Warning: Permanently added '[localhost]:4398' (ECDSA) to the list of known hosts. 2022/09/30 13:17:00 fuzzer started 2022/09/30 13:17:00 dialing manager at localhost:40535 syzkaller login: [ 44.217089] cgroup: Unknown subsys name 'net' [ 44.289509] cgroup: Unknown subsys name 'rlimit' 2022/09/30 13:17:14 syscalls: 2215 2022/09/30 13:17:14 code coverage: enabled 2022/09/30 13:17:14 comparison tracing: enabled 2022/09/30 13:17:14 extra coverage: enabled 2022/09/30 13:17:14 setuid sandbox: enabled 2022/09/30 13:17:14 namespace sandbox: enabled 2022/09/30 13:17:14 Android sandbox: enabled 2022/09/30 13:17:14 fault injection: enabled 2022/09/30 13:17:14 leak checking: enabled 2022/09/30 13:17:14 net packet injection: enabled 2022/09/30 13:17:14 net device setup: enabled 2022/09/30 13:17:14 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/30 13:17:14 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/30 13:17:14 USB emulation: enabled 2022/09/30 13:17:14 hci packet injection: enabled 2022/09/30 13:17:14 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220929) 2022/09/30 13:17:14 802.15.4 emulation: enabled 2022/09/30 13:17:14 fetching corpus: 50, signal 28011/29744 (executing program) 2022/09/30 13:17:14 fetching corpus: 100, signal 44243/47448 (executing program) 2022/09/30 13:17:14 fetching corpus: 150, signal 49372/54033 (executing program) 2022/09/30 13:17:14 fetching corpus: 200, signal 57841/63763 (executing program) 2022/09/30 13:17:14 fetching corpus: 250, signal 62198/69430 (executing program) 2022/09/30 13:17:14 fetching corpus: 300, signal 66386/74869 (executing program) 2022/09/30 13:17:14 fetching corpus: 350, signal 68838/78562 (executing program) 2022/09/30 13:17:14 fetching corpus: 400, signal 72267/83137 (executing program) 2022/09/30 13:17:15 fetching corpus: 450, signal 75730/87655 (executing program) 2022/09/30 13:17:15 fetching corpus: 500, signal 79856/92830 (executing program) 2022/09/30 13:17:15 fetching corpus: 550, signal 82820/96790 (executing program) 2022/09/30 13:17:15 fetching corpus: 600, signal 84710/99751 (executing program) 2022/09/30 13:17:15 fetching corpus: 650, signal 87615/103648 (executing program) 2022/09/30 13:17:15 fetching corpus: 700, signal 90573/107478 (executing program) 2022/09/30 13:17:15 fetching corpus: 750, signal 94039/111766 (executing program) 2022/09/30 13:17:15 fetching corpus: 800, signal 95821/114473 (executing program) 2022/09/30 13:17:15 fetching corpus: 850, signal 97286/116896 (executing program) 2022/09/30 13:17:16 fetching corpus: 900, signal 99930/120240 (executing program) 2022/09/30 13:17:16 fetching corpus: 950, signal 102554/123557 (executing program) 2022/09/30 13:17:16 fetching corpus: 1000, signal 104226/126073 (executing program) 2022/09/30 13:17:16 fetching corpus: 1050, signal 106502/129010 (executing program) 2022/09/30 13:17:16 fetching corpus: 1100, signal 108195/131459 (executing program) 2022/09/30 13:17:16 fetching corpus: 1150, signal 110724/134535 (executing program) 2022/09/30 13:17:16 fetching corpus: 1200, signal 113019/137376 (executing program) 2022/09/30 13:17:17 fetching corpus: 1250, signal 114683/139729 (executing program) 2022/09/30 13:17:17 fetching corpus: 1300, signal 116116/141832 (executing program) 2022/09/30 13:17:17 fetching corpus: 1350, signal 118717/144866 (executing program) 2022/09/30 13:17:17 fetching corpus: 1400, signal 120916/147440 (executing program) 2022/09/30 13:17:17 fetching corpus: 1450, signal 122628/149793 (executing program) 2022/09/30 13:17:17 fetching corpus: 1500, signal 123925/151679 (executing program) 2022/09/30 13:17:17 fetching corpus: 1550, signal 127569/155380 (executing program) 2022/09/30 13:17:17 fetching corpus: 1600, signal 130204/158170 (executing program) 2022/09/30 13:17:18 fetching corpus: 1650, signal 131691/160118 (executing program) 2022/09/30 13:17:18 fetching corpus: 1700, signal 133066/161938 (executing program) 2022/09/30 13:17:18 fetching corpus: 1750, signal 134681/163921 (executing program) 2022/09/30 13:17:18 fetching corpus: 1800, signal 136647/166035 (executing program) 2022/09/30 13:17:18 fetching corpus: 1850, signal 137740/167606 (executing program) 2022/09/30 13:17:18 fetching corpus: 1900, signal 139393/169504 (executing program) 2022/09/30 13:17:18 fetching corpus: 1950, signal 140304/170864 (executing program) 2022/09/30 13:17:18 fetching corpus: 2000, signal 141363/172353 (executing program) 2022/09/30 13:17:19 fetching corpus: 2050, signal 142685/173989 (executing program) 2022/09/30 13:17:19 fetching corpus: 2100, signal 143341/175228 (executing program) 2022/09/30 13:17:19 fetching corpus: 2150, signal 144907/176959 (executing program) 2022/09/30 13:17:19 fetching corpus: 2200, signal 146228/178505 (executing program) 2022/09/30 13:17:19 fetching corpus: 2250, signal 147397/179979 (executing program) 2022/09/30 13:17:19 fetching corpus: 2300, signal 148557/181447 (executing program) 2022/09/30 13:17:19 fetching corpus: 2350, signal 149363/182671 (executing program) 2022/09/30 13:17:19 fetching corpus: 2400, signal 150603/184156 (executing program) 2022/09/30 13:17:19 fetching corpus: 2450, signal 151146/185152 (executing program) 2022/09/30 13:17:20 fetching corpus: 2500, signal 152667/186690 (executing program) 2022/09/30 13:17:20 fetching corpus: 2550, signal 153410/187771 (executing program) 2022/09/30 13:17:20 fetching corpus: 2600, signal 154651/189114 (executing program) 2022/09/30 13:17:20 fetching corpus: 2650, signal 156305/190726 (executing program) 2022/09/30 13:17:20 fetching corpus: 2700, signal 157913/192267 (executing program) 2022/09/30 13:17:20 fetching corpus: 2750, signal 158625/193294 (executing program) 2022/09/30 13:17:20 fetching corpus: 2800, signal 160430/194919 (executing program) 2022/09/30 13:17:20 fetching corpus: 2850, signal 161283/195989 (executing program) 2022/09/30 13:17:21 fetching corpus: 2900, signal 161873/196869 (executing program) 2022/09/30 13:17:21 fetching corpus: 2950, signal 162854/197892 (executing program) 2022/09/30 13:17:21 fetching corpus: 3000, signal 163772/198904 (executing program) 2022/09/30 13:17:21 fetching corpus: 3050, signal 164543/199851 (executing program) 2022/09/30 13:17:21 fetching corpus: 3100, signal 165208/200765 (executing program) 2022/09/30 13:17:21 fetching corpus: 3150, signal 165905/201661 (executing program) 2022/09/30 13:17:21 fetching corpus: 3200, signal 166707/202542 (executing program) 2022/09/30 13:17:21 fetching corpus: 3250, signal 167304/203344 (executing program) 2022/09/30 13:17:21 fetching corpus: 3300, signal 168242/204286 (executing program) 2022/09/30 13:17:22 fetching corpus: 3350, signal 169035/205161 (executing program) 2022/09/30 13:17:22 fetching corpus: 3400, signal 169679/205995 (executing program) 2022/09/30 13:17:22 fetching corpus: 3450, signal 170713/206929 (executing program) 2022/09/30 13:17:22 fetching corpus: 3500, signal 171486/207730 (executing program) 2022/09/30 13:17:22 fetching corpus: 3550, signal 172028/208480 (executing program) 2022/09/30 13:17:22 fetching corpus: 3600, signal 173036/209300 (executing program) 2022/09/30 13:17:22 fetching corpus: 3650, signal 173641/210033 (executing program) 2022/09/30 13:17:22 fetching corpus: 3700, signal 174378/210803 (executing program) 2022/09/30 13:17:22 fetching corpus: 3750, signal 175091/211536 (executing program) 2022/09/30 13:17:23 fetching corpus: 3800, signal 175714/212248 (executing program) 2022/09/30 13:17:23 fetching corpus: 3850, signal 176382/212963 (executing program) 2022/09/30 13:17:23 fetching corpus: 3900, signal 177467/213757 (executing program) 2022/09/30 13:17:23 fetching corpus: 3950, signal 178675/214584 (executing program) 2022/09/30 13:17:23 fetching corpus: 4000, signal 179224/215192 (executing program) 2022/09/30 13:17:23 fetching corpus: 4050, signal 179942/215878 (executing program) 2022/09/30 13:17:23 fetching corpus: 4100, signal 180412/216457 (executing program) 2022/09/30 13:17:23 fetching corpus: 4150, signal 181561/217233 (executing program) 2022/09/30 13:17:24 fetching corpus: 4200, signal 181903/217742 (executing program) 2022/09/30 13:17:24 fetching corpus: 4250, signal 182894/218389 (executing program) 2022/09/30 13:17:24 fetching corpus: 4300, signal 183380/218954 (executing program) 2022/09/30 13:17:24 fetching corpus: 4350, signal 184234/219593 (executing program) 2022/09/30 13:17:24 fetching corpus: 4400, signal 184457/220012 (executing program) 2022/09/30 13:17:24 fetching corpus: 4450, signal 185337/220616 (executing program) 2022/09/30 13:17:24 fetching corpus: 4500, signal 186004/221162 (executing program) 2022/09/30 13:17:24 fetching corpus: 4550, signal 186575/221697 (executing program) 2022/09/30 13:17:24 fetching corpus: 4600, signal 187151/222210 (executing program) 2022/09/30 13:17:25 fetching corpus: 4650, signal 187899/222721 (executing