Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:47386' (ECDSA) to the list of known hosts. 2022/09/28 14:06:54 fuzzer started 2022/09/28 14:06:54 dialing manager at localhost:35827 syzkaller login: [ 36.476456] cgroup: Unknown subsys name 'net' [ 36.598360] cgroup: Unknown subsys name 'rlimit' 2022/09/28 14:07:09 syscalls: 2215 2022/09/28 14:07:09 code coverage: enabled 2022/09/28 14:07:09 comparison tracing: enabled 2022/09/28 14:07:09 extra coverage: enabled 2022/09/28 14:07:09 setuid sandbox: enabled 2022/09/28 14:07:09 namespace sandbox: enabled 2022/09/28 14:07:09 Android sandbox: enabled 2022/09/28 14:07:09 fault injection: enabled 2022/09/28 14:07:09 leak checking: enabled 2022/09/28 14:07:09 net packet injection: enabled 2022/09/28 14:07:09 net device setup: enabled 2022/09/28 14:07:09 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/09/28 14:07:09 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/09/28 14:07:09 USB emulation: enabled 2022/09/28 14:07:09 hci packet injection: enabled 2022/09/28 14:07:09 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220927) 2022/09/28 14:07:09 802.15.4 emulation: enabled 2022/09/28 14:07:09 fetching corpus: 50, signal 20522/22309 (executing program) 2022/09/28 14:07:09 fetching corpus: 100, signal 31016/34422 (executing program) 2022/09/28 14:07:09 fetching corpus: 150, signal 44719/49506 (executing program) 2022/09/28 14:07:09 fetching corpus: 200, signal 51104/57287 (executing program) 2022/09/28 14:07:10 fetching corpus: 250, signal 58898/66299 (executing program) 2022/09/28 14:07:10 fetching corpus: 300, signal 64448/73013 (executing program) 2022/09/28 14:07:10 fetching corpus: 350, signal 67534/77321 (executing program) 2022/09/28 14:07:10 fetching corpus: 400, signal 71292/82226 (executing program) 2022/09/28 14:07:10 fetching corpus: 450, signal 76590/88455 (executing program) 2022/09/28 14:07:10 fetching corpus: 500, signal 83232/95835 (executing program) 2022/09/28 14:07:10 fetching corpus: 550, signal 86442/99904 (executing program) 2022/09/28 14:07:10 fetching corpus: 600, signal 88730/103165 (executing program) 2022/09/28 14:07:11 fetching corpus: 650, signal 90990/106409 (executing program) 2022/09/28 14:07:11 fetching corpus: 700, signal 94302/110521 (executing program) 2022/09/28 14:07:11 fetching corpus: 750, signal 96916/114017 (executing program) 2022/09/28 14:07:11 fetching corpus: 800, signal 98897/116825 (executing program) 2022/09/28 14:07:11 fetching corpus: 850, signal 101378/120060 (executing program) 2022/09/28 14:07:11 fetching corpus: 900, signal 104888/124083 (executing program) 2022/09/28 14:07:11 fetching corpus: 950, signal 106553/126516 (executing program) 2022/09/28 14:07:11 fetching corpus: 1000, signal 109271/129796 (executing program) 2022/09/28 14:07:11 fetching corpus: 1050, signal 110739/132036 (executing program) 2022/09/28 14:07:12 fetching corpus: 1100, signal 112724/134668 (executing program) 2022/09/28 14:07:12 fetching corpus: 1150, signal 115497/137864 (executing program) 2022/09/28 14:07:12 fetching corpus: 1200, signal 118123/140890 (executing program) 2022/09/28 14:07:12 fetching corpus: 1250, signal 120628/143790 (executing program) 2022/09/28 14:07:12 fetching corpus: 1300, signal 122090/145878 (executing program) 2022/09/28 14:07:12 fetching corpus: 1350, signal 122939/147443 (executing program) 2022/09/28 14:07:12 fetching corpus: 1400, signal 125206/150064 (executing program) 2022/09/28 14:07:12 fetching corpus: 1450, signal 127044/152319 (executing program) 2022/09/28 14:07:12 fetching corpus: 1500, signal 129236/154803 (executing program) 2022/09/28 14:07:13 fetching corpus: 1550, signal 132023/157701 (executing program) 2022/09/28 14:07:13 fetching corpus: 1600, signal 133553/159646 (executing program) 2022/09/28 14:07:13 fetching corpus: 1650, signal 134544/161186 (executing program) 2022/09/28 14:07:13 fetching corpus: 1700, signal 136149/163109 (executing program) 2022/09/28 14:07:13 fetching corpus: 1750, signal 137239/164666 (executing program) 2022/09/28 14:07:13 fetching corpus: 1800, signal 138717/166429 (executing program) 2022/09/28 14:07:13 fetching corpus: 1850, signal 140100/168140 (executing program) 2022/09/28 14:07:13 fetching corpus: 1900, signal 141788/170012 (executing program) 2022/09/28 14:07:13 fetching corpus: 1950, signal 142595/171277 (executing program) 2022/09/28 14:07:13 fetching corpus: 2000, signal 143768/172799 (executing program) 2022/09/28 14:07:14 fetching corpus: 2050, signal 145144/174400 (executing program) 2022/09/28 14:07:14 fetching corpus: 2100, signal 145978/175657 (executing program) 2022/09/28 14:07:14 fetching corpus: 2150, signal 146724/176821 (executing program) 2022/09/28 14:07:14 fetching corpus: 2200, signal 147921/178270 (executing program) 2022/09/28 14:07:14 fetching corpus: 2250, signal 148808/179500 (executing program) 2022/09/28 14:07:14 fetching corpus: 2300, signal 149581/180683 (executing program) 2022/09/28 14:07:14 fetching corpus: 2350, signal 150271/181756 (executing program) 2022/09/28 14:07:14 fetching corpus: 2400, signal 151402/183108 (executing program) 2022/09/28 14:07:14 fetching corpus: 2450, signal 151871/184027 (executing program) 2022/09/28 14:07:15 fetching corpus: 2500, signal 153711/185640 (executing program) 2022/09/28 14:07:15 fetching corpus: 2550, signal 154929/186921 (executing program) 2022/09/28 14:07:15 fetching corpus: 2600, signal 156916/188653 (executing program) 2022/09/28 14:07:15 fetching corpus: 2650, signal 158349/190058 (executing program) 2022/09/28 14:07:15 fetching corpus: 2700, signal 159818/191415 (executing program) 2022/09/28 14:07:15 fetching corpus: 2750, signal 161482/192843 (executing program) 2022/09/28 14:07:15 fetching corpus: 2800, signal 162248/193812 (executing program) 2022/09/28 14:07:15 fetching corpus: 2850, signal 163244/194832 (executing program) 2022/09/28 14:07:16 fetching corpus: 2900, signal 163896/195681 (executing program) 2022/09/28 14:07:16 fetching corpus: 2950, signal 164843/196659 (executing program) 2022/09/28 14:07:16 fetching corpus: 3000, signal 165548/197539 (executing program) 2022/09/28 14:07:16 fetching corpus: 3050, signal 166543/198562 (executing program) 2022/09/28 14:07:16 fetching corpus: 3100, signal 167128/199317 (executing program) 2022/09/28 14:07:16 fetching corpus: 3150, signal 167811/200189 (executing program) 2022/09/28 14:07:16 fetching corpus: 3200, signal 168352/200948 (executing program) 2022/09/28 14:07:16 fetching corpus: 3250, signal 170287/202267 (executing program) 2022/09/28 14:07:17 fetching corpus: 3300, signal 171117/203117 (executing program) 2022/09/28 14:07:17 fetching corpus: 3350, signal 172121/204033 (executing program) 2022/09/28 14:07:17 fetching corpus: 3400, signal 173084/204916 (executing program) 2022/09/28 14:07:17 fetching corpus: 3450, signal 173617/205587 (executing program) 2022/09/28 14:07:17 fetching corpus: 3500, signal 174993/206547 (executing program) 2022/09/28 14:07:17 fetching corpus: 3550, signal 175875/207388 (executing program) 2022/09/28 14:07:17 fetching corpus: 3600, signal 176712/208102 (executing program) 2022/09/28 14:07:17 fetching corpus: 3650, signal 177449/208791 (executing program) 2022/09/28 14:07:17 fetching corpus: 3700, signal 178072/209421 (executing program) 2022/09/28 14:07:18 fetching corpus: 3750, signal 179472/210327 (executing program) 2022/09/28 14:07:18 fetching corpus: 3800, signal 180136/210977 (executing program) 2022/09/28 14:07:18 fetching corpus: 3850, signal 180735/211609 (executing program) 2022/09/28 14:07:18 fetching corpus: 3900, signal 181473/212241 (executing program) 2022/09/28 14:07:18 fetching corpus: 3950, signal 182408/212962 (executing program) 2022/09/28 14:07:18 fetching corpus: 4000, signal 182941/213491 (executing program) 2022/09/28 14:07:18 fetching corpus: 4050, signal 183847/214132 (executing program) 2022/09/28 14:07:18 fetching corpus: 4100, signal 184463/214661 (executing program) 2022/09/28 14:07:19 fetching corpus: 4150, signal 185447/215293 (executing program) 2022/09/28 14:07:19 fetching corpus: 4200, signal 185899/215723 (executing program) 2022/09/28 14:07:19 fetching corpus: 4250, signal 186550/216257 (executing program) 2022/09/28 14:07:19 fetching corpus: 4300, signal 186858/216665 (executing program) 2022/09/28 14:07:19 fetching corpus: 4350, signal 187635/217191 (executing program) 2022/09/28 14:07:19 fetching corpus: 4400, signal 188514/217723 (executing program) 2022/09/28 14:07:19 fetching corpus: 4450, signal 189250/218217 (executing program) 2022/09/28 14:07:19 fetching corpus: 4500, signal 190164/218723 (executing program) 2022/09/28 14:07:20 fetching corpus: 4550, signal 190893/219193 (executing program) 2022/09/28 14:07:20 fetching corpus: 4600, signal 191369/219610 (executing program) 2022/09/28 14:07:20 fetching corpus: 4650, signal 192286/220199 (executing program) 2022/09/28 14:07:20 fetching corpus: 4700, signal 193008/220654 (executing program) 2022/09/28 14:07:20 fetching corpus: 4750, signal 193878/221085 (executing program) 2022/09/28 14:07:20 fetching corpus: 4800, signal 195074/221733 (executing program) 2022/09/28 14:07:20 fetching corpus: 4850, signal 195965/222115 (executing program) 2022/09/28 14:07:20 fetching corpus: 4900, signal 196611/222492 (executing program) 2022/09/28 14:07:20 fetching corpus: 4950, signal 197041/222836 (executing program) 2022/09/28 14:07:20 fetching corpus: 5000, signal 197479/223119 (executing program) 2022/09/28 14:07:21 fetching corpus: 5050, signal 198035/223440 (executing program) 2022/09/28 14:07:21 fetching corpus: 5100, signal 198623/223795 (executing program) 2022/09/28 14:07:21 fetching corpus: 5150, signal 198870/224070 (executing program) 2022/09/28 14:07:21 fetching corpus: 5200, signal 199205/224317 (executing program) 2022/09/28 14:07:21 fetching corpus: 5250, signal 199721/224644 (executing program) 2022/09/28 14:07:21 fetching corpus: 5300, signal 200136/224889 (executing program) 2022/09/28 14:07:21 fetching corpus: 5350, signal 200495/225134 (executing program) 2022/09/28 14:07:21 fetching corpus: 5400, signal 201123/225399 (executing program) 2022/09/28 14:07:21 fetching corpus: 5450, signal 201535/225645 (executing program) 2022/09/28 14:07:22 fetching corpus: 5500, signal 202260/225911 (executing program) 2022/09/28 14:07:22 fetching corpus: 5550, signal 202750/226134 (executing program) 2022/09/28 