Warning: Permanently added '[localhost]:2786' (ECDSA) to the list of known hosts. 2022/10/02 19:05:52 fuzzer started 2022/10/02 19:05:53 dialing manager at localhost:35095 syzkaller login: [ 36.227130] cgroup: Unknown subsys name 'net' [ 36.339570] cgroup: Unknown subsys name 'rlimit' 2022/10/02 19:06:07 syscalls: 2215 2022/10/02 19:06:07 code coverage: enabled 2022/10/02 19:06:07 comparison tracing: enabled 2022/10/02 19:06:07 extra coverage: enabled 2022/10/02 19:06:07 setuid sandbox: enabled 2022/10/02 19:06:07 namespace sandbox: enabled 2022/10/02 19:06:07 Android sandbox: enabled 2022/10/02 19:06:07 fault injection: enabled 2022/10/02 19:06:07 leak checking: enabled 2022/10/02 19:06:07 net packet injection: enabled 2022/10/02 19:06:07 net device setup: enabled 2022/10/02 19:06:07 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/02 19:06:07 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/02 19:06:07 USB emulation: enabled 2022/10/02 19:06:07 hci packet injection: enabled 2022/10/02 19:06:07 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/02 19:06:07 802.15.4 emulation: enabled 2022/10/02 19:06:07 fetching corpus: 50, signal 27136/28958 (executing program) 2022/10/02 19:06:07 fetching corpus: 100, signal 37573/41079 (executing program) 2022/10/02 19:06:07 fetching corpus: 150, signal 46299/51387 (executing program) 2022/10/02 19:06:08 fetching corpus: 200, signal 50086/56730 (executing program) 2022/10/02 19:06:08 fetching corpus: 250, signal 57412/65459 (executing program) 2022/10/02 19:06:08 fetching corpus: 300, signal 61904/71350 (executing program) 2022/10/02 19:06:08 fetching corpus: 350, signal 64837/75718 (executing program) 2022/10/02 19:06:08 fetching corpus: 400, signal 68984/81171 (executing program) 2022/10/02 19:06:08 fetching corpus: 450, signal 73504/86885 (executing program) 2022/10/02 19:06:08 fetching corpus: 500, signal 75714/90402 (executing program) 2022/10/02 19:06:08 fetching corpus: 550, signal 77981/93953 (executing program) 2022/10/02 19:06:08 fetching corpus: 600, signal 80850/98015 (executing program) 2022/10/02 19:06:09 fetching corpus: 650, signal 85899/103973 (executing program) 2022/10/02 19:06:09 fetching corpus: 700, signal 87907/107189 (executing program) 2022/10/02 19:06:09 fetching corpus: 750, signal 91335/111676 (executing program) 2022/10/02 19:06:09 fetching corpus: 800, signal 94623/115982 (executing program) 2022/10/02 19:06:09 fetching corpus: 850, signal 96804/119249 (executing program) 2022/10/02 19:06:09 fetching corpus: 900, signal 98910/122429 (executing program) 2022/10/02 19:06:09 fetching corpus: 950, signal 100296/124937 (executing program) 2022/10/02 19:06:09 fetching corpus: 1000, signal 102000/127684 (executing program) 2022/10/02 19:06:09 fetching corpus: 1050, signal 104176/130802 (executing program) 2022/10/02 19:06:10 fetching corpus: 1100, signal 106639/134155 (executing program) 2022/10/02 19:06:10 fetching corpus: 1150, signal 110835/138958 (executing program) 2022/10/02 19:06:10 fetching corpus: 1200, signal 113207/142154 (executing program) 2022/10/02 19:06:10 fetching corpus: 1250, signal 115711/145390 (executing program) 2022/10/02 19:06:10 fetching corpus: 1300, signal 117633/148132 (executing program) 2022/10/02 19:06:10 fetching corpus: 1350, signal 120271/151461 (executing program) 2022/10/02 19:06:10 fetching corpus: 1400, signal 121747/153842 (executing program) 2022/10/02 19:06:11 fetching corpus: 1450, signal 123202/156122 (executing program) 2022/10/02 19:06:11 fetching corpus: 1500, signal 124175/158022 (executing program) 2022/10/02 19:06:11 fetching corpus: 1550, signal 125675/160406 (executing program) 2022/10/02 19:06:11 fetching corpus: 1600, signal 126560/162214 (executing program) 2022/10/02 19:06:11 fetching corpus: 1650, signal 128198/164631 (executing program) 2022/10/02 19:06:11 fetching corpus: 1700, signal 129400/166665 (executing program) 2022/10/02 19:06:11 fetching corpus: 1750, signal 130342/168457 (executing program) 2022/10/02 19:06:11 fetching corpus: 1800, signal 131824/170671 (executing program) 2022/10/02 19:06:11 fetching corpus: 1850, signal 133510/173008 (executing program) 2022/10/02 19:06:12 fetching corpus: 1900, signal 134920/175108 (executing program) 2022/10/02 19:06:12 fetching corpus: 1950, signal 136374/177253 (executing program) 2022/10/02 19:06:12 fetching corpus: 2000, signal 138077/179539 (executing program) 2022/10/02 19:06:12 fetching corpus: 2050, signal 140094/181989 (executing program) 2022/10/02 19:06:12 fetching corpus: 2100, signal 141429/183902 (executing program) 2022/10/02 19:06:12 fetching corpus: 2150, signal 142430/185597 (executing program) 2022/10/02 19:06:12 fetching corpus: 2200, signal 143859/187577 (executing program) 2022/10/02 19:06:12 fetching corpus: 2250, signal 145425/189641 (executing program) 2022/10/02 19:06:12 fetching corpus: 2300, signal 146647/191458 (executing program) 2022/10/02 19:06:13 fetching corpus: 2350, signal 148280/193517 (executing program) 2022/10/02 19:06:13 fetching corpus: 2400, signal 149413/195234 (executing program) 2022/10/02 19:06:13 fetching corpus: 2450, signal 150184/196655 (executing program) 2022/10/02 19:06:13 fetching corpus: 2500, signal 151520/198509 (executing program) 2022/10/02 19:06:13 fetching corpus: 2550, signal 153143/200553 (executing program) 2022/10/02 19:06:13 fetching corpus: 2600, signal 154304/202221 (executing program) 2022/10/02 19:06:13 fetching corpus: 2650, signal 155741/204027 (executing program) 2022/10/02 19:06:14 fetching corpus: 2700, signal 156528/205444 (executing program) 2022/10/02 19:06:14 fetching corpus: 2750, signal 157903/207232 (executing program) 2022/10/02 19:06:14 fetching corpus: 2800, signal 159024/208820 (executing program) 2022/10/02 19:06:14 fetching corpus: 2850, signal 160148/210433 (executing program) 2022/10/02 19:06:14 fetching corpus: 2900, signal 160851/211743 (executing program) 2022/10/02 19:06:14 fetching corpus: 2950, signal 162465/213534 (executing program) 2022/10/02 19:06:14 fetching corpus: 3000, signal 163124/214812 (executing program) 2022/10/02 19:06:14 fetching corpus: 3050, signal 164414/216436 (executing program) 2022/10/02 19:06:15 fetching corpus: 3100, signal 165132/217643 (executing program) 2022/10/02 19:06:15 fetching corpus: 3150, signal 165732/218849 (executing program) 2022/10/02 19:06:15 fetching corpus: 3200, signal 166741/220249 (executing program) 2022/10/02 19:06:15 fetching corpus: 3250, signal 167432/221429 (executing program) 2022/10/02 19:06:15 fetching corpus: 3300, signal 168612/222882 (executing program) 2022/10/02 19:06:15 fetching corpus: 3350, signal 169205/223978 (executing program) 2022/10/02 19:06:15 fetching corpus: 3400, signal 170851/225693 (executing program) 2022/10/02 19:06:15 fetching corpus: 3450, signal 172392/227326 (executing program) 2022/10/02 19:06:16 fetching corpus: 3500, signal 173204/228539 (executing program) 2022/10/02 19:06:16 fetching corpus: 3550, signal 173939/229688 (executing program) 2022/10/02 19:06:16 fetching corpus: 3600, signal 174490/230726 (executing program) 2022/10/02 19:06:16 fetching corpus: 3650, signal 175169/231832 (executing program) 2022/10/02 19:06:16 fetching corpus: 3700, signal 175857/232926 (executing program) 2022/10/02 19:06:16 fetching corpus: 3750, signal 176349/233957 (executing program) 2022/10/02 19:06:16 fetching corpus: 3800, signal 177365/235293 (executing program) 2022/10/02 19:06:16 fetching corpus: 3850, signal 178515/236589 (executing program) 2022/10/02 19:06:16 fetching corpus: 3900, signal 179244/237679 (executing program) 2022/10/02 19:06:17 fetching corpus: 3950, signal 179752/238639 (executing program) 2022/10/02 19:06:17 fetching corpus: 4000, signal 180335/239661 (executing program) 2022/10/02 19:06:17 fetching corpus: 4050, signal 180970/240644 (executing program) 2022/10/02 19:06:17 fetching corpus: 4100, signal 181978/241837 (executing program) 2022/10/02 19:06:17 fetching corpus: 4150, signal 182562/242818 (executing program) 2022/10/02 19:06:17 fetching corpus: 4200, signal 183236/243781 (executing program) 2022/10/02 19:06:17 fetching corpus: 4250, signal 183868/244748 (executing program) 2022/10/02 19:06:17 fetching corpus: 4300, signal 184852/245906 (executing program) 2022/10/02 19:06:17 fetching corpus: 4350, signal 185346/246799 (executing program) 2022/10/02 19:06:17 fetching corpus: 4400, signal 185957/247724 (executing program) 2022/10/02 19:06:17 fetching corpus: 4450, signal 186418/248628 (executing program) 2022/10/02 19:06:18 fetching corpus: 4500, signal 187150/249599 (executing program) 2022/10/02 19:06:18 fetching corpus: 4550, signal 187780/250585 (executing program) 2022/10/02 19:06:18 fetching corpus: 4600, signal 188027/251373 (executing program) 2022/10/02 19:06:18 fetching corpus: 4650, signal 188866/252341 (executing program) 2022/10/02 19:06:18 fetching corpus: 4700, signal 189525/253217 (executing program) 2022/10/02 19:06:18 fetching corpus: 4750, signal 190026/254028 (executing program) 2022/10/02 19:06:18 fetching corpus: 4800, signal 190462/254939 (executing program) 2022/10/02 19:06:18 fetching corpus: 4850, signal 191246/255854 (executing program) 2022/10/02 19:06:18 fetching corpus: 4900, signal 192246/256812 (executing program) 2022/10/02 19:06:19 fetching corpus: 4950, signal 193029/257714 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/258850 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/259494 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/260163 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/260801 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/261410 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/262038 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/262685 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/263346 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/263982 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/264619 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/265226 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/265841 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/266502 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/267185 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/267845 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/268497 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/269183 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/269784 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/270440 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/271090 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/271706 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/272340 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/272989 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/273633 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/274307 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/274975 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/275616 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/276253 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/276867 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/277527 