Warning: Permanently added '[localhost]:63756' (ECDSA) to the list of known hosts. 2022/12/06 11:32:04 fuzzer started 2022/12/06 11:32:05 dialing manager at localhost:38749 syzkaller login: [ 35.731555] cgroup: Unknown subsys name 'net' [ 35.842898] cgroup: Unknown subsys name 'rlimit' 2022/12/06 11:32:18 syscalls: 2217 2022/12/06 11:32:18 code coverage: enabled 2022/12/06 11:32:18 comparison tracing: enabled 2022/12/06 11:32:18 extra coverage: enabled 2022/12/06 11:32:18 setuid sandbox: enabled 2022/12/06 11:32:18 namespace sandbox: enabled 2022/12/06 11:32:18 Android sandbox: enabled 2022/12/06 11:32:18 fault injection: enabled 2022/12/06 11:32:18 leak checking: enabled 2022/12/06 11:32:18 net packet injection: enabled 2022/12/06 11:32:18 net device setup: enabled 2022/12/06 11:32:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/12/06 11:32:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/12/06 11:32:18 USB emulation: enabled 2022/12/06 11:32:18 hci packet injection: enabled 2022/12/06 11:32:18 wifi device emulation: enabled 2022/12/06 11:32:18 802.15.4 emulation: enabled 2022/12/06 11:32:18 fetching corpus: 0, signal 0/2000 (executing program) 2022/12/06 11:32:18 fetching corpus: 40, signal 32360/35943 (executing program) 2022/12/06 11:32:18 fetching corpus: 90, signal 45193/50269 (executing program) 2022/12/06 11:32:19 fetching corpus: 140, signal 52048/58624 (executing program) 2022/12/06 11:32:19 fetching corpus: 190, signal 61119/69049 (executing program) 2022/12/06 11:32:19 fetching corpus: 240, signal 65590/74853 (executing program) 2022/12/06 11:32:19 fetching corpus: 290, signal 70530/81093 (executing program) 2022/12/06 11:32:19 fetching corpus: 340, signal 77164/88878 (executing program) 2022/12/06 11:32:19 fetching corpus: 390, signal 82678/95526 (executing program) 2022/12/06 11:32:19 fetching corpus: 440, signal 86718/100725 (executing program) 2022/12/06 11:32:20 fetching corpus: 490, signal 93055/108077 (executing program) 2022/12/06 11:32:20 fetching corpus: 539, signal 97815/113828 (executing program) 2022/12/06 11:32:20 fetching corpus: 589, signal 102298/119170 (executing program) 2022/12/06 11:32:20 fetching corpus: 639, signal 105432/123285 (executing program) 2022/12/06 11:32:20 fetching corpus: 689, signal 108362/127203 (executing program) 2022/12/06 11:32:20 fetching corpus: 739, signal 111448/131167 (executing program) 2022/12/06 11:32:20 fetching corpus: 788, signal 113206/133956 (executing program) 2022/12/06 11:32:21 fetching corpus: 838, signal 115874/137490 (executing program) 2022/12/06 11:32:21 fetching corpus: 888, signal 118959/141351 (executing program) 2022/12/06 11:32:21 fetching corpus: 938, signal 121506/144717 (executing program) 2022/12/06 11:32:21 fetching corpus: 988, signal 123799/147802 (executing program) 2022/12/06 11:32:21 fetching corpus: 1038, signal 126373/151089 (executing program) 2022/12/06 11:32:21 fetching corpus: 1088, signal 129197/154570 (executing program) 2022/12/06 11:32:21 fetching corpus: 1138, signal 131678/157753 (executing program) 2022/12/06 11:32:21 fetching corpus: 1188, signal 134568/161239 (executing program) 2022/12/06 11:32:22 fetching corpus: 1238, signal 137497/164709 (executing program) 2022/12/06 11:32:22 fetching corpus: 1288, signal 139998/167763 (executing program) 2022/12/06 11:32:22 fetching corpus: 1338, signal 141681/170149 (executing program) 2022/12/06 11:32:22 fetching corpus: 1387, signal 143600/172743 (executing program) 2022/12/06 11:32:22 fetching corpus: 1437, signal 145557/175240 (executing program) 2022/12/06 11:32:22 fetching corpus: 1487, signal 148624/178622 (executing program) 2022/12/06 11:32:22 fetching corpus: 1537, signal 149873/180564 (executing program) 2022/12/06 11:32:23 fetching corpus: 1587, signal 151228/182583 (executing program) 2022/12/06 11:32:23 fetching corpus: 1637, signal 152752/184718 (executing program) 2022/12/06 11:32:23 fetching corpus: 1687, signal 153840/186458 (executing program) 2022/12/06 11:32:23 fetching corpus: 1737, signal 154905/188206 (executing program) 2022/12/06 11:32:23 fetching corpus: 1787, signal 156502/190379 (executing program) 2022/12/06 11:32:23 fetching corpus: 1837, signal 157742/192188 (executing program) 2022/12/06 11:32:23 fetching corpus: 1887, signal 159072/194024 (executing program) 2022/12/06 11:32:23 fetching corpus: 1937, signal 160605/196062 (executing program) 2022/12/06 11:32:24 fetching corpus: 1987, signal 162385/198200 (executing program) 2022/12/06 11:32:24 fetching corpus: 2037, signal 164210/200336 (executing program) 2022/12/06 11:32:24 fetching corpus: 2087, signal 165659/202229 (executing program) 2022/12/06 11:32:24 fetching corpus: 2137, signal 166894/203976 (executing program) 2022/12/06 11:32:24 fetching corpus: 2187, signal 168794/206077 (executing program) 2022/12/06 11:32:24 fetching corpus: 2237, signal 170160/207805 (executing program) 2022/12/06 11:32:24 fetching corpus: 2287, signal 171324/209414 (executing program) 2022/12/06 11:32:24 fetching corpus: 2337, signal 172524/210997 (executing program) 2022/12/06 11:32:24 fetching corpus: 2387, signal 173123/212158 (executing program) 2022/12/06 11:32:25 fetching corpus: 2437, signal 174141/213595 (executing program) 2022/12/06 11:32:25 fetching corpus: 2487, signal 175981/215504 (executing program) 2022/12/06 11:32:25 fetching corpus: 2537, signal 176854/216888 (executing program) 2022/12/06 11:32:25 fetching corpus: 2587, signal 178825/218876 (executing program) 2022/12/06 11:32:25 fetching corpus: 2637, signal 179764/220234 (executing program) 2022/12/06 11:32:25 fetching corpus: 2687, signal 180719/221594 (executing program) 2022/12/06 11:32:25 fetching corpus: 2737, signal 182295/223356 (executing program) 2022/12/06 11:32:26 fetching corpus: 2787, signal 183045/224556 (executing program) 2022/12/06 11:32:26 fetching corpus: 2837, signal 183859/225787 (executing program) 2022/12/06 11:32:26 fetching corpus: 2887, signal 184760/227017 (executing program) 2022/12/06 11:32:26 fetching corpus: 2937, signal 185815/228336 (executing program) 2022/12/06 11:32:26 fetching corpus: 2987, signal 186628/229514 (executing program) 2022/12/06 11:32:26 fetching corpus: 3037, signal 187556/230770 (executing