea53abef232538fa5ea9ceae735d4f81258350158fb8ef1f64ccb6ad809c716cc6e306eeb09ea2641775a8257f57fc9f215de68a2d0896a54ec4b562999bee8bdf151492d08090cde66f3284aec7fe7ad58aa12ecafc0d2a87388e7982f7acaa5026380e9b5c6756f1a1e4d777b22d5c0e58ff09c2e7a51abb3f8084e32a1"}, @NL80211_ATTR_FILS_ERP_REALM={0x2c, 0xfa, "62582387ba5410344c3060e4169a24316af67b0824dc0e181e9584e30623880d9a1d4a454a886e97"}, @NL80211_ATTR_FILS_ERP_USERNAME={0xc, 0xf9, "a8e5b2f3ab382bff"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x1}], @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x7}, @NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_HT_CAPABILITY_MASK={0x1e, 0x94, {0xb41, 0x0, 0x0, 0x0, {0x401, 0x3, 0x0, 0x2c8, 0x0, 0x0, 0x1, 0x2, 0x1}, 0x700, 0x1, 0x2}}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1}, @NL80211_ATTR_PREV_BSSID={0xa}, @fils_params=[@NL80211_ATTR_FILS_ERP_RRK={0xe1, 0xfc, "a316b0f9f93287b0f34605523ccd5427521a176d2c613dc50cd03f6e1e614f6ef798397d2bc0cc1e82da793db514df84a7d92200ddd8df7c7600f7b11888fbe2f771babdf6c5964d191f294a4897e81936cc3a7ddfe62ad97042447ee985945c152142c450b76e3ce8bb385f77e3346ccfa49930f79a691c800f824d72217241fdb6f786f5eb792f66a66d08717ad3bec3bf03841cb6cdc29612e2bd3f6be32b6639f26bb0eb12953b0cd6f9414fe55b1fbdb978ec499626b8ebf2e5cb13eae55d581915e4f515618094de23d3b1d20117dbbcd469052c472c4078764c"}, @NL80211_ATTR_FILS_ERP_RRK={0x103, 0xfc, "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"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0xff00}, @NL80211_ATTR_FILS_ERP_USERNAME={0x12, 0xf9, "142050299774f729fc3382bea046"}, @NL80211_ATTR_FILS_ERP_USERNAME={0x14, 0xf9, "4e8fbcd98ea626f6d6c5374db9ea5e64"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x5c}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x8}, @NL80211_ATTR_FILS_ERP_RRK={0xf6, 0xfc, "90c81f154405234a2d028aafb0d36835198bdd1b51daa5c17764dffc7e86c541f7f51d3eeffd7fe1f1a249e011ff341e70575f168f9337c4ffc405098a20abd6da16828353d46dc5bde1c526b70d43a204ad6c5109ea5c1e760a003ddb2a055e3a83797a5ea6b2a2db67b92f71b67007837502cc518f35f83dc7892a22f5a61b01647af8c715bc94ea1b20f05f369e4fb376131871245da9a2cceb7fd693d07da087e053260a2d1cd04afc99bf82bf4bffddb5a67e959792466cf440dd7044bf6719a7fbf415cd28f733b9475497c7f057f3837327b68b356d6e3979e28fa17b59becd5747aee7cae0335bcfc373047f0feb"}, @NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM={0x6, 0xfb, 0x99e}]]}, 0x5f0}, 0x1, 0x0, 0x0, 0x4040}, 0x20008801) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000980), 0x62800, 0x0) r4 = syz_open_dev$sg(&(0x7f00000009c0), 0x2, 0x232043) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r3, 0xc0189372, &(0x7f0000000a00)={{0x1, 0x1, 0x18, r4, {0x71}}, './file0\x00'}) r5 = syz_open_dev$sg(&(0x7f0000000a40), 0x7d46, 0x62a90879110a2876) lstat(&(0x7f0000000ac0)='./file0\x00', &(0x7f0000000b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = getgid() getgroups(0x3, &(0x7f0000000b80)=[0xee00, 0xee01, 0xffffffffffffffff]) statx(r1, &(0x7f0000000bc0)='./file0/file0\x00', 0x0, 0x4, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fsetxattr$system_posix_acl(r5, &(0x7f0000000a80)='system.posix_acl_default\x00', &(0x7f0000000d00)={{}, {0x1, 0x3}, [{0x2, 0x2, 0xffffffffffffffff}, {0x2, 0x5, 0xee01}], {}, [{0x8, 0x1, 0xee01}, {0x8, 0x4, r6}, {0x8, 0x3, 0xee00}, {0x8, 0x1}, {0x8, 0x1, 0xee01}, {0x8, 0x1, r7}, {0x8, 0x1, 0xee00}, {0x8, 0x1, r8}, {0x8, 0x1, 0xee00}, {0x8, 0x2, r9}], {}, {0x20, 0x4}}, 0x84, 0x3) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f0000000ec0)={&(0x7f0000000dc0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000e80)={&(0x7f0000000e00)={0x58, 0x0, 0x800, 0x70bd25, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_KEYS={0x34, 0x51, 0x0, 0x1, [{0x8, 0x0, 0x0, 0x1, [@NL80211_KEY_SEQ={0x4}]}, {0x4}, {0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPES={0x8, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_IDX={0x5, 0x2, 0x2}]}]}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x100000, {0x4, 0x4c, 0x5, 0x9e1}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x804}, 0x20018891) r10 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000f00), 