program) 2022/09/30 13:17:25 fetching corpus: 4700, signal 188953/223295 (executing program) 2022/09/30 13:17:25 fetching corpus: 4750, signal 189625/223774 (executing program) 2022/09/30 13:17:25 fetching corpus: 4800, signal 190006/224206 (executing program) 2022/09/30 13:17:25 fetching corpus: 4850, signal 190648/224669 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/224992 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/225344 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/225667 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/226004 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/226347 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/226730 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/227080 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/227432 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/227796 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/228157 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/228494 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/228851 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/229176 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/229511 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/229824 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/230171 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/230251 (executing program) 2022/09/30 13:17:25 fetching corpus: 4872, signal 190746/230251 (executing program) 2022/09/30 13:17:28 starting 8 fuzzer processes 13:17:28 executing program 0: ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x7fff, 0x7, 0xffffffffffffff00}) accept(r0, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f00000000c0)=0x80) sendmsg$AUDIT_GET_FEATURE(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x10, 0x3fb, 0x1, 0x70bd26, 0x25dfdbfe, "", [""]}, 0x10}, 0x1, 0x0, 0x0, 0x4000011}, 0x4000000) copy_file_range(r0, &(0x7f0000000200)=0x3, r1, 0x0, 0xffffffffffffff13, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x200, 0x100) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x28, 0x0, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth0_to_batadv\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000084) r3 = openat$cgroup_ro(r2, &(0x7f0000000380)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0) sendmsg$AUDIT_SIGNAL_INFO(r3, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80010}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x10, 0x3f2, 0x100, 0x70bd25, 0x25dfdbfc, "", ["", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x840}, 0x20020800) ioctl$BTRFS_IOC_QGROUP_LIMIT(r3, 0x8030942b, &(0x7f00000004c0)={0xfffffffffffffff9, {0x20, 0xc59, 0x3, 0x99a, 0x4d04}}) r4 = socket(0x1d, 0x80000, 0x1) sendmsg$NFNL_MSG_CTHELPER_GET(r4, &(0x7f0000000740)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000700)={&(0x7f0000000600)={0xf8, 0x1, 0x9, 0x304, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFCTH_TUPLE={0xc, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x10000}}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1f}}, @NFCTH_TUPLE={0x98, 0x2, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @private2}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @empty}}}]}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x1c}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x7}, @NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0xde}}]}, 0xf8}, 0x1, 0x0, 0x0, 0x25}, 0x800) recvmsg$unix(r2, &(0x7f0000001d40)={&(0x7f0000000780)=@abs, 0x6e, &(0x7f0000001b40)=[{&(0x7f0000000800)=""/151, 0x97}, {&(0x7f00000008c0)=""/179, 0xb3}, {&(0x7f0000000980)=""/148, 0x94}, {&(0x7f0000000a40)=""/4096, 0x1000}, {&(0x7f0000001a40)=""/221, 0xdd}], 0x5, &(0x7f0000001bc0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x148}, 0x10020) sendmsg$NFNL_MSG_CTHELPER_DEL(r7, &(0x7f0000001e40)={&(0x7f0000001d80)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001e00)={&(0x7f0000001dc0)={0x1c, 0x2, 0x9, 0x0, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x7}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4080}, 0x400c0c4) sendmsg$NL80211_CMD_GET_POWER_SAVE(r6, &(0x7f0000001f40)={&(0x7f0000001e80)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000001f00)={&(0x7f0000001ec0)={0x28, 0x0, 0x400, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x24}}}}, ["", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000094}, 0x40000) sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000022c0)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x4004040}, 0xc, &(0x7f0000002280)={&(0x7f0000001fc0)={0x2c0, 0x0, 0x200, 0x70bd25, 0x25dfdbff, {}, [@ETHTOOL_A_FEATURES_WANTED={0x2ac, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x89, 0x5, "ddc14d0e0503725cd027deb555c9b80665fee709649b1575b931997ef4876e2ec5eb31e6b53d8dc25f68b5175aecdd24cd67f4a98b9cb7e7b7f145468b1ab12c85b25e3696055ca9255d4fef1aa89c8e8f60448cae2b81a4153a42f317f6af03818e4679ca5946c07467b13aaf2e597fc17ed593c16508c4bdb89da5dc2c5bd1013ff6caaa"}, @ETHTOOL_A_BITSET_MASK={0x11, 0x5, "28dc97bdcecf51fde9edd687db"}, @ETHTOOL_A_BITSET_VALUE={0x37, 0x4, "6ce2d5548c555f132de447489e36f00cb4175c4cd985cd32678e61faaae39807610becac2aca1eed213c915edd48bc5fc6abc0"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7}, @ETHTOOL_A_BITSET_BITS={0xac, 0x3, 0x0, 0x1, [{0x54, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x24, 0x2, 'blkio.bfq.io_serviced_recursive\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x10001}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'syz1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x9, 0x2, 'syz1\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x7, 0x2, '*}\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x4}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x1000}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4}]}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0xd8, 0x3, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x13}, @ETHTOOL_A_BITSET_BIT_NAME={0x24, 0x2, 'blkio.bfq.io_serviced_recursive\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '*(/-#^*\x00'}]}, {0x64, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x24, 0x2, 'blkio.bfq.io_serviced_recursive\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0xc, 0x2, '@-{\xf0#[}\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0xb, 0x2, ']#\')-:\x00'}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x4d}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x9}, @ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x8}]}]}, @ETHTOOL_A_BITSET_MASK={0x40, 0x5, "6ae9fc8ae0feebae67912c58cf343dea8fc9e25c6d06e77bbd31c55c1809a08752581e16b582614d7e09e49af24ec3d3cfcac8de71d4788cd2b5415e"}]}]}, 0x2c0}, 0x1, 0x0, 0x0, 0x80}, 0x880) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r8, 0xc018937d, &(0x7f0000002300)={{0x1, 0x1, 0x18, r5}, './file0\x00'}) sendmsg$NL80211_CMD_NEW_MPATH(r10, &(0x7f0000002440)={&(0x7f0000002340)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000002400)={&(0x7f0000002380)={0x58, 0x0, 0x94ec9e1d923bbd6, 0x70bd2c, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa}]}, 0x58}, 0x1, 0x0, 0x0, 0x8010}, 0x4000004) r11 = fcntl$dupfd(r10, 0x0, 0xffffffffffffffff) sendmsg$TIPC_NL_SOCK_GET(r11, &(0x7f0000002980)={&(0x7f0000002480)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000002940)={&(0x7f00000024c0)={0x45c, 0x0, 0x800, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}]}]}, @TIPC_NLA_SOCK={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xa0}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x400}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9d47}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6e93}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MEDIA={0xec, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x246}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xb}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffff51c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffffd}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x93}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xf8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x934}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffffffff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfa3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x24}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7108}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x62a6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7000000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}]}]}, @TIPC_NLA_NODE={0xe4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "fc35a8c239c09ec78134d78094a2dc0a88e6e4f013"}}, @TIPC_NLA_NODE_ID={0x5e, 0x3, "185982bd63ceab8f7c4f2a5e4aef45007b50d95041ef1d734557b6561c36dbd3dcd6d97f11150e65512366d2d057098b30795332bfd1c2b096745d570b83c5b9955c8d57582d8aee2ee8164d0b8e4f747168fa255474eb46db51"}, @TIPC_NLA_NODE_KEY={0x3d, 