14:07:22 fetching corpus: 5600, signal 203138/226273 (executing program) 2022/09/28 14:07:22 fetching corpus: 5650, signal 204020/226274 (executing program) 2022/09/28 14:07:22 fetching corpus: 5700, signal 204431/226274 (executing program) 2022/09/28 14:07:22 fetching corpus: 5750, signal 204939/226283 (executing program) 2022/09/28 14:07:22 fetching corpus: 5800, signal 205415/226285 (executing program) 2022/09/28 14:07:22 fetching corpus: 5850, signal 206240/226296 (executing program) 2022/09/28 14:07:22 fetching corpus: 5900, signal 206984/226356 (executing program) 2022/09/28 14:07:23 fetching corpus: 5950, signal 208080/226357 (executing program) 2022/09/28 14:07:23 fetching corpus: 6000, signal 208646/226357 (executing program) 2022/09/28 14:07:23 fetching corpus: 6050, signal 208918/226357 (executing program) 2022/09/28 14:07:23 fetching corpus: 6100, signal 209320/226363 (executing program) 2022/09/28 14:07:23 fetching corpus: 6150, signal 209704/226368 (executing program) 2022/09/28 14:07:23 fetching corpus: 6197, signal 210052/226372 (executing program) 2022/09/28 14:07:23 fetching corpus: 6197, signal 210052/226372 (executing program) 2022/09/28 14:07:26 starting 8 fuzzer processes 14:07:26 executing program 0: ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) clock_gettime(0x0, &(0x7f0000002dc0)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002cc0)=[{{&(0x7f0000000400), 0x6e, &(0x7f0000001680)=[{&(0x7f0000000480)=""/63, 0x3f}, {&(0x7f00000004c0)=""/132, 0x84}, {&(0x7f0000000580)=""/4096, 0x1000}, {&(0x7f0000001580)=""/31, 0x1f}, {&(0x7f00000015c0)=""/147, 0x93}], 0x5}}, {{&(0x7f0000001700)=@abs, 0x6e, &(0x7f0000001840)=[{&(0x7f0000001780)=""/65, 0x41}, {&(0x7f0000001800)}], 0x2, &(0x7f0000001880)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x30}}, {{&(0x7f00000018c0)=@abs, 0x6e, &(0x7f0000001b00)=[{&(0x7f0000001940)=""/154, 0x9a}, {&(0x7f0000001a00)=""/206, 0xce}], 0x2, &(0x7f0000001b40)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x80}}, {{&(0x7f0000001bc0)=@abs, 0x6e, &(0x7f0000002c40)=[{&(0x7f0000001c40)=""/4096, 0x1000}], 0x1, &(0x7f0000002c80)=[@cred={{0x1c}}], 0x20}}], 0x4, 0x30, &(0x7f0000002e00)={r1, r2+10000000}) sendmsg$unix(r0, &(0x7f0000002e80)={&(0x7f0000000040)=@abs={0x0, 0x0, 0x4e22}, 0x6e, &(0x7f00000003c0)=[{&(0x7f00000000c0)="5e41d5085bbc641c84dac22223dc39dbcb533fa81c0ed9e572437af174f17501664f144c490254e0c86b33bb09fe11090991afb69ced2bc96c915b7ac280ebebfe57fd972a", 0x45}, {&(0x7f0000000140)="0212c26542ed5ff5cd891f0ad8ae20e80273b320e3638c645b175f5b2ff30d40bd851c3c12bf76c53c0e3adbf4b4aee1f50a1d5d08b0bdc73ac47743dfe73a13981dd612a6d8d2198abb7eed192737e0608489b10c0ad03ae00025a88b7ca25c906d48535efb7a38cfa7fdf4a3963b27a00ce4e4520ecb12de6fd24b04b407b79b7ad983ee6bd3e9e6e577c9c53c0120203cfc9f472abfeabdfdb2136fe6b680bd12e08d04e1fd3765f7427446f036912e", 0xb1}, {&(0x7f0000000200)="0bb9bd2eb1308ac1762babdb9d097ba4bb6ac08ea3d2ac84f9e2aeaf51ca94220c1f3fcd1fe7db939b31a2dcfda73eed50adc773744657a235605e5993a50fc77ab6b8eb0b8a3adf672ecbc5d0936dfad52f51913a5d1e7a5d326a1dac042025fc45eba1c3195612bd4bd607fc2a6a3cb63e8d76e5b38d98cede95ab849e789c9e6c6518648b73c149f1b6cf3b2866bdf245da228e5ff6c1da79f3a3e00d93949bf0df7f92c7b6b05ee8", 0xaa}, {&(0x7f00000002c0)="649380656f2a08181263293b55e7b5a1cfd7816134c45d581aae9cea72051dec71a74287d2ab9d5606ece4e89452da5f380633798333e3a9a81d554c3a16d672799db2f8360ce1605a1701ca57687d116adcdb91e009bb6b483010b8808ca1703a3837d39743bd3bdce30dc9bca8d6f77649236b71877d93bda2dd0b3b0008653ffdfe4ce1885bbc03163092b3590ffb8976784b306fd8923e365f8e25935e63702acdf1af22a3581b0421ba980dffe9c54305f73275b0d20f657a36c14eeff76f2743023520b6f402c172209631494a761cdf2d2c3ff3c6fa00d79b23bf5d17b85a829aaf766ea9144110af74bb226197a2293ede30d9", 0xf7}], 0x4, &(0x7f0000002e40)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r4, 0xee00}}}], 0x20, 0x40000}, 0x20000800) io_getevents(0x0, 0x0, 0x4, &(0x7f0000002ec0)=[{}, {}, {}, {}], 0x0) openat(r0, &(0x7f0000002f40)='./file0\x00', 0x40, 0x1) openat(0xffffffffffffff9c, &(0x7f0000002f80)='./file0\x00', 0x100, 0x191) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000002fc0)={{0x1, 0x1, 0x18, r3, {0x7}}, './file0\x00'}) openat(0xffffffffffffff9c, &(0x7f0000003000)='./file0\x00', 0x46080, 0x54) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f00000030c0)={0x9, &(0x7f0000003040)=[{0x5, 0x0, 0x0, 0x2}, {0x8, 0x9, 0x20, 0x3}, {0x2, 0xf8, 0x2, 0x6}, {0x5, 0x19, 0x4, 0x5}, {0x75, 0x2, 0x82}, {0x3f, 0x7, 0xe1, 0xe530}, {0x7fff, 0x8, 0x8, 0xdd}, {0x1, 0x0, 0x8, 0x6}, {0x100, 0x8, 0x81, 0x9}]}) r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000003100), 0x402040, 0x0) r7 = dup3(r5, r6, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000003180)={0x2, &(0x7f0000003140)=[{0xf3c, 0x4, 0x1, 0x9}, {0x149e, 0x1, 0x3, 0x5}]}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f00000031c0)={{0x1, 0x1, 0x18, r7, {0x39}}, './file0\x00'}) r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000003200)='/sys/bus/pcmcia', 0x404000, 0x100) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r9, 0xc0502100, &(0x7f0000003240)) mknod$loop(&(0x7f00000032c0)='./file0\x00', 0x1, 0x1) pwritev(r8, &(0x7f0000003540)=[{&(0x7f0000003300)="75f0facfbe60655f81ee6cf0006dd9cb878f0a5c13d4ac1df6699bd505eab556c09aa7399e6d058aeaf7d79ecf72e5bd3323ffa209c8", 0x36}, {&(0x7f0000003340)="5781c02caeb7dd56bda73ecac48cd19fee22d0b2a213ed4f9277b09f3e388eb3753d693d5ad38d5ea608147c1b12c38c78ed9827d99fb278ab3a8e3c1b8c1714cc6698605d8e76adf77e3139befdb2e9e130f52e5b3b17714413f44acfe15cf905d09c07a5edcdef128ca725dd647c1e612fc9d67a795313b5f78489bbfa44416ce6c3c00ffb702186439e03d8557d0ca87dc36142e575a9983b6e5aa8f3b70906a89d4d516ebca5dc84133452726d46f44e0f7e65762d7eeedbe098b83c11", 0xbf}, {&(0x7f0000003400)="dd78bb90cf0e0648ae52f2da7bbb802d5e33a7e8be6cfbbd641aa59b1acfe9a9a59e11a94b7e7caa4e0f6c7e02c3e6c727b45a2a495c282acac86630fb5851211df85f962a7cfaabf82dd4afa4fb8a87071504a3d69846d0822d4554a6b87077211661e00c5272e83f727b5da7291ce8317b42821a3a703ba66914c26fb4c87916b219ea1cc7237eb8e7418f48da36d17d19", 0x92}, {&(0x7f00000034c0)="a690c518134e957ae7d60dd0659d3e1a96378993f202773dc1fed9ed9ced10ebaa5639882fa2cb32478a7be080c621b149", 0x31}, {0xfffffffffffffffd}, {&(0x7f0000003500)="906b3d76c2bce91caf96ce0e5e22568db56a", 0x12}], 0x6, 0x7, 0xf54) write$binfmt_aout(0xffffffffffffffff, &(0x7f00000035c0)={{0x1c4, 0x3f, 0x4, 0x168, 0xf7, 0x7, 0x1de, 0x2}, "cd01eb44ba020f33185ddd22bc097d8f897eeb4360d8cfd9803af5a35ede9986f1518f806dd021fe31d65a73791d9b3176d5638e219228945e6960f93b18c692168ee292a5d5952460788ef02d689c5dcefb131e985410c5f1ed1c309842b5e2a9d9146e9eac678c67488897d71e3fc7c68780ed524ea05bf6fe2bd09f88ef4dcf8fdca01f356809a7c073798b8dad0de729d22b902ab3fe6716486f7b6f91b26ab6a4416558ab3522a2b92078995c84de5d346429a538a30f231a78935c8d4c3f97e054409f4b989f961db478db39857151c3b7ba529683724040fb986cdb13a5e224a6a6e158f706be66", ['\x00', '\x00', '\x00', '\x00']}, 0x50b) perf_event_open(&(0x7f0000003b00)={0x3, 0x80, 0x5a, 0x80, 0xff, 0x6, 0x0, 0x1, 0x82920, 0x2, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x9}, 0x82ba, 0x8, 0x9, 0x8, 0x3, 0xfffffff9, 0x0, 0x0, 0x7, 0x0, 0x7f}, 0x0, 0x0, r3, 0xa) 14:07:26 executing program 1: ioctl$TIOCSRS485(0xffffffffffffffff, 0x542f, &(0x7f0000000000)={0x7, 0x3, 0x101}) ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x2) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000000040)={{0x0, 0x1000, 0x10000, 0x19, 0x0, 0x4, 0x5afd, 0x8, 0x100, 0x1ff, 0x1, 0xab3, 0xda8, 0x5, 0x7f}}) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000001040)={{r0, 0xda8, 0x1f, 0x5, 0x4, 0x6, 0x8d5, 0x3, 0x80000001, 0x1000, 0x3, 0x40, 0x9, 0x1, 0x8}}) r1 = fspick(0xffffffffffffffff, &(0x7f0000002040)='./file0\x00', 0x1) ioctl$FAT_IOCTL_GET_VOLUME_ID(r1, 0x80047213, &(0x7f0000002080)) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r1) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000020c0)={{0x1, 0x1, 0x18, r1, {0x2, 0x100}}, './file0\x00'}) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000002100)) ioctl$PIO_CMAP(r2, 0x4b71, &(0x7f0000002140)={0x7ad4, 0x1, 0xb4a9, 0x1, 0xff, 0x80000000}) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000002180)={{0x1, 0x1, 0x18, r1, {0x81}}, './file0\x00'}) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r3, 0xc018620c, &(0x7f00000021c0)={0x1}) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0xe, 0x100010, r4, 0x50aae000) socket$inet6_udp(0xa, 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f0000002200)={{0x1, 0x1, 0x18, r3, {0x6}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000002240)={{0x1, 0x1, 0x18, r3, {0xfffffeff}}, './file0\x00'}) ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r6, 0x8983, &(0x7f0000002280)={0x2, 'wg0\x00', {0x880}, 0x7fff}) open_tree(r2, &(0x7f00000022c0)='./file0\x00', 0x900) ioctl$FS_IOC_READ_VERITY_METADATA(r5, 0xc0286687, &(0x7f0000002380)={0x1, 0x4, 0x54, &(0x7f0000002300)=""/84}) 14:07:26 executing program 2: ioctl$PIO_CMAP(0xffffffffffffffff, 0x4b71, &(0x7f0000000000)={0x0, 0x6, 0x7, 0x3, 0xffffffff, 0x80}) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000100)=[{&(0x7f00000000c0)=""/10, 0xa}], 0x1, &(0x7f0000000140)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0xb8}, 0x1) ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000240)={0x400, 0x4, 0x2, 0x0, 0x10, "60e372c4bbe45fd0"}) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x80, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r5 = syz_open_procfs(r2, &(0x7f0000000300)='net/protocols\x00') ioctl$KDGETMODE(r5, 0x4b3b, &(0x7f0000000340)) getsockname$packet(r5, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f00000003c0)=0x14) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000400)={r6, 0x1, 0x6, @multicast}, 0x10) r7 = fork() ptrace$setopts(0x6, r7, 0x0, 0x10) r8 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000480), 0xffffffffffffffff) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r4, &(0x7f0000000580)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x60, r8, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfff}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfffffffa}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x52}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x3f}, @TIPC_NLA_NET_ID={0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xff}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x1000}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000}, 0x8000) r9 = signalfd4(r4, &(0x7f00000005c0)={[0x80]}, 0x8, 0x80000) fsetxattr$security_evm(r9, &(0x7f0000000600), &(0x7f0000000640)=@ng={0x4, 0x12, "9c431695"}, 0x6, 0x1) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r9, 0xc0189378, &(0x7f0000000680)={{0x1, 0x1, 0x18, r0, {r3}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r10, 0x1, r0, &(0x7f00000006c0)={0x90002000}) setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f0000000700)={r6, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}}, 0x10) r11 = signalfd4(0xffffffffffffffff, &(0x7f0000000740)={[0x5]}, 0x8, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r10, 0xc0189375, &(0x7f0000000780)={{0x1, 0x1, 0x18, r11}, './file0\x00'}) 14:07:26 executing program 3: getsockname$unix(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x6e) r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80, 0x6) lremovexattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=@random={'system.', '\x00'}) r1 = syz_open_dev$vcsa(&(0x7f0000000180), 0xfff, 0x24080) ioctl$AUTOFS_IOC_ASKUMOUNT(r1, 0x80049370, &(0x7f00000001c0)) fchownat(r1, &(0x7f0000000200)='./file1\x00', 0xffffffffffffffff, 0xee00, 0x100) write(r0, &(0x7f0000000240)="db81134d8ff201d574a8df37091c6925a07d328e7e180415c31681a831c058cc0a45a43715dd9aa63421077c75f7411e4e3a0872cc47d89e3dffb6448364dd08d8ff3d23634b093ed881291f818ced91fdc9552bcb7e9744c6c038196d6b5ae094a3e5a2761fea8b28f0b314c7571bbc841f5856e860a81567dff36b9decaa78ebea5acdec544f139d4a099ae445a1fea1b909e3a8ec513215c9996cd9912956dc2feaad2eecadab59121d5b659657", 0xaf) perf_event_open(&(0x7f0000000300)={0x4, 0x80, 0x7, 0x8, 0xfb, 0x0, 0x0, 0x8, 0x20900, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0x9e, 0x80000001}, 0x800, 0x9, 0xfffff9c8, 0x2, 0x25a, 0x4, 0xbf, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xf, r1, 0x3) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./file1/file0\x00', 0xc800, 0x100) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, r0, {0x0, 0xffffffffffffffff}}, './file0\x00'}) ioctl$FS_IOC_SETVERSION(r4, 0x40087602, &(0x7f0000000440)=0xffffffff) ioctl$BTRFS_IOC_ADD_DEV(r0, 0x5000940a, &(0x7f0000000480)={{r2}, "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"}) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000001480)={r3, 0x0, 0x7, 0x8}) setxattr$security_selinux(&(0x7f00000014c0)='./file0\x00', &(0x7f0000001500), &(0x7f0000001540)='system_u:object_r:run_init_exec_t:s0\x00', 0x25, 0x3) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4000000, 0x10, r3, 0x10000000) r6 = dup3(r3, r4, 0x0) r7 = syz_open_dev$usbmon(&(0x7f00000015c0), 0x7, 0x840) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000001600)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x4, 0x0, r6, &(0x7f0000001580)={0x8}, r7, 0x1, 0x0, 0x1, {0x0, r8}}, 0xa5) 14:07:26 executing program 4: ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000000)={0x80, 0xe35}) connect$netlink(0xffffffffffffffff, &(0x7f0000000040)=@unspec, 0xc) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00') setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f00000000c0)=0x800, 0x2) r1 = syz_open_dev$vcsa(&(0x7f0000000100), 0x7ff, 0x2) ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000140)={'\x00', 0x8190, 0x7f, 0x10001, 0x0, 0x100}) sendmsg$NL80211_CMD_DEL_NAN_FUNCTION(r1, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x64, 0x0, 0x70c, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x7, 0x68}}}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x3c}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x3f}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x13}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x61}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x41}]}, 0x64}, 0x1, 0x0, 0x0, 0x40000}, 0x4004811) ioctl$CDROM_SEND_PACKET(r1, 0x5393, &(0x7f00000003c0)={"c3a7d7765b4382003c2ac503", &(0x7f0000000300)="4389fac45d555b76a72ab1fc8dbf6dfc7ca155bab8089f9f69e3a4b283df49fea718617b5f10ec812a42a2ea66127d", 0x2f, 0x8, &(0x7f0000000340)={0x0, 0x0, 0x39, 0x2, 0x0, 0x1, 0x0, "e5b5d1e5", 0x1, "a0b98f0b", 0x40, 0x7, 0x5, "6bb32b", "93bffd744aedf3b273c6ca9cdc31ac5651625ec866bc2ba74263416f7715c2a65b124f0f0bbde90632603a237065"}, 0x0, 0x4, 0x3, &(0x7f0000000380)}) ioctl$F2FS_IOC_ABORT_VOLATILE_WRITE(r0, 0xf505, 0x0) sendmsg$NL80211_CMD_SET_STATION(r1, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x28, 0x0, 0x8, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3ff, 0x57}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x4004}, 0x4000) fcntl$getownex(r1, 0x10, &(0x7f0000000500)) ioctl$CDROMEJECT_SW(r1, 0x530f, 0x1) r2 = signalfd(r0, &(0x7f0000000540)={[0xdd]}, 0x8) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r2, 0xc0406619, &(0x7f0000000580)={@desc={0x1, 0x0, @auto="bef0fc1fafa91c19"}}) r3 = syz_open_dev$vcsu(&(0x7f00000005c0), 0x6d, 0x404001) ioctl$TUNSETGROUP(r3, 0x400454ce, 0xee01) ioctl$CDROM_TIMED_MEDIA_CHANGE(r1, 0x5396, &(0x7f0000000600)={0x6b9, 0x1}) r4 = openat$null(0xffffffffffffff9c, &(0x7f0000000640), 0x20a060, 0x0) sendmsg$NL80211_CMD_DEL_PMK(r4, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x70, 0x0, 0x10, 0x70bd28, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0xffff, 0x60}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x1) ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, &(0x7f0000000800)) 14:07:26 executing program 5: sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0xd22, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000010}, 0x1) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r1, 0x820, 0x70bd2b, 0x25dfdbfc, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x1f}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5, 0x34, 0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x4048001}, 0x4001) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_CHANNEL(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x40, r3, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xfff, 0x2c}}}}, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x33}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x273}]}, 0x40}, 0x1, 0x0, 0x0, 0x4840}, 0x8000) sendmsg$WG_CMD_GET_DEVICE(0xffffffffffffffff, &(0x7f0000000e80)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000e40)={&(0x7f0000000400)={0xa10, 0x0, 0x808, 0x70bd2d, 0x25dfdbfd, {}, [@WGDEVICE_A_PEERS={0x9d0, 0x8, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @broadcast}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e21, @multicast2}}, @WGPEER_A_FLAGS={0x8}]}, {0x14, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x5}, @WGPEER_A_FLAGS={0x8, 0x3, 0x1}]}, {0x20, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @multicast2}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x183}]}, {0x95c, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x344, 0x9, 0x0, 0x1, [{0x4}, {0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}]}, {0xe8, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x20}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @private=0xa010101}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}]}, {0xac, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x2e}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x37}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x22}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}]}, {0xc4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_ALLOWEDIPS={0xb0, 0x9, 0x0, 0x1, [{0xac, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xe}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}]}]}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @remote}}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_ALLOWEDIPS={0x508, 0x9, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @empty}}, {0x5}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x3}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x34}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0x34, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3d}}, {0x5, 0x3, 0x2}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x5, 0x3, 0x1}}]}, {0x1c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0xd0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x2a}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x1e}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x2}}]}]}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "3a80815363ba725c347586e625e63e6b2d20d2980d3ec4e94bc3af5b009a2301"}]}]}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e21}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e23}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e20}]}, 0xa10}}, 0x4011) sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, &(0x7f0000000fc0)={&(0x7f0000000ec0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000f80)={&(0x7f0000000f00)={0x44, r3, 0x400, 0x7, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x1ff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xffff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x100}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}]}, 0x44}, 0x1, 0x0, 0x0, 0x24008040}, 0x804) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r4, &(0x7f0000001140)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000001100)={&(0x7f0000001040)={0xa8, 0x0, 0x400, 0x70bd26, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @initdev={0xac, 0x1e, 0x1, 0x0}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @empty}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @local}, @NLBL_UNLABEL_A_SECCTX={0x2c, 0x7, 'system_u:object_r:restorecond_exec_t:s0\x00'}]}, 0xa8}, 0x1, 0x0, 0x0, 0x84}, 0x4000000) ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f00000011c0)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_CHANNEL(r4, &(0x7f0000001280)={&(0x7f0000001180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001240)={&(0x7f0000001200)={0x2c, 0x0, 0x10, 0x70bd27, 0x25dfdbfe, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0xe}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x880}, 0x60) r6 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001300), 0xffffffffffffffff) sendmsg$TIPC_NL_MON_PEER_GET(r6, &(0x7f00000014c0)={&(0x7f00000012c0)={0x10, 0x0, 0x0, 0x7d425df95ccf67b8}, 0xc, &(0x7f0000001480)={&(0x7f0000001340)={0x138, r7, 0x801, 0x70bd29, 