0x4000, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000f40)={{0x1, 0x1, 0x18, r10}, './file0/file0/file0\x00'}) ioctl$RTC_WKALM_RD(r3, 0x80287010, &(0x7f0000000f80)) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001040)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000001000/0x2000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000002000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000002000/0x7000)=nil, &(0x7f0000006000/0x1000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000fc0)="c643abf0207be5c9bf7d3e988483ce8b905d5fe5905266abff51ca366a3ee5ba10a0115fd9df86a87ea8b75d0b5ecb398c321454093e8fc7cc3e61ffa1a4c11db172b48f8d2766419e9e5379884ff569b3162d42f02305966ac8", 0x5a, r1}, 0x68) [ 64.813717] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 64.826220] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 64.827986] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 64.831331] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 64.833088] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 64.834510] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 64.839356] Bluetooth: hci0: HCI_REQ-0x0c1a [ 64.961526] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 64.965571] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 64.968494] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 64.970671] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 64.972374] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 64.975195] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 64.977350] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 64.978644] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 64.979854] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 64.981165] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 64.982762] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 64.989004] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 64.990245] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 64.991611] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 64.992763] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 64.993885] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 64.999390] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 65.001185] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 65.002473] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 65.005969] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 65.007178] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 65.009374] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 65.010738] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 65.012111] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 65.013985] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 65.015230] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 65.016564] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 65.017818] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 65.019648] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 65.020798] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 65.022414] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 65.027480] Bluetooth: hci2: HCI_REQ-0x0c1a [ 65.028994] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 65.033242] Bluetooth: hci3: HCI_REQ-0x0c1a [ 65.034173] Bluetooth: hci5: HCI_REQ-0x0c1a [ 65.040239] Bluetooth: hci4: HCI_REQ-0x0c1a [ 65.045494] Bluetooth: hci1: HCI_REQ-0x0c1a [ 65.087632] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 65.089536] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 65.090858] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 65.109349] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 65.111563] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 65.113383] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 65.114774] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 65.119566] Bluetooth: hci7: HCI_REQ-0x0c1a [ 65.135184] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 65.163636] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 65.167630] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 