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/278146 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/278759 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/279387 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/280024 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/280659 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/281310 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/281940 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/282582 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/283256 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/283916 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/284552 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/285176 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/285183 (executing program) 2022/10/02 19:06:19 fetching corpus: 4997, signal 194783/285183 (executing program) 2022/10/02 19:06:22 starting 8 fuzzer processes 19:06:22 executing program 0: getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000080)={'broute\x00', 0x0, 0x4, 0x0, [0x6, 0x400, 0x2, 0x4, 0xffffffffffffa1aa, 0x100], 0x4, &(0x7f0000000000)=[{}, {}, {}, {}], &(0x7f0000000040)}, &(0x7f0000000100)=0x78) ioctl$sock_inet_SIOCRTMSG(0xffffffffffffffff, 0x890d, &(0x7f0000000140)={0x0, {0x2, 0x4e20, @loopback}, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x33}}, {0x2, 0x4e24, @private=0xa010102}, 0x112, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0x80000001, 0x0, 0x800}) sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000400)={&(0x7f0000000200)={0x1c4, 0x13, 0x8, 0x70bd28, 0x25dfdbfe, {0x2a, 0x2, 0x1, 0x9a, {0x4e24, 0x4e22, [0x80000001, 0x1e7, 0x1, 0x60000], [0x3, 0x9, 0x1, 0x1], 0x0, [0x4]}}, [@INET_DIAG_REQ_BYTECODE={0x74, 0x1, "be0ee571322e615e1115a0355a87985559bfb2577efbdc250f704058bef8c62a44a6b748c8a20af50fc38908ac60c8688f7553cb4c244f06be49e99fd7393654449f8738517b1a0d9c2b8e2e1d2b00d481f9461c35c658019cfcfca61d6154d3571c3a96b2eed3d2ed1c451cff1bc84f"}, @INET_DIAG_REQ_BYTECODE={0x1f, 0x1, "3604a91c6bf034eff120840c9ffb4bae2a51c09b9f38cf8659dd0b"}, @INET_DIAG_REQ_BYTECODE={0xe4, 0x1, "6ca3ccbc0c7d97ad44de6674d8d613e47b0c393efcf46213aaf1ccc34b60d761f8aebb2e7e0f334afa46ac67c6dfd7af4650127efad900e72ec807d14096619ef48b7d784d60e1436ffa5ff6cbfbaa58ec670f5d246d4648f714be92852ae78608a204298ccffbab1e5761c5b3597cdb000a26d2e5c861b7a02926411e364a9268686fef4a2bad9ab5884cadca8a1a3a066f141e1270009bc446aa962b3150f5297098571ba5053e7d7fa1207e31c52bee6273ea5a407d767ffcf74bdd145d11a2c2b9272e02753bfb6067154cc247406aa2983eceb5e537ab8a26cabed1553f"}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x4}, 0x40100) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000004840)='cpuset.memory_pressure\x00', 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f0000004880)={0x1, 0x5}) r1 = creat(&(0x7f00000048c0)='./file0\x00', 0x30) sendmsg$AUDIT_SIGNAL_INFO(r1, &(0x7f00000049c0)={&(0x7f0000004900)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000004980)={&(0x7f0000004940)={0x10, 0x3f2, 0x200, 0x70bd26, 0x25dfdbfd, "", ["", "", "", "", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x10}, 0x800) r2 = openat$sr(0xffffffffffffff9c, &(0x7f0000004a00), 0x101000, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r2, 0x8982, &(0x7f0000004a40)={0x7, 'ip6erspan0\x00', {0x8}, 0x1}) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x5, 0x100810, r1, 0xf1226000) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000004a80)=0x4) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000004ac0)={0x0, @multicast2, @local}, &(0x7f0000004b00)=0xc) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendmsg(r3, &(0x7f0000005080)={&(0x7f0000004b40)=@rc={0x1f, @any, 0xff}, 0x80, &(0x7f0000004f40)=[{&(0x7f0000004bc0)="534fc7c06c89145ce4edab94dee8cea6336ddd8b1d4ec1f32ff74f25d8442005419932d30e07bdf5921147045041", 0x2e}, {&(0x7f0000004c00)="c5e753d244a253e7310c682dcd552a8c094321b491d0f6b170b1f67a8a72564cc5c7e3c9aeba8c1ddd61ec9964165bcf00", 0x31}, {&(0x7f0000004c40)="de2492a8ad1a2f505053e067de49ae81a5dc64f9f561fe623f5627e96da0e25506bce82f1fb7507e8bbec61f94728f3ac3a27932774415119c62252470c8b46dfa158407ab34f30ac516a4c05dd2654e2ad02229a9d8215c983bb868a5ba07b280deedc30bf8071217f1356aaf232cc691bed9ddaa68a02e75c6a31df7c668fc02b974fad00deb3f657dd46796298a691965e000e73aee2777ceca1ad09b", 0x9e}, {&(0x7f0000004d00)="925a47193775c5dd4561e3b6ab4e8c6c67a7b73a384538e9605a7d5390573b1bdbcc2d2b5024fb3032d5b730e44d93246e5388e759249c0518b15c6bc2180aadbf17f49bcd60e98f5c5a917514d48755473f9212049f7d74561a540033cf53aa5eb70242ce764498d46ff84170b2fa17f7e779cabaecbcf18c4dcc1057a1e9c530e9021bda373ecd3ada40239a2911488da0c92aed236b7312d0348583203fa10f9a12bd5a0803462a448ea27d3e708fb278728961d0be9f7f296355a470d29e05b31327705331d8ea7d27fb0597520258e2000e4b06463716077633bff86dcdd8dbdd754685055c4e59", 0xea}, {&(0x7f0000004e00)="1ebac7e336a6799fd8a07d108ee485a4e9b8f30441033c0b27a0b816b6b3cc430828290fbf0d7996c5a385ca08ffd6343dd90289b02a467f74ff600177e2a021de22acb4071137ae04d7ddaf819715ab0fd4f706", 0x54}, {&(0x7f0000004e80)="d44f46132164b38fb8a4c4cfc278898ab17c605abeafaa5936815e9cb12b2d3ea6e3884b1a8987328c501d149e8dae5168a7bb649d15082b157eb9b80c89f8c0cf0a2d44f1be13b4642ae58c18171a0f84070594f7c6e484444ebae23f3f117b2068aedeca5e96fc684dcefa2e2c7773a9f36d1aa1f9452e6a1c1d94215b258db9b2211280e708ac032616af02fea87425d3938800d3eac7de", 0x99}], 0x6, &(0x7f0000004fc0)=[{0x48, 0x103, 0x3, "9ce8c2fabc0f470b53218a5821678173ca202ac118cf4ceae2da6daa9db722d1ecb6eaf31489152eeadb5d68c0db707e5c6ed3f689"}, {0x38, 0x103, 0x0, "03fbce97db665b93e7aeeac5031e6ea8081ee0dc20aed71e23ed6955b21717c09f14"}, {0x28, 0x84, 0x4, "de3c354f53fd8f572a0992c1ff7659a5bca16655a7"}], 0xa8}, 0x44c41) fcntl$getown(0xffffffffffffffff, 0x9) r4 = openat$bsg(0xffffffffffffff9c, &(0x7f0000005380), 0x0, 0x0) sendmsg$NL80211_CMD_DEL_PMKSA(r4, &(0x7f0000005480)={&(0x7f00000053c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000005440)={&(0x7f0000005400)={0x28, 0x0, 0x300, 0x70bd2b, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @random="b4b1eedcca3d"}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x1) r5 = fsmount(r1, 0x0, 0x76) move_mount(0xffffffffffffff9c, &(0x7f00000054c0)='./file0\x00', r5, &(0x7f0000005500)='./file0\x00', 0x42) openat2(r0, &(0x7f0000005540)='./file0\x00', &(0x7f0000005580)={0x609c2, 0x60, 0x18}, 0x18) 19:06:22 executing program 1: ioperm(0x0, 0x4, 0x0) ioperm(0x1, 0x8, 0x6) ioperm(0x2, 0x1a26, 0x6) ioperm(0x8001, 0x2, 0x1) ioperm(0x0, 0xfff, 0x6) ioperm(0x456f6a20, 0x7, 0xffffffff) ioperm(0x8, 0x1, 0x0) ioperm(0x3, 0x100000000, 0x699) ioperm(0x4, 0x7fff, 0x80000000) ioperm(0x3, 0x0, 0xffffffffffffff00) ioperm(0x0, 0x6, 0x8001) ioperm(0x100000001, 0xfffffffffffffffc, 0xbe) ioperm(0x6, 0xf13c, 0x840) ioperm(0x87c, 0x6, 0x5) ioperm(0xfffffffffffffffb, 0x4, 0xc1) ioperm(0x46f7dc69, 0x5, 0xfffffffffffffff7) ioperm(0xeb, 0x77bd, 0x8) ioperm(0x8, 0x1, 0xffff) r0 = fork() syz_open_procfs(r0, &(0x7f0000000000)='net/fib_trie\x00') 19:06:22 executing program 2: sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x34, 0xa, 0xa, 0x101, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFTA_SET_EXPR={0xc, 0x11, 0x0, 0x1, @fib={{0x8}, @void}}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000001}, 0x4000045) r0 = dup(0xffffffffffffffff) sendmsg$NL80211_CMD_GET_INTERFACE(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x20, 0x0, 0x100, 0x70bd2c, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x47332c33, 0x7f}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x4050}, 0x185) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000200), 0x202000, 0x0) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0) sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r1, &(0x7f0000000380)={&(0x7f0000000240), 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x68, r2, 0x300, 0x70bd28, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x17}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x58}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x1a}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x50}, @NL80211_ATTR_COOKIE={0xc}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x56}]}, 0x68}, 0x1, 0x0, 0x0, 0x8080}, 0x4800) sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(r1, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x34, 0x0, 0x2, 0x70bd2a, 0x25dfdbfe, {}, [@BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x8}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x10001}]}, 0x34}, 0x1, 0x0, 0x0, 0x95}, 0x1) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(0xffffffffffffff9c, 0xc080661a, &(0x7f00000004c0)={@id={0x2, 0x0, @auto="979425b2036a127b7c62e407fec97e3e"}}) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000580), r0) sendmsg$DEVLINK_CMD_GET(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x4c, r3, 0x400, 0x70bd27, 0x25dfdbfe, {}, [@pci={{0x8}, {0x11}}, @pci={{0x8}, {0x11}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x5}, 0x0) sendmsg$BATADV_CMD_SET_VLAN(r0, &(0x7f00000007c0)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x44, 0x0, 0x4, 0x70bd29, 0x25dfdbfd, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x2}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x44}}, 0x4089c) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000840), r1) sendmsg$TIPC_NL_MEDIA_GET(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000980)={&(0x7f0000000880)={0xdc, r4, 0x108, 0x70bd29, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x8}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x2}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xd2a}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x10000}]}, @TIPC_NLA_NODE={0x40, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x3c, 0x3, "286f403e432f7ce05133d41d378d2f83ad14f448e2d13d6434d65d585b4f9a20ac1d93e3fd59bbc3e395748f4e9b6ccdbc4d9299af467548"}]}, @TIPC_NLA_BEARER={0xc, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x4}]}, @TIPC_NLA_MEDIA={0x30, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffa}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x4a5}]}]}]}, 0xdc}, 0x1, 0x0, 0x0, 0xc0}, 0x40000) clock_gettime(0x0, &(0x7f0000000e40)={0x0, 0x0}) recvmmsg$unix(r1, &(0x7f0000000e00)=[{{&(0x7f0000000a00)=@abs, 0x6e, &(0x7f0000000cc0)=[{&(0x7f0000000a80)=""/129, 0x81}, {&(0x7f0000000b40)=""/234, 0xea}, {&(0x7f0000000c40)=""/69, 0x45}], 0x3, &(0x7f0000000d00)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe8}}], 0x1, 0x40000000, &(0x7f0000000e80)={r5, r6+60000000}) r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000f00), r0) sendmsg$TIPC_CMD_GET_NETID(r8, &(0x7f0000000fc0)={&(0x7f0000000ec0), 0xc, &(0x7f0000000f80)={&(0x7f0000000f40)={0x1c, r9, 0x200, 0x70bd2c, 0x25dfdbfb, {}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x4000) execveat(r7, &(0x7f0000001000)='./file0\x00', &(0x7f0000001080)=[&(0x7f0000001040)='^\x00'], &(0x7f00000012c0)=[&(0x7f00000010c0)='\x00', &(0x7f0000001100)='nl80211\x00', &(0x7f0000001140)='udp\x00', &(0x7f0000001180)='udp\x00', &(0x7f00000011c0)='/dev/zero\x00', &(0x7f0000001200)='nl80211\x00', &(0x7f0000001240)='!:-\x00', &(0x7f0000001280)='@:-&!