0x4, {'gcm(aes)\x00', 0x15, "a52bb7fd67151c458db80acba4b79d1d492952c45c"}}]}, @TIPC_NLA_MEDIA={0x110, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10000}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x891}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xe11}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x101}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3f}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x800}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x80}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80000000}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_NET={0x20, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xde44}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}]}, @TIPC_NLA_MEDIA={0x5c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7fffffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x568e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xb4ce}]}]}, @TIPC_NLA_MEDIA={0x44, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fffffff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_NODE={0x4c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x45, 0x4, {'gcm(aes)\x00', 0x1d, "d9605e443563a14b62074754836a18eba47ad8a59566e9424e99a48742"}}]}]}, 0x45c}, 0x1, 0x0, 0x0, 0x4800}, 0x0) ioctl$KDMKTONE(r9, 0x4b30, 0x0) 13:17:28 executing program 1: msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000000)=""/1) r0 = msgget(0x3, 0x40) msgrcv(r0, &(0x7f0000000040)={0x0, ""/48}, 0x38, 0x2, 0x1800) msgrcv(r0, &(0x7f0000000080)={0x0, ""/235}, 0xf3, 0x3, 0x800) msgrcv(r0, &(0x7f0000000180)={0x0, ""/166}, 0xae, 0x0, 0x800) r1 = msgget(0x0, 0x2) r2 = msgget$private(0x0, 0x2c5) msgctl$IPC_RMID(r2, 0x0) r3 = msgget(0x3, 0x60) msgsnd(r3, &(0x7f0000000240)={0x0, "e1ad4ac2ec5349d64e08b2f6adc3b02711d43536b79bd79ddc37c9d426585239b8446d2840259f0a5402bf3335d342f07dc6050025840f42fab64566bb7d4c35f897f14582c9ff8f76d746ff3873502d1bf1720ddc1c005171455f86b484dc3af455a3e073125053ca2b97e2b38e9e6d858b2bbe57c78a3a36e46e4ae68839ac017201bfd1ff45d289d6638eb47412a64117cd6cd1d36fd09c7b56f247a3b9c173e507f992b7af5c639d5076037ad21d51"}, 0xb9, 0x800) r4 = getgid() getresuid(&(0x7f00000003c0), &(0x7f0000000400)=0x0, &(0x7f0000000440)=0x0) r7 = getpgid(0xffffffffffffffff) r8 = gettid() msgctl$IPC_SET(r1, 0x1, &(0x7f0000000480)={{0x0, 0x0, r4, r6, 0xee01, 0x30, 0x8001}, 0x0, 0x0, 0x5, 0x5, 0x0, 0x1ff, 0xffffffff, 0xb6, 0x2, 0x8, r7, r8}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000540)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r5, r4}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000580)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r5, r9}}, './file0\x00'}) syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000600)='./file0\x00', 0x6, 0x1, &(0x7f0000000740)=[{&(0x7f0000000640)="a0565cfd5d97588cc2ec27a4bc492ea8531436bd381283ee04b009f2fb222b7c8eda7318c42d675708fc7fa7d5156deeefa53ca0a49970e4f2e24fc5147b16c90987ff6d527211ac437bea5bd2d11684599fa21f1f412f5997ff162a782f26daa4816886c7dd92eb1a12f8bc2febe99e205fa89baf0fdfc878825314e885b0599ef69ae035e18681c237d7e6f8516d49419fe302440e5b2d218b9657accebd16d6521bb68534db0c1810064995cb932030fb04beeedf809dda13d4743604efb5fb4326929be05b706abf8cd59a155a1abc50216f526f2e7918210c7b1c2091ae18bd4c0d6383300fc1", 0xe9, 0x4}], 0x200805, &(0x7f0000000780)={[{@shortname_win95}], [{@pcr={'pcr', 0x3d, 0x3b}}, {@measure}, {@permit_directio}]}) msgsnd(0xffffffffffffffff, &(0x7f0000000800)={0x0, 'GR'}, 0xa, 0x0) msgctl$IPC_STAT(0x0, 0x2, &(0x7f0000000840)=""/163) 13:17:28 executing program 2: pipe2$9p(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) write$P9_RREADLINK(r1, &(0x7f0000000040)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10) r2 = memfd_secret(0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)) r4 = pidfd_getfd(r2, r0, 0x0) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0}, &(0x7f0000000240)=0xc) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xc3d45ec5940d4c2c, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@loose}, {@access_uid={'access', 0x3d, r5}}, {@version_9p2000}, {@mmap}, {@cache_mmap}, {@version_u}], [{@fsuuid={'fsuuid', 0x3d, {[0x38, 0x66, 0x34, 0x64, 0x65, 0x31, 0x32, 0x33], 0x2d, [0x32, 0x65, 0x0, 0x37], 0x2d, [0x34, 0x38, 0x66, 0x35], 0x2d, [0x33, 0x62, 0x32, 0x65], 0x2d, [0x64, 0x61, 0x12ecf7952a361a0e, 0x66, 0x36, 0x66, 0x33, 0x66]}}}, {@dont_appraise}, {@subj_user={'subj_user', 0x3d, '[-\\.-](#%$&{('}}]}}) r6 = signalfd4(r1, &(0x7f0000000380)={[0x1000]}, 0x8, 0x80400) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r2, 0x89f5, &(0x7f0000000440)={'ip6_vti0\x00', &(0x7f00000003c0)={'ip6gre0\x00', 0x0, 0x29, 0x3, 0x9, 0x7, 0x16, @mcast1, @mcast2, 0x20, 0x700, 0x9, 0x6}}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r6, 0x89f0, &(0x7f0000000580)={'syztnl1\x00', &(0x7f0000000480)={'erspan0\x00', r7, 0x20, 0x88, 0x81, 0x8, {{0x2d, 0x4, 0x2, 0x3, 0xb4, 0x67, 0x0, 0x0, 0x4, 0x0, @private=0xa010102, @empty, {[@timestamp_prespec={0x44, 0x4c, 0x4d, 0x3, 0x0, [{@multicast2, 0x98}, {@multicast1, 0x2}, {@empty, 0x3f}, {@broadcast, 0x965}, {@dev={0xac, 0x14, 0x14, 0xe}, 0x3}, {@remote, 0x2}, {@empty, 0x7}, {@rand_addr=0x64010100, 0x10001}, {@rand_addr=0x64010100, 0x16a}]}, @timestamp_prespec={0x44, 0x54, 0xca, 0x3, 0x8, [{@multicast1, 0x1f}, {@empty, 0x3}, {@loopback, 0x6a}, {@empty}, {@rand_addr=0x64010100, 0x2}, {@multicast2, 0xe380}, {@loopback, 0x4}, {@dev={0xac, 0x14, 0x14, 0x3f}, 0x10000}, {@local, 0x2}, {@remote, 0x299}]}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000000640)={'sit0\x00', &(0x7f00000005c0)={'syztnl1\x00', 0x0, 0x2f, 0x48, 0x7, 0x4, 0xf, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8000, 0x1, 0xffff0000, 0xc98}}) sendmsg$IPSET_CMD_GET_BYNAME(r6, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x48, 0xe, 0x6, 0x5, 0x0, 0x0, {0x3, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x20004840) mknodat$loop(r4, &(0x7f00000007c0)='./file0\x00', 0x1, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH(r3, 0xd0009411, &(0x7f0000000800)={{0x0, 0x5, 0xd, 0x8000, 0x4, 0x80000000, 0x2, 0x6, 0x9c68, 0x1, 0x3da2, 0xfffffffffffffb7b, 0x80, 0x4}}) ioctl$BTRFS_IOC_INO_LOOKUP(r6, 0xd0009412, &(0x7f0000001800)={r8, 0x4}) open_tree(0xffffffffffffff9c, &(0x7f0000002800)='./file0\x00', 0x100) syz_io_uring_setup(0x5846, &(0x7f0000002840)={0x0, 0x2cef, 0x10, 0x1, 0x2f, 0x0, r6}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000028c0)=0x0, &(0x7f0000002900)) syz_io_uring_setup(0x554e, &(0x7f0000002940)={0x0, 0xddef, 0x2, 0xffffffff, 0x2c1, 0x0, r3}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000029c0), &(0x7f0000002a00)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000002a40)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x2) [ 72.134300] audit: type=1400 audit(1664543848.811:6): avc: denied { execmem } for pid=289 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 13:17:28 executing program 4: ioctl$PTP_PIN_GETFUNC2(0xffffffffffffffff, 0xc0603d0f, &(0x7f0000000000)={'\x00', 0x7, 0x0, 0x3f}) ioctl$BINDER_GET_NODE_DEBUG_INFO(0xffffffffffffffff, 0xc018620b, &(0x7f0000000080)={0x2}) ioctl$PTP_PEROUT_REQUEST2(0xffffffffffffffff, 0x40383d0c, &(0x7f00000000c0)={{0x6, 0x2}, {0x2, 0x1000}, 0xfffffff7, 0x1}) syz_open_dev$sg(&(0x7f0000000100), 0xffffffffffffff0d, 0x49c400) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000140)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$PTP_PIN_GETFUNC2(r0, 0xc0603d0f, &(0x7f0000000180)={'\x00', 0x200, 0x1, 0xffff}) r1 = syz_open_dev$vcsa(&(0x7f0000000200), 0x100000001, 0x4000) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000240)={{0x1, 0x1, 0x18, r1, {0x8}}, './file0\x00'}) ioctl$PTP_PIN_GETFUNC2(r1, 0xc0603d0f, &(0x7f0000000280)={'\x00', 0x6, 0x2, 0x1237e57a}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000340)={0x3, &(0x7f0000000300)=[{0x4, 0x8, 0x2, 0x1}, {0x20, 0x8, 0x2, 0x9}, {0x2, 0x67, 0x10, 0x2}]}) r3 = syz_open_dev$vcsn(&(0x7f0000000380), 0x9, 0x400) ioctl$PTP_PIN_GETFUNC2(r3, 0xc0603d0f, &(0x7f00000003c0)={'\x00', 0x4, 0x1, 0x6}) ioctl$PTP_PIN_GETFUNC2(r1, 0xc0603d0f, &(0x7f0000000440)={'\x00', 0x7, 0x2, 0xfffff801}) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000500)={0x8, &(0x7f00000004c0)=[{0x7, 0x40, 0x27, 0x8000}, {0x23a, 0x3, 0x8, 0x1}, {0x1ceb, 0x2, 0xd5, 0x7}, {0x6, 0x9, 0x0, 0x33400000}, {0x7, 0x0, 0x7}, {0xfff, 0xea, 0x1}, {0x9, 0x20, 0x1, 0x7f7}, {0x2, 0x30, 0x1f, 0x101}]}) ioctl$F2FS_IOC_RESIZE_FS(0xffffffffffffffff, 0x4008f510, &(0x7f0000000540)=0x7) ioctl$PTP_PIN_GETFUNC2(r2, 0xc0603d0f, &(0x7f0000000580)={'\x00', 0x9, 0x3, 0xfff}) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000600)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x0) r5 = eventfd(0x1f) io_submit(0x0, 0x1, &(0x7f0000000780)=[&(0x7f0000000740)={0x0, 0x0, 0x0, 0x6, 