program) 2022/12/06 11:32:26 fetching corpus: 3087, signal 188773/232129 (executing program) 2022/12/06 11:32:26 fetching corpus: 3137, signal 189928/233384 (executing program) 2022/12/06 11:32:27 fetching corpus: 3187, signal 191076/234671 (executing program) 2022/12/06 11:32:27 fetching corpus: 3237, signal 191743/235735 (executing program) 2022/12/06 11:32:27 fetching corpus: 3287, signal 192797/236937 (executing program) 2022/12/06 11:32:27 fetching corpus: 3337, signal 193561/237972 (executing program) 2022/12/06 11:32:27 fetching corpus: 3387, signal 194700/239237 (executing program) 2022/12/06 11:32:27 fetching corpus: 3437, signal 195441/240290 (executing program) 2022/12/06 11:32:27 fetching corpus: 3487, signal 196448/241400 (executing program) 2022/12/06 11:32:27 fetching corpus: 3537, signal 197365/242500 (executing program) 2022/12/06 11:32:27 fetching corpus: 3587, signal 198088/243441 (executing program) 2022/12/06 11:32:28 fetching corpus: 3637, signal 199495/244694 (executing program) 2022/12/06 11:32:28 fetching corpus: 3687, signal 200545/245804 (executing program) 2022/12/06 11:32:28 fetching corpus: 3737, signal 201520/246854 (executing program) 2022/12/06 11:32:28 fetching corpus: 3787, signal 202883/248082 (executing program) 2022/12/06 11:32:28 fetching corpus: 3837, signal 203591/248961 (executing program) 2022/12/06 11:32:28 fetching corpus: 3887, signal 204293/249839 (executing program) 2022/12/06 11:32:28 fetching corpus: 3937, signal 205080/250784 (executing program) 2022/12/06 11:32:28 fetching corpus: 3987, signal 205801/251666 (executing program) 2022/12/06 11:32:29 fetching corpus: 4037, signal 206885/252631 (executing program) 2022/12/06 11:32:29 fetching corpus: 4087, signal 207681/253571 (executing program) 2022/12/06 11:32:29 fetching corpus: 4137, signal 208562/254522 (executing program) 2022/12/06 11:32:29 fetching corpus: 4187, signal 209431/255414 (executing program) 2022/12/06 11:32:29 fetching corpus: 4237, signal 210301/256274 (executing program) 2022/12/06 11:32:29 fetching corpus: 4287, signal 211260/257200 (executing program) 2022/12/06 11:32:29 fetching corpus: 4337, signal 212186/258067 (executing program) 2022/12/06 11:32:29 fetching corpus: 4387, signal 212977/258942 (executing program) 2022/12/06 11:32:30 fetching corpus: 4437, signal 213921/259797 (executing program) 2022/12/06 11:32:30 fetching corpus: 4487, signal 215032/260673 (executing program) 2022/12/06 11:32:30 fetching corpus: 4537, signal 215823/261413 (executing program) 2022/12/06 11:32:30 fetching corpus: 4587, signal 216965/262296 (executing program) 2022/12/06 11:32:30 fetching corpus: 4637, signal 217877/263055 (executing program) 2022/12/06 11:32:30 fetching corpus: 4687, signal 218673/263812 (executing program) 2022/12/06 11:32:30 fetching corpus: 4737, signal 219318/264486 (executing program) 2022/12/06 11:32:31 fetching corpus: 4787, signal 220136/265218 (executing program) 2022/12/06 11:32:31 fetching corpus: 4837, signal 220759/265905 (executing program) 2022/12/06 11:32:31 fetching corpus: 4887, signal 221479/266572 (executing program) 2022/12/06 11:32:31 fetching corpus: 4937, signal 222011/267203 (executing program) 2022/12/06 11:32:31 fetching corpus: 4987, signal 222512/267834 (executing program) 2022/12/06 11:32:31 fetching corpus: 5037, signal 223291/268510 (executing program) 2022/12/06 11:32:31 fetching corpus: 5087, signal 223827/269114 (executing program) 2022/12/06 11:32:32 fetching corpus: 5137, signal 224849/269795 (executing program) 2022/12/06 11:32:32 fetching corpus: 5187, signal 225264/270315 (executing program) 2022/12/06 11:32:32 fetching corpus: 5237, signal 226156/270978 (executing program) 2022/12/06 11:32:32 fetching corpus: 5287, signal 227136/271667 (executing program) 2022/12/06 11:32:32 fetching corpus: 5337, signal 227706/272230 (executing program) 2022/12/06 11:32:32 fetching corpus: 5387, signal 228132/272757 (executing program) 2022/12/06 11:32:32 fetching corpus: 5437, signal 229082/273357 (executing program) 2022/12/06 11:32:32 fetching corpus: 5487, signal 229673/273935 (executing program) 2022/12/06 11:32:33 fetching corpus: 5537, signal 230192/274451 (executing program) 2022/12/06 11:32:33 fetching corpus: 5586, signal 230788/275002 (executing program) 2022/12/06 11:32:33 fetching corpus: 5636, signal 231499/275504 (executing program) 2022/12/06 11:32:33 fetching corpus: 5686, signal 231954/275951 (executing program) 2022/12/06 11:32:33 fetching corpus: 5735, signal 232484/276458 (executing program) 2022/12/06 11:32:33 fetching corpus: 5785, signal 233116/276946 (executing program) 2022/12/06 11:32:33 fetching corpus: 5834, signal 233507/277417 (executing program) 2022/12/06 11:32:33 fetching corpus: 5884, signal 233972/277883 (executing program) 2022/12/06 11:32:34 fetching corpus: 5934, signal 234545/278323 (executing program) 2022/12/06 11:32:34 fetching corpus: 5984, signal 235170/278811 (executing program) 2022/12/06 11:32:34 fetching corpus: 6034, signal 235548/279234 (executing program) 2022/12/06 11:32:34 fetching corpus: 6084, signal 236413/279760 (executing program) 2022/12/06 11:32:34 fetching corpus: 6134, signal 237183/280226 (executing program) 2022/12/06 11:32:34 fetching corpus: 6184, signal 237580/280645 (executing program) 2022/12/06 11:32:34 fetching corpus: 6234, signal 238072/281018 (executing program) 2022/12/06 11:32:34 fetching corpus: 6284, signal 238566/281394 (executing program) 2022/12/06 11:32:35 fetching corpus: 6334, signal 239148/281765 (executing program) 2022/12/06 11:32:35 fetching corpus: 6384, signal 239628/282169 (executing program) 2022/12/06 11:32:35 fetching corpus: 6434, signal 240217/282561 (executing program) 2022/12/06 11:32:35 fetching corpus: 6484, signal 240760/282972 (executing program) 2022/12/06 11:32:35 fetching corpus: 6534, signal 242078/283406 (executing program) 2022/12/06 11:32:35 fetching corpus: 6584, signal 242375/283759 (executing program) 2022/12/06 11:32:35 fetching corpus: 6634, signal 242746/284108 (executing program) 2022/12/06 11:32:35 fetching corpus: 6683, signal 243358/284452 (executing program) 2022/12/06 11:32:35 fetching corpus: 6733, signal 243764/284789 (executing program) 2022/12/06 