Debian GNU/Linux 11 syzkaller ttyS0 Warning: Permanently added '[localhost]:51675' (ECDSA) to the list of known hosts. 2022/10/04 12:39:09 fuzzer started 2022/10/04 12:39:09 dialing manager at localhost:35095 syzkaller login: [ 39.219574] cgroup: Unknown subsys name 'net' [ 39.309273] cgroup: Unknown subsys name 'rlimit' 2022/10/04 12:39:24 syscalls: 208 2022/10/04 12:39:24 code coverage: enabled 2022/10/04 12:39:24 comparison tracing: enabled 2022/10/04 12:39:24 extra coverage: enabled 2022/10/04 12:39:24 setuid sandbox: enabled 2022/10/04 12:39:24 namespace sandbox: enabled 2022/10/04 12:39:24 Android sandbox: enabled 2022/10/04 12:39:24 fault injection: enabled 2022/10/04 12:39:24 leak checking: enabled 2022/10/04 12:39:24 net packet injection: enabled 2022/10/04 12:39:24 net device setup: enabled 2022/10/04 12:39:24 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/10/04 12:39:24 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/10/04 12:39:24 USB emulation: enabled 2022/10/04 12:39:24 hci packet injection: enabled 2022/10/04 12:39:24 wifi device emulation: failed to parse kernel version (6.0.0-rc7-next-20220930) 2022/10/04 12:39:24 802.15.4 emulation: enabled 2022/10/04 12:39:24 fetching corpus: 0, signal 0/0 (executing program) 2022/10/04 12:39:25 starting 8 fuzzer processes 12:39:25 executing program 0: mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x2}) mq_getsetattr(0xffffffffffffffff, &(0x7f0000000040)={0x100000000, 0x7f6d, 0x7, 0xd6d0}, &(0x7f0000000080)) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x1) mq_getsetattr(0xffffffffffffffff, &(0x7f00000000c0)={0x1, 0xfffffffffffffffa, 0x101, 0x7}, &(0x7f0000000100)) r0 = syz_open_dev$vcsu(&(0x7f0000000140), 0x2, 0x203001) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000180)={0x0, ""/256, 0x0, 0x0, 0x0}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000380)={"84fd72f19c226f6580bd85b0920d0887", r1, 0x0, {0x0, 0x8}, {0x100000000, 0x7ff}, 0x8, [0xe8, 0x3, 0x1000, 0x2, 0x8d, 0x88f, 0x10001, 0x1, 0x7ff, 0x6b0, 0x1000, 0x9, 0x40, 0x8d5]}) r2 = ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000480)={{0x1, 0x1, 0x18, r0, {0xd69b}}, './file0\x00'}) ioctl$LOOP_CTL_ADD(r0, 0x4c80, r2) connect$netlink(r3, &(0x7f00000004c0)=@unspec, 0xc) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/locks\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000540)={{0x1, 0x1, 0x18, r4}, './file0\x00'}) timer_create(0x5, &(0x7f0000000580)={0x0, 0x31, 0x4, @tid=0xffffffffffffffff}, &(0x7f00000005c0)) openat$rtc(0xffffffffffffff9c, &(0x7f0000000600), 0x200, 0x0) ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000680)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/class/scsi_generic', 0x0, 0xc2) sendmsg$NBD_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000780)={&(0x7f0000000700)={0x58, 0x0, 0x2, 0x70bd26, 0x25dfdbfc, {}, [@NBD_ATTR_SOCKETS={0xc, 0x7, 0x0, 0x1, [{0x8, 0x1, r5}]}, @NBD_ATTR_SOCKETS={0x14, 0x7, 0x0, 0x1, [{0x8, 0x1, r4}, {0x8, 0x1, r6}]}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x4}, @NBD_ATTR_SERVER_FLAGS={0xc}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x3}]}, 0x58}, 0x1, 0x0, 0x0, 0x841}, 0x4000080) 12:39:25 executing program 1: r0 = semget$private(0x0, 0x1, 0x613d3f96cfab6ca0) semctl$IPC_STAT(r0, 0x0, 0x2, &(0x7f0000000000)) semctl$IPC_RMID(r0, 0x0, 0x0) semctl$SEM_STAT(0xffffffffffffffff, 0x1, 0x12, &(0x7f0000000040)=""/183) ioctl$RTC_WIE_OFF(0xffffffffffffffff, 0x7010) ioctl$RTC_WIE_OFF(0xffffffffffffffff, 0x7010) r1 = semget(0x1, 0x0, 0x228) semop(r1, &(0x7f0000000100)=[{0x1, 0x30e2}], 0x1) semctl$SETVAL(r0, 0x4, 0x10, &(0x7f0000000140)=0x9) semctl$SETALL(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000180)=[0xff]) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x100, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x8880}, 0x41) ioctl$RTC_PLL_SET(0xffffffffffffffff, 0x40207012, &(0x7f00000002c0)={0x9, 0x3f, 0x3, 0x2, 0x3, 0xe1}) ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002) geteuid() r2 = semget$private(0x0, 0x0, 0x4) semtimedop(r2, &(0x7f0000000300)=[{0x1, 0x800, 0x1800}], 0x1, &(0x7f0000000340)={0x77359400}) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000380), 0x400, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(r3, 0x0, 0x2d, &(0x7f00000003c0)={0x101, {{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x13}}}}, 0x88) accept$inet(r3, 0x0, &(0x7f0000000480)) getitimer(0x1, &(0x7f00000004c0)) 12:39:25 executing program 2: r0 = syz_open_dev$vcsa(&(0x7f0000000000), 0x9, 0x88002) getsockopt$inet_int(r0, 0x0, 0x18, &(0x7f0000000040), &(0x7f0000000080)=0x4) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x4000, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0xffff}}, './file0\x00'}) r3 = accept$inet(r0, &(0x7f0000000140)={0x2, 0x0, @multicast1}, &(0x7f0000000180)=0x10) ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000200)={0x0, {0x2, 0x4e20, @empty}, {0x2, 0x4e23, @remote}, {0x2, 0x4e23, @private=0xa010101}, 0x90, 0x0, 0x0, 0x0, 0x2, &(0x7f00000001c0)='batadv_slave_1\x00', 0x7036, 0x1f, 0x8}) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000280), 0x28040, 0x0) bind$netlink(r4, &(0x7f00000002c0)={0x10, 0x0, 0x25dfdbfc, 0x10000}, 0xc) openat$autofs(0xffffffffffffff9c, &(0x7f0000000300), 0x42eb7bf4e47dc1a2, 0x0) setsockopt$EBT_SO_SET_COUNTERS(r2, 0x0, 0x81, &(0x7f0000000380)={'broute\x00', 0x0, 0x0, 0x0, [0x8, 0xffff, 0x6, 0x3, 0x4, 0xfffffffffffff8ac], 0x6, &(0x7f0000000340)=[{}], 0x0, [{}, {}, {}, {}, {}, {}]}, 0xd8) r5 = accept4$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @dev}, &(0x7f00000004c0)=0x10, 0x0) accept$inet(r5, &(0x7f0000000500)={0x2, 0x0, @initdev}, &(0x7f0000000540)=0x10) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r2, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x7c, 0x0, 0x300, 0x70bd28, 0x25dfdbfd, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}, @MPTCP_PM_ATTR_ADDR={0x18, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}}]}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x5}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x4}, @MPTCP_PM_ATTR_ADDR={0x4}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8810}, 0x0) getsockopt$inet_buf(r4, 0x0, 0x9, &(0x7f00000006c0)=""/181, &(0x7f0000000780)=0xb5) accept$inet(r4, 