65.204258] Bluetooth: hci6: HCI_REQ-0x0c1a [ 66.903534] Bluetooth: hci0: command 0x0409 tx timeout [ 67.095041] Bluetooth: hci2: command 0x0409 tx timeout [ 67.095105] Bluetooth: hci1: command 0x0409 tx timeout [ 67.095811] Bluetooth: hci4: command 0x0409 tx timeout [ 67.096605] Bluetooth: hci3: command 0x0409 tx timeout [ 67.097179] Bluetooth: hci5: command 0x0409 tx timeout [ 67.158992] Bluetooth: hci7: command 0x0409 tx timeout [ 67.287030] Bluetooth: hci6: command 0x0409 tx timeout [ 68.951010] Bluetooth: hci0: command 0x041b tx timeout [ 69.142987] Bluetooth: hci5: command 0x041b tx timeout [ 69.143456] Bluetooth: hci3: command 0x041b tx timeout [ 69.143881] Bluetooth: hci4: command 0x041b tx timeout [ 69.144691] Bluetooth: hci1: command 0x041b tx timeout [ 69.145131] Bluetooth: hci2: command 0x041b tx timeout [ 69.206953] Bluetooth: hci7: command 0x041b tx timeout [ 69.334951] Bluetooth: hci6: command 0x041b tx timeout [ 70.998955] Bluetooth: hci0: command 0x040f tx timeout [ 71.191071] Bluetooth: hci2: command 0x040f tx timeout [ 71.191495] Bluetooth: hci1: command 0x040f tx timeout [ 71.191973] Bluetooth: hci4: command 0x040f tx timeout [ 71.192388] Bluetooth: hci3: command 0x040f tx timeout [ 71.192794] Bluetooth: hci5: command 0x040f tx timeout [ 71.254957] Bluetooth: hci7: command 0x040f tx timeout [ 71.383072] Bluetooth: hci6: command 0x040f tx timeout [ 73.047015] Bluetooth: hci0: command 0x0419 tx timeout [ 73.238990] Bluetooth: hci5: command 0x0419 tx timeout [ 73.239425] Bluetooth: hci3: command 0x0419 tx timeout [ 73.239826] Bluetooth: hci4: command 0x0419 tx timeout [ 73.240737] Bluetooth: hci1: command 0x0419 tx timeout [ 73.241163] Bluetooth: hci2: command 0x0419 tx timeout [ 73.302979] Bluetooth: hci7: command 0x0419 tx timeout [ 73.430953] Bluetooth: hci6: command 0x0419 tx timeout 12:07:01 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file1\x00', 0x0, 0x0, 0x0, 0x20244a0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)) 12:07:01 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="0c0000f0802f666d6c6530000000"]) openat$sr(0xffffffffffffff9c, &(0x7f0000000180), 0x64aa01, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) pwritev(r2, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000700)=ANY=[@ANYBLOB="0000000000059480bbcda5b4eebd0b0fbccac7c2060000000000000035e06cd16e7af157ed601e04607870477e2e6b6e03444ed0adf608574fb1f6479cd02af9fba6a5e609b8a729e6390fba5a57028c6697b91940b2a340466df2129457f7127a09e21c402cd8e6bb65dd3c367c7b6a3e23e7ed1eb3a06850d0265129f4eef9b0f7da222369c04f24844a4dfbda538c0632f7b37a888e15aef38ecc057e605f2b36a766421ef2601983071aecede18e15acda685aebcd9046a5814f7e383a2e38cc9d3517b69b3100db48dd5ebc", @ANYRES32=r1, @ANYBLOB="00800000000000002e2f66696c653000"]) r4 = signalfd4(r3, &(0x7f0000000300)={[0x6]}, 0x8, 0x80800) io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x1000000, 0x0) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xa0002000}) r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f0000000080)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r6, 0x80e85411, &(0x7f0000000140)) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000340)={{0x1, 0x1, 0x18, r6, {0x3c}}, './file1\x00'}) syz_io_uring_setup(0x37bc, &(0x7f0000000400)={0x0, 0x82be, 0x20, 0x1, 0x1f, 0x0, r5}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000480), &(0x7f00000006c0)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r7 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r7, 0x0) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) [ 121.934189] audit: type=1400 audit(1664539621.886:7): avc: denied { open } for pid=3866 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.939718] audit: type=1400 audit(1664539621.886:8): avc: denied { kernel } for pid=3866 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.969543] ------------[ cut here ]------------ [ 121.969573] [ 121.969578] ====================================================== [ 121.969584] WARNING: possible circular locking dependency detected [ 121.969591] 6.0.0-rc7-next-20220929 #1 Not tainted [ 121.969602] ------------------------------------------------------ [ 121.969608] syz-executor.1/3868 is trying to acquire lock: [ 121.969619] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 121.969684] [ 121.969684] but task is already holding lock: [ 121.969689] ffff88800f9c1420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 121.969736] [ 121.969736] which lock already depends on the new lock. [ 121.969736] [ 121.969742] [ 121.969742] the existing dependency chain (in reverse order) is: [ 121.969747] [ 121.969747] -> #3 (&ctx->lock){....