11:32:35 fetching corpus: 6783, signal 244372/285123 (executing program) 2022/12/06 11:32:36 fetching corpus: 6833, signal 245119/285454 (executing program) 2022/12/06 11:32:36 fetching corpus: 6883, signal 245708/285763 (executing program) 2022/12/06 11:32:36 fetching corpus: 6933, signal 246441/286067 (executing program) 2022/12/06 11:32:36 fetching corpus: 6983, signal 247053/286387 (executing program) 2022/12/06 11:32:36 fetching corpus: 7033, signal 247917/286664 (executing program) 2022/12/06 11:32:36 fetching corpus: 7083, signal 248393/286943 (executing program) 2022/12/06 11:32:36 fetching corpus: 7133, signal 248900/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7183, signal 249545/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7233, signal 250075/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7283, signal 250576/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7333, signal 251088/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7383, signal 251394/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7433, signal 252042/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7483, signal 252462/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7533, signal 253132/287102 (executing program) 2022/12/06 11:32:37 fetching corpus: 7583, signal 253583/287102 (executing program) 2022/12/06 11:32:38 fetching corpus: 7633, signal 253968/287102 (executing program) 2022/12/06 11:32:38 fetching corpus: 7683, signal 254520/287102 (executing program) 2022/12/06 11:32:38 fetching corpus: 7733, signal 254920/287102 (executing program) 2022/12/06 11:32:38 fetching corpus: 7783, signal 255529/287102 (executing program) 2022/12/06 11:32:38 fetching corpus: 7833, signal 255904/287102 (executing program) 2022/12/06 11:32:38 fetching corpus: 7883, signal 256376/287102 (executing program) 2022/12/06 11:32:38 fetching corpus: 7933, signal 256865/287102 (executing program) 2022/12/06 11:32:38 fetching corpus: 7983, signal 257230/287102 (executing program) 2022/12/06 11:32:39 fetching corpus: 8033, signal 257684/287102 (executing program) 2022/12/06 11:32:39 fetching corpus: 8083, signal 258074/287102 (executing program) 2022/12/06 11:32:39 fetching corpus: 8133, signal 258721/287102 (executing program) 2022/12/06 11:32:39 fetching corpus: 8183, signal 259433/287102 (executing program) 2022/12/06 11:32:39 fetching corpus: 8233, signal 259805/287102 (executing program) 2022/12/06 11:32:39 fetching corpus: 8283, signal 260085/287102 (executing program) 2022/12/06 11:32:39 fetching corpus: 8333, signal 260598/287102 (executing program) 2022/12/06 11:32:40 fetching corpus: 8383, signal 261045/287102 (executing program) 2022/12/06 11:32:40 fetching corpus: 8433, signal 261512/287102 (executing program) 2022/12/06 11:32:40 fetching corpus: 8483, signal 262068/287102 (executing program) 2022/12/06 11:32:40 fetching corpus: 8533, signal 262353/287102 (executing program) 2022/12/06 11:32:40 fetching corpus: 8583, signal 262696/287102 (executing program) 2022/12/06 11:32:40 fetching corpus: 8633, signal 263183/287102 (executing program) 2022/12/06 11:32:40 fetching corpus: 8683, signal 263466/287102 (executing program) 2022/12/06 11:32:40 fetching corpus: 8733, signal 263873/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 8783, signal 264640/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 8833, signal 264970/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 8883, signal 265506/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 8932, signal 266266/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 8982, signal 266545/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 9032, signal 266878/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 9082, signal 267281/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 9132, signal 267662/287102 (executing program) 2022/12/06 11:32:41 fetching corpus: 9182, signal 268091/287102 (executing program) 2022/12/06 11:32:42 fetching corpus: 9232, signal 268388/287102 (executing program) 2022/12/06 11:32:42 fetching corpus: 9282, signal 269325/287102 (executing program) 2022/12/06 11:32:42 fetching corpus: 9332, signal 269558/287102 (executing program) 2022/12/06 11:32:42 fetching corpus: 9381, signal 270061/287102 (executing program) 2022/12/06 11:32:42 fetching corpus: 9431, signal 270620/287102 (executing program) 2022/12/06 11:32:42 fetching corpus: 9481, signal 271114/287102 (executing program) 2022/12/06 11:32:42 fetching corpus: 9531, signal 271716/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9581, signal 272039/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9631, signal 272483/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9681, signal 273155/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9731, signal 273450/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9781, signal 273779/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9831, signal 274087/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9881, signal 274526/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9931, signal 275097/287102 (executing program) 2022/12/06 11:32:43 fetching corpus: 9981, signal 275428/287102 (executing program) 2022/12/06 11:32:44 fetching corpus: 10031, signal 275779/287102 (executing program) 2022/12/06 11:32:44 fetching corpus: 10081, signal 276042/287102 (executing program) 2022/12/06 11:32:44 fetching corpus: 10131, signal 276370/287102 (executing program) 2022/12/06 11:32:44 fetching corpus: 10181, signal 276880/287102 (executing program) 2022/12/06 11:32:44 fetching corpus: 10231, signal 277142/287102 (executing program) 2022/12/06 11:32:44 fetching corpus: 10281, signal 277474/287102 (executing program) 2022/12/06 11:32:44 fetching corpus: 10331, signal 277783/287102 (executing program) 2022/12/06 11:32:44 fetching corpus: 10381, signal 278202/287102 (executing program) 2022/12/06 11:32:45 fetching corpus: 10431, signal 278507/287102 (executing program) 2022/12/06 11:32:45 fetching corpus: 10481, signal 278957/287102 (executing program) 2022/12/06 11:32:45 fetching corpus: 10531, signal 279333/287102 (executing program) 2022/12/06 11:32:45 fetching corpus: 10581, signal 279607/287102 (executing program) 2022/12/06 11:32:45 fetching corpus: 