0x8, r3, &(0x7f0000000640)="0a44390a37d3adf320f8ab513f7384dc1c40034b380c985e3f914bf6ad0e21a1fed8fb9ff0814e131fb7cfa634b621002331cfddb0bbf95b75fcc271a93ddfb3599072c44425695c568526ac15b97f4fd95fe7138dab2166985aa828561926f4507ddc61f33888f8673b43d2242e8a06275c2b063b00cc7466aca2d31cae199ec3deb582c3b0412d15c6fbd08e1d00107d455890c2b8849cfda98ae984ddae8c4284c731fda0ef4c790cd4c9468f71542d72c309c8bfce1e6910d8ee87a374b0acab16a4dfa4e6203bd1e8d02887aa1ec098be376e30cccde214e08535363517f3a7be6a0405814a", 0xe8, 0x8, 0x0, 0x4, r5}]) 13:17:28 executing program 3: prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x0) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x0) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x0) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x0) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x0) prctl$PR_SET_KEEPCAPS(0x8, 0x0) prctl$PR_SET_KEEPCAPS(0x8, 0x0) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x1) prctl$PR_SET_KEEPCAPS(0x8, 0x1) 13:17:28 executing program 7: ioctl$BTRFS_IOC_SYNC(0xffffffffffffffff, 0x9408, 0x0) fallocate(0xffffffffffffffff, 0x8, 0x3, 0xa57) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/locks\x00', 0x0, 0x0) ioctl$HIDIOCGRDESC(r0, 0x90044802, &(0x7f0000000040)={0xd19, "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"}) readv(r0, &(0x7f0000001d80)=[{&(0x7f0000000d80)=""/4096, 0x1000}], 0x1) read(r0, &(0x7f0000001dc0)=""/110, 0x6e) r1 = socket$nl_route(0x10, 0x3, 0x0) close(r1) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000001e40)=0xe1) mq_timedsend(r0, &(0x7f0000001e80)="19cec78efd", 0x5, 0x8, &(0x7f0000001ec0)) r2 = syz_open_dev$mouse(&(0x7f0000001f00), 0x7, 0x30a00) write$hidraw(r2, &(0x7f0000001f40)="dc35acff6a1b4774cd8844afe85c21074ec6b05318", 0x15) sendmsg$TCPDIAG_GETSOCK(r2, &(0x7f0000002280)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000002240)={&(0x7f0000001fc0)={0x264, 0x12, 0x400, 0x70bd28, 0x25dfdbfd, {0x29, 0x0, 0xfc, 0xb9, {0x4e21, 0x4e22, [0x3166d6c2, 0x9, 0x8000], [0x0, 0xfffffdb7, 0x2, 0x3], 0x0, [0x0, 0x5]}, 0x9, 0x4}, [@INET_DIAG_REQ_BYTECODE={0xd, 0x1, "7f9fca95d278c00e42"}, @INET_DIAG_REQ_BYTECODE={0x86, 0x1, "48975bf34b4f246ca4822ef0727775385246e1aa9f067506f1bcba420500f0928a31f80e86922bfa58fa85956bf608aa2e37031258159d8b5a20138a1c84c1cc553b08aafaed009a59046f897d646d7316bd9e4d3ab95e47e5f84a26854fa811fe1746572d59a727ed974177fffb1888e30e87645b4effa8c5b1c57699d289d98a35"}, @INET_DIAG_REQ_BYTECODE={0xf6, 0x1, "09aaffc3df46c0fd74841b7cb25a45754b005c351be007c232c16613633201f7332baa80fd5af9d35dc2ed786258324631243a67a40121aafd6fb385aadf9421fcfcd5242a5f3306acb5816267cd8fd890fa524c1888f7e7a60f3ea430238a14f727acc4ea1776da3198cb4e2f3479a5492dc000938f0c0a5dcf8c18a4c07cc726165f3a6e11d6d8b81b0ee73ca0f48c1b3729b1a9df13d848ef3978d14de07667c6ac66e80c988a4bcdb7efba133962f3461cbd00ff3dbd74518a91c5fa7d7b203e8b9c853d91408697f11a86f1c73ade9666ee7b29b48192d05d2c6faa280d58162308f5993792ead61b63a5c02ecaa12a"}, @INET_DIAG_REQ_BYTECODE={0x85, 0x1, "94638a978a705319778d3fc2bfe9b5bc1f50657da9f7aa8a0e6c829f2e36b8f787d56ff162aa11c84735de9e2251b50f18489d9bc0629c1c3ea8f932c4ac4355f46511b428b571bc7ab1e21ecd11d886b4d793b21a65d3f2a5df6292fba9781e2f9a7c672a8e64a3abe2a01169830298aa974d9134d34c73a52d1850f0dfcd33cb"}]}, 0x264}, 0x1, 0x0, 0x0, 0x4}, 0x20000004) r3 = open(&(0x7f00000022c0)='./file0\x00', 0x101000, 0x4) r4 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000002300)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(r3, 0x40046721, &(0x7f0000002340)={r4}) r5 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$FITHAW(r5, 0xc0045878) r6 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$INCFS_IOC_FILL_BLOCKS(r6, 0x80106720, &(0x7f00000024c0)={0x2, &(0x7f0000002480)=[{0x0, 0x64, &(0x7f0000002380)="3dbb8bbdb7cc571885bfd9d7e18b3c6aaa5e6cbd0d86d865f16106c8737bfd32e4b01aca12592808e52cc1c4e2e4a2f6d0bb87c526bf72dad35ab0b89776e2ac28fcad398b185c4781b50bf828fa5f6baa92038f7df500049ca9ceb52623aaabc0f1f6c0", 0x1}, {0x20, 0x80, &(0x7f0000002400)="20f82ddc3526637bc96c03285e376d3f287cf157eb63bc94f763c93858dc9da4a241d8bba7eda34b162ec27003b0a40717bbf27046345911abb0c435cb809f4fae15abe9b22af6b97c8900484ecb8ec7219f17c0b3ea6a404c9de8d37050df880a15b631a62faa1c187c401935a48f53c242c0fed4640b15c4647a400ae633d1", 0x1, 0x1}]}) 13:17:28 executing program 5: r0 = syz_io_uring_setup(0x1a53, &(0x7f0000000000)={0x0, 0x6010, 0x2, 0x3, 0x120}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2, r3}}, 0x4) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0x30, r0, 0x0) syz_io_uring_submit(r4, r2, &(0x7f0000000180)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x2, &(0x7f0000000140)={0x0, 0x989680}, 0x1, 0x0, 0x0, {0x0, r3}}, 0x5) r5 = syz_io_uring_setup(0x738, &(0x7f00000001c0)={0x0, 0x88a3, 0x20, 0x2, 0x73}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000240), &(0x7f0000000280)=0x0) syz_io_uring_submit(r1, r6, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x4, 0x24a, 0x0, 0x9, 0x0, 0x1, {0x0, r3}}, 0x800) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x6, 0x40010, 0xffffffffffffffff, 0x0) r7 = openat$full(0xffffffffffffff9c, &(0x7f0000000300), 0x200, 0x0) vmsplice(r7, &(0x7f00000003c0)=[{&(0x7f0000000340)="807865429c7498a752f3caf3d061f03b2cc3928f8f0f8eeb38af9ad8264ecf3b82d54b180f019380265acb35a457f0316ea8b40d0d199c2396cb25752660335625bbaeed718d70365788ca24bf00d4586ac89f762f483f", 0x57}], 0x1, 0x0) dup3(r5, r0, 0x0) r8 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000400), 0x400002, 0x0) preadv2(r8, &(0x7f0000000480)=[{&(0x7f0000000440)=""/19, 0x13}], 0x1, 0x5, 0x6, 0x4) readv(r8, &(0x7f0000000b80)=[{&(0x7f00000004c0)=""/210, 0xd2}, {&(0x7f00000005c0)}, {&(0x7f0000000600)=""/106, 0x6a}, {&(0x7f0000000680)=""/214, 0xd6}, {&(0x7f0000000780)=""/176, 0xb0}, {&(0x7f0000000840)=""/21, 0x15}, {&(0x7f0000000880)=""/65, 0x41}, {&(0x7f0000000900)=""/182, 0xb6}, {&(0x7f00000009c0)=""/156, 0x9c}, {&(0x7f0000000a80)=""/197, 0xc5}], 0xa) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000c80)={'batadv_slave_0\x00', &(0x7f0000000c40)=@ethtool_wolinfo={0x5, 0x1f, 0xb59f, "6b4c2c70fb0e"}}) r9 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000cc0), 0x80a01, 0x0) tee(r0, r9, 0x8, 0x0) setxattr$security_capability(&(0x7f0000000d00)='./file0\x00', &(0x7f0000000d40), &(0x7f0000000d80)=@v1={0x1000000, [{0x0, 0x4}]}, 0xc, 0x0) ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, &(0x7f0000000e00)={0x6, 0xff}) 13:17:28 executing program 6: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000000), &(0x7f0000000040)={0x0, 0xfb, 0x18, 0x2, 0x7, "20ecee07681103f7f97ce0cebaef23a3", "891a55"}, 0x18, 0x2) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x7ff}}, './file0\x00'}) process_mrelease(r1, 0x0) r2 = syz_open_dev$loop(&(0x7f00000000c0), 0x0, 0x501000) r3 = pidfd_getfd(r1, r2, 0x0) ioctl$BLKSECTGET(r3, 0x1267, &(0x7f0000000100)) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(0xffffffffffffffff, 0x40089413, &(0x7f0000000140)=0xc4b2) fsetxattr$trusted_overlay_upper(r3, &(0x7f0000000180), &(0x7f00000001c0)={0x0, 0xfb, 0x5f, 0x1, 0x69, "f3004cf1d92238034002949acc4140df", "4b9fe63ad4a5fd802bd4d3eaf7f890f22d9194d755e884c27e54e2de56773e7bc7fcf2d17d9aabf2db2fe63e3f1083d3512fa75146b5fc087ab3801a2e6d210f26d2ead012b64b7ef362"}, 0x5f, 0x2) r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x2c8880, 0x0) ioctl$TCXONC(r4, 0x540a, 0x1) r5 = perf_event_open(&(0x7f0000000280)={0x3, 0x80, 0x37, 0xff, 0x0, 0xc1, 0x0, 0x9, 0x8002, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x2, @perf_config_ext={0x8, 0x7}, 0x8000, 0x5, 0x1ff, 0x2, 0x6, 0x7ff, 0xffe0, 0x0, 0x9, 0x0, 0x2}, 0xffffffffffffffff, 0x2, r1, 0x1) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r1, 0xc400941d, &(0x7f0000000300)={0x0, 0x578, 0x80000001}) ioctl$BTRFS_IOC_SUBVOL_CREATE(r1, 