0x0, &(0x7f00000007c0)) socketpair(0xa, 0x80809, 0x2, &(0x7f0000000840)={0xffffffffffffffff}) r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000800), r6) r8 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000880)='/proc/cpuinfo\x00', 0x0, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r8, &(0x7f0000000980)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000940)={&(0x7f0000000900)={0x28, r7, 0x1, 0x70bd25, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0xe}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x4080}, 0x8091) seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x1, &(0x7f0000000a00)={0x5, &(0x7f00000009c0)=[{0x889d, 0x9, 0x8b, 0x9a}, {0x9, 0x20, 0x0, 0x1}, {0x7ff, 0x68, 0x89, 0xff}, {0x3, 0x6, 0x7, 0x9}, {0x4, 0x20, 0x20, 0x400}]}) 12:39:25 executing program 3: r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x48800, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000040)={0x10000000}) r1 = perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x80, 0x6, 0x3, 0x1, 0x9, 0x0, 0x1, 0x4418, 0x8, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x368, 0x4, @perf_bp={&(0x7f0000000080), 0x4}, 0x3009, 0x82d, 0x3, 0x4, 0x8, 0xfffffffb, 0xa2, 0x0, 0x5, 0x0, 0x7fff}, r0, 0xf, 0xffffffffffffffff, 0x2) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0x7}}, './file0\x00'}) r3 = openat$cgroup_subtree(r2, &(0x7f0000000180), 0x2, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/module/firmware_class', 0x204100, 0x20) ioctl$PERF_EVENT_IOC_ID(r4, 0x80082407, &(0x7f0000000200)) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, {0x1}}, './file1\x00'}) ioctl$BINDER_CTL_ADD(r5, 0xc1086201, &(0x7f0000000280)={'binder1\x00'}) r6 = getpid() perf_event_open(&(0x7f0000000400)={0x5, 0x80, 0x4, 0x5, 0xff, 0x8, 0x0, 0x7, 0x40008, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3ff, 0x1, @perf_bp={&(0x7f00000003c0), 0x8}, 0x0, 0x1, 0x0, 0x6, 0x6, 0x4, 0x1f, 0x0, 0x9, 0x0, 0x3}, r6, 0x6, 0xffffffffffffffff, 0x1) r7 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0) r8 = mq_open(&(0x7f00000004c0)='\xa0{\'*)@+\xbd/[:\x00', 0x40, 0x190, &(0x7f0000000500)={0xaf4, 0x101, 0x9, 0x401}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r7, 0xc018937a, &(0x7f0000000540)={{0x1, 0x1, 0x18, r8, {0x9}}, './file0\x00'}) mq_getsetattr(r8, &(0x7f0000000580)={0xce50, 0x5, 0x1000000000, 0x3}, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f00000005c0)={@local, @remote}, 0xc) socketpair(0xf, 0x6, 0x6, &(0x7f0000000600)={0xffffffffffffffff}) setsockopt$IP_VS_SO_SET_EDITDEST(r9, 0x0, 0x489, &(0x7f0000000640)={{0x33, @multicast2, 0x4e20, 0x2, 'sed\x00', 0x2, 0xa400, 0x4a}, {@local, 0x4e23, 0x10007, 0x3, 0x9, 0xffffffff}}, 0x44) r10 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000006c0)='/sys/fs/9p', 0x21a000, 0x80) epoll_ctl$EPOLL_CTL_MOD(r10, 0x3, r3, &(0x7f0000000700)={0x1}) [ 54.621631] audit: type=1400 audit(1664887165.941:6): avc: denied { execmem } for pid=283 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1 12:39:25 executing program 4: r0 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r0, 0x8, 0x70bd2b, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @empty}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000004}, 0x4015) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_DEV(r1, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x1c, 0x0, 0x8, 0x70bd28, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x10001}, 0x20040000) sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r1, &(0x7f0000000600)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000280)={0x340, 0x0, 0x300, 0x70bd2d, 0x25dfdbfc, {}, [@NL802154_ATTR_SEC_DEVKEY={0x108, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x2}, @NL802154_DEVKEY_ATTR_ID={0x8c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x44, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xffff}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x6ada}]}, @NL802154_DEVKEY_ATTR_ID={0x4c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x4}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xfffffffffffffffa}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x24, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}]}]}, @NL802154_DEVKEY_ATTR_ID={0x24, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x7}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x401}, @NL802154_KEY_ID_ATTR_INDEX={0x5}]}]}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}]}, @NL802154_ATTR_SEC_DEVKEY={0xbc, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x3}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x9}, @NL802154_DEVKEY_ATTR_ID={0x70, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x1b}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x34, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x6}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x1}]}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}]}, @NL802154_DEVKEY_ATTR_ID={0xc, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}]}, @NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0xfffffc00}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}]}, @NL802154_ATTR_SEC_DEVKEY={0x18, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_FRAME_COUNTER={0x8, 0x1, 0x5}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0302}}]}, @NL802154_ATTR_SEC_DEVKEY={0x104, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_ID={0x34, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x1}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x2}]}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0202}}, @NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc, 0x2, {0xaaaaaaaaaaaa0102}}, @NL802154_DEVKEY_ATTR_ID={0x4c, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x8000}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x18, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0xfffc}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x3}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x10, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}]}, @NL802154_DEVKEY_ATTR_ID={0x44, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x30, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xfffe}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0002}}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5, 