10631, signal 279922/287102 (executing program) 2022/12/06 11:32:45 fetching corpus: 10681, signal 280403/287102 (executing program) 2022/12/06 11:32:45 fetching corpus: 10731, signal 280716/287102 (executing program) 2022/12/06 11:32:46 fetching corpus: 10781, signal 281133/287102 (executing program) 2022/12/06 11:32:46 fetching corpus: 10831, signal 281493/287102 (executing program) 2022/12/06 11:32:46 fetching corpus: 10881, signal 281755/287102 (executing program) 2022/12/06 11:32:46 fetching corpus: 10931, signal 282017/287102 (executing program) 2022/12/06 11:32:46 fetching corpus: 10939, signal 282038/287102 (executing program) 2022/12/06 11:32:46 fetching corpus: 10939, signal 282038/287102 (executing program) 2022/12/06 11:32:48 starting 8 fuzzer processes 11:32:48 executing program 1: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_misc(r0, &(0x7f0000001080)={'syz0', "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"}, 0x1001) fcntl$setpipe(r0, 0x407, 0x0) 11:32:48 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="73ac99d1e17b71e714e4ffff0100000000080000"], 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socket$nl_audit(0x10, 0x3, 0x9) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc) pwritev(r0, &(0x7f0000000400)=[{&(0x7f0000000140)="8a0122f8309610", 0x7}, {&(0x7f00000001c0)="b31d0d3e1e9ae4dfe1ba08b00b12b043cf097b5002b47cb19ac0265d1fb97df1cffdcfafd9546d343d894c72e5fec7d4c65980c1fe8f619fa8c65309d870403d57b1516762b57ac229d04f74b1c345388834c48c271d97cc368be37ce2fb5b", 0x5f}, {&(0x7f0000000240)="8e93297e52ba27", 0x7}, {0x0}, {&(0x7f0000000380)="50c01cefa407f00075780667adea9f1a26e01d6b7d623256736db10828bedecd7be470b3c207d9021ad2e5279f4c13ca2403ce25d6915d01c2567daebfe5e56c036538164697eab912600b39bb59ac4b9a6b3788407587304f1d910c444289e1f2cf1c9bcd2541d36273009a37ec1d531111e627120e2914813f933d", 0x7c}], 0x5, 0x4, 0x1) preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r1, 0x0, 0x0, 0x87ffffc) r2 = syz_io_uring_setup(0xfa7, &(0x7f0000000080), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) fcntl$dupfd(r2, 0x1193f424852396c6, r2) 11:32:48 executing program 2: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r0, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = dup2(r1, r1) ioctl$sock_inet6_SIOCSIFADDR(r2, 0xc0045878, 0x0) 11:32:48 executing program 0: openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setfsuid(0xee01) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) 11:32:48 executing program 4: r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x7e) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@timestamp, @window, @sack_perm, @sack_perm], 0x20000000000000aa) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4) 11:32:48 executing program 5: syz_80211_join_ibss(&(0x7f0000001640)='wlan1\x00', 0x0, 0x0, 0x0) 11:32:48 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r0, 0x0, 0x3, &(0x7f0000000040)={0x10000, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @private}}}, 0x108) sendmsg$inet(r0, &(0x7f0000000300)={&(0x7f0000000180)={0x2, 0x0, @local}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000240)="4cfe3966294080789ff876935c29ff90f64da5f8", 0x14}], 0x1}, 0x880) [ 79.119110] audit: type=1400 audit(1670326368.655:6): avc: denied { execmem } for pid=257 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 11:32:48 executing program 6: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0xa01a}, 0x0, 0x0, 0xffffffffffffffff, 0x0) close_range(r0, r0, 0x2) r1 = perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200050000000e"], 0x125) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0xec, 0x8, 0x6, 0x3, 0x0, 0x10001, 0x40810, 0xf5e19cfaf0c55636, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x80, 0x4, @perf_bp={&(0x7f0000000000), 0x4}, 0x2000, 0x2, 0x3, 0x5, 0x7, 0x8, 0x1, 0x0, 0x80, 0x0, 0x3}, 0x0, 0xd, 0xffffffffffffffff, 0x2) readv(r1, &(0x7f0000000140)=[{&(0x7f0000000400)=""/85, 0x55}, {&(0x7f0000000480)=""/250, 0xfa}, {&(0x7f0000000580)=""/127, 0x7f}], 0x3) openat$cgroup(0xffffffffffffffff, &(0x7f00000001c0)='syz1\x00', 0x200002, 0x0) [ 80.352101] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 80.354123] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 80.355972] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 80.359225] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 80.361238] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 80.362586] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 80.408453] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 80.426147] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 80.427912] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 80.431028] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 80.432742] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 80.434532] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 80.435893] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 80.442140] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 80.444524] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 80.446561] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 80.449203] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 80.450777] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 80.453849] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 80.455952] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 80.467026] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 80.468559] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 80.470409] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 80.472205] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 80.473729] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 80.474756] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 80.475964] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 80.477370] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 80.478502] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 80.480534] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 80.481730] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 80.482780] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 80.488419] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 