0x5000940e, &(0x7f0000000700)={{r0}, "b4f54f3583c056452094cbc47c5e7948c7a4d3c20f755975a938cd16059b630237c9bd75e10c36fc249888c2f28800bf415cf57fb6e829d4e8ea82dbd0f234f5e3434a07d1f47500516c6c990f890da595ad8e5e7964e9647c0b1061fbf6630cf288cb8ffb6b2f5b92702a42e091febea8bdfd17b280dc471008f30942203a2ea46eb4f66f09a50c8e90bd75eadc7fc7c03abf6ff81a5d4d29ed6883c4787eecf52f6e48aff883b1ee2a80374723bfd971a7934669aab6d19e178fc5a88a5fec24fbb8418290a1c01b80badaa4cd9e58edb449fe9f3bbf3bb47feee59fa16f6638327b444d754aa2a80154006e7bcacfbecbc9df3bd102b746658656ea37391a3d23e71276e69b5ce91212ff371d5d08245f8acc517fdc436b07034a2cad2ee94a458da8cb5e3e370278a82f665c29aa97f5d9d85902f9e62fca0098e7fb5edb208ce2c4fe09ebba8db4b55c53578636094ad2b898dc69101e88840562283f76c6c9f122a0eed3e294f227338a56be3f2804ad896a776f9ef70db938ce341f7594a9b5d1f1f4f840a1ae2e5030713ab3a092901c9082e680e9e5e7d8bfc3dfb98c5d6292a232a31aa2d005264e3d77066b9350b73f074af048963ed0f62727328bea73d94d0bbd3e99d285c608de9edb7489d6ea91a6996ffe3c88b703f44f5d4f5fba93de52babac8085d28247b12cb82503a228049666ba92dc95d90dacb623c324ba28356239b54aa3db998279b8826f3093a2f7db1064d60655c9a55b04cda210eb7cb889325bb1b08de4eb4cbee61b5d47974ce2ae8e24a373d34b0b8420a8149da6bdafba1c5b6d686fce7097f10ad14d256284d6e4ca6cb7c07fb793a2b59805578ee2189a5e94c0063db70061a998b0198fa637d1a62092cceee59f608e5798f96a07394367fd0acc0cef461d289296bba1bc8e12b2489fe4264661ef7eb996110068338ed557ef662cc6874671abcdcf68c971f26b231011db14a698e37234b236e62dd6172d91f61f4e5d0ef880225592a53cd478ddbc8e7420d424a288046f336b227ffbbb1739482bb0f980ecfb3ae3ca0e4a8308b21a1a36708fbf098e91a04fb5596296511814fb33d0acf78b54d3a28c2b2e36fe644f813c084de348bcad03ecc87073b092a38ad9d002320adf38bc447a4a900a880be1a0320ddf922eebe71d2ea364aa6b9ff80760ed36184ab6e9242074b0dc0bd350247a3f8bf8bb8f28537805ea6029a65039e99b525d1d454328c91a93379ae92c5bb4ba841575fd73166f6c3916f89f798f0ece2bdd3918f87a35f3718b7a71ea914edb44d2775a6d65695e081dd56c89b7069c9a3313d7917a1c0725be01ea1422e3e583d5dcaca6e2c124de5bb58dbf0726d3cc08dc2920c59ea1aaaa754816a7a7aa559f41a526af47b75dd0c3922f6aed4da4510c9dab79c0ce6947036733b486dfaa171e5515742b4ae57da5f18a9d39c4ba8d7f064f443ecd4fa5b38a8813e277da9c6c00a79c19438aa77c5e2d388495ac8c63163403d0910bf3efd7a96fdfdbbb7fe00ae458c5001d22524928a9d545aff7a6c552a1a00b394db818461bca95976e4dbcf09e6ec4405a5e758be283aad32ef096af9d398e6bb41574bb2debfa86df1596879eda79a88822d798027702021b6258ac014b12d00c6204139a27135bc29ae8c304c5a35bd149fb19ebac20287a450c21423fd605c88d8d003c7c9e91e1b205e03bc8b0d73bfbc8fa85dc8c95ad6582e47898e1b7ab3a9b1d1f957e7cb562e362742d9bbc66b7648e23c04a311140fe233951904742071a040ed996e3b55174d13a5f28bddf73c9fe8a26229d798fe7d707df4e5af748baa81380abf97cb45534156b6c5f45b501e7971c729a302f014d8c04f700091bad2241eb0c9a1bcfde48b3ff8ba8354c0b98a2f0ccc6e653aa092edbcdb2373c88c9b858dec441a7e68aac04365c4152a34c26b8c210ec41f0391bcca5c2a499dfb1942066f38fdc0473780dbd3f0e67a05e9b202df56617c1db01e97a8430840487da1046a431075965daa4afcd4b9c5a0b84776d3b9679840cf389867f67a4aa1f842b2828d3f96d5fa9582a362f6eedb6e9c7ceebaf27052ea9565bf862151824af4050a21b9ad8a953e4d1f8b03ab42a2bddb15ba5ce5b6da867af1736e89205dd0f152cb86bae538c8759ae1cbe90c10aab63c9f79cf2eefd3174d6cfb997fcd26fba087a2626da983cbd9a1084f7c1cef74ca4c5a5e52ac2c70616d49ddba99f416211dbd545a0953362c7c3ab3b080f9f8f5da6b97b58197268d2bbac7fc01f729ae3e54b692e2469c13b5828b715f37d135c4357e73ac97953ec0fdbeac73e9e835e8cfcf98c526f474d3ef2c7183639dcf356a61008440909a12ee611003e66eb9de560fc2aa001f69cd679bcae6d1fb04e5b066a0b05d5ddfd7553e265d61a1edb89536a127bb7c9e0cddd308c932efe57196aa90a9927b3ee5ba42a0b92d45eae0145bea3f922fee41b49bd2a9bb1427c046446d9e466c4de6ac45e4e414f2983f68e9160234bb3706132028da20d378f61c49ce093629d123ba9becd3da93d557bfd7d2eb7ae08a0c288a41dc95f05576dfd0aaf7389e458d4bb9217674d73f217b91859586e737cde492c0f69d9827352c9f88f02258aa4ceddaf49e1967344bf2b8aa5a732203846759af9e642100463dd1270fd72c4b88412d0da969f669000a88c0c9635c8a9a101c371d3b128c38d9e3a7581496f5068ec2508f342d3e8c324fec3f7dfb14efd3a7eb3f10b3dc1e19f6a2b066dc42dd95f3364f73be401e64191161f4c222f4018a0092e983b0b1d798c85ef117a7e7aad9ed4ad0a228e231dee21084666c245fc02b53bb0d9b4c5c310b08d73a73f681fd1873ae26583736dca118e9424007ab4cfd2c5be7acffd7a9b84e9b9bb1b250b4186a8ca260b88df243648bda8cc81196098950c94ec8c811c268513967ac5eaad535e29f110f246966e944582949388d5cde528a919c07316b0b0f785ba65704ef91e7ef63aeef12d85165bc3a7536faeb9e555506ad1a20a77e71c18efe1ee726d69904a8a3a9aa7aaadab1ce53d7be4afc1e3443c35e5c35ec3ac4cad377cab52c345c30498d34ecfa8e41132fb93f424a872a07aa24e8d084650a26ceb6cfa9e269bef130d5abd9e94c7a92c56907526e20a983759cd8c5a8f732831fb2adfdea7b1f6b7f806f5eee5365eb97141b5d50e7a0d79243316223a11f785a8570c311c175ebf15c1fdc0b284107da914be3ea6fb20b099ed68dfe75c81a9545d2a95ece489f413679d074cb39a88f86597e4b5a7114f7621d9bd5dfc9bf470ab25037ce3ba96223b35154983f7a1c473154914a096057539208ac55923ed58e1d7270d1eac9fa851e349fc7477e6ec67fde10645fe67ff7be1c0e7a37e0f41022cdc6312aadc685ed0c225ffcceb7895fc4bcc6ee7a887354a2b3481f3e190df835bfd45e56bf55e4f1bbd47291ae6538c153c45b915de815240f53398e010aaedd5cb1bb75f962ce4243a7688f8e28666d0d046a052e01fcbab0159802d3f376b1bc6589aa8dfe5da1280481cc933ceacb38fc0757446327c87285486b7a5964aa917d262c0ae13071e01eb50e4c0271b0d4c49e9404e8fecf43e76a1e9ccec89b57a9afd07022af3881c197bc1c1f466593e17ef976dafed7c18c7221526973a34fed825446d5442e1f3c4bee1f0735050b45698706942ebb298e0b36fc1960a502b7a3419734f4aaf1ef9599ea228b49cd587deaa1a33d6ccf3b79facf22dfea6bb3c41774723b22a7e807fff28a1aab1e8f80f276d847555d5bc6a82c625f94a65cd8fd9ef2da3de60b726976a769d7884965fa5df0c1ef01332f19e8b355c9a842280a816fc1668acc8eaec4fbf64d33b1b869901a0a4cb4053667ad754e3c0711ad0dafd97ca79562e3ebda923d73cff1a94d09ea334adcedcf54445ef116ff952c50e479502256b3997825b99baf32bb84d050f2b1b4d6eb4484c41bab541a92b6ce69b0c2e71bbd7a3087a42136bc012c256d48e7572fb344b76eca1d30e0b24dfe7ae638ed2b27770a356ec6c38befc51597773867cf3eb5a6748fcb47c781305be325703ae36a96e5c848fc4b15b4c3acdf6ec1f21fb90a2bdfbdccea1816f8bf201a74b23809e4098028a12a44ddc7bc7a920d110270a84e0aa4da51795938e21629299ced9dd6e2f05eb7f0dfb0bd305031fa8793784948f7931adaa8731360807b2461b748b29ddf6891652d0829a801408cd0e1c1ac82bfe6c9bc7f5d5f7eee7d272cacb0d3edf10d390b03f68c3681037b2ff0b5a0fdf9d2c8fc472e4768a3eddcef1e4f7f7eba7c1f44da5b268939f99d5f7690429a83d497f760ee317e331f35f55c3f7ad3ac2b89b8588498e5d0666b73fdb3c04e23fe55dd9c45abba23caea105cb080d8f35995562de7099261a1aeaa737393f1639a195740b11bd0f6c7e91886854d01a8e5409f0c65153544e1f4b3224e8933b490e354f4c58533ce8fa643b4b776264b25225fcc960f6f991ff2353eab2a3672f4ccf018c7310d92bfc02d4d4e5fc75540a9e696e3e03f7644e4522bf8d3d2fc5004b9a782f2546445dbeb772911346b83dde733255db504bee8f49d304281c0be52fd18f2209d1a3d6333b9e8c19e0dd991e74bff50d55635d385887259005050a2df68dbf42b285b41623b631e17a563a95046ad28a55864dddd234e6868310f45c8870365a8f9fa60272b043e06957921caa91857c2993d6ce9fb92a72848fb6890ca059248be4d0d00d5e19f9ae0607124cf4593b5a45714c7fe2b05c436e56f94eb5a37ee0bb1c4055e0cecb9abff494b13c5816cc3a87cc003cb0a111c53395a32c2337fe606c910719c7f11d7d5c79f5521eaf27cb5e6d5f7f86fe5f06956021219948955d20c1d5db6b55fa538b757dfdedcc885cb27906b02f4d35720887168c73fc464e67fc8bdc1de9b1af99c196e6a2ed2c22638fba58154f1f1376ef5fd2be57ecf787021fd8139c3aa62e997dae0ae9a2f274e66a46137cb42e82b0b4184e166fe80d1c0225e554a5e07408190250c445c23e3d4da84ab16abbf3e51c35a0da9217dc69426d5ec47d1c37573d0b0ab67e985cb42e9d787fdec5f36a0280897453fc06a189ace80983682076b86573b144b3a7dfdb575df996da85db85317ad37a3814633167daabf41562a4af012e470e8a9103a95a0a66f8d42f7a93a4544b48bf99ed8ff7e9eb63da50c91dfcaa804e5517ac6c431eaa20f2cb363e501dc0ebd66c6428577d1633e86c083e91cabf52b047d7f91f0a718f9be90f809fbafd3906ee3ad15b9039db897c094d67dfd84a5599aa11747f4922cfe4d90def39efc616869ecb21ba7a01613973a8c0d9a7f9dc1aeaecc27b7acb77753025f0bee415aef549bb503298d0ceccfc2ef22c357abe3d3fdb9f631519a62c1e803827a708a380e5afdecb8179988a77177200f12670a7163c56857ad0624c08e65f14dc5a44db9842baa7695d77e46829f78deee7b1346f38bf4ced1e8d8616f477a8264708d9cb860d48c84fc17f9a3667bbc069c815e69817fe6dbcf871eb24d55bbde6b48d03c3ed4a73ce9af0da0c29107ddf2f8e3996ba6a7e7b2a536d79771126651f2514fa763cbcb03815182a879b78165d12dc46e8a3c0848ad1aacdd200ab7a7ef0adc8b7daa5317430aa3bd8a67737b0d2fe7781fcb1ff1f2f1f2570afce38b6f690b3d9658cb67f39ea3b2c9e61ab2473d60e521"}) r7 = dup2(r3, r5) ioctl$LOOP_CLR_FD(r7, 0x4c01) r8 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$BTRFS_IOC_GET_DEV_STATS(r3, 0xc4089434, &(0x7f0000001700)={r6, 0x9, 0x0, [0x0, 0x8, 0xdae, 0xad93, 0xffffffffffffff81], [0x2, 0xffffffff00000001, 0x8e9, 0x3, 0x3, 0x0, 0x6368, 0x7, 0x8, 0x5a, 0x40, 0x81, 0x20, 0x80000000, 0xd00d, 0x4, 0x4, 0x4, 0xd5a, 0x100000001, 0x10000, 0x3caa, 0x8, 0x6, 0x40, 0x88d, 0x7, 0x1ff, 0x3, 0x3, 0x0, 0x4, 0x0, 0x1, 0xcced, 0x8, 0x20, 0xfffffffffffff801, 0x4, 0x9, 0x3, 0x81, 0x2, 0x2, 0x1, 0x81, 0x5, 0x4, 0x2, 0xfff, 0x6, 0x8, 0x5, 0x8, 0x401, 0x7f, 0x401, 0x0, 0xd7b, 0x80, 0x7, 0x800, 0x8, 0x5, 0x3, 0x1, 0x200, 0xfffffffffffffff9, 0x1ff, 0xfffffffffffffaa6, 0x1000, 0x2, 0x0, 0x10000, 0x48c, 0x5, 0x2, 0x8210, 0x55, 0xd1, 0x5, 0x8, 0x4688, 0x351, 0x0, 0x7, 0x1, 0x20, 0x8, 0xffffffffffffff81, 0x3, 0xe43, 0x0, 0x800, 0x0, 0x5, 0x3, 0x6, 0x6, 0x2, 0x53, 0x4, 0x7, 0x6, 0x2, 0x100000000, 0x13f, 0x2, 0x1, 0x0, 0x8000, 0x3, 0x3, 0x5, 0x1a, 0x400, 0x0, 0x1000, 0xfffffffffffffff9, 0x8efc, 0xc000000000]}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r8, 0xc400941d, &(0x7f0000001b40)={r9, 0x21c3, 0x6}) ioctl$FIBMAP(0xffffffffffffffff, 0x1, &(0x7f0000001f80)=0x400) [ 73.394770] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.397503] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.398847] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.403005] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.412578] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.413909] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.420110] Bluetooth: hci0: HCI_REQ-0x0c1a [ 73.441473] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 73.443124] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 73.446483] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 73.450928] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 