syzkaller login: [ 43.757625] sshd (243) used greatest stack depth: 24784 bytes left Warning: Permanently added '[localhost]:25045' (ECDSA) to the list of known hosts. 2022/10/01 22:45:07 fuzzer started 2022/10/01 22:45:07 dialing manager at localhost:35095 [ 45.876206] cgroup: Unknown subsys name 'net' [ 45.979735] cgroup: Unknown subsys name 'rlimit' 2022/10/01 22:45:22 syscalls: 2215 2022/10/01 22:45:22 code coverage: enabled 2022/10/01 22:45:22 comparison tracing: enabled 2022/10/01 22:45:22 extra coverage: enabled 2022/10/01 22:45:22 setuid sandbox: enabled 2022/10/01 22:45:22 namespace sandbox: enabled 2022/10/01 22:45:22 Android sandbox: enabled 2022/10/01 22:45:22 fault injection: enabled 2022/10/01 22:45:22 leak checking: enabled 2022/10/01 22:45:22 net packet injection: enabled 2022/10/01 22:45:22 net device setup: enabled 2022/10/01 22:45:22 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/01 22:45:22 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/01 22:45:22 USB emulation: enabled 2022/10/01 22:45:22 hci packet injection: enabled 2022/10/01 22:45:22 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/01 22:45:22 802.15.4 emulation: enabled 2022/10/01 22:45:22 fetching corpus: 50, signal 24246/26085 (executing program) 2022/10/01 22:45:22 fetching corpus: 100, signal 35656/39132 (executing program) 2022/10/01 22:45:22 fetching corpus: 150, signal 45127/50091 (executing program) 2022/10/01 22:45:22 fetching corpus: 200, signal 56527/62757 (executing program) 2022/10/01 22:45:23 fetching corpus: 250, signal 62795/70328 (executing program) 2022/10/01 22:45:23 fetching corpus: 300, signal 66261/75142 (executing program) 2022/10/01 22:45:23 fetching corpus: 350, signal 69794/79995 (executing program) 2022/10/01 22:45:23 fetching corpus: 400, signal 75081/86440 (executing program) 2022/10/01 22:45:23 fetching corpus: 450, signal 81054/93425 (executing program) 2022/10/01 22:45:23 fetching corpus: 500, signal 83467/97026 (executing program) 2022/10/01 22:45:23 fetching corpus: 550, signal 86184/100852 (executing program) 2022/10/01 22:45:23 fetching corpus: 600, signal 89535/105238 (executing program) 2022/10/01 22:45:24 fetching corpus: 650, signal 93059/109742 (executing program) 2022/10/01 22:45:24 fetching corpus: 700, signal 96186/113821 (executing program) 2022/10/01 22:45:24 fetching corpus: 750, signal 99320/117857 (executing program) 2022/10/01 22:45:24 fetching corpus: 800, signal 101549/121032 (executing program) 2022/10/01 22:45:24 fetching corpus: 850, signal 103460/123878 (executing program) 2022/10/01 22:45:24 fetching corpus: 900, signal 105000/126330 (executing program) 2022/10/01 22:45:24 fetching corpus: 950, signal 107302/129470 (executing program) 2022/10/01 22:45:24 fetching corpus: 1000, signal 109659/132634 (executing program) 2022/10/01 22:45:25 fetching corpus: 1050, signal 110791/134694 (executing program) 2022/10/01 22:45:25 fetching corpus: 1100, signal 113792/138277 (executing program) 2022/10/01 22:45:25 fetching corpus: 1150, signal 115902/141089 (executing program) 2022/10/01 22:45:25 fetching corpus: 1200, signal 118613/144352 (executing program) 2022/10/01 22:45:25 fetching corpus: 1250, signal 120794/147161 (executing program) 2022/10/01 22:45:25 fetching corpus: 1300, signal 123990/150727 (executing program) 2022/10/01 22:45:25 fetching corpus: 1350, signal 125664/153101 (executing program) 2022/10/01 22:45:25 fetching corpus: 1400, signal 127268/155393 (executing program) 2022/10/01 22:45:26 fetching corpus: 1450, signal 128831/157616 (executing program) 2022/10/01 22:45:26 fetching corpus: 1500, signal 129805/159356 (executing program) 2022/10/01 22:45:26 fetching corpus: 1550, signal 131199/161399 (executing program) 2022/10/01 22:45:26 fetching corpus: 1600, signal 133076/163756 (executing program) 2022/10/01 22:45:26 fetching corpus: 1650, signal 135054/166169 (executing program) 2022/10/01 22:45:26 fetching corpus: 1700, signal 136409/168076 (executing program) 2022/10/01 22:45:26 fetching corpus: 1750, signal 137227/169561 (executing program) 2022/10/01 22:45:26 fetching corpus: 1800, signal 138389/171287 (executing program) 2022/10/01 22:45:26 fetching corpus: 1850, signal 139953/173371 (executing program) 2022/10/01 22:45:27 fetching corpus: 1900, signal 141530/175406 (executing program) 2022/10/01 22:45:27 fetching corpus: 1950, signal 142536/177000 (executing program) 2022/10/01 22:45:27 fetching corpus: 2000, signal 143621/178629 (executing program) 2022/10/01 22:45:27 fetching corpus: 2050, signal 144870/180292 (executing program) 2022/10/01 22:45:27 fetching corpus: 2100, signal 146240/182084 (executing program) 2022/10/01 22:45:27 fetching corpus: 2150, signal 147278/183620 (executing program) 2022/10/01 22:45:27 fetching corpus: 2200, signal 148262/185112 (executing program) 2022/10/01 22:45:27 fetching corpus: 2250, signal 149463/186711 (executing program) 2022/10/01 22:45:27 fetching corpus: 2300, signal 150228/187984 (executing program) 2022/10/01 22:45:28 fetching corpus: 2350, signal 151249/189510 (executing program) 2022/10/01 22:45:28 fetching corpus: 2400, signal 151854/190739 (executing program) 2022/10/01 22:45:28 fetching corpus: 2450, signal 153483/192519 (executing program) 2022/10/01 22:45:28 fetching corpus: 2500, signal 154172/193721 (executing program) 2022/10/01 22:45:28 fetching corpus: 2550, signal 154969/195001 (executing program) 2022/10/01 22:45:28 fetching corpus: 2600, signal 155728/196263 (executing program) 2022/10/01 22:45:28 fetching corpus: 2650, signal 157679/198240 (executing program) 2022/10/01 22:45:28 fetching corpus: 2700, signal 159324/199952 (executing program) 2022/10/01 22:45:29 fetching corpus: 2750, signal 161215/201841 (executing program) 2022/10/01 22:45:29 fetching corpus: 2800, signal 162765/203410 (executing program) 2022/10/01 22:45:29 fetching corpus: 2850, signal 163300/204459 (executing program) 2022/10/01 22:45:29 fetching corpus: 2900, signal 163967/205547 (executing program) 2022/10/01 22:45:29 fetching corpus: 2950, signal 164537/206560 (executing program) 2022/10/01 22:45:29 fetching corpus: 3000, signal 165534/207810 (executing program) 2022/10/01 22:45:29 fetching corpus: 3050, signal 166508/209029 (executing program) 2022/10/01 22:45:29 fetching corpus: 3100, signal 166878/209936 (executing program) 2022/10/01 22:45:29 fetching corpus: 3150, signal 167602/210998 (executing program) 2022/10/01 22:45:30 fetching corpus: 3200, signal 168776/212295 (executing program) 2022/10/01 22:45:30 fetching corpus: 3250, signal 169462/213335 (executing program) 2022/10/01 22:45:30 fetching corpus: 3300, signal 170052/214276 (executing program) 2022/10/01 22:45:30 fetching corpus: 3350, signal 170735/215255 (executing program) 2022/10/01 22:45:30 fetching corpus: 3400, signal 171884/216430 (executing program) 2022/10/01 22:45:30 fetching corpus: 3450, signal 172903/217527 (executing program) 2022/10/01 22:45:30 fetching corpus: 3500, signal 174365/218799 (executing program) 2022/10/01 22:45:30 fetching corpus: 3550, signal 174872/219663 (executing program) 2022/10/01 22:45:30 fetching corpus: 3600, signal 175442/220551 (executing program) 2022/10/01 22:45:31 fetching corpus: 3650, signal 176359/221575 (executing program) 2022/10/01 22:45:31 fetching corpus: 3700, signal 176722/222309 (executing program) 2022/10/01 22:45:31 fetching corpus: 3750, signal 177279/223165 (executing program) 2022/10/01 22:45:31 fetching corpus: 3800, signal 178121/224140 (executing program) 2022/10/01 22:45:31 fetching corpus: 3850, signal 179008/225064 (executing program) 2022/10/01 22:45:31 fetching corpus: 3900, signal 181087/226473 (executing program) 2022/10/01 22:45:31 fetching corpus: 3950, signal 182237/227513 (executing program) 2022/10/01 22:45:32 fetching corpus: 4000, signal 182953/228334 (executing program) 2022/10/01 22:45:32 fetching corpus: 4050, signal 183935/229267 (executing program) 2022/10/01 22:45:32 fetching corpus: 4100, signal 184495/230057 (executing program) 2022/10/01 22:45:32 fetching corpus: 4150, signal 185118/230818 (executing program) 2022/10/01 22:45:32 fetching corpus: 4200, signal 185519/231484 (executing program) 2022/10/01 22:45:32 fetching corpus: 4250, signal 185938/232231 (executing program) 2022/10/01 22:45:32 fetching corpus: 4300, signal 186444/232989 (executing program) 2022/10/01 22:45:32 fetching corpus: 4350, signal 186986/233738 (executing program) 2022/10/01 22:45:32 fetching corpus: 4400, signal 187822/234632 (executing program) 2022/10/01 22:45:33 fetching corpus: 4450, signal 188261/235310 (executing program) 2022/10/01 22:45:33 fetching corpus: 4500, signal 189037/236005 (executing program) 2022/10/01 22:45:33 fetching corpus: 4550, signal 189897/236724 (executing program) 2022/10/01 22:45:33 fetching corpus: 4600, signal 190483/237380 (executing program) 2022/10/01 22:45:33 fetching corpus: 4650, signal 191627/238230 (executing program) 2022/10/01 22:45:33 fetching corpus: 4700, signal 192225/238874 (executing program) 2022/10/01 22:45:33 fetching corpus: 4750, signal 193025/239591 (executing program) 2022/10/01 22:45:34 fetching corpus: 4800, signal 193795/240253 (executing program) 2022/10/01 22:45:34 fetching corpus: 4850, signal 194475/240898 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/241451 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/241922 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/242408 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/242863 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/243302 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/243791 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/244290 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/244755 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/245242 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/245762 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/246230 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/246689 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/247179 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/247649 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/248122 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/248585 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/249041 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/249514 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/250014 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/250475 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/250960 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/251456 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/251931 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/252388 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/252875 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/253323 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/253780 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/254244 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/254539 (executing program) 2022/10/01 22:45:34 fetching corpus: 4873, signal 194680/254539 (executing program) 2022/10/01 22:45:36 starting 8 fuzzer processes 22:45:36 executing program 0: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x14200, 0x0) write$P9_RWRITE(r0, &(0x7f0000000040)={0xb, 0x77, 0x1, 0x3f}, 0xb) r1 = fcntl$getown(r0, 0x9) fcntl$lock(r0, 0x5, &(0x7f0000000080)={0x1, 0x4, 0x100000000, 0x4, r1}) openat$sr(0xffffffffffffff9c, &(0x7f00000000c0), 0x600600, 0x0) setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, &(0x7f0000000100)={0x3a, 0xc, 0x0, 0x4, 0x0, [@dev={0xfe, 0x80, '\x00', 0x2a}, @dev={0xfe, 0x80, '\x00', 0x15}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, @rand_addr=' \x01\x00', @private2]}, 0x68) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x7, 0x50, r0, 0x0) syz_io_uring_submit(r2, 0x0, &(0x7f0000000180)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x4000, @fd=r0, 0xfffffffffffffc01, 0x4, 0x101, 0x1a, 0x1}, 0x4) write$P9_RXATTRCREATE(r0, &(0x7f00000001c0)={0x7, 0x21, 0x2}, 0x7) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x408800, 0x0) ioctl$GIO_UNIMAP(r3, 0x4b66, &(0x7f0000000280)={0x3, &(0x7f0000000240)=[{}, {}, {}]}) ioctl$AUTOFS_IOC_PROTOSUBVER(r3, 0x80049367, &(0x7f00000002c0)) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) fdatasync(r4) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000000, 0x80010, r0, 0x8000000) ioctl$BTRFS_IOC_QGROUP_LIMIT(r3, 0x8030942b, &(0x7f0000000300)={0x101, {0x10, 0x7, 0x7fff, 0x5, 0x35ec0b87}}) syz_io_uring_complete(r5) fcntl$F_GET_FILE_RW_HINT(r0, 0x40d, &(0x7f0000000340)) syz_io_uring_submit(r5, 0x0, &(0x7f00000003c0)=@IORING_OP_WRITE={0x17, 0x2, 0x4000, @fd_index=0x7, 0x101, &(0x7f0000000380)="2aa11665fca68a23a64adda0", 0xc, 0x0, 0x1}, 0x3) syz_io_uring_setup(0x5c2f, &(0x7f0000000440)={0x0, 0x4fcb, 0x0, 0x0, 0x78}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000004c0), &(0x7f0000000500)) 22:45:36 executing program 1: r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x6c5a607a]}, 0x8, 0x80000) ioctl$FAT_IOCTL_GET_VOLUME_ID(r0, 0x80047213, &(0x7f0000000040)) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f0000000080), &(0x7f00000000c0)=0x14) r1 = signalfd(r0, &(0x7f0000000100)={[0x1f]}, 0x8) ioctl$sock_ifreq(r1, 0x8935, &(0x7f0000000140)={'dummy0\x00', @ifru_flags}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r0, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0xdb7}}, './file0\x00'}) r4 = accept4(r2, 0x0, &(0x7f0000000200), 0x80800) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r4, 0x8983, &(0x7f0000000240)) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) signalfd4(r5, &(0x7f0000000280)={[0x1]}, 0x8, 0x40800) r6 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000002c0), 0x50002, 0x0) fcntl$getown(r6, 0x9) setsockopt$inet6_buf(r0, 0x29, 0xcc, &(0x7f0000000300)="0ad46363455b587033edf32e365ea7535f020743f764ece7529035b0e0b77db1c5aae0c36724bdc8147a86e6dc5144aaa5c470d2997493149e888fa34691fdda87973346f3414ed2a8126e31a4d5bfaafbbff70e9fcfa2e1b566100649e4982ca44b221c7c2450c23ebab6195c3ae6ac225176f484c4d7a41e592c1e65166c434fdbfb7762bf662d68fbc17fb1b434f213f982f7b34fa70cd6bde5e7cc618c806b547e59625fad264740b4aa16ac52d5f4e4048876b236794a", 0xb9) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r6, {0x1}}, './file0\x00'}) syz_io_uring_setup(0x6af0, &(0x7f0000000400)={0x0, 0xdd2d, 0x2, 0x3, 0x188}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000480), &(0x7f00000004c0)=0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r7, &(0x7f0000000500)=@IORING_OP_READ_FIXED={0x4, 0x2, 0x2007, @fd_index=0x7, 0x3, 0x6, 0x80, 0x18, 0x1, {0x3, r8}}, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000580), 0x4) 22:45:36 executing program 2: r0 = syz_open_dev$hiddev(&(0x7f0000000000), 0x80000001, 0x2840) r1 = memfd_secret(0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000300)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8}}, './file0\x00'}) r3 = memfd_create(&(0x7f0000000580)='\x00', 0x1) getpeername(0xffffffffffffffff, &(0x7f00000006c0)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @mcast1}}}, &(0x7f0000000740)=0x80) r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f0000000800), 0x1, 0x0) io_submit(0x0, 0x8, &(0x7f0000001880)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x0, r0, &(0x7f0000000040)="31b8e1924adb2d54ea4bc1665d03c834349e4ff59f1c94520d483ff20e7c452146fd0acce5056e35d8399ac273d1d093ebb87a88b61d", 0x36, 0x9, 0x0, 0x2}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x6, r1, &(0x7f00000000c0)="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", 0xfa, 0x7, 0x0, 0x2}, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x7, 0xffffffffffffffff, &(0x7f0000000200)="f3ed5ddf5453903ab8f8b4b04e0b505d079c2354a659661559eebeed646810bb457d188b3d8da91a78e5b25b25a40309ac9e7f58bb12ba2d421a481e6bd785d0f1219481ea2fcfbf05826a0acd12bac0b7bec431dd88f1db1ba9937476f9c15efae0b7bbd7b0174ee974ebaac1739e4383dd2eb1cbc1f2a5959d0792ed472993e673957862f777245b4e29c802e49e48ee942d55c005444b0aebfe19be7eb11eb77c3b851f325b1b27a4fcca48", 0xad, 0x7ff, 0x0, 0x2}, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x5, 0x3, r2, &(0x7f0000000340)="c35be4cc6f7351f658f10467088a2973410284dd3f7e8026f3d9c7df73f4151ccb387538860f06a376a4d676edcad58941dfa5d8670b70a82e81e5267be09d376c0e7a91f193e132b85f7f6b37d46d906a2e6d0aa6fc8d23a9727f3105e1ddc3052872cb7c972820e282aabeb5951cf0de69418ba79bd1e0035cdcee6e50b44334b1b037898e9c3efdab66d13d9f5a0afa91281a34c061e351d7289590313564", 0xa0, 0x9}, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7, 0xfff, 0xffffffffffffffff, &(0x7f0000000440)="9fab2ae8a7290f1e207a2336ac40372ed515e61b1c024acfb0bc31195e91a0e9cba7c4883abcd697afab1d9a3900fed76cbc8b9632339fa988016a793ead16a043bddcc2ba1d62c755736ab4b95add4cb674c3f1ca6413458888c0e54a75f3055fa03c3d6a4af96e1535847d72e27c079fe537d0597f9f7ccba3976ac489dcc472884201bb5264bd3f7bfa8ced5798be6dc66256eba307ba97e7ea5e02ad92e2e13b77f9774c6e389d59a24af465cadc8bcf3b32e29bccb2d7f5bdbeae02c26e420fdd3b4996de38d689d9b70d2bfabeadbbe057065791ef", 0xd8, 0xff}, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x1, 0x2, r3, &(0x7f00000005c0)="50af2af2056ca0bff18aa09fbb911186995669ee1985b101fa3b23b6aa233af88cd0f69dd6f4b3611d9a311cc420053e2c4e85f339067ec83c4549242d2648286b5230210e942b17cee44f93424191b5e8315209177a22a712605e68ce78d88e6b6df1fe76e9976f60b02cbdaf9322fcd9973bcc51c955b0fee398bb953690c4a06f03b7166e2950ed3806e3d85b5041f301e0c14aaac1b69b2efdd38255a5155e312247235b1658b1efd9eec60b37bb56233efcd7b7caee5e90326a2967", 0xbe, 0x0, 0x0, 0x6}, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x8, 0x9, r4, &(0x7f0000000780)="85", 0x1, 0x3ff, 0x0, 0x2}, &(0x7f0000001840)={0x0, 0x0, 0x0, 0x0, 0x1f, r5, &(0x7f0000000840)="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", 0x1000, 0x7, 0x0, 0x1}]) ftruncate(r3, 0x1) ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8983, &(0x7f00000018c0)={0x2, 'wlan1\x00', {0x1000}, 0x5}) preadv(r0, &(0x7f00000019c0)=[{&(0x7f0000001900)=""/136, 0x88}], 0x1, 0x5ec4ae2a, 0x5) r6 = fcntl$dupfd(r4, 0x406, r3) fcntl$addseals(r6, 0x409, 0x2) r7 = syz_open_dev$vcsu(&(0x7f0000001a00), 0x400, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000001dc0)={'syztnl0\x00', &(0x7f0000001d40)={'syztnl0\x00', 0x0, 0x4, 0x40, 0x3f, 0x0, 0x4, @empty, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0x80, 