80.490279] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 80.491549] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 80.494415] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 80.496605] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 80.496784] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 80.505469] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 80.506991] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 80.508453] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 80.511093] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 80.562992] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 80.564241] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 80.569332] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 80.570335] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 80.571717] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 80.572869] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 82.372253] Bluetooth: hci0: command 0x0409 tx timeout [ 82.499764] Bluetooth: hci1: command 0x0409 tx timeout [ 82.563818] Bluetooth: hci5: command 0x0409 tx timeout [ 82.564930] Bluetooth: hci3: command 0x0409 tx timeout [ 82.565934] Bluetooth: hci2: command 0x0409 tx timeout [ 82.566924] Bluetooth: hci4: command 0x0409 tx timeout [ 82.627759] Bluetooth: hci7: command 0x0409 tx timeout [ 82.628797] Bluetooth: hci6: command 0x0409 tx timeout [ 84.420077] Bluetooth: hci0: command 0x041b tx timeout [ 84.547821] Bluetooth: hci1: command 0x041b tx timeout [ 84.612804] Bluetooth: hci4: command 0x041b tx timeout [ 84.613459] Bluetooth: hci2: command 0x041b tx timeout [ 84.614461] Bluetooth: hci3: command 0x041b tx timeout [ 84.615147] Bluetooth: hci5: command 0x041b tx timeout [ 84.676820] Bluetooth: hci6: command 0x041b tx timeout [ 84.677474] Bluetooth: hci7: command 0x041b tx timeout [ 86.467686] Bluetooth: hci0: command 0x040f tx timeout [ 86.596687] Bluetooth: hci1: command 0x040f tx timeout [ 86.660741] Bluetooth: hci5: command 0x040f tx timeout [ 86.661132] Bluetooth: hci3: command 0x040f tx timeout [ 86.661500] Bluetooth: hci2: command 0x040f tx timeout [ 86.661915] Bluetooth: hci4: command 0x040f tx timeout [ 86.724717] Bluetooth: hci7: command 0x040f tx timeout [ 86.725104] Bluetooth: hci6: command 0x040f tx timeout [ 88.516755] Bluetooth: hci0: command 0x0419 tx timeout [ 88.644679] Bluetooth: hci1: command 0x0419 tx timeout [ 88.708745] Bluetooth: hci4: command 0x0419 tx timeout [ 88.709132] Bluetooth: hci2: command 0x0419 tx timeout [ 88.709491] Bluetooth: hci3: command 0x0419 tx timeout [ 88.710221] Bluetooth: hci5: command 0x0419 tx timeout [ 88.771919] Bluetooth: hci6: command 0x0419 tx timeout [ 88.772839] Bluetooth: hci7: command 0x0419 tx timeout [ 142.232922] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 142.234594] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 142.235956] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 142.238539] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 142.240187] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 142.241405] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 142.476033] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 142.482185] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 142.486777] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 142.495955] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 142.499316] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 142.501301] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 142.562591] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 142.563977] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 142.565790] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 142.567343] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 142.569320] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 142.572116] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 142.573277] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 142.575520] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 142.578562] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 142.580879] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 142.582098] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 142.583905] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 142.584992] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 142.587540] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 142.597867] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 142.599219] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 142.600191] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 142.602240] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 142.604468] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 142.605789] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 142.607080] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 142.609114] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 142.610201] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 142.611080] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 142.612389] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 142.614532] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 142.619621] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 142.621863] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 142.627598] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 142.629619] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 142.630830] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 142.637887] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 142.665083] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 142.667113] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 142.668883] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 142.727105] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 144.259744] Bluetooth: hci0: command 0x0409 tx timeout [ 144.579739] Bluetooth: hci1: command 0x0409 tx timeout [ 144.643770] Bluetooth: hci4: command 0x0409 tx timeout [ 144.644427] Bluetooth: hci3: command 0x0409 tx timeout [ 144.707745] Bluetooth: hci2: command 0x0409 tx timeout [ 144.708296] Bluetooth: hci7: command 0x0409 tx timeout [ 144.708830] Bluetooth: hci6: command 0x0409 tx timeout [ 