}-{2:2}: [ 121.969772] _raw_spin_lock+0x2a/0x40 [ 121.969792] __perf_event_task_sched_out+0x53b/0x18d0 [ 121.969817] __schedule+0xedd/0x2470 [ 121.969843] schedule+0xda/0x1b0 [ 121.969867] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.969889] syscall_exit_to_user_mode+0x19/0x40 [ 121.969912] do_syscall_64+0x48/0x90 [ 121.969942] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.969966] [ 121.969966] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 121.969991] _raw_spin_lock_nested+0x30/0x40 [ 121.970010] raw_spin_rq_lock_nested+0x1e/0x30 [ 121.970033] task_fork_fair+0x63/0x4d0 [ 121.970063] sched_cgroup_fork+0x3d0/0x540 [ 121.970088] copy_process+0x4183/0x6e20 [ 121.970107] kernel_clone+0xe7/0x890 [ 121.970125] user_mode_thread+0xad/0xf0 [ 121.970143] rest_init+0x24/0x250 [ 121.970165] arch_call_rest_init+0xf/0x14 [ 121.970194] start_kernel+0x4c6/0x4eb [ 121.970220] secondary_startup_64_no_verify+0xe0/0xeb [ 121.970245] [ 121.970245] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 121.970270] _raw_spin_lock_irqsave+0x39/0x60 [ 121.970289] try_to_wake_up+0xab/0x1930 [ 121.970314] up+0x75/0xb0 [ 121.970339] __up_console_sem+0x6e/0x80 [ 121.970368] console_unlock+0x46a/0x590 [ 121.970397] vprintk_emit+0x1bd/0x560 [ 121.970426] vprintk+0x84/0xa0 [ 121.970456] _printk+0xba/0xf1 [ 121.970476] kauditd_hold_skb.cold+0x3f/0x4e [ 121.970506] kauditd_send_queue+0x233/0x290 [ 121.970533] kauditd_thread+0x5f9/0x9c0 [ 121.970559] kthread+0x2ed/0x3a0 [ 121.970585] ret_from_fork+0x22/0x30 [ 121.970610] [ 121.970610] -> #0 ((console_sem).lock){....}-{2:2}: [ 121.970637] __lock_acquire+0x2a02/0x5e70 [ 121.970667] lock_acquire+0x1a2/0x530 [ 121.970696] _raw_spin_lock_irqsave+0x39/0x60 [ 121.970715] down_trylock+0xe/0x70 [ 121.970742] __down_trylock_console_sem+0x3b/0xd0 [ 121.970772] vprintk_emit+0x16b/0x560 [ 121.970802] vprintk+0x84/0xa0 [ 121.970831] _printk+0xba/0xf1 [ 121.970849] report_bug.cold+0x72/0xab [ 121.970879] handle_bug+0x3c/0x70 [ 121.970909] exc_invalid_op+0x14/0x50 [ 121.970963] asm_exc_invalid_op+0x16/0x20 [ 121.970985] group_sched_out.part.0+0x2c7/0x460 [ 121.971017] ctx_sched_out+0x8f1/0xc10 [ 121.971048] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.971068] __schedule+0xedd/0x2470 [ 121.971093] schedule+0xda/0x1b0 [ 121.971118] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.971138] syscall_exit_to_user_mode+0x19/0x40 [ 121.971161] do_syscall_64+0x48/0x90 [ 121.971191] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.971214] [ 121.971214] other info that might help us debug this: [ 121.971214] [ 121.971219] Chain exists of: [ 121.971219] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 121.971219] [ 121.971246] Possible unsafe locking scenario: [ 121.971246] [ 121.971250] CPU0 CPU1 [ 121.971254] ---- ---- [ 121.971258] lock(&ctx->lock); [ 121.971268] lock(&rq->__lock); [ 121.971280] lock(&ctx->lock); [ 121.971292] lock((console_sem).lock); [ 121.971302] [ 121.971302] *** DEADLOCK *** [ 121.971302] [ 121.971306] 2 locks held by syz-executor.1/3868: [ 121.971318] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 121.971372] #1: ffff88800f9c1420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 121.971421] [ 121.971421] stack backtrace: [ 121.971425] CPU: 1 PID: 3868 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220929 #1 [ 121.971449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 121.971463] Call Trace: [ 121.971468] [ 121.971475] dump_stack_lvl+0x8b/0xb3 [ 121.971508] check_noncircular+0x263/0x2e0 [ 121.971539] ? format_decode+0x26c/0xb50 [ 