0x8000, 0xfffffff8, 0x5}}) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r7, 0x89fa, &(0x7f0000001e80)={'ip6tnl0\x00', &(0x7f0000001e00)={'sit0\x00', r8, 0x29, 0x46, 0x3f, 0x6, 0x10, @local, @private0={0xfc, 0x0, '\x00', 0x1}, 0x20, 0x80, 0x4}}) sendfile(r0, r7, &(0x7f0000001ec0)=0x5, 0xcf34) pwrite64(r7, &(0x7f0000001f00)="c3474b16faacef3156968b9503e854f9d4a258f712c9576918c5fce3b7ac41164cdf3842e6093fc9129b62a731913683cbc2086662fa51bcc92663061102a84e13bc58bd4cd9bbaf3ff0dbe5acb283daa752a89d679f31b1a3e4afdcfab73edb1a30", 0x62, 0x8) ioctl$F2FS_IOC_DEFRAGMENT(r3, 0xc010f508, &(0x7f0000001f80)={0x9, 0xcae4}) ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f0000002080)={'veth1_to_hsr\x00', &(0x7f0000001fc0)=@ethtool_flash={0x33, 0xff6, './file0\x00'}}) close(r2) [ 74.971645] audit: type=1400 audit(1664664336.895:6): avc: denied { execmem } for pid=286 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 22:45:36 executing program 3: shmat(0xffffffffffffffff, &(0x7f0000ffb000/0x2000)=nil, 0x2000) shmat(0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000) shmat(0xffffffffffffffff, &(0x7f0000ff4000/0xc000)=nil, 0x6000) shmat(0xffffffffffffffff, &(0x7f0000ff9000/0x4000)=nil, 0x7000) r0 = shmget(0x2, 0x1000, 0x4, &(0x7f0000fff000/0x1000)=nil) shmctl$SHM_STAT(r0, 0xd, &(0x7f0000000000)=""/7) r1 = shmget(0x3, 0x1000, 0x100, &(0x7f0000ffc000/0x1000)=nil) shmat(r1, &(0x7f0000ffa000/0x3000)=nil, 0x1000) shmat(r0, &(0x7f0000ff9000/0x2000)=nil, 0x4000) mmap$perf(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000000, 0x10, 0xffffffffffffffff, 0x6) shmget$private(0x0, 0x2000, 0x2, &(0x7f0000ffc000/0x2000)=nil) shmctl$IPC_RMID(0x0, 0x0) shmat(0x0, &(0x7f0000ffa000/0x4000)=nil, 0x0) shmat(r1, &(0x7f0000ffa000/0x3000)=nil, 0x0) r2 = shmget(0x0, 0x4000, 0x10, &(0x7f0000ffc000/0x4000)=nil) shmctl$SHM_STAT_ANY(r2, 0xf, &(0x7f0000000040)=""/211) shmget(0x3, 0x1000, 0x1, &(0x7f0000ffa000/0x1000)=nil) r3 = shmget(0x2, 0x4000, 0x2, &(0x7f0000ff8000/0x4000)=nil) shmctl$SHM_STAT(r3, 0xd, &(0x7f0000000140)=""/94) pkey_mprotect(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x3000009, 0xffffffffffffffff) 22:45:36 executing program 7: r0 = open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x1101) write$eventfd(r0, &(0x7f0000000040)=0xd9ab, 0x8) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @local}, 0x10) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) write$binfmt_aout(r1, &(0x7f00000000c0)={{0x0, 0x4, 0x0, 0x15c, 0x363, 0x1, 0x44, 0x20}, "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", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x1620) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = syz_io_uring_complete(0x0) setsockopt$inet6_IPV6_PKTINFO(r3, 0x29, 0x32, &(0x7f0000001700)={@private1}, 0x14) r4 = syz_open_dev$loop(&(0x7f0000001740), 0xffffffff, 0x4100) flock(r4, 0x2) r5 = syz_open_dev$vcsa(&(0x7f0000001780), 0xf2f3, 0x440000) r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000001800), r0) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r5, &(0x7f00000018c0)={&(0x7f00000017c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001880)={&(0x7f0000001840)={0x2c, r6, 0x200, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x2}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x70000000}]}, 0x2c}}, 0x1) r7 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000004, 0x4000010, r3, 0x10000000) syz_io_uring_submit(0x0, r7, &(0x7f0000001a00)=@IORING_OP_SEND={0x1a, 0x3, 0x0, r2, 0x0, &(0x7f0000001900)="bba31c16cb7d9e81d516af77826e4b35dd8e9e6bf9f7de32d6fea9b4a95e70b3e55667a1cb080cfba73b5da5aef17d94a9a16f04a39d41495b19bef6a502f6cf5bed317e459256585e53fd40aabfbd97dbd5bda505bb8542920fe2ca82ea815358427e241e734e97b5c0c9df05a4d2b06860162b90be9e0b2bfa966d4300c6bc8e98e42e408f3db31ffc7e114d07ae7ce838a73700cf3537b18d5fae12fa7331aef9917c7315c86a2c5f10416f0f17c89d23dda7bf08de6c245c9a3ec000c999af487e0648bc7d63737d3d7d024c5b96f491312dac4f0817799f2d4ee5861f7735ace28a0afabfab", 0xe8, 0x40081, 0x1}, 0x20) r8 = syz_io_uring_setup(0x396c, &(0x7f0000001a40)={0x0, 0x83e2, 0x1, 0x2, 0x2aa, 0x0, r3}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000001ac0), &(0x7f0000001b00)) syz_io_uring_setup(0xfb5, &(0x7f0000001b40)={0x0, 0x7a28, 0x0, 0x2, 0xad, 0x0, r8}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000001bc0), &(0x7f0000001c00)) openat(0xffffffffffffffff, &(0x7f0000001c40)='./file0\x00', 0x80000, 0x98) bind$bt_hci(r3, &(0x7f0000001c80)={0x1f, 0x1}, 0x6) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000001cc0)) 22:45:36 executing program 5: fsetxattr$security_ima(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=@ng={0x4, 0xf, 'a)'}, 0x4, 0x3) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000080)={0x1, 0x80000001, 0x7, 0x9, 0x8ada, 0xff}) fcntl$getflags(0xffffffffffffffff, 0x408) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1000}}, './file0\x00'}) getsockopt$ARPT_SO_GET_ENTRIES(r0, 0x0, 0x61, &(0x7f0000000100)={'filter\x00', 0x48, "2744d1983660100de3b0c400f083b3744f791c8f29e0104abac9623217162b0bd6c35d36a313a2a3de115c43907dffaf9219d805f1d0d9a3a0de474731019e9534cb04f347cf4c0a"}, &(0x7f0000000180)=0x6c) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000001c0)={r0, 0x3f, 0x3, 0x9}) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000200)={0x20000000}) fcntl$F_GET_RW_HINT(r0, 0x40b, &(0x7f0000000240)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000002c0)={'syzkaller0\x00'}) r3 = socket$nl_route(0x10, 0x3, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r3, &(0x7f0000000300)={0x20000000}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000340)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) r5 = syz_open_dev$evdev(&(0x7f0000000380), 0x2, 0x40000) clock_gettime(0x0, &(0x7f0000000400)={0x0, 0x0}) ppoll(&(0x7f00000003c0)=[{r2, 0x9000}, {r2, 0x4000}, {r4, 0x540}, {r2, 0x40}, {r5}, {r2, 0x4}], 0x6, &(0x7f0000000440)={r6, r7+60000000}, 0xffffffffffffffff, 0x0) write(r3, &(0x7f0000000480)="2f4192dafea1db6869ce593db448dbe2ffcb2d6a6fc84bf6de8300a0bd27021db6558555194928ff8e60b134e6eb382b50fd86", 0x33) r8 = syz_mount_image$iso9660(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x6, 0x8, &(0x7f0000001a80)=[{&(0x7f0000000540)="16216a3b5fec52fe597e8fa993016bf10588f43055eb17ae3cb8541a03215574847038a17f7f85dc0f8d7fccd27cf5fe84a9b4bdcbb201575e0cc156bd831dc6522f9e436e55bcc71f55a3d06934dd4cacedd6e4a2eff24cb932ebd05f18b1116a57dcaf3a255f8ee68c0b7d2c44f13e504f55a231d262167ae06fbe993fd8335ca9981698c08da88ac1ecc9f4ca3724a66b11fcb615f85b4d5c52bb3b8d9026d93f47f428014479bb6ca356b8a599cd9c3d28a9532d61ac9e3c00d8e78f450a2cb405fc002ddfb9282fde98", 0xcc, 0xd}, {&(0x7f0000000640)="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", 0x1000, 0x29}, {&(0x7f0000001640)="048445f521b62c36cf925b08667088fad040cdbeaf87f276f62f90cf8688f7b620c843ea8648fac1377d2c5d24195bda76bc13508d4c4e3c42500db74e52d055c3bd6f8bc4170261c0ff55b88d89a47a11d04d95fccea071b91be45e5a8266332085f27df564741f75b66c44c8e8696cad17c0a23565828bb79dc5c49c75db0bfc06478cbfd6766cd3e84b6f6d04e6c5c0e98515e105bd4167939cad66784e938434d7247ef1e0ea20f9fafa247a5deea320cab3", 0xb4}, {&(0x7f0000001700)}, {&(0x7f0000001740)="ce826b81713166eda223edaa1632e9d2d104d303b6354ddd3cee5263250b8b398144267840549980c079bfa4d6529b19e43fdab8661a5da44daa52974e6ed853611268e8d948e2483fee9bdaf10c44b9372c5944cad94604fe99a9fdb2da768938222c167ca7b8d7c54191b547ad2bb82adf0e9ffb4c6b75918d0100237df7de66056b510380623aa4588d5d06d4ea", 0x8f, 0x8}, {&(0x7f0000001800)="f7e722b9a8fa03832d83a7fd799374fa97622921c41d82927fec72f80a38b17537027f72f140bef3d988afc9977f8ef7b338130e0dc8189f5202f6df165b0dd335de5b8cde84773b9893703e62784ff90a1b92b13a1d3e3413e765c8c34a6de87940a063ad850151097d5c652c180dd5dc922745a80197ec8a57b7a9a50da7594bd224b3cdfe5383234e66476761f4bb33ee15d3f97aa38a4eb89152fa4a18ec7266301f8147e3e4fe589a51a46a249db4d87cdac83c9da2e23bcedf09ee2c5d1ad72bdc3a7f159b7af230a90b42e36c8389ea277e142515172035ae0809b89c9751ffbc7157edb18653dcda1b71cb8e6b31", 0xf2, 0xf0}, {&(0x7f0000001900)="820e6258f1edadc37ed33e120a582f2eec41f4c3c28553ef882931f4d4c3fa4257846c096b292731afaabbd3a25ac3d6f94104f9e9f2645fa38b4d1a35b0edd83d16e6bcd148c1f06160de1ddb5dc28dbbf619bcced38b97e81682ff880be6286c0d02e90814ef7aed33a1515eba06655a2d3769e29fe585694b16f2ae69ca1f92caaea3c473a157c4ba830d93f2d1e377801c7a7a42964192b8b3c3136ca863474d24a25c4ecf9c7b4c480e28bf26dc0f44db3538e66d605499df358604c90ca845d0fd9584bf285d86d3d34e31b1be39607b20934abcfa198651b2fe6e4c", 0xdf, 0x4}, {&(0x7f0000001a00)="bf783c8aa320b04e98645b27495e511d57cbbe6147a988ca6a93b793828b2832b9dc3ab5fa55608fd64b476ae8ab3a392d9b5f59c54a56c48f5c87300ccd0ac683ec9886dc0b6b5dfc", 0x49}], 0x0, &(0x7f0000001b40)={[{@map_off}, {@map_acorn}, {@check_relaxed}], [{@obj_user={'obj_user', 0x3d, '/dev/input/event#\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/input/event#\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x8001}}]}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001bc0)=@IORING_OP_FADVISE={0x18, 0x2, 0x0, @fd=r8, 0x8c17, 0x0, 0x9, 0x3, 0x1}, 0xffffffff) ioctl$BTRFS_IOC_INO_PATHS(r4, 0xc0389423, &(0x7f0000001c80)={0x3, 0x48, [0x1, 0x100, 0x5, 