\x89-++[\x00'], 0x400) r10 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_SCAN_REQ(r10, &(0x7f00000013c0)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000001380)={&(0x7f0000001340)={0x34, 0x0, 0x100, 0x70bd2c, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DURATION={0x5, 0x15, 0x6}, @IEEE802154_ATTR_PAGE={0x5, 0x1d, 0x1d}, @IEEE802154_ATTR_SCAN_TYPE={0x5}, @IEEE802154_ATTR_CHANNELS={0x8, 0x14, 0x16}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004080}, 0x4060040) 19:06:22 executing program 3: r0 = mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc, 0x10, 0xffffffffffffffff, 0x10000000) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r0, &(0x7f0000000000)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x2000, @fd_index=0x4, 0x0, 0x6, 0x0, 0x10, 0x0, {0x3, r1}}, 0x6f) clock_gettime(0x0, &(0x7f00000073c0)={0x0, 0x0}) recvmmsg(0xffffffffffffffff, &(0x7f0000007280)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000040)=""/11, 0xb}, {&(0x7f0000000080)=""/56, 0x38}, {&(0x7f00000000c0)=""/216, 0xd8}, {&(0x7f00000001c0)=""/225, 0xe1}, {&(0x7f00000002c0)=""/91, 0x5b}, {&(0x7f0000000340)=""/124, 0x7c}, {&(0x7f00000003c0)=""/84, 0x54}, {&(0x7f0000000440)=""/111, 0x6f}, {&(0x7f00000004c0)=""/25, 0x19}], 0x9, &(0x7f00000005c0)=""/186, 0xba}, 0xffff}, {{&(0x7f0000000680)=@nfc, 0x80, &(0x7f0000003a40)=[{&(0x7f0000000700)=""/165, 0xa5}, {&(0x7f00000007c0)}, {&(0x7f0000000800)=""/4096, 0x1000}, {&(0x7f0000001800)=""/24, 0x18}, {&(0x7f0000001840)=""/35, 0x23}, {&(0x7f0000001880)=""/4096, 0x1000}, {&(0x7f0000002880)=""/68, 0x44}, {&(0x7f0000002900)=""/4096, 0x1000}, {&(0x7f0000003900)=""/201, 0xc9}, {&(0x7f0000003a00)=""/31, 0x1f}], 0xa, &(0x7f0000003b00)=""/93, 0x5d}, 0x8}, {{&(0x7f0000003b80)=@qipcrtr, 0x80, &(0x7f0000005e80)=[{&(0x7f0000003c00)=""/12, 0xc}, {&(0x7f0000003c40)=""/4096, 0x1000}, {&(0x7f0000004c40)=""/96, 0x60}, {&(0x7f0000004cc0)=""/151, 0x97}, {&(0x7f0000004d80)=""/43, 0x2b}, {&(0x7f0000004dc0)}, {&(0x7f0000004e00)=""/114, 0x72}, {&(0x7f0000004e80)=""/4096, 0x1000}], 0x8, &(0x7f0000005f00)=""/171, 0xab}, 0xfff}, {{&(0x7f0000005fc0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, 0x80, &(0x7f0000006100)=[{&(0x7f0000006040)=""/161, 0xa1}], 0x1, &(0x7f0000006140)=""/35, 0x23}}, {{&(0x7f0000006180)=@generic, 0x80, &(0x7f0000006240)=[{&(0x7f0000006200)=""/3, 0x3}], 0x1, &(0x7f0000006280)=""/4096, 0x1000}, 0xff}], 0x5, 0x2000, &(0x7f0000007400)={r2, r3+10000000}) syz_io_uring_submit(0x0, r0, &(0x7f0000007440)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x4004, @fd=r4, 0x4, 0x0, 0x0, 0x14, 0x0, {0x0, r1}}, 0x8) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000002, 0x810, 0xffffffffffffffff, 0x0) r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000000, 0x8010, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(r5, r6, &(0x7f0000007b00)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, r4, 0x0, &(0x7f0000007ac0)={0x0, 0x0, &(0x7f0000007600)=[{&(0x7f0000007480)="8c1eb4fe5aaea494b7254f95b7c8a7db9a78b0c4c1d02ede888060a3af9e65aeca9a00e18b6a1cc3fa499f56d08d5973bc0e278075adb07abad18f5b4cfc184435bc54a683447d9051838802b0931bf3f154c9976480ee2f959cd6a0f2d188d4fb807c3165dccb39e0fef07f12765429c192", 0x72}, {&(0x7f0000007500)="8f1cb76525ab6e85df796f325c61373c5e3c622e31d4b001e0192aefce73c583c15b4af86e9806770d33a53083467de4323b4cc2dbe8474ec167797d56591a25612890cc2e639e200f2c0738", 0x4c}, {&(0x7f0000007580)="d48d7d82fde79cdfadb5f5e0a7a39571425ec4705d2e209ef8e70c566098213ed7ab35cba6d342215e92b6025a39bd69246d510c65f86cfa1acf6b6a56774c3fa90b54bc34053940ea821f8e15bc1b24854d8099debf46d68f2410c6fb6914640c04facdb9b0a9d53290aae7be193ff9185d369ed89a35c64e902bf20d0e8e33", 0x80}], 0x3, &(0x7f0000007640)=[{0x60, 0x108, 0x4, "f138823bd81e1f008978a1c5e229d62e28cfa40453fc5b095c9b023d975ffb3a7e8fc8ab2ff42f3703f53edc3a5a9810ee766a9b15b6dad64325c8cbcc81e2afe539837f7909e26eef7c4143fb"}, {0x68, 0x104, 0x8000, "e0d0ae45f8b766db0d06136597b9848575e8be2defff1ba3ab9f3eca5f4801b73973416ce38c049bc73c36e77a49f06320102146055ef835075dc07dcc0011c1a98e6bf82275efecb9bd82e4f24767a59ab2e4503d20cd"}, {0x80, 0x109, 0x9010, "9c48a413a8cc1b6c8182222c8f6cc5dcf8b5559817ec06c34ccaecc94a97104b3f744d1bf10c545e42d48ecdbbc8b9e48f1aedb45418d62c9d3ae29f2dd64956da2841297f96e56a13fb07db52301856ed9202f09231e06cd645501f30696cbdc34edeec9075333284db69004a"}, {0x100, 0x104, 0x81, "78d75ac6cc36ad17a7376eec184b8f70ab659f71c4e311b79e038bbcc7fc0a5a66f7f22dd55fee33fb6d1e718cdf09b1f81df8d3a2371af338e30c72e2df9e77b77505875f1357b1922c7df72e5a81c56ead25be52badc15e866d2039b7349a87ac51321f13b71f52c6bfa8b1f1bc7c46eaac7219c9e9d52f835699defbd30b4224fece9744bcabb76278394f974d865a7208ecf4a619da6a58125e8364a9d6a691e02d94561a6839c4bc6da76b077207aea8ac231a367abd7958cf39d4120051516af2b4e7fbb3ec8d856d8c26ae29195a7ddb9fc41b4ad527580d28aeba29f183448c5d450a66caaad2775e0b2"}, {0xd0, 0x102, 0x1, "2c6342f9956f00ec34843e32db4b8a0343d53478776966cb89ae9da857f728bb25356bf7ddfe529d022051db5526575fa8d685c794e61c0be4de99b70ffe351d5bca1223c5883a130d931f356a01325471c8acb8a2d70ed67badb3e1c2b9ab67a00996190ce53458099375f18bd49d8bfa21e9527da456b898f707561d32e1157c3977ea653a770e1c4f7b76669456042d063b7c028776b5399838aa17634ae55f21c6c15f59bcd91de194cf3c2deda1426dbd5ccfb1938ecd"}, {0x98, 0x117, 0x0, "5842b089e22478f6ba5319569790530ed78f8887aab0c9937c8b9f89a7376fa2205be3a08144e212506addfd51651e4dedf76d25c145c4b48ab0485cc143c5137ca3fe44375fd5bdbf9fb9a70748554e4ef4b1d57a014007ecbfdaa4f0f72a4d4fa406a0ad29db74f2aed250fd4eb402dd47114da5de7382f4ab14e9619968b7a700bd615b040f"}, {0x68, 0x0, 0x9, "f70d157c0ddebfd7af2ac78fd1e2df8095c687add57380186fd0539f0ef5af659c55e0bda8053ad59d8b3b8e85deb14f88ffbdaf8a24ddb50c65dc839bab04c96feb6f2b14221dad81878fe83a781e5ca1ff2d2a3e20"}, {0x30, 0x6, 0x401, "2b8743a0e78a1842d508157158cf18590d54e1ab1f5f9140ed09b32fc8a3"}], 0x448}, 0x0, 0x84, 0x1}, 0x3) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x2, 0x30, 0xffffffffffffffff, 0x8000000) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x50, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(r7, r8, &(0x7f0000007b40)=@IORING_OP_FADVISE={0x18, 0x2, 0x0, @fd_index=0x2, 0x100000001, 0x0, 0x2, 0x2}, 0x7fff) ioctl$FIOCLEX(r4, 0x5451) r9 = perf_event_open(&(0x7f0000007bc0)={0x1, 0x80, 0x2, 0x6, 0x1, 0xf3, 0x0, 0x88, 0x0, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={&(0x7f0000007b80), 0xc}, 0x0, 0xffffffffffffff4d, 0x5, 0x2, 0x0, 0x6, 0x4, 0x0, 0xff, 0x0, 0x3}, 0xffffffffffffffff, 0x8, 0xffffffffffffffff, 0x1) r10 = syz_io_uring_setup(0x43a2, &(0x7f0000007c40)={0x0, 0xd6a5, 0x10, 0x3, 0x3b0}, &(0x7f0000fee000/0x10000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000007cc0), &(0x7f0000007d00)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000007d40)={{0x1, 0x1, 0x18, r9, {0xee01}}, './file0\x00'}) r13 = syz_io_uring_setup(0x4, &(0x7f0000007d80)={0x0, 0x9b81, 0x2, 0x3, 0x258, 0x0, r11}, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000007e00), &(0x7f0000007e40)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000007f00)={{0x1, 0x1, 0x18, r13, {r12, 0xee00}}, './file0\x00'}) perf_event_open(&(0x7f0000007e80)={0x5, 0x80, 0x2, 0x7f, 0x20, 0x9, 0x0, 0x81, 0x1300, 0xe, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0xa2b, 0x0, @perf_config_ext={0x5, 0x100000000}, 0x184c, 0x6, 0x1ff, 0x6, 0x3, 0x1, 0x1, 0x0, 0x6, 0x0, 0x9}, 0xffffffffffffffff, 0xf, r14, 0xa) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r10, 0x40089413, &(0x7f0000007f40)=0x5) 19:06:22 executing program 4: ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3f80}}, './file0\x00'}) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) futimesat(r1, &(0x7f0000000080)='./file0\x00', &(0x7f0000000100)={{r2, r3/1000+60000}, {0x0, 0xea60}}) clock_gettime(0x0, &(0x7f0000000200)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000140)={0x80, 0x5, 0x40, 0x80000001, 0x7, 0x3, 0x100000000}, &(0x7f0000000180)={0x7ff, 0x0, 0x1000000000, 0x0, 0x3, 0x1000, 0x9f, 0x42f9}, &(0x7f00000001c0)={0x8, 0x2, 0x3, 0x401, 0x7, 0xfffffffffffffffc, 0x3, 0x1}, &(0x7f0000000240)={r4, r5+60000000}, &(0x7f00000002c0)={&(0x7f0000000280)={[0xbb4]}, 0x8}) io_getevents(0x0, 0x800, 0x4, &(0x7f0000000300)=[{}, {}, {}, {}], &(0x7f0000000380)={0x77359400}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000400)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r6, 0xc018937e, &(0x7f0000000440)={{0x1, 0x1, 0x18, r7, @in_args={0x4}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000480)={{0x1, 0x1, 0x18, r0, {0x1000}}, './file0\x00'}) clock_gettime(0x0, &(0x7f0000000500)={0x0, 0x0}) epoll_pwait2(r8, &(0x7f00000004c0)=[{}, {}, {}, {}, {}], 0x5, &(0x7f0000000540)={r9, r10+60000000}, &(0x7f0000000580)={[0x2]}, 0x8) r11 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000005c0), 0x802, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r11, 0xc018937a, &(0x7f0000000600)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x5}}, './file0\x00'}) r12 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/module/drm', 0x40080, 0x20) epoll_pwait2(r12, &(0x7f0000000680)=[{}], 0x1, &(0x7f00000006c0), &(0x7f0000000700)={[0x7ff]}, 0x8) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000740)={0x0, r7, 0x196, 0x3, 0x0, 0xfe}) readahead(r0, 0x4, 0x9) pwritev2(r6, &(0x7f0000000780), 0x0, 0x1, 0xa7, 0x14) 19:06:22 executing program 5: getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, &(0x7f0000000000)={@broadcast, @multicast2, 0x0}, &(0x7f0000000040)=0xc) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000080)={@mcast2, 0x73, r0}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'batadv0\x00', 0x0}) ioctl$sock_ipv6_tunnel_SIOCDELPRL(0xffffffffffffffff, 0x89f6, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000100)={'syztnl1\x00', r1, 0x4, 0x9, 0x7, 0xb3, 0x4, @private2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x700, 0x10, 0x2, 0x5}}) r2 = socket(0x0, 0x6, 0x20) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f00000001c0)={0x0, @local, @broadcast}, &(0x7f0000000200)=0xc) r4 = syz_open_dev$mouse(&(0x7f0000000240), 0xfffffffffffffffa, 0x1) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r4, 0x89f6, &(0x7f0000000300)={'ip6gre0\x00', &(0x7f0000000280)={'ip6tnl0\x00', r0, 0x29, 0x9, 0x5c, 0x9, 0x56, @dev={0xfe, 0x80, '\x00', 0x38}, @ipv4={'\x00', '\xff\xff', @empty}, 0x700, 0x10, 0x7, 0x2}}) setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000340)={r3, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3a}}, 0x10) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r4, 0x89fa, &(0x7f00000016c0)={'ip6_vti0\x00', &(0x7f0000001640)={'ip6gre0\x00', r5, 0x4, 0x0, 0xa1, 0x4, 0x13, @private0, @local, 0x80, 0x700, 0xfffffffa, 0x2}}) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000001700)={{{@in6=@initdev, @in=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in=@multicast1}}, &(0x7f0000001800)=0xe8) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000001840)={'batadv0\x00', 0x0}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f0000001900)={'syztnl1\x00', &(0x7f0000001880)={'gre0\x00', r1, 0x80, 0x40, 0x81, 0x7, {{0x13, 0x4, 0x0, 0x3e, 0x4c, 0x68, 0x8cc, 0x9, 0x2f, 0x0, @multicast2, @loopback, {[@ra={0x94, 0x4, 0x1}, @timestamp_addr={0x44, 0x34, 0x3d, 0x1, 0xa, [{@remote, 0x8}, {@broadcast, 0x6}, {@dev={0xac, 0x14, 0x14, 0x29}, 0xc6c}, {@private=0xa010102, 0x9}, {@loopback, 