121.971568] ? print_circular_bug+0x450/0x450 [ 121.971599] ? enable_ptr_key_workfn+0x20/0x20 [ 121.971630] ? format_decode+0x26c/0xb50 [ 121.971662] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 121.971695] __lock_acquire+0x2a02/0x5e70 [ 121.971735] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 121.971777] lock_acquire+0x1a2/0x530 [ 121.971807] ? down_trylock+0xe/0x70 [ 121.971839] ? lock_release+0x750/0x750 [ 121.971877] ? vprintk+0x84/0xa0 [ 121.971910] _raw_spin_lock_irqsave+0x39/0x60 [ 121.971931] ? down_trylock+0xe/0x70 [ 121.971961] down_trylock+0xe/0x70 [ 121.971990] ? vprintk+0x84/0xa0 [ 121.972021] __down_trylock_console_sem+0x3b/0xd0 [ 121.972053] vprintk_emit+0x16b/0x560 [ 121.972088] vprintk+0x84/0xa0 [ 121.972120] _printk+0xba/0xf1 [ 121.972141] ? record_print_text.cold+0x16/0x16 [ 121.972171] ? report_bug.cold+0x66/0xab [ 121.972204] ? group_sched_out.part.0+0x2c7/0x460 [ 121.972238] report_bug.cold+0x72/0xab [ 121.972273] handle_bug+0x3c/0x70 [ 121.972305] exc_invalid_op+0x14/0x50 [ 121.972338] asm_exc_invalid_op+0x16/0x20 [ 121.972366] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 121.972403] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 121.972424] RSP: 0018:ffff88803ed8fc48 EFLAGS: 00010006 [ 121.972440] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 121.972454] RDX: ffff88803ed79ac0 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 121.972468] RBP: ffff88803ed98000 R08: 0000000000000005 R09: 0000000000000001 [ 121.972482] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800f9c1400 [ 121.972496] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 121.972516] ? group_sched_out.part.0+0x2c7/0x460 [ 121.972553] ? group_sched_out.part.0+0x2c7/0x460 [ 121.972590] ctx_sched_out+0x8f1/0xc10 [ 121.972626] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.972653] ? lock_is_held_type+0xd7/0x130 [ 121.972679] ? __perf_cgroup_move+0x160/0x160 [ 121.972698] ? set_next_entity+0x304/0x550 [ 121.972731] ? update_curr+0x267/0x740 [ 121.972765] ? lock_is_held_type+0xd7/0x130 [ 121.972791] __schedule+0xedd/0x2470 [ 121.972823] ? io_schedule_timeout+0x150/0x150 [ 121.972853] ? rcu_read_lock_sched_held+0x3e/0x80 [ 121.972890] schedule+0xda/0x1b0 [ 121.972918] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.972941] syscall_exit_to_user_mode+0x19/0x40 [ 121.972966] do_syscall_64+0x48/0x90 [ 121.972999] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.973023] RIP: 0033:0x7f524f10fb19 [ 121.973038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.973058] RSP: 002b:00007f524c685218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.973078] RAX: 0000000000000001 RBX: 00007f524f222f68 RCX: 00007f524f10fb19 [ 121.973092] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f524f222f6c [ 121.973106] RBP: 00007f524f222f60 R08: 000000000000000e R09: 0000000000000000 [ 121.973119] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f524f222f6c [ 121.973132] R13: 00007ffc960af69f R14: 00007f524c685300 R15: 0000000000022000 [ 121.973156] [ 122.074345] WARNING: CPU: 1 PID: 3868 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 122.075506] Modules linked in: [ 122.075933] CPU: 1 PID: 3868 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220929 #1 [ 122.077064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 122.078635] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 122.079420] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 122.081951] RSP: 0018:ffff88803ed8fc48 EFLAGS: 00010006 [ 122.082700] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 122.083717] RDX: ffff88803ed79ac0 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 122.084709] RBP: ffff88803ed98000 R08: 0000000000000005 R09: 0000000000000001 [ 122.085703] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800f9c1400 [ 122.086700] R13: ffff88806cf3d2c0 R14: ffffffff8547d040 R15: 0000000000000002 [ 122.087715] FS: 00007f524c685700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 122.088841] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 122.089672] CR2: 00007f04ed5008e0 CR3: 000000003e1ea000 CR4: 0000000000350ee0 [ 