0x2000, {}, [@TIPC_NLA_SOCK={0x68, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x10001}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x456}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1000}, @TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0x3}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x2c}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x7ff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x80}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_MEDIA={0xbc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1ff}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x16}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8001}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xc1f7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x4}, 0x40000000) sendmsg$IPVS_CMD_GET_SERVICE(r6, &(0x7f0000001600)={&(0x7f0000001500)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000015c0)={&(0x7f0000001540)={0x50, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth1\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x4}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'wg0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xc0}, 0x4004404) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000001640), 0xffffffffffffffff) [ 68.530517] audit: type=1400 audit(1664374046.588:6): avc: denied { execmem } for pid=284 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 14:07:26 executing program 6: r0 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000080)={0x0, @remote, @private}, &(0x7f00000000c0)=0xc) getpeername$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) r3 = accept4$packet(0xffffffffffffffff, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14, 0x80000) sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000200)={0x294, r0, 0x8, 0x70bd2b, 0x25dfdbff, {}, [{{0x8}, {0x3c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3}}}]}}, {{0x8, 0x1, r1}, {0x170, 0x2, 0x0, 0x1, [{0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8}}, {0x8}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r2}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0x9}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8}}, {0x8, 0x6, r4}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}, {{0x8}, {0xbc, 0x2, 0x0, 0x1, [{0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x8001, 0x3f, 0x80, 0x51d2}, {0x2, 0x80, 0x5, 0xa69}]}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}]}}]}, 0x294}, 0x1, 0x0, 0x0, 0x4000}, 0x4000001) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(0xffffffffffffffff, 0x89fb, &(0x7f00000005c0)={'ip6tnl0\x00', &(0x7f0000000540)={'ip6gre0\x00', r1, 0x4, 0x2, 0x7f, 0x1c, 0x8, @private0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8, 0x10, 0x4, 0x10000}}) sendmsg$NL80211_CMD_SET_KEY(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000640)={0x2c, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x80, 0x61}}}}, [@NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, 'Yk9sp'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x2c044400) ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000700)={r3, 0x6, 0x7, 0x180000000000}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f00000007c0)={'syztnl0\x00', &(0x7f0000000740)={'ip6_vti0\x00', r4, 0x29, 0x7, 0x61, 0x1, 0x20, @private0={0xfc, 0x0, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @private=0xa010101}, 0x80, 0x0, 0x1f, 0x4}}) setsockopt$inet6_IPV6_PKTINFO(r5, 0x29, 0x32, &(0x7f0000000800)={@empty, r6}, 0x14) sendmsg$AUDIT_USER_TTY(r5, &(0x7f00000009c0)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000880)={0xc4, 0x464, 0x400, 0x70bd25, 0x25dfdbfe, "a6cdb69283250cc5eb5aee2f4fd448ce9191186446b9e423a0470f9abdf901999145b354ecf1b7789cbee56286b978e28370a5fb3ff9a4b682244dd2243ef17f352b80888cb26572a57c63d9c67d675e307d19cd43035058e8950765c78c285d31f6cbd2303a9b1f2b1bc130de13810679963d70b44f4e702a389a533ddc3dabb829240a50e79822a2a0686d76ea00efd57b7e031b403c2db45c96fabf812b77871a1cd73dae390d5da6cffa0fa6454fb0", ["", "", "", ""]}, 0xc4}, 0x1, 0x0, 0x0, 0x4040010}, 0x0) recvfrom(r3, &(0x7f0000000a00)=""/226, 0xe2, 0x3, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000b80)={'ip6gre0\x00', &(0x7f0000000b00)={'syztnl2\x00', 0x0, 0x2f, 0x4, 0x81, 0x5, 0x45, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @empty, 0x7800, 0x89, 0x7}}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r5, 0xc018937e, &(0x7f0000000bc0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x1}}, './file0\x00'}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r7, 0x89f2, &(0x7f0000000c80)={'ip6_vti0\x00', &(0x7f0000000c00)={'syztnl0\x00', r2, 0x2f, 0x2c, 0x7, 0x2, 0x27, @private1, @empty, 0x7800, 0x40, 0x8, 0x81}}) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r7, 0x89f0, &(0x7f0000000f40)={'ip6tnl0\x00', &(0x7f0000000ec0)={'syztnl0\x00', r2, 0x2f, 0x48, 0xc3, 0xffffffff, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, 0x700, 0x1, 0x7}}) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r7, 0x89fb, &(0x7f0000001000)={'ip6gre0\x00', &(0x7f0000000f80)={'ip6_vti0\x00', r8, 0x4, 0xe, 0x0, 0xd36c, 0x4, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x10, 0x1, 0x2d90, 0x1e}}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r7, 0x89f0, &(0x7f00000011c0)={'erspan0\x00', &(0x7f0000001080)={'tunl0\x00', r2, 0x8000, 0xa0dfba64e73f21c5, 0x101, 0x3, {{0x3f, 0x4, 0x2, 0x19, 0xfc, 0x66, 0x0, 0x80, 0x2f, 0x0, @remote, @broadcast, {[@timestamp_addr={0x44, 0x34, 0xc1, 0x1, 0x1, [{@private=0xa010102, 0x7}, {@remote, 0x1ff}, {@private=0xa010102, 0x8}, {@dev={0xac, 0x14, 0x14, 0x27}, 0x48431537}, {@empty, 0x3}, {@broadcast}]}, @rr={0x7, 0x2b, 0x7b, [@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, @dev={0xac, 0x14, 0x14, 0xe}, @multicast1, @loopback, @rand_addr=0x64010102, @loopback, @multicast2, @multicast1]}, @ra={0x94, 0x4, 0x1}, @cipso={0x86, 0x8, 0x1, [{0x0, 0x2}]}, @timestamp_addr={0x44, 0xc, 0xe2, 0x1, 0x5, [{@loopback, 0x393151cd}]}, @rr={0x7, 0x23, 0x1e, [@remote, @broadcast, @broadcast, @multicast1, @multicast2, @local, @multicast1, @broadcast]}, @timestamp={0x44, 0xc, 0x6, 0x0, 0x6, [0x80000001, 0xa37]}, @timestamp_prespec={0x44, 0x14, 0x82, 0x3, 0xe, [{@loopback, 0x1e}, {@broadcast, 0x8001}]}, @rr={0x7, 0x7, 0x46, [@private=0xa010100]}, @ssrr={0x89, 0x27, 0x2f, [@broadcast, @empty, @initdev={0xac, 0x1e, 0x1, 0x0}, @remote, @initdev={0xac, 0x1e, 0x1, 0x0}, @dev={0xac, 0x14, 0x14, 0x1d}, @dev={0xac, 0x14, 0x14, 0x44}, @loopback, @loopback]}]}}}}}) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000001200)={@private2, r9}, 0x14) ioctl$sock_inet6_SIOCDELRT(0xffffffffffffffff, 0x890c, &(0x7f0000001280)={@private0={0xfc, 0x0, '\x00', 0x1}, @mcast2, @local, 0x47, 0x101, 0x3, 0x0, 0xff, 0x20000a}) 14:07:26 executing program 7: ioctl$SG_GET_TIMEOUT(0xffffffffffffffff, 0x2202, 0x0) ioctl$FS_IOC_SETVERSION(0xffffffffffffffff, 0x40087602, &(0x7f0000000000)=0x80) pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SG_GET_NUM_WAITING(0xffffffffffffffff, 0x227d, &(0x7f00000000c0)) r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f00000005c0), 0x189200, 0x0) write$P9_RMKDIR(r4, &(0x7f0000000600)={0x14, 0x49, 0x2, {0x1, 0x3, 0x7}}, 0x14) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000640)={0x60000018}) r5 = syz_io_uring_complete(0x0) ioctl$TIOCOUTQ(r5, 0x5411, &(0x7f0000000680)) ioctl$SCSI_IOCTL_DOORLOCK(r3, 0x5380) ioctl$BTRFS_IOC_BALANCE_V2(r2, 0xc4009420, &(0x7f00000006c0)={0x1, 0x1, {0x8001, @usage, 0x0, 0x7, 0x1, 0xfffffffffffffffc, 0x0, 0xff, 0x2, @usage=0x7fffffff, 0x4, 0x4, [0x8ea5, 0x8, 0x8000000000, 0x47e, 0x0, 0x3]}, {0x7, @usage=0x7, 0x0, 0x9, 0x0, 0x80000000, 0x7, 0x8000, 0x20, @struct={0x7, 0x1}, 0x401, 0x9, [0x9, 0x12440, 0x8, 0x7fffffff, 0x81, 0x2]}, {0x7ff, @struct={0xff, 0x5b9}, 0x0, 0x6, 0x101, 0x6, 0x40ba, 0xffffffffffffa2c7, 0x40, @usage=0x6, 0x3, 0x3, [0x40, 0x7, 0x7, 0xffffffffffffff8c, 0x1, 0x9]}, {0x100000001, 0x2, 0x8}}) ioctl$BTRFS_IOC_BALANCE_V2(r5, 0xc4009420, &(0x7f0000000ac0)={0x0, 0x0, {0x6, @struct={0x7, 0x100000}, 0x0, 0x43e8924b, 0xfff, 0x7874, 0xfffffffffffffff9, 0x2, 0x40, @usage=0x77d, 0x7fff, 0x6, [0x2, 0x6, 0x80, 0xffffffffffffffc0, 0xf4, 0x4]}, {0x9, @struct={0x4, 0x7ff}, r6, 0x8, 0x101, 0x31dce835, 0x1f, 0x70a5, 0x21, @struct={0x9ca8, 0x81}, 0x0, 0x6, [0x3c8, 0xff, 0x2, 0xc20, 0x6, 0x1f]}, {0xfffffffffffffffa, @struct={0xffff8000, 0x80000001}, 0x0, 0x4, 0x3d2926f4, 0x12000000000000, 0x3ff, 0xb8, 0x8, @usage=0xfffffffffffffffa, 0x1, 0x489, [0xffffffff, 0x8, 0x1000, 0x4, 0x2d57, 0x9]}, {0x8000000000000000, 0x5, 0x9}}) r7 = open_tree(r1, &(0x7f0000000ec0)='./file0\x00', 0x9000) ioctl$TIOCGISO7816(r1, 0x80285442, &(0x7f0000000f00)) fcntl$getownex(r5, 0x10, &(0x7f0000000f40)={0x0, 0x0}) syz_open_procfs(r8, &(0x7f0000000f80)='net/nfsfs\x00') mount_setattr(r1, &(0x7f0000000fc0)='./file0\x00', 0x11800, &(0x7f0000001000)={0x80, 0x4, 0xc0000, {r7}}, 0x20) r9 = syz_mount_image$vfat(&(0x7f0000001040), &(0x7f0000001080)='./file0\x00', 0x3, 0x5, &(0x7f00000013c0)=[{&(0x7f00000010c0)="b676983bc5105d15b7ef532bb0fc5b731819ca4078db7cb9384ba6846b4c6b67420e89eeafa4adf9c2a3a1a0ce0b7c7d55657035a04af2b1ae2ce598393d5e7cf8dea7d5c6a6f885878e22a827726ea8a785a09e7beea6867e019348a4552b9329b5ff0aac75276eca25cfbcc2de063b5088e831dccd240543f3276854a11695b57959e8a983636bb721630afa22a32b476e5310d7ec62953efb45e60d6ac7d58f8ee0d06a84", 0xa6, 0x5}, {&(0x7f0000001180)="ac9dfbf6114a0e1349098184b413732b3852f34a1cc50e7aea87160210e0c6cd7628c592bf844f2ac5138ea565bf5f78d0a74349988ed59563665198f0a7b8a4711a4578a8840bbd8b4546b11f82c57094dd37d767962d58f579bbf0a153ab1a95268e5d50d04025", 0x68, 0x40}, {&(0x7f0000001200)="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", 0xff, 0x80000001}, {&(0x7f0000001300)="51519d61ecfea54ad9a7793b07896928965e8fa20cb56f1482fbe86a71b5bfc14bd7e616718d0bf787a6511614408853af2f8aa8a4fd0c19393608f013c17701e7bd1fb220e3fa3329", 0x49, 0x100000000}, {&(0x7f0000001380)="dcf10e8ae36cec52296b5f", 0xb, 0x7fff}], 0x2000020, &(0x7f0000001440)={[{@rodir}, {@utf8no}, {@rodir}, {@numtail}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@numtail}, {@shortname_mixed}], [{@hash}]}) openat(r9, &(0x7f00000014c0)='./file0\x00', 0x2000, 0x80) [ 69.898208] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 69.900181] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 69.901575] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 69.905177] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 69.908853] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 69.909958] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 69.910393] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 