0x2, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}]}]}]}, 0x340}, 0x1, 0x0, 0x0, 0x48014}, 0x20000000) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000680), r1) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000006c0)={'wpan3\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_DEV(r2, &(0x7f0000000780)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0xa010}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x28, r3, 0x2, 0x70bd2a, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x8051) sendmsg$NLBL_UNLABEL_C_STATICLIST(r1, &(0x7f0000000900)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x60000044}, 0xc, &(0x7f00000008c0)={&(0x7f0000000800)={0x88, r0, 0xe02, 0x70bd2c, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private1}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x3a}}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:dhcpc_exec_t:s0\x00'}]}, 0x88}, 0x1, 0x0, 0x0, 0x20040001}, 0x4010) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_DEV(r5, &(0x7f0000000a00)={&(0x7f0000000940)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000009c0)={&(0x7f0000000980)={0x14, 0x0, 0x100, 0x70bd2b, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20008000}, 0x880) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(r6, &(0x7f0000000b00)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000ac0)={&(0x7f0000000a80)={0x20, r3, 0x100, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}]}, 0x20}, 0x1, 0x0, 0x0, 0x20004800}, 0x8040) r7 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000b80), r5) sendmsg$NLBL_UNLABEL_C_LIST(r1, &(0x7f0000000cc0)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000c80)={&(0x7f0000000bc0)={0x88, r7, 0x18, 0x70bd25, 0x25dfdbff, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @remote}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0xb}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @empty}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'bond0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'hsr0\x00'}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'wlan1\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x88}, 0x1, 0x0, 0x0, 0x48080}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000d40)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_NEW_INTERFACE(r5, &(0x7f0000000e40)={&(0x7f0000000d00)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000e00)={&(0x7f0000000d80)={0x6c, r3, 0x300, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan1\x00'}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, {0xaaaaaaaaaaaa0102}}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan0\x00'}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x6c}, 0x1, 0x0, 0x0, 0x800}, 0x4000000) r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_SEC_KEY(r9, &(0x7f0000000f80)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000f40)={&(0x7f0000000ec0)={0x5c, r3, 0x0, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000) 12:39:25 executing program 5: r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x52240, 0x0) ioctl$RTC_PLL_SET(r0, 0x40207012, &(0x7f0000000040)={0x101, 0x0, 0x3, 0x5, 0x80000000, 0x1, 0x8}) syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), 0xffffffffffffffff) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/block/loop4', 0x417a70ed833fab4, 0x100) r2 = perf_event_open$cgroup(&(0x7f0000000100)={0x0, 0x80, 0xff, 0x69, 0x40, 0x81, 0x0, 0x3, 0x4000, 0x10, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x80, 0x0, @perf_config_ext={0x9, 0x400}, 0x2901, 0x100000001, 0x4, 0x8, 0x5, 0x4, 0x8000, 0x0, 0x101, 0x0, 0x100000000}, 0xffffffffffffffff, 0x6, r1, 0xd) kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, r2, &(0x7f0000000180)={r1, r0, 0x2}) socket$inet(0x2, 0x4, 0x7fff) r3 = getpid() syz_open_procfs$namespace(r3, &(0x7f00000001c0)='ns/pid\x00') setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000200)=0x16, 0x4) sched_rr_get_interval(r3, &(0x7f0000000240)) openat$rtc(0xffffffffffffff9c, &(0x7f0000000280), 0x480, 0x0) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r1, &(0x7f00000002c0)={0x20000000}) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/vmallocinfo\x00', 0x0, 0x0) ioctl$RTC_AIE_OFF(r0, 0x7002) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000340)=0x19, 0x4) setsockopt$netlink_NETLINK_RX_RING(r1, 0x10e, 0x6, &(0x7f0000000380)={0x10, 0x200, 0x2, 0xcc8}, 0x10) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(r4, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x14, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x40400d1) r5 = openat$rtc(0xffffffffffffff9c, &(0x7f00000004c0), 0x402000, 0x0) ioctl$RTC_WIE_OFF(r5, 0x7010) 12:39:26 executing program 6: sendmsg$NL802154_CMD_SET_SHORT_ADDR(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x0, 0x2, 0x70bd28, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000801}, 0x11) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_GET_SEC_KEY(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x60, 0x0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}]}, 0x60}, 0x1, 0x0, 0x0, 0x8821}, 0x0) syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NL802154_CMD_GET_SEC_DEV(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x7c, 0x0, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x79e11b0a36edb2a6}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x7c}}, 0x26008400) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_LBT_MODE(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)={0x4c, r1, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_LBT_MODE={0x5, 0x13, 0x1}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_LBT_MODE={0x5}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24000014}, 0x41) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000680)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000640)={&(0x7f00000005c0)={0x80, r1, 0x420, 0x70bd25, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_SEC_LEVEL={0x34, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x4}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x2}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x2}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x5}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x6}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000040}, 