122.090653] Call Trace: [ 122.091025] [ 122.091353] ctx_sched_out+0x8f1/0xc10 [ 122.091925] __perf_event_task_sched_out+0x6d0/0x18d0 [ 122.092663] ? lock_is_held_type+0xd7/0x130 [ 122.093286] ? __perf_cgroup_move+0x160/0x160 [ 122.093933] ? set_next_entity+0x304/0x550 [ 122.094546] ? update_curr+0x267/0x740 [ 122.095187] ? lock_is_held_type+0xd7/0x130 [ 122.095808] __schedule+0xedd/0x2470 [ 122.096352] ? io_schedule_timeout+0x150/0x150 [ 122.097011] ? rcu_read_lock_sched_held+0x3e/0x80 [ 122.097705] schedule+0xda/0x1b0 [ 122.098202] exit_to_user_mode_prepare+0x114/0x1a0 [ 122.098895] syscall_exit_to_user_mode+0x19/0x40 [ 122.099565] do_syscall_64+0x48/0x90 [ 122.100108] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 122.100843] RIP: 0033:0x7f524f10fb19 [ 122.101368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 122.103918] RSP: 002b:00007f524c685218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 122.104980] RAX: 0000000000000001 RBX: 00007f524f222f68 RCX: 00007f524f10fb19 [ 122.105976] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f524f222f6c [ 122.106992] RBP: 00007f524f222f60 R08: 000000000000000e R09: 0000000000000000 [ 122.107990] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f524f222f6c [ 122.108995] R13: 00007ffc960af69f R14: 00007f524c685300 R15: 0000000000022000 [ 122.110055] [ 122.110391] irq event stamp: 788 [ 122.110857] hardirqs last enabled at (787): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 122.112177] hardirqs last disabled at (788): [] __schedule+0x1225/0x2470 [ 122.113364] softirqs last enabled at (706): [] __irq_exit_rcu+0x11b/0x180 [ 122.114551] softirqs last disabled at (697): [] __irq_exit_rcu+0x11b/0x180 [ 122.115759] ---[ end trace 0000000000000000 ]--- [ 122.200917] hrtimer: interrupt took 18455 ns 12:07:02 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/dev_snmp6\x00') r1 = socket$packet(0x11, 0x2, 0x300) syz_genetlink_get_family_id$ethtool(&(0x7f0000000900), r1) r2 = socket$packet(0x11, 0x2, 0x300) syz_genetlink_get_family_id$ethtool(&(0x7f0000000900), r2) sendfile(r1, r2, &(0x7f0000000000)=0x1dc, 0x8001) pidfd_getfd(r0, 0xffffffffffffffff, 0x0) 12:07:02 executing program 2: syz_emit_ethernet(0x32e, &(0x7f0000000000)={@random="bd99d58573e9", @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x2f8, 0x3a, 0xff, @private2, @local, {[], @ndisc_ns={0x87, 0x0, 0x0, @rand_addr=' \x01\x00', [{0x0, 0x3, "57b3d04771900b492d6d099be51a6565f38f408a18f7b360"}, {0x0, 0x17, "6645aeee840c8050ddbe2c178fdae1cf69ae9412478d79d0c60d7a1af59bc0b7aa0cc3533d18460617841b6a324d1eb9ccd0e0aeaaa350a5dd6b3865a39256659b63512d24da4755a2991e03cc66eaf77c680f893c83942735d2c5e5ea9d676fe8cd49e4836da45c7adf15c843f651a1a176452b67be0a514b45e707d8cf2680fc7721d1f2803c76a0c092b23d1e8a7c68073e11b8ba7cbc0f0706302faf05b8958fee428406f0403a9e7f91fceb36c0dd7f2e14f444cb8a"}, {0x0, 0x19, "190671b067ef39d88ee6c687b9627c1f9bfb214392a097c6ab8c3037c41462ce5eb2603c2a0e0446944b5528325716c8d39503cdd72d8c53325179d0ce7f81de52f0352500510e071da16b4c6f2429e67164ec37983d615699b5bc72f1f7d4f531dc51660c0daa90a29fac27c1bf1406d79ceded356ab878eb6e6d4f4c7d0b12639aa31bf90cc6a2955a1e96bf63a5c14ae3756c9e1fcd51fb4b2c606896dd984296b432e5b701f0907ce6f18dcce6cc0c1fe4a46d3aacefa99977e931eb2149f4c52c101b707b233474d7"}, {0x0, 0x13, "dbb1e5498f50147514c42255261b84abcde773320435d1373386f9142444920a195205fc4745476b25c8c36fb220e7af6298f8f0edd9d49fdb21ccbe66c9b010a197274982debcad43f1c9fa67eed093544073b09985b5f9a4e6cc0662c211b756546866dfe45d678e6ea377ebd00153a61e302c397a62fe097cc8dd7e36952591647eaf1d3fc83263ba7c58e0bc64b8ed44770432a9c04364"}, {0x1, 0x15, "51ec4405ebf6af44b69f3d19af64d4a8aef9b545a106b12908f6b89bbd5519f02cc9ff96aa3a97de9a49bb1437467a7b7ab028245a232c4ea1d90a5878f770be68ac4448452c457ac05789600b8367a684b62ca8f7aa52f3f5c11d925464394002c1960cbec514cbc911df10d9fec93f2f353f02126d6a986918ade326218d057c2735f7fd6f88caf96d064cdefec2ac02f2e69cea7fb5eaa3e605de8cb3a9718851d8dd2457"}]}}}}}}, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000340)={@local, @empty, @val={@void, {0x8100, 0x3, 0x0, 0x3}}, {@x25={0x805, {0x3, 0x3, 