73.454076] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 73.456842] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 73.464458] Bluetooth: hci1: HCI_REQ-0x0c1a [ 73.528444] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 73.530762] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 73.531987] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 73.533687] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 73.534849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 73.536043] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 73.539493] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 73.541454] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 73.542655] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 73.544330] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 73.545876] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 73.547314] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 73.552464] Bluetooth: hci3: HCI_REQ-0x0c1a [ 73.554775] Bluetooth: hci4: HCI_REQ-0x0c1a [ 73.649522] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 73.659696] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 73.667957] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 73.677239] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 73.678841] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 73.682255] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 73.748863] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 73.753314] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 73.762183] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 73.769728] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 73.769803] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 73.772193] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 73.776874] Bluetooth: hci5: HCI_REQ-0x0c1a [ 73.782737] Bluetooth: hci6: HCI_REQ-0x0c1a [ 75.483356] Bluetooth: hci1: command 0x0409 tx timeout [ 75.483386] Bluetooth: hci0: command 0x0409 tx timeout [ 75.546471] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 75.610655] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 75.612675] Bluetooth: hci3: command 0x0409 tx timeout [ 75.613588] Bluetooth: hci4: command 0x0409 tx timeout [ 75.802533] Bluetooth: hci6: command 0x0409 tx timeout [ 75.803571] Bluetooth: hci5: command 0x0409 tx timeout [ 77.530462] Bluetooth: hci1: command 0x041b tx timeout [ 77.531262] Bluetooth: hci0: command 0x041b tx timeout [ 77.658436] Bluetooth: hci4: command 0x041b tx timeout [ 77.659222] Bluetooth: hci3: command 0x041b tx timeout [ 77.850596] Bluetooth: hci5: command 0x041b tx timeout [ 77.851429] Bluetooth: hci6: command 0x041b tx timeout [ 79.251588] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 79.297598] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 79.302046] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 79.317910] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 79.321517] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 79.323751] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 79.329388] Bluetooth: hci7: HCI_REQ-0x0c1a [ 79.578489] Bluetooth: hci0: command 0x040f tx timeout [ 79.578506] Bluetooth: hci1: command 0x040f tx timeout [ 79.706447] Bluetooth: hci3: command 0x040f tx timeout [ 79.706513] Bluetooth: hci4: command 0x040f tx timeout [ 79.898452] Bluetooth: hci6: command 0x040f tx timeout [ 79.899046] Bluetooth: hci5: command 0x040f tx timeout [ 81.178468] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 81.370463] Bluetooth: hci7: command 0x0409 tx timeout [ 81.642679] Bluetooth: hci0: command 0x0419 tx timeout [ 81.643651] Bluetooth: hci1: command 0x0419 tx timeout [ 81.754828] Bluetooth: hci3: command 0x0419 tx timeout [ 81.755636] Bluetooth: hci4: command 0x0419 tx timeout [ 81.946447] Bluetooth: hci5: command 0x0419 tx timeout [ 81.947215] Bluetooth: hci6: command 0x0419 tx timeout [ 83.418489] Bluetooth: hci7: command 0x041b tx timeout [ 85.466476] Bluetooth: hci7: command 0x040f tx timeout [ 86.107024] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 87.514393] Bluetooth: hci7: command 0x0419 tx timeout [ 90.650412] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 93.271219] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 93.274083] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 93.277433] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 93.281973] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 93.285483] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 93.286265] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 93.290404] Bluetooth: hci2: HCI_REQ-0x0c1a [ 95.322459] Bluetooth: hci2: command 0x0409 tx timeout [ 97.370433] Bluetooth: hci2: command 0x041b tx timeout [ 99.436525] Bluetooth: hci2: command 0x040f tx timeout [ 101.466434] Bluetooth: hci2: command 0x0419 tx timeout 13:18:18 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011200)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) pipe(0x0) llistxattr(&(0x7f0000000380)='./file1\x00', 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x400000080000001) mount_setattr(0xffffffffffffffff, &(0x7f0000000400)='./file0\x00', 0xa00, &(0x7f0000000480)={0x2, 0x7c, 0x100000}, 0x20) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f0000000340)) fsetxattr$security_evm(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000440)=ANY=[], 0x3, 0x0) mount_setattr(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000180)={0x0, 0x200000, 0x0, {r0}}, 0x20) write$binfmt_aout(r0, &(0x7f0000000c40)=ANY=[], 0x820) r1 = syz_open_procfs(0x0, 0x0) preadv(r1, &(0x7f0000001540)=[{&(0x7f0000001240)=""/157, 0x9d}], 0x1, 0xffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1942, 0x0, 0xe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r2, 0x0, 0x7fffffff) [ 121.823976] loop2: detected capacity change from 0 to 256 [ 121.851358] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 121.899519] audit: type=1400 audit(1664543898.576:7): avc: denied { open } for pid=3584 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.901142] audit: type=1400 audit(1664543898.577:8): avc: denied { kernel } for pid=3584 comm="syz-executor.2" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 121.914659] ------------[ cut here ]------------ [ 121.914681] [ 121.914684] ====================================================== [ 121.914687] WARNING: possible circular locking dependency detected [ 121.914692] 6.0.0-rc7-next-20220929 #1 Not tainted [ 121.914698] ------------------------------------------------------ [ 121.914701] syz-executor.2/3585 is trying to acquire lock: [ 121.914708] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 121.914749] [ 121.914749] but task is already holding lock: [ 121.914752] ffff88800d84b820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 121.914779] [ 121.914779] which lock already depends on the new lock. [ 121.914779] [ 121.914782] [ 121.914782] the existing dependency chain (in reverse order) is: [ 121.914785] [ 121.914785] -> #3 (&ctx->lock){....}-{2:2}: [ 121.914799] _raw_spin_lock+0x2a/0x40 [ 121.914810] __perf_event_task_sched_out+0x53b/0x18d0 [ 121.914822] __schedule+0xedd/0x2470 [ 121.914836] schedule+0xda/0x1b0 [ 121.914850] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.914863] syscall_exit_to_user_mode+0x19/0x40 [ 121.914876] do_syscall_64+0x48/0x90 [ 121.914893] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.914906] [ 121.914906] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 121.914920] _raw_spin_lock_nested+0x30/0x40 [ 121.914931] raw_spin_rq_lock_nested+0x1e/0x30 [ 121.914944] task_fork_fair+0x63/0x4d0 [ 121.914961] sched_cgroup_fork+0x3d0/0x540 [ 121.914975] copy_process+0x4183/0x6e20 [ 121.914987] kernel_clone+0xe7/0x890 [ 121.914996] user_mode_thread+0xad/0xf0 [ 121.915006] rest_init+0x24/0x250 [ 121.915018] arch_call_rest_init+0xf/0x14 [ 121.915035] start_kernel+0x4c6/0x4eb [ 121.915050] secondary_startup_64_no_verify+0xe0/0xeb [ 121.915064] [ 121.915064] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 121.915078] _raw_spin_lock_irqsave+0x39/0x60 [ 121.915089] try_to_wake_up+0xab/0x1930 [ 121.915102] up+0x75/0xb0 [ 121.915116] __up_console_sem+0x6e/0x80 [ 121.915132] console_unlock+0x46a/0x590 [ 121.915148] vt_ioctl+0x2822/0x2ca0 [ 121.915161] tty_ioctl+0x785/0x16b0 [ 121.915172] __x64_sys_ioctl+0x19a/0x210 [ 121.915186] do_syscall_64+0x3b/0x90 [ 121.915203] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.915215] [ 121.915215] -> #0 ((console_sem).lock){....