0x1}, {@remote, 0x5}]}]}}}}}) accept$packet(r4, &(0x7f0000001a40)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000001a80)=0x14) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r4, 0x89fa, &(0x7f0000001b40)={'ip6gre0\x00', &(0x7f0000001ac0)={'ip6tnl0\x00', r5, 0x4, 0x1, 0x40, 0x80000001, 0x12, @private1={0xfc, 0x1, '\x00', 0x1}, @loopback, 0x7800, 0x20, 0x1, 0x2}}) sendmsg$TEAM_CMD_OPTIONS_GET(r4, &(0x7f0000001ec0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000001e80)={&(0x7f0000001b80)={0x2f8, 0x0, 0x4, 0x70bd27, 0x25dfdbfc, {}, [{{0x8, 0x1, r6}, {0xc0, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r0}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3f}}, {0x8, 0x6, r7}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r8}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0x214, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80000001}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x1000}}, {0x8, 0x6, r10}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r11}}, {0x8}}}, {0x40, 0x1, @name={{0x24}, {0x5}, {0xf, 0x4, 'roundrobin\x00'}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x400}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0xc73f}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8}}}, {0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x1}}}]}}]}, 0x2f8}}, 0x400304d) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000002000)={'syztnl1\x00', &(0x7f0000001f00)={'syztnl2\x00', r8, 0x80, 0x40, 0xfffffff9, 0x1, {{0x29, 0x4, 0x0, 0x3, 0xa4, 0x67, 0x0, 0x4, 0x2f, 0x0, @loopback, @rand_addr=0x64010101, {[@end, @cipso={0x86, 0x3f, 0xffffffffffffffff, [{0x7, 0x3, "12"}, {0x33798690fe8c4c84, 0xc, "e38019edc35f5da96575"}, {0x3, 0x6, "cf597ff1"}, {0x7, 0x12, "951f6d2a67c6d066e17a5219a867604d"}, {0x5, 0x12, "1186aa20b82fb53a741f327daaae9c4d"}]}, @generic={0x89, 0x7, "0991740d84"}, @timestamp={0x44, 0x10, 0xcc, 0x0, 0x4, [0x0, 0x86a5, 0x1000]}, @timestamp_addr={0x44, 0x14, 0xc4, 0x1, 0x4, [{@dev={0xac, 0x14, 0x14, 0x20}, 0x6}, {@empty, 0x4}]}, @ssrr={0x89, 0x1f, 0x16, [@broadcast, @remote, @loopback, @empty, @local, @multicast1, @rand_addr=0x64010100]}, @ra={0x94, 0x4}, @end]}}}}}) r12 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000002040), 0x400000, 0x0) sendmsg$ETHTOOL_MSG_EEE_SET(r12, &(0x7f0000002140)={&(0x7f0000002080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000002100)={&(0x7f00000020c0)={0x14, 0x0, 0x100, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x84008) sendmsg$DEVLINK_CMD_SB_GET(r2, &(0x7f0000002300)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000022c0)={&(0x7f0000002200)={0xa4, 0x0, 0x8, 0x70bd25, 0x25dfdbfe, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x5}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x2}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfffffffd}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3c2}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x48000}, 0x8000) [ 65.089110] audit: type=1400 audit(1664737582.214:6): avc: denied { execmem } for pid=285 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 19:06:22 executing program 6: setxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000080)=@ng={0x4, 0xe, "f026b2bf4bbc077648fbd7608c574c807ad83f"}, 0x15, 0x3) r0 = open_tree(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x81100) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) recvmsg$unix(r2, &(0x7f0000000480)={&(0x7f0000000180)=@abs, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000200)=""/96, 0x60}, {&(0x7f0000000280)=""/79, 0x4f}, {&(0x7f0000000300)=""/116, 0x74}], 0x3, &(0x7f00000003c0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88}, 0x102) symlink(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='./file0\x00') ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000540)) r7 = syz_mount_image$nfs4(&(0x7f0000000740), &(0x7f0000000780)='./file1\x00', 0x0, 0x2, &(0x7f0000000900)=[{&(0x7f00000007c0)="ca3251f70dc943b44a8f41dbeb2d7b356d49778e7b7412a02c1e57cceec1f00eb4f2f3f6761c96f699034c", 0x2b, 0x240000000}, {&(0x7f0000000800)="f6c6db8f16eaee3d33f8a801847bb85774b7a2ac0ccd3849180806f0b99896cd0636bbda6ef8fb34e28ef82756776b164843114ce7d5a0a331b60710e16f50213019fd4766216c79103f154e237519d5d5a38b29b8e2931a4d63f1f05b62f39a4cd4b7b22190314529635c1cecb21f376a23d99dc23a2c913831865011e8830c204a2f15f50eea8e2d0863b24356c37c408ff966c1898ca1955b64fe29cdb2350b328e11d322f29234a5209ea12c7d3fcf8960aac1d1c369d95e3545bb9ecdbba7a4d3b34a80761f5a4a61b657ae185105b5d251f8eb179a75c52f", 0xdb, 0x2}], 0x40028, &(0x7f0000000940)={[{'{'}, {'^}))\x16$\x0f\xf1]{'}, {'security.evm\x00'}, {'\\-J+^'}, {'*,(*\\'}, {'-/\\(/'}, {'/dev/zero\x00'}, {'\\'}, {'/dev/zero\x00'}], [{@smackfsdef={'smackfsdef', 0x3d, '!^+'}}]}) linkat(r7, &(0x7f00000009c0)='./file0\x00', r1, &(0x7f0000000a00)='./file0\x00', 0x1400) r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000a40)='/sys/module/block', 0x180, 0x0) move_mount(r8, &(0x7f0000000a80)='./file2\x00', r0, &(0x7f0000000ac0)='./file1\x00', 0x40) r9 = accept$inet(0xffffffffffffffff, &(0x7f0000000b00)={0x2, 0x0, @private}, &(0x7f0000000b40)=0x10) ioctl$BTRFS_IOC_SUBVOL_CREATE(r3, 0x5000940e, &(0x7f0000000b80)={{r9}, "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"}) r10 = fcntl$dupfd(r4, 0x406, r6) perf_event_open(&(0x7f0000001bc0)={0x1, 0x80, 0x8, 0x3f, 0xff, 0x9, 0x0, 0x73, 0x480, 0x4, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x4, @perf_bp={&(0x7f0000001b80), 0x1}, 0x4e, 0x1, 0x1000, 0x0, 0x80000001, 0x0, 0x7, 0x0, 0x40, 0x0, 0x1dd}, 0x0, 0x10, r10, 0x0) lstat(&(0x7f0000001c40)='./file2\x00', &(0x7f0000001c80)) sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000001dc0)={&(0x7f0000001d00)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001d80)={&(0x7f0000001d40)={0x38, 0x0, 0x1, 0x201, 0x0, 0x0, {0xc, 0x0, 0x6}, [@CTA_SYNPROXY={0x24, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x6}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x8}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x1}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x9}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x800) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000001e00)={{0x1, 0x1, 0x18, r10}, './file1\x00'}) r11 = accept$inet(r3, &(0x7f0000001e40)={0x2, 0x0, @private}, &(0x7f0000001e80)=0x10) ioctl$FIGETBSZ(r11, 0x2, &(0x7f0000001ec0)) 19:06:22 executing program 7: getsockopt$bt_l2cap_L2CAP_LM(0xffffffffffffffff, 0x6, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4) setsockopt$bt_BT_RCVMTU(0xffffffffffffffff, 0x112, 0xd, &(0x7f0000000080)=0x7, 0x2) flock(0xffffffffffffffff, 0x1) finit_module(0xffffffffffffffff, &(0x7f00000000c0)='}\x00', 0x1) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) setsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, &(0x7f0000000140)=0xcc1, 0x2) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000180)) r1 = signalfd4(r0, &(0x7f00000001c0)={[0x1f]}, 0x8, 0x80000) syz_io_uring_submit(0x0, 0x0, &(0x7f00000007c0)=@IORING_OP_WRITEV={0x2, 0x2, 0x2007, @fd_index=0x7, 0xd, &(0x7f0000000700)=[{&(0x7f0000000200)="f504ad1024711c302ef3ae42e18a864b90fbb85a58c9309a0070b5b6c266126c5ea6ff904aa442698312ca7b4a6aa435", 0x30}, {&(0x7f0000000240)="612e7c7c42e8732bb17bdc827f163373e866086e04a1be9cabf600a61d25af5c90e7b715fd5b79b8cd2f7066a5c2d9fac63a9120b39ffe25db71760dfacd3b18109a1c4d1840b5f17c5f8514ca1b0a", 0x4f}, {&(0x7f00000002c0)="00a2f5123f12a42e1705f61c8806dc24f9ae700100c04893a54c886f5e69a650ca8baf5c5baccc4048679fa817a8dc6c050efe24f7421af9eadb9deb3eaf9050bc9726a62e3d202436e5a59b71afb1", 0x4f}, {&(0x7f0000000340)="91fe71094816bddc1c97b5ae6870fca02fad8ad9598d19665cf5dfad28f2499f01c77c333458340969ba466bfa4ffb9548ffbc2cf58775dbc609472aa14140e839e358c3d7668eb9ab4c2bd62174e67364443a4f3045cffe0cc61ba2c0d8ea2333784a4f03fecc212e7977438188b068ec3e66ba2e81bab468006a8b38e323be0bd228594ea02f1443a6e9ff6c86d727", 0x90}, {&(0x7f0000000400)="2ed5ae1fa45fe7500d17228e4c00c90ad64d3432a1f726fa084888d84f34f8e8d47c5854662d349902fee9b373403b505a9ff8ade7b910fc289edbe8779b225b54aca2950dd9382414c6c25d5b46df0f677972626ed672bdef0b2738c5fe24c65b538372254163e352e37aabd075058292db4d6f6e265e8bbba541ec6345caf1c3df087b47", 0x85}, {&(0x7f00000004c0)}, {&(0x7f0000000500)="94480d9edeccd713828bb43fb54b22f763ffe35d520d47a3b66b515d1d0965cb7739b51ed6912bd785f2e83942d1d4f8407075", 0x33}, {&(0x7f0000000540)="3b83accfc3ed6aaef662cb25bc5874e98fc15721c245f353e24187c883d025c840fe011ae9bb3a0a7b2f5dc78ed2f08b739ef0eba96dae7aafa90053edff806a3ad9277aa43f5e435735b67227aa613bf03cc08b0205e7e158bc65f8d012948521b8d96788ef755c37c4051b37a7249a5058dbd37c61a781680757b815ffd7fb50a09fca0d686d8d1056f0e5d215da28831d093ad0b333eb4f58e310fb4404ebd8f0805d3c118acd8927755005b31543bad9983c404c17e2a2e31da0e2b51726c0f252668aae6568e09fef5d65458b3957845404b7e9b1eba801", 0xda}, {&(0x7f0000000640)="694baa0d1f7b2134cce891b828056223da9f6c07317e5357900dad5a22629edfe35bf7b661bd2b8e5ae9f42ddd89d26ee6783bf0f860c866799bd21ef202fad34731ce77a928b417a2f31c452ce0898fff045a2174086bd52f27345977c4a5c74affe613e97ab6f4f0974fbbf0913a3745c257d0c992d3c7cf1580b73ea91bb662f99280c03acd511ea8a7b943df99701a619884edd908e10032f6e5e82df1599e62521b", 0xa4}], 0x9, 0x11, 0x1}, 0x0) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000800), 0x8000, 0x0) bind$bt_sco(r2, &(0x7f0000000840), 0x8) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000880)='/proc/consoles\x00', 0x0, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r3, 0x6, &(0x7f0000000900)={0x800, 0x0, &(0x7f00000008c0)=[r1, r0, r0]}, 0x3) r4 = socket$netlink(0x10, 0x3, 0x12) ioctl$AUTOFS_IOC_ASKUMOUNT(r4, 0x80049370, &(0x7f0000000940)) getsockname(r3, &(0x7f0000000980)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000a00)=0x80) getsockopt$bt_BT_CHANNEL_POLICY(r3, 0x112, 0xa, &(0x7f0000000a40)=0x6, &(0x7f0000000a80)=0x4) ioctl$sock_SIOCGIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000ac0)) r5 = signalfd(r0, &(0x7f0000000b00)={[0x9]}, 0x8) syncfs(r5) [ 66.321826] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.323504] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.326028] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.327190] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.329885] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.331059] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.338807] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.340155] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.348891] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.350098] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 66.351728] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 66.354226] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.369458] Bluetooth: hci1: HCI_REQ-0x0c1a [ 66.398155] Bluetooth: hci0: HCI_REQ-0x0c1a [ 66.438029] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.439494] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 66.441546] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 66.443167] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 66.444837] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.445986] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 66.447088] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 