69.912472] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 69.913072] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 69.914912] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 69.916166] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 69.918435] Bluetooth: hci1: HCI_REQ-0x0c1a [ 69.920012] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 69.929110] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 69.931283] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 69.933979] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 69.937745] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 69.947764] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 69.949004] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 69.952245] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 69.953535] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 69.954972] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 69.955472] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 69.957664] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 69.958964] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 69.963995] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 69.965264] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 69.969925] Bluetooth: hci0: HCI_REQ-0x0c1a [ 69.970891] Bluetooth: hci3: HCI_REQ-0x0c1a [ 69.971990] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 69.972312] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 69.979235] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 69.980518] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 70.002204] Bluetooth: hci2: HCI_REQ-0x0c1a [ 70.014120] Bluetooth: hci4: HCI_REQ-0x0c1a [ 70.061673] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 70.061971] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 70.075030] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 70.076748] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 70.078562] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 70.082248] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 70.085155] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 70.088236] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 70.090920] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 70.093021] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 70.094081] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 70.099419] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 70.111891] Bluetooth: hci5: HCI_REQ-0x0c1a [ 70.123097] Bluetooth: hci6: HCI_REQ-0x0c1a [ 71.971420] Bluetooth: hci1: command 0x0409 tx timeout [ 72.033915] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 72.034143] Bluetooth: hci0: command 0x0409 tx timeout [ 72.035303] Bluetooth: hci2: command 0x0409 tx timeout [ 72.035818] Bluetooth: hci4: command 0x0409 tx timeout [ 72.036459] Bluetooth: hci3: command 0x0409 tx timeout [ 72.161875] Bluetooth: hci6: command 0x0409 tx timeout [ 72.162627] Bluetooth: hci5: command 0x0409 tx timeout [ 74.018834] Bluetooth: hci1: command 0x041b tx timeout [ 74.081890] Bluetooth: hci4: command 0x041b tx timeout [ 74.082340] Bluetooth: hci3: command 0x041b tx timeout [ 74.082743] Bluetooth: hci2: command 0x041b tx timeout [ 74.083381] Bluetooth: hci0: command 0x041b tx timeout [ 74.209886] Bluetooth: hci5: command 0x041b tx timeout [ 74.210327] Bluetooth: hci6: command 0x041b tx timeout [ 76.065818] Bluetooth: hci1: command 0x040f tx timeout [ 76.129884] Bluetooth: hci0: command 0x040f tx timeout [ 76.129913] Bluetooth: hci2: command 0x040f tx timeout [ 76.130312] Bluetooth: hci3: command 0x040f tx timeout [ 76.130757] Bluetooth: hci4: command 0x040f tx timeout [ 76.257832] Bluetooth: hci6: command 0x040f tx timeout [ 76.257845] Bluetooth: hci5: command 0x040f tx timeout [ 77.089846] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 78.113877] Bluetooth: hci1: command 0x0419 tx timeout [ 78.177909] Bluetooth: hci3: command 0x0419 tx timeout [ 78.178827] Bluetooth: hci2: command 0x0419 tx timeout [ 78.179385] Bluetooth: hci4: command 0x0419 tx timeout [ 78.180739] Bluetooth: hci0: command 0x0419 tx timeout [ 78.305997] Bluetooth: hci5: command 0x0419 tx timeout [ 78.306037] Bluetooth: hci6: command 0x0419 tx timeout [ 79.891105] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 79.894248] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 79.898747] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 79.906071] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 79.911053] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 79.913765] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 79.922697] Bluetooth: hci7: HCI_REQ-0x0c1a [ 81.953909] Bluetooth: hci7: command 0x0409 tx timeout [ 84.001873] Bluetooth: hci7: command 0x041b tx timeout [ 86.049854] Bluetooth: hci7: command 0x040f tx timeout [ 88.099395] Bluetooth: hci7: command 0x0419 tx timeout 14:08:22 executing program 4: r0 = gettid() r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x48, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000000)={0x3, 0x80, 0x0, 0x20, 0x33, 0x9, 0x0, 0x0, 0xb6d30, 0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x2, 0x2, @perf_config_ext={0x0, 0x8}, 0x220, 0x1000000000000006, 0x0, 0x5, 0x3, 0x4081, 0x1003, 0x0, 0x50a, 0x0, 0xfffffffffffffffb}, r0, 0x2000200000d, r1, 0x9) r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) ftruncate(r2, 0x421) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r3, &(0x7f0000000080)="01", 0x41030) sendfile(r1, r2, &(0x7f0000000140)=0xffffffff, 0x2) [ 124.410481] audit: type=1400 audit(1664374102.468:7): avc: denied { open } for pid=3776 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.428674] audit: type=1400 audit(1664374102.486:8): avc: denied { kernel } for pid=3776 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 124.435827] ------------[ cut here ]------------ [ 124.436370] WARNING: CPU: 0 PID: 3775 at kernel/events/core.c:2233 event_filter_match+0x422/0x660 [ 124.437059] Modules linked in: [ 124.437306] CPU: 0 PID: 3775 Comm: modprobe Not tainted 6.0.0-rc7-next-20220927 #1 [ 124.437879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 124.438743] RIP: 0010:event_filter_match+0x422/0x660 [ 124.439141] Code: 00 00 00 e9 7c fc ff ff e8 bb 2e f1 ff 65 8b 2d 30 94 ad 7e 31 ff 89 ee e8 5b 2b f1 ff 85 ed 0f 84 ef 00 00 00 e8 9e 2e f1 ff <0f> 0b eb 9f e8 45 a5 23 00 e9 17 fc ff ff e8 8b 2e f1 ff 48 8d 7b [ 124.441179] RSP: 0018:ffff88806ce09c70 EFLAGS: 00010046 [ 124.442040] RAX: 0000000080010001 RBX: ffff88801d490000 RCX: 0000000000000000 [ 124.442580] RDX: ffff88801a691ac0 RSI: ffffffff8154e1a2 RDI: 0000000000000005 [ 124.443125] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000001 [ 124.443672] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88801d490220 [ 124.444220] R13: 0000000000000000 R14: ffff88801d4900a8 R15: ffff88801d490220 [ 124.444760] FS: 0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 124.445378] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.445838] CR2: 000056075c79b9d8 CR3: 000000000d900000 CR4: 0000000000350ef0 [ 124.446389] Call Trace: [ 124.446591] [ 124.446760] merge_sched_in+0x107/0x1110 [ 124.447089] visit_groups_merge.constprop.0.isra.0+0x4fc/0xef0 [ 124.447551] ? merge_sched_in+0x1110/0x1110 [ 124.447880] ? lock_is_held_type+0xd7/0x130 [ 124.448226] ctx_sched_in+0x2e6/0x770 [ 124.448524] ? lock_acquire+0x1b2/0x530 [ 124.448844] ? visit_groups_merge.constprop.0.isra.0+0xef0/0xef0 [ 124.449329] ? lock_is_held_type+0xd7/0x130 [ 124.449666] perf_event_sched_in+0x75/0x80 [ 124.449997] ctx_resched+0x1ce/0x390 [ 124.450286] __perf_install_in_context+0x285/0x9c0 [ 124.450668] ? ctx_resched+0x390/0x390 [ 124.450976] remote_function+0x125/0x1b0 [ 124.451298] __flush_smp_call_function_queue+0x1df/0x5a0 [ 124.451710] ? perf_duration_warn+0x40/0x40 [ 124.452061] __sysvec_call_function_single+0x92/0x3a0 [ 124.452467] sysvec_call_function_single+0x89/0xc0 [ 124.452851] [ 124.453027] [ 124.453201] asm_sysvec_call_function_single+0x16/0x20 [ 124.453609] RIP: 0010:__memset+0x24/0x40 [ 124.453941] Code: cc cc cc cc cc cc 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 dd 95 4b 00 66 66 2e 0f 1f 84 00 [ 124.455286] RSP: 0018:ffff88803c087398 EFLAGS: 00000212 [ 124.455682] RAX: 0000000000000000 RBX: ffff88803c087488 RCX: 0000000000000004 [ 124.456206] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88803c087440 [ 124.456735] RBP: ffff88801a691ac0 R08: 0000000000000001 R09: ffff88803c0873f0 [ 124.457266] R10: ffffed1007810e8b R11: 0000000000000001 R12: 0000000000000000 [ 124.457799] R13: ffff88803c087418 R14: ffff88801a691ac0 R15: ffff88803c0873f0 [ 124.458338] __unwind_start+0x2a/0x7c0 [ 124.458643] ? find_held_lock+0x2c/0x110 [ 124.458953] ? write_profile+0x3a0/0x3a0 [ 124.459271] arch_stack_walk+0x5f/0xf0 [ 124.459580] ? unwind_next_frame+0xe06/0x20b0 [ 124.459933] stack_trace_save+0x8c/0xc0 [ 124.460242] ? filter_irq_stacks+0x90/0x90 [ 124.460563] ? __is_insn_slot_addr+0x144/0x250 [ 124.460927] ? __lock_acquire+0xbad/0x5e70 [ 124.461253] kasan_save_stack+0x1e/0x40 [ 124.461570] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 124.461980] ? stack_trace_save+0x8c/0xc0 [ 124.462312] ? lock_is_held_type+0xd7/0x130 [ 124.462642] ? find_held_lock+0x2c/0x110 [ 124.462956] ? lock_release+0x3b2/0x750 [ 124.463263] ? rcu_read_unlock+0x9/0x60 [ 124.463569] ? lock_downgrade+0x6d0/0x6d0 [ 124.463892] ? lock_is_held_type+0xd7/0x130 [ 124.464225] kasan_set_track+0x21/0x30 [ 124.464527] __kasan_slab_alloc+0x58/0x70 [ 124.464845] kmem_cache_alloc+0x1a9/0x3e0 [ 124.465169] vm_area_dup+0x7f/0x230 [ 124.465465] ? lock_acquire+0x1b2/0x530 [ 124.465794] ? lock_is_held_type+0xd7/0x130 [ 124.466119] ? find_held_lock+0x2c/0x110 [ 124.466432] ? lock_release+0x3b2/0x750 [ 124.466734] ? kmem_cache_alloc_bulk+0x414/0x7d0 [ 124.467102] ? lock_is_held_type+0xd7/0x130 [ 124.467427] ? vm_area_alloc+0x100/0x100 [ 124.467741] ? mas_next_nentry+0x5dc/0xa00 [ 124.468075] ? mas_find+0x209/0xdd0 [ 124.468362] __split_vma+0xa2/0x5d0 [ 124.468646] ? mas_preallocate+0x15f/0x360 [ 124.468970] do_mas_align_munmap.constprop.0+0x62d/0x1000 [ 124.469402] ? __split_vma+0x5d0/0x5d0 [ 124.469709] ? mas_walk+0x48a/0x670 [ 124.469997] ? mas_find+0x209/0xdd0 [ 124.470281] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 124.470685] do_mas_munmap+0x1e8/0x2b0 [ 124.470984] mmap_region+0x21c/0x1a00 [ 124.471286] ? lock_release+0x750/0x750 [ 124.471590] ? inode_has_perm+0x171/0x1d0 [ 124.471912] ? do_munmap+0x100/0x100 [ 124.472205] ? security_mmap_addr+0x79/0xa0 [ 124.472540] ? get_unmapped_area+0x1e5/0x3e0 [ 124.472881] do_mmap+0x828/0xf40 [ 124.473156] vm_mmap_pgoff+0x1af/0x270 [ 124.473459] ? randomize_page+0xb0/0xb0 [ 124.473776] ksys_mmap_pgoff+0x3d0/0x4f0 [ 124.474096] do_syscall_64+0x3b/0x90 [ 124.474381] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.474770] RIP: 0033:0x7f3a8cc45d82 [ 124.475048] Code: eb aa 66 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 33 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 56 5b 5d c3 0f 1f 00 c7 05 ae 03 01 00 16 00 [ 124.476394] RSP: 002b:00007fff04e85848 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 124.476958] RAX: ffffffffffffffda RBX: 0000000000000812 RCX: 00007f3a8cc45d82 [ 124.477486] RDX: 0000000000000003 RSI: 0000000000006000 RDI: 00007f3a8c8fe000 [ 124.478038] RBP: 00007f3a8c8fe000 R08: 0000000000000000 R09: 00000000001ba000 [ 124.478567] R10: 0000000000000812 R11: 0000000000000206 R12: 00007f3a8cc24a20 [ 124.479095] R13: 00007fff04e85860 R14: 00007fff04e858f0 R15: 00007fff04e85c80 [ 124.479635] [ 124.479814] irq event stamp: 9084 [ 124.480072] hardirqs last enabled at (9083): [] _raw_spin_unlock_irqrestore+0x28/0x60 [ 124.480770] hardirqs last disabled at (9084): [] sysvec_call_function_single+0xb/0xc0 [ 124.481460] softirqs last enabled at (8830): [] __irq_exit_rcu+0x11b/0x180 [ 124.482106] softirqs last disabled at (8823): [] __irq_exit_rcu+0x11b/0x180 [ 124.482741] ---[ end trace 0000000000000000 ]--- [ 124.483126] ------------[ cut here ]------------ [ 124.483473] WARNING: CPU: 0 PID: 3775 at kernel/events/core.c:2557 merge_sched_in+0xadb/0x1110 [ 124.484113] Modules linked in: [ 124.484364] CPU: 0 PID: 3775 Comm: modprobe Tainted: G W 6.0.0-rc7-next-20220927 #1 [ 124.485035] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 124.485879] RIP: 0010:merge_sched_in+0xadb/0x1110 [ 124.486245] Code: ff ff e8 e8 08 ef ff 65 8b 05 5d 6e ab 7e 31 ff 89 c6 89 04 24 e8 85 05 ef ff 8b 04 24 85 c0 0f 84 13 02 00 00 e8 c5 08 ef ff <0f> 0b e9 c4 fb ff ff e8 b9 08 ef ff 4c 89 e8 48 05 18 01 00 00 e9 [ 124.487595] RSP: 0018:ffff88806ce09cb0 EFLAGS: 00010046 [ 124.487988] RAX: 0000000080010001 RBX: ffff88806ce3d140 RCX: 0000000000000000 [ 124.488519] RDX: ffff88801a691ac0 RSI: ffffffff8157077b RDI: 0000000000000005 [ 124.489053] RBP: ffff88801d490000 R08: 0000000000000005 R09: 0000000000000001 [ 124.489576] R10: 0000000000000000 R11: ffffffff865b401b R12: ffff88806ce3d140 [ 124.490119] R13: ffff88806ce00000 R14: ffff88801d4900a8 R15: ffff88801d490220 [ 124.490651] FS: 0000000000000000(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 124.491243] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.491678] CR2: 000056075c79b9d8 CR3: 000000000d900000 CR4: 0000000000350ef0 [ 124.492212] Call Trace: [ 124.492413] [ 124.492591] visit_groups_merge.constprop.0.isra.0+0x4fc/0xef0 [ 124.493049] ? merge_sched_in+0x1110/0x1110 [ 124.493373] ? lock_is_held_type+0xd7/0x130 [ 124.493704] ctx_sched_in+0x2e6/0x770 [ 124.494006] ? lock_acquire+0x1b2/0x530 [ 124.494315] ? visit_groups_merge.constprop.0.isra.0+0xef0/0xef0 [ 124.494772] ? lock_is_held_type+0xd7/0x130 [ 124.495110] perf_event_sched_in+0x75/0x80 [ 124.495430] ctx_resched+0x1ce/0x390 [ 124.495717] __perf_install_in_context+0x285/0x9c0 [ 124.496078] ? ctx_resched+0x390/0x390 [ 124.496367] remote_function+0x125/0x1b0 [ 124.496671] __flush_smp_call_function_queue+0x1df/0x5a0 [ 124.497060] ? perf_duration_warn+0x40/0x40 [ 124.497381] __sysvec_call_function_single+0x92/0x3a0 [ 124.497758] sysvec_call_function_single+0x89/0xc0 [ 124.498129] [ 124.498297] [ 124.498463] asm_sysvec_call_function_single+0x16/0x20 [ 124.498844] RIP: 0010:__memset+0x24/0x40 [ 124.499139] Code: cc cc cc cc cc cc 0f 1f 44 00 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 48 ab 89 d1 f3 aa 4c 89 c8 e9 dd 95 4b 00 66 66 2e 0f 1f 84 00 [ 124.500422] RSP: 0018:ffff88803c087398 EFLAGS: 00000212 [ 124.500805] RAX: 0000000000000000 RBX: ffff88803c087488 RCX: 0000000000000004 [ 124.501312] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88803c087440 [ 124.501830] RBP: ffff88801a691ac0 R08: 0000000000000001 R09: ffff88803c0873f0 [ 124.502342] R10: ffffed1007810e8b R11: 0000000000000001 R12: 0000000000000000 [ 124.502844] R13: ffff88803c087418 R14: ffff88801a691ac0 R15: ffff88803c0873f0 [ 124.503372] __unwind_start+0x2a/0x7c0 [ 124.503663] ? find_held_lock+0x2c/0x110 [ 124.503960] ? write_profile+0x3a0/0x3a0 [ 124.504259] arch_stack_walk+0x5f/0xf0 [ 124.504559] ? unwind_next_frame+0xe06/0x20b0 [ 124.504899] stack_trace_save+0x8c/0xc0 [ 124.505194] ? filter_irq_stacks+0x90/0x90 [ 124.505504] ? __is_insn_slot_addr+0x144/0x250 [ 124.505862] ? __lock_acquire+0xbad/0x5e70 [ 124.506175] kasan_save_stack+0x1e/0x40 [ 124.506480] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 124.506868] ? stack_trace_save+0x8c/0xc0 [ 124.507184] ? lock_is_held_type+0xd7/0x130 [ 124.507506] ? find_held_lock+0x2c/0x110 [ 124.507803] ? lock_release+0x3b2/0x750 [ 124.508095] ? rcu_read_unlock+0x9/0x60 [ 124.508388] ? lock_downgrade+0x6d0/0x6d0 [ 124.508696] ? lock_is_held_type+0xd7/0x130 [ 124.509017] kasan_set_track+0x21/0x30 [ 124.509308] __kasan_slab_alloc+0x58/0x70 [ 124.509613] kmem_cache_alloc+0x1a9/0x3e0 [ 124.509931] vm_area_dup+0x7f/0x230 [ 124.510206] ? lock_acquire+0x1b2/0x530 [ 124.510509] ? lock_is_held_type+0xd7/0x130 [ 124.510822] ? find_held_lock+0x2c/0x110 [ 124.511129] ? lock_release+0x3b2/0x750 [ 124.511426] ? kmem_cache_alloc_bulk+0x414/0x7d0 [ 124.511779] ? lock_is_held_type+0xd7/0x130 [ 124.512094] ? vm_area_alloc+0x100/0x100 [ 124.512396] ? mas_next_nentry+0x5dc/0xa00 [ 124.512714] ? mas_find+0x209/0xdd0 [ 124.512989] __split_vma+0xa2/0x5d0 [ 124.513259] ? mas_preallocate+0x15f/0x360 [ 124.513571] do_mas_align_munmap.constprop.0+0x62d/0x1000 [ 124.513996] ? __split_vma+0x5d0/0x5d0 [ 124.514295] ? mas_walk+0x48a/0x670 [ 124.514569] ? mas_find+0x209/0xdd0 [ 124.514843] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 124.515231] do_mas_munmap+0x1e8/0x2b0 [ 124.515526] mmap_region+0x21c/0x1a00 [ 124.515819] ? lock_release+0x750/0x750 [ 124.516112] ? inode_has_perm+0x171/0x1d0 [ 124.516415] ? do_munmap+0x100/0x100 [ 124.516695] ? security_mmap_addr+0x79/0xa0 [ 124.517013] ? get_unmapped_area+0x1e5/0x3e0 [ 124.517342] do_mmap+0x828/0xf40 [ 124.517605] vm_mmap_pgoff+0x1af/0x270 [ 124.517902] ? randomize_page+0xb0/0xb0 [ 124.518208] ksys_mmap_pgoff+0x3d0/0x4f0 [ 124.518515] do_syscall_64+0x3b/0x90 [ 124.518788] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.519163] RIP: 0033:0x7f3a8cc45d82 [ 124.519432] Code: eb aa 66 0f 1f 44 00 00 41 f7 c1 ff 0f 00 00 75 27 55 48 89 fd 53 89 cb 48 85 ff 74 33 41 89 da 48 89 ef b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 56 5b 5d c3 0f 1f 00 c7 05 ae 03 01 00 16 00 [ 124.520713] RSP: 002b:00007fff04e85848 EFLAGS: 00000206 ORIG_RAX: 0000000000000009 [ 124.521253] RAX: ffffffffffffffda RBX: 0000000000000812 RCX: 00007f3a8cc45d82 [ 124.521757] RDX: 0000000000000003 RSI: 0000000000006000 RDI: 00007f3a8c8fe000 [ 124.522294] RBP: 00007f3a8c8fe000 R08: 0000000000000000 R09: 00000000001ba000 [ 124.522828] R10: 0000000000000812 R11: 0000000000000206 R12: 00007f3a8cc24a20 [ 124.523364] R13: 00007fff04e85860 R14: 00007fff04e858f0 R15: 00007fff04e85c80 [ 124.523911] [ 124.524092] irq event stamp: 9084 [ 124.524357] hardirqs last enabled at (9083): [] _raw_spin_unlock_irqrestore+0x28/0x60 [ 124.525063] hardirqs last disabled at (9084): [] sysvec_call_function_single+0xb/0xc0 [ 124.525772] softirqs last enabled at (8830): [] __irq_exit_rcu+0x11b/0x180 [ 124.526438] softirqs last disabled at (8823): [] __irq_exit_rcu+0x11b/0x180 [ 124.527076] ---[ end trace 0000000000000000 ]--- 14:08:22 executing program 4: r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1eda, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = socket$nl_audit(0x10, 0x3, 0x9) socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @remote, @broadcast}}}], 0x20}, 0x0) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_IRQP_SET(r4, 0x4008700c, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000040", @ANYRES16=0x0, @ANYBLOB="000029bd70b1fedbdf265dc95fda7e83b2000029000086dc9987c5f27e8a22bfe42cc4c8e5bf5e91d290873eaaaa617573a7fe6fa4d93fc023a81c00423750969cd5946f5648337412d70496206c84c5b44bac991b185ec73431f120f1481ae33cded1c79f4d820e029b94823e1d3c5984953210e391a92d6fc103a04f19eb57e2879dadc83f600b3fbf6999"], 0x1c}, 0x1, 0x0, 0x0, 0x20004801}, 0x20000000) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000004c0)) r5 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r6, &(0x7f0000000640)=[{&(0x7f00000002c0)="02", 0x1}], 0x1, 0x7fffffe, 0x0) read$eventfd(0xffffffffffffffff, &(0x7f0000000140), 0x8) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x2000, 0x10) getsockopt(r7, 0xff, 0x0, 0x0, &(0x7f0000000200)) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f00000008c0)) [ 124.708974] ------------[ cut here ]------------ [ 124.708997] [ 124.709001] ====================================================== [ 124.709004] WARNING: possible circular locking dependency detected [ 124.709009] 6.0.0-rc7-next-20220927 #1 Tainted: G W [ 124.709017] ------------------------------------------------------ [ 124.709020] syz-executor.4/3792 is trying to acquire lock: [ 124.709027] ffffffff853faab8 ((console_sem).lock){-...}-{2:2}, at: down_trylock+0xe/0x70 [ 124.709070] [ 124.709070] but task is already holding lock: [ 124.709073] ffff88800db53420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 124.709102] [ 124.709102] which lock already depends on the new lock. [ 124.709102] [ 124.709105] [ 124.709105] the existing dependency chain (in reverse order) is: [ 124.709109] [ 124.709109] -> #3 (&ctx->lock){....