}-{2:2}: [ 121.915229] __lock_acquire+0x2a02/0x5e70 [ 121.915246] lock_acquire+0x1a2/0x530 [ 121.915262] _raw_spin_lock_irqsave+0x39/0x60 [ 121.915272] down_trylock+0xe/0x70 [ 121.915287] __down_trylock_console_sem+0x3b/0xd0 [ 121.915303] vprintk_emit+0x16b/0x560 [ 121.915319] vprintk+0x84/0xa0 [ 121.915335] _printk+0xba/0xf1 [ 121.915347] report_bug.cold+0x72/0xab [ 121.915363] handle_bug+0x3c/0x70 [ 121.915379] exc_invalid_op+0x14/0x50 [ 121.915396] asm_exc_invalid_op+0x16/0x20 [ 121.915407] group_sched_out.part.0+0x2c7/0x460 [ 121.915425] ctx_sched_out+0x8f1/0xc10 [ 121.915442] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.915453] __schedule+0xedd/0x2470 [ 121.915466] schedule+0xda/0x1b0 [ 121.915479] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.915490] syscall_exit_to_user_mode+0x19/0x40 [ 121.915503] do_syscall_64+0x48/0x90 [ 121.915519] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.915531] [ 121.915531] other info that might help us debug this: [ 121.915531] [ 121.915534] Chain exists of: [ 121.915534] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 121.915534] [ 121.915549] Possible unsafe locking scenario: [ 121.915549] [ 121.915551] CPU0 CPU1 [ 121.915554] ---- ---- [ 121.915556] lock(&ctx->lock); [ 121.915562] lock(&rq->__lock); [ 121.915568] lock(&ctx->lock); [ 121.915575] lock((console_sem).lock); [ 121.915580] [ 121.915580] *** DEADLOCK *** [ 121.915580] [ 121.915582] 2 locks held by syz-executor.2/3585: [ 121.915589] #0: ffff88806ce37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 121.915618] #1: ffff88800d84b820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 121.915644] [ 121.915644] stack backtrace: [ 121.915647] CPU: 0 PID: 3585 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220929 #1 [ 121.915660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 121.915668] Call Trace: [ 121.915672] [ 121.915676] dump_stack_lvl+0x8b/0xb3 [ 121.915694] check_noncircular+0x263/0x2e0 [ 121.915710] ? format_decode+0x26c/0xb50 [ 121.915727] ? print_circular_bug+0x450/0x450 [ 121.915744] ? enable_ptr_key_workfn+0x20/0x20 [ 121.915759] ? __lockdep_reset_lock+0x180/0x180 [ 121.915776] ? format_decode+0x26c/0xb50 [ 121.915793] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 121.915811] __lock_acquire+0x2a02/0x5e70 [ 121.915833] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 121.915855] lock_acquire+0x1a2/0x530 [ 121.915872] ? down_trylock+0xe/0x70 [ 121.915889] ? lock_release+0x750/0x750 [ 121.915907] ? find_held_lock+0x2c/0x110 [ 121.915924] ? vprintk+0x84/0xa0 [ 121.915941] _raw_spin_lock_irqsave+0x39/0x60 [ 121.915952] ? down_trylock+0xe/0x70 [ 121.915968] down_trylock+0xe/0x70 [ 121.915984] ? vprintk+0x84/0xa0 [ 121.916001] __down_trylock_console_sem+0x3b/0xd0 [ 121.916018] vprintk_emit+0x16b/0x560 [ 121.916037] vprintk+0x84/0xa0 [ 121.916054] _printk+0xba/0xf1 [ 121.916065] ? record_print_text.cold+0x16/0x16 [ 121.916079] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 121.916094] ? lock_downgrade+0x6d0/0x6d0 [ 121.916111] ? report_bug.cold+0x66/0xab [ 121.916129] ? group_sched_out.part.0+0x2c7/0x460 [ 121.916147] report_bug.cold+0x72/0xab [ 121.916166] handle_bug+0x3c/0x70 [ 121.916183] exc_invalid_op+0x14/0x50 [ 121.916201] asm_exc_invalid_op+0x16/0x20 [ 121.916214] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 121.916234] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 121.916245] RSP: 0018:ffff88803f467c48 EFLAGS: 00010006 [ 121.916254] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 121.916262] RDX: ffff888020618000 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 121.916270] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 121.916277] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800d84b800 [ 121.916284] R13: ffff88806ce3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 121.916295] ? group_sched_out.part.0+0x2c7/0x460 [ 121.916315] ? group_sched_out.part.0+0x2c7/0x460 [ 121.916335] ctx_sched_out+0x8f1/0xc10 [ 121.916354] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.916369] ? lock_is_held_type+0xd7/0x130 [ 121.916382] ? __perf_cgroup_move+0x160/0x160 [ 121.916393] ? set_next_entity+0x304/0x550 [ 121.916411] ? update_curr+0x267/0x740 [ 121.916429] ? lock_is_held_type+0xd7/0x130 [ 121.916443] __schedule+0xedd/0x2470 [ 121.916460] ? io_schedule_timeout+0x150/0x150 [ 121.916476] ? __x64_sys_futex_time32+0x480/0x480 [ 121.916491] schedule+0xda/0x1b0 [ 121.916506] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.916519] syscall_exit_to_user_mode+0x19/0x40 [ 121.916532] do_syscall_64+0x48/0x90 [ 121.916550] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.916563] RIP: 0033:0x7f563b510b19 [ 121.916571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.916582] RSP: 002b:00007f5638a86218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.916593] RAX: 0000000000000001 RBX: 00007f563b623f68 RCX: 00007f563b510b19 [ 121.916600] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f563b623f6c [ 121.916607] RBP: 00007f563b623f60 R08: 000000000000000e R09: 0000000000000000 [ 121.916615] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f563b623f6c [ 121.916622] R13: 00007ffeccd5614f R14: 00007f5638a86300 R15: 0000000000022000 [ 121.916635] [ 121.973560] WARNING: CPU: 0 PID: 3585 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 121.974228] Modules linked in: [ 121.974471] CPU: 0 PID: 3585 Comm: syz-executor.2 Not tainted 6.0.0-rc7-next-20220929 #1 [ 121.975051] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 121.975851] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 121.976265] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 6b 17 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 121.977553] RSP: 0018:ffff88803f467c48 EFLAGS: 00010006 [ 121.977937] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 121.978453] RDX: ffff888020618000 RSI: ffffffff81565e67 RDI: 0000000000000005 [ 121.978963] RBP: ffff888008660000 R08: 0000000000000005 R09: 0000000000000001 [ 121.979479] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800d84b800 [ 121.980007] R13: ffff88806ce3d2c0 R14: ffffffff8547c9a0 R15: 0000000000000002 [ 121.980537] FS: 00007f5638a86700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 121.981138] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 121.981577] CR2: 00007fff6f041f70 CR3: 00000000103da000 CR4: 0000000000350ef0 [ 121.982109] Call Trace: [ 121.982319] [ 121.982496] ctx_sched_out+0x8f1/0xc10 [ 121.982803] __perf_event_task_sched_out+0x6d0/0x18d0 [ 121.983198] ? lock_is_held_type+0xd7/0x130 [ 121.983529] ? __perf_cgroup_move+0x160/0x160 [ 121.983867] ? set_next_entity+0x304/0x550 [ 121.984191] ? update_curr+0x267/0x740 [ 121.984503] ? lock_is_held_type+0xd7/0x130 [ 121.984825] __schedule+0xedd/0x2470 [ 121.985113] ? io_schedule_timeout+0x150/0x150 [ 121.985468] ? __x64_sys_futex_time32+0x480/0x480 [ 121.985833] schedule+0xda/0x1b0 [ 121.986105] exit_to_user_mode_prepare+0x114/0x1a0 [ 121.986488] syscall_exit_to_user_mode+0x19/0x40 [ 121.986848] do_syscall_64+0x48/0x90 [ 121.987138] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 121.987533] RIP: 0033:0x7f563b510b19 [ 121.987816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 121.989136] RSP: 002b:00007f5638a86218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 121.989667] RAX: 0000000000000001 RBX: 00007f563b623f68 RCX: 00007f563b510b19 [ 121.990173] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f563b623f6c [ 121.990699] RBP: 00007f563b623f60 R08: 000000000000000e R09: 0000000000000000 [ 121.991202] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f563b623f6c [ 121.991707] R13: 00007ffeccd5614f R14: 00007f5638a86300 R15: 0000000000022000 [ 121.992217] [ 121.992387] irq event stamp: 3680 [ 121.992633] hardirqs last enabled at (3679): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 121.993304] hardirqs last disabled at (3680): [] __schedule+0x1225/0x2470 [ 121.993893] softirqs last enabled at (3370): [] __irq_exit_rcu+0x11b/0x180 [ 121.994514] softirqs last disabled at (3361): [] __irq_exit_rcu+0x11b/0x180 [ 121.995128] ---[ end trace 0000000000000000 ]--- [ 122.333533] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 13:18:19 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011200)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) pipe(0x0) llistxattr(&(0x7f0000000380)='./file1\x00', 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x400000080000001) mount_setattr(0xffffffffffffffff, &(0x7f0000000400)='./file0\x00', 0xa00, &(0x7f0000000480)={0x2, 0x7c, 0x100000}, 0x20) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f0000000340)) fsetxattr$security_evm(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000440)=ANY=[], 0x3, 0x0) mount_setattr(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000180)={0x0, 0x200000, 0x0, {r0}}, 0x20) write$binfmt_aout(r0, &(0x7f0000000c40)=ANY=[], 0x820) r1 = syz_open_procfs(0x0, 0x0) preadv(r1, &(0x7f0000001540)=[{&(0x7f0000001240)=""/157, 0x9d}], 0x1, 0xffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1942, 0x0, 0xe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r2, 0x0, 0x7fffffff) [ 122.378697] loop2: detected capacity change from 0 to 256 [ 