144.772342] Bluetooth: hci5: command 0x0409 tx timeout [ 146.307712] Bluetooth: hci0: command 0x041b tx timeout [ 146.627700] Bluetooth: hci1: command 0x041b tx timeout [ 146.691768] Bluetooth: hci3: command 0x041b tx timeout [ 146.692201] Bluetooth: hci4: command 0x041b tx timeout [ 146.755712] Bluetooth: hci6: command 0x041b tx timeout [ 146.756146] Bluetooth: hci7: command 0x041b tx timeout [ 146.756515] Bluetooth: hci2: command 0x041b tx timeout [ 146.819709] Bluetooth: hci5: command 0x041b tx timeout [ 148.355795] Bluetooth: hci0: command 0x040f tx timeout [ 148.675707] Bluetooth: hci1: command 0x040f tx timeout [ 148.739745] Bluetooth: hci4: command 0x040f tx timeout [ 148.740138] Bluetooth: hci3: command 0x040f tx timeout [ 148.803758] Bluetooth: hci2: command 0x040f tx timeout [ 148.804158] Bluetooth: hci7: command 0x040f tx timeout [ 148.804529] Bluetooth: hci6: command 0x040f tx timeout [ 148.867715] Bluetooth: hci5: command 0x040f tx timeout [ 150.403784] Bluetooth: hci0: command 0x0419 tx timeout [ 150.723698] Bluetooth: hci1: command 0x0419 tx timeout [ 150.787714] Bluetooth: hci3: command 0x0419 tx timeout [ 150.788114] Bluetooth: hci4: command 0x0419 tx timeout [ 150.851701] Bluetooth: hci6: command 0x0419 tx timeout [ 150.852087] Bluetooth: hci7: command 0x0419 tx timeout [ 150.852458] Bluetooth: hci2: command 0x0419 tx timeout [ 150.915679] Bluetooth: hci5: command 0x0419 tx timeout [ 198.112744] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 198.114150] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 198.117857] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 198.143324] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 198.144238] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 198.146320] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 198.551063] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 198.552845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 198.554950] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 198.984299] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 198.985191] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 198.987178] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 199.063563] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 199.064427] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 199.066376] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 199.553389] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 199.554499] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 199.556939] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 200.326369] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.327724] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 200.330539] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 200.497882] audit: type=1400 audit(1670326490.033:7): avc: denied { open } for pid=7132 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 200.500563] audit: type=1400 audit(1670326490.033:8): avc: denied { kernel } for pid=7132 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 200.535797] hrtimer: interrupt took 38081 ns [ 200.652363] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.653758] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 200.657215] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 11:34:50 executing program 0: openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setfsuid(0xee01) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) 11:34:50 executing program 0: openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setfsuid(0xee01) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) 11:34:50 executing program 0: openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0xbf1cadf27cf12961) setfsuid(0xee01) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) 11:34:50 executing program 0: shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff3000/0x4000)=nil, 0x4000) shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000140)=""/237) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmctl$IPC_RMID(0xffffffffffffffff, 0x0) finit_module(r0, 0x0, 0x0) r1 = openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x1b}, 0x18) r2 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff8000/0x4000)=nil) shmat(r2, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) r3 = fcntl$getown(r1, 0x9) perf_event_open(&(0x7f00000003c0)={0x4, 0x80, 0xff, 0x2, 0x0, 0x2, 0x0, 0x2, 0x100a, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x6, 0x9}, 0x4000, 0x4000, 0x3, 0x5, 0x2e77, 0xaf7d, 0x36d9, 0x0, 0xfffffffa, 0x0, 0x7}, r3, 0x1, r1, 0x2) shmctl$SHM_STAT_ANY(r2, 0xf, &(0x7f0000000340)=""/95) ioctl$AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, &(0x7f0000000100)) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)) ioctl$SNAPSHOT_FREE(r4, 0x3305) r5 = shmget$private(0x0, 0x3000, 0x400, &(0x7f0000ff2000/0x3000)=nil) shmctl$IPC_RMID(r5, 0x0) [ 201.502427] audit: type=1400 audit(1670326491.038:9): avc: denied { read } for pid=7161 comm="syz-executor.6" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 201.547768] sg_write: data in/out 917468/251 bytes for SCSI command 0x0-- guessing data in; [ 201.547768] program syz-executor.6 not setting count and/or reply_len properly [ 201.555116] ------------[ cut here ]------------ [ 201.555445] WARNING: CPU: 0 PID: 7173 at lib/iov_iter.c:629 _copy_from_iter+0x2f1/0x1130 [ 201.556653] Modules linked in: [ 201.556889] CPU: 0 PID: 7173 Comm: syz-executor.6 Not tainted 6.1.0-rc8-next-20221206 #1 [ 201.557437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 201.560032] RIP: 0010:_copy_from_iter+0x2f1/0x1130 [ 201.561734] Code: 37 ff 44 89 f3 e9 2f ff ff ff e8 7a 07 37 ff be 79 02 00 00 48 c7 c7 80 c0 9e 84 e8 49 87 5a ff e9 13 fe ff ff e8 5f 07 37 ff <0f> 0b 45 31 f6 e9 77 ff ff ff e8 50 07 37 ff 31 ff 89 ee e8 17 03 [ 201.562943] RSP: 0018:ffff8880452675e8 EFLAGS: 00010216 [ 201.563312] RAX: 0000000000003f91 RBX: 0000000000000000 RCX: ffffc90007e14000 [ 201.563815] RDX: 0000000000040000 RSI: ffffffff82124d21 RDI: 0000000000000001 [ 201.564311] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000000 [ 201.564809] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000001000 [ 201.565421] R13: ffffea00010c5000 R14: 