66.448225] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 66.449901] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 66.451069] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 66.452423] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 66.452502] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.458715] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 66.461002] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 66.462490] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.464197] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 66.466066] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 66.467821] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 66.469274] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.470793] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 66.472247] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 66.477220] Bluetooth: hci3: HCI_REQ-0x0c1a [ 66.478519] Bluetooth: hci2: HCI_REQ-0x0c1a [ 66.479298] Bluetooth: hci4: HCI_REQ-0x0c1a [ 66.480067] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 66.482510] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 66.484328] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 66.490476] Bluetooth: hci5: HCI_REQ-0x0c1a [ 66.491625] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 66.507140] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 66.508578] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 66.514241] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 66.520596] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 66.524323] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 66.525954] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 66.528959] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 66.531654] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 66.532990] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 66.539413] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 66.546156] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 66.549488] Bluetooth: hci6: HCI_REQ-0x0c1a [ 66.572000] Bluetooth: hci7: HCI_REQ-0x0c1a [ 68.407111] Bluetooth: hci0: command 0x0409 tx timeout [ 68.407785] Bluetooth: hci1: command 0x0409 tx timeout [ 68.533478] Bluetooth: hci4: command 0x0409 tx timeout [ 68.534185] Bluetooth: hci3: command 0x0409 tx timeout [ 68.534760] Bluetooth: hci5: command 0x0409 tx timeout [ 68.535240] Bluetooth: hci2: command 0x0409 tx timeout [ 68.597455] Bluetooth: hci6: command 0x0409 tx timeout [ 68.598563] Bluetooth: hci7: command 0x0409 tx timeout [ 70.453459] Bluetooth: hci1: command 0x041b tx timeout [ 70.454295] Bluetooth: hci0: command 0x041b tx timeout [ 70.581584] Bluetooth: hci2: command 0x041b tx timeout [ 70.582397] Bluetooth: hci5: command 0x041b tx timeout [ 70.583127] Bluetooth: hci3: command 0x041b tx timeout [ 70.583873] Bluetooth: hci4: command 0x041b tx timeout [ 70.645446] Bluetooth: hci7: command 0x041b tx timeout [ 70.646206] Bluetooth: hci6: command 0x041b tx timeout [ 72.501447] Bluetooth: hci0: command 0x040f tx timeout [ 72.501921] Bluetooth: hci1: command 0x040f tx timeout [ 72.630449] Bluetooth: hci4: command 0x040f tx timeout [ 72.630930] Bluetooth: hci3: command 0x040f tx timeout [ 72.631373] Bluetooth: hci5: command 0x040f tx timeout [ 72.631791] Bluetooth: hci2: command 0x040f tx timeout [ 72.693431] Bluetooth: hci6: command 0x040f tx timeout [ 72.693882] Bluetooth: hci7: command 0x040f tx timeout [ 74.549439] Bluetooth: hci1: command 0x0419 tx timeout [ 74.550268] Bluetooth: hci0: command 0x0419 tx timeout [ 74.677497] Bluetooth: hci2: command 0x0419 tx timeout [ 74.678781] Bluetooth: hci5: command 0x0419 tx timeout [ 74.679578] Bluetooth: hci3: command 0x0419 tx timeout [ 74.680304] Bluetooth: hci4: command 0x0419 tx timeout [ 74.741544] Bluetooth: hci7: command 0x0419 tx timeout [ 74.742410] Bluetooth: hci6: command 0x0419 tx timeout [ 128.663204] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 128.664069] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 128.665931] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 128.666612] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 128.667570] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 128.668644] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 128.670745] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 128.672752] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 128.674216] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 128.676145] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 128.678411] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 128.679443] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 128.680739] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 128.682154] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 128.683921] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 128.685643] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 128.686742] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 128.688155] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 128.691258] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 128.693149] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 128.696446] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 128.697595] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 128.699065] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 128.710891] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 128.712582] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 128.714305] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 128.716101] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 128.717222] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 128.718536] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 128.719885] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 128.721052] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 128.722199] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 128.722638] Bluetooth: hci4: HCI_REQ-0x0c1a [ 128.725183] Bluetooth: hci0: HCI_REQ-0x0c1a [ 128.731012] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 128.736570] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 128.739433] Bluetooth: hci2: HCI_REQ-0x0c1a [ 128.742834] Bluetooth: hci1: HCI_REQ-0x0c1a [ 128.760290] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 128.761323] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 128.769462] Bluetooth: hci3: HCI_REQ-0x0c1a [ 128.786663] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 128.789806] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 128.791084] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 128.794325] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 128.799232] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 128.800771] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 128.870853] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 128.875880] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 128.883552] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 128.884143] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 128.889502] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 128.893723] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 128.901156] Bluetooth: hci5: HCI_REQ-0x0c1a [ 128.907713] Bluetooth: hci6: HCI_REQ-0x0c1a [ 128.909357] Bluetooth: hci7: HCI_REQ-0x0c1a [ 130.741520] Bluetooth: hci2: command 0x0409 tx timeout [ 130.742682] Bluetooth: hci4: command 0x0409 tx timeout [ 130.805796] Bluetooth: hci0: command 0x0409 tx timeout [ 130.806900] Bluetooth: hci1: command 0x0409 tx timeout [ 130.869558] Bluetooth: hci3: command 0x0409 tx timeout [ 130.933696] Bluetooth: hci6: command 0x0409 tx timeout [ 130.934812] Bluetooth: hci5: command 0x0409 tx timeout [ 130.997765] Bluetooth: hci7: command 0x0409 tx timeout [ 132.789515] Bluetooth: hci4: command 0x041b tx timeout [ 132.790110] Bluetooth: hci2: command 0x041b tx timeout [ 132.853410] Bluetooth: hci1: command 0x041b tx timeout [ 132.853979] Bluetooth: hci0: command 0x041b tx timeout [ 132.917462] Bluetooth: hci3: command 0x041b tx timeout [ 132.981430] Bluetooth: hci5: command 0x041b tx timeout [ 132.981937] Bluetooth: hci6: command 0x041b tx timeout [ 133.045413] Bluetooth: hci7: command 0x041b tx timeout [ 134.838392] Bluetooth: hci2: command 0x040f tx timeout [ 134.838872] Bluetooth: hci4: command 0x040f tx timeout [ 134.901397] Bluetooth: hci0: command 0x040f tx timeout [ 134.901874] Bluetooth: hci1: command 0x040f tx timeout [ 134.967151] Bluetooth: hci3: command 0x040f tx timeout [ 135.030472] Bluetooth: hci6: command 0x040f tx timeout [ 135.030944] Bluetooth: hci5: command 0x040f tx timeout [ 135.094446] Bluetooth: hci7: command 0x040f tx timeout [ 136.886450] Bluetooth: hci4: command 0x0419 tx timeout [ 136.886916] Bluetooth: hci2: command 0x0419 tx timeout [ 136.950440] Bluetooth: hci1: command 0x0419 tx timeout [ 136.950857] Bluetooth: hci0: command 0x0419 tx timeout [ 137.014373] Bluetooth: hci3: command 0x0419 tx timeout [ 137.078401] Bluetooth: hci5: command 0x0419 tx timeout [ 137.078813] Bluetooth: hci6: command 0x0419 tx timeout [ 137.142397] Bluetooth: hci7: command 0x0419 tx timeout [ 179.061433] INFO: task rcu_gp:3 blocked for more than 142 seconds. [ 179.062223] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.062672] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.063237] task:rcu_gp state:I stack:30328 pid:3 ppid:2 flags:0x00004000 [ 179.063877] Call Trace: [ 179.064078] [ 179.064243] __schedule+0x893/0x2470 [ 179.064563] ? io_schedule_timeout+0x150/0x150 [ 179.065106] ? do_raw_spin_lock+0x121/0x260 [ 179.065917] ? rwlock_bug.part.0+0x90/0x90 [ 179.066237] schedule+0xda/0x1b0 [ 179.066826] rescuer_thread+0x851/0xdb0 [ 179.067127] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.067513] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.067882] ? lockdep_hardirqs_on+0x79/0x100 [ 179.068215] ? worker_thread+0x1260/0x1260 [ 179.068552] kthread+0x2ed/0x3a0 [ 179.068812] ? kthread_complete_and_exit+0x40/0x40 [ 179.069172] ret_from_fork+0x22/0x30 [ 179.069481] [ 179.069665] INFO: task rcu_par_gp:4 blocked for more than 142 seconds. [ 179.070123] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.070520] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.071069] task:rcu_par_gp state:I stack:30944 pid:4 ppid:2 flags:0x00004000 [ 179.071678] Call Trace: [ 179.071871] [ 179.072044] __schedule+0x893/0x2470 [ 179.072345] ? io_schedule_timeout+0x150/0x150 [ 179.072688] ? do_raw_spin_lock+0x121/0x260 [ 179.073009] ? rwlock_bug.part.0+0x90/0x90 [ 179.073323] schedule+0xda/0x1b0 [ 179.073601] rescuer_thread+0x851/0xdb0 [ 179.073898] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.074266] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.074647] ? lockdep_hardirqs_on+0x79/0x100 [ 179.074981] ? worker_thread+0x1260/0x1260 [ 179.075295] kthread+0x2ed/0x3a0 [ 179.075564] ? kthread_complete_and_exit+0x40/0x40 [ 179.075928] ret_from_fork+0x22/0x30 [ 179.076220] [ 179.076409] INFO: task slub_flushwq:5 blocked for more than 142 seconds. [ 179.076889] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.077271] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.077831] task:slub_flushwq