0x7], &(0x7f0000001c00)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) 22:45:36 executing program 6: getsockname(0xffffffffffffffff, &(0x7f0000000000)=@ax25={{0x3, @null}, [@remote, @rose, @remote, @rose, @remote, @bcast, @bcast, @null]}, &(0x7f0000000080)=0x80) r0 = socket(0x11, 0x6, 0x6) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x20000, 0x0) sendmsg$MPTCP_PM_CMD_GET_ADDR(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0xb4ba96eba14948b) sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)={0xcc, 0x0, 0x2, 0x70bd29, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x80}, {0x6}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x4}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2e9}, {0x6, 0x11, 0x8001}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9e24}, {0x6, 0x11, 0xff}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x8000}, 0x20004040) getsockopt$IP_SET_OP_GET_BYNAME(r0, 0x1, 0x53, &(0x7f00000003c0)={0x6, 0x7, 'syz2\x00'}, &(0x7f0000000400)=0x28) lsetxattr(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480)=@random={'osx.', '[\x00'}, &(0x7f00000004c0)='syz2\x00', 0x5, 0x0) r2 = socket$packet(0x11, 0x2, 0x300) recvfrom(r2, &(0x7f00000005c0)=""/195, 0xc3, 0x40010121, &(0x7f00000006c0)=@in={0x2, 0x4e21, @rand_addr=0x64010102}, 0x80) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), r0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000007c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_MESH_CONFIG(r1, &(0x7f0000000880)={&(0x7f0000000740)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x30, r3, 0x2, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0x6, 0x5a}}}}, [@NL80211_ATTR_WIPHY={0x8, 0x1, 0x27}]}, 0x30}, 0x1, 0x0, 0x0, 0x40004}, 0x0) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000a40)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000900)={0xe0, r3, 0x112, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_VHT_CAPABILITY={0x10, 0x9d, {0xe000, {0x6, 0x200, 0x8000, 0xfffe}}}, @NL80211_ATTR_MAC_HINT={0xa, 0xc8, @from_mac=@device_b}, @NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_IE={0x4d, 0x2a, [@ht={0x2d, 0x1a, {0x300, 0x3, 0x2, 0x0, {0x6, 0x7, 0x0, 0x0, 0x0, 0x1, 0x1, 0x3}, 0x701, 0x7, 0x1}}, @sec_chan_ofs={0x3e, 0x1}, @erp={0x2a, 0x1, {0x1}}, @mesh_chsw={0x76, 0x6, {0x0, 0x7, 0x1f}}, @ext_channel_switch={0x3c, 0x4, {0x0, 0x5, 0x80, 0x81}}, @mesh_id={0x72, 0x6}, @mesh_chsw={0x76, 0x6, {0x7, 0x4, 0x2d, 0x2}}, @mesh_config={0x71, 0x7, {0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x1, 0x2, 0x4, 0x4}}]}, @NL80211_ATTR_BSS_SELECT={0x18, 0xe3, 0x0, 0x1, [@NL80211_BSS_SELECT_ATTR_RSSI={0x4}, @NL80211_BSS_SELECT_ATTR_BAND_PREF={0x8, 0x2, 0x735}, @NL80211_BSS_SELECT_ATTR_RSSI_ADJUST={0x6, 0x3, {0x0, 0x80}}]}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x2}, @NL80211_ATTR_BSS_SELECT={0xc, 0xe3, 0x0, 0x1, [@NL80211_BSS_SELECT_ATTR_BAND_PREF={0x8, 0x2, 0x20}]}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_IE={0x24, 0x2a, [@peer_mgmt={0x75, 0x16, {0x0, 0x4, @val=0x8, @void, @val="496580212217e5415ae5d3253408a6f5"}}, @gcr_ga={0xbd, 0x6, @device_b}]}]}, 0xe0}, 0x1, 0x0, 0x0, 0x20044001}, 0x400c0) r5 = gettid() sendmsg$AUDIT_SET(r0, &(0x7f0000000b40)={&(0x7f0000000a80)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x38, 0x3e9, 0x200, 0x70bd28, 0x25dfdbfb, {0x1c, 0x0, 0x2, r5, 0x81, 0x5, 0x1, 0x100, 0x0, 0x3}}, 0x38}, 0x1, 0x0, 0x0, 0xc4}, 0x4010) sendmsg$NL80211_CMD_START_AP(r1, &(0x7f0000000c40)={&(0x7f0000000b80), 0xc, &(0x7f0000000c00)={&(0x7f0000000bc0)={0x24, r3, 0x20, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x401, 0x1f}}}}, [@NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4054}, 0x40051) r6 = syz_io_uring_complete(0x0) sendmsg$ETHTOOL_MSG_CHANNELS_SET(r6, &(0x7f0000000d40)={&(0x7f0000000c80)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000d00)={&(0x7f0000000cc0)={0x1c, 0x0, 0x20, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_CHANNELS_COMBINED_COUNT={0x8, 0x9, 0xfffffffb}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c801}, 0x4000000) close(r6) ioctl$sock_SIOCGIFVLAN_GET_VLAN_VID_CMD(r2, 0x8982, &(0x7f0000000d80)) 22:45:36 executing program 4: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000140)=@add_del={0x2, &(0x7f0000000100)='geneve0\x00'}) r2 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r2, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@handle=@pci={{0x8}, {0x11}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048805}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r1, {0x400}}, './file0\x00'}) r4 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) close_range(r3, r4, 0x0) fchdir(r1) r5 = syz_open_dev$vcsn(&(0x7f0000000300), 0x0, 0x40001) connect$netlink(r5, &(0x7f0000000340)=@kern={0x10, 0x0, 0x0, 0x8000}, 0xc) r6 = syz_genetlink_get_family_id$gtp(&(0x7f00000003c0), r3) sendmsg$GTP_CMD_DELPDP(r5, &(0x7f0000000480)={&(0x7f0000000380), 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, r6, 0x0, 0x70bd2c, 0x25dfdbfb, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @rand_addr=0x64010101}, @GTPA_PEER_ADDRESS={0x8, 0x4, @empty}, @GTPA_NET_NS_FD={0x8, 0x7, r5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40440c4}, 0x4004810) r7 = dup3(r5, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r7, 0x4008941a, &(0x7f00000004c0)=0x2) r8 = signalfd4(r1, &(0x7f0000000500)={[0x1]}, 0x8, 0x80800) pread64(r8, &(0x7f0000000540)=""/205, 0xcd, 0x100000001) syncfs(r0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r7, 0xc018937d, &(0x7f0000000640)={{0x1, 0x1, 0x18, r0, {0x1131}}, './file0\x00'}) epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r7, &(0x7f0000000680)={0x10000001}) sendmsg$NL80211_CMD_JOIN_IBSS(r8, &(0x7f0000000900)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000700)={0x18c, 0x0, 0x202dbb895923d5b5, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_HIDDEN_SSID={0xa, 0x7e, @default_ibss_ssid}, @NL80211_ATTR_HIDDEN_SSID={0xa, 0x7e, @default_ibss_ssid}, @NL80211_ATTR_KEYS={0xe0, 0x51, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_KEY_MODE={0x5, 0x9, 0x2}]}, {0x60, 0x0, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "778df74144"}, @NL80211_KEY_MODE={0x5}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_DEFAULT_MGMT={0x4}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "0173fa67eb1598373c71694686"}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "f1956799ad97076fd05c41e463"}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}, @NL80211_KEY_TYPE={0x8, 0x7, 0x2}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT={0x4}, @NL80211_KEY_DEFAULT_TYPES={0x8, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}]}, {0x5c, 0x0, 0x0, 0x1, [@NL80211_KEY_SEQ={0x4}, @NL80211_KEY_DEFAULT_TYPES={0x28, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_KEY_DEFAULT_TYPES={0x14, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_KEY_TYPE={0x8, 0x7, 0x2}, @NL80211_KEY_IDX={0x5, 0x2, 0x3}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac01}]}]}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x999}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1ac}, @NL80211_ATTR_HIDDEN_SSID={0xa, 0x7e, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3e5}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}], @NL80211_ATTR_MESH_CONFIG={0x34, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_RANN_INTERVAL={0x6, 0x10, 0x5}, @NL80211_MESHCONF_AUTO_OPEN_PLINKS={0x5, 0x7, 0xa9}, @NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5}, @NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL={0x6, 0x12, 0x9}, @NL80211_MESHCONF_RSSI_THRESHOLD={0x8, 0x14, 0xffffffffffffff1c}, @NL80211_MESHCONF_ELEMENT_TTL={0x5, 0xf, 0x2}]}]}, 0x18c}}, 0x1) [ 76.201864] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 76.203578] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 76.205913] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 76.215420] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 76.217680] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 76.219132] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 76.226240] Bluetooth: hci0: HCI_REQ-0x0c1a [ 76.283625] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 76.286195] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 76.289151] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 76.291113] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 76.293627] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 76.295801] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 76.297627] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 76.298966] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 76.322250] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 76.326511] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 76.328414] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 76.330097] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 76.331306] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 76.332590] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 76.333882] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 76.334926] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 76.336642] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 