0000000000001000 R15: ffff888045267818 [ 201.566171] FS: 00007fe433912700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 201.567014] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 201.567607] CR2: 00007fd71e285b70 CR3: 000000004250c000 CR4: 0000000000350ef0 [ 201.568371] Call Trace: [ 201.568675] [ 201.568926] ? __kmem_cache_alloc_node+0x25b/0x400 [ 201.569469] ? __pfx__copy_from_iter+0x10/0x10 [ 201.570009] ? bio_add_pc_page+0xbc/0x100 [ 201.570452] ? page_copy_sane+0xd3/0x390 [ 201.570939] copy_page_from_iter+0xe3/0x180 [ 201.571405] blk_rq_map_user_iov+0xb0c/0x1650 [ 201.571947] ? lock_is_held_type+0xdb/0x130 [ 201.572436] ? __pfx_blk_rq_map_user_iov+0x10/0x10 [ 201.573012] ? __pfx_lock_release+0x10/0x10 [ 201.573476] ? __pfx___alloc_pages+0x10/0x10 [ 201.573987] ? mark_held_locks+0x9e/0xe0 [ 201.574427] ? import_single_range+0x333/0x400 [ 201.574957] blk_rq_map_user_io+0x1ee/0x220 [ 201.575421] ? __pfx_blk_rq_map_user_io+0x10/0x10 [ 201.575974] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 201.576557] ? sg_build_indirect.isra.0+0x3b2/0x640 [ 201.577104] sg_common_write.constprop.0+0xd84/0x15e0 [ 201.577488] ? __pfx_sg_common_write.constprop.0+0x10/0x10 [ 201.577901] ? _raw_spin_unlock_irqrestore+0x37/0x60 [ 201.578288] sg_write.part.0+0x706/0xb20 [ 201.578594] ? __pfx_sg_write.part.0+0x10/0x10 [ 201.578967] ? __lock_acquire+0xbad/0x5e70 [ 201.579304] ? lock_is_held_type+0xdb/0x130 [ 201.579663] ? inode_security+0x105/0x140 [ 201.579984] ? avc_policy_seqno+0xd/0x70 [ 201.580302] ? selinux_file_permission+0x3a/0x510 [ 201.580702] sg_write+0x88/0xe0 [ 201.580964] vfs_write+0x358/0xe40 [ 201.581246] ? __pfx_sg_write+0x10/0x10 [ 201.581555] ? lock_is_held_type+0xdb/0x130 [ 201.581909] ? __pfx_vfs_write+0x10/0x10 [ 201.582234] ? __fget_files+0x270/0x450 [ 201.582544] ? __fget_light+0xe5/0x280 [ 201.582871] ksys_write+0x12b/0x260 [ 201.583165] ? __pfx_ksys_write+0x10/0x10 [ 201.583480] ? syscall_enter_from_user_mode+0x21/0x50 [ 201.583895] ? syscall_enter_from_user_mode+0x21/0x50 [ 201.584298] do_syscall_64+0x3f/0x90 [ 201.584587] entry_SYSCALL_64_after_hwframe+0x72/0xdc [ 201.585000] RIP: 0033:0x7fe4363deb19 [ 201.585281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 201.586574] RSP: 002b:00007fe433912188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 201.587150] RAX: ffffffffffffffda RBX: 00007fe4364f20e0 RCX: 00007fe4363deb19 [ 201.587689] RDX: 0000000000000125 RSI: 00000000200003c0 RDI: 0000000000000004 [ 201.588216] RBP: 00007fe436438f6d R08: 0000000000000000 R09: 0000000000000000 [ 201.588742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.589259] R13: 00007ffd275256ef R14: 00007fe433912300 R15: 0000000000022000 [ 201.589820] [ 201.590000] irq event stamp: 1145 [ 201.590255] hardirqs last enabled at (1155): [] __up_console_sem+0x78/0x80 [ 201.590902] hardirqs last disabled at (1166): [] __up_console_sem+0x5d/0x80 [ 201.591472] softirqs last enabled at (420): [] __irq_exit_rcu+0x11b/0x180 [ 201.592070] softirqs last disabled at (119): [] __irq_exit_rcu+0x11b/0x180 [ 201.592673] ---[ end trace 0000000000000000 ]--- 11:34:51 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="73ac99d1e17b71e714e4ffff0100000000080000"], 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socket$nl_audit(0x10, 0x3, 0x9) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc) pwritev(r0, &(0x7f0000000400)=[{&(0x7f0000000140)="8a0122f8309610", 0x7}, {&(0x7f00000001c0)="b31d0d3e1e9ae4dfe1ba08b00b12b043cf097b5002b47cb19ac0265d1fb97df1cffdcfafd9546d343d894c72e5fec7d4c65980c1fe8f619fa8c65309d870403d57b1516762b57ac229d04f74b1c345388834c48c271d97cc368be37ce2fb5b", 0x5f}, {&(0x7f0000000240)="8e93297e52ba27", 0x7}, {0x0}, {&(0x7f0000000380)="50c01cefa407f00075780667adea9f1a26e01d6b7d623256736db10828bedecd7be470b3c207d9021ad2e5279f4c13ca2403ce25d6915d01c2567daebfe5e56c036538164697eab912600b39bb59ac4b9a6b3788407587304f1d910c444289e1f2cf1c9bcd2541d36273009a37ec1d531111e627120e2914813f933d", 0x7c}], 0x5, 0x4, 0x1) preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r1, 0x0, 0x0, 0x87ffffc) r2 = syz_io_uring_setup(0xfa7, &(0x7f0000000080), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) fcntl$dupfd(r2, 0x1193f424852396c6, r2) [ 201.671712] random: crng reseeded on system resumption 11:34:51 executing program 6: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="73ac99d1e17b71e714e4ffff0100000000080000"], 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socket$nl_audit(0x10, 0x3, 0x9) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc) pwritev(r0, &(0x7f0000000400)=[{&(0x7f0000000140)="8a0122f8309610", 0x7}, {&(0x7f00000001c0)="b31d0d3e1e9ae4dfe1ba08b00b12b043cf097b5002b47cb19ac0265d1fb97df1cffdcfafd9546d343d894c72e5fec7d4c65980c1fe8f619fa8c65309d870403d57b1516762b57ac229d04f74b1c345388834c48c271d97cc368be37ce2fb5b", 0x5f}, {&(0x7f0000000240)="8e93297e52ba27", 0x7}, {0x0}, {&(0x7f0000000380)="50c01cefa407f00075780667adea9f1a26e01d6b7d623256736db10828bedecd7be470b3c207d9021ad2e5279f4c13ca2403ce25d6915d01c2567daebfe5e56c036538164697eab912600b39bb59ac4b9a6b3788407587304f1d910c444289e1f2cf1c9bcd2541d36273009a37ec1d531111e627120e2914813f933d", 0x7c}], 0x5, 0x4, 0x1) preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r1, 0x0, 0x0, 0x87ffffc) r2 = syz_io_uring_setup(0xfa7, &(0x7f0000000080), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) fcntl$dupfd(r2, 0x1193f424852396c6, r2) [ 201.811034] random: crng reseeded on system resumption [ 201.862048] Restarting kernel threads ... done. 11:34:51 executing program 0: shmat(0xffffffffffffffff, &(0x7f0000fed000/0x13000)=nil, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmat(0x0, &(0x7f0000ff3000/0x4000)=nil, 0x4000) shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000140)=""/237) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) shmctl$IPC_RMID(0xffffffffffffffff, 0x0) finit_module(r0, 0x0, 0x0) r1 = openat2(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x1b}, 0x18) r2 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ff8000/0x4000)=nil) shmat(r2, &(0x7f0000ffc000/0x4000)=nil, 0xcf3caed3d8c7cb92) r3 = fcntl$getown(r1, 0x9) perf_event_open(&(0x7f00000003c0)={0x4, 0x80, 0xff, 0x2, 0x0, 0x2, 0x0, 0x2, 