state:I stack:30944 pid:5 ppid:2 flags:0x00004000 [ 179.078440] Call Trace: [ 179.078635] [ 179.078808] __schedule+0x893/0x2470 [ 179.079093] ? io_schedule_timeout+0x150/0x150 [ 179.079450] ? do_raw_spin_lock+0x121/0x260 [ 179.079770] ? rwlock_bug.part.0+0x90/0x90 [ 179.080089] schedule+0xda/0x1b0 [ 179.080358] rescuer_thread+0x851/0xdb0 [ 179.080664] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.081028] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.081409] ? lockdep_hardirqs_on+0x79/0x100 [ 179.081746] ? worker_thread+0x1260/0x1260 [ 179.082060] kthread+0x2ed/0x3a0 [ 179.082315] ? kthread_complete_and_exit+0x40/0x40 [ 179.082696] ret_from_fork+0x22/0x30 [ 179.082984] [ 179.083162] INFO: task netns:6 blocked for more than 142 seconds. [ 179.083610] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.083990] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.084565] task:netns state:I stack:30944 pid:6 ppid:2 flags:0x00004000 [ 179.085165] Call Trace: [ 179.085371] [ 179.085545] __schedule+0x893/0x2470 [ 179.085830] ? io_schedule_timeout+0x150/0x150 [ 179.086168] ? do_raw_spin_lock+0x121/0x260 [ 179.086501] ? rwlock_bug.part.0+0x90/0x90 [ 179.086820] schedule+0xda/0x1b0 [ 179.087076] rescuer_thread+0x851/0xdb0 [ 179.087392] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.087764] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.088127] ? lockdep_hardirqs_on+0x79/0x100 [ 179.088480] ? worker_thread+0x1260/0x1260 [ 179.088797] kthread+0x2ed/0x3a0 [ 179.089051] ? kthread_complete_and_exit+0x40/0x40 [ 179.089429] ret_from_fork+0x22/0x30 [ 179.089722] [ 179.089898] INFO: task kworker/0:0H:8 blocked for more than 142 seconds. [ 179.090386] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.090772] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.091311] task:kworker/0:0H state:I stack:29760 pid:8 ppid:2 flags:0x00004000 [ 179.091925] Workqueue: 0x0 (events_highpri) [ 179.092254] Call Trace: [ 179.092481] [ 179.092654] __schedule+0x893/0x2470 [ 179.092938] ? io_schedule_timeout+0x150/0x150 [ 179.093281] schedule+0xda/0x1b0 [ 179.093555] worker_thread+0x15f/0x1260 [ 179.093867] ? process_one_work+0x16a0/0x16a0 [ 179.094204] kthread+0x2ed/0x3a0 [ 179.094474] ? kthread_complete_and_exit+0x40/0x40 [ 179.094842] ret_from_fork+0x22/0x30 [ 179.095135] [ 179.095309] INFO: task mm_percpu_wq:10 blocked for more than 142 seconds. [ 179.095803] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.096182] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.096746] task:mm_percpu_wq state:I stack:30944 pid:10 ppid:2 flags:0x00004000 [ 179.097361] Call Trace: [ 179.097553] [ 179.097737] __schedule+0x893/0x2470 [ 179.098041] ? io_schedule_timeout+0x150/0x150 [ 179.098406] ? do_raw_spin_lock+0x121/0x260 [ 179.098736] ? rwlock_bug.part.0+0x90/0x90 [ 179.099064] schedule+0xda/0x1b0 [ 179.099342] rescuer_thread+0x851/0xdb0 [ 179.099654] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.100047] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.100463] ? lockdep_hardirqs_on+0x79/0x100 [ 179.100814] ? worker_thread+0x1260/0x1260 [ 179.101162] kthread+0x2ed/0x3a0 [ 179.101502] ? kthread_complete_and_exit+0x40/0x40 [ 179.101882] ret_from_fork+0x22/0x30 [ 179.102184] [ 179.102410] INFO: task rcu_tasks_kthre:11 blocked for more than 142 seconds. [ 179.102944] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.103353] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.103931] task:rcu_tasks_kthre state:I stack:29272 pid:11 ppid:2 flags:0x00004000 [ 179.104577] Call Trace: [ 179.104775] [ 179.104955] __schedule+0x893/0x2470 [ 179.105256] ? io_schedule_timeout+0x150/0x150 [ 179.105648] ? mark_held_locks+0x9e/0xe0 [ 179.105971] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.106369] schedule+0xda/0x1b0 [ 179.106643] rcu_tasks_one_gp+0x3db/0xc10 [ 179.106983] rcu_tasks_kthread+0x80/0xa0 [ 179.107295] ? rcu_tasks_postscan+0x10/0x10 [ 179.107643] kthread+0x2ed/0x3a0 [ 179.107910] ? kthread_complete_and_exit+0x40/0x40 [ 179.108289] ret_from_fork+0x22/0x30 [ 179.108611] [ 179.108798] INFO: task kworker/1:0:20 blocked for more than 142 seconds. [ 179.109286] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.109701] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.110269] task:kworker/1:0 state:I stack:29760 pid:20 ppid:2 flags:0x00004000 [ 179.110911] Workqueue: 0x0 (rcu_gp) [ 179.111200] Call Trace: [ 179.111409] [ 179.111587] __schedule+0x893/0x2470 [ 179.111883] ? io_schedule_timeout+0x150/0x150 [ 179.112247] schedule+0xda/0x1b0 [ 179.112553] worker_thread+0x15f/0x1260 [ 179.112875] ? process_one_work+0x16a0/0x16a0 [ 179.113221] kthread+0x2ed/0x3a0 [ 179.113505] ? kthread_complete_and_exit+0x40/0x40 [ 179.113889] ret_from_fork+0x22/0x30 [ 179.114188] [ 179.114387] INFO: task kworker/1:0H:21 blocked for more than 142 seconds. [ 179.114886] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.115290] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.115902] task:kworker/1:0H state:I stack:29376 pid:21 ppid:2 flags:0x00004000 [ 179.116573] Workqueue: 0x0 (kblockd) [ 179.116989] Call Trace: [ 179.117261] [ 179.117525] __schedule+0x893/0x2470 [ 179.117941] ? io_schedule_timeout+0x150/0x150 [ 179.118452] schedule+0xda/0x1b0 [ 179.118814] worker_thread+0x15f/0x1260 [ 179.119247] ? process_one_work+0x16a0/0x16a0 [ 179.119765] kthread+0x2ed/0x3a0 [ 179.120146] ? kthread_complete_and_exit+0x40/0x40 [ 179.120703] ret_from_fork+0x22/0x30 [ 179.121119] [ 179.121380] INFO: task inet_frag_wq:23 blocked for more than 142 seconds. [ 179.122048] Not tainted 6.0.0-rc7-next-20220930 #1 [ 179.122577] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 179.123304] task:inet_frag_wq state:I stack:30704 pid:23 ppid:2 flags:0x00004000 [ 179.124132] Call Trace: [ 179.124407] [ 179.124654] __schedule+0x893/0x2470 [ 179.125047] ? io_schedule_timeout+0x150/0x150 [ 179.125530] ? do_raw_spin_lock+0x121/0x260 [ 179.125992] ? rwlock_bug.part.0+0x90/0x90 [ 179.126446] schedule+0xda/0x1b0 [ 179.126802] rescuer_thread+0x851/0xdb0 [ 179.127205] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.127715] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 179.128208] ? lockdep_hardirqs_on+0x79/0x100 [ 179.128688] ? worker_thread+0x1260/0x1260 [ 179.129116] kthread+0x2ed/0x3a0 [ 179.129492] ? kthread_complete_and_exit+0x40/0x40 [ 179.129977] ret_from_fork+0x22/0x30 [ 179.130383] [ 179.130694] [ 179.130694] Showing all locks held in the system: [ 179.131286] 2 locks held by kworker/u4:0/9: [ 179.131711] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 179.132742] #1: ffff88800861fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 179.133793] 1 lock held by rcu_tasks_kthre/11: [ 179.134233] #0: ffffffff85406850 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10 [ 179.135206] 1 lock held by khungtaskd/25: [ 179.135636] #0: ffffffff85407320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 179.136575] 2 locks held by kworker/u4:1/26: [ 179.137003] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 179.138032] #1: ffff888009037db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 179.139116] 2 locks held by kworker/u4:3/47: [ 179.139566] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 179.140603] #1: ffff88800f827db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 179.141660] 1 lock held by kmemleak/55: [ 179.142046] 1 lock held by in:imklog/194: [ 179.142457] 2 locks held by kworker/u4:4/327: [ 179.142886] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 179.143910] #1: ffff88803ef57db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 179.145454] 2 locks held by kworker/u4:5/330: [ 179.146190] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 179.147936] #1: ffff88801ef4fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 179.149769] 2 locks held by kworker/u4:6/333: [ 179.150532] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 179.152258] #1: ffff88803ef67db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 179.154083] 2 locks held by kworker/u4:11/725: [ 179.154863] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 179.156589] #1: ffff88801d51fdb0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 179.158389] 1 lock held by modprobe/6767: [ 179.159073] 1 lock held by modprobe/6769: [ 179.159774] 1 lock held by modprobe/6775: [ 179.160501] 1 lock held by modprobe/6776: [ 179.161117] [ 179.161402] ============================================= [ 179.161402] 19:08:23 executing program 4: r0 = syz_mount_image$vfat(0x0, &(0x7f0000000080)='./file0\x00', 0x40000, 0x0, 0x0, 0x1000000, 0x0) mount$9p_rdma(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)=ANY=[@ANYRES32]) pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='./file0\x00') openat(r0, &(0x7f0000000180)='./file0\x00', 0x10901, 0x120) 19:08:24 executing program 4: r0 = perf_event_open$cgroup(&(0x7f00000000c0)={0x1, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0xffffffffffffffff, 0xb, 0xffffffffffffffff, 0x0) close_range(r0, 0xffffffffffffffff, 0x4) r1 = open(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000000000)={0x1, 0x80, 0x3f, 0x4, 0x84, 0x1, 0x0, 0x1, 0x88, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xac6, 0x4, @perf_config_ext={0x1f, 0x10000}, 0x80, 0x6, 0x8, 0x9, 0x9, 0x5, 0x1ff, 0x0, 0x0, 0x0, 0x4}, r1, 0x5, r0, 0x2) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) pipe(&(0x7f0000000400)) r3 = dup(r2) bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) write$bt_hci(r3, &(0x7f0000000100)=ANY=[@ANYBLOB="15"], 0x6) r4 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r1) sendmsg$DEVLINK_CMD_RATE_GET(r3, &(0x7f00000003c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x174, r4, 0x100, 0x70bd28, 0x25dfdbfe, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe}, @DEVLINK_ATTR_RATE_NODE_NAME={0xe2, 0xa8, @random="2096f9fc75b4e1f0b9edac5bf5beca4665ed64c4c57ac51296584353240cef47dd1f124fb859582602901d0cf547f082f80ed466671d747757bd65a94d353e2358b6affe36ac0717555a06a4efda15b560a2c98da9837f00f6e030901f318240f8969096a3c3804b7f36b51f7c187790ed69dbfb9737a1622a7f42207f399b1544a7d18a1592b9cc260826a57b3112d385d30788125a92e4e911479d3f71795f50cb66833ab91fc91248b5674d0f53dc8133365992a7f73c6d8d9b2982ab4b4980becd79b7c39a40bca093641e2b3af4461803541ac48995b596ceca2097"}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}, @DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @handle=@pci={{0x8}, {0x11}}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x174}, 0x1, 0x0, 0x0, 0x40000}, 0x14) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r6 = dup(r5) bind$bt_hci(r6, &(0x7f0000000080)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) write$bt_hci(r6, &(0x7f0000000100)=ANY=[@ANYBLOB="15"], 0x6) ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000140)='\x00') 19:08:24 executing program 1: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000080)={0x0, 0x3b4b, 0x0, 'queue0\x00'}) write$sndseq(0xffffffffffffffff, &(0x7f0000000140)=[{0x23, 0x0, 0x0, 0x0, @time, {}, {}, @time}], 0x1c) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_setup(0x5024, &(0x7f0000000700)={0x0, 0x573c, 0x4, 0x2, 