0x20000000) sendmsg$NL802154_CMD_GET_SEC_KEY(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x30, r1, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}]}, 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x8000044) sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000840)={&(0x7f0000000800)={0x3c, 0x0, 0x2, 0x70bd28, 0x25dfdbfe, {}, [@NL802154_ATTR_MAX_BE={0x5, 0x10, 0x5}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x3c}}, 0x40000) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000900), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f00000009c0)={&(0x7f00000008c0), 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x1c, r3, 0x400, 0x70bd26, 0x25dfdbff, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20044004}, 0x22000010) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000a40), r2) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000a80)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r4, &(0x7f0000000b40)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000b00)={&(0x7f0000000ac0)={0x28, r5, 0x800, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x28}}, 0x68b90acf66aee42) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000bc0)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_SET_MAX_CSMA_BACKOFFS(r4, &(0x7f0000000c80)={&(0x7f0000000b80), 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x40, r5, 0x100, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r0}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}, @NL802154_ATTR_MAX_CSMA_BACKOFFS={0x5, 0x12, 0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x2001}, 0x1) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r4, &(0x7f0000000d80)={&(0x7f0000000cc0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000d40)={&(0x7f0000000d00)={0x30, r5, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_LEVEL={0x1c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x7}]}]}, 0x30}}, 0x80004) 12:39:26 executing program 7: r0 = getpid() ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000000)={'\x00', 0x3ff, 0x7fffffff, 0x3ff, 0x7, 0x4, r0}) r1 = getpid() ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000080)={'\x00', 0x5, 0x6, 0x5, 0x6, 0x486, r1}) getresgid(&(0x7f0000000100)=0x0, &(0x7f0000000140), &(0x7f0000000180)=0x0) r4 = getpid() msgctl$IPC_SET(0xffffffffffffffff, 0x1, &(0x7f00000001c0)={{0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xee01, r3, 0x102, 0x4}, 0x0, 0x0, 0x1, 0x800, 0x3, 0x1, 0x1ff, 0x18, 0xffff, 0x6a1c, r0, r4}) r5 = syz_open_dev$loop(&(0x7f0000000240), 0x36ef, 0x6a4801) ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000280)={'\x00', 0xac5, 0x856, 0x0, 0x200, 0x7ff, r0}) epoll_create1(0x80000) r6 = geteuid() getgroups(0x1, &(0x7f0000000300)=[0x0]) r8 = getpid() msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000340)={{0x3, 0x0, r2, r6, r7, 0xd, 0x414f}, 0x0, 0x0, 0xff, 0x69f1, 0x6, 0x3, 0x4, 0x401, 0x3, 0x800, r8, r4}) sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000400)={0x2c, 0x0, 0x20, 0x70bd29, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000800}, 0x40011) semop(0x0, &(0x7f00000004c0)=[{0x2, 0x9}, {0x3, 0xb09, 0x1000}, {0x3, 0x2, 0x1800}], 0x3) setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, &(0x7f0000000500)={0x6c, @multicast2, 0x4e24, 0x3, 'sh\x00', 0x12, 0x1, 0x9}, 0x2c) getsockopt$IPT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000540)={'raw\x00', 0x0, [0x7ff, 0x4, 0xe6, 0xffff0001, 0x200]}, &(0x7f00000005c0)=0x54) timerfd_create(0x2, 0x80800) getsockopt$inet_int(0xffffffffffffffff, 0x0, 0x17, &(0x7f0000000600), &(0x7f0000000640)=0x4) [ 55.950175] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 55.951895] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 55.954091] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 55.954873] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 55.956268] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 55.957585] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 55.961672] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 55.962650] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 55.963968] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 55.965500] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 55.966542] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 55.966602] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 55.982365] Bluetooth: hci1: HCI_REQ-0x0c1a [ 56.005054] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 56.006457] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 56.007902] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 56.009217] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 56.010046] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 56.010830] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 56.011527] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 56.012400] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 56.013576] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 56.017131] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 56.018632] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 56.020042] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 56.020834] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 56.023385] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 56.025296] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 56.027995] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 56.028772] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 56.033805] Bluetooth: hci0: HCI_REQ-0x0c1a [ 56.044708] Bluetooth: hci4: HCI_REQ-0x0c1a [ 56.045489] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 56.045549] Bluetooth: hci2: HCI_REQ-0x0c1a [ 56.047264] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 56.048375] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 56.050379] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 56.051410] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 56.052313] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 56.055935] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 56.060739] Bluetooth: hci6: HCI_REQ-0x0c1a [ 56.088245] Bluetooth: hci5: HCI_REQ-0x0c1a [ 56.197869] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 56.209467] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 56.219639] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 56.250884] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 56.290960] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 56.300946] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 56.306463] Bluetooth: hci7: HCI_REQ-0x0c1a [ 58.022420] Bluetooth: hci3: Opcode 0x c03 failed: -110 [ 58.022444] Bluetooth: hci1: command 0x0409 tx timeout [ 58.085811] Bluetooth: hci4: command 0x0409 tx timeout [ 58.085863] Bluetooth: hci0: command 0x0409 tx timeout [ 58.086917] Bluetooth: hci6: command 0x0409 tx timeout [ 58.087787] Bluetooth: hci2: command 0x0409 tx timeout [ 58.150667] Bluetooth: hci5: command 0x0409 tx timeout [ 58.342834] Bluetooth: hci7: command 0x0409 tx timeout [ 60.070799] Bluetooth: hci1: command 0x041b tx timeout [ 60.133988] Bluetooth: hci2: command 0x041b tx timeout [ 60.135212] Bluetooth: hci6: command 0x041b tx timeout [ 60.135722] Bluetooth: hci0: command 0x041b tx timeout [ 60.136212] Bluetooth: hci4: command 0x041b tx timeout [ 60.197831] Bluetooth: hci5: command 0x041b tx timeout [ 60.389775] Bluetooth: hci7: command 0x041b tx timeout [ 60.929872] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 60.956606] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 60.962024] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 60.993462] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 61.000946] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 61.006304] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 61.021335] Bluetooth: hci3: HCI_REQ-0x0c1a [ 62.117798] Bluetooth: hci1: command 0x040f tx timeout [ 62.181785] Bluetooth: hci4: command 0x040f tx timeout [ 62.182449] Bluetooth: hci0: command 0x040f tx timeout [ 62.183008] Bluetooth: hci6: command 0x040f tx timeout [ 62.183518] Bluetooth: hci2: command 0x040f tx timeout [ 62.245832] Bluetooth: hci5: command 0x040f tx timeout [ 62.437766] Bluetooth: hci7: command 0x040f tx timeout [ 63.077898] Bluetooth: hci3: command 0x0409 tx timeout [ 64.165888] Bluetooth: hci1: command 0x0419 tx timeout [ 64.229829] Bluetooth: hci2: command 0x0419 tx timeout [ 64.230463] Bluetooth: hci6: command 0x0419 tx timeout [ 64.231047] Bluetooth: hci0: command 0x0419 tx timeout [ 64.231585] Bluetooth: hci4: command 0x0419 tx timeout [ 64.293916] Bluetooth: hci5: command 0x0419 tx timeout [ 64.485806] Bluetooth: hci7: command 0x0419 tx timeout [ 65.125775] Bluetooth: hci3: command 0x041b tx timeout [ 67.173793] Bluetooth: hci3: command 0x040f tx timeout [ 69.222736] Bluetooth: hci3: command 0x0419 tx timeout [ 117.866870] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 117.868842] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 117.869860] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 117.873651] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 117.879540] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 117.884025] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 117.885751] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 117.889397] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 117.891174] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 117.892973] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 117.896865] Bluetooth: hci2: HCI_REQ-0x0c1a [ 117.912041] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 117.912967] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 117.932795] Bluetooth: hci1: HCI_REQ-0x0c1a [ 118.018344] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 118.021229] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 118.022223] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 118.025936] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 118.027594] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 118.029491] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 118.033990] Bluetooth: hci4: HCI_REQ-0x0c1a [ 118.058211] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 118.062396] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 118.071425] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 118.087596] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 118.089537] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 118.092172] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 118.129481] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 118.137090] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 118.139519] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 118.149356] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 118.164905] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 118.180012] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 118.202635] Bluetooth: hci7: HCI_REQ-0x0c1a [ 118.266801] Bluetooth: hci5: HCI_REQ-0x0c1a [ 118.337027] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 118.339516] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 118.342210] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 118.345521] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 118.370124] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 118.376610] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 118.405780] Bluetooth: hci6: HCI_REQ-0x0c1a [ 119.845801] Bluetooth: hci0: Opcode 0x c03 failed: -110 [ 119.910839] Bluetooth: hci2: command 0x0409 tx timeout [ 119.973814] Bluetooth: hci1: command 0x0409 tx timeout [ 120.101891] Bluetooth: hci4: command 0x0409 tx timeout [ 120.229875] Bluetooth: hci7: command 0x0409 tx timeout [ 120.293996] Bluetooth: hci5: command 0x0409 tx timeout [ 120.422842] Bluetooth: hci6: command 0x0409 tx timeout [ 121.958182] Bluetooth: hci2: command 0x041b tx timeout [ 122.021938] Bluetooth: hci1: command 0x041b tx timeout [ 122.149807] Bluetooth: hci4: command 0x041b tx timeout [ 122.240972] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 122.244235] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 122.246185] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 122.251223] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 