}-{2:2}: [ 124.709122] _raw_spin_lock+0x2a/0x40 [ 124.709135] __perf_event_task_sched_out+0x53b/0x18d0 [ 124.709148] __schedule+0xedd/0x2470 [ 124.709164] schedule+0xda/0x1b0 [ 124.709179] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.709192] syscall_exit_to_user_mode+0x19/0x40 [ 124.709206] do_syscall_64+0x48/0x90 [ 124.709217] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.709231] [ 124.709231] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 124.709245] _raw_spin_lock_nested+0x30/0x40 [ 124.709257] raw_spin_rq_lock_nested+0x1e/0x30 [ 124.709271] task_fork_fair+0x63/0x4d0 [ 124.709288] sched_cgroup_fork+0x3d0/0x540 [ 124.709302] copy_process+0x4183/0x6e20 [ 124.709313] kernel_clone+0xe7/0x890 [ 124.709322] user_mode_thread+0xad/0xf0 [ 124.709333] rest_init+0x24/0x250 [ 124.709346] arch_call_rest_init+0xf/0x14 [ 124.709360] start_kernel+0x4c6/0x4eb [ 124.709372] secondary_startup_64_no_verify+0xe0/0xeb [ 124.709386] [ 124.709386] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 124.709400] _raw_spin_lock_irqsave+0x39/0x60 [ 124.709412] try_to_wake_up+0xab/0x1930 [ 124.709425] up+0x75/0xb0 [ 124.709441] __up_console_sem+0x6e/0x80 [ 124.709457] console_unlock+0x46a/0x590 [ 124.709473] vprintk_emit+0x1bd/0x560 [ 124.709489] vprintk+0x84/0xa0 [ 124.709505] _printk+0xba/0xf1 [ 124.709518] kauditd_hold_skb.cold+0x3f/0x4e [ 124.709528] kauditd_send_queue+0x233/0x290 [ 124.709544] kauditd_thread+0x5da/0x9a0 [ 124.709557] kthread+0x2ed/0x3a0 [ 124.709572] ret_from_fork+0x22/0x30 [ 124.709584] [ 124.709584] -> #0 ((console_sem).lock){-...}-{2:2}: [ 124.709598] __lock_acquire+0x2a02/0x5e70 [ 124.709615] lock_acquire+0x1a2/0x530 [ 124.709630] _raw_spin_lock_irqsave+0x39/0x60 [ 124.709642] down_trylock+0xe/0x70 [ 124.709659] __down_trylock_console_sem+0x3b/0xd0 [ 124.709675] vprintk_emit+0x16b/0x560 [ 124.709691] vprintk+0x84/0xa0 [ 124.709706] _printk+0xba/0xf1 [ 124.709718] report_bug.cold+0x72/0xab [ 124.709728] handle_bug+0x3c/0x70 [ 124.709738] exc_invalid_op+0x14/0x50 [ 124.709748] asm_exc_invalid_op+0x16/0x20 [ 124.709762] group_sched_out.part.0+0x2c7/0x460 [ 124.709773] ctx_sched_out+0x8f1/0xc10 [ 124.709800] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.709813] __schedule+0xedd/0x2470 [ 124.709828] schedule+0xda/0x1b0 [ 124.709842] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.709853] syscall_exit_to_user_mode+0x19/0x40 [ 124.709867] do_syscall_64+0x48/0x90 [ 124.709877] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.709892] [ 124.709892] other info that might help us debug this: [ 124.709892] [ 124.709894] Chain exists of: [ 124.709894] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 124.709894] [ 124.709909] Possible unsafe locking scenario: [ 124.709909] [ 124.709912] CPU0 CPU1 [ 124.709914] ---- ---- [ 124.709916] lock(&ctx->lock); [ 124.709922] lock(&rq->__lock); [ 124.709929] lock(&ctx->lock); [ 124.709935] lock((console_sem).lock); [ 124.709940] [ 124.709940] *** DEADLOCK *** [ 124.709940] [ 124.709942] 2 locks held by syz-executor.4/3792: [ 124.709949] #0: ffff88806ce37d18 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 124.709980] #1: ffff88800db53420 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 124.710008] [ 124.710008] stack backtrace: [ 124.710011] CPU: 0 PID: 3792 Comm: syz-executor.4 Tainted: G W 6.0.0-rc7-next-20220927 #1 [ 124.710025] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 124.710033] Call Trace: [ 124.710036] [ 124.710041] dump_stack_lvl+0x8b/0xb3 [ 124.710053] check_noncircular+0x263/0x2e0 [ 124.710069] ? format_decode+0x26c/0xb50 [ 124.710088] ? print_circular_bug+0x450/0x450 [ 124.710105] ? enable_ptr_key_workfn+0x20/0x20 [ 124.710122] ? __lockdep_reset_lock+0x180/0x180 [ 124.710139] ? format_decode+0x26c/0xb50 [ 124.710158] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 124.710175] __lock_acquire+0x2a02/0x5e70 [ 124.710197] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 124.710219] lock_acquire+0x1a2/0x530 [ 124.710236] ? down_trylock+0xe/0x70 [ 124.710254] ? lock_release+0x750/0x750 [ 124.710273] ? find_held_lock+0x2c/0x110 [ 124.710289] ? vprintk+0x84/0xa0 [ 124.710307] _raw_spin_lock_irqsave+0x39/0x60 [ 124.710320] ? down_trylock+0xe/0x70 [ 124.710337] down_trylock+0xe/0x70 [ 124.710355] ? vprintk+0x84/0xa0 [ 124.710371] __down_trylock_console_sem+0x3b/0xd0 [ 124.710388] vprintk_emit+0x16b/0x560 [ 124.710407] vprintk+0x84/0xa0 [ 124.710424] _printk+0xba/0xf1 [ 124.710437] ? record_print_text.cold+0x16/0x16 [ 124.710453] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 124.710467] ? lock_downgrade+0x6d0/0x6d0 [ 124.710485] ? report_bug.cold+0x66/0xab [ 124.710496] ? group_sched_out.part.0+0x2c7/0x460 [ 124.710508] report_bug.cold+0x72/0xab [ 124.710520] handle_bug+0x3c/0x70 [ 124.710531] exc_invalid_op+0x14/0x50 [ 124.710543] asm_exc_invalid_op+0x16/0x20 [ 124.710558] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 124.710571] Code: 5e 41 5f e9 ab a9 ef ff e8 a6 a9 ef ff 65 8b 1d 1b 0f ac 7e 31 ff 89 de e8 46 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 89 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 7d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 124.710583] RSP: 0018:ffff88803c0c7c48 EFLAGS: 00010006 [ 124.710592] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 124.710600] RDX: ffff88801f2d8000 RSI: ffffffff815666b7 RDI: 0000000000000005 [ 124.710608] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 124.710615] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800db53400 [ 124.710622] R13: ffff88806ce3d140 R14: ffffffff8547c8e0 R15: 0000000000000002 [ 124.710634] ? group_sched_out.part.0+0x2c7/0x460 [ 124.710647] ? group_sched_out.part.0+0x2c7/0x460 [ 124.710661] ctx_sched_out+0x8f1/0xc10 [ 124.710674] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.710690] ? lock_is_held_type+0xd7/0x130 [ 124.710705] ? __perf_cgroup_move+0x160/0x160 [ 124.710717] ? set_next_entity+0x304/0x550 [ 124.710735] ? update_curr+0x267/0x740 [ 124.710753] ? lock_is_held_type+0xd7/0x130 [ 124.710769] __schedule+0xedd/0x2470 [ 124.710788] ? io_schedule_timeout+0x150/0x150 [ 124.710806] ? __x64_sys_futex_time32+0x480/0x480 [ 124.710821] schedule+0xda/0x1b0 [ 124.710837] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.710850] syscall_exit_to_user_mode+0x19/0x40 [ 124.710865] do_syscall_64+0x48/0x90 [ 124.710876] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.710891] RIP: 0033:0x7f5881bb9b19 [ 124.710899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.710909] RSP: 002b:00007f587f12f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.710920] RAX: 0000000000000001 RBX: 00007f5881cccf68 RCX: 00007f5881bb9b19 [ 124.710928] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5881cccf6c [ 124.710935] RBP: 00007f5881cccf60 R08: 000000000000000e R09: 0000000000000000 [ 124.710942] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f5881cccf6c [ 124.710950] R13: 00007ffe74ad27bf R14: 00007f587f12f300 R15: 0000000000022000 [ 124.710963] [ 124.776689] WARNING: CPU: 0 PID: 3792 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 124.778189] Modules linked in: [ 124.778716] CPU: 0 PID: 3792 Comm: syz-executor.4 Tainted: G W 6.0.0-rc7-next-20220927 #1 [ 124.780000] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 124.781506] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 124.782255] Code: 5e 41 5f e9 ab a9 ef ff e8 a6 a9 ef ff 65 8b 1d 1b 0f ac 7e 31 ff 89 de e8 46 a6 ef ff 85 db 0f 84 8a 00 00 00 e8 89 a9 ef ff <0f> 0b e9 a5 fe ff ff e8 7d a9 ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 124.784659] RSP: 0018:ffff88803c0c7c48 EFLAGS: 00010006 [ 124.785352] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 124.786274] RDX: ffff88801f2d8000 RSI: ffffffff815666b7 RDI: 0000000000000005 [ 124.787186] RBP: ffff8880086605c8 R08: 0000000000000005 R09: 0000000000000001 [ 124.788096] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88800db53400 [ 124.789010] R13: ffff88806ce3d140 R14: ffffffff8547c8e0 R15: 0000000000000002 [ 124.789937] FS: 00007f587f12f700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 124.790969] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 124.791713] CR2: 00007f0271035620 CR3: 000000003f23c000 CR4: 0000000000350ef0 [ 124.792628] Call Trace: [ 124.792985] [ 124.793303] ctx_sched_out+0x8f1/0xc10 [ 124.793848] __perf_event_task_sched_out+0x6d0/0x18d0 [ 124.794556] ? lock_is_held_type+0xd7/0x130 [ 124.795135] ? __perf_cgroup_move+0x160/0x160 [ 124.795727] ? set_next_entity+0x304/0x550 [ 124.796295] ? update_curr+0x267/0x740 [ 124.796823] ? lock_is_held_type+0xd7/0x130 [ 124.797390] __schedule+0xedd/0x2470 [ 124.797917] ? io_schedule_timeout+0x150/0x150 [ 124.798526] ? __x64_sys_futex_time32+0x480/0x480 [ 124.799165] schedule+0xda/0x1b0 [ 124.799629] exit_to_user_mode_prepare+0x114/0x1a0 [ 124.800273] syscall_exit_to_user_mode+0x19/0x40 [ 124.800906] do_syscall_64+0x48/0x90 [ 124.801401] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 124.802082] RIP: 0033:0x7f5881bb9b19 [ 124.802570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 124.804975] RSP: 002b:00007f587f12f218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 124.806002] RAX: 0000000000000001 RBX: 00007f5881cccf68 RCX: 00007f5881bb9b19 [ 124.806957] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f5881cccf6c [ 124.807911] RBP: 00007f5881cccf60 R08: 000000000000000e R09: 0000000000000000 [ 124.808862] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f5881cccf6c [ 124.809815] R13: 00007ffe74ad27bf R14: 00007f587f12f300 R15: 0000000000022000 [ 124.810785] [ 124.811110] irq event stamp: 174 [ 124.811568] hardirqs last enabled at (173): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 124.812813] hardirqs last disabled at (174): [] __schedule+0x1225/0x2470 [ 124.813930] softirqs last enabled at (54): [] __irq_exit_rcu+0x11b/0x180 [ 124.815050] softirqs last disabled at (45): [] __irq_exit_rcu+0x11b/0x180 [ 124.816173] ---[ end trace 0000000000000000 ]--- [ 125.256497] audit: type=1400 audit(1664374103.314:9): avc: denied { block_suspend } for pid=3833 comm="syz-executor.7" capability=36 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [ 125.271496] loop7: detected capacity change from 0 to 264192 14:08:23 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'}) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0xf6, 0x2) fsetxattr$trusted_overlay_upper(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x1015, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'veth0_to_bond\x00'}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$IP_VS_SO_GET_DAEMON(r2, 0x0, 0x487, &(0x7f0000000200), &(0x7f0000000240)=0x30) r3 = dup2(r1, r0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0) perf_event_open(&(0x7f0000000300)={0x4, 0x80, 0x2b, 0x7, 0x6, 0x0, 0x0, 0xad, 0x400c0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_config_ext={0x1, 0xffffffffffffffff}, 0x40dd4, 0x3f, 0x2, 0x8, 0x8001, 0x6, 0x40, 0x0, 0xf6, 0x0, 0xffff}, 0x0, 0xb, r4, 0x1) r5 