0xb, "154e0a75992392f04d35d2b1fb825359caaee9b17323566ee3260ba6357aada712e56c2bd6a07d725dff51ac5cdba249ce0416ac0b"}}}}, &(0x7f00000003c0)={0x1, 0x1, [0xe5c, 0x3a7, 0xa0, 0x1ed]}) 12:07:02 executing program 2: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x76, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000002940), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f00000032c0)={0x0, 0x0, &(0x7f0000003280)={&(0x7f0000000080)={0x14, r1, 0x1}, 0x14}}, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x10000, 0x0) fcntl$getown(r2, 0x9) 12:07:02 executing program 4: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x50, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x371}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_QUOTA_RESCAN(r0, 0x4040942c, &(0x7f0000000d80)={0x0, 0x3, [0xfffffffffffffe00, 0x1000, 0xffffffffffffffff, 0x7ff, 0x9, 0xfff]}) perf_event_open(&(0x7f0000000d00)={0x4, 0x80, 0x8, 0x4, 0x1f, 0x1, 0x0, 0xf4a, 0x14462, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x5c1, 0x2, @perf_bp={&(0x7f0000000c00), 0x8}, 0x1, 0x1, 0xfffffffc, 0x6, 0x4, 0x1f, 0x9, 0x0, 0x1cf5, 0x0, 0x1}, 0x0, 0xb, r0, 0x3) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000e00)='./file1\x00', 0x40000, 0x0) fallocate(r1, 0x0, 0x0, 0x87ffffc) readv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000c40)=""/134, 0x86}, {&(0x7f0000000b00)=""/118, 0x76}], 0x2) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) getpid() r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000000), 0x40b01, 0x0) ioctl$CDROMREADMODE1(r3, 0x40081271, &(0x7f0000000080)={0x0, 0x4}) sendmsg$FOU_CMD_GET(r3, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000480)={&(0x7f0000000b80)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="df000000000000000000c00cc0626f609eb43078ab7f00eb45587236a893d18babf16a146d180e0081c8dfb8ffe6a56daadeac1c24fa6ebf4757d559d6a008a567f595d882eb5a28"], 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x40001) perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffff5e8, 0x8000, 0x4, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_bp={&(0x7f0000000040), 0x9}, 0x0, 0x4, 0x1, 0x7, 0x9, 0x4d, 0x4, 0x0, 0x5, 0x0, 0x5}, 0x0, 0xb, 0xffffffffffffffff, 0xb) r4 = getpgid(0x0) ptrace(0x8, r4) sendmsg$IPCTNL_MSG_CT_DELETE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000e372000008001a7074150b00"], 0x1c}}, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000380)='net/igmp6\x00') 12:07:02 executing program 2: perf_event_open(&(0x7f0000000040)={0x8, 0x80, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) syz_genetlink_get_family_id$ethtool(&(0x7f0000000900), r0) fsetxattr$security_ima(r0, &(0x7f0000000000), &(0x7f0000000140)=ANY=[@ANYBLOB="0413c24c31d2b63d5e81460f3a9f133c5111a4df4be61425d7000000002ebbba015869bb25489df013b1584d405646141d381a1ef15164c368a7b0daf528d1b47522026ab281042410284773cf877372629c2e9c00db850cd9647128621126484993248b493cd159491a4f2459bd0d34ba1c7733d84b924ef61a59"], 0xf, 0x3) 12:07:02 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="0c0000f0802f666d6c6530000000"]) openat$sr(0xffffffffffffff9c, &(0x7f0000000180), 0x64aa01, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) pwritev(r2, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000700)=ANY=[@ANYBLOB="0000000000059480bbcda5b4eebd0b0fbccac7c2060000000000000035e06cd16e7af157ed601e04607870477e2e6b6e03444ed0adf608574fb1f6479cd02af9fba6a5e609b8a729e6390fba5a57028c6697b91940b2a340466df2129457f7127a09e21c402cd8e6bb65dd3c367c7b6a3e23e7ed1eb3a06850d0265129f4eef9b0f7da222369c04f24844a4dfbda538c0632f7b37a888e15aef38ecc057e605f2b36a766421ef2601983071aecede18e15acda685aebcd9046a5814f7e383a2e38cc9d3517b69b3100db48dd5ebc", @ANYRES32=r1, @ANYBLOB="00800000000000002e2f66696c653000"]) r4 = signalfd4(r3, &(0x7f0000000300)={[0x6]}, 0x8, 0x80800) io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x1000000, 0x0) r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000240)={0xa0002000}) r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f0000000080)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r6, 0x80e85411, &(0x7f0000000140)) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000340)={{0x1, 