76.337990] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 76.339076] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 76.340139] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 76.341544] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 76.342561] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 76.344082] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 76.349027] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 76.351412] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 76.353173] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 76.354760] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 76.363422] Bluetooth: hci1: HCI_REQ-0x0c1a [ 76.365940] Bluetooth: hci2: HCI_REQ-0x0c1a [ 76.377963] Bluetooth: hci3: HCI_REQ-0x0c1a [ 76.413465] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 76.415955] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 76.418584] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 76.420026] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 76.421207] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 76.422396] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 76.427957] Bluetooth: hci5: HCI_REQ-0x0c1a [ 76.428700] Bluetooth: hci6: HCI_REQ-0x0c1a [ 76.450638] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 76.471383] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 76.473786] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 76.477373] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 76.487136] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 76.488587] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 76.490398] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 76.504518] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 76.511952] Bluetooth: hci4: HCI_REQ-0x0c1a [ 76.512066] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 76.524786] Bluetooth: hci7: HCI_REQ-0x0c1a [ 78.288411] Bluetooth: hci0: command 0x0409 tx timeout [ 78.415990] Bluetooth: hci3: command 0x0409 tx timeout [ 78.417050] Bluetooth: hci1: command 0x0409 tx timeout [ 78.418069] Bluetooth: hci2: command 0x0409 tx timeout [ 78.479988] Bluetooth: hci6: command 0x0409 tx timeout [ 78.480801] Bluetooth: hci5: command 0x0409 tx timeout [ 78.543920] Bluetooth: hci7: command 0x0409 tx timeout [ 78.544650] Bluetooth: hci4: command 0x0409 tx timeout [ 80.336953] Bluetooth: hci0: command 0x041b tx timeout [ 80.464952] Bluetooth: hci2: command 0x041b tx timeout [ 80.465392] Bluetooth: hci1: command 0x041b tx timeout [ 80.465752] Bluetooth: hci3: command 0x041b tx timeout [ 80.527893] Bluetooth: hci5: command 0x041b tx timeout [ 80.528311] Bluetooth: hci6: command 0x041b tx timeout [ 80.592894] Bluetooth: hci4: command 0x041b tx timeout [ 80.593326] Bluetooth: hci7: command 0x041b tx timeout [ 82.384914] Bluetooth: hci0: command 0x040f tx timeout [ 82.512891] Bluetooth: hci3: command 0x040f tx timeout [ 82.513312] Bluetooth: hci1: command 0x040f tx timeout [ 82.513672] Bluetooth: hci2: command 0x040f tx timeout [ 82.576940] Bluetooth: hci6: command 0x040f tx timeout [ 82.577357] Bluetooth: hci5: command 0x040f tx timeout [ 82.640901] Bluetooth: hci7: command 0x040f tx timeout [ 82.641317] Bluetooth: hci4: command 0x040f tx timeout [ 84.432867] Bluetooth: hci0: command 0x0419 tx timeout [ 84.560927] Bluetooth: hci2: command 0x0419 tx timeout [ 84.561412] Bluetooth: hci1: command 0x0419 tx timeout [ 84.561770] Bluetooth: hci3: command 0x0419 tx timeout [ 84.624884] Bluetooth: hci5: command 0x0419 tx timeout [ 84.625320] Bluetooth: hci6: command 0x0419 tx timeout [ 84.688877] Bluetooth: hci4: command 0x0419 tx timeout [ 84.689325] Bluetooth: hci7: command 0x0419 tx timeout 22:46:36 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0x4}]}, 0x30}}, 0x0) acct(0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x14) 22:46:36 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x75, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7fff, 0x0, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="1c0000001d000500000000000000000004"], 0x1c}], 0x1}, 0x0) [ 134.444731] audit: type=1400 audit(1664664396.368:7): avc: denied { open } for pid=3881 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 134.446312] audit: type=1400 audit(1664664396.368:8): avc: denied { kernel } for pid=3881 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 134.456039] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 134.569340] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 134.626309] syz-executor.7 (3883) used greatest stack depth: 24760 bytes left [ 134.705507] syz-executor.7 (3890) used greatest stack depth: 24584 bytes left 22:46:36 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x75, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7fff, 0x0, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="1c0000001d000500000000000000000004"], 0x1c}], 0x1}, 0x0) 22:46:36 executing program 3: r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY_LEVEL(r0, 0x0, 0x2, 0x0, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, 0x0, 0x0) getsockopt$WPAN_SECURITY(r1, 0x0, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 134.744812] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 137.637736] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 137.644875] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 137.646989] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 137.650700] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 137.652987] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 137.655573] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 137.661094] Bluetooth: hci1: HCI_REQ-0x0c1a [ 139.727960] Bluetooth: hci2: Opcode 0x c03 failed: -110 [ 139.728026] Bluetooth: hci1: command 0x0409 tx timeout [ 139.791870] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 141.775925] Bluetooth: hci1: command 0x041b tx timeout [ 141.974311] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 141.984492] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 141.991116] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 141.994404] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 141.995548] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 141.997201] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 142.001228] Bluetooth: hci2: HCI_REQ-0x0c1a [ 143.823902] Bluetooth: hci1: command 0x040f tx timeout [ 144.016931] Bluetooth: hci2: command 0x0409 tx timeout [ 144.080871] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 145.871983] Bluetooth: hci1: command 0x0419 tx timeout [ 146.063900] Bluetooth: hci2: command 0x041b tx timeout [ 148.111927] Bluetooth: hci2: command 0x040f tx timeout [ 148.431885] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 150.159881] Bluetooth: hci2: command 0x0419 tx timeout [ 152.720880] Bluetooth: hci6: Opcode 0x c03 failed: -110 [ 154.909953] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 154.915058] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 154.916580] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 154.919809] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 154.921540] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 154.923530] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 154.928672] Bluetooth: hci6: HCI_REQ-0x0c1a [ 156.943962] Bluetooth: hci6: command 0x0409 tx timeout [ 158.992921] Bluetooth: hci6: command 0x041b tx timeout [ 161.039907] Bluetooth: hci6: command 0x040f tx timeout [ 163.087904] Bluetooth: hci6: command 0x0419 tx timeout [ 175.506066] loop5: detected capacity change from 0 to 8 [ 175.563748] loop5: detected capacity change from 0 to 8 [ 188.880053] INFO: task rcu_gp:3 blocked for more than 143 seconds. [ 188.881318] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.882274] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.883554] task:rcu_gp state:I stack:30328 pid:3 ppid:2 flags:0x00004000 [ 188.885649] Call Trace: [ 188.886434] [ 188.886863] __schedule+0x893/0x2470 [ 188.887502] ? io_schedule_timeout+0x150/0x150 [ 188.888275] ? do_raw_spin_lock+0x121/0x260 [ 188.889045] ? rwlock_bug.part.0+0x90/0x90 [ 188.889751] schedule+0xda/0x1b0 [ 188.890252] rescuer_thread+0x851/0xdb0 [ 188.890805] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.891503] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.892201] ? lockdep_hardirqs_on+0x79/0x100 [ 188.892856] ? worker_thread+0x1260/0x1260 [ 188.893443] kthread+0x2ed/0x3a0 [ 188.893940] ? kthread_complete_and_exit+0x40/0x40 [ 188.894615] ret_from_fork+0x22/0x30 [ 188.895171] [ 188.895496] INFO: task rcu_par_gp:4 blocked for more than 143 seconds. [ 188.896366] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.897104] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.898151] task:rcu_par_gp state:I stack:30944 pid:4 ppid:2 flags:0x00004000 [ 188.899276] Call Trace: [ 188.899629] [ 188.899974] __schedule+0x893/0x2470 [ 188.900506] ? io_schedule_timeout+0x150/0x150 [ 188.901182] ? do_raw_spin_lock+0x121/0x260 [ 188.901768] ? rwlock_bug.part.0+0x90/0x90 [ 188.902386] schedule+0xda/0x1b0 [ 188.902882] rescuer_thread+0x851/0xdb0 [ 