0x309}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000340)) fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, &(0x7f0000000200), &(0x7f0000000380), 0x2, 0x2) pidfd_open(0x0, 0x0) r1 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f0000000040), 0xb}, 0x140, 0x20, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = syz_mount_image$tmpfs(&(0x7f0000000180), &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x10800, &(0x7f0000000980)=ANY=[@ANYRES16, @ANYRESHEX, @ANYRES64=r0, @ANYRESDEC, @ANYRESHEX, @ANYRES32]) lseek(r2, 0x0, 0x3) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000780)) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000001c0), 0x105802, 0x0) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r5 = dup(r4) r6 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300), 0x248100, 0x0) io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f00000006c0)=[0xffffffffffffffff, 0xffffffffffffffff, r1, r4, r6], 0x5) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x2811, r3, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000a00)) pidfd_getfd(r3, 0xffffffffffffffff, 0x0) [ 186.963274] audit: type=1400 audit(1664737704.088:7): avc: denied { open } for pid=7199 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 186.965008] audit: type=1400 audit(1664737704.088:8): avc: denied { kernel } for pid=7199 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 186.974152] Bluetooth: MGMT ver 1.22 [ 186.995635] ------------[ cut here ]------------ [ 186.995659] [ 186.995663] ====================================================== [ 186.995667] WARNING: possible circular locking dependency detected [ 186.995671] 6.0.0-rc7-next-20220930 #1 Not tainted [ 186.995678] ------------------------------------------------------ [ 186.995682] syz-executor.1/7201 is trying to acquire lock: [ 186.995689] ffffffff853faab8 ((console_sem).lock){....}-{2:2}, at: down_trylock+0xe/0x70 [ 186.995731] [ 186.995731] but task is already holding lock: [ 186.995734] ffff88803754cc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 186.995761] [ 186.995761] which lock already depends on the new lock. [ 186.995761] [ 186.995764] [ 186.995764] the existing dependency chain (in reverse order) is: [ 186.995767] [ 186.995767] -> #3 (&ctx->lock){....}-{2:2}: [ 186.995781] _raw_spin_lock+0x2a/0x40 [ 186.995792] __perf_event_task_sched_out+0x53b/0x18d0 [ 186.995803] __schedule+0xedd/0x2470 [ 186.995817] schedule+0xda/0x1b0 [ 186.995830] exit_to_user_mode_prepare+0x114/0x1a0 [ 186.995843] syscall_exit_to_user_mode+0x19/0x40 [ 186.995856] do_syscall_64+0x48/0x90 [ 186.995874] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 186.995886] [ 186.995886] -> #2 (&rq->__lock){-.-.}-{2:2}: [ 186.995900] _raw_spin_lock_nested+0x30/0x40 [ 186.995910] raw_spin_rq_lock_nested+0x1e/0x30 [ 186.995924] task_fork_fair+0x63/0x4d0 [ 186.995941] sched_cgroup_fork+0x3d0/0x540 [ 186.995955] copy_process+0x4183/0x6e20 [ 186.995966] kernel_clone+0xe7/0x890 [ 186.995976] user_mode_thread+0xad/0xf0 [ 186.995986] rest_init+0x24/0x250 [ 186.995998] arch_call_rest_init+0xf/0x14 [ 186.996015] start_kernel+0x4c6/0x4eb [ 186.996030] secondary_startup_64_no_verify+0xe0/0xeb [ 186.996044] [ 186.996044] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 186.996058] _raw_spin_lock_irqsave+0x39/0x60 [ 186.996068] try_to_wake_up+0xab/0x1930 [ 186.996081] up+0x75/0xb0 [ 186.996095] __up_console_sem+0x6e/0x80 [ 186.996111] console_unlock+0x46a/0x590 [ 186.996127] vprintk_emit+0x1bd/0x560 [ 186.996142] vprintk+0x84/0xa0 [ 186.996158] _printk+0xba/0xf1 [ 186.996170] kauditd_hold_skb.cold+0x3f/0x4e [ 186.996187] kauditd_send_queue+0x233/0x290 [ 186.996202] kauditd_thread+0x5f9/0x9c0 [ 186.996215] kthread+0x2ed/0x3a0 [ 186.996230] ret_from_fork+0x22/0x30 [ 186.996242] [ 186.996242] -> #0 ((console_sem).lock){....}-{2:2}: [ 186.996255] __lock_acquire+0x2a02/0x5e70 [ 186.996272] lock_acquire+0x1a2/0x530 [ 186.996288] _raw_spin_lock_irqsave+0x39/0x60 [ 186.996298] down_trylock+0xe/0x70 [ 186.996313] __down_trylock_console_sem+0x3b/0xd0 [ 186.996329] vprintk_emit+0x16b/0x560 [ 186.996344] vprintk+0x84/0xa0 [ 186.996360] _printk+0xba/0xf1 [ 186.996370] report_bug.cold+0x72/0xab [ 186.996386] handle_bug+0x3c/0x70 [ 186.996402] exc_invalid_op+0x14/0x50 [ 186.996419] asm_exc_invalid_op+0x16/0x20 [ 186.996431] group_sched_out.part.0+0x2c7/0x460 [ 186.996449] ctx_sched_out+0x8f1/0xc10 [ 186.996466] __perf_event_task_sched_out+0x6d0/0x18d0 [ 186.996478] __schedule+0xedd/0x2470 [ 186.996494] schedule+0xda/0x1b0 [ 186.996507] exit_to_user_mode_prepare+0x114/0x1a0 [ 186.996518] syscall_exit_to_user_mode+0x19/0x40 [ 186.996530] do_syscall_64+0x48/0x90 [ 186.996566] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 186.996579] [ 186.996579] other info that might help us debug this: [ 186.996579] [ 186.996581] Chain exists of: [ 186.996581] (console_sem).lock --> &rq->__lock --> &ctx->lock [ 186.996581] [ 186.996596] Possible unsafe locking scenario: [ 186.996596] [ 186.996598] CPU0 CPU1 [ 186.996601] ---- ---- [ 186.996603] lock(&ctx->lock); [ 186.996609] lock(&rq->__lock); [ 186.996615] lock(&ctx->lock); [ 186.996621] lock((console_sem).lock); [ 186.996627] [ 186.996627] *** DEADLOCK *** [ 186.996627] [ 186.996629] 2 locks held by syz-executor.1/7201: [ 186.996636] #0: ffff88806cf37e98 (&rq->__lock){-.-.}-{2:2}, at: __schedule+0x1cf/0x2470 [ 186.996664] #1: ffff88803754cc20 (&ctx->lock){....}-{2:2}, at: __perf_event_task_sched_out+0x53b/0x18d0 [ 186.996690] [ 186.996690] stack backtrace: [ 186.996693] CPU: 1 PID: 7201 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1 [ 186.996706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 186.996714] Call Trace: [ 186.996717] [ 186.996721] dump_stack_lvl+0x8b/0xb3 [ 186.996740] check_noncircular+0x263/0x2e0 [ 186.996756] ? format_decode+0x26c/0xb50 [ 186.996772] ? print_circular_bug+0x450/0x450 [ 186.996789] ? simple_strtoul+0x30/0x30 [ 186.996803] ? __lockdep_reset_lock+0x180/0x180 [ 186.996820] ? format_decode+0x26c/0xb50 [ 186.996837] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 186.996854] __lock_acquire+0x2a02/0x5e70 [ 186.996875] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 186.996898] lock_acquire+0x1a2/0x530 [ 186.996914] ? down_trylock+0xe/0x70 [ 186.996931] ? lock_release+0x750/0x750 [ 186.996949] ? find_held_lock+0x2c/0x110 [ 186.996965] ? vprintk+0x84/0xa0 [ 186.996983] _raw_spin_lock_irqsave+0x39/0x60 [ 186.996994] ? down_trylock+0xe/0x70 [ 186.997010] down_trylock+0xe/0x70 [ 186.997025] ? vprintk+0x84/0xa0 [ 186.997042] __down_trylock_console_sem+0x3b/0xd0 [ 186.997059] vprintk_emit+0x16b/0x560 [ 186.997077] vprintk+0x84/0xa0 [ 186.997094] _printk+0xba/0xf1 [ 186.997106] ? record_print_text.cold+0x16/0x16 [ 186.997120] ? hrtimer_try_to_cancel+0x163/0x2c0 [ 186.997134] ? lock_downgrade+0x6d0/0x6d0 [ 186.997151] ? report_bug.cold+0x66/0xab [ 186.997169] ? group_sched_out.part.0+0x2c7/0x460 [ 186.997187] report_bug.cold+0x72/0xab [ 186.997205] handle_bug+0x3c/0x70 [ 186.997223] exc_invalid_op+0x14/0x50 [ 186.997240] asm_exc_invalid_op+0x16/0x20 [ 186.997253] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 186.997274] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 186.997285] RSP: 0018:ffff8880405cfc48 EFLAGS: 00010006 [ 186.997294] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 186.997302] RDX: ffff888030e45040 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 186.997309] RBP: ffff8880405d85c8 R08: 0000000000000005 R09: 0000000000000001 [ 186.997317] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803754cc00 [ 186.997324] R13: ffff88806cf3d2c0 R14: ffffffff8547d160 R15: 0000000000000002 [ 186.997335] ? group_sched_out.part.0+0x2c7/0x460 [ 186.997355] ? group_sched_out.part.0+0x2c7/0x460 [ 186.997374] ctx_sched_out+0x8f1/0xc10 [ 186.997393] __perf_event_task_sched_out+0x6d0/0x18d0 [ 186.997407] ? lock_is_held_type+0xd7/0x130 [ 186.997421] ? __perf_cgroup_move+0x160/0x160 [ 186.997431] ? set_next_entity+0x304/0x550 [ 186.997449] ? update_curr+0x267/0x740 [ 186.997467] ? lock_is_held_type+0xd7/0x130 [ 186.997481] __schedule+0xedd/0x2470 [ 186.997498] ? io_schedule_timeout+0x150/0x150 [ 186.997514] ? __x64_sys_futex_time32+0x480/0x480 [ 186.997529] schedule+0xda/0x1b0 [ 186.997543] exit_to_user_mode_prepare+0x114/0x1a0 [ 186.997556] syscall_exit_to_user_mode+0x19/0x40 [ 186.997569] do_syscall_64+0x48/0x90 [ 186.997586] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 186.997599] RIP: 0033:0x7fa058021b19 [ 186.997608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 186.997618] RSP: 002b:00007fa055597218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 186.997629] RAX: 0000000000000001 RBX: 00007fa058134f68 RCX: 00007fa058021b19 [ 186.997636] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa058134f6c [ 186.997644] RBP: 00007fa058134f60 R08: 000000000000000e R09: 0000000000000000 [ 186.997650] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fa058134f6c [ 186.997658] R13: 00007ffe3eee453f R14: 00007fa055597300 R15: 0000000000022000 [ 186.997670] [ 187.053700] WARNING: CPU: 1 PID: 7201 at kernel/events/core.c:2309 group_sched_out.part.0+0x2c7/0x460 [ 187.054369] Modules linked in: [ 187.054603] CPU: 1 PID: 7201 Comm: syz-executor.1 Not tainted 6.0.0-rc7-next-20220930 #1 [ 187.055190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 187.056000] RIP: 0010:group_sched_out.part.0+0x2c7/0x460 [ 187.056405] Code: 5e 41 5f e9 8b ae ef ff e8 86 ae ef ff 65 8b 1d 0b 18 ac 7e 31 ff 89 de e8 26 ab ef ff 85 db 0f 84 8a 00 00 00 e8 69 ae ef ff <0f> 0b e9 a5 fe ff ff e8 5d ae ef ff 48 8d 7d 10 48 b8 00 00 00 00 [ 187.057746] RSP: 0018:ffff8880405cfc48 EFLAGS: 00010006 [ 187.058142] RAX: 0000000040000002 RBX: 0000000000000000 RCX: 0000000000000000 [ 187.058663] RDX: ffff888030e45040 RSI: ffffffff81565dc7 RDI: 0000000000000005 [ 187.059193] RBP: ffff8880405d85c8 R08: 0000000000000005 R09: 0000000000000001 [ 187.059727] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88803754cc00 [ 187.060254] R13: ffff88806cf3d2c0 R14: ffffffff8547d160 R15: 0000000000000002 [ 187.060785] FS: 00007fa055597700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000 [ 187.061370] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 187.061803] CR2: 00007fa05806f7f0 CR3: 0000000017e3a000 CR4: 0000000000350ee0 [ 187.062328] Call Trace: [ 187.062522] [ 187.062692] ctx_sched_out+0x8f1/0xc10 [ 187.062993] __perf_event_task_sched_out+0x6d0/0x18d0 [ 187.063376] ? lock_is_held_type+0xd7/0x130 [ 187.063697] ? __perf_cgroup_move+0x160/0x160 [ 187.064030] ? set_next_entity+0x304/0x550 [ 187.064351] ? update_curr+0x267/0x740 [ 187.064660] ? lock_is_held_type+0xd7/0x130 [ 187.064984] __schedule+0xedd/0x2470 [ 187.065269] ? io_schedule_timeout+0x150/0x150 [ 187.065610] ? __x64_sys_futex_time32+0x480/0x480 [ 187.065971] schedule+0xda/0x1b0 [ 187.066229] exit_to_user_mode_prepare+0x114/0x1a0 [ 187.066596] syscall_exit_to_user_mode+0x19/0x40 [ 187.066953] do_syscall_64+0x48/0x90 [ 187.067241] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 187.067623] RIP: 0033:0x7fa058021b19 [ 187.067896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 187.069231] RSP: 002b:00007fa055597218 