0x100a, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, @perf_config_ext={0x6, 0x9}, 0x4000, 0x4000, 0x3, 0x5, 0x2e77, 0xaf7d, 0x36d9, 0x0, 0xfffffffa, 0x0, 0x7}, r3, 0x1, r1, 0x2) shmctl$SHM_STAT_ANY(r2, 0xf, &(0x7f0000000340)=""/95) ioctl$AUTOFS_IOC_ASKUMOUNT(0xffffffffffffffff, 0x80049370, &(0x7f0000000100)) r4 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000440), 0x20001, 0x0) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f0000000040)) ioctl$SNAPSHOT_FREE(r4, 0x3305) r5 = shmget$private(0x0, 0x3000, 0x400, &(0x7f0000ff2000/0x3000)=nil) shmctl$IPC_RMID(r5, 0x0) 11:34:51 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="73ac99d1e17b71e714e4ffff0100000000080000"], 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) socket$nl_audit(0x10, 0x3, 0x9) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc) pwritev(r0, &(0x7f0000000400)=[{&(0x7f0000000140)="8a0122f8309610", 0x7}, {&(0x7f00000001c0)="b31d0d3e1e9ae4dfe1ba08b00b12b043cf097b5002b47cb19ac0265d1fb97df1cffdcfafd9546d343d894c72e5fec7d4c65980c1fe8f619fa8c65309d870403d57b1516762b57ac229d04f74b1c345388834c48c271d97cc368be37ce2fb5b", 0x5f}, {&(0x7f0000000240)="8e93297e52ba27", 0x7}, {0x0}, {&(0x7f0000000380)="50c01cefa407f00075780667adea9f1a26e01d6b7d623256736db10828bedecd7be470b3c207d9021ad2e5279f4c13ca2403ce25d6915d01c2567daebfe5e56c036538164697eab912600b39bb59ac4b9a6b3788407587304f1d910c444289e1f2cf1c9bcd2541d36273009a37ec1d531111e627120e2914813f933d", 0x7c}], 0x5, 0x4, 0x1) preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000002240)=""/4109, 0x100d}], 0x1, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r1, 0x0, 0x0, 0x87ffffc) r2 = syz_io_uring_setup(0xfa7, &(0x7f0000000080), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000000)) fcntl$dupfd(r2, 0x1193f424852396c6, r2) [ 201.982522] random: crng reseeded on system resumption [ 204.900326] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 204.901022] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 204.902929] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 204.904495] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 204.907356] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 204.909106] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 204.910354] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 204.911452] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 204.914025] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 204.917710] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 204.929591] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 204.931144] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 204.948612] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 204.974936] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 204.976747] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 205.009207] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 205.011793] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 205.013036] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 206.724751] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 206.915726] Bluetooth: hci4: Opcode 0x c03 failed: -110 [ 206.980785] Bluetooth: hci5: command 0x0409 tx timeout [ 206.980862] Bluetooth: hci3: command 0x0409 tx timeout [ 207.044022] Bluetooth: hci7: command 0x0409 tx timeout [ 209.027739] Bluetooth: hci5: command 0x041b tx timeout [ 209.028844] Bluetooth: hci3: command 0x041b tx timeout [ 209.092684] Bluetooth: hci7: command 0x041b tx timeout [ 209.881605] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 209.885626] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 209.896222] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 209.905747] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 209.907739] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 209.916565] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 211.076100] Bluetooth: hci3: command 0x040f tx timeout [ 211.076745] Bluetooth: hci5: command 0x040f tx timeout [ 211.139724] Bluetooth: hci7: command 0x040f tx timeout VM DIAGNOSIS: 11:34:51 Registers: info registers vcpu 0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff8248b5a0 RDI=ffffffff87fb5b60 RBP=ffffffff87fb5b20 RSP=ffff888045266ef0 R8 =0000000000000004 R9 =0000000000000010 R10=0000000000000010 R11=0000000000000001 R12=0000000000002710 R13=0000000000000020 R14=fffffbfff0ff6bbc R15=dffffc0000000000 RIP=ffffffff8248b5f5 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fe433912700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe5e0b5cc000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe5e0b5ca000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fd71e285b70 CR3=000000004250c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=2031353a34333a313120362020636544 XMM01=5d3836373734352e31303220205b203a XMM02=70657220726f2f646e6120746e756f63 XMM03=6f7475636578652d7a7973206d617267 XMM04=7567202d2d30783020646e616d6d6f63 XMM05=3135322f3836343731392074756f2f6e XMM06=205d3836373734352e31303220205b20 XMM07=732031353a34333a3131203620206365 XMM08=2e726f7475636578652d7a7973223d6d XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000000 RBX=ffff888018fb7588 RCX=0000000000000000 RDX=1ffff11001f83c1b RSI=ffffffff818598d3 RDI=ffff888018fb7594 RBP=ffff88800fc1e0d8 RSP=ffff888018fb74a0 R8 =ffffffff86102492 R9 =ffffffff86102496 R10=ffffed10031f6ea5 R11=ffff888018fb7500 R12=ffff888018fb7588 R13=0000000000000000 R14=ffff888017e65040 R15=ffff88800fc1e000 RIP=ffffffff813858a7 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f0d53e6d900 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe4dae9f5000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe4dae9f3000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f469b59d6f4 CR3=000000000f11e000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffffffffffffffffffffff XMM01=30306234386136303638616663356134 XMM02=38303062343861363036386166633561 XMM03=2f6c616e72756f6a2f676f6c2f6e7572 XMM04=b94b65e9b86b7b9f00000000000ae988 XMM05=de36a4df5297e09f0000000000141628 XMM06=75b108e43fc9fa0400000000001414e0 XMM07=00000000000000000000000000000000 XMM08=44495f474f4c5359530069253d595449 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000200000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000