0x1, 0x18, r6, {0x3c}}, './file1\x00'}) syz_io_uring_setup(0x37bc, &(0x7f0000000400)={0x0, 0x82be, 0x20, 0x1, 0x1f, 0x0, r5}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000480), &(0x7f00000006c0)) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) r7 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000004, 0x2811, r7, 0x0) syz_io_uring_setup(0xaaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) [ 122.922972] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 122.924225] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 122.925159] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 122.926060] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 122.927054] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 2 [ 122.964736] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s [ 122.965985] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 122.966860] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 122.967738] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 122.968722] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 2 [ 122.969808] Buffer I/O error on dev sr0, logical block 0, async page read [ 122.970741] Buffer I/O error on dev sr0, logical block 1, async page read [ 122.971667] Buffer I/O error on dev sr0, logical block 2, async page read [ 122.972585] Buffer I/O error on dev sr0, logical block 3, async page read [ 122.973482] Buffer I/O error on dev sr0, logical block 4, async page read [ 122.974385] Buffer I/O error on dev sr0, logical block 5, async page read [ 122.975403] Buffer I/O error on dev sr0, logical block 6, async page read [ 122.976381] Buffer I/O error on dev sr0, logical block 7, async page read [ 126.052551] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 126.053539] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 126.054882] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 126.056464] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 126.057599] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 126.058836] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 126.062302] Bluetooth: hci6: HCI_REQ-0x0c1a [ 128.023020] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 128.086946] Bluetooth: hci6: command 0x0409 tx timeout [ 130.134965] Bluetooth: hci6: command 0x041b tx timeout VM DIAGNOSIS: 12:07:02 Registers: info registers vcpu 0 RAX=ffffffff84251709 RBX=0000000000000001 RCX=1ffff11002eaef48 RDX=dffffc0000000000 RSI=ffff888017577f28 RDI=ffff888017577f28 RBP=ffff888017577a40 RSP=ffff888017577968 R8 =ffffffff85e7dac0 R9 =ffffffff85e7dac4 R10=ffffed1002eaef4a R11=ffff888017577a28 R12=ffff888017577a29 R13=ffff888017577a48 R14=ffff8880175779e8 R15=ffffffff85e7dac5 RIP=ffffffff8111aba6 RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f25c78cf8c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffc279baf90 CR3=000000000f9fa000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffff0000000000ff 0000000000000000 YMM02=0000000000000000 0000000000000000 00007f25c7e4ebe0 00007f25c7e4ebe0 YMM03=0000000000000000 0000000000000000 00007f25c7e4ec00 736563697665642f YMM04=0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f YMM05=0000000000000000 0000000000000000 000055af1ab38d80 000055af1ab38d60 YMM06=0000000000000000 0000000000000000 000055af1ab13d30 00000003ffffffff YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 2f63697361622f63 72732f2e2e000d0a YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=000000000000005f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88803ed8f690 R8 =0000000000000001 R9 =000000000000000a R10=000000000000005f R11=0000000000000001 R12=000000000000005f R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f524c685700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f04ed5008e0 CR3=000000003e1ea000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007f524f1f67c0 00007f524f1f67c8 YMM02=0000000000000000 0000000000000000 00007f524f1f67e0 00007f524f1f67c0 YMM03=0000000000000000 0000000000000000 00007f524f1f67c8 00007f524f1f67c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000