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 187.069789] RAX: 0000000000000001 RBX: 00007fa058134f68 RCX: 00007fa058021b19 [ 187.070309] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007fa058134f6c [ 187.070835] RBP: 00007fa058134f60 R08: 000000000000000e R09: 0000000000000000 [ 187.071359] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fa058134f6c [ 187.071893] R13: 00007ffe3eee453f R14: 00007fa055597300 R15: 0000000000022000 [ 187.072417] [ 187.072609] irq event stamp: 1212 [ 187.072873] hardirqs last enabled at (1211): [] exit_to_user_mode_prepare+0x109/0x1a0 [ 187.073563] hardirqs last disabled at (1212): [] __schedule+0x1225/0x2470 [ 187.074175] softirqs last enabled at (1054): [] __irq_exit_rcu+0x11b/0x180 [ 187.074811] softirqs last disabled at (1045): [] __irq_exit_rcu+0x11b/0x180 [ 187.075437] ---[ end trace 0000000000000000 ]--- 19:08:24 executing program 7: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) socket$unix(0x1, 0x5, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x87ffffc) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={r1, 0x4, 0x9, 0x10000}) pwritev(r2, &(0x7f0000000680)=[{&(0x7f0000000300)="e6e10d4bfdd7e059c9f3388cffd1b07ac39edc2abd98db63f036c26b48fc6006a9291ffddb7d9856c0317e0be2836465732b4c8954d8e2fc1245718ae8410b636996e3a1968608c2c31b0aae2642b0bbc34a29d5f10cf6b5b182609d8965dfb3620ca794ffc4fb5922d03abf10cb5aa5d5f39334ec982dc46e08021a0873d575f56f8c3c0af9721a66f99252975a7eae506d87d8e976e1bb27185bb71d230e6c5db32f6157be38e774e415e85a34aee9a05ae91d55e52762e270c74dcf91165749279fa9", 0xc4}, {&(0x7f0000000400)="ca641fbf451b2d41f2b79c2ef0cc88b6970bcf1d84d345a6d48dbb883629978b5a92ef82f62e2577a614289901dc9870f7d4c19779d4c4f7e079e45d21285d1c6aa8dc5ea63e190b4f9f854e157d7b2b38e9d6a093af626f905d1f95928c7bc469bdda2bf049d1cfcfed226410f63c45ffcf5c049dfee57d38aca5f9c3327c8cf99f0562b7b7c9ca9a636df004169ef2ddf2ea506425ebe77706c2303cbe6bc3eaa648d11c8d1aa016f82464785d9297c2293750f2feb9e61107cf8613f426657fe216b0bc5de70c468f560710", 0xcd}, {&(0x7f0000000040)='S', 0x1}, {&(0x7f0000000500)="773bc44cd84cb2c0a3e3f6bab5a215f7c043e3869aa9b7dacbe10ca2a9deddbe29d0d85f4041e30ac0c0174e4884a4bcd42a7474f15d6579bfb4471550007ff214a892d78ae03f2dc9fe0b4e26715ae5e8da2aa382079d73a7a404a302e169f3c5bf45b0f767ae6075ed6fc7add3d238457f30c91a944aaa7a91b6b0b05b64d017962b1c923ad5783e8fd43be272ccc6c898a23a13f1d356dab75c5e4e83d369600a8a9f6c2f9779a87d362756aba12e095039f516eac0afdbbd68587fc68c1c7560e28db17c70b9eedcf7f8bbd02a775035d665ab16e2edeed59aceb32169b41919ee214a40182240f5f6e857f4a743", 0xf0}, {&(0x7f0000000600)="1f5a3d5358daecd62378c553a199fe684b76dc73f89e9732a7c56f244816b9eb800f227588b1b0d9ac6b3703b280262396e8a6514bd990dc65c479189ccef42b7d3434d417f759eddbbc5186bec44800e96960e9a184b927617c4a93d18a6f264027", 0x62}], 0x5, 0xcc2, 0x5) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0) memfd_create(&(0x7f0000000200)='-%@,/.(\x00', 0x6) ftruncate(r0, 0x1) 19:08:24 executing program 4: sendmsg$NLBL_UNLABEL_C_STATICREMOVE(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)={0xbc, 0x0, 0x306, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_SECCTX={0x24, 0x7, 'system_u:object_r:cron_log_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @empty}, @NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:tetex_data_t:s0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @empty}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast1}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @loopback}]}, 0xbc}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b036f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2800}], 0x0, &(0x7f0000000140)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) pwrite64(r1, &(0x7f0000000140)="c0", 0x1, 0x75d6) write$binfmt_aout(r0, &(0x7f0000001180)=ANY=[], 0x220) [ 187.215067] audit: type=1400 audit(1664737704.339:9): avc: denied { write } for pid=7211 comm="syz-executor.7" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 187.220353] loop4: detected capacity change from 0 to 40 [ 187.267472] kworker/u4:3: attempt to access beyond end of device [ 187.267472] loop4: rw=1, sector=92, nr_sectors = 32 limit=40 [ 187.268755] kworker/u4:3: attempt to access beyond end of device [ 187.268755] loop4: rw=1, sector=124, nr_sectors = 4 limit=40 [ 187.269605] Buffer I/O error on dev loop4, logical block 31, lost async page write [ 187.270255] kworker/u4:3: attempt to access beyond end of device [ 187.270255] loop4: rw=1, sector=88, nr_sectors = 4 limit=40 19:08:24 executing program 4: r0 = syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='autofs\x00', 0x0, &(0x7f00000001c0)='\x00') r1 = add_key$user(&(0x7f00000012c0), &(0x7f0000001300)={'syz', 0x1}, &(0x7f0000001340)="d6", 0x1, 0xfffffffffffffffd) r2 = add_key$fscrypt_v1(&(0x7f0000001440), &(0x7f0000001480), &(0x7f00000014c0)={0x0, "6651bd5d17dbaf7bb4cbad1dd16eae49a65d0e48388d875411f2510fab457c3f6c89f8c38f733fe9437b0350c51cae1a634ef12d656932e9a27d31da9b814674"}, 0x48, 0xfffffffffffffffe) keyctl$KEYCTL_MOVE(0x1e, r1, r2, 0x0, 0x0) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000000)={@desc={0x1, 0x0, @desc3}, 0x40, r2, '\x00', @b}) 19:08:24 executing program 7: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) socket$unix(0x1, 0x5, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x87ffffc) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={r1, 0x4, 0x9, 0x10000}) pwritev(r2, &(0x7f0000000680)=[{&(0x7f0000000300)="e6e10d4bfdd7e059c9f3388cffd1b07ac39edc2abd98db63f036c26b48fc6006a9291ffddb7d9856c0317e0be2836465732b4c8954d8e2fc1245718ae8410b636996e3a1968608c2c31b0aae2642b0bbc34a29d5f10cf6b5b182609d8965dfb3620ca794ffc4fb5922d03abf10cb5aa5d5f39334ec982dc46e08021a0873d575f56f8c3c0af9721a66f99252975a7eae506d87d8e976e1bb27185bb71d230e6c5db32f6157be38e774e415e85a34aee9a05ae91d55e52762e270c74dcf91165749279fa9", 0xc4}, {&(0x7f0000000400)="ca641fbf451b2d41f2b79c2ef0cc88b6970bcf1d84d345a6d48dbb883629978b5a92ef82f62e2577a614289901dc9870f7d4c19779d4c4f7e079e45d21285d1c6aa8dc5ea63e190b4f9f854e157d7b2b38e9d6a093af626f905d1f95928c7bc469bdda2bf049d1cfcfed226410f63c45ffcf5c049dfee57d38aca5f9c3327c8cf99f0562b7b7c9ca9a636df004169ef2ddf2ea506425ebe77706c2303cbe6bc3eaa648d11c8d1aa016f82464785d9297c2293750f2feb9e61107cf8613f426657fe216b0bc5de70c468f560710", 0xcd}, {&(0x7f0000000040)='S', 0x1}, {&(0x7f0000000500)="773bc44cd84cb2c0a3e3f6bab5a215f7c043e3869aa9b7dacbe10ca2a9deddbe29d0d85f4041e30ac0c0174e4884a4bcd42a7474f15d6579bfb4471550007ff214a892d78ae03f2dc9fe0b4e26715ae5e8da2aa382079d73a7a404a302e169f3c5bf45b0f767ae6075ed6fc7add3d238457f30c91a944aaa7a91b6b0b05b64d017962b1c923ad5783e8fd43be272ccc6c898a23a13f1d356dab75c5e4e83d369600a8a9f6c2f9779a87d362756aba12e095039f516eac0afdbbd68587fc68c1c7560e28db17c70b9eedcf7f8bbd02a775035d665ab16e2edeed59aceb32169b41919ee214a40182240f5f6e857f4a743", 0xf0}, {&(0x7f0000000600)="1f5a3d5358daecd62378c553a199fe684b76dc73f89e9732a7c56f244816b9eb800f227588b1b0d9ac6b3703b280262396e8a6514bd990dc65c479189ccef42b7d3434d417f759eddbbc5186bec44800e96960e9a184b927617c4a93d18a6f264027", 0x62}], 0x5, 0xcc2, 0x5) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0) memfd_create(&(0x7f0000000200)='-%@,/.(\x00', 0x6) ftruncate(r0, 0x1) [ 187.319913] autofs4:pid:7226:autofs_fill_super: called with bogus options [ 187.322043] autofs4:pid:7226:autofs_fill_super: called with bogus options 19:08:24 executing program 4: io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xc2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x2006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000000c0)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x44, 0x0, "704f5992d666aa2888e479ca552ee155f638582a91ca97213cf4774a2e4c350cdc3f9f62a4c21970bd149a52fa311b916bf00b51b808c412ed6b9fcbb5be4a2fb7dd8fd0dfa22b4100"}, 0xd8) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000018c0)=0x1, 0x4) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0) socket$unix(0x1, 0x5, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x87ffffc) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000000)={r1, 0x4, 0x9, 0x10000}) pwritev(r2, &(0x7f0000000680)=[{&(0x7f0000000300)="e6e10d4bfdd7e059c9f3388cffd1b07ac39edc2abd98db63f036c26b48fc6006a9291ffddb7d9856c0317e0be2836465732b4c8954d8e2fc1245718ae8410b636996e3a1968608c2c31b0aae2642b0bbc34a29d5f10cf6b5b182609d8965dfb3620ca794ffc4fb5922d03abf10cb5aa5d5f39334ec982dc46e08021a0873d575f56f8c3c0af9721a66f99252975a7eae506d87d8e976e1bb27185bb71d230e6c5db32f6157be38e774e415e85a34aee9a05ae91d55e52762e270c74dcf91165749279fa9", 0xc4}, {&(0x7f0000000400)="ca641fbf451b2d41f2b79c2ef0cc88b6970bcf1d84d345a6d48dbb883629978b5a92ef82f62e2577a614289901dc9870f7d4c19779d4c4f7e079e45d21285d1c6aa8dc5ea63e190b4f9f854e157d7b2b38e9d6a093af626f905d1f95928c7bc469bdda2bf049d1cfcfed226410f63c45ffcf5c049dfee57d38aca5f9c3327c8cf99f0562b7b7c9ca9a636df004169ef2ddf2ea506425ebe77706c2303cbe6bc3eaa648d11c8d1aa016f82464785d9297c2293750f2feb9e61107cf8613f426657fe216b0bc5de70c468f560710", 0xcd}, {&(0x7f0000000040)='S', 0x1}, {&(0x7f0000000500)="773bc44cd84cb2c0a3e3f6bab5a215f7c043e3869aa9b7dacbe10ca2a9deddbe29d0d85f4041e30ac0c0174e4884a4bcd42a7474f15d6579bfb4471550007ff214a892d78ae03f2dc9fe0b4e26715ae5e8da2aa382079d73a7a404a302e169f3c5bf45b0f767ae6075ed6fc7add3d238457f30c91a944aaa7a91b6b0b05b64d017962b1c923ad5783e8fd43be272ccc6c898a23a13f1d356dab75c5e4e83d369600a8a9f6c2f9779a87d362756aba12e095039f516eac0afdbbd68587fc68c1c7560e28db17c70b9eedcf7f8bbd02a775035d665ab16e2edeed59aceb32169b41919ee214a40182240f5f6e857f4a743", 0xf0}, {&(0x7f0000000600)="1f5a3d5358daecd62378c553a199fe684b76dc73f89e9732a7c56f244816b9eb800f227588b1b0d9ac6b3703b280262396e8a6514bd990dc65c479189ccef42b7d3434d417f759eddbbc5186bec44800e96960e9a184b927617c4a93d18a6f264027", 0x62}], 0x5, 0xcc2, 0x5) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x400000, 0x102) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x181c00, 0x0) memfd_create(&(0x7f0000000200)='-%@,/.(\x00', 0x6) ftruncate(r0, 0x1) [ 187.398347] hrtimer: interrupt took 18585 ns VM DIAGNOSIS: 19:08:16 Registers: info registers vcpu 0 RAX=ffffffff86cd37d0 RBX=000000000000008f RCX=ffffffff8129bdad RDX=0000000000000000 RSI=0000000000000008 RDI=ffffffff86cd37d0 RBP=0000000000000000 RSP=ffff888030cdf6a0 R8 =0000000000000000 R9 =ffffffff86cd37ef R10=fffffbfff0d9a6fd R11=0000000000000001 R12=ffff88801b430000 R13=ffff88801b4309a0 R14=ffff88801b430978 R15=0000000000000000 RIP=ffffffff8178761c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f06d0a048e0 CR3=000000001896a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88800902f878 R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001 R12=0000000000000000 R13=ffffffff8765a960 R14=ffffffff8765a9b0 R15=ffffffff8765ac10 RIP=ffffffff823bb149 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa501eb2710 CR3=0000000018bd0000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 000000ff00000000 00000000000000ff YMM01=0000000000000000 0000000000000000 ffffff0000ff00ff ffffffffffffff00 YMM02=0000000000000000 0000000000000000 494c4700362e322e 325f4342494c4700 YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000004700 YMM04=0000000000000000 0000000000000000 4342494c4700362e 322e325f4342494c YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000