122.252472] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 122.253421] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 122.258219] Bluetooth: hci0: HCI_REQ-0x0c1a [ 122.277786] Bluetooth: hci7: command 0x041b tx timeout [ 122.341739] Bluetooth: hci5: command 0x041b tx timeout [ 122.408742] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 122.409893] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 122.410599] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 122.413193] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 122.414316] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 122.415080] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 122.417934] Bluetooth: hci3: HCI_REQ-0x0c1a [ 122.469775] Bluetooth: hci6: command 0x041b tx timeout [ 124.005858] Bluetooth: hci2: command 0x040f tx timeout [ 124.069779] Bluetooth: hci1: command 0x040f tx timeout [ 124.197783] Bluetooth: hci4: command 0x040f tx timeout [ 124.325860] Bluetooth: hci7: command 0x040f tx timeout [ 124.325942] Bluetooth: hci0: command 0x0409 tx timeout [ 124.389801] Bluetooth: hci5: command 0x040f tx timeout [ 124.453917] Bluetooth: hci3: command 0x0409 tx timeout [ 124.517805] Bluetooth: hci6: command 0x040f tx timeout [ 126.053768] Bluetooth: hci2: command 0x0419 tx timeout [ 126.118767] Bluetooth: hci1: command 0x0419 tx timeout [ 126.245824] Bluetooth: hci4: command 0x0419 tx timeout [ 126.373868] Bluetooth: hci0: command 0x041b tx timeout [ 126.374494] Bluetooth: hci7: command 0x0419 tx timeout [ 126.437866] Bluetooth: hci5: command 0x0419 tx timeout [ 126.501774] Bluetooth: hci3: command 0x041b tx timeout [ 126.565839] Bluetooth: hci6: command 0x0419 tx timeout [ 128.421789] Bluetooth: hci0: command 0x040f tx timeout [ 128.549839] Bluetooth: hci3: command 0x040f tx timeout [ 130.469888] Bluetooth: hci0: command 0x0419 tx timeout [ 130.597810] Bluetooth: hci3: command 0x0419 tx timeout [ 180.011295] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 180.013465] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 180.014516] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 180.016849] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 180.019823] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 180.026359] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 180.033055] Bluetooth: hci2: HCI_REQ-0x0c1a [ 180.091556] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 180.093966] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 180.099012] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 180.110156] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 180.150497] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 180.151586] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 180.157019] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 180.160716] Bluetooth: hci4: HCI_REQ-0x0c1a [ 180.160905] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 180.165096] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 180.200391] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 180.209399] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 180.216621] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 180.247804] Bluetooth: hci5: HCI_REQ-0x0c1a [ 180.474572] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 180.485020] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 180.491248] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 180.516943] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 180.533128] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 180.537244] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 180.565322] Bluetooth: hci6: HCI_REQ-0x0c1a [ 181.925832] Bluetooth: hci1: Opcode 0x c03 failed: -110 [ 182.053785] Bluetooth: hci2: command 0x0409 tx timeout [ 182.117746] INFO: task rcu_gp:3 blocked for more than 142 seconds. [ 182.118524] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.119173] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.120003] task:rcu_gp state:I stack:30328 pid:3 ppid:2 flags:0x00004000 [ 182.121395] Call Trace: [ 182.121936] [ 182.122172] __schedule+0x893/0x2470 [ 182.122569] ? io_schedule_timeout+0x150/0x150 [ 182.123039] ? do_raw_spin_lock+0x121/0x260 [ 182.123492] ? rwlock_bug.part.0+0x90/0x90 [ 182.123989] schedule+0xda/0x1b0 [ 182.124360] rescuer_thread+0x851/0xdb0 [ 182.124784] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.125341] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.125860] ? lockdep_hardirqs_on+0x79/0x100 [ 182.126330] ? worker_thread+0x1260/0x1260 [ 182.126794] kthread+0x2ed/0x3a0 [ 182.127154] ? kthread_complete_and_exit+0x40/0x40 [ 182.127637] ret_from_fork+0x22/0x30 [ 182.128107] [ 182.128360] INFO: task rcu_par_gp:4 blocked for more than 142 seconds. [ 182.129015] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.129515] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.130321] task:rcu_par_gp state:I stack:30944 pid:4 ppid:2 flags:0x00004000 [ 182.131139] Call Trace: [ 182.131402] [ 182.131629] __schedule+0x893/0x2470 [ 182.132073] ? io_schedule_timeout+0x150/0x150 [ 182.132512] ? do_raw_spin_lock+0x121/0x260 [ 182.132956] ? rwlock_bug.part.0+0x90/0x90 [ 182.133386] schedule+0xda/0x1b0 [ 182.133763] rescuer_thread+0x851/0xdb0 [ 182.134170] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.134653] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.135165] ? lockdep_hardirqs_on+0x79/0x100 [ 182.135625] ? worker_thread+0x1260/0x1260 [ 182.136074] kthread+0x2ed/0x3a0 [ 182.136431] ? kthread_complete_and_exit+0x40/0x40 [ 182.136915] ret_from_fork+0x22/0x30 [ 182.137291] [ 182.137514] INFO: task slub_flushwq:5 blocked for more than 142 seconds. [ 182.138141] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.138635] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.139456] task:slub_flushwq state:I stack:30944 pid:5 ppid:2 flags:0x00004000 [ 182.140295] Call Trace: [ 182.140535] [ 182.140773] __schedule+0x893/0x2470 [ 182.141164] ? io_schedule_timeout+0x150/0x150 [ 182.141631] ? do_raw_spin_lock+0x121/0x260 [ 182.142108] ? rwlock_bug.part.0+0x90/0x90 [ 182.142535] schedule+0xda/0x1b0 [ 182.142893] rescuer_thread+0x851/0xdb0 [ 182.143334] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.143997] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.144509] ? lockdep_hardirqs_on+0x79/0x100 [ 182.144973] ? worker_thread+0x1260/0x1260 [ 182.145389] kthread+0x2ed/0x3a0 [ 182.145762] ? kthread_complete_and_exit+0x40/0x40 [ 182.146259] ret_from_fork+0x22/0x30 [ 182.146660] [ 182.146928] INFO: task netns:6 blocked for more than 142 seconds. [ 182.147513] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.148069] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.148833] task:netns state:I stack:30944 pid:6 ppid:2 flags:0x00004000 [ 182.149642] Call Trace: [ 182.149924] [ 182.150162] __schedule+0x893/0x2470 [ 182.150557] ? io_schedule_timeout+0x150/0x150 [ 182.151040] ? do_raw_spin_lock+0x121/0x260 [ 182.151475] ? rwlock_bug.part.0+0x90/0x90 [ 182.151936] schedule+0xda/0x1b0 [ 182.152328] rescuer_thread+0x851/0xdb0 [ 182.152740] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.153244] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.153748] ? lockdep_hardirqs_on+0x79/0x100 [ 182.154194] ? worker_thread+0x1260/0x1260 [ 182.154658] kthread+0x2ed/0x3a0 [ 182.155056] ? kthread_complete_and_exit+0x40/0x40 [ 182.155527] ret_from_fork+0x22/0x30 [ 182.155941] [ 182.156197] INFO: task kworker/0:0:7 blocked for more than 142 seconds. [ 182.156853] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.157356] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.158078] task:kworker/0:0 state:I stack:29592 pid:7 ppid:2 flags:0x00004000 [ 182.158811] Workqueue: 0x0 (rcu_gp) [ 182.159196] Call Trace: [ 182.159428] [ 182.159664] __schedule+0x893/0x2470 [ 182.160080] ? io_schedule_timeout+0x150/0x150 [ 182.160537] schedule+0xda/0x1b0 [ 182.160910] worker_thread+0x15f/0x1260 [ 182.161326] ? process_one_work+0x16a0/0x16a0 [ 182.161805] kthread+0x2ed/0x3a0 [ 182.162171] ? kthread_complete_and_exit+0x40/0x40 [ 182.162622] ret_from_fork+0x22/0x30 [ 182.163011] [ 182.163287] INFO: task kworker/0:0H:8 blocked for more than 142 seconds. [ 182.163918] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.164393] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.165128] task:kworker/0:0H state:I stack:28952 pid:8 ppid:2 flags:0x00004000 [ 182.165944] Workqueue: 0x0 (kblockd) [ 182.166336] Call Trace: [ 182.166595] [ 182.166856] __schedule+0x893/0x2470 [ 182.167253] ? io_schedule_timeout+0x150/0x150 [ 182.167727] schedule+0xda/0x1b0 [ 182.168089] worker_thread+0x15f/0x1260 [ 182.168483] ? process_one_work+0x16a0/0x16a0 [ 182.168987] kthread+0x2ed/0x3a0 [ 182.169348] ? kthread_complete_and_exit+0x40/0x40 [ 182.169857] ret_from_fork+0x22/0x30 [ 182.170283] [ 182.170509] INFO: task mm_percpu_wq:10 blocked for more than 143 seconds. [ 182.171117] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.171593] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.172382] task:mm_percpu_wq state:I stack:30944 pid:10 ppid:2 flags:0x00004000 [ 182.173207] Call Trace: [ 182.173469] [ 182.173701] __schedule+0x893/0x2470 [ 182.174057] ? io_schedule_timeout+0x150/0x150 [ 182.174468] ? do_raw_spin_lock+0x121/0x260 [ 182.174907] ? rwlock_bug.part.0+0x90/0x90 [ 182.175345] schedule+0xda/0x1b0 [ 182.175657] rescuer_thread+0x851/0xdb0 [ 182.176053] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.176529] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.177016] ? lockdep_hardirqs_on+0x79/0x100 [ 182.177448] ? worker_thread+0x1260/0x1260 [ 182.177886] kthread+0x2ed/0x3a0 [ 182.178213] ? kthread_complete_and_exit+0x40/0x40 [ 182.178706] ret_from_fork+0x22/0x30 [ 182.179059] [ 182.179287] INFO: task rcu_tasks_kthre:11 blocked for more than 143 seconds. [ 182.179971] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.180492] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.181253] task:rcu_tasks_kthre state:I stack:29272 pid:11 ppid:2 flags:0x00004000 [ 182.181802] Bluetooth: hci4: command 0x0409 tx timeout [ 182.182110] Call Trace: [ 182.183025] [ 182.183311] __schedule+0x893/0x2470 [ 182.183739] ? io_schedule_timeout+0x150/0x150 [ 182.184218] ? mark_held_locks+0x9e/0xe0 [ 182.184639] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.185168] schedule+0xda/0x1b0 [ 182.185499] rcu_tasks_one_gp+0x3db/0xc10 [ 182.185968] rcu_tasks_kthread+0x80/0xa0 [ 182.186423] ? rcu_tasks_postscan+0x10/0x10 [ 182.186885] kthread+0x2ed/0x3a0 [ 182.187237] ? kthread_complete_and_exit+0x40/0x40 [ 182.187768] ret_from_fork+0x22/0x30 [ 182.188160] [ 182.188421] INFO: task kworker/1:0H:21 blocked for more than 143 seconds. [ 182.189060] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.189546] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.190408] task:kworker/1:0H state:I stack:29760 pid:21 ppid:2 flags:0x00004000 [ 182.191207] Workqueue: 0x0 (events_highpri) [ 182.191662] Call Trace: [ 182.191942] [ 182.192214] __schedule+0x893/0x2470 [ 182.192616] ? io_schedule_timeout+0x150/0x150 [ 182.193134] schedule+0xda/0x1b0 [ 182.193479] worker_thread+0x15f/0x1260 [ 182.193925] ? process_one_work+0x16a0/0x16a0 [ 182.194387] kthread+0x2ed/0x3a0 [ 182.194760] ? kthread_complete_and_exit+0x40/0x40 [ 182.195266] ret_from_fork+0x22/0x30 [ 182.195652] [ 182.195914] INFO: task inet_frag_wq:23 blocked for more than 143 seconds. [ 182.196578] Not tainted 6.0.0-rc7-next-20220930 #1 [ 182.197119] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 182.197933] task:inet_frag_wq state:I stack:30704 pid:23 ppid:2 flags:0x00004000 [ 182.198728] Call Trace: [ 182.198992] [ 182.199227] __schedule+0x893/0x2470 [ 182.199617] ? io_schedule_timeout+0x150/0x150 [ 182.200134] ? do_raw_spin_lock+0x121/0x260 [ 182.200558] ? rwlock_bug.part.0+0x90/0x90 [ 182.201014] schedule+0xda/0x1b0 [ 182.201372] rescuer_thread+0x851/0xdb0 [ 182.201781] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.202284] ? _raw_spin_unlock_irqrestore+0x28/0x60 [ 182.202822] ? lockdep_hardirqs_on+0x79/0x100 [ 182.203293] ? worker_thread+0x1260/0x1260 [ 182.203767] kthread+0x2ed/0x3a0 [ 182.204120] ? kthread_complete_and_exit+0x40/0x40 [ 182.204602] ret_from_fork+0x22/0x30 [ 182.205039] [ 182.205349] [ 182.205349] Showing all locks held in the system: [ 182.205956] 1 lock held by rcu_tasks_kthre/11: [ 182.206402] #0: ffffffff85406850 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x26/0xc10 [ 182.207413] 1 lock held by khungtaskd/25: [ 182.207834] #0: ffffffff85407320 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 [ 182.208805] 2 locks held by kworker/u4:1/26: [ 182.209236] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 182.210249] #1: ffff888009037db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 182.211311] 2 locks held by kworker/u4:2/33: [ 182.211752] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 182.212784] #1: ffff8880092d7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 182.213855] 2 locks held by kworker/u4:3/47: [ 182.214280] 1 lock held by kmemleak/54: [ 182.214654] 1 lock held by in:imklog/189: [ 182.215065] 3 locks held by kworker/u5:4/309: [ 182.215496] #0: ffff888015fcc938 ((wq_completion)hci7){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 182.216470] #1: ffff888035fffdb0 ((work_completion)(&hdev->power_on)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 182.217544] #2: ffff88802e69d028 (&hdev->req_lock){+.