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f00000018c0)={0x2, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x17) ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f00000001c0)={'veth1_virt_wifi\x00', {0x2, 0x0, @initdev}}) socket$inet_udp(0x2, 0x2, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x4e21, 0x5, @empty, 0x1}, 0x1c) bind$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, '\x00', 0x24}, 0x4}, 0x1c) [ 125.298477] loop7: detected capacity change from 0 to 264192 [ 125.309556] audit: type=1400 audit(1664374103.367:10): avc: denied { write } for pid=3791 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 14:08:23 executing program 7: r0 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r1, &(0x7f0000000340)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x0, @loopback}, 0x1c, 0x0}}], 0x1, 0x24048800) sendmmsg$inet(r1, &(0x7f0000001200)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000800)={0x2, 0x0, @local}, 0x10, 0x0}}], 0x2, 0x8001) r2 = epoll_create(0x4) r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000200), 0x8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000240)={0x20000000}) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000000)) readv(r2, &(0x7f0000001800)=[{&(0x7f0000000080)=""/70, 0x46}], 0x1) fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000040)) ioctl$LOOP_SET_STATUS64(r3, 0x4c04, &(0x7f0000001700)={0x0, 0x0, 0x0, 0x7, 0xffffffffffffff37, 0x0, 0x12, 0xc, 0x0, "23c2d80353e2f6a33c3e59015505ac0d65bc8b584c0564cf1252925367d826dee4aed502dc498a3d5c028f7b69f143afd05a4631a6ae553f096dd6e8a33af795", "970da5fd2a5ca37306ba38b5bc51fbc98a6fdf16294e20401cf1632175cc9150dad985aa02040d9d566fd3881b67dd89a5da4c3da629ed5abc60dce05e0c79f8", "367043bc1c4a0680996102355937587a7b0008000000000000035f223600", [0x1a5, 0x1]}) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f0000000180)={0x0, {}, 0x0, {}, 0xffffffff, 0x12, 0x9, 0x18, "0c085ee0d43737c7cce643311ec9d0b00b3e0eb0fd5250c5cd319444c5638d84f87683c5b18016b00b3a518f9239394dfd4370da74470a7db67281a92b689c2b", "f0f8f1a18f98bc2c801089c9c49ed0283be50f8eafce21d32f972cf2a96eed7d", [0x7]}) recvmsg$unix(0xffffffffffffffff, &(0x7f00000016c0)={&(0x7f0000000240), 0x6e, &(0x7f0000001600)=[{&(0x7f00000002c0)=""/68, 0x44}, {&(0x7f0000000340)=""/228, 0xe4}, {&(0x7f0000000440)=""/4096, 0x1000}, {&(0x7f0000000100)=""/5, 0x5}, {&(0x7f0000001440)=""/243, 0xf3}, {&(0x7f0000001540)=""/138, 0x8a}], 0x6, &(0x7f0000001680)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x38}, 0x3) ioctl$LOOP_CLR_FD(r4, 0x4c01) write$P9_RFLUSH(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_complete(0x0) [ 125.501226] raw_sendmsg: syz-executor.4 forgot to set AF_INET. Fix it! 14:08:23 executing program 7: ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(0xffffffffffffffff, 0xc0bc5351, &(0x7f0000000400)={0x3, 0x0, 'client1\x00', 0xffffffff80000000, "ea00da3c08c46e78", "da393329e96bca19e1508e1e05466724d0746b4e35bfc2da97876999c1c46903", 0x3}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000500000008"], 0x125) read(r0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x2) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000000)={&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff1000/0xc000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fed000/0xd000)=nil, &(0x7f0000fee000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000240)="bedcc1df281fd63d64ef45214a2151fed81d07a1e445c64adf7f352195c27564237bd025a7e4b043a2d57cf04e661516d73d9423b06e9ace607ba8754f49817b0b15b1a6a114caec173f12e7bc45133f5c613f75c193f9fe25ce5967876ce53e2d61bbe479ec5156fbe09ff94a5eef955ac01811bac72793273844a71a8c2171ce878f48d4a691f2d33f1712dbe1256996dc65ad839754fff74edcefc0da149816c175764c57f145820eaedaf2ddf4bd96096347251663e65686d684a596922c13c6ff79ef63252e4cb93b20c4a4d9be22e0fedbfcbf53da26f04b3a7eb781f1d120e477d94ccfd739cb1046f6f42787", 0xf0, r1}, 0x68) syz_open_procfs(0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x14, 0x23, 0x1, 0x0, 0x0, "", [@typed={0x4, 0x0, 0x0, 0x0, @binary}]}, 0x14}], 0x1}, 0x0) [ 125.606477] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 125.606477] program syz-executor.7 not setting count and/or reply_len properly 14:08:23 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000080)={@multicast2, @dev}, 0xc) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000000)={'lo\x00'}) fsetxattr$trusted_overlay_upper(r0, &(0x7f0000000040), &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0xf6, 0x2) fsetxattr$trusted_overlay_upper(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x1015, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000003c0)={'veth0_to_bond\x00'}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) getsockopt$IP_VS_SO_GET_DAEMON(r2, 0x0, 0x487, &(0x7f0000000200), &(0x7f0000000240)=0x30) r3 = dup2(r1, r0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x800, 0x0) perf_event_open(&(0x7f0000000300)={0x4, 0x80, 0x2b, 0x7, 0x6, 0x0, 0x0, 0xad, 0x400c0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_config_ext={0x1, 0xffffffffffffffff}, 0x40dd4, 0x3f, 0x2, 0x8, 0x8001, 0x6, 0x40, 0x0, 0xf6, 0x0, 0xffff}, 0x0, 0xb, r4, 0x1) r5 = socket$inet6(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f00000018c0)={0x2, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x17) ioctl$sock_inet_SIOCSIFADDR(r5, 0x8916, &(0x7f00000001c0)={'veth1_virt_wifi\x00', {0x2, 0x0, @initdev}}) socket$inet_udp(0x2, 0x2, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x4e21, 0x5, @empty, 0x1}, 0x1c) bind$inet6(r3, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, '\x00', 0x24}, 0x4}, 0x1c) 14:08:23 executing program 4: r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1eda, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = socket$nl_audit(0x10, 0x3, 0x9) socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'wlan1\x00', 0x0}) sendmsg$inet(r1, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @remote, @broadcast}}}], 0x20}, 0x0) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$RTC_IRQP_SET(r4, 0x4008700c, 0x0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="1c000040", @ANYRES16=0x0, @ANYBLOB="000029bd70b1fedbdf265dc95fda7e83b2000029000086dc9987c5f27e8a22bfe42cc4c8e5bf5e91d290873eaaaa617573a7fe6fa4d93fc023a81c00423750969cd5946f5648337412d70496206c84c5b44bac991b185ec73431f120f1481ae33cded1c79f4d820e029b94823e1d3c5984953210e391a92d6fc103a04f19eb57e2879dadc83f600b3fbf6999"], 0x1c}, 0x1, 0x0, 0x0, 0x20004801}, 0x20000000) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xb}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xb) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000004c0)) r5 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x0) ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) pwritev(r6, &(0x7f0000000640)=[{&(0x7f00000002c0)="02", 0x1}], 0x1, 0x7fffffe, 0x0) read$eventfd(0xffffffffffffffff, &(0x7f0000000140), 0x8) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x2000, 0x10) getsockopt(r7, 0xff, 0x0, 0x0, &(0x7f0000000200)) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f00000008c0)) 14:08:23 executing program 7: ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(0xffffffffffffffff, 0xc0bc5351, &(0x7f0000000400)={0x3, 0x0, 'client1\x00', 0xffffffff80000000, "ea00da3c08c46e78", "da393329e96bca19e1508e1e05466724d0746b4e35bfc2da97876999c1c46903", 0x3}) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x2) write$binfmt_aout(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000500000008"], 0x125) read(r0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x2) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000000)={&(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ff1000/0xc000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fed000/0xd000)=nil, &(0x7f0000fee000/0x4000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000240)="bedcc1df281fd63d64ef45214a2151fed81d07a1e445c64adf7f352195c27564237bd025a7e4b043a2d57cf04e661516d73d9423b06e9ace607ba8754f49817b0b15b1a6a114caec173f12e7bc45133f5c613f75c193f9fe25ce5967876ce53e2d61bbe479ec5156fbe09ff94a5eef955ac01811bac72793273844a71a8c2171ce878f48d4a691f2d33f1712dbe1256996dc65ad839754fff74edcefc0da149816c175764c57f145820eaedaf2ddf4bd96096347251663e65686d684a596922c13c6ff79ef63252e4cb93b20c4a4d9be22e0fedbfcbf53da26f04b3a7eb781f1d120e477d94ccfd739cb1046f6f42787", 0xf0, r1}, 0x68) syz_open_procfs(0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x200000, 0x0) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)={0x14, 0x23, 0x1, 0x0, 0x0, "", [@typed={0x4, 0x0, 0x0, 0x0, @binary}]}, 0x14}], 0x1}, 0x0) [ 125.847609] sg_write: data in/out 524252/251 bytes for SCSI command 0x0-- guessing data in; [ 125.847609] program syz-executor.7 not setting count and/or reply_len properly VM DIAGNOSIS: 14:08:22 Registers: info registers vcpu 0 RAX=0000000000000064 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823ba0b1 RDI=ffffffff8765a980 RBP=ffffffff8765a940 RSP=ffff88806ce09590 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000064 R11=0000000000000001 R12=0000000000000064 R13=ffffffff8765a940 R14=0000000000000010 R15=ffffffff823ba0a0 RIP=ffffffff823ba109 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000056075c79b9d8 CR3=000000000d900000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000026d76 RBX=1ffff11001e67f84 RCX=ffffc900053bd000 RDX=0000000000040000 RSI=ffffffff813bb5b3 RDI=0000000000000005 RBP=ffff88800f33fcc8 RSP=ffff88800f33fc00 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001 R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000200 RIP=ffffffff813bb5b5 RFL=00000212 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f587f12f700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3f123747f0 CR3=00000000177fc000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 b0a5fe6eac7c7699 314d2f913a2795f3 YMM02=0000000000000000 0000000000000000 0000000000135b78 8814c485cd32fe7e YMM03=0000000000000000 0000000000000000 0000000000135ff0 047d33bb031a8617 YMM04=0000000000000000 0000000000000000 93652f42ae2c1ffb 00000000000ae988 YMM05=0000000000000000 0000000000000000 c8a54713b07d5f7b 0000000000135ff0 YMM06=0000000000000000 0000000000000000 f552651b67ec2cab 0000000000135b78 YMM07=0000000000000000 0000000000000000 a4cbaacae28e2de9 0000000000135ad0 YMM08=0000000000000000 0000000000000000 d6ad57d02453f0d2 00000000000fac30 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0020002000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000