188.903434] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.904129] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.904808] ? lockdep_hardirqs_on+0x79/0x100 [ 188.905449] ? worker_thread+0x1260/0x1260 [ 188.906055] kthread+0x2ed/0x3a0 [ 188.906522] ? kthread_complete_and_exit+0x40/0x40 [ 188.907216] ret_from_fork+0x22/0x30 [ 188.907763] [ 188.908108] INFO: task slub_flushwq:5 blocked for more than 143 seconds. [ 188.909009] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.909707] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.910723] task:slub_flushwq state:I stack:30944 pid:5 ppid:2 flags:0x00004000 [ 188.911845] Call Trace: [ 188.912198] [ 188.912517] __schedule+0x893/0x2470 [ 188.913095] ? io_schedule_timeout+0x150/0x150 [ 188.913717] ? do_raw_spin_lock+0x121/0x260 [ 188.914326] ? rwlock_bug.part.0+0x90/0x90 [ 188.914938] schedule+0xda/0x1b0 [ 188.915417] rescuer_thread+0x851/0xdb0 [ 188.915989] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.916665] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.917370] ? lockdep_hardirqs_on+0x79/0x100 [ 188.918014] ? worker_thread+0x1260/0x1260 [ 188.918593] kthread+0x2ed/0x3a0 [ 188.919084] ? kthread_complete_and_exit+0x40/0x40 [ 188.919754] ret_from_fork+0x22/0x30 [ 188.920309] [ 188.920629] INFO: task netns:6 blocked for more than 143 seconds. [ 188.921464] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.922184] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.923214] task:netns state:I stack:30944 pid:6 ppid:2 flags:0x00004000 [ 188.924332] Call Trace: [ 188.924685] [ 188.925053] __schedule+0x893/0x2470 [ 188.925577] ? io_schedule_timeout+0x150/0x150 [ 188.926216] ? do_raw_spin_lock+0x121/0x260 [ 188.926816] ? rwlock_bug.part.0+0x90/0x90 [ 188.927430] schedule+0xda/0x1b0 [ 188.927925] rescuer_thread+0x851/0xdb0 [ 188.928479] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.929192] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.929897] ? lockdep_hardirqs_on+0x79/0x100 [ 188.930512] ? worker_thread+0x1260/0x1260 [ 188.931121] kthread+0x2ed/0x3a0 [ 188.931596] ? kthread_complete_and_exit+0x40/0x40 [ 188.932281] ret_from_fork+0x22/0x30 [ 188.932856] [ 188.933185] INFO: task kworker/0:0:7 blocked for more than 143 seconds. [ 188.934069] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.934764] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.935782] task:kworker/0:0 state:I stack:29592 pid:7 ppid:2 flags:0x00004000 [ 188.936919] Workqueue: 0x0 (events) [ 188.937434] Call Trace: [ 188.937792] [ 188.938134] __schedule+0x893/0x2470 [ 188.938663] ? io_schedule_timeout+0x150/0x150 [ 188.939326] schedule+0xda/0x1b0 [ 188.939803] worker_thread+0x15f/0x1260 [ 188.940401] ? process_one_work+0x16a0/0x16a0 [ 188.941053] kthread+0x2ed/0x3a0 [ 188.941525] ? kthread_complete_and_exit+0x40/0x40 [ 188.942229] ret_from_fork+0x22/0x30 [ 188.942761] [ 188.943143] INFO: task kworker/0:0H:8 blocked for more than 143 seconds. [ 188.944044] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.944753] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.945802] task:kworker/0:0H state:I stack:28952 pid:8 ppid:2 flags:0x00004000 [ 188.946943] Workqueue: 0x0 (kblockd) [ 188.947468] Call Trace: [ 188.947839] [ 188.948160] __schedule+0x893/0x2470 [ 188.948687] ? io_schedule_timeout+0x150/0x150 [ 188.949361] schedule+0xda/0x1b0 [ 188.949863] worker_thread+0x15f/0x1260 [ 188.950438] ? process_one_work+0x16a0/0x16a0 [ 188.951090] kthread+0x2ed/0x3a0 [ 188.951559] ? kthread_complete_and_exit+0x40/0x40 [ 188.952259] ret_from_fork+0x22/0x30 [ 188.952811] [ 188.953164] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds. [ 188.954074] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.954780] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.955832] task:mm_percpu_wq state:I stack:30944 pid:10 ppid:2 flags:0x00004000 [ 188.956984] Call Trace: [ 188.957348] [ 188.957667] __schedule+0x893/0x2470 [ 188.958216] ? io_schedule_timeout+0x150/0x150 [ 188.958864] ? do_raw_spin_lock+0x121/0x260 [ 188.959463] ? rwlock_bug.part.0+0x90/0x90 [ 188.960081] schedule+0xda/0x1b0 [ 188.960562] rescuer_thread+0x851/0xdb0 [ 188.961150] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.961859] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.962547] ? lockdep_hardirqs_on+0x79/0x100 [ 188.963195] ? worker_thread+0x1260/0x1260 [ 188.963783] kthread+0x2ed/0x3a0 [ 188.964278] ? kthread_complete_and_exit+0x40/0x40 [ 188.965007] ret_from_fork+0x22/0x30 [ 188.965548] [ 188.965899] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds. [ 188.966853] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.967558] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.968587] task:rcu_tasks_kthre state:I stack:29272 pid:11 ppid:2 flags:0x00004000 [ 188.969728] Call Trace: [ 188.970105] [ 188.970424] __schedule+0x893/0x2470 [ 188.970981] ? io_schedule_timeout+0x150/0x150 [ 188.971613] ? mark_held_locks+0x9e/0xe0 [ 188.972198] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 188.972928] schedule+0xda/0x1b0 [ 188.973415] rcu_tasks_one_gp+0x3db/0xc10 [ 188.974057] rcu_tasks_kthread+0x80/0xa0 [ 188.974614] ? rcu_tasks_postscan+0x10/0x10 [ 188.975234] kthread+0x2ed/0x3a0 [ 188.975710] ? kthread_complete_and_exit+0x40/0x40 [ 188.976404] ret_from_fork+0x22/0x30 [ 188.976976] [ 188.977300] INFO: task kworker/1:0H:21 blocked for more than 143 seconds. [ 188.978211] Not tainted 6.0.0-rc7-next-20220930 #1 [ 188.978940] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 188.979969] task:kworker/1:0H state:I stack:29760 pid:21 ppid:2 flags:0x00004000 [ 188.981097] Workqueue: 0x0 (events_highpri) [ 188.981709] Call Trace: [ 188.982090] [ 188.982416] __schedule+0x893/0x2470 [ 188.982973] ? io_schedule_timeout+0x150/0x150 [ 188.983627] schedule+0xda/0x1b0 [ 188.984153] worker_thread+0x15f/0x1260 [ 188.984736] ? process_one_work+0x16a0/0x16a0 [ 188.985416] kthread+0x2ed/0x3a0 [ 188.985916] ? kthread_complete_and_exit+0x40/0x40 [ 188.986593] ret_from_fork+0x22/0x30 [ 188.987152] [ 189.018856] INFO: task inet_frag_wq:23 blocked for more than 143 seconds. [ 189.019869] Not tainted 6.0.0-rc7-next-20220930 #1 [ 189.020599] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 189.021692] task:inet_frag_wq state:I stack:30704 pid:23 ppid:2 flags:0x00004000 [ 189.022851] Call Trace: [ 189.023217] [ 189.023549] __schedule+0x893/0x2470 [ 189.024126] ? io_schedule_timeout+0x150/0x150 [ 189.024764] ? do_raw_spin_lock+0x121/0x260 [ 189.025419] ? rwlock_bug.part.0+0x90/0x90 [ 189.026059] schedule+0xda/0x1b0 [ 189.026562] rescuer_thread+0x851/0xdb0 [ 189.027161] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 189.027896] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 189.028610] ? lockdep_hardirqs_on+0x79/0x100 [ 189.029299] ? worker_thread+0x1260/0x1260 [ 189.029926] kthread+0x2ed/0x3a0 [ 189.030418] ? kthread_complete_and_exit+0x40/0x40 [ 189.031146] ret_from_fork+0x22/0x30 [ 189.031699] [ 189.032111] [ 189.032111] Showing all locks held in the system: [ 189.032968] 1 lock held by rcu_tasks_kthre/11: [ 189.033580] #0: ffffffff85406850 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10 [ 189.034916] 1 lock held by khungtaskd/25: [ 189.035481] #0: ffffffff85407320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 189.036715] 1 lock held by in:imklog/203: [ 189.037329] 3 locks held by syz-executor/5329: [ 189.037965] [ 189.038204] ============================================= [ 189.038204] 22:47:31 executing program 0: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCGETA(r0, 0x5405, &(0x7f0000000000)) ioctl$KDSKBSENT(r0, 0x4b49, &(0x7f0000000200)={0x0, "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"}) 22:47:31 executing program 7: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x75, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x7fff, 0x0, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000007ec0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="1c0000001d000500000000000000000004"], 0x1c}], 0x1}, 0x0) 22:47:31 executing program 5: r0 = syz_mount_image$tmpfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000400)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x161941, 0x2) dup3(r0, r0, 0x80000) r2 = openat$sr(0xffffffffffffff9c, 0x0, 0x1cd802, 0x0) openat2(r2, 0x0, &(0x7f00000001c0)={0x101000, 0x0, 0x11}, 0x18) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000140)='\x00', 0x1a}], 0x1, 0x7fffffc, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x42420, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0xdf8, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r3, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x7) pwrite64(r3, &(0x7f0000000300)="3489b63a22c66179a6594692a56cda4b1d8906aedf191efd9c53c32fe34f5e55a407996a7d43ad7d4bdf74ebfa9b3d2f0063d24c3e9045874d0f4728bfb889d35bf62d10bd2e8137e2b8e2c40af6a0c209641f99b75217c0e316a1ae0095952459114c04d117a219e79031c39978a89195f7b1f5c9264fa1fad2ba07b1355a892892a805c9ad1df24d02a709adc449852e0ac4005d1b8b38219f543faf8aacc942d596c147dfbdedded536177050421e16d2c05fa8817cb56fdde708aeb339198e73a9ed01d711f4a6b6defe920f20ac2d5d2644d37c2e00769f1cad17b0a6294b7aecc7dfa5004663d8c4f0a530292cff60522dffb0656d30", 0xf9, 0x0) r4 = perf_event_open(&(0x7f0000000200)={0x3, 0x80, 0xff, 0x1, 0x6, 0x5b, 0x0, 0x4, 0x1000, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x4c}, 0xd000, 0x80000000, 0x0, 0x0, 0x40, 0x5, 0x1, 0x0, 0x7fff, 0x0, 0x1f}, 0x0, 0x8, r1, 0x1) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xa0014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffffffffffffff, r4, 0x0) truncate(&(0x7f0000000180)='./file1\x00', 0x0) 22:47:31 executing program 2: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)='devpts\x00', 0x0, 0x0) r1 = inotify_init() inotify_add_watch(r1, &(0x7f0000000100)='./file0\x00', 0x500) umount2(&(0x7f0000000000)='./file0\x00', 0x0) inotify_add_watch(r1, &(0x7f0000000040)='./file0\x00', 0x210002c1) pivot_root(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00') ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f0000000140)={&(0x7f0000000080)=""/45, 0x2d, 0x3, 0x81}) inotify_add_watch(r1, &(0x7f0000000200)='./file0\x00', 0x60000180) r2 = socket$nl_audit(0x10, 0x3, 0x9) close(r2) 22:47:31 executing program 6: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCDELRT(r0, 0x890c, &(0x7f0000000000)={@private2={0xfc, 0x2, '\x00', 0x1}, @private2={0xfc, 0x2, '\x00', 0x1}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8, 0x71, 0xff, 0x400, 0x5, 0x40108}) sendmsg$inet6(r0, &(0x7f00000063c0)={&(0x7f0000006140)={0xa, 0x4e22, 0x0, @mcast2, 0x6}, 0x1c, 0x0, 0x0, &(0x7f0000006300)=[@rthdrdstopts={{0x18}}], 0x18}, 0x0) 22:47:31 executing program 4: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000380), 0x2}, 0x12354}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x1200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) fallocate(r1, 0x0, 0x0, 0x87ffffc) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x220000, 0x0) openat(r2, &(0x7f00000003c0)='./file1\x00', 0x402, 0x1bb) pwritev(r1, &(0x7f0000000000)=[{&(0x7f0000001340)="e4eb8e5355feefc9b3c48a57cf1602a197c4b0087f7e5812368dc3bab70e0418263fc620b190aa02558bcfb0e65cb7786074964845b33e3618af6ae487cb258242e1e8731eec366954e0c20a64f07e48", 0x50}], 0x1, 0x8d, 0x7bf6) pwritev2(r0, &(0x7f0000000300)=[{&(0x7f0000000180)="3c05886344f6c1676463474261a3cd71268afe038e7d96f46fea5246194a21c0bca49aab4882c5e4b508f5caf019902800cc407c31ecca2126ec616e9ef51561c11fb6d5ad0dc0c03998e37daae333db1252ad0d6b210c26dc017bcd9eb7b3773f1ab930713c646093f3efac450fcd793d65bfca217cf1d1be3971f4b8bee2b4fd3876a9b065f04ff62603f3cffe0e3ead48226b756653faf696165c00c54890e8d4590f8c08e761926d1a367f7adaff0cd7a0a804aae86072e3866492eabdfbbf60d4a310dfda9cb5f679ca00946a01dd39236d72f2aa56bb3d9d47c042843926cfff2164e5df0e048b3a8d", 0xec}], 0x1, 0x6, 0x2, 0x0) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) ioctl$AUTOFS_IOC_READY(r4, 0x9360, 0xbc) r6 = signalfd4(0xffffffffffffffff, &(0x7f0000000340), 0x8, 0x0) r7 = fcntl$dupfd(r3, 0x406, r5) ioctl$KDFONTOP_SET_DEF(r7, 0x4b72, &(0x7f0000000400)={0x2, 0x1, 0x1d, 0x1b, 0x1b4, &(0x7f0000000800)="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"}) signalfd4(r6, &(0x7f00000007c0)={[0xa62]}, 0x8, 0x80000) r8 = signalfd4(0xffffffffffffffff, &(0x7f0000000340), 0x8, 0x0) signalfd4(r8, &(0x7f00000007c0)={[0xa62]}, 0x8, 0x80000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r6, 0xc0189374, &(0x7f0000000340)=ANY=[@ANYBLOB="013300000100000018000000", @ANYRES32=r8, @ANYBLOB="01000000000000002e2f66698074b21c"]) bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x7) fallocate(0xffffffffffffffff, 0x40, 0xffff, 0x400) 22:47:31 executing program 1: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25, 0x1}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011200)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4042, 0x0) pipe(0x0) llistxattr(&(0x7f0000000380)='./file1\x00', 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x400000080000001) mount_setattr(0xffffffffffffffff, &(0x7f0000000400)='./file0\x00', 0xa00, &(0x7f0000000480)={0x2, 0x7c, 0x100000}, 0x20) fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, &(0x7f0000000340)) fsetxattr$security_evm(0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000000440)=ANY=[], 0x3, 0x0) mount_setattr(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000180)={0x0, 0x200000, 0x0, {r0}}, 0x20) write$binfmt_aout(r0, &(0x7f0000000c40)=ANY=[], 0x820) r1 = syz_open_procfs(0x0, 0x0) preadv(r1, &(0x7f0000001540)=[{&(0x7f0000001240)=""/157, 0x9d}], 0x1, 0xffffffff, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/slabinfo\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000440)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="000000062d828fb2cbaefcf8d0ffd49177f3ff169a1176aba3d2ff"]) mount_setattr(r2, &(0x7f0000000240)='./file1\x00', 0x8800, &(0x7f00000003c0)={0x5, 0x4, 0x160000, {r3}}, 0x20) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0xe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r4, 0x0, 0x7fffffff) 22:47:31 executing program 3: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0xd29, &(0x7f0000000780)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) io_submit(r0, 0x1, &(0x7f0000000040)=[&(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x0, r1, &(0x7f0000000000)="1c", 0xf}]) perf_event_open$cgroup(&(0x7f0000000180)={0x0, 0x80, 0x1, 0xf9, 0x1, 0x9, 0x0, 0x7, 0x10, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x4, @perf_bp={&(0x7f0000000140), 0x12}, 0x473c, 0x100000000, 0x3ff, 0x3, 0x7649, 0x8, 0x40, 0x0, 0x3, 0x0, 0x6}, r1, 0x5, 0xffffffffffffffff, 0x2) [ 189.373215] audit: type=1400 audit(1664664451.296:9): avc: denied { watch_reads } for pid=5330 comm="syz-executor.2" path="/syzkaller-testdir821046719/syzkaller.LqfkQW/1/file0" dev="sda" ino=15982 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=dir permissive=1 [ 189.388869] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'. [ 189.391239] loop1: detected capacity change from 0 to 256 [ 189.392661] ieee80211 phy5: Selected rate control algorithm 'minstrel_ht' [ 189.401830] ------------[ cut here ]------------ [ 189.401865] [ 189.401870] ====================================================== [ 189.401876] WARNING: possible circular locking dependency detected [ 189.401882] 6.0.0-rc7-next-20220930 #1 Not tainted [ 189.401894] ------------------------------------------------------ [ 189.401900] syz-executor.4/5340 is trying to acquire lock: [ 189.401911] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 189.401978] [ 189.401978] but task is already holding lock: [ 189.401983] ffff88800f96e820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 189.402030] [ 189.402030] which lock already depends on the new lock. [ 189.402030] [ 189.402035] [ 189.402035] the existing dependency chain (in reverse order) is: [ 189.402041] [ 189.402041] -> #3 (&ctx->lock){....}-{2:2}: [ 189.402066] _raw_spin_lock+0x2a/0x40 [ 189.402086] __perf_event_task_sched_out+0x53b/0x18d0 [ 189.402107] __schedule+0xedd/0x2470 [ 189.402132] schedule+0xda/0x1b0 [ 189.402156] exit_to_user_mode_prepare+0x114/0x1a0 [ 189.402178] syscall_exit_to_user_mode+0x19/0x40 [ 189.402201] do_syscall_64+0x48/0x90 [ 189.402232] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.402256] [ 189.402256] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 189.402281] _raw_spin_lock_nested+0x30/0x40 [ 189.402300] raw_spin_rq_lock_nested+0x1e/0x30 [ 189.402323] task_fork_fair+0x63/0x4d0 [ 189.402354] sched_cgroup_fork+0x3d0/0x540 [ 189.402380] copy_process+0x4183/0x6e20 [ 189.402399] kernel_clone+0xe7/0x890 [ 189.402416] user_mode_thread+0xad/0xf0 [ 189.402434] rest_init+0x24/0x250 [ 189.402456] arch_call_rest_init+0xf/0x14 [ 189.402487] start_kernel+0x4c6/0x4eb [ 189.402515] secondary_startup_64_no_verify+0xe0/0xeb [ 189.402543] [ 189.402543] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 189.402568] _raw_spin_lock_irqsave+0x39/0x60 [ 189.402588] try_to_wake_up+0xab/0x1930 [ 189.402612] up+0x75/0xb0 [ 189.402637] __up_console_sem+0x6e/0x80 [ 189.402666] console_unlock+0x46a/0x590 [ 189.402695] vprintk_emit+0x1bd/0x560 [ 189.402724] vprintk+0x84/0xa0 [ 189.402753] _printk+0xba/0xf1 [ 189.402773] kauditd_hold_skb.cold+0x3f/0x4e [ 189.402804] kauditd_send_queue+0x233/0x290 [ 189.402831] kauditd_thread+0x5f9/0x9c0 [ 189.402856] kthread+0x2ed/0x3a0 [ 189.402882] ret_from_fork+0x22/0x30 [ 189.402904] [ 189.402904] -> #0 ((console_sem).lock){....