+.}-{3:3}, at: hci_power_on+0xd0/0x620 [ 182.218463] 2 locks held by kworker/u4:8/410: [ 182.218904] #0: ffff888007c61138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0 [ 182.219949] #1: ffff8880368a7db0 ((work_completion)(&sub_info->work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0 [ 182.221042] [ 182.221221] ============================================= [ 182.221221] [ 182.310792] Bluetooth: hci5: command 0x0409 tx timeout [ 182.438755] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 182.629791] Bluetooth: hci6: command 0x0409 tx timeout [ 183.823498] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 183.828965] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 183.830123] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 183.833174] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 183.834528] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 183.835556] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 183.840797] Bluetooth: hci0: HCI_REQ-0x0c1a [ 184.051260] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 184.055287] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 184.063309] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 184.075184] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 184.101867] Bluetooth: hci2: command 0x041b tx timeout [ 184.117939] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 184.124992] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 184.134759] Bluetooth: hci1: HCI_REQ-0x0c1a [ 184.229756] Bluetooth: hci4: command 0x041b tx timeout [ 184.357894] Bluetooth: hci5: command 0x041b tx timeout [ 184.416896] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 184.419369] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 184.461971] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 184.465376] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 184.466758] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 184.467661] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 184.480276] Bluetooth: hci3: HCI_REQ-0x0c1a [ 184.677748] Bluetooth: hci6: command 0x041b tx timeout [ 185.894008] Bluetooth: hci0: command 0x0409 tx timeout [ 186.149844] Bluetooth: hci1: command 0x0409 tx timeout [ 186.150780] Bluetooth: hci2: command 0x040f tx timeout [ 186.278922] Bluetooth: hci4: command 0x040f tx timeout [ 186.406775] Bluetooth: hci5: command 0x040f tx timeout [ 186.533787] Bluetooth: hci3: command 0x0409 tx timeout [ 186.725771] Bluetooth: hci6: command 0x040f tx timeout [ 187.813855] Bluetooth: hci7: Opcode 0x c03 failed: -110 [ 187.941777] Bluetooth: hci0: command 0x041b tx timeout [ 188.197917] Bluetooth: hci2: command 0x0419 tx timeout [ 188.197971] Bluetooth: hci1: command 0x041b tx timeout [ 188.325826] Bluetooth: hci4: command 0x0419 tx timeout [ 188.453999] Bluetooth: hci5: command 0x0419 tx timeout [ 188.581950] Bluetooth: hci3: command 0x041b tx timeout [ 188.774373] Bluetooth: hci6: command 0x0419 tx timeout [ 189.989770] Bluetooth: hci0: command 0x040f tx timeout [ 190.245785] Bluetooth: hci1: command 0x040f tx timeout [ 190.428535] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 190.432458] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 190.433826] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 190.442361] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 190.445097] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 190.450513] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 190.466513] Bluetooth: hci7: HCI_REQ-0x0c1a [ 190.629815] Bluetooth: hci3: command 0x040f tx timeout [ 192.037750] Bluetooth: hci0: command 0x0419 tx timeout VM DIAGNOSIS: 12:41:33 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=ffffffff81359c40 RCX=0000000000000000 RDX=0000000080000000 RSI=ffff88803750f6d8 RDI=0000000000000001 RBP=ffff88803750f418 RSP=ffff88803750f378 R8 =ffffffff85edfdea R9 =ffffffff85edfdee R10=ffffed1006ea1e7d R11=ffff88803750f3c0 R12=ffff88803750f448 R13=0000000000000000 R14=ffff888018653580 R15=ffff888032b14400 RIP=ffffffff8111a209 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f696a7e68e0 CR3=000000002fd7a000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 756e696c2d34365f 3638782f62696c2f YMM01=0000000000000000 0000000000000000 00362e6f732e6362 696c2f756e672d78 YMM02=0000000000000000 0000000000000000 ffff0000000000ff ffffffffffffffff YMM03=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff YMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 info registers vcpu 1 RAX=0000000000000072 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff823bb0f1 RDI=ffffffff8765a9a0 RBP=ffffffff8765a960 RSP=ffff88800902f898 R8 =0000000000000001 R9 =000000000000000a R10=0000000000000072 R11=0000000000000001 R12=0000000000000072 R13=ffffffff8765a960 R14=0000000000000010 R15=ffffffff823bb0e0 RIP=ffffffff823bb149 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f3cc5b6a8e0 CR3=0000000036cd6000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 000000000000ff00 0000000000000000 YMM01=0000000000000000 0000000000000000 00ff000000000100 2e6f732e6362696c YMM02=0000000000000000 0000000000000000 312e312e6f732e6f 747079726362696c YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM04=0000000000000000 0000000000000000 000000000000ff00 0000000000000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000