122.389691] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 13:18:19 executing program 2: r0 = open_tree(0xffffffffffffff9c, &(0x7f0000007ec0)='./cgroup/cgroup.procs\x00', 0x900) ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000007f00)={'vcan0\x00', {0x2, 0x0, @multicast1}}) lsetxattr$security_selinux(&(0x7f00000000c0)='./cgroup/cgroup.procs\x00', &(0x7f0000000140), &(0x7f0000000000)='unconfined\x00', 0xb, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/config', 0x0, 0x0) close(r1) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000080)={r3, 0x1, 0x6, @broadcast}, 0x10) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000180)={r3, 0x1, 0x6, @random='\x00\x00\x00\x00\b\x00'}, 0xfffffffffffffe1b) setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000080)={r3, 0x1, 0x6, @broadcast}, 0x10) [ 122.627911] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 122.661844] SELinux: Context unconfined is not valid (left unmapped). [ 122.662735] audit: type=1400 audit(1664543899.340:9): avc: denied { associate } for pid=3653 comm="syz-executor.2" name="cgroup.procs" dev="cgroup2" ino=1499 scontext=system_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=filesystem permissive=1 srawcon="unconfined" [ 122.664320] device syz_tun entered promiscuous mode [ 122.665913] device syz_tun left promiscuous mode [ 122.671096] device syz_tun entered promiscuous mode [ 122.671621] device syz_tun left promiscuous mode 13:18:19 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0xd, &(0x7f0000000440)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000e2f4655fe2f4655f0100ffff53ef010001000000e1f4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000fc8e0b4946704d25a0f18393550c433b010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="0000000000000000000000000000000000000000000000000000000020002000010000000000000000000000000000000000000004", 0x35, 0x540}, {&(0x7f0000010300)="0300000004", 0x5, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000e1f4655fe2f4655fe2f4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000e1f4655fe1f4655fe1f4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000012a00)="8081000000180000e1f4655fe1f4655fe1f4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000040", 0x3d, 0x4c00}, {0x0}, {&(0x7f0000013900)="111fc0d901000000803a0900803a09000000000006", 0x15, 0x30000}, {0x0}, {&(0x7f0000000340)="2719c0d90135aafaf078985f0f0e8f1417e06ded7b76f1d9b8b9d2b681b90f21456c7b1b6e64c5b9f46ef88f5a7fbb6add69a94f3def136ba40a52fc46507c855a73587779c0ee27d0290bfffc3dea4476e13ae6b4c0d916a9e031da3b834939a0dac1e68fcc1e34b41f7f1b90ae0c400c3220f39276356302d382289e765678489330477ad34e614982e94da489b506077b7bb04bc19998c9e0fe7d49b1cc89addf9d8571b7cf4132dcfdf863ff6958f3000000004d623fcf5ec33869e8010561dc999bf761db57e26ce61c1329ab38c3dea2d88545eed1c5e1169eeaffe50727e1ba1bfe581b6222", 0xe9, 0x40000}, {&(0x7f0000000040)="920d1652b669d941d5e60ec9462540a76d14c1e72ac777c0aef0d4a2c756fb7180abe188c623f06c7b33857980bb", 0x2e, 0xf8}], 0x0, &(0x7f0000014a00)) [ 122.758165] loop2: detected capacity change from 0 to 4096 [ 122.787260] EXT4-fs warning (device loop2): ext4_enable_quotas:6809: Failed to enable quota tracking (type=1, err=-22). Please run e2fsck to fix. [ 122.791989] EXT4-fs (loop2): mount failed [ 122.798222] loop2: detected capacity change from 0 to 4096 13:18:19 executing program 6: ioctl$RNDGETENTCNT(0xffffffffffffffff, 0x80045200, &(0x7f00000001c0)) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) stat(&(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000100)) ioctl$NS_GET_OWNER_UID(r1, 0xb704, &(0x7f0000000040)) r2 = signalfd(0xffffffffffffffff, &(0x7f0000000380), 0x8) read$ptp(r2, &(0x7f0000000400)=""/133, 0x85) fremovexattr(r2, &(0x7f0000000240)=@known='system.posix_acl_default\x00') ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f0000000200)={0x0, 0x4, 0x400}) unlinkat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x200) [ 122.809871] EXT4-fs warning (device loop2): ext4_enable_quotas:6809: Failed to enable quota tracking (type=1, err=-22). Please run e2fsck to fix. [ 122.811696] EXT4-fs (loop2): mount failed [ 122.827355] I/O error, dev loop2, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 13:18:19 executing program 2: ptrace$setregset(0x4205, 0x0, 0x5885435bbad63bd4, &(0x7f0000000680)={&(0x7f0000000580)="9a9b2de75a94316711293108aa0aee312f5ca3b346a237db714628a0367ccd474c688b219c76b3cde92234fe48c8c6180cacba27f32fbb05a6aa602e3b3d0327052a422b90a63f3c1de174a5523964940550b0218b924982b80e2c524dee96379436112801dff8c8a20c840f604284da3feb29a4571bc65bb454a81ad21ae98a102df27994a47b12990cf07ce485136dce1f9af7aa3e6b2e4e9f88aef67b238ff41bc2f7e42584afeee4bf2efcf8deca45ba7183797fa37b7d0742472119ce2d0fcfefc915b2447a13511cb2db7cae", 0xcf}) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x20, 0x1d, 0x1, 0x0, 0x0, "", [@typed={0x4, 0x0, 0x0, 0x0, @binary}, @nested={0xc, 0xc, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd}]}]}, 0x20}], 0x1}, 0x0) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x20, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x40, 0x55}}}}, ["", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x24040800}, 0x20048800) r1 = signalfd(0xffffffffffffffff, &(0x7f0000000380), 0x8) read$ptp(r1, &(0x7f0000000400)=""/133, 0x85) sendmsg$netlink(r1, &(0x7f0000000540)={&(0x7f0000000180)=@kern={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000500)=[{&(0x7f00000001c0)={0x48, 0x10, 0x8, 0x70bd27, 0x25dfdbfe, "", [@nested={0x38, 0x67, 0x0, 0x1, [@generic, @typed={0x8, 0x63, 0x0, 0x0, @u32=0x7}, @generic="b809953cff57fa", @generic="13f23a5b60c039bd5bf91596e162d5b36b95397ee7dcab9fb3b8b6863a64eec43aec7bfe4c"]}]}, 0x48}, {&(0x7f0000000240)={0x2c0, 0x1b, 0x820, 0x70bd2b, 0x25dfdbfd, "", [@nested={0x2ae, 0x11, 0x0, 0x1, [@generic="544fa380c1cf711980bf49b3565d198e005cb3624285ee1aea1c356467d0f306dc11cd4cace7678e8e19d0db4e8ae20e824abd6ce68543e71c2360e5e0f9e30cbc870577889fe71c20c9f12f557092baff4e", @generic="a53e630a5185d0731a89b555df02d5d4b8c0f571106f6ec8680dd3caa229f3332e15ca04f4de0652", @typed={0x8, 0x3, 0x0, 0x0, @u32=0x7}, @generic="db20fd9bc4552568114225189ad85daf0f037d9534df0fcf8f4638da5cd6e4d5542503b2b7315eb611d2071d4718ff214e656671cb448447931429efd3ba6bf097f7aec57e7096fbd7bc5cd968b08e0607865abc8f332ffa18a8a89bf38c6c93f7a30bd8d16a3116f728968d4fa73ae04865c7d131087e931c2944797a09d12aa3677ee26e24a19e386419eb07131786af80387c40b5d8b16599c94838fc7c2848cfb8eef17a18908a060cb770adf8", @typed={0x8, 0x44, 0x0, 0x0, @fd=r0}, @generic="87b85028acdaa5d70f3a016a9375b42368bc34d0c39c35b69b6ec18128bd567e7b1b8077caf59889907b3c2e1a3499404aa6d9ba267fdcfbaf68454b4169b44dbc1bf81d1e2d92a004a41506ff9eff232e797cc73a26e2e5327b9c23914a245e14ef284782b3f07717866d13e52992b790c93265f3f88713b9897346e82a9ed4b699c6203c7d67621613120a2c8a4cd1d24c2c502b760be40bddc565ae2dd1667ebc2b205e237583d24bfa45762934a262d2b0ff5729ea63f1ee10e0f73c427a5db393de32ffb162c26156b571dd5b1e051dd21265d824e018371104255f6b64fc8b0b8d01b89248b096930e863752be3c0e2625b8dd170292", @typed={0x8, 0x8, 0x0, 0x0, @pid}, @typed={0x6f, 0x18, 0x0, 0x0, @binary="23582e6c53906bf0281665eeaa4ebadfd2991d6c62c85d398ba32a63820e06e4c574d81a5e4bb064f20626d0e9c1d64ae0c1dca84c5108c86f2cd55c03143ee71ec1f67436d0054e1abc4bd3b8e0d18cabb3584d045179704dfa32ccb01db892225f40809341de885286ea"}]}]}, 0x2c0}], 0x2, 0x0, 0x0, 0x20000041}, 0x200010c0) [ 122.881683] netlink: 'syz-executor.2': attribute type 12 has an invalid length. [ 123.581809] FAT-fs (loop1): Unrecognized mount option "pcr=00000000000000000059" or missing value [ 123.590806] FAT-fs (loop1): Unrecognized mount option "pcr=00000000000000000059" or missing value [ 123.713426] netlink: 'syz-executor.2': attribute type 12 has an invalid length. VM DIAGNOSIS: 13:18:18 Registers: info registers vcpu 0 RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba3c1 RDI=ffffffff8765a9c0 RBP=ffffffff8765a980 RSP=ffff88803f467690 R8 =0000000000000001 R9 =000000000000000a R10=000000000000006c R11=0000000000000001 R12=000000000000006c R13=ffffffff8765a980 R14=0000000000000010 R15=ffffffff823ba3b0 RIP=ffffffff823ba419 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f5638a86700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fff6f041f70 CR3=00000000103da000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM01=0000000000000000 0000000000000000 2525252525252525 2525252525252525 YMM02=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000007 RBX=ffffffff85b529cc RCX=ffffffff8111c7f9 RDX=0000000000000000 RSI=ffffffff85e41820 RDI=ffffffff85b529cc RBP=ffffffff85b529cc RSP=ffff8880205cf6a8 R8 =ffffffff85e41820 R9 =ffff8880205cf7c0 R10=ffffed10040b9f05 R11=000000000003603d R12=ffffffff85b529cc R13=ffffffff85b529cc R14=ffffffff85b529cc R15=dffffc0000000000 RIP=ffffffff81119b7c RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f80ea277260 CR3=00000000406da000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000