}-{2:2}: [ 189.402929] __lock_acquire+0x2a02/0x5e70 [ 189.402960] lock_acquire+0x1a2/0x530 [ 189.402989] _raw_spin_lock_irqsave+0x39/0x60 [ 189.403008] down_trylock+0xe/0x70 [ 189.403035] __down_trylock_console_sem+0x3b/0xd0 [ 189.403065] vprintk_emit+0x16b/0x560 [ 189.403094] vprintk+0x84/0xa0 [ 189.403123] _printk+0xba/0xf1 [ 189.403142] report_bug.cold+0x72/0xab [ 189.403171] handle_bug+0x3c/0x70 [ 189.403201] exc_invalid_op+0x14/0x50 [ 189.403232] asm_exc_invalid_op+0x16/0x20 [ 189.403254] group_sched_out.part.0+0x2c7/0x460 [ 189.403287] ctx_sched_out+0x8f1/0xc10 [ 189.403317] __perf_event_task_sched_out+0x6d0/0x18d0 [ 189.403337] __schedule+0xedd/0x2470 [ 189.403362] schedule+0xda/0x1b0 [ 189.403386] exit_to_user_mode_prepare+0x114/0x1a0 [ 189.403406] syscall_exit_to_user_mode+0x19/0x40 [ 189.403429] do_syscall_64+0x48/0x90 [ 189.403459] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.403483] [ 189.403483] other info that might help us debug this: [ 189.403483] [ 189.403487] Chain exists of: [ 189.403487] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 189.403487] [ 189.403515] Possible unsafe locking scenario: [ 189.403515] [ 189.403519] CPU0 CPU1 [ 189.403523] ---- ---- [ 189.403527] lock(&ctx->lock); [ 189.403537] lock(&rq->__lock); [ 189.403549] lock(&ctx->lock); [ 189.403560] lock((console_sem).lock); [ 189.403571] [ 189.403571] *** DEADLOCK *** [ 189.403571] [ 189.403574] 2 locks held by syz-executor.4/5340: [ 189.403586] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 189.403640] #1: ffff88800f96e820 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 189.403688] [ 189.403688] stack backtrace: [ 189.403693] CPU: 1 PID: 5340 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220930 #1 [ 189.403715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 189.403730] Call Trace: [ 189.403735] [ 189.403742] dump_stack_lvl+0x8b/0xb3 [ 189.403775] check_noncircular+0x263/0x2e0 [ 189.403806] ? format_decode+0x26c/0xb50 [ 189.403835] ? print_circular_bug+0x450/0x450 [ 189.403866] ? simple_strtoul+0x30/0x30 [ 189.403895] ? format_decode+0x26c/0xb50 [ 189.403927] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 189.403959] __lock_acquire+0x2a02/0x5e70 [ 189.403999] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 189.404040] lock_acquire+0x1a2/0x530 [ 189.404070] ? down_trylock+0xe/0x70 [ 189.404102] ? lock_release+0x750/0x750 [ 189.404136] ? __lock_acquire+0x164d/0x5e70 [ 189.404169] ? vprintk+0x84/0xa0 [ 189.404202] _raw_spin_lock_irqsave+0x39/0x60 [ 189.404223] ? down_trylock+0xe/0x70 [ 189.404252] down_trylock+0xe/0x70 [ 189.404281] ? vprintk+0x84/0xa0 [ 189.404312] __down_trylock_console_sem+0x3b/0xd0 [ 189.404344] vprintk_emit+0x16b/0x560 [ 189.404379] vprintk+0x84/0xa0 [ 189.404410] _printk+0xba/0xf1 [ 189.404432] ? record_print_text.cold+0x16/0x16 [ 189.404461] ? report_bug.cold+0x66/0xab [ 189.404494] ? group_sched_out.part.0+0x2c7/0x460 [ 189.404527] report_bug.cold+0x72/0xab [ 189.404562] handle_bug+0x3c/0x70 [ 189.404594] exc_invalid_op+0x14/0x50 [ 189.404627] asm_exc_invalid_op+0x16/0x20 [ 189.404650] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 189.404687] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 189.404708] RSP: 0018:ffff88803edf7c48 EFLAGS: 00010006 [ 189.404724] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 189.404738] RDX: ffff88803e219ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 189.404752] RBP: ffff88803ea00b90 R08: 0000000000000005 R09: 0000000000000001 [ 189.404765] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800f96e800 [ 189.404779] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 189.404808] ? group_sched_out.part.0+0x2c7/0x460 [ 189.404845] ? group_sched_out.part.0+0x2c7/0x460 [ 189.404881] ctx_sched_out+0x8f1/0xc10 [ 189.404917] __perf_event_task_sched_out+0x6d0/0x18d0 [ 189.404943] ? lock_is_held_type+0xd7/0x130 [ 189.404968] ? __perf_cgroup_move+0x160/0x160 [ 189.404988] ? set_next_entity+0x304/0x550 [ 189.405020] ? update_curr+0x267/0x740 [ 189.405054] ? lock_is_held_type+0xd7/0x130 [ 189.405080] __schedule+0xedd/0x2470 [ 189.405111] ? io_schedule_timeout+0x150/0x150 [ 189.405142] ? rcu_read_lock_sched_held+0x3e/0x80 [ 189.405179] schedule+0xda/0x1b0 [ 189.405207] exit_to_user_mode_prepare+0x114/0x1a0 [ 189.405230] syscall_exit_to_user_mode+0x19/0x40 [ 189.405255] do_syscall_64+0x48/0x90 [ 189.405287] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.405312] RIP: 0033:0x7f797bd2cb19 [ 189.405327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 189.405347] RSP: 002b:00007f79792a2218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 189.405366] RAX: 0000000000000001 RBX: 00007f797be3ff68 RCX: 00007f797bd2cb19 [ 189.405380] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f797be3ff6c [ 189.405393] RBP: 00007f797be3ff60 R08: 000000000000000e R09: 0000000000000000 [ 189.405406] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f797be3ff6c [ 189.405419] R13: 00007ffd8de9285f R14: 00007f79792a2300 R15: 0000000000022000 [ 189.405443] [ 189.405451] WARNING: CPU: 1 PID: 5340 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 189.405496] Modules linked in: [ 189.405504] CPU: 1 PID: 5340 Comm: syz-executor.4 Not tainted 6.0.0-rc7-next-20220930 #1 [ 189.405527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 189.405540] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 189.405577] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 189.405597] RSP: 0018:ffff88803edf7c48 EFLAGS: 00010006 [ 189.405614] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 189.405628] RDX: ffff88803e219ac0 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 189.405643] RBP: ffff88803ea00b90 R08: 0000000000000005 R09: 0000000000000001 [ 189.405657] R10: 0000000000000000 R11: ffffffff865b405b R12: ffff88800f96e800 [ 189.405671] R13: ffff88806cf3d2c0 R14: ffffffff8547d000 R15: 0000000000000002 [ 189.405689] FS: 00007f79792a2700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 189.405711] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 189.405727] CR2: 0000001b2dd21000 CR3: 00000000324a4000 CR4: 0000000000350ee0 [ 189.405741] Call Trace: [ 189.405747] [ 189.405756] ctx_sched_out+0x8f1/0xc10 [ 189.405793] __perf_event_task_sched_out+0x6d0/0x18d0 [ 189.405820] ? lock_is_held_type+0xd7/0x130 [ 189.405847] ? __perf_cgroup_move+0x160/0x160 [ 189.405867] ? set_next_entity+0x304/0x550 [ 189.405900] ? update_curr+0x267/0x740 [ 189.405935] ? lock_is_held_type+0xd7/0x130 [ 189.405961] __schedule+0xedd/0x2470 [ 189.405993] ? io_schedule_timeout+0x150/0x150 [ 189.406025] ? rcu_read_lock_sched_held+0x3e/0x80 [ 189.406062] schedule+0xda/0x1b0 [ 189.406090] exit_to_user_mode_prepare+0x114/0x1a0 [ 189.406114] syscall_exit_to_user_mode+0x19/0x40 [ 189.406139] do_syscall_64+0x48/0x90 [ 189.406173] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 189.406198] RIP: 0033:0x7f797bd2cb19 [ 189.406213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 189.406234] RSP: 002b:00007f79792a2218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 189.406254] RAX: 0000000000000001 RBX: 00007f797be3ff68 RCX: 00007f797bd2cb19 [ 189.406269] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f797be3ff6c [ 189.406283] RBP: 00007f797be3ff60 R08: 000000000000000e R09: 0000000000000000 [ 189.406297] R10: 0000000000000003 R11: 0000000000000246 R12: 00007f797be3ff6c [ 189.406311] R13: 00007ffd8de9285f R14: 00007f79792a2300 R15: 0000000000022000 [ 189.406335] [ 189.406342] irq event stamp: 428 [ 189.406349] hardirqs last enabled at (427): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 189.406377] hardirqs last disabled at (428): [] __schedule+0x1225/0x2470 [ 189.407204] FAT-fs (loop1): bogus number of FAT structure [ 189.407996] softirqs last enabled at (254): [] __irq_exit_rcu+0x11b/0x180 [ 189.408649] FAT-fs (loop1): Can't find a valid FAT filesystem [ 189.408856] softirqs last disabled at (245): [] __irq_exit_rcu+0x11b/0x180 [ 189.432832] hrtimer: interrupt took 17102 ns [ 189.432925] ---[ end trace 0000000000000000 ]--- [ 189.609595] loop1: detected capacity change from 0 to 256 [ 189.613168] FAT-fs (loop1): bogus number of FAT structure [ 189.613985] FAT-fs (loop1): Can't find a valid FAT filesystem VM DIAGNOSIS: 22:47:31 Registers: info registers vcpu 0 RAX=dffffc0000000000 RBX=1ffff11006ef3f36 RCX=0000000000000000 RDX=ffffffff86cd48a0 RSI=0000000000000000 RDI=ffff888015c777c0 RBP=0000000000000000 RSP=ffff88803779f838 R8 =0000000000000001 R9 =0000000000000001 R10=fffffbfff0b60dda R11=0000000000000001 R12=ffff888018819ac0 R13=0000000000000000 R14=ffff888015c777b8 R15=0000000000000000 RIP=ffffffff8129bfb1 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000555556b44400 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffd1ab99080 CR3=000000003ad1a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 00000000ff000000 0000000000000000 YMM01=0000000000000000 0000000000000000 636f6c63006b6165 6c6d656d6b2f6775 YMM02=0000000000000000 0000000000000000 0000000000ffffff ff00000000000000 YMM03=0000000000000000 0000000000000000 0000ff0000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffff000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff823bb06c RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88800902f800 R8 =0000000000000004 R9 =0000000000000010 R10=000000000000000c R11=0000000000000001 R12=0000000000002710 R13=0000000000000060 R14=fffffbfff0ecb584 R15=dffffc0000000000 RIP=ffffffff823bb0c1 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000559ca7eee648 CR3=000000001aa2e000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM02=0000000000000000 0000000000000000 0000000000000000 41808006c0000000 YMM03=0000000000000000 0000000000000000 0000ff0000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 732f6c61636f6c2f 7273752f3d485441 YMM05=0000000000000000 0000000000000000 622f6c61636f6c2f 7273752f3a6e6962 YMM06=0000000000000000 0000000000000000 73752f3a6e696273 2f7273752f3a6e69 YMM07=0000000000000000 0000000000000000 6e69622f3a6e6962 732f3a6e69622f72 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000